Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

I have a nasty virus and need help from the mighty computer wizards


  • Please log in to reply
15 replies to this topic

#1 chickenguy12

chickenguy12

  • Members
  • 48 posts
  • OFFLINE
  •  
  • Local time:06:09 PM

Posted 07 March 2013 - 01:08 AM

Over the past few weeks a few recurring files have appeared in my antivirus and it would take them out like clockwork, but last night my antivirus (Webroot) exploded with over 50 infections in 24 hours, all of them one of the same 8 names:

 

svchost.exe

svchost[1].exe

zlib1[1].dll

libusb-1.0[1].dll

pthreadgc2[1].dll

ssleay32[1].dll

libidn-11[1].dll

libcurl-4[1]

 

All but the first three classify as "W32.Bitcoinminer" (the first three are W32.Malware.Gen)

I can erase them all with Webroot, but as soon as I restart my computer they all come back.

 

What steps can I follow to fix this problem?



BC AdBot (Login to Remove)

 


#2 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:05:09 PM

Posted 07 March 2013 - 01:09 AM

  • Please download TDSSKiller from here and save it to your Desktop
  • Doubleclick on TDSSKiller.exe to run the application, then click on Change parameters


    tds2.jpg
     
  • Check Loaded Modules  and Detect TDLFS file systemDo not check Verify file digital signatures (even though it is checked in the example)
  • If you are asked to reboot because an "Extended Monitoring Driver is required" please click Reboot now


    2012081514h0118.png
     
  • Click Start Scan and allow the scan process to run
     
  • If threats are detected select Skip for all of them unless I instruct you otherwise
  • Click Continue


    tds6.jpg
     
  • Click Reboot computer
  • Please post the contents of  TDSSKiller.[Version]_[Date]_[Time]_log.txt found in your root directory (typically c:\)in your reply


===================================================


aswMBR

--------------------
 

  • Download aswMBR and save it to your desktop.
  • Please disable your real time protection of any Antivirus, Antispyware or Antimalware programs temporarily. They will interfere and may cause unexpected results.
  • If you need help to disable your protection programs see here and here.
  • Double click the aswMBR.exe file to run it. Please allow when you are asked to download AVAST antivirus engine defs.
  • Wait until the AV update is done, then click on the Scan button to start. The program will launch a scan.


    aswMBR1.png
  • When done, you will see Scan finished successfully. Please click on Save log and save the file to your desktop.


    aswMBR2.png
  • Please post the contents of the log in your next reply.

NOTE:  aswMBR will create MBR.dat file on your desktop. This is a copy of your MBR. Do NOT delete it.


===================================================


ESET Online Scanner

--------------------

I'd like us to scan your machine with ESET OnlineScan  This process may may take several hours, that is normal



  • Hold down Control and click on this link to open ESET OnlineScan in a new window.
  • Click the esetonlinebtn.png  button.
  • For alternate browsers only: (Microsoft Internet Explorer users can skip these steps)
    • Click on esetsmartinstaller_enu.exe to download the ESET Smart Installer. Save it to your desktop.
    • Double click on the icon on your desktop.

    esetsmartinstaller_enu.png

  • Check "YES, I accept the Terms of Use."
  • Click the Start button.
  • Accept any security warnings from your browser.
  • Under scan settings, check "Scan Archives" and "Remove found threats"
  • Click Advanced settings and select the following:
    • Scan potentially unwanted applications
    • Scan for potentially unsafe applications
    • Enable Anti-Stealth technology
  • ESET will then download updates for itself, install itself, and begin scanning your computer. Please be patient as this can take some time.
  • When the scan completes, click List Threats
  • Copy and paste the information in your next reply.   Note:  If no malware was found you will not get a log.
  • Click the Back button.
  • Click the Finish button.


===================================================


Things I would like to see in your next reply. Please be sure to copy and paste the information rather than send an attachment. :thumbsup2:
 

  • TDSSKiller log
  • aswMBR log
  • ESET results


#3 chickenguy12

chickenguy12
  • Topic Starter

  • Members
  • 48 posts
  • OFFLINE
  •  
  • Local time:06:09 PM

Posted 07 March 2013 - 06:14 PM

Heres the TDSSKiller and aswMBR logs, the last one is in progress right now

 

17:58:36.0534 5448  vmictimesync - ok

 

17:58:36.0534 5448  [ B8FF4248103E6EA47B9D85C55673ABA3 ] vmicvss         C:\Windows\System32\ICSvc.dll
17:58:36.0534 5448  vmicvss - ok
17:58:36.0549 5448  [ CB60FAAED8B49B812EBBF77EB87D9B18 ] volmgr          C:\Windows\system32\drivers\volmgr.sys
17:58:36.0549 5448  volmgr - ok
17:58:36.0581 5448  [ A74101DA9809251BCD0E5A26BAE0F824 ] volmgrx         C:\Windows\system32\drivers\volmgrx.sys
17:58:36.0581 5448  volmgrx - ok
17:58:36.0581 5448  [ 2FB3CDFD5EAF4CD9D4AFAF96877D13AE ] volsnap         C:\Windows\system32\drivers\volsnap.sys
17:58:36.0596 5448  volsnap - ok
17:58:36.0612 5448  [ A8DA1C1B52ECEA3726DEBED4FF1B700D ] vpci            C:\Windows\System32\drivers\vpci.sys
17:58:36.0612 5448  vpci - ok
17:58:36.0612 5448  [ 38A60CD9C009C55C6D3B5586F8E6A353 ] vsmraid         C:\Windows\system32\drivers\vsmraid.sys
17:58:36.0612 5448  vsmraid - ok
17:58:36.0643 5448  [ EA658570314042C914964FC72AB50E6B ] VSS             C:\Windows\system32\vssvc.exe
17:58:36.0659 5448  VSS - ok
17:58:36.0690 5448  [ A0F6FE0FC2F647C22BBFD6BD4249DBCC ] VSTXRAID        C:\Windows\system32\drivers\vstxraid.sys
17:58:36.0690 5448  VSTXRAID - ok
17:58:36.0706 5448  [ 62460A45435A26A334907E3F2EA45611 ] vwifibus        C:\Windows\System32\drivers\vwifibus.sys
17:58:36.0706 5448  vwifibus - ok
17:58:36.0721 5448  [ 095E943D27025E4D588AF0A72CC2318F ] vwififlt        C:\Windows\system32\DRIVERS\vwififlt.sys
17:58:36.0721 5448  vwififlt - ok
17:58:36.0737 5448  [ 73FA1A41A97A5C34ADC03B3577FF1A86 ] vwifimp         C:\Windows\system32\DRIVERS\vwifimp.sys
17:58:36.0737 5448  vwifimp - ok
17:58:36.0768 5448  [ F690B6EEAA94576727B24376D7ED3601 ] W32Time         C:\Windows\system32\w32time.dll
17:58:36.0768 5448  W32Time - ok
17:58:36.0768 5448  [ 6B806E893714019969E2B50D7EF6A4D9 ] WacomPen        C:\Windows\System32\drivers\wacompen.sys
17:58:36.0768 5448  WacomPen - ok
17:58:36.0799 5448  [ 6081CEC9EF9EB145D8B46655C7708D51 ] Wanarp          C:\Windows\system32\DRIVERS\wanarp.sys
17:58:36.0799 5448  Wanarp - ok
17:58:36.0815 5448  [ 6081CEC9EF9EB145D8B46655C7708D51 ] Wanarpv6        C:\Windows\system32\DRIVERS\wanarp.sys
17:58:36.0815 5448  Wanarpv6 - ok
17:58:36.0831 5448  [ 42DF22F8C448E7CD219F6D63743505E2 ] wbengine        C:\Windows\system32\wbengine.exe
17:58:36.0846 5448  wbengine - ok
17:58:36.0862 5448  [ 31D37B2F6069C631EF0557D322924812 ] WbioSrvc        C:\Windows\System32\wbiosrvc.dll
17:58:36.0878 5448  WbioSrvc - ok
17:58:36.0878 5448  [ D9C1E82651BF19C6FF69CEC6FD400124 ] Wcmsvc          C:\Windows\System32\wcmsvc.dll
17:58:36.0893 5448  Wcmsvc - ok
17:58:36.0924 5448  [ 5B5FEAB51172F5513C2CF7B39CFA6A01 ] wcncsvc         C:\Windows\System32\wcncsvc.dll
17:58:36.0956 5448  wcncsvc - ok
17:58:36.0971 5448  [ E19556D414332E2BEBA1F368229006B4 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
17:58:36.0971 5448  WcsPlugInService - ok
17:58:37.0003 5448  [ B3A4D918DAB90505B6BC7B70632913CB ] Wd              C:\Windows\system32\drivers\wd.sys
17:58:37.0003 5448  Wd - ok
17:58:37.0003 5448  [ 260F8DFC4D5748F4CCB9B19CFB0E58EA ] WdBoot          C:\Windows\system32\drivers\WdBoot.sys
17:58:37.0003 5448  WdBoot - ok
17:58:37.0049 5448  [ 2ADC985B85A71BD7D99712EC0C24358B ] Wdf01000        C:\Windows\system32\drivers\Wdf01000.sys
17:58:37.0049 5448  Wdf01000 - ok
17:58:37.0065 5448  [ 880FFFC4D5BBBB4187B6B04AB2E8C32A ] WdFilter        C:\Windows\system32\drivers\WdFilter.sys
17:58:37.0065 5448  WdFilter - ok
17:58:37.0096 5448  [ 240FC332484572227CD1DF82407F33E5 ] WdiServiceHost  C:\Windows\system32\wdi.dll
17:58:37.0096 5448  WdiServiceHost - ok
17:58:37.0096 5448  [ 240FC332484572227CD1DF82407F33E5 ] WdiSystemHost   C:\Windows\system32\wdi.dll
17:58:37.0096 5448  WdiSystemHost - ok
17:58:37.0112 5448  [ F2002DA5E6B78C15B2CD48CFF8F0FBB6 ] WebClient       C:\Windows\System32\webclnt.dll
17:58:37.0112 5448  WebClient - ok
17:58:37.0112 5448  [ 35FD720943D4FCD75C3275BF062FF140 ] Wecsvc          C:\Windows\system32\wecsvc.dll
17:58:37.0112 5448  Wecsvc - ok
17:58:37.0128 5448  [ 4D2612E3C462B68F499D840B1133263E ] wercplsupport   C:\Windows\System32\wercplsupport.dll
17:58:37.0128 5448  wercplsupport - ok
17:58:37.0143 5448  [ 8E2426162ED6749A127B35D235F21E11 ] WerSvc          C:\Windows\System32\WerSvc.dll
17:58:37.0143 5448  WerSvc - ok
17:58:37.0143 5448  [ FE762D3498719C3A23471BBA62F747B4 ] WFPLWFS         C:\Windows\system32\DRIVERS\wfplwfs.sys
17:58:37.0143 5448  WFPLWFS - ok
17:58:37.0159 5448  [ 60E0C220593DA4F7C289CB909D2DBAE0 ] WiaRpc          C:\Windows\System32\wiarpc.dll
17:58:37.0159 5448  WiaRpc - ok
17:58:37.0174 5448  [ A3C7624A42A3447EF5EDD1ED37FE4E60 ] WIMMount        C:\Windows\system32\drivers\wimmount.sys
17:58:37.0174 5448  WIMMount - ok
17:58:37.0174 5448  WinDefend - ok
17:58:37.0221 5448  [ 7911470B6018059A880469A63B65700A ] WinHttpAutoProxySvc C:\Windows\system32\winhttp.dll
17:58:37.0237 5448  WinHttpAutoProxySvc - ok
17:58:37.0596 5448  [ 3D6B518B71C75C8FA4115A33615C107A ] Winmgmt         C:\Windows\system32\wbem\WMIsvc.dll
17:58:37.0596 5448  Winmgmt - ok
17:58:37.0690 5448  [ 8E212A627F33F6FC3B5F3BB47212F66E ] WinRM           C:\Windows\system32\WsmSvc.dll
17:58:37.0721 5448  WinRM - ok
17:58:37.0737 5448  [ BB20956C424531003F7FA6CD36F11D5D ] WinUsb          C:\Windows\system32\DRIVERS\WinUSB.sys
17:58:37.0753 5448  WinUsb - ok
17:58:37.0800 5448  [ 6351724B8FA0255C2DBD970297F00B93 ] WlanSvc         C:\Windows\System32\wlansvc.dll
17:58:37.0800 5448  WlanSvc - ok
17:58:38.0112 5448  [ B330CE47FB74A6BE9A3FFFF4B3F64D9B ] wlidsvc         C:\Windows\system32\wlidsvc.dll
17:58:38.0112 5448  wlidsvc - ok
17:58:38.0128 5448  [ E2A596CACFC6504306CDB7B593B90084 ] WmiAcpi         C:\Windows\System32\drivers\wmiacpi.sys
17:58:38.0128 5448  WmiAcpi - ok
17:58:38.0190 5448  [ D113499052C5E541906B727779F0F959 ] wmiApSrv        C:\Windows\system32\wbem\WmiApSrv.exe
17:58:38.0221 5448  wmiApSrv - ok
17:58:38.0237 5448  WMPNetworkSvc - ok
17:58:38.0268 5448  [ C6FF953D5D6F2EAE3B8883474D5076B3 ] wpcfltr         C:\Windows\system32\DRIVERS\wpcfltr.sys
17:58:38.0268 5448  wpcfltr - ok
17:58:38.0300 5448  [ A6ED163169876BFD2437E872FE2F1509 ] WPCSvc          C:\Windows\System32\wpcsvc.dll
17:58:38.0300 5448  WPCSvc - ok
17:58:38.0300 5448  [ 94AA5150E35B3ABB7191FE641E3C2473 ] WPDBusEnum      C:\Windows\system32\wpdbusenum.dll
17:58:38.0300 5448  WPDBusEnum - ok
17:58:38.0331 5448  [ 0346CAFC181C91C6E2330332EB332ED6 ] WpdUpFltr       C:\Windows\system32\drivers\WpdUpFltr.sys
17:58:38.0331 5448  WpdUpFltr - ok
17:58:38.0362 5448  [ 20E8C4988C21482426A2A3368E759DB3 ] WRkrn           C:\Windows\system32\drivers\WRkrn.sys
17:58:38.0362 5448  WRkrn - ok
17:58:38.0393 5448  [ 253507D9BE6B93FC76EA0D9483BD0D80 ] WRSVC           C:\Program Files\Webroot\WRSA.exe
17:58:38.0409 5448  WRSVC - ok
17:58:38.0456 5448  [ BC8B5CB336E63BB25EAD1CE8EDD34B81 ] ws2ifsl         C:\Windows\system32\drivers\ws2ifsl.sys
17:58:38.0471 5448  ws2ifsl - ok
17:58:38.0487 5448  [ FB0C1B7F94FA08E72F19F6F2CE7210E1 ] wscsvc          C:\Windows\System32\wscsvc.dll
17:58:38.0550 5448  wscsvc - ok
17:58:38.0565 5448  [ 74EFDA0526862C3D8D01A776182798EA ] WSDPrintDevice  C:\Windows\System32\drivers\WSDPrint.sys
17:58:38.0565 5448  WSDPrintDevice - ok
17:58:38.0565 5448  WSearch - ok
17:58:38.0878 5448  [ C10BFFEE7E0D7A1366E84F251796C51D ] WSService       C:\Windows\System32\WSService.dll
17:58:38.0909 5448  WSService - ok
17:58:39.0159 5448  [ A8484C0CB54DB48180FB7CA00F1C3F8F ] wuauserv        C:\Windows\system32\wuaueng.dll
17:58:39.0190 5448  wuauserv - ok
17:58:39.0221 5448  [ AB886378EEB55C6C75B4F2D14B6C869F ] WudfPf          C:\Windows\system32\drivers\WudfPf.sys
17:58:39.0221 5448  WudfPf - ok
17:58:39.0237 5448  [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFRd          C:\Windows\System32\drivers\WUDFRd.sys
17:58:39.0237 5448  WUDFRd - ok
17:58:39.0237 5448  [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFSensorLP    C:\Windows\system32\DRIVERS\WUDFRd.sys


17:58:39.0253 5448  WUDFSensorLP - ok
17:58:39.0284 5448  [ B20F051B03A966392364C83F009F7D17 ] wudfsvc         C:\Windows\System32\WUDFSvc.dll
17:58:39.0315 5448  wudfsvc - ok
17:58:39.0315 5448  [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFWpdFs       C:\Windows\system32\DRIVERS\WUDFRd.sys
17:58:39.0315 5448  WUDFWpdFs - ok
17:58:39.0315 5448  [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFWpdMtp      C:\Windows\system32\DRIVERS\WUDFRd.sys
17:58:39.0315 5448  WUDFWpdMtp - ok
17:58:39.0346 5448  [ F9D8D2E6ECE08B278621D5BF3A7240A6 ] WwanSvc         C:\Windows\System32\wwansvc.dll
17:58:39.0346 5448  WwanSvc - ok
17:58:39.0393 5448  [ 9176C0822FAA649E45121875BE32F5D2 ] xusb21          C:\Windows\System32\drivers\xusb21.sys
17:58:39.0393 5448  xusb21 - ok
17:58:39.0425 5448  [ D107AA09E4E233E1AAE126255D8A4057 ] xusb22          C:\Windows\System32\drivers\xusb22.sys
17:58:39.0425 5448  xusb22 - ok
17:58:39.0425 5448  ================ Scan global ===============================
17:58:39.0471 5448  [ DDC1AFBF9DDF880CE9BD3896114D8DED ] C:\Windows\system32\basesrv.dll
17:58:39.0503 5448  [ E9343076AE704D20BB0D01F3AF3EFFEF ] C:\Windows\system32\winsrv.dll
17:58:39.0596 5448  [ BD7C6949984D19AAA609896B675E7357 ] C:\Windows\system32\sxssrv.dll
17:58:39.0690 5448  [ 8F226143046435C75C033B0C52E90FFE ] C:\Windows\system32\services.exe
17:58:39.0706 5448  [Global] - ok
17:58:39.0706 5448  ================ Scan MBR ==================================
17:58:39.0737 5448  [ 5FB38429D5D77768867C76DCBDB35194 ] \Device\Harddisk0\DR0
17:58:39.0753 5448  \Device\Harddisk0\DR0 - ok
17:58:39.0753 5448  ================ Scan VBR ==================================
17:58:39.0768 5448  [ 2AA7E69BDB2D76DF4CD1510D7FCB4C77 ] \Device\Harddisk0\DR0\Partition1
17:58:39.0768 5448  \Device\Harddisk0\DR0\Partition1 - ok
17:58:39.0784 5448  [ 9020C1D4D42914797AC44760B40FECDB ] \Device\Harddisk0\DR0\Partition2
17:58:39.0784 5448  \Device\Harddisk0\DR0\Partition2 - ok
17:58:39.0800 5448  [ 66FAA80B9274EE79831AFC0B93D4E7DB ] \Device\Harddisk0\DR0\Partition3
17:58:39.0800 5448  \Device\Harddisk0\DR0\Partition3 - ok
17:58:39.0815 5448  [ CC48A1999397E2F17791D910298FAA43 ] \Device\Harddisk0\DR0\Partition4
17:58:39.0815 5448  \Device\Harddisk0\DR0\Partition4 - ok
17:58:39.0846 5448  [ 0785BC681E8FDEF2172640BDABE4B563 ] \Device\Harddisk0\DR0\Partition5
17:58:39.0846 5448  \Device\Harddisk0\DR0\Partition5 - ok
17:58:39.0846 5448  ================ Scan active images ========================
17:58:39.0846 5448  [ 48753C871A12B9E2201E71D01B32F6EF ] C:\Windows\System32\Drivers\crashdmp.sys
17:58:39.0846 5448  C:\Windows\System32\Drivers\crashdmp.sys - ok
17:58:39.0846 5448  [ AAF40EB125BED7271F05289873EC4EDB ] C:\Windows\System32\Drivers\Diskdump.sys
17:58:39.0846 5448  C:\Windows\System32\Drivers\Diskdump.sys - ok
17:58:39.0846 5448  [ 0FE66A51D81A25AACEAAE4C26308121D ] C:\Windows\System32\Drivers\iaStorA.sys
17:58:39.0846 5448  C:\Windows\System32\Drivers\iaStorA.sys - ok
17:58:39.0862 5448  [ CB9EAD11F3312C77CE9B7F29B59C3A39 ] C:\Windows\System32\Drivers\dumpfve.sys
17:58:39.0862 5448  C:\Windows\System32\Drivers\dumpfve.sys - ok
17:58:39.0862 5448  [ 339BFF85D788268752DA8C9644B188EE ] C:\Windows\System32\Drivers\cdrom.sys
17:58:39.0862 5448  C:\Windows\System32\Drivers\cdrom.sys - ok
17:58:39.0862 5448  [ 9E7AEA59776D904607985AFFE7E5E183 ] C:\Windows\System32\Drivers\beep.sys
17:58:39.0862 5448  C:\Windows\System32\Drivers\beep.sys - ok
17:58:39.0862 5448  [ 4163ADE07DB51843AE31F65B94F5398D ] C:\Windows\System32\Drivers\null.sys
17:58:39.0862 5448  C:\Windows\System32\Drivers\null.sys - ok
17:58:39.0862 5448  [ 5EC68164E14D25675C98BBB5F09E8606 ] C:\Windows\System32\Drivers\BasicRender.sys
17:58:39.0862 5448  C:\Windows\System32\Drivers\BasicRender.sys - ok
17:58:39.0878 5448  [ ED120AA770A78B5079F8C7BB5AF8A035 ] C:\Windows\System32\Drivers\dxgkrnl.sys
17:58:39.0878 5448  C:\Windows\System32\Drivers\dxgkrnl.sys - ok
17:58:39.0878 5448  [ 28619B6E5A37F71AE1145643949CFA60 ] C:\Windows\System32\Drivers\dxgmms1.sys
17:58:39.0878 5448  C:\Windows\System32\Drivers\dxgmms1.sys - ok
17:58:39.0878 5448  [ B9FF5E13079ADB858ED5C0B1E4CAB225 ] C:\Windows\System32\Drivers\watchdog.sys
17:58:39.0878 5448  C:\Windows\System32\Drivers\watchdog.sys - ok
17:58:39.0878 5448  [ 81703BC5D68DEDBB086C2368FBE7B334 ] C:\Windows\System32\Drivers\BasicDisplay.sys
17:58:39.0878 5448  C:\Windows\System32\Drivers\BasicDisplay.sys - ok
17:58:39.0878 5448  [ 3886F1F2A4D2900ABAA7E4486BEEE6A2 ] C:\Windows\System32\Drivers\msfs.sys
17:58:39.0878 5448  C:\Windows\System32\Drivers\msfs.sys - ok
17:58:39.0878 5448  [ 17E19A742FB30C002F8B43575451DBE1 ] C:\Windows\System32\Drivers\npfs.sys
17:58:39.0878 5448  C:\Windows\System32\Drivers\npfs.sys - ok
17:58:39.0893 5448  [ 73DC722CE5DF26D7638CE2446F2655C7 ] C:\Windows\System32\Drivers\tdx.sys
17:58:39.0893 5448  C:\Windows\System32\Drivers\tdx.sys - ok
17:58:39.0893 5448  [ 7CEC25C682D319D484630B3952C31A11 ] C:\Windows\System32\Drivers\netbt.sys
17:58:39.0893 5448  C:\Windows\System32\Drivers\netbt.sys - ok
17:58:39.0893 5448  [ 36D6A3201721558A8AFBCC09C2DA4C2C ] C:\Windows\System32\Drivers\afd.sys
17:58:39.0893 5448  C:\Windows\System32\Drivers\afd.sys - ok
17:58:39.0893 5448  [ EB8034147D4820CD31BFCB11A2A652DF ] C:\Windows\System32\Drivers\pacer.sys
17:58:39.0893 5448  C:\Windows\System32\Drivers\pacer.sys - ok
17:58:39.0893 5448  [ 7C203A76394F9AE68F69EEE5F9612C4A ] C:\Windows\System32\Drivers\netbios.sys
17:58:39.0893 5448  C:\Windows\System32\Drivers\netbios.sys - ok
17:58:39.0893 5448  [ B72C33DBD5326B3864CF2091AF8B906B ] C:\Windows\System32\Drivers\rdbss.sys
17:58:39.0893 5448  C:\Windows\System32\Drivers\rdbss.sys - ok
17:58:39.0909 5448  [ 095E943D27025E4D588AF0A72CC2318F ] C:\Windows\System32\Drivers\vwififlt.sys
17:58:39.0909 5448  C:\Windows\System32\Drivers\vwififlt.sys - ok
17:58:39.0909 5448  [ 8ED299C30792544264E558BEA79F0947 ] C:\Windows\System32\Drivers\npsvctrig.sys
17:58:39.0909 5448  C:\Windows\System32\Drivers\npsvctrig.sys - ok
17:58:39.0909 5448  [ 689B3B1E95C70ABF7AFF29F9406EF1E0 ] C:\Windows\System32\Drivers\nsiproxy.sys
17:58:39.0909 5448  C:\Windows\System32\Drivers\nsiproxy.sys - ok
17:58:39.0909 5448  [ 6081CEC9EF9EB145D8B46655C7708D51 ] C:\Windows\System32\Drivers\wanarp.sys
17:58:39.0909 5448  C:\Windows\System32\Drivers\wanarp.sys - ok
17:58:39.0909 5448  [ 09D9EB9E7898F8E6561473A20CC808B9 ] C:\Windows\System32\Drivers\dfsc.sys
17:58:39.0909 5448  C:\Windows\System32\Drivers\dfsc.sys - ok
17:58:39.0909 5448  [ 3C736FAE17BA6F91BA37594AAB139CD0 ] C:\Windows\System32\Drivers\discache.sys
17:58:39.0909 5448  C:\Windows\System32\Drivers\discache.sys - ok
17:58:39.0909 5448  [ B5AECF12F09DEE97C9FCAA5BA016CE1E ] C:\Windows\System32\Drivers\mssmbios.sys
17:58:39.0909 5448  C:\Windows\System32\Drivers\mssmbios.sys - ok
17:58:39.0909 5448  [ C4D01BD86D6B207275FC143EEA951D75 ] C:\Windows\System32\Drivers\dam.sys
17:58:39.0909 5448  C:\Windows\System32\Drivers\dam.sys - ok
17:58:39.0925 5448  [ 41CEAFFCF3550785E59E3EC9BEE8D97A ] C:\Program Files (x86)\ASUS\ATK Package\ATK WMIACPI\atkwmiacpi64.sys
17:58:39.0925 5448  C:\Program Files (x86)\ASUS\ATK Package\ATK WMIACPI\atkwmiacpi64.sys - ok
17:58:39.0925 5448  [ 7A6F8A6D0E01432EBA294EF29CDD0FA7 ] C:\Windows\System32\Drivers\ndistapi.sys
17:58:39.0925 5448  C:\Windows\System32\Drivers\ndistapi.sys - ok
17:58:39.0925 5448  [ 62C7DBF4F9301F76CF87D4B9D8F57BF8 ] C:\Windows\System32\Drivers\ndiswan.sys
17:58:39.0925 5448  C:\Windows\System32\Drivers\ndiswan.sys - ok
17:58:39.0925 5448  [ 69B93F623B130976243ECA3D84CC99CA ] C:\Windows\System32\Drivers\agilevpn.sys
17:58:39.0925 5448  C:\Windows\System32\Drivers\agilevpn.sys - ok
17:58:39.0925 5448  [ 1E6438D4EA6E1174A3B3B1EDC4DE660B ] C:\Windows\System32\Drivers\hamachi.sys
17:58:39.0925 5448  C:\Windows\System32\Drivers\hamachi.sys - ok
17:58:39.0925 5448  [ A7F24D8CD1956B0A1FDCB86CC5114DE4 ] C:\Windows\System32\Drivers\rassstp.sys
17:58:39.0925 5448  C:\Windows\System32\Drivers\rassstp.sys - ok
17:58:39.0925 5448  [ F1B8276F58969BD87683D33066DFE442 ] C:\Windows\System32\ntdll.dll
17:58:39.0925 5448  C:\Windows\System32\ntdll.dll - ok
17:58:39.0925 5448  [ 08F850FEBDBDE7C89017B6B0CA0D1CD2 ] C:\Windows\System32\smss.exe
17:58:39.0925 5448  C:\Windows\System32\smss.exe - ok
17:58:39.0940 5448  [ 78C9EE193AC2B4CBDBC48B620314D740 ] C:\Windows\System32\Drivers\tunnel.sys
17:58:39.0940 5448  C:\Windows\System32\Drivers\tunnel.sys - ok
17:58:39.0940 5448  [ 0E5B1E9E7122EDAAF1F6CE047965CA92 ] C:\Windows\System32\Drivers\CompositeBus.sys
17:58:39.0940 5448  C:\Windows\System32\Drivers\CompositeBus.sys - ok
17:58:39.0940 5448  [ F38F79114380246B6D40CD53FB2CA28D ] C:\Windows\System32\Drivers\serscan.sys
17:58:39.0940 5448  C:\Windows\System32\Drivers\serscan.sys - ok
17:58:39.0940 5448  [ FB6C185092E18011EF49989425C2AA87 ] C:\Windows\System32\Drivers\kdnic.sys
17:58:39.0940 5448  C:\Windows\System32\Drivers\kdnic.sys - ok
17:58:39.0940 5448  [ 48258ED8A46D0F39ACBF891336250E89 ] C:\Windows\System32\Drivers\ks.sys
17:58:39.0940 5448  C:\Windows\System32\Drivers\ks.sys - ok
17:58:39.0940 5448  [ 81492FEEBF2F26455B00EE8DBAE8A1B0 ] C:\Windows\System32\Drivers\ksthunk.sys
17:58:39.0940 5448  C:\Windows\System32\Drivers\ksthunk.sys - ok
17:58:39.0940 5448  [ 490B7921C6DC58022FAA908E6310CF24 ] C:\Windows\System32\autochk.exe
17:58:39.0940 5448  C:\Windows\System32\autochk.exe - ok
17:58:39.0940 5448  [ 02CEB3FE6152668A7BA420B93B664860 ] C:\Windows\System32\Drivers\umbus.sys
17:58:39.0940 5448  C:\Windows\System32\Drivers\umbus.sys - ok
17:58:39.0956 5448  [ 60996602A7111FD2D086E803F33E4282 ] C:\Windows\System32\Drivers\fastfat.sys
17:58:39.0956 5448  C:\Windows\System32\Drivers\fastfat.sys - ok
17:58:39.0956 5448  [ 0A2F27B5BCC45B64E152DD6AE0815198 ] C:\Windows\System32\Drivers\nvlddmkm.sys
17:58:39.0956 5448  C:\Windows\System32\Drivers\nvlddmkm.sys - ok
17:58:39.0956 5448  [ 7D87B5B6C7188D553E11B59DC7F0B111 ] C:\Windows\System32\Drivers\hdaudbus.sys
17:58:39.0956 5448  C:\Windows\System32\Drivers\hdaudbus.sys - ok
17:58:39.0956 5448  [ 16F6F6B7903B913AB41AB848C8BB5658 ] C:\Windows\System32\Drivers\AiCharger.sys
17:58:39.0956 5448  C:\Windows\System32\Drivers\AiCharger.sys - ok
17:58:39.0956 5448  [ 1ED222DFE6C13DA50FE081ABF90CAFE1 ] C:\Windows\System32\Drivers\UCX01000.SYS
17:58:39.0956 5448  C:\Windows\System32\Drivers\UCX01000.SYS - ok
17:58:39.0971 5448  [ 9CD4259AD15F84DE27B94A956C978D6C ] C:\Windows\System32\Drivers\USBXHCI.SYS
17:58:39.0971 5448  C:\Windows\System32\Drivers\USBXHCI.SYS - ok
17:58:39.0971 5448  [ 75CB0458521FFA420E4230A931E4517B ] C:\Windows\System32\normaliz.dll
17:58:39.0971 5448  C:\Windows\System32\normaliz.dll - ok
17:58:39.0971 5448  [ 772A1DEEDFDBC244183B5C805D1B7D85 ] C:\Windows\System32\Drivers\HECIx64.sys
17:58:39.0971 5448  C:\Windows\System32\Drivers\HECIx64.sys - ok
17:58:39.0971 5448  [ 169629C36CB835A36E23BBC37664401E ] C:\Windows\System32\Drivers\usbport.sys
17:58:39.0971 5448  C:\Windows\System32\Drivers\usbport.sys - ok
17:58:39.0971 5448  [ 52F267AEE8CA5AA5CEB88C6A71EE1E86 ] C:\Windows\System32\Drivers\usbehci.sys
17:58:39.0971 5448  C:\Windows\System32\Drivers\usbehci.sys - ok
17:58:39.0987 5448  [ F17ABC4AA1FE4989E812858261414FE5 ] C:\Windows\System32\Drivers\athw8x.sys
17:58:39.0987 5448  C:\Windows\System32\Drivers\athw8x.sys - ok
17:58:39.0987 5448  [ C9E9CBF73AFFBFE3E801EFB516787BA3 ] C:\Windows\System32\Drivers\i8042prt.sys
17:58:39.0987 5448  C:\Windows\System32\Drivers\i8042prt.sys - ok
17:58:39.0987 5448  [ CBD16721541EE334F6D623CE0B4003BF ] C:\Windows\System32\Drivers\L1C63x64.sys
17:58:39.0987 5448  C:\Windows\System32\Drivers\L1C63x64.sys - ok
17:58:39.0987 5448  [ EBDE64F7A7BB5D98294CF1E7562BBDBA ] C:\Windows\System32\Drivers\SynTP.sys
17:58:39.0987 5448  C:\Windows\System32\Drivers\SynTP.sys - ok
17:58:39.0987 5448  [ 3FA129BFC7808A2BB7681BEAF339FACD ] C:\Windows\System32\Drivers\usbd.sys
17:58:39.0987 5448  C:\Windows\System32\Drivers\usbd.sys - ok
17:58:40.0003 5448  [ 62460A45435A26A334907E3F2EA45611 ] C:\Windows\System32\Drivers\vwifibus.sys
17:58:40.0003 5448  C:\Windows\System32\Drivers\vwifibus.sys - ok
17:58:40.0003 5448  [ 04F5D7396FE6414150FEEDB60FDAC670 ] C:\Windows\System32\Drivers\battc.sys
17:58:40.0003 5448  C:\Windows\System32\Drivers\battc.sys - ok
17:58:40.0003 5448  [ 2DC8538A2260647484A6C921CA837313 ] C:\Windows\System32\Drivers\CmBatt.sys
17:58:40.0003 5448  C:\Windows\System32\Drivers\CmBatt.sys - ok
17:58:40.0003 5448  [ 8E98D21EE06192492A5671A6144D092F ] C:\Windows\System32\Drivers\GEARAspiWDM.sys


17:58:40.0003 5448  C:\Windows\System32\Drivers\GEARAspiWDM.sys - ok
17:58:40.0003 5448  [ E15CDF68DD73423F15D4AC404793AF0D ] C:\Windows\System32\Drivers\intelppm.sys
17:58:40.0003 5448  C:\Windows\System32\Drivers\intelppm.sys - ok
17:58:40.0003 5448  [ 8FBD94B69D6423E20ABCD59D86368B21 ] C:\Windows\System32\Drivers\kbdclass.sys
17:58:40.0003 5448  C:\Windows\System32\Drivers\kbdclass.sys - ok
17:58:40.0018 5448  [ A8080BEBCDB7A16495CE1205921DCAC5 ] C:\Windows\System32\Drivers\kbfiltr.sys
17:58:40.0018 5448  C:\Windows\System32\Drivers\kbfiltr.sys - ok
17:58:40.0018 5448  [ 618446B98C79776654340CE27C73485E ] C:\Windows\System32\Drivers\mouclass.sys
17:58:40.0018 5448  C:\Windows\System32\Drivers\mouclass.sys - ok
17:58:40.0018 5448  [ A9F2301B8D28BB4D887F5AEBB55ACB3A ] C:\Windows\System32\Drivers\AsHIDSwitch64.sys
17:58:40.0018 5448  C:\Windows\System32\Drivers\AsHIDSwitch64.sys - ok
17:58:40.0018 5448  [ 771BE60F1899D8E43CF563162A8A2FBB ] C:\Windows\System32\Drivers\hidclass.sys
17:58:40.0018 5448  C:\Windows\System32\Drivers\hidclass.sys - ok
17:58:40.0018 5448  [ 436188BB139D51E4A763D1D356C90EE3 ] C:\Windows\System32\Drivers\hidparse.sys
17:58:40.0018 5448  C:\Windows\System32\Drivers\hidparse.sys - ok
17:58:40.0018 5448  [ A14D625C5AEE5FFE0F47D1A1D419FAAE ] C:\Windows\System32\Drivers\rasl2tp.sys
17:58:40.0018 5448  C:\Windows\System32\Drivers\rasl2tp.sys - ok
17:58:40.0034 5448  [ 00695B9C2DB6111064499C529E90C042 ] C:\Windows\System32\Drivers\raspppoe.sys
17:58:40.0034 5448  C:\Windows\System32\Drivers\raspppoe.sys - ok
17:58:40.0034 5448  [ 362D47E5B4D67270DE4B8606036F4ADD ] C:\Windows\System32\Drivers\raspptp.sys
17:58:40.0034 5448  C:\Windows\System32\Drivers\raspptp.sys - ok
17:58:40.0034 5448  [ CA7DF5EC95D8DE0DD24BE7FF97369F68 ] C:\Windows\System32\Drivers\rdpbus.sys
17:58:40.0034 5448  C:\Windows\System32\Drivers\rdpbus.sys - ok
17:58:40.0034 5448  [ 4AFD66AAE74FFB5986BC240744DC5FC9 ] C:\Windows\System32\Drivers\swenum.sys
17:58:40.0034 5448  C:\Windows\System32\Drivers\swenum.sys - ok
17:58:40.0034 5448  [ E2A596CACFC6504306CDB7B593B90084 ] C:\Windows\System32\Drivers\wmiacpi.sys
17:58:40.0034 5448  C:\Windows\System32\Drivers\wmiacpi.sys - ok
17:58:40.0034 5448  [ CE6EBC0AD38CC6482D8FBB744FF15CE2 ] C:\Windows\System32\Drivers\ndproxy.sys
17:58:40.0034 5448  C:\Windows\System32\Drivers\ndproxy.sys - ok
17:58:40.0034 5448  [ FBB6794E3BBAD92D66D59D206C1F849F ] C:\Windows\System32\Drivers\usbhub.sys
17:58:40.0034 5448  C:\Windows\System32\Drivers\usbhub.sys - ok
17:58:40.0050 5448  [ F9D9FAA0E2460EDA807C32391E5B6DAE ] C:\Windows\System32\msctf.dll
17:58:40.0050 5448  C:\Windows\System32\msctf.dll - ok
17:58:40.0050 5448  [ 77BA3F9A5E0D3BA8657F14767CC5706D ] C:\Windows\System32\GdiPlus.dll
17:58:40.0050 5448  C:\Windows\System32\GdiPlus.dll - ok
17:58:40.0050 5448  [ C3D51000E8FBEF76BC91E145B0D7FC67 ] C:\Windows\System32\comdlg32.dll
17:58:40.0050 5448  C:\Windows\System32\comdlg32.dll - ok
17:58:40.0050 5448  [ CE1C66AD4D56FCD7301E1EFEA71340EC ] C:\Windows\System32\oleaut32.dll
17:58:40.0050 5448  C:\Windows\System32\oleaut32.dll - ok
17:58:40.0050 5448  [ 7653DB77F0DB2A50392F015321E42E37 ] C:\Windows\System32\setupapi.dll
17:58:40.0050 5448  C:\Windows\System32\setupapi.dll - ok
17:58:40.0050 5448  [ 1E2E99B4FA9A5F0D9934F8B99B528A62 ] C:\Windows\System32\wow64cpu.dll
17:58:40.0050 5448  C:\Windows\System32\wow64cpu.dll - ok
17:58:40.0065 5448  [ B3FB7D980FE7F6FB78D83B87C0D2F7F3 ] C:\Windows\System32\imagehlp.dll
17:58:40.0065 5448  C:\Windows\System32\imagehlp.dll - ok
17:58:40.0065 5448  [ 652467DC0E67CF738972117C09D05571 ] C:\Windows\System32\rpcrt4.dll
17:58:40.0065 5448  C:\Windows\System32\rpcrt4.dll - ok
17:58:40.0065 5448  [ 05C53C1F84F12FBBF5E779963D6756DE ] C:\Windows\System32\urlmon.dll
17:58:40.0065 5448  C:\Windows\System32\urlmon.dll - ok
17:58:40.0065 5448  [ 1D2731630A5437C54217CDE1C4830F81 ] C:\Windows\System32\ole32.dll
17:58:40.0065 5448  C:\Windows\System32\ole32.dll - ok
17:58:40.0081 5448  [ 0341C9184C252000D1AD396C71CFD860 ] C:\Windows\System32\combase.dll
17:58:40.0081 5448  C:\Windows\System32\combase.dll - ok
17:58:40.0081 5448  [ BDE820861D8107C67E182DF66A27074F ] C:\Windows\System32\wininet.dll
17:58:40.0081 5448  C:\Windows\System32\wininet.dll - ok
17:58:40.0081 5448  [ A99AD14F26BDA7D7F27F76BC91B7EED7 ] C:\Windows\System32\user32.dll
17:58:40.0081 5448  C:\Windows\System32\user32.dll - ok
17:58:40.0081 5448  [ B74C50954E234506548CBBF3933AF391 ] C:\Windows\System32\wow64.dll
17:58:40.0081 5448  C:\Windows\System32\wow64.dll - ok
17:58:40.0081 5448  [ DC537ED95888E71BA92ED8D9422188BA ] C:\Windows\System32\iertutil.dll
17:58:40.0081 5448  C:\Windows\System32\iertutil.dll - ok
17:58:40.0081 5448  [ 41AC2B1335317D2F8700E17328F71E0C ] C:\Windows\System32\psapi.dll
17:58:40.0081 5448  C:\Windows\System32\psapi.dll - ok
17:58:40.0096 5448  [ E1B2751640FA7840CC5EB6E78513A632 ] C:\Windows\System32\Wldap32.dll
17:58:40.0096 5448  C:\Windows\System32\Wldap32.dll - ok
17:58:40.0096 5448  [ CA7561AACEE1F578C5360E4C07B71708 ] C:\Windows\System32\gdi32.dll
17:58:40.0096 5448  C:\Windows\System32\gdi32.dll - ok
17:58:40.0096 5448  [ 2AE813F005223E5B39E0C4D7B8314732 ] C:\Windows\System32\wow64win.dll
17:58:40.0096 5448  C:\Windows\System32\wow64win.dll - ok
17:58:40.0096 5448  [ CC81790E0A18535853C33BABBFF15D56 ] C:\Windows\System32\lpk.dll
17:58:40.0096 5448  C:\Windows\System32\lpk.dll - ok
17:58:40.0096 5448  [ 46501A8D9CF0383A104120810E1BABA6 ] C:\Windows\System32\shlwapi.dll
17:58:40.0096 5448  C:\Windows\System32\shlwapi.dll - ok
17:58:40.0112 5448  [ 2E5B349ACDA36C20612795754DB93312 ] C:\Windows\System32\ws2_32.dll
17:58:40.0112 5448  C:\Windows\System32\ws2_32.dll - ok
17:58:40.0112 5448  [ DA66D6D4A0B77D57F5CF449B1231010F ] C:\Windows\System32\imm32.dll
17:58:40.0112 5448  C:\Windows\System32\imm32.dll - ok
17:58:40.0112 5448  [ A74C6A6DA5A35686D7639ACDBD458BFB ] C:\Windows\System32\nsi.dll
17:58:40.0112 5448  C:\Windows\System32\nsi.dll - ok
17:58:40.0112 5448  [ 3C6933B638BB812F4084CF44AE698704 ] C:\Windows\System32\kernel32.dll
17:58:40.0112 5448  C:\Windows\System32\kernel32.dll - ok
17:58:40.0112 5448  [ 6B3F1596000CB33F73E14B6F7D5CFF82 ] C:\Windows\System32\difxapi.dll
17:58:40.0112 5448  C:\Windows\System32\difxapi.dll - ok
17:58:40.0128 5448  [ AECED95ACFDCF96757EDD8D0CFFE34B8 ] C:\Windows\System32\msvcrt.dll
17:58:40.0128 5448  C:\Windows\System32\msvcrt.dll - ok
17:58:40.0128 5448  [ 3A30E09AAA2BB060D39C8FA5E20D4FA3 ] C:\Windows\System32\advapi32.dll
17:58:40.0128 5448  C:\Windows\System32\advapi32.dll - ok
17:58:40.0128 5448  [ 85B5B3797315F714A62AC986FFB2B17E ] C:\Windows\System32\sechost.dll
17:58:40.0128 5448  C:\Windows\System32\sechost.dll - ok
17:58:40.0128 5448  [ 65572D70EB8839462278989E25A37C98 ] C:\Windows\System32\shell32.dll
17:58:40.0128 5448  C:\Windows\System32\shell32.dll - ok
17:58:40.0128 5448  [ 2E3EDE81672653E0C759F0A1135F704F ] C:\Windows\System32\clbcatq.dll
17:58:40.0128 5448  C:\Windows\System32\clbcatq.dll - ok
17:58:40.0128 5448  [ 51B6CB1852B49E150F7E8B8C2F4CB0F7 ] C:\Windows\System32\devobj.dll
17:58:40.0128 5448  C:\Windows\System32\devobj.dll - ok
17:58:40.0143 5448  [ 03E223CC4AE2D2B55E400AD9C55449F6 ] C:\Windows\System32\comctl32.dll
17:58:40.0143 5448  C:\Windows\System32\comctl32.dll - ok
17:58:40.0143 5448  [ EFD55F2C466663F37412B843F6CC55F5 ] C:\Windows\System32\crypt32.dll
17:58:40.0143 5448  C:\Windows\System32\crypt32.dll - ok
17:58:40.0143 5448  [ F37BD0CAA604B6FE5CEC9D0BC05ABAF8 ] C:\Windows\System32\KernelBase.dll
17:58:40.0143 5448  C:\Windows\System32\KernelBase.dll - ok
17:58:40.0143 5448  [ C26780F936820DBB3A1323FC1C09E05F ] C:\Windows\System32\cfgmgr32.dll
17:58:40.0143 5448  C:\Windows\System32\cfgmgr32.dll - ok
17:58:40.0143 5448  [ 996604E515ACE3775D645A4FE0D66D4A ] C:\Windows\System32\wintrust.dll
17:58:40.0143 5448  C:\Windows\System32\wintrust.dll - ok
17:58:40.0143 5448  [ C763F7DC50C70E657DCB164FA9D92085 ] C:\Windows\System32\msasn1.dll
17:58:40.0143 5448  C:\Windows\System32\msasn1.dll - ok
17:58:40.0143 5448  [ 946ECE07334A74373FAFBFAA063E62F2 ] C:\Windows\System32\Drivers\drmk.sys
17:58:40.0143 5448  C:\Windows\System32\Drivers\drmk.sys - ok
17:58:40.0159 5448  [ B4F53BCA4C688FF47F04FA90098F896E ] C:\Windows\System32\Drivers\nvhda64v.sys
17:58:40.0159 5448  C:\Windows\System32\Drivers\nvhda64v.sys - ok
17:58:40.0159 5448  [ D10DAEA91AA8412A323DB8EADA23768A ] C:\Windows\System32\Drivers\portcls.sys
17:58:40.0159 5448  C:\Windows\System32\Drivers\portcls.sys - ok
17:58:40.0159 5448  [ BD321B58C0CC6C8196F8CF4EE226E830 ] C:\Windows\SysWOW64\normaliz.dll
17:58:40.0159 5448  C:\Windows\SysWOW64\normaliz.dll - ok
17:58:40.0159 5448  [ 36D755FFED947A08B1650ACE9644FAB8 ] C:\Windows\SysWOW64\lpk.dll
17:58:40.0159 5448  C:\Windows\SysWOW64\lpk.dll - ok
17:58:40.0159 5448  [ B7A948501424805571BF562BB0BFE31D ] C:\Windows\System32\Drivers\USBHUB3.SYS
17:58:40.0159 5448  C:\Windows\System32\Drivers\USBHUB3.SYS - ok
17:58:40.0159 5448  [ ECFF1FACB0554F10C57426B216254011 ] C:\Windows\System32\Drivers\viahduaa.sys
17:58:40.0159 5448  C:\Windows\System32\Drivers\viahduaa.sys - ok
17:58:40.0159 5448  [ AAF79606645C4D72B47074A0FB597677 ] C:\Windows\System32\win32k.sys
17:58:40.0159 5448  C:\Windows\System32\win32k.sys - ok
17:58:40.0159 5448  [ 1C510F9C2DB7393468EB789A96DAAFA8 ] C:\Windows\System32\csrsrv.dll
17:58:40.0159 5448  C:\Windows\System32\csrsrv.dll - ok
17:58:40.0175 5448  [ 0D9F14739D05F8B8B028B539FC6F1F29 ] C:\Windows\System32\csrss.exe
17:58:40.0175 5448  C:\Windows\System32\csrss.exe - ok
17:58:40.0175 5448  [ DDC1AFBF9DDF880CE9BD3896114D8DED ] C:\Windows\System32\basesrv.dll
17:58:40.0175 5448  C:\Windows\System32\basesrv.dll - ok
17:58:40.0175 5448  [ E9343076AE704D20BB0D01F3AF3EFFEF ] C:\Windows\System32\winsrv.dll
17:58:40.0175 5448  C:\Windows\System32\winsrv.dll - ok
17:58:40.0175 5448  [ 2AF9F0E16D75B8F783A1ACE74EF51C9B ] C:\Windows\System32\Drivers\usbccgp.sys
17:58:40.0175 5448  C:\Windows\System32\Drivers\usbccgp.sys - ok
17:58:40.0175 5448  [ 09799E701B4327097E9F63D3FE221083 ] C:\Windows\System32\Drivers\usbvideo.sys
17:58:40.0175 5448  C:\Windows\System32\Drivers\usbvideo.sys - ok
17:58:40.0175 5448  [ 83EB0BF7E6EBD5B1AAC97F9DBD5EB935 ] C:\Windows\System32\Drivers\monitor.sys
17:58:40.0175 5448  C:\Windows\System32\Drivers\monitor.sys - ok
17:58:40.0175 5448  [ BD7C6949984D19AAA609896B675E7357 ] C:\Windows\System32\sxssrv.dll
17:58:40.0175 5448  C:\Windows\System32\sxssrv.dll - ok
17:58:40.0175 5448  [ F14D77B1B3347ED08272B65A3F80B4CE ] C:\Windows\System32\tsddd.dll
17:58:40.0175 5448  C:\Windows\System32\tsddd.dll - ok
17:58:40.0190 5448  [ FE9AB232B56A12224E8A3F3F9878C9A3 ] C:\Windows\System32\wininit.exe
17:58:40.0190 5448  C:\Windows\System32\wininit.exe - ok
17:58:40.0190 5448  [ 8D46D6195A59F6DBE993385D6B26B5C7 ] C:\Windows\System32\cdd.dll
17:58:40.0190 5448  C:\Windows\System32\cdd.dll - ok
17:58:40.0190 5448  [ FD777FE5B879BC921ED01A647143D709 ] C:\Windows\System32\KBDUS.DLL
17:58:40.0190 5448  C:\Windows\System32\KBDUS.DLL - ok
17:58:40.0190 5448  [ 4C7303709714F589A0809AC82F03CA84 ] C:\Windows\System32\profapi.dll
17:58:40.0190 5448  C:\Windows\System32\profapi.dll - ok
17:58:40.0190 5448  [ 8144BCD1736C3C76978B8378556CA746 ] C:\Windows\System32\wininitext.dll
17:58:40.0190 5448  C:\Windows\System32\wininitext.dll - ok
17:58:40.0190 5448  [ DAFF45EACE818FA560BDA2E0672487F0 ] C:\Windows\System32\atmfd.dll
17:58:40.0190 5448  C:\Windows\System32\atmfd.dll - ok
17:58:40.0206 5448  [ 7679414791657155EDF45D388325BEFE ] C:\Windows\System32\sxs.dll
17:58:40.0206 5448  C:\Windows\System32\sxs.dll - ok
17:58:40.0206 5448  [ BCF2036A0DD579E47C008C133550283E ] C:\Windows\System32\winlogon.exe
17:58:40.0206 5448  C:\Windows\System32\winlogon.exe - ok
17:58:40.0206 5448  [ 10564D7D4FBAABDB826E9D607679C85F ] C:\Windows\System32\WlS0WndH.dll
17:58:40.0206 5448  C:\Windows\System32\WlS0WndH.dll - ok
17:58:40.0206 5448  [ EF72CFB67C73A8751F3BC4F4C98EAD4C ] C:\Windows\System32\powrprof.dll
17:58:40.0206 5448  C:\Windows\System32\powrprof.dll - ok
17:58:40.0206 5448  [ 7F4E2FB897E35952C5B22BE48047FCA8 ] C:\Windows\System32\bcryptprimitives.dll
17:58:40.0206 5448  C:\Windows\System32\bcryptprimitives.dll - ok
17:58:40.0222 5448  [ 2577AEA213B0B70FF5B4E3D180E66B11 ] C:\Windows\System32\cryptbase.dll
17:58:40.0222 5448  C:\Windows\System32\cryptbase.dll - ok
17:58:40.0222 5448  [ D293F2E8CEE73B87B04790D5169C0F25 ] C:\Windows\System32\lsasrv.dll
17:58:40.0222 5448  C:\Windows\System32\lsasrv.dll - ok
17:58:40.0222 5448  [ F702AB6181513303AB0FC8D59E52708B ] C:\Windows\System32\lsass.exe
17:58:40.0222 5448  C:\Windows\System32\lsass.exe - ok
17:58:40.0222 5448  [ 8F226143046435C75C033B0C52E90FFE ] C:\Windows\System32\services.exe
17:58:40.0222 5448  C:\Windows\System32\services.exe - ok
17:58:40.0222 5448  [ 90BEE4B9728DDCF9787100CB8A04815C ] C:\Windows\System32\sspisrv.dll
17:58:40.0222 5448  C:\Windows\System32\sspisrv.dll - ok
17:58:40.0222 5448  [ C0FAB7DDA13CE5593A48B40056AA278D ] C:\Windows\System32\samcli.dll
17:58:40.0222 5448  C:\Windows\System32\samcli.dll - ok
17:58:40.0237 5448  [ 9D7EAFBAD213566D70BAE9A14B847666 ] C:\Windows\System32\winsta.dll
17:58:40.0237 5448  C:\Windows\System32\winsta.dll - ok
17:58:40.0237 5448  [ D1AEFA79EE1EE089D03249BE581D5DD6 ] C:\Windows\System32\sspicli.dll
17:58:40.0237 5448  C:\Windows\System32\sspicli.dll - ok
17:58:40.0237 5448  [ E8001E0F56F0B0F5D204EF865F47372B ] C:\Windows\System32\wtsapi32.dll
17:58:40.0237 5448  C:\Windows\System32\wtsapi32.dll - ok
17:58:40.0237 5448  [ ECFC9AF8D1A6E16223E1B17EA732FA08 ] C:\Windows\System32\scext.dll
17:58:40.0237 5448  C:\Windows\System32\scext.dll - ok
17:58:40.0237 5448  [ 8A6CAF25365FDF2432054C672885917E ] C:\Windows\System32\ubpm.dll
17:58:40.0237 5448  C:\Windows\System32\ubpm.dll - ok
17:58:40.0237 5448  [ 79FE8418CD57C9E2BDDC2FB0CC2BFB05 ] C:\Windows\System32\samsrv.dll
17:58:40.0237 5448  C:\Windows\System32\samsrv.dll - ok
17:58:40.0253 5448  [ D71A882FE7A74F01B92F6A2C74305E45 ] C:\Windows\System32\srvcli.dll
17:58:40.0253 5448  C:\Windows\System32\srvcli.dll - ok
17:58:40.0253 5448  [ DF8111BDC2F35006F0CD471A2CC65665 ] C:\Windows\System32\SPInf.dll
17:58:40.0253 5448  C:\Windows\System32\SPInf.dll - ok
17:58:40.0253 5448  [ E3D5F59826899393970533A8E6AB34EE ] C:\Windows\System32\bcrypt.dll
17:58:40.0253 5448  C:\Windows\System32\bcrypt.dll - ok
17:58:40.0253 5448  [ EA697BA99655FA048BB297EE9A3CCBC7 ] C:\Windows\System32\ncrypt.dll
17:58:40.0253 5448  C:\Windows\System32\ncrypt.dll - ok
17:58:40.0253 5448  [ A6FE1FCAB4AC686D6BD7884B317935F7 ] C:\Windows\System32\ntasn1.dll
17:58:40.0253 5448  C:\Windows\System32\ntasn1.dll - ok
17:58:40.0268 5448  [ 39084062AB7B7CA19DBF0AA4581D833B ] C:\Windows\System32\msprivs.dll
17:58:40.0268 5448  C:\Windows\System32\msprivs.dll - ok
17:58:40.0268 5448  [ 21AA2C2564DDB9F3B83CE322D9E97F9C ] C:\Windows\System32\netjoin.dll
17:58:40.0268 5448  C:\Windows\System32\netjoin.dll - ok
17:58:40.0268 5448  [ 058B0CDA8E19AF2A7E6CFA7604BB8D14 ] C:\Windows\System32\cryptdll.dll
17:58:40.0268 5448  C:\Windows\System32\cryptdll.dll - ok
17:58:40.0268 5448  [ 1654B23B029698077A59469E6AC93A99 ] C:\Windows\System32\kerberos.dll
17:58:40.0268 5448  C:\Windows\System32\kerberos.dll - ok
17:58:40.0268 5448  [ 016EDF8CF3BC0428F9A910637E918808 ] C:\Windows\System32\negoexts.dll
17:58:40.0268 5448  C:\Windows\System32\negoexts.dll - ok
17:58:40.0268 5448  [ 8F9F55C4B857E35552D78A2AAF1BADF9 ] C:\Windows\System32\cryptsp.dll
17:58:40.0268 5448  C:\Windows\System32\cryptsp.dll - ok
17:58:40.0284 5448  [ 1AC307A2F7317007BC382046B3835202 ] C:\Windows\System32\mswsock.dll
17:58:40.0284 5448  C:\Windows\System32\mswsock.dll - ok
17:58:40.0284 5448  [ 4543E23FF678CA9D2C943A45B5B82A17 ] C:\Windows\System32\msv1_0.dll
17:58:40.0284 5448  C:\Windows\System32\msv1_0.dll - ok
17:58:40.0284 5448  [ FDC70965F0FC9DFEBC919627DED5DDFF ] C:\Windows\System32\netlogon.dll
17:58:40.0284 5448  C:\Windows\System32\netlogon.dll - ok
17:58:40.0284 5448  [ B16A14270DB26838B48A06835FDBBFB4 ] C:\Windows\System32\dnsapi.dll
17:58:40.0284 5448  C:\Windows\System32\dnsapi.dll - ok
17:58:40.0300 5448  [ 113E9BB020461D5F9D0C0C6EA29C513F ] C:\Windows\System32\logoncli.dll


17:58:40.0300 5448  C:\Windows\System32\logoncli.dll - ok
17:58:40.0300 5448  [ 72FCEDD4EEE5F1C38F84F0947A26950E ] C:\Windows\System32\userenv.dll
17:58:40.0300 5448  C:\Windows\System32\userenv.dll - ok
17:58:40.0300 5448  [ 6847834F846A4CF1CD4FC86334B4879D ] C:\Windows\System32\schannel.dll
17:58:40.0300 5448  C:\Windows\System32\schannel.dll - ok
17:58:40.0300 5448  [ 0DFEBCD834EF05A112BF90F8A7993212 ] C:\Windows\System32\wdigest.dll
17:58:40.0300 5448  C:\Windows\System32\wdigest.dll - ok
17:58:40.0300 5448  [ BB4FCE5019D973A8BA038A03C7ECECDD ] C:\Windows\System32\rsaenh.dll
17:58:40.0300 5448  C:\Windows\System32\rsaenh.dll - ok
17:58:40.0300 5448  [ CC6D17EDB5B1C73523E4B7D6EB7BBC09 ] C:\Windows\System32\TSpkg.dll
17:58:40.0300 5448  C:\Windows\System32\TSpkg.dll - ok
17:58:40.0300 5448  [ 0059D2032BCA18EBBC03D6D1308892F6 ] C:\Windows\System32\pku2u.dll
17:58:40.0300 5448  C:\Windows\System32\pku2u.dll - ok
17:58:40.0300 5448  [ 8EA33056071F6EB7A97C68E978F01573 ] C:\Windows\System32\credssp.dll
17:58:40.0300 5448  C:\Windows\System32\credssp.dll - ok
17:58:40.0315 5448  [ 2F5E3751FAB4AE994262E2FB9CEDC885 ] C:\Windows\System32\dpapisrv.dll
17:58:40.0315 5448  C:\Windows\System32\dpapisrv.dll - ok
17:58:40.0315 5448  [ D8BEFDDADA7125E5A4DD37EA5AC620D9 ] C:\Windows\System32\efslsaext.dll
17:58:40.0315 5448  C:\Windows\System32\efslsaext.dll - ok
17:58:40.0315 5448  [ 5B92CE37EBE65A5424074E50C48AA52E ] C:\Windows\System32\livessp.dll
17:58:40.0315 5448  C:\Windows\System32\livessp.dll - ok
17:58:40.0315 5448  [ 4F6E1CA672370A9BCAC049CE3AB7F666 ] C:\Windows\System32\scecli.dll
17:58:40.0315 5448  C:\Windows\System32\scecli.dll - ok
17:58:40.0315 5448  [ C0D0F60B47079C2AAD30B836326313F4 ] C:\Windows\System32\scesrv.dll
17:58:40.0315 5448  C:\Windows\System32\scesrv.dll - ok
17:58:40.0315 5448  [ 0D7B278E91F0F07BBC4DFDF634BEFDB5 ] C:\Windows\System32\authz.dll
17:58:40.0315 5448  C:\Windows\System32\authz.dll - ok
17:58:40.0315 5448  [ E17EA93682D88F1CE94CCE2A804FA691 ] C:\Windows\System32\netutils.dll
17:58:40.0315 5448  C:\Windows\System32\netutils.dll - ok
17:58:40.0331 5448  [ 0CE9A21C24E62DFD77E273B56B11C2C7 ] C:\Windows\System32\devrtl.dll
17:58:40.0331 5448  C:\Windows\System32\devrtl.dll - ok
17:58:40.0331 5448  [ EDE27EACE742EE2888C5DD36400A2EC0 ] C:\Windows\System32\svchost.exe
17:58:40.0331 5448  C:\Windows\System32\svchost.exe - ok
17:58:40.0331 5448  [ 799BE46D45D486704CE0F37CA5385262 ] C:\Windows\System32\umpnpmgr.dll
17:58:40.0331 5448  C:\Windows\System32\umpnpmgr.dll - ok
17:58:40.0331 5448  [ F1E067F56373F11EA4B785CAE823740A ] C:\Windows\System32\umpo.dll
17:58:40.0331 5448  C:\Windows\System32\umpo.dll - ok
17:58:40.0331 5448  [ 5C2758C697F6EC1C3771902D5FDF8079 ] C:\Windows\System32\gpapi.dll
17:58:40.0331 5448  C:\Windows\System32\gpapi.dll - ok
17:58:40.0331 5448  [ 2BA42F109B70D10E2F12072AD5BFFE27 ] C:\Windows\System32\hid.dll
17:58:40.0331 5448  C:\Windows\System32\hid.dll - ok
17:58:40.0331 5448  [ 61A8BF961A244C60697814D8CC2741FA ] C:\Windows\System32\pcwum.dll
17:58:40.0331 5448  C:\Windows\System32\pcwum.dll - ok
17:58:40.0331 5448  [ 58CE8F135CC6F3271603A8BB094B1967 ] C:\Windows\System32\umpoext.dll
17:58:40.0331 5448  C:\Windows\System32\umpoext.dll - ok
17:58:40.0347 5448  [ 253507D9BE6B93FC76EA0D9483BD0D80 ] C:\Program Files\Webroot\WRSA.exe
17:58:40.0347 5448  C:\Program Files\Webroot\WRSA.exe - ok
17:58:40.0347 5448  [ 0F38E5BAB0E4CEBB57987967F5505CD7 ] C:\Windows\SysWOW64\ntdll.dll
17:58:40.0347 5448  C:\Windows\SysWOW64\ntdll.dll - ok
17:58:40.0347 5448  [ 1C5F50F98291B7545391BB57C406E615 ] C:\Windows\SysWOW64\kernel32.dll
17:58:40.0347 5448  C:\Windows\SysWOW64\kernel32.dll - ok
17:58:40.0347 5448  [ 5A3BF11D81C7F7EE8EDE9A2430B70878 ] C:\Windows\SysWOW64\KernelBase.dll
17:58:40.0347 5448  C:\Windows\SysWOW64\KernelBase.dll - ok
17:58:40.0347 5448  [ BFEF608CD713A4CD3165D72E2AEB23F2 ] C:\Windows\SysWOW64\advapi32.dll
17:58:40.0347 5448  C:\Windows\SysWOW64\advapi32.dll - ok
17:58:40.0347 5448  [ 7BB3FE507D7143CD54293DA3FB5DF3AB ] C:\Windows\SysWOW64\crypt32.dll
17:58:40.0347 5448  C:\Windows\SysWOW64\crypt32.dll - ok
17:58:40.0347 5448  [ FC320B910DFBDFE314D6321ADCC8D8C7 ] C:\Windows\SysWOW64\ddraw.dll
17:58:40.0347 5448  C:\Windows\SysWOW64\ddraw.dll - ok
17:58:40.0347 5448  [ A97542F6C1B3C99E739E6D2A79C1E1A3 ] C:\Windows\SysWOW64\dsound.dll
17:58:40.0347 5448  C:\Windows\SysWOW64\dsound.dll - ok
17:58:40.0362 5448  [ 05DE4C1D408A5A2E599E2DA0F6B909ED ] C:\Windows\SysWOW64\gdi32.dll
17:58:40.0362 5448  C:\Windows\SysWOW64\gdi32.dll - ok
17:58:40.0362 5448  [ BD483C1AE32D5B21A22CABE74A9D4798 ] C:\Windows\SysWOW64\IPHLPAPI.DLL
17:58:40.0362 5448  C:\Windows\SysWOW64\IPHLPAPI.DLL - ok
17:58:40.0362 5448  [ B59E9810F8A416B9E5354834F26969D4 ] C:\Windows\SysWOW64\msvcrt.dll
17:58:40.0362 5448  C:\Windows\SysWOW64\msvcrt.dll - ok
17:58:40.0362 5448  [ 5C96F30D1144AB5D8F03DFF045B8C791 ] C:\Windows\SysWOW64\netapi32.dll
17:58:40.0362 5448  C:\Windows\SysWOW64\netapi32.dll - ok
17:58:40.0362 5448  [ DDF8C39C085D2E98BD030B3E8A1F40B8 ] C:\Windows\SysWOW64\secur32.dll
17:58:40.0362 5448  C:\Windows\SysWOW64\secur32.dll - ok
17:58:40.0362 5448  [ BA1C3ACD929A71E88B49C2B6E38F92B3 ] C:\Windows\SysWOW64\user32.dll
17:58:40.0362 5448  C:\Windows\SysWOW64\user32.dll - ok
17:58:40.0362 5448  [ E4ED4BC8759829BCEB9CE9CA88A64784 ] C:\Windows\SysWOW64\wininet.dll
17:58:40.0362 5448  C:\Windows\SysWOW64\wininet.dll - ok
17:58:40.0378 5448  [ 4F583ABEF86D3B9DD2C0D24C9E41138E ] C:\Windows\SysWOW64\winspool.drv
17:58:40.0378 5448  C:\Windows\SysWOW64\winspool.drv - ok
17:58:40.0378 5448  [ C28F010F8C6AB4341749E2DEDEAC5D06 ] C:\Windows\SysWOW64\wintrust.dll
17:58:40.0378 5448  C:\Windows\SysWOW64\wintrust.dll - ok
17:58:40.0378 5448  [ E64021308A378207B317A97950B47413 ] C:\Windows\SysWOW64\rpcrt4.dll
17:58:40.0378 5448  C:\Windows\SysWOW64\rpcrt4.dll - ok
17:58:40.0378 5448  [ 496E036F16467D7B7D12E0794E9FB85D ] C:\Windows\SysWOW64\sechost.dll
17:58:40.0378 5448  C:\Windows\SysWOW64\sechost.dll - ok
17:58:40.0378 5448  [ B3CC9EDFD97F7087013A9A47089DF571 ] C:\Windows\SysWOW64\ws2_32.dll
17:58:40.0378 5448  C:\Windows\SysWOW64\ws2_32.dll - ok
17:58:40.0378 5448  [ 4B4E4FE26318D7428B74340B3F67D283 ] C:\Windows\SysWOW64\dciman32.dll
17:58:40.0378 5448  C:\Windows\SysWOW64\dciman32.dll - ok
17:58:40.0378 5448  [ AFAACBE85092FBD8EE7F54CA7FF3F0F1 ] C:\Windows\SysWOW64\msasn1.dll
17:58:40.0378 5448  C:\Windows\SysWOW64\msasn1.dll - ok
17:58:40.0393 5448  [ 6ADA7F192919DD51930A73F364129433 ] C:\Windows\SysWOW64\ole32.dll
17:58:40.0393 5448  C:\Windows\SysWOW64\ole32.dll - ok
17:58:40.0393 5448  [ 8E902EE869004D40F350C02C4E63B0CA ] C:\Windows\SysWOW64\winmm.dll
17:58:40.0393 5448  C:\Windows\SysWOW64\winmm.dll - ok
17:58:40.0393 5448  [ 2E8D3AC86E68F8C08B44DF46585F6BFF ] C:\Windows\SysWOW64\iertutil.dll
17:58:40.0393 5448  C:\Windows\SysWOW64\iertutil.dll - ok
17:58:40.0393 5448  [ 7FFC244DFE77909A13F52CF54B1FE475 ] C:\Windows\SysWOW64\netutils.dll
17:58:40.0393 5448  C:\Windows\SysWOW64\netutils.dll - ok
17:58:40.0393 5448  [ 1AFB56F8A39455ACBAB16A29A45C30AC ] C:\Windows\SysWOW64\nsi.dll
17:58:40.0393 5448  C:\Windows\SysWOW64\nsi.dll - ok
17:58:40.0393 5448  [ 6C20BD6E46D606CB40A13C22D52B90C7 ] C:\Windows\SysWOW64\powrprof.dll
17:58:40.0393 5448  C:\Windows\SysWOW64\powrprof.dll - ok
17:58:40.0393 5448  [ D8533AF2AAE712047A3CCAC9AC98EDC4 ] C:\Windows\SysWOW64\srvcli.dll
17:58:40.0393 5448  C:\Windows\SysWOW64\srvcli.dll - ok
17:58:40.0409 5448  [ 77ADCD16CCEB8A9AD1FD81FC464B1A6B ] C:\Windows\SysWOW64\winnsi.dll
17:58:40.0409 5448  C:\Windows\SysWOW64\winnsi.dll - ok
17:58:40.0409 5448  [ 182DD861AD25CD72AE6F3B54AE7AA8AD ] C:\Windows\SysWOW64\wkscli.dll
17:58:40.0409 5448  C:\Windows\SysWOW64\wkscli.dll - ok
17:58:40.0409 5448  [ 39B721A0FB5F3E9880EE247F04012D8C ] C:\Windows\SysWOW64\sspicli.dll
17:58:40.0409 5448  C:\Windows\SysWOW64\sspicli.dll - ok
17:58:40.0409 5448  [ 828CFD406E60311A9E5414685FA7EEDF ] C:\Windows\SysWOW64\combase.dll
17:58:40.0409 5448  C:\Windows\SysWOW64\combase.dll - ok
17:58:40.0409 5448  [ 5C539C92A7704C80EDB45BFD8D7F600F ] C:\Windows\SysWOW64\winmmbase.dll
17:58:40.0409 5448  C:\Windows\SysWOW64\winmmbase.dll - ok
17:58:40.0409 5448  [ 7DFC3FCD0D5B7FC2F60C344BB384607C ] C:\Windows\SysWOW64\bcryptprimitives.dll
17:58:40.0409 5448  C:\Windows\SysWOW64\bcryptprimitives.dll - ok
17:58:40.0409 5448  [ 0D3C6E1A7EBD401F46E00EDBD61D1A72 ] C:\Windows\SysWOW64\cryptbase.dll
17:58:40.0409 5448  C:\Windows\SysWOW64\cryptbase.dll - ok
17:58:40.0425 5448  [ C3CD50F19851FB3DB7A9418B32E1FEC1 ] C:\Windows\SysWOW64\samcli.dll
17:58:40.0425 5448  C:\Windows\SysWOW64\samcli.dll - ok
17:58:40.0425 5448  [ BCAB91AF8542D6C82A22732C172DE2DB ] C:\Windows\SysWOW64\shell32.dll
17:58:40.0425 5448  C:\Windows\SysWOW64\shell32.dll - ok
17:58:40.0425 5448  [ B8ECF8A56EEF75468F9ABFECE70AF555 ] C:\Windows\SysWOW64\shlwapi.dll
17:58:40.0425 5448  C:\Windows\SysWOW64\shlwapi.dll - ok
17:58:40.0425 5448  [ 85F7AFD9C7DFD6824BAFDC5E5D7D4E86 ] C:\Windows\SysWOW64\SHCore.dll
17:58:40.0425 5448  C:\Windows\SysWOW64\SHCore.dll - ok
17:58:40.0425 5448  [ 7D2306701584AE7B77B8622314B55F78 ] C:\Windows\SysWOW64\profapi.dll
17:58:40.0425 5448  C:\Windows\SysWOW64\profapi.dll - ok
17:58:40.0440 5448  [ E896C75EE5CB36A252B1C908E2DDAB2C ] C:\Windows\SysWOW64\NapiNSP.dll
17:58:40.0440 5448  C:\Windows\SysWOW64\NapiNSP.dll - ok
17:58:40.0440 5448  [ E31D5851E5F789D29DB955C75C3760BA ] C:\Windows\SysWOW64\pnrpnsp.dll
17:58:40.0440 5448  C:\Windows\SysWOW64\pnrpnsp.dll - ok
17:58:40.0440 5448  [ FB69B7E36AC72474C26E7EEB996228A3 ] C:\Windows\SysWOW64\nlaapi.dll
17:58:40.0440 5448  C:\Windows\SysWOW64\nlaapi.dll - ok
17:58:40.0440 5448  [ C317E72447B437F99CC750BD876DF30E ] C:\Windows\SysWOW64\mswsock.dll
17:58:40.0440 5448  C:\Windows\SysWOW64\mswsock.dll - ok
17:58:40.0440 5448  [ BB3717D6FC27A22D0403C825A93BC068 ] C:\Windows\SysWOW64\dnsapi.dll
17:58:40.0440 5448  C:\Windows\SysWOW64\dnsapi.dll - ok
17:58:40.0440 5448  [ BAB337D3F4C2ECDF883B9CAEC41F49FB ] C:\Windows\SysWOW64\winrnr.dll
17:58:40.0440 5448  C:\Windows\SysWOW64\winrnr.dll - ok
17:58:40.0456 5448  [ 631FB40C600849898482875EEA002F16 ] C:\Windows\SysWOW64\wshbth.dll
17:58:40.0456 5448  C:\Windows\SysWOW64\wshbth.dll - ok
17:58:40.0456 5448  [ 40947436A70E0034E41123DF5A0A7702 ] C:\Program Files (x86)\Bonjour\mdnsNSP.dll
17:58:40.0456 5448  C:\Program Files (x86)\Bonjour\mdnsNSP.dll - ok
17:58:40.0456 5448  [ 4B968083851285996B465FFDCB5AE9E8 ] C:\Windows\SysWOW64\FWPUCLNT.DLL
17:58:40.0456 5448  C:\Windows\SysWOW64\FWPUCLNT.DLL - ok
17:58:40.0456 5448  [ EA35B404D87B3A61E7A5FBF6CDA1CF94 ] C:\Windows\SysWOW64\oleaut32.dll
17:58:40.0456 5448  C:\Windows\SysWOW64\oleaut32.dll - ok
17:58:40.0456 5448  [ 7CD424F005ED71204DCB14CF11F1EB0C ] C:\Windows\SysWOW64\rasadhlp.dll
17:58:40.0456 5448  C:\Windows\SysWOW64\rasadhlp.dll - ok
17:58:40.0456 5448  [ 2BDC5D711FA61307CE6190D47C956368 ] C:\Windows\System32\Drivers\luafv.sys
17:58:40.0456 5448  C:\Windows\System32\Drivers\luafv.sys - ok
17:58:40.0472 5448  [ AB886378EEB55C6C75B4F2D14B6C869F ] C:\Windows\System32\Drivers\WUDFPf.sys
17:58:40.0472 5448  C:\Windows\System32\Drivers\WUDFPf.sys - ok
17:58:40.0472 5448  [ 574087EA9105F23FB522A4FDDD5292D9 ] C:\Windows\System32\nvvsvc.exe
17:58:40.0472 5448  C:\Windows\System32\nvvsvc.exe - ok
17:58:40.0472 5448  [ 3588D5D12FF7BFEBF2A4955C36B38EB0 ] C:\Windows\SysWOW64\psapi.dll
17:58:40.0472 5448  C:\Windows\SysWOW64\psapi.dll - ok
17:58:40.0472 5448  [ 715A1F4D2A064DA1DDCAC2533FAF780F ] C:\Windows\SysWOW64\wtsapi32.dll
17:58:40.0472 5448  C:\Windows\SysWOW64\wtsapi32.dll - ok
17:58:40.0472 5448  [ 83C4E13852335E1EAC12AA62A2F01E52 ] C:\Windows\SysWOW64\winsta.dll
17:58:40.0472 5448  C:\Windows\SysWOW64\winsta.dll - ok
17:58:40.0472 5448  [ BF81D887348C8DD9E45B08F3718F7D96 ] C:\Windows\System32\SHCore.dll
17:58:40.0472 5448  C:\Windows\System32\SHCore.dll - ok
17:58:40.0487 5448  [ 78216A10BF8B200890A88D8820F33F14 ] C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
17:58:40.0487 5448  C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe - ok
17:58:40.0487 5448  [ 1E0DFBB85EA37AB2BA780EA9AB522026 ] C:\Windows\SysWOW64\setupapi.dll
17:58:40.0487 5448  C:\Windows\SysWOW64\setupapi.dll - ok
17:58:40.0487 5448  [ 682C3D4982B5375732A4273809365A0A ] C:\Windows\SysWOW64\version.dll
17:58:40.0487 5448  C:\Windows\SysWOW64\version.dll - ok
17:58:40.0487 5448  [ 567612D556BBC4FC98169EA98F6EA480 ] C:\Windows\SysWOW64\cfgmgr32.dll
17:58:40.0487 5448  C:\Windows\SysWOW64\cfgmgr32.dll - ok
17:58:40.0487 5448  [ B2A25F2C3DCCD9858701E0AF13E5EE4D ] C:\Windows\SysWOW64\devobj.dll
17:58:40.0487 5448  C:\Windows\SysWOW64\devobj.dll - ok
17:58:40.0487 5448  [ E0A7D40A14984939CD009B3A21F6F45C ] C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvstres.dll
17:58:40.0487 5448  C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvstres.dll - ok
17:58:40.0487 5448  [ 77895F43790C536DD6776409AA7D7D90 ] C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvwl.dll
17:58:40.0487 5448  C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvwl.dll - ok
17:58:40.0487 5448  [ 1EC6E533C954BDDF2A37E7851A7E58FD ] C:\Windows\System32\rpcss.dll
17:58:40.0487 5448  C:\Windows\System32\rpcss.dll - ok
17:58:40.0503 5448  [ 5192F9A06BC32684ADF938EE16E118D9 ] C:\Windows\SysWOW64\ntmarta.dll
17:58:40.0503 5448  C:\Windows\SysWOW64\ntmarta.dll - ok
17:58:40.0503 5448  [ 4E1278D5040A2D2D274EB98661CBF07E ] C:\Windows\SysWOW64\devrtl.dll
17:58:40.0503 5448  C:\Windows\SysWOW64\devrtl.dll - ok
17:58:40.0503 5448  [ 975398A3D2C1FEA73FC93931978DF354 ] C:\Windows\System32\bisrv.dll
17:58:40.0503 5448  C:\Windows\System32\bisrv.dll - ok
17:58:40.0503 5448  [ 066FE80AE0AC570822EB37970E27EA1D ] C:\Windows\System32\psmsrv.dll
17:58:40.0503 5448  C:\Windows\System32\psmsrv.dll - ok
17:58:40.0503 5448  [ 73F2E030B5C24E4E41401B5F0D59E6FD ] C:\Windows\System32\RpcEpMap.dll
17:58:40.0503 5448  C:\Windows\System32\RpcEpMap.dll - ok
17:58:40.0503 5448  [ 587089B7A93F3DE43832F3DBDD8F4653 ] C:\Windows\System32\RpcRtRemote.dll
17:58:40.0503 5448  C:\Windows\System32\RpcRtRemote.dll - ok
17:58:40.0503 5448  [ A57BA284F5996FFD32DCDBC41A4657DB ] C:\Windows\System32\lsm.dll
17:58:40.0503 5448  C:\Windows\System32\lsm.dll - ok
17:58:40.0503 5448  [ 2383FFF04B78586DB2F78E82583F630A ] C:\Windows\System32\sysntfy.dll
17:58:40.0503 5448  C:\Windows\System32\sysntfy.dll - ok
17:58:40.0503 5448  [ 73BC115720CB5D6F2FF0F7B4A9C58DF1 ] C:\Windows\System32\UXInit.dll
17:58:40.0503 5448  C:\Windows\System32\UXInit.dll - ok
17:58:40.0518 5448  [ E5D1CB25AB7050FE4A4397089BE2AA09 ] C:\Windows\System32\wmsgapi.dll
17:58:40.0518 5448  C:\Windows\System32\wmsgapi.dll - ok
17:58:40.0518 5448  [ 30AAA85A13C5CAA79333D6703FF7F491 ] C:\Windows\SysWOW64\SPInf.dll
17:58:40.0518 5448  C:\Windows\SysWOW64\SPInf.dll - ok
17:58:40.0518 5448  [ 43197AE4DF1F8D5A95C5134C81B05FB9 ] C:\Windows\System32\FirewallAPI.dll
17:58:40.0518 5448  C:\Windows\System32\FirewallAPI.dll - ok
17:58:40.0518 5448  [ CDE105E44DB12F536B05086EA1054555 ] C:\Windows\System32\uxtheme.dll
17:58:40.0518 5448  C:\Windows\System32\uxtheme.dll - ok
17:58:40.0518 5448  [ 58EE457D0D49A95A1E981F6F67FB560F ] C:\Windows\SysWOW64\userenv.dll
17:58:40.0518 5448  C:\Windows\SysWOW64\userenv.dll - ok
17:58:40.0518 5448  [ 327E45388BDAC4A778A2C0040587272F ] C:\Windows\SysWOW64\drvstore.dll
17:58:40.0518 5448  C:\Windows\SysWOW64\drvstore.dll - ok
17:58:40.0518 5448  [ 62F46FB1AED31B289F6A64718A3E5ECF ] C:\Windows\SysWOW64\clbcatq.dll
17:58:40.0518 5448  C:\Windows\SysWOW64\clbcatq.dll - ok
17:58:40.0518 5448  [ 52576C623E5877D6CD73479610A532C2 ] C:\Windows\System32\dpapi.dll
17:58:40.0518 5448  C:\Windows\System32\dpapi.dll - ok
17:58:40.0534 5448  [ BFDD523AB06AB9932B6327E52C6E9AE6 ] C:\Windows\SysWOW64\propsys.dll
17:58:40.0534 5448  C:\Windows\SysWOW64\propsys.dll - ok
17:58:40.0534 5448  [ 2BD1447ECF8A9697AFCF4D7C71D45AA7 ] C:\Windows\SysWOW64\wbem\wbemprox.dll
17:58:40.0534 5448  C:\Windows\SysWOW64\wbem\wbemprox.dll - ok
17:58:40.0534 5448  [ 7D20883F79FF846AEE49678238BE8A7A ] C:\Windows\SysWOW64\cryptsp.dll
17:58:40.0534 5448  C:\Windows\SysWOW64\cryptsp.dll - ok
17:58:40.0534 5448  [ FA0672B09ED377939BB9F3D39895B404 ] C:\Windows\SysWOW64\wbemcomn.dll
17:58:40.0534 5448  C:\Windows\SysWOW64\wbemcomn.dll - ok
17:58:40.0534 5448  [ 860BBE64C0BDC46E8548C8767103CB1A ] C:\Windows\SysWOW64\linkinfo.dll
17:58:40.0534 5448  C:\Windows\SysWOW64\linkinfo.dll - ok
17:58:40.0550 5448  [ 46211947C1F1953B74C33FC80ECD3C6A ] C:\Windows\SysWOW64\rsaenh.dll
17:58:40.0550 5448  C:\Windows\SysWOW64\rsaenh.dll - ok
17:58:40.0550 5448  [ E4B3CE98A6DBE4B609133C045D2C8525 ] C:\Windows\SysWOW64\cscapi.dll
17:58:40.0550 5448  C:\Windows\SysWOW64\cscapi.dll - ok
17:58:40.0550 5448  [ E61429F85351840CB24A1013DD665D81 ] C:\Windows\SysWOW64\ntshrui.dll
17:58:40.0550 5448  C:\Windows\SysWOW64\ntshrui.dll - ok
17:58:40.0550 5448  [ 064FEE2A4EEE419868FE409C4C065A24 ] C:\Windows\System32\authui.dll
17:58:40.0550 5448  C:\Windows\System32\authui.dll - ok
17:58:40.0550 5448  [ 0CBF0748B3F6C978233BBDD1D9D6A023 ] C:\Windows\System32\dwm.exe
17:58:40.0550 5448  C:\Windows\System32\dwm.exe - ok
17:58:40.0550 5448  [ FAD009934DE5E8FA2511109B2349B9B1 ] C:\Windows\System32\LogonUI.exe
17:58:40.0550 5448  C:\Windows\System32\LogonUI.exe - ok
17:58:40.0565 5448  [ 11EA2B2C58E38BDBBEC4298BCEE40A59 ] C:\Windows\System32\wevtsvc.dll
17:58:40.0565 5448  C:\Windows\System32\wevtsvc.dll - ok
17:58:40.0565 5448  [ 849958533A0CB20B5B738CA963A81EAF ] C:\Windows\System32\dwmredir.dll
17:58:40.0565 5448  C:\Windows\System32\dwmredir.dll - ok
17:58:40.0565 5448  [ 80E5C64479952266CCFCF52CBBBE84DC ] C:\Windows\System32\dui70.dll
17:58:40.0565 5448  C:\Windows\System32\dui70.dll - ok
17:58:40.0565 5448  [ 38082C25FC60B10977AC729127A4463D ] C:\Windows\System32\dwmapi.dll
17:58:40.0565 5448  C:\Windows\System32\dwmapi.dll - ok
17:58:40.0581 5448  [ ABA350274707D09D91826ED8EAF886B5 ] C:\Windows\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16384_none_418c2a697189c07f\comctl32.dll
17:58:40.0581 5448  C:\Windows\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16384_none_418c2a697189c07f\comctl32.dll - ok
17:58:40.0581 5448  [ 5264BDA0ACE3D560336AC2EAD0728D41 ] C:\Windows\System32\duser.dll
17:58:40.0581 5448  C:\Windows\System32\duser.dll - ok
17:58:40.0581 5448  [ D39F1714D8944A0AC590B08F5A2DD0E7 ] C:\Windows\System32\SndVolSSO.dll
17:58:40.0581 5448  C:\Windows\System32\SndVolSSO.dll - ok
17:58:40.0581 5448  [ B5FEAE9A8C299EB6D1B6D810CDB4A9A7 ] C:\Windows\System32\MMDevAPI.dll
17:58:40.0581 5448  C:\Windows\System32\MMDevAPI.dll - ok
17:58:40.0581 5448  [ D3F63550DCDA80A2AFB218A86A4EC5F0 ] C:\Windows\System32\BCP47Langs.dll
17:58:40.0581 5448  C:\Windows\System32\BCP47Langs.dll - ok
17:58:40.0581 5448  [ 156B8769D44187090781DFA9FED1AE18 ] C:\Windows\System32\SmartcardCredentialProvider.dll
17:58:40.0581 5448  C:\Windows\System32\SmartcardCredentialProvider.dll - ok
17:58:40.0581 5448  [ 20A19E2D29F86B2B3AA5B2A8B96B3041 ] C:\Windows\System32\DWrite.dll
17:58:40.0581 5448  C:\Windows\System32\DWrite.dll - ok
17:58:40.0581 5448  [ C98F6286818474AB284144A73EC7BA6D ] C:\Windows\System32\cngcredui.dll
17:58:40.0581 5448  C:\Windows\System32\cngcredui.dll - ok
17:58:40.0597 5448  [ 7FA8C13A62CAEB2D84A731030DC1B866 ] C:\Windows\System32\oleacc.dll
17:58:40.0597 5448  C:\Windows\System32\oleacc.dll - ok
17:58:40.0597 5448  [ 439580916E49358F8BE33005E98E4B1F ] C:\Windows\System32\BioCredProv.dll
17:58:40.0597 5448  C:\Windows\System32\BioCredProv.dll - ok
17:58:40.0597 5448  [ 77DA2B3F012A1F0D88F29C612F606F28 ] C:\Windows\System32\winbio.dll
17:58:40.0597 5448  C:\Windows\System32\winbio.dll - ok
17:58:40.0597 5448  [ 855D7BA4DC79E4157651FF5B23B41FD0 ] C:\Windows\System32\UIAnimation.dll
17:58:40.0597 5448  C:\Windows\System32\UIAnimation.dll - ok
17:58:40.0597 5448  [ 65F870703D4DC0FC382C23EB2A609252 ] C:\Windows\System32\dwmcore.dll
17:58:40.0597 5448  C:\Windows\System32\dwmcore.dll - ok
17:58:40.0597 5448  [ B1256D36D6D415FB924A26957A83C2CB ] C:\Windows\System32\dcomp.dll
17:58:40.0597 5448  C:\Windows\System32\dcomp.dll - ok
17:58:40.0612 5448  [ BC172419399E6C479B979988D619B170 ] C:\Windows\SysWOW64\fltLib.dll
17:58:40.0612 5448  C:\Windows\SysWOW64\fltLib.dll - ok
17:58:40.0612 5448  [ C6D71F42C6CB7F3AECFEDC1C0DDE8232 ] C:\Windows\System32\WindowsCodecs.dll
17:58:40.0612 5448  C:\Windows\System32\WindowsCodecs.dll - ok
17:58:40.0612 5448  [ 6CB5B0F8F835B0E69857436405BA6E28 ] C:\Windows\System32\d3d10_1.dll
17:58:40.0612 5448  C:\Windows\System32\d3d10_1.dll - ok
17:58:40.0612 5448  [ 3951ECF063787EB40CD33D2961B39E23 ] C:\Windows\System32\d3d10_1core.dll
17:58:40.0612 5448  C:\Windows\System32\d3d10_1core.dll - ok
17:58:40.0612 5448  [ 02DF949C584B02FAB05868502C578D42 ] C:\Windows\System32\dxgi.dll
17:58:40.0612 5448  C:\Windows\System32\dxgi.dll - ok
17:58:40.0612 5448  [ EAE1E802E8DBA1A8562652A29D520BEF ] C:\Windows\System32\d3d11.dll
17:58:40.0612 5448  C:\Windows\System32\d3d11.dll - ok
17:58:40.0628 5448  [ CE0884D5E82E48F0959BEE3006BEA0E1 ] C:\Windows\System32\certCredProvider.dll
17:58:40.0628 5448  C:\Windows\System32\certCredProvider.dll - ok
17:58:40.0628 5448  [ 1D03DD2BA438D4B3E1A0289738619056 ] C:\Windows\System32\wlidcredprov.dll
17:58:40.0628 5448  C:\Windows\System32\wlidcredprov.dll - ok
17:58:40.0628 5448  [ EC7C1F9882A5E2F4C5391DDC43582110 ] C:\Windows\System32\rasplap.dll
17:58:40.0628 5448  C:\Windows\System32\rasplap.dll - ok
17:58:40.0628 5448  [ 6E578460E165F14D9BA473ED54E3299B ] C:\Windows\System32\rasapi32.dll
17:58:40.0628 5448  C:\Windows\System32\rasapi32.dll - ok
17:58:40.0628 5448  [ 4E251FE2729D6A3FCCC87DC13F823DC2 ] C:\Windows\System32\rtutils.dll


17:58:40.0628 5448  C:\Windows\System32\rtutils.dll - ok
17:58:40.0643 5448  [ 8C988C29CFB9B3673E882B4DA5EEC81D ] C:\Windows\System32\rasman.dll
17:58:40.0643 5448  C:\Windows\System32\rasman.dll - ok
17:58:40.0643 5448  [ 7A4797475ABAD6ECF1BCB08637922ECA ] C:\Windows\SysWOW64\winhttp.dll
17:58:40.0643 5448  C:\Windows\SysWOW64\winhttp.dll - ok
17:58:40.0643 5448  [ BD7849649C6E85118802010F442F67A8 ] C:\Windows\SysWOW64\webio.dll
17:58:40.0643 5448  C:\Windows\SysWOW64\webio.dll - ok
17:58:40.0643 5448  [ 46F09D226A9F0676932657A6761CEB82 ] C:\Windows\System32\d3d10warp.dll
17:58:40.0643 5448  C:\Windows\System32\d3d10warp.dll - ok
17:58:40.0643 5448  [ DF870214B9551EED01CB2F5F4D892A97 ] C:\Windows\System32\nvd3dumx.dll
17:58:40.0643 5448  C:\Windows\System32\nvd3dumx.dll - ok
17:58:40.0643 5448  [ 21E796CF2D1B8A6FAA2347B0070316CE ] C:\Windows\System32\winbrand.dll
17:58:40.0643 5448  C:\Windows\System32\winbrand.dll - ok
17:58:40.0643 5448  [ F2CDA4A446FD4BA2D8BAF456219C6964 ] C:\Windows\System32\UIAutomationCore.dll
17:58:40.0643 5448  C:\Windows\System32\UIAutomationCore.dll - ok
17:58:40.0659 5448  [ 932948AED68916A8FF313050A85396EC ] C:\Windows\System32\nvwgf2umx.dll
17:58:40.0659 5448  C:\Windows\System32\nvwgf2umx.dll - ok
17:58:40.0659 5448  [ 5DCBA1A3AE7150D2B71347BDD08639ED ] C:\Windows\System32\version.dll
17:58:40.0659 5448  C:\Windows\System32\version.dll - ok
17:58:40.0659 5448  [ 519A6F672FFF56B7D8EE8C730CEC8ECD ] C:\Windows\System32\themeservice.dll
17:58:40.0659 5448  C:\Windows\System32\themeservice.dll - ok
17:58:40.0659 5448  [ 5358678C6370F2ADC5291849F6503262 ] C:\Windows\System32\gpsvc.dll
17:58:40.0659 5448  C:\Windows\System32\gpsvc.dll - ok
17:58:40.0659 5448  [ F0C56FAF38A244599CBC173D581E27FC ] C:\Windows\System32\nlaapi.dll
17:58:40.0659 5448  C:\Windows\System32\nlaapi.dll - ok
17:58:40.0659 5448  [ 91E1A704990CEE32FFFBDF8AB8C258E4 ] C:\Windows\System32\dsrole.dll
17:58:40.0659 5448  C:\Windows\System32\dsrole.dll - ok
17:58:40.0659 5448  [ 4B249FD266D2FF17EE8809EB46A173A6 ] C:\Windows\System32\taskschd.dll
17:58:40.0659 5448  C:\Windows\System32\taskschd.dll - ok
17:58:40.0659 5448  [ 7D0D943B89CE1199EEBD05CD78D5D313 ] C:\Program Files\NVIDIA Corporation\Display\nvxdbat.dll
17:58:40.0659 5448  C:\Program Files\NVIDIA Corporation\Display\nvxdbat.dll - ok
17:58:40.0675 5448  [ A3EAF213C26779DE69E269603FF5BDD0 ] C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
17:58:40.0675 5448  C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe - ok
17:58:40.0675 5448  [ 63AA7097E18EB8086C35748DD39D4DF2 ] C:\Windows\System32\nvsvc64.dll
17:58:40.0675 5448  C:\Windows\System32\nvsvc64.dll - ok
17:58:40.0675 5448  [ 478672840D9FB490D01221AE0F85D81A ] C:\Program Files\NVIDIA Corporation\Display\nvxdapix.dll
17:58:40.0675 5448  C:\Program Files\NVIDIA Corporation\Display\nvxdapix.dll - ok
17:58:40.0675 5448  [ D90968F95B7304F28988572C3877330B ] C:\Windows\System32\mscms.dll
17:58:40.0675 5448  C:\Windows\System32\mscms.dll - ok
17:58:40.0675 5448  [ FA87CCCD1B6FCAD419BE102FAC940BCD ] C:\Program Files\NVIDIA Corporation\Display\nvui.dll
17:58:40.0675 5448  C:\Program Files\NVIDIA Corporation\Display\nvui.dll - ok
17:58:40.0675 5448  [ 0E658D67C4A79294BC7BBBF4656F0794 ] C:\Windows\System32\winmm.dll
17:58:40.0675 5448  C:\Windows\System32\winmm.dll - ok
17:58:40.0675 5448  [ AF433565E5E02857C5D0AFFD932AF150 ] C:\Windows\System32\msimg32.dll
17:58:40.0675 5448  C:\Windows\System32\msimg32.dll - ok
17:58:40.0675 5448  [ 15343AA01C41F7AB4FE549499159DB6F ] C:\Windows\System32\winmmbase.dll
17:58:40.0675 5448  C:\Windows\System32\winmmbase.dll - ok
17:58:40.0690 5448  [ 77BA3F9A5E0D3BA8657F14767CC5706D ] C:\Windows\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16502_none_726f4846cc233cf5\GdiPlus.dll
17:58:40.0690 5448  C:\Windows\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16502_none_726f4846cc233cf5\GdiPlus.dll - ok
17:58:40.0690 5448  [ AFE9464D80CFE0B0ECFE906C8A5996A0 ] C:\Windows\System32\winspool.drv
17:58:40.0690 5448  C:\Windows\System32\winspool.drv - ok
17:58:40.0690 5448  [ 429E8502AD2227CF88F8840FC5BD590D ] C:\Windows\System32\profsvc.dll
17:58:40.0690 5448  C:\Windows\System32\profsvc.dll - ok
17:58:40.0690 5448  [ F9E01C2D9F8BC049E04CF5DC24A5F638 ] C:\Windows\System32\es.dll
17:58:40.0690 5448  C:\Windows\System32\es.dll - ok
17:58:40.0690 5448  [ 91F2CB5172B120F7BE0645882D4427C8 ] C:\Windows\System32\profsvcext.dll
17:58:40.0690 5448  C:\Windows\System32\profsvcext.dll - ok
17:58:40.0690 5448  [ D70E930E67968D0F849333841DDBA02B ] C:\Windows\System32\netapi32.dll
17:58:40.0690 5448  C:\Windows\System32\netapi32.dll - ok
17:58:40.0690 5448  [ BB6591EA99CBCD17989CBF04214DD7E8 ] C:\Windows\System32\ntdsapi.dll
17:58:40.0690 5448  C:\Windows\System32\ntdsapi.dll - ok
17:58:40.0690 5448  [ F235600515AD6CBE06DB440FBB7C8E01 ] C:\Windows\System32\atl.dll
17:58:40.0690 5448  C:\Windows\System32\atl.dll - ok
17:58:40.0706 5448  [ 4A945F0177124D653B5EF975D11DA9F8 ] C:\Windows\System32\dfscli.dll
17:58:40.0706 5448  C:\Windows\System32\dfscli.dll - ok
17:58:40.0706 5448  [ 9C51620998F0763039DFA6BF68E475ED ] C:\Windows\System32\Sens.dll
17:58:40.0706 5448  C:\Windows\System32\Sens.dll - ok
17:58:40.0706 5448  [ FC414C8C91848FACFD6514AEF88A5ABA ] C:\Windows\System32\wkscli.dll
17:58:40.0706 5448  C:\Windows\System32\wkscli.dll - ok
17:58:40.0706 5448  [ 810ED88782952228AF9C0985FB7D259E ] C:\Windows\System32\AudioEndpointBuilder.dll
17:58:40.0706 5448  C:\Windows\System32\AudioEndpointBuilder.dll - ok
17:58:40.0706 5448  [ 0BCDC0FF11B984162B0CF0FF6E9E0146 ] C:\Windows\System32\FntCache.dll
17:58:40.0706 5448  C:\Windows\System32\FntCache.dll - ok
17:58:40.0706 5448  [ EEE908BE7143FCA48CF0CB87214E2AB8 ] C:\Windows\System32\mmcss.dll
17:58:40.0706 5448  C:\Windows\System32\mmcss.dll - ok
17:58:40.0722 5448  [ 37843E6888569097918544F0338BC19D ] C:\Windows\System32\avrt.dll
17:58:40.0722 5448  C:\Windows\System32\avrt.dll - ok
17:58:40.0722 5448  [ 25CA8B87479A374919563B3EE7136F32 ] C:\Windows\System32\audiosrv.dll
17:58:40.0722 5448  C:\Windows\System32\audiosrv.dll - ok
17:58:40.0722 5448  [ B20F051B03A966392364C83F009F7D17 ] C:\Windows\System32\WUDFSvc.dll
17:58:40.0722 5448  C:\Windows\System32\WUDFSvc.dll - ok
17:58:40.0722 5448  [ B1DF2D87DC8BF6072699AC8301B37796 ] C:\Windows\System32\WUDFPlatform.dll
17:58:40.0722 5448  C:\Windows\System32\WUDFPlatform.dll - ok
17:58:40.0722 5448  [ 103E609A08474C43C04FB064440FCAE7 ] C:\Windows\System32\shacct.dll
17:58:40.0722 5448  C:\Windows\System32\shacct.dll - ok
17:58:40.0722 5448  [ CEEFD29FC551F289810B0B9381B321DC ] C:\Windows\System32\Drivers\lltdio.sys
17:58:40.0722 5448  C:\Windows\System32\Drivers\lltdio.sys - ok
17:58:40.0737 5448  [ A22411CA36466FC676D6805B3196726E ] C:\Windows\System32\samlib.dll
17:58:40.0737 5448  C:\Windows\System32\samlib.dll - ok
17:58:40.0737 5448  [ 43D7388A90A4C6EA346A4D6FF0377479 ] C:\Windows\System32\Drivers\nwifi.sys
17:58:40.0737 5448  C:\Windows\System32\Drivers\nwifi.sys - ok
17:58:40.0737 5448  [ BA47A3E78521EC9EA4341F6FA8A75EC9 ] C:\Windows\System32\propsys.dll
17:58:40.0737 5448  C:\Windows\System32\propsys.dll - ok
17:58:40.0737 5448  [ 79AB68BB3FFF974AD4F41FA559F4EC67 ] C:\Windows\System32\Drivers\ndisuio.sys
17:58:40.0737 5448  C:\Windows\System32\Drivers\ndisuio.sys - ok
17:58:40.0737 5448  [ E04E770DD198B9399640717145E79EBF ] C:\Windows\System32\Drivers\rspndr.sys
17:58:40.0737 5448  C:\Windows\System32\Drivers\rspndr.sys - ok
17:58:40.0753 5448  [ 2C71C009DFAC4C6EE7795C6C042090B4 ] C:\Windows\System32\slc.dll
17:58:40.0753 5448  C:\Windows\System32\slc.dll - ok
17:58:40.0753 5448  [ 9C09F1D54C7F391B1C3D7440AF30720A ] C:\Windows\System32\InputSwitch.dll
17:58:40.0753 5448  C:\Windows\System32\InputSwitch.dll - ok
17:58:40.0753 5448  [ 5A2F7F1CBC2E631A497DAD16164E06D2 ] C:\Windows\System32\lmhsvc.dll
17:58:40.0753 5448  C:\Windows\System32\lmhsvc.dll - ok
17:58:40.0753 5448  [ 832B5FDF0B5577713FD7F2465FCD0ACE ] C:\Windows\System32\nsisvc.dll
17:58:40.0753 5448  C:\Windows\System32\nsisvc.dll - ok
17:58:40.0753 5448  [ 04A9D55BDCD79EBB2F32D91FE5946C28 ] C:\Windows\System32\IPHLPAPI.DLL
17:58:40.0753 5448  C:\Windows\System32\IPHLPAPI.DLL - ok
17:58:40.0753 5448  [ 066B9710B36AB550E01EEFCA52155968 ] C:\Windows\System32\dnsrslvr.dll
17:58:40.0753 5448  C:\Windows\System32\dnsrslvr.dll - ok
17:58:40.0768 5448  [ 0911A3B2DE545EA2498E560D745B7E71 ] C:\Windows\System32\winnsi.dll
17:58:40.0768 5448  C:\Windows\System32\winnsi.dll - ok
17:58:40.0768 5448  [ F9D935D60C397809FC6E1E0676F4AC6E ] C:\Windows\System32\wuaext.dll
17:58:40.0768 5448  C:\Windows\System32\wuaext.dll - ok
17:58:40.0768 5448  [ 53B518707ECB8132E173ADAF42D68054 ] C:\Windows\System32\Windows.UI.Immersive.dll
17:58:40.0768 5448  C:\Windows\System32\Windows.UI.Immersive.dll - ok
17:58:40.0768 5448  [ 536198D1FACCF6C6F5A4D71E7EA70039 ] C:\Windows\System32\FWPUCLNT.DLL
17:58:40.0768 5448  C:\Windows\System32\FWPUCLNT.DLL - ok
17:58:40.0768 5448  [ F0E5C2AACB8DFD8EF2F7A67A12CCDA5D ] C:\Windows\System32\IDStore.dll
17:58:40.0768 5448  C:\Windows\System32\IDStore.dll - ok
17:58:40.0768 5448  [ F28C7A1A04C73FD099CBA2441B07842D ] C:\Windows\System32\nrpsrv.dll
17:58:40.0768 5448  C:\Windows\System32\nrpsrv.dll - ok
17:58:40.0784 5448  [ 137BBCFB2080C5F6F4E5C4EB6314D97A ] C:\Windows\System32\dnsext.dll
17:58:40.0784 5448  C:\Windows\System32\dnsext.dll - ok
17:58:40.0784 5448  [ 2640C2240F9B6529AE779D83E8FF2127 ] C:\Windows\System32\apphelp.dll
17:58:40.0784 5448  C:\Windows\System32\apphelp.dll - ok
17:58:40.0784 5448  [ 554F73A015A84FA8B5F23635FE016314 ] C:\Windows\System32\wlidres.dll
17:58:40.0784 5448  C:\Windows\System32\wlidres.dll - ok
17:58:40.0784 5448  [ EB87F1EFE1376CE0283635563026F9E0 ] C:\Windows\System32\dhcpcsvc6.dll
17:58:40.0784 5448  C:\Windows\System32\dhcpcsvc6.dll - ok
17:58:40.0784 5448  [ D9C1E82651BF19C6FF69CEC6FD400124 ] C:\Windows\System32\wcmsvc.dll
17:58:40.0784 5448  C:\Windows\System32\wcmsvc.dll - ok
17:58:40.0784 5448  [ F38DD05686AC8597BCD38C2F324900B9 ] C:\Windows\System32\AuthExt.dll
17:58:40.0784 5448  C:\Windows\System32\AuthExt.dll - ok
17:58:40.0784 5448  [ 8341C75945D37A0CA7642A47B7E79260 ] C:\Windows\System32\dhcpcsvc.dll
17:58:40.0784 5448  C:\Windows\System32\dhcpcsvc.dll - ok
17:58:40.0784 5448  [ 6351724B8FA0255C2DBD970297F00B93 ] C:\Windows\System32\wlansvc.dll
17:58:40.0784 5448  C:\Windows\System32\wlansvc.dll - ok
17:58:40.0800 5448  [ BC484B89C153942BF5D8BFBE832274E1 ] C:\Windows\System32\batmeter.dll
17:58:40.0800 5448  C:\Windows\System32\batmeter.dll - ok
17:58:40.0800 5448  [ 028A5E6B0ABDD7B2D32745C5F1D8F711 ] C:\Windows\System32\wcmcsp.dll
17:58:40.0800 5448  C:\Windows\System32\wcmcsp.dll - ok
17:58:40.0800 5448  [ E2B8F9FE6FA401AEB0BDFF8ED61A7568 ] C:\Windows\System32\wmiclnt.dll
17:58:40.0800 5448  C:\Windows\System32\wmiclnt.dll - ok
17:58:40.0800 5448  [ 9E0E72222264745ADEB0E5AC680B0ED6 ] C:\Windows\System32\dhcpcore.dll
17:58:40.0800 5448  C:\Windows\System32\dhcpcore.dll - ok
17:58:40.0815 5448  [ ACB80C69E775A1EA1D0500CE8C72FD69 ] C:\Windows\System32\dhcpcore6.dll
17:58:40.0815 5448  C:\Windows\System32\dhcpcore6.dll - ok
17:58:40.0815 5448  [ 7D6BDD2A339080EFA03D9EB39398F4E6 ] C:\Windows\System32\wlanmsm.dll
17:58:40.0815 5448  C:\Windows\System32\wlanmsm.dll - ok
17:58:40.0815 5448  [ B938289D040F341BA457C7F27B507A7F ] C:\Windows\System32\wdmaud.drv
17:58:40.0815 5448  C:\Windows\System32\wdmaud.drv - ok
17:58:40.0815 5448  [ 81ECD8768D3E4AD61DB7EE27401A25E9 ] C:\Windows\System32\wevtapi.dll
17:58:40.0815 5448  C:\Windows\System32\wevtapi.dll - ok
17:58:40.0815 5448  [ 7DBFCB05BCD03500D6B877C54FEE4971 ] C:\Windows\System32\ksuser.dll
17:58:40.0815 5448  C:\Windows\System32\ksuser.dll - ok
17:58:40.0815 5448  [ 7FD32D1A763D8BDF3A142C99FC21D232 ] C:\Windows\System32\AudioSes.dll
17:58:40.0815 5448  C:\Windows\System32\AudioSes.dll - ok
17:58:40.0831 5448  [ 72EC1DEF102304EE8C2E47566328F035 ] C:\Windows\System32\onex.dll
17:58:40.0831 5448  C:\Windows\System32\onex.dll - ok
17:58:40.0831 5448  [ 802EEA1D3BB0D99892DF2DCE5B5610DE ] C:\Windows\System32\msacm32.dll
17:58:40.0831 5448  C:\Windows\System32\msacm32.dll - ok
17:58:40.0831 5448  [ 714F76BF1B594CD7D38AF1515F6F25E5 ] C:\Windows\System32\msacm32.drv
17:58:40.0831 5448  C:\Windows\System32\msacm32.drv - ok
17:58:40.0831 5448  [ E1A338F5FFCCF448321F311134CE29BD ] C:\Windows\System32\nvapi64.dll
17:58:40.0831 5448  C:\Windows\System32\nvapi64.dll - ok
17:58:40.0831 5448  [ 1BA72303004CC0C35217722D703B8311 ] C:\Windows\System32\midimap.dll
17:58:40.0831 5448  C:\Windows\System32\midimap.dll - ok
17:58:40.0831 5448  [ F61538DADA4EF556BEA8F3AEF12A7E6B ] C:\Windows\System32\audiodg.exe
17:58:40.0831 5448  C:\Windows\System32\audiodg.exe - ok
17:58:40.0831 5448  [ 14D785DFBE808D9CF7B8C06884730B1D ] C:\Windows\System32\wlansec.dll
17:58:40.0831 5448  C:\Windows\System32\wlansec.dll - ok
17:58:40.0847 5448  [ 1ACDF222FD53B1DB13E6272676660482 ] C:\Windows\System32\nvsvcr.dll
17:58:40.0847 5448  C:\Windows\System32\nvsvcr.dll - ok
17:58:40.0847 5448  [ AB168DB41491E3D043A99110F1E148DE ] C:\Windows\System32\AudioEng.dll
17:58:40.0847 5448  C:\Windows\System32\AudioEng.dll - ok
17:58:40.0847 5448  [ 6246774331042E74F7E1ADA504C24063 ] C:\Windows\System32\AUDIOKSE.dll
17:58:40.0847 5448  C:\Windows\System32\AUDIOKSE.dll - ok
17:58:40.0847 5448  [ 6684C72C745F0E5E385EEAFF3C15538F ] C:\Windows\System32\eappprxy.dll
17:58:40.0847 5448  C:\Windows\System32\eappprxy.dll - ok
17:58:40.0847 5448  [ A606855FE52504233FFDE3F5A17BE82E ] C:\Program Files\NVIDIA Corporation\Display\nvxdplcy.dll
17:58:40.0847 5448  C:\Program Files\NVIDIA Corporation\Display\nvxdplcy.dll - ok
17:58:40.0847 5448  [ C0D3EE2E78D6927ECCDDFE2493E4C053 ] C:\Windows\System32\nvcpl.dll
17:58:40.0847 5448  C:\Windows\System32\nvcpl.dll - ok
17:58:40.0847 5448  [ DF500BF95E294C040292DCC37935E501 ] C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPI64.dll
17:58:40.0847 5448  C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPI64.dll - ok
17:58:40.0847 5448  [ AB74105622BBE9EE069AC56666DBC696 ] C:\Windows\System32\Windows.Globalization.dll
17:58:40.0847 5448  C:\Windows\System32\Windows.Globalization.dll - ok
17:58:40.0862 5448  [ 7193BCC348293B559F054D63ECCC910A ] C:\Windows\System32\VIASysFx.dll
17:58:40.0862 5448  C:\Windows\System32\VIASysFx.dll - ok
17:58:40.0862 5448  [ 36E419B92BFBF76438B8C0C4DD28B9E6 ] C:\Windows\System32\msxml6.dll
17:58:40.0862 5448  C:\Windows\System32\msxml6.dll - ok
17:58:40.0862 5448  [ D142894EBEFD276A5CFE876884A6E3F9 ] C:\Windows\System32\uDWM.dll
17:58:40.0862 5448  C:\Windows\System32\uDWM.dll - ok
17:58:40.0862 5448  [ 185C71A41C02724A56BA625578651817 ] C:\Windows\System32\NetworkStatus.dll
17:58:40.0862 5448  C:\Windows\System32\NetworkStatus.dll - ok
17:58:40.0862 5448  [ 326655F0FFE3AE1656D2597CEFDD761D ] C:\Windows\System32\ViaMicArrayAPO.dll
17:58:40.0862 5448  C:\Windows\System32\ViaMicArrayAPO.dll - ok
17:58:40.0862 5448  [ 151A9FFA90027B9E636F99295D9672AB ] C:\Windows\System32\deviceaccess.dll
17:58:40.0862 5448  C:\Windows\System32\deviceaccess.dll - ok
17:58:40.0862 5448  [ DC774C3671FBD6FD176864AF0EBA404E ] C:\Windows\System32\d2d1.dll
17:58:40.0862 5448  C:\Windows\System32\d2d1.dll - ok
17:58:40.0862 5448  [ 5C32C180AB29655EFDFF6B7F91271775 ] C:\Windows\System32\msftedit.dll
17:58:40.0862 5448  C:\Windows\System32\msftedit.dll - ok
17:58:40.0878 5448  [ 15E300200794A8FC38589B44A0B314D6 ] C:\Windows\System32\xmllite.dll
17:58:40.0878 5448  C:\Windows\System32\xmllite.dll - ok
17:58:40.0878 5448  [ D9AEEA13463C68BC9506342A7D15CBDA ] C:\Windows\System32\wlgpclnt.dll
17:58:40.0878 5448  C:\Windows\System32\wlgpclnt.dll - ok
17:58:40.0878 5448  [ 193F8B5C8E94D2F4512868135CDB3B1A ] C:\Windows\System32\l2gpstore.dll
17:58:40.0878 5448  C:\Windows\System32\l2gpstore.dll - ok
17:58:40.0878 5448  [ 047DB56D72FDC16114606B1A6576904B ] C:\Windows\System32\wlanapi.dll
17:58:40.0878 5448  C:\Windows\System32\wlanapi.dll - ok
17:58:40.0878 5448  [ FA713019412C061385F09BD373BF747A ] C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe
17:58:40.0878 5448  C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe - ok
17:58:40.0878 5448  [ 47AC075FC4DE7DCF690E861B9B2C22A9 ] C:\Windows\System32\ninput.dll
17:58:40.0878 5448  C:\Windows\System32\ninput.dll - ok
17:58:40.0878 5448  [ 3E5177CAE5C4325C49345B4D48626856 ] C:\Windows\System32\SubscriptionMgr.dll
17:58:40.0878 5448  C:\Windows\System32\SubscriptionMgr.dll - ok
17:58:40.0893 5448  [ 59FB8ADC92BF41345BD0034F02187C0E ] C:\Windows\System32\wlanhlp.dll
17:58:40.0893 5448  C:\Windows\System32\wlanhlp.dll - ok
17:58:40.0893 5448  [ 4C016FD76ED5C05E84CA8CAB77993961 ] C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\ASMMAP64.sys
17:58:40.0893 5448  C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\ASMMAP64.sys - ok
17:58:40.0893 5448  [ 9654FFB12A3A27E1F54E7A54DFF7216E ] C:\Windows\SysWOW64\WRusr.dll
17:58:40.0893 5448  C:\Windows\SysWOW64\WRusr.dll - ok
17:58:40.0893 5448  [ 0296CECDD7F61A4B92819797D14D5A83 ] C:\Windows\SysWOW64\urlmon.dll
17:58:40.0893 5448  C:\Windows\SysWOW64\urlmon.dll - ok
17:58:40.0893 5448  [ DBC598E47E7A382E60E2A4745D41FEF9 ] C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
17:58:40.0893 5448  C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe - ok
17:58:40.0893 5448  [ 04E866855FC3282BFEC25E8B6703FFEE ] C:\Windows\System32\netcfgx.dll
17:58:40.0893 5448  C:\Windows\System32\netcfgx.dll - ok
17:58:40.0893 5448  [ A77F3ABE13FCC698511E5DEC7ACEBD5F ] C:\Windows\System32\shsvcs.dll
17:58:40.0893 5448  C:\Windows\System32\shsvcs.dll - ok
17:58:40.0893 5448  [ 41E843174754F87D86EF0FBF7F60DB0D ] C:\Windows\SysWOW64\oleacc.dll
17:58:40.0893 5448  C:\Windows\SysWOW64\oleacc.dll - ok
17:58:40.0909 5448  [ 6FA9D09428E56C11E01066CAF2FB5031 ] C:\Windows\SysWOW64\msimg32.dll
17:58:40.0909 5448  C:\Windows\SysWOW64\msimg32.dll - ok
17:58:40.0909 5448  [ EB4EE894AF86408776C6FD03376DEA29 ] C:\Windows\System32\fveapi.dll
17:58:40.0909 5448  C:\Windows\System32\fveapi.dll - ok
17:58:40.0909 5448  [ 73FA1A41A97A5C34ADC03B3577FF1A86 ] C:\Windows\System32\Drivers\vwifimp.sys
17:58:40.0909 5448  C:\Windows\System32\Drivers\vwifimp.sys - ok
17:58:40.0909 5448  [ 467497DF10CF8D4014BD25CCE987EA84 ] C:\Windows\System32\wcmapi.dll
17:58:40.0909 5448  C:\Windows\System32\wcmapi.dll - ok
17:58:40.0909 5448  [ 8FF250BD9B3AC4D9D3F325570F901F36 ] C:\Windows\System32\fvecerts.dll
17:58:40.0909 5448  C:\Windows\System32\fvecerts.dll - ok
17:58:40.0909 5448  [ EDCDF4DB82EF825B94B190D544C8C58B ] C:\Windows\System32\schedsvc.dll
17:58:40.0909 5448  C:\Windows\System32\schedsvc.dll - ok
17:58:40.0925 5448  [ D058F369A791DD5B4DF8E7C18C0EB282 ] C:\Windows\System32\ktmw32.dll
17:58:40.0925 5448  C:\Windows\System32\ktmw32.dll - ok
17:58:40.0925 5448  [ 599FCE13B819BA7D2D4D4E9C5AD08002 ] C:\Windows\System32\ProximityService.dll
17:58:40.0925 5448  C:\Windows\System32\ProximityService.dll - ok
17:58:40.0925 5448  [ AA221DD533C7B0897B90B92AFFA45A7E ] C:\Windows\System32\taskcomp.dll
17:58:40.0925 5448  C:\Windows\System32\taskcomp.dll - ok
17:58:40.0925 5448  [ 406388E840C631E3C338F4E3551F791C ] C:\Windows\System32\ProximityCommon.dll
17:58:40.0925 5448  C:\Windows\System32\ProximityCommon.dll - ok
17:58:40.0925 5448  [ 3DB7FFC313BD190D0E64931302776BAF ] C:\Windows\System32\ntmarta.dll
17:58:40.0925 5448  C:\Windows\System32\ntmarta.dll - ok
17:58:40.0925 5448  [ 29CB98187BB5711F7759540976D295FC ] C:\Windows\System32\Drivers\http.sys
17:58:40.0925 5448  C:\Windows\System32\Drivers\http.sys - ok
17:58:40.0925 5448  [ 4A627D948C498368B2F65A5312455520 ] C:\Windows\System32\taskhost.exe
17:58:40.0925 5448  C:\Windows\System32\taskhost.exe - ok
17:58:40.0940 5448  [ 3F215BF2D4D8D6756298B25B579772C2 ] C:\Windows\System32\spoolsv.exe
17:58:40.0940 5448  C:\Windows\System32\spoolsv.exe - ok
17:58:40.0940 5448  [ 14316954FCE79C9DE5A0AFF9D42C83AA ] C:\Windows\System32\SCardSvr.dll
17:58:40.0940 5448  C:\Windows\System32\SCardSvr.dll - ok
17:58:40.0940 5448  [ 9E6A544F465C582AB42444A217CF04DC ] C:\Windows\System32\BFE.DLL
17:58:40.0940 5448  C:\Windows\System32\BFE.DLL - ok
17:58:40.0940 5448  [ B17AC10B47C7FCB44D22A1F06415840E ] C:\Windows\System32\Drivers\bowser.sys
17:58:40.0940 5448  C:\Windows\System32\Drivers\bowser.sys - ok
17:58:40.0940 5448  [ 877D60D6E4156EC4A2E0B6871D41BED9 ] C:\Windows\System32\Drivers\mrxsmb.sys
17:58:40.0940 5448  C:\Windows\System32\Drivers\mrxsmb.sys - ok
17:58:40.0940 5448  [ 06D5F2FA3C61E8EA91648EA8E9F99FD3 ] C:\Windows\System32\Drivers\mrxsmb10.sys
17:58:40.0940 5448  C:\Windows\System32\Drivers\mrxsmb10.sys - ok
17:58:40.0940 5448  [ E078446D4B8622AA6030C7B8A1A08962 ] C:\Windows\System32\Drivers\mrxsmb20.sys
17:58:40.0940 5448  C:\Windows\System32\Drivers\mrxsmb20.sys - ok
17:58:40.0956 5448  [ 16650912BE5A94B40E0B3B4C39652B56 ] C:\Windows\System32\wkssvc.dll
17:58:40.0956 5448  C:\Windows\System32\wkssvc.dll - ok
17:58:40.0956 5448  [ 4FE5C6D40664AE07BE5105874357D2ED ] C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
17:58:40.0956 5448  C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe - ok
17:58:40.0956 5448  [ 12BC4D22DD8280FED7D3004E099DC499 ] C:\Windows\WinSxS\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6910_none_d089c358442de345\msvcp80.dll
17:58:40.0956 5448  C:\Windows\WinSxS\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6910_none_d089c358442de345\msvcp80.dll - ok
17:58:40.0956 5448  [ B6A5F92A417ED4BDE54BE170AF0A9E31 ] C:\Windows\WinSxS\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6910_none_d089c358442de345\msvcr80.dll
17:58:40.0956 5448  C:\Windows\WinSxS\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6910_none_d089c358442de345\msvcr80.dll - ok
17:58:40.0956 5448  [ 80942B137077DA7D2375B3041DA9127F ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\AppleVersions.dll
17:58:40.0956 5448  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\AppleVersions.dll - ok
17:58:40.0956 5448  [ 64894527838C86454E2F378FF39FA336 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\YSCrashDump.dll
17:58:40.0956 5448  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\YSCrashDump.dll - ok
17:58:40.0972 5448  [ EF8CD3C64EE9C08980D6D06CCCE46C68 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\CoreFoundation.dll
17:58:40.0972 5448  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\CoreFoundation.dll - ok
17:58:40.0972 5448  [ F6FD367C9EAAEDF90CD7A7952AE0B336 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\ASL.dll
17:58:40.0972 5448  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\ASL.dll - ok
17:58:40.0972 5448  [ 78865ABC5F5D13190F8B35BD9044714A ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\objc.dll
17:58:40.0972 5448  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\objc.dll - ok
17:58:40.0972 5448  [ 54152706627F5F33952340D90ADA50EE ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\pthreadVC2.dll
17:58:40.0972 5448  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\pthreadVC2.dll - ok
17:58:40.0972 5448  [ FF9831030678C7B6D70BAC00F68F8976 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libdispatch.dll
17:58:40.0972 5448  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libdispatch.dll - ok
17:58:40.0987 5448  [ E5B6D88B36BDDAD5039764FBF80284DD ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libicuin.dll
17:58:40.0987 5448  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libicuin.dll - ok
17:58:40.0987 5448  [ 1D75BC73585969F41BA7EF0C882DFF2B ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libicuuc.dll
17:58:40.0987 5448  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libicuuc.dll - ok
17:58:40.0987 5448  [ A2B03204078BBB32CDD3AF779717FCC4 ] C:\Windows\SysWOW64\wsock32.dll
17:58:40.0987 5448  C:\Windows\SysWOW64\wsock32.dll - ok
17:58:40.0987 5448  [ FC7A868DECC3AB027F29178EC8A7F252 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\icudt46.dll
17:58:40.0987 5448  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\icudt46.dll - ok
17:58:40.0987 5448  [ 4327CF9A9D0864CA0FFC97FCDA97315A ] C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService_main.dll
17:58:40.0987 5448  C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService_main.dll - ok
17:58:40.0987 5448  [ 062373995EAE5F0EAC9EAA9192136BFB ] C:\Windows\SysWOW64\dnssd.dll
17:58:40.0987 5448  C:\Windows\SysWOW64\dnssd.dll - ok
17:58:41.0003 5448  [ 6A122B4F0E5293CACFA8A5F2CBA9B356 ] C:\Program Files (x86)\ASUS\ASUS InstantOn\InsOnSrv.exe
17:58:41.0003 5448  C:\Program Files (x86)\ASUS\ASUS InstantOn\InsOnSrv.exe - ok
17:58:41.0003 5448  [ 24665B221424FFD7B71F0D2C398F2F4F ] C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\MobileDevice.dll
17:58:41.0003 5448  C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\MobileDevice.dll - ok
17:58:41.0003 5448  [ A84509C6AB1C764C592F192AA89DA830 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll
17:58:41.0003 5448  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll - ok
17:58:41.0003 5448  [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD ] C:\Program Files\Bonjour\mDNSResponder.exe
17:58:41.0003 5448  C:\Program Files\Bonjour\mDNSResponder.exe - ok
17:58:41.0003 5448  [ CF3126A2FF45AA224FC541BC543C2D9C ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\CFNetwork.dll
17:58:41.0003 5448  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\CFNetwork.dll - ok
17:58:41.0003 5448  [ 3C5846581F329FD6768E5E7C1780151E ] C:\Windows\System32\cryptcatsvc.dll
17:58:41.0003 5448  C:\Windows\System32\cryptcatsvc.dll - ok
17:58:41.0003 5448  [ F0E78B119D12BA81F163D48C0FF30B9A ] C:\Windows\System32\cryptsvc.dll
17:58:41.0003 5448  C:\Windows\System32\cryptsvc.dll - ok
17:58:41.0018 5448  [ 5EAEF67AE2AF4D2DC664B649DB7B2E16 ] C:\Windows\System32\das.dll
17:58:41.0018 5448  C:\Windows\System32\das.dll - ok
17:58:41.0018 5448  [ 109FC3F80BF4F4DC5A071058074F13C1 ] C:\Windows\System32\dps.dll
17:58:41.0018 5448  C:\Windows\System32\dps.dll - ok
17:58:41.0018 5448  [ B278B76FF26BE911DD369724612F2D03 ] C:\Windows\System32\dasHost.exe
17:58:41.0018 5448  C:\Windows\System32\dasHost.exe - ok
17:58:41.0018 5448  [ 440698D7CF32AA990B295AFA40EE9517 ] C:\Program Files (x86)\ASUS\ASUS Fan Filter Checker\FanChkSrv.exe
17:58:41.0018 5448  C:\Program Files (x86)\ASUS\ASUS Fan Filter Checker\FanChkSrv.exe - ok
17:58:41.0018 5448  [ 9C2CB23B77E539D87B4652FA68A6C275 ] C:\Windows\System32\vssapi.dll
17:58:41.0018 5448  C:\Windows\System32\vssapi.dll - ok
17:58:41.0018 5448  [ BAF8F0F55BC300E5F882E521F054E345 ] C:\Windows\System32\certprop.dll
17:58:41.0018 5448  C:\Windows\System32\certprop.dll - ok
17:58:41.0018 5448  [ 0A855F27A1E48991D14C593CB930D2B2 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\SQLite3.dll
17:58:41.0018 5448  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\SQLite3.dll - ok
17:58:41.0018 5448  [ C32EFB3575BEC798FC5D27092497892B ] C:\Windows\System32\WinSCard.dll
17:58:41.0018 5448  C:\Windows\System32\WinSCard.dll - ok
17:58:41.0034 5448  [ 5579A2CE7756B59F4BB778AFDCAF2096 ] C:\Windows\System32\vsstrace.dll
17:58:41.0034 5448  C:\Windows\System32\vsstrace.dll - ok
17:58:41.0034 5448  [ 3832D6353272000BD48C4748B386A786 ] C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe
17:58:41.0034 5448  C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe - ok
17:58:41.0034 5448  [ FA6C8E59B74908550607EBEDCD7BA1E2 ] C:\Windows\System32\secur32.dll
17:58:41.0034 5448  C:\Windows\System32\secur32.dll - ok
17:58:41.0034 5448  [ 011285619951BC4C92FE322E08ABF050 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll
17:58:41.0034 5448  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll - ok
17:58:41.0034 5448  [ 531B5A98145DA689741A0AC18F14EA94 ] C:\Windows\System32\IKEEXT.DLL
17:58:41.0034 5448  C:\Windows\System32\IKEEXT.DLL - ok
17:58:41.0034 5448  [ C99F8E90DE4B8F0C7FE15BB1CBCD29DC ] C:\Program Files\Intel\iCLS Client\HeciServer.exe
17:58:41.0034 5448  C:\Program Files\Intel\iCLS Client\HeciServer.exe - ok
17:58:41.0034 5448  [ C37508B16F7C26CDF20BAD5646034670 ] C:\Windows\System32\vpnikeapi.dll
17:58:41.0034 5448  C:\Windows\System32\vpnikeapi.dll - ok
17:58:41.0034 5448  [ 78ABBE558F57144047F10A0F50FE4B2F ] C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\Jhi_service.exe
17:58:41.0034 5448  C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\Jhi_service.exe - ok
17:58:41.0050 5448  [ BC83108B18756547013ED443B8CDB31B ] C:\Windows\SysWOW64\msvcp100.dll
17:58:41.0050 5448  C:\Windows\SysWOW64\msvcp100.dll - ok
17:58:41.0050 5448  [ 0E37FBFA79D349D672456923EC5FBBE3 ] C:\Windows\SysWOW64\msvcr100.dll
17:58:41.0050 5448  C:\Windows\SysWOW64\msvcr100.dll - ok
17:58:41.0050 5448  [ F9D908DE6B166DAC9B89BF62FA291CE8 ] C:\Program Files\Bonjour\mdnsNSP.dll
17:58:41.0050 5448  C:\Program Files\Bonjour\mdnsNSP.dll - ok
17:58:41.0050 5448  [ 551A5E070F5DF69A64463852E93009DD ] C:\Program Files\Autodesk\Inventor 2013\Moldflow\bin\mitsijm.exe
17:58:41.0050 5448  C:\Program Files\Autodesk\Inventor 2013\Moldflow\bin\mitsijm.exe - ok
17:58:41.0050 5448  [ D9CB0782AF819548072AA45B70F8B22D ] C:\Windows\System32\Drivers\condrv.sys
17:58:41.0050 5448  C:\Windows\System32\Drivers\condrv.sys - ok
17:58:41.0050 5448  [ CFCB89C7FD723D0D3DB60E51EF81054D ] C:\Windows\System32\netsh.exe
17:58:41.0050 5448  C:\Windows\System32\netsh.exe - ok
17:58:41.0065 5448  [ D029339C0F59CF662094EDDF8C42B2B5 ] C:\Windows\System32\msvcp100.dll
17:58:41.0065 5448  C:\Windows\System32\msvcp100.dll - ok
17:58:41.0065 5448  [ 3E30EF769BC47B9B16515EB66EFF1E2F ] C:\Windows\System32\conhost.exe
17:58:41.0065 5448  C:\Windows\System32\conhost.exe - ok
17:58:41.0065 5448  [ 366FD6F3A451351B5DF2D7C4ECF4C73A ] C:\Windows\System32\msvcr100.dll
17:58:41.0065 5448  C:\Windows\System32\msvcr100.dll - ok
17:58:41.0065 5448  [ BF1F665FD7B6F23A3AA48D069F1A7E94 ] C:\Windows\System32\NAPMONTR.DLL
17:58:41.0065 5448  C:\Windows\System32\NAPMONTR.DLL - ok
17:58:41.0065 5448  [ FC4DE58ECB1A23C35C916B971B88DEED ] C:\Windows\System32\QUTIL.DLL
17:58:41.0065 5448  C:\Windows\System32\QUTIL.DLL - ok
17:58:41.0065 5448  [ C70AD70FBD84ABD7D2C426483112727D ] C:\Windows\System32\certcli.dll
17:58:41.0065 5448  C:\Windows\System32\certcli.dll - ok
17:58:41.0065 5448  [ D3F60A4345FCA9C1BE68AD7D0D6DE770 ] C:\Windows\System32\Drivers\Ndu.sys
17:58:41.0065 5448  C:\Windows\System32\Drivers\Ndu.sys - ok
17:58:41.0065 5448  [ 80ABCD4C2DE9FD832477303AE0CA3BE5 ] C:\Windows\System32\nlasvc.dll
17:58:41.0065 5448  C:\Windows\System32\nlasvc.dll - ok
17:58:41.0081 5448  [ 37814A36DBAF1AE9D42BE89889ECB4B7 ] C:\Windows\System32\certca.dll
17:58:41.0081 5448  C:\Windows\System32\certca.dll - ok
17:58:41.0081 5448  [ 98D9EC5E81ECFCCEEB94894D19AA9F7E ] C:\Windows\System32\mpr.dll
17:58:41.0081 5448  C:\Windows\System32\mpr.dll - ok
17:58:41.0081 5448  [ 1F9961930781C6F853CFCEBA97EAC4A6 ] C:\Windows\System32\rpcnsh.dll
17:58:41.0081 5448  C:\Windows\System32\rpcnsh.dll - ok
17:58:41.0081 5448  [ D47794FC9B672034F4932B47016A4998 ] C:\Windows\System32\ncsi.dll
17:58:41.0081 5448  C:\Windows\System32\ncsi.dll - ok
17:58:41.0081 5448  [ D156ABD03D4FAC4A42FAF2A11BC369A8 ] C:\Windows\System32\hnetmon.dll
17:58:41.0081 5448  C:\Windows\System32\hnetmon.dll - ok
17:58:41.0081 5448  [ 7911470B6018059A880469A63B65700A ] C:\Windows\System32\winhttp.dll
17:58:41.0081 5448  C:\Windows\System32\winhttp.dll - ok
17:58:41.0097 5448  [ F3D0469E044672E6C57ABBEFDCE6CC85 ] C:\Windows\System32\netshell.dll
17:58:41.0097 5448  C:\Windows\System32\netshell.dll - ok
17:58:41.0097 5448  [ 5858AA1B5AF20C37B186971A21460A4E ] C:\Windows\System32\ssdpapi.dll
17:58:41.0097 5448  C:\Windows\System32\ssdpapi.dll - ok
17:58:41.0097 5448  [ 0E113CD21F9CF249101AE14777BDB1A4 ] C:\Windows\System32\nshwfp.dll
17:58:41.0097 5448  C:\Windows\System32\nshwfp.dll - ok
17:58:41.0097 5448  [ B617F2E83951A9A4F495BBA58CF492B2 ] C:\Windows\System32\dllhost.exe
17:58:41.0097 5448  C:\Windows\System32\dllhost.exe - ok
17:58:41.0097 5448  [ A0CFAE5D60E2011E7531F1921028259C ] C:\Windows\System32\cabinet.dll
17:58:41.0097 5448  C:\Windows\System32\cabinet.dll - ok
17:58:41.0097 5448  [ C84B51243DF6A6C5835FF6CAEC5C6B97 ] C:\Windows\System32\webio.dll
17:58:41.0097 5448  C:\Windows\System32\webio.dll - ok
17:58:41.0097 5448  [ A6EE3B2330A041AFBC7D8D381F681387 ] C:\Windows\System32\nshhttp.dll
17:58:41.0097 5448  C:\Windows\System32\nshhttp.dll - ok
17:58:41.0097 5448  [ CB2A68104E6E21EB30155F081768065A ] C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
17:58:41.0097 5448  C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe - ok
17:58:41.0112 5448  [ 282191A781E23B9CB50BF7652A5F511C ] C:\Windows\System32\httpapi.dll
17:58:41.0112 5448  C:\Windows\System32\httpapi.dll - ok
17:58:41.0112 5448  [ 7CD49693B3917E34E32A76558D04EBCA ] C:\Windows\System32\nettrace.dll
17:58:41.0112 5448  C:\Windows\System32\nettrace.dll - ok
17:58:41.0112 5448  [ 602B5A5AC94E81FA25529402485CB235 ] C:\Windows\System32\WcnNetsh.dll
17:58:41.0112 5448  C:\Windows\System32\WcnNetsh.dll - ok
17:58:41.0112 5448  [ B78671547417F0B3DC370D56A228D4C3 ] C:\Windows\System32\ndfapi.dll
17:58:41.0112 5448  C:\Windows\System32\ndfapi.dll - ok
17:58:41.0112 5448  [ 6A0C81508755C7F8EA5C5A4BC0E922CB ] C:\Windows\SysWOW64\apphelp.dll
17:58:41.0112 5448  C:\Windows\SysWOW64\apphelp.dll - ok
17:58:41.0112 5448  [ 024632F2FC93286700FE82763C0A98FD ] C:\Windows\System32\tdh.dll
17:58:41.0112 5448  C:\Windows\System32\tdh.dll - ok
17:58:41.0128 5448  [ CCBFC667F7D9FF80C560EA378C1B5F3E ] C:\Windows\apppatch\AcGenral.dll
17:58:41.0128 5448  C:\Windows\apppatch\AcGenral.dll - ok
17:58:41.0128 5448  [ 240FC332484572227CD1DF82407F33E5 ] C:\Windows\System32\wdi.dll
17:58:41.0128 5448  C:\Windows\System32\wdi.dll - ok
17:58:41.0128 5448  [ C5E2494F7CAB98EB53856864D55070A8 ] C:\Windows\System32\dot3cfg.dll
17:58:41.0128 5448  C:\Windows\System32\dot3cfg.dll - ok
17:58:41.0128 5448  [ 09D0D405651E17595DE99B1E528763DF ] C:\Windows\System32\dot3api.dll
17:58:41.0128 5448  C:\Windows\System32\dot3api.dll - ok
17:58:41.0128 5448  [ 6625A9EECF1846921DA7230062E483FE ] C:\Windows\System32\eappcfg.dll
17:58:41.0128 5448  C:\Windows\System32\eappcfg.dll - ok
17:58:41.0128 5448  [ BE25D0C01B88DC3F308B59FC5C8DF65A ] C:\Windows\SysWOW64\uxtheme.dll
17:58:41.0128 5448  C:\Windows\SysWOW64\uxtheme.dll - ok
17:58:41.0143 5448  [ 8D1DB502373E4C2B16CF20BEA2E68679 ] C:\Windows\System32\authfwcfg.dll
17:58:41.0143 5448  C:\Windows\System32\authfwcfg.dll - ok
17:58:41.0143 5448  [ E4A6D4B0E58231488F3BB32A24995D85 ] C:\Windows\SysWOW64\msacm32.dll
17:58:41.0143 5448  C:\Windows\SysWOW64\msacm32.dll - ok
17:58:41.0143 5448  [ 810A826F2C19B2DEA995BF4150A0ED1A ] C:\Windows\System32\ifmon.dll
17:58:41.0143 5448  C:\Windows\System32\ifmon.dll - ok
17:58:41.0143 5448  [ 909EBA9AF43AF0E70EA7FFC352484424 ] C:\Windows\System32\mprapi.dll
17:58:41.0143 5448  C:\Windows\System32\mprapi.dll - ok
17:58:41.0143 5448  [ 341ADCBB9A744F559C3CF3CA5D3D8934 ] C:\Windows\SysWOW64\dwmapi.dll
17:58:41.0143 5448  C:\Windows\SysWOW64\dwmapi.dll - ok
17:58:41.0159 5448  [ 58D768B03F3C7FF919004634C29E7843 ] C:\Windows\System32\nci.dll
17:58:41.0159 5448  C:\Windows\System32\nci.dll - ok
17:58:41.0159 5448  [ 785838B984563D12D4612256D2C78B48 ] C:\Windows\SysWOW64\mpr.dll
17:58:41.0159 5448  C:\Windows\SysWOW64\mpr.dll - ok
17:58:41.0159 5448  [ E4C625BE6059624A78CE07921D1E9EBB ] C:\Windows\System32\netiohlp.dll
17:58:41.0159 5448  C:\Windows\System32\netiohlp.dll - ok
17:58:41.0159 5448  [ C6B60D86B37D1C10AF7E7764D74D9194 ] C:\Windows\apppatch\AcLayers.dll
17:58:41.0159 5448  C:\Windows\apppatch\AcLayers.dll - ok
17:58:41.0159 5448  [ B2894C3DB29D9CD0A9B552FD876C3F3D ] C:\Windows\System32\p2pnetsh.dll
17:58:41.0159 5448  C:\Windows\System32\p2pnetsh.dll - ok
17:58:41.0159 5448  [ 5DDEA740B911D4E910AC031090183E6A ] C:\Windows\SysWOW64\sfc.dll
17:58:41.0159 5448  C:\Windows\SysWOW64\sfc.dll - ok
17:58:41.0159 5448  [ 0313A5DFA5966E31220C26A6167FD479 ] C:\Windows\SysWOW64\sfc_os.dll
17:58:41.0159 5448  C:\Windows\SysWOW64\sfc_os.dll - ok
17:58:41.0175 5448  [ B7ED28FEF51FAB60C8FF4901AF3BD180 ] C:\Windows\System32\dhcpcmonitor.dll
17:58:41.0175 5448  C:\Windows\System32\dhcpcmonitor.dll - ok
17:58:41.0175 5448  [ A3952443028D8B98ECF642477A97768F ] C:\Windows\System32\DHCPQEC.DLL
17:58:41.0175 5448  C:\Windows\System32\DHCPQEC.DLL - ok
17:58:41.0175 5448  [ 88D686DE8D296AAC4A634B0EFBED9028 ] C:\Windows\System32\P2P.dll
17:58:41.0175 5448  C:\Windows\System32\P2P.dll - ok
17:58:41.0175 5448  [ D489BC02E4D34E3161E76F4324497B1C ] C:\Windows\System32\whhelper.dll
17:58:41.0175 5448  C:\Windows\System32\whhelper.dll - ok
17:58:41.0175 5448  [ C0D1F9ADE8800424BD8094302CC59EC1 ] C:\Windows\System32\ws2help.dll
17:58:41.0175 5448  C:\Windows\System32\ws2help.dll - ok
17:58:41.0175 5448  [ ECBD769AE04E8A2ECDC2D12CB1C5EB41 ] C:\Windows\System32\wshelper.dll
17:58:41.0175 5448  C:\Windows\System32\wshelper.dll - ok
17:58:41.0175 5448  [ 70DBB6A8B52B3830922F1C5789E1BEEB ] C:\Windows\System32\Drivers\PEAuth.sys
17:58:41.0175 5448  C:\Windows\System32\Drivers\PEAuth.sys - ok
17:58:41.0175 5448  [ 4811D9EC53649105A5A8BEA661B0F936 ] C:\Windows\System32\pcasvc.dll
17:58:41.0175 5448  C:\Windows\System32\pcasvc.dll - ok
17:58:41.0190 5448  [ 85290FBCD027825501D31B06AE4CA980 ] C:\Windows\System32\nshipsec.dll
17:58:41.0190 5448  C:\Windows\System32\nshipsec.dll - ok
17:58:41.0190 5448  [ CEB35EB551BE4F216691255D38867346 ] C:\Windows\System32\activeds.dll
17:58:41.0190 5448  C:\Windows\System32\activeds.dll - ok
17:58:41.0190 5448  [ 1580A33C6CD8E0117247A48C31825D6E ] C:\Windows\System32\aepic.dll
17:58:41.0190 5448  C:\Windows\System32\aepic.dll - ok
17:58:41.0190 5448  [ 3EA8A16169C26AFBEB544E0E48421186 ] C:\Windows\System32\Drivers\secdrv.sys
17:58:41.0190 5448  C:\Windows\System32\Drivers\secdrv.sys - ok
17:58:41.0190 5448  [ C954FE5796A0BFCDCDD8A9C210E9D2C3 ] C:\Windows\System32\sfc_os.dll
17:58:41.0190 5448  C:\Windows\System32\sfc_os.dll - ok
17:58:41.0190 5448  [ 9400C71F5A1A380B494B6922F007D485 ] C:\Windows\System32\Drivers\srvnet.sys
17:58:41.0190 5448  C:\Windows\System32\Drivers\srvnet.sys - ok
17:58:41.0190 5448  [ DC21E1F06343773D7E24362DCEF7944B ] C:\Windows\System32\sysmain.dll
17:58:41.0190 5448  C:\Windows\System32\sysmain.dll - ok
17:58:41.0190 5448  [ 6A905F558FF8C8E5B47AB43359007944 ] C:\Windows\System32\polstore.dll
17:58:41.0190 5448  C:\Windows\System32\polstore.dll - ok
17:58:41.0206 5448  [ 8F2A13A5DF99D72FDDE87F502A66F989 ] C:\Windows\System32\Drivers\tcpipreg.sys
17:58:41.0206 5448  C:\Windows\System32\Drivers\tcpipreg.sys - ok
17:58:41.0206 5448  [ BAC8A721736AECC55A4F71523AEAB65F ] C:\Windows\System32\wiaservc.dll
17:58:41.0206 5448  C:\Windows\System32\wiaservc.dll - ok
17:58:41.0206 5448  [ 2935B83ADDED04242622580091251474 ] C:\Windows\System32\wiatrace.dll
17:58:41.0206 5448  C:\Windows\System32\wiatrace.dll - ok
17:58:41.0206 5448  [ CFCD3C58029F2C43CE0E5E5EABC8607A ] C:\Windows\System32\ViakaraokeSrv.exe
17:58:41.0206 5448  C:\Windows\System32\ViakaraokeSrv.exe - ok
17:58:41.0206 5448  [ 8F625E3E627BC99823E7E168A9AB5625 ] C:\Windows\System32\wsdchngr.dll
17:58:41.0206 5448  C:\Windows\System32\wsdchngr.dll - ok
17:58:41.0206 5448  [ 3D6B518B71C75C8FA4115A33615C107A ] C:\Windows\System32\wbem\WMIsvc.dll
17:58:41.0206 5448  C:\Windows\System32\wbem\WMIsvc.dll - ok
17:58:41.0206 5448  [ 28BC57EC89B68B6C21A33B171E3AD051 ] C:\Windows\System32\winipsec.dll
17:58:41.0206 5448  C:\Windows\System32\winipsec.dll - ok
17:58:41.0206 5448  [ 6AE7DC415EFF4840512E5354CE99F4A5 ] C:\Windows\System32\adsldpc.dll
17:58:41.0206 5448  C:\Windows\System32\adsldpc.dll - ok
17:58:41.0222 5448  [ F082773EF130B7293E0F6D64B962A118 ] C:\Windows\System32\deviceassociation.dll
17:58:41.0222 5448  C:\Windows\System32\deviceassociation.dll - ok
17:58:41.0222 5448  [ 21CA3869D0EA99C902B26ED697BD78E5 ] C:\Windows\System32\wbemcomn.dll
17:58:41.0222 5448  C:\Windows\System32\wbemcomn.dll - ok
17:58:41.0222 5448  [ 8C8CF3041B27E7657ADD0EE17F6DBFCA ] C:\Windows\System32\trkwks.dll
17:58:41.0222 5448  C:\Windows\System32\trkwks.dll - ok
17:58:41.0222 5448  [ 508F0DE3A65183A3D7ADF4C1F20E9696 ] C:\Windows\System32\PortableDeviceWiaCompat.dll
17:58:41.0222 5448  C:\Windows\System32\PortableDeviceWiaCompat.dll - ok
17:58:41.0222 5448  [ 7CC4E04C692C0B3415D32C8467297923 ] C:\Windows\System32\rasmontr.dll
17:58:41.0222 5448  C:\Windows\System32\rasmontr.dll - ok
17:58:41.0222 5448  [ 78D752078F90589DBBAA6D1001B3BDFE ] C:\Windows\System32\HPWia2_PSB210.dll
17:58:41.0222 5448  C:\Windows\System32\HPWia2_PSB210.dll - ok
17:58:41.0237 5448  [ 735D4C58ADC1F4DE5A59850078910218 ] C:\Windows\System32\wbem\wbemcore.dll
17:58:41.0237 5448  C:\Windows\System32\wbem\wbemcore.dll - ok
17:58:41.0237 5448  [ 64F6AFD2F4F8D0DB5B8770EC59103778 ] C:\Windows\System32\PortableDeviceApi.dll
17:58:41.0237 5448  C:\Windows\System32\PortableDeviceApi.dll - ok
17:58:41.0237 5448  [ E54F732758B5BB7405C2F4E05A64D6E1 ] C:\Windows\System32\wbem\esscli.dll
17:58:41.0237 5448  C:\Windows\System32\wbem\esscli.dll - ok
17:58:41.0237 5448  [ E24FCC199F4AD27289ACEC15D8A6740C ] C:\Windows\System32\fdPnp.dll
17:58:41.0237 5448  C:\Windows\System32\fdPnp.dll - ok
17:58:41.0237 5448  [ 47E892006A6155BE617F526E02CA09DD ] C:\Windows\System32\fundisc.dll
17:58:41.0237 5448  C:\Windows\System32\fundisc.dll - ok
17:58:41.0237 5448  [ AC89ADD10CDAC8D5647928FBE5B94621 ] C:\Windows\System32\PortableDeviceTypes.dll
17:58:41.0237 5448  C:\Windows\System32\PortableDeviceTypes.dll - ok
17:58:41.0253 5448  [ D90555A2344D05E839F22CE3896E190D ] C:\Windows\System32\mfc42u.dll
17:58:41.0253 5448  C:\Windows\System32\mfc42u.dll - ok
17:58:41.0253 5448  [ 19304E66115DD1400182211B4FD7E73A ] C:\Windows\System32\wbem\fastprox.dll
17:58:41.0253 5448  C:\Windows\System32\wbem\fastprox.dll - ok
17:58:41.0253 5448  [ 0CE9D73AE631C1B0E199BB25572B64E0 ] C:\Windows\System32\HPScanTRDrv_PSB210.dll
17:58:41.0253 5448  C:\Windows\System32\HPScanTRDrv_PSB210.dll - ok
17:58:41.0253 5448  [ C2106BB710AA34A046126AED7BCA6964 ] C:\Windows\System32\Drivers\srv2.sys
17:58:41.0253 5448  C:\Windows\System32\Drivers\srv2.sys - ok
17:58:41.0253 5448  [ 08DE98E814902B495D893F8BD7F07F42 ] C:\Windows\System32\odbc32.dll
17:58:41.0253 5448  C:\Windows\System32\odbc32.dll - ok
17:58:41.0253 5448  [ 9B7280BAF510CE8AA3E712BC63EE50E3 ] C:\Windows\System32\wbem\wbemsvc.dll
17:58:41.0253 5448  C:\Windows\System32\wbem\wbemsvc.dll - ok
17:58:41.0253 5448  [ 0F1FCD575A03ABDE13FCA9D0ADE4DDA6 ] C:\Windows\System32\Drivers\srv.sys
17:58:41.0253 5448  C:\Windows\System32\Drivers\srv.sys - ok
17:58:41.0268 5448  [ 1040BD9F72E0C7F26D9C130B25ABE34E ] C:\Windows\System32\fwcfg.dll
17:58:41.0268 5448  C:\Windows\System32\fwcfg.dll - ok
17:58:41.0268 5448  [ 7139C54E7282804745F9991F588FE506 ] C:\Windows\SysWOW64\wbem\wbemsvc.dll
17:58:41.0268 5448  C:\Windows\SysWOW64\wbem\wbemsvc.dll - ok
17:58:41.0268 5448  [ C217B8D2E58C57A319B16125C3D4B69C ] C:\Windows\System32\iphlpsvc.dll
17:58:41.0268 5448  C:\Windows\System32\iphlpsvc.dll - ok
17:58:41.0268 5448  [ 992BD101F370B0D93A1131227BA342F6 ] C:\Windows\SysWOW64\wbem\fastprox.dll
17:58:41.0268 5448  C:\Windows\SysWOW64\wbem\fastprox.dll - ok
17:58:41.0268 5448  [ D5EC30299F5B7681498246197FFD64CA ] C:\Windows\System32\wlancfg.dll
17:58:41.0268 5448  C:\Windows\System32\wlancfg.dll - ok
17:58:41.0284 5448  [ 256EE31588257E8A555DBFAA13F1908E ] C:\Windows\System32\srvsvc.dll
17:58:41.0284 5448  C:\Windows\System32\srvsvc.dll - ok
17:58:41.0284 5448  [ 63C3FFAAC25408241E620B524BEA8BBA ] C:\Windows\System32\wwancfg.dll
17:58:41.0284 5448  C:\Windows\System32\wwancfg.dll - ok
17:58:41.0284 5448  [ DC12FF4A1B00CAE279D5744F36B74873 ] C:\Windows\System32\wwapi.dll
17:58:41.0284 5448  C:\Windows\System32\wwapi.dll - ok
17:58:41.0284 5448  [ 310068BDA80B1D55C36580FD8A873FAF ] C:\Windows\System32\browser.dll
17:58:41.0284 5448  C:\Windows\System32\browser.dll - ok
17:58:41.0284 5448  [ BF5BAA4D1139DFFFA853B249298152EB ] C:\Windows\System32\QAGENT.DLL
17:58:41.0284 5448  C:\Windows\System32\QAGENT.DLL - ok
17:58:41.0284 5448  [ 3C14BC7A5590DFDD754CA7A15CED0A9A ] C:\Windows\System32\sscore.dll
17:58:41.0284 5448  C:\Windows\System32\sscore.dll - ok
17:58:41.0284 5448  [ C5D0659CEA9A87C4C4E82B0464683F19 ] C:\Windows\System32\sscoreext.dll
17:58:41.0284 5448  C:\Windows\System32\sscoreext.dll - ok
17:58:41.0300 5448  [ 547D152592C3B4960DD80D9C61F7C8A9 ] C:\Windows\System32\mi.dll
17:58:41.0300 5448  C:\Windows\System32\mi.dll - ok
17:58:41.0300 5448  [ 8CABB7DB418AA58CEC8A00E43368EAA7 ] C:\Windows\System32\miutils.dll
17:58:41.0300 5448  C:\Windows\System32\miutils.dll - ok
17:58:41.0300 5448  [ 4811A86C4CA6EDC58D316A29E56629F6 ] C:\Windows\System32\wbem\wmiutils.dll
17:58:41.0300 5448  C:\Windows\System32\wbem\wmiutils.dll - ok
17:58:41.0300 5448  [ 104BA949E64659ED6B8D23BA08299F55 ] C:\Windows\System32\httpprxm.dll
17:58:41.0300 5448  C:\Windows\System32\httpprxm.dll - ok
17:58:41.0300 5448  [ 0AEF3F58E05D5BBCD8A3CF2B393FE465 ] C:\Windows\System32\wmidcom.dll
17:58:41.0300 5448  C:\Windows\System32\wmidcom.dll - ok
17:58:41.0300 5448  [ 0E2BB2E43DCCE4ED986BF3B8641DFC08 ] C:\Windows\System32\adhsvc.dll
17:58:41.0300 5448  C:\Windows\System32\adhsvc.dll - ok
17:58:41.0300 5448  [ 95AB131067CD1695B62DEE20ADDD5071 ] C:\Windows\System32\resutils.dll
17:58:41.0300 5448  C:\Windows\System32\resutils.dll - ok
17:58:41.0315 5448  [ 32550CE9B5AFB962A1BB8D995E76688D ] C:\Windows\System32\clusapi.dll
17:58:41.0315 5448  C:\Windows\System32\clusapi.dll - ok
17:58:41.0315 5448  [ 616285E00B6B7F2DE84891F6D094528B ] C:\Windows\System32\wbem\repdrvfs.dll
17:58:41.0315 5448  C:\Windows\System32\wbem\repdrvfs.dll - ok
17:58:41.0315 5448  [ 8BD33FC2A78607E00D012D550C0E2E69 ] C:\Windows\System32\ncbservice.dll
17:58:41.0315 5448  C:\Windows\System32\ncbservice.dll - ok
17:58:41.0315 5448  [ D86F25F0AD6CA6E77A9F67641EEB6722 ] C:\Windows\System32\sqmapi.dll
17:58:41.0315 5448  C:\Windows\System32\sqmapi.dll - ok
17:58:41.0315 5448  [ 84A464F9BFF154CD560370B515E308AB ] C:\Windows\System32\netprofm.dll
17:58:41.0315 5448  C:\Windows\System32\netprofm.dll - ok
17:58:41.0331 5448  [ 5C51484B4D2211FBE88DEB472588B5DF ] C:\Windows\System32\wdscore.dll
17:58:41.0331 5448  C:\Windows\System32\wdscore.dll - ok
17:58:41.0331 5448  [ C9DA260FC97E22905A97FFC3D5F42B18 ] C:\Windows\System32\bi.dll
17:58:41.0331 5448  C:\Windows\System32\bi.dll - ok
17:58:41.0331 5448  [ 04C84B41AD7BC0C663A613CA9E3D3FC5 ] C:\Windows\System32\rasadhlp.dll
17:58:41.0331 5448  C:\Windows\System32\rasadhlp.dll - ok
17:58:41.0331 5448  [ 11A9C08F39F929B0D04FEE7C743CE8D9 ] C:\Windows\System32\adsldp.dll
17:58:41.0331 5448  C:\Windows\System32\adsldp.dll - ok
17:58:41.0331 5448  [ 55955FB63C2E045AA9915184880B4F27 ] C:\Windows\System32\cscapi.dll
17:58:41.0331 5448  C:\Windows\System32\cscapi.dll - ok
17:58:41.0331 5448  [ 08AF5B64DA03D206508CBACAEB9E1FF3 ] C:\Windows\System32\ndiscapCfg.dll
17:58:41.0331 5448  C:\Windows\System32\ndiscapCfg.dll - ok
17:58:41.0347 5448  [ 52EF3A32EC17D3E9580A79A23B712917 ] C:\Windows\System32\brdgcfg.dll
17:58:41.0347 5448  C:\Windows\System32\brdgcfg.dll - ok
17:58:41.0347 5448  [ DD35092F11DCED777EF8621D4EE2505A ] C:\Windows\System32\rascfg.dll
17:58:41.0347 5448  C:\Windows\System32\rascfg.dll - ok
17:58:41.0347 5448  [ 11F0834544D68B955E6C44DFFB272122 ] C:\Windows\System32\mprmsg.dll
17:58:41.0347 5448  C:\Windows\System32\mprmsg.dll - ok
17:58:41.0347 5448  [ E6C7752237B3A615A190D9EE23ECF152 ] C:\Windows\System32\wbem\WmiPrvSD.dll
17:58:41.0347 5448  C:\Windows\System32\wbem\WmiPrvSD.dll - ok
17:58:41.0347 5448  [ 54482D83FF8501A46BB0B349FED0DAEB ] C:\Windows\System32\ncobjapi.dll
17:58:41.0347 5448  C:\Windows\System32\ncobjapi.dll - ok
17:58:41.0347 5448  [ 91E352ACB49DF3388C960A09243E5616 ] C:\Windows\System32\NdisImPlatform.dll
17:58:41.0347 5448  C:\Windows\System32\NdisImPlatform.dll - ok
17:58:41.0347 5448  [ E296B0D7842DD5478605B6C86573E52F ] C:\Windows\System32\wbem\wbemess.dll
17:58:41.0347 5448  C:\Windows\System32\wbem\wbemess.dll - ok
17:58:41.0362 5448  [ F6BB843AFC93AEE9E928CFE4BB5B743C ] C:\Windows\System32\LldpNotify.dll
17:58:41.0362 5448  C:\Windows\System32\LldpNotify.dll - ok
17:58:41.0362 5448  [ AF56A8936DF2F7031D4311C81D065CE9 ] C:\Windows\System32\tcpipcfg.dll
17:58:41.0362 5448  C:\Windows\System32\tcpipcfg.dll - ok
17:58:41.0362 5448  [ EA61D05F6657241B1E69972014C29CB3 ] C:\ProgramData\NVIDIA\Updatus\ApplicationOntology\Ontology.dll
17:58:41.0362 5448  C:\ProgramData\NVIDIA\Updatus\ApplicationOntology\Ontology.dll - ok
17:58:41.0362 5448  [ E09A3A37634A2F23A2184839BC31FD54 ] C:\Windows\System32\wshbth.dll
17:58:41.0362 5448  C:\Windows\System32\wshbth.dll - ok
17:58:41.0362 5448  [ EBA655700A35328F4E61266DD35FB71F ] C:\Windows\System32\pcadm.dll
17:58:41.0362 5448  C:\Windows\System32\pcadm.dll - ok
17:58:41.0362 5448  [ F6F1B55FC775E6F096AD400030E9D0B8 ] C:\Windows\System32\dimsjob.dll
17:58:41.0362 5448  C:\Windows\System32\dimsjob.dll - ok
17:58:41.0362 5448  [ AA11943FE1A04739AD91442CBAF56681 ] C:\ProgramData\NVIDIA\Updatus\Packages\0000175b\drsupdate.14225440_RUNASUSER.exe
17:58:41.0362 5448  C:\ProgramData\NVIDIA\Updatus\Packages\0000175b\drsupdate.14225440_RUNASUSER.exe - ok
17:58:41.0362 5448  [ F7FE8684ADE6E144F6BCDA556B6907E7 ] C:\Windows\System32\dafupnp.dll
17:58:41.0362 5448  C:\Windows\System32\dafupnp.dll - ok
17:58:41.0378 5448  [ D1A04DC07552A12553D64404CDBAB3A1 ] C:\Windows\System32\perftrack.dll
17:58:41.0378 5448  C:\Windows\System32\perftrack.dll - ok
17:58:41.0378 5448  [ 8B5D475B48506471669B9B46945138B0 ] C:\Windows\System32\wer.dll
17:58:41.0378 5448  C:\Windows\System32\wer.dll - ok
17:58:41.0378 5448  [ 7A20882D76D4A78240A5AC9F2C2EBA21 ] C:\Windows\System32\ssdpsrv.dll
17:58:41.0378 5448  C:\Windows\System32\ssdpsrv.dll - ok
17:58:41.0378 5448  [ 54A59A152C795E4FD51FB247841F57D6 ] C:\Windows\System32\diagperf.dll
17:58:41.0378 5448  C:\Windows\System32\diagperf.dll - ok
17:58:41.0378 5448  [ A2418204EBFA6F41DE3DF2FBB46B7F3F ] C:\Windows\System32\pcacli.dll
17:58:41.0378 5448  C:\Windows\System32\pcacli.dll - ok
17:58:41.0378 5448  [ 94AA5150E35B3ABB7191FE641E3C2473 ] C:\Windows\System32\wpdbusenum.dll
17:58:41.0378 5448  C:\Windows\System32\wpdbusenum.dll - ok
17:58:41.0378 5448  [ C166E3CD90AB0781ECDF10EC765B083A ] C:\Windows\System32\netprofmsvc.dll
17:58:41.0378 5448  C:\Windows\System32\netprofmsvc.dll - ok
17:58:41.0378 5448  [ 0F57DEA30340B49B06DCB8B077BEF072 ] C:\Windows\System32\PortableDeviceConnectApi.dll
17:58:41.0378 5448  C:\Windows\System32\PortableDeviceConnectApi.dll - ok
17:58:41.0393 5448  [ 7417B004B5BD4B9EC1140890131CD41D ] C:\Windows\System32\pnpts.dll
17:58:41.0393 5448  C:\Windows\System32\pnpts.dll - ok
17:58:41.0393 5448  [ 768B5A538A11E9C6F8EDD9AFDFA16936 ] C:\Windows\System32\winrnr.dll
17:58:41.0393 5448  C:\Windows\System32\winrnr.dll - ok
17:58:41.0393 5448  [ CC5512FC3FCCEA164F01592B5979F1BE ] C:\Windows\System32\srumsvc.dll
17:58:41.0393 5448  C:\Windows\System32\srumsvc.dll - ok
17:58:41.0393 5448  [ CA4FAFFA957C71C006B59E29DFE3EB8B ] C:\Windows\System32\pnrpnsp.dll
17:58:41.0393 5448  C:\Windows\System32\pnrpnsp.dll - ok
17:58:41.0393 5448  [ 7A3B96DE45ED3AB1B6BAA1D0B7B9869B ] C:\Windows\SysWOW64\comctl32.dll
17:58:41.0393 5448  C:\Windows\SysWOW64\comctl32.dll - ok
17:58:41.0393 5448  [ 149FEE067A002D75B7714C300D019C9E ] C:\Windows\System32\NapiNSP.dll
17:58:41.0393 5448  C:\Windows\System32\NapiNSP.dll - ok
17:58:41.0393 5448  [ 26D38C1391CD81ADDD791DE136E2FEA7 ] C:\Windows\System32\npmproxy.dll
17:58:41.0393 5448  C:\Windows\System32\npmproxy.dll - ok
17:58:41.0409 5448  [ A18100201E7477BB47C72711E092A8F0 ] C:\Windows\System32\esent.dll
17:58:41.0409 5448  C:\Windows\System32\esent.dll - ok
17:58:41.0409 5448  [ 0108C8E5176D590F242701EF5A62CC26 ] C:\Windows\System32\IPSECSVC.DLL
17:58:41.0409 5448  C:\Windows\System32\IPSECSVC.DLL - ok
17:58:41.0409 5448  [ 5F46797ED1629F152EF4A8DD0DBBC31F ] C:\Windows\System32\DAFWSD.dll
17:58:41.0409 5448  C:\Windows\System32\DAFWSD.dll - ok
17:58:41.0409 5448  [ 42FF7DC63C1CB122CE2C8061B5FE4390 ] C:\Windows\SysWOW64\shfolder.dll
17:58:41.0409 5448  C:\Windows\SysWOW64\shfolder.dll - ok
17:58:41.0409 5448  [ 2D7BB53EA2BB3F213CE558A79EC8448D ] C:\Windows\System32\nduprov.dll
17:58:41.0409 5448  C:\Windows\System32\nduprov.dll - ok
17:58:41.0409 5448  [ 0D97A065E85D59B8F0EE2BD31A679456 ] C:\Windows\System32\wdiasqmmodule.dll
17:58:41.0409 5448  C:\Windows\System32\wdiasqmmodule.dll - ok
17:58:41.0409 5448  [ 335C4488A14AC4B52B3E1CDF6D6F7780 ] C:\Windows\System32\hnetcfg.dll
17:58:41.0409 5448  C:\Windows\System32\hnetcfg.dll - ok
17:58:41.0425 5448  [ 872506AAB591E8908DF4461475AF92DF ] C:\Windows\System32\FDResPub.dll
17:58:41.0425 5448  C:\Windows\System32\FDResPub.dll - ok
17:58:41.0425 5448  [ D0A82052050909677C648B2496C0909E ] C:\Windows\System32\wpnsruprov.dll
17:58:41.0425 5448  C:\Windows\System32\wpnsruprov.dll - ok
17:58:41.0425 5448  [ 9E2E7FE5237CFE3A0529B54C53021CA0 ] C:\Windows\System32\appsruprov.dll
17:58:41.0425 5448  C:\Windows\System32\appsruprov.dll - ok
17:58:41.0425 5448  [ B6191C2187460A0568A9F510188DE2ED ] C:\Windows\System32\wbem\wbemprox.dll
17:58:41.0425 5448  C:\Windows\System32\wbem\wbemprox.dll - ok
17:58:41.0425 5448  [ 0828E3E7BD77C89149EAD3232BFD38DB ] C:\Windows\System32\fdPHost.dll
17:58:41.0425 5448  C:\Windows\System32\fdPHost.dll - ok
17:58:41.0440 5448  [ 71697EDF104E5EACD75822E588FA8149 ] C:\Windows\System32\energyprov.dll
17:58:41.0440 5448  C:\Windows\System32\energyprov.dll - ok
17:58:41.0440 5448  [ ACEBEB1F363C819576216CF9C4962FA2 ] C:\Windows\System32\fdWSD.dll
17:58:41.0440 5448  C:\Windows\System32\fdWSD.dll - ok
17:58:41.0440 5448  [ ACA7A882A6CAD94A08632868AA2EE64A ] C:\Windows\System32\FwRemoteSvr.dll
17:58:41.0440 5448  C:\Windows\System32\FwRemoteSvr.dll - ok
17:58:41.0440 5448  [ 70B5BD19740464A41B835C082819B74D ] C:\Windows\System32\WSDApi.dll
17:58:41.0440 5448  C:\Windows\System32\WSDApi.dll - ok
17:58:41.0440 5448  [ AE03E9CBFFB8EDE81B3DA7603E546F56 ] C:\Windows\System32\srumapi.dll
17:58:41.0440 5448  C:\Windows\System32\srumapi.dll - ok
17:58:41.0440 5448  [ C17103AE9072A06DA581DEC998343FC1 ] C:\Users\UPDATU~1\AppData\Local\Temp\nswA895.tmp\System.dll
17:58:41.0440 5448  C:\Users\UPDATU~1\AppData\Local\Temp\nswA895.tmp\System.dll - ok
17:58:41.0456 5448  [ 509192E80BF34E985C4D277A8FFF2893 ] C:\Windows\System32\webservices.dll
17:58:41.0456 5448  C:\Windows\System32\webservices.dll - ok
17:58:41.0456 5448  [ C237BAC376BAD84919400E03C84324C7 ] C:\Program Files\NVIDIA Corporation\Drs\dbInstaller.exe
17:58:41.0456 5448  C:\Program Files\NVIDIA Corporation\Drs\dbInstaller.exe - ok
17:58:41.0456 5448  [ D3B1196386488D4BEDA5DFDA3749E36C ] C:\Windows\System32\fdSSDP.dll
17:58:41.0456 5448  C:\Windows\System32\fdSSDP.dll - ok
17:58:41.0456 5448  [ C982FE4CC91DECE2259F494FCEB4030F ] C:\Windows\System32\NcdAutoSetup.dll
17:58:41.0456 5448  C:\Windows\System32\NcdAutoSetup.dll - ok
17:58:41.0456 5448  [ A075E18C6A60C5B2A0A95AB7F7BF94E8 ] C:\Windows\System32\fdProxy.dll
17:58:41.0456 5448  C:\Windows\System32\fdProxy.dll - ok
17:58:41.0456 5448  [ E0D9F6FE18FA7F53ADD29AF719CE2B7E ] C:\Windows\System32\provsvc.dll
17:58:41.0456 5448  C:\Windows\System32\provsvc.dll - ok
17:58:41.0472 5448  [ 33DFC14DFDCCFA7AA10E392F6A8EC1CF ] C:\Windows\System32\ListSvc.dll
17:58:41.0472 5448  C:\Windows\System32\ListSvc.dll - ok
17:58:41.0472 5448  [ AB76700D764A342D7475FB8F47CAB18C ] C:\Windows\System32\pnrpsvc.dll
17:58:41.0472 5448  C:\Windows\System32\pnrpsvc.dll - ok
17:58:41.0472 5448  [ 4319FD931DCD796435ECB5DB4A04FBA5 ] C:\Windows\System32\p2psvc.dll
17:58:41.0472 5448  C:\Windows\System32\p2psvc.dll - ok
17:58:41.0472 5448  [ 733E0C2F074B17D660349768BB70393D ] C:\Windows\System32\P2PGraph.dll
17:58:41.0472 5448  C:\Windows\System32\P2PGraph.dll - ok
17:58:41.0472 5448  [ 5B5878314B78A6827BA4431C4C3379EB ] C:\Windows\System32\mlang.dll
17:58:41.0472 5448  C:\Windows\System32\mlang.dll - ok
17:58:41.0472 5448  [ 74EFDA0526862C3D8D01A776182798EA ] C:\Windows\System32\Drivers\WSDPrint.sys
17:58:41.0472 5448  C:\Windows\System32\Drivers\WSDPrint.sys - ok
17:58:41.0487 5448  [ 1C8E051AA357E5B73B74B4C8FFDCE9C3 ] C:\Windows\System32\actxprxy.dll
17:58:41.0487 5448  C:\Windows\System32\actxprxy.dll - ok
17:58:41.0487 5448  [ 93962D7FBE16AA0566A9C90E444C51A9 ] C:\Windows\System32\SettingSyncInfo.dll
17:58:41.0487 5448  C:\Windows\System32\SettingSyncInfo.dll - ok
17:58:41.0487 5448  [ 51576B5C478A587299ADA55B162E3F65 ] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
17:58:41.0487 5448  C:\Program Files\Synaptics\SynTP\SynTPEnh.exe - ok
17:58:41.0487 5448  [ 456913A14EAFD876ABDC1FC11DA856FA ] C:\Windows\System32\taskhostex.exe
17:58:41.0487 5448  C:\Windows\System32\taskhostex.exe - ok
17:58:41.0487 5448  [ 7C58A2513C3DA421A461D75C66C56D21 ] C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe
17:58:41.0487 5448  C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe - ok
17:58:41.0503 5448  [ A572A1F193C14D7C17AB2BF3029A52BB ] C:\Windows\System32\MsCtfMonitor.dll
17:58:41.0503 5448  C:\Windows\System32\MsCtfMonitor.dll - ok
17:58:41.0503 5448  [ 1A196FE539A6F81977805B6CE4F90BDC ] C:\Windows\System32\msutb.dll
17:58:41.0503 5448  C:\Windows\System32\msutb.dll - ok
17:58:41.0503 5448  [ 38E669E49C35B6A02A9AF0737C526C0F ] C:\Windows\System32\PlaySndSrv.dll
17:58:41.0503 5448  C:\Windows\System32\PlaySndSrv.dll - ok
17:58:41.0503 5448  [ A6E506E122DF3244443BE6113404EB96 ] C:\Windows\System32\pautoenr.dll
17:58:41.0503 5448  C:\Windows\System32\pautoenr.dll - ok
17:58:41.0503 5448  [ 855E7E347893BDB93245120E137577FB ] C:\Windows\System32\radardt.dll
17:58:41.0503 5448  C:\Windows\System32\radardt.dll - ok
17:58:41.0518 5448  [ BB6AD201D24E7D01649E5EDF6BE2C55F ] C:\Windows\System32\SynCOM.dll
17:58:41.0518 5448  C:\Windows\System32\SynCOM.dll - ok
17:58:41.0518 5448  [ 8596BF03CE3113E5DDFAF39997B0455D ] C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe
17:58:41.0518 5448  C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe - ok
17:58:41.0518 5448  [ 866B173A7B698995066894F7CE824105 ] C:\Program Files\ASUS\P4G\BatteryLife.exe
17:58:41.0518 5448  C:\Program Files\ASUS\P4G\BatteryLife.exe - ok
17:58:41.0518 5448  [ 15E174928C1ABD23B3647270F2632D6C ] C:\Windows\System32\CertEnroll.dll
17:58:41.0518 5448  C:\Windows\System32\CertEnroll.dll - ok
17:58:41.0518 5448  [ 51E886381803D55926A6D50643B9436C ] C:\Windows\SysWOW64\imm32.dll
17:58:41.0518 5448  C:\Windows\SysWOW64\imm32.dll - ok
17:58:41.0518 5448  [ B333AC31035042FA1869B79A8BE41469 ] C:\Windows\SysWOW64\msctf.dll
17:58:41.0518 5448  C:\Windows\SysWOW64\msctf.dll - ok
17:58:41.0518 5448  [ 20E39BE7B43479FA66F6C8D6C7FA2F9A ] C:\Program Files (x86)\ASUS\ASUS InstantOn\InsOnWMI.exe
17:58:41.0518 5448  C:\Program Files (x86)\ASUS\ASUS InstantOn\InsOnWMI.exe - ok
17:58:41.0518 5448  [ 8BC5E1F477761F75B26E66746828915D ] C:\Windows\System32\HotStartUserAgent.dll
17:58:41.0518 5448  C:\Windows\System32\HotStartUserAgent.dll - ok
17:58:41.0534 5448  [ 7E5F5E64C91FEDFE72E4C1728094BA69 ] C:\Program Files\ASUS\P4G\DevMng.dll
17:58:41.0534 5448  C:\Program Files\ASUS\P4G\DevMng.dll - ok
17:58:41.0534 5448  [ 1C36F01131AA9E8DAF2094B860A3A849 ] C:\Windows\System32\AtBroker.exe
17:58:41.0534 5448  C:\Windows\System32\AtBroker.exe - ok
17:58:41.0534 5448  [ 0E925F7BA032920D58DD284B6181A247 ] C:\Windows\System32\userinit.exe
17:58:41.0534 5448  C:\Windows\System32\userinit.exe - ok
17:58:41.0534 5448  [ CA1A098D5F9D44A839E1407F5F1F29BC ] C:\Windows\System32\SynTPAPI.dll
17:58:41.0534 5448  C:\Windows\System32\SynTPAPI.dll - ok
17:58:41.0534 5448  [ 38175536133BDC9324910582250CB8DD ] C:\Windows\System32\taskeng.exe
17:58:41.0534 5448  C:\Windows\System32\taskeng.exe - ok
17:58:41.0534 5448  [ 50E6288786474CC1275108D33FCC9488 ] C:\Program Files\ASUS\P4G\OvrClk.dll
17:58:41.0534 5448  C:\Program Files\ASUS\P4G\OvrClk.dll - ok
17:58:41.0534 5448  [ CD09341CCD92DA45EA5A0C725270FA51 ] C:\Windows\System32\userinitext.dll
17:58:41.0534 5448  C:\Windows\System32\userinitext.dll - ok
17:58:41.0534 5448  [ EB96801F0EDE0DF5EC04F820A0E2F9CD ] C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\SynptSync64.exe
17:58:41.0534 5448  C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\SynptSync64.exe - ok
17:58:41.0550 5448  [ F3DE10AABD5C7A1A186C9966F037D0C0 ] C:\Program Files (x86)\ASUS\USBChargerPlus\mfc100u.dll
17:58:41.0550 5448  C:\Program Files (x86)\ASUS\USBChargerPlus\mfc100u.dll - ok
17:58:41.0550 5448  [ 2D43B15DA25E6CDC39C733730D48F110 ] C:\Windows\WinSxS\amd64_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6910_none_88dc8c812fb1ba3f\msvcr80.dll
17:58:41.0550 5448  C:\Windows\WinSxS\amd64_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6910_none_88dc8c812fb1ba3f\msvcr80.dll - ok
17:58:41.0550 5448  [ BC61E429D78796F292D5E9A71C3A967F ] C:\Windows\System32\TSChannel.dll
17:58:41.0550 5448  C:\Windows\System32\TSChannel.dll - ok
17:58:41.0550 5448  [ 3126A761946ADC65C6BA511971EF033D ] C:\Windows\SysWOW64\MMDevAPI.dll
17:58:41.0550 5448  C:\Windows\SysWOW64\MMDevAPI.dll - ok
17:58:41.0550 5448  [ E13A31D5254C25406A7946BDD9B06364 ] C:\Windows\explorer.exe
17:58:41.0550 5448  C:\Windows\explorer.exe - ok
17:58:41.0550 5448  [ 3A6209AC494296C24C2065CB4392B5F4 ] C:\Windows\System32\rundll32.exe
17:58:41.0550 5448  C:\Windows\System32\rundll32.exe - ok
17:58:41.0550 5448  [ 4215C49E751ECA4BC42B3C10C8A55950 ] C:\Windows\System32\ncryptsslp.dll
17:58:41.0550 5448  C:\Windows\System32\ncryptsslp.dll - ok
17:58:41.0550 5448  [ 0E37FBFA79D349D672456923EC5FBBE3 ] C:\Program Files (x86)\ASUS\USBChargerPlus\msvcr100.dll
17:58:41.0550 5448  C:\Program Files (x86)\ASUS\USBChargerPlus\msvcr100.dll - ok
17:58:41.0565 5448  [ 506708142BC63DABA64F2D3AD1DCD5BF ] C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
17:58:41.0565 5448  C:\Program Files (x86)\Google\Update\GoogleUpdate.exe - ok
17:58:41.0565 5448  [ D64C4AFEE8277F35EF729A2B924666B0 ] C:\Windows\System32\appinfo.dll
17:58:41.0565 5448  C:\Windows\System32\appinfo.dll - ok
17:58:41.0565 5448  [ F6E06380D717875F6AEFC2B0694B9E9D ] C:\Windows\System32\ncryptprov.dll
17:58:41.0565 5448  C:\Windows\System32\ncryptprov.dll - ok
17:58:41.0565 5448  [ A9D30971B24700531BEB70C85D1B8328 ] C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\Bootstrap.exe
17:58:41.0565 5448  C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\Bootstrap.exe - ok
17:58:41.0565 5448  [ 2E5672EEA419A4DC9DACD714632E1DC3 ] C:\Program Files (x86)\Google\Update\1.3.21.135\goopdate.dll
17:58:41.0565 5448  C:\Program Files (x86)\Google\Update\1.3.21.135\goopdate.dll - ok
17:58:41.0581 5448  [ 6B50023FF6E54F254A179963CE848C0C ] C:\Windows\SysWOW64\AudioSes.dll
17:58:41.0581 5448  C:\Windows\SysWOW64\AudioSes.dll - ok
17:58:41.0581 5448  [ 9418BBB07F73288B8721E693A23D5FE1 ] C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\configurationManager.dll
17:58:41.0581 5448  C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\configurationManager.dll - ok
17:58:41.0581 5448  [ B936AD2AAFD19A25DD13F0CB240D4EDB ] C:\Windows\System32\WRusr.dll
17:58:41.0581 5448  C:\Windows\System32\WRusr.dll - ok
17:58:41.0581 5448  [ 0515FF4F49057EDE5FAAB6537D26D5EB ] C:\Windows\System32\dssenh.dll
17:58:41.0581 5448  C:\Windows\System32\dssenh.dll - ok
17:58:41.0581 5448  [ 4E743FA4D61A2EF8CA1642F49DC4784D ] C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16384_none_893961408605e985\comctl32.dll
17:58:41.0581 5448  C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16384_none_893961408605e985\comctl32.dll - ok
17:58:41.0597 5448  [ 14A940000E8E699F5052DC1D7F727AE8 ] C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\SimUserExec.exe
17:58:41.0597 5448  C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\SimUserExec.exe - ok
17:58:41.0597 5448  [ E81A07188A608FBA2C8C4CC1E3C4BB72 ] C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\uuid.dll
17:58:41.0597 5448  C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\uuid.dll - ok
17:58:41.0597 5448  [ FF3AA70595B26BD3DC0DDB00B90B1B57 ] C:\Windows\SysWOW64\imagehlp.dll
17:58:41.0597 5448  C:\Windows\SysWOW64\imagehlp.dll - ok
17:58:41.0597 5448  [ 8411147754C00B3B096C5C0ED95B3CFC ] C:\Windows\System32\runonce.exe
17:58:41.0597 5448  C:\Windows\System32\runonce.exe - ok
17:58:41.0597 5448  [ 65A8FBA53BD966FEBC668FC9DD66C5D8 ] C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\logger.dll
17:58:41.0597 5448  C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\logger.dll - ok
17:58:41.0612 5448  [ 3A4DE678E4E709C0794DA57C198AA7E3 ] C:\Windows\System32\wbem\WmiPrvSE.exe
17:58:41.0612 5448  C:\Windows\System32\wbem\WmiPrvSE.exe - ok
17:58:41.0612 5448  [ F0408DB6F94E3F0D5ED94B16C097A622 ] C:\Windows\SysWOW64\runonce.exe
17:58:41.0612 5448  C:\Windows\SysWOW64\runonce.exe - ok
17:58:41.0612 5448  [ CAF04E5152BC906EF0110C236D85D05D ] C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\UpdateServiceProxy.dll
17:58:41.0612 5448  C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\UpdateServiceProxy.dll - ok
17:58:41.0612 5448  [ 9E435BA84F1D0E7A390418581882B330 ] C:\Windows\System32\wbem\wmiprov.dll
17:58:41.0612 5448  C:\Windows\System32\wbem\wmiprov.dll - ok
17:58:41.0612 5448  [ 4F870EF9292559AB9DE6F31527A1DCBF ] C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\KBFiltr.exe
17:58:41.0612 5448  C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\KBFiltr.exe - ok
17:58:41.0628 5448  [ 09D886BA5A4BCC31079A2B12980CCF50 ] C:\Windows\SysWOW64\msi.dll
17:58:41.0628 5448  C:\Windows\SysWOW64\msi.dll - ok
17:58:41.0628 5448  [ A2791CF11D1ED52DBCD75D2FFD4D50E7 ] C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
17:58:41.0628 5448  C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe - ok
17:58:41.0628 5448  [ 2C35624F79B9ADBFE47090879F0D8673 ] C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
17:58:41.0628 5448  C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe - ok
17:58:41.0628 5448  [ 3AC898E2B7C02CC26CD4ED52C68D870E ] C:\Windows\System32\consent.exe
17:58:41.0628 5448  C:\Windows\System32\consent.exe - ok
17:58:41.0628 5448  [ 5125C1F27F8537F33076D0C0151F6B7F ] C:\Windows\SysWOW64\dbghelp.dll
17:58:41.0628 5448  C:\Windows\SysWOW64\dbghelp.dll - ok
17:58:41.0628 5448  [ 874C8B1317C58FFE62D4D6AA591EABE2 ] C:\Windows\WinSxS\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6871_none_50944e7cbcb706e5\msvcp90.dll
17:58:41.0628 5448  C:\Windows\WinSxS\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6871_none_50944e7cbcb706e5\msvcp90.dll - ok
17:58:41.0643 5448  [ E9B9C28A237D8FEF1FCD2C0D08E7D3C4 ] C:\Windows\System32\upnp.dll
17:58:41.0643 5448  C:\Windows\System32\upnp.dll - ok
17:58:41.0643 5448  [ F1F9EEEF647CFA62A7104C054CE0999B ] C:\Windows\WinSxS\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6871_none_50944e7cbcb706e5\msvcr90.dll
17:58:41.0643 5448  C:\Windows\WinSxS\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6871_none_50944e7cbcb706e5\msvcr90.dll - ok
17:58:41.0643 5448  [ F1361853DCE62DA4540B5CFC072F7CB0 ] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16502_none_ba1c7f1de09f65fb\GdiPlus.dll
17:58:41.0643 5448  C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16502_none_ba1c7f1de09f65fb\GdiPlus.dll - ok
17:58:41.0643 5448  [ BECDDA0990DEBD72A30096533521AD73 ] C:\Program Files (x86)\Google\Update\1.3.21.135\GoogleCrashHandler.exe
17:58:41.0643 5448  C:\Program Files (x86)\Google\Update\1.3.21.135\GoogleCrashHandler.exe - ok
17:58:41.0643 5448  [ 5996C79FB52BDE3FA10F77396654AE42 ] C:\Windows\SysWOW64\cmd.exe
17:58:41.0643 5448  C:\Windows\SysWOW64\cmd.exe - ok
17:58:41.0659 5448  [ 32EE27E6AC39863A2C99D29E73ED63A9 ] C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\QtCore4.dll
17:58:41.0659 5448  C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\QtCore4.dll - ok
17:58:41.0659 5448  [ B676429E44F2F8ACC3BAE7C89F46B212 ] C:\Program Files (x86)\Google\Update\1.3.21.135\GoogleCrashHandler64.exe
17:58:41.0659 5448  C:\Program Files (x86)\Google\Update\1.3.21.135\GoogleCrashHandler64.exe - ok
17:58:41.0659 5448  [ 86F869D43E6E998466538A1DF0D1E6D7 ] C:\Windows\System32\drttransport.dll
17:58:41.0659 5448  C:\Windows\System32\drttransport.dll - ok
17:58:41.0659 5448  [ D635063008E82F77E9E4563F4C987DDD ] C:\Windows\SysWOW64\mstask.dll
17:58:41.0659 5448  C:\Windows\SysWOW64\mstask.dll - ok
17:58:41.0659 5448  [ BFABA02A0EA273980BA69DA07483737E ] C:\Windows\System32\drt.dll
17:58:41.0659 5448  C:\Windows\System32\drt.dll - ok
17:58:41.0659 5448  [ F6252071299496777D1E3EC407A90929 ] C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\log4cplus.dll
17:58:41.0659 5448  C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\log4cplus.dll - ok
17:58:41.0675 5448  [ F2E12B5B7EEDE6854104E5AF8AC841A8 ] C:\Windows\SysWOW64\cmdext.dll
17:58:41.0675 5448  C:\Windows\SysWOW64\cmdext.dll - ok
17:58:41.0675 5448  [ 9DA86B80AE1339F19CD5D290787EB7B3 ] C:\Windows\SysWOW64\shdocvw.dll
17:58:41.0675 5448  C:\Windows\SysWOW64\shdocvw.dll - ok
17:58:41.0675 5448  [ B4974FE6381BCD2B9E29067BF09B7998 ] C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\serializer.dll
17:58:41.0675 5448  C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\serializer.dll - ok
17:58:41.0675 5448  [ 178A34E5554DCE485E1262DDF027960C ] C:\Users\Tyler\AppData\Local\Temp\867AE70A-9565-48EA-819B-05B37B156CAE.exe
17:58:41.0675 5448  C:\Users\Tyler\AppData\Local\Temp\867AE70A-9565-48EA-819B-05B37B156CAE.exe - ok
17:58:41.0675 5448  [ 9EE6787AE819938CA920E212E91ABB54 ] C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\DispatcherProxy.dll
17:58:41.0675 5448  C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\DispatcherProxy.dll - ok
17:58:41.0690 5448  [ B9FBF6DCA686F58D7FB70D6704A49490 ] C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\localMessage.dll
17:58:41.0690 5448  C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\localMessage.dll - ok
17:58:41.0690 5448  [ F8DE2E949B135BA7E45AE18DC82BF262 ] C:\Windows\SysWOW64\pcacli.dll
17:58:41.0690 5448  C:\Windows\SysWOW64\pcacli.dll - ok
17:58:41.0690 5448  [ 377D17C94739636DBA32756CB2AD9697 ] C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\payload.dll
17:58:41.0690 5448  C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\payload.dll - ok
17:58:41.0690 5448  [ 974AE60BF5B90E31412D93596C968E5B ] C:\Windows\System32\aelupsvc.dll
17:58:41.0690 5448  C:\Windows\System32\aelupsvc.dll - ok
17:58:41.0690 5448  [ ED6EA226D8C2C1176D8D9A98A135D5E4 ] C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\QtXml4.dll
17:58:41.0690 5448  C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\QtXml4.dll - ok
17:58:41.0706 5448  [ 4F096E6DF6D6AA79E0F1F5A8C09345F8 ] C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\libgsoap.dll
17:58:41.0706 5448  C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\libgsoap.dll - ok
17:58:41.0706 5448  [ DB7CEC90A825E1BF3DDFEA41EA61EBA4 ] C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\ServiceManagerStarter.dll
17:58:41.0706 5448  C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\ServiceManagerStarter.dll - ok
17:58:41.0706 5448  [ 6F10E2F73CCCD986C585A0D27CE37F5E ] C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
17:58:41.0706 5448  C:\Program Files\Synaptics\SynTP\SynTPHelper.exe - ok
17:58:41.0706 5448  [ F9A5AEDEB954D37BE3C13F2CAC02727B ] C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\libeay32.dll
17:58:41.0706 5448  C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\libeay32.dll - ok
17:58:41.0706 5448  [ 18D61C0822414ACDBD88EB8AD6319D70 ] C:\Windows\System32\ExplorerFrame.dll
17:58:41.0706 5448  C:\Windows\System32\ExplorerFrame.dll - ok
17:58:41.0706 5448  [ B3FB360040585245DF0A4E63A8987BDF ] C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\ssleay32.dll
17:58:41.0706 5448  C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\ssleay32.dll - ok
17:58:41.0722 5448  [ 83564FD69621419EABBE1AE03428976D ] C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\zlib1.dll
17:58:41.0722 5448  C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\zlib1.dll - ok
17:58:41.0722 5448  [ AD18A46DE75479C9B9AEC783FB7F9883 ] C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\QtNetwork4.dll
17:58:41.0722 5448  C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\QtNetwork4.dll - ok
17:58:41.0722 5448  [ 51187F2413CDB487542290E046B6378E ] C:\Windows\System32\twinapi.dll
17:58:41.0722 5448  C:\Windows\System32\twinapi.dll - ok
17:58:41.0722 5448  [ C4729C10C3D9E1517EFF2C7AAE72E819 ] C:\Windows\System32\gameux.dll
17:58:41.0722 5448  C:\Windows\System32\gameux.dll - ok
17:58:41.0722 5448  [ DC4044C6102DE12837143B257C25EDDC ] C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\ismagent.exe
17:58:41.0722 5448  C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\ismagent.exe - ok
17:58:41.0722 5448  [ 40F92737042DD339459467330CFFBD1B ] C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\CorePersistenceAPI.dll
17:58:41.0722 5448  C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\CorePersistenceAPI.dll - ok
17:58:41.0737 5448  [ D0398301E7E94D2B7DFE6D12DE77E809 ] C:\Windows\System32\cryptnet.dll
17:58:41.0737 5448  C:\Windows\System32\cryptnet.dll - ok
17:58:41.0737 5448  [ 8620189836543C2A0435BF37C864BCEE ] C:\Windows\System32\twinui.dll
17:58:41.0737 5448  C:\Windows\System32\twinui.dll - ok
17:58:41.0737 5448  [ FC3ABDB19F5F9BA06FD4603AE437A2AA ] C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\orchestrator.dll
17:58:41.0737 5448  C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\orchestrator.dll - ok
17:58:41.0737 5448  [ 8588F3ED28B2BBF89E0BA96BB20EB7DA ] C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\featureController.dll
17:58:41.0737 5448  C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\featureController.dll - ok
17:58:41.0737 5448  [ FB6FE1D7717F7A35ABEED2CE4BE5AB5E ] C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\dispatcher.dll
17:58:41.0737 5448  C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\dispatcher.dll - ok
17:58:41.0753 5448  [ 9743899CE8E4C9686DC8D87E3AD2B0D3 ] C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\sqlite3.dll
17:58:41.0753 5448  C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\sqlite3.dll - ok
17:58:41.0753 5448  [ 70C3B722AE97E6C6A144EC20E5D7C080 ] C:\Windows\System32\windows.immersiveshell.serviceprovider.dll
17:58:41.0753 5448  C:\Windows\System32\windows.immersiveshell.serviceprovider.dll - ok
17:58:41.0753 5448  [ 8BA134DB1017B64E48F994A1112931B2 ] C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\sealing.dll
17:58:41.0753 5448  C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\sealing.dll - ok
17:58:41.0753 5448  [ 0E0753821511B1ABD75FF4C2098D6D88 ] C:\Windows\SysWOW64\dlnashext.dll
17:58:41.0753 5448  C:\Windows\SysWOW64\dlnashext.dll - ok
17:58:41.0753 5448  [ 1D2BF8A373546ADA00F09DC7496B86AB ] C:\Windows\System32\wpncore.dll
17:58:41.0753 5448  C:\Windows\System32\wpncore.dll - ok
17:58:41.0753 5448  [ C03A03BAF132E5AAE4ECB764985713D8 ] C:\Windows\SysWOW64\Windows.Media.Streaming.dll
17:58:41.0753 5448  C:\Windows\SysWOW64\Windows.Media.Streaming.dll - ok
17:58:41.0753 5448  [ F0814D492176F8A4FD49D852D2AD748E ] C:\Windows\System32\sppc.dll
17:58:41.0753 5448  C:\Windows\System32\sppc.dll - ok
17:58:41.0768 5448  [ 24360C89F7487992B7BC1D8B9AAF52B6 ] C:\Windows\SysWOW64\xmllite.dll
17:58:41.0768 5448  C:\Windows\SysWOW64\xmllite.dll - ok
17:58:41.0768 5448  [ 7684ED0FA7AE8A417FEB58CAEAF8FDBF ] C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\PureThemeRes.dll
17:58:41.0768 5448  C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\PureThemeRes.dll - ok
17:58:41.0768 5448  [ FCD59C405ADFADAC1B0729C580F7F70C ] C:\Windows\System32\wlidprov.dll
17:58:41.0768 5448  C:\Windows\System32\wlidprov.dll - ok
17:58:41.0768 5448  [ 17743E29177A9E5913E726E06D634C1B ] C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\rcdio.dll
17:58:41.0768 5448  C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\rcdio.dll - ok
17:58:41.0768 5448  [ 6C3286861FFBCFD7B47E6CFAA0802CB7 ] C:\Program Files (x86)\ASUS\ATK Package\ATK Media\MetroInfo.dll
17:58:41.0768 5448  C:\Program Files (x86)\ASUS\ATK Package\ATK Media\MetroInfo.dll - ok
17:58:41.0768 5448  [ 21257250BC8A4429507C0269DDE581B5 ] C:\Windows\SysWOW64\DevDispItemProvider.dll
17:58:41.0768 5448  C:\Windows\SysWOW64\DevDispItemProvider.dll - ok
17:58:41.0768 5448  [ FE5C08B68C337E72CD15C6E4DF98E2C7 ] C:\Windows\SysWOW64\wpdshext.dll
17:58:41.0768 5448  C:\Windows\SysWOW64\wpdshext.dll - ok
17:58:41.0768 5448  [ FF4135424A79DCC2998276D8E39C9B4D ] C:\Windows\System32\TimeBrokerServer.dll
17:58:41.0768 5448  C:\Windows\System32\TimeBrokerServer.dll - ok
17:58:41.0784 5448  [ B786B7C75B7B9E946A1654853F882F71 ] C:\Windows\SysWOW64\actxprxy.dll
17:58:41.0784 5448  C:\Windows\SysWOW64\actxprxy.dll - ok
17:58:41.0784 5448  [ 9C0502C5E747C8011D700DCA681A55A1 ] C:\Windows\System32\ELSCore.dll
17:58:41.0784 5448  C:\Windows\System32\ELSCore.dll - ok
17:58:41.0784 5448  [ E219BF7BCCFE4881B0C053C7E0B47ECC ] C:\Windows\System32\SystemEventsBrokerServer.dll
17:58:41.0784 5448  C:\Windows\System32\SystemEventsBrokerServer.dll - ok
17:58:41.0784 5448  [ 9314C83DE37182685C788FCA3CEC43A4 ] C:\Windows\System32\thumbcache.dll
17:58:41.0784 5448  C:\Windows\System32\thumbcache.dll - ok
17:58:41.0784 5448  [ A0F844B0E9ADACA064B832CAF0AEE338 ] C:\Windows\System32\elsTrans.dll
17:58:41.0784 5448  C:\Windows\System32\elsTrans.dll - ok
17:58:41.0784 5448  [ 7F81942E5269D4079BC77A60E2A08A24 ] C:\Windows\System32\dlnashext.dll
17:58:41.0784 5448  C:\Windows\System32\dlnashext.dll - ok
17:58:41.0784 5448  [ C90681D24157289163541020CE3E08E6 ] C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\CrashReportSender.exe
17:58:41.0784 5448  C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\CrashReportSender.exe - ok
17:58:41.0784 5448  [ DCB7509F83B2A2089DBE07DDEDB52017 ] C:\Windows\System32\WinTypes.dll
17:58:41.0784 5448  C:\Windows\System32\WinTypes.dll - ok
17:58:41.0800 5448  [ 52FDF003556C7DC2733F1B0687487B1C ] C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\QtGui4.dll
17:58:41.0800 5448  C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\QtGui4.dll - ok
17:58:41.0800 5448  [ F6F335A35D54FF8A55D15FA35E0F7671 ] C:\Windows\System32\elslad.dll
17:58:41.0800 5448  C:\Windows\System32\elslad.dll - ok
17:58:41.0800 5448  [ B7CFDB21D7E98B462EB1AF3112F9293C ] C:\Windows\SysWOW64\ncrypt.dll
17:58:41.0800 5448  C:\Windows\SysWOW64\ncrypt.dll - ok
17:58:41.0800 5448  [ 10EB888ED897F031B9BFAC5867F5B290 ] C:\Windows\SysWOW64\bcrypt.dll
17:58:41.0800 5448  C:\Windows\SysWOW64\bcrypt.dll - ok
17:58:41.0800 5448  [ D12DE9350321CF21238FCA4ED76B12A7 ] C:\Windows\SysWOW64\ntasn1.dll
17:58:41.0800 5448  C:\Windows\SysWOW64\ntasn1.dll - ok
17:58:41.0800 5448  [ C2C86942ED94D1CD81F61BEFB3036AF6 ] C:\Windows\SysWOW64\comdlg32.dll
17:58:41.0800 5448  C:\Windows\SysWOW64\comdlg32.dll - ok
17:58:41.0815 5448  [ F146E2BA475893DD77B2370DC1211FC6 ] C:\Windows\System32\Drivers\12086550.sys
17:58:41.0815 5448  C:\Windows\System32\Drivers\12086550.sys - ok
17:58:41.0815 5448  [ 48067CB53E31B98A394CB12024F26D1B ] C:\Windows\System32\Windows.Globalization.Fontgroups.dll
17:58:41.0815 5448  C:\Windows\System32\Windows.Globalization.Fontgroups.dll - ok
17:58:41.0815 5448  [ 843D5C2D3032631E400E3ACD1F06312E ] C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16.4.4406.1205_x64__8wekyb3d8bbwe\LiveComm.exe
17:58:41.0815 5448  C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16.4.4406.1205_x64__8wekyb3d8bbwe\LiveComm.exe - ok
17:58:41.0815 5448  [ 4E6C0D003B381CC109A50794A2F1A222 ] C:\Windows\System32\stobject.dll
17:58:41.0815 5448  C:\Windows\System32\stobject.dll - ok
17:58:41.0815 5448  [ 638407A6996B1DD4CB7BB979B8C260DE ] C:\Windows\System32\Windows.Networking.Connectivity.dll
17:58:41.0815 5448  C:\Windows\System32\Windows.Networking.Connectivity.dll - ok
17:58:41.0831 5448  [ D12BEB5E114701442F1FAA92A739E60E ] C:\Windows\System32\prnfldr.dll
17:58:41.0831 5448  C:\Windows\System32\prnfldr.dll - ok
17:58:41.0831 5448  [ 15AC3A854C3DD59DFD11EEE2FF63C79A ] C:\Windows\SysWOW64\riched20.dll
17:58:41.0831 5448  C:\Windows\SysWOW64\riched20.dll - ok
17:58:41.0831 5448  [ 907C4782AA98A587EAA50D830FFC246C ] C:\Windows\System32\DeviceSetupManagerAPI.dll
17:58:41.0831 5448  C:\Windows\System32\DeviceSetupManagerAPI.dll - ok
17:58:41.0831 5448  [ 7ECD8DF63A762BDE3F481BC4239FB9AB ] C:\Windows\System32\shdocvw.dll
17:58:41.0831 5448  C:\Windows\System32\shdocvw.dll - ok
17:58:41.0831 5448  [ 04ED9A5B39FFDDDD8314E8F34049022F ] C:\Windows\System32\dbghelp.dll
17:58:41.0831 5448  C:\Windows\System32\dbghelp.dll - ok
17:58:41.0847 5448  [ 44F388C294370B255F7EB751939BD6E3 ] C:\Windows\System32\wpnprv.dll
17:58:41.0847 5448  C:\Windows\System32\wpnprv.dll - ok
17:58:41.0847 5448  [ BC9503A901A545FAD807909F8C86B286 ] C:\Windows\SysWOW64\usp10.dll
17:58:41.0847 5448  C:\Windows\SysWOW64\usp10.dll - ok
17:58:41.0847 5448  [ 5F59C3E414CC8A05FFB4D86FFCB13CD4 ] C:\Windows\System32\Windows.Security.Authentication.OnlineId.dll
17:58:41.0847 5448  C:\Windows\System32\Windows.Security.Authentication.OnlineId.dll - ok
17:58:41.0847 5448  [ C4A6771ABE5F9B2B9B5876175F14E61A ] C:\Windows\SysWOW64\msls31.dll
17:58:41.0847 5448  C:\Windows\SysWOW64\msls31.dll - ok
17:58:41.0847 5448  [ 043B150DA8B3559BD7AE701D3496D232 ] C:\Windows\System32\DXP.dll
17:58:41.0847 5448  C:\Windows\System32\DXP.dll - ok
17:58:41.0847 5448  [ 074223C4D8109C016B5864DEBF356BD8 ] C:\Windows\SysWOW64\ExplorerFrame.dll
17:58:41.0847 5448  C:\Windows\SysWOW64\ExplorerFrame.dll - ok
17:58:41.0862 5448  [ 5A5E57A0E1D3674AE9ADBC9CAD80428D ] C:\Windows\System32\Syncreg.dll
17:58:41.0862 5448  C:\Windows\System32\Syncreg.dll - ok
17:58:41.0862 5448  [ ABE4B349D12138772B0D3B1B55C5F2A8 ] C:\Windows\System32\MrmCoreR.dll
17:58:41.0862 5448  C:\Windows\System32\MrmCoreR.dll - ok
17:58:41.0862 5448  [ 83A075C07425E84ACC6687FFF7126930 ] C:\Windows\System32\Windows.Networking.Sockets.PushEnabledApplication.dll
17:58:41.0862 5448  C:\Windows\System32\Windows.Networking.Sockets.PushEnabledApplication.dll - ok
17:58:41.0862 5448  [ 65D2E7FA68A3E0A3F4D586C395E5DB5A ] C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
17:58:41.0862 5448  C:\Program Files\NVIDIA Corporation\Display\nvtray.exe - ok
17:58:41.0862 5448  [ CE0BD323EB9BDFD140271E550CBA4111 ] C:\Windows\System32\TimeBrokerClient.dll
17:58:41.0862 5448  C:\Windows\System32\TimeBrokerClient.dll - ok
17:58:41.0862 5448  [ FE4D3F3C0F40B9CF957091847704D22E ] C:\Windows\SysWOW64\duser.dll
17:58:41.0862 5448  C:\Windows\SysWOW64\duser.dll - ok
17:58:41.0878 5448  [ FB11241B62F07C9FFE664610E262C528 ] C:\Windows\SysWOW64\dui70.dll
17:58:41.0878 5448  C:\Windows\SysWOW64\dui70.dll - ok
17:58:41.0878 5448  [ 923260FAA0F64A90FA63F7EAC08881AF ] C:\Windows\System32\AltTab.dll
17:58:41.0878 5448  C:\Windows\System32\AltTab.dll - ok
17:58:41.0878 5448  [ 259C9486E06C16BF1BC36CAE784FDFDE ] C:\Windows\System32\WWanAPI.dll
17:58:41.0878 5448  C:\Windows\System32\WWanAPI.dll - ok
17:58:41.0878 5448  [ 56C91F36ADE867F0EDFE0BC6179AC2BC ] C:\Windows\System32\WPDShServiceObj.dll
17:58:41.0878 5448  C:\Windows\System32\WPDShServiceObj.dll - ok
17:58:41.0878 5448  [ B5198D9837E0EC371EF0D3F5BE423C61 ] C:\Windows\System32\SettingMonitor.dll
17:58:41.0878 5448  C:\Windows\System32\SettingMonitor.dll - ok
17:58:41.0878 5448  [ 4681211F6D66604F34646FA6EB84D989 ] C:\Program Files\Windows Portable Devices\sqmapi.dll
17:58:41.0878 5448  C:\Program Files\Windows Portable Devices\sqmapi.dll - ok
17:58:41.0893 5448  [ B5B888CC649B181FD7E926B702E6E333 ] C:\Program Files\NVIDIA Corporation\Update Common\NvUpdt.dll
17:58:41.0893 5448  C:\Program Files\NVIDIA Corporation\Update Common\NvUpdt.dll - ok
17:58:41.0893 5448  [ A084CB0B1898CE603EEF210DF7C13C2D ] C:\Windows\System32\pnidui.dll
17:58:41.0893 5448  C:\Windows\System32\pnidui.dll - ok
17:58:41.0893 5448  [ 08E3627E524C3C01CCC6BB4A45A563A1 ] C:\Program Files\NVIDIA Corporation\Update Common\EasyDaemonAPIU64.dll
17:58:41.0893 5448  C:\Program Files\NVIDIA Corporation\Update Common\EasyDaemonAPIU64.dll - ok
17:58:41.0893 5448  [ 4B5A42E0FDD2012B6940CC14F447E8D8 ] C:\Windows\System32\NcaApi.dll
17:58:41.0893 5448  C:\Windows\System32\NcaApi.dll - ok
17:58:41.0893 5448  [ 797119E1F2752761610CDAA02CC472A3 ] C:\Windows\System32\IME\SHARED\IMEROAMING.DLL
17:58:41.0893 5448  C:\Windows\System32\IME\SHARED\IMEROAMING.DLL - ok
17:58:41.0909 5448  [ 7CEE52B25CA677E5B62DC00E3BD3BBCE ] C:\Windows\System32\ActionCenter.dll
17:58:41.0909 5448  C:\Windows\System32\ActionCenter.dll - ok
17:58:41.0909 5448  [ 3F8FF9CA76148E5AA130619D5950924E ] C:\Program Files\NVIDIA Corporation\Update Common\NvUpdtr.dll
17:58:41.0909 5448  C:\Program Files\NVIDIA Corporation\Update Common\NvUpdtr.dll - ok
17:58:41.0909 5448  [ AAA384C8F6412103973518D60FCEAAD0 ] C:\Windows\System32\bthprops.cpl
17:58:41.0909 5448  C:\Windows\System32\bthprops.cpl - ok
17:58:41.0909 5448  [ AAB25C7F73532849DE843C563BADA8CF ] C:\Windows\System32\PackageStateRoaming.dll
17:58:41.0909 5448  C:\Windows\System32\PackageStateRoaming.dll - ok
17:58:41.0909 5448  [ D8DCEE270674DDB6503730CC4C2F1691 ] C:\Windows\System32\BluetoothApis.dll
17:58:41.0909 5448  C:\Windows\System32\BluetoothApis.dll - ok
17:58:41.0925 5448  [ 1ED1CC6DDF3CB9EB18775DB66F22A6B1 ] C:\Windows\System32\ieframe.dll
17:58:41.0925 5448  C:\Windows\System32\ieframe.dll - ok
17:58:41.0925 5448  [ 3272C305E17EBB7F56D43752382A1E1A ] C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\ComUpdatus.exe
17:58:41.0925 5448  C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\ComUpdatus.exe - ok
17:58:41.0925 5448  [ C82020F726F659478ACB95051C054CB5 ] C:\Windows\SysWOW64\sxs.dll
17:58:41.0925 5448  C:\Windows\SysWOW64\sxs.dll - ok
17:58:41.0925 5448  [ 38137F08A49BAE48FB8E3A39CF06DBB2 ] C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\plugin\BackendService.dll
17:58:41.0925 5448  C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\plugin\BackendService.dll - ok
17:58:41.0925 5448  [ 7C3B449F661D99A9B1033A14033D2987 ] C:\Program Files\WindowsApps\Microsoft.VCLibs.110.00_11.0.51106.1_x64__8wekyb3d8bbwe\msvcr110.dll
17:58:41.0925 5448  C:\Program Files\WindowsApps\Microsoft.VCLibs.110.00_11.0.51106.1_x64__8wekyb3d8bbwe\msvcr110.dll - ok
17:58:41.0925 5448  [ 39DED282AF86F121A367089DECCA7154 ] C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\policyManager.dll
17:58:41.0925 5448  C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\policyManager.dll - ok
17:58:41.0925 5448  [ 0375D7133CDAC5FC978B53832E83A54D ] C:\Windows\SysWOW64\nvapi.dll
17:58:41.0925 5448  C:\Windows\SysWOW64\nvapi.dll - ok
17:58:41.0925 5448  [ 608ED7A538A3BDB117C9D0429756C037 ] C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\network.dll
17:58:41.0925 5448  C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\network.dll - ok
17:58:41.0940 5448  [ 5EFD801A12FB267405B24945012F5E1A ] C:\Windows\System32\linkinfo.dll
17:58:41.0940 5448  C:\Windows\System32\linkinfo.dll - ok
17:58:41.0940 5448  [ DD236E26397C1C79D55684F5A72E1C3C ] C:\Windows\System32\PhotoMetadataHandler.dll
17:58:41.0940 5448  C:\Windows\System32\PhotoMetadataHandler.dll - ok
17:58:41.0940 5448  [ D97ED8735E58E646D64C96AF1E2999DB ] C:\Windows\SysWOW64\gpapi.dll
17:58:41.0940 5448  C:\Windows\SysWOW64\gpapi.dll - ok
17:58:41.0940 5448  [ C56D713D0C3148B893FEEA4B0B7A23B9 ] C:\Windows\SysWOW64\cryptnet.dll
17:58:41.0940 5448  C:\Windows\SysWOW64\cryptnet.dll - ok
17:58:41.0940 5448  [ 1496430C99C30396065A0A7050D9C7B6 ] C:\Windows\SysWOW64\Wldap32.dll
17:58:41.0940 5448  C:\Windows\SysWOW64\Wldap32.dll - ok
17:58:41.0940 5448  [ 9AFF71FCC5424D72DB0E2D3E4804ABF0 ] C:\Windows\System32\apprepapi.dll
17:58:41.0940 5448  C:\Windows\System32\apprepapi.dll - ok
17:58:41.0940 5448  [ AE216A0329FAC7804DC4DFEA49254F0D ] C:\Windows\System32\ntshrui.dll
17:58:41.0940 5448  C:\Windows\System32\ntshrui.dll - ok
17:58:41.0940 5448  [ 7E52729C0553B1CBD34DF57EFC8DAE2F ] C:\Windows\SysWOW64\dsrole.dll
17:58:41.0940 5448  C:\Windows\SysWOW64\dsrole.dll - ok
17:58:41.0956 5448  [ 008207A8345B1A1551C360F1F8BC3420 ] C:\Windows\System32\msxml3.dll
17:58:41.0956 5448  C:\Windows\System32\msxml3.dll - ok
17:58:41.0956 5448  [ 3337A8EACB03E0D6472CA90E8B2C5340 ] C:\Windows\SysWOW64\logoncli.dll
17:58:41.0956 5448  C:\Windows\SysWOW64\logoncli.dll - ok
17:58:41.0956 5448  [ F7C576B31DD1D18E8C45A43AE807C5F5 ] C:\Windows\System32\ThumbnailExtractionHost.exe
17:58:41.0956 5448  C:\Windows\System32\ThumbnailExtractionHost.exe - ok
17:58:41.0956 5448  [ E4D095FD59ADF8E85C33DA0A2E0EB8B3 ] C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\plugin\DeviceProfileService.dll
17:58:41.0956 5448  C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\plugin\DeviceProfileService.dll - ok
17:58:41.0956 5448  [ 781FB07FFD5F3834CCB9EB6A43FF31B6 ] C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\DeviceProfile.dll
17:58:41.0956 5448  C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\DeviceProfile.dll - ok
17:58:41.0956 5448  [ AA2DE4DA3CBF97E210933918E70D7593 ] C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\systemInfo.dll
17:58:41.0956 5448  C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\systemInfo.dll - ok
17:58:41.0956 5448  [ 11D67BD3DB8FFCB3C106D03265B90A91 ] C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\plugin\dispatcherServer.dll
17:58:41.0956 5448  C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\plugin\dispatcherServer.dll - ok
17:58:41.0972 5448  [ C9AC20CF0551E854A933AE41ED9FF28B ] C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\plugin\DownloadManager.dll
17:58:41.0972 5448  C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\plugin\DownloadManager.dll - ok
17:58:41.0972 5448  [ 0208CAE5E09FA01DA2649702AE9616F6 ] C:\Windows\System32\srchadmin.dll
17:58:41.0972 5448  C:\Windows\System32\srchadmin.dll - ok
17:58:41.0972 5448  [ 8791FDFDF9C3281B093EECEE9130E403 ] C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\plugin\PServerPlugin.dll
17:58:41.0972 5448  C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\plugin\PServerPlugin.dll - ok
17:58:41.0972 5448  [ E7BE2296105069DA0C8F9206F070C6EF ] C:\Windows\System32\SearchIndexer.exe
17:58:41.0972 5448  C:\Windows\System32\SearchIndexer.exe - ok
17:58:41.0972 5448  [ E34680D680F5316AFAE5C68F5540680D ] C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\plugin\SystemMonitor.dll
17:58:41.0972 5448  C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\plugin\SystemMonitor.dll - ok
17:58:41.0972 5448  [ A92ECB024DFFAF22DD4E0546D9B59191 ] C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\plugin\UpdateService.dll
17:58:41.0972 5448  C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\plugin\UpdateService.dll - ok
17:58:41.0987 5448  [ EB003CF63697C3B6AFA9CF769759A5B2 ] C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16.4.4406.1205_x64__8wekyb3d8bbwe\wllog.dll
17:58:41.0987 5448  C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16.4.4406.1205_x64__8wekyb3d8bbwe\wllog.dll - ok
17:58:41.0987 5448  [ EF020C471AB8F25726060F251AA467F5 ] C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\eventsSender.dll
17:58:41.0987 5448  C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\eventsSender.dll - ok
17:58:41.0987 5448  [ 11F94498EF8A2BBC1384F4B59FC81CF9 ] C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\ChannelAdapter.dll
17:58:41.0987 5448  C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\ChannelAdapter.dll - ok
17:58:41.0987 5448  [ D86F25F0AD6CA6E77A9F67641EEB6722 ] C:\Program Files\Internet Explorer\sqmapi.dll
17:58:41.0987 5448  C:\Program Files\Internet Explorer\sqmapi.dll - ok
17:58:41.0987 5448  [ 7308CF302FAD17A77A2EB87ACE9185E0 ] C:\Windows\System32\networkexplorer.dll
17:58:41.0987 5448  C:\Windows\System32\networkexplorer.dll - ok
17:58:42.0003 5448  [ 520C138EB08059060D30C92BE5F817FE ] C:\Windows\System32\msiltcfg.dll
17:58:42.0003 5448  C:\Windows\System32\msiltcfg.dll - ok
17:58:42.0003 5448  [ 06C6EF27F6236406013E00B547DE95F4 ] C:\Windows\System32\AcSignIcon.dll
17:58:42.0003 5448  C:\Windows\System32\AcSignIcon.dll - ok
17:58:42.0003 5448  [ D9309C43C47D40315585871D9C6FED3C ] C:\Windows\System32\tquery.dll
17:58:42.0003 5448  C:\Windows\System32\tquery.dll - ok
17:58:42.0003 5448  [ 85ED13922DF97474AF9979CA456C6748 ] C:\Windows\System32\mfc100u.dll
17:58:42.0003 5448  C:\Windows\System32\mfc100u.dll - ok
17:58:42.0003 5448  [ D0D3846F09A8783F3F07AFC29CC3AEF4 ] C:\Windows\System32\WindowsCodecsExt.dll
17:58:42.0003 5448  C:\Windows\System32\WindowsCodecsExt.dll - ok
17:58:42.0018 5448  [ 78E10345A0A592BDDACFB40EB8444B5B ] C:\Windows\System32\mssrch.dll
17:58:42.0018 5448  C:\Windows\System32\mssrch.dll - ok
17:58:42.0018 5448  [ B996429B04D53946FD8DBA5326B18AE7 ] C:\Windows\System32\icm32.dll
17:58:42.0018 5448  C:\Windows\System32\icm32.dll - ok
17:58:42.0018 5448  [ 94F97611FFCFF810BF8CB0D467BADA60 ] C:\Windows\System32\msidle.dll
17:58:42.0018 5448  C:\Windows\System32\msidle.dll - ok
17:58:42.0018 5448  [ F98FAED087C12A4D94D6ECDA0618C918 ] C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16.4.4406.1205_x64__8wekyb3d8bbwe\Microsoft.WindowsLive.Platform.Service.dll
17:58:42.0018 5448  C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16.4.4406.1205_x64__8wekyb3d8bbwe\Microsoft.WindowsLive.Platform.Service.dll - ok
17:58:42.0018 5448  [ C3C9A444FA26DB4B993AE3DA6C3DD683 ] C:\Windows\System32\mssprxy.dll
17:58:42.0018 5448  C:\Windows\System32\mssprxy.dll - ok
17:58:42.0034 5448  [ 5E2F28A979A0CE9B43F1815A593617C5 ] C:\Windows\System32\mfc100enu.dll
17:58:42.0034 5448  C:\Windows\System32\mfc100enu.dll - ok
17:58:42.0034 5448  [ DA3021EFAC1D185AC725AFCCD3398521 ] C:\Windows\System32\msi.dll
17:58:42.0034 5448  C:\Windows\System32\msi.dll - ok
17:58:42.0034 5448  [ CB7242A05FFD365BBBBE102D24786DEE ] C:\Windows\System32\Windows.Storage.ApplicationData.dll
17:58:42.0034 5448  C:\Windows\System32\Windows.Storage.ApplicationData.dll - ok
17:58:42.0034 5448  [ 8F6A65D15A0CB3653E2CA3A3B937F6B6 ] C:\Windows\System32\EhStorShell.dll
17:58:42.0034 5448  C:\Windows\System32\EhStorShell.dll - ok
17:58:42.0034 5448  [ D240CBB72679D6B4B5B07619F0A07F06 ] C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16.4.4406.1205_x64__8wekyb3d8bbwe\shared\bici.dll
17:58:42.0034 5448  C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16.4.4406.1205_x64__8wekyb3d8bbwe\shared\bici.dll - ok
17:58:42.0034 5448  [ 3E4CC1E808A0FC8F487036349F4E6810 ] C:\Windows\System32\threadpoolwinrt.dll
17:58:42.0034 5448  C:\Windows\System32\threadpoolwinrt.dll - ok
17:58:42.0050 5448  [ 797769FC191B03A01661CB5F855CFD30 ] C:\Windows\System32\biwinrt.dll
17:58:42.0050 5448  C:\Windows\System32\biwinrt.dll - ok
17:58:42.0050 5448  [ 2124F64AC15BF1FC1FE117F942ED8EC0 ] C:\Program Files\Common Files\Autodesk Shared\DirectConnect2013 (64-bit)\bin\Aruba\AcSignCore16.dll
17:58:42.0050 5448  C:\Program Files\Common Files\Autodesk Shared\DirectConnect2013 (64-bit)\bin\Aruba\AcSignCore16.dll - ok
17:58:42.0050 5448  [ D9656CE867A982814AF3C9C558D04A82 ] C:\Windows\System32\wbem\cimwin32.dll
17:58:42.0050 5448  C:\Windows\System32\wbem\cimwin32.dll - ok
17:58:42.0050 5448  [ 9913A96B7A27DF38A8AA3B2A949F4008 ] C:\Windows\System32\framedynos.dll
17:58:42.0050 5448  C:\Windows\System32\framedynos.dll - ok
17:58:42.0050 5448  [ 924DAF97890A77590835B83E53CEC382 ] C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16.4.4406.1205_x64__8wekyb3d8bbwe\Microsoft.WindowsLive.Platform.dll
17:58:42.0050 5448  C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16.4.4406.1205_x64__8wekyb3d8bbwe\Microsoft.WindowsLive.Platform.dll - ok
17:58:42.0065 5448  [ CF4657A43B56ED26875C26DFE698DCCB ] C:\Windows\System32\SearchProtocolHost.exe
17:58:42.0065 5448  C:\Windows\System32\SearchProtocolHost.exe - ok
17:58:42.0065 5448  [ 16B0D0C1D0CFDB8F5F3DE9849487B509 ] C:\Windows\System32\SyncCenter.dll
17:58:42.0065 5448  C:\Windows\System32\SyncCenter.dll - ok
17:58:42.0065 5448  [ 203BEA6A8C2C2FA22A05C3FA9D01E222 ] C:\Windows\System32\wmi.dll
17:58:42.0065 5448  C:\Windows\System32\wmi.dll - ok
17:58:42.0065 5448  [ 805AD714EF4126BE2D2390D446CA4280 ] C:\Windows\System32\imapi2.dll
17:58:42.0065 5448  C:\Windows\System32\imapi2.dll - ok
17:58:42.0065 5448  [ 255F0624A5A33EBB0FC545BDD2A9CB36 ] C:\Windows\System32\msshooks.dll
17:58:42.0065 5448  C:\Windows\System32\msshooks.dll - ok
17:58:42.0065 5448  [ EC65798B20CF6B9D9581B0F896A72AB2 ] C:\Windows\System32\SearchFilterHost.exe
17:58:42.0065 5448  C:\Windows\System32\SearchFilterHost.exe - ok
17:58:42.0065 5448  [ B16BA8C18B51D0FDF120B1ED4E07C399 ] C:\Windows\System32\hgcpl.dll
17:58:42.0065 5448  C:\Windows\System32\hgcpl.dll - ok
17:58:42.0081 5448  [ 2EBA0464A93CA18F50269DC10CEB3CFE ] C:\Windows\System32\mssph.dll
17:58:42.0081 5448  C:\Windows\System32\mssph.dll - ok
17:58:42.0081 5448  [ D7507B2F96098C43D1BC835F8B8E5E8E ] C:\Windows\System32\mapi32.dll
17:58:42.0081 5448  C:\Windows\System32\mapi32.dll - ok
17:58:42.0081 5448  [ B330CE47FB74A6BE9A3FFFF4B3F64D9B ] C:\Windows\System32\wlidsvc.dll
17:58:42.0081 5448  C:\Windows\System32\wlidsvc.dll - ok
17:58:42.0081 5448  [ E70F241D136B61E5CCA39B9C1A2A591D ] C:\Windows\System32\drprov.dll
17:58:42.0081 5448  C:\Windows\System32\drprov.dll - ok
17:58:42.0081 5448  [ 64E9DC1084B44DA86555DD5729D1357F ] C:\Windows\System32\ntlanman.dll
17:58:42.0081 5448  C:\Windows\System32\ntlanman.dll - ok
17:58:42.0081 5448  [ 67B42C85172B2E3ADB5194E39FF9D000 ] C:\Windows\System32\davclnt.dll
17:58:42.0081 5448  C:\Windows\System32\davclnt.dll - ok
17:58:42.0081 5448  [ 82B7E2AADC7F3DD0F79D7926CE06AE63 ] C:\Windows\System32\davhlpr.dll
17:58:42.0081 5448  C:\Windows\System32\davhlpr.dll - ok
17:58:42.0097 5448  [ 71A488228C040CAF2DF30B8CB09FF5B9 ] C:\Windows\System32\CertPolEng.dll
17:58:42.0097 5448  C:\Windows\System32\CertPolEng.dll - ok
17:58:42.0097 5448  [ 360609B4B55380EFD8F862B4B482576E ] C:\Windows\System32\SearchFolder.dll
17:58:42.0097 5448  C:\Windows\System32\SearchFolder.dll - ok
17:58:42.0097 5448  [ EFAAA955B7D44729B250160A3DDDB6C5 ] C:\Windows\SysWOW64\mlang.dll
17:58:42.0097 5448  C:\Windows\SysWOW64\mlang.dll - ok
17:58:42.0097 5448  [ 55C34EBCEC63773E6CDCAD715B18F109 ] C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe
17:58:42.0097 5448  C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe - ok
17:58:42.0097 5448  [ 7C45360A8C55B61BE997B1E080ED8607 ] C:\Windows\System32\security.dll
17:58:42.0097 5448  C:\Windows\System32\security.dll - ok
17:58:42.0112 5448  [ 45005B77B9DACCE166D44ADA87240325 ] C:\Windows\System32\Windows.ApplicationModel.dll
17:58:42.0112 5448  C:\Windows\System32\Windows.ApplicationModel.dll - ok
17:58:42.0112 5448  [ 30454C0337F045E79C2906E9DC039CC5 ] C:\Windows\System32\RuntimeBroker.exe
17:58:42.0112 5448  C:\Windows\System32\RuntimeBroker.exe - ok
17:58:42.0112 5448  [ 1F01E2357745C87A250C22640D138A30 ] C:\Windows\System32\browcli.dll
17:58:42.0112 5448  C:\Windows\System32\browcli.dll - ok
17:58:42.0112 5448  [ 0A0B3EA1A3DE327C7A9BF49BABDE0F14 ] C:\Windows\System32\schedcli.dll
17:58:42.0112 5448  C:\Windows\System32\schedcli.dll - ok
17:58:42.0112 5448  [ 190CF10E6933D4DDC8F4A62AACC9E81F ] C:\Windows\System32\dskquota.dll
17:58:42.0112 5448  C:\Windows\System32\dskquota.dll - ok
17:58:42.0112 5448  [ E05FFF1C05C80CCE83C766198896C7CF ] C:\Program Files (x86)\ASUS\Splendid\ACMON.exe
17:58:42.0112 5448  C:\Program Files (x86)\ASUS\Splendid\ACMON.exe - ok
17:58:42.0112 5448  [ 85C57CD47F292E248E56A41E7E7A19C6 ] C:\Program Files (x86)\ASUS\Splendid\OVS.dll
17:58:42.0112 5448  C:\Program Files (x86)\ASUS\Splendid\OVS.dll - ok
17:58:42.0128 5448  [ 98AB7A3AC4155640146F6BEC422C81E4 ] C:\Program Files (x86)\ASUS\Splendid\Chameleon.dll
17:58:42.0128 5448  C:\Program Files (x86)\ASUS\Splendid\Chameleon.dll - ok
17:58:42.0128 5448  [ BD59EB5148E62D227DB2509F06634D50 ] C:\Program Files (x86)\ASUS\Splendid\GLCDdll.dll
17:58:42.0128 5448  C:\Program Files (x86)\ASUS\Splendid\GLCDdll.dll - ok
17:58:42.0128 5448  [ 85C7C5235460AC05CDEB7205861331EB ] C:\Program Files (x86)\ASUS\Splendid\Alb_ASUSLib.dll
17:58:42.0128 5448  C:\Program Files (x86)\ASUS\Splendid\Alb_ASUSLib.dll - ok
17:58:42.0128 5448  [ B447650079883B58626DD6BBAE857877 ] C:\Windows\System32\NaturalLanguage6.dll
17:58:42.0128 5448  C:\Windows\System32\NaturalLanguage6.dll - ok
17:58:42.0128 5448  [ 98CADC34741738CFC24F5CDFDAA408FA ] C:\Windows\SysWOW64\ACEngSvr.exe
17:58:42.0128 5448  C:\Windows\SysWOW64\ACEngSvr.exe - ok
17:58:42.0143 5448  [ 49E2346A397A7512DD9D12E1D6D9A174 ] C:\Windows\System32\NlsData0009.dll
17:58:42.0143 5448  C:\Windows\System32\NlsData0009.dll - ok
17:58:42.0143 5448  [ 690051005AED736DA0F5DD40DA5937DB ] C:\Program Files\Autodesk\Autodesk Sync\AdSync.exe
17:58:42.0143 5448  C:\Program Files\Autodesk\Autodesk Sync\AdSync.exe - ok
17:58:42.0143 5448  [ 47DCA6F50C1D1E93F4DB5248557ED63C ] C:\Windows\System32\NlsLexicons0009.dll
17:58:42.0143 5448  C:\Windows\System32\NlsLexicons0009.dll - ok
17:58:42.0143 5448  [ 5C7CCB3652B0CCEC978C2D37DED40AD6 ] C:\Windows\SysWOW64\mscms.dll
17:58:42.0143 5448  C:\Windows\SysWOW64\mscms.dll - ok
17:58:42.0143 5448  [ 0C65A35375597E6D9AA1DEEAAA8FC525 ] C:\Windows\SysWOW64\nvd3dum.dll
17:58:42.0143 5448  C:\Windows\SysWOW64\nvd3dum.dll - ok
17:58:42.0143 5448  [ 1CD203FFC8CD27E95FF1B2B60EADE477 ] C:\Windows\System32\perfos.dll
17:58:42.0143 5448  C:\Windows\System32\perfos.dll - ok
17:58:42.0159 5448  [ AF95E1ECE0EB89A11150AAEAF29AB3B7 ] C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\NvTmru.exe
17:58:42.0159 5448  C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\NvTmru.exe - ok
17:58:42.0159 5448  [ 33A1D53AFEC8043622CF93A65104D4B5 ] C:\Program Files\Autodesk\Autodesk Sync\Interfaces.dll
17:58:42.0159 5448  C:\Program Files\Autodesk\Autodesk Sync\Interfaces.dll - ok
17:58:42.0159 5448  [ B1149BA904BD455A96EEFB771974B8C5 ] C:\Program Files (x86)\ASUS\Splendid\ACOVS.exe
17:58:42.0159 5448  C:\Program Files (x86)\ASUS\Splendid\ACOVS.exe - ok
17:58:42.0159 5448  [ 48C47A7423AEC014FA9B3FDA274F336D ] C:\Program Files\Autodesk\Autodesk Sync\SyncCore.dll
17:58:42.0159 5448  C:\Program Files\Autodesk\Autodesk Sync\SyncCore.dll - ok
17:58:42.0159 5448  [ 0720BD8941909CBB6FE7E22E02E51743 ] C:\Program Files\Autodesk\Autodesk Sync\Configuration.dll
17:58:42.0159 5448  C:\Program Files\Autodesk\Autodesk Sync\Configuration.dll - ok
17:58:42.0159 5448  [ 39B1C217AC8697E118293DE4AE3F7AA5 ] C:\Program Files\Autodesk\Autodesk Sync\UI.dll
17:58:42.0159 5448  C:\Program Files\Autodesk\Autodesk Sync\UI.dll - ok
17:58:42.0159 5448  [ 8C5BE3C93617B06C3A34651917ADDA66 ] C:\Program Files\Autodesk\Autodesk Sync\BuzzsawSyncSupport.dll
17:58:42.0159 5448  C:\Program Files\Autodesk\Autodesk Sync\BuzzsawSyncSupport.dll - ok
17:58:42.0175 5448  [ 1C1C3C5D7DF9D6B19410168E7724F48E ] C:\Windows\System32\LogiLDA.DLL
17:58:42.0175 5448  C:\Windows\System32\LogiLDA.DLL - ok
17:58:42.0175 5448  [ 6BB8915399855C462494F373E264FCA2 ] C:\Program Files\Autodesk\Autodesk Sync\CoreFactory.dll
17:58:42.0175 5448  C:\Program Files\Autodesk\Autodesk Sync\CoreFactory.dll - ok
17:58:42.0175 5448  [ 54BB6EB6B7088A27454600C77A3910BA ] C:\Program Files\Autodesk\Autodesk Sync\AdSyncServices.dll
17:58:42.0175 5448  C:\Program Files\Autodesk\Autodesk Sync\AdSyncServices.dll - ok
17:58:42.0175 5448  [ F023A14FE899F5401935CAC119A723CE ] C:\Users\Tyler\AppData\Local\Akamai\netsession_win.exe
17:58:42.0175 5448  C:\Users\Tyler\AppData\Local\Akamai\netsession_win.exe - ok
17:58:42.0175 5448  [ CA969D6FA6C19758D48C664B2D1CE08D ] C:\Windows\System32\vccorlib110.dll
17:58:42.0175 5448  C:\Windows\System32\vccorlib110.dll - ok
17:58:42.0175 5448  [ 7EF0136848615777207C29B65DEF37D2 ] C:\Program Files\Autodesk\Autodesk Sync\AdCoreUnitsUI-3_0.dll
17:58:42.0175 5448  C:\Program Files\Autodesk\Autodesk Sync\AdCoreUnitsUI-3_0.dll - ok
17:58:42.0175 5448  [ 4F72C8B661DEC62F4DF0F15D33106372 ] C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\AGFNEX64.dll
17:58:42.0175 5448  C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\AGFNEX64.dll - ok
17:58:42.0190 5448  [ 765C51D25C0441944542D49E408E224B ] C:\Windows\System32\oledlg.dll
17:58:42.0190 5448  C:\Windows\System32\oledlg.dll - ok
17:58:42.0190 5448  [ C72ABC6B7B90A61364B6DD889B5435F3 ] C:\Windows\System32\msvcr110.dll
17:58:42.0190 5448  C:\Windows\System32\msvcr110.dll - ok
17:58:42.0190 5448  [ 506708142BC63DABA64F2D3AD1DCD5BF ] C:\Users\Tyler\AppData\Local\Google\Update\GoogleUpdate.exe
17:58:42.0190 5448  C:\Users\Tyler\AppData\Local\Google\Update\GoogleUpdate.exe - ok
17:58:42.0190 5448  [ 70E69E6215A1ED2569CFEA40C8764B31 ] C:\Program Files\Autodesk\Autodesk Sync\AdWebServices.dll
17:58:42.0190 5448  C:\Program Files\Autodesk\Autodesk Sync\AdWebServices.dll - ok
17:58:42.0190 5448  [ 349B1D5D8D1B5A7B10BCD01470BD5F64 ] C:\Windows\System32\msvcp110.dll
17:58:42.0190 5448  C:\Windows\System32\msvcp110.dll - ok
17:58:42.0190 5448  [ 68816AF50C03D77FC1A1C84CC1CAEFD2 ] C:\Program Files\Autodesk\Autodesk Sync\AdWebServicesUI.dll
17:58:42.0190 5448  C:\Program Files\Autodesk\Autodesk Sync\AdWebServicesUI.dll - ok
17:58:42.0190 5448  [ 1B101D654996935AE4F89AA270261903 ] C:\Program Files\Autodesk\Autodesk Sync\AdUICore.dll
17:58:42.0190 5448  C:\Program Files\Autodesk\Autodesk Sync\AdUICore.dll - ok
17:58:42.0206 5448  [ C9D5090789CC7B28F515919CD65C47D5 ] C:\Windows\SysWOW64\pdh.dll
17:58:42.0206 5448  C:\Windows\SysWOW64\pdh.dll - ok
17:58:42.0206 5448  [ 069AAA52661E943C6B68AC81278E49B5 ] C:\Program Files\Autodesk\Autodesk Sync\QtCore_Ad_4.dll
17:58:42.0206 5448  C:\Program Files\Autodesk\Autodesk Sync\QtCore_Ad_4.dll - ok
17:58:42.0206 5448  [ 22F7B9670AD770C7ED7F4738204C8E5C ] C:\Program Files\HP\HP Photosmart Plus B210 series\Bin\ScanToPCActivationApp.exe
17:58:42.0206 5448  C:\Program Files\HP\HP Photosmart Plus B210 series\Bin\ScanToPCActivationApp.exe - ok
17:58:42.0206 5448  [ 2E5672EEA419A4DC9DACD714632E1DC3 ] C:\Users\Tyler\AppData\Local\Google\Update\1.3.21.135\goopdate.dll
17:58:42.0206 5448  C:\Users\Tyler\AppData\Local\Google\Update\1.3.21.135\goopdate.dll - ok
17:58:42.0206 5448  [ 455A6F9F827FF70914412B7C003F3856 ] C:\Program Files\Autodesk\Autodesk Sync\QtGui_Ad_4.dll
17:58:42.0206 5448  C:\Program Files\Autodesk\Autodesk Sync\QtGui_Ad_4.dll - ok
17:58:42.0206 5448  [ BECDDA0990DEBD72A30096533521AD73 ] C:\Users\Tyler\AppData\Local\Google\Update\1.3.21.135\GoogleCrashHandler.exe
17:58:42.0206 5448  C:\Users\Tyler\AppData\Local\Google\Update\1.3.21.135\GoogleCrashHandler.exe - ok
17:58:42.0222 5448  [ 5ED332254E4F252636EC067CD41300F6 ] C:\Program Files\Autodesk\Autodesk Sync\QtNetwork_Ad_4.dll
17:58:42.0222 5448  C:\Program Files\Autodesk\Autodesk Sync\QtNetwork_Ad_4.dll - ok
17:58:42.0222 5448  [ 7D04542E843AFA1A33D38C31D3FB5FEC ] C:\Windows\SysWOW64\security.dll
17:58:42.0222 5448  C:\Windows\SysWOW64\security.dll - ok
17:58:42.0222 5448  [ 7C83EFB84A4F4B5F202BFE3E6B6C65BB ] C:\Windows\SysWOW64\msv1_0.dll
17:58:42.0222 5448  C:\Windows\SysWOW64\msv1_0.dll - ok
17:58:42.0222 5448  [ E791C167B7AFEC5BA6C55E9CF8872151 ] C:\Program Files\Autodesk\Autodesk Sync\QtXml_Ad_4.dll
17:58:42.0222 5448  C:\Program Files\Autodesk\Autodesk Sync\QtXml_Ad_4.dll - ok
17:58:42.0222 5448  [ 70A03CC595C92667FD35834164CE9CC9 ] C:\Program Files\Autodesk\Autodesk Sync\QtXmlPatterns_Ad_4.dll
17:58:42.0222 5448  C:\Program Files\Autodesk\Autodesk Sync\QtXmlPatterns_Ad_4.dll - ok
17:58:42.0237 5448  [ 34A1A225D2963DA7BEF6181CD495EA8D ] C:\Windows\SysWOW64\cryptdll.dll
17:58:42.0237 5448  C:\Windows\SysWOW64\cryptdll.dll - ok
17:58:42.0237 5448  [ FD9EFB039A3C738C3FD9986C8DD5B451 ] C:\Program Files (x86)\Common Files\wruninstall.exe
17:58:42.0237 5448  C:\Program Files (x86)\Common Files\wruninstall.exe - ok
17:58:42.0237 5448  [ 4FB1BBDF3E82A2F56D8D16FB9DB8D28F ] C:\Program Files\HP\HP Photosmart Plus B210 series\Bin\ScanToPCActivationUI.dll


17:58:42.0237 5448  C:\Program Files\HP\HP Photosmart Plus B210 series\Bin\ScanToPCActivationUI.dll - ok
17:58:42.0237 5448  [ E97140424C378ACBD47DF493A6AB7235 ] C:\Program Files (x86)\Adobe\Reader 10.0\Reader\reader_sl.exe
17:58:42.0237 5448  C:\Program Files (x86)\Adobe\Reader 10.0\Reader\reader_sl.exe - ok
17:58:42.0237 5448  [ F103B99F8C637322A3624767EC23C378 ] C:\Program Files\Autodesk\Autodesk Sync\log4cplusU.dll
17:58:42.0237 5448  C:\Program Files\Autodesk\Autodesk Sync\log4cplusU.dll - ok
17:58:42.0237 5448  [ FC840F65462F82B6310D4644F6E9381C ] C:\Windows\System32\riched32.dll
17:58:42.0237 5448  C:\Windows\System32\riched32.dll - ok
17:58:42.0253 5448  [ B4A8196583408768088F71ECFB8EAE1D ] C:\Windows\System32\riched20.dll
17:58:42.0253 5448  C:\Windows\System32\riched20.dll - ok
17:58:42.0253 5448  [ 84A67EA87F3012B12E1C4048460BFA29 ] C:\Program Files\Autodesk\Autodesk Sync\Database.dll
17:58:42.0253 5448  C:\Program Files\Autodesk\Autodesk Sync\Database.dll - ok
17:58:42.0253 5448  [ C6B2D1AE7F957BCA38C6C86E800BDC3F ] C:\Windows\System32\usp10.dll
17:58:42.0253 5448  C:\Windows\System32\usp10.dll - ok
17:58:42.0253 5448  [ A2EE1F52E5FCEA6F81237E4399550F1E ] C:\Program Files\Autodesk\Autodesk Sync\ConfigurationFactory.dll
17:58:42.0253 5448  C:\Program Files\Autodesk\Autodesk Sync\ConfigurationFactory.dll - ok
17:58:42.0253 5448  [ 3D3AE51E3778D89CCDB7CE3714F24E7D ] C:\Windows\System32\msls31.dll
17:58:42.0253 5448  C:\Windows\System32\msls31.dll - ok
17:58:42.0253 5448  [ F4CF638191A0A483F77BB0F0BB524377 ] C:\Program Files\Autodesk\Autodesk Sync\Http.dll
17:58:42.0253 5448  C:\Program Files\Autodesk\Autodesk Sync\Http.dll - ok
17:58:42.0268 5448  [ BAD6BEA0DE1F69C82BDB74378CE0C20A ] C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
17:58:42.0268 5448  C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe - ok
17:58:42.0268 5448  [ 5D2004EA97C19B90D087C435A7849250 ] C:\Program Files\Autodesk\Autodesk Sync\Threading.dll
17:58:42.0268 5448  C:\Program Files\Autodesk\Autodesk Sync\Threading.dll - ok
17:58:42.0268 5448  [ 583952045EBC0CDC13BA947B512655D0 ] C:\Program Files\Autodesk\Autodesk Sync\DatabaseFactory.dll
17:58:42.0268 5448  C:\Program Files\Autodesk\Autodesk Sync\DatabaseFactory.dll - ok
17:58:42.0268 5448  [ B676429E44F2F8ACC3BAE7C89F46B212 ] C:\Users\Tyler\AppData\Local\Google\Update\1.3.21.135\GoogleCrashHandler64.exe
17:58:42.0268 5448  C:\Users\Tyler\AppData\Local\Google\Update\1.3.21.135\GoogleCrashHandler64.exe - ok
17:58:42.0268 5448  [ 50B695EAB6D83DAAF66950785331CCCE ] C:\Program Files\Autodesk\Autodesk Sync\BuzzsawFactories.dll
17:58:42.0268 5448  C:\Program Files\Autodesk\Autodesk Sync\BuzzsawFactories.dll - ok
17:58:42.0284 5448  [ 7F38EFD2A0A2C393E8348A73073D6F8E ] C:\Windows\System32\localspl.dll
17:58:42.0284 5448  C:\Windows\System32\localspl.dll - ok
17:58:42.0284 5448  [ 2F83B19EAC2C12D61DCA4D7193E9B508 ] C:\Program Files\Autodesk\Autodesk Sync\HttpFactory.dll
17:58:42.0284 5448  C:\Program Files\Autodesk\Autodesk Sync\HttpFactory.dll - ok
17:58:42.0284 5448  [ 0F3B2F57676DEBB7F86B74A51BEC079C ] C:\Windows\SysWOW64\dhcpcsvc6.dll
17:58:42.0284 5448  C:\Windows\SysWOW64\dhcpcsvc6.dll - ok
17:58:42.0284 5448  [ 55A07D76F345CD44070890FFC693BEF6 ] C:\Windows\System32\spoolss.dll
17:58:42.0284 5448  C:\Windows\System32\spoolss.dll - ok
17:58:42.0284 5448  [ 84F0DC88E6AE4B49B032509868B4BD73 ] C:\Windows\SysWOW64\dhcpcsvc.dll
17:58:42.0284 5448  C:\Windows\SysWOW64\dhcpcsvc.dll - ok
17:58:42.0284 5448  [ 6B70D623A9E834DCFC350AF3615B1310 ] C:\Program Files\Autodesk\Autodesk Sync\ThreadingFactory.dll
17:58:42.0284 5448  C:\Program Files\Autodesk\Autodesk Sync\ThreadingFactory.dll - ok
17:58:42.0300 5448  [ D3188B327C6F3C6354075FD594121633 ] C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe
17:58:42.0300 5448  C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe - ok
17:58:42.0300 5448  [ B1DB079AD48896C9AEFD0A9670E9B03B ] C:\Program Files\Autodesk\Autodesk Sync\SynchronizationService.dll
17:58:42.0300 5448  C:\Program Files\Autodesk\Autodesk Sync\SynchronizationService.dll - ok
17:58:42.0300 5448  [ F6104D2DBF254FE23928F978F6CABE35 ] C:\Windows\SysWOW64\oledlg.dll
17:58:42.0300 5448  C:\Windows\SysWOW64\oledlg.dll - ok
17:58:42.0300 5448  [ 7D8902670720152867617016CE940ED8 ] C:\Windows\System32\PrintIsolationProxy.dll
17:58:42.0300 5448  C:\Windows\System32\PrintIsolationProxy.dll - ok
17:58:42.0315 5448  [ E097467E1B9F966C7ED5DE20321F021F ] C:\Program Files\Autodesk\Autodesk Sync\QtSql_Ad_4.dll
17:58:42.0315 5448  C:\Program Files\Autodesk\Autodesk Sync\QtSql_Ad_4.dll - ok
17:58:42.0315 5448  [ B7995C675014EEBE77A0BEB7AFCCFC08 ] C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe
17:58:42.0315 5448  C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe - ok
17:58:42.0315 5448  [ BBFFB477EA4470766227D00C6B01E715 ] C:\Windows\System32\dsound.dll
17:58:42.0315 5448  C:\Windows\System32\dsound.dll - ok
17:58:42.0315 5448  [ DD9C45E8EF02EBEA0DA78792534DA11E ] C:\Program Files\Autodesk\Autodesk Sync\QtSolutions_MFCMigrationFramework_Ad_2.dll
17:58:42.0315 5448  C:\Program Files\Autodesk\Autodesk Sync\QtSolutions_MFCMigrationFramework_Ad_2.dll - ok
17:58:42.0315 5448  [ B93E25062CDE07461883776FC7BCE224 ] C:\Program Files\Autodesk\Autodesk Sync\AdCoreUnits-3_0.dll
17:58:42.0315 5448  C:\Program Files\Autodesk\Autodesk Sync\AdCoreUnits-3_0.dll - ok
17:58:42.0315 5448  [ 9AD609CFDA377BFCE0CB7ABF294BC74B ] C:\Windows\SysWOW64\wscisvif.dll
17:58:42.0315 5448  C:\Windows\SysWOW64\wscisvif.dll - ok
17:58:42.0315 5448  [ BA0231EEEED894158F22FBE5CDCD32CB ] C:\Windows\SysWOW64\wscapi.dll
17:58:42.0315 5448  C:\Windows\SysWOW64\wscapi.dll - ok
17:58:42.0315 5448  [ B24785D48B5B07B355BC925A0B357EF8 ] C:\Program Files\Autodesk\Autodesk Sync\qoauth_Ad_1.dll
17:58:42.0315 5448  C:\Program Files\Autodesk\Autodesk Sync\qoauth_Ad_1.dll - ok
17:58:42.0331 5448  [ B7B9CDFA627D8886314A5C1EC482796F ] C:\Windows\SysWOW64\wscproxystub.dll
17:58:42.0331 5448  C:\Windows\SysWOW64\wscproxystub.dll - ok
17:58:42.0331 5448  [ F4A8EDA4D2BFA18D11AE7C08B049057C ] C:\Program Files (x86)\VIA\VIAudioi\VDeck\QsApoApi64.dll
17:58:42.0331 5448  C:\Program Files (x86)\VIA\VIAudioi\VDeck\QsApoApi64.dll - ok
17:58:42.0331 5448  [ 20649269325F1D29D9FFEB5704059B50 ] C:\Program Files\Autodesk\Autodesk Sync\libeay32.dll
17:58:42.0331 5448  C:\Program Files\Autodesk\Autodesk Sync\libeay32.dll - ok
17:58:42.0331 5448  [ BB8675E507CB2E82FC829AC9D5363157 ] C:\Windows\System32\hpinksts8e11LM.dll
17:58:42.0331 5448  C:\Windows\System32\hpinksts8e11LM.dll - ok
17:58:42.0331 5448  [ 809A1EC7868924B5E92421F018587AC9 ] C:\Program Files (x86)\CyberLink\PowerDVD10\CLRCEngine3.dll
17:58:42.0331 5448  C:\Program Files (x86)\CyberLink\PowerDVD10\CLRCEngine3.dll - ok
17:58:42.0331 5448  [ 86F1895AE8C5E8B17D99ECE768A70732 ] C:\Program Files (x86)\CyberLink\PowerDVD10\msvcr71.dll
17:58:42.0331 5448  C:\Program Files (x86)\CyberLink\PowerDVD10\msvcr71.dll - ok
17:58:42.0331 5448  [ 46558835A2092077DB5E90BE3E9715B1 ] C:\Windows\System32\credui.dll
17:58:42.0331 5448  C:\Windows\System32\credui.dll - ok
17:58:42.0347 5448  [ 9A13A06194B4EF6384F60C99F7B96096 ] C:\Windows\System32\msdmo.dll
17:58:42.0347 5448  C:\Windows\System32\msdmo.dll - ok
17:58:42.0347 5448  [ D8F7F8CB68F41A48F575870688E34A4A ] C:\Program Files (x86)\VIA\VIAudioi\VDeck\Dts2ApoApi64.dll
17:58:42.0347 5448  C:\Program Files (x86)\VIA\VIAudioi\VDeck\Dts2ApoApi64.dll - ok
17:58:42.0347 5448  [ FFB1D7A06F89763FD0C11411A8CC5153 ] C:\Program Files\Autodesk\Autodesk Sync\QtWebKit_Ad_4.dll
17:58:42.0347 5448  C:\Program Files\Autodesk\Autodesk Sync\QtWebKit_Ad_4.dll - ok
17:58:42.0347 5448  [ 2F7197083A673FA151EEB748F530A012 ] C:\Program Files (x86)\ASUS Gaming Mouse\hid.exe
17:58:42.0347 5448  C:\Program Files (x86)\ASUS Gaming Mouse\hid.exe - ok
17:58:42.0347 5448  [ 81C57089F59D4F0519CFCA0448256550 ] C:\Program Files\Autodesk\Autodesk Sync\qca_Ad_2.dll
17:58:42.0347 5448  C:\Program Files\Autodesk\Autodesk Sync\qca_Ad_2.dll - ok
17:58:42.0347 5448  [ 3D7C1DFE052288F40AC9ABFB2A824B92 ] C:\Windows\System32\HPDiscoPM8e11.dll
17:58:42.0347 5448  C:\Windows\System32\HPDiscoPM8e11.dll - ok
17:58:42.0347 5448  [ B5EB8E2AF9B3E067A8525622AEEC212E ] C:\Windows\System32\wlroamextension.dll
17:58:42.0347 5448  C:\Windows\System32\wlroamextension.dll - ok
17:58:42.0347 5448  [ EDB4108F065852E2A5F35C388C59112E ] C:\Program Files\Autodesk\Autodesk Sync\phonon_Ad_4.dll
17:58:42.0347 5448  C:\Program Files\Autodesk\Autodesk Sync\phonon_Ad_4.dll - ok
17:58:42.0362 5448  [ ADB778A085E71B9835F3FA776878184B ] C:\Windows\System32\wsnmp32.dll
17:58:42.0362 5448  C:\Windows\System32\wsnmp32.dll - ok
17:58:42.0362 5448  [ E8DF2DAD385DAAB92D55AD1332538F5A ] C:\Windows\System32\FXSMON.dll
17:58:42.0362 5448  C:\Windows\System32\FXSMON.dll - ok
17:58:42.0362 5448  [ 35048D8E8A0BF7A797CD5757ACD7EED0 ] C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe
17:58:42.0362 5448  C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe - ok
17:58:42.0362 5448  [ AF5A41782DBD2010497851B8E955BD2A ] C:\Windows\System32\tcpmon.dll
17:58:42.0362 5448  C:\Windows\System32\tcpmon.dll - ok
17:58:42.0362 5448  [ 0337A26A7A6CAD5658869D00B6ACC1DC ] C:\ProgramData\Intel\Intel® ME FW Recovery Agent\device_profile\providers\MEProvider.dll
17:58:42.0362 5448  C:\ProgramData\Intel\Intel® ME FW Recovery Agent\device_profile\providers\MEProvider.dll - ok
17:58:42.0362 5448  [ 83C27AD4040B60B81322ABE7E7B0057A ] C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\MEFWRDsc.dll
17:58:42.0362 5448  C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\MEFWRDsc.dll - ok
17:58:42.0362 5448  [ E12E86E54E00B36A70081E9A8DC6A5FC ] C:\Windows\SysWOW64\ieframe.dll
17:58:42.0362 5448  C:\Windows\SysWOW64\ieframe.dll - ok
17:58:42.0378 5448  [ A94228A151DCD5364C214CC452268D2A ] C:\Program Files (x86)\Ask.com\Updater\Updater.exe
17:58:42.0378 5448  C:\Program Files (x86)\Ask.com\Updater\Updater.exe - ok
17:58:42.0378 5448  [ 85EBAAA913E187B65FB5B47EA36FA306 ] C:\Windows\System32\snmpapi.dll
17:58:42.0378 5448  C:\Windows\System32\snmpapi.dll - ok
17:58:42.0378 5448  [ 46DA8E7484AC7A52CE1D6E428398724B ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe
17:58:42.0378 5448  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe - ok
17:58:42.0378 5448  [ C3A5FFD57C2563204CD9351F0C7A0DEA ] C:\Program Files (x86)\CyberLink\Power2Go\msvcp71.dll
17:58:42.0378 5448  C:\Program Files (x86)\CyberLink\Power2Go\msvcp71.dll - ok
17:58:42.0378 5448  [ A1A6FC56A1D0DADC164637FE43C40605 ] C:\Program Files (x86)\CyberLink\Power2Go\msvcr71.dll
17:58:42.0378 5448  C:\Program Files (x86)\CyberLink\Power2Go\msvcr71.dll - ok
17:58:42.0378 5448  [ E8E8E3EA96C03FA5403B6814B539E0A8 ] C:\Program Files (x86)\CyberLink\Power2Go\CLMediaLibrary.dll
17:58:42.0378 5448  C:\Program Files (x86)\CyberLink\Power2Go\CLMediaLibrary.dll - ok
17:58:42.0393 5448  [ E583B7B3CCACE9E3880C16E119585245 ] C:\Windows\System32\usbmon.dll
17:58:42.0393 5448  C:\Windows\System32\usbmon.dll - ok
17:58:42.0393 5448  [ EBC0E8C0A4DDA2C32A7D5863462A321A ] C:\Program Files (x86)\AMD\Dual-Core Optimizer\amd_dc_opt.exe
17:58:42.0393 5448  C:\Program Files (x86)\AMD\Dual-Core Optimizer\amd_dc_opt.exe - ok
17:58:42.0393 5448  [ 9333BDF45BCD2CCA6E73F6848DADD3E7 ] C:\Windows\SysWOW64\wmp.dll
17:58:42.0393 5448  C:\Windows\SysWOW64\wmp.dll - ok
17:58:42.0393 5448  [ B852BB8E1D0902064346A09A7B32FC17 ] C:\Windows\System32\WSDMon.dll
17:58:42.0393 5448  C:\Windows\System32\WSDMon.dll - ok
17:58:42.0393 5448  [ DC5F2377AE60995C988A9499B643AE34 ] C:\Program Files (x86)\VIA\VIAudioi\VDeck\skin.dll
17:58:42.0393 5448  C:\Program Files (x86)\VIA\VIAudioi\VDeck\skin.dll - ok
17:58:42.0393 5448  [ AE25C03500F09240372BB4DC30B680B4 ] C:\Windows\SysWOW64\perfos.dll
17:58:42.0393 5448  C:\Windows\SysWOW64\perfos.dll - ok
17:58:42.0409 5448  [ 7038DC41C455ABF75BC988BE052655F4 ] C:\Windows\System32\drvstore.dll
17:58:42.0409 5448  C:\Windows\System32\drvstore.dll - ok
17:58:42.0409 5448  [ E4301756EADB8C9D9B5987EE23D67A28 ] C:\Windows\SysWOW64\wmploc.DLL
17:58:42.0409 5448  C:\Windows\SysWOW64\wmploc.DLL - ok
17:58:42.0409 5448  [ 8DDA2B606279753601F9415DA503CA63 ] C:\Program Files (x86)\QuickTime\QTTask.exe
17:58:42.0409 5448  C:\Program Files (x86)\QuickTime\QTTask.exe - ok
17:58:42.0409 5448  [ 279690D096F6428FB36407602D4C8542 ] C:\Windows\System32\WSDPrintProxy.DLL
17:58:42.0409 5448  C:\Windows\System32\WSDPrintProxy.DLL - ok
17:58:42.0409 5448  [ D1CA3C8C5DC6DC357CE4C08F0BCC1EEE ] C:\Windows\System32\spool\prtprocs\x64\winprint.dll
17:58:42.0409 5448  C:\Windows\System32\spool\prtprocs\x64\winprint.dll - ok
17:58:42.0425 5448  [ 650AF47F102A7F5470DE6DED33B3BF9B ] C:\Windows\SysWOW64\msxml3.dll
17:58:42.0425 5448  C:\Windows\SysWOW64\msxml3.dll - ok
17:58:42.0425 5448  [ 6E1A517E6FFA4ADC9790F0739A04D0B8 ] C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvcPS.dll
17:58:42.0425 5448  C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvcPS.dll - ok
17:58:42.0425 5448  [ D3C5AF952553891757230BABDF49F286 ] C:\Windows\System32\win32spl.dll
17:58:42.0425 5448  C:\Windows\System32\win32spl.dll - ok
17:58:42.0425 5448  [ D3714CD11E1413B5A8E9B6CDCBF8C233 ] C:\Program Files (x86)\VIA\VIAudioi\VDeck\Skin3.dll
17:58:42.0425 5448  C:\Program Files (x86)\VIA\VIAudioi\VDeck\Skin3.dll - ok
17:58:42.0425 5448  [ EEF94AAFE49902B376A96F1B33808F6D ] C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe
17:58:42.0425 5448  C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe - ok
17:58:42.0440 5448  [ 3F533D75631178A880AEFFDF117213BE ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon_main.dll
17:58:42.0440 5448  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon_main.dll - ok
17:58:42.0440 5448  [ 644F1A561B82F670A7A9A613FA8C462B ] C:\Windows\System32\inetpp.dll
17:58:42.0440 5448  C:\Windows\System32\inetpp.dll - ok
17:58:42.0440 5448  [ 3043374E292DED8C59D1C6570578F2F0 ] C:\Program Files\HP\HP Photosmart Plus B210 series\Bin\HPNetworkCommunicator.exe
17:58:42.0440 5448  C:\Program Files\HP\HP Photosmart Plus B210 series\Bin\HPNetworkCommunicator.exe - ok
17:58:42.0440 5448  [ 12916E0642E92561C98B18A2A2D01B14 ] C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
17:58:42.0440 5448  C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe - ok
17:58:42.0440 5448  [ B34AB2DDD509BC5B25403206EAE2EDD8 ] C:\Windows\System32\Windows.Networking.BackgroundTransfer.dll
17:58:42.0440 5448  C:\Windows\System32\Windows.Networking.BackgroundTransfer.dll - ok
17:58:42.0456 5448  [ EA9FCF8A296C372473D29E4424EEF800 ] C:\Windows\System32\bidispl.dll
17:58:42.0456 5448  C:\Windows\System32\bidispl.dll - ok
17:58:42.0456 5448  [ 7BE48C578124BBF4C1FAAFB4E718A4CC ] C:\Program Files (x86)\iTunes\iTunesHelper.exe
17:58:42.0456 5448  C:\Program Files (x86)\iTunes\iTunesHelper.exe - ok
17:58:42.0456 5448  [ C2D3B3D0060619D5E03E696BD56FF59F ] C:\Windows\System32\spool\drivers\x64\3\PrintConfig.dll
17:58:42.0456 5448  C:\Windows\System32\spool\drivers\x64\3\PrintConfig.dll - ok
17:58:42.0456 5448  [ E7E53DAE852983E46C6E5A37F154684A ] C:\Windows\System32\SystemEventsBrokerClient.dll
17:58:42.0456 5448  C:\Windows\System32\SystemEventsBrokerClient.dll - ok
17:58:42.0456 5448  [ 88A4A2C413BAA86B774D727B05F3FA15 ] C:\Windows\System32\profext.dll
17:58:42.0456 5448  C:\Windows\System32\profext.dll - ok
17:58:42.0472 5448  [ 8650946DFC617EC3F05CA201B98DF9A3 ] C:\Windows\System32\dxdiagn.dll
17:58:42.0472 5448  C:\Windows\System32\dxdiagn.dll - ok
17:58:42.0472 5448  [ BC5E4F284065D426A0BF7FAD3CA32450 ] C:\Program Files (x86)\iTunes\iTunesHelper.dll
17:58:42.0472 5448  C:\Program Files (x86)\iTunes\iTunesHelper.dll - ok
17:58:42.0472 5448  [ D1ADE450EA96092CF5006E3BEEA3E810 ] C:\Windows\SysWOW64\wscript.exe
17:58:42.0472 5448  C:\Windows\SysWOW64\wscript.exe - ok
17:58:42.0472 5448  [ 56DD8322E112B35E7986137EB64EA039 ] C:\Program Files (x86)\iTunes\iTunesHelper.Resources\en.lproj\iTunesHelperLocalized.dll
17:58:42.0472 5448  C:\Program Files (x86)\iTunes\iTunesHelper.Resources\en.lproj\iTunesHelperLocalized.dll - ok
17:58:42.0472 5448  [ 6B7F83060A9A8B96380174F779472104 ] C:\Program Files (x86)\iTunes\iTunesHelper.Resources\iTunesHelper.dll
17:58:42.0472 5448  C:\Program Files (x86)\iTunes\iTunesHelper.Resources\iTunesHelper.dll - ok
17:58:42.0472 5448  [ 72D20935B2B3A953183723CF440E38A5 ] C:\Windows\SysWOW64\FirewallAPI.dll
17:58:42.0472 5448  C:\Windows\SysWOW64\FirewallAPI.dll - ok
17:58:42.0487 5448  [ 2B5EBDB74963B1DBDD6AEAF3C75D46A5 ] C:\Windows\System32\prntvpt.dll
17:58:42.0487 5448  C:\Windows\System32\prntvpt.dll - ok
17:58:42.0487 5448  [ C2D3B3D0060619D5E03E696BD56FF59F ] C:\Windows\System32\DriverStore\FileRepository\prnms003.inf_amd64_804aa47cc88cc4fe\Amd64\PrintConfig.dll
17:58:42.0487 5448  C:\Windows\System32\DriverStore\FileRepository\prnms003.inf_amd64_804aa47cc88cc4fe\Amd64\PrintConfig.dll - ok
17:58:42.0487 5448  [ BE60D681C8D3C6A78E861300415360A6 ] C:\Windows\SysWOW64\vbscript.dll
17:58:42.0487 5448  C:\Windows\SysWOW64\vbscript.dll - ok
17:58:42.0487 5448  [ 7D38588FF6BBC7E496137C8CF2AD4963 ] C:\Windows\SysWOW64\msisip.dll
17:58:42.0487 5448  C:\Windows\SysWOW64\msisip.dll - ok
17:58:42.0487 5448  [ 61EEE9E88624866D612C013726D4F7ED ] C:\Windows\SysWOW64\wshext.dll
17:58:42.0487 5448  C:\Windows\SysWOW64\wshext.dll - ok
17:58:42.0503 5448  [ 08DFF4CC840E332616A1A1C7773B9150 ] C:\Windows\SysWOW64\scrobj.dll
17:58:42.0503 5448  C:\Windows\SysWOW64\scrobj.dll - ok
17:58:42.0503 5448  [ 5BB7481EBB04CEB9636698D8508228F6 ] C:\Windows\SysWOW64\wshom.ocx
17:58:42.0503 5448  C:\Windows\SysWOW64\wshom.ocx - ok
17:58:42.0503 5448  [ A0DEC653761C0DDDC6D556CA284B8622 ] C:\Windows\SysWOW64\scrrun.dll
17:58:42.0503 5448  C:\Windows\SysWOW64\scrrun.dll - ok
17:58:42.0503 5448  [ 9F3EFFBE3612730C1A5772F044F2B496 ] C:\Windows\SysWOW64\reg.exe
17:58:42.0503 5448  C:\Windows\SysWOW64\reg.exe - ok
17:58:42.0503 5448  [ F5DEBEB5E36EEA84DF1CACF343BB65D6 ] C:\Windows\SysWOW64\net.exe
17:58:42.0503 5448  C:\Windows\SysWOW64\net.exe - ok
17:58:42.0518 5448  [ 7FFBD92714CDD7AFA737F07C4C5947E4 ] C:\Windows\SysWOW64\browcli.dll
17:58:42.0518 5448  C:\Windows\SysWOW64\browcli.dll - ok
17:58:42.0518 5448  [ 6FD91F2BF07E5C16E07C86F54FC84AD9 ] C:\Windows\SysWOW64\sc.exe
17:58:42.0518 5448  C:\Windows\SysWOW64\sc.exe - ok
17:58:42.0518 5448  [ 5EFC3A9BAEABE2A2A9322BD9C19B2096 ] C:\Windows\SysWOW64\net1.exe
17:58:42.0518 5448  C:\Windows\SysWOW64\net1.exe - ok
17:58:42.0518 5448  [ 7642600038C890DDAC01D26E58C6E856 ] C:\Windows\SysWOW64\wbem\wbemdisp.dll
17:58:42.0518 5448  C:\Windows\SysWOW64\wbem\wbemdisp.dll - ok
17:58:42.0518 5448  [ E5BD0802B4A574FF3404927FE58515A1 ] C:\Windows\SysWOW64\wbem\wmiutils.dll
17:58:42.0518 5448  C:\Windows\SysWOW64\wbem\wmiutils.dll - ok
17:58:42.0518 5448  [ 3C1D496A383DEED1CA14431B4E2D1CD8 ] C:\Windows\SysWOW64\netmsg.dll
17:58:42.0518 5448  C:\Windows\SysWOW64\netmsg.dll - ok
17:58:42.0518 5448  [ 1B2E8BE25EE59B8D1911B8A5048F6DFD ] C:\Windows\System32\wbem\WMIPICMP.dll
17:58:42.0518 5448  C:\Windows\System32\wbem\WMIPICMP.dll - ok
17:58:42.0534 5448  [ B5A4245ADDA94736BB060BDA2C45FD76 ] C:\Windows\System32\provthrd.dll
17:58:42.0534 5448  C:\Windows\System32\provthrd.dll - ok
17:58:42.0534 5448  [ FD073E3036D041DB0F47387EE86A334C ] C:\Windows\System32\msvcirt.dll
17:58:42.0534 5448  C:\Windows\System32\msvcirt.dll - ok
17:58:42.0534 5448  [ 721CAFC7474688EFB2961726DBBF1C78 ] C:\Windows\System32\wsock32.dll
17:58:42.0534 5448  C:\Windows\System32\wsock32.dll - ok
17:58:42.0534 5448  [ 37CF3324F46CEB3A4F2686C617CBB35C ] C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\iTunesMobileDevice.dll
17:58:42.0534 5448  C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\iTunesMobileDevice.dll - ok
17:58:42.0534 5448  [ 44886233135241F3990724082EB104EE ] C:\Program Files\iPod\bin\iPodService.exe
17:58:42.0534 5448  C:\Program Files\iPod\bin\iPodService.exe - ok
17:58:42.0550 5448  [ BFEF1EC8A8C826AA722A17642C5C647E ] C:\Program Files\iPod\bin\iPodService.Resources\en.lproj\iPodServiceLocalized.dll
17:58:42.0550 5448  C:\Program Files\iPod\bin\iPodService.Resources\en.lproj\iPodServiceLocalized.dll - ok
17:58:42.0550 5448  [ 06A7B794EDEFBA8AC17DC89DAEB21944 ] C:\Program Files\iPod\bin\iPodService.Resources\iPodService.dll
17:58:42.0550 5448  C:\Program Files\iPod\bin\iPodService.Resources\iPodService.dll - ok
17:58:42.0550 5448  [ 078E0DD99212DBC2E20004AE0D8E1BD8 ] C:\Windows\System32\RMapi.dll
17:58:42.0550 5448  C:\Windows\System32\RMapi.dll - ok
17:58:42.0550 5448  [ 8246D6B66CC5116BDE735BC319BBBCDE ] C:\Windows\System32\WwanRadioManager.dll
17:58:42.0550 5448  C:\Windows\System32\WwanRadioManager.dll - ok
17:58:42.0550 5448  [ F516A105BA52628BCD11957510ADB4D2 ] C:\Windows\System32\WlanRadioManager.dll
17:58:42.0550 5448  C:\Windows\System32\WlanRadioManager.dll - ok
17:58:42.0565 5448  [ CD9C070D0E5EE7B8861E247ADF6B939B ] C:\Windows\System32\BthRadioMedia.dll
17:58:42.0565 5448  C:\Windows\System32\BthRadioMedia.dll - ok
17:58:42.0565 5448  [ 25A51D18D48F1E144ABEC667E98C6261 ] C:\Program Files (x86)\ASUS\ASUS Live Update\LiveUpdate.exe
17:58:42.0565 5448  C:\Program Files (x86)\ASUS\ASUS Live Update\LiveUpdate.exe - ok
17:58:42.0565 5448  [ 2837C8A01729407765CBCD4EC0645063 ] C:\Windows\SysWOW64\mscoree.dll
17:58:42.0565 5448  C:\Windows\SysWOW64\mscoree.dll - ok
17:58:42.0565 5448  [ 06ADA73672F6773457BF165FD9849462 ] C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscoreei.dll
17:58:42.0565 5448  C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscoreei.dll - ok
17:58:42.0565 5448  [ 7BBA721129208393DD4E9F34C01B37AD ] C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16.4.4406.1205_x64__8wekyb3d8bbwe\Microsoft.WindowsLive.Shared.Market.dll
17:58:42.0565 5448  C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16.4.4406.1205_x64__8wekyb3d8bbwe\Microsoft.WindowsLive.Shared.Market.dll - ok
17:58:42.0565 5448  [ AEE89C0F144223B97EEDBAAE41CE181A ] C:\Windows\System32\wpnapps.dll
17:58:42.0565 5448  C:\Windows\System32\wpnapps.dll - ok
17:58:42.0565 5448  [ 5ED76F781AC99D84E2FAE1C24CD769BF ] C:\Windows\Microsoft.NET\Framework\v4.0.30319\clr.dll
17:58:42.0565 5448  C:\Windows\Microsoft.NET\Framework\v4.0.30319\clr.dll - ok
17:58:42.0581 5448  [ 956B6ACA4EFF31046403F0DD6235332E ] C:\Windows\SysWOW64\msvcr110_clr0400.dll
17:58:42.0581 5448  C:\Windows\SysWOW64\msvcr110_clr0400.dll - ok
17:58:42.0581 5448  [ 649C7C38E573F1ACD68E23C0EDC941A4 ] C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16.4.4406.1205_x64__8wekyb3d8bbwe\Microsoft.WindowsLive.Platform.Calendar.dll
17:58:42.0581 5448  C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16.4.4406.1205_x64__8wekyb3d8bbwe\Microsoft.WindowsLive.Platform.Calendar.dll - ok
17:58:42.0581 5448  [ 8F1C4121A6900BDB85E7D6BD8E90A3F3 ] C:\Windows\assembly\NativeImages_v4.0.30319_32\mscorlib\374a0cc6603f58864831897ef723bd4a\mscorlib.ni.dll
17:58:42.0581 5448  C:\Windows\assembly\NativeImages_v4.0.30319_32\mscorlib\374a0cc6603f58864831897ef723bd4a\mscorlib.ni.dll - ok
17:58:42.0581 5448  [ 538AE7E2D2A12F5246BEF86C293B14F0 ] C:\Program Files (x86)\Common Files\System\ado\msado15.dll
17:58:42.0581 5448  C:\Program Files (x86)\Common Files\System\ado\msado15.dll - ok
17:58:42.0581 5448  [ 462646E733EB27A0F6E6317E38348E5A ] C:\Windows\SysWOW64\msdart.dll
17:58:42.0581 5448  C:\Windows\SysWOW64\msdart.dll - ok
17:58:42.0581 5448  [ 75824506A5B222469CC8079FCC644DBF ] C:\Windows\assembly\NativeImages_v4.0.30319_32\System\a7811936e59aaee26b1d9d467174d6d4\System.ni.dll
17:58:42.0581 5448  C:\Windows\assembly\NativeImages_v4.0.30319_32\System\a7811936e59aaee26b1d9d467174d6d4\System.ni.dll - ok
17:58:42.0581 5448  [ 207E8913FB9874D344C4B7841EA2A013 ] C:\Users\Tyler\AppData\Local\Temp\svchost.exe
17:58:42.0581 5448  C:\Users\Tyler\AppData\Local\Temp\svchost.exe - ok
17:58:42.0581 5448  [ 97E3685D3AB5D9FD5C2CE1B28903EFDA ] C:\Windows\SysWOW64\OpenCL.dll
17:58:42.0581 5448  C:\Windows\SysWOW64\OpenCL.dll - ok
17:58:42.0597 5448  [ 2D4B79FA7D2108676D47A0A8C638E230 ] C:\Windows\assembly\NativeImages_v4.0.30319_32\WindowsBase\15cc4fff434f274c1f6ab56a385dcb54\WindowsBase.ni.dll
17:58:42.0597 5448  C:\Windows\assembly\NativeImages_v4.0.30319_32\WindowsBase\15cc4fff434f274c1f6ab56a385dcb54\WindowsBase.ni.dll - ok
17:58:42.0597 5448  [ 7B6BE005B941B58BA518A399158F4D2D ] C:\Users\Tyler\AppData\Local\Temp\libcurl-4.dll
17:58:42.0597 5448  C:\Users\Tyler\AppData\Local\Temp\libcurl-4.dll - ok
17:58:42.0597 5448  [ 1C5EE5206A752563ED3401FF66D8A552 ] C:\Users\Tyler\AppData\Local\Temp\pthreadGC2.dll
17:58:42.0597 5448  C:\Users\Tyler\AppData\Local\Temp\pthreadGC2.dll - ok
17:58:42.0597 5448  [ A5F1518043AAD39FEF5EEB8C288699D3 ] C:\Users\Tyler\AppData\Local\Temp\libusb-1.0.dll
17:58:42.0597 5448  C:\Users\Tyler\AppData\Local\Temp\libusb-1.0.dll - ok
17:58:42.0597 5448  [ F97C5A0361729887362A85708B39D440 ] C:\Users\Tyler\AppData\Local\Temp\libeay32.dll
17:58:42.0597 5448  C:\Users\Tyler\AppData\Local\Temp\libeay32.dll - ok
17:58:42.0597 5448  [ 3E11E8BCC624D690EDF3DA210BE360D0 ] C:\Users\Tyler\AppData\Local\Temp\libidn-11.dll
17:58:42.0597 5448  C:\Users\Tyler\AppData\Local\Temp\libidn-11.dll - ok
17:58:42.0597 5448  [ DD565926C537A8084DDDE6B3C528C666 ] C:\Users\Tyler\AppData\Local\Temp\ssleay32.dll
17:58:42.0597 5448  C:\Users\Tyler\AppData\Local\Temp\ssleay32.dll - ok
17:58:42.0612 5448  [ 75409CCF3029355AF336CFE9BDB74651 ] C:\Users\Tyler\AppData\Local\Temp\zlib1.dll
17:58:42.0612 5448  C:\Users\Tyler\AppData\Local\Temp\zlib1.dll - ok
17:58:42.0612 5448  [ 76D701B3256B971842559C4BBFA7B105 ] C:\Windows\SysWOW64\winusb.dll
17:58:42.0612 5448  C:\Windows\SysWOW64\winusb.dll - ok
17:58:42.0612 5448  [ 7D50A20F9A56E250B38D0655812D50F5 ] C:\Windows\SysWOW64\hid.dll
17:58:42.0612 5448  C:\Windows\SysWOW64\hid.dll - ok
17:58:42.0612 5448  [ DFA09EB43984DCB17840C60743A88541 ] C:\Windows\assembly\NativeImages_v4.0.30319_32\PresentationCore\1c7f4533b2b24c10a628793a8b93e1a7\PresentationCore.ni.dll
17:58:42.0612 5448  C:\Windows\assembly\NativeImages_v4.0.30319_32\PresentationCore\1c7f4533b2b24c10a628793a8b93e1a7\PresentationCore.ni.dll - ok
17:58:42.0612 5448  [ 973A0255A5DB5DFE64D78CF6E5A89440 ] C:\Windows\SysWOW64\nvopencl.dll
17:58:42.0612 5448  C:\Windows\SysWOW64\nvopencl.dll - ok
17:58:42.0628 5448  [ 5509C47F908DAFB7AD1A14EBD485ECC9 ] C:\Windows\SysWOW64\nvcompiler.dll
17:58:42.0628 5448  C:\Windows\SysWOW64\nvcompiler.dll - ok
17:58:42.0628 5448  [ F31DF922808F7F18DF201E4536A44B27 ] C:\Windows\assembly\NativeImages_v4.0.30319_32\Presentatio5ae0f00f#\8347ac8367f91309fa888d79a54c7450\PresentationFramework.ni.dll
17:58:42.0628 5448  C:\Windows\assembly\NativeImages_v4.0.30319_32\Presentatio5ae0f00f#\8347ac8367f91309fa888d79a54c7450\PresentationFramework.ni.dll - ok
17:58:42.0628 5448  [ 72EE419C4798C433A159478AD8AC24CD ] C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Xaml\f641b786d36d1cc5a5531a746c96ce1b\System.Xaml.ni.dll
17:58:42.0628 5448  C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Xaml\f641b786d36d1cc5a5531a746c96ce1b\System.Xaml.ni.dll - ok
17:58:42.0628 5448  [ 3DB20F05CD929FBD90D813CE27938AC5 ] C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Drawing\38638a559066bf7f2325a53ed53629bc\System.Drawing.ni.dll
17:58:42.0628 5448  C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Drawing\38638a559066bf7f2325a53ed53629bc\System.Drawing.ni.dll - ok
17:58:42.0628 5448  [ 2A8D6B1DD23ED7892F56B78D84DCECC4 ] C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Windows.Forms\9c95779cc3d65cda80695cabc367476b\System.Windows.Forms.ni.dll
17:58:42.0628 5448  C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Windows.Forms\9c95779cc3d65cda80695cabc367476b\System.Windows.Forms.ni.dll - ok
17:58:42.0644 5448  [ 22891B2E50FA5985C502CA57C2A4E08B ] C:\Windows\SysWOW64\DWrite.dll
17:58:42.0644 5448  C:\Windows\SysWOW64\DWrite.dll - ok
17:58:42.0644 5448  [ 373382E7B105140FBA7B707B93F2CF2C ] C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\wpfgfx_v0400.dll
17:58:42.0644 5448  C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\wpfgfx_v0400.dll - ok
17:58:42.0644 5448  [ BEDA0DCDD857D44926E031CD019FBF0F ] C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\PresentationNative_v0400.dll
17:58:42.0644 5448  C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\PresentationNative_v0400.dll - ok
17:58:42.0644 5448  [ 0F8524B614E93C499F9A32B3A0259229 ] C:\Windows\Microsoft.NET\Framework\v4.0.30319\clrjit.dll
17:58:42.0644 5448  C:\Windows\Microsoft.NET\Framework\v4.0.30319\clrjit.dll - ok
17:58:42.0644 5448  [ B47E4805C27ECA323372F5E1CD0276D7 ] C:\Program Files (x86)\ASUS\ASUS Live Update\alvupdt.dll
17:58:42.0644 5448  C:\Program Files (x86)\ASUS\ASUS Live Update\alvupdt.dll - ok
17:58:42.0644 5448  [ 42CE4017883CE7E119C55A6813E57110 ] C:\Windows\SysWOW64\WindowsCodecs.dll
17:58:42.0644 5448  C:\Windows\SysWOW64\WindowsCodecs.dll - ok
17:58:42.0644 5448  [ 118BA3061B4040BDC17432B775F3A292 ] C:\Windows\SysWOW64\d3d9.dll
17:58:42.0644 5448  C:\Windows\SysWOW64\d3d9.dll - ok
17:58:42.0659 5448  [ 262F68CCF66CAD7F12C801C9CEE13CC6 ] C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Xml\e1ec8b9a6d4f9af9d6065c4187fb1b5f\System.Xml.ni.dll
17:58:42.0659 5448  C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Xml\e1ec8b9a6d4f9af9d6065c4187fb1b5f\System.Xml.ni.dll - ok
17:58:42.0659 5448  [ 8AA79A2FC0EF314B4686C84CAB89873A ] C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Configuration\05cc6faa6704d01e78700561b22937e3\System.Configuration.ni.dll
17:58:42.0659 5448  C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Configuration\05cc6faa6704d01e78700561b22937e3\System.Configuration.ni.dll - ok
17:58:42.0659 5448  [ D251BA2F7B051730D1A796A5D91EAC75 ] C:\Windows\SysWOW64\WindowsCodecsExt.dll
17:58:42.0659 5448  C:\Windows\SysWOW64\WindowsCodecsExt.dll - ok
17:58:42.0659 5448  [ 0C611C45EAF33CB6CDB793AB12053D33 ] C:\Windows\SysWOW64\icm32.dll
17:58:42.0659 5448  C:\Windows\SysWOW64\icm32.dll - ok
17:58:42.0659 5448  [ 43B43A75021F978EB0F560419170F11C ] C:\Windows\assembly\NativeImages_v4.0.30319_32\Presentatioaec034ca#\6824c9f11ea82b4148780cd92c9d6745\PresentationFramework.Aero2.ni.dll
17:58:42.0659 5448  C:\Windows\assembly\NativeImages_v4.0.30319_32\Presentatioaec034ca#\6824c9f11ea82b4148780cd92c9d6745\PresentationFramework.Aero2.ni.dll - ok
17:58:42.0659 5448  [ 6290075BBE5A9B3E9AAEE264B0DC8382 ] C:\Windows\Microsoft.NET\assembly\GAC_MSIL\PresentationFramework-SystemXml\v4.0_4.0.0.0__b77a5c561934e089\PresentationFramework-SystemXml.dll
17:58:42.0659 5448  C:\Windows\Microsoft.NET\assembly\GAC_MSIL\PresentationFramework-SystemXml\v4.0_4.0.0.0__b77a5c561934e089\PresentationFramework-SystemXml.dll - ok
17:58:42.0675 5448  [ 9A5C4A345C38F80B249C440F6A462A20 ] C:\Windows\assembly\NativeImages_v4.0.30319_32\UIAutomationTypes\a91dc79bf846144ee47efc08e17bb3e2\UIAutomationTypes.ni.dll
17:58:42.0675 5448  C:\Windows\assembly\NativeImages_v4.0.30319_32\UIAutomationTypes\a91dc79bf846144ee47efc08e17bb3e2\UIAutomationTypes.ni.dll - ok
17:58:42.0675 5448  [ A42870D2784D8D552097C25F798F2B42 ] C:\Windows\SysWOW64\UIAutomationCore.dll
17:58:42.0675 5448  C:\Windows\SysWOW64\UIAutomationCore.dll - ok
17:58:42.0675 5448  [ 9F781C881A9813CDF37B5E2F96097BAA ] C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsecimpl.dll
17:58:42.0675 5448  C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsecimpl.dll - ok
17:58:42.0675 5448  [ 0A065FAB450E993BBF73967564608B9F ] C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPI.dll
17:58:42.0675 5448  C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPI.dll - ok
17:58:42.0675 5448  [ 53DF0737B189966B6A58878E370A67BF ] C:\Windows\SysWOW64\msctfui.dll
17:58:42.0675 5448  C:\Windows\SysWOW64\msctfui.dll - ok
17:58:42.0675 5448  [ E3037EA6BBBA4B504F6E83A80B155E1F ] C:\Windows\System32\timedate.cpl
17:58:42.0675 5448  C:\Windows\System32\timedate.cpl - ok
17:58:42.0675 5448  [ E1F5ACD2E86DFC938AD781EC162B745D ] C:\Windows\System32\wbem\NCProv.dll
17:58:42.0675 5448  C:\Windows\System32\wbem\NCProv.dll - ok
17:58:42.0675 5448  ============================================================
17:58:42.0675 5448  Scan finished
17:58:42.0675 5448  ============================================================
17:58:42.0690 5600  Detected object count: 0
17:58:42.0690 5600  Actual detected object count: 0


#4 chickenguy12

chickenguy12
  • Topic Starter

  • Members
  • 48 posts
  • OFFLINE
  •  
  • Local time:06:09 PM

Posted 07 March 2013 - 06:16 PM

Heres the aswMBR log

 

 

 

aswMBR version 0.9.9.1707 Copyright© 2011 AVAST Software
Run date: 2013-03-07 18:04:57
-----------------------------
18:04:57.394    OS Version: Windows x64 6.2.9200 
18:04:57.394    Number of processors: 8 586 0x3A09
18:04:57.395    ComputerName: TYLERS-LAPTOP  UserName: Tyler
18:04:57.621    Initialze error 1 
18:05:46.172    AVAST engine defs: 13030700
18:06:53.783    Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\00000042
18:06:53.795    Disk 0 Vendor: ST1000LM024_HN-M101MBB 2AR10001 Size: 953869MB BusType: 11
18:06:53.821    Disk 0 MBR read successfully
18:06:53.822    Disk 0 MBR scan
18:06:53.825    Disk 0 unknown MBR code
18:06:53.826    Disk 0 Partition 1 00     EE          GPT           2097151 MB offset 1
18:06:53.829    Disk 0 scanning C:\Windows\system32\drivers
18:06:53.831    Service scanning
18:06:54.520    Modules scanning
18:06:54.522    Disk 0 trace - called modules:
18:06:54.525    ntoskrnl.exe CLASSPNP.SYS disk.sys ACPI.sys storport.sys hal.dll iaStorA.sys 
18:06:54.527    1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa800954a420]
18:06:54.529    3 CLASSPNP.SYS[fffff88001ebe8aa] -> nt!IofCallDriver -> [0xfffffa80066a64a0]
18:06:54.532    5 ACPI.sys[fffff8800116ca91] -> nt!IofCallDriver -> \Device\00000042[0xfffffa8006bee420]
18:06:54.535    AVAST engine scan C:\Windows
18:06:54.538    AVAST engine scan C:\Windows\system32
18:06:54.542    AVAST engine scan C:\Windows\system32\drivers
18:06:54.545    AVAST engine scan C:\Users\Tyler
18:06:54.549    AVAST engine scan C:\ProgramData
18:06:54.552    Scan finished successfully
18:07:33.936    Disk 0 MBR has been saved successfully to "C:\Users\Tyler\Desktop\MBR.dat"
18:07:34.139    The log file has been saved successfully to "C:\Users\Tyler\Desktop\aswMBR.txt"


#5 chickenguy12

chickenguy12
  • Topic Starter

  • Members
  • 48 posts
  • OFFLINE
  •  
  • Local time:06:09 PM

Posted 07 March 2013 - 09:10 PM

ESET results:

 

 

C:\Users\Tyler\AppData\Local\Downloaded Installations\{AB81C6D4-8F6A-4283-86F3-402DE3E63A21}\Mobile Mouse Server.msi a variant of Win32/HiddenStart.A application deleted - quarantined
C:\Users\Tyler\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\QKMD2DOU\svchost[1].exe a variant of Win32/BitCoinMiner.N application cleaned by deleting - quarantined
C:\Users\Tyler\AppData\Local\Temp\svchost.exe a variant of Win32/BitCoinMiner.N application cleaned by deleting - quarantined
C:\Users\Tyler\AppData\Roaming\Adobe\color.vbe VBS/Agent.NGJ trojan cleaned by deleting - quarantined
C:\Windows\Installer\6484d2a.msi a variant of Win32/HiddenStart.A application deleted - quarantined


#6 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:05:09 PM

Posted 07 March 2013 - 09:40 PM

Malwarebytes

--------------------

Please download and save it to your desktop.  If you already have it installed launch the program and update the database.
 

  • Important!! When you save the mbam-setup file, rename it to something random (such as 123abc.exe) before beginning the download.  You can also right click on the link and select Save Link As

Malwarebytes may "make changes to your registry" as part of its disinfection routine. If using other security programs that detect registry changes (ie Spybot's Teatimer), they may interfere or alert you. Temporarily or permit them to allow the changes.



  • Make sure you are connected to the Internet and double-click on the renamed file to install the application.
    For instructions with screenshots, please refer to this .
  • When the installation begins, follow the prompts and do not make any changes to default settings except to uncheck any offer for a free Pro trial version
  • Malwarebytes will automatically start and you will be asked to update the program before performing a scan.
  • If an update is found, the program will automatically update itself. Press the OK button and continue.
  • If you encounter any problems while downloading the definition updates, manually download them from and just double-click on mbam-rules.exe to install.
  • Under the Scanner tab, make sure the "Perform Quick Scan" option is selected.
  • Click on the Scan button.
  • When finished, a message box will say "The scan completed successfully. Click 'Show Results' to display all objects found".
  • Click OK to close the message box, then click the Show Results button to see a list of any malware that was found.
  • Make sure that everything is checked and then click Remove Selected.
  • When removal is completed, a log report will open in Notepad.
  • The log is automatically saved and can be viewed by clicking the Logs tab.
  • Copy and paste the contents of that report in your next reply. Be sure to post the complete log to include the top portion which shows the database version and your operating system.
  • Exit Malwarebytes when done.

Note: If Malwarebytes encounters a file that is difficult to remove, you will be asked to reboot your computer so it can proceed with the disinfection process. If asked to restart the computer, please do so immediately. Failure to reboot normally will prevent Malwarebytes from removing all the malware.


===================================================


Farbar's MiniToolBox

--------------------



  • Please download MiniToolBox, save it to your desktop
  • Please close any Firefox browsers you may have open
  • Double click the MiniToolBox.jpg icon to launch the program
  • Make sure the following options are checked:
    • Flush DNS
    • Report IE Proxy Settings
    • Reset IE Proxy Settings
    • Report FF Proxy Settings
    • Reset FF Proxy Settings
    • List content of Hosts
    • List IP configuration
    • List Winsock Entries
    • List last 10 Event Viewer log
    • List Installed Programs
    • List Devices
    • List Users, Partitions and Memory size.
  • Click Go and once the scan is completed a Result.txt Notepad document will open on your desktop
  • Please copy and paste the contents in your reply


===================================================


Farbar's Service Scanner

--------------------

Please download Farbar Service Scanner, save it to your desktop, and run it.
 

  • Make sure the following options are checked:
    • Internet Services
    • Windows Firewall
    • System Restore
    • Security Center/Action Center
    • Windows Update
    • Windows Defender
    • Other Services
  • Press "Scan".
  • It will create a log (FSS.txt) in the same directory the tool is run.
  • Please copy and paste the log to your reply.


===================================================


AdwCleaner by Xplode - Search for Adware

-------------------
 

  • Please download AdwCleaner by Xplode onto your desktop.
  • Double click on AdwCleaner.exe, select OK, then Run
  • Click on DELETE
  • A logfile will automatically open after the scan has finished
  • Copy and paste the contents in your reply
  • You can find the logfile at C:\AdwCleaner[R1].txt as well


===================================================


Junkware Removal Tooll by thisisu

-------------------
 

  • Please download Junkware Removal Tool and save it to your desktop.
  • Disable your AntiVirus and AntiSpyware applications, usually via a right click on the System Tray icon. They may otherwise interfere with our tools. (Click on this link to see a list of programs that should be disabled. The list is not all inclusive.)
  • Right-mouse click JRT.exe and select Run as administrator (Windows XP double click the icon)
  • Please allow the program time to run
  • Once completed a Notepad document will open on your desktop
  • Copy and paste the contents in your reply


===================================================


Rkill

-------------------

Please download Rkill by Grinler from one of the 4 links below (if one of them does not work try another...) and save it to your desktop:
 


  • In order for Rkill to run properly you must disable your anti-malware software.  Please refer to this page if you are not sure how.
  • Double-click on Rkill. (If you are using Windows Vista, please right-click on it and select Run As Administrator)
    • Note:  You may have to run Rkill a few times before it is successful.  You may also have to download Rkill from a different link which will save it as a different file name.
  • A black screen will appear and then disappear. Please do not worry, that is normal. This means that the tool has been successfully executed.
  • An Rkill.log will appear.  Please copy and paste the contents in your reply (file also located at c:\rkill.log)
  • Do not reboot your computer after running Rkill as the malware programs will start again.  If your computer reboots, run Rkill again before continuing on to the next step.
  • If nothing happens or if the tool does not run, please let me know in your next reply.


===================================================


Autoruns

--------------------
 

  • Please download Autoruns and save it to your desktop
  • Double click the AutoRuns.zip folder
  • Double click autoruns.exe (not autorunsc.exe), select Run, then Run again and allow the information to populate
  • Select File, Save, Desktop (in the left hand pane), then Save filename as Autoruns.txt and change Save as type to  Text(*.txt).
  • Double click on the text file,copy and paste the contents in your reply


===================================================


Things I would like to see in your next reply. Please be sure to copy and paste the information rather than send an attachment. :thumbsup2:
 

  • Malwarebytes log
  • MiniToolBox log
  • Farbar's Service Scanner log
  • AdwCleaner log
  • Junkware Removal Tool log
  • Rkill log
  • Autoruns log

Edited by narenxp, 07 March 2013 - 09:42 PM.


#7 chickenguy12

chickenguy12
  • Topic Starter

  • Members
  • 48 posts
  • OFFLINE
  •  
  • Local time:06:09 PM

Posted 07 March 2013 - 11:52 PM

Maleware Bytes log:

 

 

Malwarebytes Anti-Malware (Trial) 1.70.0.1100
www.malwarebytes.org
 
Database version: v2013.03.08.03
 
Windows 8 x64 NTFS
Internet Explorer 10.0.9200.16484
Tyler :: TYLERS-LAPTOP [administrator]
 
Protection: Enabled
 
3/7/2013 11:28:11 PM
mbam-log-2013-03-07 (23-28-11).txt
 
Scan type: Quick scan
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 284347
Time elapsed: 2 minute(s), 49 second(s)
 
Memory Processes Detected: 0
(No malicious items detected)
 
Memory Modules Detected: 0
(No malicious items detected)
 
Registry Keys Detected: 0
(No malicious items detected)
 
Registry Values Detected: 0
(No malicious items detected)
 
Registry Data Items Detected: 0
(No malicious items detected)
 
Folders Detected: 1
C:\ProgramData\IBUpdaterService (PUP.InstallBrain) -> Quarantined and deleted successfully.
 
Files Detected: 1
C:\ProgramData\IBUpdaterService\repository.xml (PUP.InstallBrain) -> Quarantined and deleted successfully.
 
(end)


#8 chickenguy12

chickenguy12
  • Topic Starter

  • Members
  • 48 posts
  • OFFLINE
  •  
  • Local time:06:09 PM

Posted 07 March 2013 - 11:53 PM

Mini Tool Box log:

 

 

MiniToolBox by Farbar  Version:05-03-2013
Ran by Tyler (administrator) on 07-03-2013 at 23:33:05
Running from "C:\Users\Tyler\Downloads"
Windows 8  (X64)
Boot Mode: Normal
***************************************************************************
 
========================= Flush DNS: ===================================
 
Windows IP Configuration
 
Successfully flushed the DNS Resolver Cache.
 
========================= IE Proxy Settings: ============================== 
 
Proxy is not enabled.
No Proxy Server is set.
 
"Reset IE Proxy Settings": IE Proxy Settings were reset.
========================= Hosts content: =================================
 
 
 
========================= IP Configuration: ================================
 
Qualcomm Atheros AR9485 Wireless Network Adapter = Wi-Fi (Connected)
Hamachi Network Interface = Hamachi (Connected)
Qualcomm Atheros AR8151 PCI-E Gigabit Ethernet Controller (NDIS 6.30) = Ethernet (Media disconnected)
 
 
# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4
 
reset
set global icmpredirects=enabled
add route prefix=0.0.0.0/0 interface="Hamachi" nexthop=25.0.0.1 publish=Yes
set interface interface="Local Area Connection* 9" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled
set interface interface="Ethernet" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled
set interface interface="Wi-Fi" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled
set interface interface="Local Area Connection* 11" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled
set interface interface="other_0" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled
set interface interface="Local Area Connection* 12" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled
set interface interface="Hamachi" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled
 
 
popd
# End of IPv4 configuration
 
 
 
Windows IP Configuration
 
   Host Name . . . . . . . . . . . . : Tylers-laptop
   Primary Dns Suffix  . . . . . . . : 
   Node Type . . . . . . . . . . . . : Hybrid
   IP Routing Enabled. . . . . . . . : No
   WINS Proxy Enabled. . . . . . . . : No
   DNS Suffix Search List. . . . . . : gateway.2wire.net
 
Wireless LAN adapter Local Area Connection* 11:
 
   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : Microsoft Wi-Fi Direct Virtual Adapter
   Physical Address. . . . . . . . . : 1E-85-DE-51-51-5E
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes
 
Wireless LAN adapter Wi-Fi:
 
   Connection-specific DNS Suffix  . : gateway.2wire.net
   Description . . . . . . . . . . . : Qualcomm Atheros AR9485 Wireless Network Adapter
   Physical Address. . . . . . . . . : DC-85-DE-51-51-5E
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes
   Link-local IPv6 Address . . . . . : fe80::1539:b8b0:b1b3:da72%13(Preferred) 
   IPv4 Address. . . . . . . . . . . : 192.168.1.16(Preferred) 
   Subnet Mask . . . . . . . . . . . : 255.255.255.0
   Lease Obtained. . . . . . . . . . : Thursday, March 7, 2013 11:26:54 PM
   Lease Expires . . . . . . . . . . : Friday, March 8, 2013 11:26:53 PM
   Default Gateway . . . . . . . . . : 192.168.1.254
   DHCP Server . . . . . . . . . . . : 192.168.1.254
   DHCPv6 IAID . . . . . . . . . . . : 333219294
   DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-17-ED-7E-6C-50-46-5D-DF-F7-6C
   DNS Servers . . . . . . . . . . . : 192.168.1.254
   NetBIOS over Tcpip. . . . . . . . : Enabled
 
Ethernet adapter Ethernet:
 
   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : gateway.2wire.net
   Description . . . . . . . . . . . : Qualcomm Atheros AR8151 PCI-E Gigabit Ethernet Controller (NDIS 6.30)
   Physical Address. . . . . . . . . : 50-46-5D-DF-F7-6C
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes
 
Ethernet adapter Hamachi:
 
   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : Hamachi Network Interface
   Physical Address. . . . . . . . . : 7A-79-19-CA-9D-E7
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes
   IPv6 Address. . . . . . . . . . . : 2620:9b::19ca:9de7(Preferred) 
   Link-local IPv6 Address . . . . . : fe80::8c57:52e1:d6a0:74d%19(Preferred) 
   IPv4 Address. . . . . . . . . . . : 25.202.157.231(Preferred) 
   Subnet Mask . . . . . . . . . . . : 255.0.0.0
   Lease Obtained. . . . . . . . . . : Thursday, March 7, 2013 11:26:40 PM
   Lease Expires . . . . . . . . . . : Friday, March 7, 2014 11:28:46 PM
   Default Gateway . . . . . . . . . : 2620:9b::1900:1
                                       25.0.0.1
   DHCP Server . . . . . . . . . . . : 25.0.0.1
   DHCPv6 IAID . . . . . . . . . . . : 578451959
   DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-17-ED-7E-6C-50-46-5D-DF-F7-6C
   DNS Servers . . . . . . . . . . . : fec0:0:0:ffff::1%1
                                       fec0:0:0:ffff::2%1
                                       fec0:0:0:ffff::3%1
   NetBIOS over Tcpip. . . . . . . . : Enabled
 
Tunnel adapter Teredo Tunneling Pseudo-Interface:
 
   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
   IPv6 Address. . . . . . . . . . . : 2001:0:9d38:953c:1061:3e64:9313:7302(Preferred) 
   Link-local IPv6 Address . . . . . : fe80::1061:3e64:9313:7302%16(Preferred) 
   Default Gateway . . . . . . . . . : 
   NetBIOS over Tcpip. . . . . . . . : Disabled
 
Tunnel adapter isatap.gateway.2wire.net:
 
   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : gateway.2wire.net
   Description . . . . . . . . . . . : Microsoft ISATAP Adapter #2
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
 
Tunnel adapter isatap.{85E9D991-BCCC-405E-84A5-F85F498190D6}:
 
   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : Microsoft ISATAP Adapter #4
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
Server:  homeportal
Address:  192.168.1.254
 
Name:    google.com
Addresses:  2607:f8b0:4000:803::1009
 173.194.46.6
 173.194.46.7
 173.194.46.8
 173.194.46.9
 173.194.46.14
 173.194.46.0
 173.194.46.1
 173.194.46.2
 173.194.46.3
 173.194.46.4
 173.194.46.5
 
 
Pinging google.com [173.194.46.7] with 32 bytes of data:
Reply from 173.194.46.7: bytes=32 time=53ms TTL=53
Reply from 173.194.46.7: bytes=32 time=52ms TTL=53
 
Ping statistics for 173.194.46.7:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 52ms, Maximum = 53ms, Average = 52ms
Server:  homeportal
Address:  192.168.1.254
 
Name:    yahoo.com
Addresses:  98.139.183.24
 206.190.36.45
 98.138.253.109
 
 
Pinging yahoo.com [98.138.253.109] with 32 bytes of data:
Reply from 98.138.253.109: bytes=32 time=92ms TTL=49
Reply from 98.138.253.109: bytes=32 time=73ms TTL=49
 
Ping statistics for 98.138.253.109:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 73ms, Maximum = 92ms, Average = 82ms
 
Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time=9ms TTL=128
Reply from 127.0.0.1: bytes=32 time=2ms TTL=128
 
Ping statistics for 127.0.0.1:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 2ms, Maximum = 9ms, Average = 5ms
===========================================================================
Interface List
 14...1e 85 de 51 51 5e ......Microsoft Wi-Fi Direct Virtual Adapter
 13...dc 85 de 51 51 5e ......Qualcomm Atheros AR9485 Wireless Network Adapter
 12...50 46 5d df f7 6c ......Qualcomm Atheros AR8151 PCI-E Gigabit Ethernet Controller (NDIS 6.30)
 19...7a 79 19 ca 9d e7 ......Hamachi Network Interface
  1...........................Software Loopback Interface 1
 16...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
 17...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #2
 21...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #4
===========================================================================
 
IPv4 Route Table
===========================================================================
Active Routes:
Network Destination        Netmask          Gateway       Interface  Metric
          0.0.0.0          0.0.0.0         25.0.0.1   25.202.157.231    276
          0.0.0.0          0.0.0.0    192.168.1.254     192.168.1.16     25
         25.0.0.0        255.0.0.0         On-link    25.202.157.231    276
   25.202.157.231  255.255.255.255         On-link    25.202.157.231    276
   25.255.255.255  255.255.255.255         On-link    25.202.157.231    276
        127.0.0.0        255.0.0.0         On-link         127.0.0.1    306
        127.0.0.1  255.255.255.255         On-link         127.0.0.1    306
  127.255.255.255  255.255.255.255         On-link         127.0.0.1    306
      192.168.1.0    255.255.255.0         On-link      192.168.1.16    281
     192.168.1.16  255.255.255.255         On-link      192.168.1.16    281
    192.168.1.255  255.255.255.255         On-link      192.168.1.16    281
        224.0.0.0        240.0.0.0         On-link         127.0.0.1    306
        224.0.0.0        240.0.0.0         On-link    25.202.157.231    276
        224.0.0.0        240.0.0.0         On-link      192.168.1.16    281
  255.255.255.255  255.255.255.255         On-link         127.0.0.1    306
  255.255.255.255  255.255.255.255         On-link    25.202.157.231    276
  255.255.255.255  255.255.255.255         On-link      192.168.1.16    281
===========================================================================
Persistent Routes:
  Network Address          Netmask  Gateway Address  Metric
          0.0.0.0          0.0.0.0         25.0.0.1  Default 
===========================================================================
 
IPv6 Route Table
===========================================================================
Active Routes:
 If Metric Network Destination      Gateway
 19   9020 ::/0                     2620:9b::1900:1
  1    306 ::1/128                  On-link
 16    306 2001::/32                On-link
 16    306 2001:0:9d38:953c:1061:3e64:9313:7302/128
                                    On-link
 19    276 2620:9b::/96             On-link
 19    276 2620:9b::19ca:9de7/128   On-link
 19    276 fe80::/64                On-link
 13    281 fe80::/64                On-link
 16    306 fe80::/64                On-link
 16    306 fe80::1061:3e64:9313:7302/128
                                    On-link
 13    281 fe80::1539:b8b0:b1b3:da72/128
                                    On-link
 19    276 fe80::8c57:52e1:d6a0:74d/128
                                    On-link
  1    306 ff00::/8                 On-link
 16    306 ff00::/8                 On-link
 19    276 ff00::/8                 On-link
 13    281 ff00::/8                 On-link
===========================================================================
Persistent Routes:
 If Metric Network Destination      Gateway
  0 4294967295 2620:9b::/96             On-link
  0   9000 ::/0                     2620:9b::1900:1
===========================================================================
========================= Winsock entries =====================================
 
Catalog5 01 C:\Windows\SysWOW64\napinsp.dll [52224] (Microsoft Corporation)
Catalog5 02 C:\Windows\SysWOW64\pnrpnsp.dll [67584] (Microsoft Corporation)
Catalog5 03 C:\Windows\SysWOW64\pnrpnsp.dll [67584] (Microsoft Corporation)
Catalog5 04 C:\Windows\SysWOW64\NLAapi.dll [55296] (Microsoft Corporation)
Catalog5 05 C:\Windows\SysWOW64\mswsock.dll [289280] (Microsoft Corporation)
Catalog5 06 C:\Windows\SysWOW64\winrnr.dll [21504] (Microsoft Corporation)
Catalog5 07 C:\Windows\SysWOW64\wshbth.dll [50688] (Microsoft Corporation)
Catalog5 08 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Catalog9 01 C:\Windows\SysWOW64\mswsock.dll [289280] (Microsoft Corporation)
Catalog9 02 C:\Windows\SysWOW64\mswsock.dll [289280] (Microsoft Corporation)
Catalog9 03 C:\Windows\SysWOW64\mswsock.dll [289280] (Microsoft Corporation)
Catalog9 04 C:\Windows\SysWOW64\mswsock.dll [289280] (Microsoft Corporation)
Catalog9 05 C:\Windows\SysWOW64\mswsock.dll [289280] (Microsoft Corporation)
Catalog9 06 C:\Windows\SysWOW64\mswsock.dll [289280] (Microsoft Corporation)
Catalog9 07 C:\Windows\SysWOW64\mswsock.dll [289280] (Microsoft Corporation)
Catalog9 08 C:\Windows\SysWOW64\mswsock.dll [289280] (Microsoft Corporation)
Catalog9 09 C:\Windows\SysWOW64\mswsock.dll [289280] (Microsoft Corporation)
Catalog9 10 C:\Windows\SysWOW64\mswsock.dll [289280] (Microsoft Corporation)
Catalog9 11 C:\Windows\SysWOW64\mswsock.dll [289280] (Microsoft Corporation)
x64-Catalog5 01 C:\Windows\System32\napinsp.dll [66560] (Microsoft Corporation)
x64-Catalog5 02 C:\Windows\System32\pnrpnsp.dll [85504] (Microsoft Corporation)
x64-Catalog5 03 C:\Windows\System32\pnrpnsp.dll [85504] (Microsoft Corporation)
x64-Catalog5 04 C:\Windows\System32\NLAapi.dll [72192] (Microsoft Corporation)
x64-Catalog5 05 C:\Windows\System32\mswsock.dll [355328] (Microsoft Corporation)
x64-Catalog5 06 C:\Windows\System32\winrnr.dll [53760] (Microsoft Corporation)
x64-Catalog5 07 C:\Windows\System32\wshbth.dll [64000] (Microsoft Corporation)
x64-Catalog5 08 C:\Program Files\Bonjour\mdnsNSP.dll [132968] (Apple Inc.)
x64-Catalog9 01 C:\Windows\System32\mswsock.dll [355328] (Microsoft Corporation)
x64-Catalog9 02 C:\Windows\System32\mswsock.dll [355328] (Microsoft Corporation)
x64-Catalog9 03 C:\Windows\System32\mswsock.dll [355328] (Microsoft Corporation)
x64-Catalog9 04 C:\Windows\System32\mswsock.dll [355328] (Microsoft Corporation)
x64-Catalog9 05 C:\Windows\System32\mswsock.dll [355328] (Microsoft Corporation)
x64-Catalog9 06 C:\Windows\System32\mswsock.dll [355328] (Microsoft Corporation)
x64-Catalog9 07 C:\Windows\System32\mswsock.dll [355328] (Microsoft Corporation)
x64-Catalog9 08 C:\Windows\System32\mswsock.dll [355328] (Microsoft Corporation)
x64-Catalog9 09 C:\Windows\System32\mswsock.dll [355328] (Microsoft Corporation)
x64-Catalog9 10 C:\Windows\System32\mswsock.dll [355328] (Microsoft Corporation)
x64-Catalog9 11 C:\Windows\System32\mswsock.dll [355328] (Microsoft Corporation)
 
========================= Event log errors: ===============================
 
Application errors:
==================
Error: (03/07/2013 11:19:02 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16384_none_418c2a697189c07f.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16384_none_418c2a697189c07f.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16384_none_418c2a697189c07f.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16384_none_418c2a697189c07f.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16384_none_893961408605e985.manifest.
 
Error: (03/07/2013 06:17:00 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16384_none_418c2a697189c07f.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16384_none_418c2a697189c07f.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16384_none_418c2a697189c07f.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16384_none_418c2a697189c07f.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16384_none_893961408605e985.manifest.
 
Error: (03/07/2013 06:16:59 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16384_none_418c2a697189c07f.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16384_none_418c2a697189c07f.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16384_none_418c2a697189c07f.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16384_none_418c2a697189c07f.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16384_none_893961408605e985.manifest.
 
Error: (03/07/2013 06:16:54 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16384_none_418c2a697189c07f.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16384_none_418c2a697189c07f.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16384_none_418c2a697189c07f.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16384_none_418c2a697189c07f.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16384_none_893961408605e985.manifest.
 
Error: (03/07/2013 06:16:54 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16384_none_418c2a697189c07f.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16384_none_418c2a697189c07f.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16384_none_418c2a697189c07f.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16384_none_418c2a697189c07f.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16384_none_893961408605e985.manifest.
 
Error: (03/07/2013 06:16:41 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16384_none_418c2a697189c07f.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16384_none_418c2a697189c07f.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16384_none_418c2a697189c07f.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16384_none_418c2a697189c07f.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16384_none_893961408605e985.manifest.
 
Error: (03/07/2013 06:16:35 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16384_none_418c2a697189c07f.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16384_none_418c2a697189c07f.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16384_none_418c2a697189c07f.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16384_none_418c2a697189c07f.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16384_none_893961408605e985.manifest.
 
Error: (03/07/2013 06:16:35 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16384_none_418c2a697189c07f.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16384_none_418c2a697189c07f.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16384_none_418c2a697189c07f.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16384_none_418c2a697189c07f.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16384_none_893961408605e985.manifest.
 
Error: (03/07/2013 00:55:40 AM) (Source: Application Error) (User: )
Description: Faulting application name: ismagent.exe, version: 1.8.1.36353, time stamp: 0x4f8c314b
Faulting module name: dlnashext.dll_unloaded, version: 0.0.0.0, time stamp: 0x5010975d
Exception code: 0xc0000005
Fault offset: 0x718cdeed
Faulting process id: 0xc38
Faulting application start time: 0xismagent.exe0
Faulting application path: ismagent.exe1
Faulting module path: ismagent.exe2
Report Id: ismagent.exe3
Faulting package full name: ismagent.exe4
Faulting package-relative application ID: ismagent.exe5
 
Error: (03/07/2013 00:55:24 AM) (Source: Application Error) (User: )
Description: Faulting application name: ismagent.exe, version: 1.8.1.36353, time stamp: 0x4f8c314b
Faulting module name: bcrypt.dll, version: 6.2.9200.16384, time stamp: 0x50108b35
Exception code: 0xc00001a5
Fault offset: 0x000176d4
Faulting process id: 0xc38
Faulting application start time: 0xismagent.exe0
Faulting application path: ismagent.exe1
Faulting module path: ismagent.exe2
Report Id: ismagent.exe3
Faulting package full name: ismagent.exe4
Faulting package-relative application ID: ismagent.exe5
 
 
System errors:
=============
Error: (03/07/2013 11:27:13 PM) (Source: Service Control Manager) (User: )
Description: The HomeGroup Listener service terminated with the following service-specific error: 
%%2147944153
 
Error: (03/07/2013 11:27:06 PM) (Source: Service Control Manager) (User: )
Description: The NVIDIA Update Service Daemon service failed to start due to the following error: 
%%1069
 
Error: (03/07/2013 11:27:06 PM) (Source: Service Control Manager) (User: )
Description: The nvUpdatusService service was unable to log on as .\UpdatusUser with the currently configured password due to the following error: 
%%1330
 
To ensure that the service is configured properly, use the Services snap-in in Microsoft Management Console (MMC).
 
Error: (03/07/2013 11:26:36 PM) (Source: EventLog) (User: )
Description: The previous system shutdown at 11:24:11 PM on ?3/?7/?2013 was unexpected.
 
Error: (03/07/2013 11:24:41 PM) (Source: Service Control Manager) (User: )
Description: The HomeGroup Listener service terminated with the following service-specific error: 
%%2147944153
 
Error: (03/07/2013 11:24:30 PM) (Source: Service Control Manager) (User: )
Description: The NVIDIA Update Service Daemon service failed to start due to the following error: 
%%1069
 
Error: (03/07/2013 11:24:30 PM) (Source: Service Control Manager) (User: )
Description: The nvUpdatusService service was unable to log on as .\UpdatusUser with the currently configured password due to the following error: 
%%1330
 
To ensure that the service is configured properly, use the Services snap-in in Microsoft Management Console (MMC).
 
Error: (03/07/2013 05:56:58 PM) (Source: Service Control Manager) (User: )
Description: The HomeGroup Listener service terminated with the following service-specific error: 
%%2147944153
 
Error: (03/07/2013 05:55:00 PM) (Source: Service Control Manager) (User: )
Description: The HomeGroup Listener service terminated with the following service-specific error: 
%%2147944153
 
Error: (03/07/2013 05:53:52 PM) (Source: EventLog) (User: )
Description: The previous system shutdown at 5:49:02 PM on ?3/?7/?2013 was unexpected.
 
 
Microsoft Office Sessions:
=========================
Error: (03/07/2013 11:19:02 PM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16384_none_418c2a697189c07f.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16384_none_893961408605e985.manifestC:\Users\Tyler\Downloads\esetsmartinstaller_enu.exe
 
Error: (03/07/2013 06:17:00 PM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16384_none_418c2a697189c07f.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16384_none_893961408605e985.manifestC:\Users\Tyler\Desktop\esetsmartinstaller_enu.exe
 
Error: (03/07/2013 06:16:59 PM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16384_none_418c2a697189c07f.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16384_none_893961408605e985.manifestC:\Users\Tyler\Desktop\esetsmartinstaller_enu.exe
 
Error: (03/07/2013 06:16:54 PM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16384_none_418c2a697189c07f.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16384_none_893961408605e985.manifestC:\Users\Tyler\Desktop\esetsmartinstaller_enu.exe
 
Error: (03/07/2013 06:16:54 PM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16384_none_418c2a697189c07f.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16384_none_893961408605e985.manifestC:\Users\Tyler\Desktop\esetsmartinstaller_enu.exe
 
Error: (03/07/2013 06:16:41 PM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16384_none_418c2a697189c07f.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16384_none_893961408605e985.manifestC:\Users\Tyler\Desktop\esetsmartinstaller_enu.exe
 
Error: (03/07/2013 06:16:35 PM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16384_none_418c2a697189c07f.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16384_none_893961408605e985.manifestC:\Users\Tyler\Downloads\esetsmartinstaller_enu.exe
 
Error: (03/07/2013 06:16:35 PM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16384_none_418c2a697189c07f.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16384_none_893961408605e985.manifestC:\Users\Tyler\Downloads\esetsmartinstaller_enu.exe
 
Error: (03/07/2013 00:55:40 AM) (Source: Application Error)(User: )
Description: ismagent.exe1.8.1.363534f8c314bdlnashext.dll_unloaded0.0.0.05010975dc0000005718cdeedc3801ce1af857321b80C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\ismagent.exedlnashext.dlla3b9cb72-86eb-11e2-bed6-50465ddff76c
 
Error: (03/07/2013 00:55:24 AM) (Source: Application Error)(User: )
Description: ismagent.exe1.8.1.363534f8c314bbcrypt.dll6.2.9200.1638450108b35c00001a5000176d4c3801ce1af857321b80C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\ismagent.exeC:\Windows\SYSTEM32\bcrypt.dll9a21c935-86eb-11e2-bed6-50465ddff76c
 
 
=========================== Installed Programs ============================
 
7-Zip 9.20 (x64 edition) (Version: 9.20.00.0)
Adobe Flash Player 11 Plugin (Version: 11.6.602.171)
Adobe Reader X MUI (Version: 10.0.0)
Akamai NetSession Interface
Alan Wake
Alcor Micro USB Card Reader (Version: 3.3.142.61507)
Alien Swarm
Antichamber
Apple Application Support (Version: 2.3.3)
Apple Mobile Device Support (Version: 6.1.0.13)
Apple Software Update (Version: 2.1.3.127)
ArtRage 2 Starter Edition (Version: 2.6.0)
Ask Toolbar (Version: 1.15.14.0)
Ask Toolbar Updater (Version: 1.2.3.29495)
ASUS Fan Filter Checker (Version: 1.0.0001)
ASUS Instant Connect (Version: 1.2.8)
ASUS InstantOn (Version: 3.0.2)
ASUS LifeFrame3 (Version: 3.1.5)
ASUS Live Update (Version: 3.1.8)
ASUS Power4Gear Hybrid (Version: 2.0.3)
ASUS ROG Gaming Mouse (Version: 2.00.018)
ASUS Splendid Video Enhancement Technology (Version: 1.03.0002)
ASUS Tutor (Version: 1.0.7)
ASUS USB Charger Plus (Version: 2.1.4)
ASUS Virtual Camera (Version: 1.0.26)
ASUSDVD (Version: 10.0.4126.52)
AsusVibe2.0 (Version: 2.0.12.309)
Atheros Communications Inc.® AR81Family Gigabit/Fast Ethernet Driver (Version: 2.1.0.7)
ATK Package (Version: 1.0.0022)
Autodesk Backburner 2013.0.0 (Version: 2013.0.0)
Autodesk Design Review 2013 (Version: 13.0.0.82)
Autodesk DirectConnect 2013 64-bit (Version: 7.0.28.0)
Autodesk FBX Plug-in 2013.1 - Maya 2013 64-bit
Autodesk Inventor 2013 Quick Uninstaller (Version: 17.0.13800.0000)
Autodesk Inventor Content Center Libraries 2013 (Desktop Content) (Version: 17.0.13800.0000)
Autodesk Inventor Fusion 2013 (Version: 2.0.0.206)
Autodesk Inventor Fusion for Inventor 2013 Add-in (Version: 1.0.0.111)
Autodesk Inventor Professional 2013 (Version: 17.0.13800.0000)
Autodesk Inventor Professional 2013 English (Version: 17.0.13800.0000)
Autodesk Inventor Professional 2013 English Language Pack (Version: 17.0.13800.0000)
Autodesk MatchMover 2013 64-bit (Version: 14.00.0000)
Autodesk Material Library 2013 (Version: 3.0.13)
Autodesk Material Library Base Resolution Image Library 2013 (Version: 3.0.13)
Autodesk Material Library Low Resolution Image Library 2013 (Version: 3.0.13)
Autodesk Maya 2013 64-bit (Version: 15.0.0.0)
Autodesk Sync (Version: 3.5.24.0)
Autodesk Vault Basic 2013 (Client) (Version: 17.0.61.0)
Autodesk Vault Basic 2013 (Client) English Language Pack (Version: 17.0.61.0)
BioShock
BioShock 2
BioShock 2 (Version: 1.0.0005.131)
BIT.TRIP BEAT
BitTorrent (Version: 7.7.2.28499)
Bonjour (Version: 3.0.0.10)
Borderlands
Call of Duty® - World at War™ 1.2 Patch
Call of Duty® - World at War™ 1.4 Patch
Call of Duty® - World at War™ 1.4 Patch (Version: 1.4)
Call of Duty® - World at War™ 1.5 Patch
Call of Duty® - World at War™ 1.5 Patch (Version: 1.5)
Composite 2013 64-bit (Version: 8.0.0)
Counter-Strike
Counter-Strike: Condition Zero Deleted Scenes
Counter-Strike: Global Offensive
Counter-Strike: Source
Crysis® SP Demo (Version: 1.00.0000)
CyberLink LabelPrint 2.5 (Version: 2.5.5415)
CyberLink Power2Go (Version: 7.0.0.2914)
Day of Defeat
Day of Defeat: Source
Dead Space 2
Dear Esther
Deathmatch Classic
Digital - A Love Story 1.1 (Version: 1.1)
Dishonored (Version: 1.0)
Dota 2
Dual-Core Optimizer (Version: 1.1.4.0169)
DWG TrueView 2013 (Version: 19.0.55.0)
Eco Materials Adviser for Autodesk Inventor 2013 (Version: 3.9.12.0)
ESET Online Scanner v3
Far Cry® 3
Garry's Mod
GIMP 2.8.2 (Version: 2.8.2)
Google Chrome (Version: 25.0.1364.152)
Google Talk Plugin (Version: 3.15.2.12038)
Google Update Helper (Version: 1.3.21.135)
Half-Life 2
Half-Life 2: Deathmatch
Half-Life 2: Episode One
Half-Life 2: Episode Two
Half-Life 2: Lost Coast
Half-Life Deathmatch: Source
Half-Life Dedicated Server Update Tool
Half-Life Uplink
Half-Life: Blue Shift
Half-Life: Opposing Force
Half-Life: Source
Half-Mind
Hitman: Blood Money
HP Photosmart Plus B210 series Basic Device Software (Version: 28.0.1315.0)
Intel® Manageability Engine Firmware Recovery Agent (Version: 1.0.0.36354)
Intel® Management Engine Components (Version: 8.1.0.1252)
Intel® Trusted Connect Service Client (Version: 1.24.388.1)
iTunes (Version: 11.0.2.25)
Java 7 Update 10 (64-bit) (Version: 7.0.100)
Java 7 Update 15 (Version: 7.0.150)
Java Auto Updater (Version: 2.1.9.0)
L.A. Noire
Left 4 Dead 2
Livestream Procaster (Version: 20.3.0)
LogMeIn Hamachi (Version: 2.1.0.296)
Malwarebytes Anti-Malware version 1.70.0.1100 (Version: 1.70.0.1100)
Mass Effect
Mass Effect 2
Mass Effect™ 3 (Version: 1.05.0.0)
Max Payne 3
Metro 2033
Microsoft .NET Framework 4 Multi-Targeting Pack (Version: 4.0.30319)
Microsoft Application Error Reporting (Version: 12.0.6012.5000)
Microsoft Games for Windows - LIVE Redistributable (Version: 3.5.92.0)
Microsoft Games for Windows Marketplace (Version: 3.5.50.0)
Microsoft Help Viewer 1.0 (Version: 1.0.30319)
Microsoft Office (Version: 14.0.6120.5004)
Microsoft Silverlight (Version: 5.1.10411.0)
Microsoft SQL Server Compact 3.5 SP2 ENU (Version: 3.5.8080.0)
Microsoft SQL Server Compact 3.5 SP2 x64 ENU (Version: 3.5.8080.0)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.56336)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.59193)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.56336)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.59192)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.61000)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (Version: 10.0.40219)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (Version: 10.0.40219)
Microsoft Visual C++ 2010 Express - ENU (Version: 10.0.30319)
Microsoft Visual Studio 2010 Express Prerequisites x64 - ENU (Version: 10.0.30319)
Microsoft WSE 3.0 Runtime (Version: 3.0.5305.0)
MINERVA: Metastasis
Mirror's Edge
Mobile Mouse Server (Version: 2.7.0)
MotioninJoy DS3 driver version 0.6.0005 (Version: 0.6.0005)
My Game Long Name
Nero 12 (Version: 12.0.02900)
Nero Audio Pack 1 (Version: 11.0.11500.110.0)
Nero BackItUp (Version: 12.0.6002)
Nero BackItUp Help (CHM) (Version: 12.0.8000)
Nero Blu-ray Player (Version: 12.0.17700)
Nero Blu-ray Player Help (CHM) (Version: 12.0.9000)
Nero Burning ROM (Version: 12.0.28001)
Nero Burning ROM Help (CHM) (Version: 12.0.3000)
Nero ControlCenter (Version: 11.0.15500)
Nero ControlCenter Help (CHM) (Version: 12.0.7000)
Nero Core Components (Version: 11.0.18900)
Nero Disc Menus Basic (Version: 12.0.11500)
Nero Effects Basic (Version: 12.0.11500)
Nero Express (Version: 12.0.28001)
Nero Express Help (CHM) (Version: 12.0.5000)
Nero Kwik Media (Version: 1.18.19600)
Nero Kwik Media Help (CHM) (Version: 12.0.7000)
Nero Kwik Themes Basic (Version: 12.0.11500)
Nero Launcher (Version: 12.2.7000)
Nero PiP Effects Basic (Version: 12.0.11500)
Nero Recode (Version: 12.0.31001)
Nero Recode Help (CHM) (Version: 12.0.7000)
Nero RescueAgent (Version: 12.0.10002)
Nero RescueAgent Help (CHM) (Version: 12.0.7000)
Nero SharedVideoCodecs (Version: 1.0.12100.2.0)
Nero Update (Version: 11.0.11800.31.0)
Nero Video (Version: 12.0.8000)
Nero Video Help (CHM) (Version: 12.0.7000)
NVIDIA 3D Vision Driver 314.07 (Version: 314.07)
NVIDIA Control Panel 314.07 (Version: 314.07)
NVIDIA GeForce Experience 1.0.1 (BETA) (Version: 1.0.1 (BETA))
NVIDIA Graphics Driver 314.07 (Version: 314.07)
NVIDIA HD Audio Driver 1.3.23.1 (Version: 1.3.23.1)
NVIDIA Install Application (Version: 2.1002.109.706)
NVIDIA PhysX (Version: 9.12.1031)
NVIDIA PhysX System Software 9.12.1031 (Version: 9.12.1031)
NVIDIA Stereoscopic 3D Driver (Version: 7.17.13.1407)
NVIDIA Update 2.47.62 (Version: 2.47.62)
NVIDIA Update Components (Version: 2.47.62)
OpenAL
OpenOffice.org 3.4.1 (Version: 3.41.9593)
Origin (Version: 9.1.13.85)
PC Performer (Version: 11.10)
Platform (Version: 1.39)
Portal
Portal 2
Prerequisite installer (Version: 12.0.0003)
Qualcomm Atheros Client Installation Program (Version: 10.0)
Quest (Version: 5.20.0000)
QuickTime (Version: 7.73.80.64)
RAGE
Ricochet
Rockstar Games Social Club (Version: 1.1.0.1)
Smod: Tactical-Project Life
Source Multiplayer Dedicated Server
Source SDK
Source SDK Base 2007
Star Wars - Battlefront II
Star Wars - Jedi Knight II: Jedi Outcast
Star Wars - Jedi Knight: Mysteries of the Sith
Star Wars Jedi Knight: Dark Forces II
Star Wars Jedi Knight: Jedi Academy
Star Wars Republic Commando
Star Wars: Dark Forces
Star Wars: Empire at War Gold
Star Wars: Knights of the Old Republic
Star Wars: The Force Unleashed Ultimate Sith Edition
Star Wars: The Old Republic (Version: 1.00)
Steam (Version: 1.0.0.0)
Synaptics Pointing Device Driver (Version: 16.2.21.0)
System Requirements Lab CYRI (Version: 5.0.6.0)
Team Fortress 2
Team Fortress Classic
Unity Web Player (Version: )
Uplay (Version: 2.0)
VBA (2627.01) (Version: 6.03.00.9402)
VIA Platform Device Manager (Version: 1.39)
Webroot SecureAnywhere (Version: 8.0.2.118)
Welcome App (Start-up experience) (Version: 12.0.15000)
WinFlash (Version: 2.41.1)
 
========================= Devices: ================================
 
 
========================= Memory info: ===================================
 
Percentage of memory in use: 18%
Total physical RAM: 8144.96 MB
Available physical RAM: 6616.88 MB
Total Pagefile: 9360.96 MB
Available Pagefile: 7691.33 MB
Total Virtual: 4095.88 MB
Available Virtual: 3952.09 MB
 
========================= Partitions: =====================================
 
1 Drive c: (OS) (Fixed) (Total:910.51 GB) (Free:487.73 GB) NTFS
 
========================= Users: ========================================
 
User accounts for \\TYLERS-LAPTOP
 
Administrator            Alex and Andy            Guest                    
Tyler                    UpdatusUser              
 
 
**** End of log ****


#9 chickenguy12

chickenguy12
  • Topic Starter

  • Members
  • 48 posts
  • OFFLINE
  •  
  • Local time:06:09 PM

Posted 07 March 2013 - 11:54 PM

Fabar's Service Scanner log: Farbar Service Scanner Version: 03-03-2013

Ran by Tyler (administrator) on 07-03-2013 at 23:35:04
Running from "C:\Users\Tyler\Downloads"
Windows 8  (X64)
Boot Mode: Normal
****************************************************************
 
Internet Services:
============
 
Connection Status:
==============
Localhost is accessible.
LAN connected.
Google IP is accessible.
Google.com is accessible.
Yahoo IP is accessible.
Yahoo.com is accessible.
 
 
Windows Firewall:
=============
mpsdrv Service is not running. Checking service configuration:
The start type of mpsdrv service is OK.
The ImagePath of mpsdrv service is OK.
Checking LEGACY_mpsdrv: ATTENTION!=====> Unable to open LEGACY_mpsdrv\0000 registry key. The key does not exist.
 
MpsSvc Service is not running. Checking service configuration:
The start type of MpsSvc service is set to Disabled. The default start type is Auto.
The ImagePath of MpsSvc service is OK.
The ServiceDll of MpsSvc service is OK.
 
 
Firewall Disabled Policy: 
==================
 
 
System Restore:
============
 
System Restore Disabled Policy: 
========================
 
 
Action Center:
============
wscsvc Service is not running. Checking service configuration:
The start type of wscsvc service is set to Disabled. The default start type is Auto.
The ImagePath of wscsvc service is OK.
The ServiceDll of wscsvc service is OK.
 
 
Windows Update:
============
wuauserv Service is not running. Checking service configuration:
The start type of wuauserv service is set to Demand. The default start type is Auto.
The ImagePath of wuauserv service is OK.
The ServiceDll of wuauserv service is OK.
 
 
Windows Autoupdate Disabled Policy: 
============================
 
 
Windows Defender:
==============
WinDefend Service is not running. Checking service configuration:
The start type of WinDefend service is set to Demand. The default start type is Auto.
The ImagePath of WinDefend service is OK.
 
 
Windows Defender Disabled Policy: 
==========================
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows Defender]
"DisableAntiSpyware"=DWORD:1
 
 
Other Services:
==============
 
 
File Check:
========
C:\Windows\System32\nsisvc.dll => MD5 is legit
C:\Windows\System32\drivers\nsiproxy.sys => MD5 is legit
C:\Windows\System32\dhcpcore.dll => MD5 is legit
C:\Windows\System32\drivers\afd.sys => MD5 is legit
C:\Windows\System32\drivers\tdx.sys => MD5 is legit
C:\Windows\System32\Drivers\tcpip.sys => MD5 is legit
C:\Windows\System32\dnsrslvr.dll => MD5 is legit
C:\Windows\System32\mpssvc.dll => MD5 is legit
C:\Windows\System32\bfe.dll => MD5 is legit
C:\Windows\System32\drivers\mpsdrv.sys => MD5 is legit
C:\Windows\System32\SDRSVC.dll => MD5 is legit
C:\Windows\System32\vssvc.exe => MD5 is legit
C:\Windows\System32\wscsvc.dll => MD5 is legit
C:\Windows\System32\wbem\WMIsvc.dll => MD5 is legit
C:\Windows\System32\wuaueng.dll => MD5 is legit
C:\Windows\System32\qmgr.dll => MD5 is legit
C:\Windows\System32\es.dll => MD5 is legit
C:\Windows\System32\cryptsvc.dll => MD5 is legit
C:\Program Files\Windows Defender\MpSvc.dll => MD5 is legit
C:\Program Files\Windows Defender\MsMpEng.exe => MD5 is legit
C:\Windows\System32\ipnathlp.dll => MD5 is legit
C:\Windows\System32\iphlpsvc.dll => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
 
 
**** End of log ****


#10 chickenguy12

chickenguy12
  • Topic Starter

  • Members
  • 48 posts
  • OFFLINE
  •  
  • Local time:06:09 PM

Posted 07 March 2013 - 11:57 PM

adw cleaner log:

 

 

# AdwCleaner v2.114 - Logfile created 03/07/2013 at 23:35:54
# Updated 05/03/2013 by Xplode
# Operating system : Windows 8  (64 bits)
# User : Tyler - TYLERS-LAPTOP
# Boot Mode : Normal
# Running from : C:\Users\Tyler\Downloads\AdwCleaner.exe
# Option [Delete]
 
 
***** [Services] *****
 
 
***** [Files / Folders] *****
 
File Deleted : C:\Windows\Tasks\PC Performer_DEFAULT.job
Folder Deleted : C:\Program Files (x86)\Ask.com
Folder Deleted : C:\Program Files (x86)\file scout
Folder Deleted : C:\ProgramData\Ask
Folder Deleted : C:\ProgramData\Babylon
Folder Deleted : C:\Users\Alex and Andy\AppData\LocalLow\AskToolbar
Folder Deleted : C:\Users\Tyler\AppData\Local\APN
Folder Deleted : C:\Users\Tyler\AppData\Local\Babylon
Folder Deleted : C:\Users\Tyler\AppData\Local\Conduit
Folder Deleted : C:\Users\Tyler\AppData\LocalLow\AskToolbar
Folder Deleted : C:\Users\Tyler\AppData\LocalLow\Conduit
Folder Deleted : C:\Users\Tyler\AppData\Roaming\Babylon
Folder Deleted : C:\Users\Tyler\AppData\Roaming\PerformerSoft
Folder Deleted : C:\Windows\Installer\{86D4B82A-ABED-442A-BE86-96357B70F4FE}
 
***** [Registry] *****
 
Key Deleted : HKCU\Software\APN
Key Deleted : HKCU\Software\AppDataLow\Software\AskToolbar
Key Deleted : HKCU\Software\AppDataLow\Software\Conduit
Key Deleted : HKCU\Software\AppDataLow\Software\SmartBar
Key Deleted : HKCU\Software\Ask.com
Key Deleted : HKCU\Software\Conduit
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A5AA24EA-11B8-4113-95AE-9ED71DEAF12A}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{D4027C7F-154A-4066-A1AD-4243D8127440}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{D4027C7F-154A-4066-A1AD-4243D8127440}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\{79A765E1-C399-405B-85AF-466F52E918B0}
Key Deleted : HKCU\Software\PerformerSoft
Key Deleted : HKCU\Software\Softonic
Key Deleted : HKLM\Software\APN
Key Deleted : HKLM\Software\AskToolbar
Key Deleted : HKLM\Software\Babylon
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{9B0CB95C-933A-4B8C-B6D4-EDCD19A43874}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{C26644C4-2A12-4CA6-8F2E-0EDE6CF018F3}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\GenericAskToolbar.DLL
Key Deleted : HKLM\SOFTWARE\Classes\GenericAskToolbar.ToolbarWnd
Key Deleted : HKLM\SOFTWARE\Classes\GenericAskToolbar.ToolbarWnd.1
Key Deleted : HKLM\Software\Classes\Installer\Features\A28B4D68DEBAA244EB686953B7074FEF
Key Deleted : HKLM\Software\Classes\Installer\Products\A28B4D68DEBAA244EB686953B7074FEF
Key Deleted : HKLM\SOFTWARE\Classes\Prod.cap
Key Deleted : HKLM\SOFTWARE\Classes\S
Key Deleted : HKLM\SOFTWARE\Classes\Toolbar.CT3225826
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{2996F0E7-292B-4CAE-893F-47B8B1C05B56}
Key Deleted : HKLM\Software\Conduit
Key Deleted : HKLM\Software\PerformerSoft
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{00000000-6E41-4FD3-8538-502F5495E5FC}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{3C471948-F874-49F5-B338-4F214A2EE0B1}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{D4027C7F-154A-4066-A1AD-4243D8127440}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{6C434537-053E-486D-B62A-160059D9D456}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{91CF619A-4686-4CA4-9232-3B2E6B63AA92}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{AC71B60E-94C9-4EDE-BA46-E146747BB67E}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\aaaaojmikegpiepcfdkkjaplodkpfmlo
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A5AA24EA-11B8-4113-95AE-9ED71DEAF12A}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D4027C7F-154A-4066-A1AD-4243D8127440}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{86D4B82A-ABED-442A-BE86-96357B70F4FE}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\PC Performer_is1
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{6C434537-053E-486D-B62A-160059D9D456}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{91CF619A-4686-4CA4-9232-3B2E6B63AA92}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{AC71B60E-94C9-4EDE-BA46-E146747BB67E}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\A28B4D68DEBAA244EB686953B7074FEF
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks [{00000000-6E41-4FD3-8538-502F5495E5FC}]
Value Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [ApnUpdater]
Value Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar [{D4027C7F-154A-4066-A1AD-4243D8127440}]
 
***** [Internet Browsers] *****
 
-\\ Internet Explorer v10.0.9200.16482
 
[OK] Registry is clean.
 
-\\ Google Chrome v25.0.1364.152
 
File : C:\Users\Tyler\AppData\Local\Google\Chrome\User Data\Default\Preferences
 
Deleted [l.2217] : homepage = "hxxp://www.delta-search.com/?affID=119556&babsrc=HP_ss&mntrId=444857380000000000001e[...]
Deleted [l.2944] : urls_to_restore_on_startup = [ "hxxp://www.delta-search.com/?affID=119556&babsrc=HP_ss&mntrId[...]
 
File : C:\Users\Alex and Andy\AppData\Local\Google\Chrome\User Data\Default\Preferences
 
[OK] File is clean.
 
*************************
 
AdwCleaner[S1].txt - [5426 octets] - [07/03/2013 23:35:54]
 
########## EOF - C:\AdwCleaner[S1].txt - [5486 octets] ##########


Junkware removal tool log:

 

 

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 4.6.9 (03.06.2013:1)
OS: Windows 8 x64
Ran by Tyler on Thu 03/07/2013 at 23:40:07.89
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
 
 
 
 
~~~ Services
 
 
 
~~~ Registry Values
 
 
 
~~~ Registry Keys
 
Successfully deleted: [Registry Key] hkey_current_user\software\filescout
Successfully deleted: [Registry Key] hkey_local_machine\software\classes\installer\upgradecodes\f928123a039649549966d4c29d35b1c9
 
 
 
~~~ Files
 
 
 
~~~ Folders
 
Successfully deleted: [Folder] "C:\ProgramData\Microsoft\Windows\Start Menu\Programs\pc performer"
Successfully deleted: [Folder] "C:\Windows\syswow64\ai_recyclebin"
 
 
 
~~~ Chrome
 
Successfully deleted: [Folder] C:\Users\Tyler\appdata\local\Google\Chrome\User Data\Default\Extensions\dknkjnkhedbanphkkpbpcgoblmkbfhlf
Successfully deleted: [Registry Key] hkey_current_user\software\google\chrome\extensions\dknkjnkhedbanphkkpbpcgoblmkbfhlf
Successfully deleted: [Registry Key] hkey_local_machine\software\google\chrome\extensions\dknkjnkhedbanphkkpbpcgoblmkbfhlf
 
 
 
~~~ Event Viewer Logs were cleared


#11 chickenguy12

chickenguy12
  • Topic Starter

  • Members
  • 48 posts
  • OFFLINE
  •  
  • Local time:06:09 PM

Posted 08 March 2013 - 12:00 AM

Rkill log: 

 

 

Rkill 2.4.7 by Lawrence Abrams (Grinler)
Copyright 2008-2013 BleepingComputer.com
More Information about Rkill can be found at this link:
 
Program started at: 03/07/2013 11:46:23 PM in x64 mode.
Windows Version: Windows 8 
 
3/07/2013 11:46:23 PM in x64 mode.
Windows Version: Windows 8 
 
Checking for Windows services to stop:
 
Checking for Windows services to stop:
 
 * No malware services found to stop.
 
Checking for processes to terminate:
 
 * No malware services found to stop.
 
Checking for processes to terminate:
 
 * No malware processes found to kill.
 
Checking Registry for malware related settings:
 
 * No malware processes found to kill.
 
Checking Registry for malware related settings:
 
 * No issues found in the Registry.
 * No issues found in the Registry.
 
Resetting .EXE, .COM, & .BAT associations in the Windows Registry.
 
Resetting .EXE, .COM, & .BAT associations in the Windows Registry.
  * HKCU\SOFTWARE\Classes\.exe "@" exists and is set to exefile!
  * HKCU\SOFTWARE\Classes\.exe "@" exists and is set to exefile!
  * HKCU\SOFTWARE\Classes\.exe has been deleted!
  * HKCU\SOFTWARE\Classes\exefile has been deleted!
 
 
Performing miscellaneous checks:
 
Performing miscellaneous checks:
 
 * Windows Defender Disabled
 
   [HKLM\SOFTWARE\Microsoft\Windows Defender]
   "DisableAntiSpyware" = dword:00000001
 
 * Windows Defender Disabled
 
   [HKLM\SOFTWARE\Microsoft\Windows Defender]
   "DisableAntiSpyware" = dword:00000001
 
Checking Windows Service Integrity: 
 
 * Windows Firewall (MpsSvc) is not Running.
   Startup Type set to: Disabled
 
 * Security Center (wscsvc) is not Running.
   Startup Type set to: Disabled
 
 * Windows Firewall Authorization Driver (mpsdrv) is not Running.
   Startup Type set to: 
Checking Windows Service Integrity: 
 
 * Windows Firewall (MpsSvc) is not Running.
   Startup Type set to: Disabled
 
 * Security Center (wscsvc) is not Running.
   Startup Type set to: Disabled
 
 * Windows Firewall Authorization Driver (mpsdrv) is not Running.
   Startup Type set to: Manual
Manual
 
Searching for Missing Digital Signatures: 
 
Searching for Missing Digital Signatures: 
 
 * No issues found.
 
Checking HOSTS File: 
 
 * No issues found.
 
Program finished at: 03/07/2013 11:46:31 PM
Execution time: 0 hours(s), 0 minute(s), and 7 seconds(s)


Autoruns log:

 

 

"HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run" "" "" ""
+ "ACMON" "ACMON " "ASUS" "c:\program files (x86)\asus\splendid\acmon.exe"
+ "AmIcoSinglun64" "Single LUN Icon Utility for VID 058F PID 6366" "Alcor Micro Corp." "c:\program files (x86)\amicosinglun\amicosinglun64.exe"
+ "Autodesk Sync" "Autodesk Sync" "Autodesk, Inc." "c:\program files\autodesk\autodesk sync\adsync.exe"
+ "Logitech Download Assistant" "Logitech Download Assistant" "Logitech, Inc." "c:\windows\system32\logilda.dll"
+ "Nvtmru" "NVIDIA NvTmru Application" "NVIDIA Corporation" "c:\program files (x86)\nvidia corporation\nvidia update core\nvtmru.exe"
"HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run" "" "" ""
+ "Adobe ARM" "Adobe Reader and Acrobat Manager" "Adobe Systems Incorporated" "c:\program files (x86)\common files\adobe\arm\1.0\adobearm.exe"
+ "Adobe Reader Speed Launcher" "Adobe Acrobat SpeedLauncher" "Adobe Systems Incorporated" "c:\program files (x86)\adobe\reader 10.0\reader\reader_sl.exe"
+ "amd_dc_opt" "AMD Dual-Core Optimizer" "AMD" "c:\program files (x86)\amd\dual-core optimizer\amd_dc_opt.exe"
+ "APSDaemon" "Apple Push" "Apple Inc." "c:\program files (x86)\common files\apple\apple application support\apsdaemon.exe"
+ "CLMLServer" "CyberLink MediaLibray Service" "CyberLink" "c:\program files (x86)\cyberlink\power2go\clmlsvc.exe"
+ "HDAudDeck" "VIA HD Audio CPL" "VIA" "c:\program files (x86)\via\viaudioi\vdeck\vdeck.exe"
+ "iTunesHelper" "iTunesHelper" "Apple Inc." "c:\program files (x86)\itunes\ituneshelper.exe"
+ "LogMeIn Hamachi Ui" "Hamachi Client Application" "LogMeIn Inc." "c:\program files (x86)\logmein hamachi\hamachi-2-ui.exe"
+ "QuickTime Task" "QuickTime Task" "Apple Inc." "c:\program files (x86)\quicktime\qttask.exe"
+ "RemoteControl10" "PowerDVD RC Service" "CyberLink Corp." "c:\program files (x86)\cyberlink\powerdvd10\pdvd10serv.exe"
+ "ROGNB" "ASUS ROG Gaming Mouse hid" "" "c:\program files (x86)\asus gaming mouse\hid.exe"
+ "SunJavaUpdateSched" "Java™ Update Scheduler" "Sun Microsystems, Inc." "c:\program files (x86)\common files\java\java update\jusched.exe"
+ "WRSVC" "Webroot SecureAnywhere" "Webroot" "c:\program files\webroot\wrsa.exe"
"C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup" "" "" ""
+ "Air Mouse.lnk" "AirMouse" "" "c:\program files (x86)\air mouse\air mouse\air mouse.exe"
+ "Install Webroot FF RunOnce.lnk" "Webroot Installer" "Webroot Software, Inc." "c:\program files (x86)\common files\wruninstall.exe"
+ "Install Webroot IE RunOnce.lnk" "Webroot Installer" "Webroot Software, Inc." "c:\program files (x86)\common files\wruninstall.exe"
"C:\Users\Tyler\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup" "" "" ""
+ "OpenOffice.org 3.4.1.lnk" "" "" "c:\program files (x86)\openoffice.org 3\program\quickstart.exe"
"HKLM\SOFTWARE\Microsoft\Active Setup\Installed Components" "" "" ""
+ "Microsoft Windows" "Windows Mail" "Microsoft Corporation" "c:\program files\windows mail\winmail.exe"
"HKLM\SOFTWARE\Wow6432Node\Microsoft\Active Setup\Installed Components" "" "" ""
+ "Google Chrome" "Google Chrome" "Google Inc." "c:\program files (x86)\google\chrome\application\25.0.1364.152\installer\chrmstp.exe"
+ "Microsoft Windows" "Windows Mail" "Microsoft Corporation" "c:\program files (x86)\windows mail\winmail.exe"
"HKCU\Software\Microsoft\Windows\CurrentVersion\Run" "" "" ""
+ "Akamai NetSession Interface" "Akamai NetSession Client" "Akamai Technologies, Inc." "c:\users\tyler\appdata\local\akamai\netsession_win.exe"
+ "Google Update" "Google Installer" "Google Inc." "c:\users\tyler\appdata\local\google\update\googleupdate.exe"
+ "HP Photosmart Plus B210 series (NET)" "ScanToPCActivationApp" "Hewlett-Packard Co." "c:\program files\hp\hp photosmart plus b210 series\bin\scantopcactivationapp.exe"
+ "Power2GoExpress" "" "" "File not found: NA"
+ "Steam" "Steam Client Bootstrapper (buildbot_winslave04_steam_steam_rel_client_win32@winslave04)" "Valve Corporation" "c:\program files (x86)\steam\steam.exe"
"HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers" "" "" ""
+ "7-Zip" "7-Zip Shell Extension" "Igor Pavlov" "c:\program files\7-zip\7-zip.dll"
+ "AcShellExtension.AcContextMenuHandler" "AutoCAD Dwg common shell extension handler" "Autodesk" "c:\program files (x86)\common files\autodesk shared\acshellex\acshellextension.dll"
+ "NeroShellExt Class" "Nero Burning ROM Shell Extension" "Nero AG" "c:\program files (x86)\common files\nero\neroshellext\x64\neroshellext.dll"
+ "WRShellExt" "Webroot SecureAnywhere" "Webroot" "c:\windows\system32\wrusr.dll"
"HKLM\Software\Wow6432Node\Classes\*\ShellEx\ContextMenuHandlers" "" "" ""
+ "Autodesk.DWF.ContextMenu" "Autodesk DWF ShellExtension Module" "Autodesk, Inc." "c:\program files (x86)\common files\autodesk shared\dwf common\dwfshellextension.dll"
+ "NeroShellExt Class" "Nero Burning ROM Shell Extension" "Nero AG" "c:\program files (x86)\common files\nero\neroshellext\neroshellext.dll"
+ "WRShellExt" "Webroot SecureAnywhere" "Webroot" "c:\windows\syswow64\wrusr.dll"
"HKLM\Software\Classes\AllFileSystemObjects\ShellEx\ContextMenuHandlers" "" "" ""
+ "MBAMShlExt" "Malwarebytes Anti-Malware" "Malwarebytes Corporation" "c:\program files (x86)\malwarebytes' anti-malware\mbamext.dll"
"HKLM\Software\Classes\Directory\ShellEx\ContextMenuHandlers" "" "" ""
+ "7-Zip" "7-Zip Shell Extension" "Igor Pavlov" "c:\program files\7-zip\7-zip.dll"
+ "NeroShellExt Class" "Nero Burning ROM Shell Extension" "Nero AG" "c:\program files (x86)\common files\nero\neroshellext\x64\neroshellext.dll"
"HKLM\Software\Wow6432Node\Classes\Directory\ShellEx\ContextMenuHandlers" "" "" ""
+ "NeroShellExt Class" "Nero Burning ROM Shell Extension" "Nero AG" "c:\program files (x86)\common files\nero\neroshellext\neroshellext.dll"
"HKLM\Software\Classes\Directory\Shellex\DragDropHandlers" "" "" ""
+ "7-Zip" "7-Zip Shell Extension" "Igor Pavlov" "c:\program files\7-zip\7-zip.dll"
"HKLM\Software\Classes\Directory\Background\ShellEx\ContextMenuHandlers" "" "" ""
+ "NvCplDesktopContext" "NVIDIA Display Shell Extension" "NVIDIA Corporation" "c:\windows\system32\nvshext.dll"
"HKLM\Software\Classes\Folder\Shellex\ColumnHandlers" "" "" ""
+ "AcColumnHandler" "AutoCAD Dwg common shell extension handler" "Autodesk" "c:\program files (x86)\common files\autodesk shared\acshellex\acshellextension.dll"
+ "AdpShellExt Class" "Autodesk Workflow Shell Extension" "Autodesk, Inc." "c:\program files\common files\autodesk shared\shell\adpwshellext.dll"
+ "{C52AF81D-F7A0-4AAB-8E87-F80A60CCD396}" "" "" "File not found: C:\Program Files (x86)\OpenOffice.org 3\Basis\program\shlxthdl\shlxthdl_x64.dll"
"HKLM\Software\Wow6432Node\Classes\Folder\Shellex\ColumnHandlers" "" "" ""
+ "PDF Shell Extension" "PDF Shell Extension" "Adobe Systems, Inc." "c:\program files (x86)\common files\adobe\acrobat\activex\pdfshell.dll"
+ "{C52AF81D-F7A0-4AAB-8E87-F80A60CCD396}" "" "Apache Software Foundation" "c:\program files (x86)\openoffice.org 3\basis\program\shlxthdl\shlxthdl.dll"
"HKCU\Software\Classes\Folder\ShellEx\ContextMenuHandlers" "" "" ""
+ "InventorMenu" "DtBridge" "Autodesk, Inc." "c:\program files\autodesk\inventor 2013\bin\dtbridge.dll"
"HKLM\Software\Classes\Folder\ShellEx\ContextMenuHandlers" "" "" ""
+ "MBAMShlExt" "Malwarebytes Anti-Malware" "Malwarebytes Corporation" "c:\program files (x86)\malwarebytes' anti-malware\mbamext.dll"
+ "WRShellExt" "Webroot SecureAnywhere" "Webroot" "c:\windows\system32\wrusr.dll"
"HKLM\Software\Wow6432Node\Classes\Folder\ShellEx\ContextMenuHandlers" "" "" ""
+ "NBShellHook Class" "Nero BackItUp" "Nero AG" "c:\program files (x86)\nero\nero 12\nero backitup\nbshell.dll"
+ "WRShellExt" "Webroot SecureAnywhere" "Webroot" "c:\windows\syswow64\wrusr.dll"
"HKLM\Software\Wow6432Node\Classes\Folder\ShellEx\DragDropHandlers" "" "" ""
+ "NBShellHook.6.0" "Nero BackItUp" "Nero AG" "c:\program files (x86)\nero\nero 12\nero backitup\nbshell.dll"
"HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers" "" "" ""
+ "AutoCAD Digital Signatures Icon Overlay Handler" "AutoCAD component" "Autodesk, Inc." "c:\windows\system32\acsignicon.dll"
"HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects" "" "" ""
+ "Java™ Plug-In 2 SSV Helper" "Java™ Platform SE binary" "Oracle Corporation" "c:\program files\java\jre7\bin\jp2ssv.dll"
+ "Java™ Plug-In SSV Helper" "Java™ Platform SE binary" "Oracle Corporation" "c:\program files\java\jre7\bin\ssv.dll"
+ "Webroot Vault" "Webroot Toolbar" "" "c:\programdata\wrdata\pkg\lpbar64.dll"
"HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects" "" "" ""
+ "Adobe PDF Link Helper" "Adobe PDF Helper for Internet Explorer" "Adobe Systems Incorporated" "c:\program files (x86)\common files\adobe\acrobat\activex\acroiehelpershim.dll"
+ "Java™ Plug-In 2 SSV Helper" "Java™ Platform SE binary" "Oracle Corporation" "c:\program files (x86)\java\jre7\bin\jp2ssv.dll"
+ "Java™ Plug-In SSV Helper" "Java™ Platform SE binary" "Oracle Corporation" "c:\program files (x86)\java\jre7\bin\ssv.dll"
+ "Webroot Vault" "Webroot Toolbar" "" "c:\programdata\wrdata\pkg\lpbar.dll"
"HKLM\Software\Microsoft\Internet Explorer\Toolbar" "" "" ""
+ "Webroot Toolbar" "Webroot Toolbar" "" "c:\programdata\wrdata\pkg\lpbar64.dll"
"HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Toolbar" "" "" ""
+ "Webroot Toolbar" "Webroot Toolbar" "" "c:\programdata\wrdata\pkg\lpbar.dll"
"HKLM\Software\Microsoft\Internet Explorer\Extensions" "" "" ""
+ "Webroot" "Webroot Toolbar" "" "c:\programdata\wrdata\pkg\lpbar64.dll"
"HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Extensions" "" "" ""
+ "Webroot" "Webroot Toolbar" "" "c:\programdata\wrdata\pkg\lpbar.dll"
"Task Scheduler" "" "" ""
+ "\Adobe Flash Player Updater" "Adobe® Flash® Player Update Service 11.6 r602" "Adobe Systems Incorporated" "c:\windows\syswow64\macromed\flash\flashplayerupdateservice.exe"
+ "\Apple\AppleSoftwareUpdate" "Apple Software Update" "Apple Inc." "c:\program files (x86)\apple software update\softwareupdate.exe"
+ "\ASUS Live Update" "ASUS Live Update" "ASUSTeK Computer Inc." "c:\program files (x86)\asus\asus live update\liveupdate.exe"
+ "\ASUS P4G" "Power4Gear Hybrid" "ASUS" "c:\program files\asus\p4g\batterylife.exe"
+ "\ASUS USB Charger Plus" "ASUS USB Charger Plus" "ASUSTek Computer Inc." "c:\program files (x86)\asus\usbchargerplus\usbchargerplus.exe"
+ "\AsusVibeSchedule" "AsusVibe Application" "" "c:\program files (x86)\asus\asusvibe\asusvibelauncher.exe"
+ "\GoogleUpdateTaskMachineCore" "Google Installer" "Google Inc." "c:\program files (x86)\google\update\googleupdate.exe"
+ "\GoogleUpdateTaskMachineUA" "Google Installer" "Google Inc." "c:\program files (x86)\google\update\googleupdate.exe"
+ "\GoogleUpdateTaskUserS-1-5-21-263515979-292656029-2627556174-1002Core" "Google Installer" "Google Inc." "c:\users\tyler\appdata\local\google\update\googleupdate.exe"
+ "\GoogleUpdateTaskUserS-1-5-21-263515979-292656029-2627556174-1002UA" "Google Installer" "Google Inc." "c:\users\tyler\appdata\local\google\update\googleupdate.exe"
+ "\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d" "Intel Services Manager Launcher" "Intel Corporation" "c:\program files (x86)\intel\intel® me fw recovery agent\bin\bootstrap.exe"
+ "\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d-Logon" "Intel Services Manager Launcher" "Intel Corporation" "c:\program files (x86)\intel\intel® me fw recovery agent\bin\bootstrap.exe"
+ "\Microsoft\Windows\NetTrace\GatherNetworkInfo" "" "" "c:\windows\system32\gathernetworkinfo.vbs"
+ "\Microsoft\Windows\Windows Media Sharing\UpdateLibrary" "Windows Media Player Network Sharing Service Configuration Application" "Microsoft Corporation" "c:\program files\windows media player\wmpnscfg.exe"
+ "\PC Performer" "" "" "File not found: C:\Program Files (x86)\PC Performer\PCPerformer.exe"
+ "\PC Performer_UPDATES" "" "" "File not found: C:\Program Files (x86)\PC Performer\PCPerformer.exe"
+ "\Scheduled Update for Ask Toolbar" "" "" "File not found: C:\Program Files (x86)\Ask.com\UpdateTask.exe"
+ "\Synaptics TouchPad Enhancements" "Synaptics TouchPad Enhancements" "Synaptics Incorporated" "c:\program files\synaptics\syntp\syntpenh.exe"
"HKLM\System\CurrentControlSet\Services" "" "" ""
+ "AdobeFlashPlayerUpdateSvc" "This service keeps your Adobe Flash Player installation up to date with the latest enhancements and security fixes." "Adobe Systems Incorporated" "c:\windows\syswow64\macromed\flash\flashplayerupdateservice.exe"
+ "Apple Mobile Device" "Provides the interface to Apple mobile devices." "Apple Inc." "c:\program files (x86)\common files\apple\mobile device support\applemobiledeviceservice.exe"
+ "ASLDRService" "ASLDR Service" "ASUSTek Computer Inc." "c:\program files (x86)\asus\atk package\atk hotkey\asldrsrv.exe"
+ "ASUS InstantOn" "ASUS InstantOn Program" "ASUS" "c:\program files (x86)\asus\asus instanton\insonsrv.exe"
+ "ATKGFNEXSrv" "GFNEXSrv" "ASUS" "c:\program files (x86)\asus\atk package\atkgfnex\gfnexsrv.exe"
+ "Bonjour Service" "Enables hardware devices and software services to automatically configure themselves on the network and advertise their presence." "Apple Inc." "c:\program files\bonjour\mdnsresponder.exe"
+ "FanChkService" "Fan Filter Checker Service Application" "ASUSTek Computer Inc." "c:\program files (x86)\asus\asus fan filter checker\fanchksrv.exe"
+ "FLEXnet Licensing Service 64" "This service performs licensing functions on behalf of FLEXnet enabled products." "Flexera Software, Inc." "c:\program files\common files\macrovision shared\flexnet publisher\fnplicensingservice64.exe"
+ "gupdate" "Keeps your Google software up to date. If this service is disabled or stopped, your Google software will not be kept up to date, meaning security vulnerabilities that may arise cannot be fixed and features may not work. This service uninstalls itself when there is no Google software using it." "Google Inc." "c:\program files (x86)\google\update\googleupdate.exe"
+ "gupdatem" "Keeps your Google software up to date. If this service is disabled or stopped, your Google software will not be kept up to date, meaning security vulnerabilities that may arise cannot be fixed and features may not work. This service uninstalls itself when there is no Google software using it." "Google Inc." "c:\program files (x86)\google\update\googleupdate.exe"
+ "Hamachi2Svc" "Hamachi Client Tunneling Engine" "LogMeIn Inc." "c:\program files (x86)\logmein hamachi\hamachi-2.exe"
+ "Intel® Capability Licensing Service Interface" "Version: 1.24.388.1" "Intel® Corporation" "c:\program files\intel\icls client\heciserver.exe"
+ "Intel® ME Service" "Intel® Manageability Engine Service (Intel® ME Service)" "Intel Corporation" "c:\program files (x86)\intel\intel® management engine components\fwservice\intelmefwservice.exe"
+ "iPod Service" "iPod hardware management services" "Apple Inc." "c:\program files\ipod\bin\ipodservice.exe"
+ "jhi_service" "Intel® Dynamic Application Loader Host Interface Service - Allows applications to access the local Intel ® DAL" "Intel Corporation" "c:\program files (x86)\intel\intel® management engine components\dal\jhi_service.exe"
+ "LMS" "Allows applications to access the local Intel® Management and Security Application using its locally-available selected network interfaces." "Intel Corporation" "c:\program files (x86)\intel\intel® management engine components\lms\lms.exe"
+ "MBAMScheduler" "Malwarebytes Anti-Malware scheduler" "Malwarebytes Corporation" "c:\program files (x86)\malwarebytes' anti-malware\mbamscheduler.exe"
+ "MBAMService" "Malwarebytes Anti-Malware service" "Malwarebytes Corporation" "c:\program files (x86)\malwarebytes' anti-malware\mbamservice.exe"
+ "mitsijm2013" "amijm.exe" " " "c:\program files\autodesk\inventor 2013\moldflow\bin\mitsijm.exe"
+ "NAUpdate" "Provides access to Nero application updates and manages Nero applications." "Nero AG" "c:\program files (x86)\nero\update\nasvc.exe"
+ "nvsvc" "Provides system and desktop level support to the NVIDIA display driver" "NVIDIA Corporation" "c:\windows\system32\nvvsvc.exe"
+ "nvUpdatusService" "NVIDIA Settings Update Manager service, used to check new updates from NVIDIA server." "NVIDIA Corporation" "c:\program files (x86)\nvidia corporation\nvidia update core\daemonu.exe"
+ "Steam Client Service" "Steam Client Service monitors and updates Steam content" "Valve Corporation" "c:\program files (x86)\common files\steam\steamservice.exe"
+ "Stereo Service" "Provides system support for NVIDIA Stereoscopic 3D driver" "NVIDIA Corporation" "c:\program files (x86)\nvidia corporation\3d vision\nvscpapisvr.exe"
+ "UNS" "Intel® Management and Security Application User Notification Service - Updates the Windows Event Log with notifications of pre defined events received from the local Intel® Management and Security Application Device." "Intel Corporation" "c:\program files (x86)\intel\intel® management engine components\uns\uns.exe"
+ "VIAKaraokeService" "Service binary" "VIA Technologies, Inc." "c:\windows\system32\viakaraokesrv.exe"
+ "WinDefend" "Helps protect users from malware and other potentially unwanted software" "Microsoft Corporation" "c:\program files\windows defender\msmpeng.exe"
+ "WMPNetworkSvc" "Shares Windows Media Player libraries to other networked players and media devices using Universal Plug and Play" "Microsoft Corporation" "c:\program files\windows media player\wmpnetwk.exe"
+ "WRSVC" "Webroot SecureAnywhere Internet Security Plus v8.0.2.118" "Webroot" "c:\program files\webroot\wrsa.exe"
"HKLM\System\CurrentControlSet\Services" "" "" ""
+ "3ware" "LSI 3ware SCSI Storport Driver" "LSI" "c:\windows\system32\drivers\3ware.sys"
+ "64464111" "" "" "File not found: C:\Windows\System32\Drivers\64464111.sys"
+ "adp94xx" "Adaptec Windows SAS/SATA Storport Driver" "Adaptec, Inc." "c:\windows\system32\drivers\adp94xx.sys"
+ "adpahci" "Adaptec Windows SATA Storport Driver" "Adaptec, Inc." "c:\windows\system32\drivers\adpahci.sys"
+ "adpu320" "Adaptec StorPort Ultra320 SCSI Driver (X64)" "Adaptec, Inc." "c:\windows\system32\drivers\adpu320.sys"
+ "AgereSoftModem" "SoftModem Device Driver" "LSI Corp" "c:\windows\system32\drivers\agrsm64.sys"
+ "AiCharger" "ASUS Charger driver" "ASUSTek Computer Inc." "c:\windows\system32\drivers\aicharger.sys"
+ "amdsata" "AHCI 1.2 Device Driver" "Advanced Micro Devices" "c:\windows\system32\drivers\amdsata.sys"
+ "amdsbs" "AMD Technology AHCI Compatible Controller Driver for Windows - AMD64 platform" "AMD Technologies Inc." "c:\windows\system32\drivers\amdsbs.sys"
+ "amdxata" "Storage Filter Driver" "Advanced Micro Devices" "c:\windows\system32\drivers\amdxata.sys"
+ "arc" "Adaptec RAID Storport Driver" "PMC-Sierra, Inc." "c:\windows\system32\drivers\arc.sys"
+ "arcsas" "Adaptec SAS RAID WS03 Driver" "PMC-Sierra, Inc." "c:\windows\system32\drivers\arcsas.sys"
+ "ASMMAP64" "Memory mapping Driver" "ASUS" "c:\program files (x86)\asus\atk package\atkgfnex\asmmap64.sys"
+ "athr" "Qualcomm Atheros Extensible Wireless LAN device driver" "Qualcomm Atheros Communications, Inc." "c:\windows\system32\drivers\athw8x.sys"
+ "ATKWMIACPIIO" "ATK WMIACPI Utility" "ASUS" "c:\program files (x86)\asus\atk package\atk wmiacpi\atkwmiacpi64.sys"
+ "b06bdrv" "Broadcom NetXtreme II GigE VBD" "Broadcom Corporation" "c:\windows\system32\drivers\bxvbda.sys"
+ "e1iexpress" "Intel® Gigabit Adapter NDIS 6.x driver" "Intel Corporation" "c:\windows\system32\drivers\e1i63x64.sys"
+ "ebdrv" "Broadcom NetXtreme II 10 GigE VBD" "Broadcom Corporation" "c:\windows\system32\drivers\evbda.sys"
+ "GEARAspiWDM" "CD DVD Filter" "GEAR Software Inc." "c:\windows\system32\drivers\gearaspiwdm.sys"
+ "hamachi" "Hamachi Virtual Network Interface Driver" "LogMeIn, Inc." "c:\windows\system32\drivers\hamachi.sys"
+ "HIDSwitch" "HID driver for ASUS Wireless Radio Control " "ASUS" "c:\windows\system32\drivers\ashidswitch64.sys"
+ "HpSAMD" "Smart Array SAS/SATA Controller Media Driver" "Hewlett-Packard Company" "c:\windows\system32\drivers\hpsamd.sys"
+ "iaStorA" "Intel Rapid Storage Technology driver - x64" "Intel Corporation" "c:\windows\system32\drivers\iastora.sys"
+ "iaStorV" "Intel Matrix Storage Manager driver - x64" "Intel Corporation" "c:\windows\system32\drivers\iastorv.sys"
+ "igfx" "Intel Graphics Kernel Mode Driver" "Intel Corporation" "c:\windows\system32\drivers\igdkmd64.sys"
+ "iirsp" "Intel/ICP Raid Storport Driver" "Intel Corp./ICP vortex GmbH" "c:\windows\system32\drivers\iirsp.sys"
+ "kbfiltr" "Keyboard Filter Driver" " " "c:\windows\system32\drivers\kbfiltr.sys"
+ "L1C" "Qualcomm Atheros Ar81xx series PCI-E Gigabit Ethernet Controller" "Qualcomm Atheros Co., Ltd." "c:\windows\system32\drivers\l1c63x64.sys"
+ "LSI_SAS" "LSI Fusion-MPT SAS Driver (StorPort)" "LSI Corporation" "c:\windows\system32\drivers\lsi_sas.sys"
+ "LSI_SAS2" "LSI SAS Gen2 Driver (StorPort)" "LSI Corporation" "c:\windows\system32\drivers\lsi_sas2.sys"
+ "LSI_SCSI" "LSI Fusion-MPT SCSI Driver (StorPort)" "LSI Corporation" "c:\windows\system32\drivers\lsi_scsi.sys"
+ "LSI_SSS" "LSI SSS PCIe/Flash Driver (StorPort)" "LSI Corporation" "c:\windows\system32\drivers\lsi_sss.sys"
+ "MBAMProtector" "Malwarebytes Anti-Malware" "Malwarebytes Corporation" "c:\windows\system32\drivers\mbam.sys"
+ "megasas" "MEGASAS RAID Controller Driver for Windows" "LSI Corporation" "c:\windows\system32\drivers\megasas.sys"
+ "MegaSR" "LSI MegaRAID Software RAID Driver" "LSI Corporation, Inc." "c:\windows\system32\drivers\megasr.sys"
+ "MEIx64" "Intel® Management Engine Interface" "Intel Corporation" "c:\windows\system32\drivers\hecix64.sys"
+ "MotioninJoyXFilter" "MotioninJoy DS3 driver" "MotioninJoy" "c:\windows\system32\drivers\mijxfilt.sys"
+ "mvumis" "Marvell Flash Controller Driver" "Marvell Semiconductor, Inc." "c:\windows\system32\drivers\mvumis.sys"
+ "NETwNs64" "Intel® Wireless WiFi Link Driver" "Intel Corporation" "c:\windows\system32\drivers\netwns64.sys"
+ "nfrd960" "IBM ServeRAID Controller Driver" "IBM Corporation" "c:\windows\system32\drivers\nfrd960.sys"
+ "NVHDA" "NVIDIA HDMI Audio Driver" "NVIDIA Corporation" "c:\windows\system32\drivers\nvhda64v.sys"
+ "nvlddmkm" "NVIDIA Windows Kernel Mode Driver, Version 314.07 " "NVIDIA Corporation" "c:\windows\system32\drivers\nvlddmkm.sys"
+ "nvraid" "NVIDIA® nForce™ RAID Driver" "NVIDIA Corporation" "c:\windows\system32\drivers\nvraid.sys"
+ "nvstor" "NVIDIA® nForce™ Sata Performance Driver" "NVIDIA Corporation" "c:\windows\system32\drivers\nvstor.sys"
+ "RTL8168" "Realtek 8101E/8168/8169 NDIS 6.30 64-bit Driver                " "Realtek                                            " "c:\windows\system32\drivers\rt630x64.sys"
+ "secdrv" "Macrovision SECURITY Driver" "Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K." "c:\windows\system32\drivers\secdrv.sys"
+ "SiSRaid2" "SiS RAID Stor Miniport Driver" "Silicon Integrated Systems Corp." "c:\windows\system32\drivers\sisraid2.sys"
+ "SiSRaid4" "SiS AHCI Stor-Miniport Driver" "Silicon Integrated Systems" "c:\windows\system32\drivers\sisraid4.sys"
+ "SmbDrvI" "" "" "File not found: C:\Windows\system32\DRIVERS\Smb_driver_Intel.sys"
+ "stexstor" "Promise SuperTrak EX Series Driver for Windows x64" "Promise Technology, Inc." "c:\windows\system32\drivers\stexstor.sys"
+ "SynTP" "Synaptics Touchpad Driver" "Synaptics Incorporated" "c:\windows\system32\drivers\syntp.sys"
+ "USBAAPL64" "Apple Mobile Device USB Driver" "Apple, Inc." "c:\windows\system32\drivers\usbaapl64.sys"
+ "VIAHdAudAddService" "VIA High Definition Audio Function Driver" "VIA Technologies, Inc." "c:\windows\system32\drivers\viahduaa.sys"
+ "viaide" "VIA Generic PCI IDE Bus Driver" "VIA Technologies, Inc." "c:\windows\system32\drivers\viaide.sys"
+ "vsmraid" "VIA RAID DRIVER FOR AMD-X86-64" "VIA Technologies Inc.,Ltd" "c:\windows\system32\drivers\vsmraid.sys"
+ "VSTXRAID" "VIA StorX RAID Controller Driver" "VIA Corporation" "c:\windows\system32\drivers\vstxraid.sys"
+ "WRkrn" "Webroot SecureAnywhere" "Webroot" "c:\windows\system32\drivers\wrkrn.sys"
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Drivers32" "" "" ""
+ "msacm.l3acm" "MPEG Layer-3 Audio Codec for MSACM" "Fraunhofer Institut Integrierte Schaltungen IIS" "c:\windows\system32\l3codeca.acm"
"HKLM\Software\Wow6432Node\Microsoft\Windows NT\CurrentVersion\Drivers32" "" "" ""
+ "msacm.l3acm" "MPEG Layer-3 Audio Codec for MSACM" "Fraunhofer Institut Integrierte Schaltungen IIS" "c:\windows\syswow64\l3codeca.acm"
+ "vidc.cvid" "Cinepak® Codec" "Radius Inc." "c:\windows\syswow64\iccvid.dll"
"HKLM\Software\Wow6432Node\Classes\CLSID\{083863F1-70DE-11d0-BD40-00A0C911CE86}\Instance" "" "" ""
+ "ASUS Color Convert" "ASUS Color Preview Filter" "ASUSTek" "c:\program files (x86)\asus\splendid\rgbtran.ax"
+ "ASUS Color Preview Filter" "ASUS Color Preview Filter" "ASUSTek" "c:\program files (x86)\asus\splendid\rgbtran.ax"
+ "ASUS SplitVCam Pump" "" "" "c:\program files (x86)\asus\virtualcamera\virtualcamera.ax"
+ "ASUS SplitVCam Relayer" "" "" "c:\program files (x86)\asus\virtualcamera\virtualcamera.ax"
+ "ASUS SplitVCam Renderer" "" "" "c:\program files (x86)\asus\virtualcamera\splitvcamrenderer.ax"
+ "ASUS Virtual Camera" "" "" "c:\program files (x86)\asus\virtualcamera\virtualcamera.ax"
+ "CyberLink Audio Decoder (PDVD10)" "CyberLink Audio Decoder Filter" "CyberLink Corp." "c:\program files (x86)\cyberlink\powerdvd10\audiofilter\claud.ax"
+ "CyberLink Audio Effect (PDVD10)" "CyberLink Audio Effect Filter" "CyberLink Corporation" "c:\program files (x86)\cyberlink\powerdvd10\audiofilter\claudfx.ax"
+ "CyberLink Audio Noise Reduction" "CLAuNR" "CyberLink Corp." "c:\program files (x86)\cyberlink\power2go\p2gaunrwrapper.ax"
+ "CyberLink Audio Resampler" "CLAuRsmpl.ax" "CyberLink Corp." "c:\program files (x86)\cyberlink\power2go\p2gaursmpl.ax"
+ "CyberLink Audio VolumeBooster" "CyberLink Audio Volume Booster Filter" "CyberLink Corp." "c:\program files (x86)\cyberlink\power2go\p2gvb.ax"
+ "CyberLink Audio Wizard" "CyberLink Audio Wizard Filter" "CyberLink Corp." "c:\program files (x86)\cyberlink\powerdvd10\audiofilter\claudwizard.ax"
+ "CyberLink AudioCD Filter" "CyberLink AudioCD Filter" "CyberLink Corp." "c:\program files (x86)\cyberlink\power2go\p2gaudiocd.ax"
+ "CyberLink AudioCD Filter (PDVD10)" "CyberLink AudioCD Filter" "CyberLink Corp." "c:\program files (x86)\cyberlink\powerdvd10\audiofilter\claudiocd.ax"
+ "Cyberlink Demuxer 2.0" "CLDemuxer2" "Cyberlink" "c:\program files (x86)\cyberlink\powerdvd10\navfilter\cldemuxer2.ax"
+ "CyberLink Digest Filter (PDVD10)" "DigestFilter Dynamic Link Library" "" "c:\program files (x86)\cyberlink\powerdvd10\digestfilter.dll"
+ "CyberLink DVD Navigator (PDVD10)" "CyberLink DVD Navigation Filter" "CyberLink Corp." "c:\program files (x86)\cyberlink\powerdvd10\navfilter\clnavx.ax"
+ "Cyberlink File Reader (Async.)" "Cyberlink MPEG File Reader" "CyberLink Corp." "c:\program files (x86)\cyberlink\power2go\p2greader.ax"
+ "CyberLink FLV Splitter(PDVD10)" "CyberLink FLV Splitter" "CyberLink Corp." "c:\program files (x86)\cyberlink\powerdvd10\navfilter\clflvsplitter.ax"
+ "CyberLink HAM Decoder" "CyberLink Video Decoder Filter" "CyberLink Corp." "c:\program files (x86)\cyberlink\powerdvd10\videofilter\clcvd.ax"
+ "CyberLink HD/BD Mixer (PDVD10)" "CLHBMixer" " " "c:\program files (x86)\cyberlink\powerdvd10\audiofilter\clhbmixer.ax"
+ "CyberLink Line21 Decoder (PDVD10)" "CyberLink Line21 Decoder Filter" "CyberLink Corp." "c:\program files (x86)\cyberlink\powerdvd10\videofilter\clline21.ax"
+ "CyberLink Matroska Splitter(PDVD10)" "CyberLink Matroska Splitter" "CyberLink Corp." "c:\program files (x86)\cyberlink\powerdvd10\navfilter\clmkvsplter.ax"
+ "CyberLink MP3/WAV Wrapper" "CyberLink MP3 Wrapper" "CyberLink Corp." "c:\program files (x86)\cyberlink\power2go\p2gmp3wrap.ax"
+ "CyberLink MPEG Splitter" "CyberLink MPEG Splitter" "CyberLink Corp." "c:\program files (x86)\cyberlink\powerdvd10\navfilter\clsplter.ax"
+ "CyberLink MPEG-4 Splitter (PDVD10)" "CyberLink MPEG-4 Splitter" "CyberLink Corp." "c:\program files (x86)\cyberlink\powerdvd10\navfilter\clm4splt.ax"
+ "CyberLink PCM Wrapper" "CyberLink PCM Wrapper" "CyberLink Corp." "c:\program files (x86)\cyberlink\power2go\p2gpcmenc.ax"
+ "CyberLink RealAudio Decoder(PDVD10)" "CyberLink RealMedia Audio Decoder" "CyberLink Corp." "c:\program files (x86)\cyberlink\powerdvd10\audiofilter\clrmaud.ax"
+ "CyberLink RealMedia Splitter(PDVD10)" "CyberLink RealMedia Splitter" "CyberLink Corp." "c:\program files (x86)\cyberlink\powerdvd10\navfilter\clrmsplitter.ax"
+ "CyberLink RealVideo Decoder(PDVD10)" "CyberLink RealMedia Video Decoder" "CyberLink Corp." "c:\program files (x86)\cyberlink\powerdvd10\videofilter\clrmvd.ax"
+ "Cyberlink SubTitle Importor (PDVD10)" "CLSubTitle.ax" "CyberLink Corp." "c:\program files (x86)\cyberlink\powerdvd10\videofilter\clsubtitle.ax"
+ "Cyberlink SubTitle Importor 2.0 (PDVD10)" "CLSubTitle.ax" "CyberLink Corp." "c:\program files (x86)\cyberlink\powerdvd10\videofilter\clsubtitle.ax"
+ "CyberLink TimeStretch Filter (PDVD10)" "CLAuTS.ax" "CyberLink Corp." "c:\program files (x86)\cyberlink\powerdvd10\audiofilter\clauts.ax"
+ "CyberLink Tzan Filter (PDVD10)" "CyberLink Tzan Filter" "CyberLink Corp." "c:\program files (x86)\cyberlink\powerdvd10\videofilter\cltzan.ax"
+ "CyberLink Video Decoder (PDVD10)" "CyberLink Video Decoder Filter" "CyberLink Corp." "c:\program files (x86)\cyberlink\powerdvd10\videofilter\clcvd.ax"
+ "CyberLink Video Regulator" "CLRGL" "Cyberlink" "c:\program files (x86)\cyberlink\power2go\p2grgl.ax"
+ "CyberLink Video/SP Decoder (PDVD10)" "CyberLink Video/SP Filter" "CyberLink Corp." "c:\program files (x86)\cyberlink\powerdvd10\videofilter\clvsd.ax"
+ "Gargle" "Gargle Filter (Sample)" "Microsoft Corporation" "c:\program files (x86)\asus\asus lifeframe3\lifeframeaudio.ax"
+ "LifeFrame Image Effects" "Camera Filter" "ASUS" "c:\program files (x86)\asus\asus lifeframe3\camera_effect.ax"
+ "MotionDetect" "" "" "c:\program files (x86)\asus\asus lifeframe3\motiondetect.ax"
+ "P2G Audio Encoder" "CyberLink Audio Encoder Filter" "Cyberlink Corp." "c:\program files (x86)\cyberlink\power2go\p2gaudenc.ax"
"HKLM\Software\Classes\CLSID\{7ED96837-96F0-4812-B211-F13C24117ED3}\Instance" "" "" ""
+ "{5FDD51E2-A9D0-44CE-8C8D-162BA0C591A0}" "Microsoft Camera Codec Pack" "Microsoft Corporation" "c:\program files\common files\microsoft shared\microsoft camera codec pack\microsoftrawcodec.dll"
"HKLM\Software\Wow6432Node\Classes\CLSID\{7ED96837-96F0-4812-B211-F13C24117ED3}\Instance" "" "" ""
+ "{5FDD51E2-A9D0-44CE-8C8D-162BA0C591A0}" "Microsoft Camera Codec Pack" "Microsoft Corporation" "c:\program files (x86)\common files\microsoft shared\microsoft camera codec pack\microsoftrawcodec.dll"
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows\Appinit_Dlls" "" "" ""
+ "C:\PROGRA~2\NVIDIA~1\3DVISI~1\NVSTIN~1.DLL" "" "" "File not found: C:\PROGRA~2\NVIDIA~1\3DVISI~1\NVSTIN~1.DLL"
"HKLM\System\CurrentControlSet\Control\Session Manager\KnownDlls" "" "" ""
+ "_Wow64" "" "" "File not found: C:\Windows\syswow64\Wow64.dll"
+ "_Wow64cpu" "" "" "File not found: C:\Windows\syswow64\Wow64cpu.dll"
+ "_Wow64win" "" "" "File not found: C:\Windows\syswow64\Wow64win.dll"
"HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries" "" "" ""
+ "mdnsNSP" "Bonjour Namespace Provider" "Apple Inc." "c:\program files (x86)\bonjour\mdnsnsp.dll"
"HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries64" "" "" ""
+ "mdnsNSP" "Bonjour Namespace Provider" "Apple Inc." "c:\program files\bonjour\mdnsnsp.dll"
"HKLM\SYSTEM\CurrentControlSet\Control\Print\Monitors" "" "" ""
+ "HP 8e11 Status Monitor" "Print Status Language Monitor" "Hewlett-Packard Co." "c:\windows\system32\hpinksts8e11lm.dll"
+ "HP Discovery Port Monitor (HP Photosmart Plus B210 series)" "HP Discovery Port Monitor" "Hewlett-Packard Co." "c:\windows\system32\hpdiscopm8e11.dll"


#12 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:05:09 PM

Posted 08 March 2013 - 06:47 AM


Run the services repair tool

http://kb.eset.com/library/ESET/KB%20Team%20Only/Malware/ServicesRepair.exe

Run Farbar service scanner again and post the new log

Current issues?



#13 chickenguy12

chickenguy12
  • Topic Starter

  • Members
  • 48 posts
  • OFFLINE
  •  
  • Local time:06:09 PM

Posted 08 March 2013 - 07:10 AM

FSS Log:

 

 

Farbar Service Scanner Version: 03-03-2013
Ran by Tyler (administrator) on 08-03-2013 at 07:08:36
Running from "C:\Users\Tyler\Downloads"
Windows 8  (X64)
Boot Mode: Normal
****************************************************************
 
Internet Services:
============
 
Connection Status:
==============
Localhost is accessible.
LAN connected.
Google IP is accessible.
Google.com is accessible.
Yahoo IP is accessible.
Yahoo.com is accessible.
 
 
Windows Firewall:
=============
mpsdrv Service is not running. Checking service configuration:
The start type of mpsdrv service is OK.
The ImagePath of mpsdrv service is OK.
Checking LEGACY_mpsdrv: ATTENTION!=====> Unable to open LEGACY_mpsdrv\0000 registry key. The key does not exist.
 
MpsSvc Service is not running. Checking service configuration:
The start type of MpsSvc service is set to Disabled. The default start type is Auto.
The ImagePath of MpsSvc service is OK.
The ServiceDll of MpsSvc service is OK.
 
 
Firewall Disabled Policy: 
==================
 
 
System Restore:
============
 
System Restore Disabled Policy: 
========================
 
 
Action Center:
============
wscsvc Service is not running. Checking service configuration:
The start type of wscsvc service is set to Disabled. The default start type is Auto.
The ImagePath of wscsvc service is OK.
The ServiceDll of wscsvc service is OK.
 
 
Windows Update:
============
wuauserv Service is not running. Checking service configuration:
The start type of wuauserv service is set to Demand. The default start type is Auto.
The ImagePath of wuauserv service is OK.
The ServiceDll of wuauserv service is OK.
 
 
Windows Autoupdate Disabled Policy: 
============================
 
 
Windows Defender:
==============
WinDefend Service is not running. Checking service configuration:
The start type of WinDefend service is set to Demand. The default start type is Auto.
The ImagePath of WinDefend service is OK.
 
 
Windows Defender Disabled Policy: 
==========================
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows Defender]
"DisableAntiSpyware"=DWORD:1
 
 
Other Services:
==============
 
 
File Check:
========
C:\Windows\System32\nsisvc.dll => MD5 is legit
C:\Windows\System32\drivers\nsiproxy.sys => MD5 is legit
C:\Windows\System32\dhcpcore.dll => MD5 is legit
C:\Windows\System32\drivers\afd.sys => MD5 is legit
C:\Windows\System32\drivers\tdx.sys => MD5 is legit
C:\Windows\System32\Drivers\tcpip.sys => MD5 is legit
C:\Windows\System32\dnsrslvr.dll => MD5 is legit
C:\Windows\System32\mpssvc.dll => MD5 is legit
C:\Windows\System32\bfe.dll => MD5 is legit
C:\Windows\System32\drivers\mpsdrv.sys => MD5 is legit
C:\Windows\System32\SDRSVC.dll => MD5 is legit
C:\Windows\System32\vssvc.exe => MD5 is legit
C:\Windows\System32\wscsvc.dll => MD5 is legit
C:\Windows\System32\wbem\WMIsvc.dll => MD5 is legit
C:\Windows\System32\wuaueng.dll => MD5 is legit
C:\Windows\System32\qmgr.dll => MD5 is legit
C:\Windows\System32\es.dll => MD5 is legit
C:\Windows\System32\cryptsvc.dll => MD5 is legit
C:\Program Files\Windows Defender\MpSvc.dll => MD5 is legit
C:\Program Files\Windows Defender\MsMpEng.exe => MD5 is legit
C:\Windows\System32\ipnathlp.dll => MD5 is legit
C:\Windows\System32\iphlpsvc.dll => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
 
 
**** End of log ****
 
 
 
No issues right now! Webroots coming up clean for the first time in days and my computer is back at its regular speed. Thanks a lot! If anything pops back up Ill post again, but for right now everything seems back to normal at the very least.


#14 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:05:09 PM

Posted 08 March 2013 - 07:13 AM

Press Windows+R key and type

 

services.msc and click ok

 

Right click on  windows firewall & security center services and click on properties

 

Change the startup type to automatic and start it.

 

Remove temporary and junk files

Download

TFC

Launch it,it will close all running programs

click on START,it should ask for reboot.If TFC locks up the system,run it in safemode


Create a new restore point

Follow this guide to turn off and turn on your restore points

XP- http://support.microsoft.com/kb/310405

Vista & windows 7- http://windows.microsoft.com/en-US/windows7/Turn-System-Restore-on-or-off

Turn off your system restore-It deletes old infected restore points

Turn on system restore and create a new restore point

Update JAVA and Flash player

Uninstall old version of java from control panel-Add or remove programs.Download the latest version from here

http://java.com/en/

Update your flash player

Antivirus recommendations

Update your antivirus frequently.Two free antivirus that i would suggest are

Microsoft security essentials or Avast.You can select either one of them.

If you have a paid one,make sure to update it frequently.Do not use multiple security softwares.

Informative guides that could prevent you from being infected again

How did I get infected?

http://www.bleepingcomputer.com/forums/topic2520.html

Best Practices for Safe Computing - Prevention of Malware Infection

http://www.bleepingcomputer.com/forums/topic407147.html

Simple and easy ways to keep your computer safe and secure on the Internet

http://www.bleepingcomputer.com/tutorials/keep-your-computer-safe-online/

Safe surfing :)
 



#15 chickenguy12

chickenguy12
  • Topic Starter

  • Members
  • 48 posts
  • OFFLINE
  •  
  • Local time:06:09 PM

Posted 08 March 2013 - 04:55 PM

So today I come home from school to find that my computer, while commected to my wifi, cannot connect to any Internet page on any browser. I try letting them through the firewall and nothing changes. So I decided to restart my computer.

As soon as it boots on it runs slowly as it did when my computer was infected, and Webroot and Malwarebytes turn up nothing. I try opening the start menu to open up Chrome and try again when my computer gets stuck there. I couldn't leave the start screen at all. I restarted my computer again and tried running webroot scans a second time. I also notice my hard drive sounds like its working hard so I open up task manager to check my disk usage. Normally, it goes up while webroot does it's thing, but while infected the disk would remain at 80-100% all the time, and I found that to be the case here. I try and close task manager only for it to stop responding. I go to the windows 8 sidebar to shutdown my computer and let it rest while I type this up on my phone, but another virus symptom displayed itself and my computer would NOT let me shut it down, the sidebar dissapeared and I was unable to bring it back up. Clicking on desktop icons did nothing and my computer wouldn't let me do anything. So I held down the power button and it shut off.

It's never done this before and Webroot AND Malwarebytes tuned up nothing twice. I don't know what to do.




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users