Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Windows 7 SP1, strange behavior after removing some sort of virus


  • Please log in to reply
9 replies to this topic

#1 yourgypsysoul

yourgypsysoul

  • Members
  • 5 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:Ohio
  • Local time:03:54 PM

Posted 08 March 2013 - 10:06 AM

Hello All,

 

A while back, probably about a month ago, my computer got infected. After some work, and frustration I was able to clean it up by running MBAM. I believe it was similar to the Smart Security or Security Defender virus. I thought I lost all files, but turns out they were just set to hidden. I went through both sets of instructions again, MBAM did not find anything.

 

The issue is, programs that were installed when the computer got infected are not able to run. I had Firefox and Chrome installed, neither would run after I got it cleaned up. Internet Explorer would run. I was using Microsoft Security Essentials for AV. After cleaning up, it was not able to connect to download new updates.

 

I downloaded Avast after that, and was able to receive new updates, so I've been using that. I've tried to install Google Chrome and it's still the same behavior. It will not launch.

 

Any advice is appreciated. Thanks in advance.

 

- Rachel



BC AdBot (Login to Remove)

 


m

#2 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:02:54 PM

Posted 08 March 2013 - 10:13 AM

    

  • Please download TDSSKiller from here and save it to your Desktop
  • Doubleclick on TDSSKiller.exe to run the application, then click on Change parameters


    tds2.jpg

  • Check Loaded Modules  and Detect TDLFS file systemDo not check Verify file digital signatures (even though it is checked in the example)
  • If you are asked to reboot because an "Extended Monitoring Driver is required" please click Reboot now


    2012081514h0118.png

  • Click Start Scan and allow the scan process to run

  • If threats are detected select Skip for all of them unless I instruct you otherwise
  • Click Continue


    tds6.jpg

  • Click Reboot computer
  • Please post the contents of  TDSSKiller.[Version]_[Date]_[Time]_log.txt found in your root directory (typically c:\)in your reply


===================================================


aswMBR

--------------------

  • Download aswMBR and save it to your desktop.
  • Please disable your real time protection of any Antivirus, Antispyware or Antimalware programs temporarily. They will interfere and may cause unexpected results.
  • If you need help to disable your protection programs see here and here.
  • Double click the aswMBR.exe file to run it. Please allow when you are asked to download AVAST antivirus engine defs.
  • Wait until the AV update is done, then click on the Scan button to start. The program will launch a scan.


    aswMBR1.png
  • When done, you will see Scan finished successfully. Please click on Save log and save the file to your desktop.


    aswMBR2.png
  • Please post the contents of the log in your next reply.

NOTE:  aswMBR will create MBR.dat file on your desktop. This is a copy of your MBR. Do NOT delete it.


===================================================


ESET Online Scanner

--------------------

I'd like us to scan your machine with ESET OnlineScan  This process may may take several hours, that is normal

  • Hold down Control and click on this link to open ESET OnlineScan in a new window.
  • Click the esetonlinebtn.png  button.
  • For alternate browsers only: (Microsoft Internet Explorer users can skip these steps)

    • Click on esetsmartinstaller_enu.exe to download the ESET Smart Installer. Save it to your desktop.
    • Double click on the icon on your desktop.

    esetsmartinstaller_enu.png

  • Check "YES, I accept the Terms of Use."
  • Click the Start button.
  • Accept any security warnings from your browser.
  • Under scan settings, check "Scan Archives" and "Remove found threats"
  • Click Advanced settings and select the following:

    • Scan potentially unwanted applications
    • Scan for potentially unsafe applications
    • Enable Anti-Stealth technology
  • ESET will then download updates for itself, install itself, and begin scanning your computer. Please be patient as this can take some time.
  • When the scan completes, click List Threats
  • Copy and paste the information in your next reply.   Note:  If no malware was found you will not get a log.
  • Click the Back button.
  • Click the Finish button.


===================================================


Things I would like to see in your next reply. Please be sure to copy and paste the information rather than send an attachment. :thumbsup2:

  • TDSSKiller log
  • aswMBR log
  • ESET results



#3 yourgypsysoul

yourgypsysoul
  • Topic Starter

  • Members
  • 5 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:Ohio
  • Local time:03:54 PM

Posted 10 March 2013 - 06:40 PM

Thanks, here are the results:

 

TDSS log - Part 1:

16:14:31.0863 3124  TDSS rootkit removing tool 2.8.16.0 Feb 11 2013 18:50:42
16:14:32.0191 3124  ============================================================
16:14:32.0191 3124  Current date / time: 2013/03/10 16:14:32.0191
16:14:32.0191 3124  SystemInfo:
16:14:32.0191 3124
16:14:32.0191 3124  OS Version: 6.1.7601 ServicePack: 1.0
16:14:32.0191 3124  Product type: Workstation
16:14:32.0191 3124  ComputerName: WHOMPINGWILLOW
16:14:32.0191 3124  UserName: Rachel
16:14:32.0191 3124  Windows directory: C:\Windows
16:14:32.0191 3124  System windows directory: C:\Windows
16:14:32.0191 3124  Processor architecture: Intel x86
16:14:32.0191 3124  Number of processors: 2
16:14:32.0191 3124  Page size: 0x1000
16:14:32.0191 3124  Boot type: Normal boot
16:14:32.0191 3124  ============================================================
16:14:35.0030 3124  BG loaded
16:14:36.0356 3124  Drive \Device\Harddisk0\DR0 - Size: 0xE8E0DB6000 (931.51 Gb), SectorSize: 0x200, Cylinders: 0x2E935F1, SectorsPerTrack: 0x4, TracksPerCylinder: 0xA, Type 'K0', Flags 0x00000050
16:14:36.0403 3124  ============================================================
16:14:36.0403 3124  \Device\Harddisk0\DR0:
16:14:36.0403 3124  MBR partitions:
16:14:36.0403 3124  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x18E000
16:14:36.0403 3124  \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x18E800, BlocksNum 0x74570DB0
16:14:36.0403 3124  ============================================================
16:14:36.0527 3124  C: <-> \Device\Harddisk0\DR0\Partition2
16:14:36.0652 3124  F: <-> \Device\Harddisk0\DR0\Partition1
16:14:36.0652 3124  ============================================================
16:14:36.0652 3124  Initialize success
16:14:36.0652 3124  ============================================================
16:17:29.0427 0312  ============================================================
16:17:29.0427 0312  Scan started
16:17:29.0427 0312  Mode: Manual; TDLFS;
16:17:29.0427 0312  ============================================================
16:17:30.0487 0312  ================ Scan system memory ========================
16:17:30.0487 0312  System memory - ok
16:17:30.0487 0312  ================ Scan services =============================
16:17:30.0628 0312  [ 1B133875B8AA8AC48969BD3458AFE9F5 ] 1394ohci        C:\Windows\system32\drivers\1394ohci.sys
16:17:30.0628 0312  1394ohci - ok
16:17:30.0659 0312  [ CEA80C80BED809AA0DA6FEBC04733349 ] ACPI            C:\Windows\system32\drivers\ACPI.sys
16:17:30.0659 0312  ACPI - ok
16:17:30.0690 0312  [ 1EFBC664ABFF416D1D07DB115DCB264F ] AcpiPmi         C:\Windows\system32\drivers\acpipmi.sys
16:17:30.0690 0312  AcpiPmi - ok
16:17:30.0768 0312  [ 9942DC4CC265CDA00486504444EF521D ] AdobeFlashPlayerUpdateSvc C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
16:17:30.0768 0312  AdobeFlashPlayerUpdateSvc - ok
16:17:30.0799 0312  [ 21E785EBD7DC90A06391141AAC7892FB ] adp94xx         C:\Windows\system32\DRIVERS\adp94xx.sys
16:17:30.0815 0312  adp94xx - ok
16:17:30.0831 0312  [ 0C676BC278D5B59FF5ABD57BBE9123F2 ] adpahci         C:\Windows\system32\DRIVERS\adpahci.sys
16:17:30.0846 0312  adpahci - ok
16:17:30.0862 0312  [ 7C7B5EE4B7B822EC85321FE23A27DB33 ] adpu320         C:\Windows\system32\DRIVERS\adpu320.sys
16:17:30.0862 0312  adpu320 - ok
16:17:30.0909 0312  [ 8B5EEFEEC1E6D1A72A06C526628AD161 ] AeLookupSvc     C:\Windows\System32\aelupsvc.dll
16:17:30.0909 0312  AeLookupSvc - ok
16:17:30.0940 0312  [ 9EBBBA55060F786F0FCAA3893BFA2806 ] AFD             C:\Windows\system32\drivers\afd.sys
16:17:30.0940 0312  AFD - ok
16:17:30.0987 0312  [ 7E10E3BB9B258AD8A9300F91214D67B9 ] AgereSoftModem  C:\Windows\system32\DRIVERS\AGRSM.sys
16:17:31.0002 0312  AgereSoftModem - ok
16:17:31.0065 0312  [ 507812C3054C21CEF746B6EE3D04DD6E ] agp440          C:\Windows\system32\drivers\agp440.sys
16:17:31.0065 0312  agp440 - ok
16:17:31.0080 0312  [ 8B30250D573A8F6B4BD23195160D8707 ] aic78xx         C:\Windows\system32\DRIVERS\djsvs.sys
16:17:31.0080 0312  aic78xx - ok
16:17:31.0127 0312  [ 18A54E132947CD98FEA9ACCC57F98F13 ] ALG             C:\Windows\System32\alg.exe
16:17:31.0127 0312  ALG - ok
16:17:31.0143 0312  [ 0D40BCF52EA90FC7DF2AEAB6503DEA44 ] aliide          C:\Windows\system32\drivers\aliide.sys
16:17:31.0143 0312  aliide - ok
16:17:31.0158 0312  [ 3C6600A0696E90A463771C7422E23AB5 ] amdagp          C:\Windows\system32\drivers\amdagp.sys
16:17:31.0174 0312  amdagp - ok
16:17:31.0174 0312  [ CD5914170297126B6266860198D1D4F0 ] amdide          C:\Windows\system32\drivers\amdide.sys
16:17:31.0174 0312  amdide - ok
16:17:31.0205 0312  [ 00DDA200D71BAC534BF56A9DB5DFD666 ] AmdK8           C:\Windows\system32\DRIVERS\amdk8.sys
16:17:31.0205 0312  AmdK8 - ok
16:17:31.0221 0312  [ 3CBF30F5370FDA40DD3E87DF38EA53B6 ] AmdPPM          C:\Windows\system32\DRIVERS\amdppm.sys
16:17:31.0221 0312  AmdPPM - ok
16:17:31.0252 0312  [ D320BF87125326F996D4904FE24300FC ] amdsata         C:\Windows\system32\drivers\amdsata.sys
16:17:31.0252 0312  amdsata - ok
16:17:31.0267 0312  [ EA43AF0C423FF267355F74E7A53BDABA ] amdsbs          C:\Windows\system32\DRIVERS\amdsbs.sys
16:17:31.0267 0312  amdsbs - ok
16:17:31.0283 0312  [ 46387FB17B086D16DEA267D5BE23A2F2 ] amdxata         C:\Windows\system32\drivers\amdxata.sys
16:17:31.0283 0312  amdxata - ok
16:17:31.0314 0312  [ AEA177F783E20150ACE5383EE368DA19 ] AppID           C:\Windows\system32\drivers\appid.sys
16:17:31.0314 0312  AppID - ok
16:17:31.0345 0312  [ 62A9C86CB6085E20DB4823E4E97826F5 ] AppIDSvc        C:\Windows\System32\appidsvc.dll
16:17:31.0345 0312  AppIDSvc - ok
16:17:31.0377 0312  [ FB1959012294D6AD43E5304DF65E3C26 ] Appinfo         C:\Windows\System32\appinfo.dll
16:17:31.0377 0312  Appinfo - ok
16:17:31.0455 0312  [ 4FE5C6D40664AE07BE5105874357D2ED ] Apple Mobile Device C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
16:17:31.0455 0312  Apple Mobile Device - ok
16:17:31.0486 0312  [ A45D184DF6A8803DA13A0B329517A64A ] AppMgmt         C:\Windows\System32\appmgmts.dll
16:17:31.0501 0312  AppMgmt - ok
16:17:31.0517 0312  [ 2932004F49677BD84DBC72EDB754FFB3 ] arc             C:\Windows\system32\DRIVERS\arc.sys
16:17:31.0533 0312  arc - ok
16:17:31.0548 0312  [ 5D6F36C46FD283AE1B57BD2E9FEB0BC7 ] arcsas          C:\Windows\system32\DRIVERS\arcsas.sys
16:17:31.0548 0312  arcsas - ok
16:17:31.0564 0312  [ DE6ED95AEF259979B2830450072A627B ] aswFsBlk        C:\Windows\system32\drivers\aswFsBlk.sys
16:17:31.0564 0312  aswFsBlk - ok
16:17:31.0595 0312  [ 62F9DCEC95F91B8E0203E85D344A7E65 ] aswMonFlt       C:\Windows\system32\drivers\aswMonFlt.sys
16:17:31.0595 0312  aswMonFlt - ok
16:17:31.0626 0312  [ 81F638A2DD94ABBF0B43880AB38D8DBD ] aswRdr          C:\Windows\System32\Drivers\aswrdr2.sys
16:17:31.0626 0312  aswRdr - ok
16:17:31.0657 0312  [ B32E9AD44A1DBB3E8095E80F8DF32B03 ] aswSnx          C:\Windows\system32\drivers\aswSnx.sys
16:17:31.0657 0312  aswSnx - ok
16:17:31.0689 0312  [ 67B558895695545FB0568B7541F3BCA7 ] aswSP           C:\Windows\system32\drivers\aswSP.sys
16:17:31.0689 0312  aswSP - ok
16:17:31.0689 0312  [ E3E73B2B73A4DFADFDDF557192C4B08A ] aswTdi          C:\Windows\system32\drivers\aswTdi.sys
16:17:31.0704 0312  aswTdi - ok
16:17:31.0735 0312  [ ADD2ADE1C2B285AB8378D2DAAF991481 ] AsyncMac        C:\Windows\system32\DRIVERS\asyncmac.sys
16:17:31.0735 0312  AsyncMac - ok
16:17:31.0751 0312  [ 338C86357871C167A96AB976519BF59E ] atapi           C:\Windows\system32\drivers\atapi.sys
16:17:31.0751 0312  atapi - ok
16:17:31.0798 0312  [ 31CB2740BFDBAC1E48E2B7EAD38F0D27 ] athr            C:\Windows\system32\DRIVERS\athr.sys
16:17:31.0813 0312  athr - ok
16:17:31.0860 0312  [ B1E2002903F813636C9739531C10C797 ] ATSwpWDF        C:\Windows\system32\DRIVERS\ATSwpWDF.sys
16:17:31.0860 0312  ATSwpWDF - ok
16:17:31.0907 0312  [ CE3B4E731638D2EF62FCB419BE0D39F0 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
16:17:31.0907 0312  AudioEndpointBuilder - ok
16:17:31.0923 0312  [ CE3B4E731638D2EF62FCB419BE0D39F0 ] Audiosrv        C:\Windows\System32\Audiosrv.dll
16:17:31.0923 0312  Audiosrv - ok
16:17:31.0985 0312  [ 8FA553E9AE69808D99C164733A0F9590 ] avast! Antivirus C:\Program Files\AVAST Software\Avast\AvastSvc.exe
16:17:31.0985 0312  avast! Antivirus - ok
16:17:32.0016 0312  [ 6E30D02AAC9CAC84F421622E3A2F6178 ] AxInstSV        C:\Windows\System32\AxInstSV.dll
16:17:32.0016 0312  AxInstSV - ok
16:17:32.0125 0312  [ 1A231ABEC60FD316EC54C66715543CEC ] b06bdrv         C:\Windows\system32\DRIVERS\bxvbdx.sys
16:17:32.0125 0312  b06bdrv - ok
16:17:32.0157 0312  [ BD8869EB9CDE6BBE4508D869929869EE ] b57nd60x        C:\Windows\system32\DRIVERS\b57nd60x.sys
16:17:32.0157 0312  b57nd60x - ok
16:17:32.0188 0312  [ EE1E9C3BB8228AE423DD38DB69128E71 ] BDESVC          C:\Windows\System32\bdesvc.dll
16:17:32.0188 0312  BDESVC - ok
16:17:32.0203 0312  [ 505506526A9D467307B3C393DEDAF858 ] Beep            C:\Windows\system32\drivers\Beep.sys
16:17:32.0203 0312  Beep - ok
16:17:32.0250 0312  [ 1E2BAC209D184BB851E1A187D8A29136 ] BFE             C:\Windows\System32\bfe.dll
16:17:32.0250 0312  BFE - ok
16:17:32.0297 0312  [ 71B1869F96C978771F1616467302AB5A ] BingDesktopUpdate C:\Program Files\Microsoft\BingDesktop\BingDesktopUpdater.exe
16:17:32.0297 0312  BingDesktopUpdate - ok
16:17:32.0328 0312  [ E585445D5021971FAE10393F0F1C3961 ] BITS            C:\Windows\System32\qmgr.dll
16:17:32.0328 0312  BITS - ok
16:17:32.0360 0312  [ 2287078ED48FCFC477B05B20CF38F36F ] blbdrive        C:\Windows\system32\DRIVERS\blbdrive.sys
16:17:32.0360 0312  blbdrive - ok
16:17:32.0407 0312  [ DB5BEA73EDAF19AC68B2C0FAD0F92B1A ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
16:17:32.0407 0312  Bonjour Service - ok
16:17:32.0454 0312  [ 8F2DA3028D5FCBD1A060A3DE64CD6506 ] bowser          C:\Windows\system32\DRIVERS\bowser.sys
16:17:32.0454 0312  bowser - ok
16:17:32.0470 0312  [ 9F9ACC7F7CCDE8A15C282D3F88B43309 ] BrFiltLo        C:\Windows\system32\DRIVERS\BrFiltLo.sys
16:17:32.0470 0312  BrFiltLo - ok
16:17:32.0485 0312  [ 56801AD62213A41F6497F96DEE83755A ] BrFiltUp        C:\Windows\system32\DRIVERS\BrFiltUp.sys
16:17:32.0485 0312  BrFiltUp - ok
16:17:32.0501 0312  [ 3DAA727B5B0A45039B0E1C9A211B8400 ] Browser         C:\Windows\System32\browser.dll
16:17:32.0501 0312  Browser - ok
16:17:32.0516 0312  [ 845B8CE732E67F3B4133164868C666EA ] Brserid         C:\Windows\System32\Drivers\Brserid.sys
16:17:32.0532 0312  Brserid - ok
16:17:32.0548 0312  [ 203F0B1E73ADADBBB7B7B1FABD901F6B ] BrSerWdm        C:\Windows\System32\Drivers\BrSerWdm.sys
16:17:32.0548 0312  BrSerWdm - ok
16:17:32.0563 0312  [ BD456606156BA17E60A04E18016AE54B ] BrUsbMdm        C:\Windows\System32\Drivers\BrUsbMdm.sys
16:17:32.0563 0312  BrUsbMdm - ok
16:17:32.0579 0312  [ AF72ED54503F717A43268B3CC5FAEC2E ] BrUsbSer        C:\Windows\System32\Drivers\BrUsbSer.sys
16:17:32.0579 0312  BrUsbSer - ok
16:17:32.0610 0312  [ 2865A5C8E98C70C605F417908CEBB3A4 ] BthEnum         C:\Windows\system32\drivers\BthEnum.sys
16:17:32.0610 0312  BthEnum - ok
16:17:32.0626 0312  [ ED3DF7C56CE0084EB2034432FC56565A ] BTHMODEM        C:\Windows\system32\DRIVERS\bthmodem.sys
16:17:32.0626 0312  BTHMODEM - ok
16:17:32.0641 0312  [ AD1872E5829E8A2C3B5B4B641C3EAB0E ] BthPan          C:\Windows\system32\DRIVERS\bthpan.sys
16:17:32.0641 0312  BthPan - ok
16:17:32.0688 0312  [ 1153DE2E4F5941E10C399CB5592F78A1 ] BTHPORT         C:\Windows\System32\Drivers\BTHport.sys
16:17:32.0688 0312  BTHPORT - ok
16:17:32.0719 0312  [ 1DF19C96EEF6C29D1C3E1A8678E07190 ] bthserv         C:\Windows\system32\bthserv.dll
16:17:32.0719 0312  bthserv - ok
16:17:32.0735 0312  [ C81E9413A25A439F436B1D4B6A0CF9E9 ] BTHUSB          C:\Windows\System32\Drivers\BTHUSB.sys
16:17:32.0735 0312  BTHUSB - ok
16:17:32.0782 0312  [ 77EA11B065E0A8AB902D78145CA51E10 ] cdfs            C:\Windows\system32\DRIVERS\cdfs.sys
16:17:32.0782 0312  cdfs - ok
16:17:32.0813 0312  [ BE167ED0FDB9C1FA1133953C18D5A6C9 ] cdrom           C:\Windows\system32\DRIVERS\cdrom.sys
16:17:32.0813 0312  cdrom - ok
16:17:32.0844 0312  [ 319C6B309773D063541D01DF8AC6F55F ] CertPropSvc     C:\Windows\System32\certprop.dll
16:17:32.0844 0312  CertPropSvc - ok
16:17:32.0860 0312  [ 3FE3FE94A34DF6FB06E6418D0F6A0060 ] circlass        C:\Windows\system32\DRIVERS\circlass.sys
16:17:32.0875 0312  circlass - ok
16:17:32.0891 0312  [ 635181E0E9BBF16871BF5380D71DB02D ] CLFS            C:\Windows\system32\CLFS.sys
16:17:32.0891 0312  CLFS - ok
16:17:32.0969 0312  [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
16:17:32.0969 0312  clr_optimization_v2.0.50727_32 - ok
16:17:33.0031 0312  [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
16:17:33.0031 0312  clr_optimization_v4.0.30319_32 - ok
16:17:33.0062 0312  [ DEA805815E587DAD1DD2C502220B5616 ] CmBatt          C:\Windows\system32\DRIVERS\CmBatt.sys
16:17:33.0062 0312  CmBatt - ok
16:17:33.0109 0312  [ C537B1DB64D495B9B4717B4D6D9EDBF2 ] cmdide          C:\Windows\system32\drivers\cmdide.sys
16:17:33.0109 0312  cmdide - ok
16:17:33.0156 0312  [ 42F158036BD4C2FF3122BF142E60E6FD ] CNG             C:\Windows\system32\Drivers\cng.sys
16:17:33.0156 0312  CNG - ok
16:17:33.0172 0312  [ A6023D3823C37043986713F118A89BEE ] Compbatt        C:\Windows\system32\DRIVERS\compbatt.sys
16:17:33.0172 0312  Compbatt - ok
16:17:33.0203 0312  [ CBE8C58A8579CFE5FCCF809E6F114E89 ] CompositeBus    C:\Windows\system32\drivers\CompositeBus.sys
16:17:33.0203 0312  CompositeBus - ok
16:17:33.0203 0312  COMSysApp - ok
16:17:33.0218 0312  [ 2C4EBCFC84A9B44F209DFF6C6E6C61D1 ] crcdisk         C:\Windows\system32\DRIVERS\crcdisk.sys
16:17:33.0218 0312  crcdisk - ok
16:17:33.0250 0312  [ 96C0E38905CFD788313BE8E11DAE3F2F ] CryptSvc        C:\Windows\system32\cryptsvc.dll
16:17:33.0250 0312  CryptSvc - ok
16:17:33.0281 0312  [ 3C2177A897B4CA2788C6FB0C3FD81D4B ] CSC             C:\Windows\system32\drivers\csc.sys
16:17:33.0281 0312  CSC - ok
16:17:33.0312 0312  [ 15F93B37F6801943360D9EB42485D5D3 ] CscService      C:\Windows\System32\cscsvc.dll
16:17:33.0328 0312  CscService - ok
16:17:33.0359 0312  [ A38F95E2A1A459E7F59D5713909C9111 ] dc3d            C:\Windows\system32\DRIVERS\dc3d.sys
16:17:33.0374 0312  dc3d - ok
16:17:33.0421 0312  [ 699CE24FE6B5120AF709A0B91582A02D ] DCamUSBET       C:\Windows\system32\DRIVERS\etDevice.sys
16:17:33.0421 0312  DCamUSBET - ok
16:17:33.0452 0312  [ 7660F01D3B38ACA1747E397D21D790AF ] DcomLaunch      C:\Windows\system32\rpcss.dll
16:17:33.0452 0312  DcomLaunch - ok
16:17:33.0484 0312  [ 8D6E10A2D9A5EED59562D9B82CF804E1 ] defragsvc       C:\Windows\System32\defragsvc.dll
16:17:33.0484 0312  defragsvc - ok
16:17:33.0499 0312  [ F024449C97EC1E464AAFFDA18593DB88 ] DfsC            C:\Windows\system32\Drivers\dfsc.sys
16:17:33.0499 0312  DfsC - ok
16:17:33.0546 0312  [ E9E01EB683C132F7FA27CD607B8A2B63 ] Dhcp            C:\Windows\system32\dhcpcore.dll
16:17:33.0546 0312  Dhcp - ok
16:17:33.0562 0312  [ 1A050B0274BFB3890703D490F330C0DA ] discache        C:\Windows\system32\drivers\discache.sys
16:17:33.0562 0312  discache - ok
16:17:33.0593 0312  [ 565003F326F99802E68CA78F2A68E9FF ] Disk            C:\Windows\system32\DRIVERS\disk.sys
16:17:33.0608 0312  Disk - ok
16:17:33.0624 0312  [ 33EF4861F19A0736B11314AAD9AE28D0 ] Dnscache        C:\Windows\System32\dnsrslvr.dll
16:17:33.0640 0312  Dnscache - ok
16:17:33.0671 0312  [ 366BA8FB4B7BB7435E3B9EACB3843F67 ] dot3svc         C:\Windows\System32\dot3svc.dll
16:17:33.0671 0312  dot3svc - ok
16:17:33.0702 0312  [ 8EC04CA86F1D68DA9E11952EB85973D6 ] DPS             C:\Windows\system32\dps.dll
16:17:33.0702 0312  DPS - ok
16:17:33.0733 0312  [ B918E7C5F9BF77202F89E1A9539F2EB4 ] drmkaud         C:\Windows\system32\drivers\drmkaud.sys
16:17:33.0733 0312  drmkaud - ok
16:17:33.0780 0312  [ 23F5D28378A160352BA8F817BD8C71CB ] DXGKrnl         C:\Windows\System32\drivers\dxgkrnl.sys
16:17:33.0780 0312  DXGKrnl - ok
16:17:33.0811 0312  [ 8600142FA91C1B96367D3300AD0F3F3A ] EapHost         C:\Windows\System32\eapsvc.dll
16:17:33.0811 0312  EapHost - ok
16:17:33.0905 0312  [ 024E1B5CAC09731E4D868E64DBFB4AB0 ] ebdrv           C:\Windows\system32\DRIVERS\evbdx.sys
16:17:33.0967 0312  ebdrv - ok
16:17:34.0030 0312  [ 81951F51E318AECC2D68559E47485CC4 ] EFS             C:\Windows\System32\lsass.exe
16:17:34.0030 0312  EFS - ok
16:17:34.0092 0312  [ A8C362018EFC87BEB013EE28F29C0863 ] ehRecvr         C:\Windows\ehome\ehRecvr.exe
16:17:34.0108 0312  ehRecvr - ok
16:17:34.0123 0312  [ D389BFF34F80CAEDE417BF9D1507996A ] ehSched         C:\Windows\ehome\ehsched.exe
16:17:34.0139 0312  ehSched - ok
16:17:34.0170 0312  [ 0ED67910C8C326796FAA00B2BF6D9D3C ] elxstor         C:\Windows\system32\DRIVERS\elxstor.sys
16:17:34.0170 0312  elxstor - ok
16:17:34.0201 0312  [ 8FC3208352DD3912C94367A206AB3F11 ] ErrDev          C:\Windows\system32\drivers\errdev.sys
16:17:34.0201 0312  ErrDev - ok
16:17:34.0232 0312  [ F6916EFC29D9953D5D0DF06882AE8E16 ] EventSystem     C:\Windows\system32\es.dll
16:17:34.0248 0312  EventSystem - ok
16:17:34.0264 0312  [ 2DC9108D74081149CC8B651D3A26207F ] exfat           C:\Windows\system32\drivers\exfat.sys
16:17:34.0279 0312  exfat - ok
16:17:34.0279 0312  [ 7E0AB74553476622FB6AE36F73D97D35 ] fastfat         C:\Windows\system32\drivers\fastfat.sys
16:17:34.0295 0312  fastfat - ok
16:17:34.0326 0312  [ 967EA5B213E9984CBE270205DF37755B ] Fax             C:\Windows\system32\fxssvc.exe
16:17:34.0342 0312  Fax - ok
16:17:34.0357 0312  [ E817A017F82DF2A1F8CFDBDA29388B29 ] fdc             C:\Windows\system32\DRIVERS\fdc.sys
16:17:34.0358 0312  fdc - ok
16:17:34.0374 0312  [ F3222C893BD2F5821A0179E5C71E88FB ] fdPHost         C:\Windows\system32\fdPHost.dll
16:17:34.0374 0312  fdPHost - ok
16:17:34.0389 0312  [ 7DBE8CBFE79EFBDEB98C9FB08D3A9A5B ] FDResPub        C:\Windows\system32\fdrespub.dll
16:17:34.0389 0312  FDResPub - ok
16:17:34.0421 0312  [ 6CF00369C97F3CF563BE99BE983D13D8 ] FileInfo        C:\Windows\system32\drivers\fileinfo.sys
16:17:34.0421 0312  FileInfo - ok
16:17:34.0421 0312  [ 42C51DC94C91DA21CB9196EB64C45DB9 ] Filetrace       C:\Windows\system32\drivers\filetrace.sys
16:17:34.0421 0312  Filetrace - ok
16:17:34.0452 0312  [ E50433DFF5E6BF08693FA49A9205DEE6 ] FiltUSBET       C:\Windows\system32\DRIVERS\etFilter.sys
16:17:34.0452 0312  FiltUSBET - ok
16:17:34.0467 0312  [ 87907AA70CB3C56600F1C2FB8841579B ] flpydisk        C:\Windows\system32\DRIVERS\flpydisk.sys
16:17:34.0467 0312  flpydisk - ok
16:17:34.0499 0312  [ 7520EC808E0C35E0EE6F841294316653 ] FltMgr          C:\Windows\system32\drivers\fltmgr.sys
16:17:34.0499 0312  FltMgr - ok
16:17:34.0530 0312  [ B3A5EC6B6B6673DB7E87C2BCDBDDC074 ] FontCache       C:\Windows\system32\FntCache.dll
16:17:34.0530 0312  FontCache - ok
16:17:34.0577 0312  [ E56F39F6B7FDA0AC77A79B0FD3DE1A2F ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
16:17:34.0592 0312  FontCache3.0.0.0 - ok
16:17:34.0592 0312  [ 1A16B57943853E598CFF37FE2B8CBF1D ] FsDepends       C:\Windows\system32\drivers\FsDepends.sys
16:17:34.0608 0312  FsDepends - ok
16:17:34.0623 0312  [ 7DAE5EBCC80E45D3253F4923DC424D05 ] Fs_Rec          C:\Windows\system32\drivers\Fs_Rec.sys
16:17:34.0623 0312  Fs_Rec - ok
16:17:34.0655 0312  [ 8A73E79089B282100B9393B644CB853B ] fvevol          C:\Windows\system32\DRIVERS\fvevol.sys
16:17:34.0655 0312  fvevol - ok
16:17:34.0686 0312  [ 65EE0C7A58B65E74AE05637418153938 ] gagp30kx        C:\Windows\system32\DRIVERS\gagp30kx.sys
16:17:34.0686 0312  gagp30kx - ok
16:17:34.0733 0312  [ 185ADA973B5020655CEE342059A86CBB ] GEARAspiWDM     C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
16:17:34.0733 0312  GEARAspiWDM - ok
16:17:34.0748 0312  [ E897EAF5ED6BA41E081060C9B447A673 ] gpsvc           C:\Windows\System32\gpsvc.dll
16:17:34.0748 0312  gpsvc - ok
16:17:34.0795 0312  [ 506708142BC63DABA64F2D3AD1DCD5BF ] gupdate         C:\Program Files\Google\Update\GoogleUpdate.exe
16:17:34.0795 0312  gupdate - ok
16:17:34.0795 0312  [ 506708142BC63DABA64F2D3AD1DCD5BF ] gupdatem        C:\Program Files\Google\Update\GoogleUpdate.exe
16:17:34.0795 0312  gupdatem - ok
16:17:34.0811 0312  [ C44E3C2BAB6837DB337DDEE7544736DB ] hcw85cir        C:\Windows\system32\drivers\hcw85cir.sys
16:17:34.0811 0312  hcw85cir - ok
16:17:34.0826 0312  [ A5EF29D5315111C80A5C1ABAD14C8972 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
16:17:34.0826 0312  HdAudAddService - ok
16:17:34.0857 0312  [ 9036377B8A6C15DC2EEC53E489D159B5 ] HDAudBus        C:\Windows\system32\drivers\HDAudBus.sys
16:17:34.0857 0312  HDAudBus - ok
16:17:34.0873 0312  [ 1D58A7F3E11A9731D0EAAAA8405ACC36 ] HidBatt         C:\Windows\system32\DRIVERS\HidBatt.sys
16:17:34.0873 0312  HidBatt - ok
16:17:34.0889 0312  [ 89448F40E6DF260C206A193A4683BA78 ] HidBth          C:\Windows\system32\DRIVERS\hidbth.sys
16:17:34.0889 0312  HidBth - ok
16:17:34.0920 0312  [ CF50B4CF4A4F229B9F3C08351F99CA5E ] HidIr           C:\Windows\system32\DRIVERS\hidir.sys
16:17:34.0920 0312  HidIr - ok
16:17:34.0951 0312  [ 2BC6F6A1992B3A77F5F41432CA6B3B6B ] hidserv         C:\Windows\system32\hidserv.dll
16:17:34.0951 0312  hidserv - ok
16:17:34.0982 0312  [ 10C19F8290891AF023EAEC0832E1EB4D ] HidUsb          C:\Windows\system32\DRIVERS\hidusb.sys
16:17:34.0982 0312  HidUsb - ok
16:17:34.0998 0312  [ 196B4E3F4CCCC24AF836CE58FACBB699 ] hkmsvc          C:\Windows\system32\kmsvc.dll
16:17:35.0013 0312  hkmsvc - ok
16:17:35.0029 0312  [ 6658F4404DE03D75FE3BA09F7ABA6A30 ] HomeGroupListener C:\Windows\system32\ListSvc.dll
16:17:35.0029 0312  HomeGroupListener - ok
16:17:35.0060 0312  [ DBC02D918FFF1CAD628ACBE0C0EAA8E8 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
16:17:35.0060 0312  HomeGroupProvider - ok
16:17:35.0091 0312  [ 295FDC419039090EB8B49FFDBB374549 ] HpSAMD          C:\Windows\system32\drivers\HpSAMD.sys
16:17:35.0091 0312  HpSAMD - ok
16:17:35.0154 0312  [ 871917B07A141BFF43D76D8844D48106 ] HTTP            C:\Windows\system32\drivers\HTTP.sys
16:17:35.0169 0312  HTTP - ok
16:17:35.0169 0312  [ 0C4E035C7F105F1299258C90886C64C5 ] hwpolicy        C:\Windows\system32\drivers\hwpolicy.sys
16:17:35.0169 0312  hwpolicy - ok
16:17:35.0201 0312  [ F151F0BDC47F4A28B1B20A0818EA36D6 ] i8042prt        C:\Windows\system32\drivers\i8042prt.sys
16:17:35.0201 0312  i8042prt - ok
16:17:35.0216 0312  [ 5CD5F9A5444E6CDCB0AC89BD62D8B76E ] iaStorV         C:\Windows\system32\drivers\iaStorV.sys
16:17:35.0232 0312  iaStorV - ok
16:17:35.0263 0312  [ C521D7EB6497BB1AF6AFA89E322FB43C ] idsvc           C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
16:17:35.0279 0312  idsvc - ok
16:17:35.0294 0312  [ 4173FF5708F3236CF25195FECD742915 ] iirsp           C:\Windows\system32\DRIVERS\iirsp.sys
16:17:35.0294 0312  iirsp - ok
16:17:35.0388 0312  IKDOW - ok
16:17:35.0437 0312  [ F95622F161474511B8D80D6B093AA610 ] IKEEXT          C:\Windows\System32\ikeext.dll
16:17:35.0437 0312  IKEEXT - ok
16:17:35.0468 0312  [ A0F12F2C9BA6C72F3987CE780E77C130 ] intelide        C:\Windows\system32\drivers\intelide.sys
16:17:35.0468 0312  intelide - ok
16:17:35.0499 0312  [ 3B514D27BFC4ACCB4037BC6685F766E0 ] intelppm        C:\Windows\system32\DRIVERS\intelppm.sys
16:17:35.0499 0312  intelppm - ok
16:17:35.0531 0312  [ ACB364B9075A45C0736E5C47BE5CAE19 ] IPBusEnum       C:\Windows\system32\ipbusenum.dll
16:17:35.0531 0312  IPBusEnum - ok
16:17:35.0546 0312  [ 709D1761D3B19A932FF0238EA6D50200 ] IpFilterDriver  C:\Windows\system32\DRIVERS\ipfltdrv.sys
16:17:35.0546 0312  IpFilterDriver - ok
16:17:35.0577 0312  [ 58F67245D041FBE7AF88F4EAF79DF0FA ] iphlpsvc        C:\Windows\System32\iphlpsvc.dll
16:17:35.0593 0312  iphlpsvc - ok
16:17:35.0609 0312  [ 4BD7134618C1D2A27466A099062547BF ] IPMIDRV         C:\Windows\system32\drivers\IPMIDrv.sys
16:17:35.0609 0312  IPMIDRV - ok
16:17:35.0640 0312  [ A5FA468D67ABCDAA36264E463A7BB0CD ] IPNAT           C:\Windows\system32\drivers\ipnat.sys
16:17:35.0640 0312  IPNAT - ok
16:17:35.0702 0312  [ E46B17060D3962A384AE484094614788 ] iPod Service    C:\Program Files\iPod\bin\iPodService.exe
16:17:35.0702 0312  iPod Service - ok
16:17:35.0718 0312  [ 42996CFF20A3084A56017B7902307E9F ] IRENUM          C:\Windows\system32\drivers\irenum.sys
16:17:35.0718 0312  IRENUM - ok
16:17:35.0765 0312  [ 1F32BB6B38F62F7DF1A7AB7292638A35 ] isapnp          C:\Windows\system32\drivers\isapnp.sys
16:17:35.0765 0312  isapnp - ok
16:17:35.0796 0312  [ CB7A9ABB12B8415BCE5D74994C7BA3AE ] iScsiPrt        C:\Windows\system32\drivers\msiscsi.sys
16:17:35.0798 0312  iScsiPrt - ok
16:17:35.0830 0312  [ 83A0305939E1D113A8D8BC2B2EA64774 ] itecir          C:\Windows\system32\DRIVERS\itecir.sys
16:17:35.0830 0312  itecir - ok
16:17:35.0861 0312  [ ADEF52CA1AEAE82B50DF86B56413107E ] kbdclass        C:\Windows\system32\drivers\kbdclass.sys
16:17:35.0861 0312  kbdclass - ok
16:17:35.0876 0312  [ 9E3CED91863E6EE98C24794D05E27A71 ] kbdhid          C:\Windows\system32\drivers\kbdhid.sys
16:17:35.0876 0312  kbdhid - ok
16:17:35.0892 0312  [ 81951F51E318AECC2D68559E47485CC4 ] KeyIso          C:\Windows\system32\lsass.exe
16:17:35.0908 0312  KeyIso - ok
16:17:35.0923 0312  [ B7895B4182C0D16F6EFADEB8081E8D36 ] KSecDD          C:\Windows\system32\Drivers\ksecdd.sys
16:17:35.0923 0312  KSecDD - ok
16:17:35.0939 0312  [ 5FE1ABF1AF591A3458C9CF24ED9A4D35 ] KSecPkg         C:\Windows\system32\Drivers\ksecpkg.sys
16:17:35.0939 0312  KSecPkg - ok
16:17:35.0970 0312  [ 89A7B9CC98D0D80C6F31B91C0A310FCD ] KtmRm           C:\Windows\system32\msdtckrm.dll
16:17:36.0001 0312  KtmRm - ok
16:17:36.0032 0312  [ D64AF876D53ECA3668BB97B51B4E70AB ] LanmanServer    C:\Windows\system32\srvsvc.dll
16:17:36.0032 0312  LanmanServer - ok
16:17:36.0079 0312  [ 58405E4F68BA8E4057C6E914F326ABA2 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
16:17:36.0079 0312  LanmanWorkstation - ok
16:17:36.0157 0312  [ F7611EC07349979DA9B0AE1F18CCC7A6 ] lltdio          C:\Windows\system32\DRIVERS\lltdio.sys
16:17:36.0157 0312  lltdio - ok
16:17:36.0188 0312  [ 5700673E13A2117FA3B9020C852C01E2 ] lltdsvc         C:\Windows\System32\lltdsvc.dll
16:17:36.0188 0312  lltdsvc - ok
16:17:36.0204 0312  [ 55CA01BA19D0006C8F2639B6C045E08B ] lmhosts         C:\Windows\System32\lmhsvc.dll
16:17:36.0220 0312  lmhosts - ok
16:17:36.0262 0312  [ EB119A53CCF2ACC000AC71B065B78FEF ] LSI_FC          C:\Windows\system32\DRIVERS\lsi_fc.sys
16:17:36.0265 0312  LSI_FC - ok
16:17:36.0293 0312  [ 8ADE1C877256A22E49B75D1CC9161F9C ] LSI_SAS         C:\Windows\system32\DRIVERS\lsi_sas.sys
16:17:36.0308 0312  LSI_SAS - ok
16:17:36.0339 0312  [ DC9DC3D3DAA0E276FD2EC262E38B11E9 ] LSI_SAS2        C:\Windows\system32\DRIVERS\lsi_sas2.sys
16:17:36.0339 0312  LSI_SAS2 - ok
16:17:36.0355 0312  [ 0A036C7D7CAB643A7F07135AC47E0524 ] LSI_SCSI        C:\Windows\system32\DRIVERS\lsi_scsi.sys
16:17:36.0355 0312  LSI_SCSI - ok
16:17:36.0387 0312  [ 6703E366CC18D3B6E534F5CF7DF39CEE ] luafv           C:\Windows\system32\drivers\luafv.sys
16:17:36.0387 0312  luafv - ok
16:17:36.0403 0312  [ BFB9EE8EE977EFE85D1A3105ABEF6DD1 ] Mcx2Svc         C:\Windows\system32\Mcx2Svc.dll
16:17:36.0403 0312  Mcx2Svc - ok
16:17:36.0434 0312  [ 0FFF5B045293002AB38EB1FD1FC2FB74 ] megasas         C:\Windows\system32\DRIVERS\megasas.sys
16:17:36.0434 0312  megasas - ok
16:17:36.0450 0312  [ DCBAB2920C75F390CAF1D29F675D03D6 ] MegaSR          C:\Windows\system32\DRIVERS\MegaSR.sys
16:17:36.0450 0312  MegaSR - ok
16:17:36.0465 0312  [ 146B6F43A673379A3C670E86D89BE5EA ] MMCSS           C:\Windows\system32\mmcss.dll
16:17:36.0481 0312  MMCSS - ok
16:17:36.0496 0312  [ F001861E5700EE84E2D4E52C712F4964 ] Modem           C:\Windows\system32\drivers\modem.sys
16:17:36.0496 0312  Modem - ok
16:17:36.0512 0312  [ 79D10964DE86B292320E9DFE02282A23 ] monitor         C:\Windows\system32\DRIVERS\monitor.sys
16:17:36.0512 0312  monitor - ok
16:17:36.0543 0312  [ FB18CC1D4C2E716B6B903B0AC0CC0609 ] mouclass        C:\Windows\system32\DRIVERS\mouclass.sys
16:17:36.0543 0312  mouclass - ok
16:17:36.0559 0312  [ 2C388D2CD01C9042596CF3C8F3C7B24D ] mouhid          C:\Windows\system32\DRIVERS\mouhid.sys
16:17:36.0559 0312  mouhid - ok
16:17:36.0590 0312  [ FC8771F45ECCCFD89684E38842539B9B ] mountmgr        C:\Windows\system32\drivers\mountmgr.sys
16:17:36.0590 0312  mountmgr - ok
16:17:36.0621 0312  [ 2D699FB6E89CE0D8DA14ECC03B3EDFE0 ] mpio            C:\Windows\system32\drivers\mpio.sys
16:17:36.0621 0312  mpio - ok
16:17:36.0652 0312  [ AD2723A7B53DD1AACAE6AD8C0BFBF4D0 ] mpsdrv          C:\Windows\system32\drivers\mpsdrv.sys
16:17:36.0652 0312  mpsdrv - ok
16:17:36.0684 0312  [ 9835584E999D25004E1EE8E5F3E3B881 ] MpsSvc          C:\Windows\system32\mpssvc.dll
16:17:36.0699 0312  MpsSvc - ok
16:17:36.0730 0312  [ CEB46AB7C01C9F825F8CC6BABC18166A ] MRxDAV          C:\Windows\system32\drivers\mrxdav.sys
16:17:36.0730 0312  MRxDAV - ok
16:17:36.0762 0312  [ 5D16C921E3671636C0EBA3BBAAC5FD25 ] mrxsmb          C:\Windows\system32\DRIVERS\mrxsmb.sys
16:17:36.0762 0312  mrxsmb - ok
16:17:36.0793 0312  [ 6D17A4791ACA19328C685D256349FEFC ] mrxsmb10        C:\Windows\system32\DRIVERS\mrxsmb10.sys
16:17:36.0793 0312  mrxsmb10 - ok
16:17:36.0808 0312  [ B81F204D146000BE76651A50670A5E9E ] mrxsmb20        C:\Windows\system32\DRIVERS\mrxsmb20.sys
16:17:36.0808 0312  mrxsmb20 - ok
16:17:36.0886 0312  [ 012C5F4E9349E711E11E0F19A8589F0A ] msahci          C:\Windows\system32\drivers\msahci.sys
16:17:36.0886 0312  msahci - ok
16:17:36.0902 0312  [ 55055F8AD8BE27A64C831322A780A228 ] msdsm           C:\Windows\system32\drivers\msdsm.sys
16:17:36.0902 0312  msdsm - ok
16:17:36.0918 0312  [ E1BCE74A3BD9902B72599C0192A07E27 ] MSDTC           C:\Windows\System32\msdtc.exe
16:17:36.0933 0312  MSDTC - ok
16:17:36.0980 0312  [ DAEFB28E3AF5A76ABCC2C3078C07327F ] Msfs            C:\Windows\system32\drivers\Msfs.sys
16:17:36.0980 0312  Msfs - ok
16:17:36.0996 0312  [ 3E1E5767043C5AF9367F0056295E9F84 ] mshidkmdf       C:\Windows\System32\drivers\mshidkmdf.sys
16:17:36.0996 0312  mshidkmdf - ok
16:17:37.0027 0312  [ 0A4E5757AE09FA9622E3158CC1AEF114 ] msisadrv        C:\Windows\system32\drivers\msisadrv.sys
16:17:37.0027 0312  msisadrv - ok
16:17:37.0058 0312  [ 90F7D9E6B6F27E1A707D4A297F077828 ] MSiSCSI         C:\Windows\system32\iscsiexe.dll
16:17:37.0074 0312  MSiSCSI - ok
16:17:37.0074 0312  msiserver - ok
16:17:37.0089 0312  [ 8C0860D6366AAFFB6C5BB9DF9448E631 ] MSKSSRV         C:\Windows\system32\drivers\MSKSSRV.sys
16:17:37.0089 0312  MSKSSRV - ok
16:17:37.0120 0312  [ 3EA8B949F963562CEDBB549EAC0C11CE ] MSPCLOCK        C:\Windows\system32\drivers\MSPCLOCK.sys
16:17:37.0120 0312  MSPCLOCK - ok
16:17:37.0152 0312  [ F456E973590D663B1073E9C463B40932 ] MSPQM           C:\Windows\system32\drivers\MSPQM.sys
16:17:37.0152 0312  MSPQM - ok
16:17:37.0183 0312  [ 0E008FC4819D238C51D7C93E7B41E560 ] MsRPC           C:\Windows\system32\drivers\MsRPC.sys
16:17:37.0183 0312  MsRPC - ok
16:17:37.0230 0312  [ FC6B9FF600CC585EA38B12589BD4E246 ] mssmbios        C:\Windows\system32\drivers\mssmbios.sys
16:17:37.0230 0312  mssmbios - ok
16:17:37.0276 0312  [ B42C6B921F61A6E55159B8BE6CD54A36 ] MSTEE           C:\Windows\system32\drivers\MSTEE.sys
16:17:37.0276 0312  MSTEE - ok
16:17:37.0354 0312  [ 33599130F44E1F34631CEA241DE8AC84 ] MTConfig        C:\Windows\system32\DRIVERS\MTConfig.sys
16:17:37.0354 0312  MTConfig - ok
16:17:37.0418 0312  [ 97AFFA9D95FFE20EEE6229BC6BE166CF ] MTsensor        C:\Windows\system32\DRIVERS\ATKACPI.sys
16:17:37.0418 0312  MTsensor - ok
16:17:37.0433 0312  [ 159FAD02F64E6381758C990F753BCC80 ] Mup             C:\Windows\system32\Drivers\mup.sys
16:17:37.0433 0312  Mup - ok
16:17:37.0496 0312  [ 61D57A5D7C6D9AFE10E77DAE6E1B445E ] napagent        C:\Windows\system32\qagentRT.dll
16:17:37.0511 0312  napagent - ok
16:17:37.0527 0312  [ 26384429FCD85D83746F63E798AB1480 ] NativeWifiP     C:\Windows\system32\DRIVERS\nwifi.sys
16:17:37.0527 0312  NativeWifiP - ok
16:17:37.0605 0312  [ 8C9C922D71F1CD4DEF73F186416B7896 ] NDIS            C:\Windows\system32\drivers\ndis.sys
16:17:37.0605 0312  NDIS - ok
16:17:37.0636 0312  [ 0E1787AA6C9191D3D319E8BAFE86F80C ] NdisCap         C:\Windows\system32\DRIVERS\ndiscap.sys
16:17:37.0636 0312  NdisCap - ok
16:17:37.0667 0312  [ E4A8AEC125A2E43A9E32AFEEA7C9C888 ] NdisTapi        C:\Windows\system32\DRIVERS\ndistapi.sys
16:17:37.0670 0312  NdisTapi - ok
16:17:37.0705 0312  [ D8A65DAFB3EB41CBB622745676FCD072 ] Ndisuio         C:\Windows\system32\DRIVERS\ndisuio.sys
16:17:37.0705 0312  Ndisuio - ok
16:17:37.0732 0312  [ 38FBE267E7E6983311179230FACB1017 ] NdisWan         C:\Windows\system32\DRIVERS\ndiswan.sys
16:17:37.0735 0312  NdisWan - ok
16:17:37.0766 0312  [ A4BDC541E69674FBFF1A8FF00BE913F2 ] NDProxy         C:\Windows\system32\drivers\NDProxy.sys
16:17:37.0766 0312  NDProxy - ok
16:17:37.0829 0312  [ 80B275B1CE3B0E79909DB7B39AF74D51 ] NetBIOS         C:\Windows\system32\DRIVERS\netbios.sys
16:17:37.0829 0312  NetBIOS - ok
16:17:37.0860 0312  [ 280122DDCF04B378EDD1AD54D71C1E54 ] NetBT           C:\Windows\system32\DRIVERS\netbt.sys
16:17:37.0860 0312  NetBT - ok
16:17:37.0891 0312  [ 81951F51E318AECC2D68559E47485CC4 ] Netlogon        C:\Windows\system32\lsass.exe
16:17:37.0891 0312  Netlogon - ok
16:17:37.0922 0312  [ 7CCCFCA7510684768DA22092D1FA4DB2 ] Netman          C:\Windows\System32\netman.dll
16:17:37.0922 0312  Netman - ok
16:17:37.0938 0312  [ 8C338238C16777A802D6A9211EB2BA50 ] netprofm        C:\Windows\System32\netprofm.dll
16:17:37.0953 0312  netprofm - ok
16:17:37.0969 0312  [ F476EC40033CDB91EFBE73EB99B8362D ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
16:17:37.0969 0312  NetTcpPortSharing - ok
16:17:38.0000 0312  [ 1D85C4B390B0EE09C7A46B91EFB2C097 ] nfrd960         C:\Windows\system32\DRIVERS\nfrd960.sys
16:17:38.0000 0312  nfrd960 - ok
16:17:38.0016 0312  [ 374071043F9E4231EE43BE2BB48DD36D ] NlaSvc          C:\Windows\System32\nlasvc.dll
16:17:38.0031 0312  NlaSvc - ok
16:17:38.0047 0312  [ 1DB262A9F8C087E8153D89BEF3D2235F ] Npfs            C:\Windows\system32\drivers\Npfs.sys
16:17:38.0047 0312  Npfs - ok
16:17:38.0063 0312  [ BA387E955E890C8A88306D9B8D06BF17 ] nsi             C:\Windows\system32\nsisvc.dll
16:17:38.0063 0312  nsi - ok
16:17:38.0078 0312  [ E9A0A4D07E53D8FEA2BB8387A3293C58 ] nsiproxy        C:\Windows\system32\drivers\nsiproxy.sys
16:17:38.0078 0312  nsiproxy - ok
16:17:38.0125 0312  [ 0D87503986BB3DFED58E343FE39DDE13 ] Ntfs            C:\Windows\system32\drivers\Ntfs.sys
16:17:38.0141 0312  Ntfs - ok
16:17:38.0156 0312  [ F9756A98D69098DCA8945D62858A812C ] Null            C:\Windows\system32\drivers\Null.sys
16:17:38.0156 0312  Null - ok
16:17:38.0343 0312  [ 5CE5B23855262ACABAECCE156F48DD88 ] nvlddmkm        C:\Windows\system32\DRIVERS\nvlddmkm.sys
16:17:38.0406 0312  nvlddmkm - ok
16:17:38.0437 0312  [ B3E25EE28883877076E0E1FF877D02E0 ] nvraid          C:\Windows\system32\drivers\nvraid.sys
16:17:38.0437 0312  nvraid - ok
16:17:38.0453 0312  [ 4380E59A170D88C4F1022EFF6719A8A4 ] nvstor          C:\Windows\system32\drivers\nvstor.sys
16:17:38.0453 0312  nvstor - ok
16:17:38.0468 0312  [ 6DF4CC671CD9704840C5522627F3ED43 ] nvsvc           C:\Windows\system32\nvvsvc.exe
16:17:38.0484 0312  nvsvc - ok
16:17:38.0499 0312  [ 5A0983915F02BAE73267CC2A041F717D ] nv_agp          C:\Windows\system32\drivers\nv_agp.sys
16:17:38.0499 0312  nv_agp - ok
16:17:38.0531 0312  [ 08A70A1F2CDDE9BB49B885CB817A66EB ] ohci1394        C:\Windows\system32\drivers\ohci1394.sys
16:17:38.0531 0312  ohci1394 - ok
16:17:38.0593 0312  [ 9D10F99A6712E28F8ACD5641E3A7EA6B ] ose             C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
16:17:38.0609 0312  ose - ok
16:17:38.0751 0312  [ 358A9CCA612C68EB2F07DDAD4CE1D8D7 ] osppsvc         C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
16:17:38.0814 0312  osppsvc - ok
16:17:38.0845 0312  [ 82A8521DDC60710C3D3D3E7325209BEC ] p2pimsvc        C:\Windows\system32\pnrpsvc.dll
16:17:38.0845 0312  p2pimsvc - ok
16:17:38.0861 0312  [ 59C3DDD501E39E006DAC31BF55150D91 ] p2psvc          C:\Windows\system32\p2psvc.dll
16:17:38.0876 0312  p2psvc - ok
16:17:38.0876 0312  [ 2EA877ED5DD9713C5AC74E8EA7348D14 ] Parport         C:\Windows\system32\DRIVERS\parport.sys
16:17:38.0876 0312  Parport - ok
16:17:38.0907 0312  [ 3F34A1B4C5F6475F320C275E63AFCE9B ] partmgr         C:\Windows\system32\drivers\partmgr.sys
16:17:38.0907 0312  partmgr - ok
16:17:38.0923 0312  [ EB0A59F29C19B86479D36B35983DAADC ] Parvdm          C:\Windows\system32\DRIVERS\parvdm.sys
16:17:38.0923 0312  Parvdm - ok
16:17:38.0985 0312  [ 2F6E885C432927A186C2E352C8A1CBF4 ] pbfilter        C:\Program Files\PeerBlock\pbfilter.sys
16:17:38.0985 0312  pbfilter - ok
16:17:39.0001 0312  [ 358AB7956D3160000726574083DFC8A6 ] PcaSvc          C:\Windows\System32\pcasvc.dll
16:17:39.0017 0312  PcaSvc - ok
16:17:39.0032 0312  [ 673E55C3498EB970088E812EA820AA8F ] pci             C:\Windows\system32\drivers\pci.sys
16:17:39.0032 0312  pci - ok
16:17:39.0063 0312  [ AFE86F419014DB4E5593F69FFE26CE0A ] pciide          C:\Windows\system32\drivers\pciide.sys
16:17:39.0063 0312  pciide - ok
16:17:39.0095 0312  [ F396431B31693E71E8A80687EF523506 ] pcmcia          C:\Windows\system32\DRIVERS\pcmcia.sys
16:17:39.0095 0312  pcmcia - ok
16:17:39.0126 0312  [ 250F6B43D2B613172035C6747AEEB19F ] pcw             C:\Windows\system32\drivers\pcw.sys
16:17:39.0126 0312  pcw - ok
16:17:39.0173 0312  [ 9E0104BA49F4E6973749A02BF41344ED ] PEAUTH          C:\Windows\system32\drivers\peauth.sys
16:17:39.0173 0312  PEAUTH - ok
16:17:39.0219 0312  [ AF4D64D2A57B9772CF3801950B8058A6 ] PeerDistSvc     C:\Windows\system32\peerdistsvc.dll
16:17:39.0235 0312  PeerDistSvc - ok
16:17:39.0282 0312  [ 414BBA67A3DED1D28437EB66AEB8A720 ] pla             C:\Windows\system32\pla.dll
16:17:39.0329 0312  pla - ok
16:17:39.0360 0312  [ EC7BC28D207DA09E79B3E9FAF8B232CA ] PlugPlay        C:\Windows\system32\umpnpmgr.dll
16:17:39.0360 0312  PlugPlay - ok
16:17:39.0391 0312  [ 63FF8572611249931EB16BB8EED6AFC8 ] PNRPAutoReg     C:\Windows\system32\pnrpauto.dll
16:17:39.0391 0312  PNRPAutoReg - ok
16:17:39.0407 0312  [ 82A8521DDC60710C3D3D3E7325209BEC ] PNRPsvc         C:\Windows\system32\pnrpsvc.dll
16:17:39.0407 0312  PNRPsvc - ok
16:17:39.0439 0312  [ 53946B69BA0836BD95B03759530C81EC ] PolicyAgent     C:\Windows\System32\ipsecsvc.dll
16:17:39.0454 0312  PolicyAgent - ok
16:17:39.0517 0312  [ F87D30E72E03D579A5199CCB3831D6EA ] Power           C:\Windows\system32\umpo.dll
16:17:39.0533 0312  Power - ok
16:17:39.0564 0312  [ 631E3E205AD6D86F2AED6A4A8E69F2DB ] PptpMiniport    C:\Windows\system32\DRIVERS\raspptp.sys
16:17:39.0564 0312  PptpMiniport - ok
16:17:39.0579 0312  [ 85B1E3A0C7585BC4AAE6899EC6FCF011 ] Processor       C:\Windows\system32\DRIVERS\processr.sys
16:17:39.0579 0312  Processor - ok
16:17:39.0626 0312  [ CADEFAC453040E370A1BDFF3973BE00D ] ProfSvc         C:\Windows\system32\profsvc.dll
16:17:39.0626 0312  ProfSvc - ok
16:17:39.0642 0312  [ 81951F51E318AECC2D68559E47485CC4 ] ProtectedStorage C:\Windows\system32\lsass.exe
16:17:39.0642 0312  ProtectedStorage - ok
16:17:39.0673 0312  [ 6270CCAE2A86DE6D146529FE55B3246A ] Psched          C:\Windows\system32\DRIVERS\pacer.sys
16:17:39.0689 0312  Psched - ok
16:17:39.0720 0312  [ AB95ECF1F6659A60DDC166D8315B0751 ] ql2300          C:\Windows\system32\DRIVERS\ql2300.sys
16:17:39.0767 0312  ql2300 - ok
16:17:39.0782 0312  [ B4DD51DD25182244B86737DC51AF2270 ] ql40xx          C:\Windows\system32\DRIVERS\ql40xx.sys
16:17:39.0782 0312  ql40xx - ok
16:17:39.0813 0312  [ 31AC809E7707EB580B2BDB760390765A ] QWAVE           C:\Windows\system32\qwave.dll
16:17:39.0891 0312  QWAVE - ok
16:17:39.0985 0312  [ 584078CA1B95CA72DF2A27C336F9719D ] QWAVEdrv        C:\Windows\system32\drivers\qwavedrv.sys
16:17:39.0985 0312  QWAVEdrv - ok
16:17:40.0001 0312  [ 30A81B53C766D0133BB86D234E5556AB ] RasAcd          C:\Windows\system32\DRIVERS\rasacd.sys
16:17:40.0001 0312  RasAcd - ok
16:17:40.0047 0312  [ 57EC4AEF73660166074D8F7F31C0D4FD ] RasAgileVpn     C:\Windows\system32\DRIVERS\AgileVpn.sys
16:17:40.0047 0312  RasAgileVpn - ok
16:17:40.0068 0312  [ A60F1839849C0C00739787FD5EC03F13 ] RasAuto         C:\Windows\System32\rasauto.dll
16:17:40.0084 0312  RasAuto - ok
16:17:40.0115 0312  [ D9F91EAFEC2815365CBE6D167E4E332A ] Rasl2tp         C:\Windows\system32\DRIVERS\rasl2tp.sys
16:17:40.0115 0312  Rasl2tp - ok
16:17:40.0130 0312  [ CB9E04DC05EACF5B9A36CA276D475006 ] RasMan          C:\Windows\System32\rasmans.dll
16:17:40.0146 0312  RasMan - ok
16:17:40.0193 0312  [ 0FE8B15916307A6AC12BFB6A63E45507 ] RasPppoe        C:\Windows\system32\DRIVERS\raspppoe.sys
16:17:40.0193 0312  RasPppoe - ok
16:17:40.0208 0312  [ 44101F495A83EA6401D886E7FD70096B ] RasSstp         C:\Windows\system32\DRIVERS\rassstp.sys
16:17:40.0208 0312  RasSstp - ok
16:17:40.0224 0312  [ D528BC58A489409BA40334EBF96A311B ] rdbss           C:\Windows\system32\DRIVERS\rdbss.sys
16:17:40.0224 0312  rdbss - ok
16:17:40.0240 0312  [ 0D8F05481CB76E70E1DA06EE9F0DA9DF ] rdpbus          C:\Windows\system32\DRIVERS\rdpbus.sys
16:17:40.0240 0312  rdpbus - ok
16:17:40.0271 0312  [ 23DAE03F29D253AE74C44F99E515F9A1 ] RDPCDD          C:\Windows\system32\DRIVERS\RDPCDD.sys
16:17:40.0271 0312  RDPCDD - ok
16:17:40.0302 0312  [ B973FCFC50DC1434E1970A146F7E3885 ] RDPDR           C:\Windows\system32\drivers\rdpdr.sys
16:17:40.0302 0312  RDPDR - ok
16:17:40.0333 0312  [ 5A53CA1598DD4156D44196D200C94B8A ] RDPENCDD        C:\Windows\system32\drivers\rdpencdd.sys
16:17:40.0333 0312  RDPENCDD - ok
16:17:40.0349 0312  [ 44B0A53CD4F27D50ED461DAE0C0B4E1F ] RDPREFMP        C:\Windows\system32\drivers\rdprefmp.sys
16:17:40.0349 0312  RDPREFMP - ok
16:17:40.0411 0312  [ 65375DF758CA1872AB7EBBBA457FD5E6 ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys
16:17:40.0411 0312  RdpVideoMiniport - ok
16:17:40.0442 0312  [ F031683E6D1FEA157ABB2FF260B51E61 ] RDPWD           C:\Windows\system32\drivers\RDPWD.sys
16:17:40.0458 0312  RDPWD - ok
16:17:40.0489 0312  [ 518395321DC96FE2C9F0E96AC743B656 ] rdyboost        C:\Windows\system32\drivers\rdyboost.sys
16:17:40.0489 0312  rdyboost - ok
16:17:40.0520 0312  [ 7B5E1419717FAC363A31CC302895217A ] RemoteAccess    C:\Windows\System32\mprdim.dll
16:17:40.0520 0312  RemoteAccess - ok
16:17:40.0536 0312  [ CB9A8683F4EF2BF99E123D79950D7935 ] RemoteRegistry  C:\Windows\system32\regsvc.dll
16:17:40.0536 0312  RemoteRegistry - ok
16:17:40.0567 0312  [ CB928D9E6DAF51879DD6BA8D02F01321 ] RFCOMM          C:\Windows\system32\DRIVERS\rfcomm.sys
16:17:40.0567 0312  RFCOMM - ok
16:17:40.0598 0312  [ DF672613FBBCD58C38BB0BC2694BCFB0 ] rimmptsk        C:\Windows\system32\DRIVERS\rimmptsk.sys
16:17:40.0598 0312  rimmptsk - ok
16:17:40.0614 0312  [ 9BFB54D3559F2FF7301271D29D383564 ] rimsptsk        C:\Windows\system32\DRIVERS\rimsptsk.sys
16:17:40.0614 0312  rimsptsk - ok
16:17:40.0630 0312  [ DCB87DA83CC1010CBC9FC4DC9E395BBC ] rismxdp         C:\Windows\system32\DRIVERS\rixdptsk.sys
16:17:40.0630 0312  rismxdp - ok
16:17:40.0661 0312  [ 78D072F35BC45D9E4E1B61895C152234 ] RpcEptMapper    C:\Windows\System32\RpcEpMap.dll
16:17:40.0661 0312  RpcEptMapper - ok
16:17:40.0692 0312  [ 94D36C0E44677DD26981D2BFEEF2A29D ] RpcLocator      C:\Windows\system32\locator.exe
16:17:40.0692 0312  RpcLocator - ok
16:17:40.0708 0312  [ 7660F01D3B38ACA1747E397D21D790AF ] RpcSs           C:\Windows\system32\rpcss.dll
16:17:40.0723 0312  RpcSs - ok
16:17:40.0739 0312  [ 032B0D36AD92B582D869879F5AF5B928 ] rspndr          C:\Windows\system32\DRIVERS\rspndr.sys
16:17:40.0739 0312  rspndr - ok
16:17:40.0770 0312  [ 5283B9A27FF230F2FF70D92451FF409A ] RTL8167         C:\Windows\system32\DRIVERS\Rt86win7.sys
16:17:40.0770 0312  RTL8167 - ok
16:17:40.0786 0312  [ 7FA7F2E249A5DCBB7970630E15E1F482 ] s3cap           C:\Windows\system32\drivers\vms3cap.sys
16:17:40.0786 0312  s3cap - ok
16:17:40.0801 0312  [ 81951F51E318AECC2D68559E47485CC4 ] SamSs           C:\Windows\system32\lsass.exe
16:17:40.0801 0312  SamSs - ok
16:17:40.0832 0312  [ 05D860DA1040F111503AC416CCEF2BCA ] sbp2port        C:\Windows\system32\drivers\sbp2port.sys
16:17:40.0848 0312  sbp2port - ok
16:17:40.0864 0312  [ D4B6A94C007AF4E398E1B78A90F254EA ] ScanUSBET       C:\Windows\system32\DRIVERS\etScan.sys
16:17:40.0864 0312  ScanUSBET - ok
16:17:40.0879 0312  [ 8FC518FFE9519C2631D37515A68009C4 ] SCardSvr        C:\Windows\System32\SCardSvr.dll
16:17:40.0895 0312  SCardSvr - ok
16:17:40.0910 0312  [ 0693B5EC673E34DC147E195779A4DCF6 ] scfilter        C:\Windows\system32\DRIVERS\scfilter.sys
16:17:40.0910 0312  scfilter - ok
16:17:40.0926 0312  [ A04BB13F8A72F8B6E8B4071723E4E336 ] Schedule        C:\Windows\system32\schedsvc.dll
16:17:40.0942 0312  Schedule - ok
16:17:40.0957 0312  [ 319C6B309773D063541D01DF8AC6F55F ] SCPolicySvc     C:\Windows\System32\certprop.dll
16:17:40.0957 0312  SCPolicySvc - ok
16:17:41.0004 0312  [ 0328BE1C7F1CBA23848179F8762E391C ] sdbus           C:\Windows\system32\drivers\sdbus.sys
16:17:41.0004 0312  sdbus - ok
16:17:41.0035 0312  [ 08236C4BCE5EDD0A0318A438AF28E0F7 ] SDRSVC          C:\Windows\System32\SDRSVC.dll
16:17:41.0051 0312  SDRSVC - ok
16:17:41.0098 0312  [ 90A3935D05B494A5A39D37E71F09A677 ] secdrv          C:\Windows\system32\drivers\secdrv.sys
16:17:41.0098 0312  secdrv - ok
16:17:41.0113 0312  [ A59B3A4442C52060CC7A85293AA3546F ] seclogon        C:\Windows\system32\seclogon.dll
16:17:41.0113 0312  seclogon - ok
16:17:41.0129 0312  [ DCB7FCDCC97F87360F75D77425B81737 ] SENS            C:\Windows\System32\sens.dll
16:17:41.0144 0312  SENS - ok
16:17:41.0176 0312  [ 50087FE1EE447009C9CC2997B90DE53F ] SensrSvc        C:\Windows\system32\sensrsvc.dll
16:17:41.0191 0312  SensrSvc - ok
16:17:41.0207 0312  [ 9AD8B8B515E3DF6ACD4212EF465DE2D1 ] Serenum         C:\Windows\system32\DRIVERS\serenum.sys
16:17:41.0207 0312  Serenum - ok
16:17:41.0238 0312  [ 5FB7FCEA0490D821F26F39CC5EA3D1E2 ] Serial          C:\Windows\system32\DRIVERS\serial.sys
16:17:41.0238 0312  Serial - ok
16:17:41.0254 0312  [ 79BFFB520327FF916A582DFEA17AA813 ] sermouse        C:\Windows\system32\DRIVERS\sermouse.sys
16:17:41.0254 0312  sermouse - ok
16:17:41.0300 0312  [ 4AE380F39A0032EAB7DD953030B26D28 ] SessionEnv      C:\Windows\system32\sessenv.dll
16:17:41.0316 0312  SessionEnv - ok
16:17:41.0347 0312  [ 9F976E1EB233DF46FCE808D9DEA3EB9C ] sffdisk         C:\Windows\system32\DRIVERS\sffdisk.sys
16:17:41.0347 0312  sffdisk - ok
16:17:41.0363 0312  [ 932A68EE27833CFD57C1639D375F2731 ] sffp_mmc        C:\Windows\system32\drivers\sffp_mmc.sys
16:17:41.0363 0312  sffp_mmc - ok
16:17:41.0363 0312  [ 6D4CCAEDC018F1CF52866BBBAA235982 ] sffp_sd         C:\Windows\system32\DRIVERS\sffp_sd.sys
16:17:41.0378 0312  sffp_sd - ok
16:17:41.0394 0312  [ DB96666CC8312EBC45032F30B007A547 ] sfloppy         C:\Windows\system32\DRIVERS\sfloppy.sys
16:17:41.0394 0312  sfloppy - ok
16:17:41.0410 0312  [ D1A079A0DE2EA524513B6930C24527A2 ] SharedAccess    C:\Windows\System32\ipnathlp.dll
16:17:41.0425 0312  SharedAccess - ok
16:17:41.0472 0312  [ 414DA952A35BF5D50192E28263B40577 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
16:17:41.0503 0312  ShellHWDetection - ok
16:17:41.0550 0312  [ 2565CAC0DC9FE0371BDCE60832582B2E ] sisagp          C:\Windows\system32\drivers\sisagp.sys
16:17:41.0550 0312  sisagp - ok
16:17:41.0612 0312  [ A9F0486851BECB6DDA1D89D381E71055 ] SiSRaid2        C:\Windows\system32\DRIVERS\SiSRaid2.sys
16:17:41.0612 0312  SiSRaid2 - ok
16:17:41.0628 0312  [ 3727097B55738E2F554972C3BE5BC1AA ] SiSRaid4        C:\Windows\system32\DRIVERS\sisraid4.sys
16:17:41.0644 0312  SiSRaid4 - ok
16:17:41.0690 0312  [ 3E21C083B8A01CB70BA1F09303010FCE ] Smb             C:\Windows\system32\DRIVERS\smb.sys
16:17:41.0690 0312  Smb - ok
16:17:41.0737 0312  [ 6A984831644ECA1A33FFEAE4126F4F37 ] SNMPTRAP        C:\Windows\System32\snmptrap.exe
16:17:41.0737 0312  SNMPTRAP - ok
16:17:41.0784 0312  [ 95CF1AE7527FB70F7816563CBC09D942 ] spldr           C:\Windows\system32\drivers\spldr.sys
16:17:41.0784 0312  spldr - ok
16:17:41.0800 0312  [ 9AEA093B8F9C37CF45538382CABA2475 ] Spooler         C:\Windows\System32\spoolsv.exe
16:17:41.0815 0312  Spooler - ok
16:17:41.0909 0312  [ CF87A1DE791347E75B98885214CED2B8 ] sppsvc          C:\Windows\system32\sppsvc.exe
16:17:41.0940 0312  sppsvc - ok
16:17:42.0002 0312  [ B0180B20B065D89232A78A40FE56EAA6 ] sppuinotify     C:\Windows\system32\sppuinotify.dll
16:17:42.0018 0312  sppuinotify - ok
16:17:42.0049 0312  [ E4C2764065D66EA1D2D3EBC28FE99C46 ] srv             C:\Windows\system32\DRIVERS\srv.sys
16:17:42.0049 0312  srv - ok
16:17:42.0158 0312  [ 03F0545BD8D4C77FA0AE1CEEDFCC71AB ] srv2            C:\Windows\system32\DRIVERS\srv2.sys
16:17:42.0158 0312  srv2 - ok
16:17:42.0268 0312  [ BE6BD660CAA6F291AE06A718A4FA8ABC ] srvnet          C:\Windows\system32\DRIVERS\srvnet.sys
16:17:42.0283 0312  srvnet - ok
16:17:42.0314 0312  [ D887C9FD02AC9FA880F6E5027A43E118 ] SSDPSRV         C:\Windows\System32\ssdpsrv.dll
16:17:42.0330 0312  SSDPSRV - ok
16:17:42.0377 0312  [ D318F23BE45D5E3A107469EB64815B50 ] SstpSvc         C:\Windows\system32\sstpsvc.dll
16:17:42.0392 0312  SstpSvc - ok
16:17:42.0408 0312  [ DB32D325C192B801DF274BFD12A7E72B ] stexstor        C:\Windows\system32\DRIVERS\stexstor.sys
16:17:42.0408 0312  stexstor - ok
16:17:42.0439 0312  [ E1FB3706030FB4578A0D72C2FC3689E4 ] StiSvc          C:\Windows\System32\wiaservc.dll
16:17:42.0439 0312  StiSvc - ok
16:17:42.0470 0312  [ 472AF0311073DCECEAA8FA18BA2BDF89 ] storflt         C:\Windows\system32\drivers\vmstorfl.sys
16:17:42.0470 0312  storflt - ok
16:17:42.0486 0312  [ 0BF669F0A910BEDA4A32258D363AF2A5 ] StorSvc         C:\Windows\system32\storsvc.dll
16:17:42.0486 0312  StorSvc - ok
16:17:42.0502 0312  [ DCAFFD62259E0BDB433DD67B5BB37619 ] storvsc         C:\Windows\system32\drivers\storvsc.sys
16:17:42.0502 0312  storvsc - ok
16:17:42.0517 0312  [ E58C78A848ADD9610A4DB6D214AF5224 ] swenum          C:\Windows\system32\drivers\swenum.sys
16:17:42.0517 0312  swenum - ok
16:17:42.0533 0312  [ A28BD92DF340E57B024BA433165D34D7 ] swprv           C:\Windows\System32\swprv.dll
16:17:42.0548 0312  swprv - ok
16:17:42.0564 0312  Synth3dVsc - ok
16:17:42.0595 0312  [ 36650D618CA34C9D357DFD3D89B2C56F ] SysMain         C:\Windows\system32\sysmain.dll
16:17:42.0611 0312  SysMain - ok
16:17:42.0642 0312  [ 763FECDC3D30C815FE72DD57936C6CD1 ] TabletInputService C:\Windows\System32\TabSvc.dll
16:17:42.0642 0312  TabletInputService - ok
16:17:42.0673 0312  [ 613BF4820361543956909043A265C6AC ] TapiSrv         C:\Windows\System32\tapisrv.dll
16:17:42.0673 0312  TapiSrv - ok
16:17:42.0704 0312  [ B799D9FDB26111737F58288D8DC172D9 ] TBS             C:\Windows\System32\tbssvc.dll
16:17:42.0704 0312  TBS - ok
16:17:42.0751 0312  [ E23A56F843E2AEBBB209D0ACCA73C640 ] Tcpip           C:\Windows\system32\drivers\tcpip.sys
16:17:42.0767 0312  Tcpip - ok
16:17:42.0798 0312  [ E23A56F843E2AEBBB209D0ACCA73C640 ] TCPIP6          C:\Windows\system32\DRIVERS\tcpip.sys
16:17:42.0798 0312  TCPIP6 - ok
16:17:42.0829 0312  [ 3EEBD3BD93DA46A26E89893C7AB2FF3B ] tcpipreg        C:\Windows\system32\drivers\tcpipreg.sys
16:17:42.0829 0312  tcpipreg - ok
16:17:42.0860 0312  [ 1CB91B2BD8F6DD367DFC2EF26FD751B2 ] TDPIPE          C:\Windows\system32\drivers\tdpipe.sys
16:17:42.0860 0312  TDPIPE - ok
16:17:42.0876 0312  [ 2C2C5AFE7EE4F620D69C23C0617651A8 ] TDTCP           C:\Windows\system32\drivers\tdtcp.sys
16:17:42.0876 0312  TDTCP - ok
16:17:42.0892 0312  [ B459575348C20E8121D6039DA063C704 ] tdx             C:\Windows\system32\DRIVERS\tdx.sys
16:17:42.0892 0312  tdx - ok
16:17:42.0907 0312  [ 04DBF4B01EA4BF25A9A3E84AFFAC9B20 ] TermDD          C:\Windows\system32\drivers\termdd.sys
16:17:42.0907 0312  TermDD - ok
16:17:42.0938 0312  [ 382C804C92811BE57829D8E550A900E2 ] TermService     C:\Windows\System32\termsrv.dll
16:17:42.0938 0312  TermService - ok
16:17:42.0970 0312  [ 42FB6AFD6B79D9FE07381609172E7CA4 ] Themes          C:\Windows\system32\themeservice.dll
16:17:42.0970 0312  Themes - ok
16:17:43.0001 0312  [ 146B6F43A673379A3C670E86D89BE5EA ] THREADORDER     C:\Windows\system32\mmcss.dll
16:17:43.0001 0312  THREADORDER - ok
16:17:43.0016 0312  [ 4792C0378DB99A9BC2AE2DE6CFFF0C3A ] TrkWks          C:\Windows\System32\trkwks.dll
16:17:43.0032 0312  TrkWks - ok
16:17:43.0063 0312  [ 2C49B175AEE1D4364B91B531417FE583 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
16:17:43.0079 0312  TrustedInstaller - ok
16:17:43.0079 0312  [ 254BB140EEE3C59D6114C1A86B636877 ] tssecsrv        C:\Windows\system32\DRIVERS\tssecsrv.sys
16:17:43.0094 0312  tssecsrv - ok
16:17:43.0110 0312  [ 9CE253214ACAA5A7D323327D2055EFAA ] TsUsbFlt        C:\Windows\system32\drivers\tsusbflt.sys
16:17:43.0110 0312  TsUsbFlt - ok
16:17:43.0110 0312  tsusbhub - ok
16:17:43.0141 0312  [ B2FA25D9B17A68BB93D58B0556E8C90D ] tunnel          C:\Windows\system32\DRIVERS\tunnel.sys
16:17:43.0157 0312  tunnel - ok
16:17:43.0157 0312  [ 750FBCB269F4D7DD2E420C56B795DB6D ] uagp35          C:\Windows\system32\DRIVERS\uagp35.sys
16:17:43.0172 0312  uagp35 - ok
16:17:43.0188 0312  [ EE43346C7E4B5E63E54F927BABBB32FF ] udfs            C:\Windows\system32\DRIVERS\udfs.sys
16:17:43.0188 0312  udfs - ok
16:17:43.0219 0312  [ 8344FD4FCE927880AA1AA7681D4927E5 ] UI0Detect       C:\Windows\system32\UI0Detect.exe
16:17:43.0235 0312  UI0Detect - ok
16:17:43.0250 0312  [ 44E8048ACE47BEFBFDC2E9BE4CBC8880 ] uliagpkx        C:\Windows\system32\drivers\uliagpkx.sys
16:17:43.0250 0312  uliagpkx - ok
16:17:43.0282 0312  [ D295BED4B898F0FD999FCFA9B32B071B ] umbus           C:\Windows\system32\DRIVERS\umbus.sys
16:17:43.0282 0312  umbus - ok
16:17:43.0297 0312  [ 7550AD0C6998BA1CB4843E920EE0FEAC ] UmPass          C:\Windows\system32\DRIVERS\umpass.sys
16:17:43.0297 0312  UmPass - ok
16:17:43.0313 0312  [ 409994A8EACEEE4E328749C0353527A0 ] UmRdpService    C:\Windows\System32\umrdp.dll
16:17:43.0328 0312  UmRdpService - ok
16:17:43.0344 0312  [ 833FBB672460EFCE8011D262175FAD33 ] upnphost        C:\Windows\System32\upnphost.dll
16:17:43.0344 0312  upnphost - ok
16:17:43.0360 0312  [ 8BF5D980CDCE35FB26F05047144BB57E ] USBAAPL         C:\Windows\system32\Drivers\usbaapl.sys
16:17:43.0360 0312  USBAAPL - ok
16:17:43.0391 0312  [ BD9C55D7023C5DE374507ACC7A14E2AC ] usbccgp         C:\Windows\system32\DRIVERS\usbccgp.sys
16:17:43.0391 0312  usbccgp - ok
16:17:43.0406 0312  [ 04EC7CEC62EC3B6D9354EEE93327FC82 ] usbcir          C:\Windows\system32\drivers\usbcir.sys
16:17:43.0406 0312  usbcir - ok
16:17:43.0438 0312  [ F92DE757E4B7CE9C07C5E65423F3AE3B ] usbehci         C:\Windows\system32\DRIVERS\usbehci.sys
16:17:43.0438 0312  usbehci - ok
16:17:43.0469 0312  [ 8DC94AEC6A7E644A06135AE7506DC2E9 ] usbhub          C:\Windows\system32\DRIVERS\usbhub.sys
16:17:43.0469 0312  usbhub - ok
16:17:43.0484 0312  [ E185D44FAC515A18D9DEDDC23C2CDF44 ] usbohci         C:\Windows\system32\drivers\usbohci.sys
16:17:43.0484 0312  usbohci - ok
16:17:43.0500 0312  [ 797D862FE0875E75C7CC4C1AD7B30252 ] usbprint        C:\Windows\system32\DRIVERS\usbprint.sys
16:17:43.0500 0312  usbprint - ok
16:17:43.0516 0312  [ F991AB9CC6B908DB552166768176896A ] USBSTOR         C:\Windows\system32\DRIVERS\USBSTOR.SYS
16:17:43.0516 0312  USBSTOR - ok
16:17:43.0531 0312  [ 68DF884CF41CDADA664BEB01DAF67E3D ] usbuhci         C:\Windows\system32\DRIVERS\usbuhci.sys
16:17:43.0531 0312  usbuhci - ok
16:17:43.0562 0312  [ 45F4E7BF43DB40A6C6B4D92C76CBC3F2 ] usbvideo        C:\Windows\System32\Drivers\usbvideo.sys
16:17:43.0562 0312  usbvideo - ok
16:17:43.0594 0312  [ 081E6E1C91AEC36758902A9F727CD23C ] UxSms           C:\Windows\System32\uxsms.dll
16:17:43.0594 0312  UxSms - ok
16:17:43.0594 0312  [ 81951F51E318AECC2D68559E47485CC4 ] VaultSvc        C:\Windows\system32\lsass.exe
16:17:43.0609 0312  VaultSvc - ok
16:17:43.0625 0312  [ A059C4C3EDB09E07D21A8E5C0AABD3CB ] vdrvroot        C:\Windows\system32\drivers\vdrvroot.sys
16:17:43.0625 0312  vdrvroot - ok
16:17:43.0640 0312  [ C3CD30495687C2A2F66A65CA6FD89BE9 ] vds             C:\Windows\System32\vds.exe
16:17:43.0656 0312  vds - ok
16:17:43.0687 0312  [ 17C408214EA61696CEC9C66E388B14F3 ] vga             C:\Windows\system32\DRIVERS\vgapnp.sys
16:17:43.0687 0312  vga - ok
16:17:43.0718 0312  [ 8E38096AD5C8570A6F1570A61E251561 ] VgaSave         C:\Windows\System32\drivers\vga.sys
16:17:43.0718 0312  VgaSave - ok
16:17:43.0718 0312  VGPU - ok
16:17:43.0765 0312  [ 5461686CCA2FDA57B024547733AB42E3 ] vhdmp           C:\Windows\system32\drivers\vhdmp.sys
16:17:43.0765 0312  vhdmp - ok
16:17:43.0796 0312  [ C829317A37B4BEA8F39735D4B076E923 ] viaagp          C:\Windows\system32\drivers\viaagp.sys
16:17:43.0796 0312  viaagp - ok
16:17:43.0812 0312  [ E02F079A6AA107F06B16549C6E5C7B74 ] ViaC7           C:\Windows\system32\DRIVERS\viac7.sys
16:17:43.0812 0312  ViaC7 - ok
16:17:43.0828 0312  [ E43574F6A56A0EE11809B48C09E4FD3C ] viaide          C:\Windows\system32\drivers\viaide.sys
16:17:43.0828 0312  viaide - ok
16:17:43.0843 0312  [ C2F2911156FDC7817C52829C86DA494E ] vmbus           C:\Windows\system32\drivers\vmbus.sys
16:17:43.0843 0312  vmbus - ok
16:17:43.0859 0312  [ D4D77455211E204F370D08F4963063CE ] VMBusHID        C:\Windows\system32\drivers\VMBusHID.sys
16:17:43.0859 0312  VMBusHID - ok
16:17:43.0859 0312  [ 4C63E00F2F4B5F86AB48A58CD990F212 ] volmgr          C:\Windows\system32\drivers\volmgr.sys
16:17:43.0874 0312  volmgr - ok
16:17:43.0890 0312  [ B5BB72067DDDDBBFB04B2F89FF8C3C87 ] volmgrx         C:\Windows\system32\drivers\volmgrx.sys
16:17:43.0890 0312  volmgrx - ok
16:17:43.0906 0312  [ F497F67932C6FA693D7DE2780631CFE7 ] volsnap         C:\Windows\system32\drivers\volsnap.sys
16:17:43.0906 0312  volsnap - ok
16:17:43.0937 0312  [ 9DFA0CC2F8855A04816729651175B631 ] vsmraid         C:\Windows\system32\DRIVERS\vsmraid.sys
16:17:43.0937 0312  vsmraid - ok
16:17:43.0968 0312  [ 209A3B1901B83AEB8527ED211CCE9E4C ] VSS             C:\Windows\system32\vssvc.exe
16:17:43.0984 0312  VSS - ok
16:17:44.0015 0312  [ 90567B1E658001E79D7C8BBD3DDE5AA6 ] vwifibus        C:\Windows\system32\DRIVERS\vwifibus.sys
16:17:44.0015 0312  vwifibus - ok
16:17:44.0030 0312  [ 7090D3436EEB4E7DA3373090A23448F7 ] vwififlt        C:\Windows\system32\DRIVERS\vwififlt.sys
16:17:44.0030 0312  vwififlt - ok
16:17:44.0062 0312  [ 55187FD710E27D5095D10A472C8BAF1C ] W32Time         C:\Windows\system32\w32time.dll
16:17:44.0062 0312  W32Time - ok
16:17:44.0077 0312  [ DE3721E89C653AA281428C8A69745D90 ] WacomPen        C:\Windows\system32\DRIVERS\wacompen.sys
16:17:44.0077 0312  WacomPen - ok
16:17:44.0108 0312  [ 3C3C78515F5AB448B022BDF5B8FFDD2E ] WANARP          C:\Windows\system32\DRIVERS\wanarp.sys
16:17:44.0108 0312  WANARP - ok
16:17:44.0108 0312  [ 3C3C78515F5AB448B022BDF5B8FFDD2E ] Wanarpv6        C:\Windows\system32\DRIVERS\wanarp.sys
16:17:44.0124 0312  Wanarpv6 - ok
16:17:44.0202 0312  [ 353A04C273EC58475D8633E75CCD5604 ] WatAdminSvc     C:\Windows\system32\Wat\WatAdminSvc.exe
16:17:44.0218 0312  WatAdminSvc - ok
16:17:44.0264 0312  [ 691E3285E53DCA558E1A84667F13E15A ] wbengine        C:\Windows\system32\wbengine.exe
16:17:44.0280 0312  wbengine - ok
16:17:44.0296 0312  [ 9614B5D29DC76AC3C29F6D2D3AA70E67 ] WbioSrvc        C:\Windows\System32\wbiosrvc.dll
16:17:44.0311 0312  WbioSrvc - ok
16:17:44.0327 0312  [ 34EEE0DFAADB4F691D6D5308A51315DC ] wcncsvc         C:\Windows\System32\wcncsvc.dll
16:17:44.0342 0312  wcncsvc - ok
16:17:44.0358 0312  [ 5D930B6357A6D2AF4D7653BDABBF352F ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
16:17:44.0358 0312  WcsPlugInService - ok
16:17:44.0389 0312  [ 1112A9BADACB47B7C0BB0392E3158DFF ] Wd              C:\Windows\system32\DRIVERS\wd.sys
16:17:44.0389 0312  Wd - ok
16:17:44.0405 0312  [ A840213F1ACDCC175B4D1D5AAEAC0D7A ] Wdf01000        C:\Windows\system32\drivers\Wdf01000.sys
16:17:44.0420 0312  Wdf01000 - ok
16:17:44.0436 0312  [ 46EF9DC96265FD0B423DB72E7C38C2A5 ] WdiServiceHost  C:\Windows\system32\wdi.dll
16:17:44.0436 0312  WdiServiceHost - ok
16:17:44.0436 0312  [ 46EF9DC96265FD0B423DB72E7C38C2A5 ] WdiSystemHost   C:\Windows\system32\wdi.dll
16:17:44.0452 0312  WdiSystemHost - ok
16:17:44.0467 0312  [ A9D880F97530D5B8FEE278923349929D ] WebClient       C:\Windows\System32\webclnt.dll
16:17:44.0467 0312  WebClient - ok
16:17:44.0498 0312  [ 760F0AFE937A77CFF27153206534F275 ] Wecsvc          C:\Windows\system32\wecsvc.dll
16:17:44.0498 0312  Wecsvc - ok
16:17:44.0514 0312  [ AC804569BB2364FB6017370258A4091B ] wercplsupport   C:\Windows\System32\wercplsupport.dll
16:17:44.0514 0312  wercplsupport - ok
16:17:44.0545 0312  [ 08E420D873E4FD85241EE2421B02C4A4 ] WerSvc          C:\Windows\System32\WerSvc.dll
16:17:44.0545 0312  WerSvc - ok
16:17:44.0576 0312  [ 8B9A943F3B53861F2BFAF6C186168F79 ] WfpLwf          C:\Windows\system32\DRIVERS\wfplwf.sys
16:17:44.0576 0312  WfpLwf - ok
16:17:44.0592 0312  [ 5CF95B35E59E2A38023836FFF31BE64C ] WIMMount        C:\Windows\system32\drivers\wimmount.sys
16:17:44.0592 0312  WIMMount - ok
16:17:44.0639 0312  [ 3FAE8F94296001C32EAB62CD7D82E0FD ] WinDefend       C:\Program Files\Windows Defender\mpsvc.dll
16:17:44.0654 0312  WinDefend - ok
16:17:44.0670 0312  WinHttpAutoProxySvc - ok
16:17:44.0732 0312  [ F62E510B6AD4C21EB9FE8668ED251826 ] Winmgmt         C:\Windows\system32\wbem\WMIsvc.dll
16:17:44.0732 0312  Winmgmt - ok
16:17:44.0764 0312  [ 1B91CD34EA3A90AB6A4EF0550174F4CC ] WinRM           C:\Windows\system32\WsmSvc.dll
16:17:44.0779 0312  WinRM - ok
16:17:44.0826 0312  [ A67E5F9A400F3BD1BE3D80613B45F708 ] WinUsb          C:\Windows\system32\DRIVERS\WinUsb.sys
16:17:44.0826 0312  WinUsb - ok
16:17:44.0857 0312  [ 16935C98FF639D185086A3529B1F2067 ] Wlansvc         C:\Windows\System32\wlansvc.dll
16:17:44.0857 0312  Wlansvc - ok
16:17:44.0888 0312  [ 0217679B8FCA58714C3BF2726D2CA84E ] WmiAcpi         C:\Windows\system32\drivers\wmiacpi.sys
16:17:44.0888 0312  WmiAcpi - ok
16:17:44.0904 0312  [ 6EB6B66517B048D87DC1856DDF1F4C3F ] wmiApSrv        C:\Windows\system32\wbem\WmiApSrv.exe
16:17:44.0904 0312  wmiApSrv - ok
16:17:44.0966 0312  [ 3B40D3A61AA8C21B88AE57C58AB3122E ] WMPNetworkSvc   C:\Program Files\Windows Media Player\wmpnetwk.exe
16:17:44.0966 0312  WMPNetworkSvc - ok
16:17:44.0982 0312  [ A2F0EC770A92F2B3F9DE6D518E11409C ] WPCSvc          C:\Windows\System32\wpcsvc.dll
16:17:44.0998 0312  WPCSvc - ok
16:17:45.0029 0312  [ AA53356D60AF47EACC85BC617A4F3F66 ] WPDBusEnum      C:\Windows\system32\wpdbusenum.dll
16:17:45.0029 0312  WPDBusEnum - ok
16:17:45.0060 0312  [ 6DB3276587B853BF886B69528FDB048C ] ws2ifsl         C:\Windows\system32\drivers\ws2ifsl.sys
16:17:45.0060 0312  ws2ifsl - ok
16:17:45.0060 0312  [ 6F5D49EFE0E7164E03AE773A3FE25340 ] wscsvc          C:\Windows\System32\wscsvc.dll
16:17:45.0076 0312  wscsvc - ok
16:17:45.0076 0312  WSearch - ok
16:17:45.0138 0312  [ FC3EC24FCE372C89423E015A2AC1A31E ] wuauserv        C:\Windows\system32\wuaueng.dll
16:17:45.0154 0312  wuauserv - ok
16:17:45.0169 0312  [ 06E6F32C8D0A3F66D956F57B43A2E070 ] WudfPf          C:\Windows\system32\drivers\WudfPf.sys
16:17:45.0169 0312  WudfPf - ok
16:17:45.0200 0312  [ 867C301E8B790040AE9CF6486E8041DF ] WUDFRd          C:\Windows\system32\DRIVERS\WUDFRd.sys
16:17:45.0200 0312  WUDFRd - ok
16:17:45.0200 0312  [ FE47B7BC8EA320C2D9B5E5BF6E303765 ] wudfsvc         C:\Windows\System32\WUDFSvc.dll
16:17:45.0216 0312  wudfsvc - ok
16:17:45.0247 0312  [ FF2D745B560F7C71B31F30F4D49F73D2 ] WwanSvc         C:\Windows\System32\wwansvc.dll
16:17:45.0247 0312  WwanSvc - ok
16:17:45.0278 0312  ================ Scan global ===============================
16:17:45.0310 0312  [ DAB748AE0439955ED2FA22357533DDDB ] C:\Windows\system32\basesrv.dll
16:17:45.0325 0312  [ D70FE45855CAD4C0C6B1C1426ABDEBA9 ] C:\Windows\system32\winsrv.dll
16:17:45.0341 0312  [ D70FE45855CAD4C0C6B1C1426ABDEBA9 ] C:\Windows\system32\winsrv.dll
16:17:45.0388 0312  [ 364455805E64882844EE9ACB72522830 ] C:\Windows\system32\sxssrv.dll
16:17:45.0419 0312  [ 5F1B6A9C35D3D5CA72D6D6FDEF9747D6 ] C:\Windows\system32\services.exe
16:17:45.0434 0312  [Global] - ok
16:17:45.0434 0312  ================ Scan MBR ==================================
16:17:45.0450 0312  [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
16:17:45.0809 0312  \Device\Harddisk0\DR0 - ok
16:17:45.0809 0312  ================ Scan VBR ==================================
16:17:45.0840 0312  [ 2D117C30F7E1E59D1C803AA8CFA480D0 ] \Device\Harddisk0\DR0\Partition1
16:17:45.0840 0312  \Device\Harddisk0\DR0\Partition1 - ok
16:17:45.0856 0312  [ 5A82FF890D16096E967BE5F56B88C30D ] \Device\Harddisk0\DR0\Partition2
16:17:45.0856 0312  \Device\Harddisk0\DR0\Partition2 - ok
16:17:45.0856 0312  ================ Scan active images ========================
16:17:45.0871 0312  [ B7EFEF22FF426EC4158A177CB3B558D3 ] C:\Windows\System32\drivers\crashdmp.sys
16:17:45.0871 0312  C:\Windows\System32\drivers\crashdmp.sys - ok
16:17:45.0887 0312  [ 5428227D4730EBDFC842E9FB593F8C8A ] C:\Windows\System32\drivers\Dumpata.sys
16:17:45.0887 0312  C:\Windows\System32\drivers\Dumpata.sys - ok
16:17:45.0887 0312  [ 012C5F4E9349E711E11E0F19A8589F0A ] C:\Windows\System32\drivers\msahci.sys
16:17:45.0887 0312  C:\Windows\System32\drivers\msahci.sys - ok
16:17:45.0918 0312  [ 62A63EF2F3053B461CB327E4D69AAA74 ] C:\Windows\System32\drivers\dumpfve.sys
16:17:45.0918 0312  C:\Windows\System32\drivers\dumpfve.sys - ok
16:17:45.0918 0312  [ BE167ED0FDB9C1FA1133953C18D5A6C9 ] C:\Windows\System32\drivers\cdrom.sys
16:17:45.0918 0312  C:\Windows\System32\drivers\cdrom.sys - ok
16:17:45.0934 0312  [ B32E9AD44A1DBB3E8095E80F8DF32B03 ] C:\Windows\System32\drivers\aswSnx.sys
16:17:45.0934 0312  C:\Windows\System32\drivers\aswSnx.sys - ok
16:17:45.0949 0312  [ 505506526A9D467307B3C393DEDAF858 ] C:\Windows\System32\drivers\beep.sys
16:17:45.0949 0312  C:\Windows\System32\drivers\beep.sys - ok
16:17:45.0949 0312  [ F9756A98D69098DCA8945D62858A812C ] C:\Windows\System32\drivers\null.sys
16:17:45.0949 0312  C:\Windows\System32\drivers\null.sys - ok
16:17:45.0965 0312  [ 23DAE03F29D253AE74C44F99E515F9A1 ] C:\Windows\System32\drivers\RDPCDD.sys
16:17:45.0965 0312  C:\Windows\System32\drivers\RDPCDD.sys - ok
16:17:45.0980 0312  [ 8E38096AD5C8570A6F1570A61E251561 ] C:\Windows\System32\drivers\vga.sys
16:17:45.0980 0312  C:\Windows\System32\drivers\vga.sys - ok
16:17:45.0980 0312  [ 15C126D1B55814B9E5CAB10A9C1F4C67 ] C:\Windows\System32\drivers\videoprt.sys
16:17:45.0980 0312  C:\Windows\System32\drivers\videoprt.sys - ok
16:17:45.0996 0312  [ CB45A417C8EF7BA6BAC67EDCDDED8700 ] C:\Windows\System32\drivers\watchdog.sys
16:17:45.0996 0312  C:\Windows\System32\drivers\watchdog.sys - ok
16:17:46.0012 0312  [ DAEFB28E3AF5A76ABCC2C3078C07327F ] C:\Windows\System32\drivers\msfs.sys
16:17:46.0012 0312  C:\Windows\System32\drivers\msfs.sys - ok
16:17:46.0027 0312  [ 1DB262A9F8C087E8153D89BEF3D2235F ] C:\Windows\System32\drivers\npfs.sys
16:17:46.0027 0312  C:\Windows\System32\drivers\npfs.sys - ok
16:17:46.0043 0312  [ 5A53CA1598DD4156D44196D200C94B8A ] C:\Windows\System32\drivers\RDPENCDD.sys
16:17:46.0043 0312  C:\Windows\System32\drivers\RDPENCDD.sys - ok
16:17:46.0043 0312  [ 44B0A53CD4F27D50ED461DAE0C0B4E1F ] C:\Windows\System32\drivers\RDPREFMP.sys
16:17:46.0043 0312  C:\Windows\System32\drivers\RDPREFMP.sys - ok
16:17:46.0058 0312  [ 9EBBBA55060F786F0FCAA3893BFA2806 ] C:\Windows\System32\drivers\afd.sys
16:17:46.0058 0312  C:\Windows\System32\drivers\afd.sys - ok
16:17:46.0058 0312  [ E3E73B2B73A4DFADFDDF557192C4B08A ] C:\Windows\System32\drivers\aswTdi.sys
16:17:46.0058 0312  C:\Windows\System32\drivers\aswTdi.sys - ok
16:17:46.0074 0312  [ 2F885864D5BC8A16C86BEE595969A48A ] C:\Windows\System32\drivers\tdi.sys
16:17:46.0074 0312  C:\Windows\System32\drivers\tdi.sys - ok
16:17:46.0090 0312  [ B459575348C20E8121D6039DA063C704 ] C:\Windows\System32\drivers\tdx.sys
16:17:46.0090 0312  C:\Windows\System32\drivers\tdx.sys - ok
16:17:46.0090 0312  [ 81F638A2DD94ABBF0B43880AB38D8DBD ] C:\Windows\System32\drivers\aswRdr2.sys
16:17:46.0090 0312  C:\Windows\System32\drivers\aswRdr2.sys - ok
16:17:46.0105 0312  [ 280122DDCF04B378EDD1AD54D71C1E54 ] C:\Windows\System32\drivers\netbt.sys
16:17:46.0105 0312  C:\Windows\System32\drivers\netbt.sys - ok
16:17:46.0121 0312  [ 6270CCAE2A86DE6D146529FE55B3246A ] C:\Windows\System32\drivers\pacer.sys
16:17:46.0121 0312  C:\Windows\System32\drivers\pacer.sys - ok
16:17:46.0121 0312  [ 8B9A943F3B53861F2BFAF6C186168F79 ] C:\Windows\System32\drivers\wfplwf.sys
16:17:46.0121 0312  C:\Windows\System32\drivers\wfplwf.sys - ok
16:17:46.0152 0312  [ 7090D3436EEB4E7DA3373090A23448F7 ] C:\Windows\System32\drivers\vwififlt.sys
16:17:46.0152 0312  C:\Windows\System32\drivers\vwififlt.sys - ok
16:17:46.0168 0312  [ 80B275B1CE3B0E79909DB7B39AF74D51 ] C:\Windows\System32\drivers\netbios.sys
16:17:46.0168 0312  C:\Windows\System32\drivers\netbios.sys - ok
16:17:46.0183 0312  [ 3C3C78515F5AB448B022BDF5B8FFDD2E ] C:\Windows\System32\drivers\wanarp.sys
16:17:46.0183 0312  C:\Windows\System32\drivers\wanarp.sys - ok
16:17:46.0199 0312  [ D528BC58A489409BA40334EBF96A311B ] C:\Windows\System32\drivers\rdbss.sys
16:17:46.0199 0312  C:\Windows\System32\drivers\rdbss.sys - ok
16:17:46.0246 0312  [ 04DBF4B01EA4BF25A9A3E84AFFAC9B20 ] C:\Windows\System32\drivers\termdd.sys
16:17:46.0246 0312  C:\Windows\System32\drivers\termdd.sys - ok
16:17:46.0261 0312  [ E9A0A4D07E53D8FEA2BB8387A3293C58 ] C:\Windows\System32\drivers\nsiproxy.sys
16:17:46.0261 0312  C:\Windows\System32\drivers\nsiproxy.sys - ok
16:17:46.0277 0312  [ 1A050B0274BFB3890703D490F330C0DA ] C:\Windows\System32\drivers\discache.sys
16:17:46.0277 0312  C:\Windows\System32\drivers\discache.sys - ok
16:17:46.0292 0312  [ FC6B9FF600CC585EA38B12589BD4E246 ] C:\Windows\System32\drivers\mssmbios.sys
16:17:46.0292 0312  C:\Windows\System32\drivers\mssmbios.sys - ok
16:17:46.0324 0312  [ 2287078ED48FCFC477B05B20CF38F36F ] C:\Windows\System32\drivers\blbdrive.sys
16:17:46.0324 0312  C:\Windows\System32\drivers\blbdrive.sys - ok
16:17:46.0339 0312  [ 3C2177A897B4CA2788C6FB0C3FD81D4B ] C:\Windows\System32\drivers\csc.sys
16:17:46.0339 0312  C:\Windows\System32\drivers\csc.sys - ok
16:17:46.0386 0312  [ F024449C97EC1E464AAFFDA18593DB88 ] C:\Windows\System32\drivers\dfsc.sys
16:17:46.0386 0312  C:\Windows\System32\drivers\dfsc.sys - ok
16:17:46.0417 0312  [ 67B558895695545FB0568B7541F3BCA7 ] C:\Windows\System32\drivers\aswSP.sys
16:17:46.0417 0312  C:\Windows\System32\drivers\aswSP.sys - ok
16:17:46.0448 0312  [ B2FA25D9B17A68BB93D58B0556E8C90D ] C:\Windows\System32\drivers\tunnel.sys
16:17:46.0448 0312  C:\Windows\System32\drivers\tunnel.sys - ok
16:17:46.0464 0312  [ 3B514D27BFC4ACCB4037BC6685F766E0 ] C:\Windows\System32\drivers\intelppm.sys
16:17:46.0464 0312  C:\Windows\System32\drivers\intelppm.sys - ok
16:17:46.0480 0312  [ C30A91ADE8C9CB91E4281EC83C4500C6 ] C:\Windows\System32\ntdll.dll
16:17:46.0480 0312  C:\Windows\System32\ntdll.dll - ok
16:17:46.0480 0312  [ 16742790895960690237A5143CEDEC8B ] C:\Windows\System32\smss.exe
16:17:46.0480 0312  C:\Windows\System32\smss.exe - ok
16:17:46.0495 0312  [ F88A52EB62019D6A62FDD9E08034DBD8 ] C:\Windows\System32\autochk.exe
16:17:46.0495 0312  C:\Windows\System32\autochk.exe - ok
16:17:46.0511 0312  [ DEC3DD3E53D076FBD2493AA367A6D21D ] C:\Windows\System32\drivers\nvBridge.kmd
16:17:46.0511 0312  C:\Windows\System32\drivers\nvBridge.kmd - ok
16:17:46.0526 0312  [ 5CE5B23855262ACABAECCE156F48DD88 ] C:\Windows\System32\drivers\nvlddmkm.sys
16:17:46.0526 0312  C:\Windows\System32\drivers\nvlddmkm.sys - ok
16:17:46.0542 0312  [ 7FA3A810F383588D46220967DE8B64FF ] C:\Windows\System32\wininet.dll
16:17:46.0542 0312  C:\Windows\System32\wininet.dll - ok
16:17:46.0558 0312  [ A543AC1F7138376D778D630A35FCBC4C ] C:\Windows\System32\psapi.dll
16:17:46.0558 0312  C:\Windows\System32\psapi.dll - ok
16:17:46.0558 0312  [ 9C278785347BCC991F8EA2999D90F58D ] C:\Windows\System32\normaliz.dll
16:17:46.0558 0312  C:\Windows\System32\normaliz.dll - ok
16:17:46.0573 0312  [ 6C765E82B57F2E66CE9C54AC238471D9 ] C:\Windows\System32\oleaut32.dll
16:17:46.0573 0312  C:\Windows\System32\oleaut32.dll - ok
16:17:46.0589 0312  [ AE09B85158C66E2C154C5C9B3C0027B3 ] C:\Windows\System32\kernel32.dll
16:17:46.0589 0312  C:\Windows\System32\kernel32.dll - ok
16:17:46.0589 0312  [ E87F5393F7D8CE2FACC4DFF703531392 ] C:\Windows\System32\gdi32.dll
16:17:46.0589 0312  C:\Windows\System32\gdi32.dll - ok
16:17:46.0620 0312  [ D1DE1EAFDE97BE41CF6585027FF3E732 ] C:\Windows\System32\comdlg32.dll
16:17:46.0620 0312  C:\Windows\System32\comdlg32.dll - ok
16:17:46.0620 0312  [ 29E9794708DF51DB5DC89FB2E903A0F6 ] C:\Windows\System32\shell32.dll
16:17:46.0620 0312  C:\Windows\System32\shell32.dll - ok
16:17:46.0636 0312  [ 780E80E5502015EDAEC91DC0A0C96A79 ] C:\Windows\System32\iertutil.dll
16:17:46.0636 0312  C:\Windows\System32\iertutil.dll - ok
16:17:46.0651 0312  [ 95E2376B3323F062EB562B8586D0F14A ] C:\Windows\System32\advapi32.dll
16:17:46.0651 0312  C:\Windows\System32\advapi32.dll - ok
16:17:46.0667 0312  [ 6377051C63D5552A311935C67E9FDFDC ] C:\Windows\System32\nsi.dll
16:17:46.0667 0312  C:\Windows\System32\nsi.dll - ok
16:17:46.0667 0312  [ 4A8E2F20809CC161107FAA94F6CF2685 ] C:\Windows\System32\imm32.dll
16:17:46.0667 0312  C:\Windows\System32\imm32.dll - ok
16:17:46.0682 0312  [ CFC97F07904067A1E5FAE195D534DA3A ] C:\Windows\System32\sechost.dll
16:17:46.0682 0312  C:\Windows\System32\sechost.dll - ok
16:17:46.0698 0312  [ 8CC3C111D653E96F3EA1590891491D71 ] C:\Windows\System32\shlwapi.dll
16:17:46.0698 0312  C:\Windows\System32\shlwapi.dll - ok
16:17:46.0714 0312  [ A8BB45F9ECAD993461E0FEF8E2A99152 ] C:\Windows\System32\Wldap32.dll
16:17:46.0714 0312  C:\Windows\System32\Wldap32.dll - ok
16:17:46.0729 0312  [ 4266A3230981DD4434C55957F6DD497D ] C:\Windows\System32\urlmon.dll
16:17:46.0729 0312  C:\Windows\System32\urlmon.dll - ok
16:17:46.0729 0312  [ 070C5B9D3006602A07757179D9B56F5D ] C:\Windows\System32\difxapi.dll
16:17:46.0729 0312  C:\Windows\System32\difxapi.dll - ok
16:17:46.0745 0312  [ B2DB6ABA2E292235749B80A9C3DFA867 ] C:\Windows\System32\imagehlp.dll
16:17:46.0745 0312  C:\Windows\System32\imagehlp.dll - ok
16:17:46.0745 0312  [ 23F5D28378A160352BA8F817BD8C71CB ] C:\Windows\System32\drivers\dxgkrnl.sys
16:17:46.0745 0312  C:\Windows\System32\drivers\dxgkrnl.sys - ok



TDSS Part II

 

16:17:46.0760 0312  [ D458D1C7F1D49869000668E3C3BB0D4D ] C:\Windows\System32\drivers\dxgmms1.sys
16:17:46.0760 0312  C:\Windows\System32\drivers\dxgmms1.sys - ok
16:17:46.0776 0312  [ F92DE757E4B7CE9C07C5E65423F3AE3B ] C:\Windows\System32\drivers\usbehci.sys
16:17:46.0776 0312  C:\Windows\System32\drivers\usbehci.sys - ok
16:17:46.0792 0312  [ 3AA940AA9AC3055FE32FF2D3D20CCD28 ] C:\Windows\System32\drivers\usbport.sys
16:17:46.0792 0312  C:\Windows\System32\drivers\usbport.sys - ok
16:17:46.0807 0312  [ 68DF884CF41CDADA664BEB01DAF67E3D ] C:\Windows\System32\drivers\usbuhci.sys
16:17:46.0807 0312  C:\Windows\System32\drivers\usbuhci.sys - ok
16:17:46.0807 0312  [ 9036377B8A6C15DC2EEC53E489D159B5 ] C:\Windows\System32\drivers\hdaudbus.sys
16:17:46.0807 0312  C:\Windows\System32\drivers\hdaudbus.sys - ok
16:17:46.0823 0312  [ 31CB2740BFDBAC1E48E2B7EAD38F0D27 ] C:\Windows\System32\drivers\athr.sys
16:17:46.0823 0312  C:\Windows\System32\drivers\athr.sys - ok
16:17:46.0838 0312  [ 5283B9A27FF230F2FF70D92451FF409A ] C:\Windows\System32\drivers\Rt86win7.sys
16:17:46.0838 0312  C:\Windows\System32\drivers\Rt86win7.sys - ok
16:17:46.0854 0312  [ 90567B1E658001E79D7C8BBD3DDE5AA6 ] C:\Windows\System32\drivers\vwifibus.sys
16:17:46.0854 0312  C:\Windows\System32\drivers\vwifibus.sys - ok
16:17:46.0854 0312  [ 1B133875B8AA8AC48969BD3458AFE9F5 ] C:\Windows\System32\drivers\1394ohci.sys
16:17:46.0854 0312  C:\Windows\System32\drivers\1394ohci.sys - ok
16:17:46.0870 0312  [ DF672613FBBCD58C38BB0BC2694BCFB0 ] C:\Windows\System32\drivers\rimmptsk.sys
16:17:46.0870 0312  C:\Windows\System32\drivers\rimmptsk.sys - ok
16:17:46.0885 0312  [ 9BFB54D3559F2FF7301271D29D383564 ] C:\Windows\System32\drivers\rimsptsk.sys
16:17:46.0885 0312  C:\Windows\System32\drivers\rimsptsk.sys - ok
16:17:46.0901 0312  [ 0328BE1C7F1CBA23848179F8762E391C ] C:\Windows\System32\drivers\sdbus.sys
16:17:46.0901 0312  C:\Windows\System32\drivers\sdbus.sys - ok
16:17:46.0901 0312  [ DCB87DA83CC1010CBC9FC4DC9E395BBC ] C:\Windows\System32\drivers\rixdptsk.sys
16:17:46.0901 0312  C:\Windows\System32\drivers\rixdptsk.sys - ok
16:17:46.0916 0312  [ F151F0BDC47F4A28B1B20A0818EA36D6 ] C:\Windows\System32\drivers\i8042prt.sys
16:17:46.0916 0312  C:\Windows\System32\drivers\i8042prt.sys - ok
16:17:46.0932 0312  [ ADEF52CA1AEAE82B50DF86B56413107E ] C:\Windows\System32\drivers\kbdclass.sys
16:17:46.0932 0312  C:\Windows\System32\drivers\kbdclass.sys - ok
16:17:46.0948 0312  [ FB18CC1D4C2E716B6B903B0AC0CC0609 ] C:\Windows\System32\drivers\mouclass.sys
16:17:46.0948 0312  C:\Windows\System32\drivers\mouclass.sys - ok
16:17:46.0963 0312  [ DEA805815E587DAD1DD2C502220B5616 ] C:\Windows\System32\drivers\CmBatt.sys
16:17:46.0963 0312  C:\Windows\System32\drivers\CmBatt.sys - ok
16:17:46.0979 0312  [ 185ADA973B5020655CEE342059A86CBB ] C:\Windows\System32\drivers\GEARAspiWDM.sys
16:17:46.0979 0312  C:\Windows\System32\drivers\GEARAspiWDM.sys - ok
16:17:47.0026 0312  [ 83A0305939E1D113A8D8BC2B2EA64774 ] C:\Windows\System32\drivers\itecir.sys
16:17:47.0026 0312  C:\Windows\System32\drivers\itecir.sys - ok
16:17:47.0026 0312  [ 57EC4AEF73660166074D8F7F31C0D4FD ] C:\Windows\System32\drivers\agilevpn.sys
16:17:47.0026 0312  C:\Windows\System32\drivers\agilevpn.sys - ok
16:17:47.0026 0312  [ 97AFFA9D95FFE20EEE6229BC6BE166CF ] C:\Windows\System32\drivers\ATKACPI.sys
16:17:47.0026 0312  C:\Windows\System32\drivers\ATKACPI.sys - ok
16:17:47.0041 0312  [ CBE8C58A8579CFE5FCCF809E6F114E89 ] C:\Windows\System32\drivers\CompositeBus.sys
16:17:47.0041 0312  C:\Windows\System32\drivers\CompositeBus.sys - ok
16:17:47.0041 0312  [ E4A8AEC125A2E43A9E32AFEEA7C9C888 ] C:\Windows\System32\drivers\ndistapi.sys
16:17:47.0041 0312  C:\Windows\System32\drivers\ndistapi.sys - ok
16:17:47.0041 0312  [ 38FBE267E7E6983311179230FACB1017 ] C:\Windows\System32\drivers\ndiswan.sys
16:17:47.0041 0312  C:\Windows\System32\drivers\ndiswan.sys - ok
16:17:47.0057 0312  [ D9F91EAFEC2815365CBE6D167E4E332A ] C:\Windows\System32\drivers\rasl2tp.sys
16:17:47.0057 0312  C:\Windows\System32\drivers\rasl2tp.sys - ok
16:17:47.0057 0312  [ 0FE8B15916307A6AC12BFB6A63E45507 ] C:\Windows\System32\drivers\raspppoe.sys
16:17:47.0057 0312  C:\Windows\System32\drivers\raspppoe.sys - ok
16:17:47.0057 0312  [ 631E3E205AD6D86F2AED6A4A8E69F2DB ] C:\Windows\System32\drivers\raspptp.sys
16:17:47.0057 0312  C:\Windows\System32\drivers\raspptp.sys - ok
16:17:47.0072 0312  [ 44101F495A83EA6401D886E7FD70096B ] C:\Windows\System32\drivers\rassstp.sys
16:17:47.0072 0312  C:\Windows\System32\drivers\rassstp.sys - ok
16:17:47.0072 0312  [ 0D8F05481CB76E70E1DA06EE9F0DA9DF ] C:\Windows\System32\drivers\rdpbus.sys
16:17:47.0072 0312  C:\Windows\System32\drivers\rdpbus.sys - ok
16:17:47.0072 0312  [ 3FE3FE94A34DF6FB06E6418D0F6A0060 ] C:\Windows\System32\drivers\circlass.sys
16:17:47.0072 0312  C:\Windows\System32\drivers\circlass.sys - ok
16:17:47.0072 0312  [ 5DCEF0C32BE0F33277326586FA503689 ] C:\Windows\System32\drivers\ks.sys
16:17:47.0072 0312  C:\Windows\System32\drivers\ks.sys - ok
16:17:47.0088 0312  [ E58C78A848ADD9610A4DB6D214AF5224 ] C:\Windows\System32\drivers\swenum.sys
16:17:47.0088 0312  C:\Windows\System32\drivers\swenum.sys - ok
16:17:47.0088 0312  [ D295BED4B898F0FD999FCFA9B32B071B ] C:\Windows\System32\drivers\umbus.sys
16:17:47.0088 0312  C:\Windows\System32\drivers\umbus.sys - ok
16:17:47.0088 0312  [ 8DC94AEC6A7E644A06135AE7506DC2E9 ] C:\Windows\System32\drivers\usbhub.sys
16:17:47.0088 0312  C:\Windows\System32\drivers\usbhub.sys - ok
16:17:47.0104 0312  [ 4F154D2C9C6DF951FD6E5AABBAE6B5EE ] C:\Windows\System32\lpk.dll
16:17:47.0104 0312  C:\Windows\System32\lpk.dll - ok
16:17:47.0104 0312  [ FF5688D309347F2720911D8796912834 ] C:\Windows\System32\clbcatq.dll
16:17:47.0104 0312  C:\Windows\System32\clbcatq.dll - ok
16:17:47.0104 0312  [ 7FF15A4F092CD4A96055BA69F903E3E9 ] C:\Windows\System32\ws2_32.dll
16:17:47.0104 0312  C:\Windows\System32\ws2_32.dll - ok
16:17:47.0104 0312  [ B7230010D97787AF3D25E4C82F2B06B9 ] C:\Windows\System32\usp10.dll
16:17:47.0104 0312  C:\Windows\System32\usp10.dll - ok
16:17:47.0119 0312  [ C9618BC9B2B0FD7C1138D8774795A79B ] C:\Windows\System32\msctf.dll
16:17:47.0119 0312  C:\Windows\System32\msctf.dll - ok
16:17:47.0119 0312  [ 9DC80A8AAAAAC397BDAB3C67165A824E ] C:\Windows\System32\msvcrt.dll
16:17:47.0119 0312  C:\Windows\System32\msvcrt.dll - ok
16:17:47.0119 0312  [ F1DD3ACAEE5E6B4BBC69BC6DF75CEF66 ] C:\Windows\System32\user32.dll
16:17:47.0119 0312  C:\Windows\System32\user32.dll - ok
16:17:47.0135 0312  [ 6400774E903729ADD0A62A24A334EE56 ] C:\Windows\System32\rpcrt4.dll
16:17:47.0135 0312  C:\Windows\System32\rpcrt4.dll - ok
16:17:47.0135 0312  [ 928CF7268086631F54C3D8E17238C6DD ] C:\Windows\System32\ole32.dll
16:17:47.0135 0312  C:\Windows\System32\ole32.dll - ok
16:17:47.0135 0312  [ 10FB16B50AFFDA6D44588F3C445DC273 ] C:\Windows\System32\setupapi.dll
16:17:47.0135 0312  C:\Windows\System32\setupapi.dll - ok
16:17:47.0135 0312  [ AD88D390C9417C959E08F8BF6F2B8154 ] C:\Windows\System32\KernelBase.dll
16:17:47.0135 0312  C:\Windows\System32\KernelBase.dll - ok
16:17:47.0150 0312  [ CC4ED8BEA78B0DCA6F217E014C3291A7 ] C:\Windows\System32\devobj.dll
16:17:47.0150 0312  C:\Windows\System32\devobj.dll - ok
16:17:47.0150 0312  [ 17448AF0BBA9E7AB5EC955AF93F271BD ] C:\Windows\System32\wintrust.dll
16:17:47.0150 0312  C:\Windows\System32\wintrust.dll - ok
16:17:47.0150 0312  [ 60D21799A4AF4EDCE65FB98830E4B0C8 ] C:\Windows\System32\crypt32.dll
16:17:47.0150 0312  C:\Windows\System32\crypt32.dll - ok
16:17:47.0166 0312  [ 3FFAEA12666E565FF51BF2FCA674F543 ] C:\Windows\System32\cfgmgr32.dll
16:17:47.0166 0312  C:\Windows\System32\cfgmgr32.dll - ok
16:17:47.0166 0312  [ BDAC1AA64495D0F7E1FF810EBBF1F018 ] C:\Windows\System32\comctl32.dll
16:17:47.0166 0312  C:\Windows\System32\comctl32.dll - ok
16:17:47.0166 0312  [ 938F39B50BAFE13D6F58C7790682C010 ] C:\Windows\System32\msasn1.dll
16:17:47.0166 0312  C:\Windows\System32\msasn1.dll - ok
16:17:47.0182 0312  [ A4BDC541E69674FBFF1A8FF00BE913F2 ] C:\Windows\System32\drivers\ndproxy.sys
16:17:47.0182 0312  C:\Windows\System32\drivers\ndproxy.sys - ok
16:17:47.0182 0312  [ 27F9288AF019E6DACA281EDE51FF5928 ] C:\Windows\System32\drivers\drmk.sys
16:17:47.0182 0312  C:\Windows\System32\drivers\drmk.sys - ok
16:17:47.0182 0312  [ A5EF29D5315111C80A5C1ABAD14C8972 ] C:\Windows\System32\drivers\HdAudio.sys
16:17:47.0182 0312  C:\Windows\System32\drivers\HdAudio.sys - ok
16:17:47.0197 0312  [ D72708C9F49500C13D7D067E169B7715 ] C:\Windows\System32\drivers\portcls.sys
16:17:47.0197 0312  C:\Windows\System32\drivers\portcls.sys - ok
16:17:47.0197 0312  [ 5787196F32D043572EC6565C0EF1B8E0 ] C:\Windows\System32\drivers\usbd.sys
16:17:47.0197 0312  C:\Windows\System32\drivers\usbd.sys - ok
16:17:47.0228 0312  [ 7E10E3BB9B258AD8A9300F91214D67B9 ] C:\Windows\System32\drivers\AGRSM.sys
16:17:47.0228 0312  C:\Windows\System32\drivers\AGRSM.sys - ok
16:17:47.0228 0312  [ F001861E5700EE84E2D4E52C712F4964 ] C:\Windows\System32\drivers\modem.sys
16:17:47.0228 0312  C:\Windows\System32\drivers\modem.sys - ok
16:17:47.0275 0312  [ 931A1DF1520ABC6E84BA4A75E6957025 ] C:\Windows\System32\drivers\hidclass.sys
16:17:47.0275 0312  C:\Windows\System32\drivers\hidclass.sys - ok
16:17:47.0275 0312  [ CF50B4CF4A4F229B9F3C08351F99CA5E ] C:\Windows\System32\drivers\hidir.sys
16:17:47.0275 0312  C:\Windows\System32\drivers\hidir.sys - ok
16:17:47.0291 0312  [ 6C26122F1931D4D7810240F32DDCE890 ] C:\Windows\System32\drivers\hidparse.sys
16:17:47.0291 0312  C:\Windows\System32\drivers\hidparse.sys - ok
16:17:47.0291 0312  [ 9E3CED91863E6EE98C24794D05E27A71 ] C:\Windows\System32\drivers\kbdhid.sys
16:17:47.0291 0312  C:\Windows\System32\drivers\kbdhid.sys - ok
16:17:47.0291 0312  [ 2C388D2CD01C9042596CF3C8F3C7B24D ] C:\Windows\System32\drivers\mouhid.sys
16:17:47.0291 0312  C:\Windows\System32\drivers\mouhid.sys - ok
16:17:47.0291 0312  [ 5FCD3320AAE71506B43F9E12E4E72172 ] C:\Windows\System32\drivers\dxapi.sys
16:17:47.0291 0312  C:\Windows\System32\drivers\dxapi.sys - ok
16:17:47.0306 0312  [ C7ECD7583B56569DC3DE77FE05641565 ] C:\Windows\System32\win32k.sys
16:17:47.0306 0312  C:\Windows\System32\win32k.sys - ok
16:17:47.0306 0312  [ 6C062EA09313872D2235027EF7A4554E ] C:\Windows\System32\csrsrv.dll
16:17:47.0306 0312  C:\Windows\System32\csrsrv.dll - ok
16:17:47.0306 0312  [ 342271F6142E7C70805B8A81E1BA5F5C ] C:\Windows\System32\csrss.exe
16:17:47.0306 0312  C:\Windows\System32\csrss.exe - ok
16:17:47.0322 0312  [ DAB748AE0439955ED2FA22357533DDDB ] C:\Windows\System32\basesrv.dll
16:17:47.0322 0312  C:\Windows\System32\basesrv.dll - ok
16:17:47.0322 0312  [ D70FE45855CAD4C0C6B1C1426ABDEBA9 ] C:\Windows\System32\winsrv.dll
16:17:47.0322 0312  C:\Windows\System32\winsrv.dll - ok
16:17:47.0322 0312  [ BD9C55D7023C5DE374507ACC7A14E2AC ] C:\Windows\System32\drivers\usbccgp.sys
16:17:47.0322 0312  C:\Windows\System32\drivers\usbccgp.sys - ok
16:17:47.0322 0312  [ E50433DFF5E6BF08693FA49A9205DEE6 ] C:\Windows\System32\drivers\etFilter.sys
16:17:47.0322 0312  C:\Windows\System32\drivers\etFilter.sys - ok
16:17:47.0338 0312  [ 699CE24FE6B5120AF709A0B91582A02D ] C:\Windows\System32\drivers\etDevice.sys
16:17:47.0338 0312  C:\Windows\System32\drivers\etDevice.sys - ok
16:17:47.0338 0312  [ 45B44FC9E5AC0DB02B19D515EE809DE5 ] C:\Windows\System32\drivers\stream.sys
16:17:47.0338 0312  C:\Windows\System32\drivers\stream.sys - ok
16:17:47.0338 0312  [ D4B6A94C007AF4E398E1B78A90F254EA ] C:\Windows\System32\drivers\etScan.sys
16:17:47.0338 0312  C:\Windows\System32\drivers\etScan.sys - ok
16:17:47.0353 0312  [ 1153DE2E4F5941E10C399CB5592F78A1 ] C:\Windows\System32\drivers\bthport.sys
16:17:47.0353 0312  C:\Windows\System32\drivers\bthport.sys - ok
16:17:47.0353 0312  [ C81E9413A25A439F436B1D4B6A0CF9E9 ] C:\Windows\System32\drivers\BTHUSB.SYS
16:17:47.0353 0312  C:\Windows\System32\drivers\BTHUSB.SYS - ok
16:17:47.0353 0312  [ B1E2002903F813636C9739531C10C797 ] C:\Windows\System32\drivers\ATSwpWDF.sys
16:17:47.0353 0312  C:\Windows\System32\drivers\ATSwpWDF.sys - ok
16:17:47.0369 0312  [ 2865A5C8E98C70C605F417908CEBB3A4 ] C:\Windows\System32\drivers\bthenum.sys
16:17:47.0369 0312  C:\Windows\System32\drivers\bthenum.sys - ok
16:17:47.0369 0312  [ AD1872E5829E8A2C3B5B4B641C3EAB0E ] C:\Windows\System32\drivers\bthpan.sys
16:17:47.0369 0312  C:\Windows\System32\drivers\bthpan.sys - ok
16:17:47.0369 0312  [ CB928D9E6DAF51879DD6BA8D02F01321 ] C:\Windows\System32\drivers\rfcomm.sys
16:17:47.0369 0312  C:\Windows\System32\drivers\rfcomm.sys - ok
16:17:47.0384 0312  [ 79D10964DE86B292320E9DFE02282A23 ] C:\Windows\System32\drivers\monitor.sys
16:17:47.0384 0312  C:\Windows\System32\drivers\monitor.sys - ok
16:17:47.0384 0312  [ 364455805E64882844EE9ACB72522830 ] C:\Windows\System32\sxssrv.dll
16:17:47.0384 0312  C:\Windows\System32\sxssrv.dll - ok
16:17:47.0384 0312  [ 7C76B61A5E1EF5D1FA554CF134100F18 ] C:\Windows\System32\tsddd.dll
16:17:47.0384 0312  C:\Windows\System32\tsddd.dll - ok
16:17:47.0384 0312  [ B5C5DCAD3899512020D135600129D665 ] C:\Windows\System32\wininit.exe
16:17:47.0384 0312  C:\Windows\System32\wininit.exe - ok
16:17:47.0400 0312  [ 357B990A4249D7F7485B230C0CC8825A ] C:\Windows\System32\KBDUS.DLL
16:17:47.0400 0312  C:\Windows\System32\KBDUS.DLL - ok
16:17:47.0400 0312  [ C733D233B623B7FFCE5031E4B756EE26 ] C:\Windows\System32\profapi.dll
16:17:47.0400 0312  C:\Windows\System32\profapi.dll - ok
16:17:47.0400 0312  [ 5997D769CDB108390DCFAEBF442BF816 ] C:\Windows\System32\RpcRtRemote.dll
16:17:47.0400 0312  C:\Windows\System32\RpcRtRemote.dll - ok
16:17:47.0416 0312  [ 919001D2BB17DF06CA3F8AC16AD039F6 ] C:\Windows\System32\sxs.dll
16:17:47.0416 0312  C:\Windows\System32\sxs.dll - ok
16:17:47.0416 0312  [ 633C2C060CF857099F6C4F8D75C952B1 ] C:\Windows\System32\WlS0WndH.dll
16:17:47.0416 0312  C:\Windows\System32\WlS0WndH.dll - ok
16:17:47.0416 0312  [ F08F6FCD09F9BE94C37ACC1B344685FF ] C:\Windows\System32\cryptbase.dll
16:17:47.0416 0312  C:\Windows\System32\cryptbase.dll - ok
16:17:47.0416 0312  [ 863F793D15B4026B1A5FDECA873D4D84 ] C:\Windows\System32\apphelp.dll
16:17:47.0416 0312  C:\Windows\System32\apphelp.dll - ok
16:17:47.0431 0312  [ 8AEA9A37C1A3565A204D37C5E72AB791 ] C:\Windows\System32\lsm.exe
16:17:47.0431 0312  C:\Windows\System32\lsm.exe - ok
16:17:47.0431 0312  [ 5F1B6A9C35D3D5CA72D6D6FDEF9747D6 ] C:\Windows\System32\services.exe
16:17:47.0431 0312  C:\Windows\System32\services.exe - ok
16:17:47.0431 0312  [ 4A054C853031616D161A84BECF281F47 ] C:\Windows\System32\sspicli.dll
16:17:47.0431 0312  C:\Windows\System32\sspicli.dll - ok
16:17:47.0431 0312  [ 444430C44727B5F22B4DC17284798EBD ] C:\Windows\System32\lsasrv.dll
16:17:47.0431 0312  C:\Windows\System32\lsasrv.dll - ok
16:17:47.0447 0312  [ 81951F51E318AECC2D68559E47485CC4 ] C:\Windows\System32\lsass.exe
16:17:47.0447 0312  C:\Windows\System32\lsass.exe - ok
16:17:47.0447 0312  [ 250AA41DE690561AF1282D598914564C ] C:\Windows\System32\scesrv.dll
16:17:47.0447 0312  C:\Windows\System32\scesrv.dll - ok
16:17:47.0447 0312  [ 3369D021265E369D57317D61FA86DD79 ] C:\Windows\System32\scext.dll
16:17:47.0447 0312  C:\Windows\System32\scext.dll - ok
16:17:47.0462 0312  [ 69678722290C78D5D7198C60B5A4E3E8 ] C:\Windows\System32\secur32.dll
16:17:47.0462 0312  C:\Windows\System32\secur32.dll - ok
16:17:47.0462 0312  [ E361AE3010EA4B3123DAB5BDAE21798F ] C:\Windows\System32\sspisrv.dll
16:17:47.0462 0312  C:\Windows\System32\sspisrv.dll - ok
16:17:47.0462 0312  [ BA51FFE170C5B3AE8EC4F5BD2581A29E ] C:\Windows\System32\sysntfy.dll
16:17:47.0462 0312  C:\Windows\System32\sysntfy.dll - ok
16:17:47.0462 0312  [ D412B1B72C5AB020218E9A047D90CA05 ] C:\Windows\System32\wmsgapi.dll
16:17:47.0462 0312  C:\Windows\System32\wmsgapi.dll - ok
16:17:47.0478 0312  [ 5CCDCD40E732D54E0F7451AC66AC1C87 ] C:\Windows\System32\srvcli.dll
16:17:47.0478 0312  C:\Windows\System32\srvcli.dll - ok
16:17:47.0478 0312  [ 9CE253214ACAA5A7D323327D2055EFAA ] C:\Windows\System32\drivers\TsUsbFlt.sys
16:17:47.0478 0312  C:\Windows\System32\drivers\TsUsbFlt.sys - ok
16:17:47.0478 0312  [ 245F4691314F42D4D1BC06442F0B2086 ] C:\Windows\System32\samsrv.dll
16:17:47.0478 0312  C:\Windows\System32\samsrv.dll - ok
16:17:47.0494 0312  [ 1128637CAD49A8E3C8B5FA5D0A061525 ] C:\Windows\System32\cryptdll.dll
16:17:47.0494 0312  C:\Windows\System32\cryptdll.dll - ok
16:17:47.0494 0312  [ 82C089EA2A3EEFADF3588EA71E8BDADA ] C:\Windows\System32\wevtapi.dll
16:17:47.0494 0312  C:\Windows\System32\wevtapi.dll - ok
16:17:47.0494 0312  [ FB4EB9352B7D698E6B3C2AA2ED724DAD ] C:\Windows\System32\authz.dll
16:17:47.0494 0312  C:\Windows\System32\authz.dll - ok
16:17:47.0494 0312  [ FC7650224790CAE75A5E9231961FDEC5 ] C:\Windows\System32\bcrypt.dll
16:17:47.0494 0312  C:\Windows\System32\bcrypt.dll - ok
16:17:47.0509 0312  [ 50BA656134F78AF64E4DD3C8B6FEFD7E ] C:\Windows\System32\cngaudit.dll
16:17:47.0509 0312  C:\Windows\System32\cngaudit.dll - ok
16:17:47.0509 0312  [ BF6D6ED5FADCEEE885BD0144ECF1BA27 ] C:\Windows\System32\ncrypt.dll
16:17:47.0509 0312  C:\Windows\System32\ncrypt.dll - ok
16:17:47.0509 0312  [ C90878913DF3DC504790282043DB5F4C ] C:\Windows\System32\msprivs.dll
16:17:47.0509 0312  C:\Windows\System32\msprivs.dll - ok
16:17:47.0526 0312  [ E343CABBD8D600ABAF3F11625D33B3D0 ] C:\Windows\System32\netjoin.dll
16:17:47.0526 0312  C:\Windows\System32\netjoin.dll - ok
16:17:47.0526 0312  [ BDA0B954A30498B5A7EDC6204CBA07ED ] C:\Windows\System32\kerberos.dll
16:17:47.0526 0312  C:\Windows\System32\kerberos.dll - ok
16:17:47.0526 0312  [ 6DCFAEC6D1334AA6CDF8961DB4633CBF ] C:\Windows\System32\negoexts.dll
16:17:47.0526 0312  C:\Windows\System32\negoexts.dll - ok
16:17:47.0541 0312  [ 7321F18D1F820612ED0E9F2D4B578A7E ] C:\Windows\System32\cryptsp.dll
16:17:47.0541 0312  C:\Windows\System32\cryptsp.dll - ok
16:17:47.0541 0312  [ 8999B8631C7FD9F7F9EC3CAFD953BA24 ] C:\Windows\System32\mswsock.dll
16:17:47.0541 0312  C:\Windows\System32\mswsock.dll - ok
16:17:47.0541 0312  [ CAEF9CD6C10B1017E2C298D849CD31DB ] C:\Windows\System32\cdd.dll
16:17:47.0541 0312  C:\Windows\System32\cdd.dll - ok
16:17:47.0541 0312  [ 4C1E16B9A53102C8D6FBA587CBCB95DE ] C:\Windows\System32\msv1_0.dll
16:17:47.0541 0312  C:\Windows\System32\msv1_0.dll - ok
16:17:47.0557 0312  [ C1809B9907ADEDAF16F50C894100883B ] C:\Windows\System32\netlogon.dll
16:17:47.0557 0312  C:\Windows\System32\netlogon.dll - ok
16:17:47.0557 0312  [ 73E8667A19FEEDD856DF2695E9E511D4 ] C:\Windows\System32\wship6.dll
16:17:47.0557 0312  C:\Windows\System32\wship6.dll - ok
16:17:47.0557 0312  [ B40420876B9288E0A1C8CCA8A84E5DC9 ] C:\Windows\System32\dnsapi.dll
16:17:47.0557 0312  C:\Windows\System32\dnsapi.dll - ok
16:17:47.0573 0312  [ 8EA53101FF2B15BDFF934B62A8FB326D ] C:\Windows\System32\logoncli.dll
16:17:47.0573 0312  C:\Windows\System32\logoncli.dll - ok
16:17:47.0573 0312  [ AF78F66116814FDD6677CEBD73035CDD ] C:\Windows\System32\schannel.dll
16:17:47.0573 0312  C:\Windows\System32\schannel.dll - ok
16:17:47.0573 0312  [ 0450CF487ECD8A67B56F59F9A96D024D ] C:\Windows\System32\wdigest.dll
16:17:47.0573 0312  C:\Windows\System32\wdigest.dll - ok
16:17:47.0573 0312  [ E8449FE262D7406BCB2AC2A45C53EC5F ] C:\Windows\System32\bcryptprimitives.dll
16:17:47.0573 0312  C:\Windows\System32\bcryptprimitives.dll - ok
16:17:47.0588 0312  [ 37CC990D4E2CDFAE12AC47F6B620FC13 ] C:\Windows\System32\pku2u.dll
16:17:47.0588 0312  C:\Windows\System32\pku2u.dll - ok
16:17:47.0588 0312  [ ED8EC63F7522DF4852147C84EC62C36A ] C:\Windows\System32\rsaenh.dll
16:17:47.0588 0312  C:\Windows\System32\rsaenh.dll - ok
16:17:47.0588 0312  [ D29E45078CF4020CE0AAC82EC652D1EA ] C:\Windows\System32\TSpkg.dll
16:17:47.0588 0312  C:\Windows\System32\TSpkg.dll - ok
16:17:47.0588 0312  [ 4E5FE39C1076D115EC8BFCFE14D75B80 ] C:\Windows\System32\credssp.dll
16:17:47.0604 0312  C:\Windows\System32\credssp.dll - ok
16:17:47.0604 0312  [ 91F434FF6606ED9BDC6A05D651B69553 ] C:\Windows\System32\efslsaext.dll
16:17:47.0604 0312  C:\Windows\System32\efslsaext.dll - ok
16:17:47.0604 0312  [ 8124944EC89D6A1815E4E53F5B96AAF4 ] C:\Windows\System32\scecli.dll
16:17:47.0604 0312  C:\Windows\System32\scecli.dll - ok
16:17:47.0604 0312  [ 7222995615BF93B628DCEA4BD6CCACF7 ] C:\Windows\System32\ubpm.dll
16:17:47.0604 0312  C:\Windows\System32\ubpm.dll - ok
16:17:47.0619 0312  [ 418E881201583A3039D81F43E39E6C78 ] C:\Windows\System32\winsta.dll
16:17:47.0619 0312  C:\Windows\System32\winsta.dll - ok
16:17:47.0619 0312  [ FD07F21E0A19C27ED4E1EEC2B07452B3 ] C:\Windows\System32\devrtl.dll
16:17:47.0619 0312  C:\Windows\System32\devrtl.dll - ok
16:17:47.0619 0312  [ 4BDBBE5E4208022DD794F7EEEB0F7366 ] C:\Windows\System32\SPInf.dll
16:17:47.0619 0312  C:\Windows\System32\SPInf.dll - ok
16:17:47.0619 0312  [ 54A47F6B5E09A77E61649109C6A08866 ] C:\Windows\System32\svchost.exe
16:17:47.0619 0312  C:\Windows\System32\svchost.exe - ok
16:17:47.0635 0312  [ EC7BC28D207DA09E79B3E9FAF8B232CA ] C:\Windows\System32\umpnpmgr.dll
16:17:47.0635 0312  C:\Windows\System32\umpnpmgr.dll - ok
16:17:47.0635 0312  [ D15618A0FF8DBC2C5BF3726BACC75A0B ] C:\Windows\System32\userenv.dll
16:17:47.0635 0312  C:\Windows\System32\userenv.dll - ok
16:17:47.0635 0312  [ 1097F3035BAF46CED8B332B3564C5108 ] C:\Windows\System32\gpapi.dll
16:17:47.0635 0312  C:\Windows\System32\gpapi.dll - ok
16:17:47.0651 0312  [ 5893EBDCE371174AC89ECD7731DD6D77 ] C:\Windows\System32\pcwum.dll
16:17:47.0651 0312  C:\Windows\System32\pcwum.dll - ok
16:17:47.0651 0312  [ F87D30E72E03D579A5199CCB3831D6EA ] C:\Windows\System32\umpo.dll
16:17:47.0651 0312  C:\Windows\System32\umpo.dll - ok
16:17:47.0666 0312  [ 08DFDBD2FD4EA951DC46B1C7661ED35A ] C:\Windows\System32\powrprof.dll
16:17:47.0666 0312  C:\Windows\System32\powrprof.dll - ok
16:17:47.0666 0312  [ 6703E366CC18D3B6E534F5CF7DF39CEE ] C:\Windows\System32\drivers\luafv.sys
16:17:47.0666 0312  C:\Windows\System32\drivers\luafv.sys - ok
16:17:47.0682 0312  [ DE6ED95AEF259979B2830450072A627B ] C:\Windows\System32\drivers\aswFsBlk.sys
16:17:47.0682 0312  C:\Windows\System32\drivers\aswFsBlk.sys - ok
16:17:47.0682 0312  [ 62F9DCEC95F91B8E0203E85D344A7E65 ] C:\Windows\System32\drivers\aswMonFlt.sys
16:17:47.0682 0312  C:\Windows\System32\drivers\aswMonFlt.sys - ok
16:17:47.0697 0312  [ 6DF4CC671CD9704840C5522627F3ED43 ] C:\Windows\System32\nvvsvc.exe
16:17:47.0697 0312  C:\Windows\System32\nvvsvc.exe - ok
16:17:47.0697 0312  [ 7660F01D3B38ACA1747E397D21D790AF ] C:\Windows\System32\rpcss.dll
16:17:47.0697 0312  C:\Windows\System32\rpcss.dll - ok
16:17:47.0697 0312  [ 78D072F35BC45D9E4E1B61895C152234 ] C:\Windows\System32\RpcEpMap.dll
16:17:47.0697 0312  C:\Windows\System32\RpcEpMap.dll - ok
16:17:47.0713 0312  [ 81F08948A0F1475894C99D4D19A158A8 ] C:\Windows\System32\wshqos.dll
16:17:47.0713 0312  C:\Windows\System32\wshqos.dll - ok
16:17:47.0729 0312  [ EE5C8E27C37B79CB54A2FCEEED2DC262 ] C:\Windows\System32\WSHTCPIP.DLL
16:17:47.0729 0312  C:\Windows\System32\WSHTCPIP.DLL - ok
16:17:47.0729 0312  [ 3F50200237961034FACE602373838980 ] C:\Windows\System32\FirewallAPI.dll
16:17:47.0729 0312  C:\Windows\System32\FirewallAPI.dll - ok
16:17:47.0744 0312  [ 702254574E7E52052DE39408457B7149 ] C:\Windows\System32\version.dll
16:17:47.0744 0312  C:\Windows\System32\version.dll - ok
16:17:47.0744 0312  [ 241E015DD809CFB23242F890B1FC575B ] C:\Windows\System32\wevtsvc.dll
16:17:47.0744 0312  C:\Windows\System32\wevtsvc.dll - ok
16:17:47.0744 0312  [ AC8C80DC4F1A6E60C9A762C1799F0B39 ] C:\Windows\System32\adtschema.dll
16:17:47.0744 0312  C:\Windows\System32\adtschema.dll - ok
16:17:47.0760 0312  [ CE3B4E731638D2EF62FCB419BE0D39F0 ] C:\Windows\System32\audiosrv.dll
16:17:47.0760 0312  C:\Windows\System32\audiosrv.dll - ok
16:17:47.0760 0312  [ CADEFAC453040E370A1BDFF3973BE00D ] C:\Windows\System32\profsvc.dll
16:17:47.0760 0312  C:\Windows\System32\profsvc.dll - ok
16:17:47.0760 0312  [ 139D3AB6AA920C34C50CBFFB9EB7D222 ] C:\Windows\System32\avrt.dll
16:17:47.0760 0312  C:\Windows\System32\avrt.dll - ok
16:17:47.0775 0312  [ 146B6F43A673379A3C670E86D89BE5EA ] C:\Windows\System32\mmcss.dll
16:17:47.0775 0312  C:\Windows\System32\mmcss.dll - ok
16:17:47.0775 0312  [ 243974EC02F7AE49E4179C54624143AB ] C:\Windows\System32\MMDevAPI.dll
16:17:47.0775 0312  C:\Windows\System32\MMDevAPI.dll - ok
16:17:47.0791 0312  [ 12C45E3CB6D65F73209549E2D02ECA7A ] C:\Windows\System32\propsys.dll
16:17:47.0791 0312  C:\Windows\System32\propsys.dll - ok
16:17:47.0791 0312  [ 8C338238C16777A802D6A9211EB2BA50 ] C:\Windows\System32\netprofm.dll
16:17:47.0791 0312  C:\Windows\System32\netprofm.dll - ok
16:17:47.0791 0312  [ 16935C98FF639D185086A3529B1F2067 ] C:\Windows\System32\wlansvc.dll
16:17:47.0791 0312  C:\Windows\System32\wlansvc.dll - ok
16:17:47.0807 0312  [ 5826854E4E420E29F59C2865F0FA562F ] C:\Program Files\Windows Defender\MpEvMsg.dll
16:17:47.0807 0312  C:\Program Files\Windows Defender\MpEvMsg.dll - ok
16:17:47.0807 0312  [ 9835584E999D25004E1EE8E5F3E3B881 ] C:\Windows\System32\MPSSVC.dll
16:17:47.0807 0312  C:\Windows\System32\MPSSVC.dll - ok
16:17:47.0807 0312  [ 8B0B4C5927A333A05513791758350DC4 ] C:\Windows\System32\microsoft-windows-kernel-power-events.dll
16:17:47.0807 0312  C:\Windows\System32\microsoft-windows-kernel-power-events.dll - ok
16:17:47.0822 0312  [ 7520EC808E0C35E0EE6F841294316653 ] C:\Windows\System32\drivers\fltMgr.sys
16:17:47.0822 0312  C:\Windows\System32\drivers\fltMgr.sys - ok
16:17:47.0822 0312  [ D93A937A2A9D2CBC06B3A615A197011F ] C:\Windows\System32\PSHED.DLL
16:17:47.0822 0312  C:\Windows\System32\PSHED.DLL - ok
16:17:47.0838 0312  [ F68194F74350D4A2ADE98961E33F884C ] C:\Windows\System32\audiodg.exe
16:17:47.0838 0312  C:\Windows\System32\audiodg.exe - ok
16:17:47.0838 0312  [ 1F5497D7D3D79C7BF0AB0C8B4C5BFE6E ] C:\Windows\System32\microsoft-windows-kernel-processor-power-events.dll
16:17:47.0838 0312  C:\Windows\System32\microsoft-windows-kernel-processor-power-events.dll - ok
16:17:47.0853 0312  [ 3FD15B4611D9BDA3F8013548C0ECAECA ] C:\Windows\System32\ntmarta.dll
16:17:47.0853 0312  C:\Windows\System32\ntmarta.dll - ok
16:17:47.0853 0312  [ 15F93B37F6801943360D9EB42485D5D3 ] C:\Windows\System32\cscsvc.dll
16:17:47.0853 0312  C:\Windows\System32\cscsvc.dll - ok
16:17:47.0853 0312  [ F10E5311E5093FA3C00FF88C54C32FCA ] C:\Windows\System32\atl.dll
16:17:47.0853 0312  C:\Windows\System32\atl.dll - ok
16:17:47.0869 0312  [ E897EAF5ED6BA41E081060C9B447A673 ] C:\Windows\System32\gpsvc.dll
16:17:47.0869 0312  C:\Windows\System32\gpsvc.dll - ok
16:17:47.0869 0312  [ 772F44012DBE49DE894976AE2259A659 ] C:\Windows\System32\PeerDist.dll
16:17:47.0869 0312  C:\Windows\System32\PeerDist.dll - ok
16:17:47.0869 0312  [ 50E0DD0A5B8D8BC353578F2F73926697 ] C:\Windows\System32\nlaapi.dll
16:17:47.0869 0312  C:\Windows\System32\nlaapi.dll - ok
16:17:47.0885 0312  [ 544EFF88AC6C85DF5A4D6F18DFE08CFC ] C:\Windows\System32\taskschd.dll
16:17:47.0885 0312  C:\Windows\System32\taskschd.dll - ok
16:17:47.0885 0312  [ 42FB6AFD6B79D9FE07381609172E7CA4 ] C:\Windows\System32\themeservice.dll
16:17:47.0885 0312  C:\Windows\System32\themeservice.dll - ok
16:17:47.0885 0312  [ 2F040CF0613A6D64DCBBA9EE81F5A5AE ] C:\Windows\System32\dsrole.dll
16:17:47.0885 0312  C:\Windows\System32\dsrole.dll - ok
16:17:47.0900 0312  [ C5A99A4C0DC9F0F5A95BA0C83D30A549 ] C:\Windows\System32\mstask.dll
16:17:47.0900 0312  C:\Windows\System32\mstask.dll - ok
16:17:47.0900 0312  [ 8B74CEC6980D4816B0037AE9A27E538F ] C:\Windows\System32\slc.dll
16:17:47.0900 0312  C:\Windows\System32\slc.dll - ok
16:17:47.0900 0312  [ F6916EFC29D9953D5D0DF06882AE8E16 ] C:\Windows\System32\es.dll
16:17:47.0900 0312  C:\Windows\System32\es.dll - ok
16:17:47.0916 0312  [ 352B3DC62A0D259A82A052238425C872 ] C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2\comctl32.dll
16:17:47.0916 0312  C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2\comctl32.dll - ok
16:17:47.0916 0312  [ 808D8A8B2A3074002852BC856D419576 ] C:\Windows\System32\comres.dll
16:17:47.0916 0312  C:\Windows\System32\comres.dll - ok
16:17:47.0931 0312  [ DCB7FCDCC97F87360F75D77425B81737 ] C:\Windows\System32\Sens.dll
16:17:47.0931 0312  C:\Windows\System32\Sens.dll - ok
16:17:47.0931 0312  [ F7611EC07349979DA9B0AE1F18CCC7A6 ] C:\Windows\System32\drivers\lltdio.sys
16:17:47.0931 0312  C:\Windows\System32\drivers\lltdio.sys - ok
16:17:47.0931 0312  [ 081E6E1C91AEC36758902A9F727CD23C ] C:\Windows\System32\uxsms.dll
16:17:47.0931 0312  C:\Windows\System32\uxsms.dll - ok
16:17:47.0947 0312  [ 6A6B2EE4565A178035BE2A4FF6F2C968 ] C:\Windows\System32\wtsapi32.dll
16:17:47.0947 0312  C:\Windows\System32\wtsapi32.dll - ok
16:17:47.0947 0312  [ D8A65DAFB3EB41CBB622745676FCD072 ] C:\Windows\System32\drivers\ndisuio.sys
16:17:47.0947 0312  C:\Windows\System32\drivers\ndisuio.sys - ok
16:17:47.0947 0312  [ 26384429FCD85D83746F63E798AB1480 ] C:\Windows\System32\drivers\nwifi.sys
16:17:47.0947 0312  C:\Windows\System32\drivers\nwifi.sys - ok
16:17:47.0963 0312  [ E9E01EB683C132F7FA27CD607B8A2B63 ] C:\Windows\System32\dhcpcore.dll
16:17:47.0963 0312  C:\Windows\System32\dhcpcore.dll - ok
16:17:47.0963 0312  [ 032B0D36AD92B582D869879F5AF5B928 ] C:\Windows\System32\drivers\rspndr.sys
16:17:47.0963 0312  C:\Windows\System32\drivers\rspndr.sys - ok
16:17:47.0978 0312  [ A90DC9ABD65DB1A8902F361103029952 ] C:\Windows\System32\IPHLPAPI.DLL
16:17:47.0978 0312  C:\Windows\System32\IPHLPAPI.DLL - ok
16:17:47.0978 0312  [ 55CA01BA19D0006C8F2639B6C045E08B ] C:\Windows\System32\lmhsvc.dll
16:17:47.0978 0312  C:\Windows\System32\lmhsvc.dll - ok
16:17:47.0994 0312  [ D2A937964199F647B1C3BC435712E5D9 ] C:\Windows\System32\nrpsrv.dll
16:17:47.0994 0312  C:\Windows\System32\nrpsrv.dll - ok
16:17:47.0994 0312  [ BA387E955E890C8A88306D9B8D06BF17 ] C:\Windows\System32\nsisvc.dll
16:17:47.0994 0312  C:\Windows\System32\nsisvc.dll - ok
16:17:48.0009 0312  [ CFF35B879D1618D42C86644C717BA947 ] C:\Windows\System32\winnsi.dll
16:17:48.0009 0312  C:\Windows\System32\winnsi.dll - ok
16:17:48.0009 0312  [ EF71BA5DF59034962B0C62314A71351A ] C:\Windows\System32\dhcpcore6.dll
16:17:48.0009 0312  C:\Windows\System32\dhcpcore6.dll - ok
16:17:48.0009 0312  [ 33EF4861F19A0736B11314AAD9AE28D0 ] C:\Windows\System32\dnsrslvr.dll
16:17:48.0009 0312  C:\Windows\System32\dnsrslvr.dll - ok
16:17:48.0009 0312  [ 8600142FA91C1B96367D3300AD0F3F3A ] C:\Windows\System32\eapsvc.dll
16:17:48.0009 0312  C:\Windows\System32\eapsvc.dll - ok
16:17:48.0025 0312  [ AF75DBA674E55221B7A055B0A4345F16 ] C:\Windows\System32\keyiso.dll
16:17:48.0025 0312  C:\Windows\System32\keyiso.dll - ok
16:17:48.0025 0312  [ 9A892B3439884C62B04718F0303A49E9 ] C:\Windows\System32\eapphost.dll
16:17:48.0025 0312  C:\Windows\System32\eapphost.dll - ok
16:17:48.0025 0312  [ 03A03A453F1AAAE0C73AAAF895321C7A ] C:\Windows\System32\FWPUCLNT.DLL
16:17:48.0025 0312  C:\Windows\System32\FWPUCLNT.DLL - ok
16:17:48.0041 0312  [ 100103C6535C66265267F5EEA5F5846E ] C:\Windows\System32\dnsext.dll
16:17:48.0041 0312  C:\Windows\System32\dnsext.dll - ok
16:17:48.0056 0312  [ D33E95C0A2754061233B58DC41F8094C ] C:\Windows\System32\umb.dll
16:17:48.0056 0312  C:\Windows\System32\umb.dll - ok
16:17:48.0072 0312  [ 3C9035085141162416A0DD34DBF3F3C1 ] C:\Windows\System32\wlanmsm.dll
16:17:48.0072 0312  C:\Windows\System32\wlanmsm.dll - ok
16:17:48.0072 0312  [ 9A85ABCE0FDD1AF8E79E731EB0B679F3 ] C:\Windows\System32\dhcpcsvc.dll
16:17:48.0072 0312  C:\Windows\System32\dhcpcsvc.dll - ok
16:17:48.0072 0312  [ 81F6C1AE23B1C493D9E996C3103915D7 ] C:\Windows\System32\dhcpcsvc6.dll
16:17:48.0072 0312  C:\Windows\System32\dhcpcsvc6.dll - ok
16:17:48.0072 0312  [ 20C06A50DFC097E134BC6FA8444CA9BC ] C:\Windows\System32\wlansec.dll
16:17:48.0072 0312  C:\Windows\System32\wlansec.dll - ok
16:17:48.0087 0312  [ F748F53FE09D21D8ECBB6421E6792024 ] C:\Windows\System32\onex.dll
16:17:48.0087 0312  C:\Windows\System32\onex.dll - ok
16:17:48.0087 0312  [ 5A5FEDDF02588B8F9FE4A95E5E7EAE97 ] C:\Windows\System32\eappcfg.dll
16:17:48.0087 0312  C:\Windows\System32\eappcfg.dll - ok
16:17:48.0103 0312  [ 666E57B6B51824D1D235F80A3DD70A13 ] C:\Windows\System32\eappprxy.dll
16:17:48.0103 0312  C:\Windows\System32\eappprxy.dll - ok
16:17:48.0103 0312  [ C1585EAA67C37A05BF6F93726FAFC069 ] C:\Windows\System32\l2gpstore.dll
16:17:48.0103 0312  C:\Windows\System32\l2gpstore.dll - ok
16:17:48.0103 0312  [ 9419ABF3163B6F0E3AD3DD2B381C879F ] C:\Windows\System32\WinSCard.dll
16:17:48.0103 0312  C:\Windows\System32\WinSCard.dll - ok
16:17:48.0119 0312  [ 1D6A771D1D702AE07919DB52C889A249 ] C:\Windows\System32\wlanutil.dll
16:17:48.0119 0312  C:\Windows\System32\wlanutil.dll - ok
16:17:48.0119 0312  [ 749F9795F01C35EEBE100A87D82B9681 ] C:\Windows\System32\wlgpclnt.dll
16:17:48.0119 0312  C:\Windows\System32\wlgpclnt.dll - ok
16:17:48.0119 0312  [ EAADD6E47ED2A7003ACE1793B98CF63F ] C:\Windows\System32\msxml6.dll
16:17:48.0119 0312  C:\Windows\System32\msxml6.dll - ok
16:17:48.0134 0312  [ 6D13E1406F50C66E2A95D97F22C47560 ] C:\Windows\System32\winlogon.exe
16:17:48.0134 0312  C:\Windows\System32\winlogon.exe - ok
16:17:48.0134 0312  [ 8FA553E9AE69808D99C164733A0F9590 ] C:\Program Files\AVAST Software\Avast\AvastSvc.exe
16:17:48.0134 0312  C:\Program Files\AVAST Software\Avast\AvastSvc.exe - ok
16:17:48.0150 0312  [ EB398DED91CFF2F425610EAA2CCF2A23 ] C:\Program Files\AVAST Software\Avast\aswCmnBS.dll
16:17:48.0150 0312  C:\Program Files\AVAST Software\Avast\aswCmnBS.dll - ok
16:17:48.0150 0312  [ 178B51198B7B46CD3C5E744474459A63 ] C:\Program Files\AVAST Software\Avast\aswCmnOS.dll
16:17:48.0150 0312  C:\Program Files\AVAST Software\Avast\aswCmnOS.dll - ok
16:17:48.0150 0312  [ BABE99A18A382A5E2F99B48E0BC3E0D4 ] C:\Program Files\AVAST Software\Avast\aswCmnIS.dll
16:17:48.0150 0312  C:\Program Files\AVAST Software\Avast\aswCmnIS.dll - ok
16:17:48.0165 0312  [ CDBE9690CF2B8409FACAD94FAC9479C9 ] C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcr90.dll
16:17:48.0165 0312  C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcr90.dll - ok
16:17:48.0165 0312  [ 1FF7E4F548C7C372C804938F0D5B36AE ] C:\Windows\System32\netcfgx.dll
16:17:48.0165 0312  C:\Windows\System32\netcfgx.dll - ok
16:17:48.0181 0312  [ 4C39358EBDD2FFCD9132A30E1EC31E16 ] C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcp90.dll
16:17:48.0181 0312  C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcp90.dll - ok
16:17:48.0181 0312  [ 55AFA63F5F2A6CED0C09E2AFE57ECA8D ] C:\Program Files\AVAST Software\Avast\ashBase.dll
16:17:48.0181 0312  C:\Program Files\AVAST Software\Avast\ashBase.dll - ok
16:17:48.0197 0312  [ C515CAEC6B3C6970007954C0250A124C ] C:\Program Files\AVAST Software\Avast\aswEngLdr.dll
16:17:48.0197 0312  C:\Program Files\AVAST Software\Avast\aswEngLdr.dll - ok
16:17:48.0197 0312  [ DF13A51A5C591887D2EC6AE64CEED0FA ] C:\Windows\System32\wsock32.dll
16:17:48.0197 0312  C:\Windows\System32\wsock32.dll - ok
16:17:48.0197 0312  [ 53223B673A3FA2F9A4D1C31C8D3F6CD8 ] C:\Windows\System32\dbghelp.dll
16:17:48.0197 0312  C:\Windows\System32\dbghelp.dll - ok
16:17:48.0212 0312  [ 3EF0D8AB08385AAB5802E773511A2E6A ] C:\Windows\System32\LogonUI.exe
16:17:48.0212 0312  C:\Windows\System32\LogonUI.exe - ok
16:17:48.0212 0312  [ B316906B4A04DD39985350D29DE31068 ] C:\Program Files\AVAST Software\Avast\1033\Base.dll
16:17:48.0212 0312  C:\Program Files\AVAST Software\Avast\1033\Base.dll - ok
16:17:48.0228 0312  [ 2FCA0D2C59A855C54BAFA22AA329DF0F ] C:\Windows\System32\netapi32.dll
16:17:48.0228 0312  C:\Windows\System32\netapi32.dll - ok
16:17:48.0228 0312  [ 20B3934DB73EABA2B49B7177873CB81F ] C:\Windows\System32\netutils.dll
16:17:48.0228 0312  C:\Windows\System32\netutils.dll - ok
16:17:48.0243 0312  [ 977C54291BFA6FEE7FF865630E51757B ] C:\Program Files\AVAST Software\Avast\ashServ.dll
16:17:48.0243 0312  C:\Program Files\AVAST Software\Avast\ashServ.dll - ok
16:17:48.0243 0312  [ 045EE3DC56B12B404DC07848D8597C66 ] C:\Program Files\AVAST Software\Avast\aswAux.dll
16:17:48.0243 0312  C:\Program Files\AVAST Software\Avast\aswAux.dll - ok
16:17:48.0243 0312  [ 465BEA35F7ED4A4A57686DEA7EA10F47 ] C:\Windows\System32\cscapi.dll
16:17:48.0243 0312  C:\Windows\System32\cscapi.dll - ok
16:17:48.0259 0312  [ 414DA952A35BF5D50192E28263B40577 ] C:\Windows\System32\shsvcs.dll
16:17:48.0259 0312  C:\Windows\System32\shsvcs.dll - ok
16:17:48.0259 0312  [ E5A4A1326A02F8E7B59E6C3270CE7202 ] C:\Windows\System32\wkscli.dll
16:17:48.0259 0312  C:\Windows\System32\wkscli.dll - ok
16:17:48.0306 0312  [ 16CE3ED063923253905341C9AF850FE7 ] C:\Program Files\AVAST Software\Avast\ashTask.dll
16:17:48.0306 0312  C:\Program Files\AVAST Software\Avast\ashTask.dll - ok
16:17:48.0306 0312  [ 4FF19AC422B7709D786DE58B385C9647 ] C:\Program Files\AVAST Software\Avast\ashTaskEx.dll
16:17:48.0306 0312  C:\Program Files\AVAST Software\Avast\ashTaskEx.dll - ok
16:17:48.0321 0312  [ FCA9CC8611654B790DD6242BF862B7F5 ] C:\Program Files\AVAST Software\Avast\aswLog.dll
16:17:48.0321 0312  C:\Program Files\AVAST Software\Avast\aswLog.dll - ok
16:17:48.0321 0312  [ 12B9869E74F9E698F550F04F8989C591 ] C:\Program Files\AVAST Software\Avast\aswProperty.dll
16:17:48.0321 0312  C:\Program Files\AVAST Software\Avast\aswProperty.dll - ok
16:17:48.0337 0312  [ F186897E0A3B9D0784041221D0265069 ] C:\Program Files\AVAST Software\Avast\aswSqLt.dll
16:17:48.0337 0312  C:\Program Files\AVAST Software\Avast\aswSqLt.dll - ok
16:17:48.0337 0312  [ CDD35C1CE1EBFE80C055691CDC8DF443 ] C:\Windows\System32\authui.dll
16:17:48.0337 0312  C:\Windows\System32\authui.dll - ok
16:17:48.0337 0312  [ 6F367A9B88CFDD46F42C1D11E5CB7964 ] C:\Program Files\AVAST Software\Avast\Aavm4h.dll
16:17:48.0337 0312  C:\Program Files\AVAST Software\Avast\Aavm4h.dll - ok
16:17:48.0353 0312  [ C2434DEA392826C1687D9BD7FA4845BC ] C:\Program Files\AVAST Software\Avast\AavmRpch.dll
16:17:48.0353 0312  C:\Program Files\AVAST Software\Avast\AavmRpch.dll - ok
16:17:48.0353 0312  [ 264B5D8F4C70A26749FF2CEDDE06BA30 ] C:\Program Files\AVAST Software\Avast\aswDld.dll
16:17:48.0353 0312  C:\Program Files\AVAST Software\Avast\aswDld.dll - ok
16:17:48.0353 0312  [ 902F670F58193A2BC30AA342B11B2C7B ] C:\Program Files\AVAST Software\Avast\aswIdle.dll
16:17:48.0353 0312  C:\Program Files\AVAST Software\Avast\aswIdle.dll - ok
16:17:48.0368 0312  [ 273FD83FC8C4E12F8C55381674F92A44 ] C:\Program Files\AVAST Software\Avast\aswStrm.dll
16:17:48.0368 0312  C:\Program Files\AVAST Software\Avast\aswStrm.dll - ok
16:17:48.0368 0312  [ 28CA821606669BB9215CE010767720FA ] C:\Windows\System32\cryptui.dll
16:17:48.0368 0312  C:\Windows\System32\cryptui.dll - ok
16:17:48.0368 0312  [ A04BB13F8A72F8B6E8B4071723E4E336 ] C:\Windows\System32\schedsvc.dll
16:17:48.0368 0312  C:\Windows\System32\schedsvc.dll - ok
16:17:48.0368 0312  [ 38B13C0DF479DBA23ECFA815159BA86E ] C:\Windows\System32\ktmw32.dll
16:17:48.0368 0312  C:\Windows\System32\ktmw32.dll - ok
16:17:48.0384 0312  [ EDF2A5E96BEC469DA3F64E9BDD386111 ] C:\Windows\System32\xmllite.dll
16:17:48.0384 0312  C:\Windows\System32\xmllite.dll - ok
16:17:48.0384 0312  [ E6D90DC604F407B3B5E0FD285E46B2A0 ] C:\Windows\System32\fveapi.dll
16:17:48.0384 0312  C:\Windows\System32\fveapi.dll - ok
16:17:48.0384 0312  [ C87F28A34B3840F4B40011D170B1A159 ] C:\Windows\System32\fvecerts.dll
16:17:48.0384 0312  C:\Windows\System32\fvecerts.dll - ok
16:17:48.0399 0312  [ EAFC149CD3BD78C443E31BB157841197 ] C:\Windows\System32\tbs.dll
16:17:48.0399 0312  C:\Windows\System32\tbs.dll - ok
16:17:48.0399 0312  [ E2D56AE1D40E3725084054CD8E9CFBB1 ] C:\Windows\System32\wiarpc.dll
16:17:48.0399 0312  C:\Windows\System32\wiarpc.dll - ok
16:17:48.0399 0312  [ F14A9B1778376D0B1788E402AC1F831A ] C:\Windows\System32\shacct.dll
16:17:48.0399 0312  C:\Windows\System32\shacct.dll - ok
16:17:48.0399 0312  [ C30A3E5DEEEBA22E782AC54C5AF5F352 ] C:\Windows\System32\samlib.dll
16:17:48.0399 0312  C:\Windows\System32\samlib.dll - ok
16:17:48.0415 0312  [ 8258362DDB18B644A82D8B5061AD9426 ] C:\Windows\System32\wscisvif.dll
16:17:48.0415 0312  C:\Windows\System32\wscisvif.dll - ok
16:17:48.0415 0312  [ 63BFDF555DA2075A77D677829C3CCCD0 ] C:\Windows\System32\uxtheme.dll
16:17:48.0415 0312  C:\Windows\System32\uxtheme.dll - ok
16:17:48.0415 0312  [ A8CDF3768604FF95B54669E20053D569 ] C:\Windows\System32\wscapi.dll
16:17:48.0415 0312  C:\Windows\System32\wscapi.dll - ok
16:17:48.0431 0312  [ 7717F84F483002815490033BF069DABD ] C:\Windows\winsxs\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.17825_none_72d273598668a06b\GdiPlus.dll
16:17:48.0431 0312  C:\Windows\winsxs\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.17825_none_72d273598668a06b\GdiPlus.dll - ok
16:17:48.0431 0312  [ EE06B85BC69F18826302348A2AD089E0 ] C:\Windows\System32\dui70.dll
16:17:48.0431 0312  C:\Windows\System32\dui70.dll - ok
16:17:48.0431 0312  [ 1C3E8371377E988B683797A132EFFE1B ] C:\Windows\System32\taskcomp.dll
16:17:48.0431 0312  C:\Windows\System32\taskcomp.dll - ok
16:17:48.0446 0312  [ 6E1F8165C365D35C8E3C045AF0CDD481 ] C:\Windows\System32\duser.dll
16:17:48.0446 0312  C:\Windows\System32\duser.dll - ok
16:17:48.0446 0312  [ 2CFA4569350B7F84F815E9EC34E85766 ] C:\Windows\System32\SndVolSSO.dll
16:17:48.0446 0312  C:\Windows\System32\SndVolSSO.dll - ok
16:17:48.0446 0312  [ 871917B07A141BFF43D76D8844D48106 ] C:\Windows\System32\drivers\http.sys
16:17:48.0446 0312  C:\Windows\System32\drivers\http.sys - ok
16:17:48.0462 0312  [ 63DF770DF74ACB370EF5A16727069AAF ] C:\Windows\System32\hid.dll
16:17:48.0462 0312  C:\Windows\System32\hid.dll - ok
16:17:48.0462 0312  [ 39C5F32747B3414D1BB216FDB1DEFC58 ] C:\Windows\System32\dwmapi.dll
16:17:48.0462 0312  C:\Windows\System32\dwmapi.dll - ok
16:17:48.0462 0312  [ 9AEA093B8F9C37CF45538382CABA2475 ] C:\Windows\System32\spoolsv.exe
16:17:48.0462 0312  C:\Windows\System32\spoolsv.exe - ok
16:17:48.0477 0312  [ 399DA98E626257975EC87192838FAB9F ] C:\Program Files\AVAST Software\Avast\defs\13031000\aswEngin.dll
16:17:48.0477 0312  C:\Program Files\AVAST Software\Avast\defs\13031000\aswEngin.dll - ok
16:17:48.0477 0312  [ 1DB71A41DAEE6B3F8CD0DDA8209FA2D5 ] C:\Windows\System32\WindowsCodecs.dll
16:17:48.0477 0312  C:\Windows\System32\WindowsCodecs.dll - ok
16:17:48.0477 0312  [ E479DDDD960DCCD8B5338B6E0F34AA97 ] C:\Program Files\AVAST Software\Avast\defs\13031000\aswCmnIS.dll
16:17:48.0477 0312  C:\Program Files\AVAST Software\Avast\defs\13031000\aswCmnIS.dll - ok
16:17:48.0493 0312  [ 326C7F76A29897A892AA7726E91C1C67 ] C:\Windows\System32\winbrand.dll
16:17:48.0493 0312  C:\Windows\System32\winbrand.dll - ok
16:17:48.0555 0312  [ 65BF13016A3C22775F3E17591AE5268A ] C:\Windows\System32\VaultCredProvider.dll
16:17:48.0555 0312  C:\Windows\System32\VaultCredProvider.dll - ok
16:17:48.0571 0312  [ 1E2BAC209D184BB851E1A187D8A29136 ] C:\Windows\System32\BFE.DLL
16:17:48.0571 0312  C:\Windows\System32\BFE.DLL - ok
16:17:48.0571 0312  [ 3E4604CDB52F5E242C6E7D373160A684 ] C:\Program Files\AVAST Software\Avast\defs\13031000\aswCmnOS.dll
16:17:48.0571 0312  C:\Program Files\AVAST Software\Avast\defs\13031000\aswCmnOS.dll - ok
16:17:48.0618 0312  [ 05BF975CA428E04B462FB90841B37C95 ] C:\Windows\System32\SmartcardCredentialProvider.dll
16:17:48.0618 0312  C:\Windows\System32\SmartcardCredentialProvider.dll - ok
16:17:48.0665 0312  [ E59F08ED9D2A128CE436BBFC232247F6 ] C:\Windows\System32\BioCredProv.dll
16:17:48.0665 0312  C:\Windows\System32\BioCredProv.dll - ok
16:17:48.0680 0312  [ 14AB2136375A0E7F2B8F69618F749C26 ] C:\Program Files\AVAST Software\Avast\defs\13031000\aswCmnBS.dll
16:17:48.0680 0312  C:\Program Files\AVAST Software\Avast\defs\13031000\aswCmnBS.dll - ok
16:17:48.0680 0312  [ 108C2CFA5527458C096A699929ECBD80 ] C:\Windows\System32\credui.dll
16:17:48.0680 0312  C:\Windows\System32\credui.dll - ok
16:17:48.0696 0312  [ 3FAD263CE1E2A6FFF40D00043B2275E3 ] C:\Windows\System32\winbio.dll
16:17:48.0696 0312  C:\Windows\System32\winbio.dll - ok
16:17:48.0711 0312  [ 8F2DA3028D5FCBD1A060A3DE64CD6506 ] C:\Windows\System32\drivers\bowser.sys
16:17:48.0711 0312  C:\Windows\System32\drivers\bowser.sys - ok
16:17:48.0711 0312  [ AD2723A7B53DD1AACAE6AD8C0BFBF4D0 ] C:\Windows\System32\drivers\mpsdrv.sys
16:17:48.0711 0312  C:\Windows\System32\drivers\mpsdrv.sys - ok
16:17:48.0711 0312  [ 5D16C921E3671636C0EBA3BBAAC5FD25 ] C:\Windows\System32\drivers\mrxsmb.sys
16:17:48.0711 0312  C:\Windows\System32\drivers\mrxsmb.sys - ok
16:17:48.0727 0312  [ 6D17A4791ACA19328C685D256349FEFC ] C:\Windows\System32\drivers\mrxsmb10.sys
16:17:48.0727 0312  C:\Windows\System32\drivers\mrxsmb10.sys - ok
16:17:48.0727 0312  [ 019C372B1A9DA73A22D0D35A4D40F5C9 ] C:\Windows\System32\wfapigp.dll
16:17:48.0727 0312  C:\Windows\System32\wfapigp.dll - ok
16:17:48.0743 0312  [ 6D8CACF3B1B54943EFCF420C2D667B37 ] C:\Windows\System32\certCredProvider.dll
16:17:48.0743 0312  C:\Windows\System32\certCredProvider.dll - ok
16:17:48.0743 0312  [ 68ECCA523ED760AAFC03C5D587569859 ] C:\Windows\System32\samcli.dll
16:17:48.0743 0312  C:\Windows\System32\samcli.dll - ok
16:17:48.0743 0312  [ 36B8D5903CEEF0AA42A1EE002BD27FF1 ] C:\Windows\System32\vaultcli.dll
16:17:48.0743 0312  C:\Windows\System32\vaultcli.dll - ok
16:17:48.0758 0312  [ B81F204D146000BE76651A50670A5E9E ] C:\Windows\System32\drivers\mrxsmb20.sys
16:17:48.0758 0312  C:\Windows\System32\drivers\mrxsmb20.sys - ok
16:17:48.0758 0312  [ 7F8678C59F188528D60104E697C2361E ] C:\Windows\System32\mscms.dll
16:17:48.0758 0312  C:\Windows\System32\mscms.dll - ok
16:17:48.0758 0312  [ 58405E4F68BA8E4057C6E914F326ABA2 ] C:\Windows\System32\wkssvc.dll
16:17:48.0758 0312  C:\Windows\System32\wkssvc.dll - ok
16:17:48.0774 0312  [ 2EA877ED5DD9713C5AC74E8EA7348D14 ] C:\Windows\System32\drivers\parport.sys
16:17:48.0774 0312  C:\Windows\System32\drivers\parport.sys - ok
16:17:48.0774 0312  [ 4FE5C6D40664AE07BE5105874357D2ED ] C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
16:17:48.0774 0312  C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe - ok
16:17:48.0805 0312  [ FFE4BEC5C187C426A17AE76A773063A6 ] C:\Windows\System32\rasplap.dll
16:17:48.0805 0312  C:\Windows\System32\rasplap.dll - ok
16:17:48.0821 0312  [ 358AB7956D3160000726574083DFC8A6 ] C:\Windows\System32\pcasvc.dll
16:17:48.0821 0312  C:\Windows\System32\pcasvc.dll - ok
16:17:48.0821 0312  [ 839F96DBAAFD3353E0B248A5E0BD2A51 ] C:\Windows\System32\rasapi32.dll
16:17:48.0821 0312  C:\Windows\System32\rasapi32.dll - ok
16:17:48.0836 0312  [ 0B3595A4FF0B36D68E5FC67FD7D70FDC ] C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcp80.dll
16:17:48.0836 0312  C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcp80.dll - ok
16:17:48.0836 0312  [ FFA7172354B9256DBB2CDD75F16F33FE ] C:\Windows\System32\rasman.dll
16:17:48.0836 0312  C:\Windows\System32\rasman.dll - ok
16:17:48.0836 0312  [ 0915C4DB6DBC3BB9E11B7ECBBE4B7159 ] C:\Windows\System32\rtutils.dll
16:17:48.0836 0312  C:\Windows\System32\rtutils.dll - ok
16:17:48.0852 0312  [ A12829E9974F57E9B5DBFEA7C93190F6 ] C:\Windows\System32\UXInit.dll
16:17:48.0852 0312  C:\Windows\System32\UXInit.dll - ok
16:17:48.0867 0312  [ 8E01332CC4B68BC6B5B7EFFE374442AA ] C:\Windows\System32\oleacc.dll
16:17:48.0867 0312  C:\Windows\System32\oleacc.dll - ok
16:17:48.0867 0312  [ 6A984831644ECA1A33FFEAE4126F4F37 ] C:\Windows\System32\snmptrap.exe
16:17:48.0867 0312  C:\Windows\System32\snmptrap.exe - ok
16:17:48.0867 0312  [ C9564CF4976E7E96B4052737AA2492B4 ] C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcr80.dll
16:17:48.0867 0312  C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcr80.dll - ok
16:17:48.0883 0312  [ FD049C25A168D3DE310D9207B7B6367B ] C:\Windows\System32\UIAutomationCore.dll
16:17:48.0883 0312  C:\Windows\System32\UIAutomationCore.dll - ok
16:17:48.0883 0312  [ 80942B137077DA7D2375B3041DA9127F ] C:\Program Files\Common Files\Apple\Apple Application Support\AppleVersions.dll
16:17:48.0883 0312  C:\Program Files\Common Files\Apple\Apple Application Support\AppleVersions.dll - ok
16:17:48.0899 0312  [ A86F5616EACB7155998011CEFFFB52F6 ] C:\Windows\System32\RdpGroupPolicyExtension.dll
16:17:48.0899 0312  C:\Windows\System32\RdpGroupPolicyExtension.dll - ok
16:17:48.0899 0312  [ C3BEA4CDBE9805415372CA9757FD8149 ] C:\Program Files\AVAST Software\Avast\defs\13031000\aswScan.dll
16:17:48.0899 0312  C:\Program Files\AVAST Software\Avast\defs\13031000\aswScan.dll - ok
16:17:48.0914 0312  [ A2F17346CC5C502D4E29EF986BD17D34 ] C:\Windows\System32\PeerDistSh.dll
16:17:48.0914 0312  C:\Windows\System32\PeerDistSh.dll - ok
16:17:48.0914 0312  [ 64894527838C86454E2F378FF39FA336 ] C:\Program Files\Common Files\Apple\Apple Application Support\YSCrashDump.dll
16:17:48.0914 0312  C:\Program Files\Common Files\Apple\Apple Application Support\YSCrashDump.dll - ok
16:17:48.0930 0312  [ DBC02D918FFF1CAD628ACBE0C0EAA8E8 ] C:\Windows\System32\provsvc.dll
16:17:48.0930 0312  C:\Windows\System32\provsvc.dll - ok
16:17:48.0930 0312  [ EF8CD3C64EE9C08980D6D06CCCE46C68 ] C:\Program Files\Common Files\Apple\Apple Application Support\CoreFoundation.dll
16:17:48.0930 0312  C:\Program Files\Common Files\Apple\Apple Application Support\CoreFoundation.dll - ok
16:17:48.0930 0312  [ D318F23BE45D5E3A107469EB64815B50 ] C:\Windows\System32\sstpsvc.dll
16:17:48.0930 0312  C:\Windows\System32\sstpsvc.dll - ok
16:17:48.0945 0312  [ D300C18105CE7E6720243AD425EE3F15 ] C:\Windows\System32\nvsvc.dll
16:17:48.0945 0312  C:\Windows\System32\nvsvc.dll - ok
16:17:48.0945 0312  [ 8539ED943138AF05A92BD69A4DA092B2 ] C:\Program Files\AVAST Software\Avast\defs\13031000\aswRep.dll
16:17:48.0945 0312  C:\Program Files\AVAST Software\Avast\defs\13031000\aswRep.dll - ok
16:17:48.0945 0312  [ 54152706627F5F33952340D90ADA50EE ] C:\Program Files\Common Files\Apple\Apple Application Support\pthreadVC2.dll
16:17:48.0945 0312  C:\Program Files\Common Files\Apple\Apple Application Support\pthreadVC2.dll - ok
16:17:48.0961 0312  [ 0928FFC8BD4391F5878AD08085AE676E ] C:\Program Files\AVAST Software\Avast\defs\13031000\aswFiDb.dll
16:17:48.0961 0312  C:\Program Files\AVAST Software\Avast\defs\13031000\aswFiDb.dll - ok
16:17:48.0961 0312  [ 78865ABC5F5D13190F8B35BD9044714A ] C:\Program Files\Common Files\Apple\Apple Application Support\objc.dll
16:17:48.0961 0312  C:\Program Files\Common Files\Apple\Apple Application Support\objc.dll - ok
16:17:48.0977 0312  [ D5AEFAD57C08349A4393D987DF7C715D ] C:\Windows\System32\winmm.dll
16:17:48.0977 0312  C:\Windows\System32\winmm.dll - ok
16:17:48.0977 0312  [ FF9831030678C7B6D70BAC00F68F8976 ] C:\Program Files\Common Files\Apple\Apple Application Support\libdispatch.dll
16:17:48.0977 0312  C:\Program Files\Common Files\Apple\Apple Application Support\libdispatch.dll - ok
16:17:48.0992 0312  [ 18AB2E5A40064ED5F7791AC5946A90F3 ] C:\Windows\System32\msimg32.dll
16:17:48.0992 0312  C:\Windows\System32\msimg32.dll - ok
16:17:48.0992 0312  [ 827CB0D6C3F8057EA037FF271F8E9795 ] C:\Windows\System32\imageres.dll
16:17:48.0992 0312  C:\Windows\System32\imageres.dll - ok
16:17:48.0992 0312  [ 31829BA96C187C8973DDF1D588D9BF30 ] C:\Windows\System32\nvapi.dll
16:17:48.0992 0312  C:\Windows\System32\nvapi.dll - ok
16:17:49.0008 0312  [ 3FC74B9FAA8A68B4FF2CD0D440A4DDD3 ] C:\Windows\System32\nvsvcr.dll
16:17:49.0008 0312  C:\Windows\System32\nvsvcr.dll - ok
16:17:49.0008 0312  [ E5B6D88B36BDDAD5039764FBF80284DD ] C:\Program Files\Common Files\Apple\Apple Application Support\libicuin.dll
16:17:49.0008 0312  C:\Program Files\Common Files\Apple\Apple Application Support\libicuin.dll - ok
16:17:49.0008 0312  [ 9E6E3BAD396412AA47ECC3190CEDD8A6 ] C:\Program Files\AVAST Software\Avast\defs\13031000\algo.dll
16:17:49.0008 0312  C:\Program Files\AVAST Software\Avast\defs\13031000\algo.dll - ok
16:17:49.0023 0312  [ 1D75BC73585969F41BA7EF0C882DFF2B ] C:\Program Files\Common Files\Apple\Apple Application Support\libicuuc.dll
16:17:49.0023 0312  C:\Program Files\Common Files\Apple\Apple Application Support\libicuuc.dll - ok
16:17:49.0023 0312  [ 54DB80205C518C451D6C19772CA9F354 ] C:\Windows\System32\nvcpl.dll
16:17:49.0023 0312  C:\Windows\System32\nvcpl.dll - ok
16:17:49.0023 0312  [ FC7A868DECC3AB027F29178EC8A7F252 ] C:\Program Files\Common Files\Apple\Apple Application Support\icudt46.dll
16:17:49.0023 0312  C:\Program Files\Common Files\Apple\Apple Application Support\icudt46.dll - ok
16:17:49.0039 0312  [ D025E95247353BA8ADB53CFF3A4E5BBB ] C:\Program Files\AVAST Software\Avast\Setup\setiface.dll
16:17:49.0039 0312  C:\Program Files\AVAST Software\Avast\Setup\setiface.dll - ok
16:17:49.0039 0312  [ F6FD367C9EAAEDF90CD7A7952AE0B336 ] C:\Program Files\Common Files\Apple\Apple Application Support\ASL.dll
16:17:49.0039 0312  C:\Program Files\Common Files\Apple\Apple Application Support\ASL.dll - ok
16:17:49.0039 0312  [ 9E4B0E7472B4CEBA9E17F440B8CB0AB8 ] C:\Windows\System32\winspool.drv
16:17:49.0039 0312  C:\Windows\System32\winspool.drv - ok
16:17:49.0055 0312  [ 4327CF9A9D0864CA0FFC97FCDA97315A ] C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService_main.dll
16:17:49.0055 0312  C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService_main.dll - ok
16:17:49.0055 0312  [ 062373995EAE5F0EAC9EAA9192136BFB ] C:\Windows\System32\dnssd.dll
16:17:49.0055 0312  C:\Windows\System32\dnssd.dll - ok
16:17:49.0055 0312  [ 71B1869F96C978771F1616467302AB5A ] C:\Program Files\Microsoft\BingDesktop\BingDesktopUpdater.exe
16:17:49.0055 0312  C:\Program Files\Microsoft\BingDesktop\BingDesktopUpdater.exe - ok
16:17:49.0070 0312  [ 24665B221424FFD7B71F0D2C398F2F4F ] C:\Program Files\Common Files\Apple\Mobile Device Support\MobileDevice.dll
16:17:49.0070 0312  C:\Program Files\Common Files\Apple\Mobile Device Support\MobileDevice.dll - ok
16:17:49.0070 0312  [ CA9F7888B524D8100B977C81F44C3234 ] C:\Windows\System32\winhttp.dll
16:17:49.0070 0312  C:\Windows\System32\winhttp.dll - ok
16:17:49.0070 0312  [ FB19FC5951A88F3C523E35C2C98D23C0 ] C:\Windows\System32\webio.dll
16:17:49.0070 0312  C:\Windows\System32\webio.dll - ok
16:17:49.0086 0312  [ 7A6986DD659B96398A11AF5173892715 ] C:\Windows\System32\cabinet.dll
16:17:49.0086 0312  C:\Windows\System32\cabinet.dll - ok
16:17:49.0086 0312  [ 6F8E3B7B70E1BBA871212940C1FBDF60 ] C:\Windows\System32\SensApi.dll
16:17:49.0086 0312  C:\Windows\System32\SensApi.dll - ok
16:17:49.0101 0312  [ 1CDEA9188899E76D4FFD54C9D512CCDB ] C:\Windows\System32\msxml3.dll
16:17:49.0101 0312  C:\Windows\System32\msxml3.dll - ok
16:17:49.0101 0312  [ A84509C6AB1C764C592F192AA89DA830 ] C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
16:17:49.0101 0312  C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll - ok
16:17:49.0117 0312  [ CF3126A2FF45AA224FC541BC543C2D9C ] C:\Program Files\Common Files\Apple\Apple Application Support\CFNetwork.dll
16:17:49.0117 0312  C:\Program Files\Common Files\Apple\Apple Application Support\CFNetwork.dll - ok
16:17:49.0117 0312  [ DB5BEA73EDAF19AC68B2C0FAD0F92B1A ] C:\Program Files\Bonjour\mDNSResponder.exe
16:17:49.0117 0312  C:\Program Files\Bonjour\mDNSResponder.exe - ok
16:17:49.0117 0312  [ 96C0E38905CFD788313BE8E11DAE3F2F ] C:\Windows\System32\cryptsvc.dll
16:17:49.0117 0312  C:\Windows\System32\cryptsvc.dll - ok
16:17:49.0133 0312  [ 8EC04CA86F1D68DA9E11952EB85973D6 ] C:\Windows\System32\dps.dll
16:17:49.0133 0312  C:\Windows\System32\dps.dll - ok
16:17:49.0133 0312  [ 7DBE8CBFE79EFBDEB98C9FB08D3A9A5B ] C:\Windows\System32\FDResPub.dll
16:17:49.0133 0312  C:\Windows\System32\FDResPub.dll - ok
16:17:49.0148 0312  [ 73F6C5223F7E9B5780DD4A6C30FCF569 ] C:\Windows\System32\WSDApi.dll
16:17:49.0148 0312  C:\Windows\System32\WSDApi.dll - ok
16:17:49.0148 0312  [ CA79539D3D4C0BA66F0F051A5EE5E923 ] C:\Windows\System32\cryptnet.dll
16:17:49.0148 0312  C:\Windows\System32\cryptnet.dll - ok
16:17:49.0148 0312  [ 9E0104BA49F4E6973749A02BF41344ED ] C:\Windows\System32\drivers\PEAuth.sys
16:17:49.0148 0312  C:\Windows\System32\drivers\PEAuth.sys - ok
16:17:49.0164 0312  [ 90A3935D05B494A5A39D37E71F09A677 ] C:\Windows\System32\drivers\secdrv.sys
16:17:49.0164 0312  C:\Windows\System32\drivers\secdrv.sys - ok
16:17:49.0164 0312  [ 374071043F9E4231EE43BE2BB48DD36D ] C:\Windows\System32\nlasvc.dll
16:17:49.0164 0312  C:\Windows\System32\nlasvc.dll - ok
16:17:49.0164 0312  [ BE6BD660CAA6F291AE06A718A4FA8ABC ] C:\Windows\System32\drivers\srvnet.sys
16:17:49.0164 0312  C:\Windows\System32\drivers\srvnet.sys - ok
16:17:49.0179 0312  [ 140D9F911182357626165EA0BEB98C4F ] C:\Windows\System32\ncsi.dll
16:17:49.0179 0312  C:\Windows\System32\ncsi.dll - ok
16:17:49.0179 0312  [ 3EEBD3BD93DA46A26E89893C7AB2FF3B ] C:\Windows\System32\drivers\tcpipreg.sys
16:17:49.0179 0312  C:\Windows\System32\drivers\tcpipreg.sys - ok
16:17:49.0195 0312  [ 28E2231BD34A39C854BDF3923AB2FF86 ] C:\Windows\System32\ssdpapi.dll
16:17:49.0195 0312  C:\Windows\System32\ssdpapi.dll - ok
16:17:49.0195 0312  [ 36650D618CA34C9D357DFD3D89B2C56F ] C:\Windows\System32\sysmain.dll
16:17:49.0195 0312  C:\Windows\System32\sysmain.dll - ok
16:17:49.0195 0312  [ 13337A3FB17F2242487FD45488ED0485 ] C:\Windows\System32\vssapi.dll
16:17:49.0195 0312  C:\Windows\System32\vssapi.dll - ok
16:17:49.0211 0312  [ E1FB3706030FB4578A0D72C2FC3689E4 ] C:\Windows\System32\wiaservc.dll
16:17:49.0211 0312  C:\Windows\System32\wiaservc.dll - ok
16:17:49.0211 0312  [ 03F0545BD8D4C77FA0AE1CEEDFCC71AB ] C:\Windows\System32\drivers\srv2.sys
16:17:49.0211 0312  C:\Windows\System32\drivers\srv2.sys - ok
16:17:49.0226 0312  [ F62E510B6AD4C21EB9FE8668ED251826 ] C:\Windows\System32\wbem\WMIsvc.dll
16:17:49.0226 0312  C:\Windows\System32\wbem\WMIsvc.dll - ok
16:17:49.0226 0312  [ DB846EECA70EE9D2E2FF31147C57B0F4 ] C:\Windows\System32\webservices.dll
16:17:49.0226 0312  C:\Windows\System32\webservices.dll - ok
16:17:49.0226 0312  [ 704314FD398C81D5F342CAA5DF7B7F21 ] C:\Windows\System32\wbemcomn.dll
16:17:49.0226 0312  C:\Windows\System32\wbemcomn.dll - ok
16:17:49.0226 0312  [ E4C2764065D66EA1D2D3EBC28FE99C46 ] C:\Windows\System32\drivers\srv.sys
16:17:49.0226 0312  C:\Windows\System32\drivers\srv.sys - ok
16:17:49.0242 0312  [ 58F67245D041FBE7AF88F4EAF79DF0FA ] C:\Windows\System32\iphlpsvc.dll
16:17:49.0242 0312  C:\Windows\System32\iphlpsvc.dll - ok
16:17:49.0242 0312  [ 701C9EB15E1E23D22F7C7184C0506673 ] C:\Windows\System32\wbem\WmiDcPrv.dll
16:17:49.0242 0312  C:\Windows\System32\wbem\WmiDcPrv.dll - ok
16:17:49.0242 0312  [ 0A855F27A1E48991D14C593CB930D2B2 ] C:\Program Files\Common Files\Apple\Apple Application Support\SQLite3.dll
16:17:49.0257 0312  C:\Program Files\Common Files\Apple\Apple Application Support\SQLite3.dll - ok
16:17:49.0257 0312  [ 89D90579E5FB1469CB0464F6512E42B7 ] C:\Windows\System32\fundisc.dll
16:17:49.0257 0312  C:\Windows\System32\fundisc.dll - ok
16:17:49.0257 0312  [ 4792C0378DB99A9BC2AE2DE6CFFF0C3A ] C:\Windows\System32\trkwks.dll
16:17:49.0257 0312  C:\Windows\System32\trkwks.dll - ok
16:17:49.0273 0312  [ CFC7D8289D2B5F3CF8D16E2DB7F93D4A ] C:\Windows\System32\wbem\fastprox.dll
16:17:49.0273 0312  C:\Windows\System32\wbem\fastprox.dll - ok
16:17:49.0273 0312  [ B087F2B901570F6EF62F6C2E01A480F3 ] C:\Windows\System32\wiatrace.dll
16:17:49.0273 0312  C:\Windows\System32\wiatrace.dll - ok
16:17:49.0273 0312  [ 011285619951BC4C92FE322E08ABF050 ] C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll
16:17:49.0273 0312  C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll - ok
16:17:49.0273 0312  [ CE292C4C10B8DB6070F262EA2733F0DC ] C:\Windows\System32\sqmapi.dll
16:17:49.0273 0312  C:\Windows\System32\sqmapi.dll - ok
16:17:49.0289 0312  [ A399514D3B28C9A3453A486BBAAFF1C7 ] C:\Windows\System32\wdscore.dll
16:17:49.0289 0312  C:\Windows\System32\wdscore.dll - ok
16:17:49.0289 0312  [ E3E811471DE781900FF21C1FD84E941E ] C:\Windows\System32\ntdsapi.dll
16:17:49.0289 0312  C:\Windows\System32\ntdsapi.dll - ok
16:17:49.0304 0312  [ C5B0324DB461559ADD070E632A6919FA ] C:\Windows\System32\wbem\wbemprox.dll
16:17:49.0304 0312  C:\Windows\System32\wbem\wbemprox.dll - ok
16:17:49.0351 0312  [ 3DAA727B5B0A45039B0E1C9A211B8400 ] C:\Windows\System32\browser.dll
16:17:49.0351 0312  C:\Windows\System32\browser.dll - ok
16:17:49.0351 0312  [ D64AF876D53ECA3668BB97B51B4E70AB ] C:\Windows\System32\srvsvc.dll
16:17:49.0351 0312  C:\Windows\System32\srvsvc.dll - ok
16:17:49.0367 0312  [ B940289C83121046BD6A60ACC6028593 ] C:\Windows\System32\vsstrace.dll
16:17:49.0367 0312  C:\Windows\System32\vsstrace.dll - ok
16:17:49.0367 0312  [ E4B72E71EC37A59FE574A998A0C0EB9B ] C:\Windows\System32\netmsg.dll
16:17:49.0367 0312  C:\Windows\System32\netmsg.dll - ok
16:17:49.0382 0312  [ AE9898D5600A232CD8AE3298692162E5 ] C:\Windows\System32\clusapi.dll
16:17:49.0382 0312  C:\Windows\System32\clusapi.dll - ok
16:17:49.0398 0312  [ 89E783711AF91AF09E1EF30EF3107446 ] C:\Windows\System32\sscore.dll
16:17:49.0398 0312  C:\Windows\System32\sscore.dll - ok
16:17:49.0398 0312  [ 881D9F2D6E04E1C323050CF1574870F7 ] C:\Windows\System32\wbem\WinMgmtR.dll
16:17:49.0398 0312  C:\Windows\System32\wbem\WinMgmtR.dll - ok
16:17:49.0398 0312  [ 2AF094C822BD6094F14A8E85FB51D52A ] C:\Windows\System32\resutils.dll
16:17:49.0398 0312  C:\Windows\System32\resutils.dll - ok
16:17:49.0413 0312  [ 585EB475E7AF55C9065256E8FFB751A1 ] C:\Windows\System32\wbem\wbemcore.dll
16:17:49.0413 0312  C:\Windows\System32\wbem\wbemcore.dll - ok
16:17:49.0413 0312  [ 8CD1DEE212E52B9C22E66DBA44991D32 ] C:\Windows\System32\httpapi.dll
16:17:49.0413 0312  C:\Windows\System32\httpapi.dll - ok
16:17:49.0429 0312  [ 5AE88135C6A86FCD67BA16AFBB1C8389 ] C:\Windows\System32\wbem\esscli.dll
16:17:49.0429 0312  C:\Windows\System32\wbem\esscli.dll - ok
16:17:49.0429 0312  [ 6383C60EC0133B14F5705F96369421B2 ] C:\Windows\System32\hnetcfg.dll
16:17:49.0429 0312  C:\Windows\System32\hnetcfg.dll - ok
16:17:49.0429 0312  [ 776AE0564F8B1C282E331FD95A1BDC5F ] C:\Windows\System32\wbem\wbemsvc.dll
16:17:49.0429 0312  C:\Windows\System32\wbem\wbemsvc.dll - ok
16:17:49.0445 0312  [ 5610B0425518D185331CB8E968D060E6 ] C:\Windows\System32\wbem\wmiutils.dll
16:17:49.0445 0312  C:\Windows\System32\wbem\wmiutils.dll - ok
16:17:49.0445 0312  [ 371E3B05894549113D07CD3081ED55EF ] C:\Windows\System32\wbem\repdrvfs.dll
16:17:49.0445 0312  C:\Windows\System32\wbem\repdrvfs.dll - ok
16:17:49.0445 0312  [ 40947436A70E0034E41123DF5A0A7702 ] C:\Program Files\Bonjour\mdnsNSP.dll
16:17:49.0445 0312  C:\Program Files\Bonjour\mdnsNSP.dll - ok
16:17:49.0460 0312  [ 15E298B5EC5B89C5994A59863969D9FF ] C:\Windows\System32\npmproxy.dll
16:17:49.0460 0312  C:\Windows\System32\npmproxy.dll - ok
16:17:49.0476 0312  [ ED6EE83D61EBC683C2CD8E899EA6FEBE ] C:\Windows\System32\rasadhlp.dll
16:17:49.0476 0312  C:\Windows\System32\rasadhlp.dll - ok
16:17:49.0476 0312  [ 46EF9DC96265FD0B423DB72E7C38C2A5 ] C:\Windows\System32\wdi.dll
16:17:49.0476 0312  C:\Windows\System32\wdi.dll - ok
16:17:49.0491 0312  [ 2BC6F6A1992B3A77F5F41432CA6B3B6B ] C:\Windows\System32\hidserv.dll
16:17:49.0491 0312  C:\Windows\System32\hidserv.dll - ok
16:17:49.0491 0312  [ 1DF19C96EEF6C29D1C3E1A8678E07190 ] C:\Windows\System32\bthserv.dll
16:17:49.0491 0312  C:\Windows\System32\bthserv.dll - ok
16:17:49.0491 0312  [ AA53356D60AF47EACC85BC617A4F3F66 ] C:\Windows\System32\wpdbusenum.dll
16:17:49.0491 0312  C:\Windows\System32\wpdbusenum.dll - ok
16:17:49.0507 0312  [ ECF036299AA554B5E0455262857B39D0 ] C:\Windows\System32\diagperf.dll
16:17:49.0507 0312  C:\Windows\System32\diagperf.dll - ok
16:17:49.0507 0312  [ 7E82616BEE76BF5EAA5B30F681414E21 ] C:\Windows\System32\perftrack.dll
16:17:49.0507 0312  C:\Windows\System32\perftrack.dll - ok
16:17:49.0523 0312  [ E98278865E8DABA21CFE5FE4BE34210A ] C:\Windows\System32\PortableDeviceApi.dll
16:17:49.0523 0312  C:\Windows\System32\PortableDeviceApi.dll - ok
16:17:49.0523 0312  [ 539C49CEBB3C50957AC8A09D95ECD880 ] C:\Windows\System32\shfolder.dll
16:17:49.0523 0312  C:\Windows\System32\shfolder.dll - ok
16:17:49.0523 0312  [ 590D5C506044FE02FF7643E32FF9BDAC ] C:\Windows\System32\wer.dll
16:17:49.0523 0312  C:\Windows\System32\wer.dll - ok
16:17:49.0538 0312  [ F7FE730CE31B54145DEE1F1482BCCDD7 ] C:\Windows\System32\ndiscapCfg.dll
16:17:49.0538 0312  C:\Windows\System32\ndiscapCfg.dll - ok
16:17:49.0538 0312  [ 761A3A4038C1FD4F5795427907C28484 ] C:\Windows\System32\rascfg.dll
16:17:49.0538 0312  C:\Windows\System32\rascfg.dll - ok
16:17:49.0538 0312  [ D4191EFAB91E00FC09257AA5EBAF503B ] C:\Windows\System32\mprapi.dll
16:17:49.0538 0312  C:\Windows\System32\mprapi.dll - ok
16:17:49.0554 0312  [ 9A7B54D57594233EEB17892BAD309970 ] C:\Windows\System32\mprmsg.dll
16:17:49.0554 0312  C:\Windows\System32\mprmsg.dll - ok
16:17:49.0554 0312  [ 8B794AE6D5C7D42092804BC39A2EB8F6 ] C:\Windows\System32\aepic.dll
16:17:49.0554 0312  C:\Windows\System32\aepic.dll - ok
16:17:49.0554 0312  [ 40CAEEE0EAF1B8569F7C8DF6420F2CB9 ] C:\Windows\System32\sfc.dll
16:17:49.0554 0312  C:\Windows\System32\sfc.dll - ok
16:17:49.0569 0312  [ 84799328D87B3091A3BDD251E1AD31F9 ] C:\Windows\System32\sfc_os.dll
16:17:49.0569 0312  C:\Windows\System32\sfc_os.dll - ok
16:17:49.0569 0312  [ 0B7E85364CB878E2AD531DB7B601A9E5 ] C:\Windows\System32\NapiNSP.dll
16:17:49.0569 0312  C:\Windows\System32\NapiNSP.dll - ok
16:17:49.0569 0312  [ 5CF640EDDB1E40A5AB1BB743BCDEC610 ] C:\Windows\System32\pnrpnsp.dll
16:17:49.0569 0312  C:\Windows\System32\pnrpnsp.dll - ok
16:17:49.0585 0312  [ C693E642ACFBDD76433AF6BE3C3EEE6F ] C:\Windows\System32\PortableDeviceConnectApi.dll
16:17:49.0585 0312  C:\Windows\System32\PortableDeviceConnectApi.dll - ok
16:17:49.0585 0312  [ AC122407B29378FF9646F03404AC7C54 ] C:\Windows\System32\wshbth.dll
16:17:49.0585 0312  C:\Windows\System32\wshbth.dll - ok
16:17:49.0585 0312  [ CAFC0B884E5590B5E80D84F592388B3D ] C:\Windows\System32\tcpipcfg.dll
16:17:49.0585 0312  C:\Windows\System32\tcpipcfg.dll - ok
16:17:49.0602 0312  [ 5DF5D8CFD9B9573FA3B2C89D9061A240 ] C:\Windows\System32\winrnr.dll
16:17:49.0602 0312  C:\Windows\System32\winrnr.dll - ok
16:17:49.0602 0312  [ D99621C0735B21DCC8BC4FEF02F379EF ] C:\Windows\System32\Apphlpdm.dll
16:17:49.0602 0312  C:\Windows\System32\Apphlpdm.dll - ok
16:17:49.0602 0312  [ F8E882C10AF4C29E378D1E28D4817CB1 ] C:\Windows\System32\pnpts.dll
16:17:49.0602 0312  C:\Windows\System32\pnpts.dll - ok
16:17:49.0602 0312  [ 3CDE2911462FEC80064A409C07710C06 ] C:\Windows\System32\wbem\WmiPrvSD.dll
16:17:49.0602 0312  C:\Windows\System32\wbem\WmiPrvSD.dll - ok
16:17:49.0617 0312  [ A4CC7227A452C4909F9499D91B184364 ] C:\Windows\System32\ncobjapi.dll
16:17:49.0617 0312  C:\Windows\System32\ncobjapi.dll - ok
16:17:49.0617 0312  [ B350509B6C9296529BC464C60FEEAEF1 ] C:\Windows\System32\wbem\wbemess.dll
16:17:49.0617 0312  C:\Windows\System32\wbem\wbemess.dll - ok
16:17:49.0633 0312  [ A63DC5C2EA944E6657203E0C8EDEAF61 ] C:\Windows\System32\dllhost.exe
16:17:49.0633 0312  C:\Windows\System32\dllhost.exe - ok
16:17:49.0633 0312  [ BDAC1AA64495D0F7E1FF810EBBF1F018 ] C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.17514_none_ec83dffa859149af\comctl32.dll
16:17:49.0633 0312  C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.17514_none_ec83dffa859149af\comctl32.dll - ok
16:17:49.0633 0312  [ 0B31464B7B2D616BD5F7036673588EC1 ] C:\Windows\System32\IDStore.dll
16:17:49.0633 0312  C:\Windows\System32\IDStore.dll - ok
16:17:49.0633 0312  [ B9A8CBCFCD3EC9D2EA4740AF347BF108 ] C:\Windows\System32\mpr.dll
16:17:49.0633 0312  C:\Windows\System32\mpr.dll - ok
16:17:49.0648 0312  [ 4F2659160AFCCA990305816946F69407 ] C:\Windows\System32\taskeng.exe
16:17:49.0648 0312  C:\Windows\System32\taskeng.exe - ok
16:17:49.0648 0312  [ 61AC3EFDFACFDD3F0F11DD4FD4044223 ] C:\Windows\System32\userinit.exe
16:17:49.0648 0312  C:\Windows\System32\userinit.exe - ok
16:17:49.0648 0312  [ 505BF4D1CADEB8D4F8BCD08D944DE25D ] C:\Windows\System32\dwm.exe
16:17:49.0648 0312  C:\Windows\System32\dwm.exe - ok
16:17:49.0648 0312  [ 74AF6AA2E8B3180AADAE5FE8813CB1CD ] C:\Windows\System32\localspl.dll
16:17:49.0648 0312  C:\Windows\System32\localspl.dll - ok
16:17:49.0664 0312  [ 754AFC50022C95DA7C86B7020DB78136 ] C:\Windows\System32\dwmredir.dll
16:17:49.0664 0312  C:\Windows\System32\dwmredir.dll - ok
16:17:49.0664 0312  [ 497E59D9F01C6F247E72222A61835119 ] C:\Windows\System32\dwmcore.dll
16:17:49.0664 0312  C:\Windows\System32\dwmcore.dll - ok
16:17:49.0664 0312  [ 506708142BC63DABA64F2D3AD1DCD5BF ] C:\Program Files\Google\Update\GoogleUpdate.exe
16:17:49.0680 0312  C:\Program Files\Google\Update\GoogleUpdate.exe - ok
16:17:49.0680 0312  [ 659E04E74135927CA6D7BC5E75C84417 ] C:\Windows\System32\TSChannel.dll
16:17:49.0680 0312  C:\Windows\System32\TSChannel.dll - ok
16:17:49.0680 0312  [ 629181C26A78EB66B0B4E774E5AC2882 ] C:\Windows\System32\spoolss.dll
16:17:49.0680 0312  C:\Windows\System32\spoolss.dll - ok
16:17:49.0680 0312  [ 126F8331BD023178C7F0EF2F5EDE16B3 ] C:\Windows\System32\FXSMON.dll
16:17:49.0680 0312  C:\Windows\System32\FXSMON.dll - ok
16:17:49.0695 0312  [ 03CF941D031F30272D3063E5A4D686F5 ] C:\Windows\System32\PrintIsolationProxy.dll
16:17:49.0695 0312  C:\Windows\System32\PrintIsolationProxy.dll - ok
16:17:49.0695 0312  [ B390C1D825C7687493BEDE237C6C2F25 ] C:\Windows\System32\tcpmon.dll
16:17:49.0695 0312  C:\Windows\System32\tcpmon.dll - ok
16:17:49.0695 0312  [ 1220595CABA75AB91A6B3FA3B89483CC ] C:\Windows\System32\snmpapi.dll
16:17:49.0695 0312  C:\Windows\System32\snmpapi.dll - ok
16:17:49.0711 0312  [ 923CDD30092DB73EC4A0EBCDDD16C686 ] C:\Windows\System32\usbmon.dll
16:17:49.0711 0312  C:\Windows\System32\usbmon.dll - ok
16:17:49.0711 0312  [ A8EB761DE499242BECF153B2B34F020E ] C:\Windows\System32\WSDMon.dll
16:17:49.0711 0312  C:\Windows\System32\WSDMon.dll - ok
16:17:49.0711 0312  [ 6357E2B68753A1F5CF4A68A25C4FD14A ] C:\Windows\System32\wsnmp32.dll
16:17:49.0711 0312  C:\Windows\System32\wsnmp32.dll - ok
16:17:49.0726 0312  [ 2DE90400A63818FA38C4C5C9ADB166BF ] C:\Windows\System32\d3d10_1.dll
16:17:49.0726 0312  C:\Windows\System32\d3d10_1.dll - ok
16:17:49.0726 0312  [ F34CFADA6C48DAA41B996D24C7D8D3CA ] C:\Windows\System32\fdPnp.dll
16:17:49.0726 0312  C:\Windows\System32\fdPnp.dll - ok
16:17:49.0726 0312  [ 2E5672EEA419A4DC9DACD714632E1DC3 ] C:\Program Files\Google\Update\1.3.21.135\goopdate.dll
16:17:49.0726 0312  C:\Program Files\Google\Update\1.3.21.135\goopdate.dll - ok
16:17:49.0742 0312  [ CD72C6406BA561BED6D42CB145E55307 ] C:\Windows\System32\spool\prtprocs\w32x86\winprint.dll
16:17:49.0742 0312  C:\Windows\System32\spool\prtprocs\w32x86\winprint.dll - ok
16:17:49.0742 0312  [ 52CCA2E9FFD0653CACED1E808AADE4B6 ] C:\Windows\System32\win32spl.dll
16:17:49.0742 0312  C:\Windows\System32\win32spl.dll - ok
16:17:49.0742 0312  [ 9C36A3CA80F9B204C670336D344F5DF8 ] C:\Windows\System32\d3d10_1core.dll
16:17:49.0742 0312  C:\Windows\System32\d3d10_1core.dll - ok
16:17:49.0758 0312  [ 0411B7958C524BB2E91EE1B3035FE321 ] C:\Windows\System32\dxgi.dll
16:17:49.0758 0312  C:\Windows\System32\dxgi.dll - ok
16:17:49.0758 0312  [ 8B88EBBB05A0E56B7DCC708498C02B3E ] C:\Windows\explorer.exe
16:17:49.0758 0312  C:\Windows\explorer.exe - ok
16:17:49.0758 0312  [ A6C29DB53ECA94FA8591C5388D604B82 ] C:\Windows\System32\msi.dll
16:17:49.0758 0312  C:\Windows\System32\msi.dll - ok
16:17:49.0773 0312  [ D27DDE7E0444C7F1819F958469EB7D93 ] C:\Windows\System32\inetpp.dll
16:17:49.0773 0312  C:\Windows\System32\inetpp.dll - ok
16:17:49.0789 0312  [ 52C4F576A7C93FEB59BF9E2EBB9385C1 ] C:\Windows\System32\nvwgf2um.dll
16:17:49.0789 0312  C:\Windows\System32\nvwgf2um.dll - ok
16:17:49.0789 0312  [ 78DE417B7921DACA072059E6BF410FC7 ] C:\Windows\System32\wshnetbs.dll
16:17:49.0789 0312  C:\Windows\System32\wshnetbs.dll - ok
16:17:49.0804 0312  [ 2100560AF3F7F2948F2676E44DFB4ECF ] C:\Windows\System32\uDWM.dll
16:17:49.0804 0312  C:\Windows\System32\uDWM.dll - ok
16:17:49.0804 0312  [ 45D9F6CD2469CDB6A640DD4BD2B01471 ] C:\Windows\System32\nci.dll
16:17:49.0804 0312  C:\Windows\System32\nci.dll - ok
16:17:49.0820 0312  [ 9E6AF823733C70E207D9FB6731A63B3D ] C:\Windows\System32\wlaninst.dll
16:17:49.0820 0312  C:\Windows\System32\wlaninst.dll - ok
16:17:49.0820 0312  [ 5B6EF0861BB5AC0EC347548E85C24A1D ] C:\Windows\System32\wwaninst.dll
16:17:49.0820 0312  C:\Windows\System32\wwaninst.dll - ok
16:17:49.0820 0312  [ 51138BEEA3E2C21EC44D0932C71762A8 ] C:\Windows\System32\rundll32.exe
16:17:49.0820 0312  C:\Windows\System32\rundll32.exe - ok
16:17:49.0836 0312  [ 96C70BD48D49B87475F4572DEDC62EB9 ] C:\Windows\AppPatch\AcLayers.dll
16:17:49.0836 0312  C:\Windows\AppPatch\AcLayers.dll - ok
16:17:49.0836 0312  [ E2A17BCC08D92F42E08AF6BA2F93ABA7 ] C:\Windows\System32\ExplorerFrame.dll
16:17:49.0836 0312  C:\Windows\System32\ExplorerFrame.dll - ok
16:17:49.0836 0312  [ BECDDA0990DEBD72A30096533521AD73 ] C:\Program Files\Google\Update\1.3.21.135\GoogleCrashHandler.exe
16:17:49.0836 0312  C:\Program Files\Google\Update\1.3.21.135\GoogleCrashHandler.exe - ok
16:17:49.0851 0312  [ D2958325C1AE1AE37A83334C6229E3BC ] C:\Windows\System32\actxprxy.dll
16:17:49.0851 0312  C:\Windows\System32\actxprxy.dll - ok
16:17:49.0851 0312  [ 4D153BDE01AA3FD33414199052051549 ] C:\Program Files\AVAST Software\Avast\ashShell.dll
16:17:49.0851 0312  C:\Program Files\AVAST Software\Avast\ashShell.dll - ok
16:17:49.0867 0312  [ D1F4EF194A129726FBF30E2F514824AA ] C:\Users\Rachel\AppData\Roaming\Dropbox\bin\DropboxExt.17.dll
16:17:49.0867 0312  C:\Users\Rachel\AppData\Roaming\Dropbox\bin\DropboxExt.17.dll - ok
16:17:49.0867 0312  [ 846D0E4DB261CFAF363902E41498E961 ] C:\Windows\System32\EhStorShell.dll
16:17:49.0867 0312  C:\Windows\System32\EhStorShell.dll - ok
16:17:49.0867 0312  [ 3EC541C196DE18ED9A0D0AC82A694D4C ] C:\Windows\System32\cscui.dll
16:17:49.0867 0312  C:\Windows\System32\cscui.dll - ok
16:17:49.0882 0312  [ 57A51217581614DE07F30E34D6BB4993 ] C:\Windows\System32\cscdll.dll
16:17:49.0882 0312  C:\Windows\System32\cscdll.dll - ok
16:17:49.0882 0312  [ 03F3B770DFBED6131653CEDA8CA780F0 ] C:\Windows\System32\ntshrui.dll
16:17:49.0882 0312  C:\Windows\System32\ntshrui.dll - ok
16:17:49.0898 0312  [ 9C09AF87AC7351985AB5FFBA3FC52575 ] C:\Program Files\AVAST Software\Avast\AhResBhv.dll
16:17:49.0898 0312  C:\Program Files\AVAST Software\Avast\AhResBhv.dll - ok
16:17:49.0898 0312  [ E844C96552989FA1ECA95778583A904C ] C:\Program Files\AVAST Software\Avast\AhResJs.dll
16:17:49.0898 0312  C:\Program Files\AVAST Software\Avast\AhResJs.dll - ok
16:17:49.0914 0312  [ 1EBE9524683C7C4EED8B8BC93FB6FBCC ] C:\Windows\System32\fltLib.dll
16:17:49.0914 0312  C:\Windows\System32\fltLib.dll - ok
16:17:49.0914 0312  [ 17F5861A03516864A5F4CC04C7324278 ] C:\Program Files\AVAST Software\Avast\AhResMai.dll
16:17:49.0914 0312  C:\Program Files\AVAST Software\Avast\AhResMai.dll - ok
16:17:49.0929 0312  [ 8BEC10C53E927CD5E442FE332804F1AC ] C:\Program Files\AVAST Software\Avast\AhResMes.dll
16:17:49.0929 0312  C:\Program Files\AVAST Software\Avast\AhResMes.dll - ok
16:17:49.0929 0312  [ 9B2F20ECF609EDF54FEC43E792028261 ] C:\Program Files\AVAST Software\Avast\AhResNS.dll
16:17:49.0929 0312  C:\Program Files\AVAST Software\Avast\AhResNS.dll - ok
16:17:49.0945 0312  [ 857661F2E5A677CFB6D3B2CF6E428227 ] C:\Program Files\AVAST Software\Avast\AhResP2P.dll
16:17:49.0945 0312  C:\Program Files\AVAST Software\Avast\AhResP2P.dll - ok
16:17:49.0945 0312  [ 2466ED58B8EFB3320BCA73ACF8179D24 ] C:\Program Files\AVAST Software\Avast\AhResStd.dll
16:17:49.0945 0312  C:\Program Files\AVAST Software\Avast\AhResStd.dll - ok
16:17:49.0960 0312  [ 5D9550E02D981B92B133E5F8F7BDF8D2 ] C:\Program Files\AVAST Software\Avast\AhResWS.dll
16:17:49.0960 0312  C:\Program Files\AVAST Software\Avast\AhResWS.dll - ok
16:17:49.0960 0312  [ 106B2C1DE615E08AFF9CE2A02E04F7CC ] C:\Program Files\AVAST Software\Avast\defs\13031000\ArPot.dll
16:17:49.0960 0312  C:\Program Files\AVAST Software\Avast\defs\13031000\ArPot.dll - ok
16:17:49.0976 0312  [ 1ABFFB6ABE8B70EDA4206F0F3D3D72F4 ] C:\Program Files\AVAST Software\Avast\ashMaiSv.dll
16:17:49.0976 0312  C:\Program Files\AVAST Software\Avast\ashMaiSv.dll - ok
16:17:49.0976 0312  [ B6D90C99A72044AEF85A2B7D78FEBEF4 ] C:\Program Files\AVAST Software\Avast\defs\13031000\exts.dll
16:17:49.0976 0312  C:\Program Files\AVAST Software\Avast\defs\13031000\exts.dll - ok
16:17:49.0976 0312  [ 39EADCAA61372C038BCFED96DF5323DA ] C:\Program Files\AVAST Software\Avast\ashWebSv.dll
16:17:49.0976 0312  C:\Program Files\AVAST Software\Avast\ashWebSv.dll - ok
16:17:49.0992 0312  [ 4F6E72B34ED3DC53DCC5E8708E60B61F ] C:\Windows\System32\security.dll
16:17:49.0992 0312  C:\Windows\System32\security.dll - ok
16:17:49.0992 0312  [ 96386E75BCFED6F339BE01359D6CBFAF ] C:\Program Files\AVAST Software\Avast\ashWsFtr.dll
16:17:49.0992 0312  C:\Program Files\AVAST Software\Avast\ashWsFtr.dll - ok
16:17:50.0007 0312  [ A7F63C1F5CE020AA24CDCEFB422CF9E3 ] C:\Program Files\AVAST Software\Avast\defs\13031000\aswAR.dll
16:17:50.0007 0312  C:\Program Files\AVAST Software\Avast\defs\13031000\aswAR.dll - ok
16:17:50.0007 0312  [ 83D722F311011FB0E521737F724DEB90 ] C:\Program Files\AVAST Software\Avast\defs\13031000\aswRawFS.dll
16:17:50.0007 0312  C:\Program Files\AVAST Software\Avast\defs\13031000\aswRawFS.dll - ok
16:17:50.0007 0312  [ 893F8E81D1117C48CB9D6E9E5F64BAB1 ] C:\Program Files\AVAST Software\Avast\Setup\avast.setup
16:17:50.0007 0312  C:\Program Files\AVAST Software\Avast\Setup\avast.setup - ok
16:17:50.0023 0312  [ 936F728E04ACCF3F38801CFFCF1E3F40 ] C:\Windows\System32\oledlg.dll
16:17:50.0023 0312  C:\Windows\System32\oledlg.dll - ok
16:17:50.0023 0312  [ 9C17DCD6DDFEB1A012544FAF4F2789F6 ] C:\Windows\AppPatch\AcGenral.dll
16:17:50.0023 0312  C:\Windows\AppPatch\AcGenral.dll - ok
16:17:50.0023 0312  [ 85683DF1F917E4D7F6BE1A04986BF1C8 ] C:\Windows\System32\msacm32.dll
16:17:50.0023 0312  C:\Windows\System32\msacm32.dll - ok
16:17:50.0038 0312  [ 523CF74A52C9A1762DA8B83AEE734498 ] C:\Windows\System32\IconCodecService.dll
16:17:50.0038 0312  C:\Windows\System32\IconCodecService.dll - ok
16:17:50.0038 0312  [ D79D3EABD4730970770EFA530D094E0F ] C:\Program Files\AVAST Software\Avast\snxhk.dll
16:17:50.0038 0312  C:\Program Files\AVAST Software\Avast\snxhk.dll - ok
16:17:50.0054 0312  [ D44741F65A1D71F65814A12CF6E2400A ] C:\Windows\System32\runonce.exe
16:17:50.0054 0312  C:\Windows\System32\runonce.exe - ok
16:17:50.0054 0312  [ AD7B9C14083B52BC532FBA5948342B98 ] C:\Windows\System32\cmd.exe
16:17:50.0054 0312  C:\Windows\System32\cmd.exe - ok
16:17:50.0054 0312  [ 3FA214B377B8711D859F950FDFEFF739 ] C:\Windows\System32\conhost.exe
16:17:50.0054 0312  C:\Windows\System32\conhost.exe - ok
16:17:50.0070 0312  [ 5466DCAEF5A648E04D1B6580F2C901B5 ] C:\Windows\System32\ieframe.dll
16:17:50.0070 0312  C:\Windows\System32\ieframe.dll - ok
16:17:50.0070 0312  [ 284B59D7B56FC76C80E622AB856B1FAB ] C:\Windows\System32\davclnt.dll
16:17:50.0070 0312  C:\Windows\System32\davclnt.dll - ok
16:17:50.0085 0312  [ 179BECE8D1A4C488DDB7191FF9BE3FB0 ] C:\Windows\System32\davhlpr.dll
16:17:50.0085 0312  C:\Windows\System32\davhlpr.dll - ok
16:17:50.0085 0312  [ D6692338B985D4A0CA52B828314D897D ] C:\Windows\System32\drprov.dll
16:17:50.0085 0312  C:\Windows\System32\drprov.dll - ok
16:17:50.0085 0312  [ D7B7159BC8374E87D8C45A30377A3440 ] C:\Windows\System32\ntlanman.dll
16:17:50.0085 0312  C:\Windows\System32\ntlanman.dll - ok
16:17:50.0101 0312  [ BE247AE996A9FDE007A27B51413A6C79 ] C:\Windows\System32\shdocvw.dll
16:17:50.0101 0312  C:\Windows\System32\shdocvw.dll - ok
16:17:50.0101 0312  [ 178A34E5554DCE485E1262DDF027960C ] C:\Users\Rachel\AppData\Local\Temp\91E953F9-0C5D-4254-B333-FD4F31A5546A.exe
16:17:50.0101 0312  C:\Users\Rachel\AppData\Local\Temp\91E953F9-0C5D-4254-B333-FD4F31A5546A.exe - ok
16:17:50.0101 0312  [ 4B9E4CE667DF26ADA061AA81E9AA841D ] C:\Windows\System32\spfileq.dll
16:17:50.0101 0312  C:\Windows\System32\spfileq.dll - ok
16:17:50.0116 0312  [ 81C0FA250EF6DC1C6B3FA2BCE81D6C2E ] C:\Windows\System32\WinSATAPI.dll
16:17:50.0116 0312  C:\Windows\System32\WinSATAPI.dll - ok
16:17:50.0116 0312  [ 81E7E920312D372CF57A817049AC7C76 ] C:\Program Files\Common Files\microsoft shared\OFFICE14\MSOXMLMF.DLL
16:17:50.0116 0312  C:\Program Files\Common Files\microsoft shared\OFFICE14\MSOXMLMF.DLL - ok
16:17:50.0132 0312  [ C3BEA4CDBE9805415372CA9757FD8149 ] C:\Program Files\AVAST Software\Avast\defs\13031001\aswScan.dll
16:17:50.0132 0312  C:\Program Files\AVAST Software\Avast\defs\13031001\aswScan.dll - ok
16:17:50.0148 0312  [ 399DA98E626257975EC87192838FAB9F ] C:\Program Files\AVAST Software\Avast\defs\13031001\aswEngin.dll
16:17:50.0148 0312  C:\Program Files\AVAST Software\Avast\defs\13031001\aswEngin.dll - ok
16:17:50.0163 0312  [ E479DDDD960DCCD8B5338B6E0F34AA97 ] C:\Program Files\AVAST Software\Avast\defs\13031001\aswCmnIS.dll
16:17:50.0163 0312  C:\Program Files\AVAST Software\Avast\defs\13031001\aswCmnIS.dll - ok
16:17:50.0179 0312  [ 3E4604CDB52F5E242C6E7D373160A684 ] C:\Program Files\AVAST Software\Avast\defs\13031001\aswCmnOS.dll
16:17:50.0179 0312  C:\Program Files\AVAST Software\Avast\defs\13031001\aswCmnOS.dll - ok
16:17:50.0179 0312  [ 14AB2136375A0E7F2B8F69618F749C26 ] C:\Program Files\AVAST Software\Avast\defs\13031001\aswCmnBS.dll
16:17:50.0179 0312  C:\Program Files\AVAST Software\Avast\defs\13031001\aswCmnBS.dll - ok
16:17:50.0194 0312  [ 8539ED943138AF05A92BD69A4DA092B2 ] C:\Program Files\AVAST Software\Avast\defs\13031001\aswRep.dll
16:17:50.0194 0312  C:\Program Files\AVAST Software\Avast\defs\13031001\aswRep.dll - ok
16:17:50.0194 0312  [ 0928FFC8BD4391F5878AD08085AE676E ] C:\Program Files\AVAST Software\Avast\defs\13031001\aswFiDb.dll
16:17:50.0194 0312  C:\Program Files\AVAST Software\Avast\defs\13031001\aswFiDb.dll - ok
16:17:50.0194 0312  [ F6A2A31CEBB6EC56BB82F418E1D1E608 ] C:\Program Files\AVAST Software\Avast\defs\13031001\algo.dll
16:17:50.0194 0312  C:\Program Files\AVAST Software\Avast\defs\13031001\algo.dll - ok
16:17:50.0210 0312  [ B6D90C99A72044AEF85A2B7D78FEBEF4 ] C:\Program Files\AVAST Software\Avast\defs\13031001\exts.dll
16:17:50.0210 0312  C:\Program Files\AVAST Software\Avast\defs\13031001\exts.dll - ok
16:17:50.0210 0312  [ 106B2C1DE615E08AFF9CE2A02E04F7CC ] C:\Program Files\AVAST Software\Avast\defs\13031001\ArPot.dll
16:17:50.0210 0312  C:\Program Files\AVAST Software\Avast\defs\13031001\ArPot.dll - ok
16:17:50.0210 0312  [ 7DF186D86CF8C571A12AAB788C777F84 ] C:\Windows\System32\wscproxystub.dll
16:17:50.0210 0312  C:\Windows\System32\wscproxystub.dll - ok
16:17:50.0226 0312  [ 5C3F9DBA818CD93379D1A0F215270374 ] C:\Windows\System32\esent.dll
16:17:50.0226 0312  C:\Windows\System32\esent.dll - ok
16:17:50.0226 0312  [ F148865E4AC4F715E322EA06E6E21D84 ] C:\Windows\System32\wbem\NCProv.dll
16:17:50.0226 0312  C:\Windows\System32\wbem\NCProv.dll - ok
16:17:50.0241 0312  [ C0B8B96D018849FD8CCF15FED84E8782 ] C:\Windows\System32\ie4uinit.exe
16:17:50.0241 0312  C:\Windows\System32\ie4uinit.exe - ok
16:17:50.0288 0312  [ F0FEFB0B5D25A75D478A4317139D937E ] C:\Windows\System32\iedkcs32.dll
16:17:50.0288 0312  C:\Windows\System32\iedkcs32.dll - ok
16:17:50.0288 0312  [ 7E9917D5309A90E7576653BFE39F80D8 ] C:\Windows\System32\timedate.cpl
16:17:50.0288 0312  C:\Windows\System32\timedate.cpl - ok
16:17:50.0304 0312  [ 5987EA8A82C53359BCD2C29D6588583E ] C:\Windows\System32\linkinfo.dll
16:17:50.0304 0312  C:\Windows\System32\linkinfo.dll - ok
16:17:50.0304 0312  [ F1278B3514EA6FA9BC39B20D26139AAC ] C:\Windows\System32\msiltcfg.dll
16:17:50.0304 0312  C:\Windows\System32\msiltcfg.dll - ok
16:17:50.0319 0312  [ 3A16EA01FCFAAB40882DB5BFEE632322 ] C:\Windows\System32\msftedit.dll
16:17:50.0319 0312  C:\Windows\System32\msftedit.dll - ok
16:17:50.0319 0312  [ 35AAE2E841AA1A949775168E119482C9 ] C:\Windows\System32\msls31.dll
16:17:50.0319 0312  C:\Windows\System32\msls31.dll - ok
16:17:50.0366 0312  [ 7896EFFDEE215C172BE724A64931EF1C ] C:\Program Files\Common Files\microsoft shared\ink\tiptsf.dll
16:17:50.0366 0312  C:\Program Files\Common Files\microsoft shared\ink\tiptsf.dll - ok
16:17:50.0366 0312  [ 175383778EB24D98C84E624021E3AA0B ] C:\Windows\System32\aeevts.dll
16:17:50.0366 0312  C:\Windows\System32\aeevts.dll - ok
16:17:50.0382 0312  [ 2A39F32E0067CBF221611FE1FA8C6D8F ] C:\Windows\System32\DeviceCenter.dll
16:17:50.0382 0312  C:\Windows\System32\DeviceCenter.dll - ok
16:17:50.0382 0312  [ DADFBA1A2DAA8412E5C70940D326FB63 ] C:\Program Files\Microsoft\BingDesktop\BingDesktop.exe
16:17:50.0382 0312  C:\Program Files\Microsoft\BingDesktop\BingDesktop.exe - ok
16:17:50.0397 0312  [ 46DA8E7484AC7A52CE1D6E428398724B ] C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe
16:17:50.0397 0312  C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe - ok
16:17:50.0397 0312  [ 083649EF692A066880C9326020915AFE ] C:\Program Files\AVAST Software\Avast\AvastUI.exe
16:17:50.0397 0312  C:\Program Files\AVAST Software\Avast\AvastUI.exe - ok
16:17:50.0413 0312  [ CAC14AF4424252548E4E42529DD5F1D4 ] C:\Program Files\Microsoft\BingDesktop\BingDesktop_Res.dll
16:17:50.0413 0312  C:\Program Files\Microsoft\BingDesktop\BingDesktop_Res.dll - ok
16:17:50.0413 0312  [ 8E2A7F1F62467A7DCB8AB2C0642F47CA ] C:\Program Files\iTunes\iTunesHelper.exe
16:17:50.0413 0312  C:\Program Files\iTunes\iTunesHelper.exe - ok
16:17:50.0413 0312  [ 3D57FFBAD3ED16B63DE3879BAB0FB56F ] C:\Windows\System32\networkexplorer.dll
16:17:50.0413 0312  C:\Windows\System32\networkexplorer.dll - ok
16:17:50.0428 0312  [ 179EED57FED3C7422A559633641032BA ] C:\Program Files\AVAST Software\Avast\aswUtil.dll
16:17:50.0428 0312  C:\Program Files\AVAST Software\Avast\aswUtil.dll - ok
16:17:50.0428 0312  [ CA6ADE4F7761BB15B3325356DC3B82BB ] C:\Windows\winsxs\x86_microsoft.vc90.mfc_1fc8b3b9a1e18e3b_9.0.30729.6161_none_4bf7e3e2bf9ada4c\mfc90u.dll
16:17:50.0428 0312  C:\Windows\winsxs\x86_microsoft.vc90.mfc_1fc8b3b9a1e18e3b_9.0.30729.6161_none_4bf7e3e2bf9ada4c\mfc90u.dll - ok
16:17:50.0444 0312  [ 3F533D75631178A880AEFFDF117213BE ] C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon_main.dll
16:17:50.0444 0312  C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon_main.dll - ok
16:17:50.0444 0312  [ 5082BC510FAD849630D09DA626BB7CDA ] C:\Program Files\iTunes\iTunesHelper.dll
16:17:50.0444 0312  C:\Program Files\iTunes\iTunesHelper.dll - ok
16:17:50.0460 0312  [ AFEEAFD7CF8ED6958A81ACC304C17B7D ] C:\Program Files\iTunes\iTunesHelper.Resources\iTunesHelper.dll
16:17:50.0460 0312  C:\Program Files\iTunes\iTunesHelper.Resources\iTunesHelper.dll - ok
16:17:50.0460 0312  [ BE643CD44DD06DA283634A3E51DC22BC ] C:\Program Files\iTunes\iTunesHelper.Resources\en.lproj\iTunesHelperLocalized.dll
16:17:50.0460 0312  C:\Program Files\iTunes\iTunesHelper.Resources\en.lproj\iTunesHelperLocalized.dll - ok
16:17:50.0460 0312  [ 2A8681AEA24003040CA7D677BE9F1702 ] C:\Windows\System32\drivers\13492915.sys
16:17:50.0460 0312  C:\Windows\System32\drivers\13492915.sys - ok
16:17:50.0475 0312  [ 64E211E0FDFCE4D186DF58BB7D0503BC ] C:\Windows\System32\gameux.dll
16:17:50.0475 0312  C:\Windows\System32\gameux.dll - ok
16:17:50.0475 0312  [ FBFCA1A574D47EE575448B719CBBF2E4 ] C:\Windows\winsxs\x86_microsoft.vc90.mfcloc_1fc8b3b9a1e18e3b_9.0.30729.6161_none_49768ef57548175e\MFC90ENU.DLL
16:17:50.0475 0312  C:\Windows\winsxs\x86_microsoft.vc90.mfcloc_1fc8b3b9a1e18e3b_9.0.30729.6161_none_49768ef57548175e\MFC90ENU.DLL - ok
16:17:50.0491 0312  [ 13790C4FB6311ECE6D6763A7EC2313FB ] C:\Program Files\AVAST Software\Avast\aswAra.dll
16:17:50.0491 0312  C:\Program Files\AVAST Software\Avast\aswAra.dll - ok
16:17:50.0491 0312  [ F0E7DEC6F7A3610949BDED0CA8CCB3EA ] C:\Program Files\AVAST Software\Avast\aswData.dll
16:17:50.0491 0312  C:\Program Files\AVAST Software\Avast\aswData.dll - ok
16:17:50.0491 0312  [ AB6E3DF509C6BD59062F685A40395C23 ] C:\Program Files\AVAST Software\Avast\1033\uiLangRes.dll
16:17:50.0491 0312  C:\Program Files\AVAST Software\Avast\1033\uiLangRes.dll - ok
16:17:50.0506 0312  [ AB04C6CE5DF23819B914F822E9AA0EDF ] C:\Program Files\AVAST Software\Avast\CommonRes.dll
16:17:50.0506 0312  C:\Program Files\AVAST Software\Avast\CommonRes.dll - ok
16:17:50.0506 0312  [ 672D7C5080ACB003343006405DA2E621 ] C:\Windows\System32\thumbcache.dll
16:17:50.0506 0312  C:\Windows\System32\thumbcache.dll - ok
16:17:50.0506 0312  [ 102CF6879887BBE846A00C459E6D4ABC ] C:\Windows\System32\riched20.dll
16:17:50.0506 0312  C:\Windows\System32\riched20.dll - ok
16:17:50.0522 0312  [ F023A14FE899F5401935CAC119A723CE ] C:\Users\Rachel\AppData\Local\Akamai\netsession_win.exe
16:17:50.0522 0312  C:\Users\Rachel\AppData\Local\Akamai\netsession_win.exe - ok
16:17:50.0522 0312  [ 37CF3324F46CEB3A4F2686C617CBB35C ] C:\Program Files\Common Files\Apple\Mobile Device Support\iTunesMobileDevice.dll
16:17:50.0522 0312  C:\Program Files\Common Files\Apple\Mobile Device Support\iTunesMobileDevice.dll - ok
16:17:50.0522 0312  [ E46B17060D3962A384AE484094614788 ] C:\Program Files\iPod\bin\iPodService.exe
16:17:50.0522 0312  C:\Program Files\iPod\bin\iPodService.exe - ok
16:17:50.0538 0312  [ 487F44B08EFEAF5AD087878357B9403D ] C:\Windows\System32\pdh.dll
16:17:50.0538 0312  C:\Windows\System32\pdh.dll - ok
16:17:50.0538 0312  [ 912649A1B3F9E6ACB3899FBDABA2ED5F ] C:\Windows\System32\stobject.dll
16:17:50.0538 0312  C:\Windows\System32\stobject.dll - ok
16:17:50.0553 0312  [ 67C1B58706B47EEBA4E117AC197289E6 ] C:\Windows\System32\batmeter.dll
16:17:50.0553 0312  C:\Windows\System32\batmeter.dll - ok
16:17:50.0569 0312  [ 8FEDBE7A5D3E5F91FD4B96DAFA4DD197 ] C:\Users\Rachel\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe
16:17:50.0569 0312  C:\Users\Rachel\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe - ok
16:17:50.0569 0312  [ 691BAF41144EBDE972A66C5EB5210FC8 ] C:\Program Files\iPod\bin\iPodService.Resources\en.lproj\iPodServiceLocalized.dll
16:17:50.0569 0312  C:\Program Files\iPod\bin\iPodService.Resources\en.lproj\iPodServiceLocalized.dll - ok
16:17:50.0584 0312  [ 665FBA44C65BAC9EE8AF9A5E37036640 ] C:\Program Files\iPod\bin\iPodService.Resources\iPodService.dll
16:17:50.0584 0312  C:\Program Files\iPod\bin\iPodService.Resources\iPodService.dll - ok
16:17:50.0584 0312  [ 9FF8159ECFBD1272B73953BF6528A077 ] C:\Program Files\uTorrent\uTorrent.exe
16:17:50.0584 0312  C:\Program Files\uTorrent\uTorrent.exe - ok
16:17:50.0600 0312  [ 0DCA6A11D09D4C2CBE6B898B897EA915 ] C:\Windows\System32\UIAnimation.dll
16:17:50.0600 0312  C:\Windows\System32\UIAnimation.dll - ok
16:17:50.0600 0312  [ D205C24A9D069049FE2DF2A1B38726A7 ] C:\Windows\System32\wdmaud.drv
16:17:50.0600 0312  C:\Windows\System32\wdmaud.drv - ok
16:17:50.0631 0312  [ 9C67F6BBDA3881CFD02095160CF91576 ] C:\Windows\System32\ksuser.dll
16:17:50.0631 0312  C:\Windows\System32\ksuser.dll - ok
16:17:50.0647 0312  [ C940F2F5C60B3727C5F18840735B229C ] C:\Windows\System32\AudioSes.dll
16:17:50.0647 0312  C:\Windows\System32\AudioSes.dll - ok
16:17:50.0647 0312  [ D90CCD7E9D2843E9F26B4323B3A13F46 ] C:\Program Files\PeerBlock\peerblock.exe
16:17:50.0647 0312  C:\Program Files\PeerBlock\peerblock.exe - ok
16:17:50.0662 0312  [ C8333F1F77A1B2E25F2202E892CAF634 ] C:\Windows\System32\prnfldr.dll
16:17:50.0662 0312  C:\Windows\System32\prnfldr.dll - ok
16:17:50.0679 0312  [ 4895F67E1C74A855285C95741F3DA695 ] C:\Windows\System32\Macromed\Flash\Flash32_11_6_602_171.ocx
16:17:50.0679 0312  C:\Windows\System32\Macromed\Flash\Flash32_11_6_602_171.ocx - ok
16:17:50.0679 0312  [ A1F86A5A0DA1BEC12B7DD19C6234BB15 ] C:\Users\Rachel\AppData\Local\Apps\F.lux\flux.exe
16:17:50.0679 0312  C:\Users\Rachel\AppData\Local\Apps\F.lux\flux.exe - ok
16:17:50.0695 0312  [ 3FF0FA0A81910617739644A06D06D016 ] C:\Windows\System32\fdProxy.dll
16:17:50.0695 0312  C:\Windows\System32\fdProxy.dll - ok
16:17:50.0695 0312  [ 07393A09C46083588E751B63B03C8301 ] C:\Windows\System32\msacm32.drv
16:17:50.0695 0312  C:\Windows\System32\msacm32.drv - ok
16:17:50.0710 0312  [ 7D0508F876D5A69C1C12BAEC845F4967 ] C:\ProgramData\Boxtools\Boxofttoolbox.exe
16:17:50.0710 0312  C:\ProgramData\Boxtools\Boxofttoolbox.exe - ok
16:17:50.0710 0312  [ 5A12C364AD1D4FCC0AD0E56DBBC34462 ] C:\Windows\System32\midimap.dll
16:17:50.0710 0312  C:\Windows\System32\midimap.dll - ok
16:17:50.0726 0312  [ BBA9D5A730D5E304117AD26923EBD8AA ] C:\Windows\System32\AudioEng.dll
16:17:50.0726 0312  C:\Windows\System32\AudioEng.dll - ok
16:17:50.0726 0312  [ 2F6E885C432927A186C2E352C8A1CBF4 ] C:\Program Files\PeerBlock\pbfilter.sys
16:17:50.0726 0312  C:\Program Files\PeerBlock\pbfilter.sys - ok
16:17:50.0726 0312  [ ADDB05C93272A62606599B24730BD645 ] C:\Windows\System32\DXP.dll
16:17:50.0726 0312  C:\Windows\System32\DXP.dll - ok
16:17:50.0741 0312  [ 96F0F8F4DEE598C8D12AD9633E0CFE2A ] C:\Windows\System32\AUDIOKSE.dll
16:17:50.0741 0312  C:\Windows\System32\AUDIOKSE.dll - ok
16:17:50.0741 0312  [ 8B5EEFEEC1E6D1A72A06C526628AD161 ] C:\Windows\System32\aelupsvc.dll
16:17:50.0741 0312  C:\Windows\System32\aelupsvc.dll - ok
16:17:50.0757 0312  [ 856CFFCD835528136367BB1A8FE1DB87 ] C:\Windows\System32\Syncreg.dll
16:17:50.0757 0312  C:\Windows\System32\Syncreg.dll - ok
16:17:50.0757 0312  [ F8F03D206F7D5811D630349A23E9B9B9 ] C:\Windows\ehome\ehSSO.dll
16:17:50.0757 0312  C:\Windows\ehome\ehSSO.dll - ok
16:17:50.0773 0312  [ 4E30ED3E551E867ADD1C8D58F5EDD9DF ] C:\Windows\System32\WMALFXGFXDSP.dll
16:17:50.0773 0312  C:\Windows\System32\WMALFXGFXDSP.dll - ok
16:17:50.0773 0312  [ EAB975DB4C2805927FE5BD047D05C9AA ] C:\Windows\System32\netshell.dll
16:17:50.0773 0312  C:\Windows\System32\netshell.dll - ok
16:17:50.0773 0312  [ 40B82688907A7DBA4DB3B5ADDE3EAB3B ] C:\Windows\System32\mfplat.dll
16:17:50.0773 0312  C:\Windows\System32\mfplat.dll - ok
16:17:50.0788 0312  [ B2B3DAE040F6B5AE1DF52B0CD7631A18 ] C:\Windows\System32\AltTab.dll
16:17:50.0788 0312  C:\Windows\System32\AltTab.dll - ok
16:17:50.0788 0312  [ 735263DA17BF5BAF9CCD483843BF9D5A ] C:\Windows\System32\WPDShServiceObj.dll
16:17:50.0788 0312  C:\Windows\System32\WPDShServiceObj.dll - ok
16:17:50.0804 0312  [ 9002819DD5639EB046F4C68C09B2F9E0 ] C:\ProgramData\Boxtools\Toolbox.exe
16:17:50.0804 0312  C:\ProgramData\Boxtools\Toolbox.exe - ok
16:17:50.0819 0312  [ ADB45A977BD9E45790CA496DB84BA148 ] C:\Windows\System32\PortableDeviceTypes.dll
16:17:50.0819 0312  C:\Windows\System32\PortableDeviceTypes.dll - ok
16:17:50.0819 0312  [ 3D6F22551D422F97AACB0BB927E4C846 ] C:\Windows\System32\pnidui.dll
16:17:50.0819 0312  C:\Windows\System32\pnidui.dll - ok
16:17:50.0835 0312  [ BD626EF05967D14C772B8096292731A3 ] C:\Windows\System32\QUTIL.DLL
16:17:50.0835 0312  C:\Windows\System32\QUTIL.DLL - ok
16:17:50.0835 0312  [ CF4274CEEA9F7791FB7FC40A066BC2C7 ] C:\Windows\System32\cscobj.dll
16:17:50.0835 0312  C:\Windows\System32\cscobj.dll - ok
16:17:50.0835 0312  [ 236F286E103FD44BD85FDD93097FD5DD ] C:\Windows\System32\SearchIndexer.exe
16:17:50.0835 0312  C:\Windows\System32\SearchIndexer.exe - ok
16:17:50.0851 0312  [ 5DEC8EC9727B90685A38CA672C84C1F5 ] C:\Users\Rachel\AppData\Roaming\Dropbox\bin\Dropbox.exe
16:17:50.0851 0312  C:\Users\Rachel\AppData\Roaming\Dropbox\bin\Dropbox.exe - ok
16:17:50.0851 0312  [ 674B0C0F6A448EB185CAAB9C51D44032 ] C:\Windows\System32\srchadmin.dll
16:17:50.0851 0312  C:\Windows\System32\srchadmin.dll - ok
16:17:50.0866 0312  [ 9A39A2A5F443A756C568C6ED5748AFE4 ] C:\Windows\System32\ActionCenter.dll
16:17:50.0866 0312  C:\Windows\System32\ActionCenter.dll - ok
16:17:50.0866 0312  [ B26AB41FF34993D5B7ABBFE7BACBFA94 ] C:\games\In-Poculis\Mahjong In Poculis\MahjongLauncher.exe
16:17:50.0866 0312  C:\games\In-Poculis\Mahjong In Poculis\MahjongLauncher.exe - ok
16:17:50.0866 0312  [ A80C173AC5C75706BB74AE4D78F2A53D ] C:\Program Files\Windows Media Player\wmplayer.exe
16:17:50.0866 0312  C:\Program Files\Windows Media Player\wmplayer.exe - ok
16:17:50.0882 0312  [ 9213C294BBFCAA9AA063367A1647452B ] C:\Program Files\WinRAR\WinRAR.exe
16:17:50.0882 0312  C:\Program Files\WinRAR\WinRAR.exe - ok
16:17:50.0882 0312  [ 178A34E5554DCE485E1262DDF027960C ] C:\Users\Rachel\Desktop\tdsskiller.exe
16:17:50.0882 0312  C:\Users\Rachel\Desktop\tdsskiller.exe - ok
16:17:50.0882 0312  [ 6FA41E0C86EF049A12C05CA4BBA8F9AF ] C:\Windows\System32\perfos.dll
16:17:50.0882 0312  C:\Windows\System32\perfos.dll - ok
16:17:50.0897 0312  [ 703FFD301AB900B047337C5D40FD6F96 ] C:\Windows\System32\olepro32.dll
16:17:50.0897 0312  C:\Windows\System32\olepro32.dll - ok
16:17:50.0897 0312  [ F0812A35F455A95D99115C3578DA5D2F ] C:\Program Files\Boxoft free APE to MP3 (freeware)\midas.dll
16:17:50.0897 0312  C:\Program Files\Boxoft free APE to MP3 (freeware)\midas.dll - ok
16:17:50.0913 0312  [ 2D94DD0891527FC1E9DDBA312AFEEA1B ] C:\Program Files\Foxit Software\Foxit Reader\Foxit Reader.exe
16:17:50.0913 0312  C:\Program Files\Foxit Software\Foxit Reader\Foxit Reader.exe - ok
16:17:50.0913 0312  [ 465DBF63A5049E4DB4BC5C12FFE781CB ] C:\Windows\System32\tquery.dll
16:17:50.0913 0312  C:\Windows\System32\tquery.dll - ok
16:17:50.0929 0312  [ 0E85C11F8850D524B02181C6E02BA9AE ] C:\Windows\System32\dsound.dll
16:17:50.0929 0312  C:\Windows\System32\dsound.dll - ok
16:17:50.0944 0312  [ 0241CB16136B9A4939CA0395768AE286 ] C:\Windows\System32\mssrch.dll
16:17:50.0944 0312  C:\Windows\System32\mssrch.dll - ok
16:17:50.0944 0312  [ FF8E7194A014B694CF065760042E5946 ] C:\Program Files\AVAST Software\Avast\defs\13031001\uiext.dll
16:17:50.0944 0312  C:\Program Files\AVAST Software\Avast\defs\13031001\uiext.dll - ok
16:17:50.0944 0312  [ 81600E2E27ED61427AAD865B9BCDDB9D ] C:\Windows\System32\msidle.dll
16:17:50.0944 0312  C:\Windows\System32\msidle.dll - ok
16:17:50.0960 0312  [ 7CCCFCA7510684768DA22092D1FA4DB2 ] C:\Windows\System32\netman.dll
16:17:50.0960 0312  C:\Windows\System32\netman.dll - ok
16:17:50.0960 0312  [ 1CBF15FDB0310345A68972EB5C5B948F ] C:\Windows\System32\mssprxy.dll
16:17:50.0960 0312  C:\Windows\System32\mssprxy.dll - ok
16:17:50.0960 0312  [ 53946B69BA0836BD95B03759530C81EC ] C:\Windows\System32\IPSECSVC.DLL
16:17:50.0960 0312  C:\Windows\System32\IPSECSVC.DLL - ok
16:17:50.0975 0312  [ B63E24E9271E99FD4540E3CA22A937DA ] C:\Windows\System32\en-US\tquery.dll.mui
16:17:50.0975 0312  C:\Windows\System32\en-US\tquery.dll.mui - ok
16:17:50.0975 0312  [ DB603D3FD090C66F9709EF6493C26BA3 ] C:\Windows\System32\FwRemoteSvr.dll
16:17:50.0975 0312  C:\Windows\System32\FwRemoteSvr.dll - ok
16:17:50.0991 0312  [ B0033D0723317C9D71B3BB80245D1FA5 ] C:\Users\Rachel\AppData\Roaming\Spotify\spotify.exe
16:17:50.0991 0312  C:\Users\Rachel\AppData\Roaming\Spotify\spotify.exe - ok
16:17:50.0991 0312  [ D39DA70FEA6BD713682F70635587DA9E ] C:\Windows\System32\rasdlg.dll
16:17:50.0991 0312  C:\Windows\System32\rasdlg.dll - ok
16:17:50.0991 0312  [ C2D2C87649E0315B4356B51498882B37 ] C:\Program Files\VideoLAN\VLC\vlc.exe
16:17:50.0991 0312  C:\Program Files\VideoLAN\VLC\vlc.exe - ok
16:17:51.0007 0312  [ 04B88428A872390D235BE52D38A9D4EF ] C:\Windows\System32\dot3api.dll
16:17:51.0007 0312  C:\Windows\System32\dot3api.dll - ok
16:17:51.0007 0312  [ 32BE4A1FAFCCD5CA9AB0CE772C43D5E2 ] C:\Windows\System32\SnippingTool.exe
16:17:51.0007 0312  C:\Windows\System32\SnippingTool.exe - ok
16:17:51.0022 0312  [ C2D6A4475B87651D5909E364439FDA52 ] C:\Windows\System32\FXSST.dll
16:17:51.0022 0312  C:\Windows\System32\FXSST.dll - ok
16:17:51.0022 0312  [ 8063046AA70B97CA9985672B8848FB2E ] C:\Windows\System32\wlanhlp.dll
16:17:51.0022 0312  C:\Windows\System32\wlanhlp.dll - ok
16:17:51.0038 0312  [ B010CF886420EE29C2C276646721D255 ] C:\Windows\System32\wlanapi.dll
16:17:51.0038 0312  C:\Windows\System32\wlanapi.dll - ok
16:17:51.0038 0312  [ 942E57152F1CD0533644AB30EF1A4728 ] C:\Windows\System32\FXSAPI.dll
16:17:51.0038 0312  C:\Windows\System32\FXSAPI.dll - ok
16:17:51.0053 0312  [ C4096CA42199428B3D63DC206C197F0E ] C:\Windows\System32\FXSRESM.dll
16:17:51.0053 0312  C:\Windows\System32\FXSRESM.dll - ok
16:17:51.0053 0312  [ D378BFFB70923139D6A4F546864AA61C ] C:\Windows\System32\notepad.exe
16:17:51.0053 0312  C:\Windows\System32\notepad.exe - ok
16:17:51.0053 0312  [ 967EA5B213E9984CBE270205DF37755B ] C:\Windows\System32\FXSSVC.exe
16:17:51.0053 0312  C:\Windows\System32\FXSSVC.exe - ok
16:17:51.0069 0312  [ 339DFA98DDDA7DDF735CE21C82E6F1DD ] C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe
16:17:51.0069 0312  C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe - ok
16:17:51.0069 0312  [ 53683A331F8A1BB20ADD0330F1DE6388 ] C:\Program Files\Windows Media Player\wmpnscfg.exe
16:17:51.0069 0312  C:\Program Files\Windows Media Player\wmpnscfg.exe - ok
16:17:51.0085 0312  [ 8F8AB20AA863EA95A421B9D54C74F20C ] C:\Program Files\Windows Media Player\wmpnssci.dll
16:17:51.0085 0312  C:\Program Files\Windows Media Player\wmpnssci.dll - ok
16:17:51.0085 0312  [ BBD351CB2E5455F0E96FE4460EC05F52 ] C:\Windows\Installer\{90140000-0012-0000-0000-0000000FF1CE}\wordicon.exe
16:17:51.0085 0312  C:\Windows\Installer\{90140000-0012-0000-0000-0000000FF1CE}\wordicon.exe - ok
16:17:51.0100 0312  [ 3B40D3A61AA8C21B88AE57C58AB3122E ] C:\Program Files\Windows Media Player\wmpnetwk.exe
16:17:51.0100 0312  C:\Program Files\Windows Media Player\wmpnetwk.exe - ok
16:17:51.0100 0312  [ 60B7C0FEAD45F2066E5B805A91F4F0FC ] C:\Windows\System32\calc.exe
16:17:51.0100 0312  C:\Windows\System32\calc.exe - ok
16:17:51.0100 0312  [ C02AA67276FEE0C15CC4D6D616BDE95E ] C:\Windows\System32\WWanAPI.dll
16:17:51.0100 0312  C:\Windows\System32\WWanAPI.dll - ok
16:17:51.0116 0312  [ 854563425495A29FB4B198A6ABEBE06D ] C:\Program Files\iTunes\iTunes.exe
16:17:51.0116 0312  C:\Program Files\iTunes\iTunes.exe - ok
16:17:51.0116 0312  [ F2ED6D00921CA138289E5E0CCB9ABF87 ] C:\Windows\System32\wwapi.dll
16:17:51.0116 0312  C:\Windows\System32\wwapi.dll - ok
16:17:51.0131 0312  [ 5CF15474FFDB5005E54958DF6EDD97AB ] C:\Windows\System32\wmdrmdev.dll
16:17:51.0131 0312  C:\Windows\System32\wmdrmdev.dll - ok
16:17:51.0131 0312  [ 47D052D9EE1FD3BA2A55D13F61E3EF24 ] C:\Windows\System32\drmv2clt.dll
16:17:51.0131 0312  C:\Windows\System32\drmv2clt.dll - ok
16:17:51.0131 0312  [ 02530B0B7E048DD5AC8D52DAEACAEB2B ] C:\Windows\System32\QAGENT.DLL
16:17:51.0131 0312  C:\Windows\System32\QAGENT.DLL - ok
16:17:51.0147 0312  [ B201AF83DF2E85323E29EB83E4046810 ] C:\Program Files\Internet Explorer\iexplore.exe
16:17:51.0147 0312  C:\Program Files\Internet Explorer\iexplore.exe - ok
16:17:51.0178 0312  [ 40EEDE4EE98C716827148172ECC898D4 ] C:\Windows\Installer\{268278CF-FB69-4D98-B70E-BFEC1CDCA225}\iTunesIco.exe
16:17:51.0178 0312  C:\Windows\Installer\{268278CF-FB69-4D98-B70E-BFEC1CDCA225}\iTunesIco.exe - ok
16:17:51.0194 0312  [ 1957D49A9613FAAD1C73B508CCE02AA5 ] C:\Windows\System32\wmp.dll
16:17:51.0194 0312  C:\Windows\System32\wmp.dll - ok
16:17:51.0209 0312  [ 40FF6C636380A87DE3A99F4E348BFDCB ] C:\Windows\System32\mstsc.exe
16:17:51.0209 0312  C:\Windows\System32\mstsc.exe - ok
16:17:51.0209 0312  [ E585445D5021971FAE10393F0F1C3961 ] C:\Windows\System32\qmgr.dll
16:17:51.0209 0312  C:\Windows\System32\qmgr.dll - ok
16:17:51.0225 0312  [ 0552A8684BF7566F744D5B19FF6AEC6B ] C:\Windows\System32\bitsperf.dll
16:17:51.0225 0312  C:\Windows\System32\bitsperf.dll - ok
16:17:51.0241 0312  [ F45ED8C4F9AF862CD9992849B5203C11 ] C:\Windows\System32\bitsigd.dll
16:17:51.0241 0312  C:\Windows\System32\bitsigd.dll - ok
16:17:51.0241 0312  [ 954EA9B34F155C844B11F4047A8F6F89 ] C:\Windows\System32\upnp.dll
16:17:51.0241 0312  C:\Windows\System32\upnp.dll - ok
16:17:51.0256 0312  [ D887C9FD02AC9FA880F6E5027A43E118 ] C:\Windows\System32\ssdpsrv.dll
16:17:51.0256 0312  C:\Windows\System32\ssdpsrv.dll - ok
16:17:51.0256 0312  [ A0D6C3A04C174F37E62A69C105FCB27F ] C:\Program Files\GIMP 2\bin\gimp-2.8.exe
16:17:51.0256 0312  C:\Program Files\GIMP 2\bin\gimp-2.8.exe - ok
16:17:51.0256 0312  [ C5A75EB48E2344ABDC162BDA79E16841 ] C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
16:17:51.0256 0312  C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe - ok
16:17:51.0272 0312  [ 0FBC74AA20FE0AE6884279F893169C60 ] C:\Windows\System32\wmploc.DLL
16:17:51.0272 0312  C:\Windows\System32\wmploc.DLL - ok
16:17:51.0272 0312  [ E5F7C30EDF0892667933BE879F067D67 ] C:\Windows\System32\msvcr100_clr0400.dll
16:17:51.0272 0312  C:\Windows\System32\msvcr100_clr0400.dll - ok
16:17:51.0272 0312  [ D83947A58613E9091B4C9CC0F1546A8D ] C:\Windows\System32\mscoree.dll
16:17:51.0272 0312  C:\Windows\System32\mscoree.dll - ok
16:17:51.0272 0312  [ 4DD82FE0224BCD5E2DEBF9CC38592A0F ] C:\Program Files\Google\Chrome\Application\chrome.exe
16:17:51.0272 0312  C:\Program Files\Google\Chrome\Application\chrome.exe - ok
16:17:51.0287 0312  [ B3A5EC6B6B6673DB7E87C2BCDBDDC074 ] C:\Windows\System32\FntCache.dll
16:17:51.0287 0312  C:\Windows\System32\FntCache.dll - ok
16:17:51.0287 0312  [ E3D5E244807AD655787FCD25477CC1BC ] C:\Windows\System32\bthprops.cpl
16:17:51.0287 0312  C:\Windows\System32\bthprops.cpl - ok
16:17:51.0287 0312  [ ED0F04D5DE32FEC14E91D7DD9571580D ] C:\Users\Rachel\Desktop\iExplore.exe
16:17:51.0287 0312  C:\Users\Rachel\Desktop\iExplore.exe - ok
16:17:51.0303 0312  [ FB9D402AE60437706E03CE416C480F8D ] C:\Program Files\Free FLAC to MP3 Converter\FLACToMP3.exe
16:17:51.0303 0312  C:\Program Files\Free FLAC to MP3 Converter\FLACToMP3.exe - ok
16:17:51.0303 0312  [ 9685BF8B3CF2CF3FD437E2DC32112D64 ] C:\Windows\Installer\{90140000-0012-0000-0000-0000000FF1CE}\pubs.exe
16:17:51.0303 0312  C:\Windows\Installer\{90140000-0012-0000-0000-0000000FF1CE}\pubs.exe - ok
16:17:51.0303 0312  [ BE3AB4803C963BE0357541EC3B17D443 ] C:\Users\Rachel\Desktop\aswMBR.exe
16:17:51.0303 0312  C:\Users\Rachel\Desktop\aswMBR.exe - ok
16:17:51.0319 0312  [ E1AC89F6C5252057E6062843E36A6701 ] C:\Windows\System32\SearchProtocolHost.exe
16:17:51.0319 0312  C:\Windows\System32\SearchProtocolHost.exe - ok
16:17:51.0319 0312  [ EA2B00551F3E7B3D5F7FB730A55F8246 ] C:\Windows\System32\blackbox.dll
16:17:51.0319 0312  C:\Windows\System32\blackbox.dll - ok
16:17:51.0319 0312  [ 7F19838AC317C34FCED020BE529AF71E ] C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe
16:17:51.0319 0312  C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe - ok
16:17:51.0334 0312  [ A5D237B8673025B052C0E6FDB6A883E8 ] C:\Windows\System32\msshooks.dll
16:17:51.0334 0312  C:\Windows\System32\msshooks.dll - ok
16:17:51.0334 0312  [ A6CD6B3F71E13E2E45B727FB8A47EA87 ] C:\Windows\System32\SearchFilterHost.exe
16:17:51.0334 0312  C:\Windows\System32\SearchFilterHost.exe - ok
16:17:51.0334 0312  [ F5DF6846F30E9F54EA60CCAEB3FB2055 ] C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscoreei.dll
16:17:51.0334 0312  C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscoreei.dll - ok
16:17:51.0350 0312  [ 5193DE33F3284C447E0D31DAFBF92570 ] C:\Windows\System32\webcheck.dll
16:17:51.0350 0312  C:\Windows\System32\webcheck.dll - ok
16:17:51.0350 0312  [ DB67C7C62038BDE813CB6486581A7611 ] C:\Windows\System32\mssph.dll
16:17:51.0350 0312  C:\Windows\System32\mssph.dll - ok
16:17:51.0350 0312  [ 35DB83C4DE9FA3889E937125D115EAA0 ] C:\Program Files\Google\Update\1.3.21.135\goopdateres_en.dll
16:17:51.0350 0312  C:\Program Files\Google\Update\1.3.21.135\goopdateres_en.dll - ok
16:17:51.0365 0312  [ 8EE6BDE1D572677AA35707C52C585F75 ] C:\Windows\System32\mlang.dll
16:17:51.0365 0312  C:\Windows\System32\mlang.dll - ok
16:17:51.0381 0312  [ 62CBF36E3E10BAA74224BC7A6DD998B5 ] C:\Program Files\Internet Explorer\ieproxy.dll
16:17:51.0381 0312  C:\Program Files\Internet Explorer\ieproxy.dll - ok
16:17:51.0381 0312  [ 8BC9DB92C4B2F3BE89185BEAB2AFC1F6 ] C:\Windows\System32\mapi32.dll
16:17:51.0381 0312  C:\Windows\System32\mapi32.dll - ok
16:17:51.0397 0312  [ 2DDEA2C345DA5BC589EFD398F220DB0E ] C:\Windows\System32\SyncCenter.dll
16:17:51.0397 0312  C:\Windows\System32\SyncCenter.dll - ok
16:17:51.0397 0312  [ CF87A1DE791347E75B98885214CED2B8 ] C:\Windows\System32\sppsvc.exe
16:17:51.0397 0312  C:\Windows\System32\sppsvc.exe - ok
16:17:51.0412 0312  [ 3F2B83695E5BF11930C16AF50E991F96 ] C:\Windows\System32\wmpps.dll
16:17:51.0412 0312  C:\Windows\System32\wmpps.dll - ok
16:17:51.0412 0312  [ 94512F9A4539B4DE24780B5293FE0A47 ] C:\Windows\Branding\ShellBrd\shellbrd.dll
16:17:51.0412 0312  C:\Windows\Branding\ShellBrd\shellbrd.dll - ok
16:17:51.0428 0312  [ 7B97346CE563B74BBCC120FC83E5A6D9 ] C:\Windows\System32\wmpmde.dll
16:17:51.0428 0312  C:\Windows\System32\wmpmde.dll - ok
16:17:51.0428 0312  [ 2D11BC8B460957E62E4420373A0D8BDA ] C:\Windows\System32\imapi2.dll
16:17:51.0428 0312  C:\Windows\System32\imapi2.dll - ok
16:17:51.0428 0312  [ BA4E1A60BD20CA7978C76D79F19E37F0 ] C:\Windows\System32\DisplaySwitch.exe
16:17:51.0428 0312  C:\Windows\System32\DisplaySwitch.exe - ok
16:17:51.0443 0312  [ D16D818E9930A6E5B4F6476DD0998D1A ] C:\Windows\System32\drivers\spsys.sys
16:17:51.0443 0312  C:\Windows\System32\drivers\spsys.sys - ok
16:17:51.0443 0312  [ CBBD4D79EEC3EF5A4ADAE9697944C6B9 ] C:\Windows\System32\MSMPEG2ENC.DLL
16:17:51.0443 0312  C:\Windows\System32\MSMPEG2ENC.DLL - ok
16:17:51.0443 0312  [ C7952D0A4C43A965A1741916BB134751 ] C:\Windows\System32\hgcpl.dll
16:17:51.0443 0312  C:\Windows\System32\hgcpl.dll - ok
16:17:51.0459 0312  [ 3FAE8F94296001C32EAB62CD7D82E0FD ] C:\Program Files\Windows Defender\MpSvc.dll
16:17:51.0459 0312  C:\Program Files\Windows Defender\MpSvc.dll - ok
16:17:51.0459 0312  [ F3222C893BD2F5821A0179E5C71E88FB ] C:\Windows\System32\fdPHost.dll
16:17:51.0459 0312  C:\Windows\System32\fdPHost.dll - ok
16:17:51.0459 0312  [ 5BB8C06EB5EA4BA22EE8A678F2D79B25 ] C:\Windows\System32\devenum.dll
16:17:51.0459 0312  C:\Windows\System32\devenum.dll - ok
16:17:51.0475 0312  [ DE6F4B7E62FDE776F3DE8E5FB5A05C48 ] C:\Windows\System32\fdWSD.dll
16:17:51.0475 0312  C:\Windows\System32\fdWSD.dll - ok
16:17:51.0475 0312  [ 7069AAB8536F29ED7323140973A2894B ] C:\Windows\System32\msdmo.dll
16:17:51.0475 0312  C:\Windows\System32\msdmo.dll - ok
16:17:51.0475 0312  [ 674611721264013DB169EC12AFC9C3B6 ] C:\Windows\System32\fdSSDP.dll
16:17:51.0475 0312  C:\Windows\System32\fdSSDP.dll - ok
16:17:51.0490 0312  [ 833FBB672460EFCE8011D262175FAD33 ] C:\Windows\System32\upnphost.dll
16:17:51.0490 0312  C:\Windows\System32\upnphost.dll - ok
16:17:51.0490 0312  [ 20308CF0675AD7CE5AAA6712DB823216 ] C:\Program Files\Windows Defender\MpClient.dll
16:17:51.0490 0312  C:\Program Files\Windows Defender\MpClient.dll - ok
16:17:51.0490 0312  [ 6658F4404DE03D75FE3BA09F7ABA6A30 ] C:\Windows\System32\ListSvc.dll
16:17:51.0490 0312  C:\Windows\System32\ListSvc.dll - ok
16:17:51.0506 0312  [ 08DF1B8C9C0754A7069E80A986373F52 ] C:\Windows\System32\P2P.dll
16:17:51.0506 0312  C:\Windows\System32\P2P.dll - ok
16:17:51.0506 0312  [ 1B0EC94520CAB89A9CE1B2DA405166AF ] C:\Windows\System32\p2pcollab.dll
16:17:51.0506 0312  C:\Windows\System32\p2pcollab.dll - ok
16:17:51.0506 0312  [ 9DC23ACF360AEA7DF55AD7A8D3FBF4E6 ] C:\Windows\System32\IdListen.dll
16:17:51.0506 0312  C:\Windows\System32\IdListen.dll - ok
16:17:51.0506 0312  [ F059EB4C9C256F62F196EAA439E28F74 ] C:\Windows\System32\hgprint.dll
16:17:51.0506 0312  C:\Windows\System32\hgprint.dll - ok
16:17:51.0521 0312  [ 4FB491AC8D46AAF22BA8BC5C73DABEF7 ] C:\Windows\System32\wbem\WmiPrvSE.exe
16:17:51.0521 0312  C:\Windows\System32\wbem\WmiPrvSE.exe - ok
16:17:51.0521 0312  [ 82A8521DDC60710C3D3D3E7325209BEC ] C:\Windows\System32\pnrpsvc.dll
16:17:51.0521 0312  C:\Windows\System32\pnrpsvc.dll - ok
16:17:51.0521 0312  [ C6B0509AA89F656247694E2D6ABF7255 ] C:\Windows\System32\wbem\wmiprov.dll
16:17:51.0521 0312  C:\Windows\System32\wbem\wmiprov.dll - ok
16:17:51.0537 0312  [ 61D57A5D7C6D9AFE10E77DAE6E1B445E ] C:\Windows\System32\QAGENTRT.DLL
16:17:51.0537 0312  C:\Windows\System32\QAGENTRT.DLL - ok
16:17:51.0537 0312  [ 9FD6496B6D91C8BE2A10BD55EAE2D5F2 ] C:\Windows\System32\fveui.dll
16:17:51.0537 0312  C:\Windows\System32\fveui.dll - ok
16:17:51.0537 0312  [ 59C3DDD501E39E006DAC31BF55150D91 ] C:\Windows\System32\p2psvc.dll
16:17:51.0537 0312  C:\Windows\System32\p2psvc.dll - ok
16:17:51.0537 0312  [ 1372E8E8FD066002131E3D509275E697 ] C:\Windows\System32\P2PGraph.dll
16:17:51.0537 0312  C:\Windows\System32\P2PGraph.dll - ok
16:17:51.0553 0312  [ 3A11396EAC2414012155AB14E5C1E332 ] C:\Windows\System32\sppwinob.dll
16:17:51.0553 0312  C:\Windows\System32\sppwinob.dll - ok
16:17:51.0553 0312  [ 6F5D49EFE0E7164E03AE773A3FE25340 ] C:\Windows\System32\wscsvc.dll
16:17:51.0553 0312  C:\Windows\System32\wscsvc.dll - ok
16:17:51.0553 0312  [ FC3EC24FCE372C89423E015A2AC1A31E ] C:\Windows\System32\wuaueng.dll
16:17:51.0553 0312  C:\Windows\System32\wuaueng.dll - ok
16:17:51.0568 0312  [ 1A617835452EEE5060976C9B9F5FE635 ] C:\Windows\System32\wuapi.dll
16:17:51.0568 0312  C:\Windows\System32\wuapi.dll - ok
16:17:51.0568 0312  [ 3458EDA96E30FBD0477A2800D3FB1909 ] C:\Windows\System32\wups.dll
16:17:51.0568 0312  C:\Windows\System32\wups.dll - ok
16:17:51.0568 0312  [ 387A8A473ECC5BA02CF453277C1F3274 ] C:\Windows\System32\mspatcha.dll
16:17:51.0568 0312  C:\Windows\System32\mspatcha.dll - ok
16:17:51.0584 0312  [ BDC0C99E472176C8C2C853A68ADC5073 ] C:\Windows\System32\wups2.dll
16:17:51.0584 0312  C:\Windows\System32\wups2.dll - ok
16:17:51.0584 0312  [ 421D9645B72CD341ECDBB0FCE06C97DE ] C:\Windows\System32\sppobjs.dll
16:17:51.0584 0312  C:\Windows\System32\sppobjs.dll - ok
16:17:51.0584 0312  [ 089B5F924E96BA9C40E4E4522BF43770 ] C:\Program Files\Windows Defender\MpRTP.dll
16:17:51.0584 0312  C:\Program Files\Windows Defender\MpRTP.dll - ok
16:17:51.0599 0312  [ 8D47D01378347889A662D54037A988CC ] C:\Windows\System32\tdh.dll
16:17:51.0599 0312  C:\Windows\System32\tdh.dll - ok
16:17:51.0599 0312  [ 5F4B4BD17FA4C8D03A4D1B5D9FF96641 ] C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{C0B3BAAF-F67C-498E-AF05-99660DFFFD94}\mpengine.dll
16:17:51.0599 0312  C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{C0B3BAAF-F67C-498E-AF05-99660DFFFD94}\mpengine.dll - ok
16:17:51.0599 0312  [ 4C1A82E9362DF1282355FBA3037DF0C4 ] C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{C0B3BAAF-F67C-498E-AF05-99660DFFFD94}\mpasbase.vdm
16:17:51.0599 0312  C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{C0B3BAAF-F67C-498E-AF05-99660DFFFD94}\mpasbase.vdm - ok
16:17:51.0615 0312  [ 1EA18326EC427922F5FE2208C10AB4CD ] C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{C0B3BAAF-F67C-498E-AF05-99660DFFFD94}\mpasdlta.vdm
16:17:51.0615 0312  C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{C0B3BAAF-F67C-498E-AF05-99660DFFFD94}\mpasdlta.vdm - ok
16:17:51.0615 0312  [ 99B9343280AF6A4C0F27CF2E28E94BBF ] C:\Windows\System32\dssenh.dll
16:17:51.0615 0312  C:\Windows\System32\dssenh.dll - ok
16:17:51.0615 0312  [ AA3B91B70E79BCE70AD3B190789B9574 ] C:\Windows\System32\drttransport.dll
16:17:51.0615 0312  C:\Windows\System32\drttransport.dll - ok
16:17:51.0631 0312  [ EE29FCC244C8033E2F748D863DCBF378 ] C:\Windows\System32\drt.dll
16:17:51.0631 0312  C:\Windows\System32\drt.dll - ok
16:17:51.0631 0312  [ ADD2ADE1C2B285AB8378D2DAAF991481 ] C:\Windows\System32\drivers\asyncmac.sys
16:17:51.0631 0312  C:\Windows\System32\drivers\asyncmac.sys - ok
16:17:51.0631 0312  [ 3CA5D661E6C5DDE5574D02F324C32E53 ] C:\Program Files\Windows Defender\MsMpLics.dll
16:17:51.0631 0312  C:\Program Files\Windows Defender\MsMpLics.dll - ok
16:17:51.0646 0312  [ D2F7A0ADC2EE0F65AB1F19D2E00C16B8 ] C:\Windows\System32\sc.exe
16:17:51.0646 0312  C:\Windows\System32\sc.exe - ok
16:17:51.0646 0312  [ 72E953215CADE1A726C04AAFDF6B463D ] C:\Windows\System32\taskhost.exe
16:17:51.0646 0312  C:\Windows\System32\taskhost.exe - ok
16:17:51.0646 0312  [ 55187FD710E27D5095D10A472C8BAF1C ] C:\Windows\System32\w32time.dll
16:17:51.0646 0312  C:\Windows\System32\w32time.dll - ok
16:17:51.0646 0312  [ B1462F0C851B0B0F3FBC4ADBB09CDF5E ] C:\Windows\System32\vmictimeprovider.dll
16:17:51.0646 0312  C:\Windows\System32\vmictimeprovider.dll - ok
16:17:51.0662 0312  [ 198366199A9F342EF87978D79308B49F ] C:\Windows\System32\RacEngn.dll
16:17:51.0662 0312  C:\Windows\System32\RacEngn.dll - ok
16:17:51.0662 0312  [ 3E1EBF74DD93287B7DC1C681B09E3639 ] C:\Windows\System32\usbceip.dll
16:17:51.0662 0312  C:\Windows\System32\usbceip.dll - ok
16:17:51.0662 0312  [ 22DE9DFF5565B00F230EAC0C635DAEB7 ] C:\Windows\System32\wsqmcons.exe
16:17:51.0662 0312  C:\Windows\System32\wsqmcons.exe - ok
16:17:51.0677 0312  [ 2003E9B15E1C502B146DAD2E383AC1E3 ] C:\Windows\System32\schtasks.exe
16:17:51.0677 0312  C:\Windows\System32\schtasks.exe - ok
16:17:51.0677 0312  [ B6C756FA661C5EB7B3547E60647F87A7 ] C:\Windows\System32\sqlceoledb30.dll
16:17:51.0677 0312  C:\Windows\System32\sqlceoledb30.dll - ok
16:17:51.0693 0312  [ 13CDD3FF0961A2EC6D9829A1640DD6DC ] C:\Windows\System32\sqlcese30.dll
16:17:51.0693 0312  C:\Windows\System32\sqlcese30.dll - ok
16:17:51.0693 0312  [ 60236C8C3B8C2D8B9A59326890533EB8 ] C:\Windows\System32\sqlceqp30.dll
16:17:51.0693 0312  C:\Windows\System32\sqlceqp30.dll - ok
16:17:51.0709 0312  [ CB67C2B94302DC94BC15ED6553A5C1C7 ] C:\Windows\System32\wbem\cimwin32.dll
16:17:51.0709 0312  C:\Windows\System32\wbem\cimwin32.dll - ok
16:17:51.0709 0312  [ D0481FB85BEEDD30A0884BE327880F80 ] C:\Windows\System32\framedynos.dll
16:17:51.0709 0312  C:\Windows\System32\framedynos.dll - ok
16:17:51.0724 0312  [ 72910F1DEB838E6E08A9017BFB7D4F0B ] C:\Windows\System32\browcli.dll
16:17:51.0724 0312  C:\Windows\System32\browcli.dll - ok
16:17:51.0724 0312  [ A42E7748BE906434C5FD17161D168C20 ] C:\Windows\System32\schedcli.dll
16:17:51.0724 0312  C:\Windows\System32\schedcli.dll - ok
16:17:51.0724 0312  [ 43BE3B9CA431F88E049928DC45C4365C ] C:\Windows\System32\wbem\wmipcima.dll
16:17:51.0724 0312  C:\Windows\System32\wbem\wmipcima.dll - ok
16:17:51.0740 0312  [ 907281ED4AD35D41B29FFDC211EBAD80 ] C:\Windows\System32\wmi.dll
16:17:51.0740 0312  C:\Windows\System32\wmi.dll - ok
16:17:51.0740 0312  [ F175E53C7C3B25A9029A131FB578B155 ] C:\Windows\System32\wscinterop.dll
16:17:51.0740 0312  C:\Windows\System32\wscinterop.dll - ok
16:17:51.0755 0312  [ 7FD5532C142DB6C9CC47AA4DCF71FDEC ] C:\Windows\System32\wscui.cpl
16:17:51.0755 0312  C:\Windows\System32\wscui.cpl - ok
16:17:51.0755 0312  [ 1869BD251211FB6275067372A45682D6 ] C:\Windows\System32\werconcpl.dll
16:17:51.0755 0312  C:\Windows\System32\werconcpl.dll - ok
16:17:51.0755 0312  [ AC804569BB2364FB6017370258A4091B ] C:\Windows\System32\wercplsupport.dll
16:17:51.0755 0312  C:\Windows\System32\wercplsupport.dll - ok
16:17:51.0771 0312  [ 57CE9D8350B1DD76EEC596C423C3C0BC ] C:\Windows\System32\hcproviders.dll
16:17:51.0771 0312  C:\Windows\System32\hcproviders.dll - ok
16:17:51.0771 0312  [ F9D038A8C2BDC3AE2548150A7AED0F8A ] C:\Windows\System32\ieui.dll
16:17:51.0771 0312  C:\Windows\System32\ieui.dll - ok
16:17:51.0771 0312  [ 1D4127FE151165C5FB9C0EED8701A3D1 ] C:\Program Files\Internet Explorer\IEShims.dll
16:17:51.0771 0312  C:\Program Files\Internet Explorer\IEShims.dll - ok
16:17:51.0771 0312  [ E290E3FDF645DF29D00D6368B9127E30 ] C:\Windows\System32\msfeeds.dll
16:17:51.0771 0312  C:\Windows\System32\msfeeds.dll - ok
16:17:51.0787 0312  [ 07F649CD36F266BBE33B814FA678AA43 ] C:\Windows\System32\mshtml.dll
16:17:51.0787 0312  C:\Windows\System32\mshtml.dll - ok
16:17:51.0787 0312  [ 35CEDE6439FF0D8903223A0817FFE46C ] C:\Windows\System32\d2d1.dll
16:17:51.0787 0312  C:\Windows\System32\d2d1.dll - ok
16:17:51.0787 0312  [ A29D734F650F958424743BE3BAA052C8 ] C:\Windows\System32\DWrite.dll
16:17:51.0787 0312  C:\Windows\System32\DWrite.dll - ok
16:17:51.0802 0312  [ A5D08B86E8A437AA6DEAF7A187BF6CA5 ] C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL
16:17:51.0802 0312  C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL - ok
16:17:51.0802 0312  [ 47FC5A4A45E883A36AFF884B3E6073B1 ] C:\Program Files\Microsoft Office\Office14\MSOHEV.DLL
16:17:51.0802 0312  C:\Program Files\Microsoft Office\Office14\MSOHEV.DLL - ok
16:17:51.0802 0312  [ 1E48F0135A8DF4CF20FEA85ACE94459B ] C:\Windows\System32\nvd3dum.dll
16:17:51.0802 0312  C:\Windows\System32\nvd3dum.dll - ok
16:17:51.0802 0312  [ EE9D715AF1B928982F417238B9914484 ] C:\Windows\System32\ieapfltr.dll
16:17:51.0802 0312  C:\Windows\System32\ieapfltr.dll - ok
16:17:51.0818 0312  [ A3FA99A16F10D44EDB7A8C340FA2EE1B ] C:\Windows\System32\jscript9.dll
16:17:51.0818 0312  C:\Windows\System32\jscript9.dll - ok
16:17:51.0818 0312  [ 124715CD10C62A78404F1A3B1048D062 ] C:\Program Files\AVAST Software\Avast\aswJsFlt.dll
16:17:51.0818 0312  C:\Program Files\AVAST Software\Avast\aswJsFlt.dll - ok
16:17:51.0818 0312  [ 1D1EAA16D193C6A2D45981ED3914D22A ] C:\Windows\System32\msimtf.dll
16:17:51.0818 0312  C:\Windows\System32\msimtf.dll - ok
16:17:51.0833 0312  [ 2572E1F0254E2267E97DE1B15D099EC4 ] C:\Windows\System32\d3d10.dll
16:17:51.0833 0312  C:\Windows\System32\d3d10.dll - ok
16:17:51.0833 0312  [ 547F78746F20901C770E8653B242217C ] C:\Windows\System32\d3d10core.dll
16:17:51.0833 0312  C:\Windows\System32\d3d10core.dll - ok
16:17:51.0833 0312  [ 52799EAD792B0E9AE7FD4BA5BD18FE5C ] C:\Windows\System32\wbem\WMIADAP.exe
16:17:51.0833 0312  C:\Windows\System32\wbem\WMIADAP.exe - ok
16:17:51.0849 0312  [ 529879612A7FAE235914E3AA6A9A669C ] C:\Windows\System32\loadperf.dll
16:17:51.0849 0312  C:\Windows\System32\loadperf.dll - ok
16:17:51.0849 0312  [ CA493A92DA9880B6F1A89C3DBD54BA5B ] C:\Windows\System32\dxtrans.dll
16:17:51.0849 0312  C:\Windows\System32\dxtrans.dll - ok
16:17:51.0849 0312  [ BAB9EF9A340113666F678AA2474904B6 ] C:\Windows\System32\ddrawex.dll
16:17:51.0849 0312  C:\Windows\System32\ddrawex.dll - ok
16:17:51.0865 0312  [ 198552AEFECA69D646867EC8D792DE95 ] C:\Windows\System32\ddraw.dll
16:17:51.0865 0312  C:\Windows\System32\ddraw.dll - ok
16:17:51.0865 0312  [ 55E5B32AE8D1F51A63C82919656FD275 ] C:\Windows\System32\dciman32.dll
16:17:51.0865 0312  C:\Windows\System32\dciman32.dll - ok
16:17:51.0865 0312  [ 4312DEBDACBE338F0B90E7F08E7672BE ] C:\Windows\System32\dxtmsft.dll
16:17:51.0865 0312  C:\Windows\System32\dxtmsft.dll - ok
16:17:51.0880 0312  [ 39E9AACC4C5FB3C3C0B12DE6D491553D ] C:\Windows\System32\WindowsCodecsExt.dll
16:17:51.0880 0312  C:\Windows\System32\WindowsCodecsExt.dll - ok
16:17:51.0880 0312  ============================================================
16:17:51.0880 0312  Scan finished
16:17:51.0880 0312  ============================================================
16:17:51.0896 3476  Detected object count: 0
16:17:51.0896 3476  Actual detected object count: 0
16:18:43.0557 3072  Deinitialize success



ASWMBR:

 

aswMBR version 0.9.9.1707 Copyright© 2011 AVAST Software
Run date: 2013-03-10 16:24:32
-----------------------------
16:24:32.323 OS Version: Windows 6.1.7601 Service Pack 1
16:24:32.323 Number of processors: 2 586 0x1706
16:24:32.323 ComputerName: WHOMPINGWILLOW UserName: Rachel
16:24:42.792 Initialize success
16:24:42.901 AVAST engine defs: 13031001
16:25:29.326 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP0T0L0-0
16:25:29.326 Disk 0 Vendor: WDC_WD10JPVT-75A1YT0 01.01A01 Size: 953869MB BusType: 11
16:25:29.342 Disk 0 MBR read successfully
16:25:29.357 Disk 0 MBR scan
16:25:29.357 Disk 0 Windows 7 default MBR code
16:25:29.357 Disk 0 Partition 1 80 (A) 07 HPFS/NTFS NTFS 796 MB offset 2048
16:25:29.373 Disk 0 Partition 2 00 07 HPFS/NTFS NTFS 953057 MB offset 1632256
16:25:29.404 Disk 0 Partition 3 00 17 Hidd HPFS/NTFS 10 MB offset 1953474560
16:25:29.404 Disk 0 scanning sectors +1953495040
16:25:29.451 Disk 0 scanning C:\Windows\system32\drivers
16:25:48.421 Service scanning
16:26:29.138 Modules scanning
16:26:59.135 Disk 0 trace - called modules:
16:26:59.135 ntkrnlpa.exe CLASSPNP.SYS disk.sys ACPI.sys halmacpi.dll ataport.SYS PCIIDEX.SYS msahci.sys
16:26:59.135 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0x861f4a58]
16:26:59.135 3 CLASSPNP.SYS[8b1c859e] -> nt!IofCallDriver -> [0x860f8918]
16:26:59.135 5 ACPI.sys[8aeac3d4] -> nt!IofCallDriver -> \Device\Ide\IdeDeviceP0T0L0-0[0x860f5030]
16:27:02.052 AVAST engine scan C:\Windows
16:27:10.310 AVAST engine scan C:\Windows\system32
16:29:36.133 AVAST engine scan C:\Windows\system32\drivers
16:29:56.757 AVAST engine scan C:\Users\Rachel
16:37:46.884 AVAST engine scan C:\ProgramData
16:38:07.991 Scan finished successfully
16:47:15.910 Disk 0 MBR has been saved successfully to "C:\Users\Rachel\Desktop\MBR.dat"
16:47:15.926 The log file has been saved successfully to "C:\Users\Rachel\Desktop\aswMBR.txt"

 

 

ESET:

C:\$Recycle.Bin\S-1-5-21-1783104225-2275313388-239571610-1001\$RRSTFGG.exe a variant of Win32/Adware.iBryte.F application cleaned by deleting - quarantined
C:\Users\Rachel\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\51\74c75eb3-1eb41963 multiple threats deleted - quarantined



#4 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:02:54 PM

Posted 10 March 2013 - 06:48 PM

Malwarebytes

--------------------

Please download Malwarebytes Anti-Malware and save it to your desktop.  If you already have it installed launch the program and update the database.

  • Make sure you are connected to the Internet and double-click on the it to install the application.
  • When the installation begins, follow the prompts and do not make any changes to default settings except to uncheck any offer for a free Pro trial version
  • Malwarebytes will automatically start and you will be asked to update the program before performing a scan.
  • If an update is found, the program will automatically update itself. Press the OK button and continue.
  • Under the Scanner tab, make sure the "Perform Quick Scan" option is selected.
  • Click on the Scan button.
  • When finished, a message box will say "The scan completed successfully. Click 'Show Results' to display all objects found".
  • Click OK to close the message box, then click the Show Results button to see a list of any malware that was found.
  • Make sure that everything is checked and then click Remove Selected.
  • When removal is completed, a log report will open in Notepad.
  • The log is automatically saved and can be viewed by clicking the Logs tab.
  • Copy and paste the contents of that report in your next reply. Be sure to post the complete log to include the top portion which shows the database version and your operating system.
  • Exit Malwarebytes when done.

Note: If Malwarebytes encounters a file that is difficult to remove, you will be asked to reboot your computer so it can proceed with the disinfection process. If asked to restart the computer, please do so immediately. Failure to reboot normally will prevent Malwarebytes from removing all the malware.


===================================================


Farbar's MiniToolBox

--------------------

  • Please download MiniToolBox, save it to your desktop
  • Please close any Firefox browsers you may have open
  • Double click the MiniToolBox.jpg icon to launch the program
  • Make sure the following options are checked:

    • Flush DNS
    • Report IE Proxy Settings
    • Reset IE Proxy Settings
    • Report FF Proxy Settings
    • Reset FF Proxy Settings
    • List content of Hosts
    • List IP configuration
    • List Winsock Entries
    • List last 10 Event Viewer log
    • List Installed Programs
    • List Devices
    • List Users, Partitions and Memory size.
  • Click Go and once the scan is completed a Result.txt Notepad document will open on your desktop
  • Please copy and paste the contents in your reply


===================================================


Farbar's Service Scanner

--------------------

Please download Farbar Service Scanner, save it to your desktop, and run it.

  • Make sure the following options are checked:

    • Internet Services
    • Windows Firewall
    • System Restore
    • Security Center/Action Center
    • Windows Update
    • Windows Defender
    • Other Services
  • Press "Scan".
  • It will create a log (FSS.txt) in the same directory the tool is run.
  • Please copy and paste the log to your reply.


===================================================


AdwCleaner by Xplode - Search for Adware

-------------------

  • Please download AdwCleaner by Xplode onto your desktop.
  • Double click on AdwCleaner.exe, select OK, then Run
  • Click on DELETE
  • A logfile will automatically open after the scan has finished
  • Copy and paste the contents in your reply
  • You can find the logfile at C:\AdwCleaner[R1].txt as well


===================================================


Junkware Removal Tooll by thisisu

-------------------

  • Please download Junkware Removal Tool and save it to your desktop.
  • Disable your AntiVirus and AntiSpyware applications, usually via a right click on the System Tray icon. They may otherwise interfere with our tools. (Click on this link to see a list of programs that should be disabled. The list is not all inclusive.)
  • Right-mouse click JRT.exe and select Run as administrator (Windows XP double click the icon)
  • Please allow the program time to run
  • Once completed a Notepad document will open on your desktop
  • Copy and paste the contents in your reply


===================================================


Rkill

-------------------

Please download Rkill by Grinler from one of the 4 links below (if one of them does not work try another...) and save it to your desktop:


  • In order for Rkill to run properly you must disable your anti-malware software.  Please refer to this page if you are not sure how.
  • Double-click on Rkill. (If you are using Windows Vista, please right-click on it and select Run As Administrator)
    • Note:  You may have to run Rkill a few times before it is successful.  You may also have to download Rkill from a different link which will save it as a different file name.
  • A black screen will appear and then disappear. Please do not worry, that is normal. This means that the tool has been successfully executed.
  • An Rkill.log will appear.  Please copy and paste the contents in your reply (file also located at c:\rkill.log)
  • Do not reboot your computer after running Rkill as the malware programs will start again.  If your computer reboots, run Rkill again before continuing on to the next step.
  • If nothing happens or if the tool does not run, please let me know in your next reply.


===================================================


Autoruns

--------------------

  • Please download AutoRuns and save it to your desktop
  • Double click the AutoRuns.zip folder
  • Double click autoruns.exe (not autorunsc.exe), select Run, then Run again and allow the information to populate
  • Select File, Save, Desktop (in the left hand pane), then Save filename as Autoruns.txt and change Save as type to  Text(*.txt).
  • Double click on the text file,copy and paste the contents in your reply


===================================================


Things I would like to see in your next reply. Please be sure to copy and paste the information rather than send an attachment. :thumbsup2:

  • Malwarebytes log
  • MiniToolBox log
  • Farbar's Service Scanner log
  • AdwCleaner log
  • Junkware Removal Tool log
  • Rkill log
  • Autoruns log



#5 yourgypsysoul

yourgypsysoul
  • Topic Starter

  • Members
  • 5 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:Ohio
  • Local time:03:54 PM

Posted 11 March 2013 - 05:53 PM

Malwarebytes log: 

 

Malwarebytes Anti-Malware 1.70.0.1100
www.malwarebytes.org

Database version: v2013.03.11.11

Windows 7 Service Pack 1 x86 NTFS
Internet Explorer 9.0.8112.16421
Rachel :: WHOMPINGWILLOW [administrator]

3/11/2013 6:22:08 PM
mbam-log-2013-03-11 (18-22-08).txt

Scan type: Quick scan
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 203813
Time elapsed: 7 minute(s), 23 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 0
(No malicious items detected)

(end)



Minitool box

 

 

MiniToolBox by Farbar  Version:05-03-2013
Ran by Rachel (administrator) on 11-03-2013 at 18:31:11
Running from "C:\Users\Rachel\Desktop"
Windows 7 Enterprise Service Pack 1 (X86)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.

========================= FF Proxy Settings: ==============================


"Reset FF Proxy Settings": Firefox Proxy settings were reset.

========================= Hosts content: =================================

 

========================= IP Configuration: ================================

Atheros AR928X Wireless Network Adapter = Wireless Network Connection (Connected)
Realtek PCIe GBE Family Controller = Local Area Connection (Media disconnected)
Bluetooth Device (Personal Area Network) = Bluetooth Network Connection (Media disconnected)


# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset
set global icmpredirects=enabled


popd
# End of IPv4 configuration

 

Windows IP Configuration

   Host Name . . . . . . . . . . . . : WhompingWillow
   Primary Dns Suffix  . . . . . . . :
   Node Type . . . . . . . . . . . . : Hybrid
   IP Routing Enabled. . . . . . . . : No
   WINS Proxy Enabled. . . . . . . . : No
   DNS Suffix Search List. . . . . . : columbus.rr.com

Ethernet adapter Bluetooth Network Connection:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Bluetooth Device (Personal Area Network)
   Physical Address. . . . . . . . . : 00-15-AF-F7-D2-83
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes

Ethernet adapter Local Area Connection:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Realtek PCIe GBE Family Controller
   Physical Address. . . . . . . . . : 00-22-15-8A-A9-78
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes

Wireless LAN adapter Wireless Network Connection:

   Connection-specific DNS Suffix  . : columbus.rr.com
   Description . . . . . . . . . . . : Atheros AR928X Wireless Network Adapter
   Physical Address. . . . . . . . . : 00-15-AF-CE-14-F3
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes
   Link-local IPv6 Address . . . . . : fe80::69ad:f7a8:7181:e631%10(Preferred)
   IPv4 Address. . . . . . . . . . . : 192.168.0.3(Preferred)
   Subnet Mask . . . . . . . . . . . : 255.255.255.0
   Lease Obtained. . . . . . . . . . : Monday, March 11, 2013 5:55:31 PM
   Lease Expires . . . . . . . . . . : Monday, March 11, 2013 7:25:31 PM
   Default Gateway . . . . . . . . . : 192.168.0.1
   DHCP Server . . . . . . . . . . . : 192.168.0.1
   DHCPv6 IAID . . . . . . . . . . . : 184554927
   DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-18-46-FD-FF-00-22-15-8A-A9-78
   DNS Servers . . . . . . . . . . . : 209.18.47.61
                                       209.18.47.62
   NetBIOS over Tcpip. . . . . . . . : Enabled

Tunnel adapter isatap.columbus.rr.com:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : columbus.rr.com
   Description . . . . . . . . . . . : Microsoft ISATAP Adapter
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Teredo Tunneling Pseudo-Interface:

   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
   IPv6 Address. . . . . . . . . . . : 2001:0:9d38:953c:38be:3ca:9de1:fc6d(Preferred)
   Link-local IPv6 Address . . . . . : fe80::38be:3ca:9de1:fc6d%14(Preferred)
   Default Gateway . . . . . . . . . : ::
   NetBIOS over Tcpip. . . . . . . . : Disabled
Server:  dns-cac-lb-01.rr.com
Address:  209.18.47.61

Name:    google.com
Addresses:  2607:f8b0:4009:803::1000
   74.125.225.68
   74.125.225.69
   74.125.225.70
   74.125.225.71
   74.125.225.72
   74.125.225.73
   74.125.225.78
   74.125.225.64
   74.125.225.65
   74.125.225.66
   74.125.225.67


Pinging google.com [74.125.225.64] with 32 bytes of data:
Reply from 74.125.225.64: bytes=32 time=37ms TTL=54
Reply from 74.125.225.64: bytes=32 time=33ms TTL=54

Ping statistics for 74.125.225.64:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 33ms, Maximum = 37ms, Average = 35ms
Server:  dns-cac-lb-01.rr.com
Address:  209.18.47.61

Name:    yahoo.com
Addresses:  206.190.36.45
   98.138.253.109
   98.139.183.24


Pinging yahoo.com [98.138.253.109] with 32 bytes of data:
Request timed out.
Reply from 98.138.253.109: bytes=32 time=515ms TTL=49

Ping statistics for 98.138.253.109:
    Packets: Sent = 2, Received = 1, Lost = 1 (50% loss),
Approximate round trip times in milli-seconds:
    Minimum = 515ms, Maximum = 515ms, Average = 515ms

Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

Ping statistics for 127.0.0.1:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 0ms, Maximum = 0ms, Average = 0ms
===========================================================================
Interface List
 12...00 15 af f7 d2 83 ......Bluetooth Device (Personal Area Network)
 11...00 22 15 8a a9 78 ......Realtek PCIe GBE Family Controller
 10...00 15 af ce 14 f3 ......Atheros AR928X Wireless Network Adapter
  1...........................Software Loopback Interface 1
 16...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter
 14...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination        Netmask          Gateway       Interface  Metric
          0.0.0.0          0.0.0.0      192.168.0.1      192.168.0.3     25
        127.0.0.0        255.0.0.0         On-link         127.0.0.1    306
        127.0.0.1  255.255.255.255         On-link         127.0.0.1    306
  127.255.255.255  255.255.255.255         On-link         127.0.0.1    306
      192.168.0.0    255.255.255.0         On-link       192.168.0.3    281
      192.168.0.3  255.255.255.255         On-link       192.168.0.3    281
    192.168.0.255  255.255.255.255         On-link       192.168.0.3    281
        224.0.0.0        240.0.0.0         On-link         127.0.0.1    306
        224.0.0.0        240.0.0.0         On-link       192.168.0.3    281
  255.255.255.255  255.255.255.255         On-link         127.0.0.1    306
  255.255.255.255  255.255.255.255         On-link       192.168.0.3    281
===========================================================================
Persistent Routes:
  None

IPv6 Route Table
===========================================================================
Active Routes:
 If Metric Network Destination      Gateway
 14     58 ::/0                     On-link
  1    306 ::1/128                  On-link
 14     58 2001::/32                On-link
 14    306 2001:0:9d38:953c:38be:3ca:9de1:fc6d/128
                                    On-link
 10    281 fe80::/64                On-link
 14    306 fe80::/64                On-link
 14    306 fe80::38be:3ca:9de1:fc6d/128
                                    On-link
 10    281 fe80::69ad:f7a8:7181:e631/128
                                    On-link
  1    306 ff00::/8                 On-link
 14    306 ff00::/8                 On-link
 10    281 ff00::/8                 On-link
===========================================================================
Persistent Routes:
  None
========================= Winsock entries =====================================

Catalog5 01 C:\Windows\system32\NLAapi.dll [52224] (Microsoft Corporation)
Catalog5 02 C:\Windows\system32\napinsp.dll [52224] (Microsoft Corporation)
Catalog5 03 C:\Windows\system32\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 04 C:\Windows\system32\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 05 C:\Windows\system32\wshbth.dll [36352] (Microsoft Corporation)
Catalog5 06 C:\Windows\System32\mswsock.dll [232448] (Microsoft Corporation)
Catalog5 07 C:\Windows\System32\winrnr.dll [20992] (Microsoft Corporation)
Catalog5 08 C:\Program Files\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Catalog9 01 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 02 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 03 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 04 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 05 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 06 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 07 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 08 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 09 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 10 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 11 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 12 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 13 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 14 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 15 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 16 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 17 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 18 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 19 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 20 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 21 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 22 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 23 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 24 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 25 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 26 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 27 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 28 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 29 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 30 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 31 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (03/10/2013 07:00:00 PM) (Source: Windows Backup) (User: )
Description: The backup did not complete because of an error writing to the backup location D:\. The error is: The backup location cannot be found or is not valid. Review your backup settings and check the backup location. (0x81000006).

Error: (03/09/2013 04:21:56 PM) (Source: Windows Search Service) (User: )
Description: The index cannot be initialized.


Details:
 The content index catalog is corrupt.  (HRESULT : 0xc0041801) (0xc0041801)

Error: (03/09/2013 04:21:56 PM) (Source: Windows Search Service) (User: )
Description: The application cannot be initialized.

Context: Windows Application


Details:
 The content index catalog is corrupt.  (HRESULT : 0xc0041801) (0xc0041801)

Error: (03/09/2013 04:21:56 PM) (Source: Windows Search Service) (User: )
Description: The gatherer object cannot be initialized.

Context: Windows Application, SystemIndex Catalog


Details:
 The content index catalog is corrupt.  (HRESULT : 0xc0041801) (0xc0041801)

Error: (03/09/2013 04:21:56 PM) (Source: Windows Search Service) (User: )
Description: The plug-in in <Search.TripoliIndexer> cannot be initialized.

Context: Windows Application, SystemIndex Catalog


Details:
 Element not found.  (HRESULT : 0x80070490) (0x80070490)

Error: (03/09/2013 04:21:52 PM) (Source: Windows Search Service) (User: )
Description: The plug-in in <Search.JetPropStore> cannot be initialized.

Context: Windows Application, SystemIndex Catalog


Details:
 The content index catalog is corrupt.  (HRESULT : 0xc0041801) (0xc0041801)

Error: (03/09/2013 04:21:52 PM) (Source: Windows Search Service) (User: )
Description: The Windows Search Service cannot load the property store information.

Context: Windows Application, SystemIndex Catalog


Details:
 The content index database is corrupt.  (HRESULT : 0xc0041800) (0xc0041800)

Error: (03/09/2013 04:21:52 PM) (Source: Windows Search Service) (User: )
Description: The Windows Search Service is being stopped because there is a problem with the indexer: The catalog is corrupt.


Details:
 The content index catalog is corrupt.  (HRESULT : 0xc0041801) (0xc0041801)

Error: (03/09/2013 04:21:52 PM) (Source: Windows Search Service) (User: )
Description: The search service has detected corrupted data files in the index {id=4700}. The service will attempt to automatically correct this problem by rebuilding the index.


Details:
 The content index catalog is corrupt.  (HRESULT : 0xc0041801) (0xc0041801)

Error: (03/09/2013 04:21:51 PM) (Source: Windows Search Service) (User: )
Description: The Windows Search Service cannot open the Jet property store.


Details:
 0x%08x (0xc0041800 - The content index database is corrupt.  (HRESULT : 0xc0041800))


System errors:
=============
Error: (03/11/2013 05:55:46 PM) (Source: WMPNetworkSvc) (User: )
Description: 0x80070005

Error: (03/11/2013 05:55:46 PM) (Source: WMPNetworkSvc) (User: )
Description: 0x80070005

Error: (03/11/2013 00:11:17 PM) (Source: WMPNetworkSvc) (User: )
Description: 0x80070005

Error: (03/11/2013 00:11:17 PM) (Source: WMPNetworkSvc) (User: )
Description: 0x80070005

Error: (03/11/2013 00:10:36 PM) (Source: EventLog) (User: )
Description: The previous system shutdown at 10:19:25 PM on ?3/?10/?2013 was unexpected.

Error: (03/10/2013 04:20:08 PM) (Source: WMPNetworkSvc) (User: )
Description: 0x80070005

Error: (03/10/2013 04:20:08 PM) (Source: WMPNetworkSvc) (User: )
Description: 0x80070005

Error: (03/10/2013 04:15:00 PM) (Source: WMPNetworkSvc) (User: )
Description: 0x80070005

Error: (03/10/2013 04:15:00 PM) (Source: WMPNetworkSvc) (User: )
Description: 0x80070005

Error: (03/10/2013 11:35:36 AM) (Source: WMPNetworkSvc) (User: )
Description: 0x80070005


Microsoft Office Sessions:
=========================
Error: (03/10/2013 07:00:00 PM) (Source: Windows Backup)(User: )
Description: D:\The backup location cannot be found or is not valid. Review your backup settings and check the backup location. (0x81000006)

Error: (03/09/2013 04:21:56 PM) (Source: Windows Search Service)(User: )
Description:
Details:
 The content index catalog is corrupt.  (HRESULT : 0xc0041801) (0xc0041801)

Error: (03/09/2013 04:21:56 PM) (Source: Windows Search Service)(User: )
Description: Context: Windows Application


Details:
 The content index catalog is corrupt.  (HRESULT : 0xc0041801) (0xc0041801)

Error: (03/09/2013 04:21:56 PM) (Source: Windows Search Service)(User: )
Description: Context: Windows Application, SystemIndex Catalog


Details:
 The content index catalog is corrupt.  (HRESULT : 0xc0041801) (0xc0041801)

Error: (03/09/2013 04:21:56 PM) (Source: Windows Search Service)(User: )
Description: Context: Windows Application, SystemIndex Catalog


Details:
 Element not found.  (HRESULT : 0x80070490) (0x80070490)
Search.TripoliIndexer

Error: (03/09/2013 04:21:52 PM) (Source: Windows Search Service)(User: )
Description: Context: Windows Application, SystemIndex Catalog


Details:
 The content index catalog is corrupt.  (HRESULT : 0xc0041801) (0xc0041801)
Search.JetPropStore

Error: (03/09/2013 04:21:52 PM) (Source: Windows Search Service)(User: )
Description: Context: Windows Application, SystemIndex Catalog


Details:
 The content index database is corrupt.  (HRESULT : 0xc0041800) (0xc0041800)

Error: (03/09/2013 04:21:52 PM) (Source: Windows Search Service)(User: )
Description:
Details:
 The content index catalog is corrupt.  (HRESULT : 0xc0041801) (0xc0041801)
The catalog is corrupt

Error: (03/09/2013 04:21:52 PM) (Source: Windows Search Service)(User: )
Description:
Details:
 The content index catalog is corrupt.  (HRESULT : 0xc0041801) (0xc0041801)
4700

Error: (03/09/2013 04:21:51 PM) (Source: Windows Search Service)(User: )
Description:
Details:
 0x%08x (0xc0041800 - The content index database is corrupt.  (HRESULT : 0xc0041800))


=========================== Installed Programs ============================

µTorrent (Version: 3.2.3.28705)
7-Zip 9.21 (Version: 9.21.00.0)
Adobe Flash Player 11 ActiveX (Version: 11.6.602.171)
Adobe Flash Player 11 Plugin (Version: 11.6.602.171)
Akamai NetSession Interface
Amazon Kindle
Apple Application Support (Version: 2.3.3)
Apple Mobile Device Support (Version: 6.1.0.13)
Apple Software Update (Version: 2.1.3.127)
ASUS LifeFrame3 (Version: 3.1.5)
avast! Free Antivirus (Version: 7.0.1474.0)
Bing Desktop (Version: 1.2.113.0)
Bonjour (Version: 3.0.0.10)
Boxoft free APE to MP3 (freeware)
CCleaner (Version: 3.25)
Definition Update for Microsoft Office 2010 (KB982726) 32-Bit Edition
Dropbox (Version: 1.6.16)
ESET Online Scanner v3
F.lux
Foxit Reader (Version: 5.4.4.1128)
Free FLAC to MP3 Converter 1.0
GIMP 2.8.2 (Version: 2.8.2)
Google Chrome (Version: 25.0.1364.160)
Google Update Helper (Version: 1.3.21.135)
iTunes (Version: 11.0.2.26)
Java 7 Update 9 (Version: 7.0.90)
Lame ACM MP3 Codec
Malwarebytes Anti-Malware version 1.70.0.1100 (Version: 1.70.0.1100)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft Office 2010 Service Pack 1 (SP1)
Microsoft Office Excel MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office OneNote MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Outlook MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office PowerPoint MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Proof (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Proof (French) 2010 (Version: 14.0.6029.1000)
Microsoft Office Proof (Spanish) 2010 (Version: 14.0.6029.1000)
Microsoft Office Proofing (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Publisher MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Shared MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Shared Setup Metadata MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Standard 2010 (Version: 14.0.6029.1000)
Microsoft Office Word MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Silverlight (Version: 5.1.10411.0)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
NVIDIA Drivers (Version: 1.4)
OpenOffice.org 3.4.1 (Version: 3.41.9593)
PeerBlock 1.1 (r518) (Version: 1.1.0.518)
RICOH R5U8xx Media Driver ver.3.62.02 (Version: 3.62.02)
Spotify (Version: 0.8.5.1333.g822e0de8)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (Version: 1)
Update for Microsoft Office 2010 (KB2553065)
Update for Microsoft Office 2010 (KB2553181) 32-Bit Edition
Update for Microsoft Office 2010 (KB2553310) 32-Bit Edition
Update for Microsoft Office 2010 (KB2566458)
Update for Microsoft Office 2010 (KB2596964) 32-Bit Edition
Update for Microsoft Office 2010 (KB2598242) 32-Bit Edition
Update for Microsoft Office 2010 (KB2687509) 32-Bit Edition
Update for Microsoft OneNote 2010 (KB2553290) 32-Bit Edition
Update for Microsoft OneNote 2010 (KB2687277) 32-Bit Edition
Update for Microsoft Outlook 2010 (KB2687623) 32-Bit Edition
Update for Microsoft Outlook Social Connector 2010 (KB2553406) 32-Bit Edition
USB2.0 1.3M UVC WebCam
VLC media player 2.0.5 (Version: 2.0.5)
WinRAR 4.20 (32-bit) (Version: 4.20.0)

========================= Devices: ================================


========================= Memory info: ===================================

Percentage of memory in use: 42%
Total physical RAM: 3071.11 MB
Available physical RAM: 1761.05 MB
Total Pagefile: 6140.52 MB
Available Pagefile: 4710.48 MB
Total Virtual: 2047.88 MB
Available Virtual: 1932.34 MB

========================= Partitions: =====================================

1 Drive c: () (Fixed) (Total:930.71 GB) (Free:817.3 GB) NTFS
2 Drive d: (Library) (Fixed) (Total:465.76 GB) (Free:293.37 GB) NTFS
3 Drive e: (Music) (Fixed) (Total:232.88 GB) (Free:151.1 GB) NTFS
4 Drive f: (SYSTEM) (Fixed) (Total:0.78 GB) (Free:0.73 GB) NTFS

========================= Users: ========================================

User accounts for \\WHOMPINGWILLOW

Administrator            Guest                    Rachel                  


**** End of log ****



Farbar Service Scanner Version: 03-03-2013
Ran by Rachel (administrator) on 11-03-2013 at 18:32:38
Running from "C:\Users\Rachel\Desktop"
Windows 7 Enterprise Service Pack 1 (X86)
Boot Mode: Normal
****************************************************************

Internet Services:
============

Connection Status:
==============
Localhost is accessible.
LAN connected.
Google IP is accessible.
Attempt to access Google.com returned error: Google.com is offline
Attempt to access Yahoo IP returned error. Yahoo IP is offline
Yahoo.com is accessible.


Windows Firewall:
=============

Firewall Disabled Policy:
==================


System Restore:
============

System Restore Disabled Policy:
========================


Action Center:
============

Windows Update:
============

Windows Autoupdate Disabled Policy:
============================


Windows Defender:
==============

Other Services:
==============


File Check:
========
C:\Windows\system32\nsisvc.dll => MD5 is legit
C:\Windows\system32\Drivers\nsiproxy.sys => MD5 is legit
C:\Windows\system32\dhcpcore.dll => MD5 is legit
C:\Windows\system32\Drivers\afd.sys => MD5 is legit
C:\Windows\system32\Drivers\tdx.sys => MD5 is legit
C:\Windows\system32\Drivers\tcpip.sys => MD5 is legit
C:\Windows\system32\dnsrslvr.dll => MD5 is legit
C:\Windows\system32\mpssvc.dll => MD5 is legit
C:\Windows\system32\bfe.dll => MD5 is legit
C:\Windows\system32\Drivers\mpsdrv.sys => MD5 is legit
C:\Windows\system32\SDRSVC.dll => MD5 is legit
C:\Windows\system32\vssvc.exe => MD5 is legit
C:\Windows\system32\wscsvc.dll => MD5 is legit
C:\Windows\system32\wbem\WMIsvc.dll => MD5 is legit
C:\Windows\system32\wuaueng.dll => MD5 is legit
C:\Windows\system32\qmgr.dll => MD5 is legit
C:\Windows\system32\es.dll => MD5 is legit
C:\Windows\system32\cryptsvc.dll => MD5 is legit
C:\Program Files\Windows Defender\MpSvc.dll => MD5 is legit
C:\Windows\system32\ipnathlp.dll => MD5 is legit
C:\Windows\system32\iphlpsvc.dll => MD5 is legit
C:\Windows\system32\svchost.exe => MD5 is legit
C:\Windows\system32\rpcss.dll => MD5 is legit

 

Farbar's service scanner:

 


**** End of log ****



ADW CLeaner

 

 

# AdwCleaner v2.114 - Logfile created 03/11/2013 at 18:33:40
# Updated 05/03/2013 by Xplode
# Operating system : Windows 7 Enterprise Service Pack 1 (32 bits)
# User : Rachel - WHOMPINGWILLOW
# Boot Mode : Normal
# Running from : C:\Users\Rachel\Desktop\AdwCleaner.exe
# Option [Delete]


***** [Services] *****


***** [Files / Folders] *****

File Deleted : C:\Windows\Uninstall.exe
Folder Deleted : C:\Users\Rachel\AppData\Roaming\pdfforge

***** [Registry] *****

Key Deleted : HKCU\Software\APN PIP
Key Deleted : HKCU\Software\StartSearch
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\063A857434EDED11A893800002C0A966
Key Deleted : HKLM\Software\PIP

***** [Internet Browsers] *****

-\\ Internet Explorer v9.0.8112.16457

[OK] Registry is clean.

-\\ Mozilla Firefox v [Unable to get version]

File : C:\Users\Rachel\AppData\Roaming\Mozilla\Firefox\Profiles\vvpzd48i.default\prefs.js

[OK] File is clean.

-\\ Google Chrome v25.0.1364.160

File : C:\Users\Rachel\AppData\Local\Google\Chrome\User Data\Default\Preferences

[OK] File is clean.

*************************

AdwCleaner[S1].txt - [1174 octets] - [11/03/2013 18:33:40]

########## EOF - C:\AdwCleaner[S1].txt - [1234 octets] ##########



Junkware Removal Tool log

 

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 4.7.0 (03.11.2013:1)
OS: Windows 7 Enterprise x86
Ran by Rachel on Mon 03/11/2013 at 18:42:17.26
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

 


~~~ Services

 

~~~ Registry Values

 

~~~ Registry Keys

 

~~~ Files

 

~~~ Folders

 

~~~ Event Viewer Logs were cleared

 

 

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on Mon 03/11/2013 at 18:44:51.62
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~



RKILL

 

Rkill 2.4.7 by Lawrence Abrams (Grinler)
http://www.bleepingcomputer.com/
Copyright 2008-2013 BleepingComputer.com
More Information about Rkill can be found at this link:
 http://www.bleepingcomputer.com/forums/topic308364.html

Program started at: 03/11/2013 06:46:33 PM in x86 mode.
Windows Version: Windows 7 Enterprise Service Pack 1

Checking for Windows services to stop:

 * No malware services found to stop.

Checking for processes to terminate:

 * C:\Users\Rachel\Local Settings\Apps\F.lux\flux.exe (PID: 2416) [UP-HEUR]
 * C:\ProgramData\Boxtools\Toolbox.exe (PID: 2492) [AU-HEUR]

2 proccesses terminated!

Checking Registry for malware related settings:

 * No issues found in the Registry.

Resetting .EXE, .COM, & .BAT associations in the Windows Registry.

Performing miscellaneous checks:

 * Windows Defender Disabled

   [HKLM\SOFTWARE\Microsoft\Windows Defender]
   "DisableAntiSpyware" = dword:00000001

 * Windows Firewall Disabled

   [HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
   "EnableFirewall" = dword:00000000

Checking Windows Service Integrity:

 * Windows Defender (WinDefend) is not Running.
   Startup Type set to: Manual

Searching for Missing Digital Signatures:

 * No issues found.

Checking HOSTS File:

 * No issues found.

Program finished at: 03/11/2013 06:46:48 PM
Execution time: 0 hours(s), 0 minute(s), and 15 seconds(s)



autoruns log

 

"HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run" "" "" ""
+ "APSDaemon" "Apple Push" "Apple Inc." "c:\program files\common files\apple\apple application support\apsdaemon.exe"
+ "avast" "avast! Antivirus" "AVAST Software" "c:\program files\avast software\avast\avastui.exe"
+ "BingDesktop" "Bing Desktop Application" "Microsoft Corp." "c:\program files\microsoft\bingdesktop\bingdesktop.exe"
+ "iTunesHelper" "iTunesHelper" "Apple Inc." "c:\program files\itunes\ituneshelper.exe"
+ "NvCplDaemon" "NVIDIA Display Properties Extension" "NVIDIA Corporation" "c:\windows\system32\nvcpl.dll"
"C:\Users\Rachel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup" "" "" ""
+ "Dropbox.lnk" "Dropbox" "Dropbox, Inc." "c:\users\rachel\appdata\roaming\dropbox\bin\dropbox.exe"
"HKLM\SOFTWARE\Microsoft\Active Setup\Installed Components" "" "" ""
+ "Google Chrome" "Google Chrome" "Google Inc." "c:\program files\google\chrome\application\25.0.1364.160\installer\chrmstp.exe"
+ "Microsoft Windows" "Windows Mail" "Microsoft Corporation" "c:\program files\windows mail\winmail.exe"
"HKCU\Software\Microsoft\Windows\CurrentVersion\Run" "" "" ""
+ "Akamai NetSession Interface" "Akamai NetSession Client" "Akamai Technologies, Inc." "c:\users\rachel\appdata\local\akamai\netsession_win.exe"
+ "Boxoft Tools" "" "" "c:\programdata\boxtools\boxofttoolbox.exe"
+ "F.lux" "" "" "c:\users\rachel\local settings\apps\f.lux\flux.exe"
+ "instanteyedropper" "" "" "File not found: C:\Program Files\InstantEyedropper\InstantEyedropper.exe"
+ "PeerBlock" "PeerBlock" "PeerBlock, LLC" "c:\program files\peerblock\peerblock.exe"
+ "Spotify Web Helper" "SpotifyWebHelper" "Spotify Ltd" "c:\users\rachel\appdata\roaming\spotify\data\spotifywebhelper.exe"
+ "uTorrent" "µTorrent" "BitTorrent, Inc." "c:\program files\utorrent\utorrent.exe"
"HKLM\SOFTWARE\Classes\Protocols\Filter" "" "" ""
+ "text/xml" "Microsoft Office XML MIME Filter" "Microsoft Corporation" "c:\program files\common files\microsoft shared\office14\msoxmlmf.dll"
"HKLM\SOFTWARE\Classes\Protocols\Handler" "" "" ""
+ "ms-help" "Microsoft® Help Data Services Module" "Microsoft Corporation" "c:\program files\common files\microsoft shared\help\hxds.dll"
"HKCU\Software\Classes\*\ShellEx\ContextMenuHandlers" "" "" ""
+ "DropboxExt" "Dropbox Shell Extension" "Dropbox, Inc." "c:\users\rachel\appdata\roaming\dropbox\bin\dropboxext.17.dll"
"HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers" "" "" ""
+ "7-Zip" "7-Zip Shell Extension" "Igor Pavlov" "c:\program files\7-zip\7-zip.dll"
+ "avast" "avast! Shell Extension" "AVAST Software" "c:\program files\avast software\avast\ashshell.dll"
+ "WinRAR" "WinRAR shell extension" "Alexander Roshal" "c:\program files\winrar\rarext.dll"
"HKLM\Software\Classes\AllFileSystemObjects\ShellEx\ContextMenuHandlers" "" "" ""
+ "00avast" "avast! Shell Extension" "AVAST Software" "c:\program files\avast software\avast\ashshell.dll"
+ "MBAMShlExt" "Malwarebytes Anti-Malware" "Malwarebytes Corporation" "c:\program files\malwarebytes' anti-malware\mbamext.dll"
"HKCU\Software\Classes\Directory\ShellEx\ContextMenuHandlers" "" "" ""
+ "DropboxExt" "Dropbox Shell Extension" "Dropbox, Inc." "c:\users\rachel\appdata\roaming\dropbox\bin\dropboxext.17.dll"
"HKLM\Software\Classes\Directory\ShellEx\ContextMenuHandlers" "" "" ""
+ "7-Zip" "7-Zip Shell Extension" "Igor Pavlov" "c:\program files\7-zip\7-zip.dll"
"HKLM\Software\Classes\Directory\Shellex\DragDropHandlers" "" "" ""
+ "7-Zip" "7-Zip Shell Extension" "Igor Pavlov" "c:\program files\7-zip\7-zip.dll"
"HKCU\Software\Classes\Directory\Background\ShellEx\ContextMenuHandlers" "" "" ""
+ "DropboxExt" "Dropbox Shell Extension" "Dropbox, Inc." "c:\users\rachel\appdata\roaming\dropbox\bin\dropboxext.17.dll"
"HKLM\Software\Classes\Directory\Background\ShellEx\ContextMenuHandlers" "" "" ""
+ "Gadgets" "Sidebar droptarget" "Microsoft Corporation" "c:\program files\windows sidebar\sbdrop.dll"
+ "NvCplDesktopContext" "" "NVIDIA Corporation" "c:\windows\system32\nvshext.dll"
"HKLM\Software\Classes\Folder\Shellex\ColumnHandlers" "" "" ""
+ "{C52AF81D-F7A0-4AAB-8E87-F80A60CCD396}" "" "Apache Software Foundation" "c:\program files\openoffice.org 3\basis\program\shlxthdl\shlxthdl.dll"
"HKLM\Software\Classes\Folder\ShellEx\ContextMenuHandlers" "" "" ""
+ "avast" "avast! Shell Extension" "AVAST Software" "c:\program files\avast software\avast\ashshell.dll"
+ "MBAMShlExt" "Malwarebytes Anti-Malware" "Malwarebytes Corporation" "c:\program files\malwarebytes' anti-malware\mbamext.dll"
+ "WinRAR" "WinRAR shell extension" "Alexander Roshal" "c:\program files\winrar\rarext.dll"
"HKLM\Software\Classes\Folder\ShellEx\DragDropHandlers" "" "" ""
+ "WinRAR" "WinRAR shell extension" "Alexander Roshal" "c:\program files\winrar\rarext.dll"
"HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers" "" "" ""
+ "00avast" "avast! Shell Extension" "AVAST Software" "c:\program files\avast software\avast\ashshell.dll"
+ "DropboxExt1" "Dropbox Shell Extension" "Dropbox, Inc." "c:\users\rachel\appdata\roaming\dropbox\bin\dropboxext.17.dll"
+ "DropboxExt2" "Dropbox Shell Extension" "Dropbox, Inc." "c:\users\rachel\appdata\roaming\dropbox\bin\dropboxext.17.dll"
+ "DropboxExt3" "Dropbox Shell Extension" "Dropbox, Inc." "c:\users\rachel\appdata\roaming\dropbox\bin\dropboxext.17.dll"
+ "DropboxExt4" "Dropbox Shell Extension" "Dropbox, Inc." "c:\users\rachel\appdata\roaming\dropbox\bin\dropboxext.17.dll"
"HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects" "" "" ""
+ "avast! WebRep" "avast! WebRep Plugin" "AVAST Software" "c:\program files\avast software\avast\aswwebrepie.dll"
+ "Java™ Plug-In 2 SSV Helper" "Java™ Platform SE binary" "Oracle Corporation" "c:\program files\java\jre7\bin\jp2ssv.dll"
+ "Java™ Plug-In SSV Helper" "Java™ Platform SE binary" "Oracle Corporation" "c:\program files\java\jre7\bin\ssv.dll"
+ "Office Document Cache Handler" "Microsoft Office Document Cache Handler" "Microsoft Corporation" "c:\program files\microsoft office\office14\urlredir.dll"
"HKLM\Software\Microsoft\Internet Explorer\Toolbar" "" "" ""
+ "avast! WebRep" "avast! WebRep Plugin" "AVAST Software" "c:\program files\avast software\avast\aswwebrepie.dll"
"HKLM\Software\Microsoft\Internet Explorer\Extensions" "" "" ""
+ "OneNote Lin&ked Notes" "Microsoft OneNote Internet Explorer Add-in" "Microsoft Corporation" "c:\program files\microsoft office\office14\onbttnielinkednotes.dll"
+ "Se&nd to OneNote" "Microsoft OneNote Internet Explorer Add-in" "Microsoft Corporation" "c:\program files\microsoft office\office14\onbttnie.dll"
"Task Scheduler" "" "" ""
+ "\Adobe Flash Player Updater" "Adobe® Flash® Player Update Service 11.6 r602" "Adobe Systems Incorporated" "c:\windows\system32\macromed\flash\flashplayerupdateservice.exe"
+ "\Apple\AppleSoftwareUpdate" "Apple Software Update" "Apple Inc." "c:\program files\apple software update\softwareupdate.exe"
+ "\avast! Emergency Update" "avast! Emergency Update" "AVAST Software" "c:\program files\avast software\avast\avastemupdate.exe"
+ "\CCleanerSkipUAC" "CCleaner" "Piriform Ltd" "c:\program files\ccleaner\ccleaner.exe"
+ "\GoogleUpdateTaskMachineCore" "Google Installer" "Google Inc." "c:\program files\google\update\googleupdate.exe"
+ "\GoogleUpdateTaskMachineUA" "Google Installer" "Google Inc." "c:\program files\google\update\googleupdate.exe"
+ "\Microsoft\Windows Defender\MP Scheduled Scan" "Microsoft Malware Protection Command Line Utility" "Microsoft Corporation" "c:\program files\windows defender\mpcmdrun.exe"
+ "\Microsoft\Windows\NetTrace\GatherNetworkInfo" "" "" "c:\windows\system32\gathernetworkinfo.vbs"
+ "\Microsoft\Windows\Windows Media Sharing\UpdateLibrary" "Windows Media Player Network Sharing Service Configuration Application" "Microsoft Corporation" "c:\program files\windows media player\wmpnscfg.exe"
+ "\Run CCleaner" "CCleaner" "Piriform Ltd" "c:\program files\ccleaner\ccleaner.exe"
"HKLM\System\CurrentControlSet\Services" "" "" ""
+ "AdobeFlashPlayerUpdateSvc" "This service keeps your Adobe Flash Player installation up to date with the latest enhancements and security fixes." "Adobe Systems Incorporated" "c:\windows\system32\macromed\flash\flashplayerupdateservice.exe"
+ "Apple Mobile Device" "Provides the interface to Apple mobile devices." "Apple Inc." "c:\program files\common files\apple\mobile device support\applemobiledeviceservice.exe"
+ "avast! Antivirus" "Manages and implements avast! antivirus services for this computer. This includes the resident protection, the virus chest and the scheduler." "AVAST Software" "c:\program files\avast software\avast\avastsvc.exe"
+ "BingDesktopUpdate" "Bing Desktop Update Service" "Microsoft Corp." "c:\program files\microsoft\bingdesktop\bingdesktopupdater.exe"
+ "Bonjour Service" "Enables hardware devices and software services to automatically configure themselves on the network and advertise their presence." "Apple Inc." "c:\program files\bonjour\mdnsresponder.exe"
+ "gupdate" "Keeps your Google software up to date. If this service is disabled or stopped, your Google software will not be kept up to date, meaning security vulnerabilities that may arise cannot be fixed and features may not work. This service uninstalls itself when there is no Google software using it." "Google Inc." "c:\program files\google\update\googleupdate.exe"
+ "gupdatem" "Keeps your Google software up to date. If this service is disabled or stopped, your Google software will not be kept up to date, meaning security vulnerabilities that may arise cannot be fixed and features may not work. This service uninstalls itself when there is no Google software using it." "Google Inc." "c:\program files\google\update\googleupdate.exe"
+ "IKDOW" "" "" "File not found: C:\Users\Rachel\AppData\Local\Temp\IKDOW.exe"
+ "iPod Service" "iPod hardware management services" "Apple Inc." "c:\program files\ipod\bin\ipodservice.exe"
+ "nvsvc" "Provides system and desktop level support to the NVIDIA display driver" "NVIDIA Corporation" "c:\windows\system32\nvvsvc.exe"
+ "ose" "Saves installation files used for updates and repairs and is required for the downloading of Setup updates and Watson error reports." "Microsoft Corporation" "c:\program files\common files\microsoft shared\source engine\ose.exe"
+ "osppsvc" "Office Software Protection Platform Service (unlocalized description)" "Microsoft Corporation" "c:\program files\common files\microsoft shared\officesoftwareprotectionplatform\osppsvc.exe"
+ "WinDefend" "Protection against spyware and potentially unwanted software" "Microsoft Corporation" "c:\program files\windows defender\mpsvc.dll"
+ "WMPNetworkSvc" "Shares Windows Media Player libraries to other networked players and media devices using Universal Plug and Play" "Microsoft Corporation" "c:\program files\windows media player\wmpnetwk.exe"
"HKLM\System\CurrentControlSet\Services" "" "" ""
+ "adp94xx" "Adaptec Windows SAS/SATA Storport Driver" "Adaptec, Inc." "c:\windows\system32\drivers\adp94xx.sys"
+ "adpahci" "Adaptec Windows SATA Storport Driver" "Adaptec, Inc." "c:\windows\system32\drivers\adpahci.sys"
+ "adpu320" "Adaptec StorPort Ultra320 SCSI Driver" "Adaptec, Inc." "c:\windows\system32\drivers\adpu320.sys"
+ "AgereSoftModem" "SoftModem Device Driver" "LSI Corp" "c:\windows\system32\drivers\agrsm.sys"
+ "aic78xx" "Adaptec Ultra SCSI miniport" "Adaptec, Inc." "c:\windows\system32\drivers\djsvs.sys"
+ "aliide" "ALi mini IDE Driver" "Acer Laboratories Inc." "c:\windows\system32\drivers\aliide.sys"
+ "amdsata" "AHCI 1.2 Device Driver" "Advanced Micro Devices" "c:\windows\system32\drivers\amdsata.sys"
+ "amdsbs" "AMD Technology AHCI Compatible Controller Driver for Windows family" "AMD Technologies Inc." "c:\windows\system32\drivers\amdsbs.sys"
+ "amdxata" "Storage Filter Driver" "Advanced Micro Devices" "c:\windows\system32\drivers\amdxata.sys"
+ "arc" "Adaptec RAID Storport Driver" "Adaptec, Inc." "c:\windows\system32\drivers\arc.sys"
+ "arcsas" "Adaptec SAS RAID WS03 Driver" "Adaptec, Inc." "c:\windows\system32\drivers\arcsas.sys"
+ "aswFsBlk" "avast! mini-filter driver (aswFsBlk)" "AVAST Software" "c:\windows\system32\drivers\aswfsblk.sys"
+ "aswMonFlt" "avast! mini-filter driver (aswMonFlt)" "AVAST Software" "c:\windows\system32\drivers\aswmonflt.sys"
+ "aswRdr" "avast! WFP Redirect driver" "AVAST Software" "c:\windows\system32\drivers\aswrdr2.sys"
+ "aswSnx" "avast! virtualization driver (aswSnx)" "AVAST Software" "c:\windows\system32\drivers\aswsnx.sys"
+ "aswSP" "avast! Self Protection" "AVAST Software" "c:\windows\system32\drivers\aswsp.sys"
+ "aswTdi" "avast! Network Shield TDI driver" "AVAST Software" "c:\windows\system32\drivers\aswtdi.sys"
+ "athr" "Atheros Extensible Wireless LAN device driver" "Atheros Communications, Inc." "c:\windows\system32\drivers\athr.sys"
+ "ATSwpWDF" " AuthenTec Fingerprint Sensor WBF Driver" "AuthenTec, Inc." "c:\windows\system32\drivers\atswpwdf.sys"
+ "b06bdrv" "Broadcom NetXtreme II GigE VBD" "Broadcom Corporation" "c:\windows\system32\drivers\bxvbdx.sys"
+ "b57nd60x" "Broadcom NetXtreme Gigabit Ethernet NDIS6.x Unified Driver." "Broadcom Corporation" "c:\windows\system32\drivers\b57nd60x.sys"
+ "BrFiltLo" "Windows ME USB Mass-Storage Bulk-Only Lower Filter Driver" "Brother Industries, Ltd." "c:\windows\system32\drivers\brfiltlo.sys"
+ "BrFiltUp" "Windows ME USB Mass-Storage Bulk-Only Upper Filter Driver" "Brother Industries, Ltd." "c:\windows\system32\drivers\brfiltup.sys"
+ "Brserid" "Brotehr Serial I/F Driver (WDM)" "Brother Industries Ltd." "c:\windows\system32\drivers\brserid.sys"
+ "BrSerWdm" "Brother Serial driver (WDM version)" "Brother Industries Ltd." "c:\windows\system32\drivers\brserwdm.sys"
+ "BrUsbMdm" "Brother USB MDM Driver " "Brother Industries Ltd." "c:\windows\system32\drivers\brusbmdm.sys"
+ "BrUsbSer" "Brother USB Serial Driver" "Brother Industries Ltd." "c:\windows\system32\drivers\brusbser.sys"
+ "cmdide" "CMD PCI IDE Bus Driver" "CMD Technology, Inc." "c:\windows\system32\drivers\cmdide.sys"
+ "DCamUSBET" "USB 27xx WDM Driver" "eMPIA Technology, Inc." "c:\windows\system32\drivers\etdevice.sys"
+ "ebdrv" "Broadcom NetXtreme II 10 GigE VBD" "Broadcom Corporation" "c:\windows\system32\drivers\evbdx.sys"
+ "elxstor" "Storport Miniport Driver for LightPulse HBAs" "Emulex" "c:\windows\system32\drivers\elxstor.sys"
+ "FiltUSBET" "EM27xx / EM28xx Filter Driver" "eMPIA Technology Inc." "c:\windows\system32\drivers\etfilter.sys"
+ "GEARAspiWDM" "CD DVD Filter" "GEAR Software Inc." "c:\windows\system32\drivers\gearaspiwdm.sys"
+ "hcw85cir" "Hauppauge WinTV 885 Consumer IR Driver for eHome" "Hauppauge Computer Works, Inc." "c:\windows\system32\drivers\hcw85cir.sys"
+ "HpSAMD" "Smart Array SAS/SATA Controller Media Driver" "Hewlett-Packard Company" "c:\windows\system32\drivers\hpsamd.sys"
+ "iaStorV" "Intel Matrix Storage Manager driver - ia32" "Intel Corporation" "c:\windows\system32\drivers\iastorv.sys"
+ "iirsp" "Intel/ICP Raid Storport Driver" "Intel Corp./ICP vortex GmbH" "c:\windows\system32\drivers\iirsp.sys"
+ "itecir" "ITE Consumer IR Driver for eHome" "ITE Tech. Inc. " "c:\windows\system32\drivers\itecir.sys"
+ "LSI_FC" "LSI Fusion-MPT FC Driver (StorPort)" "LSI Corporation" "c:\windows\system32\drivers\lsi_fc.sys"
+ "LSI_SAS" "LSI Fusion-MPT SAS Driver (StorPort)" "LSI Corporation" "c:\windows\system32\drivers\lsi_sas.sys"
+ "LSI_SAS2" "LSI SAS Gen2 Driver (StorPort)" "LSI Corporation" "c:\windows\system32\drivers\lsi_sas2.sys"
+ "LSI_SCSI" "LSI Fusion-MPT SCSI Driver (StorPort)" "LSI Corporation" "c:\windows\system32\drivers\lsi_scsi.sys"
+ "megasas" "MEGASAS RAID Controller Driver for Windows 7 for x86" "LSI Corporation" "c:\windows\system32\drivers\megasas.sys"
+ "MegaSR" "LSI MegaRAID Software RAID Driver" "LSI Corporation, Inc." "c:\windows\system32\drivers\megasr.sys"
+ "MTsensor" "ATK0100 ACPI Utility" "ATK0100" "c:\windows\system32\drivers\atkacpi.sys"
+ "nfrd960" "IBM ServeRAID Controller Driver" "IBM Corporation" "c:\windows\system32\drivers\nfrd960.sys"
+ "nvlddmkm" "NVIDIA Windows Kernel Mode Driver, Version 186.31 " "NVIDIA Corporation" "c:\windows\system32\drivers\nvlddmkm.sys"
+ "nvraid" "NVIDIA® nForce™ RAID Driver" "NVIDIA Corporation" "c:\windows\system32\drivers\nvraid.sys"
+ "nvstor" "NVIDIA® nForce™ Sata Performance Driver" "NVIDIA Corporation" "c:\windows\system32\drivers\nvstor.sys"
+ "pbfilter" "" "" "c:\program files\peerblock\pbfilter.sys"
+ "ql2300" "QLogic Fibre Channel Stor Miniport Driver" "QLogic Corporation" "c:\windows\system32\drivers\ql2300.sys"
+ "ql40xx" "QLogic iSCSI Storport Miniport Driver" "QLogic Corporation" "c:\windows\system32\drivers\ql40xx.sys"
+ "rimmptsk" "RICOH SD/MMC Driver" "REDC" "c:\windows\system32\drivers\rimmptsk.sys"
+ "rimsptsk" "RICOH MS Driver" "REDC" "c:\windows\system32\drivers\rimsptsk.sys"
+ "rismxdp" "RICOH XD SM Driver" "REDC" "c:\windows\system32\drivers\rixdptsk.sys"
+ "RTL8167" "Realtek 8101E/8168/8169 NDIS 6.20 32-bit Driver                " "Realtek                                            " "c:\windows\system32\drivers\rt86win7.sys"
+ "ScanUSBET" "USB 27xx WDM Upper Filter" "eMPIA Technology, Inc." "c:\windows\system32\drivers\etscan.sys"
+ "secdrv" "Macrovision SECURITY Driver" "Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K." "c:\windows\system32\drivers\secdrv.sys"
+ "SiSRaid2" "SiS RAID Stor Miniport Driver" "Silicon Integrated Systems Corp." "c:\windows\system32\drivers\sisraid2.sys"
+ "SiSRaid4" "SiS AHCI Stor-Miniport Driver" "Silicon Integrated Systems" "c:\windows\system32\drivers\sisraid4.sys"
+ "stexstor" "Promise  SuperTrak EX Series Driver for Windows " "Promise Technology" "c:\windows\system32\drivers\stexstor.sys"
+ "Synth3dVsc" "" "" "File not found: System32\drivers\synth3dvsc.sys"
+ "tsusbhub" "@%SystemRoot%\system32\drivers\tsusbhub.sys,-2" "" "File not found: system32\drivers\tsusbhub.sys"
+ "USBAAPL" "Apple Mobile Device USB Driver" "Apple, Inc." "c:\windows\system32\drivers\usbaapl.sys"
+ "VGPU" "" "" "File not found: System32\drivers\rdvgkmd.sys"
+ "viaide" "VIA Generic PCI IDE Bus Driver" "VIA Technologies, Inc." "c:\windows\system32\drivers\viaide.sys"
+ "vsmraid" "VIA RAID DRIVER FOR AMD-X86-64" "VIA Technologies Inc.,Ltd" "c:\windows\system32\drivers\vsmraid.sys"
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Drivers32" "" "" ""
+ "msacm.l3acm" "MPEG Layer-3 Audio Codec for MSACM" "Fraunhofer Institut Integrierte Schaltungen IIS" "c:\windows\system32\l3codeca.acm"
+ "msacm.lameacm" "Lame MP3 codec engine" "http://www.mp3dev.org/" "c:\windows\system32\lameacm.acm"
+ "vidc.cvid" "Cinepak® Codec" "Radius Inc." "c:\windows\system32\iccvid.dll"
"HKLM\Software\Classes\CLSID\{083863F1-70DE-11d0-BD40-00A0C911CE86}\Instance" "" "" ""
+ "Gargle" "Gargle Filter (Sample)" "Microsoft Corporation" "c:\program files\asus\asus lifeframe3\lifeframeaudio.ax"
+ "LifeFrame Image Effects" "Camera Filter" "ASUS" "c:\program files\asus\asus lifeframe3\camera_effect.ax"
+ "MotionDetect" "" "" "c:\program files\asus\asus lifeframe3\motiondetect.ax"
"HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries" "" "" ""
+ "mdnsNSP" "Bonjour Namespace Provider" "Apple Inc." "c:\program files\bonjour\mdnsnsp.dll"
"C:\Users\Rachel\AppData\Local\Microsoft\Windows Sidebar\Settings.ini" "" "" ""
+ "Avast! antivirus monitor" "Avast! antivirus sidebar gadget." "AVAST Software" "C:\Program Files\Windows Sidebar\Shared Gadgets\aswSidebar.gadget\Gadget.xml"



#6 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:02:54 PM

Posted 11 March 2013 - 06:36 PM

Current issues?



#7 yourgypsysoul

yourgypsysoul
  • Topic Starter

  • Members
  • 5 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:Ohio
  • Local time:03:54 PM

Posted 12 March 2013 - 10:01 AM

No change. When launching Google Chrome from the task bar, it gets the "active application rectangle" (for lack of better words) around it like it is going to launch, but it never does, and it rectangle goes away.

 

I am also unable to connect to Windows Update to download updates. I forgot to mention it earlier, because I hadn't noticed it but the last time it checked for updates was near the beginning of February.

 

I appreciate all the help so far.



#8 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:02:54 PM

Posted 12 March 2013 - 10:33 AM

Reinstall google chrome and check

 

What is error you receive while connecting to windows updates?



#9 yourgypsysoul

yourgypsysoul
  • Topic Starter

  • Members
  • 5 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:Ohio
  • Local time:03:54 PM

Posted 12 March 2013 - 01:56 PM

Same behavior with google chrome after un/reinstalling.

 

Here is the windows update error:

52c6zl.png



#10 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:02:54 PM

Posted 12 March 2013 - 02:48 PM

What happens when you launch chrome? Can you start it in safemode?

 

I'm not able to view the screenshot.Can you use the insert image option to post here.






0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users