Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Infected with http://websearch.good-results.info/ virus


  • Please log in to reply
7 replies to this topic

#1 Jinmeister

Jinmeister

  • Members
  • 9 posts
  • OFFLINE
  •  
  • Local time:03:49 AM

Posted 10 March 2013 - 01:38 PM

Hi . Im infected with the mentioned virus http://websearch.good-results.info/. It changes my pop-ups and stuff and ads .. Its been a month now. Im currently operating a Windows 7 64bit Home edition. Can someone please help me out . Its making my system slow .. Any help on how to remove this.

 

Thanks

Jin



BC AdBot (Login to Remove)

 


#2 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:08:49 PM

Posted 10 March 2013 - 01:43 PM

  • Please download TDSSKiller from here and save it to your Desktop
  • Doubleclick on TDSSKiller.exe to run the application, then click on Change parameters


    tds2.jpg

  • Check Loaded Modules  and Detect TDLFS file systemDo not check Verify file digital signatures (even though it is checked in the example)
  • If you are asked to reboot because an "Extended Monitoring Driver is required" please click Reboot now


    2012081514h0118.png

  • Click Start Scan and allow the scan process to run

  • If threats are detected select Skip for all of them unless I instruct you otherwise
  • Click Continue


    tds6.jpg

  • Click Reboot computer
  • Please post the contents of  TDSSKiller.[Version]_[Date]_[Time]_log.txt found in your root directory (typically c:\)in your reply


===================================================


aswMBR

--------------------

  • Download aswMBR and save it to your desktop.
  • Please disable your real time protection of any Antivirus, Antispyware or Antimalware programs temporarily. They will interfere and may cause unexpected results.
  • If you need help to disable your protection programs see here and here.
  • Double click the aswMBR.exe file to run it. Please allow when you are asked to download AVAST antivirus engine defs.
  • Wait until the AV update is done, then click on the Scan button to start. The program will launch a scan.


    aswMBR1.png
  • When done, you will see Scan finished successfully. Please click on Save log and save the file to your desktop.


    aswMBR2.png
  • Please post the contents of the log in your next reply.

NOTE:  aswMBR will create MBR.dat file on your desktop. This is a copy of your MBR. Do NOT delete it.


===================================================


ESET Online Scanner

--------------------

I'd like us to scan your machine with ESET OnlineScan  This process may may take several hours, that is normal

  • Hold down Control and click on this link to open ESET OnlineScan in a new window.
  • Click the esetonlinebtn.png  button.
  • For alternate browsers only: (Microsoft Internet Explorer users can skip these steps)

    • Click on esetsmartinstaller_enu.exe to download the ESET Smart Installer. Save it to your desktop.
    • Double click on the icon on your desktop.

    esetsmartinstaller_enu.png

  • Check "YES, I accept the Terms of Use."
  • Click the Start button.
  • Accept any security warnings from your browser.
  • Under scan settings, check "Scan Archives" and "Remove found threats"
  • Click Advanced settings and select the following:

    • Scan potentially unwanted applications
    • Scan for potentially unsafe applications
    • Enable Anti-Stealth technology
  • ESET will then download updates for itself, install itself, and begin scanning your computer. Please be patient as this can take some time.
  • When the scan completes, click List Threats
  • Copy and paste the information in your next reply.   Note:  If no malware was found you will not get a log.
  • Click the Back button.
  • Click the Finish button.


===================================================


Things I would like to see in your next reply. Please be sure to copy and paste the information rather than send an attachment. :thumbsup2:

  • TDSSKiller log
  • aswMBR log
  • ESET results

 



#3 Jinmeister

Jinmeister
  • Topic Starter

  • Members
  • 9 posts
  • OFFLINE
  •  
  • Local time:03:49 AM

Posted 10 March 2013 - 06:02 PM

Thanks for the help. These are the logs

 

19:47:02.0938 2696  TDSS rootkit removing tool 2.8.16.0 Feb 11 2013 18:50:42
19:47:03.0328 2696  ============================================================
19:47:03.0328 2696  Current date / time: 2013/03/10 19:47:03.0328
19:47:03.0328 2696  SystemInfo:
19:47:03.0328 2696  
19:47:03.0328 2696  OS Version: 6.1.7600 ServicePack: 0.0
19:47:03.0328 2696  Product type: Workstation
19:47:03.0328 2696  ComputerName: JIN-PC
19:47:03.0328 2696  UserName: Jin
19:47:03.0328 2696  Windows directory: C:\Windows
19:47:03.0328 2696  System windows directory: C:\Windows
19:47:03.0328 2696  Running under WOW64
19:47:03.0328 2696  Processor architecture: Intel x64
19:47:03.0328 2696  Number of processors: 4
19:47:03.0328 2696  Page size: 0x1000
19:47:03.0328 2696  Boot type: Normal boot
19:47:03.0328 2696  ============================================================
19:47:03.0390 2696  BG loaded
19:47:03.0796 2696  Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
19:47:03.0811 2696  ============================================================
19:47:03.0811 2696  \Device\Harddisk0\DR0:
19:47:03.0842 2696  MBR partitions:
19:47:03.0842 2696  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x2008800, BlocksNum 0x64000
19:47:03.0842 2696  \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x206C800, BlocksNum 0x1C18D000
19:47:03.0842 2696  \Device\Harddisk0\DR0\Partition3: MBR, Type 0x7, StartLBA 0x1E1F9800, BlocksNum 0x1C18C800
19:47:03.0842 2696  ============================================================
19:47:03.0967 2696  C: <-> \Device\Harddisk0\DR0\Partition2
19:47:04.0248 2696  D: <-> \Device\Harddisk0\DR0\Partition3
19:47:04.0248 2696  ============================================================
19:47:04.0248 2696  Initialize success
19:47:04.0248 2696  ============================================================
19:47:58.0351 4528  ============================================================
19:47:58.0351 4528  Scan started
19:47:58.0351 4528  Mode: Manual;
19:47:58.0351 4528  ============================================================
19:48:01.0300 4528  ================ Scan system memory ========================
19:48:01.0300 4528  System memory - ok
19:48:01.0300 4528  ================ Scan services =============================
19:48:01.0815 4528  [ 1B00662092F9F9568B995902F0CC40D5 ] 1394ohci        C:\Windows\system32\drivers\1394ohci.sys
19:48:01.0830 4528  1394ohci - ok
19:48:01.0861 4528  [ 6F11E88748CDEFD2F76AA215F97DDFE5 ] ACPI            C:\Windows\system32\drivers\ACPI.sys
19:48:01.0939 4528  ACPI - ok
19:48:02.0002 4528  [ 63B05A0420CE4BF0E4AF6DCC7CADA254 ] AcpiPmi         C:\Windows\system32\drivers\acpipmi.sys
19:48:02.0002 4528  AcpiPmi - ok
19:48:02.0173 4528  [ 3927397AC60D943DAF8808AFFED582B7 ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
19:48:02.0173 4528  AdobeARMservice - ok
19:48:02.0641 4528  [ 9942DC4CC265CDA00486504444EF521D ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
19:48:02.0735 4528  AdobeFlashPlayerUpdateSvc - ok
19:48:03.0078 4528  [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx         C:\Windows\system32\drivers\adp94xx.sys
19:48:03.0250 4528  adp94xx - ok
19:48:03.0577 4528  [ 597F78224EE9224EA1A13D6350CED962 ] adpahci         C:\Windows\system32\drivers\adpahci.sys
19:48:03.0609 4528  adpahci - ok
19:48:03.0640 4528  [ E109549C90F62FB570B9540C4B148E54 ] adpu320         C:\Windows\system32\drivers\adpu320.sys
19:48:03.0640 4528  adpu320 - ok
19:48:03.0702 4528  [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc     C:\Windows\System32\aelupsvc.dll
19:48:03.0702 4528  AeLookupSvc - ok
19:48:03.0827 4528  [ DB9D6C6B2CD95A9CA414D045B627422E ] AFD             C:\Windows\system32\drivers\afd.sys
19:48:03.0827 4528  AFD - ok
19:48:04.0045 4528  [ 98022774D9930ECBB292E70DB7601DF6 ] AgereSoftModem  C:\Windows\system32\DRIVERS\agrsm64.sys
19:48:04.0045 4528  AgereSoftModem - ok
19:48:04.0108 4528  [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440          C:\Windows\system32\drivers\agp440.sys
19:48:04.0108 4528  agp440 - ok
19:48:04.0155 4528  [ 3290D6946B5E30E70414990574883DDB ] ALG             C:\Windows\System32\alg.exe
19:48:04.0155 4528  ALG - ok
19:48:04.0186 4528  [ 5812713A477A3AD7363C7438CA2EE038 ] aliide          C:\Windows\system32\drivers\aliide.sys
19:48:04.0186 4528  aliide - ok
19:48:04.0279 4528  [ 6F01290FB0595FDA9898E144C8AB60B1 ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe
19:48:04.0279 4528  AMD External Events Utility - ok
19:48:04.0342 4528  [ 1FF8B4431C353CE385C875F194924C0C ] amdide          C:\Windows\system32\drivers\amdide.sys
19:48:04.0342 4528  amdide - ok
19:48:04.0373 4528  [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8           C:\Windows\system32\drivers\amdk8.sys
19:48:04.0373 4528  AmdK8 - ok
19:48:04.0903 4528  [ 88CBC2FA11FDDD79B741E4878E670F49 ] amdkmdag        C:\Windows\system32\DRIVERS\atipmdag.sys
19:48:04.0935 4528  amdkmdag - ok
19:48:05.0059 4528  [ 37F1422B84769C61368C22ADE8B6CCBC ] amdkmdap        C:\Windows\system32\DRIVERS\atikmpag.sys
19:48:05.0059 4528  amdkmdap - ok
19:48:05.0137 4528  [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM          C:\Windows\system32\drivers\amdppm.sys
19:48:05.0137 4528  AmdPPM - ok
19:48:05.0231 4528  [ EC7EBAB00A4D8448BAB68D1E49B4BEB9 ] amdsata         C:\Windows\system32\drivers\amdsata.sys
19:48:05.0231 4528  amdsata - ok
19:48:05.0325 4528  [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs          C:\Windows\system32\drivers\amdsbs.sys
19:48:05.0325 4528  amdsbs - ok
19:48:05.0387 4528  [ DB27766102C7BF7E95140A2AA81D042E ] amdxata         C:\Windows\system32\drivers\amdxata.sys
19:48:05.0387 4528  amdxata - ok
19:48:05.0496 4528  [ 42FD751B27FA0E9C69BB39F39E409594 ] AppID           C:\Windows\system32\drivers\appid.sys
19:48:05.0496 4528  AppID - ok
19:48:05.0527 4528  [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc        C:\Windows\System32\appidsvc.dll
19:48:05.0527 4528  AppIDSvc - ok
19:48:05.0574 4528  [ D065BE66822847B7F127D1F90158376E ] Appinfo         C:\Windows\System32\appinfo.dll
19:48:05.0574 4528  Appinfo - ok
19:48:05.0746 4528  [ A5299D04ED225D64CF07A568A3E1BF8C ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
19:48:05.0746 4528  Apple Mobile Device - ok
19:48:05.0824 4528  [ C484F8CEB1717C540242531DB7845C4E ] arc             C:\Windows\system32\drivers\arc.sys
19:48:05.0824 4528  arc - ok
19:48:05.0917 4528  [ 019AF6924AEFE7839F61C830227FE79C ] arcsas          C:\Windows\system32\drivers\arcsas.sys
19:48:05.0917 4528  arcsas - ok
19:48:05.0980 4528  [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac        C:\Windows\system32\DRIVERS\asyncmac.sys
19:48:05.0980 4528  AsyncMac - ok
19:48:06.0058 4528  [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi           C:\Windows\system32\drivers\atapi.sys
19:48:06.0058 4528  atapi - ok
19:48:06.0339 4528  [ 0ACC06FCF46F64ED4F11E57EE461C1F4 ] athr            C:\Windows\system32\DRIVERS\athrx.sys
19:48:06.0354 4528  athr - ok
19:48:06.0604 4528  [ 07721A77180EDD4D39CCB865BF63C7FD ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
19:48:06.0604 4528  AudioEndpointBuilder - ok
19:48:06.0604 4528  [ 07721A77180EDD4D39CCB865BF63C7FD ] AudioSrv        C:\Windows\System32\Audiosrv.dll
19:48:06.0619 4528  AudioSrv - ok
19:48:06.0729 4528  [ B20B5FA5CA050E9926E4D1DB81501B32 ] AxInstSV        C:\Windows\System32\AxInstSV.dll
19:48:06.0729 4528  AxInstSV - ok
19:48:06.0916 4528  [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv         C:\Windows\system32\drivers\bxvbda.sys
19:48:07.0009 4528  b06bdrv - ok
19:48:07.0103 4528  [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a        C:\Windows\system32\DRIVERS\b57nd60a.sys
19:48:07.0103 4528  b57nd60a - ok
19:48:07.0399 4528  [ F48FEB7DA35821DA15E0B006DCB9A169 ] BBSvc           C:\Program Files (x86)\Microsoft\BingBar\7.1.391.0\BBSvc.exe
19:48:07.0415 4528  BBSvc - ok
19:48:07.0477 4528  [ 8E16F7A85441986FD2B9CE6C879524E4 ] BBUpdate        C:\Program Files (x86)\Microsoft\BingBar\7.1.391.0\SeaPort.exe
19:48:07.0477 4528  BBUpdate - ok
19:48:07.0540 4528  [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC          C:\Windows\System32\bdesvc.dll
19:48:07.0540 4528  BDESVC - ok
19:48:07.0618 4528  [ 16A47CE2DECC9B099349A5F840654746 ] Beep            C:\Windows\system32\drivers\Beep.sys
19:48:07.0618 4528  Beep - ok
19:48:07.0711 4528  [ 4992C609A6315671463E30F6512BC022 ] BFE             C:\Windows\System32\bfe.dll
19:48:07.0711 4528  BFE - ok
19:48:07.0774 4528  [ 7F0C323FE3DA28AA4AA1BDA3F575707F ] BITS            C:\Windows\System32\qmgr.dll
19:48:07.0789 4528  BITS - ok
19:48:07.0836 4528  [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive        C:\Windows\system32\drivers\blbdrive.sys
19:48:07.0836 4528  blbdrive - ok
19:48:08.0008 4528  [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
19:48:08.0008 4528  Bonjour Service - ok
19:48:08.0117 4528  [ 19D20159708E152267E53B66677A4995 ] bowser          C:\Windows\system32\DRIVERS\bowser.sys
19:48:08.0117 4528  bowser - ok
19:48:08.0164 4528  [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo        C:\Windows\system32\drivers\BrFiltLo.sys
19:48:08.0164 4528  BrFiltLo - ok
19:48:08.0179 4528  [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp        C:\Windows\system32\drivers\BrFiltUp.sys
19:48:08.0179 4528  BrFiltUp - ok
19:48:08.0242 4528  [ 6B054C67AAA87843504E8E3C09102009 ] Browser         C:\Windows\System32\browser.dll
19:48:08.0242 4528  Browser - ok
19:48:08.0351 4528  [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid         C:\Windows\System32\Drivers\Brserid.sys
19:48:08.0585 4528  Brserid - ok
19:48:08.0616 4528  [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm        C:\Windows\System32\Drivers\BrSerWdm.sys
19:48:08.0616 4528  BrSerWdm - ok
19:48:08.0679 4528  [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm        C:\Windows\System32\Drivers\BrUsbMdm.sys
19:48:08.0679 4528  BrUsbMdm - ok
19:48:08.0710 4528  [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer        C:\Windows\System32\Drivers\BrUsbSer.sys
19:48:08.0710 4528  BrUsbSer - ok
19:48:08.0803 4528  [ 980389A0C95636AEB30444F2FEBFE901 ] BthAvrcp        C:\Windows\system32\drivers\BthAvrcp.sys
19:48:08.0819 4528  BthAvrcp - ok
19:48:08.0882 4528  [ CF98190A94F62E405C8CB255018B2315 ] BthEnum         C:\Windows\system32\drivers\BthEnum.sys
19:48:08.0882 4528  BthEnum - ok
19:48:08.0944 4528  [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM        C:\Windows\system32\DRIVERS\bthmodem.sys
19:48:08.0944 4528  BTHMODEM - ok
19:48:08.0975 4528  [ 02DD601B708DD0667E1331FA8518E9FF ] BthPan          C:\Windows\system32\DRIVERS\bthpan.sys
19:48:08.0975 4528  BthPan - ok
19:48:09.0084 4528  [ D59773C7FDD3D795D6FE402EEEA8D71E ] BTHPORT         C:\Windows\System32\Drivers\BTHport.sys
19:48:09.0100 4528  BTHPORT - ok
19:48:09.0147 4528  [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv         C:\Windows\system32\bthserv.dll
19:48:09.0147 4528  bthserv - ok
19:48:09.0209 4528  [ 8504842634DD144C075B6B0C982CCEC4 ] BTHUSB          C:\Windows\System32\Drivers\BTHUSB.sys
19:48:09.0209 4528  BTHUSB - ok
19:48:09.0287 4528  [ B8BD2BB284668C84865658C77574381A ] cdfs            C:\Windows\system32\DRIVERS\cdfs.sys
19:48:09.0303 4528  cdfs - ok
19:48:09.0459 4528  [ 83D2D75E1EFB81B3450C18131443F7DB ] cdrom           C:\Windows\system32\DRIVERS\cdrom.sys
19:48:09.0459 4528  cdrom - ok
19:48:09.0521 4528  [ 312E2F82AF11E79906898AC3E3D58A1F ] CertPropSvc     C:\Windows\System32\certprop.dll
19:48:09.0521 4528  CertPropSvc - ok
19:48:09.0552 4528  [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass        C:\Windows\system32\drivers\circlass.sys
19:48:09.0552 4528  circlass - ok
19:48:09.0584 4528  [ FE1EC06F2253F691FE36217C592A0206 ] CLFS            C:\Windows\system32\CLFS.sys
19:48:09.0584 4528  CLFS - ok
19:48:09.0958 4528  [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
19:48:09.0958 4528  clr_optimization_v2.0.50727_32 - ok
19:48:10.0020 4528  [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
19:48:10.0020 4528  clr_optimization_v2.0.50727_64 - ok
19:48:10.0161 4528  [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
19:48:10.0223 4528  clr_optimization_v4.0.30319_32 - ok
19:48:10.0379 4528  [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
19:48:10.0379 4528  clr_optimization_v4.0.30319_64 - ok
19:48:10.0426 4528  [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt          C:\Windows\system32\drivers\CmBatt.sys
19:48:10.0426 4528  CmBatt - ok
19:48:10.0442 4528  [ E19D3F095812725D88F9001985B94EDD ] cmdide          C:\Windows\system32\drivers\cmdide.sys
19:48:10.0442 4528  cmdide - ok
19:48:10.0488 4528  [ CA7720B73446FDDEC5C69519C1174C98 ] CNG             C:\Windows\system32\Drivers\cng.sys
19:48:10.0504 4528  CNG - ok
19:48:10.0520 4528  [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt        C:\Windows\system32\drivers\compbatt.sys
19:48:10.0520 4528  Compbatt - ok
19:48:10.0566 4528  [ F26B3A86F6FA87CA360B879581AB4123 ] CompositeBus    C:\Windows\system32\drivers\CompositeBus.sys
19:48:10.0566 4528  CompositeBus - ok
19:48:10.0582 4528  COMSysApp - ok
19:48:10.0598 4528  [ 1C827878A998C18847245FE1F34EE597 ] crcdisk         C:\Windows\system32\drivers\crcdisk.sys
19:48:10.0613 4528  crcdisk - ok
19:48:10.0660 4528  [ BAF19B633933A9FB4883D27D66C39E9A ] CryptSvc        C:\Windows\system32\cryptsvc.dll
19:48:10.0660 4528  CryptSvc - ok
19:48:10.0754 4528  [ 7266972E86890E2B30C0C322E906B027 ] DcomLaunch      C:\Windows\system32\rpcss.dll
19:48:10.0754 4528  DcomLaunch - ok
19:48:10.0785 4528  [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc       C:\Windows\System32\defragsvc.dll
19:48:10.0800 4528  defragsvc - ok
19:48:10.0847 4528  [ 9C253CE7311CA60FC11C774692A13208 ] DfsC            C:\Windows\system32\Drivers\dfsc.sys
19:48:10.0847 4528  DfsC - ok
19:48:10.0878 4528  [ CE3B9562D997F69B330D181A8875960F ] Dhcp            C:\Windows\system32\dhcpcore.dll
19:48:10.0878 4528  Dhcp - ok
19:48:10.0925 4528  [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache        C:\Windows\system32\drivers\discache.sys
19:48:10.0925 4528  discache - ok
19:48:10.0956 4528  [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk            C:\Windows\system32\drivers\disk.sys
19:48:10.0956 4528  Disk - ok
19:48:10.0988 4528  [ 85CF424C74A1D5EC33533E1DBFF9920A ] Dnscache        C:\Windows\System32\dnsrslvr.dll
19:48:10.0988 4528  Dnscache - ok
19:48:11.0034 4528  [ 14452ACDB09B70964C8C21BF80A13ACB ] dot3svc         C:\Windows\System32\dot3svc.dll
19:48:11.0034 4528  dot3svc - ok
19:48:11.0050 4528  [ 8C2BA6BEA949EE6E68385F5692BAFB94 ] DPS             C:\Windows\system32\dps.dll
19:48:11.0050 4528  DPS - ok
19:48:11.0097 4528  [ 9B19F34400D24DF84C858A421C205754 ] drmkaud         C:\Windows\system32\drivers\drmkaud.sys
19:48:11.0097 4528  drmkaud - ok
19:48:11.0175 4528  [ 1633B9ABF52784A1331476397A48CBEF ] DXGKrnl         C:\Windows\System32\drivers\dxgkrnl.sys
19:48:11.0175 4528  DXGKrnl - ok
19:48:11.0206 4528  [ 50AD8FC1DC800FF36087994C8F7FDFF2 ] e1yexpress      C:\Windows\system32\DRIVERS\e1y60x64.sys
19:48:11.0206 4528  e1yexpress - ok
19:48:11.0253 4528  [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost         C:\Windows\System32\eapsvc.dll
19:48:11.0268 4528  EapHost - ok
19:48:11.0924 4528  [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv           C:\Windows\system32\drivers\evbda.sys
19:48:12.0017 4528  ebdrv - ok
19:48:12.0080 4528  [ 156F6159457D0AA7E59B62681B56EB90 ] EFS             C:\Windows\System32\lsass.exe
19:48:12.0080 4528  EFS - ok
19:48:12.0329 4528  [ 5ED93B898CF73C37EC057211826466BD ] ehRecvr         C:\Windows\ehome\ehRecvr.exe
19:48:12.0345 4528  ehRecvr - ok
19:48:12.0376 4528  [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched         C:\Windows\ehome\ehsched.exe
19:48:12.0376 4528  ehSched - ok
19:48:12.0407 4528  [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor         C:\Windows\system32\drivers\elxstor.sys
19:48:12.0423 4528  elxstor - ok
19:48:12.0423 4528  [ 34A3C54752046E79A126E15C51DB409B ] ErrDev          C:\Windows\system32\drivers\errdev.sys
19:48:12.0423 4528  ErrDev - ok
19:48:12.0501 4528  [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem     C:\Windows\system32\es.dll
19:48:12.0501 4528  EventSystem - ok
19:48:12.0516 4528  [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat           C:\Windows\system32\drivers\exfat.sys
19:48:12.0532 4528  exfat - ok
19:48:12.0579 4528  [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat         C:\Windows\system32\drivers\fastfat.sys
19:48:12.0579 4528  fastfat - ok
19:48:12.0657 4528  [ D607B2F1BEE3992AA6C2C92C0A2F0855 ] Fax             C:\Windows\system32\fxssvc.exe
19:48:12.0657 4528  Fax - ok
19:48:12.0704 4528  [ 9955BF48FD2FA8D481848CD3024EDD0B ] FBIOSDRV        C:\Windows\system32\Drivers\FBIOSDRV.sys
19:48:12.0704 4528  FBIOSDRV - ok
19:48:12.0719 4528  [ D765D19CD8EF61F650C384F62FAC00AB ] fdc             C:\Windows\system32\drivers\fdc.sys
19:48:12.0719 4528  fdc - ok
19:48:12.0750 4528  [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost         C:\Windows\system32\fdPHost.dll
19:48:12.0750 4528  fdPHost - ok
19:48:12.0766 4528  [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub        C:\Windows\system32\fdrespub.dll
19:48:12.0766 4528  FDResPub - ok
19:48:12.0813 4528  [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo        C:\Windows\system32\drivers\fileinfo.sys
19:48:12.0813 4528  FileInfo - ok
19:48:12.0828 4528  [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace       C:\Windows\system32\drivers\filetrace.sys
19:48:12.0828 4528  Filetrace - ok
19:48:12.0844 4528  [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk        C:\Windows\system32\drivers\flpydisk.sys
19:48:12.0844 4528  flpydisk - ok
19:48:12.0906 4528  [ F7866AF72ABBAF84B1FA5AA195378C59 ] FltMgr          C:\Windows\system32\drivers\fltmgr.sys
19:48:12.0906 4528  FltMgr - ok
19:48:13.0140 4528  [ CB5E4B9C319E3C6BB363EB7E58A4A051 ] FontCache       C:\Windows\system32\FntCache.dll
19:48:13.0156 4528  FontCache - ok
19:48:13.0203 4528  [ 8D89E3131C27FDD6932189CB785E1B7A ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
19:48:13.0218 4528  FontCache3.0.0.0 - ok
19:48:13.0218 4528  [ D43703496149971890703B4B1B723EAC ] FsDepends       C:\Windows\system32\drivers\FsDepends.sys
19:48:13.0234 4528  FsDepends - ok
19:48:13.0281 4528  [ 2BF3B36B96D015AF666B6AA63AE2E38F ] fssfltr         C:\Windows\system32\DRIVERS\fssfltr.sys
19:48:13.0281 4528  fssfltr - ok
19:48:13.0421 4528  [ 45B52394F9624237F33A8A3D73C0B221 ] fsssvc          C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe
19:48:13.0437 4528  fsssvc - ok
19:48:13.0484 4528  [ D3E3F93D67821A2DB2B3D9FAC2DC2064 ] Fs_Rec          C:\Windows\system32\drivers\Fs_Rec.sys
19:48:13.0484 4528  Fs_Rec - ok
19:48:13.0546 4528  [ BA0C1FFDA496D8BCBCAC63F8D98D20E3 ] FUJ02B1         C:\Windows\system32\drivers\FUJ02B1.sys
19:48:13.0546 4528  FUJ02B1 - ok
19:48:13.0593 4528  [ 7135030CBF87D724B6037BB023923730 ] FUJ02E3         C:\Windows\system32\drivers\FUJ02E3.sys
19:48:13.0593 4528  FUJ02E3 - ok
19:48:13.0671 4528  [ AE87BA80D0EC3B57126ED2CDC15B24ED ] fvevol          C:\Windows\system32\DRIVERS\fvevol.sys
19:48:13.0686 4528  fvevol - ok
19:48:13.0733 4528  [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx        C:\Windows\system32\drivers\gagp30kx.sys
19:48:13.0733 4528  gagp30kx - ok
19:48:13.0796 4528  [ 8E98D21EE06192492A5671A6144D092F ] GEARAspiWDM     C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
19:48:13.0796 4528  GEARAspiWDM - ok
19:48:13.0842 4528  [ FE5AB4525BC2EC68B9119A6E5D40128B ] gpsvc           C:\Windows\System32\gpsvc.dll
19:48:13.0842 4528  gpsvc - ok
19:48:13.0874 4528  [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir        C:\Windows\system32\drivers\hcw85cir.sys
19:48:13.0874 4528  hcw85cir - ok
19:48:13.0983 4528  [ 6410F6F415B2A5A9037224C41DA8BF12 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
19:48:13.0983 4528  HdAudAddService - ok
19:48:14.0045 4528  [ 0A49913402747A0B67DE940FB42CBDBB ] HDAudBus        C:\Windows\system32\DRIVERS\HDAudBus.sys
19:48:14.0045 4528  HDAudBus - ok
19:48:14.0092 4528  [ B6AC71AAA2B10848F57FC49D55A651AF ] HECIx64         C:\Windows\system32\drivers\HECIx64.sys
19:48:14.0092 4528  HECIx64 - ok
19:48:14.0123 4528  [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt         C:\Windows\system32\drivers\HidBatt.sys
19:48:14.0123 4528  HidBatt - ok
19:48:14.0170 4528  [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth          C:\Windows\system32\drivers\hidbth.sys
19:48:14.0170 4528  HidBth - ok
19:48:14.0232 4528  [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr           C:\Windows\system32\drivers\hidir.sys
19:48:14.0232 4528  HidIr - ok
19:48:14.0264 4528  [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv         C:\Windows\system32\hidserv.dll
19:48:14.0264 4528  hidserv - ok
19:48:14.0342 4528  [ B3BF6B5B50006DEF50B66306D99FCF6F ] HidUsb          C:\Windows\system32\DRIVERS\hidusb.sys
19:48:14.0342 4528  HidUsb - ok
19:48:14.0404 4528  [ EFA58EDE58DD74388FFD04CB32681518 ] hkmsvc          C:\Windows\system32\kmsvc.dll
19:48:14.0404 4528  hkmsvc - ok
19:48:14.0482 4528  [ 046B2673767CA626E2CFB7FDF735E9E8 ] HomeGroupListener C:\Windows\system32\ListSvc.dll
19:48:14.0482 4528  HomeGroupListener - ok
19:48:14.0513 4528  [ 06A7422224D9865A5613710A089987DF ] HomeGroupProvider C:\Windows\system32\provsvc.dll
19:48:14.0513 4528  HomeGroupProvider - ok
19:48:14.0576 4528  [ 0886D440058F203EBA0E1825E4355914 ] HpSAMD          C:\Windows\system32\drivers\HpSAMD.sys
19:48:14.0576 4528  HpSAMD - ok
19:48:14.0638 4528  [ CEE049CAC4EFA7F4E1E4AD014414A5D4 ] HTTP            C:\Windows\system32\drivers\HTTP.sys
19:48:14.0654 4528  HTTP - ok
19:48:14.0669 4528  [ F17766A19145F111856378DF337A5D79 ] hwpolicy        C:\Windows\system32\drivers\hwpolicy.sys
19:48:14.0685 4528  hwpolicy - ok
19:48:14.0732 4528  [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt        C:\Windows\system32\DRIVERS\i8042prt.sys
19:48:14.0732 4528  i8042prt - ok
19:48:14.0810 4528  [ 073A606333B6F7BBF20AA856DF7F0997 ] iaStor          C:\Windows\system32\drivers\iaStor.sys
19:48:14.0810 4528  iaStor - ok
19:48:14.0966 4528  [ B75E45C564E944A2657167D197AB29DA ] iaStorV         C:\Windows\system32\drivers\iaStorV.sys
19:48:14.0966 4528  iaStorV - ok
19:48:15.0044 4528  [ 2F2BE70D3E02B6FA877921AB9516D43C ] idsvc           C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
19:48:15.0044 4528  idsvc - ok
19:48:15.0699 4528  [ B36E6868CF289040795C1FA0D0FEB399 ] igfx            C:\Windows\system32\DRIVERS\igdkmd64.sys
19:48:15.0886 4528  igfx - ok
19:48:15.0933 4528  [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp           C:\Windows\system32\drivers\iirsp.sys
19:48:15.0933 4528  iirsp - ok
19:48:15.0980 4528  [ C5B4683680DF085B57BC53E5EF34861F ] IKEEXT          C:\Windows\System32\ikeext.dll
19:48:15.0995 4528  IKEEXT - ok
19:48:16.0073 4528  [ 36FDF367A1DABFF903E2214023D71368 ] Impcd           C:\Windows\system32\DRIVERS\Impcd.sys
19:48:16.0073 4528  Impcd - ok
19:48:16.0182 4528  [ 42943BB3AB7A405B30EFF7C8283CC129 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
19:48:16.0198 4528  IntcAzAudAddService - ok
19:48:16.0229 4528  [ F00F20E70C6EC3AA366910083A0518AA ] intelide        C:\Windows\system32\drivers\intelide.sys
19:48:16.0245 4528  intelide - ok
19:48:16.0276 4528  [ ADA036632C664CAA754079041CF1F8C1 ] intelppm        C:\Windows\system32\DRIVERS\intelppm.sys
19:48:16.0276 4528  intelppm - ok
19:48:16.0307 4528  [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum       C:\Windows\system32\ipbusenum.dll
19:48:16.0307 4528  IPBusEnum - ok
19:48:16.0323 4528  [ 722DD294DF62483CECAAE6E094B4D695 ] IpFilterDriver  C:\Windows\system32\DRIVERS\ipfltdrv.sys
19:48:16.0323 4528  IpFilterDriver - ok
19:48:16.0370 4528  [ F8E058D17363EC580E4B7232778B6CB5 ] iphlpsvc        C:\Windows\System32\iphlpsvc.dll
19:48:16.0385 4528  iphlpsvc - ok
19:48:16.0385 4528  [ E2B4A4494DB7CB9B89B55CA268C337C5 ] IPMIDRV         C:\Windows\system32\drivers\IPMIDrv.sys
19:48:16.0385 4528  IPMIDRV - ok
19:48:16.0385 4528  [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT           C:\Windows\system32\drivers\ipnat.sys
19:48:16.0385 4528  IPNAT - ok
19:48:16.0448 4528  [ 0F261EC4F514926177C70C1832374231 ] iPod Service    C:\Program Files\iPod\bin\iPodService.exe
19:48:16.0448 4528  iPod Service - ok
19:48:16.0479 4528  [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM          C:\Windows\system32\drivers\irenum.sys
19:48:16.0479 4528  IRENUM - ok
19:48:16.0510 4528  [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp          C:\Windows\system32\drivers\isapnp.sys
19:48:16.0510 4528  isapnp - ok
19:48:16.0557 4528  [ FA4D2557DE56D45B0A346F93564BE6E1 ] iScsiPrt        C:\Windows\system32\drivers\msiscsi.sys
19:48:16.0588 4528  iScsiPrt - ok
19:48:16.0635 4528  [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass        C:\Windows\system32\DRIVERS\kbdclass.sys
19:48:16.0635 4528  kbdclass - ok
19:48:16.0682 4528  [ 6DEF98F8541E1B5DCEB2C822A11F7323 ] kbdhid          C:\Windows\system32\drivers\kbdhid.sys
19:48:16.0682 4528  kbdhid - ok
19:48:16.0697 4528  [ 156F6159457D0AA7E59B62681B56EB90 ] KeyIso          C:\Windows\system32\lsass.exe
19:48:16.0697 4528  KeyIso - ok
19:48:16.0760 4528  [ 4F4B5FDE429416877DE7143044582EB5 ] KSecDD          C:\Windows\system32\Drivers\ksecdd.sys
19:48:16.0760 4528  KSecDD - ok
19:48:16.0806 4528  [ 6F40465A44ECDC1731BEFAFEC5BDD03C ] KSecPkg         C:\Windows\system32\Drivers\ksecpkg.sys
19:48:16.0806 4528  KSecPkg - ok
19:48:16.0853 4528  [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk         C:\Windows\system32\drivers\ksthunk.sys
19:48:16.0853 4528  ksthunk - ok
19:48:16.0962 4528  [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm           C:\Windows\system32\msdtckrm.dll
19:48:16.0962 4528  KtmRm - ok
19:48:17.0056 4528  [ 81F1D04D4D0E433099365127375FD501 ] LanmanServer    C:\Windows\system32\srvsvc.dll
19:48:17.0056 4528  LanmanServer - ok
19:48:17.0087 4528  [ 27026EAC8818E8A6C00A1CAD2F11D29A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
19:48:17.0087 4528  LanmanWorkstation - ok
19:48:17.0134 4528  [ 1538831CF8AD2979A04C423779465827 ] lltdio          C:\Windows\system32\DRIVERS\lltdio.sys
19:48:17.0134 4528  lltdio - ok
19:48:17.0181 4528  [ C1185803384AB3FEED115F79F109427F ] lltdsvc         C:\Windows\System32\lltdsvc.dll
19:48:17.0196 4528  lltdsvc - ok
19:48:17.0228 4528  [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts         C:\Windows\System32\lmhsvc.dll
19:48:17.0228 4528  lmhosts - ok
19:48:17.0290 4528  [ A1C148801B4AF64847AEB9F3AD9594EF ] LMS             C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
19:48:17.0290 4528  LMS - ok
19:48:17.0337 4528  [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC          C:\Windows\system32\drivers\lsi_fc.sys
19:48:17.0337 4528  LSI_FC - ok
19:48:17.0352 4528  [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS         C:\Windows\system32\drivers\lsi_sas.sys
19:48:17.0352 4528  LSI_SAS - ok
19:48:17.0352 4528  [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2        C:\Windows\system32\drivers\lsi_sas2.sys
19:48:17.0352 4528  LSI_SAS2 - ok
19:48:17.0384 4528  [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI        C:\Windows\system32\drivers\lsi_scsi.sys
19:48:17.0384 4528  LSI_SCSI - ok
19:48:17.0415 4528  [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv           C:\Windows\system32\drivers\luafv.sys
19:48:17.0415 4528  luafv - ok
19:48:17.0524 4528  [ DDCC236009C707761D60E5C76D639176 ] McComponentHostService C:\Program Files (x86)\McAfee Security Scan\3.0.318\McCHSvc.exe
19:48:17.0540 4528  McComponentHostService - ok
19:48:17.0571 4528  [ F84C8F1000BC11E3B7B23CBD3BAFF111 ] Mcx2Svc         C:\Windows\system32\Mcx2Svc.dll
19:48:17.0571 4528  Mcx2Svc - ok
19:48:17.0602 4528  [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas         C:\Windows\system32\drivers\megasas.sys
19:48:17.0602 4528  megasas - ok
19:48:17.0618 4528  [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR          C:\Windows\system32\drivers\MegaSR.sys
19:48:17.0618 4528  MegaSR - ok
19:48:17.0727 4528  Microsoft SharePoint Workspace Audit Service - ok
19:48:17.0758 4528  [ E40E80D0304A73E8D269F7141D77250B ] MMCSS           C:\Windows\system32\mmcss.dll
19:48:17.0758 4528  MMCSS - ok
19:48:17.0789 4528  [ 800BA92F7010378B09F9ED9270F07137 ] Modem           C:\Windows\system32\drivers\modem.sys
19:48:17.0789 4528  Modem - ok
19:48:17.0805 4528  [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor         C:\Windows\system32\DRIVERS\monitor.sys
19:48:17.0805 4528  monitor - ok
19:48:17.0852 4528  [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass        C:\Windows\system32\DRIVERS\mouclass.sys
19:48:17.0852 4528  mouclass - ok
19:48:17.0867 4528  [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid          C:\Windows\system32\DRIVERS\mouhid.sys
19:48:17.0867 4528  mouhid - ok
19:48:17.0883 4528  [ 791AF66C4D0E7C90A3646066386FB571 ] mountmgr        C:\Windows\system32\drivers\mountmgr.sys
19:48:17.0883 4528  mountmgr - ok
19:48:17.0992 4528  [ 8A7C8F4C713E70D73946833D76B77035 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
19:48:18.0023 4528  MozillaMaintenance - ok
19:48:18.0039 4528  [ 609D1D87649ECC19796F4D76D4C15CEA ] mpio            C:\Windows\system32\drivers\mpio.sys
19:48:18.0039 4528  mpio - ok
19:48:18.0086 4528  [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv          C:\Windows\system32\drivers\mpsdrv.sys
19:48:18.0086 4528  mpsdrv - ok
19:48:18.0164 4528  [ AECAB449567D1846DAD63ECE49E893E3 ] MpsSvc          C:\Windows\system32\mpssvc.dll
19:48:18.0164 4528  MpsSvc - ok
19:48:18.0226 4528  [ 30524261BB51D96D6FCBAC20C810183C ] MRxDAV          C:\Windows\system32\drivers\mrxdav.sys
19:48:18.0226 4528  MRxDAV - ok
19:48:18.0522 4528  [ 040D62A9D8AD28922632137ACDD984F2 ] mrxsmb          C:\Windows\system32\DRIVERS\mrxsmb.sys
19:48:18.0522 4528  mrxsmb - ok
19:48:18.0600 4528  [ F0067552F8F9B33D7C59403AB808A3CB ] mrxsmb10        C:\Windows\system32\DRIVERS\mrxsmb10.sys
19:48:18.0600 4528  mrxsmb10 - ok
19:48:18.0632 4528  [ 3C142D31DE9F2F193218A53FE2632051 ] mrxsmb20        C:\Windows\system32\DRIVERS\mrxsmb20.sys
19:48:18.0632 4528  mrxsmb20 - ok
19:48:18.0678 4528  [ 5C37497276E3B3A5488B23A326A754B7 ] msahci          C:\Windows\system32\drivers\msahci.sys
19:48:18.0678 4528  msahci - ok
19:48:18.0725 4528  [ 8D27B597229AED79430FB9DB3BCBFBD0 ] msdsm           C:\Windows\system32\drivers\msdsm.sys
19:48:18.0741 4528  msdsm - ok
19:48:18.0756 4528  [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC           C:\Windows\System32\msdtc.exe
19:48:18.0756 4528  MSDTC - ok
19:48:18.0788 4528  [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs            C:\Windows\system32\drivers\Msfs.sys
19:48:18.0788 4528  Msfs - ok
19:48:18.0803 4528  [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf       C:\Windows\System32\drivers\mshidkmdf.sys
19:48:18.0803 4528  mshidkmdf - ok
19:48:18.0819 4528  [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv        C:\Windows\system32\drivers\msisadrv.sys
19:48:18.0819 4528  msisadrv - ok
19:48:18.0881 4528  [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI         C:\Windows\system32\iscsiexe.dll
19:48:18.0881 4528  MSiSCSI - ok
19:48:18.0881 4528  msiserver - ok
19:48:18.0944 4528  [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV         C:\Windows\system32\drivers\MSKSSRV.sys
19:48:18.0944 4528  MSKSSRV - ok
19:48:19.0053 4528  [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK        C:\Windows\system32\drivers\MSPCLOCK.sys
19:48:19.0053 4528  MSPCLOCK - ok
19:48:19.0068 4528  [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM           C:\Windows\system32\drivers\MSPQM.sys
19:48:19.0068 4528  MSPQM - ok
19:48:19.0115 4528  [ 89CB141AA8616D8C6A4610FA26C60964 ] MsRPC           C:\Windows\system32\drivers\MsRPC.sys
19:48:19.0115 4528  MsRPC - ok
19:48:19.0146 4528  [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios        C:\Windows\system32\drivers\mssmbios.sys
19:48:19.0146 4528  mssmbios - ok
19:48:19.0146 4528  [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE           C:\Windows\system32\drivers\MSTEE.sys
19:48:19.0162 4528  MSTEE - ok
19:48:19.0178 4528  [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig        C:\Windows\system32\drivers\MTConfig.sys
19:48:19.0178 4528  MTConfig - ok
19:48:19.0193 4528  [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup             C:\Windows\system32\Drivers\mup.sys
19:48:19.0193 4528  Mup - ok
19:48:19.0224 4528  [ 4987E079A4530FA737A128BE54B63B12 ] napagent        C:\Windows\system32\qagentRT.dll
19:48:19.0224 4528  napagent - ok
19:48:19.0271 4528  [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP     C:\Windows\system32\DRIVERS\nwifi.sys
19:48:19.0271 4528  NativeWifiP - ok
19:48:19.0349 4528  [ CAD515DBD07D082BB317D9928CE8962C ] NDIS            C:\Windows\system32\drivers\ndis.sys
19:48:19.0349 4528  NDIS - ok
19:48:19.0412 4528  [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap         C:\Windows\system32\DRIVERS\ndiscap.sys
19:48:19.0427 4528  NdisCap - ok
19:48:19.0490 4528  [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi        C:\Windows\system32\DRIVERS\ndistapi.sys
19:48:19.0490 4528  NdisTapi - ok
19:48:19.0568 4528  [ F105BA1E22BF1F2EE8F005D4305E4BEC ] Ndisuio         C:\Windows\system32\DRIVERS\ndisuio.sys
19:48:19.0568 4528  Ndisuio - ok
19:48:19.0692 4528  [ 557DFAB9CA1FCB036AC77564C010DAD3 ] NdisWan         C:\Windows\system32\DRIVERS\ndiswan.sys
19:48:19.0692 4528  NdisWan - ok
19:48:19.0770 4528  [ 659B74FB74B86228D6338D643CD3E3CF ] NDProxy         C:\Windows\system32\drivers\NDProxy.sys
19:48:19.0770 4528  NDProxy - ok
19:48:19.0848 4528  [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS         C:\Windows\system32\DRIVERS\netbios.sys
19:48:19.0848 4528  NetBIOS - ok
19:48:19.0864 4528  [ 9162B273A44AB9DCE5B44362731D062A ] NetBT           C:\Windows\system32\DRIVERS\netbt.sys
19:48:19.0880 4528  NetBT - ok
19:48:19.0880 4528  [ 156F6159457D0AA7E59B62681B56EB90 ] Netlogon        C:\Windows\system32\lsass.exe
19:48:19.0895 4528  Netlogon - ok
19:48:19.0926 4528  [ 847D3AE376C0817161A14A82C8922A9E ] Netman          C:\Windows\System32\netman.dll
19:48:19.0942 4528  Netman - ok
19:48:19.0973 4528  [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm        C:\Windows\System32\netprofm.dll
19:48:19.0973 4528  netprofm - ok
19:48:20.0004 4528  [ 3E5A36127E201DDF663176B66828FAFE ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
19:48:20.0004 4528  NetTcpPortSharing - ok
19:48:20.0176 4528  [ 64428DFDAF6E88366CB51F45A79C5F69 ] netw5v64        C:\Windows\system32\DRIVERS\netw5v64.sys
19:48:20.0285 4528  netw5v64 - ok
19:48:20.0316 4528  [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960         C:\Windows\system32\drivers\nfrd960.sys
19:48:20.0316 4528  nfrd960 - ok
19:48:20.0363 4528  [ D9A0CE66046D6EFA0C61BAA885CBA0A8 ] NlaSvc          C:\Windows\System32\nlasvc.dll
19:48:20.0363 4528  NlaSvc - ok
19:48:20.0379 4528  [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs            C:\Windows\system32\drivers\Npfs.sys
19:48:20.0379 4528  Npfs - ok
19:48:20.0426 4528  [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi             C:\Windows\system32\nsisvc.dll
19:48:20.0457 4528  nsi - ok
19:48:20.0519 4528  [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy        C:\Windows\system32\drivers\nsiproxy.sys
19:48:20.0535 4528  nsiproxy - ok
19:48:20.0628 4528  [ 184C189D4FC416978550FC599BB4EDDA ] Ntfs            C:\Windows\system32\drivers\Ntfs.sys
19:48:20.0691 4528  Ntfs - ok
19:48:20.0753 4528  [ 9899284589F75FA8724FF3D16AED75C1 ] Null            C:\Windows\system32\drivers\Null.sys
19:48:20.0753 4528  Null - ok
19:48:20.0878 4528  [ A4D9C9A608A97F59307C2F2600EDC6A4 ] nvraid          C:\Windows\system32\drivers\nvraid.sys
19:48:20.0894 4528  nvraid - ok
19:48:20.0925 4528  [ 6C1D5F70E7A6A3FD1C90D840EDC048B9 ] nvstor          C:\Windows\system32\drivers\nvstor.sys
19:48:20.0925 4528  nvstor - ok
19:48:20.0972 4528  [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp          C:\Windows\system32\drivers\nv_agp.sys
19:48:20.0972 4528  nv_agp - ok
19:48:20.0972 4528  [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394        C:\Windows\system32\drivers\ohci1394.sys
19:48:20.0972 4528  ohci1394 - ok
19:48:21.0050 4528  [ 4965B005492CBA7719E82B71E3245495 ] ose64           C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
19:48:21.0050 4528  ose64 - ok
19:48:21.0284 4528  [ 61BFFB5F57AD12F83AB64B7181829B34 ] osppsvc         C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
19:48:21.0440 4528  osppsvc - ok
19:48:21.0486 4528  [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc        C:\Windows\system32\pnrpsvc.dll
19:48:21.0486 4528  p2pimsvc - ok
19:48:21.0596 4528  [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc          C:\Windows\system32\p2psvc.dll
19:48:21.0596 4528  p2psvc - ok
19:48:21.0642 4528  [ 0086431C29C35BE1DBC43F52CC273887 ] Parport         C:\Windows\system32\drivers\parport.sys
19:48:21.0658 4528  Parport - ok
19:48:21.0705 4528  [ 90061B1ACFE8CCAA5345750FFE08D8B8 ] partmgr         C:\Windows\system32\drivers\partmgr.sys
19:48:21.0705 4528  partmgr - ok
19:48:21.0720 4528  [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc          C:\Windows\System32\pcasvc.dll
19:48:21.0736 4528  PcaSvc - ok
19:48:21.0845 4528  [ 51209FBDB13A46E05C1B0077A9310264 ] PCDSRVC{D2FB0CDC-EC83EFAE-06000000}_0 c:\program files\fujitsu hardware diagnostics tool\pcdsrvc_x64.pkms
19:48:21.0954 4528  PCDSRVC{D2FB0CDC-EC83EFAE-06000000}_0 - ok
19:48:21.0986 4528  [ F36F6504009F2FB0DFD1B17A116AD74B ] pci             C:\Windows\system32\drivers\pci.sys
19:48:21.0986 4528  pci - ok
19:48:22.0001 4528  [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide          C:\Windows\system32\drivers\pciide.sys
19:48:22.0001 4528  pciide - ok
19:48:22.0001 4528  [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia          C:\Windows\system32\drivers\pcmcia.sys
19:48:22.0017 4528  pcmcia - ok
19:48:22.0032 4528  [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw             C:\Windows\system32\drivers\pcw.sys
19:48:22.0032 4528  pcw - ok
19:48:22.0048 4528  [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH          C:\Windows\system32\drivers\peauth.sys
19:48:22.0064 4528  PEAUTH - ok
19:48:22.0173 4528  [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost        C:\Windows\SysWow64\perfhost.exe
19:48:22.0173 4528  PerfHost - ok
19:48:22.0235 4528  [ 557E9A86F65F0DE18C9B6751DFE9D3F1 ] pla             C:\Windows\system32\pla.dll
19:48:22.0266 4528  pla - ok
19:48:22.0329 4528  [ 98B1721B8718164293B9701B98C52D77 ] PlugPlay        C:\Windows\system32\umpnpmgr.dll
19:48:22.0329 4528  PlugPlay - ok
19:48:22.0360 4528  PnkBstrA - ok
19:48:22.0376 4528  [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg     C:\Windows\system32\pnrpauto.dll
19:48:22.0376 4528  PNRPAutoReg - ok
19:48:22.0391 4528  [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc         C:\Windows\system32\pnrpsvc.dll
19:48:22.0391 4528  PNRPsvc - ok
19:48:22.0454 4528  [ 166EB40D1F5B47E615DE3D0FFFE5F243 ] PolicyAgent     C:\Windows\System32\ipsecsvc.dll
19:48:22.0454 4528  PolicyAgent - ok
19:48:22.0485 4528  [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power           C:\Windows\system32\umpo.dll
19:48:22.0485 4528  Power - ok
19:48:22.0547 4528  [ 843BA5F09A391D52AC1F8486C5FC3D4F ] PowerSavingUtilityService c:\Program Files\Fujitsu\PSUtility\PSUService.exe
19:48:22.0547 4528  PowerSavingUtilityService - ok
19:48:22.0594 4528  [ 27CC19E81BA5E3403C48302127BDA717 ] PptpMiniport    C:\Windows\system32\DRIVERS\raspptp.sys
19:48:22.0594 4528  PptpMiniport - ok
19:48:22.0610 4528  [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor       C:\Windows\system32\drivers\processr.sys
19:48:22.0610 4528  Processor - ok
19:48:22.0688 4528  [ 97293447431311C06703368AD0F6C4BE ] ProfSvc         C:\Windows\system32\profsvc.dll
19:48:22.0688 4528  ProfSvc - ok
19:48:22.0703 4528  [ 156F6159457D0AA7E59B62681B56EB90 ] ProtectedStorage C:\Windows\system32\lsass.exe
19:48:22.0703 4528  ProtectedStorage - ok
19:48:22.0719 4528  [ EE992183BD8EAEFD9973F352E587A299 ] Psched          C:\Windows\system32\DRIVERS\pacer.sys
19:48:22.0719 4528  Psched - ok
19:48:22.0781 4528  [ 4712CC14E720ECCCC0AA16949D18AAF1 ] PxHlpa64        C:\Windows\system32\Drivers\PxHlpa64.sys
19:48:22.0781 4528  PxHlpa64 - ok
19:48:22.0875 4528  [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300          C:\Windows\system32\drivers\ql2300.sys
19:48:22.0890 4528  ql2300 - ok
19:48:22.0890 4528  [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx          C:\Windows\system32\drivers\ql40xx.sys
19:48:22.0890 4528  ql40xx - ok
19:48:22.0922 4528  [ 906191634E99AEA92C4816150BDA3732 ] QWAVE           C:\Windows\system32\qwave.dll
19:48:22.0922 4528  QWAVE - ok
19:48:22.0937 4528  [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv        C:\Windows\system32\drivers\qwavedrv.sys
19:48:22.0937 4528  QWAVEdrv - ok
19:48:22.0953 4528  [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd          C:\Windows\system32\DRIVERS\rasacd.sys
19:48:22.0953 4528  RasAcd - ok
19:48:22.0984 4528  [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn     C:\Windows\system32\DRIVERS\AgileVpn.sys
19:48:22.0984 4528  RasAgileVpn - ok
19:48:23.0031 4528  [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto         C:\Windows\System32\rasauto.dll
19:48:23.0031 4528  RasAuto - ok
19:48:23.0062 4528  [ 87A6E852A22991580D6D39ADC4790463 ] Rasl2tp         C:\Windows\system32\DRIVERS\rasl2tp.sys
19:48:23.0062 4528  Rasl2tp - ok
19:48:23.0156 4528  [ 47394ED3D16D053F5906EFE5AB51CC83 ] RasMan          C:\Windows\System32\rasmans.dll
19:48:23.0156 4528  RasMan - ok
19:48:23.0187 4528  [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe        C:\Windows\system32\DRIVERS\raspppoe.sys
19:48:23.0187 4528  RasPppoe - ok
19:48:23.0218 4528  [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp         C:\Windows\system32\DRIVERS\rassstp.sys
19:48:23.0218 4528  RasSstp - ok
19:48:23.0234 4528  [ 3BAC8142102C15D59A87757C1D41DCE5 ] rdbss           C:\Windows\system32\DRIVERS\rdbss.sys
19:48:23.0234 4528  rdbss - ok
19:48:23.0265 4528  [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus          C:\Windows\system32\drivers\rdpbus.sys
19:48:23.0265 4528  rdpbus - ok
19:48:23.0296 4528  [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD          C:\Windows\system32\DRIVERS\RDPCDD.sys
19:48:23.0296 4528  RDPCDD - ok
19:48:23.0312 4528  [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD        C:\Windows\system32\drivers\rdpencdd.sys
19:48:23.0312 4528  RDPENCDD - ok
19:48:23.0343 4528  [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP        C:\Windows\system32\drivers\rdprefmp.sys
19:48:23.0343 4528  RDPREFMP - ok
19:48:23.0421 4528  [ 447DE7E3DEA39D422C1504F245B668B1 ] RDPWD           C:\Windows\system32\drivers\RDPWD.sys
19:48:23.0421 4528  RDPWD - ok
19:48:23.0468 4528  [ 634B9A2181D98F15941236886164EC8B ] rdyboost        C:\Windows\system32\drivers\rdyboost.sys
19:48:23.0468 4528  rdyboost - ok
19:48:23.0483 4528  [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess    C:\Windows\System32\mprdim.dll
19:48:23.0483 4528  RemoteAccess - ok
19:48:23.0561 4528  [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry  C:\Windows\system32\regsvc.dll
19:48:23.0561 4528  RemoteRegistry - ok
19:48:23.0608 4528  [ 3DD798846E2C28102B922C56E71B7932 ] RFCOMM          C:\Windows\system32\DRIVERS\rfcomm.sys
19:48:23.0608 4528  RFCOMM - ok
19:48:23.0655 4528  [ 7B04C9843921AB1F695FB395422C5360 ] RimUsb          C:\Windows\system32\Drivers\RimUsb_AMD64.sys
19:48:23.0655 4528  RimUsb - ok
19:48:23.0686 4528  [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper    C:\Windows\System32\RpcEpMap.dll
19:48:23.0686 4528  RpcEptMapper - ok
19:48:23.0873 4528  [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator      C:\Windows\system32\locator.exe
19:48:23.0873 4528  RpcLocator - ok
19:48:23.0936 4528  [ 7266972E86890E2B30C0C322E906B027 ] RpcSs           C:\Windows\system32\rpcss.dll
19:48:23.0936 4528  RpcSs - ok
19:48:23.0982 4528  [ DDC86E4F8E7456261E637E3552E804FF ] rspndr          C:\Windows\system32\DRIVERS\rspndr.sys
19:48:23.0982 4528  rspndr - ok
19:48:24.0029 4528  [ 4A25DC970C58104602ED274DACAFD784 ] RSUSBSTOR       C:\Windows\system32\Drivers\RtsUStor.sys
19:48:24.0029 4528  RSUSBSTOR - ok
19:48:24.0060 4528  [ C614069909536D0DD2D80716FF10B615 ] RTL8167         C:\Windows\system32\DRIVERS\Rt64win7.sys
19:48:24.0076 4528  RTL8167 - ok
19:48:24.0138 4528  [ CD8F32BB993B98E6705F11504A7F7250 ] rtl8192se       C:\Windows\system32\DRIVERS\rtl8192se.sys
19:48:24.0138 4528  rtl8192se - ok
19:48:24.0154 4528  RtsUIR - ok
19:48:24.0170 4528  [ 156F6159457D0AA7E59B62681B56EB90 ] SamSs           C:\Windows\system32\lsass.exe
19:48:24.0170 4528  SamSs - ok
19:48:24.0201 4528  [ E3BBB89983DAF5622C1D50CF49F28227 ] sbp2port        C:\Windows\system32\drivers\sbp2port.sys
19:48:24.0201 4528  sbp2port - ok
19:48:24.0232 4528  [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr        C:\Windows\System32\SCardSvr.dll
19:48:24.0232 4528  SCardSvr - ok
19:48:24.0248 4528  [ C94DA20C7E3BA1DCA269BC8460D98387 ] scfilter        C:\Windows\system32\DRIVERS\scfilter.sys
19:48:24.0248 4528  scfilter - ok
19:48:24.0450 4528  [ 624D0F5FF99428BB90A5B8A4123E918E ] Schedule        C:\Windows\system32\schedsvc.dll
19:48:24.0450 4528  Schedule - ok
19:48:24.0466 4528  [ 312E2F82AF11E79906898AC3E3D58A1F ] SCPolicySvc     C:\Windows\System32\certprop.dll
19:48:24.0482 4528  SCPolicySvc - ok
19:48:24.0513 4528  [ 54E47AD086782D3AE9417C155CDCEB9B ] sdbus           C:\Windows\system32\DRIVERS\sdbus.sys
19:48:24.0513 4528  sdbus - ok
19:48:24.0544 4528  [ 765A27C3279CE11D14CB9E4F5869FCA5 ] SDRSVC          C:\Windows\System32\SDRSVC.dll
19:48:24.0560 4528  SDRSVC - ok
19:48:24.0575 4528  [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv          C:\Windows\system32\drivers\secdrv.sys
19:48:24.0575 4528  secdrv - ok
19:48:24.0575 4528  [ 463B386EBC70F98DA5DFF85F7E654346 ] seclogon        C:\Windows\system32\seclogon.dll
19:48:24.0575 4528  seclogon - ok
19:48:24.0591 4528  [ C32AB8FA018EF34C0F113BD501436D21 ] SENS            C:\Windows\System32\sens.dll
19:48:24.0591 4528  SENS - ok
19:48:24.0638 4528  [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc        C:\Windows\system32\sensrsvc.dll
19:48:24.0638 4528  SensrSvc - ok
19:48:24.0653 4528  [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum         C:\Windows\system32\drivers\serenum.sys
19:48:24.0653 4528  Serenum - ok
19:48:24.0669 4528  [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial          C:\Windows\system32\drivers\serial.sys
19:48:24.0669 4528  Serial - ok
19:48:24.0684 4528  [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse        C:\Windows\system32\drivers\sermouse.sys
19:48:24.0684 4528  sermouse - ok
19:48:24.0731 4528  [ C3BC61CE47FF6F4E88AB8A3B429A36AF ] SessionEnv      C:\Windows\system32\sessenv.dll
19:48:24.0747 4528  SessionEnv - ok
19:48:24.0747 4528  [ A554811BCD09279536440C964AE35BBF ] sffdisk         C:\Windows\system32\drivers\sffdisk.sys
19:48:24.0747 4528  sffdisk - ok
19:48:24.0747 4528  [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc        C:\Windows\system32\drivers\sffp_mmc.sys
19:48:24.0747 4528  sffp_mmc - ok
19:48:24.0762 4528  [ 5588B8C6193EB1522490C122EB94DFFA ] sffp_sd         C:\Windows\system32\drivers\sffp_sd.sys
19:48:24.0762 4528  sffp_sd - ok
19:48:24.0762 4528  [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy         C:\Windows\system32\drivers\sfloppy.sys
19:48:24.0778 4528  sfloppy - ok
19:48:24.0840 4528  [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess    C:\Windows\System32\ipnathlp.dll
19:48:24.0840 4528  SharedAccess - ok
19:48:24.0887 4528  [ 0298AC45D0EFFFB2DB4BAA7DD186E7BF ] ShellHWDetection C:\Windows\System32\shsvcs.dll
19:48:24.0887 4528  ShellHWDetection - ok
19:48:24.0934 4528  [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2        C:\Windows\system32\drivers\SiSRaid2.sys
19:48:24.0934 4528  SiSRaid2 - ok
19:48:24.0934 4528  [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4        C:\Windows\system32\drivers\sisraid4.sys
19:48:24.0934 4528  SiSRaid4 - ok
19:48:25.0386 4528  [ 23E3C83DFF7B09A97B01A85ED8A44478 ] Skype C2C Service C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe
19:48:25.0386 4528  Skype C2C Service - ok
19:48:25.0480 4528  [ 8C4F0DCC6A5100D48F9B2F950CDD220F ] SkypeUpdate     C:\Program Files (x86)\Skype\Updater\Updater.exe
19:48:25.0480 4528  SkypeUpdate - ok
19:48:25.0527 4528  [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb             C:\Windows\system32\DRIVERS\smb.sys
19:48:25.0527 4528  Smb - ok
19:48:25.0558 4528  [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP        C:\Windows\System32\snmptrap.exe
19:48:25.0558 4528  SNMPTRAP - ok
19:48:25.0574 4528  [ B9E31E5CACDFE584F34F730A677803F9 ] spldr           C:\Windows\system32\drivers\spldr.sys
19:48:25.0589 4528  spldr - ok
19:48:25.0652 4528  [ 567977DC43CC13C4C35ED7084C0B84D5 ] Spooler         C:\Windows\System32\spoolsv.exe
19:48:25.0652 4528  Spooler - ok
19:48:25.0730 4528  [ 913D843498553A1BC8F8DBAD6358E49F ] sppsvc          C:\Windows\system32\sppsvc.exe
19:48:25.0808 4528  sppsvc - ok
19:48:25.0854 4528  [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify     C:\Windows\system32\sppuinotify.dll
19:48:25.0854 4528  sppuinotify - ok
19:48:25.0917 4528  [ 2408C0366D96BCDF63E8F1C78E4A29C5 ] srv             C:\Windows\system32\DRIVERS\srv.sys
19:48:25.0917 4528  srv - ok
19:48:25.0948 4528  [ 76548F7B818881B47D8D1AE1BE9C11F8 ] srv2            C:\Windows\system32\DRIVERS\srv2.sys
19:48:25.0964 4528  srv2 - ok
19:48:26.0026 4528  [ 0AF6E19D39C70844C5CAA8FB0183C36E ] srvnet          C:\Windows\system32\DRIVERS\srvnet.sys
19:48:26.0026 4528  srvnet - ok
19:48:26.0057 4528  [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV         C:\Windows\System32\ssdpsrv.dll
19:48:26.0057 4528  SSDPSRV - ok
19:48:26.0073 4528  [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc         C:\Windows\system32\sstpsvc.dll
19:48:26.0073 4528  SstpSvc - ok
19:48:26.0135 4528  Steam Client Service - ok
19:48:26.0166 4528  [ F3817967ED533D08327DC73BC4D5542A ] stexstor        C:\Windows\system32\drivers\stexstor.sys
19:48:26.0166 4528  stexstor - ok
19:48:26.0213 4528  [ 52D0E33B681BD0F33FDC08812FEE4F7D ] stisvc          C:\Windows\System32\wiaservc.dll
19:48:26.0213 4528  stisvc - ok
19:48:26.0229 4528  [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum          C:\Windows\system32\drivers\swenum.sys
19:48:26.0229 4528  swenum - ok
19:48:26.0260 4528  [ E08E46FDD841B7184194011CA1955A0B ] swprv           C:\Windows\System32\swprv.dll
19:48:26.0260 4528  swprv - ok
19:48:26.0307 4528  [ 2F827BB08CC7F1A17DF2EAD7B424D731 ] SynTP           C:\Windows\system32\DRIVERS\SynTP.sys
19:48:26.0307 4528  SynTP - ok
19:48:26.0354 4528  [ 3C1284516A62078FB68F768DE4F1A7BE ] SysMain         C:\Windows\system32\sysmain.dll
19:48:26.0369 4528  SysMain - ok
19:48:26.0385 4528  [ 238935C3CF2854886DC7CBB2A0E2CC66 ] TabletInputService C:\Windows\System32\TabSvc.dll
19:48:26.0385 4528  TabletInputService - ok
19:48:26.0416 4528  [ 884264AC597B690C5707C89723BB8E7B ] TapiSrv         C:\Windows\System32\tapisrv.dll
19:48:26.0416 4528  TapiSrv - ok
19:48:26.0447 4528  [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS             C:\Windows\System32\tbssvc.dll
19:48:26.0447 4528  TBS - ok
19:48:26.0525 4528  [ 5CFB7AB8F9524D1A1E14369DE63B83CC ] Tcpip           C:\Windows\system32\drivers\tcpip.sys
19:48:26.0572 4528  Tcpip - ok
19:48:26.0666 4528  [ 5CFB7AB8F9524D1A1E14369DE63B83CC ] TCPIP6          C:\Windows\system32\DRIVERS\tcpip.sys
19:48:26.0666 4528  TCPIP6 - ok
19:48:26.0712 4528  [ 76D078AF6F587B162D50210F761EB9ED ] tcpipreg        C:\Windows\system32\drivers\tcpipreg.sys
19:48:26.0712 4528  tcpipreg - ok
19:48:26.0744 4528  [ 3371D21011695B16333A3934340C4E7C ] TDPIPE          C:\Windows\system32\drivers\tdpipe.sys
19:48:26.0744 4528  TDPIPE - ok
19:48:26.0775 4528  [ 7518F7BCFD4B308ABC9192BACAF6C970 ] TDTCP           C:\Windows\system32\drivers\tdtcp.sys
19:48:26.0775 4528  TDTCP - ok
19:48:26.0837 4528  [ 079125C4B17B01FCAEEBCE0BCB290C0F ] tdx             C:\Windows\system32\DRIVERS\tdx.sys
19:48:26.0837 4528  tdx - ok
19:48:26.0853 4528  [ C448651339196C0E869A355171875522 ] TermDD          C:\Windows\system32\drivers\termdd.sys
19:48:26.0853 4528  TermDD - ok
19:48:26.0900 4528  [ 0F05EC2887BFE197AD82A13287D2F404 ] TermService     C:\Windows\System32\termsrv.dll
19:48:26.0900 4528  TermService - ok
19:48:26.0915 4528  [ F0344071948D1A1FA732231785A0664C ] Themes          C:\Windows\system32\themeservice.dll
19:48:26.0915 4528  Themes - ok
19:48:26.0946 4528  [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER     C:\Windows\system32\mmcss.dll
19:48:26.0946 4528  THREADORDER - ok
19:48:26.0978 4528  [ DBCC20C02E8A3E43B03C304A4E40A84F ] TPM             C:\Windows\system32\drivers\tpm.sys
19:48:26.0978 4528  TPM - ok
19:48:27.0009 4528  [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks          C:\Windows\System32\trkwks.dll
19:48:27.0009 4528  TrkWks - ok
19:48:27.0056 4528  [ 840F7FB849F5887A49BA18C13B2DA920 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
19:48:27.0071 4528  TrustedInstaller - ok
19:48:27.0087 4528  [ 61B96C26131E37B24E93327A0BD1FB95 ] tssecsrv        C:\Windows\system32\DRIVERS\tssecsrv.sys
19:48:27.0087 4528  tssecsrv - ok
19:48:27.0118 4528  [ 3836171A2CDF3AF8EF10856DB9835A70 ] tunnel          C:\Windows\system32\DRIVERS\tunnel.sys
19:48:27.0118 4528  tunnel - ok
19:48:27.0165 4528  [ A070ABB9D85582B2BECADBE6FCD12350 ] t_mouse.sys     C:\Windows\system32\DRIVERS\t_mouse.sys
19:48:27.0180 4528  t_mouse.sys - ok
19:48:27.0196 4528  [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35          C:\Windows\system32\drivers\uagp35.sys
19:48:27.0196 4528  uagp35 - ok
19:48:27.0212 4528  [ D47BAEAD86C65D4F4069D7CE0A4EDCEB ] udfs            C:\Windows\system32\DRIVERS\udfs.sys
19:48:27.0212 4528  udfs - ok
19:48:27.0305 4528  [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect       C:\Windows\system32\UI0Detect.exe
19:48:27.0305 4528  UI0Detect - ok
19:48:27.0336 4528  [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx        C:\Windows\system32\drivers\uliagpkx.sys
19:48:27.0336 4528  uliagpkx - ok
19:48:27.0368 4528  [ EAB6C35E62B1B0DB0D1B48B671D3A117 ] umbus           C:\Windows\system32\DRIVERS\umbus.sys
19:48:27.0368 4528  umbus - ok
19:48:27.0383 4528  [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass          C:\Windows\system32\drivers\umpass.sys
19:48:27.0383 4528  UmPass - ok
19:48:27.0898 4528  [ 41118D920B2B268C0ADC36421248CDCF ] UNS             C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
19:48:28.0132 4528  UNS - ok
19:48:28.0553 4528  [ 624A68CD938F855649F547CBA02C201C ] UpdateNaviInstallService C:\Program Files\Fujitsu\updnavi\updnvsrv.exe
19:48:28.0553 4528  UpdateNaviInstallService - ok
19:48:28.0725 4528  [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost        C:\Windows\System32\upnphost.dll
19:48:28.0725 4528  upnphost - ok
19:48:28.0928 4528  [ 43228F8EDD1B0BCDD3145AD246E63D39 ] USBAAPL64       C:\Windows\system32\Drivers\usbaapl64.sys
19:48:28.0928 4528  USBAAPL64 - ok
19:48:29.0037 4528  [ 77B01BC848298223A95D4EC23E1785A1 ] usbaudio        C:\Windows\system32\drivers\usbaudio.sys
19:48:29.0052 4528  usbaudio - ok
19:48:29.0271 4528  [ 537A4E03D7103C12D42DFD8FFDB5BDC9 ] usbccgp         C:\Windows\system32\DRIVERS\usbccgp.sys
19:48:29.0271 4528  usbccgp - ok
19:48:29.0271 4528  USBCCID - ok
19:48:29.0380 4528  [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir          C:\Windows\system32\drivers\usbcir.sys
19:48:29.0380 4528  usbcir - ok
19:48:29.0458 4528  [ FBB21EBE49F6D560DB37AC25FBC68E66 ] usbehci         C:\Windows\system32\drivers\usbehci.sys
19:48:29.0458 4528  usbehci - ok
19:48:29.0848 4528  [ 6B7A8A99C4A459E73C286A6763EA24CC ] usbhub          C:\Windows\system32\DRIVERS\usbhub.sys
19:48:29.0848 4528  usbhub - ok
19:48:29.0942 4528  [ 8C88AA7617B4CBC2E4BED61D26B33A27 ] usbohci         C:\Windows\system32\drivers\usbohci.sys
19:48:30.0020 4528  usbohci - ok
19:48:30.0082 4528  [ 73188F58FB384E75C4063D29413CEE3D ] usbprint        C:\Windows\system32\drivers\usbprint.sys
19:48:30.0082 4528  usbprint - ok
19:48:30.0144 4528  [ F39983647BC1F3E6100778DDFE9DCE29 ] USBSTOR         C:\Windows\system32\drivers\USBSTOR.SYS
19:48:30.0144 4528  USBSTOR - ok
19:48:30.0207 4528  [ 0B5B3B2DF3FD1709618ACFA50B8392B0 ] usbuhci         C:\Windows\system32\drivers\usbuhci.sys
19:48:30.0207 4528  usbuhci - ok
19:48:30.0425 4528  [ 7CB8C573C6E4A2714402CC0A36EAB4FE ] usbvideo        C:\Windows\System32\Drivers\usbvideo.sys
19:48:30.0425 4528  usbvideo - ok
19:48:30.0472 4528  [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms           C:\Windows\System32\uxsms.dll
19:48:30.0472 4528  UxSms - ok
19:48:30.0659 4528  [ 156F6159457D0AA7E59B62681B56EB90 ] VaultSvc        C:\Windows\system32\lsass.exe
19:48:30.0659 4528  VaultSvc - ok
19:48:30.0768 4528  [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot        C:\Windows\system32\drivers\vdrvroot.sys
19:48:30.0768 4528  vdrvroot - ok
19:48:30.0909 4528  [ 44D73E0BBC1D3C8981304BA15135C2F2 ] vds             C:\Windows\System32\vds.exe
19:48:30.0971 4528  vds - ok
19:48:31.0236 4528  [ 33786AF1F740AE107E74998FD154D60C ] VFPRadioSupportService C:\Program Files\CSR\Bluetooth Feature Pack 5.0\VFPRadioSupportService.exe
19:48:31.0236 4528  VFPRadioSupportService - ok
19:48:31.0330 4528  [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga             C:\Windows\system32\DRIVERS\vgapnp.sys
19:48:31.0330 4528  vga - ok
19:48:31.0361 4528  [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave         C:\Windows\System32\drivers\vga.sys
19:48:31.0361 4528  VgaSave - ok
19:48:31.0424 4528  [ C82E748660F62A242B2DFAC1442F22A4 ] vhdmp           C:\Windows\system32\drivers\vhdmp.sys
19:48:31.0424 4528  vhdmp - ok
19:48:31.0455 4528  [ E5689D93FFE4E5D66C0178761240DD54 ] viaide          C:\Windows\system32\drivers\viaide.sys
19:48:31.0470 4528  viaide - ok
19:48:31.0564 4528  [ 2B1A3DAE2B4E70DBBA822B7A03FBD4A3 ] volmgr          C:\Windows\system32\drivers\volmgr.sys
19:48:31.0564 4528  volmgr - ok
19:48:31.0658 4528  [ 99B0CBB569CA79ACAED8C91461D765FB ] volmgrx         C:\Windows\system32\drivers\volmgrx.sys
19:48:31.0658 4528  volmgrx - ok
19:48:31.0782 4528  [ 9E425AC5C9A5A973273D169F43B4F5E1 ] volsnap         C:\Windows\system32\drivers\volsnap.sys
19:48:31.0782 4528  volsnap - ok
19:48:31.0907 4528  [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid         C:\Windows\system32\drivers\vsmraid.sys
19:48:31.0907 4528  vsmraid - ok
19:48:32.0204 4528  [ 787898BF9FB6D7BD87A36E2D95C899BA ] VSS             C:\Windows\system32\vssvc.exe
19:48:32.0282 4528  VSS - ok
19:48:32.0297 4528  [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus        C:\Windows\system32\DRIVERS\vwifibus.sys
19:48:32.0297 4528  vwifibus - ok
19:48:32.0391 4528  [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt        C:\Windows\system32\DRIVERS\vwififlt.sys
19:48:32.0391 4528  vwififlt - ok
19:48:32.0422 4528  [ 6A638FC4BFDDC4D9B186C28C91BD1A01 ] vwifimp         C:\Windows\system32\DRIVERS\vwifimp.sys
19:48:32.0422 4528  vwifimp - ok
19:48:32.0453 4528  [ 1C9D80CC3849B3788048078C26486E1A ] W32Time         C:\Windows\system32\w32time.dll
19:48:32.0453 4528  W32Time - ok
19:48:32.0469 4528  [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen        C:\Windows\system32\drivers\wacompen.sys
19:48:32.0469 4528  WacomPen - ok
19:48:32.0516 4528  [ 47CA49400643EFFD3F1C9A27E1D69324 ] WANARP          C:\Windows\system32\DRIVERS\wanarp.sys
19:48:32.0516 4528  WANARP - ok
19:48:32.0531 4528  [ 47CA49400643EFFD3F1C9A27E1D69324 ] Wanarpv6        C:\Windows\system32\DRIVERS\wanarp.sys
19:48:32.0531 4528  Wanarpv6 - ok
19:48:32.0765 4528  [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc     C:\Windows\system32\Wat\WatAdminSvc.exe
19:48:32.0781 4528  WatAdminSvc - ok
19:48:32.0828 4528  [ 5AB1BB85BD8B5089CC5D64200DEDAE68 ] wbengine        C:\Windows\system32\wbengine.exe
19:48:32.0874 4528  wbengine - ok
19:48:32.0906 4528  [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc        C:\Windows\System32\wbiosrvc.dll
19:48:32.0906 4528  WbioSrvc - ok
19:48:32.0952 4528  [ DD1BAE8EBFC653824D29CCF8C9054D68 ] wcncsvc         C:\Windows\System32\wcncsvc.dll
19:48:32.0968 4528  wcncsvc - ok
19:48:32.0984 4528  [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
19:48:32.0984 4528  WcsPlugInService - ok
19:48:33.0015 4528  [ 72889E16FF12BA0F235467D6091B17DC ] Wd              C:\Windows\system32\drivers\wd.sys
19:48:33.0015 4528  Wd - ok
19:48:33.0233 4528  [ 442783E2CB0DA19873B7A63833FF4CB4 ] Wdf01000        C:\Windows\system32\drivers\Wdf01000.sys
19:48:33.0249 4528  Wdf01000 - ok
19:48:33.0280 4528  [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost  C:\Windows\system32\wdi.dll
19:48:33.0280 4528  WdiServiceHost - ok
19:48:33.0280 4528  [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost   C:\Windows\system32\wdi.dll
19:48:33.0296 4528  WdiSystemHost - ok
19:48:33.0327 4528  [ 733006127F235BE7C35354EBEE7B9A7B ] WebClient       C:\Windows\System32\webclnt.dll
19:48:33.0342 4528  WebClient - ok
19:48:33.0342 4528  [ C749025A679C5103E575E3B48E092C43 ] Wecsvc          C:\Windows\system32\wecsvc.dll
19:48:33.0358 4528  Wecsvc - ok
19:48:33.0374 4528  [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport   C:\Windows\System32\wercplsupport.dll
19:48:33.0374 4528  wercplsupport - ok
19:48:33.0389 4528  [ 6D137963730144698CBD10F202E9F251 ] WerSvc          C:\Windows\System32\WerSvc.dll
19:48:33.0389 4528  WerSvc - ok
19:48:33.0420 4528  [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf          C:\Windows\system32\DRIVERS\wfplwf.sys
19:48:33.0420 4528  WfpLwf - ok
19:48:33.0452 4528  [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount        C:\Windows\system32\drivers\wimmount.sys
19:48:33.0452 4528  WIMMount - ok
19:48:33.0467 4528  WinDefend - ok
19:48:33.0483 4528  WinHttpAutoProxySvc - ok
19:48:33.0530 4528  [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt         C:\Windows\system32\wbem\WMIsvc.dll
19:48:33.0530 4528  Winmgmt - ok
19:48:33.0592 4528  [ 41FBB751936B387F9179E7F03A74FE29 ] WinRM           C:\Windows\system32\WsmSvc.dll
19:48:33.0654 4528  WinRM - ok
19:48:33.0717 4528  [ 817EAFF5D38674EDD7713B9DFB8E9791 ] WinUsb          C:\Windows\system32\DRIVERS\WinUsb.sys
19:48:33.0717 4528  WinUsb - ok
19:48:33.0764 4528  [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc         C:\Windows\System32\wlansvc.dll
19:48:33.0779 4528  Wlansvc - ok
19:48:33.0795 4528  [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi         C:\Windows\system32\drivers\wmiacpi.sys
19:48:33.0795 4528  WmiAcpi - ok
19:48:33.0826 4528  [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv        C:\Windows\system32\wbem\WmiApSrv.exe
19:48:33.0842 4528  wmiApSrv - ok
19:48:33.0857 4528  WMPNetworkSvc - ok
19:48:33.0873 4528  [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc          C:\Windows\System32\wpcsvc.dll
19:48:33.0873 4528  WPCSvc - ok
19:48:33.0888 4528  [ 2E57DDF2880A7E52E76F41C7E96D327B ] WPDBusEnum      C:\Windows\system32\wpdbusenum.dll
19:48:33.0888 4528  WPDBusEnum - ok
19:48:33.0951 4528  [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl         C:\Windows\system32\drivers\ws2ifsl.sys
19:48:33.0951 4528  ws2ifsl - ok
19:48:33.0998 4528  [ 8F9F3969933C02DA96EB0F84576DB43E ] wscsvc          C:\Windows\System32\wscsvc.dll
19:48:33.0998 4528  wscsvc - ok
19:48:33.0998 4528  WSearch - ok
19:48:34.0076 4528  [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv        C:\Windows\system32\wuaueng.dll
19:48:34.0138 4528  wuauserv - ok
19:48:34.0185 4528  [ AB886378EEB55C6C75B4F2D14B6C869F ] WudfPf          C:\Windows\system32\drivers\WudfPf.sys
19:48:34.0185 4528  WudfPf - ok
19:48:34.0200 4528  [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFRd          C:\Windows\system32\DRIVERS\WUDFRd.sys
19:48:34.0216 4528  WUDFRd - ok
19:48:34.0247 4528  [ B20F051B03A966392364C83F009F7D17 ] wudfsvc         C:\Windows\System32\WUDFSvc.dll
19:48:34.0247 4528  wudfsvc - ok
19:48:34.0278 4528  [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc         C:\Windows\System32\wwansvc.dll
19:48:34.0278 4528  WwanSvc - ok
19:48:34.0341 4528  [ B3EEACF62445E24FBB2CD4B0FB4DB026 ] yukonw7         C:\Windows\system32\DRIVERS\yk62x64.sys
19:48:34.0341 4528  yukonw7 - ok
19:48:34.0372 4528  ================ Scan global ===============================
19:48:34.0388 4528  [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
19:48:34.0419 4528  [ 3FB74FF230B5D240A57AE1C4A3D0459D ] C:\Windows\system32\winsrv.dll
19:48:34.0434 4528  [ 3FB74FF230B5D240A57AE1C4A3D0459D ] C:\Windows\system32\winsrv.dll
19:48:34.0466 4528  [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
19:48:34.0512 4528  [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
19:48:34.0512 4528  [Global] - ok
19:48:34.0512 4528  ================ Scan MBR ==================================
19:48:34.0528 4528  [ 5C616939100B85E558DA92B899A0FC36 ] \Device\Harddisk0\DR0
19:48:35.0090 4528  \Device\Harddisk0\DR0 - ok
19:48:35.0090 4528  ================ Scan VBR ==================================
19:48:35.0105 4528  [ CCB66BBE82C4B010B4224F5D757623A9 ] \Device\Harddisk0\DR0\Partition1
19:48:35.0105 4528  \Device\Harddisk0\DR0\Partition1 - ok
19:48:35.0136 4528  [ B8FF638E06E00D4D0FC2A8BD07211513 ] \Device\Harddisk0\DR0\Partition2
19:48:35.0136 4528  \Device\Harddisk0\DR0\Partition2 - ok
19:48:35.0168 4528  [ D7494B0A3205A5A9409C502BB859B99D ] \Device\Harddisk0\DR0\Partition3
19:48:35.0183 4528  \Device\Harddisk0\DR0\Partition3 - ok
19:48:35.0183 4528  ================ Scan active images ========================
19:48:35.0183 4528  [ 3E588B60EC061686BA05D33574A344C6 ] C:\Windows\System32\drivers\crashdmp.sys
19:48:35.0183 4528  C:\Windows\System32\drivers\crashdmp.sys - ok
19:48:35.0183 4528  [ 814DB88F2641691575A455CF25354098 ] C:\Windows\System32\drivers\dumpfve.sys
19:48:35.0183 4528  C:\Windows\System32\drivers\dumpfve.sys - ok
19:48:35.0183 4528  [ 073A606333B6F7BBF20AA856DF7F0997 ] C:\Windows\System32\drivers\iaStor.sys
19:48:35.0183 4528  C:\Windows\System32\drivers\iaStor.sys - ok
19:48:35.0183 4528  [ 16A47CE2DECC9B099349A5F840654746 ] C:\Windows\System32\drivers\beep.sys
19:48:35.0183 4528  C:\Windows\System32\drivers\beep.sys - ok
19:48:35.0199 4528  [ 83D2D75E1EFB81B3450C18131443F7DB ] C:\Windows\System32\drivers\cdrom.sys
19:48:35.0199 4528  C:\Windows\System32\drivers\cdrom.sys - ok
19:48:35.0199 4528  [ 9899284589F75FA8724FF3D16AED75C1 ] C:\Windows\System32\drivers\null.sys
19:48:35.0199 4528  C:\Windows\System32\drivers\null.sys - ok
19:48:35.0199 4528  [ CEA6CC257FC9B7715F1C2B4849286D24 ] C:\Windows\System32\drivers\RDPCDD.sys
19:48:35.0199 4528  C:\Windows\System32\drivers\RDPCDD.sys - ok
19:48:35.0199 4528  [ 53E92A310193CB3C03BEA963DE7D9CFC ] C:\Windows\System32\drivers\vga.sys
19:48:35.0199 4528  C:\Windows\System32\drivers\vga.sys - ok
19:48:35.0214 4528  [ E7353D59C9842BC7299FAEB7E7E09340 ] C:\Windows\System32\drivers\videoprt.sys
19:48:35.0214 4528  C:\Windows\System32\drivers\videoprt.sys - ok
19:48:35.0214 4528  [ FC438D1430B28618E2D0C7C332A710AD ] C:\Windows\System32\drivers\watchdog.sys
19:48:35.0214 4528  C:\Windows\System32\drivers\watchdog.sys - ok
19:48:35.0214 4528  [ BB5971A4F00659529A5C44831AF22365 ] C:\Windows\System32\drivers\RDPENCDD.sys
19:48:35.0214 4528  C:\Windows\System32\drivers\RDPENCDD.sys - ok
19:48:35.0214 4528  [ 216F3FA57533D98E1F74DED70113177A ] C:\Windows\System32\drivers\RDPREFMP.sys
19:48:35.0214 4528  C:\Windows\System32\drivers\RDPREFMP.sys - ok
19:48:35.0214 4528  [ DB9D6C6B2CD95A9CA414D045B627422E ] C:\Windows\System32\drivers\afd.sys
19:48:35.0214 4528  C:\Windows\System32\drivers\afd.sys - ok
19:48:35.0230 4528  [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] C:\Windows\System32\drivers\msfs.sys
19:48:35.0230 4528  C:\Windows\System32\drivers\msfs.sys - ok
19:48:35.0230 4528  [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] C:\Windows\System32\drivers\npfs.sys
19:48:35.0230 4528  C:\Windows\System32\drivers\npfs.sys - ok
19:48:35.0230 4528  [ 0CA6FE26ACC7FFEE1BD0463F40835F32 ] C:\Windows\System32\drivers\tdi.sys
19:48:35.0230 4528  C:\Windows\System32\drivers\tdi.sys - ok
19:48:35.0230 4528  [ 079125C4B17B01FCAEEBCE0BCB290C0F ] C:\Windows\System32\drivers\tdx.sys
19:48:35.0230 4528  C:\Windows\System32\drivers\tdx.sys - ok
19:48:35.0230 4528  [ 86743D9F5D2B1048062B14B1D84501C4 ] C:\Windows\System32\drivers\netbios.sys
19:48:35.0230 4528  C:\Windows\System32\drivers\netbios.sys - ok
19:48:35.0246 4528  [ 9162B273A44AB9DCE5B44362731D062A ] C:\Windows\System32\drivers\netbt.sys
19:48:35.0246 4528  C:\Windows\System32\drivers\netbt.sys - ok
19:48:35.0246 4528  [ EE992183BD8EAEFD9973F352E587A299 ] C:\Windows\System32\drivers\pacer.sys
19:48:35.0246 4528  C:\Windows\System32\drivers\pacer.sys - ok
19:48:35.0246 4528  [ C448651339196C0E869A355171875522 ] C:\Windows\System32\drivers\termdd.sys
19:48:35.0246 4528  C:\Windows\System32\drivers\termdd.sys - ok
19:48:35.0246 4528  [ 6A3D66263414FF0D6FA754C646612F3F ] C:\Windows\System32\drivers\vwififlt.sys
19:48:35.0246 4528  C:\Windows\System32\drivers\vwififlt.sys - ok
19:48:35.0261 4528  [ 47CA49400643EFFD3F1C9A27E1D69324 ] C:\Windows\System32\drivers\wanarp.sys
19:48:35.0261 4528  C:\Windows\System32\drivers\wanarp.sys - ok
19:48:35.0261 4528  [ 611B23304BF067451A9FDEE01FBDD725 ] C:\Windows\System32\drivers\wfplwf.sys
19:48:35.0261 4528  C:\Windows\System32\drivers\wfplwf.sys - ok
19:48:35.0261 4528  [ 61583EE3C3A17003C4ACD0475646B4D3 ] C:\Windows\System32\drivers\blbdrive.sys
19:48:35.0261 4528  C:\Windows\System32\drivers\blbdrive.sys - ok
19:48:35.0261 4528  [ 9C253CE7311CA60FC11C774692A13208 ] C:\Windows\System32\drivers\dfsc.sys
19:48:35.0261 4528  C:\Windows\System32\drivers\dfsc.sys - ok
19:48:35.0261 4528  [ 13096B05847EC78F0977F2C0F79E9AB3 ] C:\Windows\System32\drivers\discache.sys
19:48:35.0261 4528  C:\Windows\System32\drivers\discache.sys - ok
19:48:35.0277 4528  [ 0EED230E37515A0EAEE3C2E1BC97B288 ] C:\Windows\System32\drivers\mssmbios.sys
19:48:35.0277 4528  C:\Windows\System32\drivers\mssmbios.sys - ok
19:48:35.0277 4528  [ E7F5AE18AF4168178A642A9247C63001 ] C:\Windows\System32\drivers\nsiproxy.sys
19:48:35.0277 4528  C:\Windows\System32\drivers\nsiproxy.sys - ok
19:48:35.0277 4528  [ 3BAC8142102C15D59A87757C1D41DCE5 ] C:\Windows\System32\drivers\rdbss.sys
19:48:35.0277 4528  C:\Windows\System32\drivers\rdbss.sys - ok
19:48:35.0277 4528  [ 3836171A2CDF3AF8EF10856DB9835A70 ] C:\Windows\System32\drivers\tunnel.sys
19:48:35.0277 4528  C:\Windows\System32\drivers\tunnel.sys - ok
19:48:35.0277 4528  [ 37F1422B84769C61368C22ADE8B6CCBC ] C:\Windows\System32\drivers\atikmpag.sys
19:48:35.0277 4528  C:\Windows\System32\drivers\atikmpag.sys - ok
19:48:35.0292 4528  [ 1911A3356FA3F77CCC825CCBAC038C2A ] C:\Windows\System32\smss.exe
19:48:35.0292 4528  C:\Windows\System32\smss.exe - ok
19:48:35.0292 4528  [ 8B7F8E882A649D81CEA1EDE9BBB68FFF ] C:\Windows\System32\autochk.exe
19:48:35.0292 4528  C:\Windows\System32\autochk.exe - ok
19:48:35.0292 4528  [ 68DB778AC4FD7896CE2F153353BA15C8 ] C:\Windows\System32\ntdll.dll
19:48:35.0292 4528  C:\Windows\System32\ntdll.dll - ok
19:48:35.0292 4528  [ 88CBC2FA11FDDD79B741E4878E670F49 ] C:\Windows\System32\drivers\atipmdag.sys
19:48:35.0292 4528  C:\Windows\System32\drivers\atipmdag.sys - ok
19:48:35.0308 4528  [ 1633B9ABF52784A1331476397A48CBEF ] C:\Windows\System32\drivers\dxgkrnl.sys
19:48:35.0308 4528  C:\Windows\System32\drivers\dxgkrnl.sys - ok
19:48:35.0308 4528  [ 3238B9078E0766AB5E62DC737A809ADB ] C:\Windows\System32\drivers\dxgmms1.sys
19:48:35.0308 4528  C:\Windows\System32\drivers\dxgmms1.sys - ok
19:48:35.0308 4528  [ B6AC71AAA2B10848F57FC49D55A651AF ] C:\Windows\System32\drivers\HECIx64.sys
19:48:35.0308 4528  C:\Windows\System32\drivers\HECIx64.sys - ok
19:48:35.0308 4528  [ B37C3BF3FFC97177B1A9C016B7C8CDD6 ] C:\Windows\System32\drivers\usbport.sys
19:48:35.0308 4528  C:\Windows\System32\drivers\usbport.sys - ok
19:48:35.0308 4528  [ 0A49913402747A0B67DE940FB42CBDBB ] C:\Windows\System32\drivers\hdaudbus.sys
19:48:35.0308 4528  C:\Windows\System32\drivers\hdaudbus.sys - ok
19:48:35.0324 4528  [ FBB21EBE49F6D560DB37AC25FBC68E66 ] C:\Windows\System32\drivers\usbehci.sys
19:48:35.0324 4528  C:\Windows\System32\drivers\usbehci.sys - ok
19:48:35.0324 4528  [ CD8F32BB993B98E6705F11504A7F7250 ] C:\Windows\System32\drivers\rtl8192se.sys
19:48:35.0324 4528  C:\Windows\System32\drivers\rtl8192se.sys - ok
19:48:35.0324 4528  [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] C:\Windows\System32\drivers\i8042prt.sys
19:48:35.0324 4528  C:\Windows\System32\drivers\i8042prt.sys - ok
19:48:35.0324 4528  [ BC02336F1CBA7DCC7D1213BB588A68A5 ] C:\Windows\System32\drivers\kbdclass.sys
19:48:35.0324 4528  C:\Windows\System32\drivers\kbdclass.sys - ok
19:48:35.0324 4528  [ C614069909536D0DD2D80716FF10B615 ] C:\Windows\System32\drivers\Rt64win7.sys
19:48:35.0324 4528  C:\Windows\System32\drivers\Rt64win7.sys - ok
19:48:35.0339 4528  [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] C:\Windows\System32\drivers\vwifibus.sys
19:48:35.0339 4528  C:\Windows\System32\drivers\vwifibus.sys - ok
19:48:35.0339 4528  [ F96F7835C8818895C47F6213E3A01F5D ] C:\Windows\System32\drivers\usbd.sys
19:48:35.0339 4528  C:\Windows\System32\drivers\usbd.sys - ok
19:48:35.0339 4528  [ 8E98D21EE06192492A5671A6144D092F ] C:\Windows\System32\drivers\GEARAspiWDM.sys
19:48:35.0339 4528  C:\Windows\System32\drivers\GEARAspiWDM.sys - ok
19:48:35.0339 4528  [ 36FDF367A1DABFF903E2214023D71368 ] C:\Windows\System32\drivers\Impcd.sys
19:48:35.0339 4528  C:\Windows\System32\drivers\Impcd.sys - ok
19:48:35.0355 4528  [ 7D27EA49F3C1F687D357E77A470AEA99 ] C:\Windows\System32\drivers\mouclass.sys
19:48:35.0355 4528  C:\Windows\System32\drivers\mouclass.sys - ok
19:48:35.0355 4528  [ 2F827BB08CC7F1A17DF2EAD7B424D731 ] C:\Windows\System32\drivers\SynTP.sys
19:48:35.0355 4528  C:\Windows\System32\drivers\SynTP.sys - ok
19:48:35.0355 4528  [ 0840155D0BDDF1190F84A663C284BD33 ] C:\Windows\System32\drivers\CmBatt.sys
19:48:35.0355 4528  C:\Windows\System32\drivers\CmBatt.sys - ok
19:48:35.0355 4528  [ ADA036632C664CAA754079041CF1F8C1 ] C:\Windows\System32\drivers\intelppm.sys
19:48:35.0355 4528  C:\Windows\System32\drivers\intelppm.sys - ok
19:48:35.0355 4528  [ BA0C1FFDA496D8BCBCAC63F8D98D20E3 ] C:\Windows\System32\drivers\fuj02b1.sys
19:48:35.0355 4528  C:\Windows\System32\drivers\fuj02b1.sys - ok
19:48:35.0370 4528  [ 7135030CBF87D724B6037BB023923730 ] C:\Windows\System32\drivers\fuj02e3.sys
19:48:35.0370 4528  C:\Windows\System32\drivers\fuj02e3.sys - ok
19:48:35.0370 4528  [ 7ECFF9B22276B73F43A99A15A6094E90 ] C:\Windows\System32\drivers\agilevpn.sys
19:48:35.0370 4528  C:\Windows\System32\drivers\agilevpn.sys - ok
19:48:35.0370 4528  [ F26B3A86F6FA87CA360B879581AB4123 ] C:\Windows\System32\drivers\CompositeBus.sys
19:48:35.0370 4528  C:\Windows\System32\drivers\CompositeBus.sys - ok
19:48:35.0370 4528  [ 87A6E852A22991580D6D39ADC4790463 ] C:\Windows\System32\drivers\rasl2tp.sys
19:48:35.0370 4528  C:\Windows\System32\drivers\rasl2tp.sys - ok
19:48:35.0386 4528  [ 5C7AF4A20F5BF67042B2E613D123D111 ] C:\Windows\System32\drivers\ks.sys
19:48:35.0386 4528  C:\Windows\System32\drivers\ks.sys - ok
19:48:35.0386 4528  [ 30639C932D9FEF22B31268FE25A1B6E5 ] C:\Windows\System32\drivers\ndistapi.sys
19:48:35.0386 4528  C:\Windows\System32\drivers\ndistapi.sys - ok
19:48:35.0386 4528  [ 557DFAB9CA1FCB036AC77564C010DAD3 ] C:\Windows\System32\drivers\ndiswan.sys
19:48:35.0386 4528  C:\Windows\System32\drivers\ndiswan.sys - ok
19:48:35.0386 4528  [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] C:\Windows\System32\drivers\raspppoe.sys
19:48:35.0386 4528  C:\Windows\System32\drivers\raspppoe.sys - ok
19:48:35.0386 4528  [ 27CC19E81BA5E3403C48302127BDA717 ] C:\Windows\System32\drivers\raspptp.sys
19:48:35.0386 4528  C:\Windows\System32\drivers\raspptp.sys - ok
19:48:35.0402 4528  [ E8B1E447B008D07FF47D016C2B0EEECB ] C:\Windows\System32\drivers\rassstp.sys
19:48:35.0402 4528  C:\Windows\System32\drivers\rassstp.sys - ok
19:48:35.0402 4528  [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] C:\Windows\System32\drivers\swenum.sys
19:48:35.0402 4528  C:\Windows\System32\drivers\swenum.sys - ok
19:48:35.0402 4528  [ EAB6C35E62B1B0DB0D1B48B671D3A117 ] C:\Windows\System32\drivers\umbus.sys
19:48:35.0402 4528  C:\Windows\System32\drivers\umbus.sys - ok
19:48:35.0402 4528  [ 6B7A8A99C4A459E73C286A6763EA24CC ] C:\Windows\System32\drivers\usbhub.sys
19:48:35.0402 4528  C:\Windows\System32\drivers\usbhub.sys - ok
19:48:35.0402 4528  [ 659B74FB74B86228D6338D643CD3E3CF ] C:\Windows\System32\drivers\ndproxy.sys
19:48:35.0402 4528  C:\Windows\System32\drivers\ndproxy.sys - ok
19:48:35.0417 4528  [ 21D26064AEDB4988F785BB4A3A2C051E ] C:\Windows\System32\drivers\drmk.sys
19:48:35.0417 4528  C:\Windows\System32\drivers\drmk.sys - ok
19:48:35.0417 4528  [ 6A4EA4C29FBF78112AE20013FB71E9C1 ] C:\Windows\System32\setupapi.dll
19:48:35.0417 4528  C:\Windows\System32\setupapi.dll - ok
19:48:35.0417 4528  [ 6869281E78CB31A43E969F06B57347C4 ] C:\Windows\System32\drivers\ksthunk.sys
19:48:35.0417 4528  C:\Windows\System32\drivers\ksthunk.sys - ok
19:48:35.0417 4528  [ 32E11315B5126921FFD9074840EF13D3 ] C:\Windows\System32\drivers\portcls.sys
19:48:35.0417 4528  C:\Windows\System32\drivers\portcls.sys - ok
19:48:35.0417 4528  [ 42943BB3AB7A405B30EFF7C8283CC129 ] C:\Windows\System32\drivers\RTKVHD64.sys
19:48:35.0417 4528  C:\Windows\System32\drivers\RTKVHD64.sys - ok
19:48:35.0433 4528  [ F431C3C86FCCC1C53814F043A6CAD825 ] C:\Windows\System32\iertutil.dll
19:48:35.0433 4528  C:\Windows\System32\iertutil.dll - ok
19:48:35.0433 4528  [ 435E9C764E1EF70058580996452BE6A2 ] C:\Windows\System32\wininet.dll
19:48:35.0433 4528  C:\Windows\System32\wininet.dll - ok
19:48:35.0433 4528  [ 579F6AFC6A6561951FA2202EFC3FE485 ] C:\Windows\System32\msvcrt.dll
19:48:35.0433 4528  C:\Windows\System32\msvcrt.dll - ok
19:48:35.0433 4528  [ 28C0B5024F5C5A438E78B188CFC81B7F ] C:\Windows\System32\normaliz.dll
19:48:35.0433 4528  C:\Windows\System32\normaliz.dll - ok
19:48:35.0448 4528  [ C431EAF5CAA1C82CAC2534A2EAB348A3 ] C:\Windows\System32\msctf.dll
19:48:35.0448 4528  C:\Windows\System32\msctf.dll - ok
19:48:35.0448 4528  [ 044FE45FFD6AD40E3BBBE60B7F41BABE ] C:\Windows\System32\nsi.dll
19:48:35.0448 4528  C:\Windows\System32\nsi.dll - ok
19:48:35.0448 4528  [ 48CC125A6AB6C72A13E3D3E9C39AD9D9 ] C:\Windows\System32\shell32.dll
19:48:35.0448 4528  C:\Windows\System32\shell32.dll - ok
19:48:35.0448 4528  [ AC8F79017C5C1FB316930EDEAD0AF517 ] C:\Windows\System32\ole32.dll
19:48:35.0448 4528  C:\Windows\System32\ole32.dll - ok
19:48:35.0448 4528  [ D87E1E59C73C1F98D5DED5B3850C40F5 ] C:\Windows\System32\psapi.dll
19:48:35.0448 4528  C:\Windows\System32\psapi.dll - ok
19:48:35.0464 4528  [ 48C903068B6BDAB5EF650B9CBEE85295 ] C:\Windows\System32\rpcrt4.dll
19:48:35.0464 4528  C:\Windows\System32\rpcrt4.dll - ok
19:48:35.0464 4528  [ 72D7B3EA16946E8F0CF7458150031CC6 ] C:\Windows\System32\user32.dll
19:48:35.0464 4528  C:\Windows\System32\user32.dll - ok
19:48:35.0464 4528  [ 15BDC173EB5FA4F92B67D9FFB269A6EA ] C:\Windows\System32\shlwapi.dll
19:48:35.0464 4528  C:\Windows\System32\shlwapi.dll - ok
19:48:35.0464 4528  [ E5CBF5F8623BBD1DB7B8148A66F6EBA4 ] C:\Windows\System32\Wldap32.dll
19:48:35.0464 4528  C:\Windows\System32\Wldap32.dll - ok
19:48:35.0464 4528  [ 25983DE69B57142039AC8D95E71CD9C9 ] C:\Windows\System32\clbcatq.dll
19:48:35.0464 4528  C:\Windows\System32\clbcatq.dll - ok
19:48:35.0480 4528  [ 83404DCBCE4925B6A5A77C5170F46D86 ] C:\Windows\System32\sechost.dll
19:48:35.0480 4528  C:\Windows\System32\sechost.dll - ok
19:48:35.0480 4528  [ F94B8644F3AFE040EC6E1B6FBC9EFAA9 ] C:\Windows\System32\comdlg32.dll
19:48:35.0480 4528  C:\Windows\System32\comdlg32.dll - ok
19:48:35.0480 4528  [ E1B1255D3A4B3367FE4E9C71E62E3B5A ] C:\Windows\System32\gdi32.dll
19:48:35.0480 4528  C:\Windows\System32\gdi32.dll - ok
19:48:35.0480 4528  [ 15A54626213EBF003F7D4C9D8380A656 ] C:\Windows\System32\imagehlp.dll
19:48:35.0480 4528  C:\Windows\System32\imagehlp.dll - ok
19:48:35.0480 4528  [ 43DB3433F141F01E53D1C5AA0F434098 ] C:\Windows\System32\kernel32.dll
19:48:35.0480 4528  C:\Windows\System32\kernel32.dll - ok
19:48:35.0495 4528  [ A070ABB9D85582B2BECADBE6FCD12350 ] C:\Windows\System32\drivers\t_mouse.sys
19:48:35.0495 4528  C:\Windows\System32\drivers\t_mouse.sys - ok
19:48:35.0495 4528  [ 49EE2E52E6CD03947DAD72F65367BE06 ] C:\Windows\System32\drivers\hidparse.sys
19:48:35.0495 4528  C:\Windows\System32\drivers\hidparse.sys - ok
19:48:35.0495 4528  [ 685FEC2407FC121EB937CB658B3C0F35 ] C:\Windows\System32\drivers\hidclass.sys
19:48:35.0495 4528  C:\Windows\System32\drivers\hidclass.sys - ok
19:48:35.0495 4528  [ B3BF6B5B50006DEF50B66306D99FCF6F ] C:\Windows\System32\drivers\hidusb.sys
19:48:35.0495 4528  C:\Windows\System32\drivers\hidusb.sys - ok
19:48:35.0511 4528  [ D3BF052C40B0C4166D9FD86A4288C1E6 ] C:\Windows\System32\drivers\mouhid.sys
19:48:35.0511 4528  C:\Windows\System32\drivers\mouhid.sys - ok
19:48:35.0511 4528  [ 537A4E03D7103C12D42DFD8FFDB5BDC9 ] C:\Windows\System32\drivers\usbccgp.sys
19:48:35.0511 4528  C:\Windows\System32\drivers\usbccgp.sys - ok
19:48:35.0511 4528  [ 87BEA2616EFDEC6A1CB3BFCFB09D816A ] C:\Windows\System32\urlmon.dll
19:48:35.0511 4528  C:\Windows\System32\urlmon.dll - ok
19:48:35.0511 4528  [ 6DF46D2BD74E3DA1B45F08F10D172732 ] C:\Windows\System32\advapi32.dll
19:48:35.0511 4528  C:\Windows\System32\advapi32.dll - ok
19:48:35.0511 4528  [ F7CE0C81C545364020ED8203CF0A633E ] C:\Windows\System32\difxapi.dll
19:48:35.0511 4528  C:\Windows\System32\difxapi.dll - ok
19:48:35.0526 4528  [ D202223587518B13D72D68937B7E3F70 ] C:\Windows\System32\lpk.dll
19:48:35.0526 4528  C:\Windows\System32\lpk.dll - ok
19:48:35.0526 4528  [ 7083F463788CB34FCC42F565D56F89E8 ] C:\Windows\System32\ws2_32.dll
19:48:35.0526 4528  C:\Windows\System32\ws2_32.dll - ok
19:48:35.0526 4528  [ AA2C08CE85653B1A0D2E4AB407FA176C ] C:\Windows\System32\imm32.dll
19:48:35.0526 4528  C:\Windows\System32\imm32.dll - ok
19:48:35.0526 4528  [ BD5153969C41F697E23B9A43EF9228CE ] C:\Windows\System32\usp10.dll
19:48:35.0526 4528  C:\Windows\System32\usp10.dll - ok
19:48:35.0526 4528  [ D59773C7FDD3D795D6FE402EEEA8D71E ] C:\Windows\System32\drivers\bthport.sys
19:48:35.0526 4528  C:\Windows\System32\drivers\bthport.sys - ok
19:48:35.0542 4528  [ 8504842634DD144C075B6B0C982CCEC4 ] C:\Windows\System32\drivers\BTHUSB.SYS
19:48:35.0542 4528  C:\Windows\System32\drivers\BTHUSB.SYS - ok
19:48:35.0542 4528  [ 7CB8C573C6E4A2714402CC0A36EAB4FE ] C:\Windows\System32\drivers\usbvideo.sys
19:48:35.0542 4528  C:\Windows\System32\drivers\usbvideo.sys - ok
19:48:35.0542 4528  [ 2A46451EE42BCD2C842D8AA4923FAC16 ] C:\Windows\System32\oleaut32.dll
19:48:35.0542 4528  C:\Windows\System32\oleaut32.dll - ok
19:48:35.0542 4528  [ 06FEC9E8117103BB1141A560E98077DA ] C:\Windows\System32\devobj.dll
19:48:35.0542 4528  C:\Windows\System32\devobj.dll - ok
19:48:35.0542 4528  [ C5097B45DE21ADF2469B69DFC64DCE55 ] C:\Windows\System32\KernelBase.dll
19:48:35.0542 4528  C:\Windows\System32\KernelBase.dll - ok
19:48:35.0558 4528  [ 987508ED06FC097E754A91BA8A8AAD0E ] C:\Windows\System32\wintrust.dll
19:48:35.0558 4528  C:\Windows\System32\wintrust.dll - ok
19:48:35.0558 4528  [ D256EB74BF77026FC9A3D7193861C7AD ] C:\Windows\System32\crypt32.dll
19:48:35.0558 4528  C:\Windows\System32\crypt32.dll - ok
19:48:35.0558 4528  [ D05E03C1B2824236531F5E37334B6A8A ] C:\Windows\System32\cfgmgr32.dll
19:48:35.0558 4528  C:\Windows\System32\cfgmgr32.dll - ok
19:48:35.0558 4528  [ BC052EFAD10ACA1AD69545B629F50D99 ] C:\Windows\System32\comctl32.dll
19:48:35.0558 4528  C:\Windows\System32\comctl32.dll - ok
19:48:35.0558 4528  [ 98FB7DD3B28A92E3C0E5B4BD9D63EF01 ] C:\Windows\System32\msasn1.dll
19:48:35.0558 4528  C:\Windows\System32\msasn1.dll - ok
19:48:35.0573 4528  [ 9C278785347BCC991F8EA2999D90F58D ] C:\Windows\SysWOW64\normaliz.dll
19:48:35.0573 4528  C:\Windows\SysWOW64\normaliz.dll - ok
19:48:35.0573 4528  [ BF24D6F2ED97FE830BFD52B246F98E67 ] C:\Windows\System32\drivers\dxapi.sys
19:48:35.0573 4528  C:\Windows\System32\drivers\dxapi.sys - ok
19:48:35.0573 4528  [ 4B8FAB281A9310C45A4F65378E5F7D81 ] C:\Windows\System32\win32k.sys
19:48:35.0573 4528  C:\Windows\System32\win32k.sys - ok
19:48:35.0573 4528  [ 60C2862B4BF0FD9F582EF344C2B1EC72 ] C:\Windows\System32\csrss.exe
19:48:35.0573 4528  C:\Windows\System32\csrss.exe - ok
19:48:35.0573 4528  [ E730EADB8F176DB06A378435BEB2E823 ] C:\Windows\System32\csrsrv.dll
19:48:35.0573 4528  C:\Windows\System32\csrsrv.dll - ok
19:48:35.0589 4528  [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\System32\basesrv.dll
19:48:35.0589 4528  C:\Windows\System32\basesrv.dll - ok
19:48:35.0589 4528  [ 3FB74FF230B5D240A57AE1C4A3D0459D ] C:\Windows\System32\winsrv.dll
19:48:35.0589 4528  C:\Windows\System32\winsrv.dll - ok
19:48:35.0589 4528  [ CF98190A94F62E405C8CB255018B2315 ] C:\Windows\System32\drivers\bthenum.sys
19:48:35.0589 4528  C:\Windows\System32\drivers\bthenum.sys - ok
19:48:35.0589 4528  [ 02DD601B708DD0667E1331FA8518E9FF ] C:\Windows\System32\drivers\bthpan.sys
19:48:35.0589 4528  C:\Windows\System32\drivers\bthpan.sys - ok
19:48:35.0604 4528  [ 3DD798846E2C28102B922C56E71B7932 ] C:\Windows\System32\drivers\rfcomm.sys
19:48:35.0604 4528  C:\Windows\System32\drivers\rfcomm.sys - ok
19:48:35.0604 4528  [ 9DA669F11D1F894AB4EB69BF546A42E8 ] C:\Windows\System32\drivers\bthmodem.sys
19:48:35.0604 4528  C:\Windows\System32\drivers\bthmodem.sys - ok
19:48:35.0604 4528  [ B03D591DC7DA45ECE20B3B467E6AADAA ] C:\Windows\System32\drivers\monitor.sys
19:48:35.0604 4528  C:\Windows\System32\drivers\monitor.sys - ok
19:48:35.0604 4528  [ F29FE765E1448EF371CFE05BFAC74ADB ] C:\Windows\System32\tsddd.dll
19:48:35.0604 4528  C:\Windows\System32\tsddd.dll - ok
19:48:35.0604 4528  [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\System32\sxssrv.dll
19:48:35.0604 4528  C:\Windows\System32\sxssrv.dll - ok
19:48:35.0620 4528  [ 94355C28C1970635A31B3FE52EB7CEBA ] C:\Windows\System32\wininit.exe
19:48:35.0620 4528  C:\Windows\System32\wininit.exe - ok
19:48:35.0620 4528  [ 100BDF2F89D6056CEE900BB6156DA737 ] C:\Windows\System32\cdd.dll
19:48:35.0620 4528  C:\Windows\System32\cdd.dll - ok
19:48:35.0620 4528  [ B9A047D231D32FDF5AF2F281E4326A9D ] C:\Windows\System32\KBDUS.DLL
19:48:35.0620 4528  C:\Windows\System32\KBDUS.DLL - ok
19:48:35.0620 4528  [ 2C942733A5983DD4502219FF37C7EBC7 ] C:\Windows\System32\profapi.dll
19:48:35.0620 4528  C:\Windows\System32\profapi.dll - ok
19:48:35.0620 4528  [ F4389DA7DBDA2E7D292D360CF8E400C7 ] C:\Windows\System32\RpcRtRemote.dll
19:48:35.0620 4528  C:\Windows\System32\RpcRtRemote.dll - ok
19:48:35.0636 4528  [ 456C92A9D8DB51B9938A6234BBC65FC9 ] C:\Windows\System32\sxs.dll
19:48:35.0636 4528  C:\Windows\System32\sxs.dll - ok
19:48:35.0636 4528  [ B26B1801356760841C3BC69F9F91537F ] C:\Windows\System32\WlS0WndH.dll
19:48:35.0636 4528  C:\Windows\System32\WlS0WndH.dll - ok
19:48:35.0636 4528  [ 784FA3DF338E2E8F5F0389D6FAC428AF ] C:\Windows\System32\cryptbase.dll
19:48:35.0636 4528  C:\Windows\System32\cryptbase.dll - ok
19:48:35.0636 4528  [ 01A465AC251BCCF6037DF2EF28AA4292 ] C:\Windows\System32\apphelp.dll
19:48:35.0636 4528  C:\Windows\System32\apphelp.dll - ok
19:48:35.0636 4528  [ 156F6159457D0AA7E59B62681B56EB90 ] C:\Windows\System32\lsass.exe
19:48:35.0636 4528  C:\Windows\System32\lsass.exe - ok



19:48:35.0651 4528  [ 04FCA22B77A2E37332CC8226187AF87B ] C:\Windows\System32\lsm.exe
19:48:35.0651 4528  C:\Windows\System32\lsm.exe - ok
19:48:35.0651 4528  [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\System32\services.exe
19:48:35.0651 4528  C:\Windows\System32\services.exe - ok
19:48:35.0651 4528  [ 68EA2513CA68AD8F741FF4F5B8D8590C ] C:\Windows\System32\sspisrv.dll
19:48:35.0651 4528  C:\Windows\System32\sspisrv.dll - ok
19:48:35.0651 4528  [ BFA69408620587AFDEC2E8C12CA60492 ] C:\Windows\System32\lsasrv.dll
19:48:35.0651 4528  C:\Windows\System32\lsasrv.dll - ok
19:48:35.0651 4528  [ 1F582C6C84D5243692F9C3E04D0A663F ] C:\Windows\System32\sspicli.dll
19:48:35.0651 4528  C:\Windows\System32\sspicli.dll - ok
19:48:35.0667 4528  [ 68083118797CAF30FB2EA3E71494D67E ] C:\Windows\System32\sysntfy.dll
19:48:35.0667 4528  C:\Windows\System32\sysntfy.dll - ok
19:48:35.0667 4528  [ DEE7267C5D232A3B816866872CE199E6 ] C:\Windows\System32\wmsgapi.dll
19:48:35.0667 4528  C:\Windows\System32\wmsgapi.dll - ok
19:48:35.0667 4528  [ 941AF3C8B0DE1B359BE22DD3288A8C8E ] C:\Windows\System32\scesrv.dll
19:48:35.0667 4528  C:\Windows\System32\scesrv.dll - ok
19:48:35.0667 4528  [ E914A50A151DFFE63D3935226DB5E2C1 ] C:\Windows\System32\scext.dll
19:48:35.0667 4528  C:\Windows\System32\scext.dll - ok
19:48:35.0682 4528  [ 74A0871810BF0F2AA3EB6681E9BECDD3 ] C:\Windows\System32\secur32.dll
19:48:35.0682 4528  C:\Windows\System32\secur32.dll - ok
19:48:35.0682 4528  [ B160ADAEFC76031D92C4FBAC0918B033 ] C:\Windows\System32\samsrv.dll
19:48:35.0682 4528  C:\Windows\System32\samsrv.dll - ok
19:48:35.0682 4528  [ D23371AB9607651937C7641A38CD52BC ] C:\Windows\System32\srvcli.dll
19:48:35.0682 4528  C:\Windows\System32\srvcli.dll - ok
19:48:35.0682 4528  [ 3A061472B38233BAFF9CFEFF2E49C46B ] C:\Windows\System32\cryptdll.dll
19:48:35.0682 4528  C:\Windows\System32\cryptdll.dll - ok
19:48:35.0698 4528  [ 3C073B0C596A0AF84933E7406766B040 ] C:\Windows\System32\wevtapi.dll
19:48:35.0698 4528  C:\Windows\System32\wevtapi.dll - ok
19:48:35.0698 4528  [ 7FBEBD2229EA5FD48D41B199EC2D541C ] C:\Windows\System32\authz.dll
19:48:35.0698 4528  C:\Windows\System32\authz.dll - ok
19:48:35.0698 4528  [ 86FE1B1F8FD42CD0DB641AB1CDB13093 ] C:\Windows\System32\cngaudit.dll
19:48:35.0698 4528  C:\Windows\System32\cngaudit.dll - ok
19:48:35.0698 4528  [ E2D60E901428A72BB47931C938A1ED95 ] C:\Windows\System32\ncrypt.dll
19:48:35.0698 4528  C:\Windows\System32\ncrypt.dll - ok
19:48:35.0698 4528  [ B9A95365E52F421A20E1501935FADDA5 ] C:\Windows\System32\bcrypt.dll
19:48:35.0698 4528  C:\Windows\System32\bcrypt.dll - ok
19:48:35.0714 4528  [ 02B64609F865A39365FF88580DF11738 ] C:\Windows\System32\msprivs.dll
19:48:35.0714 4528  C:\Windows\System32\msprivs.dll - ok
19:48:35.0714 4528  [ B561B451320B0B40908A8BFD81705262 ] C:\Windows\System32\netjoin.dll
19:48:35.0714 4528  C:\Windows\System32\netjoin.dll - ok
19:48:35.0714 4528  [ 00B40A10E3DB79E4D3E127B9C2233A6B ] C:\Windows\System32\kerberos.dll
19:48:35.0714 4528  C:\Windows\System32\kerberos.dll - ok
19:48:35.0714 4528  [ 50532FCD7ECF02DD169CE5C485F02534 ] C:\Windows\System32\negoexts.dll
19:48:35.0714 4528  C:\Windows\System32\negoexts.dll - ok
19:48:35.0714 4528  [ D0C2FBB6D97416B0166478FC7AE2B212 ] C:\Windows\System32\cryptsp.dll
19:48:35.0714 4528  C:\Windows\System32\cryptsp.dll - ok
19:48:35.0729 4528  [ FC76FE3C1E1FDB761244D4F74EF560FD ] C:\Windows\System32\mswsock.dll
19:48:35.0729 4528  C:\Windows\System32\mswsock.dll - ok
19:48:35.0729 4528  [ FA4DB05923DDDEDE3196ABD09AE0F1E9 ] C:\Windows\System32\msv1_0.dll
19:48:35.0729 4528  C:\Windows\System32\msv1_0.dll - ok
19:48:35.0729 4528  [ EC7CBFF96B05ECF3D366355B3C64ADCF ] C:\Windows\System32\wship6.dll
19:48:35.0729 4528  C:\Windows\System32\wship6.dll - ok
19:48:35.0729 4528  [ 956D030D375F207B22FB111E06EF9C35 ] C:\Windows\System32\netlogon.dll
19:48:35.0729 4528  C:\Windows\System32\netlogon.dll - ok
19:48:35.0729 4528  [ E247E7DEB20C0CF0801A8AC39E9CE1DF ] C:\Windows\System32\dnsapi.dll
19:48:35.0745 4528  C:\Windows\System32\dnsapi.dll - ok
19:48:35.0745 4528  [ 8CE22E63F08613036DF8C7B00FBDF36B ] C:\Windows\System32\logoncli.dll
19:48:35.0745 4528  C:\Windows\System32\logoncli.dll - ok
19:48:35.0745 4528  [ 90B780886BD813882CB382FF3E90E092 ] C:\Windows\System32\schannel.dll
19:48:35.0745 4528  C:\Windows\System32\schannel.dll - ok
19:48:35.0745 4528  [ 95FB6CA4374E343DDD653FCC43F9D26B ] C:\Windows\System32\wdigest.dll
19:48:35.0745 4528  C:\Windows\System32\wdigest.dll - ok
19:48:35.0745 4528  [ DA3E2A6FA9660CC75B471530CE88453A ] C:\Windows\System32\winlogon.exe
19:48:35.0745 4528  C:\Windows\System32\winlogon.exe - ok
19:48:35.0760 4528  [ 5D8874A8C11DDDDE29E12DE0E2013493 ] C:\Windows\System32\rsaenh.dll
19:48:35.0760 4528  C:\Windows\System32\rsaenh.dll - ok
19:48:35.0760 4528  [ 0DEFD5FBF801DD8F83BC0ED09861A8EC ] C:\Windows\System32\TSpkg.dll
19:48:35.0760 4528  C:\Windows\System32\TSpkg.dll - ok
19:48:35.0760 4528  [ D8C88512BA9544AE1CC2034F50ECFA12 ] C:\Windows\System32\winsta.dll
19:48:35.0760 4528  C:\Windows\System32\winsta.dll - ok
19:48:35.0760 4528  [ E08088A97F95345E181C3DFCE2C615EF ] C:\Windows\System32\pku2u.dll
19:48:35.0760 4528  C:\Windows\System32\pku2u.dll - ok
19:48:35.0760 4528  [ DA090E97E57DCB48888015B5D3C749CD ] C:\Windows\System32\bcryptprimitives.dll
19:48:35.0760 4528  C:\Windows\System32\bcryptprimitives.dll - ok
19:48:35.0776 4528  [ 90BDEFC5DF334E5100EAA781D798DE1A ] C:\Windows\System32\efslsaext.dll
19:48:35.0776 4528  C:\Windows\System32\efslsaext.dll - ok
19:48:35.0776 4528  [ 9301B8810B2DA4EB6AD55DB75FC1E339 ] C:\Windows\System32\credssp.dll
19:48:35.0776 4528  C:\Windows\System32\credssp.dll - ok
19:48:35.0776 4528  [ 398712DDDAEFB85EDF61DF6A07B65C79 ] C:\Windows\System32\scecli.dll
19:48:35.0776 4528  C:\Windows\System32\scecli.dll - ok
19:48:35.0776 4528  [ 7CC7DF5B654DA579613F811D8C637E29 ] C:\Windows\System32\ubpm.dll
19:48:35.0776 4528  C:\Windows\System32\ubpm.dll - ok
19:48:35.0776 4528  [ C78655BC80301D76ED4FEF1C1EA40A7D ] C:\Windows\System32\svchost.exe
19:48:35.0776 4528  C:\Windows\System32\svchost.exe - ok
19:48:35.0792 4528  [ 98B1721B8718164293B9701B98C52D77 ] C:\Windows\System32\umpnpmgr.dll
19:48:35.0792 4528  C:\Windows\System32\umpnpmgr.dll - ok
19:48:35.0792 4528  [ E6EB44ABAAF1F330119F854856C53EBE ] C:\Windows\System32\SPInf.dll
19:48:35.0792 4528  C:\Windows\System32\SPInf.dll - ok
19:48:35.0792 4528  [ CD1B5AD07E5F7FEF30E055DCC9E96180 ] C:\Windows\System32\devrtl.dll
19:48:35.0792 4528  C:\Windows\System32\devrtl.dll - ok
19:48:35.0792 4528  [ 9C9307C95671AC962F3D6EB3A4A89BAE ] C:\Windows\System32\gpapi.dll
19:48:35.0792 4528  C:\Windows\System32\gpapi.dll - ok
19:48:35.0792 4528  [ 0776CF79590BDEF0A2728B0B9A813B96 ] C:\Windows\System32\userenv.dll
19:48:35.0792 4528  C:\Windows\System32\userenv.dll - ok
19:48:35.0807 4528  [ 6BA9D927DDED70BD1A9CADED45F8B184 ] C:\Windows\System32\umpo.dll
19:48:35.0807 4528  C:\Windows\System32\umpo.dll - ok
19:48:35.0807 4528  [ F6C011B46FAEEF33536B2E80F48B5CBE ] C:\Windows\System32\pcwum.dll
19:48:35.0807 4528  C:\Windows\System32\pcwum.dll - ok
19:48:35.0807 4528  [ 716175021BDA290504CE434273F666BC ] C:\Windows\System32\powrprof.dll
19:48:35.0807 4528  C:\Windows\System32\powrprof.dll - ok
19:48:35.0807 4528  [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] C:\Windows\System32\drivers\luafv.sys
19:48:35.0807 4528  C:\Windows\System32\drivers\luafv.sys - ok
19:48:35.0807 4528  [ AB886378EEB55C6C75B4F2D14B6C869F ] C:\Windows\System32\drivers\WUDFPf.sys
19:48:35.0807 4528  C:\Windows\System32\drivers\WUDFPf.sys - ok
19:48:35.0823 4528  [ 7266972E86890E2B30C0C322E906B027 ] C:\Windows\System32\rpcss.dll
19:48:35.0823 4528  C:\Windows\System32\rpcss.dll - ok
19:48:35.0823 4528  [ E4DC58CF7B3EA515AE917FF0D402A7BB ] C:\Windows\System32\RpcEpMap.dll
19:48:35.0823 4528  C:\Windows\System32\RpcEpMap.dll - ok
19:48:35.0823 4528  [ 16E964ABF6D1E0F0CC7822FCA9BA754D ] C:\Windows\System32\wshqos.dll
19:48:35.0823 4528  C:\Windows\System32\wshqos.dll - ok
19:48:35.0823 4528  [ 31559F3244C6BC00A52030CAA83B6B91 ] C:\Windows\System32\WSHTCPIP.DLL
19:48:35.0823 4528  C:\Windows\System32\WSHTCPIP.DLL - ok
19:48:35.0838 4528  [ 6F01290FB0595FDA9898E144C8AB60B1 ] C:\Windows\System32\atiesrxx.exe
19:48:35.0838 4528  C:\Windows\System32\atiesrxx.exe - ok
19:48:35.0838 4528  [ BD3674BE7FC9D8D3732C83E8499576ED ] C:\Windows\System32\wtsapi32.dll
19:48:35.0838 4528  C:\Windows\System32\wtsapi32.dll - ok
19:48:35.0838 4528  [ 9AD9E06F8656F296D91FAE8EE5B95A27 ] C:\Windows\System32\FirewallAPI.dll
19:48:35.0838 4528  C:\Windows\System32\FirewallAPI.dll - ok
19:48:35.0838 4528  [ 93E6A39B1DB898F7C949FA5567E774CF ] C:\Windows\System32\LogonUI.exe
19:48:35.0838 4528  C:\Windows\System32\LogonUI.exe - ok
19:48:35.0838 4528  [ 94E026870A55AAEAFF7853C1754091E9 ] C:\Windows\System32\version.dll
19:48:35.0838 4528  C:\Windows\System32\version.dll - ok
19:48:35.0838 4528  [ BCF0A980D21711E47D0803BDB0E99CAD ] C:\Windows\System32\authui.dll
19:48:35.0838 4528  C:\Windows\System32\authui.dll - ok
19:48:35.0854 4528  [ 99ABDA9C92EC76CBAF52F00239D909C9 ] C:\Windows\System32\wevtsvc.dll
19:48:35.0854 4528  C:\Windows\System32\wevtsvc.dll - ok
19:48:35.0854 4528  [ 07721A77180EDD4D39CCB865BF63C7FD ] C:\Windows\System32\audiosrv.dll
19:48:35.0854 4528  C:\Windows\System32\audiosrv.dll - ok
19:48:35.0854 4528  [ 78A1E65207484B7F8D3217507745F47C ] C:\Windows\System32\avrt.dll
19:48:35.0854 4528  C:\Windows\System32\avrt.dll - ok
19:48:35.0854 4528  [ E40E80D0304A73E8D269F7141D77250B ] C:\Windows\System32\mmcss.dll
19:48:35.0854 4528  C:\Windows\System32\mmcss.dll - ok
19:48:35.0854 4528  [ 1F4492FE41767CDB8B89D17655847CDD ] C:\Windows\System32\ntmarta.dll
19:48:35.0854 4528  C:\Windows\System32\ntmarta.dll - ok
19:48:35.0870 4528  [ 227E2C382A1E02F8D4965E664D3BBE43 ] C:\Windows\System32\MMDevAPI.dll
19:48:35.0870 4528  C:\Windows\System32\MMDevAPI.dll - ok
19:48:35.0870 4528  [ B27EA141A7E748B607600A8551A44D5A ] C:\Windows\System32\propsys.dll
19:48:35.0870 4528  C:\Windows\System32\propsys.dll - ok
19:48:35.0870 4528  [ D152EBC32A23069F8AA1D1F24B15E3F9 ] C:\Windows\System32\audiodg.exe
19:48:35.0870 4528  C:\Windows\System32\audiodg.exe - ok
19:48:35.0870 4528  [ 5F28111C648F1E24F7DBC87CDEB091B8 ] C:\Windows\System32\netprofm.dll
19:48:35.0870 4528  C:\Windows\System32\netprofm.dll - ok
19:48:35.0885 4528  [ FE5AB4525BC2EC68B9119A6E5D40128B ] C:\Windows\System32\gpsvc.dll
19:48:35.0885 4528  C:\Windows\System32\gpsvc.dll - ok
19:48:35.0885 4528  [ 86E3822A34D454032D8E88C72AE8CF2D ] C:\Windows\System32\nlaapi.dll
19:48:35.0885 4528  C:\Windows\System32\nlaapi.dll - ok
19:48:35.0885 4528  [ 97293447431311C06703368AD0F6C4BE ] C:\Windows\System32\profsvc.dll
19:48:35.0885 4528  C:\Windows\System32\profsvc.dll - ok
19:48:35.0885 4528  [ 58775492FFD419248B08325E583C527F ] C:\Windows\System32\atl.dll
19:48:35.0885 4528  C:\Windows\System32\atl.dll - ok
19:48:35.0885 4528  [ F0344071948D1A1FA732231785A0664C ] C:\Windows\System32\themeservice.dll
19:48:35.0885 4528  C:\Windows\System32\themeservice.dll - ok
19:48:35.0901 4528  [ A77BE7CB3222B4FB0AC6C71D1C2698D4 ] C:\Windows\System32\dsrole.dll
19:48:35.0901 4528  C:\Windows\System32\dsrole.dll - ok
19:48:35.0901 4528  [ BE097F5BB10F9079FCEB2DC4E7E20F02 ] C:\Windows\System32\slc.dll
19:48:35.0901 4528  C:\Windows\System32\slc.dll - ok
19:48:35.0901 4528  [ 4166F82BE4D24938977DD1746BE9B8A0 ] C:\Windows\System32\es.dll
19:48:35.0901 4528  C:\Windows\System32\es.dll - ok
19:48:35.0901 4528  [ 1A47D52E303B7543E4E6026595B95422 ] C:\Windows\System32\comres.dll
19:48:35.0901 4528  C:\Windows\System32\comres.dll - ok
19:48:35.0901 4528  [ C32AB8FA018EF34C0F113BD501436D21 ] C:\Windows\System32\Sens.dll
19:48:35.0901 4528  C:\Windows\System32\Sens.dll - ok
19:48:35.0916 4528  [ EDBB23CBCF2CDF727D64FF9B51A6070E ] C:\Windows\System32\uxsms.dll
19:48:35.0916 4528  C:\Windows\System32\uxsms.dll - ok
19:48:35.0916 4528  [ B1DF2D87DC8BF6072699AC8301B37796 ] C:\Windows\System32\WUDFPlatform.dll
19:48:35.0916 4528  C:\Windows\System32\WUDFPlatform.dll - ok
19:48:35.0916 4528  [ B20F051B03A966392364C83F009F7D17 ] C:\Windows\System32\WUDFSvc.dll
19:48:35.0916 4528  C:\Windows\System32\WUDFSvc.dll - ok
19:48:35.0916 4528  [ 1538831CF8AD2979A04C423779465827 ] C:\Windows\System32\drivers\lltdio.sys
19:48:35.0916 4528  C:\Windows\System32\drivers\lltdio.sys - ok
19:48:35.0932 4528  [ 1EA3749C4114DB3E3161156FFFFA6B33 ] C:\Windows\System32\drivers\nwifi.sys
19:48:35.0932 4528  C:\Windows\System32\drivers\nwifi.sys - ok
19:48:35.0932 4528  [ F105BA1E22BF1F2EE8F005D4305E4BEC ] C:\Windows\System32\drivers\ndisuio.sys
19:48:35.0932 4528  C:\Windows\System32\drivers\ndisuio.sys - ok
19:48:35.0932 4528  [ DBA90306A721FB922FDACED9E9728C28 ] C:\Windows\System32\cryptui.dll
19:48:35.0932 4528  C:\Windows\System32\cryptui.dll - ok
19:48:35.0932 4528  [ 113921FC4A80A3DDF646852998B836D0 ] C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7\comctl32.dll
19:48:35.0932 4528  C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7\comctl32.dll - ok
19:48:35.0932 4528  [ 5B3EBFC3DA142324B388DDCC4465E1FF ] C:\Windows\System32\samlib.dll
19:48:35.0932 4528  C:\Windows\System32\samlib.dll - ok
19:48:35.0948 4528  [ 84F8C8B9FB1F12532999D25F5DD7E77C ] C:\Windows\System32\shacct.dll
19:48:35.0948 4528  C:\Windows\System32\shacct.dll - ok
19:48:35.0948 4528  [ D29E998E8277666982B4F0303BF4E7AF ] C:\Windows\System32\uxtheme.dll
19:48:35.0948 4528  C:\Windows\System32\uxtheme.dll - ok
19:48:35.0948 4528  [ DD0701DE0AAA010E6EBD0F53B672DCEE ] C:\Windows\winsxs\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7600.17007_none_2b47185a719d6182\GdiPlus.dll
19:48:35.0948 4528  C:\Windows\winsxs\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7600.17007_none_2b47185a719d6182\GdiPlus.dll - ok
19:48:35.0948 4528  [ 3CB6A7286422C72C34DAB54A5DFF1A34 ] C:\Windows\System32\dui70.dll
19:48:35.0948 4528  C:\Windows\System32\dui70.dll - ok
19:48:35.0948 4528  [ 8CCDE014A4CDF84564E03ACE064CA753 ] C:\Windows\System32\duser.dll
19:48:35.0948 4528  C:\Windows\System32\duser.dll - ok
19:48:35.0963 4528  [ B2E3D4BB3389817FB5E4CD9378BC8791 ] C:\Windows\System32\SndVolSSO.dll
19:48:35.0963 4528  C:\Windows\System32\SndVolSSO.dll - ok
19:48:35.0963 4528  [ 896F15A6434D93EDB42519D5E18E6B50 ] C:\Windows\System32\hid.dll
19:48:35.0963 4528  C:\Windows\System32\hid.dll - ok
19:48:35.0963 4528  [ DA1B7075260F3872585BFCDD668C648B ] C:\Windows\System32\dwmapi.dll
19:48:35.0963 4528  C:\Windows\System32\dwmapi.dll - ok
19:48:35.0963 4528  [ 39F91A948E6017B732C4A0B3086A8E32 ] C:\Windows\System32\xmllite.dll
19:48:35.0963 4528  C:\Windows\System32\xmllite.dll - ok
19:48:35.0979 4528  [ DDC86E4F8E7456261E637E3552E804FF ] C:\Windows\System32\drivers\rspndr.sys
19:48:35.0979 4528  C:\Windows\System32\drivers\rspndr.sys - ok
19:48:35.0979 4528  [ F993A32249B66C9D622EA5592A8B76B8 ] C:\Windows\System32\lmhsvc.dll
19:48:35.0979 4528  C:\Windows\System32\lmhsvc.dll - ok
19:48:35.0979 4528  [ 57FE2CFC2F25C200499D5D934EA24EB5 ] C:\Windows\System32\IPHLPAPI.DLL
19:48:35.0979 4528  C:\Windows\System32\IPHLPAPI.DLL - ok
19:48:35.0979 4528  [ F9EC845C5EECF20E9A67F9F805F2EF1F ] C:\Windows\System32\keyiso.dll
19:48:35.0979 4528  C:\Windows\System32\keyiso.dll - ok
19:48:35.0979 4528  [ FD5BA198F7190DFE9BE1947EB8710396 ] C:\Windows\System32\nrpsrv.dll
19:48:35.0979 4528  C:\Windows\System32\nrpsrv.dll - ok
19:48:35.0994 4528  [ 4C9210E8F4E052F6A4EB87716DA0C24C ] C:\Windows\System32\winnsi.dll
19:48:35.0994 4528  C:\Windows\System32\winnsi.dll - ok
19:48:35.0994 4528  [ CE3B9562D997F69B330D181A8875960F ] C:\Windows\System32\dhcpcore.dll
19:48:35.0994 4528  C:\Windows\System32\dhcpcore.dll - ok
19:48:35.0994 4528  [ E2DDA8726DA9CB5B2C4000C9018A9633 ] C:\Windows\System32\eapsvc.dll
19:48:35.0994 4528  C:\Windows\System32\eapsvc.dll - ok
19:48:35.0994 4528  [ D54BFDF3E0C953F823B3D0BFE4732528 ] C:\Windows\System32\nsisvc.dll
19:48:35.0994 4528  C:\Windows\System32\nsisvc.dll - ok
19:48:35.0994 4528  [ EA99F234843BBDDA1ABD2767111ADE25 ] C:\Windows\System32\WindowsCodecs.dll
19:48:35.0994 4528  C:\Windows\System32\WindowsCodecs.dll - ok
19:48:36.0010 4528  [ 85CF424C74A1D5EC33533E1DBFF9920A ] C:\Windows\System32\dnsrslvr.dll
19:48:36.0010 4528  C:\Windows\System32\dnsrslvr.dll - ok
19:48:36.0010 4528  [ 982F5395AD181179320083A4FA7E7CA8 ] C:\Windows\System32\eapphost.dll
19:48:36.0010 4528  C:\Windows\System32\eapphost.dll - ok
19:48:36.0010 4528  [ 71C7B65B6557B75B99907E76956AE4B8 ] C:\Windows\System32\dhcpcore6.dll
19:48:36.0010 4528  C:\Windows\System32\dhcpcore6.dll - ok
19:48:36.0010 4528  [ 0040C486584A8E582C861CFB57AB5387 ] C:\Windows\System32\FWPUCLNT.DLL
19:48:36.0010 4528  C:\Windows\System32\FWPUCLNT.DLL - ok
19:48:36.0010 4528  [ 885D0942E0F28DB90919BE3129ECF279 ] C:\Windows\System32\dnsext.dll
19:48:36.0010 4528  C:\Windows\System32\dnsext.dll - ok
19:48:36.0026 4528  [ F568F7C08458D69E4FCD8675BBB107E4 ] C:\Windows\System32\dhcpcsvc.dll
19:48:36.0026 4528  C:\Windows\System32\dhcpcsvc.dll - ok
19:48:36.0026 4528  [ 4CBCC37856EA2039C27A2FB661DDA0E5 ] C:\Windows\System32\dhcpcsvc6.dll
19:48:36.0026 4528  C:\Windows\System32\dhcpcsvc6.dll - ok
19:48:36.0026 4528  [ 2017BFE87CAB3D7EF632CFD2AA08D3F0 ] C:\Windows\System32\umb.dll
19:48:36.0026 4528  C:\Windows\System32\umb.dll - ok
19:48:36.0026 4528  [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] C:\Windows\System32\wlansvc.dll
19:48:36.0026 4528  C:\Windows\System32\wlansvc.dll - ok
19:48:36.0041 4528  [ 48A31B7CF046702059A86836DC21D786 ] C:\Windows\System32\wlanmsm.dll
19:48:36.0041 4528  C:\Windows\System32\wlanmsm.dll - ok
19:48:36.0041 4528  [ 06A1386B6E3A0CBC368665C1840906F4 ] C:\Windows\System32\wlansec.dll
19:48:36.0041 4528  C:\Windows\System32\wlansec.dll - ok
19:48:36.0041 4528  [ D2B0D1C2BE5ECA80387F7CB8626DCAFE ] C:\Windows\System32\onex.dll
19:48:36.0041 4528  C:\Windows\System32\onex.dll - ok
19:48:36.0041 4528  [ 65522E77A1360DBC8D199DA3BF5EFFE4 ] C:\Windows\System32\eappprxy.dll
19:48:36.0041 4528  C:\Windows\System32\eappprxy.dll - ok
19:48:36.0041 4528  [ 0D753307D274F3688BD21C377B616700 ] C:\Windows\System32\eappcfg.dll
19:48:36.0041 4528  C:\Windows\System32\eappcfg.dll - ok
19:48:36.0057 4528  [ 97E43F324BE1503CB2FFB058534688DA ] C:\Windows\System32\l2gpstore.dll
19:48:36.0057 4528  C:\Windows\System32\l2gpstore.dll - ok
19:48:36.0057 4528  [ 730BF204A595D5B6D7DC57A247CC741C ] C:\Windows\System32\wlgpclnt.dll
19:48:36.0057 4528  C:\Windows\System32\wlgpclnt.dll - ok
19:48:36.0057 4528  [ 22E7431E7DAE8463AF94A79A054276E5 ] C:\Windows\System32\WinSCard.dll
19:48:36.0057 4528  C:\Windows\System32\WinSCard.dll - ok
19:48:36.0057 4528  [ 7F1B4C6FF3B85F9ADF74055187B8A22C ] C:\Windows\System32\wlanutil.dll
19:48:36.0057 4528  C:\Windows\System32\wlanutil.dll - ok
19:48:36.0057 4528  [ 7C02AD2F4BEF1D5C51CB9B402AB3603F ] C:\Windows\System32\msxml6.dll
19:48:36.0057 4528  C:\Windows\System32\msxml6.dll - ok



19:48:36.0072 4528  [ 588CD0C78A7FAAE4186B5EEA0AF3ED67 ] C:\Windows\System32\adtschema.dll
19:48:36.0072 4528  C:\Windows\System32\adtschema.dll - ok
19:48:36.0072 4528  [ C2762A57DF0EE85E63CE4893C5215313 ] C:\Windows\System32\VaultCredProvider.dll
19:48:36.0072 4528  C:\Windows\System32\VaultCredProvider.dll - ok
19:48:36.0072 4528  [ 9F2BACD5E1776A4BB7CC0EC3C3A4F96D ] C:\Windows\System32\winbrand.dll
19:48:36.0072 4528  C:\Windows\System32\winbrand.dll - ok
19:48:36.0072 4528  [ 2A381A9740165D7A1405148B6DFB3E38 ] C:\Windows\System32\SmartcardCredentialProvider.dll
19:48:36.0072 4528  C:\Windows\System32\SmartcardCredentialProvider.dll - ok
19:48:36.0072 4528  [ BF352E73615F5461AA6884472435A544 ] C:\Windows\System32\BioCredProv.dll
19:48:36.0072 4528  C:\Windows\System32\BioCredProv.dll - ok
19:48:36.0088 4528  [ 796B8123A7859AFD3A4AE10514DBAEB5 ] C:\Windows\System32\winbio.dll
19:48:36.0088 4528  C:\Windows\System32\winbio.dll - ok
19:48:36.0088 4528  [ 97D38371502AA797DB14EB1FA5FCE4CD ] C:\Windows\System32\credui.dll
19:48:36.0088 4528  C:\Windows\System32\credui.dll - ok
19:48:36.0088 4528  [ 3C27B50BC43D5FED43081A784DD17190 ] C:\Windows\System32\netapi32.dll
19:48:36.0088 4528  C:\Windows\System32\netapi32.dll - ok
19:48:36.0088 4528  [ 44B9C66177651F3F53C87B665D58D17A ] C:\Windows\System32\vaultcli.dll
19:48:36.0088 4528  C:\Windows\System32\vaultcli.dll - ok
19:48:36.0104 4528  [ 4C8C2F987FC397DCE98874D6C9C0736A ] C:\Windows\System32\netutils.dll
19:48:36.0104 4528  C:\Windows\System32\netutils.dll - ok
19:48:36.0104 4528  [ B33CBD1A8C2A33121321D0FEBD7DD870 ] C:\Windows\System32\wkscli.dll
19:48:36.0104 4528  C:\Windows\System32\wkscli.dll - ok
19:48:36.0104 4528  [ 972C3301DB3DA91AE06A95F6B4160B1B ] C:\Windows\System32\certCredProvider.dll
19:48:36.0104 4528  C:\Windows\System32\certCredProvider.dll - ok
19:48:36.0104 4528  [ A87205FE194B239D8D96E4972B779CC1 ] C:\Windows\System32\samcli.dll
19:48:36.0104 4528  C:\Windows\System32\samcli.dll - ok
19:48:36.0104 4528  [ 87FA0C48C3B2E9FEE518818FE26B15B5 ] C:\Windows\System32\rasplap.dll
19:48:36.0104 4528  C:\Windows\System32\rasplap.dll - ok
19:48:36.0119 4528  [ 019CD868461B646E09BDF04474C19341 ] C:\Windows\System32\rasapi32.dll
19:48:36.0119 4528  C:\Windows\System32\rasapi32.dll - ok
19:48:36.0119 4528  [ B28DEEC597C8DEB70C744C7CF9210E3E ] C:\Windows\System32\rasman.dll
19:48:36.0119 4528  C:\Windows\System32\rasman.dll - ok
19:48:36.0119 4528  [ F5A61F0A0030C80DF319B0C14A4C8885 ] C:\Windows\System32\rtutils.dll
19:48:36.0119 4528  C:\Windows\System32\rtutils.dll - ok
19:48:36.0119 4528  [ DDAAE19A1C4B177B29C0589D00DBC018 ] C:\Windows\System32\atieclxx.exe
19:48:36.0119 4528  C:\Windows\System32\atieclxx.exe - ok
19:48:36.0119 4528  [ 9BC8610C32C96A2983A65DC21CAFA921 ] C:\Windows\System32\UXInit.dll
19:48:36.0119 4528  C:\Windows\System32\UXInit.dll - ok
19:48:36.0135 4528  [ 0EC35DD78CDB144D370F9E295D955CB9 ] C:\Windows\System32\atiadlxx.dll
19:48:36.0135 4528  C:\Windows\System32\atiadlxx.dll - ok
19:48:36.0135 4528  [ E6813B27FB3503314DB23C758C2392A6 ] C:\Windows\System32\atimuixx.dll
19:48:36.0135 4528  C:\Windows\System32\atimuixx.dll - ok
19:48:36.0135 4528  [ AF28348ED585539C4A33A4341FF23696 ] C:\Windows\System32\oleacc.dll
19:48:36.0135 4528  C:\Windows\System32\oleacc.dll - ok
19:48:36.0135 4528  [ 019BDD35DE269CB98B22DE8923C2AA3B ] C:\Windows\System32\UIAutomationCore.dll
19:48:36.0135 4528  C:\Windows\System32\UIAutomationCore.dll - ok
19:48:36.0150 4528  [ 5AA945234E9D4CCE4F715276B9AA712C ] C:\Windows\System32\imageres.dll
19:48:36.0150 4528  C:\Windows\System32\imageres.dll - ok
19:48:36.0150 4528  [ 0298AC45D0EFFFB2DB4BAA7DD186E7BF ] C:\Windows\System32\shsvcs.dll
19:48:36.0150 4528  C:\Windows\System32\shsvcs.dll - ok
19:48:36.0150 4528  [ 624D0F5FF99428BB90A5B8A4123E918E ] C:\Windows\System32\schedsvc.dll
19:48:36.0150 4528  C:\Windows\System32\schedsvc.dll - ok
19:48:36.0150 4528  [ BC414631876B2F28B8DAB08E849C12C5 ] C:\Windows\System32\ktmw32.dll
19:48:36.0150 4528  C:\Windows\System32\ktmw32.dll - ok
19:48:36.0150 4528  [ 1B38A0F123FCF1546FACEAF1EFAFAA00 ] C:\Windows\System32\fveapi.dll
19:48:36.0150 4528  C:\Windows\System32\fveapi.dll - ok
19:48:36.0166 4528  [ 891ECFD08E2C538B7948CBC45106D697 ] C:\Windows\System32\fvecerts.dll
19:48:36.0166 4528  C:\Windows\System32\fvecerts.dll - ok
19:48:36.0166 4528  [ 694865362F0965779F92BCFE97712323 ] C:\Windows\System32\tbs.dll
19:48:36.0166 4528  C:\Windows\System32\tbs.dll - ok
19:48:36.0166 4528  [ 1B547066D0A6CD40EB3BAAC6A9C7E7A9 ] C:\Windows\System32\taskcomp.dll
19:48:36.0166 4528  C:\Windows\System32\taskcomp.dll - ok
19:48:36.0166 4528  [ 8269210DAF3B12BC8300631B28A2A442 ] C:\Windows\System32\wiarpc.dll
19:48:36.0166 4528  C:\Windows\System32\wiarpc.dll - ok
19:48:36.0182 4528  [ CEE049CAC4EFA7F4E1E4AD014414A5D4 ] C:\Windows\System32\drivers\http.sys
19:48:36.0182 4528  C:\Windows\System32\drivers\http.sys - ok
19:48:36.0182 4528  [ 567977DC43CC13C4C35ED7084C0B84D5 ] C:\Windows\System32\spoolsv.exe
19:48:36.0182 4528  C:\Windows\System32\spoolsv.exe - ok
19:48:36.0182 4528  [ ABB8771F4C78B7D60DE24437502D6B55 ] C:\Windows\System32\rastls.dll
19:48:36.0182 4528  C:\Windows\System32\rastls.dll - ok
19:48:36.0182 4528  [ BC052EFAD10ACA1AD69545B629F50D99 ] C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7600.16661_none_a44e1fc257f685f6\comctl32.dll
19:48:36.0182 4528  C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7600.16661_none_a44e1fc257f685f6\comctl32.dll - ok
19:48:36.0182 4528  [ 1482CC99F7E2DA2FECF59C6A774FED0A ] C:\Windows\System32\raschap.dll
19:48:36.0182 4528  C:\Windows\System32\raschap.dll - ok
19:48:36.0197 4528  [ 4992C609A6315671463E30F6512BC022 ] C:\Windows\System32\BFE.DLL
19:48:36.0197 4528  C:\Windows\System32\BFE.DLL - ok
19:48:36.0197 4528  [ 19D20159708E152267E53B66677A4995 ] C:\Windows\System32\drivers\bowser.sys
19:48:36.0197 4528  C:\Windows\System32\drivers\bowser.sys - ok
19:48:36.0197 4528  [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] C:\Windows\System32\drivers\mpsdrv.sys
19:48:36.0197 4528  C:\Windows\System32\drivers\mpsdrv.sys - ok
19:48:36.0197 4528  [ 8F6D9A20F1FB06F0602A7D5A82840DBF ] C:\Windows\System32\netcfgx.dll
19:48:36.0197 4528  C:\Windows\System32\netcfgx.dll - ok
19:48:36.0213 4528  [ 040D62A9D8AD28922632137ACDD984F2 ] C:\Windows\System32\drivers\mrxsmb.sys
19:48:36.0213 4528  C:\Windows\System32\drivers\mrxsmb.sys - ok
19:48:36.0213 4528  [ 6A638FC4BFDDC4D9B186C28C91BD1A01 ] C:\Windows\System32\drivers\vwifimp.sys
19:48:36.0213 4528  C:\Windows\System32\drivers\vwifimp.sys - ok
19:48:36.0213 4528  [ F0067552F8F9B33D7C59403AB808A3CB ] C:\Windows\System32\drivers\mrxsmb10.sys
19:48:36.0213 4528  C:\Windows\System32\drivers\mrxsmb10.sys - ok
19:48:36.0213 4528  [ 3C142D31DE9F2F193218A53FE2632051 ] C:\Windows\System32\drivers\mrxsmb20.sys
19:48:36.0213 4528  C:\Windows\System32\drivers\mrxsmb20.sys - ok
19:48:36.0228 4528  [ AECAB449567D1846DAD63ECE49E893E3 ] C:\Windows\System32\MPSSVC.dll
19:48:36.0228 4528  C:\Windows\System32\MPSSVC.dll - ok
19:48:36.0228 4528  [ FE05D03B73000CFF476E1D29109F3A84 ] C:\Program Files\Windows Defender\MpEvMsg.dll
19:48:36.0228 4528  C:\Program Files\Windows Defender\MpEvMsg.dll - ok
19:48:36.0228 4528  [ 27026EAC8818E8A6C00A1CAD2F11D29A ] C:\Windows\System32\wkssvc.dll
19:48:36.0228 4528  C:\Windows\System32\wkssvc.dll - ok
19:48:36.0228 4528  [ F7866AF72ABBAF84B1FA5AA195378C59 ] C:\Windows\System32\drivers\fltMgr.sys
19:48:36.0228 4528  C:\Windows\System32\drivers\fltMgr.sys - ok
19:48:36.0244 4528  [ 50544D04AD845C43130B70212EC05CCD ] C:\Windows\System32\microsoft-windows-kernel-power-events.dll
19:48:36.0244 4528  C:\Windows\System32\microsoft-windows-kernel-power-events.dll - ok
19:48:36.0244 4528  [ C67F8A962B2534224D5908D16D2AD3CE ] C:\Windows\System32\wfapigp.dll
19:48:36.0244 4528  C:\Windows\System32\wfapigp.dll - ok
19:48:36.0244 4528  [ A3DB3C17EE6CAE65D53602B4E80BCCBC ] C:\Windows\System32\PSHED.DLL
19:48:36.0244 4528  C:\Windows\System32\PSHED.DLL - ok
19:48:36.0244 4528  [ B0945E538CF906BBDDC5A11C8EE868CC ] C:\Windows\System32\microsoft-windows-kernel-processor-power-events.dll
19:48:36.0244 4528  C:\Windows\System32\microsoft-windows-kernel-processor-power-events.dll - ok
19:48:36.0260 4528  [ 3927397AC60D943DAF8808AFFED582B7 ] C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
19:48:36.0260 4528  C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe - ok
19:48:36.0260 4528  [ DB6DD54A93522CA3572D04B56C5DB890 ] C:\Windows\SysWOW64\ntdll.dll
19:48:36.0260 4528  C:\Windows\SysWOW64\ntdll.dll - ok
19:48:36.0260 4528  [ 961036B3C6282C646B9ADBC8BB32C983 ] C:\Windows\System32\mscms.dll
19:48:36.0260 4528  C:\Windows\System32\mscms.dll - ok
19:48:36.0260 4528  [ 3AEAA8B561E63452C655DC0584922257 ] C:\Windows\System32\pcasvc.dll
19:48:36.0260 4528  C:\Windows\System32\pcasvc.dll - ok
19:48:36.0260 4528  [ 6313F223E817CC09AA41811DAA7F541D ] C:\Windows\System32\snmptrap.exe
19:48:36.0260 4528  C:\Windows\System32\snmptrap.exe - ok
19:48:36.0275 4528  [ 06A7422224D9865A5613710A089987DF ] C:\Windows\System32\provsvc.dll
19:48:36.0275 4528  C:\Windows\System32\provsvc.dll - ok
19:48:36.0275 4528  [ A8EDB86FC2A4D6D1285E4C70384AC35A ] C:\Windows\System32\dllhost.exe
19:48:36.0275 4528  C:\Windows\System32\dllhost.exe - ok
19:48:36.0275 4528  [ A0A2C1D812C231C9BFE119FDC68E341B ] C:\Windows\System32\IDStore.dll
19:48:36.0275 4528  C:\Windows\System32\IDStore.dll - ok
19:48:36.0275 4528  [ 5337D7D85493ADB87E6B626D03FD402E ] C:\Windows\System32\taskhost.exe
19:48:36.0275 4528  C:\Windows\System32\taskhost.exe - ok
19:48:36.0275 4528  [ 94EEAC26F57811BD1AEFC164412F7FCE ] C:\Windows\System32\PlaySndSrv.dll
19:48:36.0275 4528  C:\Windows\System32\PlaySndSrv.dll - ok
19:48:36.0291 4528  [ 7F37322A489E285CFBCC02F6A53B3F1B ] C:\Windows\System32\HotStartUserAgent.dll
19:48:36.0291 4528  C:\Windows\System32\HotStartUserAgent.dll - ok
19:48:36.0291 4528  [ 1F1CA9E99DD5BF918BE0BF30B5A42FDA ] C:\Windows\System32\MsCtfMonitor.dll
19:48:36.0291 4528  C:\Windows\System32\MsCtfMonitor.dll - ok
19:48:36.0291 4528  [ 0060718115F3590EACEB860DFFE95A0C ] C:\Windows\System32\wow64.dll
19:48:36.0291 4528  C:\Windows\System32\wow64.dll - ok
19:48:36.0291 4528  [ 865C5A432F2855F0669DCE66547CC237 ] C:\Windows\System32\wow64win.dll
19:48:36.0291 4528  C:\Windows\System32\wow64win.dll - ok
19:48:36.0291 4528  [ 3CEE7783176FA7BED592E4C14BDE241E ] C:\Windows\System32\wow64cpu.dll
19:48:36.0291 4528  C:\Windows\System32\wow64cpu.dll - ok
19:48:36.0306 4528  [ 385BE92E3106491BBB542F8F1C06C606 ] C:\Windows\SysWOW64\kernel32.dll
19:48:36.0306 4528  C:\Windows\SysWOW64\kernel32.dll - ok
19:48:36.0306 4528  [ F9D908DE6B166DAC9B89BF62FA291CE8 ] C:\Program Files\Bonjour\mdnsNSP.dll
19:48:36.0306 4528  C:\Program Files\Bonjour\mdnsNSP.dll - ok
19:48:36.0306 4528  [ 88351B29B622B30962D2FEB6CA8D860B ] C:\Windows\System32\rasadhlp.dll
19:48:36.0306 4528  C:\Windows\System32\rasadhlp.dll - ok
19:48:36.0306 4528  [ 6CEF7856A3EFAC59470F6208F0F585CE ] C:\Windows\System32\mpr.dll
19:48:36.0306 4528  C:\Windows\System32\mpr.dll - ok
19:48:36.0322 4528  [ 6E26AABE8342B18A9215CC71039AD7B4 ] C:\Windows\SysWOW64\KernelBase.dll
19:48:36.0322 4528  C:\Windows\SysWOW64\KernelBase.dll - ok
19:48:36.0322 4528  [ E8B0FFC209E504CB7E79FC24E6C085F0 ] C:\Windows\SysWOW64\user32.dll
19:48:36.0322 4528  C:\Windows\SysWOW64\user32.dll - ok
19:48:36.0322 4528  [ FBE1E0B9EF53B5BB7C36763AA6A685CF ] C:\Windows\SysWOW64\gdi32.dll
19:48:36.0322 4528  C:\Windows\SysWOW64\gdi32.dll - ok
19:48:36.0322 4528  [ 384721EF4024890092625E20CADFAF85 ] C:\Windows\SysWOW64\lpk.dll
19:48:36.0322 4528  C:\Windows\SysWOW64\lpk.dll - ok
19:48:36.0322 4528  [ 011B7A81E28C748D7631CF3D72323DD2 ] C:\Windows\SysWOW64\usp10.dll
19:48:36.0322 4528  C:\Windows\SysWOW64\usp10.dll - ok
19:48:36.0338 4528  [ F8A61B2E713309B4616D107919BDAB6E ] C:\Windows\SysWOW64\msvcrt.dll
19:48:36.0338 4528  C:\Windows\SysWOW64\msvcrt.dll - ok
19:48:36.0338 4528  [ 0C65FA8214D6F8378D1D3BA1CA46AF0A ] C:\Windows\SysWOW64\advapi32.dll
19:48:36.0338 4528  C:\Windows\SysWOW64\advapi32.dll - ok
19:48:36.0338 4528  [ 90385551B6B3793E949DF310A11D64E7 ] C:\Windows\SysWOW64\rpcrt4.dll
19:48:36.0338 4528  C:\Windows\SysWOW64\rpcrt4.dll - ok
19:48:36.0338 4528  [ CFC97F07904067A1E5FAE195D534DA3A ] C:\Windows\SysWOW64\sechost.dll
19:48:36.0338 4528  C:\Windows\SysWOW64\sechost.dll - ok
19:48:36.0353 4528  [ F09A9A1AD21FE618C4C8B0A0D830C886 ] C:\Windows\System32\msutb.dll
19:48:36.0353 4528  C:\Windows\System32\msutb.dll - ok
19:48:36.0353 4528  [ 8CFACC72081C21519676BF4AAA1A88A9 ] C:\Windows\System32\localspl.dll
19:48:36.0353 4528  C:\Windows\System32\localspl.dll - ok
19:48:36.0353 4528  [ 6F8F1376A13114CC10C0E69274F5A4DE ] C:\Windows\System32\userinit.exe
19:48:36.0353 4528  C:\Windows\System32\userinit.exe - ok
19:48:36.0353 4528  [ EF2AE43BCD46ABB13FC3E5B2B1935C73 ] C:\Windows\System32\winmm.dll
19:48:36.0353 4528  C:\Windows\System32\winmm.dll - ok
19:48:36.0353 4528  [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] C:\Windows\System32\sstpsvc.dll
19:48:36.0353 4528  C:\Windows\System32\sstpsvc.dll - ok
19:48:36.0369 4528  [ F08F6FCD09F9BE94C37ACC1B344685FF ] C:\Windows\SysWOW64\cryptbase.dll
19:48:36.0369 4528  C:\Windows\SysWOW64\cryptbase.dll - ok
19:48:36.0369 4528  [ 2CBC35E872BA9B46474890135B56DD66 ] C:\Windows\SysWOW64\shell32.dll
19:48:36.0369 4528  C:\Windows\SysWOW64\shell32.dll - ok
19:48:36.0369 4528  [ 351F62085F1D007533B4BB159C9EFDE3 ] C:\Windows\SysWOW64\sspicli.dll
19:48:36.0369 4528  C:\Windows\SysWOW64\sspicli.dll - ok
19:48:36.0369 4528  [ E2C2D8C982316C8ABF800C6CE3F28FAB ] C:\Windows\SysWOW64\ole32.dll
19:48:36.0369 4528  C:\Windows\SysWOW64\ole32.dll - ok
19:48:36.0384 4528  [ F037DB14CF6165C62F4A64D12A25B07C ] C:\Windows\SysWOW64\shlwapi.dll
19:48:36.0384 4528  C:\Windows\SysWOW64\shlwapi.dll - ok
19:48:36.0384 4528  [ 705C210EFC5564BE49EB026BD7AFF27A ] C:\Windows\SysWOW64\oleaut32.dll
19:48:36.0384 4528  C:\Windows\SysWOW64\oleaut32.dll - ok
19:48:36.0384 4528  [ 7DA089C75B1E92032D0CBE4ADE7C32BC ] C:\Windows\SysWOW64\crypt32.dll
19:48:36.0384 4528  C:\Windows\SysWOW64\crypt32.dll - ok
19:48:36.0384 4528  [ 4C04900AA8C323F5D4C316A89E976849 ] C:\Windows\SysWOW64\msasn1.dll
19:48:36.0384 4528  C:\Windows\SysWOW64\msasn1.dll - ok
19:48:36.0400 4528  [ 334A663962618F7A136FA1F80F773C5F ] C:\Windows\SysWOW64\wintrust.dll
19:48:36.0400 4528  C:\Windows\SysWOW64\wintrust.dll - ok
19:48:36.0400 4528  [ CDBE9690CF2B8409FACAD94FAC9479C9 ] C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcr90.dll
19:48:36.0400 4528  C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcr90.dll - ok
19:48:36.0400 4528  [ 0DE3069D6E09BA262856EF31C941BEFE ] C:\Windows\SysWOW64\imm32.dll
19:48:36.0400 4528  C:\Windows\SysWOW64\imm32.dll - ok
19:48:36.0416 4528  [ C9618BC9B2B0FD7C1138D8774795A79B ] C:\Windows\SysWOW64\msctf.dll
19:48:36.0416 4528  C:\Windows\SysWOW64\msctf.dll - ok
19:48:36.0416 4528  [ 3285481F5C12305CA104A6C493CA5A0B ] C:\Windows\System32\spoolss.dll
19:48:36.0416 4528  C:\Windows\System32\spoolss.dll - ok
19:48:36.0416 4528  [ 20BEB8C403C6E28C9B13644787F5177D ] C:\Windows\System32\FXSMON.dll
19:48:36.0416 4528  C:\Windows\System32\FXSMON.dll - ok
19:48:36.0416 4528  [ 33CC7FFA41F6157592E1578BD253F30E ] C:\Windows\System32\PrintIsolationProxy.dll
19:48:36.0416 4528  C:\Windows\System32\PrintIsolationProxy.dll - ok
19:48:36.0431 4528  [ 02CDEB5D8B3DD5F6770DEFFBBC0CFAD0 ] C:\Windows\System32\winspool.drv
19:48:36.0431 4528  C:\Windows\System32\winspool.drv - ok
19:48:36.0431 4528  [ 93518C6EDE0B61BCBD02BDB02BD05FEE ] C:\Windows\System32\snmpapi.dll
19:48:36.0431 4528  C:\Windows\System32\snmpapi.dll - ok
19:48:36.0431 4528  [ 32A3C8600AF124CBAAD845F13CFAE3CB ] C:\Windows\System32\tcpmon.dll
19:48:36.0431 4528  C:\Windows\System32\tcpmon.dll - ok
19:48:36.0431 4528  [ AD7C70077D4C81558E909D34EF6B995E ] C:\Windows\System32\wsnmp32.dll
19:48:36.0431 4528  C:\Windows\System32\wsnmp32.dll - ok
19:48:36.0431 4528  [ DF72A9936D0C3F517083119648814B09 ] C:\Windows\System32\usbmon.dll
19:48:36.0447 4528  C:\Windows\System32\usbmon.dll - ok
19:48:36.0447 4528  [ A1D7E3ADCDB07DDB6F423862DCB1A52B ] C:\Windows\System32\WSDMon.dll
19:48:36.0447 4528  C:\Windows\System32\WSDMon.dll - ok
19:48:36.0447 4528  [ 05FE4A30177E858B51F5E1E970FE9925 ] C:\Windows\System32\WSDApi.dll
19:48:36.0447 4528  C:\Windows\System32\WSDApi.dll - ok
19:48:36.0447 4528  [ A3EA403D2B74C5F71B7E8B3DAE92DE1E ] C:\Windows\System32\webservices.dll
19:48:36.0447 4528  C:\Windows\System32\webservices.dll - ok
19:48:36.0447 4528  [ A5299D04ED225D64CF07A568A3E1BF8C ] C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
19:48:36.0447 4528  C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe - ok
19:48:36.0462 4528  [ F162D5F5E845B9DC352DD1BAD8CEF1BC ] C:\Windows\System32\dwm.exe
19:48:36.0462 4528  C:\Windows\System32\dwm.exe - ok
19:48:36.0462 4528  [ 9D8AB964CE511AF81207DF0E1205184C ] C:\Windows\System32\dwmcore.dll
19:48:36.0462 4528  C:\Windows\System32\dwmcore.dll - ok
19:48:36.0462 4528  [ EF184066A851E7838D5BF8C8FAE66CC4 ] C:\Windows\System32\dwmredir.dll
19:48:36.0462 4528  C:\Windows\System32\dwmredir.dll - ok
19:48:36.0462 4528  [ 0B3595A4FF0B36D68E5FC67FD7D70FDC ] C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcp80.dll
19:48:36.0462 4528  C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcp80.dll - ok
19:48:36.0478 4528  [ C9564CF4976E7E96B4052737AA2492B4 ] C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcr80.dll
19:48:36.0478 4528  C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcr80.dll - ok
19:48:36.0478 4528  [ 6C63DC384A15E2AFD4A860031EF40267 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\AppleVersions.dll
19:48:36.0478 4528  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\AppleVersions.dll - ok
19:48:36.0478 4528  [ 64894527838C86454E2F378FF39FA336 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\YSCrashDump.dll
19:48:36.0478 4528  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\YSCrashDump.dll - ok
19:48:36.0478 4528  [ 702254574E7E52052DE39408457B7149 ] C:\Windows\SysWOW64\version.dll
19:48:36.0478 4528  C:\Windows\SysWOW64\version.dll - ok
19:48:36.0494 4528  [ EF8CD3C64EE9C08980D6D06CCCE46C68 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\CoreFoundation.dll
19:48:36.0494 4528  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\CoreFoundation.dll - ok
19:48:36.0494 4528  [ DAAE8A9B8C0ACC7F858454132553C30D ] C:\Windows\SysWOW64\ws2_32.dll
19:48:36.0494 4528  C:\Windows\SysWOW64\ws2_32.dll - ok
19:48:36.0494 4528  [ D8D46A439659B8B43A41B266E4646527 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\pthreadVC2.dll
19:48:36.0494 4528  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\pthreadVC2.dll - ok
19:48:36.0509 4528  [ 6377051C63D5552A311935C67E9FDFDC ] C:\Windows\SysWOW64\nsi.dll
19:48:36.0509 4528  C:\Windows\SysWOW64\nsi.dll - ok
19:48:36.0509 4528  [ 78865ABC5F5D13190F8B35BD9044714A ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\objc.dll
19:48:36.0509 4528  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\objc.dll - ok
19:48:36.0509 4528  [ DF13A51A5C591887D2EC6AE64CEED0FA ] C:\Windows\SysWOW64\wsock32.dll
19:48:36.0509 4528  C:\Windows\SysWOW64\wsock32.dll - ok
19:48:36.0525 4528  [ FF9831030678C7B6D70BAC00F68F8976 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libdispatch.dll
19:48:36.0525 4528  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libdispatch.dll - ok
19:48:36.0525 4528  [ 26A634B2E0FD87F23541AD13A503CA72 ] C:\Windows\SysWOW64\winmm.dll
19:48:36.0525 4528  C:\Windows\SysWOW64\winmm.dll - ok
19:48:36.0525 4528  [ E5B6D88B36BDDAD5039764FBF80284DD ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libicuin.dll
19:48:36.0525 4528  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libicuin.dll - ok
19:48:36.0540 4528  [ 1D75BC73585969F41BA7EF0C882DFF2B ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libicuuc.dll
19:48:36.0540 4528  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libicuuc.dll - ok
19:48:36.0540 4528  [ FC7A868DECC3AB027F29178EC8A7F252 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\icudt46.dll
19:48:36.0540 4528  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\icudt46.dll - ok
19:48:36.0540 4528  [ F6FD367C9EAAEDF90CD7A7952AE0B336 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\ASL.dll
19:48:36.0540 4528  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\ASL.dll - ok
19:48:36.0540 4528  [ C733D233B623B7FFCE5031E4B756EE26 ] C:\Windows\SysWOW64\profapi.dll
19:48:36.0540 4528  C:\Windows\SysWOW64\profapi.dll - ok
19:48:36.0556 4528  [ 4E4EDF9CA82E95BAB2977DD9F21B00F6 ] C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService_main.dll
19:48:36.0556 4528  C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService_main.dll - ok
19:48:36.0556 4528  [ 41323AB614A2B66AD77B1121D24AC895 ] C:\Windows\SysWOW64\setupapi.dll
19:48:36.0556 4528  C:\Windows\SysWOW64\setupapi.dll - ok
19:48:36.0556 4528  [ 4581716B4BF76ACFD8E167EB0B26D82A ] C:\Windows\System32\fdPnp.dll
19:48:36.0556 4528  C:\Windows\System32\fdPnp.dll - ok
19:48:36.0556 4528  [ B5055B51BAA0FD0A736A88653DA3C1C0 ] C:\Windows\System32\fundisc.dll
19:48:36.0556 4528  C:\Windows\System32\fundisc.dll - ok
19:48:36.0572 4528  [ 7EDB2BF840ECB14D6E6B11C035708719 ] C:\Windows\System32\spool\prtprocs\x64\winprint.dll
19:48:36.0572 4528  C:\Windows\System32\spool\prtprocs\x64\winprint.dll - ok
19:48:36.0572 4528  [ ABB515748212F8B5D3A9B07041E97B32 ] C:\Windows\System32\win32spl.dll
19:48:36.0572 4528  C:\Windows\System32\win32spl.dll - ok
19:48:36.0572 4528  [ 17EAB1AEA937EFFCD107EFBA94FEDB34 ] C:\Windows\System32\inetpp.dll
19:48:36.0572 4528  C:\Windows\System32\inetpp.dll - ok
19:48:36.0572 4528  [ 0862495E0C825893DB75EF44FAEA8E93 ] C:\Windows\explorer.exe
19:48:36.0572 4528  C:\Windows\explorer.exe - ok
19:48:36.0587 4528  [ BFEBE1E4B301F44CEA7C1B4021BD0264 ] C:\Windows\System32\cscapi.dll
19:48:36.0587 4528  C:\Windows\System32\cscapi.dll - ok
19:48:36.0587 4528  [ 58A0C212ED2ABE462B3A9626F5B96261 ] C:\Windows\System32\d3d10_1.dll
19:48:36.0587 4528  C:\Windows\System32\d3d10_1.dll - ok
19:48:36.0587 4528  [ AFBBC34687FA48A4928B99AF097C1EC0 ] C:\Windows\System32\d3d10_1core.dll
19:48:36.0587 4528  C:\Windows\System32\d3d10_1core.dll - ok
19:48:36.0603 4528  [ D95DB5C915C001F78709C17285109BDC ] C:\Windows\System32\dxgi.dll
19:48:36.0603 4528  C:\Windows\System32\dxgi.dll - ok
19:48:36.0603 4528  [ 2B3161BD65FBBA697E57532342450538 ] C:\Windows\System32\aticfx64.dll
19:48:36.0603 4528  C:\Windows\System32\aticfx64.dll - ok
19:48:36.0603 4528  [ 783528E08A90169C80C69BDFFFF45D8C ] C:\Windows\System32\atiuxp64.dll
19:48:36.0603 4528  C:\Windows\System32\atiuxp64.dll - ok
19:48:36.0603 4528  [ 1C27E145EC99F20BC1B13FD98165A83F ] C:\Windows\System32\ExplorerFrame.dll
19:48:36.0603 4528  C:\Windows\System32\ExplorerFrame.dll - ok
19:48:36.0618 4528  [ 762FD8804B12E1BF41D94A9C0C55BE6F ] C:\Windows\System32\atidxx64.dll
19:48:36.0618 4528  C:\Windows\System32\atidxx64.dll - ok
19:48:36.0618 4528  [ 024352FEEC9042260BB4CFB4D79A206B ] C:\Windows\System32\EhStorShell.dll
19:48:36.0618 4528  C:\Windows\System32\EhStorShell.dll - ok
19:48:36.0618 4528  [ 97BB37731F04CEBC15C4FD09C8CE5176 ] C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL
19:48:36.0618 4528  C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL - ok
19:48:36.0618 4528  [ 49E5753D923F1AC63B22D3DCB0B47E00 ] C:\Windows\System32\uDWM.dll
19:48:36.0618 4528  C:\Windows\System32\uDWM.dll - ok
19:48:36.0634 4528  [ E702ED19C332C1F12C1403D100E2F4F3 ] C:\Windows\SysWOW64\cfgmgr32.dll
19:48:36.0634 4528  C:\Windows\SysWOW64\cfgmgr32.dll - ok
19:48:36.0634 4528  [ 6C9C05D5344B9AB80E9180FC859BC45A ] C:\Windows\SysWOW64\devobj.dll
19:48:36.0634 4528  C:\Windows\SysWOW64\devobj.dll - ok
19:48:36.0634 4528  [ 062373995EAE5F0EAC9EAA9192136BFB ] C:\Windows\SysWOW64\dnssd.dll
19:48:36.0634 4528  C:\Windows\SysWOW64\dnssd.dll - ok
19:48:36.0634 4528  [ 9C0DC1DAAD14D443DD5A0D1EE78D775E ] C:\Windows\SysWOW64\userenv.dll
19:48:36.0634 4528  C:\Windows\SysWOW64\userenv.dll - ok
19:48:36.0650 4528  [ E30E5BB0DBA49EFE5BBBAFEA440CFBD9 ] C:\Windows\SysWOW64\wtsapi32.dll
19:48:36.0650 4528  C:\Windows\SysWOW64\wtsapi32.dll - ok
19:48:36.0650 4528  [ 3FD15B4611D9BDA3F8013548C0ECAECA ] C:\Windows\SysWOW64\ntmarta.dll
19:48:36.0650 4528  C:\Windows\SysWOW64\ntmarta.dll - ok
19:48:36.0650 4528  [ BFA70A99AD1434263F2DFBBA103BDEF8 ] C:\Windows\SysWOW64\Wldap32.dll
19:48:36.0650 4528  C:\Windows\SysWOW64\Wldap32.dll - ok
19:48:36.0650 4528  [ 11A41F17527ED75D6B758FDD7F4FD00D ] C:\Windows\SysWOW64\mswsock.dll
19:48:36.0650 4528  C:\Windows\SysWOW64\mswsock.dll - ok
19:48:36.0665 4528  [ EE5C8E27C37B79CB54A2FCEEED2DC262 ] C:\Windows\SysWOW64\WSHTCPIP.DLL
19:48:36.0665 4528  C:\Windows\SysWOW64\WSHTCPIP.DLL - ok
19:48:36.0665 4528  [ F48FEB7DA35821DA15E0B006DCB9A169 ] C:\Program Files (x86)\Microsoft\BingBar\7.1.391.0\BBSvc.EXE
19:48:36.0665 4528  C:\Program Files (x86)\Microsoft\BingBar\7.1.391.0\BBSvc.EXE - ok
19:48:36.0665 4528  [ 0E1B02C9CC352A1F61703B7D1A8A2C45 ] C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\MobileDevice.dll
19:48:36.0665 4528  C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\MobileDevice.dll - ok
19:48:36.0665 4528  [ B49B56B64F57699A1A663D2CF7D0A56F ] C:\Windows\SysWOW64\wininet.dll
19:48:36.0665 4528  C:\Windows\SysWOW64\wininet.dll - ok
19:48:36.0681 4528  [ D171EAA745A2C0C583CDDA13D9088EE4 ] C:\Windows\SysWOW64\iertutil.dll
19:48:36.0681 4528  C:\Windows\SysWOW64\iertutil.dll - ok
19:48:36.0681 4528  [ BE157C3800DA3010EFC48280ECF81C16 ] C:\Windows\SysWOW64\urlmon.dll
19:48:36.0681 4528  C:\Windows\SysWOW64\urlmon.dll - ok
19:48:36.0681 4528  [ A84509C6AB1C764C592F192AA89DA830 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll
19:48:36.0681 4528  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll - ok
19:48:36.0681 4528  [ CF3126A2FF45AA224FC541BC543C2D9C ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\CFNetwork.dll
19:48:36.0681 4528  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\CFNetwork.dll - ok
19:48:36.0696 4528  [ 6095266CAAF5E75F394CFD4844CC4C25 ] C:\Windows\SysWOW64\IPHLPAPI.DLL
19:48:36.0696 4528  C:\Windows\SysWOW64\IPHLPAPI.DLL - ok
19:48:36.0696 4528  [ F1317678AC2FBA9F640279290B2E2988 ] C:\Windows\SysWOW64\msi.dll
19:48:36.0696 4528  C:\Windows\SysWOW64\msi.dll - ok
19:48:36.0696 4528  [ CFF35B879D1618D42C86644C717BA947 ] C:\Windows\SysWOW64\winnsi.dll
19:48:36.0696 4528  C:\Windows\SysWOW64\winnsi.dll - ok
19:48:36.0696 4528  [ FF5688D309347F2720911D8796912834 ] C:\Windows\SysWOW64\clbcatq.dll
19:48:36.0696 4528  C:\Windows\SysWOW64\clbcatq.dll - ok



19:48:36.0712 4528  [ 6F8E3B7B70E1BBA871212940C1FBDF60 ] C:\Windows\SysWOW64\SensApi.dll
19:48:36.0712 4528  C:\Windows\SysWOW64\SensApi.dll - ok
19:48:36.0712 4528  [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD ] C:\Program Files\Bonjour\mDNSResponder.exe
19:48:36.0712 4528  C:\Program Files\Bonjour\mDNSResponder.exe - ok
19:48:36.0712 4528  [ 7321F18D1F820612ED0E9F2D4B578A7E ] C:\Windows\SysWOW64\cryptsp.dll
19:48:36.0712 4528  C:\Windows\SysWOW64\cryptsp.dll - ok
19:48:36.0712 4528  [ 4FAC55936209B4F3EB78532181C9ED5E ] C:\Windows\System32\cryptnet.dll
19:48:36.0712 4528  C:\Windows\System32\cryptnet.dll - ok
19:48:36.0712 4528  [ BAF19B633933A9FB4883D27D66C39E9A ] C:\Windows\System32\cryptsvc.dll
19:48:36.0712 4528  C:\Windows\System32\cryptsvc.dll - ok
19:48:36.0728 4528  [ 8C2BA6BEA949EE6E68385F5692BAFB94 ] C:\Windows\System32\dps.dll
19:48:36.0728 4528  C:\Windows\System32\dps.dll - ok
19:48:36.0728 4528  [ 0C043B0ABBB5E14E68906AB80365395B ] C:\Windows\System32\efssvc.dll
19:48:36.0728 4528  C:\Windows\System32\efssvc.dll - ok
19:48:36.0728 4528  [ A1C148801B4AF64847AEB9F3AD9594EF ] C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
19:48:36.0728 4528  C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe - ok
19:48:36.0728 4528  [ A261AD1FDC6D6A658A82B81AF81B215F ] C:\Windows\System32\vssapi.dll
19:48:36.0728 4528  C:\Windows\System32\vssapi.dll - ok
19:48:36.0743 4528  [ DC57BAF15064ECB79F6D2CCF352E1D88 ] C:\Windows\System32\taskschd.dll
19:48:36.0743 4528  C:\Windows\System32\taskschd.dll - ok
19:48:36.0743 4528  [ 6C0BD9D59C7E97DEE2FB3407D17BF697 ] C:\Windows\SysWOW64\RpcRtRemote.dll
19:48:36.0743 4528  C:\Windows\SysWOW64\RpcRtRemote.dll - ok
19:48:36.0743 4528  [ ED8EC63F7522DF4852147C84EC62C36A ] C:\Windows\SysWOW64\rsaenh.dll
19:48:36.0743 4528  C:\Windows\SysWOW64\rsaenh.dll - ok
19:48:36.0743 4528  [ 1C540B6FCD8A6F772650660CFB03A06A ] C:\Windows\System32\efscore.dll
19:48:36.0759 4528  C:\Windows\System32\efscore.dll - ok
19:48:36.0759 4528  [ 58283053C781AD3A579C95D7765C1FA0 ] C:\Windows\System32\efsutil.dll
19:48:36.0759 4528  C:\Windows\System32\efsutil.dll - ok
19:48:36.0759 4528  [ 287923557447D7E4BDD7E65B1F0F5428 ] C:\Windows\System32\vsstrace.dll
19:48:36.0759 4528  C:\Windows\System32\vsstrace.dll - ok
19:48:36.0759 4528  [ 60CAE1FA4888ED41B41AEE91C774E4A2 ] C:\Windows\System32\taskeng.exe
19:48:36.0759 4528  C:\Windows\System32\taskeng.exe - ok
19:48:36.0774 4528  [ 62390F4ACE9E2B63E3CA26B7F7497897 ] C:\Windows\SysWOW64\dnsapi.dll
19:48:36.0774 4528  C:\Windows\SysWOW64\dnsapi.dll - ok
19:48:36.0774 4528  [ 1727B2A2F379A32B864C096FA794AADC ] C:\Windows\System32\aepic.dll
19:48:36.0774 4528  C:\Windows\System32\aepic.dll - ok
19:48:36.0774 4528  [ D9A0CE66046D6EFA0C61BAA885CBA0A8 ] C:\Windows\System32\nlasvc.dll
19:48:36.0774 4528  C:\Windows\System32\nlasvc.dll - ok
19:48:36.0790 4528  [ 107F279517E2A04DB4AC1B1FAF1D573B ] C:\Windows\System32\ncsi.dll
19:48:36.0790 4528  C:\Windows\System32\ncsi.dll - ok
19:48:36.0790 4528  [ C6DCD1D11ED6827F05C00773C3E7053C ] C:\Windows\System32\sfc.dll
19:48:36.0790 4528  C:\Windows\System32\sfc.dll - ok
19:48:36.0790 4528  [ 895C9AB0A855547445C4181195230757 ] C:\Windows\System32\sfc_os.dll
19:48:36.0790 4528  C:\Windows\System32\sfc_os.dll - ok
19:48:36.0790 4528  [ 0BF0C2A72F2CB0BA4382C392D3E331AF ] C:\Windows\System32\winhttp.dll
19:48:36.0806 4528  C:\Windows\System32\winhttp.dll - ok
19:48:36.0806 4528  [ 805A52C5AE26C28E88FDD9BCCFE6F312 ] C:\Windows\System32\TSChannel.dll
19:48:36.0806 4528  C:\Windows\System32\TSChannel.dll - ok
19:48:36.0806 4528  [ 68769C3356B3BE5D1C732C97B9A80D6E ] C:\Windows\System32\drivers\PEAuth.sys
19:48:36.0806 4528  C:\Windows\System32\drivers\PEAuth.sys - ok
19:48:36.0806 4528  [ D233C7FEAE3FAA25F93A9E6B46815ADC ] C:\Windows\winsxs\amd64_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_08e61857a83bc251\msvcr90.dll
19:48:36.0806 4528  C:\Windows\winsxs\amd64_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_08e61857a83bc251\msvcr90.dll - ok
19:48:36.0821 4528  [ 241AF87821FDA0F5792037B779F49BE0 ] C:\Windows\winsxs\amd64_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_08e61857a83bc251\msvcp90.dll
19:48:36.0821 4528  C:\Windows\winsxs\amd64_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_08e61857a83bc251\msvcp90.dll - ok
19:48:36.0821 4528  [ 57AC86AC664CC774C861DAB2B1D1E978 ] C:\Windows\winsxs\amd64_microsoft.vc90.atl_1fc8b3b9a1e18e3b_9.0.30729.6161_none_0a1fd3a3a768b895\ATL90.dll
19:48:36.0821 4528  C:\Windows\winsxs\amd64_microsoft.vc90.atl_1fc8b3b9a1e18e3b_9.0.30729.6161_none_0a1fd3a3a768b895\ATL90.dll - ok
19:48:36.0837 4528  [ 2189278AB7A6FA4428188606D93D202B ] C:\PROGRA~1\COMMON~1\MICROS~1\OFFICE14\Cultures\OFFICE.ODF
19:48:36.0837 4528  C:\PROGRA~1\COMMON~1\MICROS~1\OFFICE14\Cultures\OFFICE.ODF - ok
19:48:36.0837 4528  [ 210FCACAF902B2CD47CF9FD17D846146 ] C:\Windows\System32\aeevts.dll
19:48:36.0837 4528  C:\Windows\System32\aeevts.dll - ok
19:48:36.0837 4528  [ 3A2BDD76E7D2A5F40A7174793D1BA794 ] C:\Windows\SysWOW64\PnkBstrA.exe
19:48:36.0837 4528  C:\Windows\SysWOW64\PnkBstrA.exe - ok
19:48:36.0837 4528  [ 843BA5F09A391D52AC1F8486C5FC3D4F ] C:\Program Files\Fujitsu\PSUtility\PSUService.exe
19:48:36.0837 4528  C:\Program Files\Fujitsu\PSUtility\PSUService.exe - ok
19:48:36.0852 4528  [ 3EA8A16169C26AFBEB544E0E48421186 ] C:\Windows\System32\drivers\secdrv.sys
19:48:36.0852 4528  C:\Windows\System32\drivers\secdrv.sys - ok
19:48:36.0852 4528  [ 53FE14BD8160EBE29EF29B0A5366F34A ] C:\PROGRA~1\MICROS~2\Office14\1033\GrooveIntlResource.dll
19:48:36.0852 4528  C:\PROGRA~1\MICROS~2\Office14\1033\GrooveIntlResource.dll - ok
19:48:36.0852 4528  [ 9B6A087317C4F5AFBF5CC8472F599BFB ] C:\Program Files\Fujitsu\PSUtility\PSUWNP.dll
19:48:36.0852 4528  C:\Program Files\Fujitsu\PSUtility\PSUWNP.dll - ok
19:48:36.0852 4528  [ 23E3C83DFF7B09A97B01A85ED8A44478 ] C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe
19:48:36.0852 4528  C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe - ok
19:48:36.0868 4528  [ 0A855F27A1E48991D14C593CB930D2B2 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\SQLite3.dll
19:48:36.0868 4528  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\SQLite3.dll - ok
19:48:36.0868 4528  [ 011285619951BC4C92FE322E08ABF050 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll
19:48:36.0868 4528  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll - ok
19:48:36.0868 4528  [ 5F917AEEEA363B8A5DC8624795CB1D60 ] C:\Windows\System32\ntshrui.dll
19:48:36.0868 4528  C:\Windows\System32\ntshrui.dll - ok
19:48:36.0868 4528  [ 1D63F4366288B8A7595397E27010FD44 ] C:\Windows\System32\IconCodecService.dll
19:48:36.0868 4528  C:\Windows\System32\IconCodecService.dll - ok
19:48:36.0884 4528  [ 2960400094498DAE47B36173286D76A0 ] C:\ProgramData\BetterSoft\OptimizerPro\OptimizerPro.exe
19:48:36.0884 4528  C:\ProgramData\BetterSoft\OptimizerPro\OptimizerPro.exe - ok
19:48:36.0884 4528  [ 2960400094498DAE47B36173286D76A0 ] C:\ProgramData\BetterSoft\SaveAs\SaveAs.exe
19:48:36.0884 4528  C:\ProgramData\BetterSoft\SaveAs\SaveAs.exe - ok
19:48:36.0884 4528  [ 2196CDBFA4B99BEEDAE300FA21DFE718 ] C:\Windows\System32\webio.dll
19:48:36.0884 4528  C:\Windows\System32\webio.dll - ok
19:48:36.0884 4528  [ 2BBF3FDB70B8965DFA0258CBAB41ECCE ] C:\Windows\System32\ssdpapi.dll
19:48:36.0884 4528  C:\Windows\System32\ssdpapi.dll - ok
19:48:36.0899 4528  [ CC9BBCFC715FBEDF7AE476106FE653E9 ] C:\Windows\SysWOW64\winhttp.dll
19:48:36.0899 4528  C:\Windows\SysWOW64\winhttp.dll - ok
19:48:36.0899 4528  [ A86A1C5DF1C662D1C75815BF4794F16D ] C:\Windows\SysWOW64\webio.dll
19:48:36.0899 4528  C:\Windows\SysWOW64\webio.dll - ok
19:48:36.0899 4528  [ 8C4F0DCC6A5100D48F9B2F950CDD220F ] C:\Program Files (x86)\Skype\Updater\Updater.exe
19:48:36.0899 4528  C:\Program Files (x86)\Skype\Updater\Updater.exe - ok
19:48:36.0899 4528  [ A543AC1F7138376D778D630A35FCBC4C ] C:\Windows\SysWOW64\psapi.dll
19:48:36.0899 4528  C:\Windows\SysWOW64\psapi.dll - ok
19:48:36.0899 4528  [ 0AF6E19D39C70844C5CAA8FB0183C36E ] C:\Windows\System32\drivers\srvnet.sys
19:48:36.0899 4528  C:\Windows\System32\drivers\srvnet.sys - ok
19:48:36.0915 4528  [ 76D078AF6F587B162D50210F761EB9ED ] C:\Windows\System32\drivers\tcpipreg.sys
19:48:36.0915 4528  C:\Windows\System32\drivers\tcpipreg.sys - ok
19:48:36.0915 4528  [ 3C1284516A62078FB68F768DE4F1A7BE ] C:\Windows\System32\sysmain.dll
19:48:36.0915 4528  C:\Windows\System32\sysmain.dll - ok
19:48:36.0915 4528  [ 52D0E33B681BD0F33FDC08812FEE4F7D ] C:\Windows\System32\wiaservc.dll
19:48:36.0915 4528  C:\Windows\System32\wiaservc.dll - ok
19:48:36.0915 4528  [ 7E7AFD841694F6AC397E99D75CEAD49D ] C:\Windows\System32\trkwks.dll
19:48:36.0915 4528  C:\Windows\System32\trkwks.dll - ok
19:48:36.0930 4528  [ 624A68CD938F855649F547CBA02C201C ] C:\Program Files\Fujitsu\updnavi\updnvsrv.exe
19:48:36.0930 4528  C:\Program Files\Fujitsu\updnavi\updnvsrv.exe - ok
19:48:36.0930 4528  [ 0364256B4A2A93A8C8CDA6B3B5A0EFF5 ] C:\Windows\System32\wiatrace.dll
19:48:36.0930 4528  C:\Windows\System32\wiatrace.dll - ok
19:48:36.0930 4528  [ 7B8F7848D3C65DD9589A4898CFF3757D ] C:\Windows\winsxs\amd64_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.4927_none_88dce9872fb18caf\msvcr80.dll
19:48:36.0930 4528  C:\Windows\winsxs\amd64_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.4927_none_88dce9872fb18caf\msvcr80.dll - ok
19:48:36.0946 4528  [ 15C0E45CF2FBD7B6954B0897B1F3BD3A ] C:\Program Files\Fujitsu\updnavi\updnvins.dll
19:48:36.0946 4528  C:\Program Files\Fujitsu\updnavi\updnvins.dll - ok
19:48:36.0946 4528  [ 19B07E7E8915D701225DA41CB3877306 ] C:\Windows\System32\wbem\WMIsvc.dll
19:48:36.0946 4528  C:\Windows\System32\wbem\WMIsvc.dll - ok
19:48:36.0946 4528  [ C02E3CE20E7776C922B5C8938350B5F1 ] C:\Windows\SysWOW64\apphelp.dll
19:48:36.0946 4528  C:\Windows\SysWOW64\apphelp.dll - ok
19:48:36.0946 4528  [ 079FC5AAA9963057548DF29F069EC406 ] C:\Windows\AppPatch\AcGenral.dll
19:48:36.0946 4528  C:\Windows\AppPatch\AcGenral.dll - ok
19:48:36.0962 4528  [ 43964FA89CCF97BA6BE34D69455AC65F ] C:\Windows\SysWOW64\uxtheme.dll
19:48:36.0962 4528  C:\Windows\SysWOW64\uxtheme.dll - ok
19:48:36.0962 4528  [ 39C5F32747B3414D1BB216FDB1DEFC58 ] C:\Windows\SysWOW64\dwmapi.dll
19:48:36.0962 4528  C:\Windows\SysWOW64\dwmapi.dll - ok
19:48:36.0962 4528  [ 85683DF1F917E4D7F6BE1A04986BF1C8 ] C:\Windows\SysWOW64\msacm32.dll
19:48:36.0962 4528  C:\Windows\SysWOW64\msacm32.dll - ok
19:48:36.0962 4528  [ 742AA02BD9FA3492C9E525BBD427D87D ] C:\Windows\SysWOW64\samcli.dll
19:48:36.0962 4528  C:\Windows\SysWOW64\samcli.dll - ok
19:48:36.0977 4528  [ 40CAEEE0EAF1B8569F7C8DF6420F2CB9 ] C:\Windows\SysWOW64\sfc.dll
19:48:36.0977 4528  C:\Windows\SysWOW64\sfc.dll - ok
19:48:36.0977 4528  [ 84799328D87B3091A3BDD251E1AD31F9 ] C:\Windows\SysWOW64\sfc_os.dll
19:48:36.0977 4528  C:\Windows\SysWOW64\sfc_os.dll - ok
19:48:36.0977 4528  [ B9A8CBCFCD3EC9D2EA4740AF347BF108 ] C:\Windows\SysWOW64\mpr.dll
19:48:36.0977 4528  C:\Windows\SysWOW64\mpr.dll - ok
19:48:36.0977 4528  [ 76548F7B818881B47D8D1AE1BE9C11F8 ] C:\Windows\System32\drivers\srv2.sys
19:48:36.0977 4528  C:\Windows\System32\drivers\srv2.sys - ok
19:48:36.0993 4528  [ FAF9BA81FB0543CB4B7EFFD24CFA815F ] C:\Windows\System32\wbemcomn.dll
19:48:36.0993 4528  C:\Windows\System32\wbemcomn.dll - ok
19:48:36.0993 4528  [ F8E058D17363EC580E4B7232778B6CB5 ] C:\Windows\System32\iphlpsvc.dll
19:48:36.0993 4528  C:\Windows\System32\iphlpsvc.dll - ok
19:48:36.0993 4528  [ 2408C0366D96BCDF63E8F1C78E4A29C5 ] C:\Windows\System32\drivers\srv.sys
19:48:36.0993 4528  C:\Windows\System32\drivers\srv.sys - ok
19:48:36.0993 4528  [ A7582A70802D5B9F28ED3940F6A3E9ED ] C:\Windows\System32\wbem\WmiDcPrv.dll
19:48:36.0993 4528  C:\Windows\System32\wbem\WmiDcPrv.dll - ok
19:48:37.0008 4528  [ A3F5E8EC1316C3E2562B82694A251C9E ] C:\Windows\System32\wbem\fastprox.dll
19:48:37.0008 4528  C:\Windows\System32\wbem\fastprox.dll - ok
19:48:37.0008 4528  [ EE26D130808D16C0E417BBBED0451B34 ] C:\Windows\System32\ntdsapi.dll
19:48:37.0008 4528  C:\Windows\System32\ntdsapi.dll - ok
19:48:37.0008 4528  [ 666A60F6F5E719856FF6254E0966EFF7 ] C:\Windows\System32\wbem\wbemprox.dll
19:48:37.0008 4528  C:\Windows\System32\wbem\wbemprox.dll - ok
19:48:37.0008 4528  [ 48A6CA43A5C921C465F70D9B42B3EF1A ] C:\Windows\System32\sqmapi.dll
19:48:37.0008 4528  C:\Windows\System32\sqmapi.dll - ok
19:48:37.0008 4528  [ 7B38D7916A7CD058C16A0A6CA5077901 ] C:\Windows\System32\wdscore.dll
19:48:37.0008 4528  C:\Windows\System32\wdscore.dll - ok
19:48:37.0024 4528  [ 0255C22D99602534F15CBB8D9B6F152F ] C:\Windows\System32\wbem\WinMgmtR.dll
19:48:37.0024 4528  C:\Windows\System32\wbem\WinMgmtR.dll - ok
19:48:37.0024 4528  [ 6B054C67AAA87843504E8E3C09102009 ] C:\Windows\System32\browser.dll
19:48:37.0024 4528  C:\Windows\System32\browser.dll - ok
19:48:37.0024 4528  [ CFEFA40DDE34659BE5211966EAD86437 ] C:\Windows\System32\netmsg.dll
19:48:37.0024 4528  C:\Windows\System32\netmsg.dll - ok
19:48:37.0024 4528  [ 81F1D04D4D0E433099365127375FD501 ] C:\Windows\System32\srvsvc.dll
19:48:37.0024 4528  C:\Windows\System32\srvsvc.dll - ok
19:48:37.0040 4528  [ 3B367397320C26DBA890B260F80D1B1B ] C:\Windows\System32\hnetcfg.dll
19:48:37.0040 4528  C:\Windows\System32\hnetcfg.dll - ok
19:48:37.0040 4528  [ 4EAE37133B78A26A84EA1649D9B21A1E ] C:\Windows\System32\clusapi.dll
19:48:37.0040 4528  C:\Windows\System32\clusapi.dll - ok
19:48:37.0040 4528  [ 836892094209E5D9CF403B4CF2829B5C ] C:\Windows\System32\sscore.dll
19:48:37.0040 4528  C:\Windows\System32\sscore.dll - ok
19:48:37.0040 4528  [ 6E03C9E362389A768E6C240933352D11 ] C:\Windows\System32\nci.dll
19:48:37.0040 4528  C:\Windows\System32\nci.dll - ok
19:48:37.0040 4528  [ 344FCC9850C3A8A3B4D3C65151AF8E4C ] C:\Windows\System32\resutils.dll
19:48:37.0040 4528  C:\Windows\System32\resutils.dll - ok
19:48:37.0055 4528  [ 3B9665D4B8C587A6014B9B8DFF5974A0 ] C:\Windows\System32\wbem\wbemcore.dll
19:48:37.0055 4528  C:\Windows\System32\wbem\wbemcore.dll - ok
19:48:37.0055 4528  [ 087D8668C71634A3A3761135ABF16EEE ] C:\Windows\System32\wbem\esscli.dll
19:48:37.0055 4528  C:\Windows\System32\wbem\esscli.dll - ok
19:48:37.0055 4528  [ 718B6F51AB7F6FE2988A36868F9AD3AB ] C:\Windows\System32\wbem\wbemsvc.dll
19:48:37.0055 4528  C:\Windows\System32\wbem\wbemsvc.dll - ok
19:48:37.0071 4528  [ 0143DB80DACFB7C2B5B7009ED9063353 ] C:\Windows\System32\wbem\wmiutils.dll
19:48:37.0071 4528  C:\Windows\System32\wbem\wmiutils.dll - ok
19:48:37.0071 4528  [ 0AB34456654C283DAA13B8D2BA21439B ] C:\Windows\System32\wbem\repdrvfs.dll
19:48:37.0071 4528  C:\Windows\System32\wbem\repdrvfs.dll - ok
19:48:37.0071 4528  [ D065BE66822847B7F127D1F90158376E ] C:\Windows\System32\appinfo.dll
19:48:37.0071 4528  C:\Windows\System32\appinfo.dll - ok
19:48:37.0071 4528  [ F7073C962C4FB7C415565DDE109DE49F ] C:\Windows\System32\npmproxy.dll
19:48:37.0071 4528  C:\Windows\System32\npmproxy.dll - ok
19:48:37.0086 4528  [ 7F0C323FE3DA28AA4AA1BDA3F575707F ] C:\Windows\System32\qmgr.dll
19:48:37.0086 4528  C:\Windows\System32\qmgr.dll - ok
19:48:37.0086 4528  [ 95F9C2976059462CBBF227F7AAB10DE9 ] C:\Windows\System32\bthserv.dll
19:48:37.0086 4528  C:\Windows\System32\bthserv.dll - ok
19:48:37.0086 4528  [ BF1FC3F79B863C914687A737C2F3D681 ] C:\Windows\System32\wdi.dll
19:48:37.0086 4528  C:\Windows\System32\wdi.dll - ok
19:48:37.0102 4528  [ 2E57DDF2880A7E52E76F41C7E96D327B ] C:\Windows\System32\wpdbusenum.dll
19:48:37.0102 4528  C:\Windows\System32\wpdbusenum.dll - ok
19:48:37.0102 4528  [ E629F1A051C82795DDFFD3E8D4855811 ] C:\Windows\System32\dimsjob.dll
19:48:37.0102 4528  C:\Windows\System32\dimsjob.dll - ok
19:48:37.0102 4528  [ CDAD3376DFF3D9AC7FDCBE2B94B0D3C8 ] C:\Windows\System32\shfolder.dll
19:48:37.0102 4528  C:\Windows\System32\shfolder.dll - ok
19:48:37.0102 4528  [ E1B22739C933BE33F53DB58C5393ADD3 ] C:\Windows\System32\Apphlpdm.dll
19:48:37.0102 4528  C:\Windows\System32\Apphlpdm.dll - ok
19:48:37.0102 4528  [ 9689A9C7F7C2A1A423CDA2C3B43FFF65 ] C:\Windows\System32\wer.dll
19:48:37.0102 4528  C:\Windows\System32\wer.dll - ok
19:48:37.0118 4528  [ BF4AC709BE5BF64F331F5D67773A0C82 ] C:\Windows\System32\perftrack.dll
19:48:37.0118 4528  C:\Windows\System32\perftrack.dll - ok
19:48:37.0118 4528  [ D9431DCF90B0253773F51FDEFE7FD42F ] C:\Windows\System32\bitsigd.dll
19:48:37.0118 4528  C:\Windows\System32\bitsigd.dll - ok
19:48:37.0118 4528  [ 4E75477E8BFA55C6F1F2688FB553F0C5 ] C:\Windows\System32\bitsperf.dll
19:48:37.0118 4528  C:\Windows\System32\bitsperf.dll - ok
19:48:37.0118 4528  [ 5DA7D8934F7AB0884A6A8FC02E8B2AA7 ] C:\Windows\System32\PortableDeviceApi.dll
19:48:37.0118 4528  C:\Windows\System32\PortableDeviceApi.dll - ok
19:48:37.0118 4528  [ AFA79C343F9D1555F7E5D5FA70BB2A14 ] C:\Windows\System32\PortableDeviceConnectApi.dll
19:48:37.0118 4528  C:\Windows\System32\PortableDeviceConnectApi.dll - ok
19:48:37.0133 4528  [ D891293880F2F00AB7BA959910300EF7 ] C:\Windows\System32\diagperf.dll
19:48:37.0133 4528  C:\Windows\System32\diagperf.dll - ok
19:48:37.0133 4528  [ 9719E3D834F5C8C43F56A93DFA497023 ] C:\Windows\System32\pnpts.dll
19:48:37.0133 4528  C:\Windows\System32\pnpts.dll - ok
19:48:37.0133 4528  [ 46863C4CC5B68EB09EA2D5EEF0F1193A ] C:\Windows\System32\radardt.dll
19:48:37.0133 4528  C:\Windows\System32\radardt.dll - ok
19:48:37.0149 4528  [ 65AF044B5570D355124DCD1E099AA98F ] C:\Windows\System32\wdiasqmmodule.dll
19:48:37.0149 4528  C:\Windows\System32\wdiasqmmodule.dll - ok
19:48:37.0149 4528  [ 4B78B431F225FD8624C5655CB1DE7B61 ] C:\Windows\System32\aelupsvc.dll
19:48:37.0149 4528  C:\Windows\System32\aelupsvc.dll - ok
19:48:37.0149 4528  [ 9E29BC11A70165635CC10D42E64CFEE1 ] C:\Windows\System32\upnp.dll
19:48:37.0149 4528  C:\Windows\System32\upnp.dll - ok
19:48:37.0149 4528  [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] C:\Windows\System32\ssdpsrv.dll
19:48:37.0149 4528  C:\Windows\System32\ssdpsrv.dll - ok
19:48:37.0164 4528  [ 6AB6D4DF10EC784CF4A66CBFAF417A11 ] C:\Windows\System32\runonce.exe
19:48:37.0164 4528  C:\Windows\System32\runonce.exe - ok
19:48:37.0164 4528  [ 169F916EFEAA44487E65305B7D2D754B ] C:\Windows\SysWOW64\runonce.exe
19:48:37.0164 4528  C:\Windows\SysWOW64\runonce.exe - ok
19:48:37.0164 4528  [ 4B8DD8541C0E26602005DD0137333615 ] C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_420fe3fa2b8113bd\comctl32.dll
19:48:37.0164 4528  C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_420fe3fa2b8113bd\comctl32.dll - ok
19:48:37.0164 4528  [ 26EAEE08CAF82AA7F03C5020F51DA541 ] C:\Windows\SysWOW64\propsys.dll
19:48:37.0164 4528  C:\Windows\SysWOW64\propsys.dll - ok
19:48:37.0180 4528  [ 86D177F43030F61A8610259A2E8F07FE ] C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL
19:48:37.0180 4528  C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL - ok
19:48:37.0180 4528  [ 4C39358EBDD2FFCD9132A30E1EC31E16 ] C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcp90.dll
19:48:37.0180 4528  C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcp90.dll - ok
19:48:37.0180 4528  [ 58A0CDABEA255616827B1C22C9994466 ] C:\Windows\System32\NapiNSP.dll
19:48:37.0180 4528  C:\Windows\System32\NapiNSP.dll - ok
19:48:37.0180 4528  [ 2E2072EB48238FCA8FBB7A9F5FABAC45 ] C:\Windows\System32\winrnr.dll
19:48:37.0180 4528  C:\Windows\System32\winrnr.dll - ok
19:48:37.0196 4528  [ 58A14C45A5CD2528F10A889E7B0C3FC2 ] C:\Windows\winsxs\x86_microsoft.vc90.atl_1fc8b3b9a1e18e3b_9.0.30729.6161_none_51cd0a7abbe4e19b\ATL90.dll
19:48:37.0196 4528  C:\Windows\winsxs\x86_microsoft.vc90.atl_1fc8b3b9a1e18e3b_9.0.30729.6161_none_51cd0a7abbe4e19b\ATL90.dll - ok
19:48:37.0196 4528  [ 613C8CE10A5FDE582BA5FA64C4D56AAA ] C:\Windows\System32\pnrpnsp.dll
19:48:37.0196 4528  C:\Windows\System32\pnrpnsp.dll - ok
19:48:37.0196 4528  [ FFC54FA19FD67DDE232CFC0A87B0B1A7 ] C:\PROGRA~2\COMMON~1\MICROS~1\OFFICE14\Cultures\OFFICE.ODF
19:48:37.0196 4528  C:\PROGRA~2\COMMON~1\MICROS~1\OFFICE14\Cultures\OFFICE.ODF - ok
19:48:37.0196 4528  [ 6CC10D9FD128069DBFE476222F097616 ] C:\Windows\SysWOW64\secur32.dll
19:48:37.0196 4528  C:\Windows\SysWOW64\secur32.dll - ok
19:48:37.0196 4528  [ 8AE6DD9A6D246004DA047F704F0CC487 ] C:\Windows\SysWOW64\cmd.exe
19:48:37.0196 4528  C:\Windows\SysWOW64\cmd.exe - ok
19:48:37.0211 4528  [ 7EB88F63D424832B774E24458DCE2049 ] C:\Windows\System32\conhost.exe
19:48:37.0211 4528  C:\Windows\System32\conhost.exe - ok
19:48:37.0211 4528  [ 326C7F76A29897A892AA7726E91C1C67 ] C:\Windows\SysWOW64\winbrand.dll
19:48:37.0211 4528  C:\Windows\SysWOW64\winbrand.dll - ok
19:48:37.0211 4528  [ 0E816EA3C5DCE94C95099E8B38E75E67 ] C:\Windows\SysWOW64\ieframe.dll
19:48:37.0211 4528  C:\Windows\SysWOW64\ieframe.dll - ok
19:48:37.0211 4528  [ 4D59A5B6EF0AF6F9FDF3D157534380AF ] C:\Windows\SysWOW64\oleacc.dll
19:48:37.0211 4528  C:\Windows\SysWOW64\oleacc.dll - ok
19:48:37.0227 4528  [ E07B77C3BDC82A024E294FB67ABFEDA0 ] C:\Windows\SysWOW64\shdocvw.dll
19:48:37.0227 4528  C:\Windows\SysWOW64\shdocvw.dll - ok
19:48:37.0227 4528  [ 178A34E5554DCE485E1262DDF027960C ] C:\Users\Jin\AppData\Local\Temp\40A12946-9567-42F4-9E70-F3F0A94E7D37.exe
19:48:37.0227 4528  C:\Users\Jin\AppData\Local\Temp\40A12946-9567-42F4-9E70-F3F0A94E7D37.exe - ok
19:48:37.0227 4528  [ 35CB97CBC3EDC463418ED4997AAB29B6 ] C:\Windows\System32\pautoenr.dll
19:48:37.0227 4528  C:\Windows\System32\pautoenr.dll - ok
19:48:37.0227 4528  [ AC5DF873913B00E554D8F553459BC431 ] C:\Windows\System32\qmgrprxy.dll
19:48:37.0227 4528  C:\Windows\System32\qmgrprxy.dll - ok
19:48:37.0227 4528  [ 11CDF138552BFEC115B60ED6DC3ACEB6 ] C:\Windows\SysWOW64\devrtl.dll
19:48:37.0227 4528  C:\Windows\SysWOW64\devrtl.dll - ok
19:48:37.0242 4528  [ B519848DFA30AE2B306576B51321D102 ] C:\Windows\System32\ie4uinit.exe
19:48:37.0242 4528  C:\Windows\System32\ie4uinit.exe - ok
19:48:37.0242 4528  [ C3E98C42EDF7EF237A4BAB91FEAC7426 ] C:\Windows\System32\iedkcs32.dll
19:48:37.0242 4528  C:\Windows\System32\iedkcs32.dll - ok
19:48:37.0242 4528  [ E3E2E9A96E6BA95D0CF0F026C7B18654 ] C:\Windows\System32\wshbth.dll
19:48:37.0242 4528  C:\Windows\System32\wshbth.dll - ok
19:48:37.0242 4528  [ 18245DC72B65D488A8B2D75A8FE088EA ] C:\Windows\System32\timedate.cpl
19:48:37.0242 4528  C:\Windows\System32\timedate.cpl - ok
19:48:37.0258 4528  [ BF591B5C2CC38314518467E883AE37C5 ] C:\Windows\SysWOW64\credssp.dll
19:48:37.0258 4528  C:\Windows\SysWOW64\credssp.dll - ok
19:48:37.0258 4528  [ 73E8667A19FEEDD856DF2695E9E511D4 ] C:\Windows\SysWOW64\wship6.dll
19:48:37.0258 4528  C:\Windows\SysWOW64\wship6.dll - ok
19:48:37.0258 4528  [ 40947436A70E0034E41123DF5A0A7702 ] C:\Program Files (x86)\Bonjour\mdnsNSP.dll
19:48:37.0258 4528  C:\Program Files (x86)\Bonjour\mdnsNSP.dll - ok
19:48:37.0258 4528  [ ED6EE83D61EBC683C2CD8E899EA6FEBE ] C:\Windows\SysWOW64\rasadhlp.dll
19:48:37.0258 4528  C:\Windows\SysWOW64\rasadhlp.dll - ok
19:48:37.0274 4528  [ 158117F3CF278F01C6F24E89E2141E81 ] C:\Windows\SysWOW64\FWPUCLNT.DLL
19:48:37.0274 4528  C:\Windows\SysWOW64\FWPUCLNT.DLL - ok
19:48:37.0274 4528  [ F146E2BA475893DD77B2370DC1211FC6 ] C:\Windows\System32\drivers\98821366.sys
19:48:37.0274 4528  C:\Windows\System32\drivers\98821366.sys - ok
19:48:37.0274 4528  [ AAA6D0DF7356BBA706BD67385A103AAB ] C:\Windows\System32\certcli.dll
19:48:37.0274 4528  C:\Windows\System32\certcli.dll - ok
19:48:37.0289 4528  [ 6EC594AB7EFA45EACDE65FD4040F53D9 ] C:\Windows\SysWOW64\riched20.dll
19:48:37.0289 4528  C:\Windows\SysWOW64\riched20.dll - ok
19:48:37.0289 4528  [ 8898C95862D03D16B2A06DB4DB6BB6B2 ] C:\Windows\SysWOW64\ExplorerFrame.dll
19:48:37.0289 4528  C:\Windows\SysWOW64\ExplorerFrame.dll - ok
19:48:37.0289 4528  [ 6E1F8165C365D35C8E3C045AF0CDD481 ] C:\Windows\SysWOW64\duser.dll
19:48:37.0289 4528  C:\Windows\SysWOW64\duser.dll - ok
19:48:37.0305 4528  [ EE06B85BC69F18826302348A2AD089E0 ] C:\Windows\SysWOW64\dui70.dll
19:48:37.0305 4528  C:\Windows\SysWOW64\dui70.dll - ok
19:48:37.0305 4528  [ 522BD073F617060AFCB9CC5707778DB1 ] C:\Windows\System32\CertEnroll.dll
19:48:37.0305 4528  C:\Windows\System32\CertEnroll.dll - ok
19:48:37.0305 4528  [ 1E4BDDBD5A63059A97063339B4F8986F ] C:\Windows\System32\actxprxy.dll
19:48:37.0305 4528  C:\Windows\System32\actxprxy.dll - ok
19:48:37.0305 4528  [ 85B45B4B285B159ACDB355FC8C1E8925 ] C:\Windows\SysWOW64\qmgrprxy.dll
19:48:37.0305 4528  C:\Windows\SysWOW64\qmgrprxy.dll - ok
19:48:37.0320 4528  [ D41FEBD098234F02485A4EA98D4730A4 ] C:\Windows\System32\ncobjapi.dll
19:48:37.0320 4528  C:\Windows\System32\ncobjapi.dll - ok
19:48:37.0320 4528  [ 82BC97E5793DEF69691AAD5AB953A200 ] C:\Windows\System32\wbem\WmiPrvSD.dll
19:48:37.0320 4528  C:\Windows\System32\wbem\WmiPrvSD.dll - ok
19:48:37.0320 4528  [ FBE8EBF528DC49B3DEB186CA9545D97E ] C:\Windows\System32\shdocvw.dll
19:48:37.0320 4528  C:\Windows\System32\shdocvw.dll - ok
19:48:37.0320 4528  [ A0A65D306A5490D2EB8E7DE66898ECFD ] C:\Windows\System32\linkinfo.dll
19:48:37.0320 4528  C:\Windows\System32\linkinfo.dll - ok
19:48:37.0336 4528  [ C91FABAA63C489C874B97A19906E901C ] C:\Windows\System32\gameux.dll
19:48:37.0336 4528  C:\Windows\System32\gameux.dll - ok
19:48:37.0336 4528  [ 46EDD0A6B42BA5D2044FA0909BE4BE95 ] C:\Windows\System32\msftedit.dll
19:48:37.0336 4528  C:\Windows\System32\msftedit.dll - ok
19:48:37.0336 4528  [ 599EBE6C7EA52B5FF9603F203E8EC080 ] C:\Windows\System32\msi.dll
19:48:37.0336 4528  C:\Windows\System32\msi.dll - ok
19:48:37.0336 4528  [ 69754747274B76E7FAF287239333D7E6 ] C:\Windows\System32\msiltcfg.dll
19:48:37.0336 4528  C:\Windows\System32\msiltcfg.dll - ok
19:48:37.0352 4528  [ 7FCAB194F01E3403C300EB034E480B36 ] C:\Windows\System32\msls31.dll
19:48:37.0352 4528  C:\Windows\System32\msls31.dll - ok
19:48:37.0352 4528  [ 17A7998CB5DA92020A291B85FF7B3681 ] C:\Program Files\Common Files\Microsoft Shared\ink\tiptsf.dll
19:48:37.0352 4528  C:\Program Files\Common Files\Microsoft Shared\ink\tiptsf.dll - ok
19:48:37.0352 4528  [ 2F407AA24101E4678B110A1FFA13F587 ] C:\Program Files\Java\jre6\bin\jusched.exe
19:48:37.0352 4528  C:\Program Files\Java\jre6\bin\jusched.exe - ok
19:48:37.0367 4528  [ A80EC6237D78811FE791B6D36BF50DDB ] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
19:48:37.0367 4528  C:\Program Files\Synaptics\SynTP\SynTPEnh.exe - ok
19:48:37.0367 4528  [ F468C806267D46B68DB7EB32FBF0A103 ] C:\Windows\System32\thumbcache.dll
19:48:37.0367 4528  C:\Windows\System32\thumbcache.dll - ok
19:48:37.0367 4528  [ 8BC7AE7E16458355508ECF5EC3A04E72 ] C:\Windows\System32\networkexplorer.dll
19:48:37.0367 4528  C:\Windows\System32\networkexplorer.dll - ok
19:48:37.0367 4528  [ 2D4717DC5B392C1D3948CB93146319D7 ] C:\Windows\System32\SynCOM.dll
19:48:37.0367 4528  C:\Windows\System32\SynCOM.dll - ok
19:48:37.0383 4528  [ DF74F19DDA37BA0A63CAA12CE48B172A ] C:\Windows\System32\SynTPAPI.dll
19:48:37.0383 4528  C:\Windows\System32\SynTPAPI.dll - ok
19:48:37.0383 4528  [ FD976A54A9897CDA0DAE4BECF7EF0436 ] C:\Program Files\Fujitsu\FDM7\FdmDaemon.exe
19:48:37.0383 4528  C:\Program Files\Fujitsu\FDM7\FdmDaemon.exe - ok
19:48:37.0383 4528  [ 4AB21A2CCC2100B27960E812CA6D5E19 ] C:\Program Files\Fujitsu\PSUtility\TrayManager.exe
19:48:37.0383 4528  C:\Program Files\Fujitsu\PSUtility\TrayManager.exe - ok
19:48:37.0383 4528  [ F9DC81DB5E2883B8058BEDB0C38D9144 ] C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
19:48:37.0383 4528  C:\Program Files\Synaptics\SynTP\SynTPHelper.exe - ok
19:48:37.0398 4528  [ D32EE82DA63D39D337D5AEEA2928B1DE ] C:\Windows\System32\consent.exe
19:48:37.0398 4528  C:\Windows\System32\consent.exe - ok
19:48:37.0398 4528  [ DD76912E8D165C68659D9875256710A3 ] C:\Windows\System32\DeviceCenter.dll
19:48:37.0398 4528  C:\Windows\System32\DeviceCenter.dll - ok
19:48:37.0398 4528  [ 6ADE8B2F40F10B26EEED5E90ECB24CAC ] C:\Program Files\Fujitsu\PSUtility\ODDEg.dll
19:48:37.0398 4528  C:\Program Files\Fujitsu\PSUtility\ODDEg.dll - ok
19:48:37.0414 4528  [ E424B3EF666B184CEE0B6871AAA8C9F6 ] C:\Windows\System32\msimg32.dll
19:48:37.0414 4528  C:\Windows\System32\msimg32.dll - ok
19:48:37.0414 4528  [ 878839122B71E8EBA63FC7715DE2A9B2 ] C:\Program Files\Fujitsu\FUJ02E3\FUJ02E3.dll
19:48:37.0414 4528  C:\Program Files\Fujitsu\FUJ02E3\FUJ02E3.dll - ok
19:48:37.0414 4528  [ 7F432A24FE9B5FA7747ADCDA4BCEFA94 ] C:\Program Files\Fujitsu\Application Panel\QuickTouch.exe
19:48:37.0414 4528  C:\Program Files\Fujitsu\Application Panel\QuickTouch.exe - ok
19:48:37.0430 4528  [ 166F443B3539E90836675F3E9FC974F0 ] C:\Program Files\Fujitsu\PSUtility\AudioEg4.dll
19:48:37.0430 4528  C:\Program Files\Fujitsu\PSUtility\AudioEg4.dll - ok
19:48:37.0430 4528  [ DF808A60C0D1CDE231AFC90C53A80B9E ] C:\Program Files\Fujitsu\Application Panel\BtnHnd.exe
19:48:37.0430 4528  C:\Program Files\Fujitsu\Application Panel\BtnHnd.exe - ok
19:48:37.0430 4528  [ 35126DDDE8241C4C4A5F15F6CDDF4434 ] C:\Windows\System32\ieframe.dll
19:48:37.0430 4528  C:\Windows\System32\ieframe.dll - ok
19:48:37.0445 4528  [ 3819AD4329303EAC88480CA16A650735 ] C:\Windows\System32\UIAnimation.dll
19:48:37.0445 4528  C:\Windows\System32\UIAnimation.dll - ok
19:48:37.0445 4528  [ 0D7CF635D9888072015EBE3B232DFB99 ] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
19:48:37.0445 4528  C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe - ok
19:48:37.0445 4528  [ 30F9BACA07F8251D7DD1805A9E919CE0 ] C:\Windows\System32\wdmaud.drv
19:48:37.0445 4528  C:\Windows\System32\wdmaud.drv - ok
19:48:37.0445 4528  [ 81D64E8D70E5FBF9F7ABF2D41154F54D ] C:\Windows\System32\AudioSes.dll
19:48:37.0445 4528  C:\Windows\System32\AudioSes.dll - ok
19:48:37.0445 4528  [ 8560FFFC8EB3A806DCD4F82252CFC8C6 ] C:\Windows\System32\ksuser.dll
19:48:37.0445 4528  C:\Windows\System32\ksuser.dll - ok
19:48:37.0461 4528  [ 9F6BB4EFA615E41542C84BF2706DE73B ] C:\Program Files\Fujitsu\Application Panel\BtnHnd.dll
19:48:37.0461 4528  C:\Program Files\Fujitsu\Application Panel\BtnHnd.dll - ok
19:48:37.0461 4528  [ 8602E6D9DAB2277CC1F899567FE70DF9 ] C:\Program Files\Fujitsu\Application Panel\BtnHndHkb.exe
19:48:37.0461 4528  C:\Program Files\Fujitsu\Application Panel\BtnHndHkb.exe - ok
19:48:37.0461 4528  [ 718997A35B0E7E6289468F84C1F61F22 ] C:\Program Files\Fujitsu\PSUtility\AudioEg5.dll
19:48:37.0461 4528  C:\Program Files\Fujitsu\PSUtility\AudioEg5.dll - ok
19:48:37.0476 4528  [ B03EFDA097BF3D48FC0FE854C622A388 ] C:\Program Files\Fujitsu\updnavi\updatenv.exe
19:48:37.0476 4528  C:\Program Files\Fujitsu\updnavi\updatenv.exe - ok
19:48:37.0476 4528  [ 10AC5CE9F78DC281A1BBD9B8CC587B8A ] C:\Windows\System32\msacm32.dll
19:48:37.0476 4528  C:\Windows\System32\msacm32.dll - ok
19:48:37.0476 4528  [ 1B7C3A37362C7B2890168C5FC61C8D9B ] C:\Windows\System32\msacm32.drv
19:48:37.0476 4528  C:\Windows\System32\msacm32.drv - ok
19:48:37.0492 4528  [ 76293467035272E94E3EACAF0733216D ] C:\Program Files\Fujitsu\PSUtility\PccMemEg.dll
19:48:37.0492 4528  C:\Program Files\Fujitsu\PSUtility\PccMemEg.dll - ok
19:48:37.0492 4528  [ 5F639198C4137075DA50E61C23963C11 ] C:\Windows\System32\drprov.dll
19:48:37.0492 4528  C:\Windows\System32\drprov.dll - ok
19:48:37.0492 4528  [ CA2A0750ED830678997695FF61B04C30 ] C:\Windows\System32\midimap.dll
19:48:37.0492 4528  C:\Windows\System32\midimap.dll - ok
19:48:37.0508 4528  [ 7273921B6DDFEFF3A8567B9800C5673A ] C:\Windows\System32\ntlanman.dll
19:48:37.0508 4528  C:\Windows\System32\ntlanman.dll - ok
19:48:37.0508 4528  [ B1CC5410DB907512DF4E632B6BE1FEB1 ] C:\Program Files\Fujitsu\updnavi\updnvcom.dll
19:48:37.0508 4528  C:\Program Files\Fujitsu\updnavi\updnvcom.dll - ok
19:48:37.0508 4528  [ 5EDBB34736DD7AC1A73CF8792A835E10 ] C:\Windows\System32\AudioEng.dll
19:48:37.0508 4528  C:\Windows\System32\AudioEng.dll - ok
19:48:37.0523 4528  [ 73A1430ABA9119A2C25892EF9C3CB7A1 ] C:\Windows\System32\davclnt.dll
19:48:37.0523 4528  C:\Windows\System32\davclnt.dll - ok
19:48:37.0523 4528  [ 4AF66F930F7B3206B6A4B6DBBC2A5745 ] C:\Program Files\Fujitsu\updnavi\updnvmbf.dll
19:48:37.0523 4528  C:\Program Files\Fujitsu\updnavi\updnvmbf.dll - ok
19:48:37.0523 4528  [ 45B24A357C801CE62052FE0CDC8BD4D2 ] C:\Windows\System32\davhlpr.dll
19:48:37.0523 4528  C:\Windows\System32\davhlpr.dll - ok
19:48:37.0539 4528  [ C1395286B822E306B4FE1568A8A77813 ] C:\Windows\System32\AUDIOKSE.dll
19:48:37.0539 4528  C:\Windows\System32\AUDIOKSE.dll - ok
19:48:37.0539 4528  [ 7445397B52E81157324A0C99CCAE052C ] C:\Windows\System32\RtkAPO64.dll
19:48:37.0539 4528  C:\Windows\System32\RtkAPO64.dll - ok
19:48:37.0539 4528  [ 70F24C7F3A4157B00162153D2B60F307 ] C:\Program Files\Fujitsu\PSUtility\LanEg.dll
19:48:37.0539 4528  C:\Program Files\Fujitsu\PSUtility\LanEg.dll - ok
19:48:37.0539 4528  [ 6F40D6FB05E0C1E5402812B426971AF0 ] C:\Windows\System32\wbem\wbemess.dll
19:48:37.0539 4528  C:\Windows\System32\wbem\wbemess.dll - ok
19:48:37.0539 4528  [ 79AFFC7FEEA9CD2FEFEA5EF3B631A02C ] C:\Windows\System32\ndiscapCfg.dll
19:48:37.0539 4528  C:\Windows\System32\ndiscapCfg.dll - ok
19:48:37.0554 4528  [ 3D6AF45673C4B31CDECD7F80AF09D443 ] C:\Windows\System32\rascfg.dll
19:48:37.0554 4528  C:\Windows\System32\rascfg.dll - ok
19:48:37.0554 4528  [ 114429A77D935053E13A9BF98A8B8CA1 ] C:\Windows\System32\mprapi.dll
19:48:37.0554 4528  C:\Windows\System32\mprapi.dll - ok
19:48:37.0554 4528  [ 1CF21800E337F4039AAD4C94B4280EE4 ] C:\Windows\System32\mprmsg.dll
19:48:37.0554 4528  C:\Windows\System32\mprmsg.dll - ok
19:48:37.0570 4528  [ B837D1528CE2E3CB79F09496BC08DDC6 ] C:\Windows\System32\SensApi.dll
19:48:37.0570 4528  C:\Windows\System32\SensApi.dll - ok
19:48:37.0570 4528  [ 36DEAF955CF8C1EEDF6C29605D1CA1AD ] C:\Program Files\Fujitsu\Application Panel\BtnHndHkb.dll
19:48:37.0570 4528  C:\Program Files\Fujitsu\Application Panel\BtnHndHkb.dll - ok
19:48:37.0570 4528  [ 6F3C559B82F2912354BE5B098744CC8C ] C:\Windows\System32\WMALFXGFXDSP.dll
19:48:37.0570 4528  C:\Windows\System32\WMALFXGFXDSP.dll - ok
19:48:37.0570 4528  [ ED041CB2FABD516153635000C3BC385E ] C:\Windows\winsxs\amd64_microsoft.vc80.mfc_1fc8b3b9a1e18e3b_8.0.50727.4053_none_8444db7d32915e4c\mfc80.dll
19:48:37.0570 4528  C:\Windows\winsxs\amd64_microsoft.vc80.mfc_1fc8b3b9a1e18e3b_8.0.50727.4053_none_8444db7d32915e4c\mfc80.dll - ok
19:48:37.0570 4528  [ 54B5DCD55B223BC5DF50B82E1E9E86B1 ] C:\Windows\System32\mfplat.dll
19:48:37.0586 4528  C:\Windows\System32\mfplat.dll - ok
19:48:37.0586 4528  [ 3E950E5100C1466F4276F8053B3FBD7C ] C:\Program Files\Fujitsu\PSUtility\ModemVNEg.dll
19:48:37.0586 4528  C:\Program Files\Fujitsu\PSUtility\ModemVNEg.dll - ok
19:48:37.0586 4528  [ 04440D61505341566554E5C585E2BA8D ] C:\Program Files\Fujitsu\PSUtility\1394Eg.dll
19:48:37.0586 4528  C:\Program Files\Fujitsu\PSUtility\1394Eg.dll - ok
19:48:37.0586 4528  [ CC32D2531B80F193786CD962617172B7 ] C:\Program Files\Fujitsu\PSUtility\LcdEg.dll
19:48:37.0586 4528  C:\Program Files\Fujitsu\PSUtility\LcdEg.dll - ok
19:48:37.0601 4528  [ 8974CB278E234C772AC4C443BB41D2BE ] C:\Program Files\Fujitsu\PSUtility\LcdTpcEg.dll
19:48:37.0601 4528  C:\Program Files\Fujitsu\PSUtility\LcdTpcEg.dll - ok
19:48:37.0601 4528  [ 9D1264ADB572AE8F903D615A25C71D8D ] C:\Program Files\Fujitsu\PSUtility\RefrateEg.dll
19:48:37.0601 4528  C:\Program Files\Fujitsu\PSUtility\RefrateEg.dll - ok
19:48:37.0601 4528  [ 1FCD619D8542A248D4E1FF72FFB0E56B ] C:\Windows\System32\tcpipcfg.dll
19:48:37.0601 4528  C:\Windows\System32\tcpipcfg.dll - ok
19:48:37.0601 4528  [ B8CE1A8B419CAD02B21E81DAE29DA301 ] C:\Windows\System32\igfxext.exe
19:48:37.0601 4528  C:\Windows\System32\igfxext.exe - ok
19:48:37.0601 4528  [ 61047A4B7DD560F535B2530BAB46CDE0 ] C:\Windows\System32\igfxexps.dll
19:48:37.0601 4528  C:\Windows\System32\igfxexps.dll - ok
19:48:37.0617 4528  [ 77AC824F1393D17141BA177AF69DF446 ] C:\Program Files\Fujitsu\PSUtility\HddEg.dll
19:48:37.0617 4528  C:\Program Files\Fujitsu\PSUtility\HddEg.dll - ok
19:48:37.0617 4528  [ 9BEF7CC2CC39916B5EA7FDC5FDC43BF4 ] C:\Program Files\Fujitsu\FDM7\FdmCom.exe
19:48:37.0617 4528  C:\Program Files\Fujitsu\FDM7\FdmCom.exe - ok
19:48:37.0617 4528  [ DF608BDB810684DF278BA5E0C38C8885 ] C:\Windows\AutoKMS.exe
19:48:37.0617 4528  C:\Windows\AutoKMS.exe - ok
19:48:37.0617 4528  [ DB367E8C8F46C26A05BA982715CC0DB5 ] C:\Windows\System32\TiltWheelMouse.exe
19:48:37.0617 4528  C:\Windows\System32\TiltWheelMouse.exe - ok
19:48:37.0632 4528  [ 64D757051B5B273E55C93E4503EA4F3E ] C:\Windows\System32\wbem\WmiPrvSE.exe
19:48:37.0632 4528  C:\Windows\System32\wbem\WmiPrvSE.exe - ok
19:48:37.0632 4528  [ 031C6782F2D50336FC2C72F8D14A4C13 ] C:\Windows\System32\wbem\wmiprov.dll
19:48:37.0632 4528  C:\Windows\System32\wbem\wmiprov.dll - ok
19:48:37.0632 4528  [ 9110FFAD124283F37D38771BB60556AF ] C:\Windows\System32\dsound.dll
19:48:37.0632 4528  C:\Windows\System32\dsound.dll - ok
19:48:37.0648 4528  [ 263E9A047D17CD50BAA9D3C02910D18D ] C:\Windows\System32\oledlg.dll
19:48:37.0648 4528  C:\Windows\System32\oledlg.dll - ok
19:48:37.0648 4528  [ 45EB63BEC50D0945312A2B6B0B94168F ] C:\Windows\System32\RtkCfg64.dll
19:48:37.0648 4528  C:\Windows\System32\RtkCfg64.dll - ok
19:48:37.0648 4528  [ 4928E627F2D2486A6AC2222B1AB59FDE ] C:\Program Files\Fujitsu\FDM7\EngineWin7Com.dll
19:48:37.0648 4528  C:\Program Files\Fujitsu\FDM7\EngineWin7Com.dll - ok
19:48:37.0648 4528  [ 60CC15392FF14DCB9C29C69B3233741B ] C:\Windows\System32\stobject.dll
19:48:37.0648 4528  C:\Windows\System32\stobject.dll - ok
19:48:37.0648 4528  [ 86B6AC0FD2881B3D20B80F51C7152AE0 ] C:\Windows\System32\batmeter.dll
19:48:37.0648 4528  C:\Windows\System32\batmeter.dll - ok
19:48:37.0664 4528  [ EA42F79A76F4795E0930FB1E9FFFA5CF ] C:\Windows\winsxs\amd64_microsoft.vc80.mfc_1fc8b3b9a1e18e3b_8.0.50727.4053_none_8444db7d32915e4c\mfc80u.dll
19:48:37.0664 4528  C:\Windows\winsxs\amd64_microsoft.vc80.mfc_1fc8b3b9a1e18e3b_8.0.50727.4053_none_8444db7d32915e4c\mfc80u.dll - ok
19:48:37.0664 4528  [ 651F169718CC46C8A9264880C538D5FF ] C:\Windows\System32\prnfldr.dll
19:48:37.0664 4528  C:\Windows\System32\prnfldr.dll - ok
19:48:37.0664 4528  [ DFCC241E0B5CF2BE563AD5B1AB4E8842 ] C:\Program Files\Fujitsu\updnavi\updnvcma.dll
19:48:37.0664 4528  C:\Program Files\Fujitsu\updnavi\updnvcma.dll - ok
19:48:37.0679 4528  [ 93718DD03F2B2401878788E3FB8490BB ] C:\Program Files\Fujitsu\updnavi\updnvdec.dll
19:48:37.0679 4528  C:\Program Files\Fujitsu\updnavi\updnvdec.dll - ok
19:48:37.0679 4528  [ 0CE0B8156FB1B461408A7162913DAE15 ] C:\Windows\winsxs\amd64_microsoft.vc80.mfcloc_1fc8b3b9a1e18e3b_8.0.50727.4053_none_bc1d1e5b0be08790\mfc80ENU.dll
19:48:37.0679 4528  C:\Windows\winsxs\amd64_microsoft.vc80.mfcloc_1fc8b3b9a1e18e3b_8.0.50727.4053_none_bc1d1e5b0be08790\mfc80ENU.dll - ok
19:48:37.0679 4528  [ 913C2E4A03201644FC986EDEB5F8A390 ] C:\Windows\System32\DXP.dll
19:48:37.0679 4528  C:\Windows\System32\DXP.dll - ok
19:48:37.0679 4528  [ 2BC7C9FD0A9F2C9AFC373F3AD1EE3891 ] C:\Windows\System32\Syncreg.dll
19:48:37.0679 4528  C:\Windows\System32\Syncreg.dll - ok
19:48:37.0679 4528  [ EB81BB4B9297D561D2C0788E2E0370FA ] C:\Program Files\Fujitsu\updnavi\updnvres.dll
19:48:37.0679 4528  C:\Program Files\Fujitsu\updnavi\updnvres.dll - ok
19:48:37.0695 4528  [ C836175870E00ACC546066632E15BD10 ] C:\Windows\ehome\ehSSO.dll
19:48:37.0695 4528  C:\Windows\ehome\ehSSO.dll - ok
19:48:37.0695 4528  [ 61E02CC3184B63FAFE0B83EAC8B3B8EF ] C:\Windows\SysWOW64\winspool.drv
19:48:37.0695 4528  C:\Windows\SysWOW64\winspool.drv - ok
19:48:37.0695 4528  [ 66920354B984D4A3848A84B4E66745EA ] C:\Windows\System32\netshell.dll
19:48:37.0695 4528  C:\Windows\System32\netshell.dll - ok
19:48:37.0695 4528  [ 8FC6C4EE0A2D3EBAA70FA38F99141BCE ] C:\Program Files\Windows Sidebar\sidebar.exe
19:48:37.0695 4528  C:\Program Files\Windows Sidebar\sidebar.exe - ok
19:48:37.0710 4528  [ E7368F0A8D19445EAF5C5D0DBB8B8DAB ] C:\Windows\System32\AltTab.dll
19:48:37.0710 4528  C:\Windows\System32\AltTab.dll - ok
19:48:37.0710 4528  [ 2A3FB4C98F139038E23330D2439DB8A4 ] C:\Users\Jin\AppData\Local\Facebook\Update\FacebookUpdate.exe
19:48:37.0710 4528  C:\Users\Jin\AppData\Local\Facebook\Update\FacebookUpdate.exe - ok
19:48:37.0710 4528  [ AB01C36BCC34CCFE5B0BB5FFB2605135 ] C:\Windows\System32\WPDShServiceObj.dll
19:48:37.0710 4528  C:\Windows\System32\WPDShServiceObj.dll - ok
19:48:37.0710 4528  [ 4F3CD1C59EA71401E155C432BCECE180 ] C:\Windows\System32\PortableDeviceTypes.dll
19:48:37.0710 4528  C:\Windows\System32\PortableDeviceTypes.dll - ok
19:48:37.0726 4528  [ 8CD2A697B18069A62A035E756E51E934 ] C:\Windows\System32\SearchIndexer.exe
19:48:37.0726 4528  C:\Windows\System32\SearchIndexer.exe - ok
19:48:37.0726 4528  [ FD4F95ABDE5603478C929B6CB0BDCFFF ] C:\Windows\System32\pnidui.dll
19:48:37.0726 4528  C:\Windows\System32\pnidui.dll - ok
19:48:37.0726 4528  [ BD03C64C4B1F34D1F330BF6C4AC8113D ] C:\Windows\System32\QUTIL.DLL
19:48:37.0726 4528  C:\Windows\System32\QUTIL.DLL - ok
19:48:37.0726 4528  [ 61B2873C02ECBF86CD6455A40F24CE33 ] C:\Windows\System32\msxml3.dll
19:48:37.0726 4528  C:\Windows\System32\msxml3.dll - ok
19:48:37.0726 4528  [ 14DEB733ACB08A71CC0783ED02FF1F8D ] C:\Windows\System32\mshtml.dll
19:48:37.0726 4528  C:\Windows\System32\mshtml.dll - ok
19:48:37.0742 4528  [ 2C5B8A680A90E96B1EC0D6DA0505E685 ] C:\Windows\System32\srchadmin.dll
19:48:37.0742 4528  C:\Windows\System32\srchadmin.dll - ok
19:48:37.0742 4528  [ 8BC00C736E67A75D936E5B440917359B ] C:\Windows\System32\ActionCenter.dll
19:48:37.0742 4528  C:\Windows\System32\ActionCenter.dll - ok
19:48:37.0742 4528  [ BD713579A87D698E1F2158CE10E48130 ] C:\Program Files (x86)\McAfee Security Scan\3.0.318\SSScheduler.exe
19:48:37.0742 4528  C:\Program Files (x86)\McAfee Security Scan\3.0.318\SSScheduler.exe - ok
19:48:37.0742 4528  [ DB1976563498431B55D1A5D6F0548663 ] C:\Users\Jin\AppData\Local\Facebook\Update\1.2.205.0\goopdate.dll
19:48:37.0742 4528  C:\Users\Jin\AppData\Local\Facebook\Update\1.2.205.0\goopdate.dll - ok
19:48:37.0742 4528  [ 5DE691884C240227B733CC18BBFCA3D8 ] C:\Windows\SysWOW64\netapi32.dll
19:48:37.0742 4528  C:\Windows\SysWOW64\netapi32.dll - ok
19:48:37.0757 4528  [ C6BB27D9A8AC13D4A44486F528B5C884 ] C:\Windows\SysWOW64\netutils.dll
19:48:37.0757 4528  C:\Windows\SysWOW64\netutils.dll - ok
19:48:37.0757 4528  [ 89D840773C9C4358A5031DCC860449EC ] C:\Windows\SysWOW64\srvcli.dll
19:48:37.0757 4528  C:\Windows\SysWOW64\srvcli.dll - ok
19:48:37.0757 4528  [ 7AD12703039056D2A0815F85960E1FA1 ] C:\Windows\SysWOW64\wkscli.dll
19:48:37.0757 4528  C:\Windows\SysWOW64\wkscli.dll - ok
19:48:37.0757 4528  [ 79C7CFAEA6879A8C1A1E8B5FFE8983AA ] C:\Windows\SysWOW64\dbghelp.dll
19:48:37.0757 4528  C:\Windows\SysWOW64\dbghelp.dll - ok
19:48:37.0773 4528  [ 0089563F324FA784DA849D6A636141E0 ] C:\Windows\SysWOW64\mstask.dll
19:48:37.0773 4528  C:\Windows\SysWOW64\mstask.dll - ok
19:48:37.0773 4528  [ DD89539FB4AE7FC9E5026AD8BEE73880 ] C:\Program Files (x86)\Fujitsu\FUJ02E3\FUJ02E3.exe
19:48:37.0773 4528  C:\Program Files (x86)\Fujitsu\FUJ02E3\FUJ02E3.exe - ok
19:48:37.0773 4528  [ 30DBD9CB0156FBC5EE9D76E32FCE769D ] C:\Program Files (x86)\Fujitsu\Fujitsu Hotkey Utility\IndicatorUty.exe
19:48:37.0773 4528  C:\Program Files (x86)\Fujitsu\Fujitsu Hotkey Utility\IndicatorUty.exe - ok
19:48:37.0773 4528  [ D3EAD1CF16BA729A7F7C9A5D94AA7C05 ] C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7600.16661_none_ebfb56996c72aefc\comctl32.dll
19:48:37.0773 4528  C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7600.16661_none_ebfb56996c72aefc\comctl32.dll - ok
19:48:37.0773 4528  [ F8F532C7509C3238C9827BAE861A48D7 ] C:\Windows\System32\tquery.dll
19:48:37.0773 4528  C:\Windows\System32\tquery.dll - ok
19:48:37.0788 4528  [ E58454F553DA9FD3A115EA7DBD3C7452 ] C:\Program Files (x86)\Fujitsu\Fujitsu Hotkey Utility\IUVOLCL.dll
19:48:37.0788 4528  C:\Program Files (x86)\Fujitsu\Fujitsu Hotkey Utility\IUVOLCL.dll - ok
19:48:37.0788 4528  [ AE5FF948400A51B040F999BF04290373 ] C:\Windows\SysWOW64\winsta.dll
19:48:37.0788 4528  C:\Windows\SysWOW64\winsta.dll - ok
19:48:37.0788 4528  [ D6D9D05BAA8F0F3B6ACD9743A7D11708 ] C:\Program Files (x86)\Fujitsu\Fujitsu Hotkey Utility\VFuj02b1.dll
19:48:37.0788 4528  C:\Program Files (x86)\Fujitsu\Fujitsu Hotkey Utility\VFuj02b1.dll - ok
19:48:37.0788 4528  [ C5B0324DB461559ADD070E632A6919FA ] C:\Windows\SysWOW64\wbem\wbemprox.dll
19:48:37.0788 4528  C:\Windows\SysWOW64\wbem\wbemprox.dll - ok
19:48:37.0788 4528  [ 6240E09501B0CEFFB92E1A01C9837EAF ] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe
19:48:37.0788 4528  C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe - ok
19:48:37.0804 4528  [ 4EFCDF3DB1BBA69C09622991280C4ACB ] C:\Program Files (x86)\CyberLink\YouCam\MUITransfer\MUIStartMenu.exe
19:48:37.0804 4528  C:\Program Files (x86)\CyberLink\YouCam\MUITransfer\MUIStartMenu.exe - ok
19:48:37.0804 4528  [ 887B8798EB5DA8C587BBF603DE0D35DA ] C:\Windows\SysWOW64\atiadlxy.dll
19:48:37.0804 4528  C:\Windows\SysWOW64\atiadlxy.dll - ok
19:48:37.0804 4528  [ E7704CBF568815C1CAA6E513387BD3F2 ] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
19:48:37.0804 4528  C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe - ok
19:48:37.0804 4528  [ 96F3F676B4D0DF4DA9C4081358C4662F ] C:\Windows\SysWOW64\wbemcomn.dll
19:48:37.0804 4528  C:\Windows\SysWOW64\wbemcomn.dll - ok
19:48:37.0804 4528  [ 776AE0564F8B1C282E331FD95A1BDC5F ] C:\Windows\SysWOW64\wbem\wbemsvc.dll
19:48:37.0804 4528  C:\Windows\SysWOW64\wbem\wbemsvc.dll - ok
19:48:37.0820 4528  [ 3CB07566302BCEEB898DE270A0BEC175 ] C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
19:48:37.0820 4528  C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe - ok
19:48:37.0820 4528  [ 1CEDFE91F527858CACA1B08B04666BC0 ] C:\Windows\SysWOW64\wbem\fastprox.dll
19:48:37.0820 4528  C:\Windows\SysWOW64\wbem\fastprox.dll - ok
19:48:37.0820 4528  [ E3E811471DE781900FF21C1FD84E941E ] C:\Windows\SysWOW64\ntdsapi.dll
19:48:37.0820 4528  C:\Windows\SysWOW64\ntdsapi.dll - ok
19:48:37.0820 4528  [ CB3E879E6110EBBCB1B5DD373E9B5DCB ] C:\Program Files (x86)\Fujitsu\Fujitsu Hotkey Utility\BrightMgr.dll
19:48:37.0820 4528  C:\Program Files (x86)\Fujitsu\Fujitsu Hotkey Utility\BrightMgr.dll - ok
19:48:37.0835 4528  [ C26B09276755E0698B31CF0BAE0BF182 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe
19:48:37.0835 4528  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe - ok
19:48:37.0835 4528  [ A223CF703E28CBD7E9E7982141FA403C ] C:\Windows\SysWOW64\comdlg32.dll
19:48:37.0835 4528  C:\Windows\SysWOW64\comdlg32.dll - ok
19:48:37.0835 4528  [ 12DBA51A6D1126E88F78D79AE0F7600F ] C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AcroRd32.exe
19:48:37.0835 4528  C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AcroRd32.exe - ok
19:48:37.0835 4528  [ 58B8702C20DE211D1FCB248D2FDD71D1 ] C:\Program Files (x86)\Adobe\Reader 11.0\Reader\reader_sl.exe
19:48:37.0835 4528  C:\Program Files (x86)\Adobe\Reader 11.0\Reader\reader_sl.exe - ok
19:48:37.0835 4528  [ E4401CF27225C1D6E664E86195978562 ] C:\Program Files (x86)\iTunes\iTunesHelper.exe
19:48:37.0835 4528  C:\Program Files (x86)\iTunes\iTunesHelper.exe - ok
19:48:37.0851 4528  [ 72AB6633E9B39EC7FEBEDF083A9061E5 ] C:\Windows\System32\mscoree.dll
19:48:37.0851 4528  C:\Windows\System32\mscoree.dll - ok
19:48:37.0851 4528  [ C85ECCBAA179719E658FFDBF99221E1E ] C:\Program Files (x86)\iTunes\iTunesHelper.dll
19:48:37.0851 4528  C:\Program Files (x86)\iTunes\iTunesHelper.dll - ok
19:48:37.0851 4528  [ BC83108B18756547013ED443B8CDB31B ] C:\Windows\SysWOW64\msvcp100.dll
19:48:37.0851 4528  C:\Windows\SysWOW64\msvcp100.dll - ok
19:48:37.0851 4528  [ AA794B099F776B37ACCDEAD00E0FBFC9 ] C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscoreei.dll
19:48:37.0851 4528  C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscoreei.dll - ok
19:48:37.0866 4528  [ B701CD6DC1659244DE8C1A4C70758F61 ] C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorwks.dll
19:48:37.0866 4528  C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorwks.dll - ok
19:48:37.0866 4528  [ 814A169C40B55178BD8E1F79D1ADA649 ] C:\Program Files (x86)\iTunes\iTunesHelper.Resources\iTunesHelper.dll
19:48:37.0866 4528  C:\Program Files (x86)\iTunes\iTunesHelper.Resources\iTunesHelper.dll - ok
19:48:37.0866 4528  [ 9DF319F1C2D4B80D8CE8214EA4899ADF ] C:\Program Files (x86)\iTunes\iTunesHelper.Resources\en.lproj\iTunesHelperLocalized.dll
19:48:37.0866 4528  C:\Program Files (x86)\iTunes\iTunesHelper.Resources\en.lproj\iTunesHelperLocalized.dll - ok
19:48:37.0866 4528  [ 5112FBD9885D79A9FC73BDE9B1EF9334 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon_main.dll
19:48:37.0866 4528  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon_main.dll - ok
19:48:37.0866 4528  [ 0E37FBFA79D349D672456923EC5FBBE3 ] C:\Windows\SysWOW64\msvcr100.dll
19:48:37.0866 4528  C:\Windows\SysWOW64\msvcr100.dll - ok
19:48:37.0882 4528  [ 1ACBA585D47FB69C12F26074517EFE5A ] C:\Program Files (x86)\Ask.com\Updater\Updater.exe
19:48:37.0882 4528  C:\Program Files (x86)\Ask.com\Updater\Updater.exe - ok
19:48:37.0882 4528  [ BA4A19DE93FBDFE6DB5F0EBC99732A06 ] C:\Windows\System32\mssrch.dll
19:48:37.0882 4528  C:\Windows\System32\mssrch.dll - ok
19:48:37.0882 4528  [ 12916E0642E92561C98B18A2A2D01B14 ] C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
19:48:37.0882 4528  C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe - ok
19:48:37.0882 4528  [ 2C64AF297F12582BD95D7D94C18E464C ] C:\Windows\System32\esent.dll
19:48:37.0882 4528  C:\Windows\System32\esent.dll - ok
19:48:37.0898 4528  [ 3121A79D13A61562BE9CC902CD46B542 ] C:\Windows\System32\msidle.dll
19:48:37.0898 4528  C:\Windows\System32\msidle.dll - ok
19:48:37.0898 4528  [ 847D3AE376C0817161A14A82C8922A9E ] C:\Windows\System32\netman.dll
19:48:37.0898 4528  C:\Windows\System32\netman.dll - ok
19:48:37.0898 4528  [ ACE1BB07E0377E37A2C514CD2EC119B1 ] C:\Windows\System32\mssprxy.dll
19:48:37.0898 4528  C:\Windows\System32\mssprxy.dll - ok
19:48:37.0898 4528  [ C9FB9038B15036CA28CF0B4BE2BED9BD ] C:\Windows\System32\en-US\tquery.dll.mui
19:48:37.0898 4528  C:\Windows\System32\en-US\tquery.dll.mui - ok
19:48:37.0898 4528  [ C746F3BF98E92FB137B5BD2B8B5925BD ] C:\Windows\System32\FXSST.dll
19:48:37.0898 4528  C:\Windows\System32\FXSST.dll - ok
19:48:37.0913 4528  [ 34E6D8C67E7FD7C917BECFECA326B168 ] C:\Windows\System32\FXSAPI.dll
19:48:37.0913 4528  C:\Windows\System32\FXSAPI.dll - ok
19:48:37.0913 4528  [ C8E8B8239FCF17BEA10E751BE5854631 ] C:\Windows\System32\FXSRESM.dll
19:48:37.0913 4528  C:\Windows\System32\FXSRESM.dll - ok
19:48:37.0913 4528  [ D2155709E336C3BC15729EB87FEC6064 ] C:\Windows\System32\rasdlg.dll
19:48:37.0913 4528  C:\Windows\System32\rasdlg.dll - ok
19:48:37.0913 4528  [ BB68579E181956E37EB11F9083C01CF3 ] C:\Windows\System32\dot3api.dll
19:48:37.0913 4528  C:\Windows\System32\dot3api.dll - ok
19:48:37.0929 4528  [ 357BE883C5236BFC7341CB9E82308908 ] C:\Windows\System32\wlanapi.dll
19:48:37.0929 4528  C:\Windows\System32\wlanapi.dll - ok
19:48:37.0929 4528  [ E4FCA0F99A41E460C84016DEFD31E6EF ] C:\Windows\System32\wlanhlp.dll
19:48:37.0929 4528  C:\Windows\System32\wlanhlp.dll - ok
19:48:37.0929 4528  [ 6699A112A3BDC9B52338512894EBA9D6 ] C:\Program Files\Windows Media Player\wmpnscfg.exe
19:48:37.0929 4528  C:\Program Files\Windows Media Player\wmpnscfg.exe - ok
19:48:37.0929 4528  [ 0470997A5ADC2FCDDCB3461D92073FAA ] C:\Windows\winsxs\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7600.17007_none_72f44f3186198a88\GdiPlus.dll
19:48:37.0929 4528  C:\Windows\winsxs\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7600.17007_none_72f44f3186198a88\GdiPlus.dll - ok
19:48:37.0944 4528  [ B3CE0951E3C1EA3C733573C472EE85F9 ] C:\Windows\System32\msimtf.dll
19:48:37.0944 4528  C:\Windows\System32\msimtf.dll - ok
19:48:37.0944 4528  [ F3500B8809AC8642AF9C51B80B1C946C ] C:\Windows\System32\jscript9.dll
19:48:37.0944 4528  C:\Windows\System32\jscript9.dll - ok
19:48:37.0944 4528  [ AB781C0E4C09E08F464081D17C0F6184 ] C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\iTunesMobileDevice.dll
19:48:37.0944 4528  C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\iTunesMobileDevice.dll - ok
19:48:37.0944 4528  [ 18AB2E5A40064ED5F7791AC5946A90F3 ] C:\Windows\SysWOW64\msimg32.dll
19:48:37.0944 4528  C:\Windows\SysWOW64\msimg32.dll - ok
19:48:37.0960 4528  [ 5DA219F57A9076FB6FBD3C9C3713A672 ] C:\Windows\System32\WWanAPI.dll
19:48:37.0960 4528  C:\Windows\System32\WWanAPI.dll - ok
19:48:37.0960 4528  [ 62C7AACC746C9723468A8F2169ED3E85 ] C:\Windows\System32\wwapi.dll
19:48:37.0960 4528  C:\Windows\System32\wwapi.dll - ok
19:48:37.0960 4528  [ D607B2F1BEE3992AA6C2C92C0A2F0855 ] C:\Windows\System32\FXSSVC.exe
19:48:37.0960 4528  C:\Windows\System32\FXSSVC.exe - ok
19:48:37.0960 4528  [ 0B9F7D42D745038437FAE70D97F9AD5A ] C:\Windows\System32\QAGENT.DLL
19:48:37.0960 4528  C:\Windows\System32\QAGENT.DLL - ok
19:48:37.0960 4528  [ 92AAF75C3EB344A098DC026BC9DDF42A ] C:\Windows\System32\bthprops.cpl
19:48:37.0960 4528  C:\Windows\System32\bthprops.cpl - ok
19:48:37.0976 4528  [ 6D137963730144698CBD10F202E9F251 ] C:\Windows\System32\wersvc.dll
19:48:37.0976 4528  C:\Windows\System32\wersvc.dll - ok
19:48:37.0976 4528  [ C7494C67A6BF6FE914808E42F8265FEF ] C:\Program Files\Windows Media Player\wmpnssci.dll
19:48:37.0976 4528  C:\Program Files\Windows Media Player\wmpnssci.dll - ok
19:48:37.0976 4528  [ 9BF014C20F91D97055532F2F5496E7BD ] C:\Program Files\Windows Media Player\wmpnetwk.exe
19:48:37.0976 4528  C:\Program Files\Windows Media Player\wmpnetwk.exe - ok
19:48:37.0976 4528  [ E36112A8A6C7F840169A7E92C12F4203 ] C:\Windows\System32\wsock32.dll
19:48:37.0976 4528  C:\Windows\System32\wsock32.dll - ok
19:48:37.0976 4528  [ 302B93586DFA480545C320EBA5BA6572 ] C:\Windows\System32\wmdrmdev.dll
19:48:37.0976 4528  C:\Windows\System32\wmdrmdev.dll - ok
19:48:37.0991 4528  [ 2C1055E2C6D42753241FB2A129136994 ] C:\Windows\System32\drmv2clt.dll
19:48:37.0991 4528  C:\Windows\System32\drmv2clt.dll - ok
19:48:37.0991 4528  [ 66E4246FEF8C364611F9782AA0809F42 ] C:\Program Files\Internet Explorer\ieproxy.dll
19:48:37.0991 4528  C:\Program Files\Internet Explorer\ieproxy.dll - ok
19:48:37.0991 4528  [ BF2F2717C13A4BD4FD73F2788534E86B ] C:\Program Files (x86)\Mozilla Firefox\firefox.exe
19:48:37.0991 4528  C:\Program Files (x86)\Mozilla Firefox\firefox.exe - ok
19:48:37.0991 4528  [ 67EC459E42D3081DD8FD34356F7CAFC1 ] C:\Program Files (x86)\Mozilla Firefox\msvcr100.dll
19:48:37.0991 4528  C:\Program Files (x86)\Mozilla Firefox\msvcr100.dll - ok
19:48:38.0007 4528  [ 0A98F5D9F6552FDF3682240714E33F9F ] C:\Program Files (x86)\Mozilla Firefox\mozglue.dll
19:48:38.0007 4528  C:\Program Files (x86)\Mozilla Firefox\mozglue.dll - ok
19:48:38.0007 4528  [ 8C23D9AB3A680DEF91A35E655C4FCFF3 ] C:\Program Files (x86)\Mozilla Firefox\mozjs.dll
19:48:38.0007 4528  C:\Program Files (x86)\Mozilla Firefox\mozjs.dll - ok
19:48:38.0007 4528  [ 03E9314004F504A14A61C3D364B62F66 ] C:\Program Files (x86)\Mozilla Firefox\msvcp100.dll
19:48:38.0007 4528  C:\Program Files (x86)\Mozilla Firefox\msvcp100.dll - ok
19:48:38.0007 4528  [ ABBC87352226A6AFFFE5D6B9DBE40F7F ] C:\Program Files (x86)\Mozilla Firefox\nspr4.dll
19:48:38.0007 4528  C:\Program Files (x86)\Mozilla Firefox\nspr4.dll - ok
19:48:38.0007 4528  [ 03932120E012BF53FF588EC0410A601E ] C:\Program Files (x86)\Mozilla Firefox\gkmedias.dll
19:48:38.0007 4528  C:\Program Files (x86)\Mozilla Firefox\gkmedias.dll - ok
19:48:38.0022 4528  [ A7E1F254D94C4568ADE17E6A727ED649 ] C:\Program Files (x86)\Mozilla Firefox\mozalloc.dll
19:48:38.0022 4528  C:\Program Files (x86)\Mozilla Firefox\mozalloc.dll - ok
19:48:38.0022 4528  [ DE2AF12F6DD62F9C25F00F72CD7776C8 ] C:\Program Files (x86)\Mozilla Firefox\mozsqlite3.dll



19:48:38.0022 4528  C:\Program Files (x86)\Mozilla Firefox\mozsqlite3.dll - ok
19:48:38.0022 4528  [ 4AD8996AB41B575E2B3AF80972AAB989 ] C:\Program Files (x86)\Mozilla Firefox\nss3.dll
19:48:38.0022 4528  C:\Program Files (x86)\Mozilla Firefox\nss3.dll - ok
19:48:38.0022 4528  [ 048081D7089297474681385B8E7CADDA ] C:\Program Files (x86)\Mozilla Firefox\nssutil3.dll
19:48:38.0022 4528  C:\Program Files (x86)\Mozilla Firefox\nssutil3.dll - ok
19:48:38.0038 4528  [ BD79E872C8CD7098E8D4C7613D01437C ] C:\Program Files (x86)\Mozilla Firefox\plc4.dll
19:48:38.0038 4528  C:\Program Files (x86)\Mozilla Firefox\plc4.dll - ok
19:48:38.0038 4528  [ E4F52AB15A3A077B2A3AD96EC892568A ] C:\Program Files (x86)\Mozilla Firefox\plds4.dll
19:48:38.0038 4528  C:\Program Files (x86)\Mozilla Firefox\plds4.dll - ok
19:48:38.0038 4528  [ A7BE481FE1396AD5658044BAAD6A5824 ] C:\Program Files (x86)\Mozilla Firefox\smime3.dll
19:48:38.0038 4528  C:\Program Files (x86)\Mozilla Firefox\smime3.dll - ok
19:48:38.0038 4528  [ 0A002104133543F74C83ABB455D86E85 ] C:\Program Files (x86)\Mozilla Firefox\ssl3.dll
19:48:38.0038 4528  C:\Program Files (x86)\Mozilla Firefox\ssl3.dll - ok
19:48:38.0038 4528  [ 9FA46E0424CDAB6EE85C92271D02FAA1 ] C:\Program Files (x86)\Mozilla Firefox\xul.dll
19:48:38.0038 4528  C:\Program Files (x86)\Mozilla Firefox\xul.dll - ok
19:48:38.0054 4528  [ 1B96E5EC91BAA3AB68ECC47174CFFBE4 ] C:\Program Files (x86)\Mozilla Firefox\xpcom.dll
19:48:38.0054 4528  C:\Program Files (x86)\Mozilla Firefox\xpcom.dll - ok
19:48:38.0054 4528  [ 70F03B29A62194E69911952B3640D9D2 ] C:\Windows\SysWOW64\msdmo.dll
19:48:38.0054 4528  C:\Windows\SysWOW64\msdmo.dll - ok
19:48:38.0054 4528  [ 9F9B0AD8804ECFF8CBD279992DCF7210 ] C:\Windows\SysWOW64\DWrite.dll
19:48:38.0054 4528  C:\Windows\SysWOW64\DWrite.dll - ok
19:48:38.0054 4528  [ CB5E4B9C319E3C6BB363EB7E58A4A051 ] C:\Windows\System32\FntCache.dll
19:48:38.0054 4528  C:\Windows\System32\FntCache.dll - ok
19:48:38.0054 4528  [ 47841291844818781ACF852A53827668 ] C:\Program Files (x86)\Mozilla Firefox\components\browsercomps.dll
19:48:38.0054 4528  C:\Program Files (x86)\Mozilla Firefox\components\browsercomps.dll - ok
19:48:38.0069 4528  [ 81F08948A0F1475894C99D4D19A158A8 ] C:\Windows\SysWOW64\wshqos.dll
19:48:38.0069 4528  C:\Windows\SysWOW64\wshqos.dll - ok
19:48:38.0069 4528  [ A2631C4465BBCE72B7E371DFB924A9D3 ] C:\Windows\SysWOW64\feclient.dll
19:48:38.0069 4528  C:\Windows\SysWOW64\feclient.dll - ok
19:48:38.0069 4528  [ 6F89C374CC912745AFEDDD4B88CBDBA5 ] C:\Program Files (x86)\Mozilla Firefox\softokn3.dll
19:48:38.0069 4528  C:\Program Files (x86)\Mozilla Firefox\softokn3.dll - ok
19:48:38.0069 4528  [ BE89DC812651D88552A9587F70F63DD3 ] C:\Program Files (x86)\Mozilla Firefox\nssdbm3.dll
19:48:38.0069 4528  C:\Program Files (x86)\Mozilla Firefox\nssdbm3.dll - ok
19:48:38.0069 4528  [ D308812A7E0CA64E03F1C2C13339F984 ] C:\Program Files (x86)\Mozilla Firefox\freebl3.dll
19:48:38.0069 4528  C:\Program Files (x86)\Mozilla Firefox\freebl3.dll - ok
19:48:38.0085 4528  [ 04A40046F2F711C830D915DC33EC2A7D ] C:\Program Files (x86)\Mozilla Firefox\nssckbi.dll
19:48:38.0085 4528  C:\Program Files (x86)\Mozilla Firefox\nssckbi.dll - ok
19:48:38.0085 4528  [ F11A57E91FDAECFB41A5CB21EB1EBC8E ] C:\Windows\System32\dssenh.dll
19:48:38.0085 4528  C:\Windows\System32\dssenh.dll - ok
19:48:38.0085 4528  [ C8A960330FBFCEA7B5D6714AB6B86977 ] C:\Program Files (x86)\Free Download Manager\Firefox\extension\components\vmsfdmff.dll
19:48:38.0085 4528  C:\Program Files (x86)\Free Download Manager\Firefox\extension\components\vmsfdmff.dll - ok
19:48:38.0085 4528  [ 6C7CDDBCAF5E8728E3BDD93A142EF2A4 ] C:\Program Files (x86)\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}\components\SkypeFfComponent.dll
19:48:38.0085 4528  C:\Program Files (x86)\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}\components\SkypeFfComponent.dll - ok
19:48:38.0100 4528  [ 8C680C0E6B3D6711B2B88AC82FE1804E ] C:\Windows\SysWOW64\MMDevAPI.dll
19:48:38.0100 4528  C:\Windows\SysWOW64\MMDevAPI.dll - ok
19:48:38.0100 4528  [ AFBB5060A2DAD431A2EAEB2C86CFFE81 ] C:\Windows\SysWOW64\AudioSes.dll
19:48:38.0100 4528  C:\Windows\SysWOW64\AudioSes.dll - ok
19:48:38.0100 4528  [ 25819A6361F10C30905B5D0FDB8DCA42 ] C:\Windows\SysWOW64\t2embed.dll
19:48:38.0100 4528  C:\Windows\SysWOW64\t2embed.dll - ok
19:48:38.0100 4528  [ 14AF30D1024D93D805BC63CCACF83299 ] C:\Program Files (x86)\Free Download Manager\flvsniff.dll
19:48:38.0100 4528  C:\Program Files (x86)\Free Download Manager\flvsniff.dll - ok
19:48:38.0100 4528  [ 3DEBA83ECDAF6ED2E72430D238803117 ] C:\Windows\System32\wmp.dll
19:48:38.0100 4528  C:\Windows\System32\wmp.dll - ok
19:48:38.0116 4528  [ 4B28A42FA0B65292DCC886D76E4B22B8 ] C:\Program Files (x86)\Free Download Manager\fdmumsp.dll
19:48:38.0116 4528  C:\Program Files (x86)\Free Download Manager\fdmumsp.dll - ok
19:48:38.0116 4528  [ 698EB1E5F8C66344D97C00B5699E871D ] C:\Program Files (x86)\Internet Explorer\iexplore.exe
19:48:38.0116 4528  C:\Program Files (x86)\Internet Explorer\iexplore.exe - ok
19:48:38.0116 4528  [ 497F27E279C0F921E2130BB89C1CB5CA ] C:\Program Files (x86)\Skype\Phone\Skype.exe
19:48:38.0116 4528  C:\Program Files (x86)\Skype\Phone\Skype.exe - ok
19:48:38.0116 4528  [ 97CCB4D737B426B200E5EF90C877DF32 ] C:\Windows\SysWOW64\imagehlp.dll
19:48:38.0116 4528  C:\Windows\SysWOW64\imagehlp.dll - ok
19:48:38.0116 4528  [ 5BBF32865EB3D66988C6E06834EC2675 ] C:\Windows\SysWOW64\ncrypt.dll
19:48:38.0116 4528  C:\Windows\SysWOW64\ncrypt.dll - ok
19:48:38.0132 4528  [ CE71B9119A258EDD0A05B37D7B0F92E3 ] C:\Windows\SysWOW64\bcrypt.dll
19:48:38.0132 4528  C:\Windows\SysWOW64\bcrypt.dll - ok
19:48:38.0132 4528  [ E8449FE262D7406BCB2AC2A45C53EC5F ] C:\Windows\SysWOW64\bcryptprimitives.dll
19:48:38.0132 4528  C:\Windows\SysWOW64\bcryptprimitives.dll - ok
19:48:38.0132 4528  [ 1097F3035BAF46CED8B332B3564C5108 ] C:\Windows\SysWOW64\gpapi.dll
19:48:38.0132 4528  C:\Windows\SysWOW64\gpapi.dll - ok
19:48:38.0132 4528  [ 1F778C34C751E1B585E4FC66659BA904 ] C:\Windows\SysWOW64\cryptnet.dll
19:48:38.0132 4528  C:\Windows\SysWOW64\cryptnet.dll - ok
19:48:38.0132 4528  [ 24201DE92D27EB203E3C0CA0AB1E7C89 ] C:\Windows\assembly\NativeImages_v2.0.50727_64\mscorlib\bda85d4cbe03603c79f6ecd6c2f99765\mscorlib.ni.dll
19:48:38.0132 4528  C:\Windows\assembly\NativeImages_v2.0.50727_64\mscorlib\bda85d4cbe03603c79f6ecd6c2f99765\mscorlib.ni.dll - ok
19:48:38.0147 4528  [ 462400256655B8DAE8DD8E33720481AF ] C:\Windows\SysWOW64\msxml3.dll
19:48:38.0147 4528  C:\Windows\SysWOW64\msxml3.dll - ok
19:48:38.0147 4528  [ 7FA5CA36B613A000F3A37E6B5170A195 ] C:\Windows\System32\d2d1.dll
19:48:38.0147 4528  C:\Windows\System32\d2d1.dll - ok
19:48:38.0147 4528  [ 550BF4ACD6FC3F41DC5A83EF31B9F9B4 ] C:\Windows\System32\wmploc.DLL
19:48:38.0147 4528  C:\Windows\System32\wmploc.DLL - ok
19:48:38.0147 4528  [ 011C739B13634F78FEB585222918D06D ] C:\Program Files (x86)\Skype\Toolbars\Shared\SkypePnr.dll
19:48:38.0147 4528  C:\Program Files (x86)\Skype\Toolbars\Shared\SkypePnr.dll - ok
19:48:38.0147 4528  [ 045DB4EAB4FBD23210E85ECC3F464A2E ] C:\Windows\SysWOW64\nlaapi.dll
19:48:38.0147 4528  C:\Windows\SysWOW64\nlaapi.dll - ok
19:48:38.0163 4528  [ 5DF5D8CFD9B9573FA3B2C89D9061A240 ] C:\Windows\SysWOW64\winrnr.dll
19:48:38.0163 4528  C:\Windows\SysWOW64\winrnr.dll - ok
19:48:38.0163 4528  [ 0B7E85364CB878E2AD531DB7B601A9E5 ] C:\Windows\SysWOW64\NapiNSP.dll
19:48:38.0163 4528  C:\Windows\SysWOW64\NapiNSP.dll - ok
19:48:38.0163 4528  [ 5CF640EDDB1E40A5AB1BB743BCDEC610 ] C:\Windows\SysWOW64\pnrpnsp.dll
19:48:38.0163 4528  C:\Windows\SysWOW64\pnrpnsp.dll - ok
19:48:38.0163 4528  [ 3A2BB97D54A2189C9900A735C0531B59 ] C:\Windows\SysWOW64\wshbth.dll
19:48:38.0163 4528  C:\Windows\SysWOW64\wshbth.dll - ok
19:48:38.0163 4528  [ 205B7034B64DE5A68DEB96B47B7E889B ] C:\Windows\SysWOW64\mscms.dll
19:48:38.0163 4528  C:\Windows\SysWOW64\mscms.dll - ok
19:48:38.0178 4528  [ 7459301D21C2E21468823F73042D9F87 ] C:\Windows\SysWOW64\d3d9.dll
19:48:38.0178 4528  C:\Windows\SysWOW64\d3d9.dll - ok
19:48:38.0178 4528  [ 77B1471A490B53B24EFE136F09F76550 ] C:\Windows\SysWOW64\d3d8thk.dll
19:48:38.0178 4528  C:\Windows\SysWOW64\d3d8thk.dll - ok
19:48:38.0178 4528  [ 1B7F3885109087414A5B81B6D851490D ] C:\Windows\SysWOW64\atiu9pag.dll
19:48:38.0178 4528  C:\Windows\SysWOW64\atiu9pag.dll - ok
19:48:38.0178 4528  [ 0B7677D9412BFD1D51D1650FDC75EF71 ] C:\Windows\SysWOW64\atiumdag.dll
19:48:38.0178 4528  C:\Windows\SysWOW64\atiumdag.dll - ok
19:48:38.0178 4528  [ 82FCA23C8F0C9868E5B069FE4C4AE410 ] C:\Windows\SysWOW64\atiumdva.dll
19:48:38.0178 4528  C:\Windows\SysWOW64\atiumdva.dll - ok
19:48:38.0194 4528  [ 839F96DBAAFD3353E0B248A5E0BD2A51 ] C:\Windows\SysWOW64\rasapi32.dll
19:48:38.0194 4528  C:\Windows\SysWOW64\rasapi32.dll - ok
19:48:38.0194 4528  [ FFA7172354B9256DBB2CDD75F16F33FE ] C:\Windows\SysWOW64\rasman.dll
19:48:38.0194 4528  C:\Windows\SysWOW64\rasman.dll - ok
19:48:38.0194 4528  [ 406F7B9C71B99872670EE9A8D52E2FE5 ] C:\Windows\SysWOW64\rtutils.dll
19:48:38.0194 4528  C:\Windows\SysWOW64\rtutils.dll - ok
19:48:38.0194 4528  [ E9FD4DA5188391ECD30E6C29213EABF0 ] C:\Windows\System32\DWrite.dll
19:48:38.0194 4528  C:\Windows\System32\DWrite.dll - ok
19:48:38.0194 4528  [ 6A4E9C0C08A65E8230A450F7FB09D7A5 ] C:\Program Files (x86)\QuickTime\QuickTimePlayer.exe
19:48:38.0194 4528  C:\Program Files (x86)\QuickTime\QuickTimePlayer.exe - ok
19:48:38.0210 4528  [ A0F1DFC9E47B2524213AFF32E26BE92D ] C:\Program Files (x86)\Windows Media Player\wmplayer.exe
19:48:38.0210 4528  C:\Program Files (x86)\Windows Media Player\wmplayer.exe - ok
19:48:38.0210 4528  [ AA6844A5127ED4B20DF6D313467B929D ] C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe
19:48:38.0210 4528  C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe - ok
19:48:38.0210 4528  [ E64819B6014A93E2503BB52419A0F6F3 ] C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_6_602_171.dll
19:48:38.0210 4528  C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_6_602_171.dll - ok
19:48:38.0210 4528  [ 9AEEEF46F7BD01A7B52CDFEB9993BBFF ] C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorjit.dll
19:48:38.0210 4528  C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorjit.dll - ok
19:48:38.0210 4528  [ 0E85C11F8850D524B02181C6E02BA9AE ] C:\Windows\SysWOW64\dsound.dll
19:48:38.0210 4528  C:\Windows\SysWOW64\dsound.dll - ok
19:48:38.0225 4528  [ 08DFDBD2FD4EA951DC46B1C7661ED35A ] C:\Windows\SysWOW64\powrprof.dll
19:48:38.0225 4528  C:\Windows\SysWOW64\powrprof.dll - ok
19:48:38.0225 4528  [ 4774541ACC36665A80F7E8BC432AFE86 ] C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_6_602_171.exe
19:48:38.0225 4528  C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_6_602_171.exe - ok
19:48:38.0225 4528  [ 8EE6BDE1D572677AA35707C52C585F75 ] C:\Windows\SysWOW64\mlang.dll
19:48:38.0225 4528  C:\Windows\SysWOW64\mlang.dll - ok
19:48:38.0225 4528  [ 76C48F0CD8A526858AB9A4886586942A ] C:\Windows\SysWOW64\schannel.dll
19:48:38.0225 4528  C:\Windows\SysWOW64\schannel.dll - ok
19:48:38.0241 4528  [ 0F261EC4F514926177C70C1832374231 ] C:\Program Files\iPod\bin\iPodService.exe
19:48:38.0241 4528  C:\Program Files\iPod\bin\iPodService.exe - ok
19:48:38.0241 4528  [ 5EF8A000C7927E87332D8CB6B7970067 ] C:\Program Files\iPod\bin\iPodService.Resources\iPodService.dll
19:48:38.0241 4528  C:\Program Files\iPod\bin\iPodService.Resources\iPodService.dll - ok
19:48:38.0241 4528  [ 763E2BBEFCD523AB3B7163A5671BF5EF ] C:\Program Files\iPod\bin\iPodService.Resources\en.lproj\iPodServiceLocalized.dll
19:48:38.0241 4528  C:\Program Files\iPod\bin\iPodService.Resources\en.lproj\iPodServiceLocalized.dll - ok
19:48:38.0241 4528  [ 0CCA9F023E7DC078D7CFBF024655AB7F ] C:\Windows\System32\d3d10warp.dll
19:48:38.0241 4528  C:\Windows\System32\d3d10warp.dll - ok
19:48:38.0241 4528  [ ACCBA604D34842844133A731F8045B32 ] C:\Windows\SysWOW64\sxs.dll
19:48:38.0241 4528  C:\Windows\SysWOW64\sxs.dll - ok
19:48:38.0256 4528  [ 816B681CC308FAA128EDCB90643DCED7 ] C:\Windows\SysWOW64\icm32.dll
19:48:38.0256 4528  C:\Windows\SysWOW64\icm32.dll - ok
19:48:38.0256 4528  [ B7EBD452BD178CFC4DDAEDCDD7B8BDC0 ] C:\Windows\System32\atiu9p64.dll
19:48:38.0256 4528  C:\Windows\System32\atiu9p64.dll - ok
19:48:38.0256 4528  [ 50F9394F53CF8015C703EBD2EF3BABC6 ] C:\Windows\System32\LocationApi.dll
19:48:38.0256 4528  C:\Windows\System32\LocationApi.dll - ok
19:48:38.0256 4528  [ 9111354A308612483F8DA995A1DD1835 ] C:\Windows\System32\SensorsApi.dll
19:48:38.0256 4528  C:\Windows\System32\SensorsApi.dll - ok
19:48:38.0256 4528  [ BD69A0116B11A91761AB30A25DCB4C9D ] C:\Windows\System32\vbscript.dll
19:48:38.0256 4528  C:\Windows\System32\vbscript.dll - ok
19:48:38.0272 4528  [ 29C9C38E15F775C94FE0D53CBBAE958E ] C:\Windows\System32\tzres.dll
19:48:38.0272 4528  C:\Windows\System32\tzres.dll - ok
19:48:38.0272 4528  [ 8494E126F0B10180F3293AF861CE1F7A ] C:\Windows\System32\mlang.dll
19:48:38.0272 4528  C:\Windows\System32\mlang.dll - ok
19:48:38.0272 4528  [ BD66ECA9479C688412DDDA9F2CCD2C69 ] C:\Windows\System32\d3d10.dll
19:48:38.0272 4528  C:\Windows\System32\d3d10.dll - ok
19:48:38.0272 4528  [ C5413BC4F10CEB4C3070BBF04D324117 ] C:\Windows\SysWOW64\msisip.dll
19:48:38.0272 4528  C:\Windows\SysWOW64\msisip.dll - ok
19:48:38.0272 4528  [ B628DA8B548E6D11A35B86799714CB22 ] C:\Windows\System32\d3d10core.dll
19:48:38.0272 4528  C:\Windows\System32\d3d10core.dll - ok
19:48:38.0288 4528  [ 29CA5974FAB0E8AE4AA7814FE05CF832 ] C:\Windows\SysWOW64\dhcpcsvc6.dll
19:48:38.0288 4528  C:\Windows\SysWOW64\dhcpcsvc6.dll - ok
19:48:38.0288 4528  [ 9A85ABCE0FDD1AF8E79E731EB0B679F3 ] C:\Windows\SysWOW64\dhcpcsvc.dll
19:48:38.0288 4528  C:\Windows\SysWOW64\dhcpcsvc.dll - ok
19:48:38.0288 4528  [ A6C09924C6730DE8DEED9890A12AA691 ] C:\Windows\System32\ddraw.dll
19:48:38.0288 4528  C:\Windows\System32\ddraw.dll - ok
19:48:38.0288 4528  [ 29C22748937F45C26590909E9F8E7137 ] C:\Windows\System32\dciman32.dll
19:48:38.0288 4528  C:\Windows\System32\dciman32.dll - ok
19:48:38.0288 4528  [ FB084D6F2F961AAE42FA6B6F956037B4 ] C:\Windows\System32\atiumd64.dll
19:48:38.0288 4528  C:\Windows\System32\atiumd64.dll - ok
19:48:38.0303 4528  [ 67A426909D8AAE28E0196E2E559FFF7F ] C:\Windows\System32\atiumd6a.dll
19:48:38.0303 4528  C:\Windows\System32\atiumd6a.dll - ok
19:48:38.0303 4528  [ 2E76FF14C5987BE45AB65A91332E3C58 ] C:\Program Files\Windows Sidebar\wlsrvc.dll
19:48:38.0303 4528  C:\Program Files\Windows Sidebar\wlsrvc.dll - ok
19:48:38.0303 4528  [ 41905052445D8481457E824C27DB14A2 ] C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
19:48:38.0303 4528  C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL - ok
19:48:38.0303 4528  [ E4270FE9E75278A6F10C5F76079FF90D ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System\a1e524baa2c6da836788ca38b948a4b2\System.ni.dll
19:48:38.0303 4528  C:\Windows\assembly\NativeImages_v2.0.50727_64\System\a1e524baa2c6da836788ca38b948a4b2\System.ni.dll - ok
19:48:38.0319 4528  [ 4F20D081F9C9B91730EE5CB84E9AC8C4 ] C:\Windows\System32\blackbox.dll
19:48:38.0319 4528  C:\Windows\System32\blackbox.dll - ok
19:48:38.0319 4528  [ 2D444C361F758D6CC4B2F51655ECF528 ] C:\Windows\System32\wmpps.dll
19:48:38.0319 4528  C:\Windows\System32\wmpps.dll - ok
19:48:38.0319 4528  [ DD37622A478EDFE1D43DF561A19C02DD ] C:\Windows\System32\wmpmde.dll
19:48:38.0319 4528  C:\Windows\System32\wmpmde.dll - ok
19:48:38.0319 4528  [ 4509387963DF66A6401752A0C631F6E8 ] C:\Windows\System32\httpapi.dll
19:48:38.0319 4528  C:\Windows\System32\httpapi.dll - ok
19:48:38.0319 4528  [ EC7EB038EA11E0D04214D143E0CB6002 ] C:\Windows\System32\WinSATAPI.dll
19:48:38.0319 4528  C:\Windows\System32\WinSATAPI.dll - ok
19:48:38.0334 4528  [ 2BF5A09197251572A74C426EE3E35117 ] C:\Windows\System32\MSMPEG2ENC.DLL
19:48:38.0334 4528  C:\Windows\System32\MSMPEG2ENC.DLL - ok
19:48:38.0334 4528  [ 46767946E7B559D981C1DC04EC0AB36F ] C:\Windows\System32\devenum.dll
19:48:38.0334 4528  C:\Windows\System32\devenum.dll - ok
19:48:38.0334 4528  [ 0B0604BC02CA5F77A1F23C6B0D86AE8C ] C:\Windows\System32\msdmo.dll
19:48:38.0334 4528  C:\Windows\System32\msdmo.dll - ok
19:48:38.0334 4528  [ D47EC6A8E81633DD18D2436B19BAF6DE ] C:\Windows\System32\upnphost.dll
19:48:38.0334 4528  C:\Windows\System32\upnphost.dll - ok
19:48:38.0334 4528  [ 2B5B81F73E760B8C39680E4528E62EE4 ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Drawing\5b95fbf958f52e4047aa3e9660edd41b\System.Drawing.ni.dll
19:48:38.0334 4528  C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Drawing\5b95fbf958f52e4047aa3e9660edd41b\System.Drawing.ni.dll - ok
19:48:38.0350 4528  [ 857F5592F89AC4E2873408C186EAAC3D ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Windows.Forms\1c47db56ec58c4e99e78a423e1a9ab15\System.Windows.Forms.ni.dll
19:48:38.0350 4528  C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Windows.Forms\1c47db56ec58c4e99e78a423e1a9ab15\System.Windows.Forms.ni.dll - ok
19:48:38.0350 4528  [ D7CEAEDD5F75D2C8A2E80887D7C114CE ] C:\Windows\System32\webcheck.dll
19:48:38.0350 4528  C:\Windows\System32\webcheck.dll - ok
19:48:38.0350 4528  [ BDDCD13F341CBA21775FF66A5C27F59E ] C:\Windows\System32\SearchProtocolHost.exe
19:48:38.0350 4528  C:\Windows\System32\SearchProtocolHost.exe - ok
19:48:38.0350 4528  [ 71E68F2443A80BD4DA89181889C457EA ] C:\Windows\System32\udhisapi.dll
19:48:38.0350 4528  C:\Windows\System32\udhisapi.dll - ok
19:48:38.0366 4528  [ E6F66F31422C44EDC00D9C9329E7DF60 ] C:\Windows\System32\SyncCenter.dll
19:48:38.0366 4528  C:\Windows\System32\SyncCenter.dll - ok
19:48:38.0366 4528  [ D2A5B2B09F2AF5ED13BF494508B09788 ] C:\Windows\System32\msshooks.dll
19:48:38.0366 4528  C:\Windows\System32\msshooks.dll - ok
19:48:38.0366 4528  [ F024058C391B99397EC3CCF6F77B7189 ] C:\Windows\System32\SearchFilterHost.exe
19:48:38.0366 4528  C:\Windows\System32\SearchFilterHost.exe - ok
19:48:38.0366 4528  [ 8B886A0AC14EAA8599142887991A5A2E ] C:\Windows\System32\imapi2.dll
19:48:38.0366 4528  C:\Windows\System32\imapi2.dll - ok
19:48:38.0366 4528  [ F0AAB2A76A7AF04C70A818E96BAF3E64 ] C:\Windows\System32\hgcpl.dll
19:48:38.0366 4528  C:\Windows\System32\hgcpl.dll - ok
19:48:38.0381 4528  [ 58FAE29A82984E817BBA70D0144E52ED ] C:\Windows\System32\mssph.dll
19:48:38.0381 4528  C:\Windows\System32\mssph.dll - ok
19:48:38.0381 4528  [ 0438CAB2E03F4FB61455A7956026FE86 ] C:\Windows\System32\fdPHost.dll
19:48:38.0381 4528  C:\Windows\System32\fdPHost.dll - ok
19:48:38.0381 4528  [ 171D7DB433314A868507C4326E8209DC ] C:\Windows\System32\fdWSD.dll
19:48:38.0381 4528  C:\Windows\System32\fdWSD.dll - ok
19:48:38.0381 4528  [ 802496CB59A30349F9A6DD22D6947644 ] C:\Windows\System32\FDResPub.dll
19:48:38.0381 4528  C:\Windows\System32\FDResPub.dll - ok
19:48:38.0381 4528  [ A2E5B2D20954210DCE1A75A1FC8CC36D ] C:\Windows\System32\fdSSDP.dll
19:48:38.0381 4528  C:\Windows\System32\fdSSDP.dll - ok
19:48:38.0397 4528  [ 2A556E2D703DED03186C596B90AC6869 ] C:\Windows\System32\mapi32.dll
19:48:38.0397 4528  C:\Windows\System32\mapi32.dll - ok
19:48:38.0397 4528  [ DB8BF64BE3932ADC407505D21C4F2C2C ] C:\Windows\System32\fdProxy.dll
19:48:38.0397 4528  C:\Windows\System32\fdProxy.dll - ok
19:48:38.0397 4528  [ 046B2673767CA626E2CFB7FDF735E9E8 ] C:\Windows\System32\ListSvc.dll
19:48:38.0397 4528  C:\Windows\System32\ListSvc.dll - ok
19:48:38.0397 4528  [ B6411CED931AFD059E48C52DBFBA95B4 ] C:\Windows\System32\P2P.dll
19:48:38.0397 4528  C:\Windows\System32\P2P.dll - ok
19:48:38.0397 4528  [ 4A82EA2807B16FF577AEAF8ADB8779FF ] C:\Windows\System32\IdListen.dll
19:48:38.0397 4528  C:\Windows\System32\IdListen.dll - ok
19:48:38.0412 4528  [ 92E0508D924512F63FFEEFE498CBD11F ] C:\Windows\System32\p2pcollab.dll
19:48:38.0412 4528  C:\Windows\System32\p2pcollab.dll - ok
19:48:38.0412 4528  [ 3EAC4455472CC2C97107B5291E0DCAFE ] C:\Windows\System32\pnrpsvc.dll
19:48:38.0412 4528  C:\Windows\System32\pnrpsvc.dll - ok
19:48:38.0412 4528  [ B9C7F88D85369548A69F2EDD1A40441E ] C:\Windows\System32\hgprint.dll
19:48:38.0412 4528  C:\Windows\System32\hgprint.dll - ok
19:48:38.0412 4528  [ 4987E079A4530FA737A128BE54B63B12 ] C:\Windows\System32\QAGENTRT.DLL
19:48:38.0412 4528  C:\Windows\System32\QAGENTRT.DLL - ok
19:48:38.0412 4528  [ 506A83A3BEEE9FCA09F0170DE9FC7D1B ] C:\Windows\System32\fveui.dll
19:48:38.0412 4528  C:\Windows\System32\fveui.dll - ok
19:48:38.0428 4528  [ 255E37279E3E0F1A90B8CE6664C8EBCE ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Runtime.Remo#\81a8e8f2e316c690a1fa34bc20135ecd\System.Runtime.Remoting.ni.dll
19:48:38.0428 4528  C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Runtime.Remo#\81a8e8f2e316c690a1fa34bc20135ecd\System.Runtime.Remoting.ni.dll - ok
19:48:38.0428 4528  [ 927463ECB02179F88E4B9A17568C63C3 ] C:\Windows\System32\p2psvc.dll
19:48:38.0428 4528  C:\Windows\System32\p2psvc.dll - ok
19:48:38.0428 4528  [ 3AEE02CEDAA3ACD14F9D7E038E44D6D1 ] C:\Windows\System32\P2PGraph.dll
19:48:38.0428 4528  C:\Windows\System32\P2PGraph.dll - ok
19:48:38.0428 4528  [ 74EF310FAC89341CE2897B7F2C4A7B0F ] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
19:48:38.0428 4528  C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe - ok
19:48:38.0428 4528  [ 4B1A02498B456CDB3D27CAD882F3154B ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Web\0c0c28911e1575783f2120ee132478cd\System.Web.ni.dll
19:48:38.0428 4528  C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Web\0c0c28911e1575783f2120ee132478cd\System.Web.ni.dll - ok
19:48:38.0444 4528  [ D63057F8E4BD751A5BFA28F36CE5EF03 ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Xml\01c591e485a8b53fcee91a2058f291e3\System.Xml.ni.dll
19:48:38.0444 4528  C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Xml\01c591e485a8b53fcee91a2058f291e3\System.Xml.ni.dll - ok
19:48:38.0444 4528  [ 5E8B04AD541804437BE3801FD7651F1B ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Configuration\f073f3b0dc527c541aed4261eef08fdf\System.Configuration.ni.dll
19:48:38.0444 4528  C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Configuration\f073f3b0dc527c541aed4261eef08fdf\System.Configuration.ni.dll - ok
19:48:38.0444 4528  [ 52BBDAAB5D7C6D1E95412E54D802F51C ] C:\Windows\System32\atipdl64.dll
19:48:38.0444 4528  C:\Windows\System32\atipdl64.dll - ok
19:48:38.0444 4528  ============================================================
19:48:38.0444 4528  Scan finished
19:48:38.0444 4528  ============================================================
19:48:38.0459 4520  Detected object count: 0
19:48:38.0459 4520  Actual detected object count: 0
19:50:08.0868 2648  Deinitialize success
 



aswMBR version 0.9.9.1707 Copyright© 2011 AVAST Software
Run date: 2013-03-10 19:53:10
-----------------------------
19:53:10.143    OS Version: Windows x64 6.1.7600
19:53:10.143    Number of processors: 4 586 0x2502
19:53:10.143    ComputerName: JIN-PC  UserName: Jin
19:53:11.391    Initialize success
19:55:01.302    AVAST engine defs: 13031000
19:55:03.970    Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IAAStorageDevice-1
19:55:03.970    Disk 0 Vendor: WDC_WD50 01.0 Size: 476940MB BusType: 3
19:55:03.985    Disk 0 MBR read successfully
19:55:03.985    Disk 0 MBR scan
19:55:03.985    Disk 0 Windows VISTA default MBR code
19:55:04.001    Disk 0 Partition 1 00     27 Hidden NTFS WinRE NTFS        16400 MB offset 2048
19:55:04.016    Disk 0 Partition 2 80 (A) 07    HPFS/NTFS NTFS          200 MB offset 33589248
19:55:04.032    Disk 0 Partition 3 00     07    HPFS/NTFS NTFS       230170 MB offset 33998848
19:55:04.048    Disk 0 Partition 4 00     07    HPFS/NTFS NTFS       230169 MB offset 505387008
19:55:04.079    Disk 0 scanning C:\Windows\system32\drivers
19:55:16.996    Service scanning
19:55:54.874    Modules scanning
19:55:54.874    Disk 0 trace - called modules:
19:55:54.889    ntoskrnl.exe CLASSPNP.SYS disk.sys ACPI.sys iaStor.sys hal.dll
19:55:54.905    1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa8004c19060]
19:55:54.905    3 CLASSPNP.SYS[fffff88000fd143f] -> nt!IofCallDriver -> [0xfffffa8003b76960]
19:55:54.905    5 ACPI.sys[fffff8800114f781] -> nt!IofCallDriver -> \Device\Ide\IAAStorageDevice-1[0xfffffa8004931050]
19:55:57.104    AVAST engine scan C:\Windows
19:56:00.302    AVAST engine scan C:\Windows\system32
20:00:12.731    AVAST engine scan C:\Windows\system32\drivers
20:00:29.053    AVAST engine scan C:\Users\Jin
20:09:40.706    File: C:\Users\Jin\Downloads\SaveAs.exe  **INFECTED** Win32:Adware-AJO [Adw]
20:10:31.292    AVAST engine scan C:\ProgramData
20:10:35.552    File: C:\ProgramData\InstallMate\OptimizerPro\_Setupx.dll  **INFECTED** Win32:Dropper-gen [Drp]
20:10:35.972    File: C:\ProgramData\InstallMate\SaveAs\_Setupx.dll  **INFECTED** Win32:Dropper-gen [Drp]
20:10:36.823    File: C:\ProgramData\InstallMate\{E76E70AB-5640-4B1E-A9F5-1E623C8D525D}\_Setupx.dll  **INFECTED** Win32:Dropper-gen [Drp]
20:11:28.159    Scan finished successfully
20:12:32.997    Disk 0 MBR has been saved successfully to "C:\Users\Jin\Desktop\MBR.dat"
20:12:33.007    The log file has been saved successfully to "C:\Users\Jin\Desktop\aswMBR.txt"

 



C:\Downloads\setup.exe    Win32/InstalleRex.E.Gen application    
C:\Users\All Users\coaNtinuettosave\513cdd950b8da.dll    a variant of Win32/Adware.MultiPlug.I application    
C:\Users\All Users\SaveAs\51062d107b45f.dll    a variant of Win32/Adware.MultiPlug.I application    
C:\Users\All Users\Search-NewTab\51062d407c3d7.dll    a variant of Win32/Adware.MultiPlug.I application    
C:\Downloads\Software\avc-free.exe    Win32/OpenCandy application    cleaned by deleting - quarantined
C:\Downloads\Software\bs_Orbit_Downloader.exe    Win32/Amonetize application    cleaned by deleting - quarantined
C:\Downloads\Software\OrbitDownloaderSetup.exe    Win32/OpenCandy application    cleaned by deleting - quarantined
C:\Program Files (x86)\ContinueToSave\sprotector.dll    a variant of Win32/SProtector.A application    cleaned by deleting (after the next restart) - quarantined
C:\ProgramData\coaNtinuettosave\513cdd950b8da.dll    a variant of Win32/Adware.MultiPlug.I application    cleaned by deleting - quarantined
C:\ProgramData\SaveAs\51062d107b45f.dll    a variant of Win32/Adware.MultiPlug.I application    cleaned by deleting - quarantined
C:\ProgramData\Search-NewTab\51062d407c3d7.dll    a variant of Win32/Adware.MultiPlug.I application    cleaned by deleting - quarantined
C:\Users\Jin\AppData\Local\Google\Chrome\User Data\Default\Extensions\bopjmbclkohgljcogcehfjfahkeppfni\1\51062d407c1951.76501507.js    Win32/Adware.MultiPlug.H application    cleaned by deleting - quarantined
C:\Users\Jin\AppData\Local\Google\Chrome\User Data\Default\Extensions\kjdldhhlnbngmjmpcdjaganojdkhebcm\1\51062d107b22c7.67712514.js    Win32/Adware.MultiPlug.H application    cleaned by deleting - quarantined
C:\Users\Jin\AppData\Local\Google\Chrome\User Data\Default\Extensions\oecpcccffgcmlfbofbemafhkchefbonm\1\513cdd950b6a11.95558659.js    Win32/Adware.MultiPlug.H application    cleaned by deleting - quarantined
C:\Users\Jin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\E05AJVJ8\agent_setup[1].exe    Win32/InstalleRex.H.Gen application    cleaned by deleting - quarantined
C:\Users\Jin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\QJ1LMIYO\513cdd9524643[1].exe    multiple threats    cleaned by deleting - quarantined
C:\Users\Jin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\QJ1LMIYO\agent_setup[1].exe    Win32/InstalleRex.H.Gen application    cleaned by deleting - quarantined
C:\Users\Jin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\ZQI0CLVE\search_d_continue_up[1].exe    a variant of Win32/SProtector.A application    cleaned by deleting - quarantined
C:\Users\Jin\AppData\Local\Temp\APNStub.exe    a variant of Win32/Bundled.Toolbar.Ask application    cleaned by deleting - quarantined
C:\Users\Jin\AppData\Roaming\setup.ini    Win32/Sohanad.NCB worm    cleaned by deleting - quarantined
C:\Users\Jin\AppData\Roaming\Mozilla\Firefox\Profiles\pdr5dodl.default\extensions\51062d107b2ce@51062d107b307.com\content\bg.js    Win32/Adware.MultiPlug.H application    cleaned by deleting - quarantined
C:\Users\Jin\AppData\Roaming\Mozilla\Firefox\Profiles\pdr5dodl.default\extensions\51062d407c243@51062d407c27d.com\content\bg.js    Win32/Adware.MultiPlug.H application    cleaned by deleting - quarantined
C:\Users\Jin\AppData\Roaming\Mozilla\Firefox\Profiles\pdr5dodl.default\extensions\y6_jzrj@bd-ejab.co.uk\content\bg.js    Win32/Adware.MultiPlug.H application    cleaned by deleting - quarantined
C:\Users\Jin\AppData\Roaming\support\svchost.001    probably a variant of Win32/Sohanad.IQCTHLD worm    cleaned by deleting - quarantined
C:\Users\Jin\Downloads\avc-free.exe    Win32/OpenCandy application    cleaned by deleting - quarantined
C:\Users\Jin\Downloads\SaveAs.exe    Win32/InstalleRex.E.Gen application    cleaned by deleting - quarantined
C:\Windows\AutoKMS.exe    Win32/HackKMS.A application    cleaned by deleting - quarantined
 



#4 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:08:49 PM

Posted 10 March 2013 - 06:10 PM


Malwarebytes

--------------------

Please download Malwarebytes Anti-Malware and save it to your desktop.  If you already have it installed launch the program and update the database.

  • Make sure you are connected to the Internet and double-click on the it to install the application.
  • When the installation begins, follow the prompts and do not make any changes to default settings except to uncheck any offer for a free Pro trial version
  • Malwarebytes will automatically start and you will be asked to update the program before performing a scan.
  • If an update is found, the program will automatically update itself. Press the OK button and continue.
  • Under the Scanner tab, make sure the "Perform Quick Scan" option is selected.
  • Click on the Scan button.
  • When finished, a message box will say "The scan completed successfully. Click 'Show Results' to display all objects found".
  • Click OK to close the message box, then click the Show Results button to see a list of any malware that was found.
  • Make sure that everything is checked and then click Remove Selected.
  • When removal is completed, a log report will open in Notepad.
  • The log is automatically saved and can be viewed by clicking the Logs tab.
  • Copy and paste the contents of that report in your next reply. Be sure to post the complete log to include the top portion which shows the database version and your operating system.
  • Exit Malwarebytes when done.

Note: If Malwarebytes encounters a file that is difficult to remove, you will be asked to reboot your computer so it can proceed with the disinfection process. If asked to restart the computer, please do so immediately. Failure to reboot normally will prevent Malwarebytes from removing all the malware.


===================================================


Farbar's MiniToolBox

--------------------

  • Please download MiniToolBox, save it to your desktop
  • Please close any Firefox browsers you may have open
  • Double click the MiniToolBox.jpg icon to launch the program
  • Make sure the following options are checked:

    • Flush DNS
    • Report IE Proxy Settings
    • Reset IE Proxy Settings
    • Report FF Proxy Settings
    • Reset FF Proxy Settings
    • List content of Hosts
    • List IP configuration
    • List Winsock Entries
    • List last 10 Event Viewer log
    • List Installed Programs
    • List Devices
    • List Users, Partitions and Memory size.
  • Click Go and once the scan is completed a Result.txt Notepad document will open on your desktop
  • Please copy and paste the contents in your reply


===================================================


Farbar's Service Scanner

--------------------

Please download Farbar Service Scanner, save it to your desktop, and run it.

  • Make sure the following options are checked:

    • Internet Services
    • Windows Firewall
    • System Restore
    • Security Center/Action Center
    • Windows Update
    • Windows Defender
    • Other Services
  • Press "Scan".
  • It will create a log (FSS.txt) in the same directory the tool is run.
  • Please copy and paste the log to your reply.


===================================================


AdwCleaner by Xplode - Search for Adware

-------------------

  • Please download AdwCleaner by Xplode onto your desktop.
  • Double click on AdwCleaner.exe, select OK, then Run
  • Click on DELETE
  • A logfile will automatically open after the scan has finished
  • Copy and paste the contents in your reply
  • You can find the logfile at C:\AdwCleaner[R1].txt as well


===================================================


Junkware Removal Tooll by thisisu

-------------------

  • Please download Junkware Removal Tool and save it to your desktop.
  • Disable your AntiVirus and AntiSpyware applications, usually via a right click on the System Tray icon. They may otherwise interfere with our tools. (Click on this link to see a list of programs that should be disabled. The list is not all inclusive.)
  • Right-mouse click JRT.exe and select Run as administrator (Windows XP double click the icon)
  • Please allow the program time to run
  • Once completed a Notepad document will open on your desktop
  • Copy and paste the contents in your reply


===================================================


Rkill

-------------------

Please download Rkill by Grinler from one of the 4 links below (if one of them does not work try another...) and save it to your desktop:


  • In order for Rkill to run properly you must disable your anti-malware software.  Please refer to this page if you are not sure how.
  • Double-click on Rkill. (If you are using Windows Vista, please right-click on it and select Run As Administrator)
    • Note:  You may have to run Rkill a few times before it is successful.  You may also have to download Rkill from a different link which will save it as a different file name.
  • A black screen will appear and then disappear. Please do not worry, that is normal. This means that the tool has been successfully executed.
  • An Rkill.log will appear.  Please copy and paste the contents in your reply (file also located at c:\rkill.log)
  • Do not reboot your computer after running Rkill as the malware programs will start again.  If your computer reboots, run Rkill again before continuing on to the next step.
  • If nothing happens or if the tool does not run, please let me know in your next reply.


===================================================


Autoruns

--------------------

  • Please download AutoRuns and save it to your desktop
  • Double click the AutoRuns.zip folder
  • Double click autoruns.exe (not autorunsc.exe), select Run, then Run again and allow the information to populate
  • Select File, Save, Desktop (in the left hand pane), then Save filename as Autoruns.txt and change Save as type to  Text(*.txt).
  • Double click on the text file,copy and paste the contents in your reply


===================================================


Things I would like to see in your next reply. Please be sure to copy and paste the information rather than send an attachment. :thumbsup2:

  • Malwarebytes log
  • MiniToolBox log
  • Farbar's Service Scanner log
  • AdwCleaner log
  • Junkware Removal Tool log
  • Rkill log
  • Autoruns log



#5 Jinmeister

Jinmeister
  • Topic Starter

  • Members
  • 9 posts
  • OFFLINE
  •  
  • Local time:03:49 AM

Posted 10 March 2013 - 06:47 PM

Malwarebytes Anti-Malware 1.70.0.1100
www.malwarebytes.org

Database version: v2013.03.10.07

Windows 7 x64 NTFS
Internet Explorer 9.0.8112.16421
Jin :: JIN-PC [administrator]

11/3/2013 12:14:33 AM
mbam-log-2013-03-11 (00-14-33).txt

Scan type: Quick scan
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 213641
Time elapsed: 5 minute(s), 57 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 0
(No malicious items detected)

(end)
 



MiniToolBox by Farbar  Version:05-03-2013
Ran by Jin (administrator) on 11-03-2013 at 00:22:40
Running from "C:\Downloads\Software"
Windows 7 Home Premium  (X64)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.

========================= FF Proxy Settings: ==============================


"Reset FF Proxy Settings": Firefox Proxy settings were reset.

========================= Hosts content: =================================



========================= IP Configuration: ================================

Realtek PCIe FE Family Controller = Local Area Connection (Connected)
Bluetooth Device (Personal Area Network) = Bluetooth Network Connection (Media disconnected)
Realtek RTL8191SE Wireless LAN 802.11n PCI-E NIC = Wireless Network Connection (Media disconnected)
Microsoft Virtual WiFi Miniport Adapter = Wireless Network Connection 2 (Media disconnected)


# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset
set global icmpredirects=enabled


popd
# End of IPv4 configuration



Windows IP Configuration

   Host Name . . . . . . . . . . . . : Jin-PC
   Primary Dns Suffix  . . . . . . . :
   Node Type . . . . . . . . . . . . : Hybrid
   IP Routing Enabled. . . . . . . . : No
   WINS Proxy Enabled. . . . . . . . : No
   DNS Suffix Search List. . . . . . : kvi.sgsnet.se

Wireless LAN adapter Wireless Network Connection 2:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Microsoft Virtual WiFi Miniport Adapter
   Physical Address. . . . . . . . . : B4-82-FE-D2-37-68
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes

Wireless LAN adapter Wireless Network Connection:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Realtek RTL8191SE Wireless LAN 802.11n PCI-E NIC
   Physical Address. . . . . . . . . : B4-82-FE-D2-37-68
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes

Ethernet adapter Bluetooth Network Connection:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Bluetooth Device (Personal Area Network)
   Physical Address. . . . . . . . . : B4-82-FE-65-AC-A0
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes

Ethernet adapter Local Area Connection:

   Connection-specific DNS Suffix  . : kvi.sgsnet.se
   Description . . . . . . . . . . . : Realtek PCIe FE Family Controller
   Physical Address. . . . . . . . . : 00-23-26-8D-C4-D2
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes
   Link-local IPv6 Address . . . . . : fe80::a80d:3fcf:53aa:f050%11(Preferred)
   IPv4 Address. . . . . . . . . . . : 46.239.114.2(Preferred)
   Subnet Mask . . . . . . . . . . . : 255.255.255.0
   Lease Obtained. . . . . . . . . . : Sunday, 10 March, 2013 7:46:45 PM
   Lease Expires . . . . . . . . . . : Monday, 11 March, 2013 7:46:45 AM
   Default Gateway . . . . . . . . . : 46.239.114.1
   DHCP Server . . . . . . . . . . . : 46.239.114.1
   DHCPv6 IAID . . . . . . . . . . . : 184558374
   DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-13-DA-B8-C6-00-23-26-8D-C4-D2
   DNS Servers . . . . . . . . . . . : 46.239.89.54
   NetBIOS over Tcpip. . . . . . . . : Enabled

Tunnel adapter isatap.{7EAD7D4A-DADF-4CFC-9956-BC8D37EFB6B8}:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Microsoft ISATAP Adapter
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes

Tunnel adapter 6TO4 Adapter:

   Connection-specific DNS Suffix  . : kvi.sgsnet.se
   Description . . . . . . . . . . . : Microsoft 6to4 Adapter
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
   IPv6 Address. . . . . . . . . . . : 2002:2eef:7202::2eef:7202(Preferred)
   Default Gateway . . . . . . . . . : 2002:c058:6301::c058:6301
   DNS Servers . . . . . . . . . . . : 46.239.89.54
   NetBIOS over Tcpip. . . . . . . . : Disabled

Tunnel adapter Teredo Tunneling Pseudo-Interface:

   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
   IPv6 Address. . . . . . . . . . . : 2001:0:9d38:953c:817:3cd5:d110:8dfd(Preferred)
   Link-local IPv6 Address . . . . . : fe80::817:3cd5:d110:8dfd%15(Preferred)
   Default Gateway . . . . . . . . . :
   NetBIOS over Tcpip. . . . . . . . : Disabled

Tunnel adapter isatap.kvi.sgsnet.se:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : kvi.sgsnet.se
   Description . . . . . . . . . . . : Microsoft ISATAP Adapter #2
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.{63FB699D-AFFD-4E24-AF79-B1770F055B51}:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Microsoft ISATAP Adapter #3
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.{BE503E7C-ECA6-4848-B05D-ACB4390024B7}:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Microsoft ISATAP Adapter #4
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
Server:  a014.bng-kvi-2.sgsnet.se
Address:  46.239.89.54

Name:    google.com
Addresses:  2a00:1450:400f:800::1003
      173.194.32.2
      173.194.32.3
      173.194.32.4
      173.194.32.5
      173.194.32.6
      173.194.32.7
      173.194.32.8
      173.194.32.9
      173.194.32.14
      173.194.32.0
      173.194.32.1


Pinging google.com [173.194.32.1] with 32 bytes of data:
Reply from 173.194.32.1: bytes=32 time=37ms TTL=51
Reply from 173.194.32.1: bytes=32 time=36ms TTL=51

Ping statistics for 173.194.32.1:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 36ms, Maximum = 37ms, Average = 36ms
Server:  a014.bng-kvi-2.sgsnet.se
Address:  46.239.89.54

Name:    yahoo.com
Addresses:  206.190.36.45
      98.138.253.109
      98.139.183.24


Pinging yahoo.com [98.139.183.24] with 32 bytes of data:
Reply from 98.139.183.24: bytes=32 time=236ms TTL=44
Reply from 98.139.183.24: bytes=32 time=446ms TTL=44

Ping statistics for 98.139.183.24:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 236ms, Maximum = 446ms, Average = 341ms

Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

Ping statistics for 127.0.0.1:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 0ms, Maximum = 0ms, Average = 0ms
===========================================================================
Interface List
 19...b4 82 fe d2 37 68 ......Microsoft Virtual WiFi Miniport Adapter
 14...b4 82 fe d2 37 68 ......Realtek RTL8191SE Wireless LAN 802.11n PCI-E NIC
 13...b4 82 fe 65 ac a0 ......Bluetooth Device (Personal Area Network)
 11...00 23 26 8d c4 d2 ......Realtek PCIe FE Family Controller
  1...........................Software Loopback Interface 1
 20...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter
 17...00 00 00 00 00 00 00 e0 Microsoft 6to4 Adapter
 15...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
 21...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #2
 18...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #3
 22...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #4
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination        Netmask          Gateway       Interface  Metric
          0.0.0.0          0.0.0.0     46.239.114.1     46.239.114.2     20
     46.239.114.0    255.255.255.0         On-link      46.239.114.2    276
     46.239.114.2  255.255.255.255         On-link      46.239.114.2    276
   46.239.114.255  255.255.255.255         On-link      46.239.114.2    276
        127.0.0.0        255.0.0.0         On-link         127.0.0.1    306
        127.0.0.1  255.255.255.255         On-link         127.0.0.1    306
  127.255.255.255  255.255.255.255         On-link         127.0.0.1    306
        224.0.0.0        240.0.0.0         On-link         127.0.0.1    306
        224.0.0.0        240.0.0.0         On-link      46.239.114.2    276
  255.255.255.255  255.255.255.255         On-link         127.0.0.1    306
  255.255.255.255  255.255.255.255         On-link      46.239.114.2    276
===========================================================================
Persistent Routes:
  None

IPv6 Route Table
===========================================================================
Active Routes:
 If Metric Network Destination      Gateway
 17   1125 ::/0                     2002:c058:6301::c058:6301
  1    306 ::1/128                  On-link
 15     58 2001::/32                On-link
 15    306 2001:0:9d38:953c:817:3cd5:d110:8dfd/128
                                    On-link
 17   1025 2002::/16                On-link
 17    281 2002:2eef:7202::2eef:7202/128
                                    On-link
 11    276 fe80::/64                On-link
 15    306 fe80::/64                On-link
 15    306 fe80::817:3cd5:d110:8dfd/128
                                    On-link
 11    276 fe80::a80d:3fcf:53aa:f050/128
                                    On-link
  1    306 ff00::/8                 On-link
 15    306 ff00::/8                 On-link
 11    276 ff00::/8                 On-link
===========================================================================
Persistent Routes:
  None
========================= Winsock entries =====================================

Catalog5 01 C:\Windows\SysWOW64\NLAapi.dll [51712] (Microsoft Corporation)
Catalog5 02 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog5 03 C:\Windows\SysWOW64\winrnr.dll [20992] (Microsoft Corporation)
Catalog5 04 C:\Windows\SysWOW64\napinsp.dll [52224] (Microsoft Corporation)
Catalog5 05 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 06 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 07 C:\Windows\SysWOW64\wshbth.dll [35840] (Microsoft Corporation)
Catalog5 08 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Catalog9 01 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 02 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 03 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 04 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 05 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 06 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 07 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 08 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 09 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 10 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 11 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
x64-Catalog5 01 C:\Windows\System32\NLAapi.dll [70144] (Microsoft Corporation)
x64-Catalog5 02 C:\Windows\System32\mswsock.dll [320000] (Microsoft Corporation)
x64-Catalog5 03 C:\Windows\System32\winrnr.dll [28672] (Microsoft Corporation)
x64-Catalog5 04 C:\Windows\System32\napinsp.dll [68096] (Microsoft Corporation)
x64-Catalog5 05 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 06 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 07 C:\Windows\System32\wshbth.dll [46592] (Microsoft Corporation)
x64-Catalog5 08 C:\Program Files\Bonjour\mdnsNSP.dll [132968] (Apple Inc.)
x64-Catalog9 01 C:\Windows\System32\mswsock.dll [320000] (Microsoft Corporation)
x64-Catalog9 02 C:\Windows\System32\mswsock.dll [320000] (Microsoft Corporation)
x64-Catalog9 03 C:\Windows\System32\mswsock.dll [320000] (Microsoft Corporation)
x64-Catalog9 04 C:\Windows\System32\mswsock.dll [320000] (Microsoft Corporation)
x64-Catalog9 05 C:\Windows\System32\mswsock.dll [320000] (Microsoft Corporation)
x64-Catalog9 06 C:\Windows\System32\mswsock.dll [320000] (Microsoft Corporation)
x64-Catalog9 07 C:\Windows\System32\mswsock.dll [320000] (Microsoft Corporation)
x64-Catalog9 08 C:\Windows\System32\mswsock.dll [320000] (Microsoft Corporation)
x64-Catalog9 09 C:\Windows\System32\mswsock.dll [320000] (Microsoft Corporation)
x64-Catalog9 10 C:\Windows\System32\mswsock.dll [320000] (Microsoft Corporation)
x64-Catalog9 11 C:\Windows\System32\mswsock.dll [320000] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (03/10/2013 08:14:42 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_420fe3fa2b8113bd.manifest.

Error: (03/10/2013 07:32:35 PM) (Source: Application Error) (User: )
Description: Faulting application name: fdm.exe, version: 3.9.1289.0, time stamp: 0x50f6fa36
Faulting module name: fdmbtsupp.dll, version: 3.9.1020.0, time stamp: 0x50ef4d39
Exception code: 0xc00000fd
Fault offset: 0x000205d3
Faulting process id: 0x1608
Faulting application start time: 0xfdm.exe0
Faulting application path: fdm.exe1
Faulting module path: fdm.exe2
Report Id: fdm.exe3

Error: (03/10/2013 04:18:35 PM) (Source: Application Error) (User: )
Description: Faulting application name: fdm.exe, version: 3.9.1289.0, time stamp: 0x50f6fa36
Faulting module name: fdmbtsupp.dll, version: 3.9.1020.0, time stamp: 0x50ef4d39
Exception code: 0xc0000005
Fault offset: 0x001d617c
Faulting process id: 0x1940
Faulting application start time: 0xfdm.exe0
Faulting application path: fdm.exe1
Faulting module path: fdm.exe2
Report Id: fdm.exe3

Error: (03/10/2013 02:02:04 PM) (Source: Application Error) (User: )
Description: Faulting application name: fdm.exe, version: 3.9.1289.0, time stamp: 0x50f6fa36
Faulting module name: fdmbtsupp.dll, version: 3.9.1020.0, time stamp: 0x50ef4d39
Exception code: 0xc00000fd
Fault offset: 0x000205d8
Faulting process id: 0x1608
Faulting application start time: 0xfdm.exe0
Faulting application path: fdm.exe1
Faulting module path: fdm.exe2
Report Id: fdm.exe3

Error: (03/10/2013 00:31:36 AM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "WLMFDS,processorArchitecture="AMD64",type="win32",version="1.0.0.1"1".Error in manifest or policy file "WLMFDS,processorArchitecture="AMD64",type="win32",version="1.0.0.1"2" on line WLMFDS,processorArchitecture="AMD64",type="win32",version="1.0.0.1"3.
Component identity found in manifest does not match the identity of the component requested.
Reference is WLMFDS,processorArchitecture="AMD64",type="win32",version="1.0.0.1".
Definition is WLMFDS,processorArchitecture="x86",type="win32",version="1.0.0.1".
Please use sxstrace.exe for detailed diagnosis.

Error: (03/09/2013 06:48:12 PM) (Source: Application Error) (User: )
Description: Faulting application name: iexplore.exe, version: 9.0.8112.16464, time stamp: 0x50ec971b
Faulting module name: fdmumsp.dll, version: 1.0.23.0, time stamp: 0x50ef4c0a
Exception code: 0xc0000005
Fault offset: 0x00002363
Faulting process id: 0x213c
Faulting application start time: 0xiexplore.exe0
Faulting application path: iexplore.exe1
Faulting module path: iexplore.exe2
Report Id: iexplore.exe3

Error: (03/09/2013 02:55:01 AM) (Source: SaveAsUpdater) (User: )
Description: URLMON download from http://kosher-toolbar.info/get/?ver=1701&report_version=5&data=NP6yu5%2Bq64wrurpnikVVfR00VDbUTQkqe72%2FcTBEX9tChFLatNbxb78fGlniRiZWgmxL7VYsRFfTtA6dKPGpZCVH5xLnQK1RuYCv5fSAg53wMuW%2FCWUGDA6nOyE0GOrwFXwWQRIo10K7Mu9rqgj6Xo5G7ucrI9ekQsaXIaPmRM0PSTtQc%2FJ38p3jXi%2F%2FUe459H513fXgzo%2BxE%2BUZ4g4C4pJo0mXAyCkP8r754PE1MOYAup8xknbZLk5C%2F4PH8pkPCqB5wWgNT3fEVNYihblgR3ofd%2BSZLarbVWhDOId8QSVGnSXyn1nzTgG3bKBINRbffXOTWLzZYKCZq29ElQgqV6V9D0vbwxlYKCKibKDzpJ%2FxQrpbdRoz7VuNU1e7DhwCQc1dLz7RiNGlM8jOACbd1oybOnowxUQbTyL5tWXY2sRoWQWoLncAfgLKNA9eLbn%2FFyQczUkQFXYICGYsuV%2BkTwlj failed BINDSTATUS=2 (12029)

Error: (03/09/2013 02:54:40 AM) (Source: SaveAsUpdater) (User: )
Description: BITS download from http://kosher-toolbar.info/get/?ver=1701&report_version=5&data=NP6yu5%2Bq64wrurpnikVVfR00VDbUTQkqe72%2FcTBEX9tChFLatNbxb78fGlniRiZWgmxL7VYsRFfTtA6dKPGpZCVH5xLnQK1RuYCv5fSAg53wMuW%2FCWUGDA6nOyE0GOrwFXwWQRIo10K7Mu9rqgj6Xo5G7ucrI9ekQsaXIaPmRM0PSTtQc%2FJ38p3jXi%2F%2FUe459H513fXgzo%2BxE%2BUZ4g4C4pJo0mXAyCkP8r754PE1MOYAup8xknbZLk5C%2F4PH8pkPCqB5wWgNT3fEVNYihblgR3ofd%2BSZLarbVWhDOId8QSVGnSXyn1nzTgG3bKBINRbffXOTWLzZYKCZq29ElQgqV6V9D0vbwxlYKCKibKDzpJ%2FxQrpbdRoz7VuNU1e7DhwCQc1dLz7RiNGlM8jOACbd1oybOnowxUQbTyL5tWXY2sRoWQWoLncAfgLKNA9eLbn%2FFyQczUkQFXYICGYsuV%2BkTwlj failed 5:-2147012894 The operation timed out

Error: (03/08/2013 11:50:43 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "WLMFDS,processorArchitecture="AMD64",type="win32",version="1.0.0.1"1".Error in manifest or policy file "WLMFDS,processorArchitecture="AMD64",type="win32",version="1.0.0.1"2" on line WLMFDS,processorArchitecture="AMD64",type="win32",version="1.0.0.1"3.
Component identity found in manifest does not match the identity of the component requested.
Reference is WLMFDS,processorArchitecture="AMD64",type="win32",version="1.0.0.1".
Definition is WLMFDS,processorArchitecture="x86",type="win32",version="1.0.0.1".
Please use sxstrace.exe for detailed diagnosis.

Error: (03/08/2013 09:09:44 PM) (Source: OptimizerProUpdater) (User: )
Description: URLMON download from http://nanoavi.info/get/?ver=1701&report_version=5&data=NP6yu5%2BmygnD789%2FXZnUEH8PApmNQ2bwqcuILpXxxGVFV9sPH13DuNdSrJ3dotufWIgJ4fkXhKLNeMjvwvohcJIK2NhMDkYzAIJaeAK0GNHEGodh3S0UT%2BSIcx%2B%2BQ26mzE6jZlcBr9xXta5qTct8y9C2O9I4rY6ay9dPbbu2PMWDWvdseyHnA9RVODnAdfUDpTXEEtZfa8wJ231LrtiGYjT2nyhlL%2FjE1jEXqZ%2BB68hmc1XDFc453y0Almdw5ocqpHLpuZNuSls0ZJmJfjq533JhKGD8FV6YLVHsGsJkPey1Slzh3I3M2QdhGIVP9pdus9V0DoYzW5lIwv4a7D9OJb3%2BSlsxVc0rTMfhPsDRDhx92L%2FlwT%2B%2FYywJllMW4eY7R3IEqQLfrZfViEXQpTZG6hSlceQq9Zz64HdvcNbioes%2Bd9TusVv4I5Oi89OVk5DN2ZhVS5FqaAV8joAuvBwaMR8aSDucgI9p failed BINDSTATUS=2 (12029)


System errors:
=============
Error: (03/03/2013 07:27:46 PM) (Source: volsnap) (User: )
Description: The shadow copies of volume C: were aborted because the shadow copy storage failed to grow.

Error: (03/03/2013 06:42:33 PM) (Source: DCOM) (User: )
Description: 1053BBUpdate-Service{D6381B4A-D254-46EB-9018-A62E0F4BA6BA}

Error: (03/03/2013 06:42:33 PM) (Source: Service Control Manager) (User: )
Description: The BBUpdate service failed to start due to the following error:
%%1053

Error: (03/03/2013 06:42:33 PM) (Source: Service Control Manager) (User: )
Description: A timeout was reached (30000 milliseconds) while waiting for the BBUpdate service to connect.

Error: (03/03/2013 06:30:18 PM) (Source: EventLog) (User: )
Description: The previous system shutdown at 6:21:41 PM on ?3/?3/?2013 was unexpected.

Error: (02/19/2013 05:35:59 AM) (Source: Service Control Manager) (User: )
Description: The Service Control Manager tried to take a corrective action (Restart the service) after the unexpected termination of the Apple Mobile Device service, but this action failed with the following error:
%%1056

Error: (02/19/2013 05:34:59 AM) (Source: Service Control Manager) (User: )
Description: The Apple Mobile Device service terminated unexpectedly.  It has done this 2 time(s).  The following corrective action will be taken in 60000 milliseconds: Restart the service.

Error: (02/19/2013 05:34:36 AM) (Source: Service Control Manager) (User: )
Description: The Apple Mobile Device service terminated unexpectedly.  It has done this 1 time(s).  The following corrective action will be taken in 60000 milliseconds: Restart the service.

Error: (02/18/2013 00:18:15 AM) (Source: EventLog) (User: )
Description: The previous system shutdown at 12:14:17 AM on ?18/?2/?2013 was unexpected.

Error: (02/13/2013 01:36:43 PM) (Source: Service Control Manager) (User: )
Description: The Internet Connection Sharing (ICS) service depends on the Remote Access Connection Manager service which failed to start because of the following error:
%%1068


Microsoft Office Sessions:
=========================
Error: (03/10/2013 08:14:42 PM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_420fe3fa2b8113bd.manifestC:\Downloads\Software\esetsmartinstaller_enu.exe

Error: (03/10/2013 07:32:35 PM) (Source: Application Error)(User: )
Description: fdm.exe3.9.1289.050f6fa36fdmbtsupp.dll3.9.1020.050ef4d39c00000fd000205d3160801ce1db28a00458aC:\Program Files (x86)\Free Download Manager\fdm.exeC:\Program Files (x86)\Free Download Manager\fdmbtsupp.dlle09672b3-89b0-11e2-a2c4-b482fe65aca0

Error: (03/10/2013 04:18:35 PM) (Source: Application Error)(User: )
Description: fdm.exe3.9.1289.050f6fa36fdmbtsupp.dll3.9.1020.050ef4d39c0000005001d617c194001ce1d97d6e8115fC:\Program Files (x86)\Free Download Manager\fdm.exeC:\Program Files (x86)\Free Download Manager\fdmbtsupp.dllc6992de9-8995-11e2-a2c4-b482fe65aca0

Error: (03/10/2013 02:02:04 PM) (Source: Application Error)(User: )
Description: fdm.exe3.9.1289.050f6fa36fdmbtsupp.dll3.9.1020.050ef4d39c00000fd000205d8160801ce1d8807f7a421C:\Program Files (x86)\Free Download Manager\fdm.exeC:\Program Files (x86)\Free Download Manager\fdmbtsupp.dllb4523c92-8982-11e2-a2c4-b482fe65aca0

Error: (03/10/2013 00:31:36 AM) (Source: SideBySide)(User: )
Description: WLMFDS,processorArchitecture="AMD64",type="win32",version="1.0.0.1"WLMFDS,processorArchitecture="x86",type="win32",version="1.0.0.1"c:\program files (x86)\windows live\photo gallery\MovieMaker.Exec:\program files (x86)\windows live\photo gallery\WLMFDS.DLL8

Error: (03/09/2013 06:48:12 PM) (Source: Application Error)(User: )
Description: iexplore.exe9.0.8112.1646450ec971bfdmumsp.dll1.0.23.050ef4c0ac000000500002363213c01ce1cee0f9c62fcC:\Program Files (x86)\Internet Explorer\iexplore.exeC:\Program Files (x86)\Free Download Manager\fdmumsp.dll82c777ef-88e1-11e2-b10f-b482fe65aca0

Error: (03/09/2013 02:55:01 AM) (Source: SaveAsUpdater)(User: )
Description: URLMON download from http://kosher-toolbar.info/get/?ver=1701&report_version=5&data=NP6yu5%2Bq64wrurpnikVVfR00VDbUTQkqe72%2FcTBEX9tChFLatNbxb78fGlniRiZWgmxL7VYsRFfTtA6dKPGpZCVH5xLnQK1RuYCv5fSAg53wMuW%2FCWUGDA6nOyE0GOrwFXwWQRIo10K7Mu9rqgj6Xo5G7ucrI9ekQsaXIaPmRM0PSTtQc%2FJ38p3jXi%2F%2FUe459H513fXgzo%2BxE%2BUZ4g4C4pJo0mXAyCkP8r754PE1MOYAup8xknbZLk5C%2F4PH8pkPCqB5wWgNT3fEVNYihblgR3ofd%2BSZLarbVWhDOId8QSVGnSXyn1nzTgG3bKBINRbffXOTWLzZYKCZq29ElQgqV6V9D0vbwxlYKCKibKDzpJ%2FxQrpbdRoz7VuNU1e7DhwCQc1dLz7RiNGlM8jOACbd1oybOnowxUQbTyL5tWXY2sRoWQWoLncAfgLKNA9eLbn%2FFyQczUkQFXYICGYsuV%2BkTwlj failed BINDSTATUS=2 (12029)

Error: (03/09/2013 02:54:40 AM) (Source: SaveAsUpdater)(User: )
Description: BITS download from http://kosher-toolbar.info/get/?ver=1701&report_version=5&data=NP6yu5%2Bq64wrurpnikVVfR00VDbUTQkqe72%2FcTBEX9tChFLatNbxb78fGlniRiZWgmxL7VYsRFfTtA6dKPGpZCVH5xLnQK1RuYCv5fSAg53wMuW%2FCWUGDA6nOyE0GOrwFXwWQRIo10K7Mu9rqgj6Xo5G7ucrI9ekQsaXIaPmRM0PSTtQc%2FJ38p3jXi%2F%2FUe459H513fXgzo%2BxE%2BUZ4g4C4pJo0mXAyCkP8r754PE1MOYAup8xknbZLk5C%2F4PH8pkPCqB5wWgNT3fEVNYihblgR3ofd%2BSZLarbVWhDOId8QSVGnSXyn1nzTgG3bKBINRbffXOTWLzZYKCZq29ElQgqV6V9D0vbwxlYKCKibKDzpJ%2FxQrpbdRoz7VuNU1e7DhwCQc1dLz7RiNGlM8jOACbd1oybOnowxUQbTyL5tWXY2sRoWQWoLncAfgLKNA9eLbn%2FFyQczUkQFXYICGYsuV%2BkTwlj failed 5:-2147012894 The operation timed out

Error: (03/08/2013 11:50:43 PM) (Source: SideBySide)(User: )
Description: WLMFDS,processorArchitecture="AMD64",type="win32",version="1.0.0.1"WLMFDS,processorArchitecture="x86",type="win32",version="1.0.0.1"c:\program files (x86)\windows live\photo gallery\MovieMaker.Exec:\program files (x86)\windows live\photo gallery\WLMFDS.DLL8

Error: (03/08/2013 09:09:44 PM) (Source: OptimizerProUpdater)(User: )
Description: URLMON download from http://nanoavi.info/get/?ver=1701&report_version=5&data=NP6yu5%2BmygnD789%2FXZnUEH8PApmNQ2bwqcuILpXxxGVFV9sPH13DuNdSrJ3dotufWIgJ4fkXhKLNeMjvwvohcJIK2NhMDkYzAIJaeAK0GNHEGodh3S0UT%2BSIcx%2B%2BQ26mzE6jZlcBr9xXta5qTct8y9C2O9I4rY6ay9dPbbu2PMWDWvdseyHnA9RVODnAdfUDpTXEEtZfa8wJ231LrtiGYjT2nyhlL%2FjE1jEXqZ%2BB68hmc1XDFc453y0Almdw5ocqpHLpuZNuSls0ZJmJfjq533JhKGD8FV6YLVHsGsJkPey1Slzh3I3M2QdhGIVP9pdus9V0DoYzW5lIwv4a7D9OJb3%2BSlsxVc0rTMfhPsDRDhx92L%2FlwT%2B%2FYywJllMW4eY7R3IEqQLfrZfViEXQpTZG6hSlceQq9Zz64HdvcNbioes%2Bd9TusVv4I5Oi89OVk5DN2ZhVS5FqaAV8joAuvBwaMR8aSDucgI9p failed BINDSTATUS=2 (12029)


=========================== Installed Programs ============================

Acrobat.com (Version: 1.6.65)
Adobe AIR (Version: 3.5.0.880)
Adobe Flash Player 11 ActiveX (Version: 11.6.602.171)
Adobe Flash Player 11 Plugin (Version: 11.6.602.171)
Adobe Reader XI (11.0.02) (Version: 11.0.02)
Any Video Converter 3.0.7
Apple Application Support (Version: 2.3.2)
Apple Mobile Device Support (Version: 6.0.1.3)
Apple Software Update (Version: 2.1.3.127)
Ask Toolbar (Version: 1.15.15.0)
Atheros Client Installation Program (Version: 7.0)
ATI Catalyst Install Manager (Version: 3.0.762.0)
Bing Bar (Version: 7.1.391.0)
Bluetooth Feature Pack 5.0 (Version: 5.0.11)
Bonjour (Version: 3.0.0.10)
Catalyst Control Center - Branding (Version: 1.00.0000)
Catalyst Control Center Core Implementation (Version: 2010.0127.2258.41203)
Catalyst Control Center Graphics Full Existing (Version: 2010.0127.2258.41203)
Catalyst Control Center Graphics Full New (Version: 2010.0127.2258.41203)
Catalyst Control Center Graphics Light (Version: 2010.0127.2258.41203)
Catalyst Control Center Graphics Previews Vista (Version: 2010.0127.2258.41203)
Catalyst Control Center InstallProxy (Version: 2010.0127.2258.41203)
Catalyst Control Center Localization All (Version: 2010.0127.2258.41203)
CCC Help Chinese Standard (Version: 2010.0127.2257.41203)
CCC Help Chinese Traditional (Version: 2010.0127.2257.41203)
CCC Help Czech (Version: 2010.0127.2257.41203)
CCC Help Danish (Version: 2010.0127.2257.41203)
CCC Help Dutch (Version: 2010.0127.2257.41203)
CCC Help English (Version: 2010.0127.2257.41203)
CCC Help Finnish (Version: 2010.0127.2257.41203)
CCC Help French (Version: 2010.0127.2257.41203)
CCC Help German (Version: 2010.0127.2257.41203)
CCC Help Greek (Version: 2010.0127.2257.41203)
CCC Help Hungarian (Version: 2010.0127.2257.41203)
CCC Help Italian (Version: 2010.0127.2257.41203)
CCC Help Japanese (Version: 2010.0127.2257.41203)
CCC Help Korean (Version: 2010.0127.2257.41203)
CCC Help Norwegian (Version: 2010.0127.2257.41203)
CCC Help Polish (Version: 2010.0127.2257.41203)
CCC Help Portuguese (Version: 2010.0127.2257.41203)
CCC Help Russian (Version: 2010.0127.2257.41203)
CCC Help Spanish (Version: 2010.0127.2257.41203)
CCC Help Swedish (Version: 2010.0127.2257.41203)
CCC Help Thai (Version: 2010.0127.2257.41203)
CCC Help Turkish (Version: 2010.0127.2257.41203)
ccc-core-static (Version: 2010.0127.2258.41203)
ccc-utility64 (Version: 2010.0127.2258.41203)
Cisco EAP-FAST Module (Version: 2.2.14)
Cisco LEAP Module (Version: 1.0.19)
Cisco PEAP Module (Version: 1.1.6)
coaNtinuettosave (Version: )
ContinueToSave (Version: 1.0)
ContinueToSave 1.74
CyberLink PowerDVD 8 (Version: 8.0.3427)
CyberLink YouCam (Version: 3.0.2202)
Definition Update for Microsoft Office 2010 (KB982726) 64-Bit Edition
ESET Online Scanner v3
Facebook Video Calling 1.2.0.287 (Version: 1.2.287)
Free Download Manager 3.9.2
Fujitsu Display Manager (Version: )
Fujitsu Display Manager (Version: 7.01.20.204)
Fujitsu Hardware Diagnostics Tool (Version: 6.0.5248.27)
Fujitsu Hotkey Utility (Version: 3.60.1.0)
Fujitsu MobilityCenter Extension Utility (Version: )
Fujitsu MobilityCenter Extension Utility (Version: 3.01.01.000)
Fujitsu System Extension Utility (Version: 3.1.0.0)
gamelauncher-ps2-live
Intel® Management Engine Components (Version: 6.0.0.1179)
Intel® Turbo Boost Technology Driver (Version: 01.00.01.1002)
iTunes (Version: 11.0.1.12)
Java 7 Update 17 (Version: 7.0.170)
Java Auto Updater (Version: 2.1.9.0)
Java™ 6 Update 15 (64-bit) (Version: 6.0.150)
Java™ SE Development Kit 6 Update 15 (64-bit) (Version: 1.6.0.150)
Junk Mail filter update (Version: 14.0.8117.416)
LifeBook Application Panel (Version: 8.1.0.0)
Magic ISO Maker v5.5 (build 0281)
Malwarebytes Anti-Malware version 1.70.0.1100 (Version: 1.70.0.1100)
McAfee Security Scan Plus (Version: 3.0.318.3)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft Application Error Reporting (Version: 12.0.6015.5000)
Microsoft Choice Guard (Version: 2.0.48.0)
Microsoft Office Access MUI (English) 2010 (Version: 14.0.4734.1000)
Microsoft Office Access Setup Metadata MUI (English) 2010 (Version: 14.0.4734.1000)
Microsoft Office Excel MUI (English) 2010 (Version: 14.0.4734.1000)
Microsoft Office Groove MUI (English) 2010 (Version: 14.0.4734.1000)
Microsoft Office InfoPath MUI (English) 2010 (Version: 14.0.4734.1000)
Microsoft Office Live Add-in 1.3 (Version: 2.0.2313.0)
Microsoft Office Office 32-bit Components 2010 (Version: 14.0.4734.1000)
Microsoft Office OneNote MUI (English) 2010 (Version: 14.0.4734.1000)
Microsoft Office Outlook Connector (Version: 12.0.6423.1000)
Microsoft Office Outlook MUI (English) 2010 (Version: 14.0.4734.1000)
Microsoft Office PowerPoint MUI (English) 2010 (Version: 14.0.4734.1000)
Microsoft Office Professional Plus 2010 (Version: 14.0.4734.1000)
Microsoft Office Proof (English) 2010 (Version: 14.0.4734.1000)
Microsoft Office Proof (French) 2010 (Version: 14.0.4734.1000)
Microsoft Office Proof (Spanish) 2010 (Version: 14.0.4734.1000)
Microsoft Office Proofing (English) 2010 (Version: 14.0.4734.1000)
Microsoft Office Publisher MUI (English) 2010 (Version: 14.0.4734.1000)
Microsoft Office Shared 32-bit MUI (English) 2010 (Version: 14.0.4734.1000)
Microsoft Office Shared MUI (English) 2010 (Version: 14.0.4734.1000)
Microsoft Office Shared Setup Metadata MUI (English) 2010 (Version: 14.0.4734.1000)
Microsoft Office Suite Activation Assistant (Version: 2.7)
Microsoft Office Word MUI (English) 2010 (Version: 14.0.4734.1000)
Microsoft Silverlight (Version: 4.1.10329.0)
Microsoft SQL Server 2005 Compact Edition [ENU] (Version: 3.1.0000)
Microsoft Sync Framework Runtime Native v1.0 (x86) (Version: 1.0.1215.0)
Microsoft Sync Framework Services Native v1.0 (x86) (Version: 1.0.1215.0)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (Version: 8.0.50727.4053)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x64 9.0.30729.5570 (Version: 9.0.30729.5570)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (Version: 10.0.40219)
Movavi Video Converter 12 (Version: 12.2.0)
Mozilla Firefox 19.0.2 (x86 en-US) (Version: 19.0.2)
Mozilla Maintenance Service (Version: 19.0.2)
MSVCRT (Version: 14.0.1468.721)
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0)
OptimizerPro (Version: 1.0)
Orbit Downloader
Photo Transfer App (Version: 2.0.0)
Power Saving Utility (Version: 31.01.11.009)
PunkBuster Services (Version: 0.991)
QuickTime (Version: 7.66.73.0)
Realtek High Definition Audio Driver (Version: 6.0.1.5969)
Realtek USB 2.0 Card Reader (Version: 6.1.7100.30087)
REALTEK Wireless LAN Driver (Version: 1.00.0146)
Roxio Central Audio (Version: 3.8.0)
Roxio Central Copy (Version: 3.8.0)
Roxio Central Core (Version: 3.8.0)
Roxio Central Data (Version: 3.8.0)
Roxio Central Tools (Version: 3.8.0)
Roxio Creator LJ (Version: 10.3)
Roxio Creator LJ (Version: 10.3.204)
SaveAs (Version: 1.0)
Search-NewTab (Version: )
Skype Click to Call (Version: 6.6.11664)
Skype™ 6.1 (Version: 6.1.129)
Steam (Version: 1.0.0.0)
Synaptics Pointing Device Driver (Version: 14.0.10.0)
TeamSpeak 3 Client (Version: 3.0.10)
The Battle for Middle-earth ™ II
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2473228) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (Version: 1)
Update for Microsoft Office 2010 (KB2494150)
Update for Microsoft Office 2010 (KB2553092)
Update for Microsoft Office 2010 (KB2760631) 64-Bit Edition
Update Navi (Version: 1.3.0010)
VD64Inst (Version: 1.00.0000)
VLC media player 1.1.2 (Version: 1.1.2)
Windows Live Call (Version: 14.0.8117.0416)
Windows Live Communications Platform (Version: 14.0.8117.416)
Windows Live Essentials (Version: 14.0.8117.0416)
Windows Live Essentials (Version: 14.0.8117.416)
Windows Live Family Safety (Version: 14.0.8118.427)
Windows Live Mail (Version: 14.0.8117.0416)
Windows Live Messenger (Version: 14.0.8117.0416)
Windows Live Movie Maker (Version: 14.0.8117.0416)
Windows Live Photo Gallery (Version: 14.0.8117.416)
Windows Live Sign-in Assistant (Version: 5.000.818.5)
Windows Live Sync (Version: 14.0.8117.416)
Windows Live Upload Tool (Version: 14.0.8014.1029)
Windows Live Writer (Version: 14.0.8117.0416)
Windows Media Player Firefox Plugin (Version: 1.0.0.8)
WinRAR 4.20 (64-bit) (Version: 4.20.0)

========================= Devices: ================================


========================= Memory info: ===================================

Percentage of memory in use: 43%
Total physical RAM: 3956.55 MB
Available physical RAM: 2220.63 MB
Total Pagefile: 7911.25 MB
Available Pagefile: 6379.59 MB
Total Virtual: 4095.88 MB
Available Virtual: 3973.97 MB

========================= Partitions: =====================================

1 Drive c: () (Fixed) (Total:224.78 GB) (Free:31.34 GB) NTFS
2 Drive d: () (Fixed) (Total:224.77 GB) (Free:193.48 GB) NTFS

========================= Users: ========================================

User accounts for \\JIN-PC

Administrator            Guest                    Jin                      


**** End of log ****
 



Farbar Service Scanner Version: 03-03-2013
Ran by Jin (administrator) on 11-03-2013 at 00:26:13
Running from "C:\Downloads\Software"
Windows 7 Home Premium  (X64)
Boot Mode: Normal
****************************************************************

Internet Services:
============

Connection Status:
==============
Localhost is accessible.
LAN connected.
Google IP is accessible.
Google.com is accessible.
Yahoo IP is accessible.
Yahoo.com is accessible.


Windows Firewall:
=============

Firewall Disabled Policy:
==================


System Restore:
============

System Restore Disabled Policy:
========================


Action Center:
============

Windows Update:
============

Windows Autoupdate Disabled Policy:
============================


Windows Defender:
==============

Other Services:
==============


File Check:
========
C:\Windows\System32\nsisvc.dll => MD5 is legit
C:\Windows\System32\drivers\nsiproxy.sys => MD5 is legit
C:\Windows\System32\dhcpcore.dll => MD5 is legit
C:\Windows\System32\drivers\afd.sys => MD5 is legit
C:\Windows\System32\drivers\tdx.sys => MD5 is legit
C:\Windows\System32\Drivers\tcpip.sys
[2013-02-14 08:55] - [2013-01-04 06:41] - 1893224 ____A (Microsoft Corporation) 5CFB7AB8F9524D1A1E14369DE63B83CC

C:\Windows\System32\dnsrslvr.dll => MD5 is legit
C:\Windows\System32\mpssvc.dll => MD5 is legit
C:\Windows\System32\bfe.dll => MD5 is legit
C:\Windows\System32\drivers\mpsdrv.sys => MD5 is legit
C:\Windows\System32\SDRSVC.dll => MD5 is legit
C:\Windows\System32\vssvc.exe => MD5 is legit
C:\Windows\System32\wscsvc.dll => MD5 is legit
C:\Windows\System32\wbem\WMIsvc.dll => MD5 is legit
C:\Windows\System32\wuaueng.dll => MD5 is legit
C:\Windows\System32\qmgr.dll => MD5 is legit
C:\Windows\System32\es.dll => MD5 is legit
C:\Windows\System32\cryptsvc.dll => MD5 is legit
C:\Program Files\Windows Defender\MpSvc.dll => MD5 is legit
C:\Windows\System32\ipnathlp.dll => MD5 is legit
C:\Windows\System32\iphlpsvc.dll => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit


**** End of log ****



# AdwCleaner v2.114 - Logfile created 03/11/2013 at 00:27:50
# Updated 05/03/2013 by Xplode
# Operating system : Windows 7 Home Premium  (64 bits)
# User : Jin - JIN-PC
# Boot Mode : Normal
# Running from : C:\Downloads\Software\AdwCleaner.exe
# Option [Delete]


***** [Services] *****


***** [Files / Folders] *****

Deleted on reboot : C:\ProgramData\BetterSoft
File Deleted : C:\END
File Deleted : C:\Users\Jin\AppData\Roaming\Mozilla\Firefox\Profiles\pdr5dodl.default\searchplugins\Askcom.xml
File Deleted : C:\Users\Jin\AppData\Roaming\Mozilla\Firefox\Profiles\pdr5dodl.default\searchplugins\Web Search.xml
File Deleted : C:\Users\Jin\AppData\Roaming\Mozilla\Firefox\Profiles\pdr5dodl.default\searchplugins\WebSearch.xml
Folder Deleted : C:\Program Files (x86)\Ask.com
Folder Deleted : C:\Program Files (x86)\continuetosave
Folder Deleted : C:\Program Files (x86)\SaveAs
Folder Deleted : C:\ProgramData\Ask
Folder Deleted : C:\ProgramData\ClickIT
Folder Deleted : C:\ProgramData\InstallMate
Folder Deleted : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SaveAs
Folder Deleted : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Search-NewTab
Folder Deleted : C:\ProgramData\SaveAs
Folder Deleted : C:\ProgramData\Search-NewTab
Folder Deleted : C:\Users\Jin\AppData\Local\APN
Folder Deleted : C:\Users\Jin\AppData\Local\SwvUpdater
Folder Deleted : C:\Users\Jin\AppData\LocalLow\AskToolbar
Folder Deleted : C:\Users\Jin\AppData\LocalLow\Search-NewTab
Folder Deleted : C:\Users\Jin\AppData\Roaming\Mozilla\Firefox\Profiles\pdr5dodl.default\extensions\toolbar@ask.com
Folder Deleted : C:\Users\Jin\AppData\Roaming\OpenCandy
Folder Deleted : C:\Windows\Installer\{86D4B82A-ABED-442A-BE86-96357B70F4FE}

***** [Registry] *****

Data Deleted : HKLM\..\Windows [AppInit_DLLs] = c:\progra~2\contin~1\sprote~1.dll
Key Deleted : HKCU\Software\APN
Key Deleted : HKCU\Software\AppDataLow\Software\AskToolbar
Key Deleted : HKCU\Software\AppDataLow\Software\SmartBar
Key Deleted : HKCU\Software\AppDataLow\SProtector
Key Deleted : HKCU\Software\Ask.com
Key Deleted : HKCU\Software\Conduit
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A5AA24EA-11B8-4113-95AE-9ED71DEAF12A}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{107F27F9-8A0E-8D4E-B162-75E414B2DB80}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{CC59E0F9-7E43-44FA-9FAA-8377850BF205}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{D4027C7F-154A-4066-A1AD-4243D8127440}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{107F27F9-8A0E-8D4E-B162-75E414B2DB80}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{CC59E0F9-7E43-44FA-9FAA-8377850BF205}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{D4027C7F-154A-4066-A1AD-4243D8127440}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{006EE092-9658-4FD6-BD8E-A21A348E59F5}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{BB74DE59-BC4C-4172-9AC4-73315F71CFFE}
Key Deleted : HKLM\Software\APN
Key Deleted : HKLM\Software\AskToolbar
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{9B0CB95C-933A-4B8C-B6D4-EDCD19A43874}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\GenericAskToolbar.DLL
Key Deleted : HKLM\SOFTWARE\Classes\GenericAskToolbar.ToolbarWnd
Key Deleted : HKLM\SOFTWARE\Classes\GenericAskToolbar.ToolbarWnd.1
Key Deleted : HKLM\Software\Classes\Installer\Features\A28B4D68DEBAA244EB686953B7074FEF
Key Deleted : HKLM\Software\Classes\Installer\Products\A28B4D68DEBAA244EB686953B7074FEF
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{2996F0E7-292B-4CAE-893F-47B8B1C05B56}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{E2343056-CC08-46AC-B898-BFC7ACF4E755}
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\ConduitInstaller_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\ConduitInstaller_RASMANCS
Key Deleted : HKLM\Software\SP Global
Key Deleted : HKLM\Software\SProtector
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{00000000-6E41-4FD3-8538-502F5495E5FC}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{107F27F9-8A0E-8D4E-B162-75E414B2DB80}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{AE07101B-46D4-4A98-AF68-0333EA26E113}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{CC59E0F9-7E43-44FA-9FAA-8377850BF205}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{D4027C7F-154A-4066-A1AD-4243D8127440}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{6C434537-053E-486D-B62A-160059D9D456}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{91CF619A-4686-4CA4-9232-3B2E6B63AA92}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{AC71B60E-94C9-4EDE-BA46-E146747BB67E}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A5AA24EA-11B8-4113-95AE-9ED71DEAF12A}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{006EE092-9658-4FD6-BD8E-A21A348E59F5}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{BB74DE59-BC4C-4172-9AC4-73315F71CFFE}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{107F27F9-8A0E-8D4E-B162-75E414B2DB80}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{CC59E0F9-7E43-44FA-9FAA-8377850BF205}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D4027C7F-154A-4066-A1AD-4243D8127440}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{86D4B82A-ABED-442A-BE86-96357B70F4FE}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{AE07101B-46D4-4A98-AF68-0333EA26E113}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{6C434537-053E-486D-B62A-160059D9D456}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{79FB5FC8-44B9-4AF5-BADD-CCE547F953E5}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{91CF619A-4686-4CA4-9232-3B2E6B63AA92}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{AC71B60E-94C9-4EDE-BA46-E146747BB67E}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\A28B4D68DEBAA244EB686953B7074FEF
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks [{00000000-6E41-4FD3-8538-502F5495E5FC}]
Value Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [ApnUpdater]
Value Deleted : HKLM\SOFTWARE\Policies\Google\Chrome\ExtensionInstallForcelist [1]
Value Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar [{AE07101B-46D4-4A98-AF68-0333EA26E113}]
Value Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar [{D4027C7F-154A-4066-A1AD-4243D8127440}]
Value Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{AE07101B-46D4-4A98-AF68-0333EA26E113}]

***** [Internet Browsers] *****

-\\ Internet Explorer v9.0.8112.16464

Replaced : [HKCU\Software\Microsoft\Internet Explorer\Main - Search Page] = hxxp://feed.helperbar.com/?publisher=OC&dpid=OC&co=SG&userid=5ea79589-7738-43aa-bc0a-3d1d6de7c8fe&affid=113129&searchtype=ds&babsrc=lnkry&q={searchTerms} --> hxxp://www.google.com
Replaced : [HKCU\Software\Microsoft\Internet Explorer\Main - Start Page] = hxxp://websearch.good-results.info/ --> hxxp://www.google.com
Replaced : [HKCU\Software\Microsoft\Internet Explorer\Main - Search Bar] = hxxp://feed.helperbar.com/?publisher=OC&dpid=OC&co=SG&userid=5ea79589-7738-43aa-bc0a-3d1d6de7c8fe&affid=113129&searchtype=ds&babsrc=lnkry&q={searchTerms} --> hxxp://www.google.com
Replaced : [HKCU\Software\Microsoft\Internet Explorer\Search - Default_Search_URL] = hxxp://feed.helperbar.com/?publisher=OC&dpid=OC&co=SG&userid=5ea79589-7738-43aa-bc0a-3d1d6de7c8fe&affid=113129&searchtype=ds&babsrc=lnkry&q={searchTerms} --> hxxp://www.google.com
Replaced : [HKCU\Software\Microsoft\Internet Explorer\Search - SearchAssistant] = hxxp://feed.helperbar.com/?publisher=OC&dpid=OC&co=SG&userid=5ea79589-7738-43aa-bc0a-3d1d6de7c8fe&affid=113129&searchtype=ds&babsrc=lnkry&q={searchTerms} --> hxxp://www.google.com
Replaced : [HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main - Start Page] = hxxp://websearch.good-results.info/ --> hxxp://www.google.com

-\\ Mozilla Firefox v19.0.2 (en-US)

File : C:\Users\Jin\AppData\Roaming\Mozilla\Firefox\Profiles\pdr5dodl.default\prefs.js

Deleted : user_pref("aol_toolbar.default.homepage.check", false);
Deleted : user_pref("aol_toolbar.default.search.check", false);
Deleted : user_pref("browser.search.defaultengine", "Ask.com");
Deleted : user_pref("browser.search.defaultenginename", "Ask.com");
Deleted : user_pref("browser.search.defaulturl", "hxxp://websearch.good-results.info/?l=1&q=");
Deleted : user_pref("browser.search.order.1", "Ask.com");
Deleted : user_pref("browser.search.order.1,S", "WebSearch");
Deleted : user_pref("browser.search.selectedEngine,S", "WebSearch");
Deleted : user_pref("extensions.51062d107b37a.scode", "(function(){try{if('aol.com,mail.google.com,premiumrepo[...]
Deleted : user_pref("extensions.BabylonToolbar.prtkDS", 0);
Deleted : user_pref("extensions.BabylonToolbar.prtkHmpg", 0);
Deleted : user_pref("extensions.asktb.ff-original-keyword-url", "hxxp://websearch.good-results.info/?l=1&q=");
Deleted : user_pref("extensions.helperbar.SmartbarDisabled", true);
Deleted : user_pref("extensions.helperbar.SmartbarStateMinimaized", false);
Deleted : user_pref("sweetim.toolbar.previous.browser.search.defaultenginename", "WebSearch");
Deleted : user_pref("sweetim.toolbar.previous.browser.search.selectedEngine", "WebSearch");
Deleted : user_pref("sweetim.toolbar.previous.browser.startup.homepage", "hxxp://websearch.good-results.info/"[...]
Deleted : user_pref("sweetim.toolbar.previous.keyword.URL", "hxxp://websearch.good-results.info/?l=1&q=");
Deleted : user_pref("sweetim.toolbar.scripts.1.domain-blacklist", "");
Deleted : user_pref("sweetim.toolbar.searchguard.UserRejectedGuard_DS", "");
Deleted : user_pref("sweetim.toolbar.searchguard.UserRejectedGuard_HP", "");
Deleted : user_pref("sweetim.toolbar.searchguard.enable", "");

-\\ Google Chrome v [Unable to get version]

File : C:\Users\Jin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Deleted [l.244] : homepage = "hxxp://websearch.good-results.info/",

*************************

AdwCleaner[R1].txt - [10498 octets] - [11/03/2013 00:27:14]
AdwCleaner[S1].txt - [10571 octets] - [11/03/2013 00:27:50]

########## EOF - C:\AdwCleaner[S1].txt - [10632 octets] ##########
 



~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 4.6.9 (03.06.2013:1)
OS: Windows 7 Home Premium x64
Ran by Jin on Mon 11/03/2013 at  0:31:52.92
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




~~~ Services



~~~ Registry Values



~~~ Registry Keys

Successfully deleted: [Registry Key] hkey_local_machine\software\classes\installer\upgradecodes\f928123a039649549966d4c29d35b1c9



~~~ Files



~~~ Folders

Failed to delete: [Folder] "C:\ProgramData\bettersoft"



~~~ FireFox

Successfully deleted: [Folder] C:\Users\Jin\AppData\Roaming\mozilla\firefox\profiles\pdr5dodl.default\extensions\51062d107b2ce@51062d107b307.com
Successfully deleted: [Folder] C:\Users\Jin\AppData\Roaming\mozilla\firefox\profiles\pdr5dodl.default\extensions\51062d407c243@51062d407c27d.com
Emptied folder: C:\Users\Jin\AppData\Roaming\mozilla\firefox\profiles\pdr5dodl.default\minidumps [7 files]



~~~ Event Viewer Logs were cleared





~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on Mon 11/03/2013 at  0:39:10.63
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
 



Rkill 2.4.7 by Lawrence Abrams (Grinler)
http://www.bleepingcomputer.com/
Copyright 2008-2013 BleepingComputer.com
More Information about Rkill can be found at this link:
 http://www.bleepingcomputer.com/forums/topic308364.html

Program started at: 03/11/2013 12:40:42 AM in x64 mode.
Windows Version: Windows 7 Home Premium

Checking for Windows services to stop:

 * No malware services found to stop.

Checking for processes to terminate:

 * C:\ProgramData\BetterSoft\SaveAs\SaveAs.exe (PID: 1748) [AU-HEUR]
 * C:\ProgramData\BetterSoft\ContinueToSave\ContinueToSave.exe (PID: 540) [AU-HEUR]
 * C:\Program Files\Java\jre6\bin\jusched.exe (PID: 2748) [FI]

3 proccesses terminated!

Checking Registry for malware related settings:

 * Explorer Policy Removed:  NoActiveDesktopChanges [HKLM]

Backup Registry file created at:
 C:\Users\Jin\Desktop\rkill\rkill-03-11-2013-12-40-48.reg

Resetting .EXE, .COM, & .BAT associations in the Windows Registry.

Performing miscellaneous checks:

 * No issues found.

Checking Windows Service Integrity:

 * No issues found.

Searching for Missing Digital Signatures:

 * No issues found.

Checking HOSTS File:

 * No issues found.

Program finished at: 03/11/2013 12:41:04 AM
Execution time: 0 hours(s), 0 minute(s), and 21 seconds(s)
 



"HKLM\System\CurrentControlSet\Control\Terminal Server\Wds\rdpwd\StartupPrograms"    ""    ""    ""
+ "rdpclip"    ""    ""    "File not found: rdpclip"
"HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run"    ""    ""    ""
+ "AutoKMS"    ""    ""    "File not found: C:\Windows\AutoKMS.exe"
+ "BthSyncServ"    ""    ""    "File not found: C:\Program Files\CSR\Bluetooth Feature Pack 5.0\bthsyncserv.exe"
+ "FDM7"    "Fujitsu Display Manager"    "FUJITSU LIMITED"    "c:\program files\fujitsu\fdm7\fdmdaemon.exe"
+ "FJUPDNV_Chitose"    "Fujitsu Update Navi(Station)"    "FUJITSU LIMITED"    "c:\program files\fujitsu\updnavi\updatenv.exe"
+ "LoadBtnHnd"    "Button handler"    "FUJITSU LIMITED"    "c:\program files\fujitsu\application panel\btnhnd.exe"
+ "LoadFujitsuQuickTouch"    "LifeBook Application Panel / Core"    "FUJITSU LIMITED"    "c:\program files\fujitsu\application panel\quicktouch.exe"
+ "MouseDriver"    "pximouse"    "Pixart Imaging Inc"    "c:\windows\system32\tiltwheelmouse.exe"
+ "PSUTility"    "TrayManager"    "FUJITSU LIMITED"    "c:\program files\fujitsu\psutility\traymanager.exe"
+ "RtHDVCpl"    "Realtek HD Audio Manager"    "Realtek Semiconductor"    "c:\program files\realtek\audio\hda\ravcpl64.exe"
+ "SunJavaUpdateSched"    "Java™ Platform SE binary"    "Sun Microsystems, Inc."    "c:\program files\java\jre6\bin\jusched.exe"
+ "SynTPEnh"    "Synaptics TouchPad Enhancements"    "Synaptics Incorporated"    "c:\program files\synaptics\syntp\syntpenh.exe"
"HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run"    ""    ""    ""
+ "Adobe ARM"    "Adobe Reader and Acrobat Manager"    "Adobe Systems Incorporated"    "c:\program files (x86)\common files\adobe\arm\1.0\adobearm.exe"
+ "APSDaemon"    "Apple Push"    "Apple Inc."    "c:\program files (x86)\common files\apple\apple application support\apsdaemon.exe"
+ "IndicatorUtility"    "Fujitsu Hotkey Utility"    "FUJITSU LIMITED"    "c:\program files (x86)\fujitsu\fujitsu hotkey utility\indicatoruty.exe"
+ "iTunesHelper"    "iTunesHelper"    "Apple Inc."    "c:\program files (x86)\itunes\ituneshelper.exe"
+ "LoadFUJ02E3"    "FUJ02E3 Utility"    "FUJITSU LIMITED"    "c:\program files (x86)\fujitsu\fuj02e3\fuj02e3.exe"
+ "StartCCC"    "Catalyst® Control Center Launcher"    "Advanced Micro Devices, Inc."    "c:\program files (x86)\ati technologies\ati.ace\core-static\clistart.exe"
+ "SunJavaUpdateSched"    "Java™ Update Scheduler"    "Sun Microsystems, Inc."    "c:\program files (x86)\common files\java\java update\jusched.exe"
+ "UCam_Menu"    "MUI StartMenu Application"    "CyberLink Corp."    "c:\program files (x86)\cyberlink\youcam\muitransfer\muistartmenu.exe"
"C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup"    ""    ""    ""
+ "McAfee Security Scan Plus.lnk"    "McAfee Security Scanner Scheduler"    "McAfee, Inc."    "c:\program files (x86)\mcafee security scan\3.0.318\ssscheduler.exe"
"HKLM\SOFTWARE\Microsoft\Active Setup\Installed Components"    ""    ""    ""
+ "Microsoft Windows"    "Windows Mail"    "Microsoft Corporation"    "c:\program files\windows mail\winmail.exe"
"HKLM\SOFTWARE\Wow6432Node\Microsoft\Active Setup\Installed Components"    ""    ""    ""
+ "Microsoft Windows"    "Windows Mail"    "Microsoft Corporation"    "c:\program files (x86)\windows mail\winmail.exe"
"HKCU\Software\Microsoft\Windows\CurrentVersion\Run"    ""    ""    ""
+ "Facebook Update"    "Facebook Installer"    "Facebook Inc."    "c:\users\jin\appdata\local\facebook\update\facebookupdate.exe"
+ "Sidebar"    "Windows Desktop Gadgets"    "Microsoft Corporation"    "c:\program files\windows sidebar\sidebar.exe"
"HKLM\SOFTWARE\Classes\Protocols\Filter"    ""    ""    ""
+ "text/xml"    "Microsoft Office XML MIME Filter"    "Microsoft Corporation"    "c:\program files\common files\microsoft shared\office14\msoxmlmf.dll"
"HKLM\SOFTWARE\Classes\Protocols\Handler"    ""    ""    ""
+ "ms-help"    "Microsoft® Help Data Services Module"    "Microsoft Corporation"    "c:\program files\common files\microsoft shared\help\hxds.dll"
+ "skype-ie-addon-data"    "Skype Click to Call for Internet Explorer"    "Skype Technologies S.A."    "c:\program files (x86)\skype\toolbars\internet explorer x64\skypeieplugin.dll"
"HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks"    ""    ""    ""
+ "Groove GFS Stub Execution Hook"    "Microsoft SharePoint Workspace Extensions"    "Microsoft Corporation"    "c:\program files\microsoft office\office14\grooveex.dll"
"HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks"    ""    ""    ""
+ "Groove GFS Stub Execution Hook"    "Microsoft SharePoint Workspace Extensions"    "Microsoft Corporation"    "c:\program files (x86)\microsoft office\office14\grooveex.dll"
"HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers"    ""    ""    ""
+ "_Movavivc11"    "Context Menu"    "Movavi"    "c:\program files (x86)\movavi video converter 12\vccontext.dll"
+ "MagicISO"    "MagicISO Shell Extension Module"    "MagicISO, Inc."    "c:\program files (x86)\magiciso\misosh64.dll"
+ "RXDCExtSvr"    "Roxio Disc Copier Shell Extension (AMD64)"    "Sonic Solutions"    "c:\program files\roxio\virtual drive 10\dc_shellext64.dll"
+ "WinRAR"    "WinRAR shell extension"    "Alexander Roshal"    "c:\program files\winrar\rarext.dll"
+ "XXX Groove GFS Context Menu Handler XXX"    "Microsoft SharePoint Workspace Extensions"    "Microsoft Corporation"    "c:\program files\microsoft office\office14\grooveex.dll"
"HKLM\Software\Wow6432Node\Classes\*\ShellEx\ContextMenuHandlers"    ""    ""    ""
+ "WinRAR32"    "WinRAR shell extension"    "Alexander Roshal"    "c:\program files\winrar\rarext32.dll"
+ "XXX Groove GFS Context Menu Handler XXX"    "Microsoft SharePoint Workspace Extensions"    "Microsoft Corporation"    "c:\program files (x86)\microsoft office\office14\grooveex.dll"
"HKLM\Software\Classes\AllFileSystemObjects\ShellEx\ContextMenuHandlers"    ""    ""    ""
+ "MBAMShlExt"    "Malwarebytes Anti-Malware"    "Malwarebytes Corporation"    "c:\program files (x86)\malwarebytes' anti-malware\mbamext.dll"
+ "XXX Groove GFS Context Menu Handler XXX"    "Microsoft SharePoint Workspace Extensions"    "Microsoft Corporation"    "c:\program files\microsoft office\office14\grooveex.dll"
"HKLM\Software\Wow6432Node\Classes\AllFileSystemObjects\ShellEx\ContextMenuHandlers"    ""    ""    ""
+ "XXX Groove GFS Context Menu Handler XXX"    "Microsoft SharePoint Workspace Extensions"    "Microsoft Corporation"    "c:\program files (x86)\microsoft office\office14\grooveex.dll"
"HKLM\Software\Classes\Directory\ShellEx\ContextMenuHandlers"    ""    ""    ""
+ "MagicISO"    "MagicISO Shell Extension Module"    "MagicISO, Inc."    "c:\program files (x86)\magiciso\misosh64.dll"
+ "XXX Groove GFS Context Menu Handler XXX"    "Microsoft SharePoint Workspace Extensions"    "Microsoft Corporation"    "c:\program files\microsoft office\office14\grooveex.dll"
"HKLM\Software\Wow6432Node\Classes\Directory\ShellEx\ContextMenuHandlers"    ""    ""    ""
+ "XXX Groove GFS Context Menu Handler XXX"    "Microsoft SharePoint Workspace Extensions"    "Microsoft Corporation"    "c:\program files (x86)\microsoft office\office14\grooveex.dll"
"HKLM\Software\Classes\Directory\Background\ShellEx\ContextMenuHandlers"    ""    ""    ""
+ "ACE"    "AMD Desktop Control Panel"    "Advanced Micro Devices, Inc."    "c:\program files (x86)\ati technologies\ati.ace\core-static\atiacm64.dll"
+ "Gadgets"    "Sidebar droptarget"    "Microsoft Corporation"    "c:\program files\windows sidebar\sbdrop.dll"
+ "igfxcui"    "igfxpph Module"    "Intel Corporation"    "c:\windows\system32\igfxpph.dll"
+ "XXX Groove GFS Context Menu Handler XXX"    "Microsoft SharePoint Workspace Extensions"    "Microsoft Corporation"    "c:\program files\microsoft office\office14\grooveex.dll"
"HKLM\Software\Wow6432Node\Classes\Directory\Background\ShellEx\ContextMenuHandlers"    ""    ""    ""
+ "Gadgets"    "Sidebar droptarget"    "Microsoft Corporation"    "c:\program files (x86)\windows sidebar\sbdrop.dll"
+ "XXX Groove GFS Context Menu Handler XXX"    "Microsoft SharePoint Workspace Extensions"    "Microsoft Corporation"    "c:\program files (x86)\microsoft office\office14\grooveex.dll"
"HKLM\Software\Wow6432Node\Classes\Folder\Shellex\ColumnHandlers"    ""    ""    ""
+ "PDF Shell Extension"    "PDF Shell Extension"    "Adobe Systems, Inc."    "c:\program files (x86)\common files\adobe\acrobat\activex\pdfshell.dll"
"HKLM\Software\Classes\Folder\ShellEx\ContextMenuHandlers"    ""    ""    ""
+ "_Movavivc11"    "Context Menu"    "Movavi"    "c:\program files (x86)\movavi video converter 12\vccontext.dll"
+ "MagicISO"    "MagicISO Shell Extension Module"    "MagicISO, Inc."    "c:\program files (x86)\magiciso\misosh64.dll"
+ "MBAMShlExt"    "Malwarebytes Anti-Malware"    "Malwarebytes Corporation"    "c:\program files (x86)\malwarebytes' anti-malware\mbamext.dll"
+ "RXDCExtSvr"    "Roxio Disc Copier Shell Extension (AMD64)"    "Sonic Solutions"    "c:\program files\roxio\virtual drive 10\dc_shellext64.dll"
+ "WinRAR"    "WinRAR shell extension"    "Alexander Roshal"    "c:\program files\winrar\rarext.dll"
+ "XXX Groove GFS Context Menu Handler XXX"    "Microsoft SharePoint Workspace Extensions"    "Microsoft Corporation"    "c:\program files\microsoft office\office14\grooveex.dll"
"HKLM\Software\Wow6432Node\Classes\Folder\ShellEx\ContextMenuHandlers"    ""    ""    ""
+ "WinRAR32"    "WinRAR shell extension"    "Alexander Roshal"    "c:\program files\winrar\rarext32.dll"
+ "XXX Groove GFS Context Menu Handler XXX"    "Microsoft SharePoint Workspace Extensions"    "Microsoft Corporation"    "c:\program files (x86)\microsoft office\office14\grooveex.dll"
"HKLM\Software\Classes\Folder\ShellEx\DragDropHandlers"    ""    ""    ""
+ "WinRAR"    "WinRAR shell extension"    "Alexander Roshal"    "c:\program files\winrar\rarext.dll"
"HKLM\Software\Wow6432Node\Classes\Folder\ShellEx\DragDropHandlers"    ""    ""    ""
+ "WinRAR32"    "WinRAR shell extension"    "Alexander Roshal"    "c:\program files\winrar\rarext32.dll"
"HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers"    ""    ""    ""
+ "Groove Explorer Icon Overlay 1 (GFS Unread Stub)"    "Microsoft SharePoint Workspace Extensions"    "Microsoft Corporation"    "c:\program files\microsoft office\office14\grooveex.dll"
+ "Groove Explorer Icon Overlay 2 (GFS Stub)"    "Microsoft SharePoint Workspace Extensions"    "Microsoft Corporation"    "c:\program files\microsoft office\office14\grooveex.dll"
+ "Groove Explorer Icon Overlay 2.5 (GFS Unread Folder)"    "Microsoft SharePoint Workspace Extensions"    "Microsoft Corporation"    "c:\program files\microsoft office\office14\grooveex.dll"
+ "Groove Explorer Icon Overlay 3 (GFS Folder)"    "Microsoft SharePoint Workspace Extensions"    "Microsoft Corporation"    "c:\program files\microsoft office\office14\grooveex.dll"
+ "Groove Explorer Icon Overlay 4 (GFS Unread Mark)"    "Microsoft SharePoint Workspace Extensions"    "Microsoft Corporation"    "c:\program files\microsoft office\office14\grooveex.dll"
"HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers"    ""    ""    ""
+ "Groove Explorer Icon Overlay 1 (GFS Unread Stub)"    "Microsoft SharePoint Workspace Extensions"    "Microsoft Corporation"    "c:\program files (x86)\microsoft office\office14\grooveex.dll"
+ "Groove Explorer Icon Overlay 2 (GFS Stub)"    "Microsoft SharePoint Workspace Extensions"    "Microsoft Corporation"    "c:\program files (x86)\microsoft office\office14\grooveex.dll"
+ "Groove Explorer Icon Overlay 2.5 (GFS Unread Folder)"    "Microsoft SharePoint Workspace Extensions"    "Microsoft Corporation"    "c:\program files (x86)\microsoft office\office14\grooveex.dll"
+ "Groove Explorer Icon Overlay 3 (GFS Folder)"    "Microsoft SharePoint Workspace Extensions"    "Microsoft Corporation"    "c:\program files (x86)\microsoft office\office14\grooveex.dll"
+ "Groove Explorer Icon Overlay 4 (GFS Unread Mark)"    "Microsoft SharePoint Workspace Extensions"    "Microsoft Corporation"    "c:\program files (x86)\microsoft office\office14\grooveex.dll"
"HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects"    ""    ""    ""
+ "Groove GFS Browser Helper"    "Microsoft SharePoint Workspace Extensions"    "Microsoft Corporation"    "c:\program files\microsoft office\office14\grooveex.dll"
+ "Java™ Plug-In 2 SSV Helper"    "Java™ Platform SE binary"    "Sun Microsystems, Inc."    "c:\program files\java\jre6\bin\jp2ssv.dll"
+ "Office Document Cache Handler"    "Microsoft Office Document Cache Handler"    "Microsoft Corporation"    "c:\program files\microsoft office\office14\urlredir.dll"
+ "Skype add-on for Internet Explorer"    "Skype Click to Call for Internet Explorer"    "Skype Technologies S.A."    "c:\program files (x86)\skype\toolbars\internet explorer x64\skypeieplugin.dll"
+ "Windows Live Family Safety Browser Helper Class"    "Family Safety Browser Helper Object Library"    "Microsoft Corporation"    "c:\program files\windows live\family safety\fssbho.dll"
"HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects"    ""    ""    ""
+ "Adobe PDF Link Helper"    "Adobe PDF Helper for Internet Explorer"    "Adobe Systems Incorporated"    "c:\program files (x86)\common files\adobe\acrobat\activex\acroiehelpershim.dll"
+ "Bing Bar Helper"    "Bing Client Extensions"    "Microsoft Corporation."    "c:\program files (x86)\microsoft\bingbar\7.1.391.0\bingext.dll"
+ "Groove GFS Browser Helper"    "Microsoft SharePoint Workspace Extensions"    "Microsoft Corporation"    "c:\program files (x86)\microsoft office\office14\grooveex.dll"
+ "Java™ Plug-In 2 SSV Helper"    "Java™ Platform SE binary"    "Oracle Corporation"    "c:\program files (x86)\java\jre7\bin\jp2ssv.dll"
+ "Java™ Plug-In SSV Helper"    "Java™ Platform SE binary"    "Oracle Corporation"    "c:\program files (x86)\java\jre7\bin\ssv.dll"
+ "MSS+ Identifier"    "Quick Browser Identifier for MSS+ Tool"    "McAfee, Inc."    "c:\program files (x86)\mcafee security scan\3.0.318\mcafeemss_ie.dll"
+ "Octh Class"    "Orbitcth"    "Orbitdownloader.com"    "c:\program files (x86)\orbitdownloader\orbitcth.dll"
+ "Office Document Cache Handler"    "Microsoft Office Document Cache Handler"    "Microsoft Corporation"    "c:\program files (x86)\microsoft office\office14\urlredir.dll"
+ "Skype Browser Helper"    "Skype Click to Call for Internet Explorer"    "Skype Technologies S.A."    "c:\program files (x86)\skype\toolbars\internet explorer\skypeieplugin.dll"
+ "Windows Live Sign-in Helper"    "WindowsLiveLogin.dll"    "Microsoft Corporation"    "c:\program files (x86)\common files\microsoft shared\windows live\windowslivelogin.dll"
"HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Toolbar"    ""    ""    ""
+ "Bing"    "Bing Client Extensions"    "Microsoft Corporation."    "c:\program files (x86)\microsoft\bingbar\7.1.391.0\bingext.dll"
+ "Grab Pro"    "Grab Pro"    ""    "c:\program files (x86)\orbitdownloader\grabpro.dll"
"HKLM\Software\Microsoft\Internet Explorer\Extensions"    ""    ""    ""
+ "OneNote Lin&ked Notes"    "Microsoft OneNote Internet Explorer Add-in"    "Microsoft Corporation"    "c:\program files\microsoft office\office14\onbttnielinkednotes.dll"
+ "Se&nd to OneNote"    "Microsoft OneNote Internet Explorer Add-in"    "Microsoft Corporation"    "c:\program files\microsoft office\office14\onbttnie.dll"
+ "Skype Click to Call"    "Skype Click to Call for Internet Explorer"    "Skype Technologies S.A."    "c:\program files (x86)\skype\toolbars\internet explorer x64\skypeieplugin.dll"
"HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Extensions"    ""    ""    ""
+ "&Blog This in Windows Live Writer"    "Windows Live Writer Blog This Extension"    "Microsoft Corporation"    "c:\program files (x86)\windows live\writer\writerbrowserextension.dll"
+ "OneNote Lin&ked Notes"    "Microsoft OneNote Internet Explorer Add-in"    "Microsoft Corporation"    "c:\program files (x86)\microsoft office\office14\onbttnielinkednotes.dll"
+ "Se&nd to OneNote"    "Microsoft OneNote Internet Explorer Add-in"    "Microsoft Corporation"    "c:\program files (x86)\microsoft office\office14\onbttnie.dll"
+ "Skype Click to Call"    "Skype Click to Call for Internet Explorer"    "Skype Technologies S.A."    "c:\program files (x86)\skype\toolbars\internet explorer\skypeieplugin.dll"
"Task Scheduler"    ""    ""    ""
+ "\Adobe Flash Player Updater"    "Adobe® Flash® Player Update Service 11.6 r602"    "Adobe Systems Incorporated"    "c:\windows\syswow64\macromed\flash\flashplayerupdateservice.exe"
+ "\Apple\AppleSoftwareUpdate"    "Apple Software Update"    "Apple Inc."    "c:\program files (x86)\apple software update\softwareupdate.exe"
+ "\FacebookUpdateTaskUserS-1-5-21-1813113406-1341140154-491293989-1000Core"    "Facebook Installer"    "Facebook Inc."    "c:\users\jin\appdata\local\facebook\update\facebookupdate.exe"
+ "\FacebookUpdateTaskUserS-1-5-21-1813113406-1341140154-491293989-1000UA"    "Facebook Installer"    "Facebook Inc."    "c:\users\jin\appdata\local\facebook\update\facebookupdate.exe"
+ "\Microsoft\Windows Defender\MP Scheduled Scan"    "Microsoft Malware Protection Command Line Utility"    "Microsoft Corporation"    "c:\program files\windows defender\mpcmdrun.exe"
+ "\Microsoft\Windows\NetTrace\GatherNetworkInfo"    ""    ""    "c:\windows\system32\gathernetworkinfo.vbs"
+ "\Microsoft\Windows\Windows Media Sharing\UpdateLibrary"    "Windows Media Player Network Sharing Service Configuration Application"    "Microsoft Corporation"    "c:\program files\windows media player\wmpnscfg.exe"
+ "\PCDoctorBackgroundMonitorTask"    "Fujitsu Hardware Diagnostics Tool"    "PC-Doctor, Inc."    "c:\program files\fujitsu hardware diagnostics tool\pcdrcui.exe"
+ "\schedule!1143840799"    "Updater"    ""    "c:\programdata\bettersoft\continuetosave\continuetosave.exe"
+ "\schedule!3036567561"    ""    ""    "File not found: C:\ProgramData\BetterSoft\OptimizerPro\OptimizerPro.exe"
+ "\schedule!422607286"    "Updater"    ""    "c:\programdata\bettersoft\saveas\saveas.exe"
+ "\Scheduled Update for Ask Toolbar"    ""    ""    "File not found: C:\Program Files (x86)\Ask.com\UpdateTask.exe"
+ "\{7B8B6A22-DABE-4DCC-9BEC-1DA778195BA7}"    ""    ""    "c:\program files (x86)\electronic arts\the battle for middle-earth ™ ii\lotrbfme2.exe"
+ "\{96B58980-158D-4E07-BA69-F374C7450B32}"    ""    ""    "c:\program files (x86)\electronic arts\the battle for middle-earth ™ ii\lotrbfme2.exe"
"HKLM\System\CurrentControlSet\Services"    ""    ""    ""
+ "AdobeARMservice"    "Adobe Acrobat Updater keeps your Adobe software up to date."    "Adobe Systems Incorporated"    "c:\program files (x86)\common files\adobe\arm\1.0\armsvc.exe"
+ "AdobeFlashPlayerUpdateSvc"    "This service keeps your Adobe Flash Player installation up to date with the latest enhancements and security fixes."    "Adobe Systems Incorporated"    "c:\windows\syswow64\macromed\flash\flashplayerupdateservice.exe"
+ "AMD External Events Utility"    "AMD External Events Service Module"    "AMD"    "c:\windows\system32\atiesrxx.exe"
+ "Apple Mobile Device"    "Provides the interface to Apple mobile devices."    "Apple Inc."    "c:\program files (x86)\common files\apple\mobile device support\applemobiledeviceservice.exe"
+ "BBSvc"    "Keeps Bing Bar up-to-date. Disabling this service might prevent updates and expose your computer to security vulnerabilities or functional flaws in Bing Bar."    "Microsoft Corporation."    "c:\program files (x86)\microsoft\bingbar\7.1.391.0\bbsvc.exe"
+ "BBUpdate"    "Enables the detection, download and installation of up-to-date configuration files for Bing Bar. Also provides server communication for the customer experience improvement program. Stopping or disabling this service may prevent you from getting the latest updates for Bing Bar, which may expose your computer to security vulnerabilities or functional flaws in the Bing Bar."    "Microsoft Corporation."    "c:\program files (x86)\microsoft\bingbar\7.1.391.0\seaport.exe"
+ "Bonjour Service"    "Enables hardware devices and software services to automatically configure themselves on the network and advertise their presence."    "Apple Inc."    "c:\program files\bonjour\mdnsresponder.exe"
+ "fsssvc"    "This service enables Family Safety on the computer. If this service is not running, Family Safety will not work."    "Microsoft Corporation"    "c:\program files (x86)\windows live\family safety\fsssvc.exe"
+ "iPod Service"    "iPod hardware management services"    "Apple Inc."    "c:\program files\ipod\bin\ipodservice.exe"
+ "LMS"    "Allows applications to access the local Intel® Management and Security Application using its locally-available selected network interfaces."    "Intel Corporation"    "c:\program files (x86)\intel\intel® management engine components\lms\lms.exe"
+ "McComponentHostService"    "McAfee Security Scan Component Host Service"    "McAfee, Inc."    "c:\program files (x86)\mcafee security scan\3.0.318\mcchsvc.exe"
+ "Microsoft SharePoint Workspace Audit Service"    "Microsoft SharePoint Workspace"    "Microsoft Corporation"    "c:\program files\microsoft office\office14\groove.exe"
+ "MozillaMaintenance"    "The Mozilla Maintenance Service ensures that you have the latest and most secure version of Mozilla Firefox on your computer. Keeping Firefox up to date is very important for your online security, and Mozilla strongly recommends that you keep this service enabled."    "Mozilla Foundation"    "c:\program files (x86)\mozilla maintenance service\maintenanceservice.exe"
+ "ose64"    "Saves installation files used for updates and repairs and is required for the downloading of Setup updates and Watson error reports."    "Microsoft Corporation"    "c:\program files\common files\microsoft shared\source engine\ose.exe"
+ "osppsvc"    "Office Software Protection Platform Service (unlocalized description)"    "Microsoft Corporation"    "c:\program files\common files\microsoft shared\officesoftwareprotectionplatform\osppsvc.exe"
+ "PnkBstrA"    "PunkBuster Service Component [v1034] http://www.evenbalance.com"    ""    "c:\windows\syswow64\pnkbstra.exe"
+ "PowerSavingUtilityService"    "PSUService"    "FUJITSU LIMITED"    "c:\program files\fujitsu\psutility\psuservice.exe"
+ "Skype C2C Service"    "Skype Click to Call Update Service"    "Skype Technologies S.A."    "c:\programdata\skype\toolbars\skype c2c service\c2c_service.exe"
+ "SkypeUpdate"    "Enables the detection, download and installation of updates for Skype."    "Skype Technologies"    "c:\program files (x86)\skype\updater\updater.exe"
+ "Steam Client Service"    "Steam Client Service monitors and updates Steam content"    "Valve Corporation"    "c:\program files (x86)\common files\steam\steamservice.exe"
+ "UNS"    "Intel® Management and Security Application User Notification Service - Updates the Windows Event Log with notifications of pre defined events received from the local Intel® Management and Security Application Device."    "Intel Corporation"    "c:\program files (x86)\intel\intel® management engine components\uns\uns.exe"
+ "UpdateNaviInstallService"    "Component for Fujitsu Update Navi"    "FUJITSU LIMITED"    "c:\program files\fujitsu\updnavi\updnvsrv.exe"
+ "WinDefend"    "Protection against spyware and potentially unwanted software"    "Microsoft Corporation"    "c:\program files\windows defender\mpsvc.dll"
+ "WMPNetworkSvc"    "Shares Windows Media Player libraries to other networked players and media devices using Universal Plug and Play"    "Microsoft Corporation"    "c:\program files\windows media player\wmpnetwk.exe"
"HKLM\System\CurrentControlSet\Services"    ""    ""    ""
+ "adp94xx"    "Adaptec Windows SAS/SATA Storport Driver"    "Adaptec, Inc."    "c:\windows\system32\drivers\adp94xx.sys"
+ "adpahci"    "Adaptec Windows SATA Storport Driver"    "Adaptec, Inc."    "c:\windows\system32\drivers\adpahci.sys"
+ "adpu320"    "Adaptec StorPort Ultra320 SCSI Driver (X64)"    "Adaptec, Inc."    "c:\windows\system32\drivers\adpu320.sys"
+ "AgereSoftModem"    "SoftModem Device Driver"    "LSI Corp"    "c:\windows\system32\drivers\agrsm64.sys"
+ "aliide"    "ALi mini IDE Driver"    "Acer Laboratories Inc."    "c:\windows\system32\drivers\aliide.sys"
+ "amdkmdag"    "ATI Radeon Kernel Mode Driver"    "ATI Technologies Inc."    "c:\windows\system32\drivers\atipmdag.sys"
+ "amdkmdap"    "AMD multi-vendor Miniport Driver"    "Advanced Micro Devices, Inc."    "c:\windows\system32\drivers\atikmpag.sys"
+ "amdsata"    "AHCI 1.2 Device Driver"    "Advanced Micro Devices"    "c:\windows\system32\drivers\amdsata.sys"
+ "amdsbs"    "AMD Technology AHCI Compatible Controller Driver for Windows - AMD64 platform"    "AMD Technologies Inc."    "c:\windows\system32\drivers\amdsbs.sys"
+ "amdxata"    "Storage Filter Driver"    "Advanced Micro Devices"    "c:\windows\system32\drivers\amdxata.sys"
+ "arc"    "Adaptec RAID Storport Driver"    "Adaptec, Inc."    "c:\windows\system32\drivers\arc.sys"
+ "arcsas"    "Adaptec SAS RAID WS03 Driver"    "Adaptec, Inc."    "c:\windows\system32\drivers\arcsas.sys"
+ "athr"    "Atheros Extensible Wireless LAN device driver"    "Atheros Communications, Inc."    "c:\windows\system32\drivers\athrx.sys"
+ "b06bdrv"    "Broadcom NetXtreme II GigE VBD"    "Broadcom Corporation"    "c:\windows\system32\drivers\bxvbda.sys"
+ "b57nd60a"    "Broadcom NetXtreme Gigabit Ethernet NDIS6.x Unified Driver."    "Broadcom Corporation"    "c:\windows\system32\drivers\b57nd60a.sys"
+ "BrFiltLo"    "Windows ME USB Mass-Storage Bulk-Only Lower Filter Driver"    "Brother Industries, Ltd."    "c:\windows\system32\drivers\brfiltlo.sys"
+ "BrFiltUp"    "Windows ME USB Mass-Storage Bulk-Only Upper Filter Driver"    "Brother Industries, Ltd."    "c:\windows\system32\drivers\brfiltup.sys"
+ "Brserid"    "Brotehr Serial I/F Driver (WDM)"    "Brother Industries Ltd."    "c:\windows\system32\drivers\brserid.sys"
+ "BrSerWdm"    "Brother Serial driver (WDM version)"    "Brother Industries Ltd."    "c:\windows\system32\drivers\brserwdm.sys"
+ "BrUsbMdm"    "Brother USB MDM Driver "    "Brother Industries Ltd."    "c:\windows\system32\drivers\brusbmdm.sys"
+ "BrUsbSer"    "Brother USB Serial Driver"    "Brother Industries Ltd."    "c:\windows\system32\drivers\brusbser.sys"
+ "BthAvrcp"    "Bluetooth Remote Control Driver"    "CSR, plc"    "c:\windows\system32\drivers\bthavrcp.sys"
+ "cmdide"    "CMD PCI IDE Bus Driver"    "CMD Technology, Inc."    "c:\windows\system32\drivers\cmdide.sys"
+ "e1yexpress"    "Intel® Gigabit Network Connection NDIS 6 deserialized driver"    "Intel Corporation"    "c:\windows\system32\drivers\e1y60x64.sys"
+ "ebdrv"    "Broadcom NetXtreme II 10 GigE VBD"    "Broadcom Corporation"    "c:\windows\system32\drivers\evbda.sys"
+ "elxstor"    "Storport Miniport Driver for LightPulse HBAs"    "Emulex"    "c:\windows\system32\drivers\elxstor.sys"
+ "FBIOSDRV"    "Fujitsu BIOS Driver"    "FUJITSU LIMITED"    "c:\windows\system32\drivers\fbiosdrv.sys"
+ "FUJ02B1"    "WDM driver for FUJ02B1 PnP device"    "FUJITSU LIMITED"    "c:\windows\system32\drivers\fuj02b1.sys"
+ "FUJ02E3"    "WDM driver for FUJ02E3 PnP device"    "FUJITSU LIMITED"    "c:\windows\system32\drivers\fuj02e3.sys"
+ "GEARAspiWDM"    "CD DVD Filter"    "GEAR Software Inc."    "c:\windows\system32\drivers\gearaspiwdm.sys"
+ "hcw85cir"    "Hauppauge WinTV 885 Consumer IR Driver for eHome"    "Hauppauge Computer Works, Inc."    "c:\windows\system32\drivers\hcw85cir.sys"
+ "HECIx64"    "Intel® Management Engine Interface"    "Intel Corporation"    "c:\windows\system32\drivers\hecix64.sys"
+ "HpSAMD"    "Smart Array SAS/SATA Controller Media Driver"    "Hewlett-Packard Company"    "c:\windows\system32\drivers\hpsamd.sys"
+ "iaStor"    "Intel Matrix Storage Manager driver - x64"    "Intel Corporation"    "c:\windows\system32\drivers\iastor.sys"
+ "iaStorV"    "Intel Matrix Storage Manager driver - x64"    "Intel Corporation"    "c:\windows\system32\drivers\iastorv.sys"
+ "igfx"    "Intel Graphics Kernel Mode Driver"    "Intel Corporation"    "c:\windows\system32\drivers\igdkmd64.sys"
+ "iirsp"    "Intel/ICP Raid Storport Driver"    "Intel Corp./ICP vortex GmbH"    "c:\windows\system32\drivers\iirsp.sys"
+ "Impcd"    "Intel® Turbo Boost Technology Driver"    "Intel Corporation"    "c:\windows\system32\drivers\impcd.sys"
+ "IntcAzAudAddService"    "Realtek® High Definition Audio Function Driver"    "Realtek Semiconductor Corp."    "c:\windows\system32\drivers\rtkvhd64.sys"
+ "LSI_FC"    "LSI Fusion-MPT FC Driver (StorPort)"    "LSI Corporation"    "c:\windows\system32\drivers\lsi_fc.sys"
+ "LSI_SAS"    "LSI Fusion-MPT SAS Driver (StorPort)"    "LSI Corporation"    "c:\windows\system32\drivers\lsi_sas.sys"
+ "LSI_SAS2"    "LSI SAS Gen2 Driver (StorPort)"    "LSI Corporation"    "c:\windows\system32\drivers\lsi_sas2.sys"
+ "LSI_SCSI"    "LSI Fusion-MPT SCSI Driver (StorPort)"    "LSI Corporation"    "c:\windows\system32\drivers\lsi_scsi.sys"
+ "megasas"    "MEGASAS RAID Controller Driver for Windows 7\Server 2008 R2 for x64"    "LSI Corporation"    "c:\windows\system32\drivers\megasas.sys"
+ "MegaSR"    "LSI MegaRAID Software RAID Driver"    "LSI Corporation, Inc."    "c:\windows\system32\drivers\megasr.sys"
+ "netw5v64"    "Intel® Wireless WiFi Link Driver"    "Intel Corporation"    "c:\windows\system32\drivers\netw5v64.sys"
+ "nfrd960"    "IBM ServeRAID Controller Driver"    "IBM Corporation"    "c:\windows\system32\drivers\nfrd960.sys"
+ "nvraid"    "NVIDIA® nForce™ RAID Driver"    "NVIDIA Corporation"    "c:\windows\system32\drivers\nvraid.sys"
+ "nvstor"    "NVIDIA® nForce™ Sata Performance Driver"    "NVIDIA Corporation"    "c:\windows\system32\drivers\nvstor.sys"
+ "PCDSRVC{D2FB0CDC-EC83EFAE-06000000}_0"    "Kernel Driver"    "PC-Doctor, Inc."    "c:\program files\fujitsu hardware diagnostics tool\pcdsrvc_x64.pkms"
+ "PxHlpa64"    "Px Engine Device Driver for 64-bit Windows"    "Sonic Solutions"    "c:\windows\system32\drivers\pxhlpa64.sys"
+ "ql2300"    "QLogic Fibre Channel Stor Miniport Driver"    "QLogic Corporation"    "c:\windows\system32\drivers\ql2300.sys"
+ "ql40xx"    "QLogic iSCSI Storport Miniport Driver"    "QLogic Corporation"    "c:\windows\system32\drivers\ql40xx.sys"
+ "RimUsb"    "BlackBerry Device Driver"    "Research In Motion Limited"    "c:\windows\system32\drivers\rimusb_amd64.sys"
+ "RSUSBSTOR"    "Realtek USB Mass Storage Driver for 2K/XP/Vista/win7"    "Realtek Semiconductor Corp."    "c:\windows\system32\drivers\rtsustor.sys"
+ "RTL8167"    "Realtek 8136/8168/8169 NDIS 6.20 64-bit Driver                "    "Realtek                                            "    "c:\windows\system32\drivers\rt64win7.sys"
+ "rtl8192se"    "Realtek RTL81892SE NDIS Driverr"    "Realtek Semiconductor Corporation                           "    "c:\windows\system32\drivers\rtl8192se.sys"
+ "RtsUIR"    ""    ""    "File not found: system32\DRIVERS\Rts516xIR.sys"
+ "secdrv"    "Macrovision SECURITY Driver"    "Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K."    "c:\windows\system32\drivers\secdrv.sys"
+ "SiSRaid2"    "SiS RAID Stor Miniport Driver"    "Silicon Integrated Systems Corp."    "c:\windows\system32\drivers\sisraid2.sys"
+ "SiSRaid4"    "SiS AHCI Stor-Miniport Driver"    "Silicon Integrated Systems"    "c:\windows\system32\drivers\sisraid4.sys"
+ "stexstor"    "Promise  SuperTrak EX Series Driver for Windows "    "Promise Technology"    "c:\windows\system32\drivers\stexstor.sys"
+ "SynTP"    "Synaptics Touchpad Driver"    "Synaptics Incorporated"    "c:\windows\system32\drivers\syntp.sys"
+ "t_mouse.sys"    ""    ""    "c:\windows\system32\drivers\t_mouse.sys"
+ "USBAAPL64"    "Apple Mobile Device USB Driver"    "Apple, Inc."    "c:\windows\system32\drivers\usbaapl64.sys"
+ "USBCCID"    ""    ""    "File not found: system32\DRIVERS\RtsUCcid.sys"
+ "viaide"    "VIA Generic PCI IDE Bus Driver"    "VIA Technologies, Inc."    "c:\windows\system32\drivers\viaide.sys"
+ "vsmraid"    "VIA RAID DRIVER FOR AMD-X86-64"    "VIA Technologies Inc.,Ltd"    "c:\windows\system32\drivers\vsmraid.sys"
+ "yukonw7"    "Miniport Driver for Marvell Yukon Ethernet Controller."    "Marvell"    "c:\windows\system32\drivers\yk62x64.sys"
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Drivers32"    ""    ""    ""
+ "msacm.l3acm"    "MPEG Layer-3 Audio Codec for MSACM"    "Fraunhofer Institut Integrierte Schaltungen IIS"    "c:\windows\system32\l3codeca.acm"
"HKLM\Software\Wow6432Node\Microsoft\Windows NT\CurrentVersion\Drivers32"    ""    ""    ""
+ "msacm.l3acm"    "MPEG Layer-3 Audio Codec for MSACM"    "Fraunhofer Institut Integrierte Schaltungen IIS"    "c:\windows\syswow64\l3codeca.acm"
+ "vidc.cvid"    "Cinepak® Codec"    "Radius Inc."    "c:\windows\syswow64\iccvid.dll"
+ "vidc.dvsd"    "DV Video for Windows Driver"    "Matsubleepa Electric Industrial Co., Ltd."    "c:\windows\syswow64\pdvcodec.dll"
"HKLM\Software\Wow6432Node\Classes\CLSID\{083863F1-70DE-11d0-BD40-00A0C911CE86}\Instance"    ""    ""    ""
+ "Capture File Writer"    "Windows Live Video Acquisition Filters"    "Microsoft Corporation"    "c:\program files (x86)\windows live\photo gallery\wlxvafilt.dll"
+ "CyberLink Audio Decoder (PDVD8)"    "CyberLink Audio Decoder Filter"    "CyberLink Corp."    "c:\program files (x86)\cyberlink\powerdvd8\audiofilter\claud.ax"
+ "CyberLink Audio Decoder(PDVD8 UPnP)"    "CyberLink Audio Decoder Filter"    "CyberLink Corp."    "c:\program files (x86)\cyberlink\powerdvd8\upnp\claud.ax"
+ "CyberLink Audio Effect (PDVD8)"    "CyberLink Audio Effect Filter"    "CyberLink Corporation"    "c:\program files (x86)\cyberlink\powerdvd8\audiofilter\claudfx.ax"
+ "CyberLink Audio Spectrum Analyzer (PDVD8)"    "CLAudSpa.ax"    "CyberLink Corp."    "c:\program files (x86)\cyberlink\powerdvd8\audiofilter\claudspa.ax"
+ "CyberLink Audio Spectrum Analyzer(HomeNetwork)"    "CLAudSpa.ax"    "CyberLink Corp."    "c:\program files (x86)\cyberlink\powerdvd8\upnp\claudspa.ax"
+ "CyberLink Audio Wizard"    "CyberLink Audio Wizard Filter"    "CyberLink Corp."    "c:\program files (x86)\cyberlink\powerdvd8\audiofilter\claudwizard.ax"
+ "CyberLink AudioCD Filter (PDVD8)"    "CyberLink AudioCD Filter"    "CyberLink Corp."    "c:\program files (x86)\cyberlink\powerdvd8\audiofilter\claudiocd.ax"
+ "CyberLink Demultiplexer(HomeNetwork)"    "MPEG-2 Dempltiplexer"    "CyberLink Corp."    "c:\program files (x86)\cyberlink\powerdvd8\upnp\cldemuxer.ax"
+ "CyberLink Demux (PDVD8)"    "MPEG-2 Dempltiplexer"    "CyberLink Corp."    "c:\program files (x86)\cyberlink\powerdvd8\navfilter\cldemuxer.ax"
+ "CyberLink Digest Filter (PDVD8)"    "DigestFilter Dynamic Link Library"    ""    "c:\program files (x86)\cyberlink\powerdvd8\digestfilter.dll"
+ "CyberLink DVD Navigator (PDVD8)"    "CyberLink DVD Navigation Filter"    "CyberLink Corp."    "c:\program files (x86)\cyberlink\powerdvd8\navfilter\clnavx.ax"
+ "CyberLink HD/BD Mixer (PDVD8.0)"    "CLHBMixer"    " "    "c:\program files (x86)\cyberlink\powerdvd8\audiofilter\clhbmixer.ax"
+ "CyberLink Line21 Decoder (PDVD8)"    "CyberLink Line21 Decoder Filter"    "CyberLink Corp."    "c:\program files (x86)\cyberlink\powerdvd8\videofilter\clline21.ax"
+ "CyberLink MPEG Splitter"    "CyberLink MPEG Splitter"    "CyberLink Corp."    "c:\program files (x86)\cyberlink\powerdvd8\upnp\clsplter.ax"
+ "CyberLink MPEG-4 Splitter (PDVD8)"    "CyberLink MPEG-4 Splitter"    "CyberLink Corp."    "c:\program files (x86)\cyberlink\powerdvd8\navfilter\clm4splt.ax"
+ "CyberLink Push-Mode CLStream"    "CLStream"    "CyberLink"    "c:\program files (x86)\cyberlink\powerdvd8\upnp\clstream(pushmode).ax"
+ "Cyberlink Streamming Filter"    "Cyberlink Streaming Source Filter(Scramble)"    "CyberLink Corp."    "c:\program files (x86)\cyberlink\powerdvd8\upnp\clstream.ax"
+ "Cyberlink SubTitle Importor (PDVD8)"    "CLSubTitle.ax"    "CyberLink Corp."    "c:\program files (x86)\cyberlink\powerdvd8\videofilter\clsubtitle.ax"
+ "CyberLink TimeStretch Filter (PDVD8)"    "CLAuTS.ax"    "CyberLink Corp."    "c:\program files (x86)\cyberlink\powerdvd8\audiofilter\clauts.ax"
+ "CyberLink Tzan Filter (PDVD8)"    "Cyberlink Tzan Filter"    "CyberLink Corp."    "c:\program files (x86)\cyberlink\powerdvd8\videofilter\cltzan.ax"
+ "CyberLink Video/SP Decoder (PDVD8)"    "CyberLink Video/SP Filter"    "CyberLink Corp."    "c:\program files (x86)\cyberlink\powerdvd8\videofilter\clvsd.ax"
+ "CyberLink Video/SP Decoder(HomeNetwork)"    "CyberLink Video/SP Filter"    "CyberLink Corp."    "c:\program files (x86)\cyberlink\powerdvd8\upnp\clvsd.ax"
+ "Record Queue"    "Windows Live Video Acquisition Filters"    "Microsoft Corporation"    "c:\program files (x86)\windows live\photo gallery\wlxvafilt.dll"
+ "Roxio Audio Source Filter"    "Roxio Audio Source Filter"    "Sonic Solutions"    "c:\program files (x86)\common files\roxio shared\10.0\sharedcom\rxdsaudiosource.ax"
+ "Roxio Audio Stream Reader Filter"    "Roxio Audio Stream Reader Filter"    "Sonic Solutions"    "c:\program files (x86)\common files\roxio shared\10.0\sharedcom\rxdsaudiostreamreader.ax"
+ "Roxio Audio Stream Writer Filter"    "Roxio Audio Stream Writer Filter"    "Sonic Solutions"    "c:\program files (x86)\common files\roxio shared\10.0\sharedcom\rxdsaudiostreamwriter.ax"
+ "ROXIO LPCMSyncFilter"    "LPCMSync Filter"    "Sonic Solutions"    "c:\program files (x86)\common files\roxio shared\10.0\mpeg\lpcmsyncfilter.dll"
+ "Roxio MPEG Analyzer Filter"    "MPEG File Analyzer Dynamic Link Library"    "Sonic Solutions"    "c:\program files (x86)\common files\roxio shared\10.0\mpeg\roxiompegprop.dll"
+ "Roxio MPEG Stream Analyzer"    "Roxio MPEG Stream Splitter"    "Sonic Solutions"    "c:\program files (x86)\common files\roxio shared\10.0\mpeg\mpegstreamanalyzer.dll"
+ "Roxio MPEG1 Audio Encoder"    "ROXIO MPEG Audio Encoder"    "Sonic Solutions"    "c:\program files (x86)\common files\roxio shared\10.0\mpeg\roxioaudioenc.dll"
+ "Roxio MPEG1 Encoder"    "ROXIO MPEG1 Codec"    "Sonic Solutions"    "c:\program files (x86)\common files\roxio shared\10.0\mpeg\mpeg1vidcodec.dll"
+ "Roxio MPEG1 Muxer"    "ROXIO MPEG MUXER"    "Sonic Solutions"    "c:\program files (x86)\common files\roxio shared\10.0\mpeg\mpeg1muxer.dll"
+ "Roxio MPEG2 Demuxer"    "ROXIO MPEG Demuxer"    "Sonic Solutions"    "c:\program files (x86)\common files\roxio shared\10.0\mpeg\roxiompegdemuxer.dll"
+ "ROXIO Raw Writer"    "ROXIO Raw Writer"    "Sonic Solutions"    "c:\program files (x86)\common files\roxio shared\10.0\mpeg\mgirawwriter.dll"
+ "Roxio Repack Filter"    "Repack Filter"    "Sonic Solutions"    "c:\program files (x86)\common files\roxio shared\10.0\mpeg\repackfilter.dll"
+ "Roxio Transport Stream Source"    "ListFrameSource"    "Sonic Solutions"    "c:\program files (x86)\common files\roxio shared\10.0\mpeg\tsmpegsource.dll"
+ "SubPicture Encoder"    "ROXIO SubPicture Encoder"    "Sonic Solutions"    "c:\program files (x86)\common files\roxio shared\10.0\mpeg\subpictenc.dll"
+ "WM VIH2 Fix"    "Windows Live Video Acquisition Filters"    "Microsoft Corporation"    "c:\program files (x86)\windows live\photo gallery\wlxvafilt.dll"
+ "WMT DV Extract Filter"    "Windows Live Video Acquisition Filters"    "Microsoft Corporation"    "c:\program files (x86)\windows live\photo gallery\wlxvafilt.dll"
+ "WMT Sample Info Filter"    "Windows Live Video Acquisition Filters"    "Microsoft Corporation"    "c:\program files (x86)\windows live\photo gallery\wlxvafilt.dll"
+ "WMT Switch Filter"    "Windows Live Video Acquisition Filters"    "Microsoft Corporation"    "c:\program files (x86)\windows live\photo gallery\wlxvafilt.dll"
+ "WMT Virtual Renderer"    "Windows Live Video Acquisition Filters"    "Microsoft Corporation"    "c:\program files (x86)\windows live\photo gallery\wlxvafilt.dll"
+ "WMT Virtual Source"    "Windows Live Video Acquisition Filters"    "Microsoft Corporation"    "c:\program files (x86)\windows live\photo gallery\wlxvafilt.dll"
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify"    ""    ""    ""
+ "igfxcui"    "igfxdev Module"    "Intel Corporation"    "c:\windows\system32\igfxdev.dll"
"HKCU\Control Panel\Desktop\Scrnsave.exe"    ""    ""    ""
+ "C:\WINDOWS\SYSWOW64\FJSaver.scr"    "Fujitsu Screen Saver"    "FUJITSU LIMITED"    "c:\windows\syswow64\fjsaver.scr"
"HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries"    ""    ""    ""
+ "mdnsNSP"    "Bonjour Namespace Provider"    "Apple Inc."    "c:\program files (x86)\bonjour\mdnsnsp.dll"
"HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries64"    ""    ""    ""
+ "mdnsNSP"    "Bonjour Namespace Provider"    "Apple Inc."    "c:\program files\bonjour\mdnsnsp.dll"
"C:\Users\Jin\AppData\Local\Microsoft\Windows Sidebar\Settings.ini"    ""    ""    ""
+ "Clock"    "Watch the clock in your own time zone or any city in the world."    "Microsoft Corporation"    "C:\Program Files\Windows Sidebar\Gadgets\Clock.Gadget\en-us\Gadget.xml"
+ "Clock"    "Watch the clock in your own time zone or any city in the world."    "Microsoft Corporation"    "C:\Program Files\Windows Sidebar\Gadgets\Clock.Gadget\en-us\Gadget.xml"
+ "Weather"    "See what the weather looks like around the world."    "Microsoft Corporation"    "C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\en-us\Gadget.xml"
 



#6 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:08:49 PM

Posted 10 March 2013 - 06:49 PM

Restart the PC and let me know if you have any more issues



#7 Jinmeister

Jinmeister
  • Topic Starter

  • Members
  • 9 posts
  • OFFLINE
  •  
  • Local time:03:49 AM

Posted 10 March 2013 - 06:51 PM

Nah man I think its all good now. Thanks for the help!!



#8 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:08:49 PM

Posted 10 March 2013 - 07:35 PM

That looks good

Remove temporary and junk files

Download

TFC

Launch it,it will close all running programs

click on START,it should ask for reboot.If TFC locks up the system,run it in safemode


Create a new restore point

Follow this guide to turn off and turn on your restore points

XP- http://support.microsoft.com/kb/310405

Vista & windows 7- http://windows.microsoft.com/en-US/windows7/Turn-System-Restore-on-or-off

Turn off your system restore-It deletes old infected restore points

Turn on system restore and create a new restore point

Update JAVA and Flash player

Uninstall old version of java from control panel-Add or remove programs.Download the latest version from here

http://java.com/en/

Update your flash player

Antivirus recommendations

Update your antivirus frequently.Two free antivirus that i would suggest are

Microsoft security essentials or Avast.You can select either one of them.

If you have a paid one,make sure to update it frequently.Do not use multiple security softwares.

Informative guides that could prevent you from being infected again

How did I get infected?

http://www.bleepingcomputer.com/forums/topic2520.html

Best Practices for Safe Computing - Prevention of Malware Infection

http://www.bleepingcomputer.com/forums/topic407147.html

Simple and easy ways to keep your computer safe and secure on the Internet

http://www.bleepingcomputer.com/tutorials/keep-your-computer-safe-online/

Safe surfing :)






0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users