Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Windows 7 Internet Explorer search engine redirect issues. Am I still infected?


  • Please log in to reply
15 replies to this topic

#1 very_confussed

very_confussed

  • Members
  • 9 posts
  • OFFLINE
  •  
  • Local time:10:54 AM

Posted 10 March 2013 - 04:35 PM

Hi everyone,

 

I am struggling with browser search engine redirect issues and I may have been infected with Trojan horse. I am way over my head with this stuff so I have decided to get help from wonderful folks at bleepingcomputer.com

 

So, here is what happened:

 

My system information:

HP laptop with Intel Core 2 duo processor

Windows 7 home premium Service Pack 1

Paid subscription for Norton 360

Additional Virus tracking software: AVG Free edition, MawareBytes Free edition

 Browsers: Internet Explorer 9.0 and Google Chrome

 

I was visting a recent movie streaming site with Internet Explorer and I got infected.

Norton 360 immediately blocked this infection attempt  with following message:


Threat: Trojan.Tracur
Threat type: Virus.
File Actions
File: c:\users\<username>\appdata\local\google\chrome\user data\default\default\aadbddgddggcdadfgddjddgddegfgbda\contentscript.js
Blocked
 

Even though the infection was blocked for Google Chrome, it infected Internet Explorer.

After this, every time I went to run a search engine query in google in Internet Explorer, no matter whatever result link I clicked on, I was always redirected to some other garbage websites and never to actual link. However, Google Chrome wasn't infected and worked every time correctly when I used a search engine.

 

I ran full scans in Norton 360, AVG, and MalwareBytes and none of them could fix this infection for couple of days. Later, I updated the definitions for AVG and it immediately identified the infection and given option to fix it, I clicked Fix.

 

Here is the infection AVG identified

 

IDP.Trojan.4C9E9CDB

Infected file : C:\Windows\System32\rundll32.exe

When I try to remove this threat in AVG, it says "Cannot remove. Other action has already been performed on the object."

 

Now after this fix in AVG, Internet Explorer is not redirecting any search engine querries to other garbage website. However, since I am unable to remove the threat in AVG and since Norton 360 failed to detect this, I am affraid that infection is still lurking behind the scenes. How do I make sure that AVG has taken care of the problem and that there is no silent activity going in background even though Internet Explorer doesn't suggest there is anything wrong. Am I still infected even though all the symptoms are gone????

 

Please help me with your suggestions and action items

 

thank you

 

Very Confused.....



BC AdBot (Login to Remove)

 


#2 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:10:54 AM

Posted 10 March 2013 - 04:36 PM

  • Please download TDSSKiller from here and save it to your Desktop
  • Doubleclick on TDSSKiller.exe to run the application, then click on Change parameters


    tds2.jpg

  • Check Loaded Modules  and Detect TDLFS file systemDo not check Verify file digital signatures (even though it is checked in the example)
  • If you are asked to reboot because an "Extended Monitoring Driver is required" please click Reboot now


    2012081514h0118.png

  • Click Start Scan and allow the scan process to run

  • If threats are detected select Skip for all of them unless I instruct you otherwise
  • Click Continue


    tds6.jpg

  • Click Reboot computer
  • Please post the contents of  TDSSKiller.[Version]_[Date]_[Time]_log.txt found in your root directory (typically c:\)in your reply


===================================================


aswMBR

--------------------

  • Download aswMBR and save it to your desktop.
  • Please disable your real time protection of any Antivirus, Antispyware or Antimalware programs temporarily. They will interfere and may cause unexpected results.
  • If you need help to disable your protection programs see here and here.
  • Double click the aswMBR.exe file to run it. Please allow when you are asked to download AVAST antivirus engine defs.
  • Wait until the AV update is done, then click on the Scan button to start. The program will launch a scan.


    aswMBR1.png
  • When done, you will see Scan finished successfully. Please click on Save log and save the file to your desktop.


    aswMBR2.png
  • Please post the contents of the log in your next reply.

NOTE:  aswMBR will create MBR.dat file on your desktop. This is a copy of your MBR. Do NOT delete it.


===================================================


ESET Online Scanner

--------------------

I'd like us to scan your machine with ESET OnlineScan  This process may may take several hours, that is normal

  • Hold down Control and click on this link to open ESET OnlineScan in a new window.
  • Click the esetonlinebtn.png  button.
  • For alternate browsers only: (Microsoft Internet Explorer users can skip these steps)

    • Click on esetsmartinstaller_enu.exe to download the ESET Smart Installer. Save it to your desktop.
    • Double click on the icon on your desktop.

    esetsmartinstaller_enu.png

  • Check "YES, I accept the Terms of Use."
  • Click the Start button.
  • Accept any security warnings from your browser.
  • Under scan settings, check "Scan Archives" and "Remove found threats"
  • Click Advanced settings and select the following:

    • Scan potentially unwanted applications
    • Scan for potentially unsafe applications
    • Enable Anti-Stealth technology
  • ESET will then download updates for itself, install itself, and begin scanning your computer. Please be patient as this can take some time.
  • When the scan completes, click List Threats
  • Copy and paste the information in your next reply.   Note:  If no malware was found you will not get a log.
  • Click the Back button.
  • Click the Finish button.


===================================================


Things I would like to see in your next reply. Please be sure to copy and paste the information rather than send an attachment. :thumbsup2:

  • TDSSKiller log
  • aswMBR log
  • ESET results

 



#3 very_confussed

very_confussed
  • Topic Starter

  • Members
  • 9 posts
  • OFFLINE
  •  
  • Local time:10:54 AM

Posted 10 March 2013 - 08:13 PM

Narenxp,

Thanks for excellent instructions... Here are the logs you requested:

ESET scan did find one infection.....Other two didn't find anything.

 

---------------------------------------------------------------------------------------------------

TDSSKiller Log

---------------------------------------------------------------------------------------------------

 

17:07:01.0454 0916  TDSS rootkit removing tool 2.8.16.0 Feb 11 2013 18:50:42
17:07:02.0171 0916  ============================================================
17:07:02.0171 0916  Current date / time: 2013/03/10 17:07:02.0171
17:07:02.0171 0916  SystemInfo:
17:07:02.0171 0916 
17:07:02.0171 0916  OS Version: 6.1.7601 ServicePack: 1.0
17:07:02.0171 0916  Product type: Workstation
17:07:02.0171 0916  ComputerName: JOHNDOE_PC
17:07:02.0171 0916  UserName: johndoe
17:07:02.0171 0916  Windows directory: C:\Windows
17:07:02.0171 0916  System windows directory: C:\Windows
17:07:02.0171 0916  Running under WOW64
17:07:02.0171 0916  Processor architecture: Intel x64
17:07:02.0171 0916  Number of processors: 2
17:07:02.0171 0916  Page size: 0x1000
17:07:02.0171 0916  Boot type: Normal boot
17:07:02.0171 0916  ============================================================
17:07:05.0650 0916  BG loaded
17:07:06.0102 0916  Drive \Device\Harddisk0\DR0 - Size: 0x4A85D56000 (298.09 Gb), SectorSize: 0x200, Cylinders: 0x9801, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
17:07:06.0118 0916  ============================================================
17:07:06.0118 0916  \Device\Harddisk0\DR0:
17:07:06.0118 0916  MBR partitions:
17:07:06.0118 0916  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x63800
17:07:06.0118 0916  \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x64000, BlocksNum 0x23A58800
17:07:06.0118 0916  \Device\Harddisk0\DR0\Partition3: MBR, Type 0x7, StartLBA 0x23ABC800, BlocksNum 0x1971800
17:07:06.0118 0916  ============================================================
17:07:06.0134 0916  C: <-> \Device\Harddisk0\DR0\Partition2
17:07:06.0180 0916  D: <-> \Device\Harddisk0\DR0\Partition3
17:07:06.0180 0916  ============================================================
17:07:06.0180 0916  Initialize success
17:07:06.0180 0916  ============================================================
17:18:38.0592 5916  ============================================================
17:18:38.0592 5916  Scan started
17:18:38.0592 5916  Mode: Manual; TDLFS;
17:18:38.0592 5916  ============================================================
17:18:39.0372 5916  ================ Scan system memory ========================
17:18:39.0372 5916  System memory - ok
17:18:39.0372 5916  ================ Scan services =============================
17:18:39.0653 5916  [ A87D604AEA360176311474C87A63BB88 ] 1394ohci        C:\Windows\system32\drivers\1394ohci.sys
17:18:39.0653 5916  1394ohci - ok
17:18:39.0684 5916  [ 3E2427D4966C7606097341E55AB4E105 ] Accelerometer   C:\Windows\system32\DRIVERS\Accelerometer.sys
17:18:39.0684 5916  Accelerometer - ok
17:18:39.0715 5916  [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI            C:\Windows\system32\drivers\ACPI.sys
17:18:39.0715 5916  ACPI - ok
17:18:39.0746 5916  [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi         C:\Windows\system32\drivers\acpipmi.sys
17:18:39.0746 5916  AcpiPmi - ok
17:18:39.0871 5916  [ 0D4C486A24A711A45FD83ACDF4D18506 ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
17:18:39.0871 5916  AdobeFlashPlayerUpdateSvc - ok
17:18:39.0902 5916  [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx         C:\Windows\system32\DRIVERS\adp94xx.sys
17:18:39.0918 5916  adp94xx - ok
17:18:39.0949 5916  [ 597F78224EE9224EA1A13D6350CED962 ] adpahci         C:\Windows\system32\DRIVERS\adpahci.sys
17:18:39.0949 5916  adpahci - ok
17:18:39.0980 5916  [ E109549C90F62FB570B9540C4B148E54 ] adpu320         C:\Windows\system32\DRIVERS\adpu320.sys
17:18:39.0980 5916  adpu320 - ok
17:18:40.0012 5916  [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc     C:\Windows\System32\aelupsvc.dll
17:18:40.0012 5916  AeLookupSvc - ok
17:18:40.0121 5916  [ A6FB9DB8F1A86861D955FD6975977AE0 ] AESTFilters     C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_960c1f056a541068\AESTSr64.exe
17:18:40.0136 5916  AESTFilters - ok
17:18:40.0168 5916  [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD             C:\Windows\system32\drivers\afd.sys
17:18:40.0168 5916  AFD - ok
17:18:40.0214 5916  [ 98022774D9930ECBB292E70DB7601DF6 ] AgereSoftModem  C:\Windows\system32\DRIVERS\agrsm64.sys
17:18:40.0230 5916  AgereSoftModem - ok
17:18:40.0246 5916  [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440          C:\Windows\system32\drivers\agp440.sys
17:18:40.0246 5916  agp440 - ok
17:18:40.0277 5916  [ 3290D6946B5E30E70414990574883DDB ] ALG             C:\Windows\System32\alg.exe
17:18:40.0277 5916  ALG - ok
17:18:40.0308 5916  [ 5812713A477A3AD7363C7438CA2EE038 ] aliide          C:\Windows\system32\drivers\aliide.sys
17:18:40.0308 5916  aliide - ok
17:18:40.0324 5916  [ 1FF8B4431C353CE385C875F194924C0C ] amdide          C:\Windows\system32\drivers\amdide.sys
17:18:40.0324 5916  amdide - ok
17:18:40.0355 5916  [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8           C:\Windows\system32\DRIVERS\amdk8.sys
17:18:40.0355 5916  AmdK8 - ok
17:18:40.0386 5916  [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM          C:\Windows\system32\DRIVERS\amdppm.sys
17:18:40.0386 5916  AmdPPM - ok
17:18:40.0402 5916  [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata         C:\Windows\system32\drivers\amdsata.sys
17:18:40.0402 5916  amdsata - ok
17:18:40.0448 5916  [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs          C:\Windows\system32\DRIVERS\amdsbs.sys
17:18:40.0448 5916  amdsbs - ok
17:18:40.0464 5916  [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata         C:\Windows\system32\drivers\amdxata.sys
17:18:40.0464 5916  amdxata - ok
17:18:40.0495 5916  [ 89A69C3F2F319B43379399547526D952 ] AppID           C:\Windows\system32\drivers\appid.sys
17:18:40.0511 5916  AppID - ok
17:18:40.0511 5916  [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc        C:\Windows\System32\appidsvc.dll
17:18:40.0526 5916  AppIDSvc - ok
17:18:40.0589 5916  [ 3977D4A871CA0D4F2ED1E7DB46829731 ] Appinfo         C:\Windows\System32\appinfo.dll
17:18:40.0589 5916  Appinfo - ok
17:18:40.0667 5916  [ A5299D04ED225D64CF07A568A3E1BF8C ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
17:18:40.0667 5916  Apple Mobile Device - ok
17:18:40.0698 5916  [ C484F8CEB1717C540242531DB7845C4E ] arc             C:\Windows\system32\DRIVERS\arc.sys
17:18:40.0698 5916  arc - ok
17:18:40.0714 5916  [ 019AF6924AEFE7839F61C830227FE79C ] arcsas          C:\Windows\system32\DRIVERS\arcsas.sys
17:18:40.0714 5916  arcsas - ok
17:18:40.0745 5916  [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac        C:\Windows\system32\DRIVERS\asyncmac.sys
17:18:40.0745 5916  AsyncMac - ok
17:18:40.0776 5916  [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi           C:\Windows\system32\drivers\atapi.sys
17:18:40.0776 5916  atapi - ok
17:18:40.0901 5916  [ 3EFD964D52221360AF0673CD61C2F4F5 ] atikmdag        C:\Windows\system32\drivers\atikmdag.sys
17:18:40.0932 5916  atikmdag - ok
17:18:40.0994 5916  [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
17:18:41.0010 5916  AudioEndpointBuilder - ok
17:18:41.0026 5916  [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv        C:\Windows\System32\Audiosrv.dll
17:18:41.0026 5916  AudioSrv - ok
17:18:41.0213 5916  [ 4AFC14AFA58878FAA1D249E7E90EA54B ] AVGIDSAgent     C:\Program Files (x86)\AVG\AVG2013\avgidsagent.exe
17:18:41.0260 5916  AVGIDSAgent - ok
17:18:41.0291 5916  [ 388056EBD5FE6718FE669078DBE37897 ] AVGIDSDriver    C:\Windows\system32\DRIVERS\avgidsdrivera.sys
17:18:41.0291 5916  AVGIDSDriver - ok
17:18:41.0338 5916  [ 550E981747D6A6C55078C77346FFC2C6 ] AVGIDSHA        C:\Windows\system32\DRIVERS\avgidsha.sys
17:18:41.0338 5916  AVGIDSHA - ok
17:18:41.0384 5916  [ 5989592A91A17587799792A81E1541D4 ] Avgldx64        C:\Windows\system32\DRIVERS\avgldx64.sys
17:18:41.0384 5916  Avgldx64 - ok
17:18:41.0416 5916  [ 3FC43AA02545FCDDC22817829114DEC8 ] Avgloga         C:\Windows\system32\DRIVERS\avgloga.sys
17:18:41.0416 5916  Avgloga - ok
17:18:41.0462 5916  [ 841C40C193889730848849AC220D9242 ] Avgmfx64        C:\Windows\system32\DRIVERS\avgmfx64.sys
17:18:41.0462 5916  Avgmfx64 - ok
17:18:41.0478 5916  [ FE4F444DBE4BBBDFD8FECF49398DEFC7 ] Avgrkx64        C:\Windows\system32\DRIVERS\avgrkx64.sys
17:18:41.0478 5916  Avgrkx64 - ok
17:18:41.0525 5916  [ 6E634525613D48A1D1657FB21F21F3B2 ] Avgtdia         C:\Windows\system32\DRIVERS\avgtdia.sys
17:18:41.0525 5916  Avgtdia - ok
17:18:41.0556 5916  [ 6B72E1E329C4E98C6B6FDD2D265E3BA3 ] avgwd           C:\Program Files (x86)\AVG\AVG2013\avgwdsvc.exe
17:18:41.0556 5916  avgwd - ok
17:18:41.0618 5916  [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV        C:\Windows\System32\AxInstSV.dll
17:18:41.0618 5916  AxInstSV - ok
17:18:41.0665 5916  [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv         C:\Windows\system32\DRIVERS\bxvbda.sys
17:18:41.0665 5916  b06bdrv - ok
17:18:41.0696 5916  [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a        C:\Windows\system32\DRIVERS\b57nd60a.sys
17:18:41.0696 5916  b57nd60a - ok
17:18:41.0790 5916  [ 0E14A0071FE26A570BCAFF5401014717 ] BCM43XX         C:\Windows\system32\DRIVERS\bcmwl664.sys
17:18:41.0806 5916  BCM43XX - ok
17:18:41.0837 5916  [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC          C:\Windows\System32\bdesvc.dll
17:18:41.0837 5916  BDESVC - ok
17:18:41.0852 5916  [ 16A47CE2DECC9B099349A5F840654746 ] Beep            C:\Windows\system32\drivers\Beep.sys
17:18:41.0852 5916  Beep - ok
17:18:41.0915 5916  [ 82974D6A2FD19445CC5171FC378668A4 ] BFE             C:\Windows\System32\bfe.dll
17:18:41.0915 5916  BFE - ok
17:18:42.0133 5916  [ 866335C9C0E6733C753FB472C539A6B9 ] BHDrvx64        C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_6.2.0.9\Definitions\BASHDefs\20130301.001\BHDrvx64.sys
17:18:42.0149 5916  BHDrvx64 - ok
17:18:42.0196 5916  [ 1EA7969E3271CBC59E1730697DC74682 ] BITS            C:\Windows\System32\qmgr.dll
17:18:42.0211 5916  BITS - ok
17:18:42.0258 5916  [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive        C:\Windows\system32\DRIVERS\blbdrive.sys
17:18:42.0258 5916  blbdrive - ok
17:18:42.0289 5916  [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser          C:\Windows\system32\DRIVERS\bowser.sys
17:18:42.0289 5916  bowser - ok
17:18:42.0320 5916  [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo        C:\Windows\system32\DRIVERS\BrFiltLo.sys
17:18:42.0320 5916  BrFiltLo - ok
17:18:42.0336 5916  [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp        C:\Windows\system32\DRIVERS\BrFiltUp.sys
17:18:42.0336 5916  BrFiltUp - ok
17:18:42.0367 5916  [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser         C:\Windows\System32\browser.dll
17:18:42.0367 5916  Browser - ok
17:18:42.0398 5916  [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid         C:\Windows\System32\Drivers\Brserid.sys
17:18:42.0398 5916  Brserid - ok
17:18:42.0430 5916  [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm        C:\Windows\System32\Drivers\BrSerWdm.sys
17:18:42.0430 5916  BrSerWdm - ok
17:18:42.0445 5916  [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm        C:\Windows\System32\Drivers\BrUsbMdm.sys
17:18:42.0445 5916  BrUsbMdm - ok
17:18:42.0461 5916  [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer        C:\Windows\System32\Drivers\BrUsbSer.sys
17:18:42.0461 5916  BrUsbSer - ok
17:18:42.0476 5916  [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM        C:\Windows\system32\DRIVERS\bthmodem.sys
17:18:42.0476 5916  BTHMODEM - ok
17:18:42.0523 5916  [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv         C:\Windows\system32\bthserv.dll
17:18:42.0539 5916  bthserv - ok
17:18:42.0664 5916  [ 2C6FFCCA37B002AAB3C7C31A6D780A76 ] ccSet_N360      C:\Windows\system32\drivers\N360x64\0604010.00E\ccSetx64.sys
17:18:42.0664 5916  ccSet_N360 - ok
17:18:42.0710 5916  [ B8BD2BB284668C84865658C77574381A ] cdfs            C:\Windows\system32\DRIVERS\cdfs.sys
17:18:42.0710 5916  cdfs - ok
17:18:42.0757 5916  [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom           C:\Windows\system32\drivers\cdrom.sys
17:18:42.0757 5916  cdrom - ok
17:18:42.0788 5916  [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc     C:\Windows\System32\certprop.dll
17:18:42.0788 5916  CertPropSvc - ok
17:18:42.0835 5916  [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass        C:\Windows\system32\DRIVERS\circlass.sys
17:18:42.0835 5916  circlass - ok
17:18:42.0866 5916  [ FE1EC06F2253F691FE36217C592A0206 ] CLFS            C:\Windows\system32\CLFS.sys
17:18:42.0866 5916  CLFS - ok
17:18:42.0929 5916  [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
17:18:42.0929 5916  clr_optimization_v2.0.50727_32 - ok
17:18:42.0976 5916  [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
17:18:42.0976 5916  clr_optimization_v2.0.50727_64 - ok
17:18:43.0054 5916  [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
17:18:43.0054 5916  clr_optimization_v4.0.30319_32 - ok
17:18:43.0100 5916  [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
17:18:43.0100 5916  clr_optimization_v4.0.30319_64 - ok
17:18:43.0132 5916  [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt          C:\Windows\system32\DRIVERS\CmBatt.sys
17:18:43.0147 5916  CmBatt - ok
17:18:43.0163 5916  [ E19D3F095812725D88F9001985B94EDD ] cmdide          C:\Windows\system32\drivers\cmdide.sys
17:18:43.0163 5916  cmdide - ok
17:18:43.0194 5916  [ 9AC4F97C2D3E93367E2148EA940CD2CD ] CNG             C:\Windows\system32\Drivers\cng.sys
17:18:43.0210 5916  CNG - ok
17:18:43.0272 5916  [ F9A79C5B27037821112C50A9C8FB367A ] Com4QLBEx       C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe
17:18:43.0272 5916  Com4QLBEx - ok
17:18:43.0303 5916  [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt        C:\Windows\system32\DRIVERS\compbatt.sys
17:18:43.0303 5916  Compbatt - ok
17:18:43.0334 5916  [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus    C:\Windows\system32\drivers\CompositeBus.sys
17:18:43.0334 5916  CompositeBus - ok
17:18:43.0350 5916  COMSysApp - ok
17:18:43.0366 5916  [ 1C827878A998C18847245FE1F34EE597 ] crcdisk         C:\Windows\system32\DRIVERS\crcdisk.sys
17:18:43.0366 5916  crcdisk - ok
17:18:43.0412 5916  [ 9C01375BE382E834CC26D1B7EAF2C4FE ] CryptSvc        C:\Windows\system32\cryptsvc.dll
17:18:43.0412 5916  CryptSvc - ok
17:18:43.0459 5916  [ 44BDDEB03C84A1C993C992FFB5700357 ] CVirtA          C:\Windows\system32\DRIVERS\CVirtA64.sys
17:18:43.0459 5916  CVirtA - ok
17:18:43.0506 5916  [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch      C:\Windows\system32\rpcss.dll
17:18:43.0506 5916  DcomLaunch - ok
17:18:43.0537 5916  [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc       C:\Windows\System32\defragsvc.dll
17:18:43.0568 5916  defragsvc - ok
17:18:43.0584 5916  [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC            C:\Windows\system32\Drivers\dfsc.sys
17:18:43.0600 5916  DfsC - ok
17:18:43.0646 5916  [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp            C:\Windows\system32\dhcpcore.dll
17:18:43.0662 5916  Dhcp - ok
17:18:43.0678 5916  [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache        C:\Windows\system32\drivers\discache.sys
17:18:43.0678 5916  discache - ok
17:18:43.0709 5916  [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk            C:\Windows\system32\DRIVERS\disk.sys
17:18:43.0724 5916  Disk - ok
17:18:43.0756 5916  [ 05CB5910B3CA6019FC3CCA815EE06FFB ] DNE             C:\Windows\system32\DRIVERS\dne64x.sys
17:18:43.0771 5916  DNE - ok
17:18:43.0802 5916  [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache        C:\Windows\System32\dnsrslvr.dll
17:18:43.0802 5916  Dnscache - ok
17:18:43.0849 5916  [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc         C:\Windows\System32\dot3svc.dll
17:18:43.0849 5916  dot3svc - ok
17:18:43.0880 5916  [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS             C:\Windows\system32\dps.dll
17:18:43.0880 5916  DPS - ok
17:18:43.0912 5916  [ 9B19F34400D24DF84C858A421C205754 ] drmkaud         C:\Windows\system32\drivers\drmkaud.sys
17:18:43.0912 5916  drmkaud - ok
17:18:43.0974 5916  [ F5BEE30450E18E6B83A5012C100616FD ] DXGKrnl         C:\Windows\System32\drivers\dxgkrnl.sys
17:18:43.0974 5916  DXGKrnl - ok
17:18:44.0021 5916  [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost         C:\Windows\System32\eapsvc.dll
17:18:44.0021 5916  EapHost - ok
17:18:44.0114 5916  [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv           C:\Windows\system32\DRIVERS\evbda.sys
17:18:44.0130 5916  ebdrv - ok
17:18:44.0208 5916  [ 4353FF94D47A0A9D52B89ECCF0CDB013 ] eeCtrl          C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys
17:18:44.0208 5916  eeCtrl - ok
17:18:44.0239 5916  [ C118A82CD78818C29AB228366EBF81C3 ] EFS             C:\Windows\System32\lsass.exe
17:18:44.0255 5916  EFS - ok
17:18:44.0302 5916  [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr         C:\Windows\ehome\ehRecvr.exe
17:18:44.0302 5916  ehRecvr - ok
17:18:44.0333 5916  [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched         C:\Windows\ehome\ehsched.exe
17:18:44.0333 5916  ehSched - ok
17:18:44.0380 5916  [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor         C:\Windows\system32\DRIVERS\elxstor.sys
17:18:44.0380 5916  elxstor - ok
17:18:44.0411 5916  [ 524C79054636D2E5751169005006460B ] enecir          C:\Windows\system32\DRIVERS\enecir.sys
17:18:44.0426 5916  enecir - ok
17:18:44.0489 5916  [ C5BCCB378D0A896304A3E71BE7215983 ] EraserUtilRebootDrv C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys
17:18:44.0489 5916  EraserUtilRebootDrv - ok
17:18:44.0520 5916  [ 34A3C54752046E79A126E15C51DB409B ] ErrDev          C:\Windows\system32\drivers\errdev.sys
17:18:44.0520 5916  ErrDev - ok
17:18:44.0582 5916  [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem     C:\Windows\system32\es.dll
17:18:44.0582 5916  EventSystem - ok
17:18:44.0614 5916  [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat           C:\Windows\system32\drivers\exfat.sys
17:18:44.0614 5916  exfat - ok
17:18:44.0629 5916  [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat         C:\Windows\system32\drivers\fastfat.sys
17:18:44.0645 5916  fastfat - ok
17:18:44.0692 5916  [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax             C:\Windows\system32\fxssvc.exe
17:18:44.0692 5916  Fax - ok
17:18:44.0707 5916  [ D765D19CD8EF61F650C384F62FAC00AB ] fdc             C:\Windows\system32\DRIVERS\fdc.sys
17:18:44.0707 5916  fdc - ok
17:18:44.0738 5916  [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost         C:\Windows\system32\fdPHost.dll
17:18:44.0738 5916  fdPHost - ok
17:18:44.0738 5916  [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub        C:\Windows\system32\fdrespub.dll
17:18:44.0754 5916  FDResPub - ok
17:18:44.0770 5916  [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo        C:\Windows\system32\drivers\fileinfo.sys
17:18:44.0770 5916  FileInfo - ok
17:18:44.0785 5916  [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace       C:\Windows\system32\drivers\filetrace.sys
17:18:44.0785 5916  Filetrace - ok
17:18:44.0801 5916  [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk        C:\Windows\system32\DRIVERS\flpydisk.sys
17:18:44.0801 5916  flpydisk - ok
17:18:44.0816 5916  [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr          C:\Windows\system32\drivers\fltmgr.sys
17:18:44.0816 5916  FltMgr - ok
17:18:44.0879 5916  [ 5C4CB4086FB83115B153E47ADD961A0C ] FontCache       C:\Windows\system32\FntCache.dll
17:18:44.0879 5916  FontCache - ok
17:18:44.0941 5916  [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
17:18:44.0941 5916  FontCache3.0.0.0 - ok
17:18:44.0957 5916  [ D43703496149971890703B4B1B723EAC ] FsDepends       C:\Windows\system32\drivers\FsDepends.sys
17:18:44.0957 5916  FsDepends - ok
17:18:44.0988 5916  [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec          C:\Windows\system32\drivers\Fs_Rec.sys
17:18:44.0988 5916  Fs_Rec - ok
17:18:45.0050 5916  [ 1F7B25B858FA27015169FE95E54108ED ] fvevol          C:\Windows\system32\DRIVERS\fvevol.sys
17:18:45.0050 5916  fvevol - ok
17:18:45.0082 5916  [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx        C:\Windows\system32\DRIVERS\gagp30kx.sys
17:18:45.0082 5916  gagp30kx - ok
17:18:45.0113 5916  [ 8E98D21EE06192492A5671A6144D092F ] GEARAspiWDM     C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
17:18:45.0113 5916  GEARAspiWDM - ok
17:18:45.0160 5916  [ 14908F4F9005C29DE8F5587E271390EE ] gfibto          C:\Windows\system32\drivers\gfibto.sys
17:18:45.0160 5916  gfibto - ok
17:18:45.0206 5916  [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc           C:\Windows\System32\gpsvc.dll
17:18:45.0222 5916  gpsvc - ok
17:18:45.0269 5916  [ 506708142BC63DABA64F2D3AD1DCD5BF ] gupdate         C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
17:18:45.0269 5916  gupdate - ok
17:18:45.0284 5916  [ 506708142BC63DABA64F2D3AD1DCD5BF ] gupdatem        C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
17:18:45.0284 5916  gupdatem - ok
17:18:45.0300 5916  [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir        C:\Windows\system32\drivers\hcw85cir.sys
17:18:45.0300 5916  hcw85cir - ok
17:18:45.0331 5916  [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
17:18:45.0331 5916  HdAudAddService - ok
17:18:45.0362 5916  [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus        C:\Windows\system32\drivers\HDAudBus.sys
17:18:45.0362 5916  HDAudBus - ok
17:18:45.0378 5916  [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt         C:\Windows\system32\DRIVERS\HidBatt.sys
17:18:45.0378 5916  HidBatt - ok
17:18:45.0394 5916  [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth          C:\Windows\system32\DRIVERS\hidbth.sys
17:18:45.0394 5916  HidBth - ok
17:18:45.0425 5916  [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr           C:\Windows\system32\DRIVERS\hidir.sys
17:18:45.0425 5916  HidIr - ok
17:18:45.0440 5916  [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv         C:\Windows\system32\hidserv.dll
17:18:45.0456 5916  hidserv - ok
17:18:45.0472 5916  [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb          C:\Windows\system32\drivers\hidusb.sys
17:18:45.0472 5916  HidUsb - ok
17:18:45.0503 5916  [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc          C:\Windows\system32\kmsvc.dll
17:18:45.0503 5916  hkmsvc - ok
17:18:45.0550 5916  [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll
17:18:45.0550 5916  HomeGroupListener - ok
17:18:45.0581 5916  [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
17:18:45.0581 5916  HomeGroupProvider - ok
17:18:45.0659 5916  [ BB1FC298BE53AAB1E110F6E786BD8AC5 ] HP Support Assistant Service C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe
17:18:45.0659 5916  HP Support Assistant Service - ok
17:18:45.0690 5916  [ CCBE758967CC0F53F5BA3B271653C4E6 ] hpdskflt        C:\Windows\system32\DRIVERS\hpdskflt.sys
17:18:45.0690 5916  hpdskflt - ok
17:18:45.0706 5916  [ 9AF482D058BE59CC28BCE52E7C4B747C ] HpqKbFiltr      C:\Windows\system32\DRIVERS\HpqKbFiltr.sys
17:18:45.0706 5916  HpqKbFiltr - ok
17:18:45.0784 5916  [ 9B7EDD3FE7C211C36E921D34D18A3A0A ] hpqwmiex        C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe
17:18:45.0784 5916  hpqwmiex - ok
17:18:45.0830 5916  [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD          C:\Windows\system32\drivers\HpSAMD.sys
17:18:45.0830 5916  HpSAMD - ok
17:18:45.0846 5916  [ E2223A37896A76861D7F79FD81A2A193 ] hpsrv           C:\Windows\system32\Hpservice.exe
17:18:45.0862 5916  hpsrv - ok
17:18:45.0893 5916  [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP            C:\Windows\system32\drivers\HTTP.sys
17:18:45.0908 5916  HTTP - ok
17:18:45.0940 5916  [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy        C:\Windows\system32\drivers\hwpolicy.sys
17:18:45.0940 5916  hwpolicy - ok
17:18:45.0971 5916  [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt        C:\Windows\system32\drivers\i8042prt.sys
17:18:45.0971 5916  i8042prt - ok
17:18:46.0018 5916  [ 7548066DF68A8A1A56B043359F915F37 ] IAANTMON        C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAANTMon.exe
17:18:46.0033 5916  IAANTMON - ok
17:18:46.0064 5916  [ 1D004CB1DA6323B1F55CAEF7F94B61D9 ] iaStor          C:\Windows\system32\DRIVERS\iaStor.sys
17:18:46.0080 5916  iaStor - ok
17:18:46.0096 5916  [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV         C:\Windows\system32\drivers\iaStorV.sys
17:18:46.0111 5916  iaStorV - ok
17:18:46.0142 5916  [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc           C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
17:18:46.0142 5916  idsvc - ok
17:18:46.0236 5916  [ A48928D4CCA6F8B731989DB08CF2C0AB ] IDSVia64        C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_6.2.0.9\Definitions\IPSDefs\20130308.001\IDSvia64.sys
17:18:46.0252 5916  IDSVia64 - ok
17:18:46.0439 5916  [ 3C3F27002ABC69C5AFE29CBE6CF7ADDF ] igfx            C:\Windows\system32\DRIVERS\igdkmd64.sys
17:18:46.0486 5916  igfx - ok
17:18:46.0517 5916  [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp           C:\Windows\system32\DRIVERS\iirsp.sys
17:18:46.0517 5916  iirsp - ok
17:18:46.0564 5916  [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT          C:\Windows\System32\ikeext.dll
17:18:46.0579 5916  IKEEXT - ok
17:18:46.0626 5916  [ 88A20FA54C73DED4E8DAC764E9130AE9 ] IntcHdmiAddService C:\Windows\system32\drivers\IntcHdmi.sys
17:18:46.0626 5916  IntcHdmiAddService - ok
17:18:46.0642 5916  [ F00F20E70C6EC3AA366910083A0518AA ] intelide        C:\Windows\system32\drivers\intelide.sys
17:18:46.0642 5916  intelide - ok
17:18:46.0657 5916  [ ADA036632C664CAA754079041CF1F8C1 ] intelppm        C:\Windows\system32\DRIVERS\intelppm.sys
17:18:46.0657 5916  intelppm - ok
17:18:46.0673 5916  [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum       C:\Windows\system32\ipbusenum.dll
17:18:46.0688 5916  IPBusEnum - ok
17:18:46.0720 5916  [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver  C:\Windows\system32\DRIVERS\ipfltdrv.sys
17:18:46.0720 5916  IpFilterDriver - ok
17:18:46.0751 5916  [ 08C2957BB30058E663720C5606885653 ] iphlpsvc        C:\Windows\System32\iphlpsvc.dll
17:18:46.0751 5916  iphlpsvc - ok
17:18:46.0766 5916  [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV         C:\Windows\system32\drivers\IPMIDrv.sys
17:18:46.0766 5916  IPMIDRV - ok
17:18:46.0798 5916  [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT           C:\Windows\system32\drivers\ipnat.sys
17:18:46.0813 5916  IPNAT - ok
17:18:46.0876 5916  [ B474C756C13960793C7583B766F904C4 ] iPod Service    C:\Program Files\iPod\bin\iPodService.exe
17:18:46.0876 5916  iPod Service - ok
17:18:46.0907 5916  [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM          C:\Windows\system32\drivers\irenum.sys
17:18:46.0907 5916  IRENUM - ok
17:18:46.0922 5916  [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp          C:\Windows\system32\drivers\isapnp.sys
17:18:46.0922 5916  isapnp - ok
17:18:46.0954 5916  [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt        C:\Windows\system32\drivers\msiscsi.sys
17:18:46.0969 5916  iScsiPrt - ok
17:18:46.0985 5916  [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass        C:\Windows\system32\drivers\kbdclass.sys
17:18:46.0985 5916  kbdclass - ok
17:18:47.0016 5916  [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid          C:\Windows\system32\drivers\kbdhid.sys
17:18:47.0016 5916  kbdhid - ok
17:18:47.0032 5916  [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso          C:\Windows\system32\lsass.exe
17:18:47.0032 5916  KeyIso - ok
17:18:47.0078 5916  [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD          C:\Windows\system32\Drivers\ksecdd.sys
17:18:47.0078 5916  KSecDD - ok
17:18:47.0110 5916  [ 26C43A7C2862447EC59DEDA188D1DA07 ] KSecPkg         C:\Windows\system32\Drivers\ksecpkg.sys
17:18:47.0110 5916  KSecPkg - ok
17:18:47.0125 5916  [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk         C:\Windows\system32\drivers\ksthunk.sys
17:18:47.0125 5916  ksthunk - ok
17:18:47.0156 5916  [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm           C:\Windows\system32\msdtckrm.dll
17:18:47.0172 5916  KtmRm - ok
17:18:47.0219 5916  [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer    C:\Windows\system32\srvsvc.dll
17:18:47.0234 5916  LanmanServer - ok
17:18:47.0266 5916  [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
17:18:47.0266 5916  LanmanWorkstation - ok
17:18:47.0312 5916  [ C2E324014D54DAA2B5A4DE47CB696FD8 ] LightScribeService C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe
17:18:47.0312 5916  LightScribeService - ok
17:18:47.0344 5916  [ 1538831CF8AD2979A04C423779465827 ] lltdio          C:\Windows\system32\DRIVERS\lltdio.sys
17:18:47.0344 5916  lltdio - ok
17:18:47.0359 5916  [ C1185803384AB3FEED115F79F109427F ] lltdsvc         C:\Windows\System32\lltdsvc.dll
17:18:47.0375 5916  lltdsvc - ok
17:18:47.0390 5916  [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts         C:\Windows\System32\lmhsvc.dll
17:18:47.0390 5916  lmhosts - ok
17:18:47.0422 5916  [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC          C:\Windows\system32\DRIVERS\lsi_fc.sys
17:18:47.0422 5916  LSI_FC - ok
17:18:47.0437 5916  [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS         C:\Windows\system32\DRIVERS\lsi_sas.sys
17:18:47.0437 5916  LSI_SAS - ok
17:18:47.0453 5916  [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2        C:\Windows\system32\DRIVERS\lsi_sas2.sys
17:18:47.0453 5916  LSI_SAS2 - ok
17:18:47.0453 5916  [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI        C:\Windows\system32\DRIVERS\lsi_scsi.sys
17:18:47.0453 5916  LSI_SCSI - ok
17:18:47.0484 5916  [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv           C:\Windows\system32\drivers\luafv.sys
17:18:47.0500 5916  luafv - ok
17:18:47.0531 5916  [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc         C:\Windows\system32\Mcx2Svc.dll
17:18:47.0546 5916  Mcx2Svc - ok
17:18:47.0562 5916  [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas         C:\Windows\system32\DRIVERS\megasas.sys
17:18:47.0562 5916  megasas - ok
17:18:47.0578 5916  [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR          C:\Windows\system32\DRIVERS\MegaSR.sys
17:18:47.0578 5916  MegaSR - ok
17:18:47.0640 5916  Microsoft SharePoint Workspace Audit Service - ok
17:18:47.0671 5916  [ E40E80D0304A73E8D269F7141D77250B ] MMCSS           C:\Windows\system32\mmcss.dll
17:18:47.0671 5916  MMCSS - ok
17:18:47.0687 5916  [ 800BA92F7010378B09F9ED9270F07137 ] Modem           C:\Windows\system32\drivers\modem.sys
17:18:47.0687 5916  Modem - ok
17:18:47.0702 5916  [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor         C:\Windows\system32\DRIVERS\monitor.sys
17:18:47.0702 5916  monitor - ok
17:18:47.0734 5916  [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass        C:\Windows\system32\drivers\mouclass.sys
17:18:47.0734 5916  mouclass - ok
17:18:47.0749 5916  [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid          C:\Windows\system32\DRIVERS\mouhid.sys
17:18:47.0749 5916  mouhid - ok
17:18:47.0780 5916  [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr        C:\Windows\system32\drivers\mountmgr.sys
17:18:47.0780 5916  mountmgr - ok
17:18:47.0812 5916  [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio            C:\Windows\system32\drivers\mpio.sys
17:18:47.0812 5916  mpio - ok
17:18:47.0827 5916  [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv          C:\Windows\system32\drivers\mpsdrv.sys
17:18:47.0827 5916  mpsdrv - ok
17:18:47.0874 5916  [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc          C:\Windows\system32\mpssvc.dll
17:18:47.0874 5916  MpsSvc - ok
17:18:47.0905 5916  [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV          C:\Windows\system32\drivers\mrxdav.sys
17:18:47.0905 5916  MRxDAV - ok
17:18:47.0952 5916  [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb          C:\Windows\system32\DRIVERS\mrxsmb.sys
17:18:47.0952 5916  mrxsmb - ok
17:18:47.0983 5916  [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10        C:\Windows\system32\DRIVERS\mrxsmb10.sys
17:18:47.0999 5916  mrxsmb10 - ok
17:18:47.0999 5916  [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20        C:\Windows\system32\DRIVERS\mrxsmb20.sys
17:18:47.0999 5916  mrxsmb20 - ok
17:18:48.0030 5916  [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci          C:\Windows\system32\drivers\msahci.sys
17:18:48.0030 5916  msahci - ok
17:18:48.0061 5916  [ DB801A638D011B9633829EB6F663C900 ] msdsm           C:\Windows\system32\drivers\msdsm.sys
17:18:48.0061 5916  msdsm - ok
17:18:48.0077 5916  [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC           C:\Windows\System32\msdtc.exe
17:18:48.0077 5916  MSDTC - ok
17:18:48.0124 5916  [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs            C:\Windows\system32\drivers\Msfs.sys
17:18:48.0139 5916  Msfs - ok
17:18:48.0139 5916  [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf       C:\Windows\System32\drivers\mshidkmdf.sys
17:18:48.0139 5916  mshidkmdf - ok
17:18:48.0155 5916  [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv        C:\Windows\system32\drivers\msisadrv.sys
17:18:48.0155 5916  msisadrv - ok
17:18:48.0186 5916  [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI         C:\Windows\system32\iscsiexe.dll
17:18:48.0202 5916  MSiSCSI - ok
17:18:48.0217 5916  msiserver - ok
17:18:48.0233 5916  [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV         C:\Windows\system32\drivers\MSKSSRV.sys
17:18:48.0233 5916  MSKSSRV - ok
17:18:48.0264 5916  [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK        C:\Windows\system32\drivers\MSPCLOCK.sys
17:18:48.0264 5916  MSPCLOCK - ok
17:18:48.0264 5916  [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM           C:\Windows\system32\drivers\MSPQM.sys
17:18:48.0264 5916  MSPQM - ok
17:18:48.0295 5916  [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC           C:\Windows\system32\drivers\MsRPC.sys
17:18:48.0311 5916  MsRPC - ok
17:18:48.0326 5916  [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios        C:\Windows\system32\drivers\mssmbios.sys
17:18:48.0326 5916  mssmbios - ok
17:18:48.0342 5916  [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE           C:\Windows\system32\drivers\MSTEE.sys
17:18:48.0342 5916  MSTEE - ok
17:18:48.0358 5916  [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig        C:\Windows\system32\DRIVERS\MTConfig.sys
17:18:48.0358 5916  MTConfig - ok
17:18:48.0373 5916  [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup             C:\Windows\system32\Drivers\mup.sys
17:18:48.0373 5916  Mup - ok
17:18:48.0467 5916  [ F2840DBFE9322F35557219AE82CC4597 ] N360            C:\Program Files (x86)\Norton 360\Engine\6.4.1.14\ccSvcHst.exe
17:18:48.0467 5916  N360 - ok
17:18:48.0482 5916  [ 582AC6D9873E31DFA28A4547270862DD ] napagent        C:\Windows\system32\qagentRT.dll
17:18:48.0498 5916  napagent - ok
17:18:48.0529 5916  [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP     C:\Windows\system32\DRIVERS\nwifi.sys
17:18:48.0529 5916  NativeWifiP - ok
17:18:48.0607 5916  [ 88A2F45CE66B904285978D6BB13AFEB2 ] NAVENG          C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_6.2.0.9\Definitions\VirusDefs\20130309.003\ENG64.SYS
17:18:48.0607 5916  NAVENG - ok
17:18:48.0701 5916  [ D2A545DA3A90BBFA40E020C23F1B7A48 ] NAVEX15         C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_6.2.0.9\Definitions\VirusDefs\20130309.003\EX64.SYS
17:18:48.0716 5916  NAVEX15 - ok
17:18:48.0748 5916  [ 760E38053BF56E501D562B70AD796B88 ] NDIS            C:\Windows\system32\drivers\ndis.sys
17:18:48.0763 5916  NDIS - ok
17:18:48.0763 5916  [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap         C:\Windows\system32\DRIVERS\ndiscap.sys
17:18:48.0763 5916  NdisCap - ok
17:18:48.0794 5916  [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi        C:\Windows\system32\DRIVERS\ndistapi.sys
17:18:48.0794 5916  NdisTapi - ok
17:18:48.0826 5916  [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio         C:\Windows\system32\DRIVERS\ndisuio.sys
17:18:48.0826 5916  Ndisuio - ok
17:18:48.0857 5916  [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan         C:\Windows\system32\DRIVERS\ndiswan.sys
17:18:48.0857 5916  NdisWan - ok
17:18:48.0888 5916  [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy         C:\Windows\system32\drivers\NDProxy.sys
17:18:48.0888 5916  NDProxy - ok
17:18:48.0904 5916  [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS         C:\Windows\system32\DRIVERS\netbios.sys
17:18:48.0904 5916  NetBIOS - ok
17:18:48.0935 5916  [ 09594D1089C523423B32A4229263F068 ] NetBT           C:\Windows\system32\DRIVERS\netbt.sys
17:18:48.0935 5916  NetBT - ok
17:18:48.0950 5916  [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon        C:\Windows\system32\lsass.exe
17:18:48.0950 5916  Netlogon - ok
17:18:48.0966 5916  [ 847D3AE376C0817161A14A82C8922A9E ] Netman          C:\Windows\System32\netman.dll
17:18:48.0982 5916  Netman - ok
17:18:48.0997 5916  [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm        C:\Windows\System32\netprofm.dll
17:18:48.0997 5916  netprofm - ok
17:18:49.0013 5916  [ 3E5A36127E201DDF663176B66828FAFE ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
17:18:49.0013 5916  NetTcpPortSharing - ok
17:18:49.0138 5916  [ 64428DFDAF6E88366CB51F45A79C5F69 ] netw5v64        C:\Windows\system32\DRIVERS\netw5v64.sys
17:18:49.0169 5916  netw5v64 - ok
17:18:49.0184 5916  [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960         C:\Windows\system32\DRIVERS\nfrd960.sys
17:18:49.0184 5916  nfrd960 - ok
17:18:49.0216 5916  [ 8AD77806D336673F270DB31645267293 ] NlaSvc          C:\Windows\System32\nlasvc.dll
17:18:49.0216 5916  NlaSvc - ok
17:18:49.0231 5916  [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs            C:\Windows\system32\drivers\Npfs.sys
17:18:49.0231 5916  Npfs - ok
17:18:49.0247 5916  [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi             C:\Windows\system32\nsisvc.dll
17:18:49.0247 5916  nsi - ok
17:18:49.0262 5916  [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy        C:\Windows\system32\drivers\nsiproxy.sys
17:18:49.0262 5916  nsiproxy - ok
17:18:49.0325 5916  [ E453ACF4E7D44E5530B5D5F2B9CA8563 ] Ntfs            C:\Windows\system32\drivers\Ntfs.sys
17:18:49.0356 5916  Ntfs - ok
17:18:49.0372 5916  [ 9899284589F75FA8724FF3D16AED75C1 ] Null            C:\Windows\system32\drivers\Null.sys
17:18:49.0372 5916  Null - ok
17:18:49.0418 5916  [ 0A92CB65770442ED0DC44834632F66AD ] nvraid          C:\Windows\system32\drivers\nvraid.sys
17:18:49.0418 5916  nvraid - ok
17:18:49.0434 5916  [ DAB0E87525C10052BF65F06152F37E4A ] nvstor          C:\Windows\system32\drivers\nvstor.sys
17:18:49.0434 5916  nvstor - ok
17:18:49.0465 5916  [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp          C:\Windows\system32\drivers\nv_agp.sys
17:18:49.0465 5916  nv_agp - ok
17:18:49.0496 5916  [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394        C:\Windows\system32\drivers\ohci1394.sys
17:18:49.0496 5916  ohci1394 - ok
17:18:49.0574 5916  [ 9D10F99A6712E28F8ACD5641E3A7EA6B ] ose             C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
17:18:49.0574 5916  ose - ok
17:18:49.0730 5916  [ 61BFFB5F57AD12F83AB64B7181829B34 ] osppsvc         C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
17:18:49.0762 5916  osppsvc - ok
17:18:49.0808 5916  [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc        C:\Windows\system32\pnrpsvc.dll
17:18:49.0808 5916  p2pimsvc - ok
17:18:49.0824 5916  [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc          C:\Windows\system32\p2psvc.dll
17:18:49.0840 5916  p2psvc - ok
17:18:49.0855 5916  [ 0086431C29C35BE1DBC43F52CC273887 ] Parport         C:\Windows\system32\DRIVERS\parport.sys
17:18:49.0855 5916  Parport - ok
17:18:49.0886 5916  [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr         C:\Windows\system32\drivers\partmgr.sys
17:18:49.0886 5916  partmgr - ok
17:18:49.0918 5916  [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc          C:\Windows\System32\pcasvc.dll
17:18:49.0918 5916  PcaSvc - ok
17:18:49.0933 5916  [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci             C:\Windows\system32\drivers\pci.sys
17:18:49.0933 5916  pci - ok
17:18:49.0964 5916  [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide          C:\Windows\system32\drivers\pciide.sys
17:18:49.0964 5916  pciide - ok
17:18:49.0996 5916  [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia          C:\Windows\system32\DRIVERS\pcmcia.sys
17:18:49.0996 5916  pcmcia - ok
17:18:50.0027 5916  [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw             C:\Windows\system32\drivers\pcw.sys
17:18:50.0027 5916  pcw - ok
17:18:50.0058 5916  [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH          C:\Windows\system32\drivers\peauth.sys
17:18:50.0058 5916  PEAUTH - ok
17:18:50.0120 5916  [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost        C:\Windows\SysWow64\perfhost.exe
17:18:50.0120 5916  PerfHost - ok
17:18:50.0183 5916  [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla             C:\Windows\system32\pla.dll
17:18:50.0230 5916  pla - ok
17:18:50.0276 5916  [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay        C:\Windows\system32\umpnpmgr.dll
17:18:50.0276 5916  PlugPlay - ok
17:18:50.0292 5916  [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg     C:\Windows\system32\pnrpauto.dll
17:18:50.0292 5916  PNRPAutoReg - ok
17:18:50.0308 5916  [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc         C:\Windows\system32\pnrpsvc.dll
17:18:50.0323 5916  PNRPsvc - ok
17:18:50.0339 5916  [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent     C:\Windows\System32\ipsecsvc.dll
17:18:50.0339 5916  PolicyAgent - ok
17:18:50.0370 5916  [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power           C:\Windows\system32\umpo.dll
17:18:50.0370 5916  Power - ok
17:18:50.0401 5916  [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport    C:\Windows\system32\DRIVERS\raspptp.sys
17:18:50.0401 5916  PptpMiniport - ok
17:18:50.0432 5916  [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor       C:\Windows\system32\DRIVERS\processr.sys
17:18:50.0432 5916  Processor - ok
17:18:50.0464 5916  [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc         C:\Windows\system32\profsvc.dll
17:18:50.0464 5916  ProfSvc - ok
17:18:50.0479 5916  [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe
17:18:50.0479 5916  ProtectedStorage - ok
17:18:50.0526 5916  [ 0557CF5A2556BD58E26384169D72438D ] Psched          C:\Windows\system32\DRIVERS\pacer.sys
17:18:50.0526 5916  Psched - ok
17:18:50.0573 5916  [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300          C:\Windows\system32\DRIVERS\ql2300.sys
17:18:50.0588 5916  ql2300 - ok
17:18:50.0620 5916  [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx          C:\Windows\system32\DRIVERS\ql40xx.sys
17:18:50.0620 5916  ql40xx - ok
17:18:50.0635 5916  [ 906191634E99AEA92C4816150BDA3732 ] QWAVE           C:\Windows\system32\qwave.dll
17:18:50.0635 5916  QWAVE - ok
17:18:50.0651 5916  [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv        C:\Windows\system32\drivers\qwavedrv.sys
17:18:50.0651 5916  QWAVEdrv - ok
17:18:50.0666 5916  [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd          C:\Windows\system32\DRIVERS\rasacd.sys
17:18:50.0682 5916  RasAcd - ok
17:18:50.0713 5916  [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn     C:\Windows\system32\DRIVERS\AgileVpn.sys
17:18:50.0713 5916  RasAgileVpn - ok
17:18:50.0729 5916  [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto         C:\Windows\System32\rasauto.dll
17:18:50.0729 5916  RasAuto - ok
17:18:50.0760 5916  [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp         C:\Windows\system32\DRIVERS\rasl2tp.sys
17:18:50.0760 5916  Rasl2tp - ok
17:18:50.0791 5916  [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan          C:\Windows\System32\rasmans.dll
17:18:50.0807 5916  RasMan - ok
17:18:50.0807 5916  [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe        C:\Windows\system32\DRIVERS\raspppoe.sys
17:18:50.0807 5916  RasPppoe - ok
17:18:50.0854 5916  [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp         C:\Windows\system32\DRIVERS\rassstp.sys
17:18:50.0854 5916  RasSstp - ok
17:18:50.0869 5916  [ 77F665941019A1594D887A74F301FA2F ] rdbss           C:\Windows\system32\DRIVERS\rdbss.sys
17:18:50.0869 5916  rdbss - ok
17:18:50.0885 5916  [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus          C:\Windows\system32\DRIVERS\rdpbus.sys
17:18:50.0900 5916  rdpbus - ok
17:18:50.0900 5916  [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD          C:\Windows\system32\DRIVERS\RDPCDD.sys
17:18:50.0900 5916  RDPCDD - ok
17:18:50.0932 5916  [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD        C:\Windows\system32\drivers\rdpencdd.sys
17:18:50.0932 5916  RDPENCDD - ok
17:18:50.0947 5916  [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP        C:\Windows\system32\drivers\rdprefmp.sys
17:18:50.0947 5916  RDPREFMP - ok
17:18:50.0994 5916  [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD           C:\Windows\system32\drivers\RDPWD.sys
17:18:50.0994 5916  RDPWD - ok
17:18:51.0010 5916  [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost        C:\Windows\system32\drivers\rdyboost.sys
17:18:51.0010 5916  rdyboost - ok
17:18:51.0041 5916  [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess    C:\Windows\System32\mprdim.dll
17:18:51.0041 5916  RemoteAccess - ok
17:18:51.0056 5916  [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry  C:\Windows\system32\regsvc.dll
17:18:51.0088 5916  RemoteRegistry - ok
17:18:51.0306 5916  [ 498EB62A160674E793FA40FD65390625 ] RichVideo       C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe
17:18:51.0306 5916  RichVideo - ok
17:18:51.0353 5916  [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper    C:\Windows\System32\RpcEpMap.dll
17:18:51.0353 5916  RpcEptMapper - ok
17:18:51.0368 5916  [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator      C:\Windows\system32\locator.exe
17:18:51.0384 5916  RpcLocator - ok
17:18:51.0431 5916  [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs           C:\Windows\system32\rpcss.dll
17:18:51.0431 5916  RpcSs - ok
17:18:51.0478 5916  [ DDC86E4F8E7456261E637E3552E804FF ] rspndr          C:\Windows\system32\DRIVERS\rspndr.sys
17:18:51.0478 5916  rspndr - ok
17:18:51.0540 5916  [ A5DF2F732A6C95554E548FCB6932BD31 ] RSUSBSTOR       C:\Windows\system32\Drivers\RtsUStor.sys
17:18:51.0540 5916  RSUSBSTOR - ok
17:18:51.0602 5916  [ 365ED58B47B46DE8B1C5FA759B6FCD6E ] RTL8167         C:\Windows\system32\DRIVERS\Rt64win7.sys
17:18:51.0602 5916  RTL8167 - ok
17:18:51.0618 5916  RtsUIR - ok
17:18:51.0634 5916  [ C118A82CD78818C29AB228366EBF81C3 ] SamSs           C:\Windows\system32\lsass.exe
17:18:51.0649 5916  SamSs - ok
17:18:51.0680 5916  [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port        C:\Windows\system32\drivers\sbp2port.sys
17:18:51.0696 5916  sbp2port - ok
17:18:51.0727 5916  [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr        C:\Windows\System32\SCardSvr.dll
17:18:51.0774 5916  SCardSvr - ok
17:18:51.0805 5916  [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter        C:\Windows\system32\DRIVERS\scfilter.sys
17:18:51.0805 5916  scfilter - ok
17:18:51.0852 5916  [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule        C:\Windows\system32\schedsvc.dll
17:18:51.0868 5916  Schedule - ok
17:18:51.0899 5916  [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc     C:\Windows\System32\certprop.dll
17:18:51.0914 5916  SCPolicySvc - ok
17:18:51.0946 5916  [ 111E0EBC0AD79CB0FA014B907B231CF0 ] sdbus           C:\Windows\system32\drivers\sdbus.sys
17:18:51.0946 5916  sdbus - ok
17:18:51.0977 5916  [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC          C:\Windows\System32\SDRSVC.dll
17:18:51.0977 5916  SDRSVC - ok
17:18:52.0039 5916  [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv          C:\Windows\system32\drivers\secdrv.sys
17:18:52.0039 5916  secdrv - ok
17:18:52.0070 5916  [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon        C:\Windows\system32\seclogon.dll
17:18:52.0102 5916  seclogon - ok
17:18:52.0148 5916  [ C32AB8FA018EF34C0F113BD501436D21 ] SENS            C:\Windows\System32\sens.dll
17:18:52.0148 5916  SENS - ok
17:18:52.0164 5916  [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc        C:\Windows\system32\sensrsvc.dll
17:18:52.0164 5916  SensrSvc - ok
17:18:52.0195 5916  [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum         C:\Windows\system32\DRIVERS\serenum.sys
17:18:52.0195 5916  Serenum - ok
17:18:52.0211 5916  [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial          C:\Windows\system32\DRIVERS\serial.sys
17:18:52.0211 5916  Serial - ok
17:18:52.0226 5916  [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse        C:\Windows\system32\DRIVERS\sermouse.sys
17:18:52.0226 5916  sermouse - ok
17:18:52.0273 5916  [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv      C:\Windows\system32\sessenv.dll
17:18:52.0273 5916  SessionEnv - ok
17:18:52.0289 5916  [ A554811BCD09279536440C964AE35BBF ] sffdisk         C:\Windows\system32\drivers\sffdisk.sys
17:18:52.0289 5916  sffdisk - ok
17:18:52.0304 5916  [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc        C:\Windows\system32\drivers\sffp_mmc.sys
17:18:52.0304 5916  sffp_mmc - ok
17:18:52.0320 5916  [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd         C:\Windows\system32\drivers\sffp_sd.sys
17:18:52.0320 5916  sffp_sd - ok
17:18:52.0336 5916  [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy         C:\Windows\system32\DRIVERS\sfloppy.sys
17:18:52.0336 5916  sfloppy - ok
17:18:52.0382 5916  [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess    C:\Windows\System32\ipnathlp.dll
17:18:52.0414 5916  SharedAccess - ok
17:18:52.0445 5916  [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
17:18:52.0445 5916  ShellHWDetection - ok
17:18:52.0476 5916  [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2        C:\Windows\system32\DRIVERS\SiSRaid2.sys
17:18:52.0476 5916  SiSRaid2 - ok
17:18:52.0492 5916  [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4        C:\Windows\system32\DRIVERS\sisraid4.sys
17:18:52.0492 5916  SiSRaid4 - ok
17:18:52.0523 5916  [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb             C:\Windows\system32\DRIVERS\smb.sys
17:18:52.0538 5916  Smb - ok
17:18:52.0601 5916  [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP        C:\Windows\System32\snmptrap.exe
17:18:52.0601 5916  SNMPTRAP - ok
17:18:52.0616 5916  [ B9E31E5CACDFE584F34F730A677803F9 ] spldr           C:\Windows\system32\drivers\spldr.sys
17:18:52.0616 5916  spldr - ok
17:18:52.0663 5916  [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler         C:\Windows\System32\spoolsv.exe
17:18:52.0663 5916  Spooler - ok
17:18:52.0772 5916  [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc          C:\Windows\system32\sppsvc.exe
17:18:52.0788 5916  sppsvc - ok
17:18:52.0804 5916  [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify     C:\Windows\system32\sppuinotify.dll
17:18:52.0819 5916  sppuinotify - ok
17:18:52.0913 5916  [ 891793E00432FA055CF040605C260E49 ] SRTSP           C:\Windows\System32\Drivers\N360x64\0604010.00E\SRTSP64.SYS
17:18:52.0928 5916  SRTSP - ok
17:18:52.0960 5916  [ 1CB7BB3B0561FB5ECFE37F7731E8BF3E ] SRTSPX          C:\Windows\system32\drivers\N360x64\0604010.00E\SRTSPX64.SYS
17:18:52.0960 5916  SRTSPX - ok
17:18:53.0006 5916  [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv             C:\Windows\system32\DRIVERS\srv.sys
17:18:53.0006 5916  srv - ok
17:18:53.0022 5916  [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2            C:\Windows\system32\DRIVERS\srv2.sys
17:18:53.0022 5916  srv2 - ok
17:18:53.0053 5916  [ 0C4540311E11664B245A263E1154CEF8 ] SrvHsfHDA       C:\Windows\system32\DRIVERS\VSTAZL6.SYS
17:18:53.0053 5916  SrvHsfHDA - ok
17:18:53.0100 5916  [ 02071D207A9858FBE3A48CBFD59C4A04 ] SrvHsfV92       C:\Windows\system32\DRIVERS\VSTDPV6.SYS
17:18:53.0116 5916  SrvHsfV92 - ok
17:18:53.0147 5916  [ 18E40C245DBFAF36FD0134A7EF2DF396 ] SrvHsfWinac     C:\Windows\system32\DRIVERS\VSTCNXT6.SYS
17:18:53.0162 5916  SrvHsfWinac - ok
17:18:53.0194 5916  [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet          C:\Windows\system32\DRIVERS\srvnet.sys
17:18:53.0194 5916  srvnet - ok
17:18:53.0225 5916  [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV         C:\Windows\System32\ssdpsrv.dll
17:18:53.0225 5916  SSDPSRV - ok
17:18:53.0240 5916  [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc         C:\Windows\system32\sstpsvc.dll
17:18:53.0256 5916  SstpSvc - ok
17:18:53.0350 5916  [ 7595D53EE8E8B0BAA9A2DDDE867EBB0C ] STacSV          C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_960c1f056a541068\STacSV64.exe
17:18:53.0350 5916  STacSV - ok
17:18:53.0365 5916  [ F3817967ED533D08327DC73BC4D5542A ] stexstor        C:\Windows\system32\DRIVERS\stexstor.sys
17:18:53.0365 5916  stexstor - ok
17:18:53.0428 5916  [ DFFBC024DFC7BB05B2129E05CBC7A201 ] STHDA           C:\Windows\system32\DRIVERS\stwrt64.sys
17:18:53.0428 5916  STHDA - ok
17:18:53.0459 5916  [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc          C:\Windows\System32\wiaservc.dll
17:18:53.0474 5916  stisvc - ok
17:18:53.0506 5916  [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum          C:\Windows\system32\drivers\swenum.sys
17:18:53.0506 5916  swenum - ok
17:18:53.0552 5916  [ E08E46FDD841B7184194011CA1955A0B ] swprv           C:\Windows\System32\swprv.dll
17:18:53.0552 5916  swprv - ok
17:18:53.0615 5916  [ 8B2430762099598DA40686F754632EFD ] SymDS           C:\Windows\system32\drivers\N360x64\0604010.00E\SYMDS64.SYS
17:18:53.0615 5916  SymDS - ok
17:18:53.0677 5916  [ 5CB7F2FD7E30A0F52F93574BFC3A8041 ] SymEFA          C:\Windows\system32\drivers\N360x64\0604010.00E\SYMEFA64.SYS
17:18:53.0693 5916  SymEFA - ok
17:18:53.0755 5916  [ 898BB48C797483420DF523B2BBC1ECDB ] SymEvent        C:\Windows\system32\Drivers\SYMEVENT64x86.SYS
17:18:53.0755 5916  SymEvent - ok
17:18:53.0771 5916  [ 5013A76CAAA1D7CF1C55214B490B4E35 ] SymIRON         C:\Windows\system32\drivers\N360x64\0604010.00E\Ironx64.SYS
17:18:53.0786 5916  SymIRON - ok
17:18:53.0818 5916  [ 3911BD0E68C010E5438A87706ABBE9AB ] SymNetS         C:\Windows\System32\Drivers\N360x64\0604010.00E\SYMNETS.SYS
17:18:53.0818 5916  SymNetS - ok
17:18:53.0833 5916  [ 924D711941956F7420A4925592BE8253 ] SynTP           C:\Windows\system32\DRIVERS\SynTP.sys
17:18:53.0833 5916  SynTP - ok
17:18:53.0911 5916  [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain         C:\Windows\system32\sysmain.dll
17:18:53.0927 5916  SysMain - ok
17:18:53.0942 5916  [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
17:18:53.0958 5916  TabletInputService - ok
17:18:53.0989 5916  [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv         C:\Windows\System32\tapisrv.dll
17:18:53.0989 5916  TapiSrv - ok
17:18:54.0005 5916  [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS             C:\Windows\System32\tbssvc.dll
17:18:54.0020 5916  TBS - ok
17:18:54.0067 5916  [ B62A953F2BF3922C8764A29C34A22899 ] Tcpip           C:\Windows\system32\drivers\tcpip.sys
17:18:54.0083 5916  Tcpip - ok
17:18:54.0145 5916  [ B62A953F2BF3922C8764A29C34A22899 ] TCPIP6          C:\Windows\system32\DRIVERS\tcpip.sys
17:18:54.0145 5916  TCPIP6 - ok
17:18:54.0176 5916  [ 1B16D0BD9841794A6E0CDE0CEF744ABC ] tcpipreg        C:\Windows\system32\drivers\tcpipreg.sys
17:18:54.0176 5916  tcpipreg - ok
17:18:54.0208 5916  [ 3371D21011695B16333A3934340C4E7C ] TDPIPE          C:\Windows\system32\drivers\tdpipe.sys
17:18:54.0208 5916  TDPIPE - ok
17:18:54.0239 5916  [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP           C:\Windows\system32\drivers\tdtcp.sys
17:18:54.0239 5916  TDTCP - ok
17:18:54.0286 5916  [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx             C:\Windows\system32\DRIVERS\tdx.sys
17:18:54.0286 5916  tdx - ok
17:18:54.0317 5916  [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD          C:\Windows\system32\drivers\termdd.sys
17:18:54.0317 5916  TermDD - ok
17:18:54.0348 5916  [ 2E648163254233755035B46DD7B89123 ] TermService     C:\Windows\System32\termsrv.dll
17:18:54.0379 5916  TermService - ok
17:18:54.0395 5916  [ F0344071948D1A1FA732231785A0664C ] Themes          C:\Windows\system32\themeservice.dll
17:18:54.0410 5916  Themes - ok
17:18:54.0426 5916  [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER     C:\Windows\system32\mmcss.dll
17:18:54.0426 5916  THREADORDER - ok
17:18:54.0442 5916  [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks          C:\Windows\System32\trkwks.dll
17:18:54.0457 5916  TrkWks - ok
17:18:54.0504 5916  [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
17:18:54.0504 5916  TrustedInstaller - ok
17:18:54.0535 5916  [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv        C:\Windows\system32\DRIVERS\tssecsrv.sys
17:18:54.0535 5916  tssecsrv - ok
17:18:54.0598 5916  [ D11C783E3EF9A3C52C0EBE83CC5000E9 ] TsUsbFlt        C:\Windows\system32\drivers\tsusbflt.sys
17:18:54.0598 5916  TsUsbFlt - ok
17:18:54.0644 5916  [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel          C:\Windows\system32\DRIVERS\tunnel.sys
17:18:54.0660 5916  tunnel - ok
17:18:54.0676 5916  [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35          C:\Windows\system32\DRIVERS\uagp35.sys
17:18:54.0676 5916  uagp35 - ok
17:18:54.0691 5916  [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs            C:\Windows\system32\DRIVERS\udfs.sys
17:18:54.0691 5916  udfs - ok
17:18:54.0722 5916  [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect       C:\Windows\system32\UI0Detect.exe
17:18:54.0722 5916  UI0Detect - ok
17:18:54.0754 5916  [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx        C:\Windows\system32\drivers\uliagpkx.sys
17:18:54.0754 5916  uliagpkx - ok
17:18:54.0785 5916  [ DC54A574663A895C8763AF0FA1FF7561 ] umbus           C:\Windows\system32\drivers\umbus.sys
17:18:54.0785 5916  umbus - ok
17:18:54.0800 5916  [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass          C:\Windows\system32\DRIVERS\umpass.sys
17:18:54.0800 5916  UmPass - ok
17:18:54.0832 5916  [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost        C:\Windows\System32\upnphost.dll
17:18:54.0832 5916  upnphost - ok
17:18:54.0878 5916  [ 43228F8EDD1B0BCDD3145AD246E63D39 ] USBAAPL64       C:\Windows\system32\Drivers\usbaapl64.sys
17:18:54.0878 5916  USBAAPL64 - ok
17:18:54.0894 5916  [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp         C:\Windows\system32\DRIVERS\usbccgp.sys
17:18:54.0894 5916  usbccgp - ok
17:18:54.0910 5916  USBCCID - ok
17:18:54.0941 5916  [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir          C:\Windows\system32\drivers\usbcir.sys
17:18:54.0941 5916  usbcir - ok
17:18:54.0972 5916  [ C025055FE7B87701EB042095DF1A2D7B ] usbehci         C:\Windows\system32\drivers\usbehci.sys
17:18:54.0972 5916  usbehci - ok
17:18:55.0019 5916  [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub          C:\Windows\system32\DRIVERS\usbhub.sys
17:18:55.0019 5916  usbhub - ok
17:18:55.0034 5916  [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci         C:\Windows\system32\drivers\usbohci.sys
17:18:55.0034 5916  usbohci - ok
17:18:55.0081 5916  [ 73188F58FB384E75C4063D29413CEE3D ] usbprint        C:\Windows\system32\DRIVERS\usbprint.sys
17:18:55.0081 5916  usbprint - ok
17:18:55.0144 5916  [ AAA2513C8AED8B54B189FD0C6B1634C0 ] usbscan         C:\Windows\system32\DRIVERS\usbscan.sys
17:18:55.0144 5916  usbscan - ok
17:18:55.0159 5916  [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR         C:\Windows\system32\drivers\USBSTOR.SYS
17:18:55.0159 5916  USBSTOR - ok
17:18:55.0206 5916  [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci         C:\Windows\system32\drivers\usbuhci.sys
17:18:55.0206 5916  usbuhci - ok
17:18:55.0253 5916  [ 454800C2BC7F3927CE030141EE4F4C50 ] usbvideo        C:\Windows\System32\Drivers\usbvideo.sys
17:18:55.0253 5916  usbvideo - ok
17:18:55.0284 5916  [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms           C:\Windows\System32\uxsms.dll
17:18:55.0284 5916  UxSms - ok
17:18:55.0300 5916  [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc        C:\Windows\system32\lsass.exe
17:18:55.0300 5916  VaultSvc - ok
17:18:55.0331 5916  [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot        C:\Windows\system32\drivers\vdrvroot.sys
17:18:55.0331 5916  vdrvroot - ok
17:18:55.0378 5916  [ 8D6B481601D01A456E75C3210F1830BE ] vds             C:\Windows\System32\vds.exe
17:18:55.0378 5916  vds - ok
17:18:55.0409 5916  [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga             C:\Windows\system32\DRIVERS\vgapnp.sys
17:18:55.0409 5916  vga - ok
17:18:55.0424 5916  [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave         C:\Windows\System32\drivers\vga.sys
17:18:55.0424 5916  VgaSave - ok
17:18:55.0440 5916  [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp           C:\Windows\system32\drivers\vhdmp.sys
17:18:55.0456 5916  vhdmp - ok
17:18:55.0471 5916  [ E5689D93FFE4E5D66C0178761240DD54 ] viaide          C:\Windows\system32\drivers\viaide.sys
17:18:55.0471 5916  viaide - ok
17:18:55.0487 5916  [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr          C:\Windows\system32\drivers\volmgr.sys
17:18:55.0487 5916  volmgr - ok
17:18:55.0518 5916  [ A255814907C89BE58B79EF2F189B843B ] volmgrx         C:\Windows\system32\drivers\volmgrx.sys
17:18:55.0518 5916  volmgrx - ok
17:18:55.0549 5916  [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap         C:\Windows\system32\drivers\volsnap.sys
17:18:55.0565 5916  volsnap - ok
17:18:55.0580 5916  [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid         C:\Windows\system32\DRIVERS\vsmraid.sys
17:18:55.0580 5916  vsmraid - ok
17:18:55.0643 5916  [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS             C:\Windows\system32\vssvc.exe
17:18:55.0658 5916  VSS - ok
17:18:55.0690 5916  [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus        C:\Windows\system32\DRIVERS\vwifibus.sys
17:18:55.0690 5916  vwifibus - ok
17:18:55.0721 5916  [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt        C:\Windows\system32\DRIVERS\vwififlt.sys
17:18:55.0721 5916  vwififlt - ok
17:18:55.0752 5916  [ 6A638FC4BFDDC4D9B186C28C91BD1A01 ] vwifimp         C:\Windows\system32\DRIVERS\vwifimp.sys
17:18:55.0752 5916  vwifimp - ok
17:18:55.0783 5916  [ 1C9D80CC3849B3788048078C26486E1A ] W32Time         C:\Windows\system32\w32time.dll
17:18:55.0783 5916  W32Time - ok
17:18:55.0814 5916  [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen        C:\Windows\system32\DRIVERS\wacompen.sys
17:18:55.0814 5916  WacomPen - ok
17:18:55.0846 5916  [ 356AFD78A6ED4457169241AC3965230C ] WANARP          C:\Windows\system32\DRIVERS\wanarp.sys
17:18:55.0846 5916  WANARP - ok
17:18:55.0861 5916  [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6        C:\Windows\system32\DRIVERS\wanarp.sys
17:18:55.0861 5916  Wanarpv6 - ok
17:18:55.0939 5916  [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc     C:\Windows\system32\Wat\WatAdminSvc.exe
17:18:55.0955 5916  WatAdminSvc - ok
17:18:56.0017 5916  [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine        C:\Windows\system32\wbengine.exe
17:18:56.0033 5916  wbengine - ok
17:18:56.0064 5916  [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc        C:\Windows\System32\wbiosrvc.dll
17:18:56.0064 5916  WbioSrvc - ok
17:18:56.0111 5916  [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc         C:\Windows\System32\wcncsvc.dll
17:18:56.0111 5916  wcncsvc - ok
17:18:56.0126 5916  [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
17:18:56.0142 5916  WcsPlugInService - ok
17:18:56.0158 5916  [ 72889E16FF12BA0F235467D6091B17DC ] Wd              C:\Windows\system32\DRIVERS\wd.sys
17:18:56.0158 5916  Wd - ok
17:18:56.0204 5916  [ 442783E2CB0DA19873B7A63833FF4CB4 ] Wdf01000        C:\Windows\system32\drivers\Wdf01000.sys
17:18:56.0204 5916  Wdf01000 - ok
17:18:56.0220 5916  [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost  C:\Windows\system32\wdi.dll
17:18:56.0236 5916  WdiServiceHost - ok
17:18:56.0236 5916  [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost   C:\Windows\system32\wdi.dll
17:18:56.0236 5916  WdiSystemHost - ok
17:18:56.0282 5916  [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient       C:\Windows\System32\webclnt.dll
17:18:56.0282 5916  WebClient - ok
17:18:56.0298 5916  [ C749025A679C5103E575E3B48E092C43 ] Wecsvc          C:\Windows\system32\wecsvc.dll
17:18:56.0314 5916  Wecsvc - ok
17:18:56.0345 5916  [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport   C:\Windows\System32\wercplsupport.dll
17:18:56.0345 5916  wercplsupport - ok
17:18:56.0360 5916  [ 6D137963730144698CBD10F202E9F251 ] WerSvc          C:\Windows\System32\WerSvc.dll
17:18:56.0360 5916  WerSvc - ok
17:18:56.0392 5916  [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf          C:\Windows\system32\DRIVERS\wfplwf.sys
17:18:56.0392 5916  WfpLwf - ok
17:18:56.0407 5916  [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount        C:\Windows\system32\drivers\wimmount.sys
17:18:56.0407 5916  WIMMount - ok
17:18:56.0438 5916  WinDefend - ok
17:18:56.0438 5916  WinHttpAutoProxySvc - ok
17:18:56.0485 5916  [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt         C:\Windows\system32\wbem\WMIsvc.dll
17:18:56.0501 5916  Winmgmt - ok
17:18:56.0563 5916  [ BCB1310604AA415C4508708975B3931E ] WinRM           C:\Windows\system32\WsmSvc.dll
17:18:56.0641 5916  WinRM - ok
17:18:56.0719 5916  [ FE88B288356E7B47B74B13372ADD906D ] WinUsb          C:\Windows\system32\DRIVERS\WinUsb.sys
17:18:56.0719 5916  WinUsb - ok
17:18:56.0766 5916  [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc         C:\Windows\System32\wlansvc.dll
17:18:56.0766 5916  Wlansvc - ok
17:18:56.0906 5916  [ 7E47C328FC4768CB8BEAFBCFAFA70362 ] wlidsvc         C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
17:18:56.0922 5916  wlidsvc - ok
17:18:56.0938 5916  [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi         C:\Windows\system32\drivers\wmiacpi.sys
17:18:56.0938 5916  WmiAcpi - ok
17:18:56.0969 5916  [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv        C:\Windows\system32\wbem\WmiApSrv.exe
17:18:56.0969 5916  wmiApSrv - ok
17:18:56.0984 5916  WMPNetworkSvc - ok
17:18:56.0984 5916  [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc          C:\Windows\System32\wpcsvc.dll
17:18:57.0000 5916  WPCSvc - ok
17:18:57.0031 5916  [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum      C:\Windows\system32\wpdbusenum.dll
17:18:57.0031 5916  WPDBusEnum - ok
17:18:57.0062 5916  [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl         C:\Windows\system32\drivers\ws2ifsl.sys
17:18:57.0062 5916  ws2ifsl - ok
17:18:57.0078 5916  [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc          C:\Windows\System32\wscsvc.dll
17:18:57.0078 5916  wscsvc - ok
17:18:57.0078 5916  WSearch - ok
17:18:57.0156 5916  [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv        C:\Windows\system32\wuaueng.dll
17:18:57.0172 5916  wuauserv - ok
17:18:57.0203 5916  [ AB886378EEB55C6C75B4F2D14B6C869F ] WudfPf          C:\Windows\system32\drivers\WudfPf.sys
17:18:57.0203 5916  WudfPf - ok
17:18:57.0234 5916  [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFRd          C:\Windows\system32\DRIVERS\WUDFRd.sys
17:18:57.0234 5916  WUDFRd - ok
17:18:57.0265 5916  [ B20F051B03A966392364C83F009F7D17 ] wudfsvc         C:\Windows\System32\WUDFSvc.dll
17:18:57.0265 5916  wudfsvc - ok
17:18:57.0281 5916  [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc         C:\Windows\System32\wwansvc.dll
17:18:57.0296 5916  WwanSvc - ok
17:18:57.0328 5916  [ B3EEACF62445E24FBB2CD4B0FB4DB026 ] yukonw7         C:\Windows\system32\DRIVERS\yk62x64.sys
17:18:57.0328 5916  yukonw7 - ok
17:18:57.0359 5916  ================ Scan global ===============================
17:18:57.0374 5916  [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
17:18:57.0390 5916  [ 0C27239FEA4DB8A2AAC9E502186B7264 ] C:\Windows\system32\winsrv.dll
17:18:57.0421 5916  [ 0C27239FEA4DB8A2AAC9E502186B7264 ] C:\Windows\system32\winsrv.dll
17:18:57.0437 5916  [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
17:18:57.0452 5916  [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
17:18:57.0452 5916  [Global] - ok
17:18:57.0468 5916  ================ Scan MBR ==================================
17:18:57.0468 5916  [ 53400DB3CA8E9E932C47F1BBCBA8FD72 ] \Device\Harddisk0\DR0
17:18:57.0842 5916  \Device\Harddisk0\DR0 - ok
17:18:57.0842 5916  ================ Scan VBR ==================================
17:18:57.0858 5916  [ 72624FE7EC75A6BD59C8AE816C48FCBB ] \Device\Harddisk0\DR0\Partition1
17:18:57.0858 5916  \Device\Harddisk0\DR0\Partition1 - ok
17:18:57.0874 5916  [ F3F30B7C4179CE45B2EC51748304AC7D ] \Device\Harddisk0\DR0\Partition2
17:18:57.0874 5916  \Device\Harddisk0\DR0\Partition2 - ok
17:18:57.0920 5916  [ 0F4F9ED7B888286AFA756946D25FD5F8 ] \Device\Harddisk0\DR0\Partition3
17:18:57.0920 5916  \Device\Harddisk0\DR0\Partition3 - ok
17:18:57.0920 5916  ================ Scan active images ========================
17:18:57.0920 5916  [ 3E588B60EC061686BA05D33574A344C6 ] C:\Windows\System32\drivers\crashdmp.sys
17:18:57.0920 5916  C:\Windows\System32\drivers\crashdmp.sys - ok
17:18:57.0936 5916  [ 1D004CB1DA6323B1F55CAEF7F94B61D9 ] C:\Windows\System32\drivers\iaStor.sys
17:18:57.0936 5916  C:\Windows\System32\drivers\iaStor.sys - ok
17:18:57.0936 5916  [ 814DB88F2641691575A455CF25354098 ] C:\Windows\System32\drivers\dumpfve.sys
17:18:57.0936 5916  C:\Windows\System32\drivers\dumpfve.sys - ok
17:18:57.0952 5916  [ F036CE71586E93D94DAB220D7BDF4416 ] C:\Windows\System32\drivers\cdrom.sys
17:18:57.0952 5916  C:\Windows\System32\drivers\cdrom.sys - ok
17:18:57.0952 5916  [ 2C6FFCCA37B002AAB3C7C31A6D780A76 ] C:\Windows\System32\drivers\N360x64\0604010.00E\ccsetx64.sys
17:18:57.0952 5916  C:\Windows\System32\drivers\N360x64\0604010.00E\ccsetx64.sys - ok
17:18:57.0952 5916  [ 5013A76CAAA1D7CF1C55214B490B4E35 ] C:\Windows\System32\drivers\N360x64\0604010.00E\ironx64.sys
17:18:57.0952 5916  C:\Windows\System32\drivers\N360x64\0604010.00E\ironx64.sys - ok
17:18:57.0967 5916  [ 16A47CE2DECC9B099349A5F840654746 ] C:\Windows\System32\drivers\beep.sys
17:18:57.0967 5916  C:\Windows\System32\drivers\beep.sys - ok
17:18:57.0967 5916  [ 9899284589F75FA8724FF3D16AED75C1 ] C:\Windows\System32\drivers\null.sys
17:18:57.0967 5916  C:\Windows\System32\drivers\null.sys - ok
17:18:57.0967 5916  [ FC438D1430B28618E2D0C7C332A710AD ] C:\Windows\System32\drivers\watchdog.sys
17:18:57.0967 5916  C:\Windows\System32\drivers\watchdog.sys - ok
17:18:57.0983 5916  [ CEA6CC257FC9B7715F1C2B4849286D24 ] C:\Windows\System32\drivers\RDPCDD.sys
17:18:57.0983 5916  C:\Windows\System32\drivers\RDPCDD.sys - ok
17:18:57.0983 5916  [ BB5971A4F00659529A5C44831AF22365 ] C:\Windows\System32\drivers\RDPENCDD.sys
17:18:57.0983 5916  C:\Windows\System32\drivers\RDPENCDD.sys - ok
17:18:57.0983 5916  [ 216F3FA57533D98E1F74DED70113177A ] C:\Windows\System32\drivers\RDPREFMP.sys
17:18:57.0983 5916  C:\Windows\System32\drivers\RDPREFMP.sys - ok
17:18:57.0998 5916  [ 53E92A310193CB3C03BEA963DE7D9CFC ] C:\Windows\System32\drivers\vga.sys
17:18:57.0998 5916  C:\Windows\System32\drivers\vga.sys - ok
17:18:57.0998 5916  [ E7353D59C9842BC7299FAEB7E7E09340 ] C:\Windows\System32\drivers\videoprt.sys
17:18:57.0998 5916  C:\Windows\System32\drivers\videoprt.sys - ok
17:18:58.0014 5916  [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] C:\Windows\System32\drivers\msfs.sys
17:18:58.0014 5916  C:\Windows\System32\drivers\msfs.sys - ok
17:18:58.0014 5916  [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] C:\Windows\System32\drivers\npfs.sys
17:18:58.0014 5916  C:\Windows\System32\drivers\npfs.sys - ok
17:18:58.0014 5916  [ 6F020A220388ECA0AB6062DC27BD16B6 ] C:\Windows\System32\drivers\tdi.sys
17:18:58.0014 5916  C:\Windows\System32\drivers\tdi.sys - ok
17:18:58.0030 5916  [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] C:\Windows\System32\drivers\tdx.sys
17:18:58.0030 5916  C:\Windows\System32\drivers\tdx.sys - ok
17:18:58.0030 5916  [ 6E634525613D48A1D1657FB21F21F3B2 ] C:\Windows\System32\drivers\avgtdia.sys
17:18:58.0030 5916  C:\Windows\System32\drivers\avgtdia.sys - ok
17:18:58.0030 5916  [ 09594D1089C523423B32A4229263F068 ] C:\Windows\System32\drivers\netbt.sys
17:18:58.0030 5916  C:\Windows\System32\drivers\netbt.sys - ok
17:18:58.0045 5916  [ 1C7857B62DE5994A75B054A9FD4C3825 ] C:\Windows\System32\drivers\afd.sys
17:18:58.0045 5916  C:\Windows\System32\drivers\afd.sys - ok
17:18:58.0045 5916  [ 86743D9F5D2B1048062B14B1D84501C4 ] C:\Windows\System32\drivers\netbios.sys
17:18:58.0045 5916  C:\Windows\System32\drivers\netbios.sys - ok
17:18:58.0061 5916  [ 0557CF5A2556BD58E26384169D72438D ] C:\Windows\System32\drivers\pacer.sys
17:18:58.0061 5916  C:\Windows\System32\drivers\pacer.sys - ok
17:18:58.0061 5916  [ 6A3D66263414FF0D6FA754C646612F3F ] C:\Windows\System32\drivers\vwififlt.sys
17:18:58.0061 5916  C:\Windows\System32\drivers\vwififlt.sys - ok
17:18:58.0061 5916  [ 611B23304BF067451A9FDEE01FBDD725 ] C:\Windows\System32\drivers\wfplwf.sys
17:18:58.0061 5916  C:\Windows\System32\drivers\wfplwf.sys - ok
17:18:58.0076 5916  [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] C:\Windows\System32\drivers\serial.sys
17:18:58.0076 5916  C:\Windows\System32\drivers\serial.sys - ok
17:18:58.0076 5916  [ 356AFD78A6ED4457169241AC3965230C ] C:\Windows\System32\drivers\wanarp.sys
17:18:58.0076 5916  C:\Windows\System32\drivers\wanarp.sys - ok
17:18:58.0076 5916  [ 561E7E1F06895D78DE991E01DD0FB6E5 ] C:\Windows\System32\drivers\termdd.sys
17:18:58.0076 5916  C:\Windows\System32\drivers\termdd.sys - ok
17:18:58.0092 5916  [ 3911BD0E68C010E5438A87706ABBE9AB ] C:\Windows\System32\drivers\N360x64\0604010.00E\symnets.sys
17:18:58.0092 5916  C:\Windows\System32\drivers\N360x64\0604010.00E\symnets.sys - ok
17:18:58.0092 5916  [ 898BB48C797483420DF523B2BBC1ECDB ] C:\Windows\System32\drivers\SYMEVENT64x86.SYS
17:18:58.0092 5916  C:\Windows\System32\drivers\SYMEVENT64x86.SYS - ok
17:18:58.0108 5916  [ 1CB7BB3B0561FB5ECFE37F7731E8BF3E ] C:\Windows\System32\drivers\N360x64\0604010.00E\srtspx64.sys
17:18:58.0108 5916  C:\Windows\System32\drivers\N360x64\0604010.00E\srtspx64.sys - ok
17:18:58.0108 5916  [ E7F5AE18AF4168178A642A9247C63001 ] C:\Windows\System32\drivers\nsiproxy.sys
17:18:58.0108 5916  C:\Windows\System32\drivers\nsiproxy.sys - ok
17:18:58.0108 5916  [ 77F665941019A1594D887A74F301FA2F ] C:\Windows\System32\drivers\rdbss.sys
17:18:58.0108 5916  C:\Windows\System32\drivers\rdbss.sys - ok
17:18:58.0123 5916  [ 0EED230E37515A0EAEE3C2E1BC97B288 ] C:\Windows\System32\drivers\mssmbios.sys
17:18:58.0123 5916  C:\Windows\System32\drivers\mssmbios.sys - ok
17:18:58.0123 5916  [ A48928D4CCA6F8B731989DB08CF2C0AB ] C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_6.2.0.9\Definitions\IPSDefs\20130308.001\IDSviA64.sys
17:18:58.0123 5916  C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_6.2.0.9\Definitions\IPSDefs\20130308.001\IDSviA64.sys - ok
17:18:58.0123 5916  [ 4353FF94D47A0A9D52B89ECCF0CDB013 ] C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys
17:18:58.0123 5916  C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys - ok
17:18:58.0139 5916  [ C5BCCB378D0A896304A3E71BE7215983 ] C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys
17:18:58.0139 5916  C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys - ok
17:18:58.0139 5916  [ 13096B05847EC78F0977F2C0F79E9AB3 ] C:\Windows\System32\drivers\discache.sys
17:18:58.0139 5916  C:\Windows\System32\drivers\discache.sys - ok
17:18:58.0154 5916  [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] C:\Windows\System32\drivers\dfsc.sys
17:18:58.0154 5916  C:\Windows\System32\drivers\dfsc.sys - ok
17:18:58.0154 5916  [ 61583EE3C3A17003C4ACD0475646B4D3 ] C:\Windows\System32\drivers\blbdrive.sys
17:18:58.0154 5916  C:\Windows\System32\drivers\blbdrive.sys - ok
17:18:58.0154 5916  [ 866335C9C0E6733C753FB472C539A6B9 ] C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_6.2.0.9\Definitions\BASHDefs\20130301.001\BHDrvx64.sys
17:18:58.0154 5916  C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_6.2.0.9\Definitions\BASHDefs\20130301.001\BHDrvx64.sys - ok
17:18:58.0170 5916  [ 5989592A91A17587799792A81E1541D4 ] C:\Windows\System32\drivers\avgldx64.sys
17:18:58.0170 5916  C:\Windows\System32\drivers\avgldx64.sys - ok
17:18:58.0170 5916  [ 388056EBD5FE6718FE669078DBE37897 ] C:\Windows\System32\drivers\avgidsdrivera.sys
17:18:58.0170 5916  C:\Windows\System32\drivers\avgidsdrivera.sys - ok
17:18:58.0170 5916  [ 3566A8DAAFA27AF944F5D705EAA64894 ] C:\Windows\System32\drivers\tunnel.sys
17:18:58.0170 5916  C:\Windows\System32\drivers\tunnel.sys - ok
17:18:58.0186 5916  [ ADA036632C664CAA754079041CF1F8C1 ] C:\Windows\System32\drivers\intelppm.sys
17:18:58.0186 5916  C:\Windows\System32\drivers\intelppm.sys - ok
17:18:58.0186 5916  [ 0840155D0BDDF1190F84A663C284BD33 ] C:\Windows\System32\drivers\CmBatt.sys
17:18:58.0186 5916  C:\Windows\System32\drivers\CmBatt.sys - ok
17:18:58.0186 5916  [ CF95B85FF8D128385ABD411C8CA74DED ] C:\Windows\System32\ntdll.dll
17:18:58.0186 5916  C:\Windows\System32\ntdll.dll - ok
17:18:58.0201 5916  [ 1911A3356FA3F77CCC825CCBAC038C2A ] C:\Windows\System32\smss.exe
17:18:58.0201 5916  C:\Windows\System32\smss.exe - ok
17:18:58.0201 5916  [ 3C3F27002ABC69C5AFE29CBE6CF7ADDF ] C:\Windows\System32\drivers\igdkmd64.sys
17:18:58.0201 5916  C:\Windows\System32\drivers\igdkmd64.sys - ok
17:18:58.0201 5916  [ F5BEE30450E18E6B83A5012C100616FD ] C:\Windows\System32\drivers\dxgkrnl.sys
17:18:58.0201 5916  C:\Windows\System32\drivers\dxgkrnl.sys - ok
17:18:58.0217 5916  [ 9CD68BDDF322535C02ADC8331013D13D ] C:\Windows\System32\drivers\dxgmms1.sys
17:18:58.0217 5916  C:\Windows\System32\drivers\dxgmms1.sys - ok
17:18:58.0217 5916  [ AE259C75F9A0B057B6BF9E9695632B09 ] C:\Windows\System32\drivers\usbport.sys
17:18:58.0217 5916  C:\Windows\System32\drivers\usbport.sys - ok
17:18:58.0232 5916  [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] C:\Windows\System32\drivers\usbuhci.sys
17:18:58.0232 5916  C:\Windows\System32\drivers\usbuhci.sys - ok
17:18:58.0232 5916  [ C025055FE7B87701EB042095DF1A2D7B ] C:\Windows\System32\drivers\usbehci.sys
17:18:58.0232 5916  C:\Windows\System32\drivers\usbehci.sys - ok
17:18:58.0232 5916  [ 97BFED39B6B79EB12CDDBFEED51F56BB ] C:\Windows\System32\drivers\hdaudbus.sys
17:18:58.0232 5916  C:\Windows\System32\drivers\hdaudbus.sys - ok
17:18:58.0248 5916  [ 0E14A0071FE26A570BCAFF5401014717 ] C:\Windows\System32\drivers\BCMWL664.SYS
17:18:58.0248 5916  C:\Windows\System32\drivers\BCMWL664.SYS - ok
17:18:58.0248 5916  [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] C:\Windows\System32\drivers\vwifibus.sys
17:18:58.0248 5916  C:\Windows\System32\drivers\vwifibus.sys - ok
17:18:58.0248 5916  [ 365ED58B47B46DE8B1C5FA759B6FCD6E ] C:\Windows\System32\drivers\Rt64win7.sys
17:18:58.0248 5916  C:\Windows\System32\drivers\Rt64win7.sys - ok
17:18:58.0264 5916  [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] C:\Windows\System32\drivers\i8042prt.sys
17:18:58.0264 5916  C:\Windows\System32\drivers\i8042prt.sys - ok
17:18:58.0264 5916  [ 9AF482D058BE59CC28BCE52E7C4B747C ] C:\Windows\System32\drivers\HpqKbFiltr.sys
17:18:58.0264 5916  C:\Windows\System32\drivers\HpqKbFiltr.sys - ok
17:18:58.0279 5916  [ BC02336F1CBA7DCC7D1213BB588A68A5 ] C:\Windows\System32\drivers\kbdclass.sys
17:18:58.0279 5916  C:\Windows\System32\drivers\kbdclass.sys - ok
17:18:58.0279 5916  [ 924D711941956F7420A4925592BE8253 ] C:\Windows\System32\drivers\SynTP.sys
17:18:58.0279 5916  C:\Windows\System32\drivers\SynTP.sys - ok
17:18:58.0279 5916  [ CCA2AB1752A61F29C3C941CD79D78CEA ] C:\Windows\System32\drivers\usbd.sys
17:18:58.0279 5916  C:\Windows\System32\drivers\usbd.sys - ok
17:18:58.0295 5916  [ 524C79054636D2E5751169005006460B ] C:\Windows\System32\drivers\enecir.sys
17:18:58.0295 5916  C:\Windows\System32\drivers\enecir.sys - ok
17:18:58.0295 5916  [ 7D27EA49F3C1F687D357E77A470AEA99 ] C:\Windows\System32\drivers\mouclass.sys
17:18:58.0295 5916  C:\Windows\System32\drivers\mouclass.sys - ok
17:18:58.0310 5916  [ 8E98D21EE06192492A5671A6144D092F ] C:\Windows\System32\drivers\GEARAspiWDM.sys
17:18:58.0310 5916  C:\Windows\System32\drivers\GEARAspiWDM.sys - ok
17:18:58.0310 5916  [ F6FF8944478594D0E414D3F048F0D778 ] C:\Windows\System32\drivers\wmiacpi.sys
17:18:58.0310 5916  C:\Windows\System32\drivers\wmiacpi.sys - ok
17:18:58.0310 5916  [ 3E2427D4966C7606097341E55AB4E105 ] C:\Windows\System32\drivers\Accelerometer.sys
17:18:58.0310 5916  C:\Windows\System32\drivers\Accelerometer.sys - ok
17:18:58.0326 5916  [ 03EDB043586CCEBA243D689BDDA370A8 ] C:\Windows\System32\drivers\CompositeBus.sys
17:18:58.0326 5916  C:\Windows\System32\drivers\CompositeBus.sys - ok
17:18:58.0326 5916  [ 7ECFF9B22276B73F43A99A15A6094E90 ] C:\Windows\System32\drivers\agilevpn.sys
17:18:58.0326 5916  C:\Windows\System32\drivers\agilevpn.sys - ok
17:18:58.0326 5916  [ 471815800AE33E6F1C32FB1B97C490CA ] C:\Windows\System32\drivers\rasl2tp.sys
17:18:58.0326 5916  C:\Windows\System32\drivers\rasl2tp.sys - ok
17:18:58.0342 5916  [ 30639C932D9FEF22B31268FE25A1B6E5 ] C:\Windows\System32\drivers\ndistapi.sys
17:18:58.0342 5916  C:\Windows\System32\drivers\ndistapi.sys - ok
17:18:58.0342 5916  [ 53F7305169863F0A2BDDC49E116C2E11 ] C:\Windows\System32\drivers\ndiswan.sys
17:18:58.0342 5916  C:\Windows\System32\drivers\ndiswan.sys - ok
17:18:58.0342 5916  [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] C:\Windows\System32\drivers\raspppoe.sys
17:18:58.0342 5916  C:\Windows\System32\drivers\raspppoe.sys - ok
17:18:58.0357 5916  [ F92A2C41117A11A00BE01CA01A7FCDE9 ] C:\Windows\System32\drivers\raspptp.sys
17:18:58.0357 5916  C:\Windows\System32\drivers\raspptp.sys - ok
17:18:58.0357 5916  [ E8B1E447B008D07FF47D016C2B0EEECB ] C:\Windows\System32\drivers\rassstp.sys
17:18:58.0357 5916  C:\Windows\System32\drivers\rassstp.sys - ok
17:18:58.0373 5916  [ 24FBF5CC5C04150073C315A7C83521EE ] C:\Windows\System32\drivers\ks.sys
17:18:58.0373 5916  C:\Windows\System32\drivers\ks.sys - ok
17:18:58.0373 5916  [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] C:\Windows\System32\drivers\swenum.sys
17:18:58.0373 5916  C:\Windows\System32\drivers\swenum.sys - ok
17:18:58.0373 5916  [ D7CD5C4E1B71FA62050515314CFB52CF ] C:\Windows\System32\drivers\circlass.sys
17:18:58.0373 5916  C:\Windows\System32\drivers\circlass.sys - ok
17:18:58.0388 5916  [ DC54A574663A895C8763AF0FA1FF7561 ] C:\Windows\System32\drivers\umbus.sys
17:18:58.0388 5916  C:\Windows\System32\drivers\umbus.sys - ok
17:18:58.0388 5916  [ 287C6C9410B111B68B52CA298F7B8C24 ] C:\Windows\System32\drivers\usbhub.sys
17:18:58.0388 5916  C:\Windows\System32\drivers\usbhub.sys - ok
17:18:58.0388 5916  [ 015C0D8E0E0421B4CFD48CFFE2825879 ] C:\Windows\System32\drivers\ndproxy.sys
17:18:58.0388 5916  C:\Windows\System32\drivers\ndproxy.sys - ok
17:18:58.0404 5916  [ 21D26064AEDB4988F785BB4A3A2C051E ] C:\Windows\System32\drivers\drmk.sys
17:18:58.0404 5916  C:\Windows\System32\drivers\drmk.sys - ok
17:18:58.0404 5916  [ 32E11315B5126921FFD9074840EF13D3 ] C:\Windows\System32\drivers\portcls.sys
17:18:58.0404 5916  C:\Windows\System32\drivers\portcls.sys - ok
17:18:58.0420 5916  [ DFFBC024DFC7BB05B2129E05CBC7A201 ] C:\Windows\System32\drivers\stwrt64.sys
17:18:58.0420 5916  C:\Windows\System32\drivers\stwrt64.sys - ok
17:18:58.0420 5916  [ 6869281E78CB31A43E969F06B57347C4 ] C:\Windows\System32\drivers\ksthunk.sys
17:18:58.0420 5916  C:\Windows\System32\drivers\ksthunk.sys - ok
17:18:58.0420 5916  [ 88A20FA54C73DED4E8DAC764E9130AE9 ] C:\Windows\System32\drivers\IntcHdmi.sys
17:18:58.0420 5916  C:\Windows\System32\drivers\IntcHdmi.sys - ok
17:18:58.0435 5916  [ 8B0E40E7E8BBF5ACF390465609D89FF1 ] C:\Windows\System32\drivers\hidclass.sys
17:18:58.0435 5916  C:\Windows\System32\drivers\hidclass.sys - ok
17:18:58.0435 5916  [ 0A77D29F311B88CFAE3B13F9C1A73825 ] C:\Windows\System32\drivers\hidir.sys
17:18:58.0435 5916  C:\Windows\System32\drivers\hidir.sys - ok
17:18:58.0435 5916  [ 49EE2E52E6CD03947DAD72F65367BE06 ] C:\Windows\System32\drivers\hidparse.sys
17:18:58.0435 5916  C:\Windows\System32\drivers\hidparse.sys - ok
17:18:58.0451 5916  [ 0705EFF5B42A9DB58548EEC3B26BB484 ] C:\Windows\System32\drivers\kbdhid.sys
17:18:58.0451 5916  C:\Windows\System32\drivers\kbdhid.sys - ok
17:18:58.0451 5916  [ D3BF052C40B0C4166D9FD86A4288C1E6 ] C:\Windows\System32\drivers\mouhid.sys
17:18:58.0451 5916  C:\Windows\System32\drivers\mouhid.sys - ok
17:18:58.0451 5916  [ 3B536A8BEC3B4F23FFDFD78B11A2AB93 ] C:\Windows\System32\autochk.exe
17:18:58.0451 5916  C:\Windows\System32\autochk.exe - ok
17:18:58.0466 5916  [ DC83C9F4130F447EAD187879708C8035 ] C:\PROGRA~2\AVG\AVG2013\avgrsa.exe
17:18:58.0466 5916  C:\PROGRA~2\AVG\AVG2013\avgrsa.exe - ok
17:18:58.0466 5916  [ E3F8DC5B5AF00A892ED3546C01C9B6E1 ] C:\Program Files (x86)\AVG\AVG2013\avgsysa.dll
17:18:58.0466 5916  C:\Program Files (x86)\AVG\AVG2013\avgsysa.dll - ok
17:18:58.0466 5916  [ 70D1A44B0D05FEC737CC2C9662D6FB70 ] C:\Program Files (x86)\AVG\AVG2013\avgntopenssla.dll
17:18:58.0466 5916  C:\Program Files (x86)\AVG\AVG2013\avgntopenssla.dll - ok
17:18:58.0482 5916  [ 4848422594D3B6A6BFF438AF0B6D030D ] C:\Program Files (x86)\AVG\AVG2013\avgloga.dll
17:18:58.0482 5916  C:\Program Files (x86)\AVG\AVG2013\avgloga.dll - ok
17:18:58.0482 5916  [ 6F1A3157A1C89435352CEB543CDB359C ] C:\Windows\System32\drivers\usbccgp.sys
17:18:58.0482 5916  C:\Windows\System32\drivers\usbccgp.sys - ok
17:18:58.0498 5916  [ 454800C2BC7F3927CE030141EE4F4C50 ] C:\Windows\System32\drivers\usbvideo.sys
17:18:58.0498 5916  C:\Windows\System32\drivers\usbvideo.sys - ok
17:18:58.0498 5916  [ 784BD252A13B3DDDA29790FBCB64E536 ] C:\PROGRA~2\AVG\AVG2013\avgchjwa.dll
17:18:58.0498 5916  C:\PROGRA~2\AVG\AVG2013\avgchjwa.dll - ok
17:18:58.0498 5916  [ 2C19A4BC4D3C714F890A58B4C942077F ] C:\PROGRA~2\AVG\AVG2013\avgclita.dll
17:18:58.0498 5916  C:\PROGRA~2\AVG\AVG2013\avgclita.dll - ok
17:18:58.0513 5916  [ B4CF2DAC753DD785FD92076B3CD36CED ] C:\PROGRA~2\AVG\AVG2013\avgcclia.dll
17:18:58.0513 5916  C:\PROGRA~2\AVG\AVG2013\avgcclia.dll - ok
17:18:58.0513 5916  [ CF433BC29D4089D264F24A1ED371941D ] C:\Program Files (x86)\AVG\AVG2013\avgcsrva.exe
17:18:58.0513 5916  C:\Program Files (x86)\AVG\AVG2013\avgcsrva.exe - ok
17:18:58.0513 5916  [ B7D172EC0DD4FB8A9A9CE817E01B1103 ] C:\Program Files (x86)\AVG\AVG2013\avgcorea.dll
17:18:58.0513 5916  C:\Program Files (x86)\AVG\AVG2013\avgcorea.dll - ok
17:18:58.0529 5916  [ C297715529E28F7283EE621CCFDB1DDB ] C:\Program Files (x86)\AVG\AVG2013\avgcerta.dll
17:18:58.0529 5916  C:\Program Files (x86)\AVG\AVG2013\avgcerta.dll - ok
17:18:58.0529 5916  [ 06F3F7E9E9B29C32F8702B541E4C2156 ] C:\Program Files (x86)\AVG\AVG2013\avgchcla.dll
17:18:58.0529 5916  C:\Program Files (x86)\AVG\AVG2013\avgchcla.dll - ok
17:18:58.0529 5916  [ 275061F56FC648ED884C38A93EAB6FC6 ] C:\Program Files (x86)\AVG\AVG2013\avgcomma.dll
17:18:58.0529 5916  C:\Program Files (x86)\AVG\AVG2013\avgcomma.dll - ok
17:18:58.0544 5916  [ AAD184F33A9A4A2AECF3CB5247651D01 ] C:\Program Files (x86)\AVG\AVG2013\avgntsqlitea.dll
17:18:58.0544 5916  C:\Program Files (x86)\AVG\AVG2013\avgntsqlitea.dll - ok
17:18:58.0544 5916  [ 6C60B5ACA7442EFB794082CDACFC001C ] C:\Windows\System32\ole32.dll
17:18:58.0544 5916  C:\Windows\System32\ole32.dll - ok
17:18:58.0560 5916  [ 9835E63E09F824D22B689D2BB789BAB9 ] C:\Windows\System32\comdlg32.dll
17:18:58.0560 5916  C:\Windows\System32\comdlg32.dll - ok
17:18:58.0560 5916  [ 1084AA52CCC324EA54C7121FA24C2221 ] C:\Windows\System32\gdi32.dll
17:18:58.0560 5916  C:\Windows\System32\gdi32.dll - ok
17:18:58.0560 5916  [ C431EAF5CAA1C82CAC2534A2EAB348A3 ] C:\Windows\System32\msctf.dll
17:18:58.0560 5916  C:\Windows\System32\msctf.dll - ok
17:18:58.0576 5916  [ 5D8E6C95156ED1F79A63D1EADE6F9ED5 ] C:\Windows\System32\setupapi.dll
17:18:58.0576 5916  C:\Windows\System32\setupapi.dll - ok
17:18:58.0576 5916  [ D202223587518B13D72D68937B7E3F70 ] C:\Windows\System32\lpk.dll
17:18:58.0576 5916  C:\Windows\System32\lpk.dll - ok
17:18:58.0576 5916  [ C391FC68282A000CDF953F8B6B55D2EF ] C:\Windows\System32\msvcrt.dll
17:18:58.0576 5916  C:\Windows\System32\msvcrt.dll - ok
17:18:58.0591 5916  [ C06B32165E23A72A898B7A89679AD754 ] C:\Windows\System32\oleaut32.dll
17:18:58.0591 5916  C:\Windows\System32\oleaut32.dll - ok
17:18:58.0591 5916  [ 4BBFA57F594F7E8A8EDC8F377184C3F0 ] C:\Windows\System32\ws2_32.dll
17:18:58.0591 5916  C:\Windows\System32\ws2_32.dll - ok
17:18:58.0591 5916  [ EAF32CB8C1F810E4715B4DFBE785C7FF ] C:\Windows\System32\shlwapi.dll
17:18:58.0591 5916  C:\Windows\System32\shlwapi.dll - ok
17:18:58.0607 5916  [ 87BEA2616EFDEC6A1CB3BFCFB09D816A ] C:\Windows\System32\urlmon.dll
17:18:58.0607 5916  C:\Windows\System32\urlmon.dll - ok
17:18:58.0607 5916  [ FE70103391A64039A921DBFFF9C7AB1B ] C:\Windows\System32\user32.dll
17:18:58.0607 5916  C:\Windows\System32\user32.dll - ok
17:18:58.0622 5916  [ 4E4FFB09D895AA000DD56D1404F69A7E ] C:\Windows\System32\Wldap32.dll
17:18:58.0622 5916  C:\Windows\System32\Wldap32.dll - ok
17:18:58.0622 5916  [ 044FE45FFD6AD40E3BBBE60B7F41BABE ] C:\Windows\System32\nsi.dll
17:18:58.0622 5916  C:\Windows\System32\nsi.dll - ok
17:18:58.0622 5916  [ C6689007B3A749C49A5438DCF36E0CE4 ] C:\Windows\System32\shell32.dll
17:18:58.0622 5916  C:\Windows\System32\shell32.dll - ok
17:18:58.0638 5916  [ 6DF46D2BD74E3DA1B45F08F10D172732 ] C:\Windows\System32\advapi32.dll
17:18:58.0638 5916  C:\Windows\System32\advapi32.dll - ok
17:18:58.0638 5916  [ 83404DCBCE4925B6A5A77C5170F46D86 ] C:\Windows\System32\sechost.dll
17:18:58.0638 5916  C:\Windows\System32\sechost.dll - ok
17:18:58.0638 5916  [ 25983DE69B57142039AC8D95E71CD9C9 ] C:\Windows\System32\clbcatq.dll
17:18:58.0638 5916  C:\Windows\System32\clbcatq.dll - ok
17:18:58.0654 5916  [ F7CE0C81C545364020ED8203CF0A633E ] C:\Windows\System32\difxapi.dll
17:18:58.0654 5916  C:\Windows\System32\difxapi.dll - ok
17:18:58.0654 5916  [ AA2C08CE85653B1A0D2E4AB407FA176C ] C:\Windows\System32\imm32.dll
17:18:58.0654 5916  C:\Windows\System32\imm32.dll - ok
17:18:58.0654 5916  [ 65C113214F7B05820F6D8A65B1485196 ] C:\Windows\System32\kernel32.dll
17:18:58.0654 5916  C:\Windows\System32\kernel32.dll - ok
17:18:58.0669 5916  [ 28C0B5024F5C5A438E78B188CFC81B7F ] C:\Windows\System32\normaliz.dll
17:18:58.0669 5916  C:\Windows\System32\normaliz.dll - ok
17:18:58.0669 5916  [ D87E1E59C73C1F98D5DED5B3850C40F5 ] C:\Windows\System32\psapi.dll
17:18:58.0669 5916  C:\Windows\System32\psapi.dll - ok
17:18:58.0685 5916  [ 0611473C1AD9E2D991CD9482068417F7 ] C:\Windows\System32\rpcrt4.dll
17:18:58.0685 5916  C:\Windows\System32\rpcrt4.dll - ok
17:18:58.0685 5916  [ F431C3C86FCCC1C53814F043A6CAD825 ] C:\Windows\System32\iertutil.dll
17:18:58.0685 5916  C:\Windows\System32\iertutil.dll - ok
17:18:58.0685 5916  [ DBF99FD9CAF75CA66D042BD8D050FF71 ] C:\Windows\System32\usp10.dll
17:18:58.0685 5916  C:\Windows\System32\usp10.dll - ok
17:18:58.0700 5916  [ 12EE6FE9268CEE6D90FDCCBF89236C65 ] C:\Windows\System32\crypt32.dll
17:18:58.0700 5916  C:\Windows\System32\crypt32.dll - ok
17:18:58.0700 5916  [ A1BE6A720D02E37F72E9CD89AE9CB3CF ] C:\Windows\System32\imagehlp.dll
17:18:58.0700 5916  C:\Windows\System32\imagehlp.dll - ok
17:18:58.0700 5916  [ 435E9C764E1EF70058580996452BE6A2 ] C:\Windows\System32\wininet.dll
17:18:58.0700 5916  C:\Windows\System32\wininet.dll - ok
17:18:58.0716 5916  [ 2477A28081BDAEE622CF045ACF8EE124 ] C:\Windows\System32\cfgmgr32.dll
17:18:58.0716 5916  C:\Windows\System32\cfgmgr32.dll - ok
17:18:58.0716 5916  [ 14DFDEAF4E589ED3F1FF187A86B9408C ] C:\Windows\System32\comctl32.dll
17:18:58.0716 5916  C:\Windows\System32\comctl32.dll - ok
17:18:58.0716 5916  [ 06FEC9E8117103BB1141A560E98077DA ] C:\Windows\System32\devobj.dll
17:18:58.0716 5916  C:\Windows\System32\devobj.dll - ok
17:18:58.0732 5916  [ 1F56F209585F350A5666E3CC7931FD67 ] C:\Windows\System32\KernelBase.dll
17:18:58.0732 5916  C:\Windows\System32\KernelBase.dll - ok
17:18:58.0732 5916  [ 884415BD4269C02EAF8E2613BF85500D ] C:\Windows\System32\msasn1.dll
17:18:58.0732 5916  C:\Windows\System32\msasn1.dll - ok
17:18:58.0732 5916  [ AA06902362B1422D7A7DA7061E07C624 ] C:\Windows\System32\wintrust.dll
17:18:58.0732 5916  C:\Windows\System32\wintrust.dll - ok
17:18:58.0747 5916  [ 9C278785347BCC991F8EA2999D90F58D ] C:\Windows\SysWOW64\normaliz.dll
17:18:58.0747 5916  C:\Windows\SysWOW64\normaliz.dll - ok
17:18:58.0747 5916  [ BF24D6F2ED97FE830BFD52B246F98E67 ] C:\Windows\System32\drivers\dxapi.sys
17:18:58.0747 5916  C:\Windows\System32\drivers\dxapi.sys - ok
17:18:58.0747 5916  [ 59E21156113E438D1D91AF4FC0C3B19F ] C:\Windows\System32\win32k.sys
17:18:58.0747 5916  C:\Windows\System32\win32k.sys - ok
17:18:58.0763 5916  [ 60C2862B4BF0FD9F582EF344C2B1EC72 ] C:\Windows\System32\csrss.exe
17:18:58.0763 5916  C:\Windows\System32\csrss.exe - ok
17:18:58.0763 5916  [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\System32\basesrv.dll
17:18:58.0763 5916  C:\Windows\System32\basesrv.dll - ok
17:18:58.0778 5916  [ 96F587CA26A6AA894BD8CACE4540CFFC ] C:\Windows\System32\csrsrv.dll
17:18:58.0778 5916  C:\Windows\System32\csrsrv.dll - ok
17:18:58.0778 5916  [ 0C27239FEA4DB8A2AAC9E502186B7264 ] C:\Windows\System32\winsrv.dll
17:18:58.0778 5916  C:\Windows\System32\winsrv.dll - ok
17:18:58.0778 5916  [ B03D591DC7DA45ECE20B3B467E6AADAA ] C:\Windows\System32\drivers\monitor.sys
17:18:58.0778 5916  C:\Windows\System32\drivers\monitor.sys - ok
17:18:58.0794 5916  [ F29FE765E1448EF371CFE05BFAC74ADB ] C:\Windows\System32\tsddd.dll
17:18:58.0794 5916  C:\Windows\System32\tsddd.dll - ok
17:18:58.0794 5916  [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\System32\sxssrv.dll
17:18:58.0794 5916  C:\Windows\System32\sxssrv.dll - ok
17:18:58.0794 5916  [ 94355C28C1970635A31B3FE52EB7CEBA ] C:\Windows\System32\wininit.exe
17:18:58.0794 5916  C:\Windows\System32\wininit.exe - ok
17:18:58.0810 5916  [ 78523A26F5604C0568FE9D1CE86E36F4 ] C:\Windows\System32\KBDUS.DLL
17:18:58.0810 5916  C:\Windows\System32\KBDUS.DLL - ok
17:18:58.0810 5916  [ 2C942733A5983DD4502219FF37C7EBC7 ] C:\Windows\System32\profapi.dll
17:18:58.0810 5916  C:\Windows\System32\profapi.dll - ok
17:18:58.0810 5916  [ C2A8CB1275ECB85D246A9ECC02A728E3 ] C:\Windows\System32\RpcRtRemote.dll
17:18:58.0810 5916  C:\Windows\System32\RpcRtRemote.dll - ok
17:18:58.0825 5916  [ 05569A79BF4693670B709144382D02D4 ] C:\Windows\System32\cdd.dll
17:18:58.0825 5916  C:\Windows\System32\cdd.dll - ok
17:18:58.0825 5916  [ B26B1801356760841C3BC69F9F91537F ] C:\Windows\System32\WlS0WndH.dll
17:18:58.0825 5916  C:\Windows\System32\WlS0WndH.dll - ok
17:18:58.0841 5916  [ 784FA3DF338E2E8F5F0389D6FAC428AF ] C:\Windows\System32\cryptbase.dll
17:18:58.0841 5916  C:\Windows\System32\cryptbase.dll - ok
17:18:58.0841 5916  [ 9CEAD32E79A62150FE9F8557E58E008B ] C:\Windows\System32\sxs.dll
17:18:58.0841 5916  C:\Windows\System32\sxs.dll - ok
17:18:58.0841 5916  [ 90499F3163A9F815CF196A205EA3CD5D ] C:\Windows\System32\apphelp.dll
17:18:58.0841 5916  C:\Windows\System32\apphelp.dll - ok
17:18:58.0856 5916  [ 9662EE182644511439F1C53745DC1C88 ] C:\Windows\System32\lsm.exe
17:18:58.0856 5916  C:\Windows\System32\lsm.exe - ok
17:18:58.0856 5916  [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\System32\services.exe
17:18:58.0856 5916  C:\Windows\System32\services.exe - ok
17:18:58.0856 5916  [ C118A82CD78818C29AB228366EBF81C3 ] C:\Windows\System32\lsass.exe
17:18:58.0856 5916  C:\Windows\System32\lsass.exe - ok
17:18:58.0872 5916  [ BBCDF350817BA86416C0F06B6981BE8D ] C:\Windows\System32\scesrv.dll
17:18:58.0872 5916  C:\Windows\System32\scesrv.dll - ok
17:18:58.0872 5916  [ E914A50A151DFFE63D3935226DB5E2C1 ] C:\Windows\System32\scext.dll
17:18:58.0872 5916  C:\Windows\System32\scext.dll - ok
17:18:58.0872 5916  [ 0144D8D75A0B12938AEEE859E3310A46 ] C:\Windows\System32\secur32.dll
17:18:58.0872 5916  C:\Windows\System32\secur32.dll - ok
17:18:58.0888 5916  [ B66BC8B20B7F33975865B1DF99783FD8 ] C:\Windows\System32\sspicli.dll
17:18:58.0888 5916  C:\Windows\System32\sspicli.dll - ok
17:18:58.0888 5916  [ 68083118797CAF30FB2EA3E71494D67E ] C:\Windows\System32\sysntfy.dll
17:18:58.0888 5916  C:\Windows\System32\sysntfy.dll - ok
17:18:58.0888 5916  [ DEE7267C5D232A3B816866872CE199E6 ] C:\Windows\System32\wmsgapi.dll
17:18:58.0888 5916  C:\Windows\System32\wmsgapi.dll - ok
17:18:58.0903 5916  [ 3A9C9BAF610B0DD4967086040B3B62A9 ] C:\Windows\System32\srvcli.dll
17:18:58.0903 5916  C:\Windows\System32\srvcli.dll - ok
17:18:58.0903 5916  [ 66A6063D0BAAD3F7B2B9868859E0743B ] C:\Windows\System32\lsasrv.dll
17:18:58.0903 5916  C:\Windows\System32\lsasrv.dll - ok
17:18:58.0903 5916  [ A744BA6E04C8AA4592818178DBF89521 ] C:\Windows\System32\samsrv.dll
17:18:58.0919 5916  C:\Windows\System32\samsrv.dll - ok
17:18:58.0919 5916  [ 3A0CE5FE781708CD6ABD55313607EC8B ] C:\Windows\System32\sspisrv.dll
17:18:58.0919 5916  C:\Windows\System32\sspisrv.dll - ok
17:18:58.0919 5916  [ 86FE1B1F8FD42CD0DB641AB1CDB13093 ] C:\Windows\System32\cngaudit.dll
17:18:58.0919 5916  C:\Windows\System32\cngaudit.dll - ok
17:18:58.0934 5916  [ 3A061472B38233BAFF9CFEFF2E49C46B ] C:\Windows\System32\cryptdll.dll
17:18:58.0934 5916  C:\Windows\System32\cryptdll.dll - ok
17:18:58.0934 5916  [ 3C073B0C596A0AF84933E7406766B040 ] C:\Windows\System32\wevtapi.dll
17:18:58.0934 5916  C:\Windows\System32\wevtapi.dll - ok
17:18:58.0934 5916  [ 7FBEBD2229EA5FD48D41B199EC2D541C ] C:\Windows\System32\authz.dll
17:18:58.0934 5916  C:\Windows\System32\authz.dll - ok
17:18:58.0950 5916  [ B9A95365E52F421A20E1501935FADDA5 ] C:\Windows\System32\bcrypt.dll
17:18:58.0950 5916  C:\Windows\System32\bcrypt.dll - ok
17:18:58.0950 5916  [ 5F3307352216618221A17CFEF273EEE2 ] C:\Windows\System32\ncrypt.dll
17:18:58.0950 5916  C:\Windows\System32\ncrypt.dll - ok
17:18:58.0950 5916  [ CB2ABB2DA1E9C977302A78D86D4AE3B0 ] C:\Windows\System32\atmfd.dll
17:18:58.0950 5916  C:\Windows\System32\atmfd.dll - ok
17:18:58.0966 5916  [ 02B64609F865A39365FF88580DF11738 ] C:\Windows\System32\msprivs.dll
17:18:58.0966 5916  C:\Windows\System32\msprivs.dll - ok
17:18:58.0966 5916  [ 50532FCD7ECF02DD169CE5C485F02534 ] C:\Windows\System32\negoexts.dll
17:18:58.0966 5916  C:\Windows\System32\negoexts.dll - ok
17:18:58.0966 5916  [ C6505DE3561537BA1004D638C2F93F2F ] C:\Windows\System32\netjoin.dll
17:18:58.0966 5916  C:\Windows\System32\netjoin.dll - ok
17:18:58.0981 5916  [ D0C2FBB6D97416B0166478FC7AE2B212 ] C:\Windows\System32\cryptsp.dll
17:18:58.0981 5916  C:\Windows\System32\cryptsp.dll - ok
17:18:58.0981 5916  [ 44E1A196DFCB53B01FE4B855C3B56A15 ] C:\Windows\System32\kerberos.dll
17:18:58.0981 5916  C:\Windows\System32\kerberos.dll - ok
17:18:58.0981 5916  [ EF12B8385AA2849999008A977918F96B ] C:\Windows\System32\msv1_0.dll
17:18:58.0981 5916  C:\Windows\System32\msv1_0.dll - ok
17:18:58.0997 5916  [ 1D5185A4C7E6695431AE4B55C3D7D333 ] C:\Windows\System32\mswsock.dll
17:18:58.0997 5916  C:\Windows\System32\mswsock.dll - ok
17:18:58.0997 5916  [ EC7CBFF96B05ECF3D366355B3C64ADCF ] C:\Windows\System32\wship6.dll
17:18:58.0997 5916  C:\Windows\System32\wship6.dll - ok
17:18:58.0997 5916  [ 492D07D79E7024CA310867B526D9636D ] C:\Windows\System32\dnsapi.dll
17:18:58.0997 5916  C:\Windows\System32\dnsapi.dll - ok
17:18:59.0012 5916  [ 8FFE297B8449386E7B6851458B6E474E ] C:\Windows\System32\logoncli.dll
17:18:59.0012 5916  C:\Windows\System32\logoncli.dll - ok
17:18:59.0012 5916  [ AA339DD8BB128EF66660DFBBB59043D3 ] C:\Windows\System32\netlogon.dll
17:18:59.0012 5916  C:\Windows\System32\netlogon.dll - ok
17:18:59.0028 5916  [ 1573C45E65DE32B1BC3572634F8F1E8E ] C:\Windows\System32\schannel.dll
17:18:59.0028 5916  C:\Windows\System32\schannel.dll - ok
17:18:59.0028 5916  [ 95FB6CA4374E343DDD653FCC43F9D26B ] C:\Windows\System32\wdigest.dll
17:18:59.0028 5916  C:\Windows\System32\wdigest.dll - ok
17:18:59.0028 5916  [ E08088A97F95345E181C3DFCE2C615EF ] C:\Windows\System32\pku2u.dll
17:18:59.0028 5916  C:\Windows\System32\pku2u.dll - ok
17:18:59.0044 5916  [ 5D8874A8C11DDDDE29E12DE0E2013493 ] C:\Windows\System32\rsaenh.dll
17:18:59.0044 5916  C:\Windows\System32\rsaenh.dll - ok
17:18:59.0044 5916  [ 8A25506B6948EFBD5A7F37E53CCD36D9 ] C:\Windows\System32\TSpkg.dll
17:18:59.0044 5916  C:\Windows\System32\TSpkg.dll - ok
17:18:59.0044 5916  [ 55C892560C1B42BC57FB61AEFCED2F22 ] C:\Windows\System32\LIVESSP.DLL
17:18:59.0044 5916  C:\Windows\System32\LIVESSP.DLL - ok
17:18:59.0059 5916  [ D6C7780A364C6BBACFA796BAB9F1B374 ] C:\Windows\System32\bcryptprimitives.dll
17:18:59.0059 5916  C:\Windows\System32\bcryptprimitives.dll - ok
17:18:59.0059 5916  [ 52D3D5E3586988D4D9E34ACAAC33105C ] C:\Windows\System32\credssp.dll
17:18:59.0059 5916  C:\Windows\System32\credssp.dll - ok
17:18:59.0059 5916  [ 90BDEFC5DF334E5100EAA781D798DE1A ] C:\Windows\System32\efslsaext.dll
17:18:59.0059 5916  C:\Windows\System32\efslsaext.dll - ok
17:18:59.0075 5916  [ 7CC7DF5B654DA579613F811D8C637E29 ] C:\Windows\System32\ubpm.dll
17:18:59.0075 5916  C:\Windows\System32\ubpm.dll - ok
17:18:59.0075 5916  [ ED78427259134C63ED69804D2132B86C ] C:\Windows\System32\scecli.dll
17:18:59.0075 5916  C:\Windows\System32\scecli.dll - ok
17:18:59.0075 5916  [ 0D9764D58C5EFD672B7184854B152E5E ] C:\Windows\System32\winsta.dll
17:18:59.0075 5916  C:\Windows\System32\winsta.dll - ok
17:18:59.0090 5916  [ C78655BC80301D76ED4FEF1C1EA40A7D ] C:\Windows\System32\svchost.exe
17:18:59.0090 5916  C:\Windows\System32\svchost.exe - ok
17:18:59.0090 5916  [ CD1B5AD07E5F7FEF30E055DCC9E96180 ] C:\Windows\System32\devrtl.dll
17:18:59.0090 5916  C:\Windows\System32\devrtl.dll - ok
17:18:59.0106 5916  [ E6EB44ABAAF1F330119F854856C53EBE ] C:\Windows\System32\SPInf.dll
17:18:59.0106 5916  C:\Windows\System32\SPInf.dll - ok
17:18:59.0106 5916  [ 25FBDEF06C4D92815B353F6E792C8129 ] C:\Windows\System32\umpnpmgr.dll
17:18:59.0106 5916  C:\Windows\System32\umpnpmgr.dll - ok
17:18:59.0106 5916  [ 9C9307C95671AC962F3D6EB3A4A89BAE ] C:\Windows\System32\gpapi.dll
17:18:59.0106 5916  C:\Windows\System32\gpapi.dll - ok
17:18:59.0122 5916  [ 7A17485DC7D8A7AC81321A42CD034519 ] C:\Windows\System32\userenv.dll
17:18:59.0122 5916  C:\Windows\System32\userenv.dll - ok
17:18:59.0122 5916  [ F6C011B46FAEEF33536B2E80F48B5CBE ] C:\Windows\System32\pcwum.dll
17:18:59.0122 5916  C:\Windows\System32\pcwum.dll - ok
17:18:59.0122 5916  [ 6BA9D927DDED70BD1A9CADED45F8B184 ] C:\Windows\System32\umpo.dll
17:18:59.0122 5916  C:\Windows\System32\umpo.dll - ok
17:18:59.0137 5916  [ 716175021BDA290504CE434273F666BC ] C:\Windows\System32\powrprof.dll
17:18:59.0137 5916  C:\Windows\System32\powrprof.dll - ok
17:18:59.0137 5916  [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] C:\Windows\System32\drivers\luafv.sys
17:18:59.0137 5916  C:\Windows\System32\drivers\luafv.sys - ok
17:18:59.0137 5916  [ 5C627D1B1138676C0A7AB2C2C190D123 ] C:\Windows\System32\rpcss.dll
17:18:59.0137 5916  C:\Windows\System32\rpcss.dll - ok
17:18:59.0153 5916  [ E4DC58CF7B3EA515AE917FF0D402A7BB ] C:\Windows\System32\RpcEpMap.dll
17:18:59.0153 5916  C:\Windows\System32\RpcEpMap.dll - ok
17:18:59.0153 5916  [ 31559F3244C6BC00A52030CAA83B6B91 ] C:\Windows\System32\WSHTCPIP.DLL
17:18:59.0153 5916  C:\Windows\System32\WSHTCPIP.DLL - ok
17:18:59.0153 5916  [ 16E964ABF6D1E0F0CC7822FCA9BA754D ] C:\Windows\System32\wshqos.dll
17:18:59.0153 5916  C:\Windows\System32\wshqos.dll - ok
17:18:59.0168 5916  [ 9AD9E06F8656F296D91FAE8EE5B95A27 ] C:\Windows\System32\FirewallAPI.dll
17:18:59.0168 5916  C:\Windows\System32\FirewallAPI.dll - ok
17:18:59.0168 5916  [ 94E026870A55AAEAFF7853C1754091E9 ] C:\Windows\System32\version.dll
17:18:59.0168 5916  C:\Windows\System32\version.dll - ok
17:18:59.0184 5916  [ 6011714C8C5C55CBFFAD24D61E879FBD ] C:\Windows\System32\wevtsvc.dll
17:18:59.0184 5916  C:\Windows\System32\wevtsvc.dll - ok
17:18:59.0184 5916  [ 1F4492FE41767CDB8B89D17655847CDD ] C:\Windows\System32\ntmarta.dll
17:18:59.0184 5916  C:\Windows\System32\ntmarta.dll - ok
17:18:59.0184 5916  [ F23FEF6D569FCE88671949894A8BECF1 ] C:\Windows\System32\audiosrv.dll
17:18:59.0184 5916  C:\Windows\System32\audiosrv.dll - ok
17:18:59.0200 5916  [ 1151B1BAA6F350B1DB6598E0FEA7C457 ] C:\Windows\System32\winlogon.exe
17:18:59.0200 5916  C:\Windows\System32\winlogon.exe - ok
17:18:59.0200 5916  [ 227E2C382A1E02F8D4965E664D3BBE43 ] C:\Windows\System32\MMDevAPI.dll
17:18:59.0200 5916  C:\Windows\System32\MMDevAPI.dll - ok
17:18:59.0200 5916  [ 5F28111C648F1E24F7DBC87CDEB091B8 ] C:\Windows\System32\netprofm.dll
17:18:59.0200 5916  C:\Windows\System32\netprofm.dll - ok
17:18:59.0215 5916  [ 78A1E65207484B7F8D3217507745F47C ] C:\Windows\System32\avrt.dll
17:18:59.0215 5916  C:\Windows\System32\avrt.dll - ok
17:18:59.0215 5916  [ F06BB4E336EA57511FDBAFAFCC47DE62 ] C:\Windows\System32\propsys.dll
17:18:59.0215 5916  C:\Windows\System32\propsys.dll - ok
17:18:59.0215 5916  [ FE05D03B73000CFF476E1D29109F3A84 ] C:\Program Files\Windows Defender\MpEvMsg.dll
17:18:59.0215 5916  C:\Program Files\Windows Defender\MpEvMsg.dll - ok
17:18:59.0231 5916  [ 54FFC9C8898113ACE189D4AA7199D2C1 ] C:\Windows\System32\MPSSVC.dll
17:18:59.0231 5916  C:\Windows\System32\MPSSVC.dll - ok
17:18:59.0231 5916  [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] C:\Windows\System32\wlansvc.dll
17:18:59.0231 5916  C:\Windows\System32\wlansvc.dll - ok
17:18:59.0246 5916  [ 50544D04AD845C43130B70212EC05CCD ] C:\Windows\System32\microsoft-windows-kernel-power-events.dll
17:18:59.0246 5916  C:\Windows\System32\microsoft-windows-kernel-power-events.dll - ok
17:18:59.0246 5916  [ E40E80D0304A73E8D269F7141D77250B ] C:\Windows\System32\mmcss.dll
17:18:59.0246 5916  C:\Windows\System32\mmcss.dll - ok
17:18:59.0246 5916  [ 715F03B4C7223349768013EA95D9E5B7 ] C:\Windows\System32\LogonUI.exe
17:18:59.0246 5916  C:\Windows\System32\LogonUI.exe - ok
17:18:59.0262 5916  [ DA6B67270FD9DB3697B20FCE94950741 ] C:\Windows\System32\drivers\fltMgr.sys
17:18:59.0262 5916  C:\Windows\System32\drivers\fltMgr.sys - ok
17:18:59.0262 5916  [ A3DB3C17EE6CAE65D53602B4E80BCCBC ] C:\Windows\System32\PSHED.DLL
17:18:59.0262 5916  C:\Windows\System32\PSHED.DLL - ok
17:18:59.0262 5916  [ 7595D53EE8E8B0BAA9A2DDDE867EBB0C ] C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_960c1f056a541068\stacsv64.exe
17:18:59.0262 5916  C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_960c1f056a541068\stacsv64.exe - ok
17:18:59.0278 5916  [ B0945E538CF906BBDDC5A11C8EE868CC ] C:\Windows\System32\microsoft-windows-kernel-processor-power-events.dll
17:18:59.0278 5916  C:\Windows\System32\microsoft-windows-kernel-processor-power-events.dll - ok
17:18:59.0278 5916  [ 9110FFAD124283F37D38771BB60556AF ] C:\Windows\System32\dsound.dll
17:18:59.0278 5916  C:\Windows\System32\dsound.dll - ok
17:18:59.0278 5916  [ 0BEE002C68E28CE6DA161DCF1376D7D7 ] C:\Windows\System32\authui.dll
17:18:59.0278 5916  C:\Windows\System32\authui.dll - ok
17:18:59.0293 5916  [ EF2AE43BCD46ABB13FC3E5B2B1935C73 ] C:\Windows\System32\winmm.dll
17:18:59.0293 5916  C:\Windows\System32\winmm.dll - ok
17:18:59.0293 5916  [ B3BFBD758506ECB50C5804AAA76318F9 ] C:\Windows\System32\cryptui.dll
17:18:59.0293 5916  C:\Windows\System32\cryptui.dll - ok
17:18:59.0293 5916  [ 7FA8FDC2C2A27817FD0F624E78D3B50C ] C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac\comctl32.dll
17:18:59.0293 5916  C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac\comctl32.dll - ok
17:18:59.0309 5916  [ 5B3EBFC3DA142324B388DDCC4465E1FF ] C:\Windows\System32\samlib.dll
17:18:59.0309 5916  C:\Windows\System32\samlib.dll - ok
17:18:59.0309 5916  [ 4E9C2DB10F7E6AE91BF761139D4B745B ] C:\Windows\System32\shacct.dll
17:18:59.0309 5916  C:\Windows\System32\shacct.dll - ok
17:18:59.0324 5916  [ 58C84FDC71B992A0E70592E478780D5E ] C:\Windows\System32\stapi64.dll
17:18:59.0324 5916  C:\Windows\System32\stapi64.dll - ok
17:18:59.0324 5916  [ D29E998E8277666982B4F0303BF4E7AF ] C:\Windows\System32\uxtheme.dll
17:18:59.0324 5916  C:\Windows\System32\uxtheme.dll - ok
17:18:59.0324 5916  [ 179E8401224D557ECFF3695F2016EA5B ] C:\Windows\winsxs\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.17825_none_2b253c8271ec7765\GdiPlus.dll
17:18:59.0324 5916  C:\Windows\winsxs\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.17825_none_2b253c8271ec7765\GdiPlus.dll - ok
17:18:59.0340 5916  [ D5CCA1453B98A5801E6D5FF0FF89DC6C ] C:\Windows\System32\audiodg.exe
17:18:59.0340 5916  C:\Windows\System32\audiodg.exe - ok
17:18:59.0340 5916  [ 3CB6A7286422C72C34DAB54A5DFF1A34 ] C:\Windows\System32\dui70.dll
17:18:59.0340 5916  C:\Windows\System32\dui70.dll - ok
17:18:59.0340 5916  [ 8CCDE014A4CDF84564E03ACE064CA753 ] C:\Windows\System32\duser.dll
17:18:59.0340 5916  C:\Windows\System32\duser.dll - ok
17:18:59.0356 5916  [ D7F1EF374A90709B31591823B002F918 ] C:\Windows\System32\SndVolSSO.dll
17:18:59.0356 5916  C:\Windows\System32\SndVolSSO.dll - ok
17:18:59.0356 5916  [ DA1B7075260F3872585BFCDD668C648B ] C:\Windows\System32\dwmapi.dll
17:18:59.0356 5916  C:\Windows\System32\dwmapi.dll - ok
17:18:59.0356 5916  [ 896F15A6434D93EDB42519D5E18E6B50 ] C:\Windows\System32\hid.dll
17:18:59.0356 5916  C:\Windows\System32\hid.dll - ok
17:18:59.0371 5916  [ 6F8B48F3D343E4B186AB6A9E302B7E16 ] C:\Windows\System32\xmllite.dll
17:18:59.0371 5916  C:\Windows\System32\xmllite.dll - ok
17:18:59.0371 5916  [ 26B73A85855681500BCC25C7CD9FF5B1 ] C:\Windows\System32\WindowsCodecs.dll
17:18:59.0371 5916  C:\Windows\System32\WindowsCodecs.dll - ok
17:18:59.0387 5916  [ 9F2BACD5E1776A4BB7CC0EC3C3A4F96D ] C:\Windows\System32\winbrand.dll
17:18:59.0387 5916  C:\Windows\System32\winbrand.dll - ok
17:18:59.0387 5916  [ BD3674BE7FC9D8D3732C83E8499576ED ] C:\Windows\System32\wtsapi32.dll
17:18:59.0387 5916  C:\Windows\System32\wtsapi32.dll - ok
17:18:59.0387 5916  [ CA2985996BB49924B677113DF95CFEA7 ] C:\Windows\System32\SmartcardCredentialProvider.dll
17:18:59.0387 5916  C:\Windows\System32\SmartcardCredentialProvider.dll - ok
17:18:59.0402 5916  [ C2762A57DF0EE85E63CE4893C5215313 ] C:\Windows\System32\VaultCredProvider.dll
17:18:59.0402 5916  C:\Windows\System32\VaultCredProvider.dll - ok
17:18:59.0402 5916  [ BF352E73615F5461AA6884472435A544 ] C:\Windows\System32\BioCredProv.dll
17:18:59.0402 5916  C:\Windows\System32\BioCredProv.dll - ok
17:18:59.0402 5916  [ CC0AB40F02D2C2A12209715A3C1B07B8 ] C:\Windows\System32\credui.dll
17:18:59.0402 5916  C:\Windows\System32\credui.dll - ok
17:18:59.0418 5916  [ EEEA40F0EDB0A6E5359E539E15D0BC77 ] C:\Windows\System32\netapi32.dll
17:18:59.0418 5916  C:\Windows\System32\netapi32.dll - ok
17:18:59.0418 5916  [ 44B9C66177651F3F53C87B665D58D17A ] C:\Windows\System32\vaultcli.dll
17:18:59.0418 5916  C:\Windows\System32\vaultcli.dll - ok
17:18:59.0418 5916  [ 796B8123A7859AFD3A4AE10514DBAEB5 ] C:\Windows\System32\winbio.dll
17:18:59.0418 5916  C:\Windows\System32\winbio.dll - ok
17:18:59.0434 5916  [ 7097425051CE67B450EBF2B1390AE492 ] C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDCREDPROV.DLL
17:18:59.0434 5916  C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDCREDPROV.DLL - ok
17:18:59.0434 5916  [ 972C3301DB3DA91AE06A95F6B4160B1B ] C:\Windows\System32\certCredProvider.dll
17:18:59.0434 5916  C:\Windows\System32\certCredProvider.dll - ok
17:18:59.0449 5916  [ 6CECA4C6A489C9B2E6073AFDAAE3F607 ] C:\Windows\System32\netutils.dll
17:18:59.0449 5916  C:\Windows\System32\netutils.dll - ok
17:18:59.0449 5916  [ FC51229C7D4AFA0D6F186133728B95AB ] C:\Windows\System32\samcli.dll
17:18:59.0449 5916  C:\Windows\System32\samcli.dll - ok
17:18:59.0449 5916  [ 3C91392D448F6E5D525A85B7550D8BA9 ] C:\Windows\System32\wkscli.dll
17:18:59.0449 5916  C:\Windows\System32\wkscli.dll - ok
17:18:59.0465 5916  [ 019CD868461B646E09BDF04474C19341 ] C:\Windows\System32\rasapi32.dll
17:18:59.0465 5916  C:\Windows\System32\rasapi32.dll - ok
17:18:59.0465 5916  [ B28DEEC597C8DEB70C744C7CF9210E3E ] C:\Windows\System32\rasman.dll
17:18:59.0465 5916  C:\Windows\System32\rasman.dll - ok
17:18:59.0465 5916  [ 87FA0C48C3B2E9FEE518818FE26B15B5 ] C:\Windows\System32\rasplap.dll
17:18:59.0465 5916  C:\Windows\System32\rasplap.dll - ok
17:18:59.0480 5916  [ B53C4B69B695EDA1B7E41D35CA4244E2 ] C:\Windows\System32\rtutils.dll
17:18:59.0480 5916  C:\Windows\System32\rtutils.dll - ok
17:18:59.0480 5916  [ 1473768973453DE50DC738C2955FC4DD ] C:\Windows\System32\wdmaud.drv
17:18:59.0480 5916  C:\Windows\System32\wdmaud.drv - ok
17:18:59.0480 5916  [ 8560FFFC8EB3A806DCD4F82252CFC8C6 ] C:\Windows\System32\ksuser.dll
17:18:59.0480 5916  C:\Windows\System32\ksuser.dll - ok
17:18:59.0496 5916  [ DC220AE6F64819099F7EBD6F137E32E7 ] C:\Windows\System32\AudioSes.dll
17:18:59.0496 5916  C:\Windows\System32\AudioSes.dll - ok
17:18:59.0496 5916  [ CF636C92B762B26F0B39B38E92380A09 ] C:\Windows\System32\oleacc.dll
17:18:59.0496 5916  C:\Windows\System32\oleacc.dll - ok
17:18:59.0496 5916  [ 019BDD35DE269CB98B22DE8923C2AA3B ] C:\Windows\System32\UIAutomationCore.dll
17:18:59.0496 5916  C:\Windows\System32\UIAutomationCore.dll - ok
17:18:59.0512 5916  [ CA2A0750ED830678997695FF61B04C30 ] C:\Windows\System32\midimap.dll
17:18:59.0512 5916  C:\Windows\System32\midimap.dll - ok
17:18:59.0512 5916  [ 10AC5CE9F78DC281A1BBD9B8CC587B8A ] C:\Windows\System32\msacm32.dll
17:18:59.0512 5916  C:\Windows\System32\msacm32.dll - ok
17:18:59.0527 5916  [ 1B7C3A37362C7B2890168C5FC61C8D9B ] C:\Windows\System32\msacm32.drv
17:18:59.0527 5916  C:\Windows\System32\msacm32.drv - ok
17:18:59.0527 5916  [ 5EDBB34736DD7AC1A73CF8792A835E10 ] C:\Windows\System32\AudioEng.dll
17:18:59.0527 5916  C:\Windows\System32\AudioEng.dll - ok
17:18:59.0527 5916  [ C1395286B822E306B4FE1568A8A77813 ] C:\Windows\System32\AUDIOKSE.dll
17:18:59.0527 5916  C:\Windows\System32\AUDIOKSE.dll - ok
17:18:59.0527 5916  [ F9949A5756E07A338CDFD34BA3DFB4E4 ] C:\Windows\System32\stapo64.dll
17:18:59.0527 5916  C:\Windows\System32\stapo64.dll - ok
17:18:59.0543 5916  [ 54B5DCD55B223BC5DF50B82E1E9E86B1 ] C:\Windows\System32\mfplat.dll
17:18:59.0543 5916  C:\Windows\System32\mfplat.dll - ok
17:18:59.0543 5916  [ 6F3C559B82F2912354BE5B098744CC8C ] C:\Windows\System32\WMALFXGFXDSP.dll
17:18:59.0543 5916  C:\Windows\System32\WMALFXGFXDSP.dll - ok
17:18:59.0558 5916  [ C469893743E18BA547DB3C7ED98B32F5 ] C:\Windows\System32\AESTAR64.dll
17:18:59.0558 5916  C:\Windows\System32\AESTAR64.dll - ok
17:18:59.0558 5916  [ 3D9FC44CA93001B423F89876369F1348 ] C:\Windows\System32\SRSLabs\{176F4E15-8F7C-4833-ADED-81FAE8CCD186}\sluapo64.dll
17:18:59.0558 5916  C:\Windows\System32\SRSLabs\{176F4E15-8F7C-4833-ADED-81FAE8CCD186}\sluapo64.dll - ok
17:18:59.0558 5916  [ FFA1A0DD5C18130DABE0F68D6F1EBFBA ] C:\Windows\System32\AESTAC64.dll
17:18:59.0558 5916  C:\Windows\System32\AESTAC64.dll - ok
17:18:59.0574 5916  [ B6F0676FC23D543452FE81D8B71D24E7 ] C:\Windows\System32\SRSLabs\{176F4E15-8F7C-4833-ADED-81FAE8CCD186}\slcshp64.dll
17:18:59.0574 5916  C:\Windows\System32\SRSLabs\{176F4E15-8F7C-4833-ADED-81FAE8CCD186}\slcshp64.dll - ok
17:18:59.0574 5916  [ F7BA79CEFBD9DF4AF781E00356FBF48E ] C:\Windows\System32\SRSLabs\{176F4E15-8F7C-4833-ADED-81FAE8CCD186}\slh36064.dll
17:18:59.0574 5916  C:\Windows\System32\SRSLabs\{176F4E15-8F7C-4833-ADED-81FAE8CCD186}\slh36064.dll - ok
17:18:59.0590 5916  [ 79E25E0628A2FF7A74356EAEF5011C26 ] C:\Windows\System32\SRSLabs\{176F4E15-8F7C-4833-ADED-81FAE8CCD186}\sltshd64.dll
17:18:59.0590 5916  C:\Windows\System32\SRSLabs\{176F4E15-8F7C-4833-ADED-81FAE8CCD186}\sltshd64.dll - ok
17:18:59.0590 5916  [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] C:\Windows\System32\gpsvc.dll
17:18:59.0590 5916  C:\Windows\System32\gpsvc.dll - ok
17:18:59.0590 5916  [ 46BB91A169B9B31FF44EB04C48EC1D41 ] C:\Windows\System32\nlaapi.dll
17:18:59.0590 5916  C:\Windows\System32\nlaapi.dll - ok
17:18:59.0605 5916  [ 53E83F1F6CF9D62F32801CF66D8352A8 ] C:\Windows\System32\profsvc.dll
17:18:59.0605 5916  C:\Windows\System32\profsvc.dll - ok
17:18:59.0605 5916  [ 58775492FFD419248B08325E583C527F ] C:\Windows\System32\atl.dll
17:18:59.0605 5916  C:\Windows\System32\atl.dll - ok
17:18:59.0605 5916  [ F0344071948D1A1FA732231785A0664C ] C:\Windows\System32\themeservice.dll
17:18:59.0605 5916  C:\Windows\System32\themeservice.dll - ok
17:18:59.0621 5916  [ A77BE7CB3222B4FB0AC6C71D1C2698D4 ] C:\Windows\System32\dsrole.dll
17:18:59.0621 5916  C:\Windows\System32\dsrole.dll - ok
17:18:59.0621 5916  [ 588CD0C78A7FAAE4186B5EEA0AF3ED67 ] C:\Windows\System32\adtschema.dll
17:18:59.0621 5916  C:\Windows\System32\adtschema.dll - ok
17:18:59.0621 5916  [ BE097F5BB10F9079FCEB2DC4E7E20F02 ] C:\Windows\System32\slc.dll
17:18:59.0621 5916  C:\Windows\System32\slc.dll - ok
17:18:59.0636 5916  [ 4166F82BE4D24938977DD1746BE9B8A0 ] C:\Windows\System32\es.dll
17:18:59.0636 5916  C:\Windows\System32\es.dll - ok
17:18:59.0636 5916  [ 9BC8610C32C96A2983A65DC21CAFA921 ] C:\Windows\System32\UXInit.dll
17:18:59.0636 5916  C:\Windows\System32\UXInit.dll - ok
17:18:59.0636 5916  [ 1A47D52E303B7543E4E6026595B95422 ] C:\Windows\System32\comres.dll
17:18:59.0636 5916  C:\Windows\System32\comres.dll - ok
17:18:59.0652 5916  [ C32AB8FA018EF34C0F113BD501436D21 ] C:\Windows\System32\Sens.dll
17:18:59.0652 5916  C:\Windows\System32\Sens.dll - ok
17:18:59.0652 5916  [ E2223A37896A76861D7F79FD81A2A193 ] C:\Windows\System32\hpservice.exe
17:18:59.0652 5916  C:\Windows\System32\hpservice.exe - ok
17:18:59.0668 5916  [ 19F9B524A525D202194247E96656CB88 ] C:\Windows\System32\mfc42u.dll
17:18:59.0668 5916  C:\Windows\System32\mfc42u.dll - ok
17:18:59.0668 5916  [ B7EEA7A7A6F8F80DD6A22E585F619C20 ] C:\Windows\System32\accelerometerdll.DLL
17:18:59.0668 5916  C:\Windows\System32\accelerometerdll.DLL - ok
17:18:59.0668 5916  [ 7FF8E121AFA05BDAB23B9FEDCDAB7A33 ] C:\Windows\System32\odbc32.dll
17:18:59.0668 5916  C:\Windows\System32\odbc32.dll - ok
17:18:59.0683 5916  [ 3E466073C3B1033FF92ADE9031E3D4A2 ] C:\Windows\System32\odbcint.dll
17:18:59.0683 5916  C:\Windows\System32\odbcint.dll - ok
17:18:59.0683 5916  [ EDBB23CBCF2CDF727D64FF9B51A6070E ] C:\Windows\System32\uxsms.dll
17:18:59.0683 5916  C:\Windows\System32\uxsms.dll - ok
17:18:59.0683 5916  [ 1538831CF8AD2979A04C423779465827 ] C:\Windows\System32\drivers\lltdio.sys
17:18:59.0683 5916  C:\Windows\System32\drivers\lltdio.sys - ok
17:18:59.0699 5916  [ 1EA3749C4114DB3E3161156FFFFA6B33 ] C:\Windows\System32\drivers\nwifi.sys
17:18:59.0699 5916  C:\Windows\System32\drivers\nwifi.sys - ok
17:18:59.0699 5916  [ 136185F9FB2CC61E573E676AA5402356 ] C:\Windows\System32\drivers\ndisuio.sys
17:18:59.0699 5916  C:\Windows\System32\drivers\ndisuio.sys - ok
17:18:59.0699 5916  [ DDC86E4F8E7456261E637E3552E804FF ] C:\Windows\System32\drivers\rspndr.sys
17:18:59.0699 5916  C:\Windows\System32\drivers\rspndr.sys - ok
17:18:59.0714 5916  [ D54BFDF3E0C953F823B3D0BFE4732528 ] C:\Windows\System32\nsisvc.dll
17:18:59.0714 5916  C:\Windows\System32\nsisvc.dll - ok
17:18:59.0714 5916  [ F993A32249B66C9D622EA5592A8B76B8 ] C:\Windows\System32\lmhsvc.dll
17:18:59.0714 5916  C:\Windows\System32\lmhsvc.dll - ok
17:18:59.0714 5916  [ 2B81776DA02017A37FE26C662827470E ] C:\Windows\System32\IPHLPAPI.DLL
17:18:59.0714 5916  C:\Windows\System32\IPHLPAPI.DLL - ok
17:18:59.0730 5916  [ 4C9210E8F4E052F6A4EB87716DA0C24C ] C:\Windows\System32\winnsi.dll
17:18:59.0730 5916  C:\Windows\System32\winnsi.dll - ok
17:18:59.0730 5916  [ B73A6E4B319AFFE64582AC5C1801BB3F ] C:\Windows\System32\nrpsrv.dll
17:18:59.0730 5916  C:\Windows\System32\nrpsrv.dll - ok
17:18:59.0746 5916  [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] C:\Windows\System32\dhcpcore.dll
17:18:59.0746 5916  C:\Windows\System32\dhcpcore.dll - ok
17:18:59.0746 5916  [ 3CC16A849E6092E43909F48EF0E60306 ] C:\Windows\System32\dhcpcore6.dll
17:18:59.0746 5916  C:\Windows\System32\dhcpcore6.dll - ok
17:18:59.0746 5916  [ F9EC845C5EECF20E9A67F9F805F2EF1F ] C:\Windows\System32\keyiso.dll
17:18:59.0746 5916  C:\Windows\System32\keyiso.dll - ok
17:18:59.0761 5916  [ E2DDA8726DA9CB5B2C4000C9018A9633 ] C:\Windows\System32\eapsvc.dll
17:18:59.0761 5916  C:\Windows\System32\eapsvc.dll - ok
17:18:59.0761 5916  [ 16835866AAA693C7D7FCEBA8FFF706E4 ] C:\Windows\System32\dnsrslvr.dll
17:18:59.0761 5916  C:\Windows\System32\dnsrslvr.dll - ok
17:18:59.0761 5916  [ 87356377F31DA5F20A833811CD59499C ] C:\Windows\System32\eapphost.dll
17:18:59.0761 5916  C:\Windows\System32\eapphost.dll - ok
17:18:59.0777 5916  [ 0040C486584A8E582C861CFB57AB5387 ] C:\Windows\System32\FWPUCLNT.DLL
17:18:59.0777 5916  C:\Windows\System32\FWPUCLNT.DLL - ok
17:18:59.0777 5916  [ 9FCA3A84338ADEF2AFF67CDA46EF8539 ] C:\Windows\System32\umb.dll
17:18:59.0777 5916  C:\Windows\System32\umb.dll - ok
17:18:59.0777 5916  [ A648C4A06DE367065B24056D067B4460 ] C:\Windows\System32\wlanmsm.dll
17:18:59.0777 5916  C:\Windows\System32\wlanmsm.dll - ok
17:18:59.0792 5916  [ 65522E77A1360DBC8D199DA3BF5EFFE4 ] C:\Windows\System32\eappprxy.dll
17:18:59.0792 5916  C:\Windows\System32\eappprxy.dll - ok
17:18:59.0792 5916  [ 5AA945234E9D4CCE4F715276B9AA712C ] C:\Windows\System32\imageres.dll
17:18:59.0792 5916  C:\Windows\System32\imageres.dll - ok
17:18:59.0792 5916  [ 73FCB7919DEE80EE556F2E498594EBAE ] C:\Windows\System32\onex.dll
17:18:59.0792 5916  C:\Windows\System32\onex.dll - ok
17:18:59.0808 5916  [ 06A1386B6E3A0CBC368665C1840906F4 ] C:\Windows\System32\wlansec.dll
17:18:59.0808 5916  C:\Windows\System32\wlansec.dll - ok
17:18:59.0808 5916  [ F568F7C08458D69E4FCD8675BBB107E4 ] C:\Windows\System32\dhcpcsvc.dll
17:18:59.0808 5916  C:\Windows\System32\dhcpcsvc.dll - ok
17:18:59.0808 5916  [ 0D753307D274F3688BD21C377B616700 ] C:\Windows\System32\eappcfg.dll
17:18:59.0808 5916  C:\Windows\System32\eappcfg.dll - ok
17:18:59.0824 5916  [ 730BF204A595D5B6D7DC57A247CC741C ] C:\Windows\System32\wlgpclnt.dll
17:18:59.0824 5916  C:\Windows\System32\wlgpclnt.dll - ok
17:18:59.0824 5916  [ 97E43F324BE1503CB2FFB058534688DA ] C:\Windows\System32\l2gpstore.dll
17:18:59.0824 5916  C:\Windows\System32\l2gpstore.dll - ok
17:18:59.0839 5916  [ 7D5645EE0EA77D539828433D9B95F5EB ] C:\Windows\System32\WinSCard.dll
17:18:59.0839 5916  C:\Windows\System32\WinSCard.dll - ok
17:18:59.0839 5916  [ 7F1B4C6FF3B85F9ADF74055187B8A22C ] C:\Windows\System32\wlanutil.dll
17:18:59.0839 5916  C:\Windows\System32\wlanutil.dll - ok
17:18:59.0839 5916  [ 885D0942E0F28DB90919BE3129ECF279 ] C:\Windows\System32\dnsext.dll
17:18:59.0839 5916  C:\Windows\System32\dnsext.dll - ok
17:18:59.0855 5916  [ 99B91C5D2FCEF218CAD3600ECB62A799 ] C:\Windows\System32\msxml6.dll
17:18:59.0855 5916  C:\Windows\System32\msxml6.dll - ok
17:18:59.0855 5916  [ 3C06D5A929B798D0B13F6481242A0FD2 ] C:\Windows\System32\dhcpcsvc6.dll
17:18:59.0855 5916  C:\Windows\System32\dhcpcsvc6.dll - ok
17:18:59.0855 5916  [ AAF932B4011D14052955D4B212A4DA8D ] C:\Windows\System32\shsvcs.dll
17:18:59.0855 5916  C:\Windows\System32\shsvcs.dll - ok
17:18:59.0870 5916  [ 43FAB56AE5F639AD59D7209693F4C4C2 ] C:\Windows\System32\wlanext.exe
17:18:59.0870 5916  C:\Windows\System32\wlanext.exe - ok
17:18:59.0870 5916  [ 1BCDB508143B517F21BBDAC10F5777BF ] C:\Windows\System32\conhost.exe
17:18:59.0870 5916  C:\Windows\System32\conhost.exe - ok
17:18:59.0870 5916  [ 262F6592C3299C005FD6BEC90FC4463A ] C:\Windows\System32\schedsvc.dll
17:18:59.0870 5916  C:\Windows\System32\schedsvc.dll - ok
17:18:59.0886 5916  [ BC414631876B2F28B8DAB08E849C12C5 ] C:\Windows\System32\ktmw32.dll
17:18:59.0886 5916  C:\Windows\System32\ktmw32.dll - ok
17:18:59.0886 5916  [ 3D048E1F32A49E03AB1BA972077325C6 ] C:\Windows\System32\bcmihvsrv64.dll
17:18:59.0886 5916  C:\Windows\System32\bcmihvsrv64.dll - ok
17:18:59.0902 5916  [ 945E54F23C72D37B8CD1987AF0DB63BF ] C:\Windows\System32\fveapi.dll
17:18:59.0902 5916  C:\Windows\System32\fveapi.dll - ok
17:18:59.0902 5916  [ 891ECFD08E2C538B7948CBC45106D697 ] C:\Windows\System32\fvecerts.dll
17:18:59.0902 5916  C:\Windows\System32\fvecerts.dll - ok
17:18:59.0902 5916  [ 694865362F0965779F92BCFE97712323 ] C:\Windows\System32\tbs.dll
17:18:59.0902 5916  C:\Windows\System32\tbs.dll - ok
17:18:59.0917 5916  [ 357BE883C5236BFC7341CB9E82308908 ] C:\Windows\System32\wlanapi.dll
17:18:59.0917 5916  C:\Windows\System32\wlanapi.dll - ok
17:18:59.0917 5916  [ 8269210DAF3B12BC8300631B28A2A442 ] C:\Windows\System32\wiarpc.dll
17:18:59.0917 5916  C:\Windows\System32\wiarpc.dll - ok
17:18:59.0917 5916  [ 6DC4A7242F565C9E9C9CCC7BB0FA75C7 ] C:\Windows\System32\taskcomp.dll
17:18:59.0917 5916  C:\Windows\System32\taskcomp.dll - ok
17:18:59.0933 5916  [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] C:\Windows\System32\drivers\http.sys
17:18:59.0933 5916  C:\Windows\System32\drivers\http.sys - ok
17:18:59.0933 5916  [ 85DAA09A98C9286D4EA2BA8D0E644377 ] C:\Windows\System32\spoolsv.exe
17:18:59.0933 5916  C:\Windows\System32\spoolsv.exe - ok
17:18:59.0933 5916  [ 82974D6A2FD19445CC5171FC378668A4 ] C:\Windows\System32\BFE.DLL
17:18:59.0933 5916  C:\Windows\System32\BFE.DLL - ok
17:18:59.0948 5916  [ 03706015DB44368375AEBE6339490E66 ] C:\Windows\System32\netcfgx.dll
17:18:59.0948 5916  C:\Windows\System32\netcfgx.dll - ok
17:18:59.0948 5916  [ 6A638FC4BFDDC4D9B186C28C91BD1A01 ] C:\Windows\System32\drivers\vwifimp.sys
17:18:59.0948 5916  C:\Windows\System32\drivers\vwifimp.sys - ok
17:18:59.0948 5916  [ 6C02A83164F5CC0A262F4199F0871CF5 ] C:\Windows\System32\drivers\bowser.sys
17:18:59.0948 5916  C:\Windows\System32\drivers\bowser.sys - ok
17:18:59.0964 5916  [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] C:\Windows\System32\drivers\mpsdrv.sys
17:18:59.0964 5916  C:\Windows\System32\drivers\mpsdrv.sys - ok
17:18:59.0964 5916  [ A5D9106A73DC88564C825D317CAC68AC ] C:\Windows\System32\drivers\mrxsmb.sys
17:18:59.0964 5916  C:\Windows\System32\drivers\mrxsmb.sys - ok
17:18:59.0980 5916  [ D711B3C1D5F42C0C2415687BE09FC163 ] C:\Windows\System32\drivers\mrxsmb10.sys
17:18:59.0980 5916  C:\Windows\System32\drivers\mrxsmb10.sys - ok
17:18:59.0980 5916  [ 9423E9D355C8D303E76B8CFBD8A5C30C ] C:\Windows\System32\drivers\mrxsmb20.sys
17:18:59.0980 5916  C:\Windows\System32\drivers\mrxsmb20.sys - ok
17:18:59.0980 5916  [ 851A1382EED3E3A7476DB004F4EE3E1A ] C:\Windows\System32\wkssvc.dll
17:18:59.0980 5916  C:\Windows\System32\wkssvc.dll - ok
17:18:59.0995 5916  [ A6FB9DB8F1A86861D955FD6975977AE0 ] C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_960c1f056a541068\AESTSr64.exe
17:18:59.0995 5916  C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_960c1f056a541068\AESTSr64.exe - ok
17:18:59.0995 5916  [ C67F8A962B2534224D5908D16D2AD3CE ] C:\Windows\System32\wfapigp.dll
17:18:59.0995 5916  C:\Windows\System32\wfapigp.dll - ok
17:18:59.0995 5916  [ 1834B31C749B86DAC233BBBA1C03BC48 ] C:\Windows\System32\mscms.dll
17:18:59.0995 5916  C:\Windows\System32\mscms.dll - ok
17:19:00.0011 5916  [ A5299D04ED225D64CF07A568A3E1BF8C ] C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
17:19:00.0011 5916  C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe - ok
17:19:00.0011 5916  [ 3AEAA8B561E63452C655DC0584922257 ] C:\Windows\System32\pcasvc.dll
17:19:00.0011 5916  C:\Windows\System32\pcasvc.dll - ok
17:19:00.0026 5916  [ 6313F223E817CC09AA41811DAA7F541D ] C:\Windows\System32\snmptrap.exe
17:19:00.0026 5916  C:\Windows\System32\snmptrap.exe - ok
17:19:00.0026 5916  [ E73B0F1819602CB6EF176FB78D76A47B ] C:\Windows\SysWOW64\ntdll.dll
17:19:00.0026 5916  C:\Windows\SysWOW64\ntdll.dll - ok
17:19:00.0026 5916  [ 259EB5F7D95A29842B476C5B3EB6E186 ] C:\Windows\System32\wow64.dll
17:19:00.0026 5916  C:\Windows\System32\wow64.dll - ok
17:19:00.0042 5916  [ 5674E21E82CFBEA36DDAD5DB285D6DBC ] C:\Windows\System32\wow64win.dll
17:19:00.0042 5916  C:\Windows\System32\wow64win.dll - ok
17:19:00.0042 5916  [ 3EE3AA76D8AB6D5644C4C8F34471CEB3 ] C:\Windows\System32\wow64cpu.dll
17:19:00.0042 5916  C:\Windows\System32\wow64cpu.dll - ok
17:19:00.0042 5916  [ AC0B6F41882FC6ED186962D770EBF1D2 ] C:\Windows\SysWOW64\kernel32.dll
17:19:00.0042 5916  C:\Windows\SysWOW64\kernel32.dll - ok
17:19:00.0058 5916  [ 95E2376B3323F062EB562B8586D0F14A ] C:\Windows\SysWOW64\advapi32.dll
17:19:00.0058 5916  C:\Windows\SysWOW64\advapi32.dll - ok
17:19:00.0058 5916  [ E954A79D6A754A5475582CACED1565E6 ] C:\Windows\SysWOW64\KernelBase.dll
17:19:00.0058 5916  C:\Windows\SysWOW64\KernelBase.dll - ok
17:19:00.0058 5916  [ 9DC80A8AAAAAC397BDAB3C67165A824E ] C:\Windows\SysWOW64\msvcrt.dll
17:19:00.0058 5916  C:\Windows\SysWOW64\msvcrt.dll - ok
17:19:00.0073 5916  [ C5AD8083CF94201F1F8084ECC696A8B7 ] C:\Windows\SysWOW64\rpcrt4.dll
17:19:00.0073 5916  C:\Windows\SysWOW64\rpcrt4.dll - ok
17:19:00.0073 5916  [ CFC97F07904067A1E5FAE195D534DA3A ] C:\Windows\SysWOW64\sechost.dll
17:19:00.0073 5916  C:\Windows\SysWOW64\sechost.dll - ok
17:19:00.0073 5916  [ 908ACB1F594274965A53926B10C81E89 ] C:\Windows\System32\provsvc.dll
17:19:00.0073 5916  C:\Windows\System32\provsvc.dll - ok
17:19:00.0089 5916  [ F08F6FCD09F9BE94C37ACC1B344685FF ] C:\Windows\SysWOW64\cryptbase.dll
17:19:00.0089 5916  C:\Windows\SysWOW64\cryptbase.dll - ok
17:19:00.0089 5916  [ EDA7AD21DF8945528F01F0A86D69E524 ] C:\Windows\SysWOW64\sspicli.dll
17:19:00.0089 5916  C:\Windows\SysWOW64\sspicli.dll - ok
17:19:00.0089 5916  [ 0B3595A4FF0B36D68E5FC67FD7D70FDC ] C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcp80.dll
17:19:00.0089 5916  C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcp80.dll - ok
17:19:00.0104 5916  [ C9564CF4976E7E96B4052737AA2492B4 ] C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcr80.dll
17:19:00.0104 5916  C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcr80.dll - ok
17:19:00.0104 5916  [ 8CC3C111D653E96F3EA1590891491D71 ] C:\Windows\SysWOW64\shlwapi.dll
17:19:00.0104 5916  C:\Windows\SysWOW64\shlwapi.dll - ok
17:19:00.0120 5916  [ D6D3AD7BF1D6F6CE9547613ED5E170A2 ] C:\Windows\SysWOW64\gdi32.dll
17:19:00.0120 5916  C:\Windows\SysWOW64\gdi32.dll - ok
17:19:00.0120 5916  [ 5E0DB2D8B2750543CD2EBB9EA8E6CDD3 ] C:\Windows\SysWOW64\user32.dll
17:19:00.0120 5916  C:\Windows\SysWOW64\user32.dll - ok
17:19:00.0120 5916  [ 384721EF4024890092625E20CADFAF85 ] C:\Windows\SysWOW64\lpk.dll
17:19:00.0120 5916  C:\Windows\SysWOW64\lpk.dll - ok
17:19:00.0136 5916  [ B7230010D97787AF3D25E4C82F2B06B9 ] C:\Windows\SysWOW64\usp10.dll
17:19:00.0136 5916  C:\Windows\SysWOW64\usp10.dll - ok
17:19:00.0136 5916  [ A6F09E5669D9A19035F6D942CAA15882 ] C:\Windows\SysWOW64\imm32.dll
17:19:00.0136 5916  C:\Windows\SysWOW64\imm32.dll - ok
17:19:00.0136 5916  [ C9618BC9B2B0FD7C1138D8774795A79B ] C:\Windows\SysWOW64\msctf.dll
17:19:00.0136 5916  C:\Windows\SysWOW64\msctf.dll - ok
17:19:00.0151 5916  [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] C:\Windows\System32\sstpsvc.dll
17:19:00.0151 5916  C:\Windows\System32\sstpsvc.dll - ok
17:19:00.0151 5916  [ 92DA9EDE07390B4352B29DD82079E398 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\AppleVersions.dll
17:19:00.0151 5916  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\AppleVersions.dll - ok
17:19:00.0167 5916  [ 702254574E7E52052DE39408457B7149 ] C:\Windows\SysWOW64\version.dll
17:19:00.0167 5916  C:\Windows\SysWOW64\version.dll - ok
17:19:00.0167 5916  [ 64894527838C86454E2F378FF39FA336 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\YSCrashDump.dll
17:19:00.0167 5916  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\YSCrashDump.dll - ok
17:19:00.0167 5916  [ EF8CD3C64EE9C08980D6D06CCCE46C68 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\CoreFoundation.dll
17:19:00.0167 5916  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\CoreFoundation.dll - ok
17:19:00.0182 5916  [ 29E9794708DF51DB5DC89FB2E903A0F6 ] C:\Windows\SysWOW64\shell32.dll
17:19:00.0182 5916  C:\Windows\SysWOW64\shell32.dll - ok
17:19:00.0182 5916  [ 7FF15A4F092CD4A96055BA69F903E3E9 ] C:\Windows\SysWOW64\ws2_32.dll
17:19:00.0182 5916  C:\Windows\SysWOW64\ws2_32.dll - ok
17:19:00.0182 5916  [ 6377051C63D5552A311935C67E9FDFDC ] C:\Windows\SysWOW64\nsi.dll
17:19:00.0182 5916  C:\Windows\SysWOW64\nsi.dll - ok
17:19:00.0198 5916  [ 638C7596B493F5F77DB9EF6BAD8FE46C ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\pthreadVC2.dll
17:19:00.0198 5916  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\pthreadVC2.dll - ok
17:19:00.0198 5916  [ DF13A51A5C591887D2EC6AE64CEED0FA ] C:\Windows\SysWOW64\wsock32.dll
17:19:00.0198 5916  C:\Windows\SysWOW64\wsock32.dll - ok
17:19:00.0214 5916  [ 78865ABC5F5D13190F8B35BD9044714A ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\objc.dll
17:19:00.0214 5916  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\objc.dll - ok
17:19:00.0214 5916  [ FF9831030678C7B6D70BAC00F68F8976 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libdispatch.dll
17:19:00.0214 5916  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libdispatch.dll - ok
17:19:00.0214 5916  [ 5A963C340DE1A01BA6E24945CE05D16A ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libicuin.dll
17:19:00.0214 5916  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libicuin.dll - ok
17:19:00.0229 5916  [ D5AEFAD57C08349A4393D987DF7C715D ] C:\Windows\SysWOW64\winmm.dll
17:19:00.0229 5916  C:\Windows\SysWOW64\winmm.dll - ok
17:19:00.0229 5916  [ F4BC62990E7E5C29799A895B80FC3177 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libicuuc.dll
17:19:00.0229 5916  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libicuuc.dll - ok
17:19:00.0229 5916  [ 149D74E1128A86DC9CFB2851FBEA11EB ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\icudt46.dll
17:19:00.0229 5916  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\icudt46.dll - ok
17:19:00.0245 5916  [ F6FD367C9EAAEDF90CD7A7952AE0B336 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\ASL.dll
17:19:00.0245 5916  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\ASL.dll - ok
17:19:00.0245 5916  [ 928CF7268086631F54C3D8E17238C6DD ] C:\Windows\SysWOW64\ole32.dll
17:19:00.0245 5916  C:\Windows\SysWOW64\ole32.dll - ok
17:19:00.0260 5916  [ C733D233B623B7FFCE5031E4B756EE26 ] C:\Windows\SysWOW64\profapi.dll
17:19:00.0292 5916  C:\Windows\SysWOW64\profapi.dll - ok
17:19:00.0292 5916  [ 4E4EDF9CA82E95BAB2977DD9F21B00F6 ] C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService_main.dll
17:19:00.0292 5916  C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService_main.dll - ok
17:19:00.0307 5916  [ 10FB16B50AFFDA6D44588F3C445DC273 ] C:\Windows\SysWOW64\setupapi.dll
17:19:00.0307 5916  C:\Windows\SysWOW64\setupapi.dll - ok
17:19:00.0307 5916  [ F436E847FA799ECD75AD8C313673F450 ] C:\Windows\SysWOW64\cfgmgr32.dll
17:19:00.0307 5916  C:\Windows\SysWOW64\cfgmgr32.dll - ok
17:19:00.0323 5916  [ 6C765E82B57F2E66CE9C54AC238471D9 ] C:\Windows\SysWOW64\oleaut32.dll
17:19:00.0323 5916  C:\Windows\SysWOW64\oleaut32.dll - ok
17:19:00.0323 5916  [ 2EEFF4502F5E13B1BED4A04CCAD64C08 ] C:\Windows\SysWOW64\devobj.dll
17:19:00.0323 5916  C:\Windows\SysWOW64\devobj.dll - ok
17:19:00.0323 5916  [ D15618A0FF8DBC2C5BF3726BACC75A0B ] C:\Windows\SysWOW64\userenv.dll
17:19:00.0323 5916  C:\Windows\SysWOW64\userenv.dll - ok
17:19:00.0338 5916  [ 6A6B2EE4565A178035BE2A4FF6F2C968 ] C:\Windows\SysWOW64\wtsapi32.dll
17:19:00.0338 5916  C:\Windows\SysWOW64\wtsapi32.dll - ok
17:19:00.0338 5916  [ 3FD15B4611D9BDA3F8013548C0ECAECA ] C:\Windows\SysWOW64\ntmarta.dll
17:19:00.0338 5916  C:\Windows\SysWOW64\ntmarta.dll - ok
17:19:00.0338 5916  [ A8BB45F9ECAD993461E0FEF8E2A99152 ] C:\Windows\SysWOW64\Wldap32.dll
17:19:00.0338 5916  C:\Windows\SysWOW64\Wldap32.dll - ok
17:19:00.0354 5916  [ 8999B8631C7FD9F7F9EC3CAFD953BA24 ] C:\Windows\SysWOW64\mswsock.dll
17:19:00.0354 5916  C:\Windows\SysWOW64\mswsock.dll - ok
17:19:00.0354 5916  [ 4AFC14AFA58878FAA1D249E7E90EA54B ] C:\Program Files (x86)\AVG\AVG2013\avgidsagent.exe
17:19:00.0354 5916  C:\Program Files (x86)\AVG\AVG2013\avgidsagent.exe - ok
17:19:00.0370 5916  [ EE5C8E27C37B79CB54A2FCEEED2DC262 ] C:\Windows\SysWOW64\WSHTCPIP.DLL
17:19:00.0370 5916  C:\Windows\SysWOW64\WSHTCPIP.DLL - ok
17:19:00.0370 5916  [ 0E1B02C9CC352A1F61703B7D1A8A2C45 ] C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\MobileDevice.dll
17:19:00.0370 5916  C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\MobileDevice.dll - ok
17:19:00.0370 5916  [ B49B56B64F57699A1A663D2CF7D0A56F ] C:\Windows\SysWOW64\wininet.dll
17:19:00.0370 5916  C:\Windows\SysWOW64\wininet.dll - ok
17:19:00.0385 5916  [ D171EAA745A2C0C583CDDA13D9088EE4 ] C:\Windows\SysWOW64\iertutil.dll
17:19:00.0385 5916  C:\Windows\SysWOW64\iertutil.dll - ok
17:19:00.0385 5916  [ 42836D10270B1940F9A2FF77AE679537 ] C:\Program Files (x86)\AVG\AVG2013\avgntopensslx.dll
17:19:00.0385 5916  C:\Program Files (x86)\AVG\AVG2013\avgntopensslx.dll - ok
17:19:00.0385 5916  [ 484987420BC8DED2CB26C6F4EC9BA7F2 ] C:\Program Files (x86)\AVG\AVG2013\avgsysx.dll
17:19:00.0385 5916  C:\Program Files (x86)\AVG\AVG2013\avgsysx.dll - ok
17:19:00.0401 5916  [ BE157C3800DA3010EFC48280ECF81C16 ] C:\Windows\SysWOW64\urlmon.dll
17:19:00.0401 5916  C:\Windows\SysWOW64\urlmon.dll - ok
17:19:00.0401 5916  [ 2E14406E05789F91C9282AE7CFCA3A07 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll
17:19:00.0401 5916  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll - ok
17:19:00.0416 5916  [ BC83108B18756547013ED443B8CDB31B ] C:\Windows\SysWOW64\msvcp100.dll
17:19:00.0416 5916  C:\Windows\SysWOW64\msvcp100.dll - ok
17:19:00.0416 5916  [ CF3126A2FF45AA224FC541BC543C2D9C ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\CFNetwork.dll
17:19:00.0416 5916  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\CFNetwork.dll - ok
17:19:00.0416 5916  [ 0E37FBFA79D349D672456923EC5FBBE3 ] C:\Windows\SysWOW64\msvcr100.dll
17:19:00.0416 5916  C:\Windows\SysWOW64\msvcr100.dll - ok
17:19:00.0432 5916  [ A90DC9ABD65DB1A8902F361103029952 ] C:\Windows\SysWOW64\IPHLPAPI.DLL
17:19:00.0432 5916  C:\Windows\SysWOW64\IPHLPAPI.DLL - ok
17:19:00.0432 5916  [ A543AC1F7138376D778D630A35FCBC4C ] C:\Windows\SysWOW64\psapi.dll
17:19:00.0432 5916  C:\Windows\SysWOW64\psapi.dll - ok
17:19:00.0432 5916  [ CFF35B879D1618D42C86644C717BA947 ] C:\Windows\SysWOW64\winnsi.dll
17:19:00.0432 5916  C:\Windows\SysWOW64\winnsi.dll - ok
17:19:00.0448 5916  [ 60D21799A4AF4EDCE65FB98830E4B0C8 ] C:\Windows\SysWOW64\crypt32.dll
17:19:00.0448 5916  C:\Windows\SysWOW64\crypt32.dll - ok
17:19:00.0448 5916  [ 938F39B50BAFE13D6F58C7790682C010 ] C:\Windows\SysWOW64\msasn1.dll
17:19:00.0448 5916  C:\Windows\SysWOW64\msasn1.dll - ok
17:19:00.0448 5916  [ 8BA9851E671E8B5E49E303748FFD530C ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\SQLite3.dll
17:19:00.0448 5916  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\SQLite3.dll - ok
17:19:00.0463 5916  [ F036DB9CF05B3C21405403FF074A78D9 ] C:\Program Files (x86)\AVG\AVG2013\avgopensslx.dll
17:19:00.0463 5916  C:\Program Files (x86)\AVG\AVG2013\avgopensslx.dll - ok
17:19:00.0463 5916  [ 73862FF693168369A90F046E7F227B83 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll
17:19:00.0463 5916  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll - ok
17:19:00.0479 5916  [ 17448AF0BBA9E7AB5EC955AF93F271BD ] C:\Windows\SysWOW64\wintrust.dll
17:19:00.0479 5916  C:\Windows\SysWOW64\wintrust.dll - ok
17:19:00.0479 5916  [ 1C2E1FC9F8ED794CC191E92F27D1391C ] C:\Program Files (x86)\AVG\AVG2013\avglogx.dll
17:19:00.0479 5916  C:\Program Files (x86)\AVG\AVG2013\avglogx.dll - ok
17:19:00.0479 5916  [ A6251155B7017D4B4A77A3531A8DA6D8 ] C:\Program Files (x86)\AVG\AVG2013\avgcommx.dll
17:19:00.0479 5916  C:\Program Files (x86)\AVG\AVG2013\avgcommx.dll - ok
17:19:00.0494 5916  [ B40F5DCD59ED2A46EED8AE340CC167FB ] C:\Program Files (x86)\AVG\AVG2013\avgcfgx.dll
17:19:00.0494 5916  C:\Program Files (x86)\AVG\AVG2013\avgcfgx.dll - ok
17:19:00.0494 5916  [ 6B72E1E329C4E98C6B6FDD2D265E3BA3 ] C:\Program Files (x86)\AVG\AVG2013\avgwdsvc.exe
17:19:00.0494 5916  C:\Program Files (x86)\AVG\AVG2013\avgwdsvc.exe - ok
17:19:00.0494 5916  [ 76FFA2433FEB42E78FB5421A50C8FBE3 ] C:\Program Files (x86)\AVG\AVG2013\avgclitx.dll
17:19:00.0494 5916  C:\Program Files (x86)\AVG\AVG2013\avgclitx.dll - ok
17:19:00.0510 5916  [ 8792BAB371B4B1589E015B6FD1ED3B15 ] C:\Windows\System32\cryptnet.dll
17:19:00.0510 5916  C:\Windows\System32\cryptnet.dll - ok
17:19:00.0510 5916  [ 9C01375BE382E834CC26D1B7EAF2C4FE ] C:\Windows\System32\cryptsvc.dll
17:19:00.0510 5916  C:\Windows\System32\cryptsvc.dll - ok
17:19:00.0526 5916  [ B26F4F737E8F9DF4F31AF6CF31D05820 ] C:\Windows\System32\dps.dll
17:19:00.0526 5916  C:\Windows\System32\dps.dll - ok
17:19:00.0526 5916  [ BAAFAF9CEAEC0B73C2A3550A01F6CECB ] C:\Windows\System32\taskschd.dll
17:19:00.0526 5916  C:\Windows\System32\taskschd.dll - ok
17:19:00.0526 5916  [ 0E2F58F6E698EDCB9E58FAD0CBCD0567 ] C:\Windows\System32\vssapi.dll
17:19:00.0526 5916  C:\Windows\System32\vssapi.dll - ok
17:19:00.0541 5916  [ 287923557447D7E4BDD7E65B1F0F5428 ] C:\Windows\System32\vsstrace.dll
17:19:00.0541 5916  C:\Windows\System32\vsstrace.dll - ok
17:19:00.0541 5916  [ 43D8779059D848BB26D725D4E6C3350C ] C:\Program Files (x86)\AVG\AVG2013\avgcorex.dll
17:19:00.0541 5916  C:\Program Files (x86)\AVG\AVG2013\avgcorex.dll - ok
17:19:00.0541 5916  [ 802496CB59A30349F9A6DD22D6947644 ] C:\Windows\System32\FDResPub.dll
17:19:00.0541 5916  C:\Windows\System32\FDResPub.dll - ok
17:19:00.0557 5916  [ F1B205F932F62F94506A5F332C895DAF ] C:\Windows\System32\WSDApi.dll
17:19:00.0557 5916  C:\Windows\System32\WSDApi.dll - ok
17:19:00.0557 5916  [ C55516D98DD5D8F0153C2A9B4227DA86 ] C:\Windows\System32\webservices.dll
17:19:00.0557 5916  C:\Windows\System32\webservices.dll - ok
17:19:00.0572 5916  [ B5055B51BAA0FD0A736A88653DA3C1C0 ] C:\Windows\System32\fundisc.dll
17:19:00.0572 5916  C:\Windows\System32\fundisc.dll - ok
17:19:00.0572 5916  [ C2E324014D54DAA2B5A4DE47CB696FD8 ] C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe
17:19:00.0572 5916  C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe - ok
17:19:00.0572 5916  [ FCD84C381E0140AF901E58D48882D26B ] C:\Windows\System32\IKEEXT.DLL
17:19:00.0572 5916  C:\Windows\System32\IKEEXT.DLL - ok
17:19:00.0588 5916  [ 93D8ABCD7B0A3A0E30897CC91C9FAADA ] C:\Program Files (x86)\Common Files\LightScribe\LSSProxy.dll
17:19:00.0588 5916  C:\Program Files (x86)\Common Files\LightScribe\LSSProxy.dll - ok
17:19:00.0588 5916  [ 95EFDCB44DD093EDAD447F1D21C8A3F7 ] C:\Program Files (x86)\AVG\AVG2013\avgcertx.dll
17:19:00.0588 5916  C:\Program Files (x86)\AVG\AVG2013\avgcertx.dll - ok
17:19:00.0588 5916  [ 312F486415DDFD1E6FF1451ED35A1558 ] C:\Program Files (x86)\Common Files\LightScribe\LSLog.dll
17:19:00.0588 5916  C:\Program Files (x86)\Common Files\LightScribe\LSLog.dll - ok
17:19:00.0604 5916  [ 6F19639188F792BBB234B2A3FCB0C8C9 ] C:\Program Files (x86)\AVG\AVG2013\avgchclx.dll
17:19:00.0604 5916  C:\Program Files (x86)\AVG\AVG2013\avgchclx.dll - ok
17:19:00.0604 5916  [ F2840DBFE9322F35557219AE82CC4597 ] C:\Program Files (x86)\Norton 360\Engine\6.4.1.14\ccsvchst.exe
17:19:00.0604 5916  C:\Program Files (x86)\Norton 360\Engine\6.4.1.14\ccsvchst.exe - ok
17:19:00.0604 5916  [ F93674263F6B07C77956E966953242D9 ] C:\Windows\SysWOW64\secur32.dll
17:19:00.0604 5916  C:\Windows\SysWOW64\secur32.dll - ok
17:19:00.0619 5916  [ 40CAEEE0EAF1B8569F7C8DF6420F2CB9 ] C:\Windows\SysWOW64\sfc.dll
17:19:00.0619 5916  C:\Windows\SysWOW64\sfc.dll - ok
17:19:00.0619 5916  [ 84799328D87B3091A3BDD251E1AD31F9 ] C:\Windows\SysWOW64\sfc_os.dll
17:19:00.0619 5916  C:\Windows\SysWOW64\sfc_os.dll - ok
17:19:00.0619 5916  [ F820B93E4ABCCABD698A175FD5FC83FE ] C:\Program Files (x86)\AVG\AVG2013\avgntsqlitex.dll
17:19:00.0619 5916  C:\Program Files (x86)\AVG\AVG2013\avgntsqlitex.dll - ok
17:19:00.0635 5916  [ 4C39358EBDD2FFCD9132A30E1EC31E16 ] C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcp90.dll
17:19:00.0635 5916  C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcp90.dll - ok
17:19:00.0635 5916  [ CDBE9690CF2B8409FACAD94FAC9479C9 ] C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcr90.dll
17:19:00.0635 5916  C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcr90.dll - ok
17:19:00.0650 5916  [ 4853FAA23868E66FD66DC81B8DD42333 ] C:\Program Files (x86)\Norton 360\Engine\6.4.1.14\ccl110u.dll
17:19:00.0650 5916  C:\Program Files (x86)\Norton 360\Engine\6.4.1.14\ccl110u.dll - ok
17:19:00.0650 5916  [ 58F4493BF748A3A89689997B7BD00E95 ] C:\Windows\System32\winhttp.dll
17:19:00.0650 5916  C:\Windows\System32\winhttp.dll - ok
17:19:00.0650 5916  [ 53223B673A3FA2F9A4D1C31C8D3F6CD8 ] C:\Windows\SysWOW64\dbghelp.dll
17:19:00.0650 5916  C:\Windows\SysWOW64\dbghelp.dll - ok
17:19:00.0666 5916  [ BCEA9AB347E53BC03B2E36BE0B8BA0EF ] C:\Windows\System32\httpapi.dll
17:19:00.0666 5916  C:\Windows\System32\httpapi.dll - ok
17:19:00.0666 5916  [ 603EBD34E216C5654A2D774EAC98D278 ] C:\Windows\System32\webio.dll
17:19:00.0666 5916  C:\Windows\System32\webio.dll - ok
17:19:00.0682 5916  [ D4FAC263861BAE06971C7F7D0A8EBF15 ] C:\Windows\System32\ncsi.dll
17:19:00.0682 5916  C:\Windows\System32\ncsi.dll - ok
17:19:00.0682 5916  [ 8AD77806D336673F270DB31645267293 ] C:\Windows\System32\nlasvc.dll
17:19:00.0682 5916  C:\Windows\System32\nlasvc.dll - ok
17:19:00.0682 5916  [ 1727B2A2F379A32B864C096FA794AADC ] C:\Windows\System32\aepic.dll
17:19:00.0682 5916  C:\Windows\System32\aepic.dll - ok
17:19:00.0697 5916  [ 68769C3356B3BE5D1C732C97B9A80D6E ] C:\Windows\System32\drivers\PEAuth.sys
17:19:00.0697 5916  C:\Windows\System32\drivers\PEAuth.sys - ok
17:19:00.0697 5916  [ C6DCD1D11ED6827F05C00773C3E7053C ] C:\Windows\System32\sfc.dll
17:19:00.0697 5916  C:\Windows\System32\sfc.dll - ok
17:19:00.0697 5916  [ 895C9AB0A855547445C4181195230757 ] C:\Windows\System32\sfc_os.dll
17:19:00.0697 5916  C:\Windows\System32\sfc_os.dll - ok
17:19:00.0713 5916  [ 2BBF3FDB70B8965DFA0258CBAB41ECCE ] C:\Windows\System32\ssdpapi.dll
17:19:00.0713 5916  C:\Windows\System32\ssdpapi.dll - ok
17:19:00.0713 5916  [ 2257C98561EBAC594A8BB797970D6D54 ] C:\Program Files (x86)\Norton 360\Engine\6.4.1.14\ccvrtrst.dll
17:19:00.0713 5916  C:\Program Files (x86)\Norton 360\Engine\6.4.1.14\ccvrtrst.dll - ok
17:19:00.0713 5916  [ 498EB62A160674E793FA40FD65390625 ] C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe
17:19:00.0713 5916  C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe - ok
17:19:00.0728 5916  [ 52364B2BBA5D1CB4E6A55076EB184D90 ] C:\Program Files (x86)\Norton 360\Engine\6.4.1.14\efacli.dll
17:19:00.0728 5916  C:\Program Files (x86)\Norton 360\Engine\6.4.1.14\efacli.dll - ok
17:19:00.0728 5916  [ 8B8EEDA3D4B9C32170918B4EB8EF023B ] C:\Program Files (x86)\Norton 360\Engine\6.4.1.14\ccsvc.dll
17:19:00.0728 5916  C:\Program Files (x86)\Norton 360\Engine\6.4.1.14\ccsvc.dll - ok
17:19:00.0744 5916  [ 65D64BB840ABF8AA317E1A56595C5E28 ] C:\Program Files (x86)\Norton 360\Engine\6.4.1.14\srtsp32.dll
17:19:00.0744 5916  C:\Program Files (x86)\Norton 360\Engine\6.4.1.14\srtsp32.dll - ok
17:19:00.0744 5916  [ 79ED7408D94471522D5C34BA10BCC7B9 ] C:\Program Files (x86)\Norton 360\Engine\6.4.1.14\ccipc.dll
17:19:00.0744 5916  C:\Program Files (x86)\Norton 360\Engine\6.4.1.14\ccipc.dll - ok
17:19:00.0744 5916  [ 5997D769CDB108390DCFAEBF442BF816 ] C:\Windows\SysWOW64\RpcRtRemote.dll
17:19:00.0744 5916  C:\Windows\SysWOW64\RpcRtRemote.dll - ok
17:19:00.0760 5916  [ 284DAE55DED345F240DF806D45711E0B ] C:\Program Files (x86)\Norton 360\Engine\6.4.1.14\dimaster.dll
17:19:00.0760 5916  C:\Program Files (x86)\Norton 360\Engine\6.4.1.14\dimaster.dll - ok
17:19:00.0760 5916  [ 3EA8A16169C26AFBEB544E0E48421186 ] C:\Windows\System32\drivers\secdrv.sys
17:19:00.0760 5916  C:\Windows\System32\drivers\secdrv.sys - ok
17:19:00.0760 5916  [ 77B5035BC6EDF4D1B6265391AECEE4C0 ] C:\Windows\System32\vpnikeapi.dll
17:19:00.0760 5916  C:\Windows\System32\vpnikeapi.dll - ok
17:19:00.0775 5916  [ 27E461F0BE5BFF5FC737328F749538C3 ] C:\Windows\System32\drivers\srvnet.sys
17:19:00.0775 5916  C:\Windows\System32\drivers\srvnet.sys - ok
17:19:00.0775 5916  [ FF5688D309347F2720911D8796912834 ] C:\Windows\SysWOW64\clbcatq.dll
17:19:00.0775 5916  C:\Windows\SysWOW64\clbcatq.dll - ok
17:19:00.0791 5916  [ 418E881201583A3039D81F43E39E6C78 ] C:\Windows\SysWOW64\winsta.dll
17:19:00.0791 5916  C:\Windows\SysWOW64\winsta.dll - ok
17:19:00.0791 5916  [ 7321F18D1F820612ED0E9F2D4B578A7E ] C:\Windows\SysWOW64\cryptsp.dll
17:19:00.0791 5916  C:\Windows\SysWOW64\cryptsp.dll - ok
17:19:00.0791 5916  [ 5684762CF40116976A0007EECD5A587D ] C:\Program Files (x86)\Norton 360\Engine\6.4.1.14\ccset.dll
17:19:00.0791 5916  C:\Program Files (x86)\Norton 360\Engine\6.4.1.14\ccset.dll - ok
17:19:00.0806 5916  [ ED8EC63F7522DF4852147C84EC62C36A ] C:\Windows\SysWOW64\rsaenh.dll
17:19:00.0806 5916  C:\Windows\SysWOW64\rsaenh.dll - ok
17:19:00.0806 5916  [ 1B16D0BD9841794A6E0CDE0CEF744ABC ] C:\Windows\System32\drivers\tcpipreg.sys
17:19:00.0806 5916  C:\Windows\System32\drivers\tcpipreg.sys - ok
17:19:00.0806 5916  [ 8DD52E8E6128F4B2DA92CE27402871C1 ] C:\Windows\System32\wiaservc.dll
17:19:00.0806 5916  C:\Windows\System32\wiaservc.dll - ok
17:19:00.0822 5916  [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] C:\Windows\System32\sysmain.dll
17:19:00.0822 5916  C:\Windows\System32\sysmain.dll - ok
17:19:00.0822 5916  [ 19B07E7E8915D701225DA41CB3877306 ] C:\Windows\System32\wbem\WMIsvc.dll
17:19:00.0822 5916  C:\Windows\System32\wbem\WMIsvc.dll - ok
17:19:00.0822 5916  [ 7DB5AA22A8A8E5C2D335F44853C1F6DE ] C:\Windows\System32\wbemcomn.dll
17:19:00.0822 5916  C:\Windows\System32\wbemcomn.dll - ok
17:19:00.0838 5916  [ 7E47C328FC4768CB8BEAFBCFAFA70362 ] C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
17:19:00.0838 5916  C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE - ok
17:19:00.0838 5916  [ 7E7AFD841694F6AC397E99D75CEAD49D ] C:\Windows\System32\trkwks.dll
17:19:00.0838 5916  C:\Windows\System32\trkwks.dll - ok
17:19:00.0838 5916  [ 0364256B4A2A93A8C8CDA6B3B5A0EFF5 ] C:\Windows\System32\wiatrace.dll
17:19:00.0838 5916  C:\Windows\System32\wiatrace.dll - ok
17:19:00.0853 5916  [ 704314FD398C81D5F342CAA5DF7B7F21 ] C:\Windows\SysWOW64\wbemcomn.dll
17:19:00.0853 5916  C:\Windows\SysWOW64\wbemcomn.dll - ok
17:19:00.0853 5916  [ C5B0324DB461559ADD070E632A6919FA ] C:\Windows\SysWOW64\wbem\wbemprox.dll
17:19:00.0853 5916  C:\Windows\SysWOW64\wbem\wbemprox.dll - ok
17:19:00.0853 5916  [ 0255C22D99602534F15CBB8D9B6F152F ] C:\Windows\System32\wbem\WinMgmtR.dll
17:19:00.0853 5916  C:\Windows\System32\wbem\WinMgmtR.dll - ok
17:19:00.0869 5916  [ 0C52762C606BCF6A377D5E4688191A6B ] C:\Windows\System32\wbem\WmiDcPrv.dll
17:19:00.0869 5916  C:\Windows\System32\wbem\WmiDcPrv.dll - ok
17:19:00.0869 5916  [ A3F5E8EC1316C3E2562B82694A251C9E ] C:\Windows\System32\wbem\fastprox.dll
17:19:00.0869 5916  C:\Windows\System32\wbem\fastprox.dll - ok
17:19:00.0869 5916  [ EE26D130808D16C0E417BBBED0451B34 ] C:\Windows\System32\ntdsapi.dll
17:19:00.0869 5916  C:\Windows\System32\ntdsapi.dll - ok
17:19:00.0884 5916  [ 666A60F6F5E719856FF6254E0966EFF7 ] C:\Windows\System32\wbem\wbemprox.dll
17:19:00.0884 5916  C:\Windows\System32\wbem\wbemprox.dll - ok
17:19:00.0884 5916  [ 5EB55F661DEBF156E126160BCD4D89F8 ] C:\Windows\System32\wbem\wbemcore.dll
17:19:00.0884 5916  C:\Windows\System32\wbem\wbemcore.dll - ok
17:19:00.0900 5916  [ 93812FDC01AA864195816CD814445F95 ] C:\Program Files\Common Files\Microsoft Shared\Windows Live\SQMAPI.DLL
17:19:00.0900 5916  C:\Program Files\Common Files\Microsoft Shared\Windows Live\SQMAPI.DLL - ok
17:19:00.0900 5916  [ B837D1528CE2E3CB79F09496BC08DDC6 ] C:\Windows\System32\SensApi.dll
17:19:00.0900 5916  C:\Windows\System32\SensApi.dll - ok
17:19:00.0900 5916  [ 9689A9C7F7C2A1A423CDA2C3B43FFF65 ] C:\Windows\System32\wer.dll
17:19:00.0900 5916  C:\Windows\System32\wer.dll - ok
17:19:00.0916 5916  [ 7548066DF68A8A1A56B043359F915F37 ] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAANTmon.exe
17:19:00.0916 5916  C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAANTmon.exe - ok
17:19:00.0916 5916  [ D1DE1EAFDE97BE41CF6585027FF3E732 ] C:\Windows\SysWOW64\comdlg32.dll
17:19:00.0916 5916  C:\Windows\SysWOW64\comdlg32.dll - ok
17:19:00.0916 5916  [ 352B3DC62A0D259A82A052238425C872 ] C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2\comctl32.dll
17:19:00.0916 5916  C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2\comctl32.dll - ok

<<<<<<<<<<continued on next post because i get post_too_long exception when I post the entire log >>>>>>>>>>>>>>>>>


Edited by very_confussed, 10 March 2013 - 08:15 PM.


#4 very_confussed

very_confussed
  • Topic Starter

  • Members
  • 9 posts
  • OFFLINE
  •  
  • Local time:10:54 AM

Posted 10 March 2013 - 08:16 PM

<<<<<<<<<<<<<TDSSKiller log continues >>>>>>>>>>>>>>>>>>>>>>>

 

17:19:00.0931 5916 [ 087D8668C71634A3A3761135ABF16EEE ] C:\Windows\System32\wbem\esscli.dll
17:19:00.0931 5916 C:\Windows\System32\wbem\esscli.dll - ok
17:19:00.0931 5916 [ 9E4B0E7472B4CEBA9E17F440B8CB0AB8 ] C:\Windows\SysWOW64\winspool.drv
17:19:00.0931 5916 C:\Windows\SysWOW64\winspool.drv - ok
17:19:00.0947 5916 [ 718B6F51AB7F6FE2988A36868F9AD3AB ] C:\Windows\System32\wbem\wbemsvc.dll
17:19:00.0947 5916 C:\Windows\System32\wbem\wbemsvc.dll - ok
17:19:00.0947 5916 [ 776AE0564F8B1C282E331FD95A1BDC5F ] C:\Windows\SysWOW64\wbem\wbemsvc.dll
17:19:00.0947 5916 C:\Windows\SysWOW64\wbem\wbemsvc.dll - ok
17:19:00.0947 5916 [ 63DCDFFCBB7E41540F4D64CCED66536B ] C:\ProgramData\Microsoft\IdentityCRL\production\ppcrlconfig600.dll
17:19:00.0947 5916 C:\ProgramData\Microsoft\IdentityCRL\production\ppcrlconfig600.dll - ok
17:19:00.0962 5916 [ CFC7D8289D2B5F3CF8D16E2DB7F93D4A ] C:\Windows\SysWOW64\wbem\fastprox.dll
17:19:00.0962 5916 C:\Windows\SysWOW64\wbem\fastprox.dll - ok
17:19:00.0962 5916 [ 0143DB80DACFB7C2B5B7009ED9063353 ] C:\Windows\System32\wbem\wmiutils.dll
17:19:00.0962 5916 C:\Windows\System32\wbem\wmiutils.dll - ok
17:19:00.0962 5916 [ 371948BC5911ABA06168FAC91ED25F06 ] C:\Windows\System32\msxml3.dll
17:19:00.0962 5916 C:\Windows\System32\msxml3.dll - ok
17:19:00.0978 5916 [ 0AB34456654C283DAA13B8D2BA21439B ] C:\Windows\System32\wbem\repdrvfs.dll
17:19:00.0978 5916 C:\Windows\System32\wbem\repdrvfs.dll - ok
17:19:00.0978 5916 [ 210FCACAF902B2CD47CF9FD17D846146 ] C:\Windows\System32\aeevts.dll
17:19:00.0978 5916 C:\Windows\System32\aeevts.dll - ok
17:19:00.0994 5916 [ E3E811471DE781900FF21C1FD84E941E ] C:\Windows\SysWOW64\ntdsapi.dll
17:19:00.0994 5916 C:\Windows\SysWOW64\ntdsapi.dll - ok
17:19:00.0994 5916 [ 984BDAC9F4FC9993CE8D3A7D7DA3E9A5 ] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\ISDI.dll
17:19:00.0994 5916 C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\ISDI.dll - ok
17:19:00.0994 5916 [ 3960CEB4A6B13784252D827ECF65CED3 ] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\ARA\Shell_ARA.dll
17:19:00.0994 5916 C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\ARA\Shell_ARA.dll - ok
17:19:01.0009 5916 [ 08C2957BB30058E663720C5606885653 ] C:\Windows\System32\iphlpsvc.dll
17:19:01.0009 5916 C:\Windows\System32\iphlpsvc.dll - ok
17:19:01.0009 5916 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] C:\Windows\System32\drivers\srv2.sys
17:19:01.0009 5916 C:\Windows\System32\drivers\srv2.sys - ok
17:19:01.0009 5916 [ 70A176BF2ED362862944C371838262F8 ] C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
17:19:01.0009 5916 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE - ok
17:19:01.0025 5916 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] C:\Windows\System32\drivers\srv.sys
17:19:01.0025 5916 C:\Windows\System32\drivers\srv.sys - ok
17:19:01.0025 5916 [ 27B9E163740A226B65E4B9E186117911 ] C:\Windows\System32\sqmapi.dll
17:19:01.0025 5916 C:\Windows\System32\sqmapi.dll - ok
17:19:01.0025 5916 [ 7B38D7916A7CD058C16A0A6CA5077901 ] C:\Windows\System32\wdscore.dll
17:19:01.0040 5916 C:\Windows\System32\wdscore.dll - ok
17:19:01.0040 5916 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] C:\Windows\System32\browser.dll
17:19:01.0040 5916 C:\Windows\System32\browser.dll - ok
17:19:01.0040 5916 [ D9F42719019740BAA6D1C6D536CBDAA6 ] C:\Windows\System32\srvsvc.dll
17:19:01.0040 5916 C:\Windows\System32\srvsvc.dll - ok
17:19:01.0056 5916 [ 3B367397320C26DBA890B260F80D1B1B ] C:\Windows\System32\hnetcfg.dll
17:19:01.0056 5916 C:\Windows\System32\hnetcfg.dll - ok
17:19:01.0056 5916 [ CFEFA40DDE34659BE5211966EAD86437 ] C:\Windows\System32\netmsg.dll
17:19:01.0056 5916 C:\Windows\System32\netmsg.dll - ok
17:19:01.0056 5916 [ 81749E073AC5857B044A686B406E5244 ] C:\Windows\System32\clusapi.dll
17:19:01.0056 5916 C:\Windows\System32\clusapi.dll - ok
17:19:01.0072 5916 [ FF80CAD87555E8E4D2CFD7B9058343F8 ] C:\Windows\System32\sscore.dll
17:19:01.0072 5916 C:\Windows\System32\sscore.dll - ok
17:19:01.0072 5916 [ 344FCC9850C3A8A3B4D3C65151AF8E4C ] C:\Windows\System32\resutils.dll
17:19:01.0072 5916 C:\Windows\System32\resutils.dll - ok
17:19:01.0072 5916 [ 1530DFBDFD68AAD1FD5FDA52EA44925E ] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\CHS\Shell_CHS.dll
17:19:01.0072 5916 C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\CHS\Shell_CHS.dll - ok
17:19:01.0087 5916 [ 0015ACFBBDD164A8A730009908868CA7 ] C:\Windows\System32\winspool.drv
17:19:01.0087 5916 C:\Windows\System32\winspool.drv - ok
17:19:01.0087 5916 [ 28AD5E311996A34025CFB07E131058DD ] C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL
17:19:01.0087 5916 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL - ok
17:19:01.0103 5916 [ 88351B29B622B30962D2FEB6CA8D860B ] C:\Windows\System32\rasadhlp.dll
17:19:01.0103 5916 C:\Windows\System32\rasadhlp.dll - ok
17:19:01.0103 5916 [ 45CFBFA8EDC3DF4E2B7FB0D0260FE051 ] C:\Windows\System32\localspl.dll
17:19:01.0103 5916 C:\Windows\System32\localspl.dll - ok
17:19:01.0103 5916 [ 7FC0F6C8A0CEFBE4E60D8577C6FF8584 ] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\CHT\Shell_CHT.dll
17:19:01.0103 5916 C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\CHT\Shell_CHT.dll - ok
17:19:01.0118 5916 [ EEA7E552C2C992CFD4B50857010F39EA ] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\CSY\Shell_CSY.dll
17:19:01.0118 5916 C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\CSY\Shell_CSY.dll - ok
17:19:01.0118 5916 [ DDD0357A92FA843EFF8915ED17253D6C ] C:\Windows\System32\wbem\WmiPrvSD.dll
17:19:01.0118 5916 C:\Windows\System32\wbem\WmiPrvSD.dll - ok
17:19:01.0118 5916 [ 5E2623439A9936D320FE8DC1AB84526A ] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\DAN\Shell_DAN.dll
17:19:01.0118 5916 C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\DAN\Shell_DAN.dll - ok
17:19:01.0134 5916 [ 8F1656DEB2E861D608909792F5A68C3B ] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\DEU\Shell_DEU.dll
17:19:01.0134 5916 C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\DEU\Shell_DEU.dll - ok
17:19:01.0134 5916 [ D41FEBD098234F02485A4EA98D4730A4 ] C:\Windows\System32\ncobjapi.dll
17:19:01.0134 5916 C:\Windows\System32\ncobjapi.dll - ok
17:19:01.0134 5916 [ 6F40D6FB05E0C1E5402812B426971AF0 ] C:\Windows\System32\wbem\wbemess.dll
17:19:01.0134 5916 C:\Windows\System32\wbem\wbemess.dll - ok
17:19:01.0150 5916 [ 78193AA97D679531522C3E2FA4A5EDFE ] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\ELL\Shell_ELL.dll
17:19:01.0150 5916 C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\ELL\Shell_ELL.dll - ok
17:19:01.0150 5916 [ 619A67C9F617B7E69315BB28ECD5E1DF ] C:\Windows\System32\wbem\WmiPrvSE.exe
17:19:01.0150 5916 C:\Windows\System32\wbem\WmiPrvSE.exe - ok
17:19:01.0165 5916 [ 793A19EAB66BB232F019DFF9D1977A41 ] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\ENU\Shell_ENU.dll
17:19:01.0165 5916 C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\ENU\Shell_ENU.dll - ok
17:19:01.0165 5916 [ BA726152513EC650EED219B7995DE852 ] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\ESP\Shell_ESP.dll
17:19:01.0165 5916 C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\ESP\Shell_ESP.dll - ok
17:19:01.0165 5916 [ 77C8E1779E784189EA29D9A5ECCDD9E9 ] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\FIN\Shell_FIN.dll
17:19:01.0165 5916 C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\FIN\Shell_FIN.dll - ok
17:19:01.0181 5916 [ AFD87B70E2C48EC080CA28ADCC3175B5 ] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\FRA\Shell_FRA.dll
17:19:01.0181 5916 C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\FRA\Shell_FRA.dll - ok
17:19:01.0181 5916 [ 5ECEA5F29DCEE8D320454C86A1CB3366 ] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\HEB\Shell_HEB.dll
17:19:01.0181 5916 C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\HEB\Shell_HEB.dll - ok
17:19:01.0196 5916 [ 6607C2182C6A53ED983813AFE2F85768 ] C:\Windows\System32\wbem\cimwin32.dll
17:19:01.0196 5916 C:\Windows\System32\wbem\cimwin32.dll - ok
17:19:01.0196 5916 [ 18873D2B1ABBB8826ED18F840CB8E0D3 ] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\HUN\Shell_HUN.dll
17:19:01.0196 5916 C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\HUN\Shell_HUN.dll - ok
17:19:01.0196 5916 [ 1484B9EBF567346582DE571B0E164AE0 ] C:\Windows\System32\framedynos.dll
17:19:01.0196 5916 C:\Windows\System32\framedynos.dll - ok
17:19:01.0212 5916 [ 79ECBC83B844F7A474C66BE77AAF7180 ] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\ITA\Shell_ITA.dll
17:19:01.0212 5916 C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\ITA\Shell_ITA.dll - ok
17:19:01.0212 5916 [ 069006BF253F32CD980E67E8671DFE3C ] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\JPN\Shell_JPN.dll
17:19:01.0212 5916 C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\JPN\Shell_JPN.dll - ok
17:19:01.0212 5916 [ 5925F32114BF5ACF50C66500433B35CC ] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\KOR\Shell_KOR.dll
17:19:01.0212 5916 C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\KOR\Shell_KOR.dll - ok
17:19:01.0228 5916 [ 03C7D7A1553E3009CEBE3013A578B0ED ] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\NLD\Shell_NLD.dll
17:19:01.0228 5916 C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\NLD\Shell_NLD.dll - ok
17:19:01.0228 5916 [ 4FFD3E3363EBAC7FC8BBA58EAD594AFF ] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\NOR\Shell_NOR.dll
17:19:01.0228 5916 C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\NOR\Shell_NOR.dll - ok
17:19:01.0243 5916 [ 2499E32320905E68F9710527593A0EDB ] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\PLK\Shell_PLK.dll
17:19:01.0243 5916 C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\PLK\Shell_PLK.dll - ok
17:19:01.0243 5916 [ 591EA8B6991D99720B36EBC1CC16CEA8 ] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\PTB\Shell_PTB.dll
17:19:01.0243 5916 C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\PTB\Shell_PTB.dll - ok
17:19:01.0243 5916 [ A4487F6CEFED12F2C1257F6DBCDAEB1E ] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\PTG\Shell_PTG.dll
17:19:01.0243 5916 C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\PTG\Shell_PTG.dll - ok
17:19:01.0259 5916 [ 35989A505DEEC24DEF8D327D22FF14D4 ] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\RUS\Shell_RUS.dll
17:19:01.0259 5916 C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\RUS\Shell_RUS.dll - ok
17:19:01.0259 5916 [ 9D825B4E6B28F93F326538515EFC880B ] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\SVE\Shell_SVE.dll
17:19:01.0259 5916 C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\SVE\Shell_SVE.dll - ok
17:19:01.0274 5916 [ D9BFF3E59CBE32FE72D6D68F6AF348BD ] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\THA\Shell_THA.dll
17:19:01.0274 5916 C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\THA\Shell_THA.dll - ok
17:19:01.0274 5916 [ E84CB5D899098DDEA6D013057C9E4B5F ] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\TRK\Shell_TRK.dll
17:19:01.0274 5916 C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\TRK\Shell_TRK.dll - ok
17:19:01.0290 5916 [ 15C42334805B711FBF0C788A1D751528 ] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\ENU\PlugInRAID_ENU.dll
17:19:01.0290 5916 C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\ENU\PlugInRAID_ENU.dll - ok
17:19:01.0290 5916 [ 5014D9C982E360176066F30D633D6600 ] C:\Program Files (x86)\AVG\AVG2013\avgwd.dll
17:19:01.0290 5916 C:\Program Files (x86)\AVG\AVG2013\avgwd.dll - ok
17:19:01.0290 5916 [ 3285481F5C12305CA104A6C493CA5A0B ] C:\Windows\System32\spoolss.dll
17:19:01.0290 5916 C:\Windows\System32\spoolss.dll - ok
17:19:01.0290 5916 [ 19E41CCCEE697CC9465396B370929792 ] C:\Windows\System32\FXSMON.dll
17:19:01.0306 5916 C:\Windows\System32\FXSMON.dll - ok
17:19:01.0306 5916 [ 62A0ED06E9FF55EEF51B27EC4839EE0B ] C:\Windows\System32\hpz3lw71.dll
17:19:01.0306 5916 C:\Windows\System32\hpz3lw71.dll - ok
17:19:01.0306 5916 [ C5AC93CF3BA30D367FB49148A2B673B9 ] C:\Windows\System32\PrintIsolationProxy.dll
17:19:01.0306 5916 C:\Windows\System32\PrintIsolationProxy.dll - ok
17:19:01.0321 5916 [ 32A3C8600AF124CBAAD845F13CFAE3CB ] C:\Windows\System32\tcpmon.dll
17:19:01.0321 5916 C:\Windows\System32\tcpmon.dll - ok
17:19:01.0321 5916 [ 93518C6EDE0B61BCBD02BDB02BD05FEE ] C:\Windows\System32\snmpapi.dll
17:19:01.0321 5916 C:\Windows\System32\snmpapi.dll - ok
17:19:01.0321 5916 [ FFF9D00CF16397C64317F213484F94BD ] C:\Windows\System32\wsnmp32.dll
17:19:01.0321 5916 C:\Windows\System32\wsnmp32.dll - ok
17:19:01.0337 5916 [ DF72A9936D0C3F517083119648814B09 ] C:\Windows\System32\usbmon.dll
17:19:01.0337 5916 C:\Windows\System32\usbmon.dll - ok
17:19:01.0337 5916 [ A1D7E3ADCDB07DDB6F423862DCB1A52B ] C:\Windows\System32\WSDMon.dll
17:19:01.0337 5916 C:\Windows\System32\WSDMon.dll - ok
17:19:01.0337 5916 [ 9E30B21B14FB24C383AC255BDFA47E0E ] C:\Program Files (x86)\AVG\AVG2013\avgsecapix.dll
17:19:01.0337 5916 C:\Program Files (x86)\AVG\AVG2013\avgsecapix.dll - ok
17:19:01.0352 5916 [ A5DBC74C5B91CF6E43B73D62936F8186 ] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\PlugInRAID.pin
17:19:01.0352 5916 C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\PlugInRAID.pin - ok
17:19:01.0352 5916 [ 4581716B4BF76ACFD8E167EB0B26D82A ] C:\Windows\System32\fdPnp.dll
17:19:01.0352 5916 C:\Windows\System32\fdPnp.dll - ok
17:19:01.0352 5916 [ 1D626FE2E13C1CE49CA0136CFF214E93 ] C:\Windows\System32\spool\prtprocs\x64\winprint.dll
17:19:01.0352 5916 C:\Windows\System32\spool\prtprocs\x64\winprint.dll - ok
17:19:01.0368 5916 [ 3CEF96890064B3CDB190963157F24BAC ] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\RAIDWizM.dll
17:19:01.0368 5916 C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\RAIDWizM.dll - ok
17:19:01.0368 5916 [ 6FB9BE56891EA4E85B4C9BDD4E9AFA69 ] C:\Windows\System32\spool\prtprocs\x64\hpzppw71.dll
17:19:01.0368 5916 C:\Windows\System32\spool\prtprocs\x64\hpzppw71.dll - ok
17:19:01.0384 5916 [ 8E01332CC4B68BC6B5B7EFFE374442AA ] C:\Windows\SysWOW64\oleacc.dll
17:19:01.0384 5916 C:\Windows\SysWOW64\oleacc.dll - ok
17:19:01.0384 5916 [ 5BFB02BDA2700D078400E149BC4CF87A ] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\RAIDWizD.dll
17:19:01.0384 5916 C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\RAIDWizD.dll - ok
17:19:01.0384 5916 [ 0353B239C28B0E9EBC7FA3D1F6181661 ] C:\Windows\System32\win32spl.dll
17:19:01.0384 5916 C:\Windows\System32\win32spl.dll - ok
17:19:01.0399 5916 [ 491918E4C46ED4CEB6E7A90F7B73924D ] C:\Program Files (x86)\AVG\AVG2013\avgxpl.dll
17:19:01.0399 5916 C:\Program Files (x86)\AVG\AVG2013\avgxpl.dll - ok
17:19:01.0399 5916 [ 3C29B98149A28FEDA42796D3EA904F62 ] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\RAIDWizR.dll
17:19:01.0399 5916 C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\RAIDWizR.dll - ok
17:19:01.0399 5916 [ 38ADD53ECFC5F040EF1C647ECD22A2A4 ] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\RaidWizCnG.dll
17:19:01.0399 5916 C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\RaidWizCnG.dll - ok
17:19:01.0415 5916 [ F0BFA0FE6317B40CD4A3FE5EB6F8C55F ] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\RAIDWizC.dll
17:19:01.0415 5916 C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\RAIDWizC.dll - ok
17:19:01.0415 5916 [ 507D5567A0A4EE86C4B0CE2CE1777025 ] C:\Windows\System32\inetpp.dll
17:19:01.0415 5916 C:\Windows\System32\inetpp.dll - ok
17:19:01.0415 5916 [ 82C089EA2A3EEFADF3588EA71E8BDADA ] C:\Windows\SysWOW64\wevtapi.dll
17:19:01.0415 5916 C:\Windows\SysWOW64\wevtapi.dll - ok
17:19:01.0430 5916 [ 43B02D7C43B77775F1DA63B1D1014F38 ] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\RAIDWizCFE.dll
17:19:01.0430 5916 C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\RAIDWizCFE.dll - ok
17:19:01.0430 5916 [ 5AF1E9600E3FF841E522703A4993ED0C ] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAAnotif.exe
17:19:01.0430 5916 C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAAnotif.exe - ok
17:19:01.0446 5916 [ F67480EE1AC3CB32C63AF86B0AE57AC9 ] C:\Program Files (x86)\AVG\AVG2013\avgwdwsc.dll
17:19:01.0446 5916 C:\Program Files (x86)\AVG\AVG2013\avgwdwsc.dll - ok
17:19:01.0446 5916 [ 1BF0CB861A48FEB1638228760750F3CB ] C:\Windows\System32\cscapi.dll
17:19:01.0446 5916 C:\Windows\System32\cscapi.dll - ok
17:19:01.0446 5916 [ BD9EB3958F213F96B97B1D897DEE006D ] C:\Windows\System32\hidserv.dll
17:19:01.0446 5916 C:\Windows\System32\hidserv.dll - ok
17:19:01.0462 5916 [ BF1FC3F79B863C914687A737C2F3D681 ] C:\Windows\System32\wdi.dll
17:19:01.0462 5916 C:\Windows\System32\wdi.dll - ok
17:19:01.0462 5916 [ A8CDF3768604FF95B54669E20053D569 ] C:\Windows\SysWOW64\wscapi.dll
17:19:01.0462 5916 C:\Windows\SysWOW64\wscapi.dll - ok
17:19:01.0462 5916 [ F7073C962C4FB7C415565DDE109DE49F ] C:\Windows\System32\npmproxy.dll
17:19:01.0462 5916 C:\Windows\System32\npmproxy.dll - ok
17:19:01.0477 5916 [ 4449D23E8F197862F1B16F1E6C89C36C ] C:\Windows\System32\diagperf.dll
17:19:01.0477 5916 C:\Windows\System32\diagperf.dll - ok
17:19:01.0477 5916 [ 93221146D4EBBF314C29B23CD6CC391D ] C:\Windows\System32\wpdbusenum.dll
17:19:01.0477 5916 C:\Windows\System32\wpdbusenum.dll - ok
17:19:01.0493 5916 [ 863F793D15B4026B1A5FDECA873D4D84 ] C:\Windows\SysWOW64\apphelp.dll
17:19:01.0493 5916 C:\Windows\SysWOW64\apphelp.dll - ok
17:19:01.0493 5916 [ BF4AC709BE5BF64F331F5D67773A0C82 ] C:\Windows\System32\perftrack.dll
17:19:01.0493 5916 C:\Windows\System32\perftrack.dll - ok
17:19:01.0493 5916 [ E64D9EC8018C55873B40FDEE9DBEF5B3 ] C:\Windows\System32\PortableDeviceApi.dll
17:19:01.0493 5916 C:\Windows\System32\PortableDeviceApi.dll - ok
17:19:01.0508 5916 [ 2FC6C98A23864B2E50E53B4848939EAF ] C:\Program Files (x86)\AVG\AVG2013\avgnsa.exe
17:19:01.0508 5916 C:\Program Files (x86)\AVG\AVG2013\avgnsa.exe - ok
17:19:01.0508 5916 [ FF0602E28D69B977F889D435F902545E ] C:\Program Files (x86)\AVG\AVG2013\avgemca.exe
17:19:01.0508 5916 C:\Program Files (x86)\AVG\AVG2013\avgemca.exe - ok
17:19:01.0508 5916 [ 8622AE563E2AC2F8BF9FAFEE726FC7B8 ] C:\Program Files (x86)\AVG\AVG2013\avgsched.dll
17:19:01.0508 5916 C:\Program Files (x86)\AVG\AVG2013\avgsched.dll - ok
17:19:01.0524 5916 [ AFA79C343F9D1555F7E5D5FA70BB2A14 ] C:\Windows\System32\PortableDeviceConnectApi.dll
17:19:01.0524 5916 C:\Windows\System32\PortableDeviceConnectApi.dll - ok
17:19:01.0524 5916 [ 6F8E3B7B70E1BBA871212940C1FBDF60 ] C:\Windows\SysWOW64\SensApi.dll
17:19:01.0524 5916 C:\Windows\SysWOW64\SensApi.dll - ok
17:19:01.0524 5916 [ FF9AFBD2864BBEA6A9E7F90F8C94F6B7 ] C:\Program Files (x86)\AVG\AVG2013\avgidpsdkx.dll
17:19:01.0524 5916 C:\Program Files (x86)\AVG\AVG2013\avgidpsdkx.dll - ok
17:19:01.0540 5916 [ 58A0CDABEA255616827B1C22C9994466 ] C:\Windows\System32\NapiNSP.dll
17:19:01.0540 5916 C:\Windows\System32\NapiNSP.dll - ok
17:19:01.0540 5916 [ 613C8CE10A5FDE582BA5FA64C4D56AAA ] C:\Windows\System32\pnrpnsp.dll
17:19:01.0540 5916 C:\Windows\System32\pnrpnsp.dll - ok
17:19:01.0555 5916 [ 2E2072EB48238FCA8FBB7A9F5FABAC45 ] C:\Windows\System32\winrnr.dll
17:19:01.0555 5916 C:\Windows\System32\winrnr.dll - ok
17:19:01.0555 5916 [ E1B22739C933BE33F53DB58C5393ADD3 ] C:\Windows\System32\Apphlpdm.dll
17:19:01.0555 5916 C:\Windows\System32\Apphlpdm.dll - ok
17:19:01.0555 5916 [ 9719E3D834F5C8C43F56A93DFA497023 ] C:\Windows\System32\pnpts.dll
17:19:01.0555 5916 C:\Windows\System32\pnpts.dll - ok
17:19:01.0571 5916 [ E811F8510B133E70CF6E509FB809824F ] C:\Windows\System32\wdiasqmmodule.dll
17:19:01.0571 5916 C:\Windows\System32\wdiasqmmodule.dll - ok
17:19:01.0571 5916 [ 366FD6F3A451351B5DF2D7C4ECF4C73A ] C:\Windows\System32\msvcr100.dll
17:19:01.0571 5916 C:\Windows\System32\msvcr100.dll - ok
17:19:01.0571 5916 [ 76ACCC871C2A021BBC9A8B292244D0EC ] C:\Program Files (x86)\AVG\AVG2013\avgcfga.dll
17:19:01.0571 5916 C:\Program Files (x86)\AVG\AVG2013\avgcfga.dll - ok
17:19:01.0586 5916 [ A9BEAEE40D353F85D213BB46F54EBBED ] C:\Program Files (x86)\AVG\AVG2013\avgkrnlapia.dll
17:19:01.0586 5916 C:\Program Files (x86)\AVG\AVG2013\avgkrnlapia.dll - ok
17:19:01.0586 5916 [ 639774C9ACD063F028F6084ABF5593AD ] C:\Windows\System32\taskhost.exe
17:19:01.0586 5916 C:\Windows\System32\taskhost.exe - ok
17:19:01.0586 5916 [ 2DF29664ED261F0FC448E58F338F0671 ] C:\Windows\System32\mprapi.dll
17:19:01.0602 5916 C:\Windows\System32\mprapi.dll - ok
17:19:01.0602 5916 [ 79AFFC7FEEA9CD2FEFEA5EF3B631A02C ] C:\Windows\System32\ndiscapCfg.dll
17:19:01.0602 5916 C:\Windows\System32\ndiscapCfg.dll - ok
17:19:01.0602 5916 [ 3D6AF45673C4B31CDECD7F80AF09D443 ] C:\Windows\System32\rascfg.dll
17:19:01.0602 5916 C:\Windows\System32\rascfg.dll - ok
17:19:01.0618 5916 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] C:\Windows\System32\IPSECSVC.DLL
17:19:01.0618 5916 C:\Windows\System32\IPSECSVC.DLL - ok
17:19:01.0618 5916 [ 1CF21800E337F4039AAD4C94B4280EE4 ] C:\Windows\System32\mprmsg.dll
17:19:01.0618 5916 C:\Windows\System32\mprmsg.dll - ok
17:19:01.0618 5916 [ 55DE45B116711881C852D2841E4C84DD ] C:\Windows\System32\tcpipcfg.dll
17:19:01.0618 5916 C:\Windows\System32\tcpipcfg.dll - ok
17:19:01.0633 5916 [ 9BC93C9ACFA34DB5A41B89357B31E4ED ] C:\Windows\System32\FwRemoteSvr.dll
17:19:01.0633 5916 C:\Windows\System32\FwRemoteSvr.dll - ok
17:19:01.0633 5916 [ 8964E7F65751FEC4185285E3329EADE6 ] C:\Program Files (x86)\AVG\AVG2013\avgsecapia.dll
17:19:01.0633 5916 C:\Program Files (x86)\AVG\AVG2013\avgsecapia.dll - ok
17:19:01.0633 5916 [ E629F1A051C82795DDFFD3E8D4855811 ] C:\Windows\System32\dimsjob.dll
17:19:01.0633 5916 C:\Windows\System32\dimsjob.dll - ok
17:19:01.0649 5916 [ 94DFBB481BF51158B216E23C5C1C9D6E ] C:\Windows\System32\certcli.dll
17:19:01.0649 5916 C:\Windows\System32\certcli.dll - ok
17:19:01.0649 5916 [ 35CB97CBC3EDC463418ED4997AAB29B6 ] C:\Windows\System32\pautoenr.dll
17:19:01.0649 5916 C:\Windows\System32\pautoenr.dll - ok
17:19:01.0649 5916 [ 263B26106606A010CF877472B535E4BB ] C:\Windows\System32\CertEnroll.dll
17:19:01.0649 5916 C:\Windows\System32\CertEnroll.dll - ok
17:19:01.0664 5916 [ FEB91B4DA0D540865260A33838654FA3 ] C:\Windows\System32\nci.dll
17:19:01.0664 5916 C:\Windows\System32\nci.dll - ok
17:19:01.0664 5916 [ AC0C9CEA1218DAB1994AF8B28E680BD9 ] C:\Windows\System32\wlaninst.dll
17:19:01.0664 5916 C:\Windows\System32\wlaninst.dll - ok
17:19:01.0664 5916 [ 5A406C9C8E0880D3EABADC5DFD1ACDAE ] C:\Windows\System32\wwaninst.dll
17:19:01.0664 5916 C:\Windows\System32\wwaninst.dll - ok
17:19:01.0680 5916 [ 198803E5E93E29967DFB0BCFD0186151 ] C:\Windows\System32\spfileq.dll
17:19:01.0680 5916 C:\Windows\System32\spfileq.dll - ok
17:19:01.0680 5916 [ 7EC788D53F6F43061A9BFB70D745CCBC ] C:\Program Files (x86)\AVG\AVG2013\avgxpla.dll
17:19:01.0680 5916 C:\Program Files (x86)\AVG\AVG2013\avgxpla.dll - ok
17:19:01.0696 5916 [ D029339C0F59CF662094EDDF8C42B2B5 ] C:\Windows\System32\msvcp100.dll
17:19:01.0696 5916 C:\Windows\System32\msvcp100.dll - ok
17:19:01.0696 5916 [ 7E87637EECBACBB11BBA1124B805A747 ] C:\Program Files (x86)\AVG\AVG2013\avgopenssla.dll
17:19:01.0696 5916 C:\Program Files (x86)\AVG\AVG2013\avgopenssla.dll - ok
17:19:01.0696 5916 [ 73E8667A19FEEDD856DF2695E9E511D4 ] C:\Windows\SysWOW64\wship6.dll
17:19:01.0696 5916 C:\Windows\SysWOW64\wship6.dll - ok
17:19:01.0711 5916 [ 9D4A1690AF93F233E15380398BEC7431 ] C:\Program Files (x86)\Common Files\microsoft shared\Windows Live\WLIDNSP.DLL
17:19:01.0711 5916 C:\Program Files (x86)\Common Files\microsoft shared\Windows Live\WLIDNSP.DLL - ok
17:19:01.0711 5916 [ B40420876B9288E0A1C8CCA8A84E5DC9 ] C:\Windows\SysWOW64\dnsapi.dll
17:19:01.0711 5916 C:\Windows\SysWOW64\dnsapi.dll - ok
17:19:01.0711 5916 [ ED6EE83D61EBC683C2CD8E899EA6FEBE ] C:\Windows\SysWOW64\rasadhlp.dll
17:19:01.0711 5916 C:\Windows\SysWOW64\rasadhlp.dll - ok
17:19:01.0727 5916 [ 03A03A453F1AAAE0C73AAAF895321C7A ] C:\Windows\SysWOW64\FWPUCLNT.DLL
17:19:01.0727 5916 C:\Windows\SysWOW64\FWPUCLNT.DLL - ok
17:19:01.0727 5916 [ 522B0466ED967A0762E9AF5B37D8F40A ] C:\Windows\System32\esent.dll
17:19:01.0727 5916 C:\Windows\System32\esent.dll - ok
17:19:01.0727 5916 [ 220159496484D34009DE71CA1A68E0D4 ] C:\Windows\System32\wbem\NCProv.dll
17:19:01.0727 5916 C:\Windows\System32\wbem\NCProv.dll - ok
17:19:01.0742 5916 [ BFFDCC9754CFBE68477D1CCAA7728536 ] C:\Program Files (x86)\Norton 360\Engine\6.4.1.14\coSvcPlg.dll
17:19:01.0742 5916 C:\Program Files (x86)\Norton 360\Engine\6.4.1.14\coSvcPlg.dll - ok
17:19:01.0742 5916 [ CA9F7888B524D8100B977C81F44C3234 ] C:\Windows\SysWOW64\winhttp.dll
17:19:01.0742 5916 C:\Windows\SysWOW64\winhttp.dll - ok
17:19:01.0758 5916 [ FB19FC5951A88F3C523E35C2C98D23C0 ] C:\Windows\SysWOW64\webio.dll
17:19:01.0758 5916 C:\Windows\SysWOW64\webio.dll - ok
17:19:01.0758 5916 [ 3A9738A0C71A9A5098356BD3AA46D0BD ] C:\Program Files (x86)\Norton 360\Engine\6.4.1.14\ccgevt.dll
17:19:01.0758 5916 C:\Program Files (x86)\Norton 360\Engine\6.4.1.14\ccgevt.dll - ok
17:19:01.0758 5916 [ 564B9FE047BEA0A2A592093C1DBF15C0 ] C:\Program Files (x86)\Norton 360\Engine\6.4.1.14\coFFPlgn.dll
17:19:01.0758 5916 C:\Program Files (x86)\Norton 360\Engine\6.4.1.14\coFFPlgn.dll - ok
17:19:01.0774 5916 [ E036AA5E1F4A94C2D7058192DA0514BA ] C:\Program Files (x86)\Norton 360\Engine\6.4.1.14\ccglog.dll
17:19:01.0774 5916 C:\Program Files (x86)\Norton 360\Engine\6.4.1.14\ccglog.dll - ok
17:19:01.0774 5916 [ 12C45E3CB6D65F73209549E2D02ECA7A ] C:\Windows\SysWOW64\propsys.dll
17:19:01.0774 5916 C:\Windows\SysWOW64\propsys.dll - ok
17:19:01.0774 5916 [ D2958325C1AE1AE37A83334C6229E3BC ] C:\Windows\SysWOW64\actxprxy.dll
17:19:01.0774 5916 C:\Windows\SysWOW64\actxprxy.dll - ok
17:19:01.0789 5916 [ 93ED9FF632CEE1D181CD89BB67256C92 ] C:\Program Files (x86)\Norton 360\Engine\6.4.1.14\ccjobmgr.dll
17:19:01.0789 5916 C:\Program Files (x86)\Norton 360\Engine\6.4.1.14\ccjobmgr.dll - ok
17:19:01.0789 5916 [ A9E790F2C9B5F22EC9E9BE7855B9BFFC ] C:\Program Files (x86)\Norton 360\Engine\6.4.1.14\ccsubeng.dll
17:19:01.0789 5916 C:\Program Files (x86)\Norton 360\Engine\6.4.1.14\ccsubeng.dll - ok
17:19:01.0805 5916 [ 08DFDBD2FD4EA951DC46B1C7661ED35A ] C:\Windows\SysWOW64\powrprof.dll
17:19:01.0805 5916 C:\Windows\SysWOW64\powrprof.dll - ok
17:19:01.0805 5916 [ 03F3B770DFBED6131653CEDA8CA780F0 ] C:\Windows\SysWOW64\ntshrui.dll
17:19:01.0805 5916 C:\Windows\SysWOW64\ntshrui.dll - ok
17:19:01.0805 5916 [ 3662262608ADC5DEA6FD9F5AC465528D ] C:\Program Files (x86)\Norton 360\Engine\6.4.1.14\ccemlpxy.dll
17:19:01.0805 5916 C:\Program Files (x86)\Norton 360\Engine\6.4.1.14\ccemlpxy.dll - ok
17:19:01.0820 5916 [ 5CCDCD40E732D54E0F7451AC66AC1C87 ] C:\Windows\SysWOW64\srvcli.dll
17:19:01.0820 5916 C:\Windows\SysWOW64\srvcli.dll - ok
17:19:01.0820 5916 [ 465BEA35F7ED4A4A57686DEA7EA10F47 ] C:\Windows\SysWOW64\cscapi.dll
17:19:01.0820 5916 C:\Windows\SysWOW64\cscapi.dll - ok
17:19:01.0820 5916 [ 8B74CEC6980D4816B0037AE9A27E538F ] C:\Windows\SysWOW64\slc.dll
17:19:01.0820 5916 C:\Windows\SysWOW64\slc.dll - ok
17:19:01.0836 5916 [ 99056A9FF85141B3337C5D392DD9EBA7 ] C:\Program Files (x86)\Norton 360\Engine\6.4.1.14\iron.dll
17:19:01.0836 5916 C:\Program Files (x86)\Norton 360\Engine\6.4.1.14\iron.dll - ok
17:19:01.0836 5916 [ 7EABAA542A7DA553552128F595DDA08E ] C:\Program Files (x86)\Norton 360\Engine\6.4.1.14\sndsvc.dll
17:19:01.0836 5916 C:\Program Files (x86)\Norton 360\Engine\6.4.1.14\sndsvc.dll - ok
17:19:01.0836 5916 [ 2CFE545ABAFCE9AB0C375DC05CE831C7 ] C:\Program Files (x86)\Norton 360\Engine\6.4.1.14\symredir.dll
17:19:01.0836 5916 C:\Program Files (x86)\Norton 360\Engine\6.4.1.14\symredir.dll - ok
17:19:01.0852 5916 [ 839F96DBAAFD3353E0B248A5E0BD2A51 ] C:\Windows\SysWOW64\rasapi32.dll
17:19:01.0852 5916 C:\Windows\SysWOW64\rasapi32.dll - ok
17:19:01.0852 5916 [ FFA7172354B9256DBB2CDD75F16F33FE ] C:\Windows\SysWOW64\rasman.dll
17:19:01.0852 5916 C:\Windows\SysWOW64\rasman.dll - ok
17:19:01.0867 5916 [ 7601A29152ED8EDF2478DEBF5CDD89B6 ] C:\Program Files (x86)\Norton 360\Engine\6.4.1.14\symrdrsv.dll
17:19:01.0867 5916 C:\Program Files (x86)\Norton 360\Engine\6.4.1.14\symrdrsv.dll - ok
17:19:01.0867 5916 [ E0B340996A41C9A75DFA3B99BBA9C500 ] C:\Windows\System32\SearchIndexer.exe
17:19:01.0867 5916 C:\Windows\System32\SearchIndexer.exe - ok
17:19:01.0867 5916 [ 81F6C1AE23B1C493D9E996C3103915D7 ] C:\Windows\SysWOW64\dhcpcsvc6.dll
17:19:01.0867 5916 C:\Windows\SysWOW64\dhcpcsvc6.dll - ok
17:19:01.0883 5916 [ 2DCB2CC8A1D1074E5D42D36FA6B7EB20 ] C:\Program Files (x86)\Norton 360\Engine\6.4.1.14\hncore.dll
17:19:01.0883 5916 C:\Program Files (x86)\Norton 360\Engine\6.4.1.14\hncore.dll - ok
17:19:01.0883 5916 [ 589DF683A6C81424A6CECE52ABF98A50 ] C:\Windows\System32\tquery.dll
17:19:01.0883 5916 C:\Windows\System32\tquery.dll - ok
17:19:01.0883 5916 [ 9A85ABCE0FDD1AF8E79E731EB0B679F3 ] C:\Windows\SysWOW64\dhcpcsvc.dll
17:19:01.0883 5916 C:\Windows\SysWOW64\dhcpcsvc.dll - ok
17:19:01.0898 5916 [ 7568CC720ACE4D03B84AF97817E745EF ] C:\Windows\System32\mssrch.dll
17:19:01.0898 5916 C:\Windows\System32\mssrch.dll - ok
17:19:01.0898 5916 [ C50D0F17B5A01E8805EEFD5DA9CF9FA2 ] C:\Program Files (x86)\Norton 360\Engine\6.4.1.14\appmgr32.dll
17:19:01.0898 5916 C:\Program Files (x86)\Norton 360\Engine\6.4.1.14\appmgr32.dll - ok
17:19:01.0914 5916 [ 0915C4DB6DBC3BB9E11B7ECBBE4B7159 ] C:\Windows\SysWOW64\rtutils.dll
17:19:01.0914 5916 C:\Windows\SysWOW64\rtutils.dll - ok
17:19:01.0914 5916 [ FF6B44E0BD9C3941A9D7764839100AC6 ] C:\Program Files (x86)\Norton 360\Engine\6.4.1.14\symneti.dll
17:19:01.0914 5916 C:\Program Files (x86)\Norton 360\Engine\6.4.1.14\symneti.dll - ok
17:19:01.0914 5916 [ 05A3E083332D3ABE33E499A6DC3E7FFB ] C:\Program Files (x86)\Norton 360\Engine\6.4.1.14\isdatapr.dll
17:19:01.0914 5916 C:\Program Files (x86)\Norton 360\Engine\6.4.1.14\isdatapr.dll - ok
17:19:01.0930 5916 [ 3121A79D13A61562BE9CC902CD46B542 ] C:\Windows\System32\msidle.dll
17:19:01.0930 5916 C:\Windows\System32\msidle.dll - ok
17:19:01.0930 5916 [ 797A3566CDAE5E9CEE6DB0041305DB46 ] C:\Program Files (x86)\Norton 360\Engine\6.4.1.14\avmodule.dll
17:19:01.0930 5916 C:\Program Files (x86)\Norton 360\Engine\6.4.1.14\avmodule.dll - ok
17:19:01.0930 5916 [ ACE1BB07E0377E37A2C514CD2EC119B1 ] C:\Windows\System32\mssprxy.dll
17:19:01.0930 5916 C:\Windows\System32\mssprxy.dll - ok
17:19:01.0945 5916 [ 1CBF15FDB0310345A68972EB5C5B948F ] C:\Windows\SysWOW64\mssprxy.dll
17:19:01.0945 5916 C:\Windows\SysWOW64\mssprxy.dll - ok
17:19:01.0945 5916 [ 10280E90B16CD866364D155C88AF08DB ] C:\Program Files (x86)\Norton 360\Engine\6.4.1.14\ncw.dll
17:19:01.0945 5916 C:\Program Files (x86)\Norton 360\Engine\6.4.1.14\ncw.dll - ok
17:19:01.0961 5916 [ C9FB9038B15036CA28CF0B4BE2BED9BD ] C:\Windows\System32\en-US\tquery.dll.mui
17:19:01.0961 5916 C:\Windows\System32\en-US\tquery.dll.mui - ok
17:19:01.0961 5916 [ 4B78B431F225FD8624C5655CB1DE7B61 ] C:\Windows\System32\aelupsvc.dll
17:19:01.0961 5916 C:\Windows\System32\aelupsvc.dll - ok
17:19:01.0961 5916 [ B9A8CBCFCD3EC9D2EA4740AF347BF108 ] C:\Windows\SysWOW64\mpr.dll
17:19:01.0961 5916 C:\Windows\SysWOW64\mpr.dll - ok
17:19:01.0976 5916 [ 613B277AB5C75287DACBA35AA7EE4BC8 ] C:\Program Files (x86)\Norton 360\Engine\6.4.1.14\defutdcd.dll
17:19:01.0976 5916 C:\Program Files (x86)\Norton 360\Engine\6.4.1.14\defutdcd.dll - ok
17:19:01.0976 5916 [ 38B13C0DF479DBA23ECFA815159BA86E ] C:\Windows\SysWOW64\ktmw32.dll
17:19:01.0976 5916 C:\Windows\SysWOW64\ktmw32.dll - ok
17:19:01.0976 5916 [ C44354E5074D69B0A7FF50964CB3BD18 ] C:\Program Files (x86)\Norton 360\Engine\6.4.1.14\ducclib.dll
17:19:01.0976 5916 C:\Program Files (x86)\Norton 360\Engine\6.4.1.14\ducclib.dll - ok
17:19:01.0992 5916 [ 83E5B8B86E6FDD48A60954A193F1B440 ] C:\Program Files (x86)\Norton 360\Engine\6.4.1.14\cltpe.dll
17:19:01.0992 5916 C:\Program Files (x86)\Norton 360\Engine\6.4.1.14\cltpe.dll - ok
17:19:01.0992 5916 [ 876AFFC7ED37A39109E85E32947ABBF7 ] C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_6.2.0.9\Definitions\VirusDefs\20130309.003\NAVENG32.DLL
17:19:01.0992 5916 C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_6.2.0.9\Definitions\VirusDefs\20130309.003\NAVENG32.DLL - ok
17:19:02.0008 5916 [ B135B7BAD6A9C8318B5C9B88692638D8 ] C:\Program Files (x86)\Norton 360\Engine\6.4.1.14\avpsvc32.dll
17:19:02.0008 5916 C:\Program Files (x86)\Norton 360\Engine\6.4.1.14\avpsvc32.dll - ok
17:19:02.0008 5916 [ 891793E00432FA055CF040605C260E49 ] C:\Windows\System32\drivers\N360x64\0604010.00E\srtsp64.sys
17:19:02.0008 5916 C:\Windows\System32\drivers\N360x64\0604010.00E\srtsp64.sys - ok
17:19:02.0008 5916 [ 468D9C5404D6202DC7A5D96B8480929B ] C:\Program Files (x86)\Norton 360\Engine\6.4.1.14\sqsvc.dll
17:19:02.0008 5916 C:\Program Files (x86)\Norton 360\Engine\6.4.1.14\sqsvc.dll - ok
17:19:02.0023 5916 [ 162D247E995EAEBF3EF4289069E1111C ] C:\Windows\SysWOW64\devrtl.dll
17:19:02.0023 5916 C:\Windows\SysWOW64\devrtl.dll - ok
17:19:02.0023 5916 [ EAB1BB965DF56129A786078FC68A8B92 ] C:\Program Files (x86)\Norton 360\Engine\6.4.1.14\avifc.dll
17:19:02.0023 5916 C:\Program Files (x86)\Norton 360\Engine\6.4.1.14\avifc.dll - ok
17:19:02.0039 5916 [ D3654637A382BFD0E1ACED5CDF90CFDA ] C:\Program Files (x86)\Norton 360\Engine\6.4.1.14\qsplugin.dll
17:19:02.0039 5916 C:\Program Files (x86)\Norton 360\Engine\6.4.1.14\qsplugin.dll - ok
17:19:02.0039 5916 [ A46D72A18E4B34BDA2832AA445F7C058 ] C:\Program Files (x86)\Norton 360\Engine\6.4.1.14\cltlms.dll
17:19:02.0039 5916 C:\Program Files (x86)\Norton 360\Engine\6.4.1.14\cltlms.dll - ok
17:19:02.0039 5916 [ D2A545DA3A90BBFA40E020C23F1B7A48 ] C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_6.2.0.9\Definitions\VirusDefs\20130309.003\ex64.sys
17:19:02.0039 5916 C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_6.2.0.9\Definitions\VirusDefs\20130309.003\ex64.sys - ok
17:19:02.0054 5916 [ 1F761DA08B1855DDBDD97204D69B48DD ] C:\Program Files (x86)\Norton 360\Engine\6.4.1.14\bhsvcplg.dll
17:19:02.0054 5916 C:\Program Files (x86)\Norton 360\Engine\6.4.1.14\bhsvcplg.dll - ok
17:19:02.0054 5916 [ 88A2F45CE66B904285978D6BB13AFEB2 ] C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_6.2.0.9\Definitions\VirusDefs\20130309.003\eng64.sys
17:19:02.0054 5916 C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_6.2.0.9\Definitions\VirusDefs\20130309.003\eng64.sys - ok
17:19:02.0054 5916 [ F54D31CAD1AF8B0A0CC23DB15E7ECA26 ] C:\Program Files (x86)\Norton 360\Engine\6.4.1.14\busvc.dll
17:19:02.0070 5916 C:\Program Files (x86)\Norton 360\Engine\6.4.1.14\busvc.dll - ok
17:19:02.0070 5916 [ F3ECB50D9A21D4FE89F1A906F7E431F7 ] C:\Program Files (x86)\Norton 360\Engine\6.4.1.14\bucomm.dll
17:19:02.0070 5916 C:\Program Files (x86)\Norton 360\Engine\6.4.1.14\bucomm.dll - ok
17:19:02.0070 5916 [ 43488AA694AD2A1E5BDC3A0BD1034283 ] C:\Program Files (x86)\Norton 360\Engine\6.4.1.14\bueng.dll
17:19:02.0070 5916 C:\Program Files (x86)\Norton 360\Engine\6.4.1.14\bueng.dll - ok
17:19:02.0086 5916 [ 5E0C5B5BE5304E133968D6D6F8840B28 ] C:\Program Files (x86)\Norton 360\Engine\6.4.1.14\dscli.dll
17:19:02.0086 5916 C:\Program Files (x86)\Norton 360\Engine\6.4.1.14\dscli.dll - ok
17:19:02.0086 5916 [ F05B007A7FD7CA2ADE80A8A16D9F4A48 ] C:\Program Files (x86)\Norton 360\Engine\6.4.1.14\tudatapr.dll
17:19:02.0086 5916 C:\Program Files (x86)\Norton 360\Engine\6.4.1.14\tudatapr.dll - ok
17:19:02.0086 5916 [ CA591BB0B28C777065D8A16B7057FCF8 ] C:\Program Files (x86)\Norton 360\Engine\6.4.1.14\spocclnt.dll
17:19:02.0086 5916 C:\Program Files (x86)\Norton 360\Engine\6.4.1.14\spocclnt.dll - ok
17:19:02.0101 5916 [ 14D289F63D9538306CB560C4CD12172F ] C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_6.2.0.9\Definitions\IPSDefs\20130308.001\IDSxpx86.dll
17:19:02.0101 5916 C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_6.2.0.9\Definitions\IPSDefs\20130308.001\IDSxpx86.dll - ok
17:19:02.0101 5916 [ E01B313466464F9FF0EE76D171EAB624 ] C:\Program Files (x86)\Norton 360\Engine\6.4.1.14\codatapr.dll
17:19:02.0101 5916 C:\Program Files (x86)\Norton 360\Engine\6.4.1.14\codatapr.dll - ok
17:19:02.0117 5916 [ 5BDC853E9DB4641700E6480213538B9F ] C:\Program Files (x86)\Norton 360\Engine\6.4.1.14\coshdobj.dll
17:19:02.0117 5916 C:\Program Files (x86)\Norton 360\Engine\6.4.1.14\coshdobj.dll - ok
17:19:02.0117 5916 [ D7D805E56B7F1C74907A0D5A98B99641 ] C:\Program Files (x86)\Norton 360\Engine\6.4.1.14\budatacl.dll
17:19:02.0117 5916 C:\Program Files (x86)\Norton 360\Engine\6.4.1.14\budatacl.dll - ok
17:19:02.0117 5916 [ BF6D6ED5FADCEEE885BD0144ECF1BA27 ] C:\Windows\SysWOW64\ncrypt.dll
17:19:02.0117 5916 C:\Windows\SysWOW64\ncrypt.dll - ok
17:19:02.0132 5916 [ CE71B9119A258EDD0A05B37D7B0F92E3 ] C:\Windows\SysWOW64\bcrypt.dll
17:19:02.0132 5916 C:\Windows\SysWOW64\bcrypt.dll - ok
17:19:02.0132 5916 [ 1A2DD785FFC2BE5C1E6CB8340FC73C17 ] C:\Program Files (x86)\Norton 360\Engine\6.4.1.14\buprov.dll
17:19:02.0132 5916 C:\Program Files (x86)\Norton 360\Engine\6.4.1.14\buprov.dll - ok
17:19:02.0148 5916 [ 091F15B5D2A722650D6E621BD3C6B96A ] C:\Program Files (x86)\Norton 360\Engine\6.4.1.14\gwrks32.dll
17:19:02.0148 5916 C:\Program Files (x86)\Norton 360\Engine\6.4.1.14\gwrks32.dll - ok
17:19:02.0148 5916 [ C6AC1B68D6A9F982D6765872B25B894C ] C:\Program Files (x86)\Norton 360\Engine\6.4.1.14\gearaw32.dll
17:19:02.0148 5916 C:\Program Files (x86)\Norton 360\Engine\6.4.1.14\gearaw32.dll - ok
17:19:02.0148 5916 [ E8449FE262D7406BCB2AC2A45C53EC5F ] C:\Windows\SysWOW64\bcryptprimitives.dll
17:19:02.0148 5916 C:\Windows\SysWOW64\bcryptprimitives.dll - ok
17:19:02.0164 5916 [ 53726EBA2B0D9DD215CCE7B8923D73BF ] C:\Program Files (x86)\Norton 360\Engine\6.4.1.14\datastor.dll
17:19:02.0164 5916 C:\Program Files (x86)\Norton 360\Engine\6.4.1.14\datastor.dll - ok
17:19:02.0164 5916 [ 4C230E31630087B78D061D29A43E6D11 ] C:\Program Files (x86)\Norton 360\Engine\6.4.1.14\comm.dll
17:19:02.0164 5916 C:\Program Files (x86)\Norton 360\Engine\6.4.1.14\comm.dll - ok
17:19:02.0164 5916 [ 2FCA0D2C59A855C54BAFA22AA329DF0F ] C:\Windows\SysWOW64\netapi32.dll
17:19:02.0164 5916 C:\Windows\SysWOW64\netapi32.dll - ok
17:19:02.0179 5916 [ 20B3934DB73EABA2B49B7177873CB81F ] C:\Windows\SysWOW64\netutils.dll
17:19:02.0179 5916 C:\Windows\SysWOW64\netutils.dll - ok
17:19:02.0179 5916 [ E5A4A1326A02F8E7B59E6C3270CE7202 ] C:\Windows\SysWOW64\wkscli.dll
17:19:02.0179 5916 C:\Windows\SysWOW64\wkscli.dll - ok
17:19:02.0179 5916 [ 68ECCA523ED760AAFC03C5D587569859 ] C:\Windows\SysWOW64\samcli.dll
17:19:02.0179 5916 C:\Windows\SysWOW64\samcli.dll - ok
17:19:02.0195 5916 [ F7DC4705A1B1D14FF9582D373AF080BA ] C:\Program Files (x86)\Norton 360\Engine\6.4.1.14\sqlite.dll
17:19:02.0195 5916 C:\Program Files (x86)\Norton 360\Engine\6.4.1.14\sqlite.dll - ok
17:19:02.0195 5916 [ 10729D2D308C5AA804ECE537B49C16AD ] C:\Program Files (x86)\Norton 360\Engine\6.4.1.14\userlog.dll
17:19:02.0195 5916 C:\Program Files (x86)\Norton 360\Engine\6.4.1.14\userlog.dll - ok
17:19:02.0195 5916 [ D750EA29EB42573062C3F115C4884942 ] C:\Program Files (x86)\Norton 360\Engine\6.4.1.14\ipsplug.dll
17:19:02.0195 5916 C:\Program Files (x86)\Norton 360\Engine\6.4.1.14\ipsplug.dll - ok
17:19:02.0210 5916 [ F38E7CC2C76A78F31B1EE2559EDD35A9 ] C:\Program Files (x86)\Norton 360\Engine\6.4.1.14\isdatasv.dll
17:19:02.0210 5916 C:\Program Files (x86)\Norton 360\Engine\6.4.1.14\isdatasv.dll - ok
17:19:02.0210 5916 [ 8718831F001A4C4F8ADD98833C2B1211 ] C:\Program Files (x86)\Norton 360\Engine\6.4.1.14\proxyclt.dll
17:19:02.0210 5916 C:\Program Files (x86)\Norton 360\Engine\6.4.1.14\proxyclt.dll - ok
17:19:02.0226 5916 [ 1C508276096E4C2D1684E475CE33EF82 ] C:\Program Files (x86)\Norton 360\Engine\6.4.1.14\fwcore.dll
17:19:02.0226 5916 C:\Program Files (x86)\Norton 360\Engine\6.4.1.14\fwcore.dll - ok
17:19:02.0226 5916 [ 4E5FE39C1076D115EC8BFCFE14D75B80 ] C:\Windows\SysWOW64\credssp.dll
17:19:02.0226 5916 C:\Windows\SysWOW64\credssp.dll - ok
17:19:02.0226 5916 [ BC0ED1BD94343BD7AC2E259576BFBCF8 ] C:\Program Files (x86)\Norton 360\Engine\6.4.1.14\fwgenplg.dll
17:19:02.0226 5916 C:\Program Files (x86)\Norton 360\Engine\6.4.1.14\fwgenplg.dll - ok
17:19:02.0242 5916 [ 698667E69CF976A70A82AA2F0B1C37E0 ] C:\Program Files (x86)\Norton 360\Engine\6.4.1.14\fwsetup.dll
17:19:02.0242 5916 C:\Program Files (x86)\Norton 360\Engine\6.4.1.14\fwsetup.dll - ok
17:19:02.0242 5916 [ 3F50200237961034FACE602373838980 ] C:\Windows\SysWOW64\FirewallAPI.dll
17:19:02.0242 5916 C:\Windows\SysWOW64\FirewallAPI.dll - ok
17:19:02.0242 5916 [ BF1BE2625743A3B02D829572FA810C79 ] C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_6.2.0.9\Definitions\BASHDefs\20130301.001\BHEngine.dll
17:19:02.0242 5916 C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_6.2.0.9\Definitions\BASHDefs\20130301.001\BHEngine.dll - ok
17:19:02.0257 5916 [ D0C0C17E2A31C33FA495D3AB8A0D5BB2 ] C:\Program Files (x86)\Norton 360\Engine\6.4.1.14\bhclient.dll
17:19:02.0288 5916 C:\Program Files (x86)\Norton 360\Engine\6.4.1.14\bhclient.dll - ok
17:19:02.0288 5916 [ 64975EB94BE6B314694C1F550D5DA3AD ] C:\Program Files (x86)\Norton 360\Engine\6.4.1.14\idsaux.dll
17:19:02.0288 5916 C:\Program Files (x86)\Norton 360\Engine\6.4.1.14\idsaux.dll - ok
17:19:02.0304 5916 [ 00CDFA8461780E8A42EED36D92B1B58B ] C:\Program Files (x86)\Norton 360\Engine\6.4.1.14\ispwd.dll
17:19:02.0304 5916 C:\Program Files (x86)\Norton 360\Engine\6.4.1.14\ispwd.dll - ok
17:19:02.0304 5916 [ 8C6B3E7CE7FA66EBD40549AEEBB51B8B ] C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_6.2.0.9\Definitions\IPSDefs\20130308.001\IPSFFPl.dll
17:19:02.0304 5916 C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_6.2.0.9\Definitions\IPSDefs\20130308.001\IPSFFPl.dll - ok
17:19:02.0304 5916 [ B010CF886420EE29C2C276646721D255 ] C:\Windows\SysWOW64\wlanapi.dll
17:19:02.0304 5916 C:\Windows\SysWOW64\wlanapi.dll - ok
17:19:02.0320 5916 [ 1D6A771D1D702AE07919DB52C889A249 ] C:\Windows\SysWOW64\wlanutil.dll
17:19:02.0320 5916 C:\Windows\SysWOW64\wlanutil.dll - ok
17:19:02.0320 5916 [ 8C6B3E7CE7FA66EBD40549AEEBB51B8B ] C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_6.2.0.9\IPSFFPlgn\components\IPSFFPl.dll
17:19:02.0320 5916 C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_6.2.0.9\IPSFFPlgn\components\IPSFFPl.dll - ok
17:19:02.0320 5916 [ 81F08948A0F1475894C99D4D19A158A8 ] C:\Windows\SysWOW64\wshqos.dll
17:19:02.0320 5916 C:\Windows\SysWOW64\wshqos.dll - ok
17:19:02.0335 5916 [ 30979CDC8F0DA5E4AF4127A24870DCAC ] C:\Program Files (x86)\Norton 360\Engine\6.4.1.14\avmail.dll
17:19:02.0335 5916 C:\Program Files (x86)\Norton 360\Engine\6.4.1.14\avmail.dll - ok
17:19:02.0335 5916 [ FD32EA9505B4C74A0882D4733D4D1156 ] C:\Program Files (x86)\Norton 360\Engine\6.4.1.14\asengine.dll
17:19:02.0335 5916 C:\Program Files (x86)\Norton 360\Engine\6.4.1.14\asengine.dll - ok
17:19:02.0351 5916 [ 198D51AB311EF8ED8882985048A93406 ] C:\Program Files (x86)\Norton 360\Engine\6.4.1.14\distrptr.dll
17:19:02.0351 5916 C:\Program Files (x86)\Norton 360\Engine\6.4.1.14\distrptr.dll - ok
17:19:02.0351 5916 [ F586611283205EBBC010201EE9EF85D9 ] C:\Program Files (x86)\Norton 360\Engine\6.4.1.14\fwhelper.dll
17:19:02.0351 5916 C:\Program Files (x86)\Norton 360\Engine\6.4.1.14\fwhelper.dll - ok
17:19:02.0351 5916 [ 1EA7969E3271CBC59E1730697DC74682 ] C:\Windows\System32\qmgr.dll
17:19:02.0351 5916 C:\Windows\System32\qmgr.dll - ok
17:19:02.0366 5916 [ 29409ED7400CA5BCCC30C0EE5147A60D ] C:\Windows\System32\bitsperf.dll
17:19:02.0366 5916 C:\Windows\System32\bitsperf.dll - ok
17:19:02.0366 5916 [ D9431DCF90B0253773F51FDEFE7FD42F ] C:\Windows\System32\bitsigd.dll
17:19:02.0366 5916 C:\Windows\System32\bitsigd.dll - ok
17:19:02.0366 5916 [ 96DB78C9C50CEED9DA5050EFFEE272A2 ] C:\Windows\System32\upnp.dll
17:19:02.0366 5916 C:\Windows\System32\upnp.dll - ok
17:19:02.0382 5916 [ C5A75EB48E2344ABDC162BDA79E16841 ] C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
17:19:02.0382 5916 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe - ok
17:19:02.0382 5916 [ E5F7C30EDF0892667933BE879F067D67 ] C:\Windows\SysWOW64\msvcr100_clr0400.dll
17:19:02.0382 5916 C:\Windows\SysWOW64\msvcr100_clr0400.dll - ok
17:19:02.0398 5916 [ D83947A58613E9091B4C9CC0F1546A8D ] C:\Windows\SysWOW64\mscoree.dll
17:19:02.0398 5916 C:\Windows\SysWOW64\mscoree.dll - ok
17:19:02.0398 5916 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] C:\Windows\System32\ssdpsrv.dll
17:19:02.0398 5916 C:\Windows\System32\ssdpsrv.dll - ok
17:19:02.0398 5916 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
17:19:02.0398 5916 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe - ok
17:19:02.0413 5916 [ CB21CD39637AC13F3455454B2F648257 ] C:\Windows\System32\msvcr100_clr0400.dll
17:19:02.0413 5916 C:\Windows\System32\msvcr100_clr0400.dll - ok
17:19:02.0413 5916 [ A08C010D859F8EB42BDD7E1D55B8CA27 ] C:\Windows\System32\mscoree.dll
17:19:02.0413 5916 C:\Windows\System32\mscoree.dll - ok
17:19:02.0413 5916 [ 5C4CB4086FB83115B153E47ADD961A0C ] C:\Windows\System32\FntCache.dll
17:19:02.0413 5916 C:\Windows\System32\FntCache.dll - ok
17:19:02.0429 5916 [ 012787CEB35505EB78DF82E0A0072888 ] C:\Windows\System32\browcli.dll
17:19:02.0429 5916 C:\Windows\System32\browcli.dll - ok
17:19:02.0429 5916 [ 506708142BC63DABA64F2D3AD1DCD5BF ] C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
17:19:02.0429 5916 C:\Program Files (x86)\Google\Update\GoogleUpdate.exe - ok
17:19:02.0429 5916 [ 2E5672EEA419A4DC9DACD714632E1DC3 ] C:\Program Files (x86)\Google\Update\1.3.21.135\goopdate.dll
17:19:02.0429 5916 C:\Program Files (x86)\Google\Update\1.3.21.135\goopdate.dll - ok
17:19:02.0444 5916 [ B2DB6ABA2E292235749B80A9C3DFA867 ] C:\Windows\SysWOW64\imagehlp.dll
17:19:02.0444 5916 C:\Windows\SysWOW64\imagehlp.dll - ok
17:19:02.0444 5916 [ A6C29DB53ECA94FA8591C5388D604B82 ] C:\Windows\SysWOW64\msi.dll
17:19:02.0444 5916 C:\Windows\SysWOW64\msi.dll - ok
17:19:02.0444 5916 [ 35DB83C4DE9FA3889E937125D115EAA0 ] C:\Program Files (x86)\Google\Update\1.3.21.135\goopdateres_en.dll
17:19:02.0444 5916 C:\Program Files (x86)\Google\Update\1.3.21.135\goopdateres_en.dll - ok
17:19:02.0460 5916 [ 43964FA89CCF97BA6BE34D69455AC65F ] C:\Windows\SysWOW64\uxtheme.dll
17:19:02.0460 5916 C:\Windows\SysWOW64\uxtheme.dll - ok
17:19:02.0460 5916 [ BB1FC298BE53AAB1E110F6E786BD8AC5 ] C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSA_Service.exe
17:19:02.0460 5916 C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSA_Service.exe - ok
17:19:02.0460 5916 [ AA794B099F776B37ACCDEAD00E0FBFC9 ] C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscoreei.dll
17:19:02.0460 5916 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscoreei.dll - ok
17:19:02.0476 5916 [ 02CD5B2C3B017122CAC00BDB520CD7AC ] C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorwks.dll
17:19:02.0476 5916 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorwks.dll - ok
17:19:02.0476 5916 [ EC6BA7C92FA5B2AA4AFDF4DF22AEDAB7 ] C:\Windows\winsxs\amd64_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_88e41e092fab0294\msvcr80.dll
17:19:02.0476 5916 C:\Windows\winsxs\amd64_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_88e41e092fab0294\msvcr80.dll - ok
17:19:02.0491 5916 [ 2C1BB3AD51826AA96C9802CBC123814F ] C:\Windows\assembly\NativeImages_v2.0.50727_64\mscorlib\51a23687fdafc32b697f5a719e364651\mscorlib.ni.dll
17:19:02.0491 5916 C:\Windows\assembly\NativeImages_v2.0.50727_64\mscorlib\51a23687fdafc32b697f5a719e364651\mscorlib.ni.dll - ok
17:19:02.0491 5916 [ 1B1431D9520C7578AD5633ED2A70625F ] C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorjit.dll
17:19:02.0491 5916 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorjit.dll - ok
17:19:02.0491 5916 [ 9682D5B9D9309377C1A7E08C3E6B7B3D ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System\6be6efa1e2ffc9d46e99839edac5c5a8\System.ni.dll
17:19:02.0491 5916 C:\Windows\assembly\NativeImages_v2.0.50727_64\System\6be6efa1e2ffc9d46e99839edac5c5a8\System.ni.dll - ok
17:19:02.0507 5916 [ D36AE1B392FAA88FBEF39DE1142DF051 ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.ServiceProce#\f5ec8051a7f0dc49a56aa2563039702e\System.ServiceProcess.ni.dll
17:19:02.0507 5916 C:\Windows\assembly\NativeImages_v2.0.50727_64\System.ServiceProce#\f5ec8051a7f0dc49a56aa2563039702e\System.ServiceProcess.ni.dll - ok
17:19:02.0507 5916 [ 8965A4CAA8E006F5F32D084CABD3679E ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Runtime.Remo#\ad25afb3a0820b92f311d6897df82e5f\System.Runtime.Remoting.ni.dll
17:19:02.0507 5916 C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Runtime.Remo#\ad25afb3a0820b92f311d6897df82e5f\System.Runtime.Remoting.ni.dll - ok
17:19:02.0522 5916 [ 0A94DE4AA9864D312E60D747FD249ABE ] C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsec.dll
17:19:02.0522 5916 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsec.dll - ok
17:19:02.0522 5916 [ 14DFDEAF4E589ED3F1FF187A86B9408C ] C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.17514_none_a4d6a923711520a9\comctl32.dll
17:19:02.0522 5916 C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.17514_none_a4d6a923711520a9\comctl32.dll - ok
17:19:02.0522 5916 [ 850BD2D2D9CB5894935C3B6333CAD6FD ] C:\Windows\System32\riched20.dll
17:19:02.0522 5916 C:\Windows\System32\riched20.dll - ok
17:19:02.0538 5916 [ E17E0188BB90FAE42D83E98707EFA59C ] C:\Windows\System32\sppsvc.exe
17:19:02.0538 5916 C:\Windows\System32\sppsvc.exe - ok
17:19:02.0538 5916 [ FFF95479C7AB1550F0750A5D01744211 ] C:\Windows\System32\drivers\spsys.sys
17:19:02.0538 5916 C:\Windows\System32\drivers\spsys.sys - ok
17:19:02.0538 5916 [ CF318F60A84F15AF352439465A8D05F4 ] C:\Program Files\Windows Defender\MpSvc.dll
17:19:02.0538 5916 C:\Program Files\Windows Defender\MpSvc.dll - ok
17:19:02.0554 5916 [ F6F22291024906E43D135A4B1705FEAC ] C:\Windows\System32\sppwinob.dll
17:19:02.0554 5916 C:\Windows\System32\sppwinob.dll - ok
17:19:02.0554 5916 [ ADF3E771F429940E762AC097F5A54EAF ] C:\Program Files\Windows Defender\MpClient.dll
17:19:02.0554 5916 C:\Program Files\Windows Defender\MpClient.dll - ok
17:19:02.0569 5916 [ BECDDA0990DEBD72A30096533521AD73 ] C:\Program Files (x86)\Google\Update\1.3.21.135\GoogleCrashHandler.exe
17:19:02.0569 5916 C:\Program Files (x86)\Google\Update\1.3.21.135\GoogleCrashHandler.exe - ok
17:19:02.0569 5916 [ 2B373B5F7E36B5ED5DA176D4400EF091 ] C:\Windows\System32\sppobjs.dll
17:19:02.0569 5916 C:\Windows\System32\sppobjs.dll - ok
17:19:02.0569 5916 [ B676429E44F2F8ACC3BAE7C89F46B212 ] C:\Program Files (x86)\Google\Update\1.3.21.135\GoogleCrashHandler64.exe
17:19:02.0569 5916 C:\Program Files (x86)\Google\Update\1.3.21.135\GoogleCrashHandler64.exe - ok
17:19:02.0585 5916 [ A9F3BFC9345F49614D5859EC95B9E994 ] C:\Program Files\Windows Media Player\wmpnetwk.exe
17:19:02.0585 5916 C:\Program Files\Windows Media Player\wmpnetwk.exe - ok
17:19:02.0585 5916 [ C5A99A4C0DC9F0F5A95BA0C83D30A549 ] C:\Windows\SysWOW64\mstask.dll
17:19:02.0585 5916 C:\Windows\SysWOW64\mstask.dll - ok
17:19:02.0585 5916 [ E36112A8A6C7F840169A7E92C12F4203 ] C:\Windows\System32\wsock32.dll
17:19:02.0585 5916 C:\Windows\System32\wsock32.dll - ok
17:19:02.0600 5916 [ 423982DD851406A52B6399DDB196C606 ] C:\Windows\System32\wmdrmdev.dll
17:19:02.0600 5916 C:\Windows\System32\wmdrmdev.dll - ok
17:19:02.0600 5916 [ A7A8CA53D9C9FD90C07AB0EB38E5316B ] C:\Windows\System32\dbghelp.dll
17:19:02.0600 5916 C:\Windows\System32\dbghelp.dll - ok
17:19:02.0616 5916 [ E8B1FE6669397D1772D8196DF0E57A9E ] C:\Windows\System32\wscsvc.dll
17:19:02.0616 5916 C:\Windows\System32\wscsvc.dll - ok
17:19:02.0616 5916 [ 2C1055E2C6D42753241FB2A129136994 ] C:\Windows\System32\drmv2clt.dll
17:19:02.0616 5916 C:\Windows\System32\drmv2clt.dll - ok
17:19:02.0616 5916 [ 97A891E2BF7FDA830BCFC6269DA3F5E9 ] C:\Windows\System32\blackbox.dll
17:19:02.0616 5916 C:\Windows\System32\blackbox.dll - ok
17:19:02.0632 5916 [ 1EB82516F21F27EED1833B4F9FD9614E ] C:\Windows\System32\wmp.dll
17:19:02.0632 5916 C:\Windows\System32\wmp.dll - ok
17:19:02.0632 5916 [ E19AD0D49BFF5938B3E374873AC174DE ] C:\Windows\System32\wmploc.DLL
17:19:02.0632 5916 C:\Windows\System32\wmploc.DLL - ok
17:19:02.0632 5916 [ 66E4246FEF8C364611F9782AA0809F42 ] C:\Program Files\Internet Explorer\ieproxy.dll
17:19:02.0632 5916 C:\Program Files\Internet Explorer\ieproxy.dll - ok
17:19:02.0647 5916 [ 355A138ABDFD43FBABCAE3A1B06AB93D ] C:\Windows\System32\wmpps.dll
17:19:02.0647 5916 C:\Windows\System32\wmpps.dll - ok
17:19:02.0647 5916 [ F149E8CAE538DBF7059B00326673F602 ] C:\Windows\System32\wmpmde.dll
17:19:02.0647 5916 C:\Windows\System32\wmpmde.dll - ok
17:19:02.0647 5916 [ 021287C2050FD5DB4A8B084E2C38139C ] C:\Windows\System32\WinSATAPI.dll
17:19:02.0647 5916 C:\Windows\System32\WinSATAPI.dll - ok
17:19:02.0663 5916 [ F404E59DB6A0F122AB26BF4F3E2FD0FA ] C:\Windows\System32\dxgi.dll
17:19:02.0663 5916 C:\Windows\System32\dxgi.dll - ok
17:19:02.0663 5916 [ 66C87DB880052104808507D6FA84D68E ] C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
17:19:02.0663 5916 C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL - ok
17:19:02.0678 5916 [ D233C7FEAE3FAA25F93A9E6B46815ADC ] C:\Windows\winsxs\amd64_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_08e61857a83bc251\msvcr90.dll
17:19:02.0678 5916 C:\Windows\winsxs\amd64_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_08e61857a83bc251\msvcr90.dll - ok
17:19:02.0678 5916 [ 28A7D7C7E2FDD1D55F12F750CD6331EC ] C:\Windows\System32\MSMPEG2ENC.DLL
17:19:02.0678 5916 C:\Windows\System32\MSMPEG2ENC.DLL - ok
17:19:02.0678 5916 [ 46767946E7B559D981C1DC04EC0AB36F ] C:\Windows\System32\devenum.dll
17:19:02.0678 5916 C:\Windows\System32\devenum.dll - ok
17:19:02.0694 5916 [ 558C42D165DB5799B4072DC0A9C27C0B ] C:\Windows\System32\msdmo.dll
17:19:02.0694 5916 C:\Windows\System32\msdmo.dll - ok
17:19:02.0694 5916 [ D47EC6A8E81633DD18D2436B19BAF6DE ] C:\Windows\System32\upnphost.dll
17:19:02.0694 5916 C:\Windows\System32\upnphost.dll - ok
17:19:02.0694 5916 [ 4FDFA3F219692D17011BF1B428857C1E ] C:\Program Files\Windows Defender\MpRTP.dll
17:19:02.0694 5916 C:\Program Files\Windows Defender\MpRTP.dll - ok
17:19:02.0710 5916 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] C:\Windows\System32\wuaueng.dll
17:19:02.0710 5916 C:\Windows\System32\wuaueng.dll - ok
17:19:02.0710 5916 [ FBD879D17B26D49DD7A48FF58062FAE6 ] C:\Windows\System32\tdh.dll
17:19:02.0710 5916 C:\Windows\System32\tdh.dll - ok
17:19:02.0710 5916 [ FA43D418BC945D27D0625B697B8442B5 ] C:\Windows\System32\cabinet.dll
17:19:02.0710 5916 C:\Windows\System32\cabinet.dll - ok
17:19:02.0725 5916 [ 617F6EC0AC677C685479C1D0D1E76C6F ] C:\Windows\System32\mspatcha.dll
17:19:02.0725 5916 C:\Windows\System32\mspatcha.dll - ok
17:19:02.0725 5916 [ 76A11F575782DBAE74F05B8796EF7F9D ] C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{09B3E4CA-D378-4816-B066-5495305118CA}\mpengine.dll
17:19:02.0725 5916 C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{09B3E4CA-D378-4816-B066-5495305118CA}\mpengine.dll - ok
17:19:02.0741 5916 [ 92E0508D924512F63FFEEFE498CBD11F ] C:\Windows\System32\p2pcollab.dll
17:19:02.0741 5916 C:\Windows\System32\p2pcollab.dll - ok
17:19:02.0741 5916 [ 07AD88DF9EF73215458867EFC1BFFE9E ] C:\Windows\System32\wbem\wmiprov.dll
17:19:02.0741 5916 C:\Windows\System32\wbem\wmiprov.dll - ok
17:19:02.0741 5916 [ 582AC6D9873E31DFA28A4547270862DD ] C:\Windows\System32\QAGENTRT.DLL
17:19:02.0741 5916 C:\Windows\System32\QAGENTRT.DLL - ok
17:19:02.0756 5916 [ 506A83A3BEEE9FCA09F0170DE9FC7D1B ] C:\Windows\System32\fveui.dll
17:19:02.0756 5916 C:\Windows\System32\fveui.dll - ok
17:19:02.0756 5916 [ C47F35CC6FA4F1BDBEF8F87AC1A46537 ] C:\Windows\System32\wuapi.dll
17:19:02.0756 5916 C:\Windows\System32\wuapi.dll - ok
17:19:02.0756 5916 [ 544EFF88AC6C85DF5A4D6F18DFE08CFC ] C:\Windows\SysWOW64\taskschd.dll
17:19:02.0756 5916 C:\Windows\SysWOW64\taskschd.dll - ok
17:19:02.0772 5916 [ EDF2A5E96BEC469DA3F64E9BDD386111 ] C:\Windows\SysWOW64\xmllite.dll
17:19:02.0772 5916 C:\Windows\SysWOW64\xmllite.dll - ok
17:19:02.0772 5916 [ E746ED90132C6B6313CE9179F56BD31D ] C:\Windows\System32\wups.dll
17:19:02.0772 5916 C:\Windows\System32\wups.dll - ok
17:19:02.0788 5916 [ 8258362DDB18B644A82D8B5061AD9426 ] C:\Windows\SysWOW64\wscisvif.dll
17:19:02.0788 5916 C:\Windows\SysWOW64\wscisvif.dll - ok
17:19:02.0788 5916 [ 65EA57712340C09B1B0C427B4848AE05 ] C:\Windows\System32\taskeng.exe
17:19:02.0788 5916 C:\Windows\System32\taskeng.exe - ok
17:19:02.0788 5916 [ 805A52C5AE26C28E88FDD9BCCFE6F312 ] C:\Windows\System32\TSChannel.dll
17:19:02.0788 5916 C:\Windows\System32\TSChannel.dll - ok
17:19:02.0788 5916 [ EA1145006C441864FB0E434FE7D0BF79 ] C:\Program Files (x86)\Norton 360\Engine\6.4.1.14\wscstub.exe
17:19:02.0788 5916 C:\Program Files (x86)\Norton 360\Engine\6.4.1.14\wscstub.exe - ok
17:19:02.0803 5916 [ 436EB2742ED35C1ED9DDCB83C9BCF68A ] C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{09B3E4CA-D378-4816-B066-5495305118CA}\mpasbase.vdm
17:19:02.0803 5916 C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{09B3E4CA-D378-4816-B066-5495305118CA}\mpasbase.vdm - ok
17:19:02.0803 5916 [ ACC34A30A749EA3E10E49A5C25E67AF3 ] C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{09B3E4CA-D378-4816-B066-5495305118CA}\mpasdlta.vdm
17:19:02.0803 5916 C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{09B3E4CA-D378-4816-B066-5495305118CA}\mpasdlta.vdm - ok
17:19:02.0819 5916 [ 7DF186D86CF8C571A12AAB788C777F84 ] C:\Windows\SysWOW64\wscproxystub.dll
17:19:02.0819 5916 C:\Windows\SysWOW64\wscproxystub.dll - ok
17:19:02.0819 5916 [ 7FE0D0C8F53735EA17C9AE93EFE7AD5A ] C:\Windows\System32\wups2.dll
17:19:02.0819 5916 C:\Windows\System32\wups2.dll - ok
17:19:02.0819 5916 [ 71E68F2443A80BD4DA89181889C457EA ] C:\Windows\System32\udhisapi.dll
17:19:02.0819 5916 C:\Windows\System32\udhisapi.dll - ok
17:19:02.0834 5916 [ A0A65D306A5490D2EB8E7DE66898ECFD ] C:\Windows\System32\linkinfo.dll
17:19:02.0834 5916 C:\Windows\System32\linkinfo.dll - ok
17:19:02.0834 5916 [ 405F4D32D2185F1F1BD753D8EEAFFB3A ] C:\Windows\System32\networkexplorer.dll
17:19:02.0834 5916 C:\Windows\System32\networkexplorer.dll - ok
17:19:02.0834 5916 [ 6CEF7856A3EFAC59470F6208F0F585CE ] C:\Windows\System32\mpr.dll
17:19:02.0834 5916 C:\Windows\System32\mpr.dll - ok
17:19:02.0850 5916 [ 5F639198C4137075DA50E61C23963C11 ] C:\Windows\System32\drprov.dll
17:19:02.0850 5916 C:\Windows\System32\drprov.dll - ok
17:19:02.0850 5916 [ BC566D17914B07ABAAB3A5A385CC3300 ] C:\Windows\System32\ntlanman.dll
17:19:02.0850 5916 C:\Windows\System32\ntlanman.dll - ok
17:19:02.0866 5916 [ B3A33600DCDFB84D7FBE09ADEB1C9B8A ] C:\Windows\System32\davclnt.dll
17:19:02.0866 5916 C:\Windows\System32\davclnt.dll - ok
17:19:02.0866 5916 [ 45B24A357C801CE62052FE0CDC8BD4D2 ] C:\Windows\System32\davhlpr.dll
17:19:02.0866 5916 C:\Windows\System32\davhlpr.dll - ok
17:19:02.0866 5916 [ 93BB66044FA76734E882C6F3E8EE1900 ] C:\Program Files\Windows Defender\MsMpLics.dll
17:19:02.0866 5916 C:\Program Files\Windows Defender\MsMpLics.dll - ok
17:19:02.0881 5916 [ 218A400108F280428FA22282D3268BBC ] C:\Windows\System32\wscapi.dll
17:19:02.0881 5916 C:\Windows\System32\wscapi.dll - ok
17:19:02.0881 5916 [ B84E2D174DC84916A536572BB8F691A8 ] C:\Windows\System32\wscisvif.dll
17:19:02.0881 5916 C:\Windows\System32\wscisvif.dll - ok
17:19:02.0881 5916 [ 6C1E3C43B35268C17833244C8ED96430 ] C:\Windows\System32\wscproxystub.dll
17:19:02.0881 5916 C:\Windows\System32\wscproxystub.dll - ok
17:19:02.0897 5916 [ 20308CF0675AD7CE5AAA6712DB823216 ] C:\Program Files (x86)\Windows Defender\MpClient.dll
17:19:02.0897 5916 C:\Program Files (x86)\Windows Defender\MpClient.dll - ok
17:19:02.0897 5916 [ 8C338238C16777A802D6A9211EB2BA50 ] C:\Windows\SysWOW64\netprofm.dll
17:19:02.0897 5916 C:\Windows\SysWOW64\netprofm.dll - ok
17:19:02.0897 5916 [ 0BA65122FFA7E37564EE86422DBF7AE8 ] C:\Windows\SysWOW64\nlaapi.dll
17:19:02.0897 5916 C:\Windows\SysWOW64\nlaapi.dll - ok
17:19:02.0912 5916 [ 15E298B5EC5B89C5994A59863969D9FF ] C:\Windows\SysWOW64\npmproxy.dll
17:19:02.0912 5916 C:\Windows\SysWOW64\npmproxy.dll - ok
17:19:02.0912 5916 [ 0C85BEFBC3C5072DACD66474BBA121D8 ] C:\Program Files (x86)\Norton 360\Engine\6.4.1.14\qbackup.dll
17:19:02.0912 5916 C:\Program Files (x86)\Norton 360\Engine\6.4.1.14\qbackup.dll - ok
17:19:02.0928 5916 [ B8367D76BBF50335BA0777179D7BB799 ] C:\Program Files (x86)\Norton 360\Engine\6.4.1.14\ccscanw.dll
17:19:02.0928 5916 C:\Program Files (x86)\Norton 360\Engine\6.4.1.14\ccscanw.dll - ok
17:19:02.0928 5916 [ 7B378E6633E08BC393D0E59A0DA13678 ] C:\Program Files (x86)\Norton 360\Engine\6.4.1.14\ecmldr32.dll
17:19:02.0928 5916 C:\Program Files (x86)\Norton 360\Engine\6.4.1.14\ecmldr32.dll - ok
17:19:02.0928 5916 [ D66D82989DCF0D0C269DC21E413E2208 ] C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_6.2.0.9\Definitions\VirusDefs\20130309.003\ECMSVR32.DLL
17:19:02.0928 5916 C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_6.2.0.9\Definitions\VirusDefs\20130309.003\ECMSVR32.DLL - ok
17:19:02.0944 5916 [ 748306FCA3E4F30D8F615EDF448BD767 ] C:\Program Files (x86)\Norton 360\Engine\6.4.1.14\dec_abi.dll
17:19:02.0944 5916 C:\Program Files (x86)\Norton 360\Engine\6.4.1.14\dec_abi.dll - ok
17:19:02.0944 5916 [ 956019F9950947A06389BAA6BE8438CA ] C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_6.2.0.9\Definitions\VirusDefs\20130309.003\NAVEX32A.DLL
17:19:02.0944 5916 C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_6.2.0.9\Definitions\VirusDefs\20130309.003\NAVEX32A.DLL - ok
17:19:02.0959 5916 [ A8EDB86FC2A4D6D1285E4C70384AC35A ] C:\Windows\System32\dllhost.exe
17:19:02.0959 5916 C:\Windows\System32\dllhost.exe - ok
17:19:02.0959 5916 [ A0A2C1D812C231C9BFE119FDC68E341B ] C:\Windows\System32\IDStore.dll
17:19:02.0959 5916 C:\Windows\System32\IDStore.dll - ok
17:19:02.0959 5916 [ EFFA8736B9BCD03AFAB3D0B778BCEDC1 ] C:\Windows\System32\KBDINGUJ.DLL
17:19:02.0959 5916 C:\Windows\System32\KBDINGUJ.DLL - ok
17:19:02.0975 5916 [ 94EEAC26F57811BD1AEFC164412F7FCE ] C:\Windows\System32\PlaySndSrv.dll
17:19:02.0975 5916 C:\Windows\System32\PlaySndSrv.dll - ok
17:19:02.0975 5916 [ 9BB99503D6A4DD62569EDE9E5E2672A5 ] C:\Windows\System32\HotStartUserAgent.dll
17:19:02.0975 5916 C:\Windows\System32\HotStartUserAgent.dll - ok
17:19:02.0975 5916 [ 39C5F32747B3414D1BB216FDB1DEFC58 ] C:\Windows\SysWOW64\dwmapi.dll
17:19:02.0975 5916 C:\Windows\SysWOW64\dwmapi.dll - ok
17:19:02.0990 5916 [ 1F1CA9E99DD5BF918BE0BF30B5A42FDA ] C:\Windows\System32\MsCtfMonitor.dll
17:19:02.0990 5916 C:\Windows\System32\MsCtfMonitor.dll - ok
17:19:02.0990 5916 [ 46863C4CC5B68EB09EA2D5EEF0F1193A ] C:\Windows\System32\radardt.dll
17:19:02.0990 5916 C:\Windows\System32\radardt.dll - ok
17:19:02.0990 5916 [ CB61626FB485A606662279CEC7806214 ] C:\Program Files (x86)\Norton 360\Engine\6.4.1.14\npctray.dll
17:19:02.0990 5916 C:\Program Files (x86)\Norton 360\Engine\6.4.1.14\npctray.dll - ok
17:19:03.0006 5916 [ BAFE84E637BF7388C96EF48D4D3FDD53 ] C:\Windows\System32\userinit.exe
17:19:03.0006 5916 C:\Windows\System32\userinit.exe - ok
17:19:03.0006 5916 [ F09A9A1AD21FE618C4C8B0A0D830C886 ] C:\Windows\System32\msutb.dll
17:19:03.0006 5916 C:\Windows\System32\msutb.dll - ok
17:19:03.0006 5916 [ F162D5F5E845B9DC352DD1BAD8CEF1BC ] C:\Windows\System32\dwm.exe
17:19:03.0006 5916 C:\Windows\System32\dwm.exe - ok
17:19:03.0022 5916 [ F11A57E91FDAECFB41A5CB21EB1EBC8E ] C:\Windows\System32\dssenh.dll
17:19:03.0022 5916 C:\Windows\System32\dssenh.dll - ok
17:19:03.0022 5916 [ FCFCD1101C5DA23B4B95F93D02B2C169 ] C:\Windows\System32\dwmredir.dll
17:19:03.0022 5916 C:\Windows\System32\dwmredir.dll - ok
17:19:03.0022 5916 [ 79A4432FE6B52AC5265AFD06CD6D75B4 ] C:\Program Files (x86)\Norton 360\Engine\6.4.1.14\npc360ui.dll
17:19:03.0022 5916 C:\Program Files (x86)\Norton 360\Engine\6.4.1.14\npc360ui.dll - ok
17:19:03.0037 5916 [ 4BA77A5EF71C14C764B0ED4701683E3E ] C:\Windows\System32\dwmcore.dll
17:19:03.0037 5916 C:\Windows\System32\dwmcore.dll - ok
17:19:03.0037 5916 [ E1374D37477322D4956604711008C69D ] C:\Windows\System32\d3d10_1.dll
17:19:03.0037 5916 C:\Windows\System32\d3d10_1.dll - ok
17:19:03.0053 5916 [ 332FEAB1435662FC6C672E25BEB37BE3 ] C:\Windows\explorer.exe
17:19:03.0053 5916 C:\Windows\explorer.exe - ok
17:19:03.0053 5916 [ 426BA4E737A7988FD1202AF2F2B2F4A6 ] C:\Windows\System32\d3d10_1core.dll
17:19:03.0053 5916 C:\Windows\System32\d3d10_1core.dll - ok
17:19:03.0053 5916 [ 1245D621C59DF410EA3AB35234C734A7 ] C:\Program Files (x86)\Norton 360\Engine\6.4.1.14\ashelper.dll
17:19:03.0053 5916 C:\Program Files (x86)\Norton 360\Engine\6.4.1.14\ashelper.dll - ok
17:19:03.0068 5916 [ 81A5793E17FD3618ACF643B23E56AB3F ] C:\Windows\System32\igd10umd64.dll
17:19:03.0068 5916 C:\Windows\System32\igd10umd64.dll - ok
17:19:03.0068 5916 [ B0A7FA04BF62AAD1BD8F52BA07BD30CB ] C:\Program Files (x86)\Norton 360\Engine\6.4.1.14\nahelper.dll
17:19:03.0068 5916 C:\Program Files (x86)\Norton 360\Engine\6.4.1.14\nahelper.dll - ok
17:19:03.0068 5916 [ 548DF858BC8446D6A649E87EC02EEA09 ] C:\Program Files (x86)\Norton 360\Engine\6.4.1.14\asoehook.dll
17:19:03.0068 5916 C:\Program Files (x86)\Norton 360\Engine\6.4.1.14\asoehook.dll - ok
17:19:03.0084 5916 [ 8985D2AA1EE7BE86B24BFC89A651519A ] C:\Program Files (x86)\Norton 360\Engine\6.4.1.14\avpapp32.dll
17:19:03.0084 5916 C:\Program Files (x86)\Norton 360\Engine\6.4.1.14\avpapp32.dll - ok
17:19:03.0084 5916 [ EED05D42D91835064703E2318552ED25 ] C:\Windows\System32\ExplorerFrame.dll
17:19:03.0084 5916 C:\Windows\System32\ExplorerFrame.dll - ok
17:19:03.0100 5916 [ 6487A19E0EA3228515394A4B1A780B17 ] C:\Program Files (x86)\Norton 360\Engine\6.4.1.14\symhtml.dll
17:19:03.0100 5916 C:\Program Files (x86)\Norton 360\Engine\6.4.1.14\symhtml.dll - ok
17:19:03.0100 5916 [ 49E5753D923F1AC63B22D3DCB0B47E00 ] C:\Windows\System32\uDWM.dll
17:19:03.0100 5916 C:\Windows\System32\uDWM.dll - ok
17:19:03.0100 5916 [ 024352FEEC9042260BB4CFB4D79A206B ] C:\Windows\System32\EhStorShell.dll
17:19:03.0100 5916 C:\Windows\System32\EhStorShell.dll - ok
17:19:03.0115 5916 [ F1D2ABA7038E01F7465E36F2057E7C13 ] C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL
17:19:03.0115 5916 C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL - ok
17:19:03.0115 5916 [ FE6FE2EAB253E5836C3536ABE4DACC85 ] C:\Program Files (x86)\Norton 360\Engine\6.4.1.14\buuiplg.dll
17:19:03.0115 5916 C:\Program Files (x86)\Norton 360\Engine\6.4.1.14\buuiplg.dll - ok
17:19:03.0115 5916 [ 241AF87821FDA0F5792037B779F49BE0 ] C:\Windows\winsxs\amd64_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_08e61857a83bc251\msvcp90.dll
17:19:03.0115 5916 C:\Windows\winsxs\amd64_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_08e61857a83bc251\msvcp90.dll - ok
17:19:03.0131 5916 [ 5987EA8A82C53359BCD2C29D6588583E ] C:\Windows\SysWOW64\linkinfo.dll
17:19:03.0131 5916 C:\Windows\SysWOW64\linkinfo.dll - ok
17:19:03.0131 5916 [ 57AC86AC664CC774C861DAB2B1D1E978 ] C:\Windows\winsxs\amd64_microsoft.vc90.atl_1fc8b3b9a1e18e3b_9.0.30729.6161_none_0a1fd3a3a768b895\ATL90.dll
17:19:03.0131 5916 C:\Windows\winsxs\amd64_microsoft.vc90.atl_1fc8b3b9a1e18e3b_9.0.30729.6161_none_0a1fd3a3a768b895\ATL90.dll - ok
17:19:03.0146 5916 [ 92F7F16C5BBF75D96793A86C83DF322E ] C:\Program Files (x86)\Norton 360\Engine\6.4.1.14\cltaldis.dll
17:19:03.0146 5916 C:\Program Files (x86)\Norton 360\Engine\6.4.1.14\cltaldis.dll - ok
17:19:03.0146 5916 [ 5ABAEB53E6ECF7878A5C4C4ABED92050 ] C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Cultures\OFFICE.ODF
17:19:03.0146 5916 C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Cultures\OFFICE.ODF - ok
17:19:03.0146 5916 [ 1048CC7458DEED300BA3D192119D0CCE ] C:\Program Files (x86)\Norton 360\MUI\6.4.1.14\09\01\cltres.loc
17:19:03.0146 5916 C:\Program Files (x86)\Norton 360\MUI\6.4.1.14\09\01\cltres.loc - ok
17:19:03.0162 5916 [ C8112AFCCB31BB054A4570D99A0E331C ] C:\Program Files (x86)\Norton 360\Engine\6.4.1.14\fwsesal.dll
17:19:03.0162 5916 C:\Program Files (x86)\Norton 360\Engine\6.4.1.14\fwsesal.dll - ok
17:19:03.0162 5916 [ 66E3C667D853DF349E310568F60B9B6A ] C:\Program Files\Microsoft Office\Office14\1033\GrooveIntlResource.dll
17:19:03.0162 5916 C:\Program Files\Microsoft Office\Office14\1033\GrooveIntlResource.dll - ok
17:19:03.0178 5916 [ C30A3E5DEEEBA22E782AC54C5AF5F352 ] C:\Windows\SysWOW64\samlib.dll
17:19:03.0178 5916 C:\Windows\SysWOW64\samlib.dll - ok
17:19:03.0178 5916 [ FC2BB2598B4004C637F56331DF13A18F ] C:\Program Files (x86)\Norton 360\Engine\6.4.1.14\coactmgr.dll
17:19:03.0178 5916 C:\Program Files (x86)\Norton 360\Engine\6.4.1.14\coactmgr.dll - ok
17:19:03.0178 5916 [ 7717F84F483002815490033BF069DABD ] C:\Windows\winsxs\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.17825_none_72d273598668a06b\GdiPlus.dll
17:19:03.0178 5916 C:\Windows\winsxs\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.17825_none_72d273598668a06b\GdiPlus.dll - ok
17:19:03.0193 5916 [ 596C3DD487001E237CCE431EAE6F3EA0 ] C:\Program Files (x86)\Hewlett-Packard\HP Advisor\HPAdvisor.exe
17:19:03.0193 5916 C:\Program Files (x86)\Hewlett-Packard\HP Advisor\HPAdvisor.exe - ok
17:19:03.0193 5916 [ C0479DFDB520B7117EDA736ADE855698 ] C:\Program Files (x86)\Norton 360\Engine\6.4.1.14\sdkcmn.dll
17:19:03.0193 5916 C:\Program Files (x86)\Norton 360\Engine\6.4.1.14\sdkcmn.dll - ok
17:19:03.0193 5916 [ E8F915D5140A75ABFF036BBF9D0941AD ] C:\Program Files (x86)\Symantec\Norton Online Backup\Activation\NobuActivation.exe
17:19:03.0193 5916 C:\Program Files (x86)\Symantec\Norton Online Backup\Activation\NobuActivation.exe - ok
17:19:03.0209 5916 [ C8333F1F77A1B2E25F2202E892CAF634 ] C:\Windows\SysWOW64\prnfldr.dll
17:19:03.0209 5916 C:\Windows\SysWOW64\prnfldr.dll - ok
17:19:03.0209 5916 [ 0600CB2613BEA0C6C0987B58D56D77B9 ] C:\Program Files (x86)\Adobe\Reader 9.0\Reader\reader_sl.exe
17:19:03.0209 5916 C:\Program Files (x86)\Adobe\Reader 9.0\Reader\reader_sl.exe - ok
17:19:03.0224 5916 [ 51B58EE8E0966EE553A5E497201B555E ] C:\Program Files (x86)\Norton 360\Engine\6.4.1.14\uialert.dll
17:19:03.0224 5916 C:\Program Files (x86)\Norton 360\Engine\6.4.1.14\uialert.dll - ok
17:19:03.0224 5916 [ 60402F4BC7E1DDE03CECA8B50E7A942E ] C:\Program Files (x86)\Norton 360\Engine\6.4.1.14\userctxt.dll
17:19:03.0224 5916 C:\Program Files (x86)\Norton 360\Engine\6.4.1.14\userctxt.dll - ok
17:19:03.0224 5916 [ 0C556D7B64B77984B3FFF83B92649FFE ] C:\Program Files (x86)\PIXELA\Transfer Utility\CameraMonitor.exe
17:19:03.0224 5916 C:\Program Files (x86)\PIXELA\Transfer Utility\CameraMonitor.exe - ok
17:19:03.0240 5916 [ 8F89E6CB82E6DB45BC993D423CD0FDBD ] C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch Buttons\QLBCtrl.exe
17:19:03.0240 5916 C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch Buttons\QLBCtrl.exe - ok
17:19:03.0240 5916 [ 4EFCDF3DB1BBA69C09622991280C4ACB ] C:\Program Files (x86)\Hewlett-Packard\Recovery\MUITransfer\MUIStartMenu.exe
17:19:03.0240 5916 C:\Program Files (x86)\Hewlett-Packard\Recovery\MUITransfer\MUIStartMenu.exe - ok
17:19:03.0240 5916 [ 5516C26A6AF8EB4E2CAB48EC98A74398 ] C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe
17:19:03.0240 5916 C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe - ok
17:19:03.0256 5916 [ DA4ED31DD43ABB0AF99888E236FFDB91 ] C:\Program Files (x86)\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe
17:19:03.0256 5916 C:\Program Files (x86)\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe - ok
17:19:03.0256 5916 [ 82294C0B4C8DC51A5AA3AE4BDDC1894E ] C:\Program Files (x86)\Norton 360\Engine64\6.4.1.14\bushell.dll
17:19:03.0256 5916 C:\Program Files (x86)\Norton 360\Engine64\6.4.1.14\bushell.dll - ok
17:19:03.0271 5916 [ 9DADF1A809ECEC86F04BDE35190D59FE ] C:\Program Files (x86)\AVG\AVG2013\avgui.exe
17:19:03.0271 5916 C:\Program Files (x86)\AVG\AVG2013\avgui.exe - ok
17:19:03.0271 5916 [ B068AE953C5B85E883186BC234628308 ] C:\Program Files (x86)\Norton 360\Engine64\6.4.1.14\ccl110u.dll
17:19:03.0271 5916 C:\Program Files (x86)\Norton 360\Engine64\6.4.1.14\ccl110u.dll - ok
17:19:03.0271 5916 [ 5F9A3F7D95A96A96212001B138B99C8D ] C:\Program Files (x86)\Norton 360\Engine64\6.4.1.14\efacli64.dll
17:19:03.0271 5916 C:\Program Files (x86)\Norton 360\Engine64\6.4.1.14\efacli64.dll - ok
17:19:03.0287 5916 [ 037A719DAD50603202C978CD802623E4 ] C:\Windows\System32\ntshrui.dll
17:19:03.0287 5916 C:\Windows\System32\ntshrui.dll - ok
17:19:03.0287 5916 [ AD7B9C14083B52BC532FBA5948342B98 ] C:\Windows\SysWOW64\cmd.exe
17:19:03.0287 5916 C:\Windows\SysWOW64\cmd.exe - ok
17:19:03.0287 5916 [ 1D63F4366288B8A7595397E27010FD44 ] C:\Windows\System32\IconCodecService.dll
17:19:03.0287 5916 C:\Windows\System32\IconCodecService.dll - ok
17:19:03.0302 5916 [ 5F45D87B172CFCA862B7F1BED641F263 ] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
17:19:03.0302 5916 C:\Program Files\Synaptics\SynTP\SynTPEnh.exe - ok
17:19:03.0302 5916 [ 3977D4A871CA0D4F2ED1E7DB46829731 ] C:\Windows\System32\appinfo.dll
17:19:03.0302 5916 C:\Windows\System32\appinfo.dll - ok
17:19:03.0318 5916 [ 2EE7EAFCBA41850EA3F00EF5E7C4A549 ] C:\Windows\System32\igfxtray.exe
17:19:03.0318 5916 C:\Windows\System32\igfxtray.exe - ok
17:19:03.0318 5916 [ 53F7D5AD43AC7328B68EF44B3E7C728A ] C:\Windows\System32\hkcmd.exe
17:19:03.0318 5916 C:\Windows\System32\hkcmd.exe - ok
17:19:03.0318 5916 [ E2A17BCC08D92F42E08AF6BA2F93ABA7 ] C:\Windows\SysWOW64\ExplorerFrame.dll
17:19:03.0318 5916 C:\Windows\SysWOW64\ExplorerFrame.dll - ok
17:19:03.0334 5916 [ 6E1F8165C365D35C8E3C045AF0CDD481 ] C:\Windows\SysWOW64\duser.dll
17:19:03.0334 5916 C:\Windows\SysWOW64\duser.dll - ok
17:19:03.0334 5916 [ EE06B85BC69F18826302348A2AD089E0 ] C:\Windows\SysWOW64\dui70.dll
17:19:03.0334 5916 C:\Windows\SysWOW64\dui70.dll - ok
17:19:03.0334 5916 [ 76995B82E6DDD83E7DCA85289DE5B5F0 ] C:\Windows\System32\igfxpers.exe
17:19:03.0334 5916 C:\Windows\System32\igfxpers.exe - ok
17:19:03.0349 5916 [ 2EEED500C1EC095CB3D0DE7A3C7E4278 ] C:\Program Files\IDT\WDM\sttray64.exe
17:19:03.0349 5916 C:\Program Files\IDT\WDM\sttray64.exe - ok
17:19:03.0349 5916 [ 025E7DBDB98866ED3CB2D4DDA70B364D ] C:\Windows\System32\runonce.exe
17:19:03.0349 5916 C:\Windows\System32\runonce.exe - ok
17:19:03.0349 5916 [ D44741F65A1D71F65814A12CF6E2400A ] C:\Windows\SysWOW64\runonce.exe
17:19:03.0349 5916 C:\Windows\SysWOW64\runonce.exe - ok
17:19:03.0365 5916 [ 660C8E78B94F483E44B0243A774A4746 ] C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL
17:19:03.0365 5916 C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL - ok
17:19:03.0365 5916 [ 58A14C45A5CD2528F10A889E7B0C3FC2 ] C:\Windows\winsxs\x86_microsoft.vc90.atl_1fc8b3b9a1e18e3b_9.0.30729.6161_none_51cd0a7abbe4e19b\ATL90.dll
17:19:03.0365 5916 C:\Windows\winsxs\x86_microsoft.vc90.atl_1fc8b3b9a1e18e3b_9.0.30729.6161_none_51cd0a7abbe4e19b\ATL90.dll - ok
17:19:03.0380 5916 [ E9901A7E569C4156FDA69F5C9356B8ED ] C:\Program Files (x86)\Common Files\microsoft shared\OFFICE14\Cultures\OFFICE.ODF
17:19:03.0380 5916 C:\Program Files (x86)\Common Files\microsoft shared\OFFICE14\Cultures\OFFICE.ODF - ok
17:19:03.0380 5916 [ 326C7F76A29897A892AA7726E91C1C67 ] C:\Windows\SysWOW64\winbrand.dll
17:19:03.0380 5916 C:\Windows\SysWOW64\winbrand.dll - ok
17:19:03.0380 5916 [ 0E816EA3C5DCE94C95099E8B38E75E67 ] C:\Windows\SysWOW64\ieframe.dll
17:19:03.0380 5916 C:\Windows\SysWOW64\ieframe.dll - ok
17:19:03.0396 5916 [ BE247AE996A9FDE007A27B51413A6C79 ] C:\Windows\SysWOW64\shdocvw.dll
17:19:03.0396 5916 C:\Windows\SysWOW64\shdocvw.dll - ok
17:19:03.0396 5916 [ 178A34E5554DCE485E1262DDF027960C ] C:\Users\johndoe\AppData\Local\Temp\7BD5A7EC-95EF-448C-8A21-5C659D21D2D1.exe
17:19:03.0396 5916 C:\Users\johndoe\AppData\Local\Temp\7BD5A7EC-95EF-448C-8A21-5C659D21D2D1.exe - ok
17:19:03.0396 5916 [ 1097F3035BAF46CED8B332B3564C5108 ] C:\Windows\SysWOW64\gpapi.dll
17:19:03.0396 5916 C:\Windows\SysWOW64\gpapi.dll - ok
17:19:03.0412 5916 [ CA79539D3D4C0BA66F0F051A5EE5E923 ] C:\Windows\SysWOW64\cryptnet.dll
17:19:03.0412 5916 C:\Windows\SysWOW64\cryptnet.dll - ok
17:19:03.0412 5916 [ 1DB71A41DAEE6B3F8CD0DDA8209FA2D5 ] C:\Windows\SysWOW64\WindowsCodecs.dll
17:19:03.0412 5916 C:\Windows\SysWOW64\WindowsCodecs.dll - ok
17:19:03.0412 5916 [ 846D0E4DB261CFAF363902E41498E961 ] C:\Windows\SysWOW64\EhStorShell.dll
17:19:03.0412 5916 C:\Windows\SysWOW64\EhStorShell.dll - ok
17:19:03.0427 5916 [ 676CCC08D9E9A3F4CA39CB04E97048DF ] C:\PROGRA~2\MICROS~4\Office14\1033\GrooveIntlResource.dll
17:19:03.0427 5916 C:\PROGRA~2\MICROS~4\Office14\1033\GrooveIntlResource.dll - ok
17:19:03.0427 5916 [ 827CB0D6C3F8057EA037FF271F8E9795 ] C:\Windows\SysWOW64\imageres.dll
17:19:03.0427 5916 C:\Windows\SysWOW64\imageres.dll - ok
17:19:03.0443 5916 [ B24450E38722F69F338533A36ECFFC29 ] C:\Windows\System32\RacEngn.dll
17:19:03.0443 5916 C:\Windows\System32\RacEngn.dll - ok
17:19:03.0443 5916 [ AA61A7047E854A9E914FDD17C2F35675 ] C:\Windows\System32\sqlceoledb30.dll
17:19:03.0443 5916 C:\Windows\System32\sqlceoledb30.dll - ok
17:19:03.0443 5916 [ 9C75CB8B98610F0CD85D99BB5876308B ] C:\Windows\System32\sqlcese30.dll
17:19:03.0443 5916 C:\Windows\System32\sqlcese30.dll - ok
17:19:03.0458 5916 [ E5744D18C88737C6356D0A8D6D49D512 ] C:\Windows\System32\sqlceqp30.dll
17:19:03.0458 5916 C:\Windows\System32\sqlceqp30.dll - ok
17:19:03.0458 5916 [ 0D893F8D145D3B125B0226727C243A69 ] C:\Windows\System32\security.dll
17:19:03.0458 5916 C:\Windows\System32\security.dll - ok
17:19:03.0458 5916 [ C4BFE4B61086416B0529212F92BCE081 ] C:\Windows\System32\schedcli.dll
17:19:03.0458 5916 C:\Windows\System32\schedcli.dll - ok
17:19:03.0474 5916 [ 5EA9A0950F322BFA382AF277801C0307 ] C:\Windows\System32\wbem\wmipcima.dll
17:19:03.0474 5916 C:\Windows\System32\wbem\wmipcima.dll - ok
17:19:03.0474 5916 [ C00DB14550E4BD49737F311C644E45FF ] C:\Windows\System32\wmi.dll
17:19:03.0474 5916 C:\Windows\System32\wmi.dll - ok
17:19:03.0490 5916 [ B519848DFA30AE2B306576B51321D102 ] C:\Windows\System32\ie4uinit.exe
17:19:03.0490 5916 C:\Windows\System32\ie4uinit.exe - ok
17:19:03.0490 5916 [ C3E98C42EDF7EF237A4BAB91FEAC7426 ] C:\Windows\System32\iedkcs32.dll
17:19:03.0490 5916 C:\Windows\System32\iedkcs32.dll - ok
17:19:03.0490 5916 [ 487F44B08EFEAF5AD087878357B9403D ] C:\Windows\SysWOW64\pdh.dll
17:19:03.0490 5916 C:\Windows\SysWOW64\pdh.dll - ok
17:19:03.0505 5916 [ FB10715E4099AF9FA389C71873245226 ] C:\Windows\System32\timedate.cpl
17:19:03.0505 5916 C:\Windows\System32\timedate.cpl - ok
17:19:03.0505 5916 [ E6F0F82788E8BD0F7A616350EFA0761C ] C:\Windows\System32\actxprxy.dll
17:19:03.0505 5916 C:\Windows\System32\actxprxy.dll - ok
17:19:03.0505 5916 [ C4F40F6CACD796A8E16671D0E9A2F319 ] C:\Windows\System32\shdocvw.dll
17:19:03.0505 5916 C:\Windows\System32\shdocvw.dll - ok
17:19:03.0521 5916 [ E37DCCB01E8CDD285006AA18A1AC2717 ] C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPSFMessenger\HPSFTaskbar.dll
17:19:03.0521 5916 C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPSFMessenger\HPSFTaskbar.dll - ok
17:19:03.0521 5916 [ FA752544EE1EE59E8AD938CBB43CAC93 ] C:\Program Files (x86)\Windows Live\Messenger\msgslang.dll
17:19:03.0521 5916 C:\Program Files (x86)\Windows Live\Messenger\msgslang.dll - ok
17:19:03.0521 5916 [ 1EAC1A8CA6874BF5B15E2EFB9A9A7B86 ] C:\Windows\System32\msftedit.dll
17:19:03.0521 5916 C:\Windows\System32\msftedit.dll - ok
17:19:03.0536 5916 [ 7FCAB194F01E3403C300EB034E480B36 ] C:\Windows\System32\msls31.dll
17:19:03.0536 5916 C:\Windows\System32\msls31.dll - ok
17:19:03.0536 5916 [ 2BCBA6052374959A30BD7948444DBB79 ] C:\Windows\System32\gameux.dll
17:19:03.0536 5916 C:\Windows\System32\gameux.dll - ok
17:19:03.0536 5916 [ F52084DB96C2021ED7D73C7FD7562AB8 ] C:\Program Files (x86)\Norton 360\Engine\6.4.1.14\imcfg.dll
17:19:03.0536 5916 C:\Program Files (x86)\Norton 360\Engine\6.4.1.14\imcfg.dll - ok
17:19:03.0552 5916 [ 4C2C4640BF23AAFCF90519E0F34436CE ] C:\Windows\System32\DeviceCenter.dll
17:19:03.0552 5916 C:\Windows\System32\DeviceCenter.dll - ok
17:19:03.0552 5916 [ 1B07EA92C5848259E2EF128F39223219 ] C:\Program Files (x86)\Yahoo!\Messenger\YahooMessenger.exe
17:19:03.0552 5916 C:\Program Files (x86)\Yahoo!\Messenger\YahooMessenger.exe - ok
17:19:03.0552 5916 [ E7D38DBCFA8D80C1C05FBE1AACD3FFCC ] C:\Windows\System32\SynCOM.dll
17:19:03.0552 5916 C:\Windows\System32\SynCOM.dll - ok
17:19:03.0568 5916 [ 41F2A2F9EDFC2F0A2C99FD4A39E9F7CF ] C:\Windows\System32\SynTPAPI.dll
17:19:03.0568 5916 C:\Windows\System32\SynTPAPI.dll - ok
17:19:03.0568 5916 [ E9097004922D4D57A9220433E4FE485B ] C:\Windows\System32\hccutils.dll
17:19:03.0568 5916 C:\Windows\System32\hccutils.dll - ok
17:19:03.0583 5916 [ 69754747274B76E7FAF287239333D7E6 ] C:\Windows\System32\msiltcfg.dll
17:19:03.0583 5916 C:\Windows\System32\msiltcfg.dll - ok
17:19:03.0583 5916 [ 5EB6E9C8BE1ACC5830780E0F9A846255 ] C:\Windows\System32\msi.dll
17:19:03.0583 5916 C:\Windows\System32\msi.dll - ok
17:19:03.0583 5916 [ B15DFB916F0D7AFEA5802A014E0A3715 ] C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
17:19:03.0583 5916 C:\Program Files\Synaptics\SynTP\SynTPHelper.exe - ok
17:19:03.0599 5916 [ A55F6BAFC43E5768B56C02FFC4E19925 ] C:\Windows\System32\igfxsrvc.exe
17:19:03.0599 5916 C:\Windows\System32\igfxsrvc.exe - ok
17:19:03.0599 5916 [ 0B5511674394666E9D221F8681B2C2E6 ] C:\Windows\System32\consent.exe
17:19:03.0599 5916 C:\Windows\System32\consent.exe - ok
17:19:03.0599 5916 [ E424B3EF666B184CEE0B6871AAA8C9F6 ] C:\Windows\System32\msimg32.dll
17:19:03.0599 5916 C:\Windows\System32\msimg32.dll - ok
17:19:03.0614 5916 [ FCAE7ED173941270A7AB9E838074C072 ] C:\Windows\System32\igfxsrvc.dll
17:19:03.0614 5916 C:\Windows\System32\igfxsrvc.dll - ok
17:19:03.0614 5916 [ 24F4B480F335A6C724AF352253C5D98B ] C:\Windows\System32\thumbcache.dll
17:19:03.0614 5916 C:\Windows\System32\thumbcache.dll - ok
17:19:03.0614 5916 [ 25389C8387943751DABF6826A8B6D008 ] C:\Windows\System32\igfxdev.dll
17:19:03.0614 5916 C:\Windows\System32\igfxdev.dll - ok
17:19:03.0630 5916 [ DEC2AE60ADC0CC7B050ADAA8808C8796 ] C:\Windows\System32\igfxrenu.lrc
17:19:03.0630 5916 C:\Windows\System32\igfxrenu.lrc - ok
17:19:03.0630 5916 [ A728C8E3B8BF95E536D076A2B7C68653 ] C:\Windows\System32\igfxress.dll
17:19:03.0630 5916 C:\Windows\System32\igfxress.dll - ok
17:19:03.0630 5916 [ 537A71EF146D42D2580FFFC19539C737 ] C:\Program Files\IDT\WDM\stlang64.dll
17:19:03.0630 5916 C:\Program Files\IDT\WDM\stlang64.dll - ok
17:19:03.0646 5916 [ 63DF770DF74ACB370EF5A16727069AAF ] C:\Windows\SysWOW64\hid.dll
17:19:03.0646 5916 C:\Windows\SysWOW64\hid.dll - ok
17:19:03.0646 5916 [ FE875F44CEB44161F1D7F781393C53AB ] C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch Buttons\QLBSERVICE.dll
17:19:03.0646 5916 C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch Buttons\QLBSERVICE.dll - ok
17:19:03.0661 5916 [ 181F69BC9C406B7FB5C0ADE8031630AC ] C:\Windows\SysWOW64\wpdshext.dll
17:19:03.0661 5916 C:\Windows\SysWOW64\wpdshext.dll - ok
17:19:03.0661 5916 [ 0017163E0D5985168792BEE5CF70D5DF ] C:\Windows\Microsoft.NET\Framework64\v2.0.50727\diasymreader.dll
17:19:03.0661 5916 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\diasymreader.dll - ok
17:19:03.0677 5916 [ FC4C561550E5407FFA29D4F6C69B272F ] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\ENU\iaaMon_ENU.dll
17:19:03.0677 5916 C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\ENU\iaaMon_ENU.dll - ok
17:19:03.0677 5916 [ F3DE10AABD5C7A1A186C9966F037D0C0 ] C:\Windows\SysWOW64\mfc100u.dll
17:19:03.0677 5916 C:\Windows\SysWOW64\mfc100u.dll - ok
17:19:03.0677 5916 [ 21B929B33EF74BCCA744675187BB1652 ] C:\Program Files (x86)\Norton 360\Engine64\6.4.1.14\ccvrtrst.dll
17:19:03.0677 5916 C:\Program Files (x86)\Norton 360\Engine64\6.4.1.14\ccvrtrst.dll - ok
17:19:03.0692 5916 [ 0B84AE66F7EC5E6EC8E07D857A383C7F ] C:\Program Files (x86)\Norton 360\Engine64\6.4.1.14\ccset.dll
17:19:03.0692 5916 C:\Program Files (x86)\Norton 360\Engine64\6.4.1.14\ccset.dll - ok
17:19:03.0692 5916 [ 28638660E651578C354BF43CD646EF6D ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Drawing\672fc9526d8954656bcb46e42082e09c\System.Drawing.ni.dll
17:19:03.0692 5916 C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Drawing\672fc9526d8954656bcb46e42082e09c\System.Drawing.ni.dll - ok
17:19:03.0692 5916 [ BA2655001D1F017EDFD9132D5C07E941 ] C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch Buttons\hiddata.exe
17:19:03.0692 5916 C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch Buttons\hiddata.exe - ok
17:19:03.0708 5916 [ B78E390C802B8F0D2BAF4F8B181318A0 ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Windows.Forms\e644aa1f8f3898d38876168757db0d9b\System.Windows.Forms.ni.dll
17:19:03.0708 5916 C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Windows.Forms\e644aa1f8f3898d38876168757db0d9b\System.Windows.Forms.ni.dll - ok
17:19:03.0708 5916 [ 18AB2E5A40064ED5F7791AC5946A90F3 ] C:\Windows\SysWOW64\msimg32.dll
17:19:03.0708 5916 C:\Windows\SysWOW64\msimg32.dll - ok
17:19:03.0724 5916 [ 2A2C442F00B45E01D4C882EEA69A01BC ] C:\Windows\SysWOW64\mfc100enu.dll
17:19:03.0724 5916 C:\Windows\SysWOW64\mfc100enu.dll - ok
17:19:03.0724 5916 [ E9296800685ED622132C0E1FA9241F92 ] C:\Program Files (x86)\AVG\AVG2013\avgkrnlapix.dll
17:19:03.0724 5916 C:\Program Files (x86)\AVG\AVG2013\avgkrnlapix.dll - ok
17:19:03.0724 5916 [ C3761661C17C2248A9379A8FB89E3DE1 ] C:\Windows\System32\stobject.dll
17:19:03.0724 5916 C:\Windows\System32\stobject.dll - ok
17:19:03.0739 5916 [ F832EEEA97CDDA1AF577E721F652A0D1 ] C:\Windows\System32\batmeter.dll
17:19:03.0739 5916 C:\Windows\System32\batmeter.dll - ok
17:19:03.0739 5916 [ 9730643AB698D3B7F19D9192E4D3E4B0 ] C:\Program Files (x86)\AVG\AVG2013\avgidpmx.dll
17:19:03.0739 5916 C:\Program Files (x86)\AVG\AVG2013\avgidpmx.dll - ok
17:19:03.0739 5916 [ 2D2A6EC8EAD30EC3ACE2FD6FB1B3E122 ] C:\Windows\System32\prnfldr.dll
17:19:03.0739 5916 C:\Windows\System32\prnfldr.dll - ok
17:19:03.0755 5916 [ DE35D659575C700BA4E8E912671EA4BA ] C:\Program Files (x86)\AVG\AVG2013\avgdiagex.exe
17:19:03.0755 5916 C:\Program Files (x86)\AVG\AVG2013\avgdiagex.exe - ok
17:19:03.0755 5916 [ 42A9CB6906D9A8BEDC83B57163E62924 ] C:\Windows\System32\DXP.dll
17:19:03.0755 5916 C:\Windows\System32\DXP.dll - ok
17:19:03.0770 5916 [ E7368F0A8D19445EAF5C5D0DBB8B8DAB ] C:\Windows\System32\AltTab.dll
17:19:03.0770 5916 C:\Windows\System32\AltTab.dll - ok
17:19:03.0770 5916 [ 751EEDB874FD17A6F26B9E2CC5E19170 ] C:\Program Files (x86)\AVG\AVG2013\avglngx.dll
17:19:03.0770 5916 C:\Program Files (x86)\AVG\AVG2013\avglngx.dll - ok
17:19:03.0770 5916 [ 2BC7C9FD0A9F2C9AFC373F3AD1EE3891 ] C:\Windows\System32\Syncreg.dll
17:19:03.0770 5916 C:\Windows\System32\Syncreg.dll - ok
17:19:03.0786 5916 [ BDAC1AA64495D0F7E1FF810EBBF1F018 ] C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.17514_none_ec83dffa859149af\comctl32.dll
17:19:03.0786 5916 C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.17514_none_ec83dffa859149af\comctl32.dll - ok
17:19:03.0786 5916 [ 10F815BE90A66AAFC6C713D1BD626064 ] C:\Windows\System32\pnidui.dll
17:19:03.0786 5916 C:\Windows\System32\pnidui.dll - ok
17:19:03.0786 5916 [ 9B7EDD3FE7C211C36E921D34D18A3A0A ] C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe
17:19:03.0786 5916 C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe - ok
17:19:03.0802 5916 [ EB74C861075ECFA1B51B396615387657 ] C:\Program Files (x86)\AVG\AVG2013\avguires.dll
17:19:03.0802 5916 C:\Program Files (x86)\AVG\AVG2013\avguires.dll - ok
17:19:03.0802 5916 [ B9F0A4020AA98B7A20287BF7FE99A1FD ] C:\Windows\System32\QUTIL.DLL
17:19:03.0802 5916 C:\Windows\System32\QUTIL.DLL - ok
17:19:03.0802 5916 [ C836175870E00ACC546066632E15BD10 ] C:\Windows\ehome\ehSSO.dll
17:19:03.0802 5916 C:\Windows\ehome\ehSSO.dll - ok
17:19:03.0817 5916 [ 92DBF0A4C9239169010FC6E07859C82E ] C:\Windows\System32\ActionCenter.dll
17:19:03.0817 5916 C:\Windows\System32\ActionCenter.dll - ok
17:19:03.0817 5916 [ 919001D2BB17DF06CA3F8AC16AD039F6 ] C:\Windows\SysWOW64\sxs.dll
17:19:03.0817 5916 C:\Windows\SysWOW64\sxs.dll - ok
17:19:03.0817 5916 [ BC787418159AB8965A7BD5121EDE265C ] C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch Buttons\FnKyACTN.dll
17:19:03.0817 5916 C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch Buttons\FnKyACTN.dll - ok
17:19:03.0833 5916 [ A42F2C1EB3B66C54FB3C7B79D30C1A6D ] C:\Windows\System32\netshell.dll
17:19:03.0833 5916 C:\Windows\System32\netshell.dll - ok
17:19:03.0833 5916 [ CDAD3376DFF3D9AC7FDCBE2B94B0D3C8 ] C:\Windows\System32\shfolder.dll
17:19:03.0833 5916 C:\Windows\System32\shfolder.dll - ok
17:19:03.0848 5916 [ D64D99EC088B54FFE8EE67A480386C20 ] C:\Windows\Microsoft.NET\Framework64\v2.0.50727\Culture.dll
17:19:03.0848 5916 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\Culture.dll - ok
17:19:03.0848 5916 [ F7A256EC899C72B4ECDD2C02CB592EFD ] C:\Windows\System32\bthprops.cpl
17:19:03.0848 5916 C:\Windows\System32\bthprops.cpl - ok
17:19:03.0848 5916 [ F9A79C5B27037821112C50A9C8FB367A ] C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe
17:19:03.0848 5916 C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe - ok
17:19:03.0864 5916 [ F7E915FA38C119101873AE5E0E7C8B66 ] C:\Program Files (x86)\AVG\AVG2013\avgapps.dll
17:19:03.0864 5916 C:\Program Files (x86)\AVG\AVG2013\avgapps.dll - ok
17:19:03.0864 5916 [ C8FDF0FA9E97E2FAAF3F814716AAA881 ] C:\Windows\System32\WPDShServiceObj.dll
17:19:03.0864 5916 C:\Windows\System32\WPDShServiceObj.dll - ok
17:19:03.0864 5916 [ 0181B4C10F409299E0D8EE130EF87353 ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Management\c54fc0cac648a174c5e35bd6589c9390\System.Management.ni.dll
17:19:03.0864 5916 C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Management\c54fc0cac648a174c5e35bd6589c9390\System.Management.ni.dll - ok
17:19:03.0880 5916 [ 35126DDDE8241C4C4A5F15F6CDDF4434 ] C:\Windows\System32\ieframe.dll
17:19:03.0880 5916 C:\Windows\System32\ieframe.dll - ok
17:19:03.0880 5916 [ C746F3BF98E92FB137B5BD2B8B5925BD ] C:\Windows\System32\FXSST.dll
17:19:03.0880 5916 C:\Windows\System32\FXSST.dll - ok
17:19:03.0895 5916 [ 650CAEA856943E29F25A25D31E004B18 ] C:\Windows\System32\FXSAPI.dll
17:19:03.0895 5916 C:\Windows\System32\FXSAPI.dll - ok
17:19:03.0895 5916 [ C8E8B8239FCF17BEA10E751BE5854631 ] C:\Windows\System32\FXSRESM.dll
17:19:03.0895 5916 C:\Windows\System32\FXSRESM.dll - ok
17:19:03.0895 5916 [ 4F3CD1C59EA71401E155C432BCECE180 ] C:\Windows\System32\PortableDeviceTypes.dll
17:19:03.0895 5916 C:\Windows\System32\PortableDeviceTypes.dll - ok
17:19:03.0911 5916 [ 8569E35D00F45972E506502EEE622BA4 ] C:\Windows\System32\srchadmin.dll
17:19:03.0911 5916 C:\Windows\System32\srchadmin.dll - ok
17:19:03.0911 5916 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] C:\Windows\System32\FXSSVC.exe
17:19:03.0911 5916 C:\Windows\System32\FXSSVC.exe - ok
17:19:03.0911 5916 [ 847D3AE376C0817161A14A82C8922A9E ] C:\Windows\System32\netman.dll
17:19:03.0911 5916 C:\Windows\System32\netman.dll - ok
17:19:03.0926 5916 [ D7CEAEDD5F75D2C8A2E80887D7C114CE ] C:\Windows\System32\webcheck.dll
17:19:03.0926 5916 C:\Windows\System32\webcheck.dll - ok
17:19:03.0926 5916 [ 8494E126F0B10180F3293AF861CE1F7A ] C:\Windows\System32\mlang.dll
17:19:03.0926 5916 C:\Windows\System32\mlang.dll - ok
17:19:03.0926 5916 [ 101797BA603D227946B4B5109867EB19 ] C:\Windows\System32\SyncCenter.dll
17:19:03.0926 5916 C:\Windows\System32\SyncCenter.dll - ok
17:19:03.0942 5916 [ 8130391F82D52D36C0441F714136957F ] C:\Windows\System32\imapi2.dll
17:19:03.0942 5916 C:\Windows\System32\imapi2.dll - ok
17:19:03.0942 5916 [ D2155709E336C3BC15729EB87FEC6064 ] C:\Windows\System32\rasdlg.dll
17:19:03.0942 5916 C:\Windows\System32\rasdlg.dll - ok
17:19:03.0942 5916 [ F9AFD12BB4B1CFA5FCC0A5B37C604FD2 ] C:\Windows\System32\dot3api.dll
17:19:03.0942 5916 C:\Windows\System32\dot3api.dll - ok
17:19:03.0958 5916 [ 6A5C1A8AC0B572679361026D0E900420 ] C:\Windows\System32\hgcpl.dll
17:19:03.0958 5916 C:\Windows\System32\hgcpl.dll - ok
17:19:03.0958 5916 [ E4FCA0F99A41E460C84016DEFD31E6EF ] C:\Windows\System32\wlanhlp.dll
17:19:03.0958 5916 C:\Windows\System32\wlanhlp.dll - ok
17:19:03.0973 5916 [ 0438CAB2E03F4FB61455A7956026FE86 ] C:\Windows\System32\fdPHost.dll
17:19:03.0973 5916 C:\Windows\System32\fdPHost.dll - ok
17:19:03.0973 5916 [ 171D7DB433314A868507C4326E8209DC ] C:\Windows\System32\fdWSD.dll
17:19:03.0973 5916 C:\Windows\System32\fdWSD.dll - ok
17:19:03.0973 5916 [ 6699A112A3BDC9B52338512894EBA9D6 ] C:\Program Files\Windows Media Player\wmpnscfg.exe
17:19:03.0973 5916 C:\Program Files\Windows Media Player\wmpnscfg.exe - ok
17:19:03.0989 5916 [ 5DA219F57A9076FB6FBD3C9C3713A672 ] C:\Windows\System32\WWanAPI.dll
17:19:03.0989 5916 C:\Windows\System32\WWanAPI.dll - ok
17:19:03.0989 5916 [ A2E5B2D20954210DCE1A75A1FC8CC36D ] C:\Windows\System32\fdSSDP.dll
17:19:03.0989 5916 C:\Windows\System32\fdSSDP.dll - ok
17:19:03.0989 5916 [ 62C7AACC746C9723468A8F2169ED3E85 ] C:\Windows\System32\wwapi.dll
17:19:03.0989 5916 C:\Windows\System32\wwapi.dll - ok
17:19:04.0004 5916 [ 2A436796758BF2555A26C770FE8A6FEE ] C:\Windows\System32\fdProxy.dll
17:19:04.0004 5916 C:\Windows\System32\fdProxy.dll - ok
17:19:04.0004 5916 [ 6B851E682A36453E1B1EE297FFB6E2AB ] C:\Windows\System32\QAGENT.DLL
17:19:04.0004 5916 C:\Windows\System32\QAGENT.DLL - ok
17:19:04.0004 5916 [ EFDFB3DD38A4376F93E7985173813ABD ] C:\Windows\System32\ListSvc.dll
17:19:04.0004 5916 C:\Windows\System32\ListSvc.dll - ok
17:19:04.0020 5916 [ B6411CED931AFD059E48C52DBFBA95B4 ] C:\Windows\System32\P2P.dll
17:19:04.0020 5916 C:\Windows\System32\P2P.dll - ok
17:19:04.0020 5916 [ 65AB1A3B45B933697F74B53116B46523 ] C:\Program Files (x86)\Windows Live\Messenger\msgsres.dll
17:19:04.0020 5916 C:\Program Files (x86)\Windows Live\Messenger\msgsres.dll - ok
17:19:04.0020 5916 [ C7494C67A6BF6FE914808E42F8265FEF ] C:\Program Files\Windows Media Player\wmpnssci.dll
17:19:04.0020 5916 C:\Program Files\Windows Media Player\wmpnssci.dll - ok
17:19:04.0036 5916 [ 3EAC4455472CC2C97107B5291E0DCAFE ] C:\Windows\System32\pnrpsvc.dll
17:19:04.0036 5916 C:\Windows\System32\pnrpsvc.dll - ok
17:19:04.0036 5916 [ 45375DF47ED4D0535739465105AAABE3 ] C:\Windows\Microsoft.NET\Framework64\v2.0.50727\WMINet_Utils.dll
17:19:04.0036 5916 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\WMINet_Utils.dll - ok
17:19:04.0036 5916 [ 4A82EA2807B16FF577AEAF8ADB8779FF ] C:\Windows\System32\IdListen.dll
17:19:04.0036 5916 C:\Windows\System32\IdListen.dll - ok
17:19:04.0051 5916 [ A0524499F4C63CADA7E1529FC77F5DC1 ] C:\Windows\System32\hgprint.dll
17:19:04.0051 5916 C:\Windows\System32\hgprint.dll - ok
17:19:04.0051 5916 [ 927463ECB02179F88E4B9A17568C63C3 ] C:\Windows\System32\p2psvc.dll
17:19:04.0051 5916 C:\Windows\System32\p2psvc.dll - ok
17:19:04.0067 5916 [ 3AEE02CEDAA3ACD14F9D7E038E44D6D1 ] C:\Windows\System32\P2PGraph.dll
17:19:04.0067 5916 C:\Windows\System32\P2PGraph.dll - ok
17:19:04.0067 5916 [ 0DE3C7622EC33126579B1742260F08C2 ] C:\Program Files (x86)\Hewlett-Packard\Shared\HpqToaster.exe
17:19:04.0067 5916 C:\Program Files (x86)\Hewlett-Packard\Shared\HpqToaster.exe - ok
17:19:04.0067 5916 [ 936F728E04ACCF3F38801CFFCF1E3F40 ] C:\Windows\SysWOW64\oledlg.dll
17:19:04.0067 5916 C:\Windows\SysWOW64\oledlg.dll - ok
17:19:04.0082 5916 [ 40AA3956A3EB1D100A3CAC0F0BBB4BE0 ] C:\Program Files (x86)\Hewlett-Packard\Shared\hpCaslNotification.exe
17:19:04.0082 5916 C:\Program Files (x86)\Hewlett-Packard\Shared\hpCaslNotification.exe - ok
17:19:04.0082 5916 [ 5CCD5B62076D4432D4728BB6CB3DEBFD ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Xml\7a560781987776298120763de1df8f77\System.Xml.ni.dll
17:19:04.0082 5916 C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Xml\7a560781987776298120763de1df8f77\System.Xml.ni.dll - ok
17:19:04.0082 5916 [ 8323B32A6FC3FCD7E5C8BA94B36CE162 ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Configuration\3762e80651ff8d0bbcdb0ccebfb3b3f7\System.Configuration.ni.dll
17:19:04.0082 5916 C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Configuration\3762e80651ff8d0bbcdb0ccebfb3b3f7\System.Configuration.ni.dll - ok
17:19:04.0098 5916 [ 3D3CBD1847F980FB03343A63671E7886 ] C:\Windows\SysWOW64\schannel.dll
17:19:04.0098 5916 C:\Windows\SysWOW64\schannel.dll - ok
17:19:04.0098 5916 [ 005247E3057BC5D5C3F8C6F886FFC10C ] C:\Windows\System32\wbem\WMIADAP.exe
17:19:04.0098 5916 C:\Windows\System32\wbem\WMIADAP.exe - ok
17:19:04.0114 5916 [ 9FE3ED67345F0FF829A4A53B90E09672 ] C:\Windows\System32\loadperf.dll
17:19:04.0114 5916 C:\Windows\System32\loadperf.dll - ok
17:19:04.0114 5916 [ F146E2BA475893DD77B2370DC1211FC6 ] C:\Windows\System32\drivers\92887831.sys
17:19:04.0114 5916 C:\Windows\System32\drivers\92887831.sys - ok
17:19:04.0114 5916 [ 102CF6879887BBE846A00C459E6D4ABC ] C:\Windows\SysWOW64\riched20.dll
17:19:04.0114 5916 C:\Windows\SysWOW64\riched20.dll - ok
17:19:04.0129 5916 [ 3819AD4329303EAC88480CA16A650735 ] C:\Windows\System32\UIAnimation.dll
17:19:04.0129 5916 C:\Windows\System32\UIAnimation.dll - ok
17:19:04.0129 5916 [ 698EB1E5F8C66344D97C00B5699E871D ] C:\Program Files (x86)\Internet Explorer\iexplore.exe
17:19:04.0129 5916 C:\Program Files (x86)\Internet Explorer\iexplore.exe - ok
17:19:04.0129 5916 [ 7F73235D527DCF16C38578CD1CD9F7A8 ] C:\Program Files (x86)\Internet Explorer\ieproxy.dll
17:19:04.0129 5916 C:\Program Files (x86)\Internet Explorer\ieproxy.dll - ok
17:19:04.0145 5916 [ F8D269134EEC097B7E47C818AF4862A7 ] C:\Windows\SysWOW64\ieui.dll
17:19:04.0145 5916 C:\Windows\SysWOW64\ieui.dll - ok
17:19:04.0145 5916 [ F7BC1D90C3A976A5259BD1A5D7D43038 ] C:\Program Files (x86)\Internet Explorer\IEShims.dll
17:19:04.0145 5916 C:\Program Files (x86)\Internet Explorer\IEShims.dll - ok
17:19:04.0160 5916 [ 0F4871B3BF0E48664A24D2717F2117A0 ] C:\Program Files (x86)\Internet Explorer\sqmapi.dll
17:19:04.0160 5916 C:\Program Files (x86)\Internet Explorer\sqmapi.dll - ok
17:19:04.0160 5916 [ C97434C851C4821BD92D2831FDF1ECBE ] C:\Windows\SysWOW64\mshtml.dll
17:19:04.0160 5916 C:\Windows\SysWOW64\mshtml.dll - ok
17:19:04.0160 5916 [ 35CEDE6439FF0D8903223A0817FFE46C ] C:\Windows\SysWOW64\d2d1.dll
17:19:04.0160 5916 C:\Windows\SysWOW64\d2d1.dll - ok
17:19:04.0176 5916 [ A29D734F650F958424743BE3BAA052C8 ] C:\Windows\SysWOW64\DWrite.dll
17:19:04.0176 5916 C:\Windows\SysWOW64\DWrite.dll - ok
17:19:04.0176 5916 [ 8EE6BDE1D572677AA35707C52C585F75 ] C:\Windows\SysWOW64\mlang.dll
17:19:04.0176 5916 C:\Windows\SysWOW64\mlang.dll - ok
17:19:04.0176 5916 [ 9E7DDA4FBA271FA45F61973C61778168 ] C:\Program Files (x86)\Norton 360\Engine\6.4.1.14\coieplg.dll
17:19:04.0176 5916 C:\Program Files (x86)\Norton 360\Engine\6.4.1.14\coieplg.dll - ok
17:19:04.0192 5916 [ D9C17F6E3B06616450F38E887661A8B7 ] C:\Program Files (x86)\Norton 360\Engine\6.4.1.14\couictlr.dll
17:19:04.0192 5916 C:\Program Files (x86)\Norton 360\Engine\6.4.1.14\couictlr.dll - ok
17:19:04.0192 5916 [ 6A5D598104DC79C84AA6DAAF78A91B4F ] C:\Program Files (x86)\Norton 360\Engine\6.4.1.14\cowpplg.dll
17:19:04.0192 5916 C:\Program Files (x86)\Norton 360\Engine\6.4.1.14\cowpplg.dll - ok
17:19:04.0207 5916 [ 221D322BDCA7AA05CA2CCF2DAF90C594 ] C:\Program Files (x86)\Norton 360\Engine\6.4.1.14\coidsafe.dll
17:19:04.0207 5916 C:\Program Files (x86)\Norton 360\Engine\6.4.1.14\coidsafe.dll - ok
17:19:04.0207 5916 [ 5D9FE37B83E5D27EBEE766DBBBA8659E ] C:\Program Files (x86)\Norton 360\Engine\6.4.1.14\ffprefs.dll
17:19:04.0207 5916 C:\Program Files (x86)\Norton 360\Engine\6.4.1.14\ffprefs.dll - ok
17:19:04.0207 5916 [ 0171A39AE9F529E4E49F02BCF8D22EBD ] C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
17:19:04.0207 5916 C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll - ok
17:19:04.0223 5916 [ 42A2940D2177E2A7D3506C792CE95D3E ] C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
17:19:04.0223 5916 C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll - ok
17:19:04.0223 5916 [ FF3E0C3DCCE988EB391823F62F9397D0 ] C:\Program Files (x86)\Norton 360\Engine\6.4.1.14\ips\ipsbho.dll
17:19:04.0223 5916 C:\Program Files (x86)\Norton 360\Engine\6.4.1.14\ips\ipsbho.dll - ok
17:19:04.0223 5916 [ 0411B7958C524BB2E91EE1B3035FE321 ] C:\Windows\SysWOW64\dxgi.dll
17:19:04.0223 5916 C:\Windows\SysWOW64\dxgi.dll - ok
17:19:04.0238 5916 [ 1667F3CAB41AE70A067DA1C2B13195FC ] C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_6.2.0.9\Definitions\IPSDefs\20130308.001\Scxpx86.dll
17:19:04.0238 5916 C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_6.2.0.9\Definitions\IPSDefs\20130308.001\Scxpx86.dll - ok
17:19:04.0238 5916 [ 701EBD3EA4D1C31B5AA3539F8E3AA225 ] C:\Windows\SysWOW64\igdumdx32.dll
17:19:04.0238 5916 C:\Windows\SysWOW64\igdumdx32.dll - ok
17:19:04.0254 5916 [ 6BF01E200063D7274F3AF06D226671F5 ] C:\Program Files (x86)\Common Files\microsoft shared\Windows Live\WindowsLiveLogin.dll
17:19:04.0285 5916 C:\Program Files (x86)\Common Files\microsoft shared\Windows Live\WindowsLiveLogin.dll - ok
17:19:04.0301 5916 [ DA579734B4375740EFEE86FFDFED57A7 ] C:\Program Files (x86)\Common Files\microsoft shared\Windows Live\wlidcli.dll
17:19:04.0301 5916 C:\Program Files (x86)\Common Files\microsoft shared\Windows Live\wlidcli.dll - ok
17:19:04.0301 5916 [ 9419ABF3163B6F0E3AD3DD2B381C879F ] C:\Windows\SysWOW64\WinSCard.dll
17:19:04.0301 5916 C:\Windows\SysWOW64\WinSCard.dll - ok
17:19:04.0301 5916 [ A5D08B86E8A437AA6DEAF7A187BF6CA5 ] C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL
17:19:04.0301 5916 C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL - ok
17:19:04.0316 5916 [ 47FC5A4A45E883A36AFF884B3E6073B1 ] C:\Program Files (x86)\Microsoft Office\Office14\MSOHEV.DLL
17:19:04.0316 5916 C:\Program Files (x86)\Microsoft Office\Office14\MSOHEV.DLL - ok
17:19:04.0332 5916 [ 5C0E3F4FF5FD1CBAED1F9F3E8145064A ] C:\Program Files (x86)\Common Files\microsoft shared\Windows Live\WLIDRES.DLL
17:19:04.0332 5916 C:\Program Files (x86)\Common Files\microsoft shared\Windows Live\WLIDRES.DLL - ok
17:19:04.0332 5916 [ EE9D715AF1B928982F417238B9914484 ] C:\Windows\SysWOW64\ieapfltr.dll
17:19:04.0332 5916 C:\Windows\SysWOW64\ieapfltr.dll - ok
17:19:04.0348 5916 [ C079169E6A07FC4412475C02969EB9CE ] C:\Windows\SysWOW64\jscript9.dll
17:19:04.0348 5916 C:\Windows\SysWOW64\jscript9.dll - ok
17:19:04.0348 5916 [ 1D1EAA16D193C6A2D45981ED3914D22A ] C:\Windows\SysWOW64\msimtf.dll
17:19:04.0348 5916 C:\Windows\SysWOW64\msimtf.dll - ok
17:19:04.0363 5916 [ 2DE90400A63818FA38C4C5C9ADB166BF ] C:\Windows\SysWOW64\d3d10_1.dll
17:19:04.0363 5916 C:\Windows\SysWOW64\d3d10_1.dll - ok
17:19:04.0363 5916 [ 9C36A3CA80F9B204C670336D344F5DF8 ] C:\Windows\SysWOW64\d3d10_1core.dll
17:19:04.0363 5916 C:\Windows\SysWOW64\d3d10_1core.dll - ok
17:19:04.0363 5916 [ 78B7A3BDA25C90DAA50D36A56A8D1351 ] C:\Windows\SysWOW64\d3d10warp.dll
17:19:04.0363 5916 C:\Windows\SysWOW64\d3d10warp.dll - ok
17:19:04.0379 5916 [ 2572E1F0254E2267E97DE1B15D099EC4 ] C:\Windows\SysWOW64\d3d10.dll
17:19:04.0379 5916 C:\Windows\SysWOW64\d3d10.dll - ok
17:19:04.0379 5916 [ 547F78746F20901C770E8653B242217C ] C:\Windows\SysWOW64\d3d10core.dll
17:19:04.0379 5916 C:\Windows\SysWOW64\d3d10core.dll - ok
17:19:04.0379 5916 [ CA493A92DA9880B6F1A89C3DBD54BA5B ] C:\Windows\SysWOW64\dxtrans.dll
17:19:04.0379 5916 C:\Windows\SysWOW64\dxtrans.dll - ok
17:19:04.0394 5916 [ F10E5311E5093FA3C00FF88C54C32FCA ] C:\Windows\SysWOW64\atl.dll
17:19:04.0394 5916 C:\Windows\SysWOW64\atl.dll - ok
17:19:04.0394 5916 [ BAB9EF9A340113666F678AA2474904B6 ] C:\Windows\SysWOW64\ddrawex.dll
17:19:04.0394 5916 C:\Windows\SysWOW64\ddrawex.dll - ok
17:19:04.0394 5916 [ 198552AEFECA69D646867EC8D792DE95 ] C:\Windows\SysWOW64\ddraw.dll
17:19:04.0394 5916 C:\Windows\SysWOW64\ddraw.dll - ok
17:19:04.0410 5916 [ 55E5B32AE8D1F51A63C82919656FD275 ] C:\Windows\SysWOW64\dciman32.dll
17:19:04.0410 5916 C:\Windows\SysWOW64\dciman32.dll - ok
17:19:04.0410 5916 [ 4312DEBDACBE338F0B90E7F08E7672BE ] C:\Windows\SysWOW64\dxtmsft.dll
17:19:04.0410 5916 C:\Windows\SysWOW64\dxtmsft.dll - ok
17:19:04.0426 5916 [ D056B34F8300BD363BAD97F6573A3F62 ] C:\Program Files (x86)\Norton 360\Engine\6.4.1.14\diarkive.dll
17:19:04.0426 5916 C:\Program Files (x86)\Norton 360\Engine\6.4.1.14\diarkive.dll - ok
17:19:04.0426 5916 [ 8E4B15C73AC6C2D44A233E290E9FD0DC ] C:\Program Files (x86)\Norton 360\Engine\6.4.1.14\coparse.dll
17:19:04.0426 5916 C:\Program Files (x86)\Norton 360\Engine\6.4.1.14\coparse.dll - ok
17:19:04.0426 5916 [ 35AAE2E841AA1A949775168E119482C9 ] C:\Windows\SysWOW64\msls31.dll
17:19:04.0426 5916 C:\Windows\SysWOW64\msls31.dll - ok
17:19:04.0441 5916 [ 21D3A18769EC2C4E56756D04E989A221 ] C:\Windows\SysWOW64\msxml3.dll
17:19:04.0441 5916 C:\Windows\SysWOW64\msxml3.dll - ok
17:19:04.0441 5916 [ DC46D85DBBDB2E173FDD218D03169E08 ] C:\Program Files (x86)\Norton 360\Engine\6.4.1.14\avscntsk.dll
17:19:04.0441 5916 C:\Program Files (x86)\Norton 360\Engine\6.4.1.14\avscntsk.dll - ok
17:19:04.0457 5916 [ 075402DDF2CBEEA5D3EA22754CE70A91 ] C:\Windows\SysWOW64\Macromed\Flash\Flash32_11_2_202_228.ocx
17:19:04.0457 5916 C:\Windows\SysWOW64\Macromed\Flash\Flash32_11_2_202_228.ocx - ok
17:19:04.0457 5916 [ 0E85C11F8850D524B02181C6E02BA9AE ] C:\Windows\SysWOW64\dsound.dll
17:19:04.0457 5916 C:\Windows\SysWOW64\dsound.dll - ok
17:19:04.0472 5916 [ 7F8678C59F188528D60104E697C2361E ] C:\Windows\SysWOW64\mscms.dll
17:19:04.0472 5916 C:\Windows\SysWOW64\mscms.dll - ok
17:19:04.0472 5916 [ C82F93131C1B5683CDA85C72B02A011D ] C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_11_2_202_228_ActiveX.exe
17:19:04.0472 5916 C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_11_2_202_228_ActiveX.exe - ok
17:19:04.0472 5916 [ 6EF5F3F18413C367195F06E503AB86A6 ] C:\Windows\SysWOW64\d3d9.dll
17:19:04.0472 5916 C:\Windows\SysWOW64\d3d9.dll - ok
17:19:04.0488 5916 [ 77B1471A490B53B24EFE136F09F76550 ] C:\Windows\SysWOW64\d3d8thk.dll
17:19:04.0488 5916 C:\Windows\SysWOW64\d3d8thk.dll - ok
17:19:04.0488 5916 [ 90FB1802D488FFA9029854A77D4F3F27 ] C:\Windows\SysWOW64\oleaccrc.dll
17:19:04.0488 5916 C:\Windows\SysWOW64\oleaccrc.dll - ok
17:19:04.0488 5916 [ DB0F62390F8652992DDA8DE665A377C4 ] C:\Users\johndoe\AppData\Local\Temp\{1B24DB68-F21C-4A84-9E21-B2DDFDE904D2}\fpb.tmp
17:19:04.0488 5916 C:\Users\johndoe\AppData\Local\Temp\{1B24DB68-F21C-4A84-9E21-B2DDFDE904D2}\fpb.tmp - ok
17:19:04.0504 5916 [ DB0F62390F8652992DDA8DE665A377C4 ] C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_11_2_202_228_ActiveX.dll
17:19:04.0504 5916 C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_11_2_202_228_ActiveX.dll - ok
17:19:04.0504 5916 [ 1B0EC94520CAB89A9CE1B2DA405166AF ] C:\Windows\SysWOW64\p2pcollab.dll
17:19:04.0504 5916 C:\Windows\SysWOW64\p2pcollab.dll - ok
17:19:04.0519 5916 [ CDBFCB9A88E130F1138F80B01C56B680 ] C:\Windows\SysWOW64\vbscript.dll
17:19:04.0519 5916 C:\Windows\SysWOW64\vbscript.dll - ok
17:19:04.0519 5916 [ E74C018279BB3FB2596AA4CEEA97EC0C ] C:\Program Files (x86)\Common Files\microsoft shared\VGX\VGX.dll
17:19:04.0519 5916 C:\Program Files (x86)\Common Files\microsoft shared\VGX\VGX.dll - ok
17:19:04.0519 5916 [ 243974EC02F7AE49E4179C54624143AB ] C:\Windows\SysWOW64\MMDevAPI.dll
17:19:04.0519 5916 C:\Windows\SysWOW64\MMDevAPI.dll - ok
17:19:04.0535 5916 [ D205C24A9D069049FE2DF2A1B38726A7 ] C:\Windows\SysWOW64\wdmaud.drv
17:19:04.0535 5916 C:\Windows\SysWOW64\wdmaud.drv - ok
17:19:04.0535 5916 [ 9C67F6BBDA3881CFD02095160CF91576 ] C:\Windows\SysWOW64\ksuser.dll
17:19:04.0535 5916 C:\Windows\SysWOW64\ksuser.dll - ok
17:19:04.0535 5916 [ 139D3AB6AA920C34C50CBFFB9EB7D222 ] C:\Windows\SysWOW64\avrt.dll
17:19:04.0535 5916 C:\Windows\SysWOW64\avrt.dll - ok
17:19:04.0550 5916 [ C940F2F5C60B3727C5F18840735B229C ] C:\Windows\SysWOW64\AudioSes.dll
17:19:04.0550 5916 C:\Windows\SysWOW64\AudioSes.dll - ok
17:19:04.0550 5916 [ 07393A09C46083588E751B63B03C8301 ] C:\Windows\SysWOW64\msacm32.drv
17:19:04.0550 5916 C:\Windows\SysWOW64\msacm32.drv - ok
17:19:04.0550 5916 [ 85683DF1F917E4D7F6BE1A04986BF1C8 ] C:\Windows\SysWOW64\msacm32.dll
17:19:04.0550 5916 C:\Windows\SysWOW64\msacm32.dll - ok
17:19:04.0566 5916 [ 5A12C364AD1D4FCC0AD0E56DBBC34462 ] C:\Windows\SysWOW64\midimap.dll
17:19:04.0566 5916 C:\Windows\SysWOW64\midimap.dll - ok
17:19:04.0566 5916 [ EAADD6E47ED2A7003ACE1793B98CF63F ] C:\Windows\SysWOW64\msxml6.dll
17:19:04.0566 5916 C:\Windows\SysWOW64\msxml6.dll - ok
17:19:04.0566 5916 [ D9E21CBF9E6A87847AFFD39EA3FA28EE ] C:\Windows\System32\SearchProtocolHost.exe
17:19:04.0566 5916 C:\Windows\System32\SearchProtocolHost.exe - ok
17:19:04.0582 5916 [ D2A5B2B09F2AF5ED13BF494508B09788 ] C:\Windows\System32\msshooks.dll
17:19:04.0582 5916 C:\Windows\System32\msshooks.dll - ok
17:19:04.0582 5916 [ 49A3AD5CE578CD77F445F3D244AEAB2D ] C:\Windows\System32\SearchFilterHost.exe
17:19:04.0582 5916 C:\Windows\System32\SearchFilterHost.exe - ok
17:19:04.0597 5916 [ 01E2855FB06C422E721D890AF201C2D7 ] C:\Windows\System32\NaturalLanguage6.dll
17:19:04.0597 5916 C:\Windows\System32\NaturalLanguage6.dll - ok
17:19:04.0597 5916 [ 701D9F5F3F21580936638D5C5F86B460 ] C:\Windows\System32\NlsData0009.dll
17:19:04.0597 5916 C:\Windows\System32\NlsData0009.dll - ok
17:19:04.0597 5916 [ 148A733B93A2AC104280495DA09D3CC2 ] C:\Windows\System32\NlsLexicons0009.dll
17:19:04.0597 5916 C:\Windows\System32\NlsLexicons0009.dll - ok
17:19:04.0613 5916 [ ACD37EAC978CBA17D19117AE5A3B0BC1 ] C:\Program Files (x86)\AVG\AVG2013\avgadvisorx.dll
17:19:04.0613 5916 C:\Program Files (x86)\AVG\AVG2013\avgadvisorx.dll - ok
17:19:04.0613 5916 [ 1220595CABA75AB91A6B3FA3B89483CC ] C:\Windows\SysWOW64\snmpapi.dll
17:19:04.0613 5916 C:\Windows\SysWOW64\snmpapi.dll - ok
17:19:04.0613 5916 [ 3977E4863FBA44B07B278A115074544A ] C:\Program Files (x86)\AVG\AVG2013\avgcslx.dll
17:19:04.0613 5916 C:\Program Files (x86)\AVG\AVG2013\avgcslx.dll - ok
17:19:04.0628 5916 [ B92E9318F7E4AEF633B8EC3A873565AF ] C:\Windows\SysWOW64\perfdisk.dll
17:19:04.0628 5916 C:\Windows\SysWOW64\perfdisk.dll - ok
17:19:04.0628 5916 [ 81252AA3B13743020BCF2089A5A0D911 ] C:\Windows\System32\wscinterop.dll
17:19:04.0628 5916 C:\Windows\System32\wscinterop.dll - ok
17:19:04.0628 5916 [ DF50DAE4C547285E4997A0C61063B632 ] C:\Windows\System32\wscui.cpl
17:19:04.0628 5916 C:\Windows\System32\wscui.cpl - ok
17:19:04.0644 5916 [ F9959237F106F2B2609E61A290C0652E ] C:\Windows\System32\werconcpl.dll
17:19:04.0644 5916 C:\Windows\System32\werconcpl.dll - ok
17:19:04.0644 5916 [ 7E591867422DC788B9E5BD337A669A08 ] C:\Windows\System32\wercplsupport.dll
17:19:04.0644 5916 C:\Windows\System32\wercplsupport.dll - ok
17:19:04.0660 5916 [ 809AE7D4ACE06BBCF621E5C504BF6FC8 ] C:\Windows\System32\hcproviders.dll
17:19:04.0660 5916 C:\Windows\System32\hcproviders.dll - ok
17:19:04.0660 5916 [ 5B99111B7D6BBAAEAD56D17D41E9DD50 ] C:\Program Files (x86)\Norton 360\Engine\6.4.1.14\cltlmh.exe
17:19:04.0660 5916 C:\Program Files (x86)\Norton 360\Engine\6.4.1.14\cltlmh.exe - ok
17:19:04.0660 5916 [ 0AE2C218A9AB6C16D79160CCE55B35FC ] C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe
17:19:04.0660 5916 C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe - ok
17:19:04.0675 5916 [ 89344657836F91640F3DDB235D0E7F73 ] C:\Windows\assembly\NativeImages_v2.0.50727_64\WindowsBase\5f684be17ae6b826f6f9eaa170b41b05\WindowsBase.ni.dll
17:19:04.0675 5916 C:\Windows\assembly\NativeImages_v2.0.50727_64\WindowsBase\5f684be17ae6b826f6f9eaa170b41b05\WindowsBase.ni.dll - ok
17:19:04.0675 5916 [ 7BB710183AAD6C420A8FAF7C4ABC6384 ] C:\Windows\assembly\NativeImages_v2.0.50727_64\PresentationCore\68f908f70841f6159b1124f89029ef77\PresentationCore.ni.dll
17:19:04.0675 5916 C:\Windows\assembly\NativeImages_v2.0.50727_64\PresentationCore\68f908f70841f6159b1124f89029ef77\PresentationCore.ni.dll - ok
17:19:04.0691 5916 [ 1D5A06280E3E6C07950FAAA4D153269B ] C:\Windows\assembly\NativeImages_v2.0.50727_64\PresentationFramewo#\f30de4ac82d4a89c959a7f525ba05aed\PresentationFramework.ni.dll
17:19:04.0691 5916 C:\Windows\assembly\NativeImages_v2.0.50727_64\PresentationFramewo#\f30de4ac82d4a89c959a7f525ba05aed\PresentationFramework.ni.dll - ok
17:19:04.0691 5916 [ C264145F107437CBD3B30303733AEE4F ] C:\Windows\assembly\GAC_64\PresentationCore\3.0.0.0__31bf3856ad364e35\PresentationCore.dll
17:19:04.0691 5916 C:\Windows\assembly\GAC_64\PresentationCore\3.0.0.0__31bf3856ad364e35\PresentationCore.dll - ok
17:19:04.0691 5916 [ C8541AECCCA9260DE93C85F214110FA8 ] C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\wpfgfx_v0300.dll
17:19:04.0691 5916 C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\wpfgfx_v0300.dll - ok
17:19:04.0706 5916 [ 2774222AFA6FB9F9940F2211CE7CCC29 ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Runtime.Seri#\8e03b29f6562f1b7ce14fa3337d9cee2\System.Runtime.Serialization.Formatters.Soap.ni.dll
17:19:04.0706 5916 C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Runtime.Seri#\8e03b29f6562f1b7ce14fa3337d9cee2\System.Runtime.Serialization.Formatters.Soap.ni.dll - ok
17:19:04.0706 5916 [ 050E000D89D4FB750B124380020674E9 ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Web\09a751d0d4d6e7af82c1d2844eefd34a\System.Web.ni.dll
17:19:04.0706 5916 C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Web\09a751d0d4d6e7af82c1d2844eefd34a\System.Web.ni.dll - ok
17:19:04.0722 5916 [ C68A9ED2B7269F91A75BCE10894186EB ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Core\7e75cd0b412dd2ac432f0ffbfaa7e55e\System.Core.ni.dll
17:19:04.0722 5916 C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Core\7e75cd0b412dd2ac432f0ffbfaa7e55e\System.Core.ni.dll - ok
17:19:04.0722 5916 [ 976401E2E9E172540F72ABB1BDD67612 ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Xml.Linq\3361e46c90a94ed2f802f5c3395e9f73\System.Xml.Linq.ni.dll
17:19:04.0722 5916 C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Xml.Linq\3361e46c90a94ed2f802f5c3395e9f73\System.Xml.Linq.ni.dll - ok
17:19:04.0722 5916 [ 39E9AACC4C5FB3C3C0B12DE6D491553D ] C:\Windows\SysWOW64\WindowsCodecsExt.dll
17:19:04.0722 5916 C:\Windows\SysWOW64\WindowsCodecsExt.dll - ok
17:19:04.0738 5916 [ 0D4C486A24A711A45FD83ACDF4D18506 ] C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
17:19:04.0738 5916 C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe - ok
17:19:04.0738 5916 [ 54A47F6B5E09A77E61649109C6A08866 ] C:\Windows\SysWOW64\svchost.exe
17:19:04.0738 5916 C:\Windows\SysWOW64\svchost.exe - ok
17:19:04.0738 5916 [ 3290D6946B5E30E70414990574883DDB ] C:\Windows\System32\alg.exe
17:19:04.0738 5916 C:\Windows\System32\alg.exe - ok
17:19:04.0753 5916 [ D88040F816FDA31C3B466F0FA0918F29 ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
17:19:04.0753 5916 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe - ok
17:19:04.0753 5916 [ D1CEEA2B47CB998321C579651CE3E4F8 ] C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
17:19:04.0753 5916 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe - ok
17:19:04.0769 5916 [ A63DC5C2EA944E6657203E0C8EDEAF61 ] C:\Windows\SysWOW64\dllhost.exe
17:19:04.0769 5916 C:\Windows\SysWOW64\dllhost.exe - ok
17:19:04.0769 5916 [ C4002B6B41975F057D98C439030CEA07 ] C:\Windows\ehome\ehrecvr.exe
17:19:04.0769 5916 C:\Windows\ehome\ehrecvr.exe - ok
17:19:04.0769 5916 [ 4705E8EF9934482C5BB488CE28AFC681 ] C:\Windows\ehome\ehsched.exe
17:19:04.0769 5916 C:\Windows\ehome\ehsched.exe - ok
17:19:04.0784 5916 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
17:19:04.0784 5916 C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe - ok
17:19:04.0784 5916 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
17:19:04.0784 5916 C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe - ok
17:19:04.0784 5916 [ B474C756C13960793C7583B766F904C4 ] C:\Program Files\iPod\bin\iPodService.exe
17:19:04.0784 5916 C:\Program Files\iPod\bin\iPodService.exe - ok
17:19:04.0800 5916 [ 7A7ECA157A0747637512E8C02B8350EA ] C:\Program Files (x86)\Microsoft Office\Office14\GROOVE.EXE
17:19:04.0800 5916 C:\Program Files (x86)\Microsoft Office\Office14\GROOVE.EXE - ok
17:19:04.0800 5916 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] C:\Windows\System32\msdtc.exe
17:19:04.0800 5916 C:\Windows\System32\msdtc.exe - ok
17:19:04.0816 5916 [ EEE470F2A771FC0B543BDEEF74FCECA0 ] C:\Windows\SysWOW64\msiexec.exe
17:19:04.0816 5916 C:\Windows\SysWOW64\msiexec.exe - ok
17:19:04.0816 5916 [ 3E5A36127E201DDF663176B66828FAFE ] C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
17:19:04.0816 5916 C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe - ok
17:19:04.0816 5916 [ 9D10F99A6712E28F8ACD5641E3A7EA6B ] C:\Program Files (x86)\Common Files\microsoft shared\Source Engine\OSE.EXE
17:19:04.0816 5916 C:\Program Files (x86)\Common Files\microsoft shared\Source Engine\OSE.EXE - ok
17:19:04.0831 5916 [ 61BFFB5F57AD12F83AB64B7181829B34 ] C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
17:19:04.0831 5916 C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE - ok
17:19:04.0831 5916 [ E495E408C93141E8FC72DC0C6046DDFA ] C:\Windows\SysWOW64\perfhost.exe
17:19:04.0831 5916 C:\Windows\SysWOW64\perfhost.exe - ok
17:19:04.0831 5916 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] C:\Windows\System32\Locator.exe
17:19:04.0831 5916 C:\Windows\System32\Locator.exe - ok
17:19:04.0847 5916 [ 773212B2AAA24C1E31F10246B15B276C ] C:\Windows\servicing\TrustedInstaller.exe
17:19:04.0847 5916 C:\Windows\servicing\TrustedInstaller.exe - ok
17:19:04.0847 5916 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] C:\Windows\System32\UI0Detect.exe
17:19:04.0847 5916 C:\Windows\System32\UI0Detect.exe - ok
17:19:04.0847 5916 [ 8D6B481601D01A456E75C3210F1830BE ] C:\Windows\System32\vds.exe
17:19:04.0847 5916 C:\Windows\System32\vds.exe - ok
17:19:04.0862 5916 [ B60BA0BC31B0CB414593E169F6F21CC2 ] C:\Windows\System32\VSSVC.exe
17:19:04.0862 5916 C:\Windows\System32\VSSVC.exe - ok
17:19:04.0862 5916 [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] C:\Windows\System32\Wat\WatAdminSvc.exe
17:19:04.0862 5916 C:\Windows\System32\Wat\WatAdminSvc.exe - ok
17:19:04.0862 5916 [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] C:\Windows\System32\wbengine.exe
17:19:04.0862 5916 C:\Windows\System32\wbengine.exe - ok
17:19:04.0878 5916 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] C:\Windows\System32\wbem\WmiApSrv.exe
17:19:04.0878 5916 C:\Windows\System32\wbem\WmiApSrv.exe - ok
17:19:04.0878 5916 [ 236F286E103FD44BD85FDD93097FD5DD ] C:\Windows\SysWOW64\SearchIndexer.exe
17:19:04.0878 5916 C:\Windows\SysWOW64\SearchIndexer.exe - ok
17:19:04.0894 5916 [ A87D604AEA360176311474C87A63BB88 ] C:\Windows\System32\drivers\1394ohci.sys
17:19:04.0894 5916 C:\Windows\System32\drivers\1394ohci.sys - ok
17:19:04.0894 5916 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] C:\Windows\System32\drivers\acpi.sys
17:19:04.0894 5916 C:\Windows\System32\drivers\acpi.sys - ok
17:19:04.0894 5916 [ 99F8E788246D495CE3794D7E7821D2CA ] C:\Windows\System32\drivers\acpipmi.sys
17:19:04.0894 5916 C:\Windows\System32\drivers\acpipmi.sys - ok
17:19:04.0909 5916 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] C:\Windows\System32\drivers\adp94xx.sys
17:19:04.0909 5916 C:\Windows\System32\drivers\adp94xx.sys - ok
17:19:04.0909 5916 [ 597F78224EE9224EA1A13D6350CED962 ] C:\Windows\System32\drivers\adpahci.sys
17:19:04.0909 5916 C:\Windows\System32\drivers\adpahci.sys - ok
17:19:04.0909 5916 [ E109549C90F62FB570B9540C4B148E54 ] C:\Windows\System32\drivers\adpu320.sys
17:19:04.0909 5916 C:\Windows\System32\drivers\adpu320.sys - ok
17:19:04.0925 5916 [ 98022774D9930ECBB292E70DB7601DF6 ] C:\Windows\System32\drivers\agrsm64.sys
17:19:04.0925 5916 C:\Windows\System32\drivers\agrsm64.sys - ok
17:19:04.0925 5916 [ 608C14DBA7299D8CB6ED035A68A15799 ] C:\Windows\System32\drivers\AGP440.sys
17:19:04.0925 5916 C:\Windows\System32\drivers\AGP440.sys - ok
17:19:04.0925 5916 [ 5812713A477A3AD7363C7438CA2EE038 ] C:\Windows\System32\drivers\aliide.sys
17:19:04.0925 5916 C:\Windows\System32\drivers\aliide.sys - ok
17:19:04.0940 5916 [ 1FF8B4431C353CE385C875F194924C0C ] C:\Windows\System32\drivers\amdide.sys
17:19:04.0940 5916 C:\Windows\System32\drivers\amdide.sys - ok
17:19:04.0940 5916 [ 7024F087CFF1833A806193EF9D22CDA9 ] C:\Windows\System32\drivers\amdk8.sys
17:19:04.0940 5916 C:\Windows\System32\drivers\amdk8.sys - ok
17:19:04.0956 5916 [ 1E56388B3FE0D031C44144EB8C4D6217 ] C:\Windows\System32\drivers\amdppm.sys
17:19:04.0956 5916 C:\Windows\System32\drivers\amdppm.sys - ok
17:19:04.0956 5916 [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] C:\Windows\System32\drivers\amdsata.sys
17:19:04.0956 5916 C:\Windows\System32\drivers\amdsata.sys - ok
17:19:04.0956 5916 [ F67F933E79241ED32FF46A4F29B5120B ] C:\Windows\System32\drivers\amdsbs.sys
17:19:04.0956 5916 C:\Windows\System32\drivers\amdsbs.sys - ok
17:19:04.0972 5916 [ 540DAF1CEA6094886D72126FD7C33048 ] C:\Windows\System32\drivers\amdxata.sys
17:19:04.0972 5916 C:\Windows\System32\drivers\amdxata.sys - ok
17:19:04.0972 5916 [ 89A69C3F2F319B43379399547526D952 ] C:\Windows\System32\drivers\appid.sys
17:19:04.0972 5916 C:\Windows\System32\drivers\appid.sys - ok
17:19:04.0972 5916 [ C484F8CEB1717C540242531DB7845C4E ] C:\Windows\System32\drivers\arc.sys
17:19:04.0972 5916 C:\Windows\System32\drivers\arc.sys - ok
17:19:04.0987 5916 [ 019AF6924AEFE7839F61C830227FE79C ] C:\Windows\System32\drivers\arcsas.sys
17:19:04.0987 5916 C:\Windows\System32\drivers\arcsas.sys - ok
17:19:04.0987 5916 [ 769765CE2CC62867468CEA93969B2242 ] C:\Windows\System32\drivers\asyncmac.sys
17:19:04.0987 5916 C:\Windows\System32\drivers\asyncmac.sys - ok
17:19:05.0003 5916 [ 02062C0B390B7729EDC9E69C680A6F3C ] C:\Windows\System32\drivers\atapi.sys
17:19:05.0003 5916 C:\Windows\System32\drivers\atapi.sys - ok
17:19:05.0003 5916 [ 3EFD964D52221360AF0673CD61C2F4F5 ] C:\Windows\System32\drivers\atikmdag.sys
17:19:05.0003 5916 C:\Windows\System32\drivers\atikmdag.sys - ok
17:19:05.0003 5916 [ 550E981747D6A6C55078C77346FFC2C6 ] C:\Windows\System32\drivers\avgidsha.sys
17:19:05.0003 5916 C:\Windows\System32\drivers\avgidsha.sys - ok
17:19:05.0018 5916 [ 3FC43AA02545FCDDC22817829114DEC8 ] C:\Windows\System32\drivers\avgloga.sys
17:19:05.0018 5916 C:\Windows\System32\drivers\avgloga.sys - ok
17:19:05.0018 5916 [ 841C40C193889730848849AC220D9242 ] C:\Windows\System32\drivers\avgmfx64.sys
17:19:05.0018 5916 C:\Windows\System32\drivers\avgmfx64.sys - ok
17:19:05.0018 5916 [ FE4F444DBE4BBBDFD8FECF49398DEFC7 ] C:\Windows\System32\drivers\avgrkx64.sys
17:19:05.0018 5916 C:\Windows\System32\drivers\avgrkx64.sys - ok
17:19:05.0034 5916 [ 3E5B191307609F7514148C6832BB0842 ] C:\Windows\System32\drivers\bxvbda.sys
17:19:05.0034 5916 C:\Windows\System32\drivers\bxvbda.sys - ok
17:19:05.0034 5916 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] C:\Windows\System32\drivers\b57nd60a.sys
17:19:05.0034 5916 C:\Windows\System32\drivers\b57nd60a.sys - ok
17:19:05.0034 5916 [ F09EEE9EDC320B5E1501F749FDE686C8 ] C:\Windows\System32\drivers\BrFiltLo.sys
17:19:05.0034 5916 C:\Windows\System32\drivers\BrFiltLo.sys - ok
17:19:05.0050 5916 [ B114D3098E9BDB8BEA8B053685831BE6 ] C:\Windows\System32\drivers\BrFiltUp.sys
17:19:05.0050 5916 C:\Windows\System32\drivers\BrFiltUp.sys - ok
17:19:05.0050 5916 [ 43BEA8D483BF1870F018E2D02E06A5BD ] C:\Windows\System32\drivers\BrSerId.sys
17:19:05.0050 5916 C:\Windows\System32\drivers\BrSerId.sys - ok
17:19:05.0065 5916 [ A6ECA2151B08A09CACECA35C07F05B42 ] C:\Windows\System32\drivers\BrSerWdm.sys
17:19:05.0065 5916 C:\Windows\System32\drivers\BrSerWdm.sys - ok
17:19:05.0065 5916 [ B79968002C277E869CF38BD22CD61524 ] C:\Windows\System32\drivers\BrUsbMdm.sys
17:19:05.0065 5916 C:\Windows\System32\drivers\BrUsbMdm.sys - ok
17:19:05.0065 5916 [ A87528880231C54E75EA7A44943B38BF ] C:\Windows\System32\drivers\BrUsbSer.sys
17:19:05.0065 5916 C:\Windows\System32\drivers\BrUsbSer.sys - ok
17:19:05.0081 5916 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] C:\Windows\System32\drivers\bthmodem.sys
17:19:05.0081 5916 C:\Windows\System32\drivers\bthmodem.sys - ok
17:19:05.0081 5916 [ B8BD2BB284668C84865658C77574381A ] C:\Windows\System32\drivers\cdfs.sys
17:19:05.0081 5916 C:\Windows\System32\drivers\cdfs.sys - ok
17:19:05.0081 5916 [ FE1EC06F2253F691FE36217C592A0206 ] C:\Windows\System32\clfs.sys
17:19:05.0081 5916 C:\Windows\System32\clfs.sys - ok
17:19:05.0096 5916 [ E19D3F095812725D88F9001985B94EDD ] C:\Windows\System32\drivers\cmdide.sys
17:19:05.0096 5916 C:\Windows\System32\drivers\cmdide.sys - ok
17:19:05.0096 5916 [ 9AC4F97C2D3E93367E2148EA940CD2CD ] C:\Windows\System32\drivers\cng.sys
17:19:05.0096 5916 C:\Windows\System32\drivers\cng.sys - ok
17:19:05.0096 5916 [ 102DE219C3F61415F964C88E9085AD14 ] C:\Windows\System32\drivers\compbatt.sys
17:19:05.0096 5916 C:\Windows\System32\drivers\compbatt.sys - ok
17:19:05.0112 5916 [ 1C827878A998C18847245FE1F34EE597 ] C:\Windows\System32\drivers\crcdisk.sys
17:19:05.0112 5916 C:\Windows\System32\drivers\crcdisk.sys - ok
17:19:05.0112 5916 [ 44BDDEB03C84A1C993C992FFB5700357 ] C:\Windows\System32\drivers\CVirtA64.sys
17:19:05.0112 5916 C:\Windows\System32\drivers\CVirtA64.sys - ok
17:19:05.0112 5916 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] C:\Windows\System32\drivers\disk.sys
17:19:05.0112 5916 C:\Windows\System32\drivers\disk.sys - ok
17:19:05.0128 5916 [ 05CB5910B3CA6019FC3CCA815EE06FFB ] C:\Windows\System32\drivers\dne64x.sys
17:19:05.0128 5916 C:\Windows\System32\drivers\dne64x.sys - ok
17:19:05.0128 5916 [ 9B19F34400D24DF84C858A421C205754 ] C:\Windows\System32\drivers\drmkaud.sys
17:19:05.0128 5916 C:\Windows\System32\drivers\drmkaud.sys - ok
17:19:05.0143 5916 [ DC5D737F51BE844D8C82C695EB17372F ] C:\Windows\System32\drivers\evbda.sys
17:19:05.0143 5916 C:\Windows\System32\drivers\evbda.sys - ok
17:19:05.0143 5916 [ 0E5DA5369A0FCAEA12456DD852545184 ] C:\Windows\System32\drivers\elxstor.sys
17:19:05.0143 5916 C:\Windows\System32\drivers\elxstor.sys - ok
17:19:05.0143 5916 [ 34A3C54752046E79A126E15C51DB409B ] C:\Windows\System32\drivers\errdev.sys
17:19:05.0143 5916 C:\Windows\System32\drivers\errdev.sys - ok
17:19:05.0159 5916 [ D765D19CD8EF61F650C384F62FAC00AB ] C:\Windows\System32\drivers\fdc.sys
17:19:05.0159 5916 C:\Windows\System32\drivers\fdc.sys - ok
17:19:05.0159 5916 [ 655661BE46B5F5F3FD454E2C3095B930 ] C:\Windows\System32\drivers\fileinfo.sys
17:19:05.0159 5916 C:\Windows\System32\drivers\fileinfo.sys - ok
17:19:05.0174 5916 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] C:\Windows\System32\drivers\filetrace.sys
17:19:05.0174 5916 C:\Windows\System32\drivers\filetrace.sys - ok
17:19:05.0174 5916 [ C172A0F53008EAEB8EA33FE10E177AF5 ] C:\Windows\System32\drivers\flpydisk.sys
17:19:05.0174 5916 C:\Windows\System32\drivers\flpydisk.sys - ok
17:19:05.0174 5916 [ D43703496149971890703B4B1B723EAC ] C:\Windows\System32\drivers\fsdepends.sys
17:19:05.0174 5916 C:\Windows\System32\drivers\fsdepends.sys - ok
17:19:05.0190 5916 [ 1F7B25B858FA27015169FE95E54108ED ] C:\Windows\System32\drivers\fvevol.sys
17:19:05.0190 5916 C:\Windows\System32\drivers\fvevol.sys - ok
17:19:05.0190 5916 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] C:\Windows\System32\drivers\GAGP30KX.SYS
17:19:05.0190 5916 C:\Windows\System32\drivers\GAGP30KX.SYS - ok
17:19:05.0190 5916 [ 14908F4F9005C29DE8F5587E271390EE ] C:\Windows\System32\drivers\gfibto.sys
17:19:05.0190 5916 C:\Windows\System32\drivers\gfibto.sys - ok
17:19:05.0206 5916 [ F2523EF6460FC42405B12248338AB2F0 ] C:\Windows\System32\drivers\hcw85cir.sys
17:19:05.0206 5916 C:\Windows\System32\drivers\hcw85cir.sys - ok
17:19:05.0206 5916 [ 975761C778E33CD22498059B91E7373A ] C:\Windows\System32\drivers\HdAudio.sys
17:19:05.0206 5916 C:\Windows\System32\drivers\HdAudio.sys - ok
17:19:05.0206 5916 [ 78E86380454A7B10A5EB255DC44A355F ] C:\Windows\System32\drivers\hidbatt.sys
17:19:05.0221 5916 C:\Windows\System32\drivers\hidbatt.sys - ok
17:19:05.0221 5916 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] C:\Windows\System32\drivers\hidbth.sys
17:19:05.0221 5916 C:\Windows\System32\drivers\hidbth.sys - ok
17:19:05.0221 5916 [ 9592090A7E2B61CD582B612B6DF70536 ] C:\Windows\System32\drivers\hidusb.sys
17:19:05.0221 5916 C:\Windows\System32\drivers\hidusb.sys - ok
17:19:05.0237 5916 [ CCBE758967CC0F53F5BA3B271653C4E6 ] C:\Windows\System32\drivers\hpdskflt.sys
17:19:05.0237 5916 C:\Windows\System32\drivers\hpdskflt.sys - ok
17:19:05.0237 5916 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] C:\Windows\System32\drivers\HpSAMD.sys
17:19:05.0237 5916 C:\Windows\System32\drivers\HpSAMD.sys - ok
17:19:05.0237 5916 [ A5462BD6884960C9DC85ED49D34FF392 ] C:\Windows\System32\drivers\hwpolicy.sys
17:19:05.0237 5916 C:\Windows\System32\drivers\hwpolicy.sys - ok
17:19:05.0252 5916 [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] C:\Windows\System32\drivers\iaStorV.sys
17:19:05.0252 5916 C:\Windows\System32\drivers\iaStorV.sys - ok
17:19:05.0252 5916 [ 5C18831C61933628F5BB0EA2675B9D21 ] C:\Windows\System32\drivers\iirsp.sys
17:19:05.0252 5916 C:\Windows\System32\drivers\iirsp.sys - ok
17:19:05.0252 5916 [ F00F20E70C6EC3AA366910083A0518AA ] C:\Windows\System32\drivers\intelide.sys
17:19:05.0252 5916 C:\Windows\System32\drivers\intelide.sys - ok
17:19:05.0268 5916 [ C9F0E1BD74365A8771590E9008D22AB6 ] C:\Windows\System32\drivers\ipfltdrv.sys
17:19:05.0268 5916 C:\Windows\System32\drivers\ipfltdrv.sys - ok
17:19:05.0268 5916 [ 0FC1AEA580957AA8817B8F305D18CA3A ] C:\Windows\System32\drivers\IPMIDrv.sys
17:19:05.0268 5916 C:\Windows\System32\drivers\IPMIDrv.sys - ok
17:19:05.0284 5916 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] C:\Windows\System32\drivers\ipnat.sys
17:19:05.0284 5916 C:\Windows\System32\drivers\ipnat.sys - ok
17:19:05.0284 5916 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] C:\Windows\System32\drivers\irenum.sys
17:19:05.0284 5916 C:\Windows\System32\drivers\irenum.sys - ok
17:19:05.0284 5916 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] C:\Windows\System32\drivers\isapnp.sys
17:19:05.0284 5916 C:\Windows\System32\drivers\isapnp.sys - ok
17:19:05.0299 5916 [ D931D7309DEB2317035B07C9F9E6B0BD ] C:\Windows\System32\drivers\msiscsi.sys
17:19:05.0299 5916 C:\Windows\System32\drivers\msiscsi.sys - ok
17:19:05.0299 5916 [ 97A7070AEA4C058B6418519E869A63B4 ] C:\Windows\System32\drivers\ksecdd.sys
17:19:05.0299 5916 C:\Windows\System32\drivers\ksecdd.sys - ok
17:19:05.0299 5916 [ 26C43A7C2862447EC59DEDA188D1DA07 ] C:\Windows\System32\drivers\ksecpkg.sys
17:19:05.0299 5916 C:\Windows\System32\drivers\ksecpkg.sys - ok
17:19:05.0315 5916 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] C:\Windows\System32\drivers\lsi_fc.sys
17:19:05.0315 5916 C:\Windows\System32\drivers\lsi_fc.sys - ok
17:19:05.0315 5916 [ 1047184A9FDC8BDBFF857175875EE810 ] C:\Windows\System32\drivers\lsi_sas.sys
17:19:05.0315 5916 C:\Windows\System32\drivers\lsi_sas.sys - ok
17:19:05.0330 5916 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] C:\Windows\System32\drivers\lsi_sas2.sys
17:19:05.0330 5916 C:\Windows\System32\drivers\lsi_sas2.sys - ok
17:19:05.0330 5916 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] C:\Windows\System32\drivers\lsi_scsi.sys
17:19:05.0330 5916 C:\Windows\System32\drivers\lsi_scsi.sys - ok
17:19:05.0330 5916 [ A55805F747C6EDB6A9080D7C633BD0F4 ] C:\Windows\System32\drivers\megasas.sys
17:19:05.0330 5916 C:\Windows\System32\drivers\megasas.sys - ok
17:19:05.0346 5916 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] C:\Windows\System32\drivers\MegaSR.sys
17:19:05.0346 5916 C:\Windows\System32\drivers\MegaSR.sys - ok
17:19:05.0346 5916 [ 800BA92F7010378B09F9ED9270F07137 ] C:\Windows\System32\drivers\modem.sys
17:19:05.0346 5916 C:\Windows\System32\drivers\modem.sys - ok
17:19:05.0346 5916 [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] C:\Windows\System32\drivers\mountmgr.sys
17:19:05.0346 5916 C:\Windows\System32\drivers\mountmgr.sys - ok
17:19:05.0362 5916 [ A44B420D30BD56E145D6A2BC8768EC58 ] C:\Windows\System32\drivers\mpio.sys
17:19:05.0362 5916 C:\Windows\System32\drivers\mpio.sys - ok
17:19:05.0362 5916 [ DC722758B8261E1ABAFD31A3C0A66380 ] C:\Windows\System32\drivers\mrxdav.sys
17:19:05.0362 5916 C:\Windows\System32\drivers\mrxdav.sys - ok
17:19:05.0362 5916 [ C25F0BAFA182CBCA2DD3C851C2E75796 ] C:\Windows\System32\drivers\msahci.sys
17:19:05.0362 5916 C:\Windows\System32\drivers\msahci.sys - ok
17:19:05.0377 5916 [ DB801A638D011B9633829EB6F663C900 ] C:\Windows\System32\drivers\msdsm.sys
17:19:05.0377 5916 C:\Windows\System32\drivers\msdsm.sys - ok
17:19:05.0377 5916 [ F9D215A46A8B9753F61767FA72A20326 ] C:\Windows\System32\drivers\mshidkmdf.sys
17:19:05.0377 5916 C:\Windows\System32\drivers\mshidkmdf.sys - ok
17:19:05.0393 5916 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] C:\Windows\System32\drivers\msisadrv.sys
17:19:05.0393 5916 C:\Windows\System32\drivers\msisadrv.sys - ok
17:19:05.0393 5916 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] C:\Windows\System32\drivers\mskssrv.sys
17:19:05.0393 5916 C:\Windows\System32\drivers\mskssrv.sys - ok
17:19:05.0393 5916 [ BDD71ACE35A232104DDD349EE70E1AB3 ] C:\Windows\System32\drivers\mspclock.sys
17:19:05.0393 5916 C:\Windows\System32\drivers\mspclock.sys - ok
17:19:05.0408 5916 [ 4ED981241DB27C3383D72092B618A1D0 ] C:\Windows\System32\drivers\mspqm.sys
17:19:05.0408 5916 C:\Windows\System32\drivers\mspqm.sys - ok
17:19:05.0408 5916 [ 2E66F9ECB30B4221A318C92AC2250779 ] C:\Windows\System32\drivers\mstee.sys
17:19:05.0408 5916 C:\Windows\System32\drivers\mstee.sys - ok
17:19:05.0408 5916 [ 7EA404308934E675BFFDE8EDF0757BCD ] C:\Windows\System32\drivers\MTConfig.sys
17:19:05.0408 5916 C:\Windows\System32\drivers\MTConfig.sys - ok
17:19:05.0424 5916 [ F9A18612FD3526FE473C1BDA678D61C8 ] C:\Windows\System32\drivers\mup.sys
17:19:05.0424 5916 C:\Windows\System32\drivers\mup.sys - ok
17:19:05.0424 5916 [ 760E38053BF56E501D562B70AD796B88 ] C:\Windows\System32\drivers\ndis.sys
17:19:05.0424 5916 C:\Windows\System32\drivers\ndis.sys - ok
17:19:05.0440 5916 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] C:\Windows\System32\drivers\ndiscap.sys
17:19:05.0440 5916 C:\Windows\System32\drivers\ndiscap.sys - ok
17:19:05.0440 5916 [ 64428DFDAF6E88366CB51F45A79C5F69 ] C:\Windows\System32\drivers\netw5v64.sys
17:19:05.0440 5916 C:\Windows\System32\drivers\netw5v64.sys - ok
17:19:05.0440 5916 [ 77889813BE4D166CDAB78DDBA990DA92 ] C:\Windows\System32\drivers\nfrd960.sys
17:19:05.0440 5916 C:\Windows\System32\drivers\nfrd960.sys - ok
17:19:05.0455 5916 [ 0A92CB65770442ED0DC44834632F66AD ] C:\Windows\System32\drivers\nvraid.sys
17:19:05.0455 5916 C:\Windows\System32\drivers\nvraid.sys - ok
17:19:05.0455 5916 [ DAB0E87525C10052BF65F06152F37E4A ] C:\Windows\System32\drivers\nvstor.sys
17:19:05.0455 5916 C:\Windows\System32\drivers\nvstor.sys - ok
17:19:05.0455 5916 [ 270D7CD42D6E3979F6DD0146650F0E05 ] C:\Windows\System32\drivers\NV_AGP.SYS
17:19:05.0455 5916 C:\Windows\System32\drivers\NV_AGP.SYS - ok
17:19:05.0471 5916 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] C:\Windows\System32\drivers\ohci1394.sys
17:19:05.0471 5916 C:\Windows\System32\drivers\ohci1394.sys - ok
17:19:05.0471 5916 [ 0086431C29C35BE1DBC43F52CC273887 ] C:\Windows\System32\drivers\parport.sys
17:19:05.0471 5916 C:\Windows\System32\drivers\parport.sys - ok
17:19:05.0471 5916 [ E9766131EEADE40A27DC27D2D68FBA9C ] C:\Windows\System32\drivers\partmgr.sys
17:19:05.0471 5916 C:\Windows\System32\drivers\partmgr.sys - ok
17:19:05.0486 5916 [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] C:\Windows\System32\drivers\pci.sys
17:19:05.0486 5916 C:\Windows\System32\drivers\pci.sys - ok
17:19:05.0486 5916 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] C:\Windows\System32\drivers\pciide.sys
17:19:05.0486 5916 C:\Windows\System32\drivers\pciide.sys - ok
17:19:05.0502 5916 [ B2E81D4E87CE48589F98CB8C05B01F2F ] C:\Windows\System32\drivers\pcmcia.sys
17:19:05.0502 5916 C:\Windows\System32\drivers\pcmcia.sys - ok
17:19:05.0502 5916 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] C:\Windows\System32\drivers\pcw.sys
17:19:05.0502 5916 C:\Windows\System32\drivers\pcw.sys - ok
17:19:05.0502 5916 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] C:\Windows\System32\drivers\processr.sys
17:19:05.0502 5916 C:\Windows\System32\drivers\processr.sys - ok
17:19:05.0518 5916 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] C:\Windows\System32\drivers\ql2300.sys
17:19:05.0518 5916 C:\Windows\System32\drivers\ql2300.sys - ok
17:19:05.0518 5916 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] C:\Windows\System32\drivers\ql40xx.sys
17:19:05.0518 5916 C:\Windows\System32\drivers\ql40xx.sys - ok
17:19:05.0518 5916 [ 76707BB36430888D9CE9D705398ADB6C ] C:\Windows\System32\drivers\qwavedrv.sys
17:19:05.0518 5916 C:\Windows\System32\drivers\qwavedrv.sys - ok
17:19:05.0533 5916 [ 5A0DA8AD5762FA2D91678A8A01311704 ] C:\Windows\System32\drivers\rasacd.sys
17:19:05.0533 5916 C:\Windows\System32\drivers\rasacd.sys - ok
17:19:05.0533 5916 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] C:\Windows\System32\drivers\rdpbus.sys
17:19:05.0533 5916 C:\Windows\System32\drivers\rdpbus.sys - ok
17:19:05.0549 5916 [ 34ED295FA0121C241BFEF24764FC4520 ] C:\Windows\System32\drivers\rdyboost.sys
17:19:05.0549 5916 C:\Windows\System32\drivers\rdyboost.sys - ok
17:19:05.0549 5916 [ A5DF2F732A6C95554E548FCB6932BD31 ] C:\Windows\System32\drivers\RtsUStor.sys
17:19:05.0549 5916 C:\Windows\System32\drivers\RtsUStor.sys - ok
17:19:05.0549 5916 [ AC03AF3329579FFFB455AA2DAABBE22B ] C:\Windows\System32\drivers\sbp2port.sys
17:19:05.0549 5916 C:\Windows\System32\drivers\sbp2port.sys - ok
17:19:05.0564 5916 [ 253F38D0D7074C02FF8DEB9836C97D2B ] C:\Windows\System32\drivers\scfilter.sys
17:19:05.0564 5916 C:\Windows\System32\drivers\scfilter.sys - ok
17:19:05.0564 5916 [ 111E0EBC0AD79CB0FA014B907B231CF0 ] C:\Windows\System32\drivers\sdbus.sys
17:19:05.0564 5916 C:\Windows\System32\drivers\sdbus.sys - ok
17:19:05.0564 5916 [ CB624C0035412AF0DEBEC78C41F5CA1B ] C:\Windows\System32\drivers\serenum.sys
17:19:05.0564 5916 C:\Windows\System32\drivers\serenum.sys - ok
17:19:05.0580 5916 [ 1C545A7D0691CC4A027396535691C3E3 ] C:\Windows\System32\drivers\sermouse.sys
17:19:05.0580 5916 C:\Windows\System32\drivers\sermouse.sys - ok
17:19:05.0580 5916 [ A554811BCD09279536440C964AE35BBF ] C:\Windows\System32\drivers\sffdisk.sys
17:19:05.0580 5916 C:\Windows\System32\drivers\sffdisk.sys - ok
17:19:05.0596 5916 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] C:\Windows\System32\drivers\sffp_mmc.sys
17:19:05.0596 5916 C:\Windows\System32\drivers\sffp_mmc.sys - ok
17:19:05.0596 5916 [ DD85B78243A19B59F0637DCF284DA63C ] C:\Windows\System32\drivers\sffp_sd.sys
17:19:05.0596 5916 C:\Windows\System32\drivers\sffp_sd.sys - ok
17:19:05.0596 5916 [ A9D601643A1647211A1EE2EC4E433FF4 ] C:\Windows\System32\drivers\sfloppy.sys
17:19:05.0596 5916 C:\Windows\System32\drivers\sfloppy.sys - ok
17:19:05.0611 5916 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] C:\Windows\System32\drivers\sisraid2.sys
17:19:05.0611 5916 C:\Windows\System32\drivers\sisraid2.sys - ok
17:19:05.0611 5916 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] C:\Windows\System32\drivers\sisraid4.sys
17:19:05.0611 5916 C:\Windows\System32\drivers\sisraid4.sys - ok
17:19:05.0611 5916 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] C:\Windows\System32\drivers\smb.sys
17:19:05.0611 5916 C:\Windows\System32\drivers\smb.sys - ok
17:19:05.0627 5916 [ 0C4540311E11664B245A263E1154CEF8 ] C:\Windows\System32\drivers\VSTAZL6.SYS
17:19:05.0627 5916 C:\Windows\System32\drivers\VSTAZL6.SYS - ok
17:19:05.0627 5916 [ 02071D207A9858FBE3A48CBFD59C4A04 ] C:\Windows\System32\drivers\VSTDPV6.SYS
17:19:05.0627 5916 C:\Windows\System32\drivers\VSTDPV6.SYS - ok
17:19:05.0627 5916 [ 18E40C245DBFAF36FD0134A7EF2DF396 ] C:\Windows\System32\drivers\VSTCNXT6.SYS
17:19:05.0627 5916 C:\Windows\System32\drivers\VSTCNXT6.SYS - ok
17:19:05.0642 5916 [ F3817967ED533D08327DC73BC4D5542A ] C:\Windows\System32\drivers\stexstor.sys
17:19:05.0642 5916 C:\Windows\System32\drivers\stexstor.sys - ok
17:19:05.0642 5916 [ 8B2430762099598DA40686F754632EFD ] C:\Windows\System32\drivers\N360x64\0604010.00E\symds64.sys
17:19:05.0642 5916 C:\Windows\System32\drivers\N360x64\0604010.00E\symds64.sys - ok
17:19:05.0658 5916 [ 5CB7F2FD7E30A0F52F93574BFC3A8041 ] C:\Windows\System32\drivers\N360x64\0604010.00E\symefa64.sys
17:19:05.0658 5916 C:\Windows\System32\drivers\N360x64\0604010.00E\symefa64.sys - ok
17:19:05.0658 5916 [ B62A953F2BF3922C8764A29C34A22899 ] C:\Windows\System32\drivers\tcpip.sys
17:19:05.0658 5916 C:\Windows\System32\drivers\tcpip.sys - ok
17:19:05.0658 5916 [ 3371D21011695B16333A3934340C4E7C ] C:\Windows\System32\drivers\tdpipe.sys
17:19:05.0658 5916 C:\Windows\System32\drivers\tdpipe.sys - ok
17:19:05.0674 5916 [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] C:\Windows\System32\drivers\tdtcp.sys
17:19:05.0674 5916 C:\Windows\System32\drivers\tdtcp.sys - ok
17:19:05.0674 5916 [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] C:\Windows\System32\drivers\tssecsrv.sys
17:19:05.0674 5916 C:\Windows\System32\drivers\tssecsrv.sys - ok
17:19:05.0674 5916 [ D11C783E3EF9A3C52C0EBE83CC5000E9 ] C:\Windows\System32\drivers\TsUsbFlt.sys
17:19:05.0674 5916 C:\Windows\System32\drivers\TsUsbFlt.sys - ok
17:19:05.0689 5916 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] C:\Windows\System32\drivers\UAGP35.SYS
17:19:05.0689 5916 C:\Windows\System32\drivers\UAGP35.SYS - ok
17:19:05.0689 5916 [ FF4232A1A64012BAA1FD97C7B67DF593 ] C:\Windows\System32\drivers\udfs.sys
17:19:05.0689 5916 C:\Windows\System32\drivers\udfs.sys - ok
17:19:05.0689 5916 [ 4BFE1BC28391222894CBF1E7D0E42320 ] C:\Windows\System32\drivers\ULIAGPKX.SYS
17:19:05.0689 5916 C:\Windows\System32\drivers\ULIAGPKX.SYS - ok
17:19:05.0705 5916 [ B2E8E8CB557B156DA5493BBDDCC1474D ] C:\Windows\System32\drivers\umpass.sys
17:19:05.0705 5916 C:\Windows\System32\drivers\umpass.sys - ok
17:19:05.0705 5916 [ 43228F8EDD1B0BCDD3145AD246E63D39 ] C:\Windows\System32\drivers\usbaapl64.sys
17:19:05.0705 5916 C:\Windows\System32\drivers\usbaapl64.sys - ok
17:19:05.0720 5916 [ AF0892A803FDDA7492F595368E3B68E7 ] C:\Windows\System32\drivers\usbcir.sys
17:19:05.0720 5916 C:\Windows\System32\drivers\usbcir.sys - ok
17:19:05.0720 5916 [ 9840FC418B4CBD632D3D0A667A725C31 ] C:\Windows\System32\drivers\usbohci.sys
17:19:05.0720 5916 C:\Windows\System32\drivers\usbohci.sys - ok
17:19:05.0720 5916 [ 73188F58FB384E75C4063D29413CEE3D ] C:\Windows\System32\drivers\usbprint.sys
17:19:05.0720 5916 C:\Windows\System32\drivers\usbprint.sys - ok
17:19:05.0736 5916 [ AAA2513C8AED8B54B189FD0C6B1634C0 ] C:\Windows\System32\drivers\usbscan.sys
17:19:05.0736 5916 C:\Windows\System32\drivers\usbscan.sys - ok
17:19:05.0736 5916 [ FED648B01349A3C8395A5169DB5FB7D6 ] C:\Windows\System32\drivers\USBSTOR.SYS
17:19:05.0736 5916 C:\Windows\System32\drivers\USBSTOR.SYS - ok
17:19:05.0736 5916 [ C5C876CCFC083FF3B128F933823E87BD ] C:\Windows\System32\drivers\vdrvroot.sys
17:19:05.0736 5916 C:\Windows\System32\drivers\vdrvroot.sys - ok
17:19:05.0752 5916 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] C:\Windows\System32\drivers\vgapnp.sys
17:19:05.0752 5916 C:\Windows\System32\drivers\vgapnp.sys - ok
17:19:05.0752 5916 [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] C:\Windows\System32\drivers\vhdmp.sys
17:19:05.0752 5916 C:\Windows\System32\drivers\vhdmp.sys - ok
17:19:05.0767 5916 [ E5689D93FFE4E5D66C0178761240DD54 ] C:\Windows\System32\drivers\viaide.sys
17:19:05.0767 5916 C:\Windows\System32\drivers\viaide.sys - ok
17:19:05.0767 5916 [ D2AAFD421940F640B407AEFAAEBD91B0 ] C:\Windows\System32\drivers\volmgr.sys
17:19:05.0767 5916 C:\Windows\System32\drivers\volmgr.sys - ok
17:19:05.0767 5916 [ A255814907C89BE58B79EF2F189B843B ] C:\Windows\System32\drivers\volmgrx.sys
17:19:05.0767 5916 C:\Windows\System32\drivers\volmgrx.sys - ok
17:19:05.0783 5916 [ 0D08D2F3B3FF84E433346669B5E0F639 ] C:\Windows\System32\drivers\volsnap.sys
17:19:05.0783 5916 C:\Windows\System32\drivers\volsnap.sys - ok
17:19:05.0783 5916 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] C:\Windows\System32\drivers\vsmraid.sys
17:19:05.0783 5916 C:\Windows\System32\drivers\vsmraid.sys - ok
17:19:05.0783 5916 [ 4E9440F4F152A7B944CB1663D3935A3E ] C:\Windows\System32\drivers\wacompen.sys
17:19:05.0783 5916 C:\Windows\System32\drivers\wacompen.sys - ok
17:19:05.0798 5916 [ 72889E16FF12BA0F235467D6091B17DC ] C:\Windows\System32\drivers\wd.sys
17:19:05.0798 5916 C:\Windows\System32\drivers\wd.sys - ok
17:19:05.0798 5916 [ 442783E2CB0DA19873B7A63833FF4CB4 ] C:\Windows\System32\drivers\Wdf01000.sys
17:19:05.0798 5916 C:\Windows\System32\drivers\Wdf01000.sys - ok
17:19:05.0814 5916 [ 5CF95B35E59E2A38023836FFF31BE64C ] C:\Windows\SysWOW64\drivers\wimmount.sys
17:19:05.0814 5916 C:\Windows\SysWOW64\drivers\wimmount.sys - ok
17:19:05.0814 5916 [ FE88B288356E7B47B74B13372ADD906D ] C:\Windows\System32\drivers\winusb.sys
17:19:05.0814 5916 C:\Windows\System32\drivers\winusb.sys - ok
17:19:05.0814 5916 [ 6BCC1D7D2FD2453957C5479A32364E52 ] C:\Windows\System32\drivers\ws2ifsl.sys
17:19:05.0814 5916 C:\Windows\System32\drivers\ws2ifsl.sys - ok
17:19:05.0830 5916 [ AB886378EEB55C6C75B4F2D14B6C869F ] C:\Windows\System32\drivers\WUDFPf.sys
17:19:05.0830 5916 C:\Windows\System32\drivers\WUDFPf.sys - ok
17:19:05.0830 5916 [ DDA4CAF29D8C0A297F886BFE561E6659 ] C:\Windows\System32\drivers\WUDFRd.sys
17:19:05.0830 5916 C:\Windows\System32\drivers\WUDFRd.sys - ok
17:19:05.0830 5916 [ B3EEACF62445E24FBB2CD4B0FB4DB026 ] C:\Windows\System32\drivers\yk62x64.sys
17:19:05.0830 5916 C:\Windows\System32\drivers\yk62x64.sys - ok
17:19:05.0845 5916 ============================================================
17:19:05.0845 5916 Scan finished
17:19:05.0845 5916 ============================================================
17:19:05.0861 6072 Detected object count: 0
17:19:05.0861 6072 Actual detected object count: 0
17:29:21.0471 2796 Deinitialize success



----------------------------------------------------------------------------------------------

aswMBR Log

----------------------------------------------------------------------------------------------


aswMBR version 0.9.9.1707 Copyright© 2011 AVAST Software
Run date: 2013-03-10 17:45:40
-----------------------------
17:45:40.662    OS Version: Windows x64 6.1.7601 Service Pack 1
17:45:40.662    Number of processors: 2 586 0x170A
17:45:40.662    ComputerName: JOHNDOE_PC  UserName: johndoe
17:45:45.826    Initialize success
17:47:13.068    AVAST engine defs: 13031001
17:48:37.823    Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IAAStorageDevice-1
17:48:37.838    Disk 0 Vendor: ST932042 0003 Size: 305245MB BusType: 3
17:48:37.854    Disk 0 MBR read successfully
17:48:37.854    Disk 0 MBR scan
17:48:37.854    Disk 0 unknown MBR code
17:48:37.870    Disk 0 Partition 1 80 (A) 07    HPFS/NTFS NTFS          199 MB offset 2048
17:48:37.885    Disk 0 Partition 2 00     07    HPFS/NTFS NTFS       292017 MB offset 409600
17:48:37.932    Disk 0 Partition 3 00     07    HPFS/NTFS NTFS        13027 MB offset 598460416
17:48:37.979    Disk 0 scanning C:\Windows\system32\drivers
17:48:50.786    Service scanning
17:49:16.121    Modules scanning
17:49:16.121    Disk 0 trace - called modules:
17:49:16.152    ntoskrnl.exe CLASSPNP.SYS disk.sys hpdskflt.sys iaStor.sys hal.dll
17:49:16.168    1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa8004cc4710]
17:49:16.168    3 CLASSPNP.SYS[fffff8800115f43f] -> nt!IofCallDriver -> [0xfffffa8004cc3230]
17:49:16.168    5 hpdskflt.sys[fffff8800259e2bd] -> nt!IofCallDriver -> \Device\Ide\IAAStorageDevice-1[0xfffffa8004b37050]
17:49:20.754    AVAST engine scan C:\Windows
17:49:23.219    AVAST engine scan C:\Windows\system32
17:53:30.651    AVAST engine scan C:\Windows\system32\drivers
17:53:51.664    AVAST engine scan C:\Users\johndoe
17:56:28.915    AVAST engine scan C:\ProgramData
17:59:18.145    Scan finished successfully
18:00:21.231    Disk 0 MBR has been saved successfully to "C:\Users\johndoe\Desktop\MBR.dat"
18:00:21.247    The log file has been saved successfully to "C:\Users\johndoe\Desktop\aswMBR_03_10_2013.txt"


----------------------------------------------------------------------------------------------

ESET Log

----------------------------------------------------------------------------------------------


C:\Users\JOHNDOE\AppData\Local\Google\Chrome\User Data\Default\Default\aadbddgddggcdadfgddjddgddegfgbda\background.js Win32/TrojanDownloader.Tracur.V trojan cleaned by deleting - quarantined


Edited by very_confussed, 10 March 2013 - 08:23 PM.


#5 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:10:54 AM

Posted 10 March 2013 - 08:17 PM

Malwarebytes

--------------------

Please download Malwarebytes Anti-Malware and save it to your desktop.  If you already have it installed launch the program and update the database.

  • Make sure you are connected to the Internet and double-click on the it to install the application.
  • When the installation begins, follow the prompts and do not make any changes to default settings except to uncheck any offer for a free Pro trial version
  • Malwarebytes will automatically start and you will be asked to update the program before performing a scan.
  • If an update is found, the program will automatically update itself. Press the OK button and continue.
  • Under the Scanner tab, make sure the "Perform Quick Scan" option is selected.
  • Click on the Scan button.
  • When finished, a message box will say "The scan completed successfully. Click 'Show Results' to display all objects found".
  • Click OK to close the message box, then click the Show Results button to see a list of any malware that was found.
  • Make sure that everything is checked and then click Remove Selected.
  • When removal is completed, a log report will open in Notepad.
  • The log is automatically saved and can be viewed by clicking the Logs tab.
  • Copy and paste the contents of that report in your next reply. Be sure to post the complete log to include the top portion which shows the database version and your operating system.
  • Exit Malwarebytes when done.

Note: If Malwarebytes encounters a file that is difficult to remove, you will be asked to reboot your computer so it can proceed with the disinfection process. If asked to restart the computer, please do so immediately. Failure to reboot normally will prevent Malwarebytes from removing all the malware.


===================================================


Farbar's MiniToolBox

--------------------

  • Please download MiniToolBox, save it to your desktop
  • Please close any Firefox browsers you may have open
  • Double click the MiniToolBox.jpg icon to launch the program
  • Make sure the following options are checked:

    • Flush DNS
    • Report IE Proxy Settings
    • Reset IE Proxy Settings
    • Report FF Proxy Settings
    • Reset FF Proxy Settings
    • List content of Hosts
    • List IP configuration
    • List Winsock Entries
    • List last 10 Event Viewer log
    • List Installed Programs
    • List Devices
    • List Users, Partitions and Memory size.
  • Click Go and once the scan is completed a Result.txt Notepad document will open on your desktop
  • Please copy and paste the contents in your reply


===================================================


Farbar's Service Scanner

--------------------

Please download Farbar Service Scanner, save it to your desktop, and run it.

  • Make sure the following options are checked:

    • Internet Services
    • Windows Firewall
    • System Restore
    • Security Center/Action Center
    • Windows Update
    • Windows Defender
    • Other Services
  • Press "Scan".
  • It will create a log (FSS.txt) in the same directory the tool is run.
  • Please copy and paste the log to your reply.


===================================================


AdwCleaner by Xplode - Search for Adware

-------------------

  • Please download AdwCleaner by Xplode onto your desktop.
  • Double click on AdwCleaner.exe, select OK, then Run
  • Click on DELETE
  • A logfile will automatically open after the scan has finished
  • Copy and paste the contents in your reply
  • You can find the logfile at C:\AdwCleaner[R1].txt as well


===================================================


Junkware Removal Tooll by thisisu

-------------------

  • Please download Junkware Removal Tool and save it to your desktop.
  • Disable your AntiVirus and AntiSpyware applications, usually via a right click on the System Tray icon. They may otherwise interfere with our tools. (Click on this link to see a list of programs that should be disabled. The list is not all inclusive.)
  • Right-mouse click JRT.exe and select Run as administrator (Windows XP double click the icon)
  • Please allow the program time to run
  • Once completed a Notepad document will open on your desktop
  • Copy and paste the contents in your reply


===================================================


Rkill

-------------------

Please download Rkill by Grinler from one of the 4 links below (if one of them does not work try another...) and save it to your desktop:


  • In order for Rkill to run properly you must disable your anti-malware software.  Please refer to this page if you are not sure how.
  • Double-click on Rkill. (If you are using Windows Vista, please right-click on it and select Run As Administrator)
    • Note:  You may have to run Rkill a few times before it is successful.  You may also have to download Rkill from a different link which will save it as a different file name.
  • A black screen will appear and then disappear. Please do not worry, that is normal. This means that the tool has been successfully executed.
  • An Rkill.log will appear.  Please copy and paste the contents in your reply (file also located at c:\rkill.log)
  • Do not reboot your computer after running Rkill as the malware programs will start again.  If your computer reboots, run Rkill again before continuing on to the next step.
  • If nothing happens or if the tool does not run, please let me know in your next reply.


===================================================


Autoruns

--------------------

  • Please download AutoRuns and save it to your desktop
  • Double click the AutoRuns.zip folder
  • Double click autoruns.exe (not autorunsc.exe), select Run, then Run again and allow the information to populate
  • Select File, Save, Desktop (in the left hand pane), then Save filename as Autoruns.txt and change Save as type to  Text(*.txt).
  • Double click on the text file,copy and paste the contents in your reply


===================================================


Things I would like to see in your next reply. Please be sure to copy and paste the information rather than send an attachment. :thumbsup2:

  • Malwarebytes log
  • MiniToolBox log
  • Farbar's Service Scanner log
  • AdwCleaner log
  • Junkware Removal Tool log
  • Rkill log
  • Autoruns log

 



#6 very_confussed

very_confussed
  • Topic Starter

  • Members
  • 9 posts
  • OFFLINE
  •  
  • Local time:10:54 AM

Posted 10 March 2013 - 10:36 PM

Here are all the logs that you requested

 

---------------------------------------------------

Malware Bytes Log

---------------------------------------------------

 

Malwarebytes Anti-Malware 1.70.0.1100
www.malwarebytes.org

Database version: v2013.03.10.07

Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 9.0.8112.16421
JOHNDOE :: JOHNDOE_PC [administrator]

3/10/2013 8:24:33 PM
mbam-log-2013-03-10 (20-24-33).txt

Scan type: Quick scan
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM | P2P
Scan options disabled:
Objects scanned: 206044
Time elapsed: 2 minute(s), 43 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 0
(No malicious items detected)

(end)

 

--------------------------------------------------------------------

MiniToolBox log (Result.txt file)

--------------------------------------------------------------------

 

MiniToolBox by Farbar  Version:05-03-2013
Ran by JOHNDOE (administrator) on 10-03-2013 at 20:30:41
Running from "C:\Users\JOHNDOE\Desktop"
Windows 7 Home Premium Service Pack 1 (X64)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.
========================= Hosts content: =================================

 

========================= IP Configuration: ================================

Broadcom 802.11b/g WLAN = Wireless Network Connection (Connected)
Microsoft Virtual WiFi Miniport Adapter = Wireless Network Connection 2 (Media disconnected)


# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset
set global icmpredirects=enabled
set interface interface="Wireless Network Connection" forwarding=disabled advertise=disabled mtu=1300 metric=0 siteprefixlength=0 nud=disabled routerdiscovery=disabled managedaddress=disabled otherstateful=disabled weakhostsend=disabled weakhostreceive=disabled ignoredefaultroutes=disabled advertisedrouterlifetime=0 advertisedefaultroute=disabled currenthoplimit=0 forcearpndwolpattern=disabled enabledirectedmacwolpattern=disabled
set interface interface="Local Area Connection" forwarding=disabled advertise=disabled mtu=1300 metric=0 siteprefixlength=0 nud=disabled routerdiscovery=disabled managedaddress=disabled otherstateful=disabled weakhostsend=disabled weakhostreceive=disabled ignoredefaultroutes=disabled advertisedrouterlifetime=0 advertisedefaultroute=disabled currenthoplimit=0 forcearpndwolpattern=disabled enabledirectedmacwolpattern=disabled
set interface interface="Local Area Connection 2" forwarding=disabled advertise=disabled mtu=1300 metric=0 siteprefixlength=0 nud=disabled routerdiscovery=disabled managedaddress=disabled otherstateful=disabled weakhostsend=disabled weakhostreceive=disabled ignoredefaultroutes=disabled advertisedrouterlifetime=0 advertisedefaultroute=disabled currenthoplimit=0 forcearpndwolpattern=disabled enabledirectedmacwolpattern=disabled
set interface interface="Wireless Network Connection 2" forwarding=disabled advertise=disabled mtu=1300 metric=0 siteprefixlength=0 nud=disabled routerdiscovery=disabled managedaddress=disabled otherstateful=disabled weakhostsend=disabled weakhostreceive=disabled ignoredefaultroutes=disabled advertisedrouterlifetime=0 advertisedefaultroute=disabled currenthoplimit=0 forcearpndwolpattern=disabled enabledirectedmacwolpattern=disabled


popd
# End of IPv4 configuration

 

Windows IP Configuration

   Host Name . . . . . . . . . . . . : JOHNDOE_PC
   Primary Dns Suffix  . . . . . . . :
   Node Type . . . . . . . . . . . . : Hybrid
   IP Routing Enabled. . . . . . . . : No
   WINS Proxy Enabled. . . . . . . . : No
   DNS Suffix Search List. . . . . . : Belkin

Wireless LAN adapter Wireless Network Connection 2:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Microsoft Virtual WiFi Miniport Adapter
   Physical Address. . . . . . . . . : 90-4C-E5-16-25-55
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes

Wireless LAN adapter Wireless Network Connection:

   Connection-specific DNS Suffix  . : Belkin
   Description . . . . . . . . . . . : Broadcom 802.11b/g WLAN
   Physical Address. . . . . . . . . : 90-4C-E5-16-25-55
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes
   Link-local IPv6 Address . . . . . : fe80::a817:11a6:5c20:c9b6%10(Preferred)
   IPv4 Address. . . . . . . . . . . : 192.168.2.3(Preferred)
   Subnet Mask . . . . . . . . . . . : 255.255.255.0
   Lease Obtained. . . . . . . . . . : Sunday, March 10, 2013 5:03:04 PM
   Lease Expires . . . . . . . . . . : Thursday, April 17, 2149 2:59:07 AM
   Default Gateway . . . . . . . . . : 192.168.2.1
   DHCP Server . . . . . . . . . . . : 192.168.2.1
   DHCPv6 IAID . . . . . . . . . . . : 194006245
   DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-12-25-57-95-90-4C-E5-16-25-55
   DNS Servers . . . . . . . . . . . : 192.168.2.1
   NetBIOS over Tcpip. . . . . . . . : Enabled

Tunnel adapter Teredo Tunneling Pseudo-Interface:

   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
   IPv6 Address. . . . . . . . . . . : 2001:0:4137:9e76:34a9:19db:3f57:fdfc(Preferred)
   Link-local IPv6 Address . . . . . : fe80::34a9:19db:3f57:fdfc%15(Preferred)
   Default Gateway . . . . . . . . . : ::
   NetBIOS over Tcpip. . . . . . . . : Disabled

Tunnel adapter Local Area Connection* 14:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : Belkin
   Description . . . . . . . . . . . : Microsoft ISATAP Adapter
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.Belkin:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Microsoft ISATAP Adapter #2
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
DNS request timed out.
    timeout was 2 seconds.
Server:  UnKnown
Address:  192.168.2.1

Name:    google.com
Addresses:  2607:f8b0:4000:801::1006
   74.125.227.73
   74.125.227.78
   74.125.227.64
   74.125.227.65
   74.125.227.66
   74.125.227.67
   74.125.227.68
   74.125.227.69
   74.125.227.70
   74.125.227.71
   74.125.227.72


Pinging google.com [74.125.227.78] with 32 bytes of data:
Reply from 74.125.227.78: bytes=32 time=19ms TTL=53
Reply from 74.125.227.78: bytes=32 time=22ms TTL=53

Ping statistics for 74.125.227.78:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 19ms, Maximum = 22ms, Average = 20ms
Server:  F5d8233-4v3
Address:  192.168.2.1

Name:    yahoo.com
Addresses:  206.190.36.45
   98.138.253.109
   98.139.183.24


Pinging yahoo.com [98.139.183.24] with 32 bytes of data:
Reply from 98.139.183.24: bytes=32 time=498ms TTL=49
Reply from 98.139.183.24: bytes=32 time=517ms TTL=49

Ping statistics for 98.139.183.24:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 498ms, Maximum = 517ms, Average = 507ms

Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

Ping statistics for 127.0.0.1:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 0ms, Maximum = 0ms, Average = 0ms
===========================================================================
Interface List
 14...90 4c e5 16 25 55 ......Microsoft Virtual WiFi Miniport Adapter
 10...90 4c e5 16 25 55 ......Broadcom 802.11b/g WLAN
  1...........................Software Loopback Interface 1
 15...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
 22...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter
 20...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #2
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination        Netmask          Gateway       Interface  Metric
          0.0.0.0          0.0.0.0      192.168.2.1      192.168.2.3     25
        127.0.0.0        255.0.0.0         On-link         127.0.0.1    306
        127.0.0.1  255.255.255.255         On-link         127.0.0.1    306
  127.255.255.255  255.255.255.255         On-link         127.0.0.1    306
      192.168.2.0    255.255.255.0         On-link       192.168.2.3    281
      192.168.2.3  255.255.255.255         On-link       192.168.2.3    281
    192.168.2.255  255.255.255.255         On-link       192.168.2.3    281
        224.0.0.0        240.0.0.0         On-link         127.0.0.1    306
        224.0.0.0        240.0.0.0         On-link       192.168.2.3    281
  255.255.255.255  255.255.255.255         On-link         127.0.0.1    306
  255.255.255.255  255.255.255.255         On-link       192.168.2.3    281
===========================================================================
Persistent Routes:
  None

IPv6 Route Table
===========================================================================
Active Routes:
 If Metric Network Destination      Gateway
 15     58 ::/0                     On-link
  1    306 ::1/128                  On-link
 15     58 2001::/32                On-link
 15    306 2001:0:4137:9e76:34a9:19db:3f57:fdfc/128
                                    On-link
 10    281 fe80::/64                On-link
 15    306 fe80::/64                On-link
 15    306 fe80::34a9:19db:3f57:fdfc/128
                                    On-link
 10    281 fe80::a817:11a6:5c20:c9b6/128
                                    On-link
  1    306 ff00::/8                 On-link
 15    306 ff00::/8                 On-link
 10    281 ff00::/8                 On-link
===========================================================================
Persistent Routes:
  None
========================= Winsock entries =====================================

Catalog5 01 C:\Windows\SysWOW64\NLAapi.dll [52224] (Microsoft Corporation)
Catalog5 02 C:\Windows\SysWOW64\napinsp.dll [52224] (Microsoft Corporation)
Catalog5 03 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 04 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 05 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog5 06 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog5 07 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog5 08 C:\Windows\SysWOW64\winrnr.dll [20992] (Microsoft Corporation)
Catalog9 01 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 02 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 03 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 04 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 05 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 06 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 07 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 08 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 09 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 10 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
x64-Catalog5 01 C:\Windows\System32\NLAapi.dll [70656] (Microsoft Corporation)
x64-Catalog5 02 C:\Windows\System32\napinsp.dll [68096] (Microsoft Corporation)
x64-Catalog5 03 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 04 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 05 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [170880] (Microsoft Corp.)
x64-Catalog5 06 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [170880] (Microsoft Corp.)
x64-Catalog5 07 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog5 08 C:\Windows\System32\winrnr.dll [28672] (Microsoft Corporation)
x64-Catalog9 01 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 02 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 03 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 04 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 05 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 06 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 07 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 08 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 09 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 10 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (03/09/2013 00:33:50 PM) (Source: Application Hang) (User: )
Description: The program iexplore.exe version 9.0.8112.16464 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.

Process ID: 1778

Start Time: 01ce1cec141f043e

Termination Time: 20

Application Path: C:\Program Files (x86)\Internet Explorer\iexplore.exe

Report Id:

Error: (03/09/2013 00:28:34 PM) (Source: Application Hang) (User: )
Description: The program iexplore.exe version 9.0.8112.16464 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.

Process ID: 6cc

Start Time: 01ce1ceb6d6792d0

Termination Time: 13

Application Path: C:\Program Files (x86)\Internet Explorer\iexplore.exe

Report Id:

Error: (03/09/2013 00:27:51 PM) (Source: Application Hang) (User: )
Description: The program iexplore.exe version 9.0.8112.16464 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.

Process ID: 930

Start Time: 01ce1cea71aec8d0

Termination Time: 11

Application Path: C:\Program Files (x86)\Internet Explorer\iexplore.exe

Report Id:

Error: (03/08/2013 06:36:53 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "assemblyIdentity1".Error in manifest or policy file "assemblyIdentity2" on line assemblyIdentity3.
The value "MAJOR_VERSION.MINOR_VERSION.BUILD_NUMBER_MAJOR.BUILD_NUMBER_MINOR" of attribute "version" in element "assemblyIdentity" is invalid.

Error: (03/06/2013 00:58:54 AM) (Source: Application Error) (User: )
Description: Faulting application name: iexplore.exe, version: 9.0.8112.16464, time stamp: 0x50ec971b
Faulting module name: adawaretb.dll_unloaded, version: 0.0.0.0, time stamp: 0x50aa93d2
Exception code: 0xc0000005
Fault offset: 0x05e532e8
Faulting process id: 0x17c0
Faulting application start time: 0xiexplore.exe0
Faulting application path: iexplore.exe1
Faulting module path: iexplore.exe2
Report Id: iexplore.exe3

Error: (03/05/2013 00:19:58 AM) (Source: Application Error) (User: )
Description: Faulting application name: iexplore.exe, version: 9.0.8112.16464, time stamp: 0x50ec971b
Faulting module name: MSHTML.dll, version: 9.0.8112.16464, time stamp: 0x50ec9c0f
Exception code: 0xc0000005
Fault offset: 0x00179972
Faulting process id: 0x484
Faulting application start time: 0xiexplore.exe0
Faulting application path: iexplore.exe1
Faulting module path: iexplore.exe2
Report Id: iexplore.exe3

Error: (03/03/2013 00:47:47 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "assemblyIdentity1".Error in manifest or policy file "assemblyIdentity2" on line assemblyIdentity3.
The value "MAJOR_VERSION.MINOR_VERSION.BUILD_NUMBER_MAJOR.BUILD_NUMBER_MINOR" of attribute "version" in element "assemblyIdentity" is invalid.

Error: (03/01/2013 11:22:37 PM) (Source: Application Hang) (User: )
Description: The program iexplore.exe version 9.0.8112.16464 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.

Process ID: 1f04

Start Time: 01ce16fd40df6cbe

Termination Time: 9

Application Path: C:\Program Files (x86)\Internet Explorer\iexplore.exe

Report Id:

Error: (02/28/2013 10:25:31 PM) (Source: Application Hang) (User: )
Description: The program iexplore.exe version 9.0.8112.16464 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.

Process ID: 178c

Start Time: 01ce162c5306200b

Termination Time: 0

Application Path: C:\Program Files (x86)\Internet Explorer\iexplore.exe

Report Id:

Error: (02/25/2013 06:06:39 PM) (Source: Application Error) (User: )
Description: Faulting application name: iexplore.exe, version: 9.0.8112.16464, time stamp: 0x50ec971b
Faulting module name: MSHTML.dll, version: 9.0.8112.16464, time stamp: 0x50ec9c0f
Exception code: 0xc0000005
Fault offset: 0x003a15cd
Faulting process id: 0x16e4
Faulting application start time: 0xiexplore.exe0
Faulting application path: iexplore.exe1
Faulting module path: iexplore.exe2
Report Id: iexplore.exe3


System errors:
=============
Error: (03/10/2013 05:03:14 PM) (Source: Service Control Manager) (User: )
Description: The ScRegSetValueExW call failed for FailureActions with the following error:
%%5

Error: (03/10/2013 05:03:04 PM) (Source: Service Control Manager) (User: )
Description: The ScRegSetValueExW call failed for FailureActions with the following error:
%%5

Error: (03/10/2013 05:01:53 PM) (Source: Service Control Manager) (User: )
Description: The ScRegSetValueExW call failed for FailureActions with the following error:
%%5

Error: (03/10/2013 02:28:49 PM) (Source: Service Control Manager) (User: )
Description: The ScRegSetValueExW call failed for FailureActions with the following error:
%%5

Error: (03/10/2013 02:28:39 PM) (Source: Service Control Manager) (User: )
Description: The ScRegSetValueExW call failed for FailureActions with the following error:
%%5

Error: (03/10/2013 02:27:19 AM) (Source: Service Control Manager) (User: )
Description: The ScRegSetValueExW call failed for FailureActions with the following error:
%%5

Error: (03/10/2013 00:37:35 AM) (Source: Service Control Manager) (User: )
Description: The ScRegSetValueExW call failed for FailureActions with the following error:
%%5

Error: (03/10/2013 00:37:26 AM) (Source: Service Control Manager) (User: )
Description: The ScRegSetValueExW call failed for FailureActions with the following error:
%%5

Error: (03/10/2013 00:36:09 AM) (Source: Service Control Manager) (User: )
Description: The ScRegSetValueExW call failed for FailureActions with the following error:
%%5

Error: (03/10/2013 00:33:42 AM) (Source: Service Control Manager) (User: )
Description: The ScRegSetValueExW call failed for FailureActions with the following error:
%%5


Microsoft Office Sessions:
=========================
Error: (03/09/2013 00:33:50 PM) (Source: Application Hang)(User: )
Description: iexplore.exe9.0.8112.16464177801ce1cec141f043e20C:\Program Files (x86)\Internet Explorer\iexplore.exe

Error: (03/09/2013 00:28:34 PM) (Source: Application Hang)(User: )
Description: iexplore.exe9.0.8112.164646cc01ce1ceb6d6792d013C:\Program Files (x86)\Internet Explorer\iexplore.exe

Error: (03/09/2013 00:27:51 PM) (Source: Application Hang)(User: )
Description: iexplore.exe9.0.8112.1646493001ce1cea71aec8d011C:\Program Files (x86)\Internet Explorer\iexplore.exe

Error: (03/08/2013 06:36:53 PM) (Source: SideBySide)(User: )
Description: assemblyIdentityversionMAJOR_VERSION.MINOR_VERSION.BUILD_NUMBER_MAJOR.BUILD_NUMBER_MINORc:\Program Files (x86)\Common Files\Adobe AIR\Versions\1.0\Adobe AIR.dllc:\Program Files (x86)\Common Files\Adobe AIR\Versions\1.0\Adobe AIR.dll3

Error: (03/06/2013 00:58:54 AM) (Source: Application Error)(User: )
Description: iexplore.exe9.0.8112.1646450ec971badawaretb.dll_unloaded0.0.0.050aa93d2c000000505e532e817c001ce1a2f899bf113C:\Program Files (x86)\Internet Explorer\iexplore.exeadawaretb.dllecff23d1-8622-11e2-80cf-def97a88a8bd

Error: (03/05/2013 00:19:58 AM) (Source: Application Error)(User: )
Description: iexplore.exe9.0.8112.1646450ec971bMSHTML.dll9.0.8112.1646450ec9c0fc00000050017997248401ce19610cb3a603C:\Program Files (x86)\Internet Explorer\iexplore.exeC:\Windows\system32\MSHTML.dll520ddc8c-8554-11e2-9bb2-b1ac892877b3

Error: (03/03/2013 00:47:47 PM) (Source: SideBySide)(User: )
Description: assemblyIdentityversionMAJOR_VERSION.MINOR_VERSION.BUILD_NUMBER_MAJOR.BUILD_NUMBER_MINORc:\Program Files (x86)\Common Files\Adobe AIR\Versions\1.0\Adobe AIR.dllc:\Program Files (x86)\Common Files\Adobe AIR\Versions\1.0\Adobe AIR.dll3

Error: (03/01/2013 11:22:37 PM) (Source: Application Hang)(User: )
Description: iexplore.exe9.0.8112.164641f0401ce16fd40df6cbe9C:\Program Files (x86)\Internet Explorer\iexplore.exe

Error: (02/28/2013 10:25:31 PM) (Source: Application Hang)(User: )
Description: iexplore.exe9.0.8112.16464178c01ce162c5306200b0C:\Program Files (x86)\Internet Explorer\iexplore.exe

Error: (02/25/2013 06:06:39 PM) (Source: Application Error)(User: )
Description: iexplore.exe9.0.8112.1646450ec971bMSHTML.dll9.0.8112.1646450ec9c0fc0000005003a15cd16e401ce13a7acc6d6bbC:\Program Files (x86)\Internet Explorer\iexplore.exeC:\Windows\system32\MSHTML.dll027429f7-7fa0-11e2-9c8a-f53440155db2


=========================== Installed Programs ============================

Acrobat.com (Version: 1.6.65)
Activate Norton Online Backup (Version: 1.1.20.0)
Adobe AIR (Version: 1.5.0.7220)
Adobe Flash Player 11 ActiveX 64-bit (Version: 11.2.202.228)
Adobe Reader 9.5.2 MUI (Version: 9.5.2)
Adobe Shockwave Player 11.6 (Version: 11.6.3.633)
Apple Application Support (Version: 2.3.2)
Apple Mobile Device Support (Version: 6.0.1.3)
Apple Software Update (Version: 2.1.3.127)
AVG 2013 (Version: 13.0.2641)
AVG 2013 (Version: 13.0.2904)
AVG 2013 (Version: 2013.0.2904)
Broadcom 802.11 Wireless LAN Adapter (Version: 5.60.18.12)
Brownstone Equation Editor 5 (Version: 5.2)
Compatibility Pack for the 2007 Office system (Version: 12.0.6612.1000)
CyberLink DVD Suite (Version: 6.0.3101)
D3DX10 (Version: 15.4.2368.0902)
Definition Update for Microsoft Office 2010 (KB982726) 32-Bit Edition
DivX Setup (Version: 2.6.1.9)
ENE CIR Receiver Driver (Version: 2.7.4.0)
ESET Online Scanner v3
Google Chrome (Version: 25.0.1364.152)
Google Update Helper (Version: 1.3.21.135)
Hewlett-Packard ACLM.NET v1.2.1.1 (Version: 1.00.0000)
HP 3D DriveGuard (Version: 4.0.3.1)
HP Advisor (Version: 3.3.12286.3436)
HP Customer Experience Enhancements (Version: 6.0.1.7)
HP Quick Launch Buttons (Version: 6.50.12.1)
HP Setup (Version: 1.2.3220.3079)
HP Smart Web Printing 4.60 (Version: 4.60)
HP Support Assistant (Version: 7.0.39.15)
HP Update (Version: 5.001.000.014)
HP User Guides 0154 (Version: 1.01.0001)
HP Wireless Assistant (Version: 3.50.9.1)
IDT Audio (Version: 1.0.6230.0)
Intel® Graphics Media Accelerator Driver (Version: 8.15.10.1883)
Intel® Matrix Storage Manager
iTunes (Version: 11.0.0.163)
Java 7 Update 10 (Version: 7.0.100)
Java Auto Updater (Version: 2.1.9.0)
Java™ 6 Update 14 (64-bit) (Version: 6.0.140)
Junk Mail filter update (Version: 15.4.3502.0922)
Kaplan NCLEX Question Trainer
LightScribe System Software (Version: 1.18.10.2)
Malwarebytes Anti-Malware version 1.70.0.1100 (Version: 1.70.0.1100)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft Application Error Reporting (Version: 12.0.6015.5000)
Microsoft Live Search Toolbar (Version: 3.0.560.0)
Microsoft Office 2010 Service Pack 1 (SP1)
Microsoft Office Access MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Access Setup Metadata MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Excel MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Groove MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office InfoPath MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Office 64-bit Components 2010 (Version: 14.0.6029.1000)
Microsoft Office OneNote MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Outlook MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office PowerPoint MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office PowerPoint Viewer 2007 (English) (Version: 12.0.6612.1000)
Microsoft Office Professional Plus 2010 (Version: 14.0.6029.1000)
Microsoft Office Proof (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Proof (French) 2010 (Version: 14.0.6029.1000)
Microsoft Office Proof (Spanish) 2010 (Version: 14.0.6029.1000)
Microsoft Office Proofing (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Publisher MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Shared 64-bit MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Shared MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Shared Setup Metadata MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Suite Activation Assistant (Version: 2.9)
Microsoft Office Word MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Silverlight (Version: 4.1.10329.0)
Microsoft Visual C++ 2005 ATL Update kb973923 - x64 8.0.50727.4053 (Version: 8.0.50727.4053)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (Version: 8.0.50727.4053)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.56336)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.61000)
Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (Version: 10.0.40219)
Microsoft Works (Version: 9.7.0621)
MSVCRT (Version: 15.4.2862.0708)
MSVCRT_amd64 (Version: 15.4.2862.0708)
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0)
NCLEX Review 3000
NCLEX-RN Review 1.0 (Version: 1.0)
NCLEX-RN Strategy Practice Exam
Norton 360 (Version: 6.4.1.14)
Power2Go (Version: 6.0.3101)
PowerDirector (Version: 7.0.3101)
PowerRecover (Version: 5.5.1923)
QLBCASL (Version: 6.40.17.2)
QuickTime (Version: 7.71.80.42)
Realtek 8136 8168 8169 Ethernet Driver (Version: 1.00.0007)
Realtek USB 2.0 Card Reader (Version: 6.1.7100.30094)
Saunders NCLEX-RN4e (Version: 1.0)
SmartWebPrinting (Version: 140.0.186.000)
swMSM (Version: 12.0.0.1)
Synaptics Pointing Device Driver (Version: 14.0.0.3)
TOEFL Sample Questions (Version: 3.00.0000)
Transfer Utility (Version: 2.05.251)
Tutor
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (Version: 1)
Update for Microsoft Office 2010 (KB2494150)
Update for Microsoft Office 2010 (KB2553065)
Update for Microsoft Office 2010 (KB2553092)
Update for Microsoft Office 2010 (KB2553181) 32-Bit Edition
Update for Microsoft Office 2010 (KB2553267) 32-Bit Edition
Update for Microsoft Office 2010 (KB2553310) 32-Bit Edition
Update for Microsoft Office 2010 (KB2553378) 32-Bit Edition
Update for Microsoft Office 2010 (KB2566458)
Update for Microsoft Office 2010 (KB2596964) 32-Bit Edition
Update for Microsoft Office 2010 (KB2598242) 32-Bit Edition
Update for Microsoft Office 2010 (KB2687509) 32-Bit Edition
Update for Microsoft Office 2010 (KB2760631) 32-Bit Edition
Update for Microsoft OneNote 2010 (KB2553290) 32-Bit Edition
Update for Microsoft OneNote 2010 (KB2687277) 32-Bit Edition
Update for Microsoft Outlook 2010 (KB2597090) 32-Bit Edition
Update for Microsoft Outlook 2010 (KB2687623) 32-Bit Edition
Update for Microsoft Outlook Social Connector 2010 (KB2553406) 32-Bit Edition
Update for Microsoft PowerPoint 2010 (KB2598240) 32-Bit Edition
Update for Microsoft SharePoint Workspace 2010 (KB2589371) 32-Bit Edition
VC80CRTRedist - 8.0.50727.6195 (Version: 1.2.0)
Visual Studio 2010 x64 Redistributables (Version: 13.0.0.1)
Windows Live Communications Platform (Version: 15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3502.0922)
Windows Live ID Sign-in Assistant (Version: 7.250.4225.0)
Windows Live Installer (Version: 15.4.3502.0922)
Windows Live Language Selector (Version: 15.4.3502.0922)
Windows Live Mail (Version: 15.4.3502.0922)
Windows Live Messenger (Version: 15.4.3502.0922)
Windows Live MIME IFilter (Version: 15.4.3502.0922)
Windows Live Photo Common (Version: 15.4.3502.0922)
Windows Live PIMT Platform (Version: 15.4.3502.0922)
Windows Live SOXE (Version: 15.4.3502.0922)
Windows Live SOXE Definitions (Version: 15.4.3502.0922)
Windows Live UX Platform (Version: 15.4.3502.0922)
Windows Live UX Platform Language Pack (Version: 15.4.3502.0922)
Windows Live Writer (Version: 15.4.3502.0922)
Windows Live Writer Resources (Version: 15.4.3502.0922)
Yahoo! Messenger

========================= Devices: ================================


========================= Memory info: ===================================

Percentage of memory in use: 53%
Total physical RAM: 3999.19 MB
Available physical RAM: 1856.55 MB
Total Pagefile: 7996.56 MB
Available Pagefile: 5712.4 MB
Total Virtual: 4095.88 MB
Available Virtual: 3964.18 MB

========================= Partitions: =====================================

1 Drive c: () (Fixed) (Total:285.17 GB) (Free:223.71 GB) NTFS
2 Drive d: (RECOVERY) (Fixed) (Total:12.72 GB) (Free:2.13 GB) NTFS

========================= Users: ========================================

User accounts for \\JOHNDOE_PC

Administrator            Guest                    JOHNDOE                  


**** End of log ****

 

---------------------------------------------------------------------------

Farbar's Service Scanner Log

---------------------------------------------------------------------------

 

Farbar Service Scanner Version: 03-03-2013
Ran by JOHNDOE (administrator) on 10-03-2013 at 21:18:11
Running from "C:\Users\JOHNDOE\Desktop"
Windows 7 Home Premium Service Pack 1 (X64)
Boot Mode: Normal
****************************************************************

Internet Services:
============

Connection Status:
==============
Localhost is accessible.
LAN connected.
Google IP is accessible.
Google.com is accessible.
Yahoo IP is accessible.
Yahoo.com is accessible.


Windows Firewall:
=============

Firewall Disabled Policy:
==================


System Restore:
============

System Restore Disabled Policy:
========================


Action Center:
============

Windows Update:
============

Windows Autoupdate Disabled Policy:
============================


Windows Defender:
==============
WinDefend Service is not running. Checking service configuration:
The start type of WinDefend service is set to Demand. The default start type is Auto.
The ImagePath of WinDefend service is OK.
The ServiceDll of WinDefend service is OK.


Windows Defender Disabled Policy:
==========================
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows Defender]
"DisableAntiSpyware"=DWORD:1


Other Services:
==============


File Check:
========
C:\Windows\System32\nsisvc.dll => MD5 is legit
C:\Windows\System32\drivers\nsiproxy.sys => MD5 is legit
C:\Windows\System32\dhcpcore.dll => MD5 is legit
C:\Windows\System32\drivers\afd.sys => MD5 is legit
C:\Windows\System32\drivers\tdx.sys => MD5 is legit
C:\Windows\System32\Drivers\tcpip.sys => MD5 is legit
C:\Windows\System32\dnsrslvr.dll => MD5 is legit
C:\Windows\System32\mpssvc.dll => MD5 is legit
C:\Windows\System32\bfe.dll => MD5 is legit
C:\Windows\System32\drivers\mpsdrv.sys => MD5 is legit
C:\Windows\System32\SDRSVC.dll => MD5 is legit
C:\Windows\System32\vssvc.exe => MD5 is legit
C:\Windows\System32\wscsvc.dll => MD5 is legit
C:\Windows\System32\wbem\WMIsvc.dll => MD5 is legit
C:\Windows\System32\wuaueng.dll => MD5 is legit
C:\Windows\System32\qmgr.dll => MD5 is legit
C:\Windows\System32\es.dll => MD5 is legit
C:\Windows\System32\cryptsvc.dll => MD5 is legit
C:\Program Files\Windows Defender\MpSvc.dll => MD5 is legit
C:\Windows\System32\ipnathlp.dll => MD5 is legit
C:\Windows\System32\iphlpsvc.dll => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit


**** End of log ****



#7 very_confussed

very_confussed
  • Topic Starter

  • Members
  • 9 posts
  • OFFLINE
  •  
  • Local time:10:54 AM

Posted 10 March 2013 - 10:39 PM

------------------------------------------------------

AdwCleaner Log

------------------------------------------------------

 

# AdwCleaner v2.114 - Logfile created 03/10/2013 at 21:20:43
# Updated 05/03/2013 by Xplode
# Operating system : Windows 7 Home Premium Service Pack 1 (64 bits)
# User : JOHNDOE - JOHNDOE_PC
# Boot Mode : Normal
# Running from : C:\Users\JOHNDOE\Desktop\AdwCleaner.exe
# Option [Delete]


***** [Services] *****


***** [Files / Folders] *****

File Deleted : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\eBay.lnk
Folder Deleted : C:\Users\JOHNDOE\AppData\LocalLow\boost_interprocess

***** [Registry] *****

Key Deleted : HKLM\Software\AVG Secure Search
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{761F6A83-F007-49E4-8EAC-CDB6808EF06F}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{79FB5FC8-44B9-4AF5-BADD-CCE547F953E5}

***** [Internet Browsers] *****

-\\ Internet Explorer v9.0.8112.16464

[OK] Registry is clean.

-\\ Google Chrome v25.0.1364.152

File : C:\Users\JOHNDOE\AppData\Local\Google\Chrome\User Data\Default\Preferences

[OK] File is clean.

*************************

AdwCleaner[S1].txt - [1048 octets] - [10/03/2013 21:20:43]

########## EOF - C:\AdwCleaner[S1].txt - [1108 octets] ##########

 

 

---------------------------------------------------------------

JunkRemovalTool Log

---------------------------------------------------------------

 

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 4.6.9 (03.06.2013:1)
OS: Windows 7 Home Premium x64
Ran by JOHNDOE on Sun 03/10/2013 at 21:29:17.40
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

 


~~~ Services

 

~~~ Registry Values

Successfully repaired: [Registry Value] hkey_local_machine\software\microsoft\internet explorer\main\\Start Page

 

~~~ Registry Keys

 

~~~ Files

 

~~~ Folders

 

~~~ Chrome

Dumping contents of C:\Users\JOHNDOE\appdata\local\Google\Chrome\User Data\Default\Default
C:\Users\JOHNDOE\appdata\local\Google\Chrome\User Data\Default\Default\aadbddgddggcdadfgddjddgddegfgbda
C:\Users\JOHNDOE\appdata\local\Google\Chrome\User Data\Default\Default\aadbddgddggcdadfgddjddgddegfgbda\manifest.json

Successfully deleted: [Folder] C:\Users\JOHNDOE\appdata\local\Google\Chrome\User Data\Default\Default [Default Extension 1.0]

 

~~~ Event Viewer Logs were cleared

 

 

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on Sun 03/10/2013 at 21:38:37.21
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

 

------------------------------------------------------------

RKill Log

------------------------------------------------------------

 

Rkill 2.4.7 by Lawrence Abrams (Grinler)
http://www.bleepingcomputer.com/
Copyright 2008-2013 BleepingComputer.com
More Information about Rkill can be found at this link:
 http://www.bleepingcomputer.com/forums/topic308364.html

Program started at: 03/10/2013 09:45:59 PM in x64 mode.
Windows Version: Windows 7 Home Premium Service Pack 1

Checking for Windows services to stop:

 * No malware services found to stop.

Checking for processes to terminate:

 * No malware processes found to kill.

Checking Registry for malware related settings:

 * Explorer Policy Removed:  NoActiveDesktopChanges [HKLM]

Backup Registry file created at:
 C:\Users\JOHNDOE\Desktop\rkill\rkill-03-10-2013-09-46-02.reg

Resetting .EXE, .COM, & .BAT associations in the Windows Registry.
  * HKLM\Software\Classes\.exe\shell found and deleted!


Performing miscellaneous checks:

 * Windows Defender Disabled

   [HKLM\SOFTWARE\Microsoft\Windows Defender]
   "DisableAntiSpyware" = dword:00000001

Checking Windows Service Integrity:

 * Windows Defender (WinDefend) is not Running.
   Startup Type set to: Manual

Searching for Missing Digital Signatures:

 * No issues found.

Checking HOSTS File:

 * No issues found.

Program finished at: 03/10/2013 09:46:10 PM
Execution time: 0 hours(s), 0 minute(s), and 11 seconds(s)

 

------------------------------------------------------------

Autorun Log

------------------------------------------------------------

 

"HKLM\System\CurrentControlSet\Control\Terminal Server\Wds\rdpwd\StartupPrograms" "" "" ""
+ "rdpclip" "" "" "File not found: rdpclip"
"HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run" "" "" ""
+ "HotKeysCmds" "hkcmd Module" "Intel Corporation" "c:\windows\system32\hkcmd.exe"
+ "IAAnotif" "Event Monitor User Notification Tool" "Intel Corporation" "c:\program files (x86)\intel\intel matrix storage manager\iaanotif.exe"
+ "IgfxTray" "igfxTray Module" "Intel Corporation" "c:\windows\system32\igfxtray.exe"
+ "Persistence" "persistence Module" "Intel Corporation" "c:\windows\system32\igfxpers.exe"
+ "SynTPEnh" "Synaptics TouchPad Enhancements" "Synaptics Incorporated" "c:\program files\synaptics\syntp\syntpenh.exe"
+ "SysTrayApp" "IDT PC Audio" "IDT, Inc." "c:\program files\idt\wdm\sttray64.exe"
"HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run" "" "" ""
+ "AVG_UI" "AVG User Interface" "AVG Technologies CZ, s.r.o." "c:\program files (x86)\avg\avg2013\avgui.exe"
+ "HP Software Update" "hpwuSchd Application" "Hewlett-Packard" "c:\program files (x86)\hp\hp software update\hpwuschd2.exe"
+ "QlbCtrl.exe" "Quick Launch Buttons" " Hewlett-Packard Development Company, L.P." "c:\program files (x86)\hewlett-packard\hp quick launch buttons\qlbctrl.exe"
+ "UpdatePRCShortCut" "MUI StartMenu Application" "CyberLink Corp." "c:\program files (x86)\hewlett-packard\recovery\muitransfer\muistartmenu.exe"
+ "WirelessAssistant" "HP Wireless Assistant Main Program" "Hewlett-Packard" "c:\program files (x86)\hewlett-packard\hp wireless assistant\hpwamain.exe"
"HKLM\SOFTWARE\Microsoft\Active Setup\Installed Components" "" "" ""
+ "Microsoft Windows" "Windows Mail" "Microsoft Corporation" "c:\program files\windows mail\winmail.exe"
"HKLM\SOFTWARE\Wow6432Node\Microsoft\Active Setup\Installed Components" "" "" ""
+ "Google Chrome" "Google Chrome" "Google Inc." "c:\program files (x86)\google\chrome\application\25.0.1364.152\installer\chrmstp.exe"
+ "LightScribe Control Panel" "" "Hewlett-Packard Company" "c:\program files (x86)\common files\lightscribe\lsrunonce.exe"
+ "Microsoft Windows" "Windows Mail" "Microsoft Corporation" "c:\program files (x86)\windows mail\winmail.exe"
"HKLM\SOFTWARE\Classes\Protocols\Filter" "" "" ""
+ "text/xml" "Microsoft Office XML MIME Filter" "Microsoft Corporation" "c:\program files\common files\microsoft shared\office14\msoxmlmf.dll"
"HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks" "" "" ""
+ "Groove GFS Stub Execution Hook" "Microsoft SharePoint Workspace Extensions" "Microsoft Corporation" "c:\program files\microsoft office\office14\grooveex.dll"
"HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks" "" "" ""
+ "Groove GFS Stub Execution Hook" "Microsoft SharePoint Workspace Extensions" "Microsoft Corporation" "c:\program files (x86)\microsoft office\office14\grooveex.dll"
"HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers" "" "" ""
+ "AVG Shell Extension" "AVG Shell Extension" "AVG Technologies CZ, s.r.o." "c:\program files (x86)\avg\avg2013\avgsea.dll"
+ "BUContextMenu" "Backup Shell" "Symantec Corporation" "c:\program files (x86)\norton 360\engine64\6.4.1.14\bushell.dll"
+ "Symantec.Norton.Antivirus.IEContextMenu" "Symantec Shared Component Shell Extension Module" "Symantec Corporation" "c:\program files (x86)\norton 360\engine64\6.4.1.14\navshext.dll"
+ "XXX Groove GFS Context Menu Handler XXX" "Microsoft SharePoint Workspace Extensions" "Microsoft Corporation" "c:\program files\microsoft office\office14\grooveex.dll"
"HKLM\Software\Wow6432Node\Classes\*\ShellEx\ContextMenuHandlers" "" "" ""
+ "AVG Shell Extension" "AVG Shell Extension" "AVG Technologies CZ, s.r.o." "c:\program files (x86)\avg\avg2013\avgse.dll"
+ "XXX Groove GFS Context Menu Handler XXX" "Microsoft SharePoint Workspace Extensions" "Microsoft Corporation" "c:\program files (x86)\microsoft office\office14\grooveex.dll"
"HKLM\Software\Classes\*\ShellEx\PropertySheetHandlers" "" "" ""
+ "BuPropertySheet" "Backup Shell" "Symantec Corporation" "c:\program files (x86)\norton 360\engine64\6.4.1.14\bushell.dll"
"HKLM\Software\Classes\AllFileSystemObjects\ShellEx\ContextMenuHandlers" "" "" ""
+ "MBAMShlExt" "Malwarebytes Anti-Malware" "Malwarebytes Corporation" "c:\program files (x86)\malwarebytes' anti-malware\mbamext.dll"
+ "XXX Groove GFS Context Menu Handler XXX" "Microsoft SharePoint Workspace Extensions" "Microsoft Corporation" "c:\program files\microsoft office\office14\grooveex.dll"
"HKLM\Software\Wow6432Node\Classes\AllFileSystemObjects\ShellEx\ContextMenuHandlers" "" "" ""
+ "XXX Groove GFS Context Menu Handler XXX" "Microsoft SharePoint Workspace Extensions" "Microsoft Corporation" "c:\program files (x86)\microsoft office\office14\grooveex.dll"
"HKLM\Software\Classes\Directory\ShellEx\ContextMenuHandlers" "" "" ""
+ "XXX Groove GFS Context Menu Handler XXX" "Microsoft SharePoint Workspace Extensions" "Microsoft Corporation" "c:\program files\microsoft office\office14\grooveex.dll"
"HKLM\Software\Wow6432Node\Classes\Directory\ShellEx\ContextMenuHandlers" "" "" ""
+ "XXX Groove GFS Context Menu Handler XXX" "Microsoft SharePoint Workspace Extensions" "Microsoft Corporation" "c:\program files (x86)\microsoft office\office14\grooveex.dll"
"HKLM\Software\Classes\Directory\Background\ShellEx\ContextMenuHandlers" "" "" ""
+ "Gadgets" "Sidebar droptarget" "Microsoft Corporation" "c:\program files\windows sidebar\sbdrop.dll"
+ "igfxcui" "igfxpph Module" "Intel Corporation" "c:\windows\system32\igfxpph.dll"
+ "XXX Groove GFS Context Menu Handler XXX" "Microsoft SharePoint Workspace Extensions" "Microsoft Corporation" "c:\program files\microsoft office\office14\grooveex.dll"
"HKLM\Software\Wow6432Node\Classes\Directory\Background\ShellEx\ContextMenuHandlers" "" "" ""
+ "Gadgets" "Sidebar droptarget" "Microsoft Corporation" "c:\program files (x86)\windows sidebar\sbdrop.dll"
+ "XXX Groove GFS Context Menu Handler XXX" "Microsoft SharePoint Workspace Extensions" "Microsoft Corporation" "c:\program files (x86)\microsoft office\office14\grooveex.dll"
"HKLM\Software\Wow6432Node\Classes\Folder\Shellex\ColumnHandlers" "" "" ""
+ "PDF Shell Extension" "PDF Shell Extension" "Adobe Systems, Inc." "c:\program files (x86)\common files\adobe\acrobat\activex\pdfshell.dll"
"HKLM\Software\Classes\Folder\ShellEx\ContextMenuHandlers" "" "" ""
+ "AVG Shell Extension" "AVG Shell Extension" "AVG Technologies CZ, s.r.o." "c:\program files (x86)\avg\avg2013\avgsea.dll"
+ "BUContextMenu" "Backup Shell" "Symantec Corporation" "c:\program files (x86)\norton 360\engine64\6.4.1.14\bushell.dll"
+ "MBAMShlExt" "Malwarebytes Anti-Malware" "Malwarebytes Corporation" "c:\program files (x86)\malwarebytes' anti-malware\mbamext.dll"
+ "Symantec.Norton.Antivirus.IEContextMenu" "Symantec Shared Component Shell Extension Module" "Symantec Corporation" "c:\program files (x86)\norton 360\engine64\6.4.1.14\navshext.dll"
+ "XXX Groove GFS Context Menu Handler XXX" "Microsoft SharePoint Workspace Extensions" "Microsoft Corporation" "c:\program files\microsoft office\office14\grooveex.dll"
"HKLM\Software\Wow6432Node\Classes\Folder\ShellEx\ContextMenuHandlers" "" "" ""
+ "AVG Shell Extension" "AVG Shell Extension" "AVG Technologies CZ, s.r.o." "c:\program files (x86)\avg\avg2013\avgse.dll"
+ "XXX Groove GFS Context Menu Handler XXX" "Microsoft SharePoint Workspace Extensions" "Microsoft Corporation" "c:\program files (x86)\microsoft office\office14\grooveex.dll"
"HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers" "" "" ""
+ "Groove Explorer Icon Overlay 1 (GFS Unread Stub)" "Microsoft SharePoint Workspace Extensions" "Microsoft Corporation" "c:\program files\microsoft office\office14\grooveex.dll"
+ "Groove Explorer Icon Overlay 2 (GFS Stub)" "Microsoft SharePoint Workspace Extensions" "Microsoft Corporation" "c:\program files\microsoft office\office14\grooveex.dll"
+ "Groove Explorer Icon Overlay 2.5 (GFS Unread Folder)" "Microsoft SharePoint Workspace Extensions" "Microsoft Corporation" "c:\program files\microsoft office\office14\grooveex.dll"
+ "Groove Explorer Icon Overlay 3 (GFS Folder)" "Microsoft SharePoint Workspace Extensions" "Microsoft Corporation" "c:\program files\microsoft office\office14\grooveex.dll"
+ "Groove Explorer Icon Overlay 4 (GFS Unread Mark)" "Microsoft SharePoint Workspace Extensions" "Microsoft Corporation" "c:\program files\microsoft office\office14\grooveex.dll"
+ "OverlayExcluded" "Backup Shell" "Symantec Corporation" "c:\program files (x86)\norton 360\engine64\6.4.1.14\bushell.dll"
+ "OverlayPending" "Backup Shell" "Symantec Corporation" "c:\program files (x86)\norton 360\engine64\6.4.1.14\bushell.dll"
+ "OverlayProtected" "Backup Shell" "Symantec Corporation" "c:\program files (x86)\norton 360\engine64\6.4.1.14\bushell.dll"
"HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers" "" "" ""
+ "Groove Explorer Icon Overlay 1 (GFS Unread Stub)" "Microsoft SharePoint Workspace Extensions" "Microsoft Corporation" "c:\program files (x86)\microsoft office\office14\grooveex.dll"
+ "Groove Explorer Icon Overlay 2 (GFS Stub)" "Microsoft SharePoint Workspace Extensions" "Microsoft Corporation" "c:\program files (x86)\microsoft office\office14\grooveex.dll"
+ "Groove Explorer Icon Overlay 2.5 (GFS Unread Folder)" "Microsoft SharePoint Workspace Extensions" "Microsoft Corporation" "c:\program files (x86)\microsoft office\office14\grooveex.dll"
+ "Groove Explorer Icon Overlay 3 (GFS Folder)" "Microsoft SharePoint Workspace Extensions" "Microsoft Corporation" "c:\program files (x86)\microsoft office\office14\grooveex.dll"
+ "Groove Explorer Icon Overlay 4 (GFS Unread Mark)" "Microsoft SharePoint Workspace Extensions" "Microsoft Corporation" "c:\program files (x86)\microsoft office\office14\grooveex.dll"
"HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects" "" "" ""
+ "Groove GFS Browser Helper" "Microsoft SharePoint Workspace Extensions" "Microsoft Corporation" "c:\program files\microsoft office\office14\grooveex.dll"
+ "Java™ Plug-In 2 SSV Helper" "Java™ Platform SE binary" "Sun Microsystems, Inc." "c:\program files\java\jre6\bin\jp2ssv.dll"
+ "Office Document Cache Handler" "Microsoft Office Document Cache Handler" "Microsoft Corporation" "c:\program files\microsoft office\office14\urlredir.dll"
+ "Windows Live ID Sign-in Helper" "Microsoft® Windows Live ID Login Helper" "Microsoft Corp." "c:\program files\common files\microsoft shared\windows live\windowslivelogin.dll"
"HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects" "" "" ""
+ "Adobe PDF Link Helper" "Adobe PDF Helper for Internet Explorer" "Adobe Systems Incorporated" "c:\program files (x86)\common files\adobe\acrobat\activex\acroiehelpershim.dll"
+ "DivX Plus Web Player HTML5 <video>" "DivX Plus Web Player HTML5 <video> version 2.1.2.145" "DivX, LLC" "c:\program files (x86)\divx\divx plus web player\ie\divxhtml5\divxhtml5.dll"
+ "Groove GFS Browser Helper" "Microsoft SharePoint Workspace Extensions" "Microsoft Corporation" "c:\program files (x86)\microsoft office\office14\grooveex.dll"
+ "HP Network Check Helper" "HP Network Check IE Plug-in" "Hewlett-Packard" "c:\program files (x86)\hewlett-packard\hp support framework\resources\hpnetworkcheck\hpnetworkcheckplugin.dll"
+ "HP Print Enhancer" "HP Smart Web Printing add-on for Internet Explorer" "Hewlett-Packard Co." "c:\program files (x86)\hp\digital imaging\smart web printing\hpswp_printenhancer.dll"
+ "HP Smart BHO Class" "HP Smart Web Printing add-on for Internet Explorer" "Hewlett-Packard Co." "c:\program files (x86)\hp\digital imaging\smart web printing\hpswp_bho.dll"
+ "Java™ Plug-In 2 SSV Helper" "Java™ Platform SE binary" "Oracle Corporation" "c:\program files (x86)\java\jre7\bin\jp2ssv.dll"
+ "Java™ Plug-In SSV Helper" "Java™ Platform SE binary" "Oracle Corporation" "c:\program files (x86)\java\jre7\bin\ssv.dll"
+ "Norton Identity Protection" "coIEPlugIn" "Symantec Corporation" "c:\program files (x86)\norton 360\engine\6.4.1.14\coieplg.dll"
+ "Norton Vulnerability Protection" "IPS Browser Helper DLL" "Symantec Corporation" "c:\program files (x86)\norton 360\engine\6.4.1.14\ips\ipsbho.dll"
+ "Office Document Cache Handler" "Microsoft Office Document Cache Handler" "Microsoft Corporation" "c:\program files (x86)\microsoft office\office14\urlredir.dll"
+ "Windows Live ID Sign-in Helper" "Microsoft® Windows Live ID Login Helper" "Microsoft Corp." "c:\program files (x86)\common files\microsoft shared\windows live\windowslivelogin.dll"
"HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Toolbar" "" "" ""
+ "Norton Toolbar" "coIEPlugIn" "Symantec Corporation" "c:\program files (x86)\norton 360\engine\6.4.1.14\coieplg.dll"
"HKLM\Software\Microsoft\Internet Explorer\Extensions" "" "" ""
+ "OneNote Lin&ked Notes" "Microsoft OneNote Internet Explorer Add-in" "Microsoft Corporation" "c:\program files\microsoft office\office14\onbttnielinkednotes.dll"
+ "Se&nd to OneNote" "Microsoft OneNote Internet Explorer Add-in" "Microsoft Corporation" "c:\program files\microsoft office\office14\onbttnie.dll"
"HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Extensions" "" "" ""
+ "&Blog This in Windows Live Writer" "Windows Live Writer Blog This Extension" "Microsoft Corporation" "c:\program files (x86)\windows live\writer\writerbrowserextension.dll"
+ "HP Network Check" "NCLauncherFromIE" "Hewlett-Packard" "c:\program files (x86)\hewlett-packard\hp support framework\resources\hpnetworkcheck\nclauncherfromie.exe"
+ "OneNote Lin&ked Notes" "Microsoft OneNote Internet Explorer Add-in" "Microsoft Corporation" "c:\program files (x86)\microsoft office\office14\onbttnielinkednotes.dll"
+ "Se&nd to OneNote" "Microsoft OneNote Internet Explorer Add-in" "Microsoft Corporation" "c:\program files (x86)\microsoft office\office14\onbttnie.dll"
+ "Show or hide HP Smart Web Printing" "HP Smart Web Printing add-on for Internet Explorer" "Hewlett-Packard Co." "c:\program files (x86)\hp\digital imaging\smart web printing\hpswp_bho.dll"
"Task Scheduler" "" "" ""
+ "\Adobe Flash Player Updater" "Adobe® Flash® Player Update Service 11.2 r202" "Adobe Systems Incorporated" "c:\windows\syswow64\macromed\flash\flashplayerupdateservice.exe"
+ "\GoogleUpdateTaskMachineCore" "Google Installer" "Google Inc." "c:\program files (x86)\google\update\googleupdate.exe"
+ "\GoogleUpdateTaskMachineUA" "Google Installer" "Google Inc." "c:\program files (x86)\google\update\googleupdate.exe"
+ "\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start" "HP Support Assistant" "Hewlett-Packard Company" "c:\program files (x86)\hewlett-packard\hp support framework\hpsf.exe"
+ "\Hewlett-Packard\HP Support Assistant\PC Health Analysis" "HP Support Assistant" "Hewlett-Packard Company" "c:\program files (x86)\hewlett-packard\hp support framework\hpsf.exe"
+ "\Hewlett-Packard\HP Support Assistant\Update Check" "HPSFUpdater" "Hewlett-Packard Company" "c:\programdata\hewlett-packard\hp support framework\resources\updater7\hpsfupdater.exe"
+ "\Hewlett-Packard\HP Support Assistant\WarrantyChecker_DeviceScan" "HPWarrantyChecker" "Hewlett-Packard" "c:\program files (x86)\hewlett-packard\hp support framework\resources\hpwarrantycheck\hpwarrantychecker.exe"
+ "\HPCeeScheduleForJOHNDOE" "HP Ceement" "Hewlett-Packard" "c:\program files (x86)\hewlett-packard\hp ceement\hpcee.exe"
+ "\Microsoft\Windows Defender\MP Scheduled Scan" "Microsoft Malware Protection Command Line Utility" "Microsoft Corporation" "c:\program files\windows defender\mpcmdrun.exe"
+ "\Microsoft\Windows Live\SOXE\Extractor Definitions Update Task" "Windows Live Social Object Extractor Engine" "Microsoft Corporation" "c:\program files (x86)\windows live\soxe\wlsoxe.dll"
+ "\Microsoft\Windows\NetTrace\GatherNetworkInfo" "" "" "c:\windows\system32\gathernetworkinfo.vbs"
+ "\Microsoft\Windows\Windows Media Sharing\UpdateLibrary" "Windows Media Player Network Sharing Service Configuration Application" "Microsoft Corporation" "c:\program files\windows media player\wmpnscfg.exe"
+ "\Norton 360\Norton Error Analyzer" "Symantec Error Reporting" "Symantec Corporation" "c:\program files (x86)\norton 360\engine\6.4.1.14\symerr.exe"
+ "\Norton 360\Norton Error Processor" "Symantec Error Reporting" "Symantec Corporation" "c:\program files (x86)\norton 360\engine\6.4.1.14\symerr.exe"
+ "\Norton WSC Integration" "WSCStub" "Symantec Corporation" "c:\program files (x86)\norton 360\engine\6.4.1.14\wscstub.exe"
"HKLM\System\CurrentControlSet\Services" "" "" ""
+ "AdobeFlashPlayerUpdateSvc" "This service keeps your Adobe Flash Player installation up to date with the latest enhancements and security fixes." "Adobe Systems Incorporated" "c:\windows\syswow64\macromed\flash\flashplayerupdateservice.exe"
+ "AESTFilters" "Andrea filters APO access service (64-bit)" "Andrea Electronics Corporation" "c:\windows\system32\driverstore\filerepository\stwrt64.inf_amd64_neutral_960c1f056a541068\aestsr64.exe"
+ "Apple Mobile Device" "Provides the interface to Apple mobile devices." "Apple Inc." "c:\program files (x86)\common files\apple\mobile device support\applemobiledeviceservice.exe"
+ "AVGIDSAgent" "Provides Identity Protection Against Cyber Crime." "AVG Technologies CZ, s.r.o." "c:\program files (x86)\avg\avg2013\avgidsagent.exe"
+ "avgwd" "AVG Watchdog Service" "AVG Technologies CZ, s.r.o." "c:\program files (x86)\avg\avg2013\avgwdsvc.exe"
+ "Com4QLBEx" "Com for QLB application" "Hewlett-Packard Development Company, L.P." "c:\program files (x86)\hewlett-packard\hp quick launch buttons\com4qlbex.exe"
+ "gupdate" "Keeps your Google software up to date. If this service is disabled or stopped, your Google software will not be kept up to date, meaning security vulnerabilities that may arise cannot be fixed and features may not work. This service uninstalls itself when there is no Google software using it." "Google Inc." "c:\program files (x86)\google\update\googleupdate.exe"
+ "gupdatem" "Keeps your Google software up to date. If this service is disabled or stopped, your Google software will not be kept up to date, meaning security vulnerabilities that may arise cannot be fixed and features may not work. This service uninstalls itself when there is no Google software using it." "Google Inc." "c:\program files (x86)\google\update\googleupdate.exe"
+ "HP Support Assistant Service" "HP Support Assistant Service" "Hewlett-Packard Company" "c:\program files (x86)\hewlett-packard\hp support framework\hpsa_service.exe"
+ "hpqwmiex" "HP Software Framework WMI Service" "Hewlett-Packard Company" "c:\program files (x86)\hewlett-packard\shared\hpqwmiex.exe"
+ "hpsrv" "HpService" "Hewlett-Packard Company" "c:\windows\system32\hpservice.exe"
+ "IAANTMON" "RAID Monitor" "Intel Corporation" "c:\program files (x86)\intel\intel matrix storage manager\iaantmon.exe"
+ "iPod Service" "iPod hardware management services" "Apple Inc." "c:\program files\ipod\bin\ipodservice.exe"
+ "LightScribeService" "Used by the LightScribe software components to support 3rd party disc labeling applications using the LightScribe COM Application Programming Interface (LSCAPI). This service needs to run for LightScribe direct disc labeling to work." "Hewlett-Packard Company" "c:\program files (x86)\common files\lightscribe\lssrvc.exe"
+ "Microsoft SharePoint Workspace Audit Service" "Microsoft SharePoint Workspace" "Microsoft Corporation" "c:\program files (x86)\microsoft office\office14\groove.exe"
+ "N360" "Norton 360" "Symantec Corporation" "c:\program files (x86)\norton 360\engine\6.4.1.14\ccsvchst.exe"
+ "ose" "Saves installation files used for updates and repairs and is required for the downloading of Setup updates and Watson error reports." "Microsoft Corporation" "c:\program files (x86)\common files\microsoft shared\source engine\ose.exe"
+ "osppsvc" "Office Software Protection Platform Service (unlocalized description)" "Microsoft Corporation" "c:\program files\common files\microsoft shared\officesoftwareprotectionplatform\osppsvc.exe"
+ "RichVideo" "RichVideo Module" "" "c:\program files (x86)\cyberlink\shared files\richvideo.exe"
+ "STacSV" "Manages audio jack configurations." "IDT, Inc." "c:\windows\system32\driverstore\filerepository\stwrt64.inf_amd64_neutral_960c1f056a541068\stacsv64.exe"
+ "WinDefend" "Protection against spyware and potentially unwanted software" "Microsoft Corporation" "c:\program files\windows defender\mpsvc.dll"
+ "wlidsvc" "Enables Windows Live ID authentication." "Microsoft Corp." "c:\program files\common files\microsoft shared\windows live\wlidsvc.exe"
+ "WMPNetworkSvc" "Shares Windows Media Player libraries to other networked players and media devices using Universal Plug and Play" "Microsoft Corporation" "c:\program files\windows media player\wmpnetwk.exe"
"HKLM\System\CurrentControlSet\Services" "" "" ""
+ "Accelerometer" "HP Accelerometer" "Hewlett-Packard Company" "c:\windows\system32\drivers\accelerometer.sys"
+ "adp94xx" "Adaptec Windows SAS/SATA Storport Driver" "Adaptec, Inc." "c:\windows\system32\drivers\adp94xx.sys"
+ "adpahci" "Adaptec Windows SATA Storport Driver" "Adaptec, Inc." "c:\windows\system32\drivers\adpahci.sys"
+ "adpu320" "Adaptec StorPort Ultra320 SCSI Driver (X64)" "Adaptec, Inc." "c:\windows\system32\drivers\adpu320.sys"
+ "AgereSoftModem" "SoftModem Device Driver" "LSI Corp" "c:\windows\system32\drivers\agrsm64.sys"
+ "aliide" "ALi mini IDE Driver" "Acer Laboratories Inc." "c:\windows\system32\drivers\aliide.sys"
+ "amdsata" "AHCI 1.2 Device Driver" "Advanced Micro Devices" "c:\windows\system32\drivers\amdsata.sys"
+ "amdsbs" "AMD Technology AHCI Compatible Controller Driver for Windows - AMD64 platform" "AMD Technologies Inc." "c:\windows\system32\drivers\amdsbs.sys"
+ "amdxata" "Storage Filter Driver" "Advanced Micro Devices" "c:\windows\system32\drivers\amdxata.sys"
+ "arc" "Adaptec RAID Storport Driver" "Adaptec, Inc." "c:\windows\system32\drivers\arc.sys"
+ "arcsas" "Adaptec SAS RAID WS03 Driver" "Adaptec, Inc." "c:\windows\system32\drivers\arcsas.sys"
+ "atikmdag" "ATI Radeon Kernel Mode Driver" "ATI Technologies Inc." "c:\windows\system32\drivers\atikmdag.sys"
+ "AVGIDSDriver" "AVG Technologies IDS Application Activity Monitor Driver" "AVG Technologies CZ, s.r.o. " "c:\windows\system32\drivers\avgidsdrivera.sys"
+ "AVGIDSHA" "AVG Technologies IDS Application Activity Monitor Helper Driver" "AVG Technologies CZ, s.r.o. " "c:\windows\system32\drivers\avgidsha.sys"
+ "Avgldx64" "AVG AVI Loader Driver" "AVG Technologies CZ, s.r.o." "c:\windows\system32\drivers\avgldx64.sys"
+ "Avgloga" "AVG Logging Driver" "AVG Technologies CZ, s.r.o." "c:\windows\system32\drivers\avgloga.sys"
+ "Avgmfx64" "AVG Resident Shield Minifilter Driver" "AVG Technologies CZ, s.r.o." "c:\windows\system32\drivers\avgmfx64.sys"
+ "Avgrkx64" "AVG Anti-Rootkit Driver" "AVG Technologies CZ, s.r.o." "c:\windows\system32\drivers\avgrkx64.sys"
+ "Avgtdia" "AVG Network connection watcher" "AVG Technologies CZ, s.r.o." "c:\windows\system32\drivers\avgtdia.sys"
+ "b06bdrv" "Broadcom NetXtreme II GigE VBD" "Broadcom Corporation" "c:\windows\system32\drivers\bxvbda.sys"
+ "b57nd60a" "Broadcom NetXtreme Gigabit Ethernet NDIS6.x Unified Driver." "Broadcom Corporation" "c:\windows\system32\drivers\b57nd60a.sys"
+ "BCM43XX" "Broadcom 802.11 Network Adapter wireless driver" "Broadcom Corporation" "c:\windows\system32\drivers\bcmwl664.sys"
+ "BHDrvx64" "SONAR Engine Driver" "Symantec Corporation" "c:\programdata\norton\{0c55c096-0f1d-4f28-aaa2-85ef591126e7}\n360_6.2.0.9\definitions\bashdefs\20130301.001\bhdrvx64.sys"
+ "BrFiltLo" "Windows ME USB Mass-Storage Bulk-Only Lower Filter Driver" "Brother Industries, Ltd." "c:\windows\system32\drivers\brfiltlo.sys"
+ "BrFiltUp" "Windows ME USB Mass-Storage Bulk-Only Upper Filter Driver" "Brother Industries, Ltd." "c:\windows\system32\drivers\brfiltup.sys"
+ "Brserid" "Brotehr Serial I/F Driver (WDM)" "Brother Industries Ltd." "c:\windows\system32\drivers\brserid.sys"
+ "BrSerWdm" "Brother Serial driver (WDM version)" "Brother Industries Ltd." "c:\windows\system32\drivers\brserwdm.sys"
+ "BrUsbMdm" "Brother USB MDM Driver " "Brother Industries Ltd." "c:\windows\system32\drivers\brusbmdm.sys"
+ "BrUsbSer" "Brother USB Serial Driver" "Brother Industries Ltd." "c:\windows\system32\drivers\brusbser.sys"
+ "ccSet_N360" "Common Client Settings Driver" "Symantec Corporation" "c:\windows\system32\drivers\n360x64\0604010.00e\ccsetx64.sys"
+ "cmdide" "CMD PCI IDE Bus Driver" "CMD Technology, Inc." "c:\windows\system32\drivers\cmdide.sys"
+ "CVirtA" "Cisco Systems VPN Adapter" "Cisco Systems, Inc." "c:\windows\system32\drivers\cvirta64.sys"
+ "ebdrv" "Broadcom NetXtreme II 10 GigE VBD" "Broadcom Corporation" "c:\windows\system32\drivers\evbda.sys"
+ "eeCtrl" "Symantec Eraser Control Driver" "Symantec Corporation" "c:\program files (x86)\common files\symantec shared\eengine\eectrl64.sys"
+ "elxstor" "Storport Miniport Driver for LightPulse HBAs" "Emulex" "c:\windows\system32\drivers\elxstor.sys"
+ "enecir" "ENE CIR Driver for eHome(64)" "ENE TECHNOLOGY INC." "c:\windows\system32\drivers\enecir.sys"
+ "EraserUtilRebootDrv" "Symantec Eraser Utility Driver" "Symantec Corporation" "c:\program files (x86)\common files\symantec shared\eengine\eraserutilrebootdrv.sys"
+ "GEARAspiWDM" "CD DVD Filter" "GEAR Software Inc." "c:\windows\system32\drivers\gearaspiwdm.sys"
+ "gfibto" "GFI Boot Time Operations Driver" "GFI Software" "c:\windows\system32\drivers\gfibto.sys"
+ "hcw85cir" "Hauppauge WinTV 885 Consumer IR Driver for eHome" "Hauppauge Computer Works, Inc." "c:\windows\system32\drivers\hcw85cir.sys"
+ "hpdskflt" "HP Disk Filter - SATA/RAID" "Hewlett-Packard Company" "c:\windows\system32\drivers\hpdskflt.sys"
+ "HpqKbFiltr" "HpqKbFiltr Keyboard Filter Driver" "Hewlett-Packard Development Company, L.P." "c:\windows\system32\drivers\hpqkbfiltr.sys"
+ "HpSAMD" "Smart Array SAS/SATA Controller Media Driver" "Hewlett-Packard Company" "c:\windows\system32\drivers\hpsamd.sys"
+ "iaStor" "Intel Matrix Storage Manager driver - x64" "Intel Corporation" "c:\windows\system32\drivers\iastor.sys"
+ "iaStorV" "Intel Matrix Storage Manager driver - x64" "Intel Corporation" "c:\windows\system32\drivers\iastorv.sys"
+ "IDSVia64" "Symantec Intrusion Prevention Driver" "Symantec Corporation" "c:\programdata\norton\{0c55c096-0f1d-4f28-aaa2-85ef591126e7}\n360_6.2.0.9\definitions\ipsdefs\20130308.001\idsvia64.sys"
+ "igfx" "Intel Graphics Kernel Mode Driver" "Intel Corporation" "c:\windows\system32\drivers\igdkmd64.sys"
+ "iirsp" "Intel/ICP Raid Storport Driver" "Intel Corp./ICP vortex GmbH" "c:\windows\system32\drivers\iirsp.sys"
+ "IntcHdmiAddService" "Intel® High Definition Audio HDMI" "Intel® Corporation" "c:\windows\system32\drivers\intchdmi.sys"
+ "LSI_FC" "LSI Fusion-MPT FC Driver (StorPort)" "LSI Corporation" "c:\windows\system32\drivers\lsi_fc.sys"
+ "LSI_SAS" "LSI Fusion-MPT SAS Driver (StorPort)" "LSI Corporation" "c:\windows\system32\drivers\lsi_sas.sys"
+ "LSI_SAS2" "LSI SAS Gen2 Driver (StorPort)" "LSI Corporation" "c:\windows\system32\drivers\lsi_sas2.sys"
+ "LSI_SCSI" "LSI Fusion-MPT SCSI Driver (StorPort)" "LSI Corporation" "c:\windows\system32\drivers\lsi_scsi.sys"
+ "megasas" "MEGASAS RAID Controller Driver for Windows 7\Server 2008 R2 for x64" "LSI Corporation" "c:\windows\system32\drivers\megasas.sys"
+ "MegaSR" "LSI MegaRAID Software RAID Driver" "LSI Corporation, Inc." "c:\windows\system32\drivers\megasr.sys"
+ "NAVENG" "AV Engine" "Symantec Corporation" "c:\programdata\norton\{0c55c096-0f1d-4f28-aaa2-85ef591126e7}\n360_6.2.0.9\definitions\virusdefs\20130310.007\eng64.sys"
+ "NAVEX15" "AV Engine" "Symantec Corporation" "c:\programdata\norton\{0c55c096-0f1d-4f28-aaa2-85ef591126e7}\n360_6.2.0.9\definitions\virusdefs\20130310.007\ex64.sys"
+ "netw5v64" "Intel® Wireless WiFi Link Driver" "Intel Corporation" "c:\windows\system32\drivers\netw5v64.sys"
+ "nfrd960" "IBM ServeRAID Controller Driver" "IBM Corporation" "c:\windows\system32\drivers\nfrd960.sys"
+ "nvraid" "NVIDIA® nForce™ RAID Driver" "NVIDIA Corporation" "c:\windows\system32\drivers\nvraid.sys"
+ "nvstor" "NVIDIA® nForce™ Sata Performance Driver" "NVIDIA Corporation" "c:\windows\system32\drivers\nvstor.sys"
+ "ql2300" "QLogic Fibre Channel Stor Miniport Driver" "QLogic Corporation" "c:\windows\system32\drivers\ql2300.sys"
+ "ql40xx" "QLogic iSCSI Storport Miniport Driver" "QLogic Corporation" "c:\windows\system32\drivers\ql40xx.sys"
+ "RSUSBSTOR" "Realtek USB Mass Storage Driver for 2K/XP/Vista/Win7" "Realtek Semiconductor Corp." "c:\windows\system32\drivers\rtsustor.sys"
+ "RTL8167" "Realtek 8136/8168/8169 NDIS 6.20 64-bit Driver                " "Realtek                                            " "c:\windows\system32\drivers\rt64win7.sys"
+ "RtsUIR" "" "" "File not found: system32\DRIVERS\Rts516xIR.sys"
+ "secdrv" "Macrovision SECURITY Driver" "Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K." "c:\windows\system32\drivers\secdrv.sys"
+ "Serial" "Brotehr Serial I/F Driver (WDM)" "Brother Industries Ltd." "c:\windows\system32\drivers\serial.sys"
+ "SiSRaid2" "SiS RAID Stor Miniport Driver" "Silicon Integrated Systems Corp." "c:\windows\system32\drivers\sisraid2.sys"
+ "SiSRaid4" "SiS AHCI Stor-Miniport Driver" "Silicon Integrated Systems" "c:\windows\system32\drivers\sisraid4.sys"
+ "SRTSP" "Symantec AutoProtect" "Symantec Corporation" "c:\windows\system32\drivers\n360x64\0604010.00e\srtsp64.sys"
+ "SRTSPX" "Symantec AutoProtect" "Symantec Corporation" "c:\windows\system32\drivers\n360x64\0604010.00e\srtspx64.sys"
+ "SrvHsfHDA" "HSF_HWAZL WDM driver" "Conexant Systems, Inc." "c:\windows\system32\drivers\vstazl6.sys"
+ "SrvHsfV92" "HSF_DP driver" "Conexant Systems, Inc." "c:\windows\system32\drivers\vstdpv6.sys"
+ "SrvHsfWinac" "HSF_CNXT driver" "Conexant Systems, Inc." "c:\windows\system32\drivers\vstcnxt6.sys"
+ "stexstor" "Promise  SuperTrak EX Series Driver for Windows " "Promise Technology" "c:\windows\system32\drivers\stexstor.sys"
+ "STHDA" "IDT PC Audio" "IDT, Inc." "c:\windows\system32\drivers\stwrt64.sys"
+ "SymDS" "Symantec Data Store" "Symantec Corporation" "c:\windows\system32\drivers\n360x64\0604010.00e\symds64.sys"
+ "SymEFA" "Symantec Extended File Attributes" "Symantec Corporation" "c:\windows\system32\drivers\n360x64\0604010.00e\symefa64.sys"
+ "SymEvent" "Symantec Event Library" "Symantec Corporation" "c:\windows\system32\drivers\symevent64x86.sys"
+ "SymIRON" "Iron Driver" "Symantec Corporation" "c:\windows\system32\drivers\n360x64\0604010.00e\ironx64.sys"
+ "SymNetS" "Network Security Driver" "Symantec Corporation" "c:\windows\system32\drivers\n360x64\0604010.00e\symnets.sys"
+ "SynTP" "Synaptics Touchpad Driver" "Synaptics Incorporated" "c:\windows\system32\drivers\syntp.sys"
+ "USBAAPL64" "Apple Mobile Device USB Driver" "Apple, Inc." "c:\windows\system32\drivers\usbaapl64.sys"
+ "USBCCID" "" "" "File not found: system32\DRIVERS\RtsUCcid.sys"
+ "viaide" "VIA Generic PCI IDE Bus Driver" "VIA Technologies, Inc." "c:\windows\system32\drivers\viaide.sys"
+ "vsmraid" "VIA RAID DRIVER FOR AMD-X86-64" "VIA Technologies Inc.,Ltd" "c:\windows\system32\drivers\vsmraid.sys"
+ "yukonw7" "Miniport Driver for Marvell Yukon Ethernet Controller." "Marvell" "c:\windows\system32\drivers\yk62x64.sys"
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Drivers32" "" "" ""
+ "msacm.l3acm" "MPEG Layer-3 Audio Codec for MSACM" "Fraunhofer Institut Integrierte Schaltungen IIS" "c:\windows\system32\l3codeca.acm"
"HKLM\Software\Wow6432Node\Microsoft\Windows NT\CurrentVersion\Drivers32" "" "" ""
+ "msacm.l3acm" "MPEG Layer-3 Audio Codec for MSACM" "Fraunhofer Institut Integrierte Schaltungen IIS" "c:\windows\syswow64\l3codeca.acm"
+ "msacm.l3codecp" "MPEG Audio Layer-3 Codec for MSACM" "Fraunhofer Institut Integrierte Schaltungen IIS" "c:\windows\syswow64\l3codecp.acm"
+ "vidc.cvid" "Cinepak® Codec" "Radius Inc." "c:\windows\syswow64\iccvid.dll"
+ "vidc.DIVX" "DivX" "DivX, Inc." "c:\windows\syswow64\divx.dll"
+ "vidc.yv12" "DivX" "DivX, Inc." "c:\windows\syswow64\divx.dll"
"HKLM\Software\Wow6432Node\Classes\CLSID\{083863F1-70DE-11d0-BD40-00A0C911CE86}\Instance" "" "" ""
+ "CyberLink Audio Decoder (QP)" "" "" "File not found: c:\Program Files (x86)\Hewlett-Packard\Media\Live TV\Kernel\Movie\CLAud.ax"
+ "CyberLink Audio Decoder (QP)" "" "" "File not found: c:\Program Files (x86)\Hewlett-Packard\Media\iTV\Kernel\Movie\CLAud.ax"
+ "CyberLink Audio Noise Reduction" "CLAuNR" "CyberLink Corp." "c:\program files (x86)\cyberlink\power2go\p2gaunrwrapper.ax"
+ "CyberLink Audio Resampler" "CLAuRsmpl.ax" "CyberLink Corp." "c:\program files (x86)\cyberlink\power2go\p2gaursmpl.ax"
+ "CyberLink Audio VolumeBooster" "CyberLink Audio Volume Booster Filter" "CyberLink Corp." "c:\program files (x86)\cyberlink\power2go\p2gvb.ax"
+ "CyberLink AudioCD Filter" "CyberLink AudioCD Filter" "CyberLink Corp." "c:\program files (x86)\cyberlink\power2go\p2gaudiocd.ax"
+ "Cyberlink Dump Dispatch Filter" "Cyberlink File Dump Dispatch Filter" "CyberLink Corp." "c:\program files (x86)\cyberlink\power2go\p2gdumpdispatch.ax"
+ "Cyberlink Dump Filter" "Cyberlink File Dump Filter" "CyberLink Corp." "c:\program files (x86)\cyberlink\power2go\p2gdump.ax"
+ "CyberLink Editing Service 3.0 (Source)" "CES Kernel" "CyberLink Corp." "c:\program files (x86)\cyberlink\power2go\p2gedtkrn.dll"
+ "Cyberlink File Reader (Async.)" "Cyberlink MPEG File Reader" "CyberLink Corp." "c:\program files (x86)\cyberlink\power2go\p2greader.ax"
+ "CyberLink Load Image Filter" "CLImage" "CyberLink" "c:\program files (x86)\cyberlink\shared files\climage.ax"
+ "CyberLink M2V Writer" "CLM2VWriter" "CyberLink" "c:\program files (x86)\cyberlink\power2go\p2gm2vwriter.ax"
+ "CyberLink MP3/WAV Wrapper" "CyberLink MP3 Wrapper" "CyberLink Corp." "c:\program files (x86)\cyberlink\power2go\p2gmp3wrap.ax"
+ "CyberLink MPEG Decoder" "CyberLink Video/SP Filter" "CyberLink Corp." "c:\program files (x86)\cyberlink\power2go\p2gmvd.ax"
+ "CyberLink MPEG Muxer" "MpgMux" "CyberLink" "c:\program files (x86)\cyberlink\power2go\p2gmpgmux.ax"
+ "CyberLink MPEG Video Encoder" "CyberLink MPEG Video Encoder                               " "CyberLink Corp.                                            " "c:\program files (x86)\cyberlink\power2go\p2gvidenc.ax"
+ "CyberLink MPEG-1 Splitter" "CyberLink MPEG Splitter" "CyberLink Corp." "c:\program files (x86)\cyberlink\power2go\p2gm1spliter.ax"
+ "CyberLink MPEG-2 Splitter" "CyberLink MPEG Splitter" "CyberLink Corp." "c:\program files (x86)\cyberlink\power2go\p2gm2spliter.ax"
+ "CyberLink PCM Wrapper" "CyberLink PCM Wrapper" "CyberLink Corp." "c:\program files (x86)\cyberlink\power2go\p2gpcmenc.ax"
+ "CyberLink TimeStretch Filter (CES)" "CLAuTS.ax" "CyberLink Corp." "c:\program files (x86)\cyberlink\power2go\p2gauts.ax"
+ "CyberLink TimeStretch Filter (HP)" "" "" "File not found: c:\Program Files (x86)\Hewlett-Packard\Media\iTV\Kernel\Movie\clauts.ax"
+ "CyberLink TimeStretch Filter (HP)" "" "" "File not found: c:\Program Files (x86)\Hewlett-Packard\Media\Live TV\Kernel\Movie\clauts.ax"
+ "CyberLink TL MPEG Splitter" "CyberLink MPEG Splitter" "CyberLink Corp." "c:\program files (x86)\cyberlink\power2go\p2gtlmsplter.ax"
+ "CyberLink Video Effect" "CLVidFx" "CyberLink" "c:\program files (x86)\cyberlink\power2go\p2gvidfx.ax"
+ "CyberLink Video Effect" "" "" "File not found: c:\Program Files (x86)\Hewlett-Packard\Media\Live TV\Kernel\Movie\CLVidFx.ax"
+ "CyberLink Video Effect (QP)" "" "" "File not found: c:\Program Files (x86)\Hewlett-Packard\Media\iTV\Kernel\Movie\CLVidFx.ax"
+ "CyberLink Video Regulator" "CLRGL" "Cyberlink" "c:\program files (x86)\cyberlink\power2go\p2grgl.ax"
+ "CyberLink Video Stabilizer" "CLVideoDeShaking" "CyberLink" "c:\program files (x86)\cyberlink\power2go\p2gvideostabilizer.ax"
+ "DivX AAC Decoder" "AAC audio decoder filter" "DivX, Inc." "c:\program files (x86)\divx\divx plus directshow filters\daac.ax"
+ "DivX Decoder Filter" "DivX Decoder Filter" "DivX, Inc." "c:\program files (x86)\divx\divx codec\divxdec.ax"
+ "DivX Demux Filter" "DivX Plus DMF Navigator Filter" "DivX, Inc." "c:\program files (x86)\divx\divx plus directshow filters\directshowdemuxfilter.dll"
+ "DivX Demux Filter (Unrestricted Edition)" "DivX Plus DMF Navigator Filter" "DivX, Inc." "c:\program files (x86)\divx\divx plus directshow filters\directshowdemuxfilter.dll"
+ "DivX H.264 Decoder" "DivX H.264 Decoder Filter" "DivX, Inc." "c:\program files (x86)\divx\divx plus directshow filters\divxdech264.ax"
+ "P2G Audio Decoder" "CyberLink Audio Decoder Filter" "CyberLink Corp." "c:\program files (x86)\cyberlink\power2go\p2gaud.ax"
+ "P2G Audio Encoder" "CyberLink Audio Encoder Filter" "Cyberlink Corp." "c:\program files (x86)\cyberlink\power2go\p2gaudenc.ax"
+ "P2G Video Decoder" "CyberLink Video/SP Filter" "CyberLink Corp." "c:\program files (x86)\cyberlink\power2go\p2gvsd.ax"
+ "P2G Video Regulator" "CyberLink Video Regulator" "CyberLink" "c:\program files (x86)\cyberlink\power2go\p2gresample.ax"
"HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Authentication\Credential Providers" "" "" ""
+ "WLIDCredentialProvider" "Microsoft® Windows Live ID Credential Provider" "Microsoft Corp." "c:\program files\common files\microsoft shared\windows live\wlidcredprov.dll"
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify" "" "" ""
+ "igfxcui" "igfxdev Module" "Intel Corporation" "c:\windows\system32\igfxdev.dll"
"HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries" "" "" ""
+ "WindowsLive Local NSP" "Microsoft® Windows Live ID Namespace Provider" "Microsoft Corp." "c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll"
+ "WindowsLive NSP" "Microsoft® Windows Live ID Namespace Provider" "Microsoft Corp." "c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll"
"HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries64" "" "" ""
+ "WindowsLive Local NSP" "Microsoft® Windows Live ID Namespace Provider" "Microsoft Corp." "c:\program files\common files\microsoft shared\windows live\wlidnsp.dll"
+ "WindowsLive NSP" "Microsoft® Windows Live ID Namespace Provider" "Microsoft Corp." "c:\program files\common files\microsoft shared\windows live\wlidnsp.dll"
"HKLM\SYSTEM\CurrentControlSet\Control\Print\Monitors" "" "" ""
+ "PCL hpz3lw71" "LanguageMonitor" "Hewlett-Packard Corporation" "c:\windows\system32\hpz3lw71.dll"
 



#8 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:10:54 AM

Posted 10 March 2013 - 10:45 PM

That looks good

Remove temporary and junk files

Download

TFC

Launch it,it will close all running programs

click on START,it should ask for reboot.If TFC locks up the system,run it in safemode


Create a new restore point

Follow this guide to turn off and turn on your restore points

XP- http://support.microsoft.com/kb/310405

Vista & windows 7- http://windows.microsoft.com/en-US/windows7/Turn-System-Restore-on-or-off

Turn off your system restore-It deletes old infected restore points

Turn on system restore and create a new restore point

Update JAVA and Flash player

Uninstall old version of java from control panel-Add or remove programs.Download the latest version from here

http://java.com/en/

Update your flash player

Antivirus recommendations

Update your antivirus frequently.Two free antivirus that i would suggest are

Microsoft security essentials or Avast.You can select either one of them.

If you have a paid one,make sure to update it frequently.Do not use multiple security softwares.

Informative guides that could prevent you from being infected again

How did I get infected?

http://www.bleepingcomputer.com/forums/topic2520.html

Best Practices for Safe Computing - Prevention of Malware Infection

http://www.bleepingcomputer.com/forums/topic407147.html

Simple and easy ways to keep your computer safe and secure on the Internet

http://www.bleepingcomputer.com/tutorials/keep-your-computer-safe-online/

Safe surfing :)

 



#9 very_confussed

very_confussed
  • Topic Starter

  • Members
  • 9 posts
  • OFFLINE
  •  
  • Local time:10:54 AM

Posted 10 March 2013 - 10:57 PM

I don't mean to judge your skills or be rude...but one thing has me confused and I hope you can shed more light on it (just so it's reassuring to me)....

 

I have thrown awful lot of logs at you and your response that everything is fine was pretty quick....Did you see all the information in logs? I mean how did you arrive at the conclusion so fast? please enlighten me.... :)

 

VC



#10 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:10:54 AM

Posted 10 March 2013 - 11:08 PM

Did you see all the information in logs?

 

Yep.

 

I'm not finding anything malicious except for trojan tracur that was removed by ESET online scanner .In your case it was responsible for  redirecting web pages.Reading logs is not tough but you need experience.

 

Browse for a day and let me know how system behaves.


Edited by narenxp, 10 March 2013 - 11:08 PM.


#11 very_confussed

very_confussed
  • Topic Starter

  • Members
  • 9 posts
  • OFFLINE
  •  
  • Local time:10:54 AM

Posted 10 March 2013 - 11:14 PM

Thanks for quick response............

As long as you checked everything, it's very reassuring to me.....like you say...."we are what they call experts" :)

 

 

What do I do with all the programs (including ESET) that I have installed....? Only remove after couple of days of safe browsing?

 

VC


Edited by very_confussed, 10 March 2013 - 11:15 PM.


#12 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:10:54 AM

Posted 10 March 2013 - 11:17 PM

Remove all the tools we used..Uninstall ESET from add or remove programs.

 

You have two antivirus:AVG & Norton.Uninstall any one of them.

 

Reinstall java and flash player.

 

good luck



#13 very_confussed

very_confussed
  • Topic Starter

  • Members
  • 9 posts
  • OFFLINE
  •  
  • Local time:10:54 AM

Posted 10 March 2013 - 11:27 PM

Thanks once again for quick response....

I saw something in AdwCleaner log and it's nagging me...

The AdwCleaner deleted following 3 keys... is this going to cause my AVG anti virus to not run properly...

 

***** [Registry] *****

Key Deleted : HKLM\Software\AVG Secure Search
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{761F6A83-F007-49E4-8EAC-CDB6808EF06F}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{79FB5FC8-44B9-4AF5-BADD-CCE547F953E5}

 

VC



#14 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:10:54 AM

Posted 10 March 2013 - 11:31 PM

No it will not affect AVG.

 

If you are trying to keep AVG ,please uninstall Norton.



#15 very_confussed

very_confussed
  • Topic Starter

  • Members
  • 9 posts
  • OFFLINE
  •  
  • Local time:10:54 AM

Posted 10 March 2013 - 11:41 PM

Thank you for all your help.... I am gonna go and do some research on the suggested items TFC, restore point ,etc...

 

Lights out for me for today....

 

thanks,

 

VC






0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users