1. Computer problem? Tech Support Guy is completely free -- paid for by advertisers and donations. Click here to join today! If you're new to Tech Support Guy, we highly recommend that you visit our Guide for New Members.

Please help me with Vista Defender 2013 virus

Discussion in 'Virus & Other Malware Removal' started by Gabriellaa, Dec 24, 2012.

Thread Status:
Not open for further replies.
Advertisement
  1. Gabriellaa

    Gabriellaa Thread Starter

    Joined:
    Nov 14, 2008
    Messages:
    14
    I turned on my computer yesterday to find a virus has attacked my desktop. I could log onto computer however pop-ups continued to happen. Everything I tried to open from task manager to Word document, this virus would not allow me to open as well as internet. I rebooted and went into safe mode and it did the very same thing again. I could not operate anything. I used my phone to access internet and found some help to access microsoft essentials. Thankfully it worked, and has my virus contained some what. I am able to get online obviously, however I am not sure how to remove the virus. I read that once it is contained that it is vital you remove it. It is a level 5 trojan to my surprise. Please help!!!

    Sincerely Gabriella
     
  2. dvk01

    dvk01 Moderator Malware Specialist

    Joined:
    Dec 14, 2002
    Messages:
    56,451
    First Name:
    Derek
    follow advice here and post the logs those programs make
     
  3. Gabriellaa

    Gabriellaa Thread Starter

    Joined:
    Nov 14, 2008
    Messages:
    14
    Ok, I followed the instructions, on the DDS program it says to zip it and send it? I am not sure how to do that.

    I received this message as my hi-jack this began to scan so I am not sure if it did not get a good reliable scan?
    Please help us improve Hijack This by reporting this error
    Click ‘Yes’ to submit
    Error Details:
    An unexpected error has occurred at procedure modRegistry_IniGetString(sFile=system.ini,sSection=boot,sValue=Shell)
    Error#5-Invalid procedure call or argument
    Windows version: Windows NT 6.00.1906
    MSIE version: 8.0.6001.19393
    Hijack This Version: 2.0.4


    Logfile of Trend Micro HijackThis v2.0.4
    Scan saved at 12:46:22 PM, on 12/24/2012
    Platform: Windows Vista SP2 (WinNT 6.00.1906)
    MSIE: Internet Explorer v8.00 (8.00.6001.19393)
    Boot mode: Normal

    Running processes:
    C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
    C:\Program Files (x86)\NHC\nhcMediaPlugin.exe
    C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
    C:\Program Files (x86)\Internet Explorer\IELowutil.exe
    C:\Users\FamilyLove\Desktop\HijackThis.exe

    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.yahoo.com
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
    R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.yahoo.com
    R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
    R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
    R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
    R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
    R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
    R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
    F2 - REG:system.ini: UserInit=userinit.exe
    O1 - Hosts: ::1 localhost
    O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
    O2 - BHO: Winamp Toolbar Loader - {25CEE8EC-5730-41bc-8B58-22DDC8AB8C20} - C:\Program Files (x86)\Winamp Toolbar\winamptb.dll
    O2 - BHO: Increase performance and video formats for your HTML5 <video> - {326E768D-4182-46FD-9C16-1449A49795F4} - C:\Program Files (x86)\DivX\DivX Plus Web Player\ie\DivXHTML5\DivXHTML5.dll
    O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files (x86)\Spybot - Search & Destroy\SDHelper.dll
    O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
    O2 - BHO: BrowserHelper Class - {8A9D74F9-560B-4FE7-ABEB-3B2E638E5CD6} - C:\Program Files (x86)\SGPSA\SearchAssistant.dll (file missing)
    O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
    O2 - BHO: Windows Live Messenger Companion Helper - {9FDDE16B-836F-4806-AB1F-1455CBEFF289} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll
    O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
    O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files (x86)\Google\GoogleToolbarNotifier\5.7.8313.1002\swg.dll
    O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
    O3 - Toolbar: Winamp Toolbar - {EBF2BA02-9094-4c5a-858B-BB198F3D8DE2} - C:\Program Files (x86)\Winamp Toolbar\winamptb.dll
    O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
    O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
    O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
    O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe
    O4 - HKCU\..\Run: [swg] "C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
    O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'LOCAL SERVICE')
    O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'LOCAL SERVICE')
    O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'NETWORK SERVICE')
    O4 - Startup: NHC Media Plugin.lnk = C:\Program Files (x86)\NHC\nhcMediaPlugin.exe
    O9 - Extra button: @C:\Program Files (x86)\Windows Live\Companion\companionlang.dll,-600 - {0000036B-C524-4050-81A0-243669A86B9F} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll
    O9 - Extra button: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
    O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
    O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
    O9 - Extra 'Tools' menuitem: S&end to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
    O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\Windows\bdoscandel.exe
    O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\Windows\bdoscandel.exe
    O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~1\Office12\REFIEBAR.DLL
    O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files (x86)\Spybot - Search & Destroy\SDHelper.dll
    O9 - Extra 'Tools' menuitem: Spybot - Search && Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files (x86)\Spybot - Search & Destroy\SDHelper.dll
    O15 - Trusted Zone: *.clonewarsadventures.com
    O15 - Trusted Zone: *.freerealms.com
    O15 - Trusted Zone: *.soe.com
    O15 - Trusted Zone: *.sony.com
    O16 - DPF: {38AB6A6C-CC4C-4F9E-A3DD-3C5681EF18A1} - http://www.freerealms.com/gamedata/FreeRealmsInstaller.cab
    O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - http://messenger.zone.msn.com/MessengerGamesContent/GameContent/Default/uno1/GAME_UNO1.cab
    O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://download.bitdefender.com/resources/scanner/sources/en/scan8/oscan8.cab
    O16 - DPF: {67DABFBF-D0AB-41FA-9C46-CC0F21721616} (DivXBrowserPlugin Object) - http://download.divx.com/player/DivXBrowserPlugin.cab
    O16 - DPF: {8100D56A-5661-482C-BEE8-AFECE305D968} (Facebook Photo Uploader 5 Control) - http://upload.facebook.com/controls/2009.07.28_v5.5.8.1/FacebookPhotoUploader55.cab
    O16 - DPF: {8A94C905-FF9D-43B6-8708-F0F22D22B1CB} (Wwlaunch Control) - http://www.worldwinner.com/games/shared/wwlaunch.cab
    O16 - DPF: {8F6E7FB2-E56B-4F66-A4E1-9765D2565280} (WorldWinner ActiveX Launcher Control) - http://www.worldwinner.com/games/launcher/ie/v2.23.01.0/iewwload.cab
    O16 - DPF: {C345E174-3E87-4F41-A01C-B066A90A49B4} (WRC Class) - http://trial.trymicrosoftoffice.com/trialoaa/buymsoffice_assets/framework//microsoft/wrc32.ocx
    O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
    O16 - DPF: {D71F9A27-723E-4B8B-B428-B725E47CBA3E} - http://imikimi.com/download/imikimi_plugin_0.5.1.cab
    O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
    O16 - DPF: {E70E3E64-2793-4AEF-8CC8-F1606BE563B0} (WWSpades Control) - http://www.worldwinner.com/games/v54/wwspades/wwspades.cab
    O17 - HKLM\System\CS1\Services\Tcpip\..\{C163FDE0-3634-4EAC-8584-85130DD122FA}: NameServer = 192.168.99.1
    O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
    O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
    O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\Windows\system32\browseui.dll
    O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
    O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
    O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
    O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
    O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files (x86)\Bonjour\mDNSResponder.exe
    O23 - Service: Diskeeper - Diskeeper Corporation - C:\Program Files\Diskeeper Corporation\Diskeeper\DkService.exe
    O23 - Service: Google Update Service (gupdate1c9b721ec6c0b82) (gupdate1c9b721ec6c0b82) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
    O23 - Service: Google Update Service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
    O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
    O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
    O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
    O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
    O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe
    O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
    O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
    O23 - Service: Remote Packet Capture Protocol v.0 (experimental) (rpcapd) - CACE Technologies, Inc. - C:\Program Files (x86)\WinPcap\rpcapd.exe
    O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
    O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
    O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
    O23 - Service: @%SystemRoot%\system32\SLsvc.exe,-101 (slsvc) - Unknown owner - C:\Windows\system32\SLsvc.exe (file missing)
    O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
    O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
    O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
    O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
    O23 - Service: Volume Shadow Copy (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)

    --
    End of file - 11383 bytes

    Should I go ahead and post the DDS file?
    UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.
    IF REQUESTED, ZIP IT UP & ATTACH IT
    .
    DDS (Ver_2012-11-20.01)
     
  4. dvk01

    dvk01 Moderator Malware Specialist

    Joined:
    Dec 14, 2002
    Messages:
    56,451
    First Name:
    Derek
    just post both DDS files don't zip anything
     
  5. Gabriellaa

    Gabriellaa Thread Starter

    Joined:
    Nov 14, 2008
    Messages:
    14
    Ok, here is log 1

    UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.
    IF REQUESTED, ZIP IT UP & ATTACH IT
    .
    DDS (Ver_2012-11-20.01)
    .
    Microsoft® Windows Vista™ Home Premium
    Boot Device: \Device\HarddiskVolume2
    Install Date: 10/10/2006 8:03:39 AM
    System Uptime: 12/24/2012 9:12:41 AM (3 hours ago)
    .
    Motherboard: Acer | | Aspire X1700
    Processor: Intel(R) Pentium(R) Dual CPU E2220 @ 2.40GHz | CPU 1 | 2403/200mhz
    .
    ==== Disk Partitions =========================
    .
    C: is FIXED (NTFS) - 290 GiB total, 180.792 GiB free.
    D: is FIXED (NTFS) - 292 GiB total, 90.833 GiB free.
    F: is CDROM ()
    G: is Removable
    H: is Removable
    .
    ==== Disabled Device Manager Items =============
    .
    Class GUID: {4d36e96f-e325-11ce-bfc1-08002be10318}
    Description: Microsoft PS/2 Mouse
    Device ID: ACPI\PNP0F03\4&3032039E&0
    Manufacturer: Microsoft
    Name: Microsoft PS/2 Mouse
    PNP Device ID: ACPI\PNP0F03\4&3032039E&0
    Service: i8042prt
    .
    ==== System Restore Points ===================
    .
    RP1309: 12/24/2012 9:17:30 AM - Windows Update
    RP1310: 12/24/2012 9:24:03 AM - Windows Backup
    .
    ==== Installed Programs ======================
    .
    Update for Microsoft Office 2007 (KB2508958)
    Acer Assist
    Acer Empowering Technology
    Acer eRecovery Management
    Acer eSettings Management
    Acer GameZone Console DTV 2.0.1.1
    Acer ScreenSaver
    Adobe AIR
    Adobe Flash Player 11 ActiveX
    Adobe Flash Player 11 Plugin
    Adobe Reader X (10.1.4)
    Adobe Shockwave Player 11.6
    Agere Systems PCI-SV92EX Soft Modem
    All-Time Sudoku
    All My Gods
    Apple Application Support
    Apple Mobile Device Support
    Apple Software Update
    Application Profiles
    ArcSoft Panorama Maker 4
    Art of Murder: Cards of Destiny
    ATI AVIVO64 Codecs
    ATI Catalyst Install Manager
    Atlantis
    Belkin USB Wireless Adaptor
    Big Fish Games: Game Manager
    Bistro Boulevard
    Bonjour
    Cake Mania Main Street
    Campgrounds
    Catalyst Control Center - Branding
    Catalyst Control Center Graphics Previews Common
    Catalyst Control Center Graphics Previews Vista
    Catalyst Control Center InstallProxy
    Catalyst Control Center Localization All
    ccc-core-static
    ccc-utility64
    CCC Help Chinese Standard
    CCC Help Chinese Traditional
    CCC Help Czech
    CCC Help Danish
    CCC Help Dutch
    CCC Help English
    CCC Help Finnish
    CCC Help French
    CCC Help German
    CCC Help Greek
    CCC Help Hungarian
    CCC Help Italian
    CCC Help Japanese
    CCC Help Korean
    CCC Help Norwegian
    CCC Help Polish
    CCC Help Portuguese
    CCC Help Russian
    CCC Help Spanish
    CCC Help Swedish
    CCC Help Thai
    CCC Help Turkish
    Cessna Caravan 208 Trainer v10.0
    Chicken Invaders 3: Revenge of the Yolk Easter Edition
    Chicken Invaders 4: Ultimate Omelette
    Chronicles of Mystery: The Scorpio Ritual
    Cooking Dash: DinerTown Studios
    D3DX10
    Dark Parables: Rise of the Snow Queen
    Dark Parables: The Exiled Prince
    Diner Dash - Flo on the Go
    Diner Dash 5: Boom Collector's Edition
    Diner Dash: Seasonal Snack Pack
    Diskeeper 2010 Pro Premier
    DivX Setup
    Drawn: Dark Flight &reg;
    Drawn: The Painted Tower ™
    Drawn™: Trail of Shadows Collector's Edition
    EasyCleaner
    Echo: Secret of the Lost Cavern
    Empires & Dungeons
    Express Scribe Uninstall
    Family Feud: Battle of the Sexes
    FamilyFeudOnlineParty (remove only)
    Farm Frenzy 2
    Farm Frenzy 3
    Flight Simulator X
    Flight Simulator X Service Pack 1
    Gardenscapes: Mansion Makeover™
    GDR 4053 for SQL Server Database Services 2005 ENU (KB970892)
    Google Chrome
    Google Earth Plug-in
    Google Toolbar for Internet Explorer
    Google Update Helper
    Hell's Kitchen
    Hidden Expedition - Amazon (remove only)
    Hidden Relics
    HiJackThis
    Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595)
    Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484)
    HydraVision
    Infected: The Twin Vaccine Collector’s Edition
    InterActual Player
    iTunes
    Java 7 Update 9
    Java Auto Updater
    Java(TM) 6 Update 37
    Jewel Quest Solitaire
    Junk Mail filter update
    Kick N Rush
    Kingdom Chronicles Collector's Edition
    Kitchen Brigade
    LightScribe 1.4.142.1
    Love & Death ™: Bitten ™
    Maestro: Music of Death
    Mahjong Escape Ancient China
    Mahjongg Artifacts
    Malwarebytes' Anti-Malware
    Megaplex Madness: Now Playing ™
    Mesh Runtime
    Messenger Companion
    Microsoft .NET Framework 3.5 SP1
    Microsoft .NET Framework 4 Client Profile
    Microsoft Application Error Reporting
    Microsoft Flight Simulator X
    Microsoft Flight Simulator X: Acceleration
    Microsoft Office 2003 Web Components
    Microsoft Office 2007 Primary Interop Assemblies
    Microsoft Office 2007 Service Pack 3 (SP3)
    Microsoft Office Access MUI (English) 2007
    Microsoft Office Access Setup Metadata MUI (English) 2007
    Microsoft Office Accounting 2007
    Microsoft Office Accounting ADP Payroll Addin
    Microsoft Office Accounting Equifax Addin
    Microsoft Office Accounting Fixed Asset Manager
    Microsoft Office Accounting PayPal Addin
    Microsoft Office Excel MUI (English) 2007
    Microsoft Office File Validation Add-In
    Microsoft Office Home and Student 2007
    Microsoft Office Office 64-bit Components 2007
    Microsoft Office OneNote MUI (English) 2007
    Microsoft Office Outlook Connector
    Microsoft Office Outlook MUI (English) 2007
    Microsoft Office PowerPoint MUI (English) 2007
    Microsoft Office Professional 2007
    Microsoft Office Proof (English) 2007
    Microsoft Office Proof (French) 2007
    Microsoft Office Proof (Spanish) 2007
    Microsoft Office Proofing (English) 2007
    Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
    Microsoft Office Publisher MUI (English) 2007
    Microsoft Office Shared 64-bit MUI (English) 2007
    Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2007
    Microsoft Office Shared MUI (English) 2007
    Microsoft Office Shared Setup Metadata MUI (English) 2007
    Microsoft Office Small Business Connectivity Components
    Microsoft Office Suite Activation Assistant
    Microsoft Office Word MUI (English) 2007
    Microsoft Office Word Viewer 2003
    Microsoft Silverlight
    Microsoft SQL Server 2005
    Microsoft SQL Server 2005 Compact Edition [ENU]
    Microsoft SQL Server 2005 Express Edition (MSSMLBIZ)
    Microsoft SQL Server Native Client
    Microsoft SQL Server Setup Support Files (English)
    Microsoft SQL Server VSS Writer
    Microsoft VC9 runtime libraries
    Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053
    Microsoft Visual C++ 2005 Redistributable
    Microsoft Visual C++ 2008 ATL Update kb973924 - x64 9.0.30729.4148
    Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148
    Microsoft Visual C++ 2008 Redistributable - KB2467174 - x64 9.0.30729.5570
    Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570
    Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17
    Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161
    Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
    Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
    Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
    Microsoft Visual C++ 2010 x64 Redistributable - 10.0.30319
    Microsoft Works
    Mozilla Firefox 17.0.1 (x86 en-US)
    Mozilla Maintenance Service
    MSVCRT
    MSVCRT_amd64
    MSXML 4.0 SP2 (KB954430)
    MSXML 4.0 SP2 (KB973688)
    MSXML 4.0 SP2 Parser and SDK
    My Wal-Mart Digital Photo Center
    Mystery Case Files - Huntsville
    Mystery Case Files &reg;: 13th Skull ™
    Mystery Case Files&reg;: Escape from Ravenhearst™
    Mystery Case Files&reg;: Shadow Lake Collector's Edition
    Mystery Case Files: Return to Ravenhearst ™
    Mystery Solitaire - Secret Island
    Mystery Trackers: The Void
    Mystery Trackers: The Void Strategy Guide
    Mysteryville 2 (remove only)
    Mystic Diary: Haunted Island
    Nanny Mania 2: Goes to Hollywood
    Newspaper Puzzle Challenge - Sudoku Edition
    NiBiRu
    NVIDIA Drivers
    OpenAL
    PE585QAEncoder-64
    Phoenix Viewer 1.5.2.1102
    Plants vs. Zombies
    Press Your Luck
    QuickTime
    Realtek High Definition Audio Driver
    Redemption Cemetery: Curse of the Raven Collector's Edition
    Royal Detective: The Lord of Statues Collector's Edition
    Safari
    Saints and Sinners Bingo
    Sam Spade version 1.14
    SecondLifeViewer2 (remove only)
    Security Update for Microsoft .NET Framework 3.5 SP1 (KB2604111)
    Security Update for Microsoft .NET Framework 3.5 SP1 (KB2657424)
    Security Update for Microsoft Office 2007 suites (KB2596615) 32-Bit Edition
    Security Update for Microsoft Office 2007 suites (KB2596672) 32-Bit Edition
    Security Update for Microsoft Office 2007 suites (KB2596744) 32-Bit Edition
    Security Update for Microsoft Office 2007 suites (KB2596754) 32-Bit Edition
    Security Update for Microsoft Office 2007 suites (KB2596785) 32-Bit Edition
    Security Update for Microsoft Office 2007 suites (KB2596792) 32-Bit Edition
    Security Update for Microsoft Office 2007 suites (KB2596856) 32-Bit Edition
    Security Update for Microsoft Office 2007 suites (KB2596871) 32-Bit Edition
    Security Update for Microsoft Office 2007 suites (KB2597969) 32-Bit Edition
    Security Update for Microsoft Office 2007 suites (KB2687311) 32-Bit Edition
    Security Update for Microsoft Office 2007 suites (KB2687314) 32-Bit Edition
    Security Update for Microsoft Office 2007 suites (KB2687441) 32-Bit Edition
    Security Update for Microsoft Office 2007 suites (KB2760416) 32-Bit Edition
    Security Update for Microsoft Office Excel 2007 (KB2687307) 32-Bit Edition
    Security Update for Microsoft Office InfoPath 2007 (KB2687440) 32-Bit Edition
    Security Update for Microsoft Office PowerPoint 2007 (KB2596764) 32-Bit Edition
    Security Update for Microsoft Office PowerPoint 2007 (KB2596912) 32-Bit Edition
    Security Update for Microsoft Office Publisher 2007 (KB2596705) 32-Bit Edition
    Security Update for Microsoft Office Word 2007 (KB2760421) 32-Bit Edition
    Segoe UI
    Shiver: Poltergeist Collector's Edition
    Shiver: Vanishing Hitchhiker
    SHOUTcast Source DSP 1.9.1 (remove only)
    Shrek's Carnival Craze™ Party Games
    Skype™ 5.10
    Sphera
    SpongeBob SquarePants Obstacle Odyssey 2
    Spybot - Search & Destroy
    swMSM
    Syberia
    Syberia II
    The Great Sea Battle: The Game of Battleship
    There
    Top Chef
    Turbo Pizza
    Unity Web Player
    Update for 2007 Microsoft Office System (KB967642)
    Update for Microsoft .NET Framework 3.5 SP1 (KB963707)
    Update for Microsoft Office 2007 Help for Common Features (KB963673)
    Update for Microsoft Office 2007 suites (KB2596660) 32-Bit Edition
    Update for Microsoft Office 2007 suites (KB2596848) 32-Bit Edition
    Update for Microsoft Office Access 2007 Help (KB963663)
    Update for Microsoft Office Excel 2007 Help (KB963678)
    Update for Microsoft Office OneNote 2007 Help (KB963670)
    Update for Microsoft Office Outlook 2007 (KB2687404) 32-Bit Edition
    Update for Microsoft Office Outlook 2007 Help (KB963677)
    Update for Microsoft Office Outlook 2007 Junk Email Filter (KB2760573) 32-Bit Edition
    Update for Microsoft Office Powerpoint 2007 Help (KB963669)
    Update for Microsoft Office Publisher 2007 Help (KB963667)
    Update for Microsoft Office Script Editor Help (KB963671)
    Update for Microsoft Office Word 2007 (KB974631)
    Update for Microsoft Office Word 2007 Help (KB963665)
    VC80CRTRedist - 8.0.50727.6195
    Wandering Willows
    Westward II: Heroes of the Frontier
    Westward III: Gold Rush
    Westward IV: All Aboard
    Westward Kingdoms
    Wheel of Fortune 2
    Winamp
    Winamp Detector Plug-in
    Winamp Toolbar
    Windows Live Communications Platform
    Windows Live Essentials
    Windows Live Family Safety
    Windows Live ID Sign-in Assistant
    Windows Live Installer
    Windows Live Language Selector
    Windows Live Mail
    Windows Live Mesh
    Windows Live Mesh ActiveX Control for Remote Connections
    Windows Live Messenger
    Windows Live Messenger Companion Core
    Windows Live MIME IFilter
    Windows Live Movie Maker
    Windows Live Photo Common
    Windows Live Photo Gallery
    Windows Live PIMT Platform
    Windows Live Remote Client
    Windows Live Remote Client Resources
    Windows Live Remote Service
    Windows Live Remote Service Resources
    Windows Live SOXE
    Windows Live SOXE Definitions
    Windows Live UX Platform
    Windows Live UX Platform Language Pack
    Windows Live Writer
    Windows Live Writer Resources
    WinPcap 4.1.2
    Wireshark 1.4.4
    World of Goo
    Zuma Deluxe
    .
    ==== Event Viewer Messages From Past Week ========
    .
    12/24/2012 9:21:04 AM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x80246007: Microsoft .NET Framework 4 Client Profile for Windows Vista x64-based Systems (KB982670).
    12/24/2012 9:17:46 AM, Error: volsnap [20] - The shadow copies of volume C: were aborted because of a failed free space computation.
    12/24/2012 9:17:40 AM, Error: volsnap [20] - The shadow copies of volume \\?\Volume{dee1de2e-586f-11db-9634-806e6f6e6963} were aborted because of a failed free space computation.
    12/24/2012 12:30:29 AM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x80070643: Microsoft SQL Server 2005 Express Edition Service Pack 4 (KB2463332).
    12/24/2012 12:22:16 AM, Error: Microsoft-Windows-Windows Defender [2004] - Windows Defender has encountered an error trying to load signatures and will attempt reverting back to a known-good set of signatures. Signatures Attempted: Current Error Code: 0x8050a001 Error description: The program can't find definition files that help detect unwanted software. Check for updates to the definition files, and then try again. For information on installing updates, see Help and Support. Signatures loading: Backup Loading signature version: 1.141.2103.0 Loading engine version: 1.1.9002.0
    12/23/2012 9:01:32 AM, Error: Microsoft Antimalware [1119] -
    12/22/2012 8:00:24 PM, Error: nvstor64 [5] - A parity error was detected on \Device\RaidPort0.
    12/22/2012 7:55:44 PM, Error: Service Control Manager [7022] - The Windows Update service hung on starting.
    12/22/2012 7:49:41 PM, Error: EventLog [6008] - The previous system shutdown at 7:47:49 PM on 12/22/2012 was unexpected.
    12/22/2012 2:29:40 PM, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1084" attempting to start the service wuauserv with arguments "" in order to run the server: {E60687F7-01A1-40AA-86AC-DB1CBF673334}
    12/22/2012 2:29:23 PM, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1084" attempting to start the service WSearch with arguments "" in order to run the server: {7D096C5F-AC08-4F1F-BEB7-5C22C517CE39}
    12/22/2012 2:29:07 PM, Error: Service Control Manager [7026] - The following boot-start or system-start driver(s) failed to load: i8042prt MpFilter spldr Wanarpv6
    12/22/2012 2:29:07 PM, Error: Service Control Manager [7001] - The Computer Browser service depends on the Server service which failed to start because of the following error: The dependency service or group failed to start.
    12/22/2012 2:29:02 PM, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1084" attempting to start the service WSearch with arguments "" in order to run the server: {9E175B6D-F52A-11D8-B9A5-505054503030}
    12/22/2012 2:29:00 PM, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1068" attempting to start the service fdPHost with arguments "" in order to run the server: {145B4335-FE2A-4927-A040-7C35AD3180EF}
    12/22/2012 2:28:59 PM, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1084" attempting to start the service EventSystem with arguments "" in order to run the server: {1BE1F766-5536-11D1-B726-00C04FB926AF}
    12/22/2012 2:28:51 PM, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1084" attempting to start the service ShellHWDetection with arguments "" in order to run the server: {DD522ACC-F821-461A-A407-50B198B896DC}
    12/22/2012 2:16:21 PM, Error: Service Control Manager [7001] - The Network List Service service depends on the Network Location Awareness service which failed to start because of the following error: The dependency service or group failed to start.
    12/22/2012 2:16:17 PM, Error: Service Control Manager [7026] - The following boot-start or system-start driver(s) failed to load: AFD DfsC i8042prt MpFilter NetBIOS netbt nsiproxy PSched RasAcd rdbss Smb spldr tdx Wanarpv6
    12/22/2012 2:16:17 PM, Error: Service Control Manager [7001] - The Workstation service depends on the Network Store Interface Service service which failed to start because of the following error: The dependency service or group failed to start.
    12/22/2012 2:16:17 PM, Error: Service Control Manager [7001] - The TCP/IP NetBIOS Helper service depends on the Ancilliary Function Driver for Winsock service which failed to start because of the following error: A device attached to the system is not functioning.
    12/22/2012 2:16:17 PM, Error: Service Control Manager [7001] - The SMB MiniRedirector Wrapper and Engine service depends on the Redirected Buffering Sub Sysytem service which failed to start because of the following error: A device attached to the system is not functioning.
    12/22/2012 2:16:17 PM, Error: Service Control Manager [7001] - The SMB 2.0 MiniRedirector service depends on the SMB MiniRedirector Wrapper and Engine service which failed to start because of the following error: The dependency service or group failed to start.
    12/22/2012 2:16:17 PM, Error: Service Control Manager [7001] - The SMB 1.x MiniRedirector service depends on the SMB MiniRedirector Wrapper and Engine service which failed to start because of the following error: The dependency service or group failed to start.
    12/22/2012 2:16:17 PM, Error: Service Control Manager [7001] - The Network Store Interface Service service depends on the NSI proxy service service which failed to start because of the following error: A device attached to the system is not functioning.
    12/22/2012 2:16:17 PM, Error: Service Control Manager [7001] - The Network Location Awareness service depends on the Network Store Interface Service service which failed to start because of the following error: The dependency service or group failed to start.
    12/22/2012 2:16:17 PM, Error: Service Control Manager [7001] - The IP Helper service depends on the Network Store Interface Service service which failed to start because of the following error: The dependency service or group failed to start.
    12/22/2012 2:16:17 PM, Error: Service Control Manager [7001] - The DNS Client service depends on the NetIO Legacy TDI Support Driver service which failed to start because of the following error: A device attached to the system is not functioning.
    12/22/2012 2:16:17 PM, Error: Service Control Manager [7001] - The DHCP Client service depends on the Ancilliary Function Driver for Winsock service which failed to start because of the following error: A device attached to the system is not functioning.
    12/22/2012 2:15:38 PM, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1068" attempting to start the service netprofm with arguments "" in order to run the server: {A47979D2-C419-11D9-A5B4-001185AD2B89}
    12/22/2012 2:15:38 PM, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1068" attempting to start the service netman with arguments "" in order to run the server: {BA126AD1-2166-11D1-B1D0-00805FC1270E}
    12/20/2012 11:47:26 AM, Error: Microsoft-Windows-DistributedCOM [10016] - The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID {8BC3F05E-D86B-11D0-A075-00C04FB68820} to the user FamilyLove-PC\FamilyLove SID (S-1-5-21-3586427782-1107690275-415207812-1000) from address LocalHost (Using LRPC). This security permission can be modified using the Component Services administrative tool.
    12/20/2012 10:00:49 AM, Error: Microsoft-Windows-PrintSpooler [19] - The print spooler failed to share printer hp officejet 6100 series with shared resource name hp officejet 6100 series. Error 2114. The printer cannot be used by others on the network.
    12/17/2012 12:30:14 AM, Error: Service Control Manager [7026] - The following boot-start or system-start driver(s) failed to load: AFD aswSnx DfsC i8042prt NetBIOS netbt nsiproxy PSched RasAcd rdbss Smb spldr tdx Wanarpv6
    12/17/2012 1:06:54 AM, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1084" attempting to start the service MSIServer with arguments "" in order to run the server: {000C101C-0000-0000-C000-000000000046}
    .
    ==== End Of File ===========================


     
  6. Gabriellaa

    Gabriellaa Thread Starter

    Joined:
    Nov 14, 2008
    Messages:
    14
    Here is log 2

    DDS (Ver_2012-11-20.01) - NTFS_AMD64
    Internet Explorer: 8.0.6001.19393 BrowserJavaVersion: 10.9.2
    Run by FamilyLove at 12:47:16 on 2012-12-24
    Microsoft® Windows Vista™ Home Premium 6.0.6002.2.1252.1.1033.18.4094.2092 [GMT -7:00]
    .
    SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
    .
    ============== Running Processes ===============
    .
    C:\Windows\system32\lsm.exe
    C:\Windows\system32\svchost.exe -k DcomLaunch
    C:\Windows\system32\svchost.exe -k rpcss
    C:\Windows\System32\svchost.exe -k secsvcs
    C:\Windows\system32\atiesrxx.exe
    C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
    C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
    C:\Windows\system32\svchost.exe -k netsvcs
    C:\Windows\system32\svchost.exe -k GPSvcGroup
    C:\Windows\system32\SLsvc.exe
    C:\Windows\system32\atieclxx.exe
    C:\Windows\system32\svchost.exe -k LocalService
    C:\Windows\system32\svchost.exe -k NetworkService
    C:\Windows\System32\spoolsv.exe
    C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
    C:\Program Files (x86)\Bonjour\mDNSResponder.exe
    C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe
    C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
    C:\Windows\system32\svchost.exe -k imgsvc
    C:\Windows\System32\svchost.exe -k WerSvcGroup
    C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
    C:\Windows\system32\SearchIndexer.exe
    C:\Windows\System32\WUDFHost.exe
    C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
    C:\Windows\system32\taskeng.exe
    C:\Program Files\Diskeeper Corporation\Diskeeper\DkService.exe
    C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
    C:\Windows\system32\svchost.exe -k SDRSVC
    C:\Windows\system32\taskeng.exe
    C:\Windows\system32\Dwm.exe
    C:\Windows\Explorer.EXE
    C:\Program Files\Windows Defender\MSASCui.exe
    C:\Windows\RAVCpl64.exe
    C:\Windows\ehome\ehtray.exe
    C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
    C:\Program Files (x86)\NHC\nhcMediaPlugin.exe
    C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
    C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
    C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
    C:\Windows\system32\wbem\unsecapp.exe
    C:\Windows\system32\wbem\wmiprvse.exe
    C:\Windows\system32\wuauclt.exe
    C:\Windows\ehome\ehmsas.exe
    C:\Program Files (x86)\Internet Explorer\IELowutil.exe
    C:\Windows\splwow64.exe
    C:\Windows\System32\svchost.exe -k swprv
    C:\Windows\system32\wbem\wmiprvse.exe
    C:\Windows\system32\msfeedssync.exe
    C:\Windows\System32\cscript.exe
    .
    ============== Pseudo HJT Report ===============
    .
    uStart Page = hxxp://www.google.com/
    uDefault_Page_URL = hxxp://www.msn.com
    mStart Page = hxxp://www.yahoo.com
    mDefault_Page_URL = hxxp://www.yahoo.com
    mWinlogon: Userinit = userinit.exe
    BHO: Adobe PDF Link Helper: {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
    BHO: Winamp Toolbar Loader: {25CEE8EC-5730-41bc-8B58-22DDC8AB8C20} - C:\Program Files (x86)\Winamp Toolbar\winamptb.dll
    BHO: DivX Plus Web Player HTML5 <video>: {326E768D-4182-46FD-9C16-1449A49795F4} - C:\Program Files (x86)\DivX\DivX Plus Web Player\ie\DivXHTML5\DivXHTML5.dll
    BHO: Spybot-S&D IE Protection: {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files (x86)\Spybot - Search & Destroy\SDHelper.dll
    BHO: Java(tm) Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
    BHO: BrowserHelper Class: {8A9D74F9-560B-4FE7-ABEB-3B2E638E5CD6} -
    BHO: Windows Live ID Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
    BHO: Windows Live Messenger Companion Helper: {9FDDE16B-836F-4806-AB1F-1455CBEFF289} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll
    BHO: Google Toolbar Helper: {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
    BHO: Google Toolbar Notifier BHO: {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files (x86)\Google\GoogleToolbarNotifier\5.7.8313.1002\swg.dll
    BHO: Java(tm) Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
    TB: Google Toolbar: {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
    TB: Winamp Toolbar: {EBF2BA02-9094-4C5A-858B-BB198F3D8DE2} - C:\Program Files (x86)\Winamp Toolbar\winamptb.dll
    TB: Winamp Toolbar: {EBF2BA02-9094-4c5a-858B-BB198F3D8DE2} - C:\Program Files (x86)\Winamp Toolbar\winamptb.dll
    TB: Google Toolbar: {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
    uRun: [ehTray.exe] C:\Windows\ehome\ehTray.exe
    uRun: [swg] "C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
    mRun: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
    mRun: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
    StartupFolder: C:\Users\FAMILY~1\AppData\Roaming\MICROS~1\Windows\STARTM~1\Programs\Startup\NHCMED~1.LNK - C:\Program Files (x86)\NHC\nhcMediaPlugin.exe
    uPolicies-Explorer: NoDriveTypeAutoRun = dword:149
    mPolicies-Explorer: NoActiveDesktop = dword:1
    mPolicies-Explorer: NoActiveDesktopChanges = dword:1
    mPolicies-Explorer: BindDirectlyToPropertySetStorage = dword:0
    mPolicies-System: EnableUIADesktopToggle = dword:0
    IE: {0000036B-C524-4050-81A0-243669A86B9F} - {B63DBA5F-523F-4B9C-A43D-65DF1977EAD3} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll
    IE: {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - {5F7B1267-94A9-47F5-98DB-E99415F33AEC} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
    IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - C:\Program Files (x86)\Microsoft Office\Office12\ONBttnIE.dll
    IE: {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe
    IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503}
    IE: {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files (x86)\Spybot - Search & Destroy\SDHelper.dll
    Trusted Zone: clonewarsadventures.com
    Trusted Zone: freerealms.com
    Trusted Zone: soe.com
    Trusted Zone: sony.com
    DPF: {233C1507-6A77-46A4-9443-F871F945D258} - hxxp://download.macromedia.com/pub/shockwave/cabs/director/sw.cab
    DPF: {38AB6A6C-CC4C-4F9E-A3DD-3C5681EF18A1} - hxxp://www.freerealms.com/gamedata/FreeRealmsInstaller.cab
    DPF: {5D6F45B3-9043-443D-A792-115447494D24} - hxxp://messenger.zone.msn.com/MessengerGamesContent/GameContent/Default/uno1/GAME_UNO1.cab
    DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} - hxxp://download.bitdefender.com/resources/scanner/sources/en/scan8/oscan8.cab
    DPF: {67DABFBF-D0AB-41FA-9C46-CC0F21721616} - hxxp://download.divx.com/player/DivXBrowserPlugin.cab
    DPF: {8100D56A-5661-482C-BEE8-AFECE305D968} - hxxp://upload.facebook.com/controls/2009.07.28_v5.5.8.1/FacebookPhotoUploader55.cab
    DPF: {8A94C905-FF9D-43B6-8708-F0F22D22B1CB} - hxxp://www.worldwinner.com/games/shared/wwlaunch.cab
    DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_37-windows-i586.cab
    DPF: {8F6E7FB2-E56B-4F66-A4E1-9765D2565280} - hxxp://www.worldwinner.com/games/launcher/ie/v2.23.01.0/iewwload.cab
    DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} - hxxp://fpdownload.macromedia.com/get/flashplayer/current/polarbear/ultrashim.cab
    DPF: {C345E174-3E87-4F41-A01C-B066A90A49B4} - hxxp://trial.trymicrosoftoffice.com/trialoaa/buymsoffice_assets/framework//microsoft/wrc32.ocx
    DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} - hxxp://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
    DPF: {CAFEEFAC-0016-0000-0037-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_37-windows-i586.cab
    DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_37-windows-i586.cab
    DPF: {D71F9A27-723E-4B8B-B428-B725E47CBA3E} - hxxp://imikimi.com/download/imikimi_plugin_0.5.1.cab
    DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - hxxp://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
    DPF: {E70E3E64-2793-4AEF-8CC8-F1606BE563B0} - hxxp://www.worldwinner.com/games/v54/wwspades/wwspades.cab
    TCP: NameServer = 192.168.0.1 205.171.2.25
    TCP: Interfaces\{70F12CB4-0536-47E6-9F0F-3E0C9647A5A5} : DHCPNameServer = 192.168.0.1 205.171.3.25
    TCP: Interfaces\{C163FDE0-3634-4EAC-8584-85130DD122FA} : DHCPNameServer = 192.168.0.1 205.171.2.25
    Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll
    Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
    LSA: Security Packages = kerberos msv1_0 schannel wdigest tspkg
    x64-mStart Page = hxxp://homepage.acer.com/rdr.aspx?b=ACAW&l=0409&s=1&o=vp64&d=1006&m=aspire_x1700
    x64-mDefault_Page_URL = hxxp://homepage.acer.com/rdr.aspx?b=ACAW&l=0409&s=1&o=vp64&d=1006&m=aspire_x1700
    x64-BHO: {83A2F9B1-01A2-4AA5-87D1-45B6B8505E96} - <orphaned>
    x64-BHO: Windows Live ID Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
    x64-BHO: Google Toolbar Helper: {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll
    x64-BHO: Google Toolbar Notifier BHO: {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.7.8313.1002\swg64.dll
    x64-TB: Google Toolbar: {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll
    x64-Run: [Windows Defender] C:\Program Files (x86)\Windows Defender\MSASCui.exe -hide
    x64-Run: [RtHDVCpl] RAVCpl64.exe
    x64-mPolicies-Explorer: NoActiveDesktop = dword:1
    x64-mPolicies-Explorer: NoActiveDesktopChanges = dword:1
    x64-mPolicies-Explorer: BindDirectlyToPropertySetStorage = dword:0
    x64-mPolicies-System: EnableUIADesktopToggle = dword:0
    x64-Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - <orphaned>
    x64-Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - <orphaned>
    .
    ================= FIREFOX ===================
    .
    FF - ProfilePath - C:\Users\FamilyLove\AppData\Roaming\Mozilla\Firefox\Profiles\miwhoqkl.default\
    FF - prefs.js: browser.search.defaulturl - hxxp://search.yahoo.com/search?fr=ffsp1&p=
    FF - prefs.js: browser.search.selectedEngine - AOL Search
    FF - prefs.js: browser.startup.homepage - hxxp://www.google.com/ig
    FF - prefs.js: keyword.URL - hxxp://search.yahoo.com/search?fr=ffds1&p=
    FF - prefs.js: network.proxy.type - 4
    FF - plugin: C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll
    FF - plugin: C:\Program Files (x86)\DivX\DivX OVS Helper\npovshelper.dll
    FF - plugin: C:\Program Files (x86)\DivX\DivX Plus Web Player\npdivx32.dll
    FF - plugin: C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll
    FF - plugin: C:\Program Files (x86)\Google\Update\1.3.21.123\npGoogleUpdate3.dll
    FF - plugin: C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll
    FF - plugin: C:\Program Files (x86)\Microsoft Silverlight\4.1.10329.0\npctrlui.dll
    FF - plugin: C:\Program Files (x86)\Mozilla Firefox\plugins\npkanevapatch.dll
    FF - plugin: C:\Program Files (x86)\Mozilla Firefox\plugins\npwachk.dll
    FF - plugin: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
    FF - plugin: C:\Users\FamilyLove\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll
    FF - plugin: C:\Windows\SysWOW64\Adobe\Director\np32dsw.dll
    FF - plugin: C:\Windows\SysWOW64\Adobe\Director\np32dsw_1168638.dll
    FF - plugin: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_5_502_135.dll
    FF - plugin: C:\Windows\SysWOW64\npdeployJava1.dll
    FF - plugin: C:\Windows\SysWOW64\npmproxy.dll
    FF - ExtSQL: 2012-11-17 21:45; {CAFEEFAC-0016-0000-0037-ABCDEFFEDCBA}; C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0037-ABCDEFFEDCBA}
    FF - ExtSQL: 2012-11-17 22:32; {0b38152b-1b20-484d-a11f-5e04a9b0661f}; C:\Users\FamilyLove\AppData\Roaming\Mozilla\Firefox\Profiles\miwhoqkl.default\extensions\{0b38152b-1b20-484d-a11f-5e04a9b0661f}
    FF - ExtSQL: 2012-11-17 22:36; {23fcfd51-4958-4f00-80a3-ae97e717ed8b}; C:\Program Files (x86)\DivX\DivX Plus Web Player\firefox\DivXHTML5
    FF - ExtSQL: 2012-12-21 11:11; {4bf35655-79f9-4560-9508-4a2483d89380}; C:\Users\FamilyLove\AppData\Roaming\Mozilla\Firefox\Profiles\miwhoqkl.default\extensions\{4bf35655-79f9-4560-9508-4a2483d89380}.xpi
    FF - ExtSQL: !HIDDEN! 2009-07-07 00:03; {20a82645-c095-46ed-80e3-08825760534b}; C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension
    .
    ---- FIREFOX POLICIES ----
    FF - user.js: yahoo.homepage.dontask - true);user_pref(network.protocol-handler.warn-external.dnupdate, false);user_pref(network.protocol-handler.warn-external.dnupdate, false);user_pref(yahoo.ytff.general.dontshowhpoffer, true);user_pref(network.protocol-handler.warn-external.dnupdate, false
    ============= SERVICES / DRIVERS ===============
    .
    R2 AMD External Events Utility;AMD External Events Utility;C:\Windows\System32\atiesrxx.exe [2010-8-25 203776]
    R2 FontCache;Windows Font Cache Service;C:\Windows\System32\svchost.exe -k LocalServiceAndNoImpersonation [2008-1-20 27648]
    R2 NPF;NetGroup Packet Filter Driver;C:\Windows\System32\drivers\npf.sys [2010-6-25 35344]
    S2 gupdate1c9b721ec6c0b82;Google Update Service (gupdate1c9b721ec6c0b82);C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2009-4-6 133104]
    S2 SkypeUpdate;Skype Updater;C:\Program Files (x86)\Skype\Updater\Updater.exe [2012-7-13 160944]
    S3 DKRtWrt;DKRtWrt;C:\Windows\System32\drivers\DKRtWrt.sys [2010-11-6 51120]
    S3 fssfltr;FssFltr;C:\Windows\System32\drivers\fssfltr.sys [2010-11-1 48488]
    S3 fsssvc;Windows Live Family Safety Service;C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe [2010-9-23 1493352]
    S3 ITEIO.SYS;ITEIO.SYS;C:\Windows\System32\drivers\ITEIO.sys [2006-10-10 13144]
    S3 PerfHost;Performance Counter DLL Host;C:\Windows\SysWOW64\perfhost.exe [2008-1-20 19968]
    S3 RTL8192su;%RTL8192su.DeviceDesc.DispName%;C:\Windows\System32\drivers\RTL8192su.sys [2010-7-8 628840]
    S3 USBAAPL64;Apple Mobile USB Driver;C:\Windows\System32\drivers\usbaapl64.sys [2011-5-10 51712]
    S4 clr_optimization_v2.0.50727_64;Microsoft .NET Framework NGEN v2.0.50727_X64;C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe [2009-9-23 89920]
    S4 ETService;Empowering Technology Service;C:\Program Files\Acer\Empowering Technology\Service\ETService.exe [2009-3-13 24576]
    S4 iWinTrusted;iWinTrusted;C:\Program Files (x86)\iWin Games\iWinTrusted.exe --> C:\Program Files (x86)\iWin Games\iWinTrusted.exe [?]
    S4 wlcrasvc;Windows Live Mesh remote connections service;C:\Program Files\Windows Live\Mesh\wlcrasvc.exe [2010-9-22 57184]
    .
    =============== File Associations ===============
    .
    FileExt: .js: JSFile=C:\Windows\SysWOW64\WScript.exe "%1" %*
    FileExt: .jse: JSEFile=C:\Windows\SysWOW64\WScript.exe "%1" %*
    .
    =============== Created Last 30 ================
    .
    .
    ==================== Find3M ====================
    .
    2012-12-22 21:48:39 0 ----a-w- C:\autoexec.bat
    2012-12-16 13:31:20 48128 ----a-w- C:\Windows\System32\atmlib.dll
    2012-12-16 13:12:54 34304 ----a-w- C:\Windows\SysWow64\atmlib.dll
    2012-12-16 11:08:21 368128 ----a-w- C:\Windows\System32\atmfd.dll
    2012-12-16 10:50:29 293376 ----a-w- C:\Windows\SysWow64\atmfd.dll
    2012-12-15 19:01:43 95208 ----a-w- C:\Windows\SysWow64\WindowsAccessBridge-32.dll
    2012-12-15 19:01:42 821736 ----a-w- C:\Windows\SysWow64\npdeployJava1.dll
    2012-12-15 19:01:42 746984 ----a-w- C:\Windows\SysWow64\deployJava1.dll
    2012-12-15 19:01:42 246760 ----a-w- C:\Windows\SysWow64\javaws.exe
    2012-12-15 19:01:42 174056 ----a-w- C:\Windows\SysWow64\javaw.exe
    2012-12-15 19:01:42 174056 ----a-w- C:\Windows\SysWow64\java.exe
    2012-12-14 15:42:30 67413224 ----a-w- C:\Windows\System32\mrt.exe
    2012-12-14 04:06:09 73656 ----a-w- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl
    2012-12-14 04:06:09 697272 ----a-w- C:\Windows\SysWow64\FlashPlayerApp.exe
    2012-11-13 20:29:04 354216 ----a-w- C:\Windows\SysWow64\DivXControlPanelApplet.cpl
    2012-11-13 01:55:22 2770432 ----a-w- C:\Windows\System32\win32k.sys
    2012-11-13 01:45:48 2048 ----a-w- C:\Windows\System32\tzres.dll
    2012-11-13 01:29:51 2048 ----a-w- C:\Windows\SysWow64\tzres.dll
    2012-11-09 12:35:23 1147392 ----a-w- C:\Windows\System32\wininet.dll
    2012-11-09 12:35:05 1488384 ----a-w- C:\Windows\System32\urlmon.dll
    2012-11-09 12:35:05 108032 ----a-w- C:\Windows\System32\url.dll
    2012-11-09 12:33:23 243712 ----a-w- C:\Windows\System32\occache.dll
    2012-11-09 12:31:32 1062912 ----a-w- C:\Windows\System32\mstime.dll
    2012-11-09 12:31:01 98304 ----a-w- C:\Windows\System32\mshtmled.dll
    2012-11-09 12:30:57 9329152 ----a-w- C:\Windows\System32\mshtml.dll
    2012-11-09 12:30:52 743424 ----a-w- C:\Windows\System32\msfeeds.dll
    2012-11-09 12:30:52 71680 ----a-w- C:\Windows\System32\msfeedsbs.dll
    2012-11-09 12:30:09 56832 ----a-w- C:\Windows\System32\licmgr10.dll
    2012-11-09 12:29:50 31744 ----a-w- C:\Windows\System32\jsproxy.dll
    2012-11-09 12:29:40 1538560 ----a-w- C:\Windows\System32\inetcpl.cpl
    2012-11-09 12:29:23 219136 ----a-w- C:\Windows\System32\ieui.dll
    2012-11-09 12:29:23 132096 ----a-w- C:\Windows\System32\iesysprep.dll
    2012-11-09 12:29:22 77312 ----a-w- C:\Windows\System32\iesetup.dll
    2012-11-09 12:29:22 2350592 ----a-w- C:\Windows\System32\iertutil.dll
    2012-11-09 12:29:21 72192 ----a-w- C:\Windows\System32\iernonce.dll
    2012-11-09 12:29:21 252416 ----a-w- C:\Windows\System32\iepeers.dll
    2012-11-09 12:29:21 12509696 ----a-w- C:\Windows\System32\ieframe.dll
    2012-11-09 12:29:15 459776 ----a-w- C:\Windows\System32\iedkcs32.dll
    2012-11-09 10:55:37 479232 ----a-w- C:\Windows\System32\html.iec
    2012-11-09 10:42:46 916992 ----a-w- C:\Windows\SysWow64\wininet.dll
    2012-11-09 10:42:27 1212416 ----a-w- C:\Windows\SysWow64\urlmon.dll
    2012-11-09 10:42:26 105984 ----a-w- C:\Windows\SysWow64\url.dll
    2012-11-09 10:40:28 206848 ----a-w- C:\Windows\SysWow64\occache.dll
    2012-11-09 10:38:29 611840 ----a-w- C:\Windows\SysWow64\mstime.dll
    2012-11-09 10:37:57 67072 ----a-w- C:\Windows\SysWow64\mshtmled.dll
    2012-11-09 10:37:57 6008832 ----a-w- C:\Windows\SysWow64\mshtml.dll
    2012-11-09 10:37:52 630272 ----a-w- C:\Windows\SysWow64\msfeeds.dll
    2012-11-09 10:37:52 55296 ----a-w- C:\Windows\SysWow64\msfeedsbs.dll
    2012-11-09 10:37:14 43520 ----a-w- C:\Windows\SysWow64\licmgr10.dll
    2012-11-09 10:36:54 25600 ----a-w- C:\Windows\SysWow64\jsproxy.dll
    2012-11-09 10:36:43 1469440 ----a-w- C:\Windows\SysWow64\inetcpl.cpl
    2012-11-09 10:36:28 71680 ----a-w- C:\Windows\SysWow64\iesetup.dll
    2012-11-09 10:36:28 2000384 ----a-w- C:\Windows\SysWow64\iertutil.dll
    2012-11-09 10:36:28 164352 ----a-w- C:\Windows\SysWow64\ieui.dll
    2012-11-09 10:36:28 109056 ----a-w- C:\Windows\SysWow64\iesysprep.dll
    2012-11-09 10:36:27 55808 ----a-w- C:\Windows\SysWow64\iernonce.dll
    2012-11-09 10:36:27 184320 ----a-w- C:\Windows\SysWow64\iepeers.dll
    2012-11-09 10:36:27 11111424 ----a-w- C:\Windows\SysWow64\ieframe.dll
    2012-11-09 10:36:22 387584 ----a-w- C:\Windows\SysWow64\iedkcs32.dll
    2012-11-09 09:09:03 162816 ----a-w- C:\Windows\System32\ieUnatt.exe
    2012-11-09 09:08:51 70656 ----a-w- C:\Windows\System32\ie4uinit.exe
    2012-11-09 09:08:13 12288 ----a-w- C:\Windows\System32\msfeedssync.exe
    2012-11-09 09:07:25 1638912 ----a-w- C:\Windows\System32\mshtml.tlb
    2012-11-09 09:01:43 385024 ----a-w- C:\Windows\SysWow64\html.iec
    2012-11-09 07:13:56 133632 ----a-w- C:\Windows\SysWow64\ieUnatt.exe
    2012-11-09 07:13:43 174080 ----a-w- C:\Windows\SysWow64\ie4uinit.exe
    2012-11-09 07:12:06 13312 ----a-w- C:\Windows\SysWow64\msfeedssync.exe
    2012-11-09 07:11:28 1638912 ----a-w- C:\Windows\SysWow64\mshtml.tlb
    2012-11-02 10:45:52 477696 ----a-w- C:\Windows\System32\dpnet.dll
    2012-11-02 10:45:51 68096 ----a-w- C:\Windows\System32\dpnathlp.dll
    2012-11-02 10:18:17 376320 ----a-w- C:\Windows\SysWow64\dpnet.dll
    2012-11-02 08:59:56 26112 ----a-w- C:\Windows\System32\dpnsvr.exe
    2012-11-02 08:26:06 23040 ----a-w- C:\Windows\SysWow64\dpnsvr.exe
    2012-10-25 10:12:26 94208 ----a-w- C:\Windows\SysWow64\QuickTimeVR.qtx
    2012-10-25 10:12:26 69632 ----a-w- C:\Windows\SysWow64\QuickTime.qts
    2012-09-28 16:34:50 1210368 ----a-w- C:\Windows\System32\kernel32.dll
    2012-09-28 16:13:29 860160 ----a-w- C:\Windows\SysWow64\kernel32.dll
    .
    ============= FINISH: 12:47:27.27 ===============
     
  7. Gabriellaa

    Gabriellaa Thread Starter

    Joined:
    Nov 14, 2008
    Messages:
    14
    Thank you very much for helping me Derek. I hope you are having a wonderful Christmas!
     
  8. dvk01

    dvk01 Moderator Malware Specialist

    Joined:
    Dec 14, 2002
    Messages:
    56,451
    First Name:
    Derek
    Run tdss killer from http://support.kaspersky.com/viruses/solutions?qid=208280684

    let it cure anything it fnds ( except SPTD.SYS or anything detected as UnsignedFile.Multi.Generic, which should be ignored) & then reboot

    post back with its log

    By default, the utility outputs the log into system disk (it is usually the disk with installed operating system, C:\) root folder.
    Logs have names like: UtilityName.Version_Date_Time_log.txt.
    E.g. C:\TDSSKiller.2.4.7_23.07.2010_15.31.43_log.txt
     
  9. Gabriellaa

    Gabriellaa Thread Starter

    Joined:
    Nov 14, 2008
    Messages:
    14
    ok here it is. It is incredibly long :eek:

    15:55:06.0574 4292 TDSS rootkit removing tool 2.8.15.0 Oct 31 2012 21:47:35
    15:55:07.0167 4292 ============================================================
    15:55:07.0167 4292 Current date / time: 2012/12/24 15:55:07.0167
    15:55:07.0167 4292 SystemInfo:
    15:55:07.0167 4292
    15:55:07.0167 4292 OS Version: 6.0.6002 ServicePack: 2.0
    15:55:07.0167 4292 Product type: Workstation
    15:55:07.0167 4292 ComputerName: FAMILYLOVE-PC
    15:55:07.0167 4292 UserName: FamilyLove
    15:55:07.0167 4292 Windows directory: C:\Windows
    15:55:07.0167 4292 System windows directory: C:\Windows
    15:55:07.0167 4292 Running under WOW64
    15:55:07.0167 4292 Processor architecture: Intel x64
    15:55:07.0167 4292 Number of processors: 2
    15:55:07.0167 4292 Page size: 0x1000
    15:55:07.0167 4292 Boot type: Normal boot
    15:55:07.0167 4292 ============================================================
    15:55:07.0213 4292 BG loaded
    15:55:07.0510 4292 Drive \Device\Harddisk0\DR0 - Size: 0x950B056000 (596.17 Gb), SectorSize: 0x200, Cylinders: 0x13001, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
    15:55:07.0510 4292 ============================================================
    15:55:07.0510 4292 \Device\Harddisk0\DR0:
    15:55:07.0510 4292 MBR partitions:
    15:55:07.0510 4292 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x1E00800, BlocksNum 0x24328000
    15:55:07.0510 4292 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x2612880C, BlocksNum 0x2472E6B5
    15:55:07.0510 4292 ============================================================
    15:55:07.0541 4292 C: <-> \Device\Harddisk0\DR0\Partition1
    15:55:07.0572 4292 D: <-> \Device\Harddisk0\DR0\Partition2
    15:55:07.0572 4292 ============================================================
    15:55:07.0572 4292 Initialize success
    15:55:07.0572 4292 ============================================================
    15:55:16.0121 0844 ============================================================
    15:55:16.0121 0844 Scan started
    15:55:16.0121 0844 Mode: Manual; SigCheck; TDLFS;
    15:55:16.0121 0844 ============================================================
    15:55:16.0433 0844 ================ Scan system memory ========================
    15:55:16.0433 0844 System memory - ok
    15:55:16.0433 0844 ================ Scan services =============================
    15:55:16.0511 0844 [ 581D88B25C4D4121824FED2CA38E562F ] !SASCORE C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE
    15:55:16.0589 0844 !SASCORE - ok
    15:55:16.0761 0844 [ 1965AAFFAB07E3FB03C77F81BEBA3547 ] ACPI C:\Windows\system32\drivers\acpi.sys
    15:55:16.0776 0844 ACPI - ok
    15:55:16.0885 0844 [ D19C4EE2AC7C47B8F5F84FFF1A789D8A ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
    15:55:16.0901 0844 AdobeARMservice - ok
    15:55:17.0244 0844 [ 95CE557D16A75606CCC2D7F3B0B0BCCB ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
    15:55:17.0260 0844 AdobeFlashPlayerUpdateSvc - ok
    15:55:17.0369 0844 [ F14215E37CF124104575073F782111D2 ] adp94xx C:\Windows\system32\drivers\adp94xx.sys
    15:55:17.0385 0844 adp94xx - ok
    15:55:17.0400 0844 [ 7D05A75E3066861A6610F7EE04FF085C ] adpahci C:\Windows\system32\drivers\adpahci.sys
    15:55:17.0416 0844 adpahci - ok
    15:55:17.0447 0844 [ 820A201FE08A0C345B3BEDBC30E1A77C ] adpu160m C:\Windows\system32\drivers\adpu160m.sys
    15:55:17.0463 0844 adpu160m - ok
    15:55:17.0494 0844 [ 9B4AB6854559DC168FBB4C24FC52E794 ] adpu320 C:\Windows\system32\drivers\adpu320.sys
    15:55:17.0494 0844 adpu320 - ok
    15:55:17.0541 0844 [ 0F421175574BFE0BF2F4D8E910A253BB ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
    15:55:17.0572 0844 AeLookupSvc - ok
    15:55:17.0712 0844 [ C4F6CE6087760AD70960C9EB130E7943 ] AFD C:\Windows\system32\drivers\afd.sys
    15:55:17.0728 0844 AFD - ok
    15:55:17.0759 0844 [ 8B0D8B5BAFD4C9D57B41426BC68B32F9 ] AgereModemAudio C:\Windows\system32\agr64svc.exe
    15:55:17.0759 0844 AgereModemAudio - ok
    15:55:17.0806 0844 [ 6051B172930F3B2723D04C555F7EC55A ] AgereSoftModem C:\Windows\system32\DRIVERS\agrsm64.sys
    15:55:17.0821 0844 AgereSoftModem - ok
    15:55:17.0853 0844 [ F6F6793B7F17B550ECFDBD3B229173F7 ] agp440 C:\Windows\system32\drivers\agp440.sys
    15:55:17.0853 0844 agp440 - ok
    15:55:17.0946 0844 [ 222CB641B4B8A1D1126F8033F9FD6A00 ] aic78xx C:\Windows\system32\drivers\djsvs.sys
    15:55:17.0962 0844 aic78xx - ok
    15:55:17.0977 0844 [ 5922F4F59B7868F3D74BBBBEB7B825A3 ] ALG C:\Windows\System32\alg.exe
    15:55:18.0009 0844 ALG - ok
    15:55:18.0055 0844 [ 157D0898D4B73F075CE9FA26B482DF98 ] aliide C:\Windows\system32\drivers\aliide.sys
    15:55:18.0071 0844 aliide - ok
    15:55:18.0102 0844 [ A359974EAAC83A435497C52F62A2E590 ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe
    15:55:18.0118 0844 AMD External Events Utility - ok
    15:55:18.0149 0844 [ 970FA5059E61E30D25307B99903E991E ] amdide C:\Windows\system32\drivers\amdide.sys
    15:55:18.0149 0844 amdide - ok
    15:55:18.0180 0844 [ CDC3632A3A5EA4DBB83E46076A3165A1 ] AmdK8 C:\Windows\system32\drivers\amdk8.sys
    15:55:18.0211 0844 AmdK8 - ok
    15:55:18.0913 0844 [ 60216B0E704584DE6D5A9F59E9C34C47 ] amdkmdag C:\Windows\system32\DRIVERS\atikmdag.sys
    15:55:19.0210 0844 amdkmdag - ok
    15:55:19.0241 0844 [ 6B4E9261B613B047A9A145F328889968 ] amdkmdap C:\Windows\system32\DRIVERS\atikmpag.sys
    15:55:19.0257 0844 amdkmdap - ok
    15:55:19.0319 0844 [ 9C37B3FD5615477CB9A0CD116CF43F5C ] Appinfo C:\Windows\System32\appinfo.dll
    15:55:19.0335 0844 Appinfo - ok
    15:55:19.0413 0844 [ 20F6F19FE9E753F2780DC2FA083AD597 ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
    15:55:19.0413 0844 Apple Mobile Device - ok
    15:55:19.0459 0844 [ BA8417D4765F3988FF921F30F630E303 ] arc C:\Windows\system32\drivers\arc.sys
    15:55:19.0459 0844 arc - ok
    15:55:19.0506 0844 [ 9D41C435619733B34CC16A511E644B11 ] arcsas C:\Windows\system32\drivers\arcsas.sys
    15:55:19.0522 0844 arcsas - ok
    15:55:19.0569 0844 [ 22D13FF3DAFEC2A80634752B1EAA2DE6 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
    15:55:19.0600 0844 AsyncMac - ok
    15:55:19.0647 0844 [ E68D9B3A3905619732F7FE039466A623 ] atapi C:\Windows\system32\drivers\atapi.sys
    15:55:19.0662 0844 atapi - ok
    15:55:19.0818 0844 [ 79318C744693EC983D20E9337A2F8196 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
    15:55:19.0849 0844 AudioEndpointBuilder - ok
    15:55:19.0849 0844 [ 79318C744693EC983D20E9337A2F8196 ] AudioSrv C:\Windows\System32\Audiosrv.dll
    15:55:19.0881 0844 AudioSrv - ok
    15:55:20.0021 0844 [ FFB96C2589FFA60473EAD78B39FBDE29 ] BFE C:\Windows\System32\bfe.dll
    15:55:20.0037 0844 BFE - ok
    15:55:20.0271 0844 [ 6D316F4859634071CC25C4FD4589AD2C ] BITS C:\Windows\System32\qmgr.dll
    15:55:20.0317 0844 BITS - ok
    15:55:20.0349 0844 [ 79FEEB40056683F8F61398D81DDA65D2 ] blbdrive C:\Windows\system32\drivers\blbdrive.sys
    15:55:20.0380 0844 blbdrive - ok
    15:55:20.0489 0844 [ F2060A34C8A75BC24A9222EB4F8C07BD ] Bonjour Service C:\Program Files (x86)\Bonjour\mDNSResponder.exe
    15:55:20.0489 0844 Bonjour Service - ok
    15:55:20.0567 0844 [ 2348447A80920B2493A9B582A23E81E1 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
    15:55:20.0567 0844 bowser - ok
    15:55:20.0598 0844 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\drivers\brfiltlo.sys
    15:55:20.0614 0844 BrFiltLo - ok
    15:55:20.0645 0844 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\drivers\brfiltup.sys
    15:55:20.0661 0844 BrFiltUp - ok
    15:55:20.0723 0844 [ A1B39DE453433B115B4EA69EE0343816 ] Browser C:\Windows\System32\browser.dll
    15:55:20.0754 0844 Browser - ok
    15:55:20.0770 0844 [ F0F0BA4D815BE446AA6A4583CA3BCA9B ] Brserid C:\Windows\system32\drivers\brserid.sys
    15:55:20.0817 0844 Brserid - ok
    15:55:20.0848 0844 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\system32\drivers\brserwdm.sys
    15:55:20.0895 0844 BrSerWdm - ok
    15:55:20.0957 0844 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\system32\drivers\brusbmdm.sys
    15:55:21.0004 0844 BrUsbMdm - ok
    15:55:21.0051 0844 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\system32\drivers\brusbser.sys
    15:55:21.0097 0844 BrUsbSer - ok
    15:55:21.0129 0844 [ E0777B34E05F8A82A21856EFC900C29F ] BTHMODEM C:\Windows\system32\drivers\bthmodem.sys
    15:55:21.0191 0844 BTHMODEM - ok
    15:55:21.0253 0844 [ B4D787DB8D30793A4D4DF9FEED18F136 ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
    15:55:21.0285 0844 cdfs - ok
    15:55:21.0347 0844 [ C025AA69BE3D0D25C7A2E746EF6F94FC ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
    15:55:21.0363 0844 cdrom - ok
    15:55:21.0409 0844 [ 5A268127633C7EE2A7FB87F39D748D56 ] CertPropSvc C:\Windows\System32\certprop.dll
    15:55:21.0425 0844 CertPropSvc - ok
    15:55:21.0456 0844 [ 02EA568D498BBDD4BA55BF3FCE34D456 ] circlass C:\Windows\system32\drivers\circlass.sys
    15:55:21.0487 0844 circlass - ok
    15:55:21.0612 0844 [ 3DCA9A18B204939CFB24BEA53E31EB48 ] CLFS C:\Windows\system32\CLFS.sys
    15:55:21.0659 0844 CLFS - ok
    15:55:21.0753 0844 [ 8EE772032E2FE80A924F3B8DD5082194 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
    15:55:21.0768 0844 clr_optimization_v2.0.50727_32 - ok
    15:55:22.0049 0844 [ CE07A466201096F021CD09D631B21540 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
    15:55:22.0065 0844 clr_optimization_v2.0.50727_64 - ok
    15:55:22.0127 0844 [ E5D5499A1C50A54B5161296B6AFE6192 ] cmdide C:\Windows\system32\drivers\cmdide.sys
    15:55:22.0127 0844 cmdide - ok
    15:55:22.0189 0844 [ 7FB8AD01DB0EABE60C8A861531A8F431 ] Compbatt C:\Windows\system32\drivers\compbatt.sys
    15:55:22.0189 0844 Compbatt - ok
    15:55:22.0205 0844 COMSysApp - ok
    15:55:22.0236 0844 [ A8585B6412253803CE8EFCBD6D6DC15C ] crcdisk C:\Windows\system32\drivers\crcdisk.sys
    15:55:22.0252 0844 crcdisk - ok
    15:55:22.0330 0844 [ CA78B312C44E4D52E842C2C8BD48E452 ] CryptSvc C:\Windows\system32\cryptsvc.dll
    15:55:22.0345 0844 CryptSvc - ok
    15:55:22.0470 0844 [ CF8B9A3A5E7DC57724A89D0C3E8CF9EF ] DcomLaunch C:\Windows\system32\rpcss.dll
    15:55:22.0533 0844 DcomLaunch - ok
    15:55:22.0564 0844 [ 8B722BA35205C71E7951CDC4CDBADE19 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
    15:55:22.0579 0844 DfsC - ok
    15:55:22.0657 0844 [ C647F468F7DE343DF8C143655C5557D4 ] DFSR C:\Windows\system32\DFSR.exe
    15:55:22.0735 0844 DFSR - ok
    15:55:22.0829 0844 [ 3ED0321127CE70ACDAABBF77E157C2A7 ] Dhcp C:\Windows\System32\dhcpcsvc.dll
    15:55:22.0860 0844 Dhcp - ok
    15:55:22.0907 0844 [ B0107E40ECDB5FA692EBF832F295D905 ] disk C:\Windows\system32\drivers\disk.sys
    15:55:22.0907 0844 disk - ok
    15:55:23.0328 0844 [ 1BF61DEC44535EFE98FF20C20BDFF6C2 ] Diskeeper C:\Program Files\Diskeeper Corporation\Diskeeper\DkService.exe
    15:55:23.0391 0844 Diskeeper - ok
    15:55:23.0437 0844 [ 7297CDE753955F45070D38FEC52C9705 ] DKRtWrt C:\Windows\system32\DRIVERS\DKRtWrt.sys
    15:55:23.0453 0844 DKRtWrt - ok
    15:55:23.0500 0844 [ 06230F1B721494A6DF8D47FD395BB1B0 ] Dnscache C:\Windows\System32\dnsrslvr.dll
    15:55:23.0500 0844 Dnscache - ok
    15:55:23.0609 0844 [ 1A7156DD1E850E9914E5E991E3225B94 ] dot3svc C:\Windows\System32\dot3svc.dll
    15:55:23.0625 0844 dot3svc - ok
    15:55:23.0687 0844 [ 1583B39790DB3EAEC7EDB0CB0140C708 ] DPS C:\Windows\system32\dps.dll
    15:55:23.0718 0844 DPS - ok
    15:55:23.0781 0844 [ F1A78A98CFC2EE02144C6BEC945447E6 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
    15:55:23.0796 0844 drmkaud - ok
    15:55:23.0874 0844 [ B8E554E502D5123BC111F99D6A2181B4 ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
    15:55:23.0905 0844 DXGKrnl - ok
    15:55:23.0952 0844 [ 264CEE7B031A9D6C827F3D0CB031F2FE ] E1G60 C:\Windows\system32\DRIVERS\E1G6032E.sys
    15:55:23.0983 0844 E1G60 - ok
    15:55:24.0046 0844 [ C2303883FD9BE49DC36A6400643002EA ] EapHost C:\Windows\System32\eapsvc.dll
    15:55:24.0061 0844 EapHost - ok
    15:55:24.0155 0844 [ 5F94962BE5A62DB6E447FF6470C4F48A ] Ecache C:\Windows\system32\drivers\ecache.sys
    15:55:24.0155 0844 Ecache - ok
    15:55:24.0311 0844 [ 14CE384D2E27B64C256BDA4DC39C312D ] ehRecvr C:\Windows\ehome\ehRecvr.exe
    15:55:24.0327 0844 ehRecvr - ok
    15:55:24.0358 0844 [ B93159C1313D66FDFBBE876F5189CD52 ] ehSched C:\Windows\ehome\ehsched.exe
    15:55:24.0373 0844 ehSched - ok
    15:55:24.0420 0844 [ F5EE2527D74449868E3C3227A59BCD28 ] ehstart C:\Windows\ehome\ehstart.dll
    15:55:24.0420 0844 ehstart - ok
    15:55:24.0545 0844 [ C4636D6E10469404AB5308D9FD45ED07 ] elxstor C:\Windows\system32\drivers\elxstor.sys
    15:55:24.0561 0844 elxstor - ok
    15:55:24.0607 0844 [ A9B18B63A4FD6BAAB83326706D857FAB ] EMDMgmt C:\Windows\system32\emdmgmt.dll
    15:55:24.0639 0844 EMDMgmt - ok
    15:55:24.0654 0844 [ BC3A58E938BB277E46BF4B3003B01ABD ] ErrDev C:\Windows\system32\drivers\errdev.sys
    15:55:24.0685 0844 ErrDev - ok
    15:55:24.0841 0844 [ C0FE39B8F686B7C70A666E716CC12B49 ] ETService C:\Program Files\Acer\Empowering Technology\Service\ETService.exe
    15:55:24.0857 0844 ETService ( UnsignedFile.Multi.Generic ) - warning
    15:55:24.0857 0844 ETService - detected UnsignedFile.Multi.Generic (1)
    15:55:24.0919 0844 [ E12F22B73F153DECE721CD45EC05B4AF ] EventSystem C:\Windows\system32\es.dll
    15:55:24.0935 0844 EventSystem - ok
    15:55:24.0997 0844 [ 486844F47B6636044A42454614ED4523 ] exfat C:\Windows\system32\drivers\exfat.sys
    15:55:25.0013 0844 exfat - ok
    15:55:25.0060 0844 [ 1A4BEE34277784619DDAF0422C0C6E23 ] fastfat C:\Windows\system32\drivers\fastfat.sys
    15:55:25.0091 0844 fastfat - ok
    15:55:25.0107 0844 [ 81B79B6DF71FA1D2C6D688D830616E39 ] fdc C:\Windows\system32\DRIVERS\fdc.sys
    15:55:25.0153 0844 fdc - ok
    15:55:25.0185 0844 [ BB9267ACACD8B7533DD936C34A0CBA5E ] fdPHost C:\Windows\system32\fdPHost.dll
    15:55:25.0216 0844 fdPHost - ok
    15:55:25.0231 0844 [ 300C80931EABBE1DB7591C516EFE8D0F ] FDResPub C:\Windows\system32\fdrespub.dll
    15:55:25.0278 0844 FDResPub - ok
    15:55:25.0309 0844 [ 457B7D1D533E4BD62A99AED9C7BB4C59 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
    15:55:25.0325 0844 FileInfo - ok
    15:55:25.0387 0844 [ D421327FD6EFCCAF884A54C58E1B0D7F ] Filetrace C:\Windows\system32\drivers\filetrace.sys
    15:55:25.0419 0844 Filetrace - ok
    15:55:25.0450 0844 [ 230923EA2B80F79B0F88D90F87B87EBD ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
    15:55:25.0481 0844 flpydisk - ok
    15:55:25.0543 0844 [ E3041BC26D6930D61F42AEDB79C91720 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
    15:55:25.0559 0844 FltMgr - ok
    15:55:25.0668 0844 [ BE1C5BD1CA7ED015BC6FA1AE67E592C8 ] FontCache C:\Windows\system32\FntCache.dll
    15:55:25.0699 0844 FontCache - ok
    15:55:25.0746 0844 [ BC5B0BE5AF3510B0FD8C140EE42C6D3E ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
    15:55:25.0762 0844 FontCache3.0.0.0 - ok
    15:55:25.0840 0844 [ 6C06701BF1DB05405804D7EB610991CE ] fssfltr C:\Windows\system32\DRIVERS\fssfltr.sys
    15:55:25.0840 0844 fssfltr - ok
    15:55:26.0386 0844 [ 4CE9DAC1518FF7E77BD213E6394B9D77 ] fsssvc C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe
    15:55:26.0448 0844 fsssvc - ok
    15:55:26.0464 0844 [ 5779B86CD8B32519FBECB136394D946A ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
    15:55:26.0479 0844 Fs_Rec - ok
    15:55:26.0526 0844 [ C8E416668D3DC2BE3D4FE4C79224997F ] gagp30kx C:\Windows\system32\drivers\gagp30kx.sys
    15:55:26.0542 0844 gagp30kx - ok
    15:55:26.0604 0844 [ E403AACF8C7BB11375122D2464560311 ] GEARAspiWDM C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
    15:55:26.0620 0844 GEARAspiWDM - ok
    15:55:26.0651 0844 [ A0E1B575BA8F504968CD40C0FAEB2384 ] gpsvc C:\Windows\System32\gpsvc.dll
    15:55:26.0698 0844 gpsvc - ok
    15:55:26.0791 0844 [ 626A24ED1228580B9518C01930936DF9 ] gupdate1c9b721ec6c0b82 C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
    15:55:26.0807 0844 gupdate1c9b721ec6c0b82 - ok
    15:55:26.0838 0844 [ 626A24ED1228580B9518C01930936DF9 ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
    15:55:26.0854 0844 gupdatem - ok
    15:55:26.0901 0844 [ 5D4BC124FAAE6730AC002CDB67BF1A1C ] gusvc C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
    15:55:26.0916 0844 gusvc - ok
    15:55:26.0979 0844 [ 68E732382B32417FF61FD663259B4B09 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
    15:55:26.0994 0844 HdAudAddService - ok
    15:55:27.0103 0844 [ F942C5820205F2FB453243EDFEC82A3D ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys
    15:55:27.0150 0844 HDAudBus - ok
    15:55:27.0197 0844 [ B4881C84A180E75B8C25DC1D726C375F ] HidBth C:\Windows\system32\drivers\hidbth.sys
    15:55:27.0228 0844 HidBth - ok
    15:55:27.0275 0844 [ 4E77A77E2C986E8F88F996BB3E1AD829 ] HidIr C:\Windows\system32\drivers\hidir.sys
    15:55:27.0322 0844 HidIr - ok
    15:55:27.0384 0844 [ 59361D38A297755D46A540E450202B2A ] hidserv C:\Windows\system32\hidserv.dll
    15:55:27.0415 0844 hidserv - ok
    15:55:27.0462 0844 [ 443BDD2D30BB4F00795C797E2CF99EDF ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
    15:55:27.0493 0844 HidUsb - ok
    15:55:27.0525 0844 [ B12F367EA39C0795FD57E31242CE1A5A ] hkmsvc C:\Windows\system32\kmsvc.dll
    15:55:27.0556 0844 hkmsvc - ok
    15:55:27.0571 0844 [ D7109A1E6BD2DFDBCBA72A6BC626A13B ] HpCISSs C:\Windows\system32\drivers\hpcisss.sys
    15:55:27.0587 0844 HpCISSs - ok
    15:55:27.0618 0844 [ 098F1E4E5C9CB5B0063A959063631610 ] HTTP C:\Windows\system32\drivers\HTTP.sys
    15:55:27.0649 0844 HTTP - ok
    15:55:27.0696 0844 [ DA94C854CEA5FAC549D4E1F6E88349E8 ] i2omp C:\Windows\system32\drivers\i2omp.sys
    15:55:27.0696 0844 i2omp - ok
    15:55:27.0712 0844 [ CBB597659A2713CE0C9CC20C88C7591F ] i8042prt C:\Windows\system32\DRIVERS\i8042prt.sys
    15:55:27.0727 0844 i8042prt - ok
    15:55:27.0805 0844 [ 3E3BF3627D886736D0B4E90054F929F6 ] iaStorV C:\Windows\system32\drivers\iastorv.sys
    15:55:27.0821 0844 iaStorV - ok
    15:55:27.0899 0844 [ 1CF03C69B49ACB70C722DF92755C0C8C ] IDriverT C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
    15:55:27.0899 0844 IDriverT ( UnsignedFile.Multi.Generic ) - warning
    15:55:27.0899 0844 IDriverT - detected UnsignedFile.Multi.Generic (1)
    15:55:28.0071 0844 [ 749F5F8CEDCA70F2A512945325FC489D ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
    15:55:28.0102 0844 idsvc - ok
    15:55:28.0149 0844 [ 8C3951AD2FE886EF76C7B5027C3125D3 ] iirsp C:\Windows\system32\drivers\iirsp.sys
    15:55:28.0149 0844 iirsp - ok
    15:55:28.0211 0844 [ 0C9EA6E654E7B0471741E343A6C671AF ] IKEEXT C:\Windows\System32\ikeext.dll
    15:55:28.0227 0844 IKEEXT - ok
    15:55:28.0429 0844 [ 8C7FA71CB1EBCD3EDE8958D27B1BF0B4 ] int15 C:\Windows\SysWOW64\drivers\int15_64.sys
    15:55:28.0429 0844 int15 - ok
    15:55:28.0476 0844 [ 023EB98945069178C21B324B880AD787 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
    15:55:28.0523 0844 IntcAzAudAddService - ok
    15:55:28.0554 0844 [ DF797A12176F11B2D301C5B234BB200E ] intelide C:\Windows\system32\drivers\intelide.sys
    15:55:28.0570 0844 intelide - ok
    15:55:28.0601 0844 [ BFD84AF32FA1BAD6231C4585CB469630 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
    15:55:28.0632 0844 intelppm - ok
    15:55:28.0679 0844 [ 5624BC1BC5EEB49C0AB76A8114F05EA3 ] IPBusEnum C:\Windows\system32\ipbusenum.dll
    15:55:28.0695 0844 IPBusEnum - ok
    15:55:28.0757 0844 [ D8AABC341311E4780D6FCE8C73C0AD81 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
    15:55:28.0773 0844 IpFilterDriver - ok
    15:55:28.0851 0844 [ BF0DBFA9792C5C14FA00F61C75116C1B ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
    15:55:28.0866 0844 iphlpsvc - ok
    15:55:28.0882 0844 IpInIp - ok
    15:55:28.0897 0844 [ 9C2EE2E6E5A7203BFAE15C299475EC67 ] IPMIDRV C:\Windows\system32\drivers\ipmidrv.sys
    15:55:28.0929 0844 IPMIDRV - ok
    15:55:28.0975 0844 [ B7E6212F581EA5F6AB0C3A6CEEEB89BE ] IPNAT C:\Windows\system32\DRIVERS\ipnat.sys
    15:55:29.0007 0844 IPNAT - ok
    15:55:29.0085 0844 [ D38469601B72D2DA4F847FC642174E21 ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
    15:55:29.0100 0844 iPod Service - ok
    15:55:29.0147 0844 [ 8C42CA155343A2F11D29FECA67FAA88D ] IRENUM C:\Windows\system32\drivers\irenum.sys
    15:55:29.0178 0844 IRENUM - ok
    15:55:29.0209 0844 [ 0672BFCEDC6FC468A2B0500D81437F4F ] isapnp C:\Windows\system32\drivers\isapnp.sys
    15:55:29.0209 0844 isapnp - ok
    15:55:29.0319 0844 [ E4FDF99599F27EC25D2CF6D754243520 ] iScsiPrt C:\Windows\system32\DRIVERS\msiscsi.sys
    15:55:29.0334 0844 iScsiPrt - ok
    15:55:29.0350 0844 [ 63C766CDC609FF8206CB447A65ABBA4A ] iteatapi C:\Windows\system32\drivers\iteatapi.sys
    15:55:29.0365 0844 iteatapi - ok
    15:55:29.0412 0844 [ 25D0DACC04EADA6DCBC0B1E46F309759 ] ITEIO.SYS c:\Windows\System32\drivers\ITEIO.sys
    15:55:29.0412 0844 ITEIO.SYS ( UnsignedFile.Multi.Generic ) - warning
    15:55:29.0412 0844 ITEIO.SYS - detected UnsignedFile.Multi.Generic (1)
    15:55:29.0428 0844 [ 1281FE73B17664631D12F643CBEA3F59 ] iteraid C:\Windows\system32\drivers\iteraid.sys
    15:55:29.0443 0844 iteraid - ok
    15:55:29.0443 0844 iWinTrusted - ok
    15:55:29.0506 0844 [ 423696F3BA6472DD17699209B933BC26 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
    15:55:29.0506 0844 kbdclass - ok
    15:55:29.0568 0844 [ DBDF75D51464FBC47D0104EC3D572C05 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
    15:55:29.0584 0844 kbdhid - ok
    15:55:29.0677 0844 [ 260BF9C43EE12C6898A9F5AAB0FB0E5D ] KeyIso C:\Windows\system32\lsass.exe
    15:55:29.0677 0844 KeyIso - ok
    15:55:29.0724 0844 [ 88956AD9FA510848AD176777A6C6C1F5 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
    15:55:29.0755 0844 KSecDD - ok
    15:55:29.0771 0844 [ 1D419CF43DB29396ECD7113D129D94EB ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
    15:55:29.0802 0844 ksthunk - ok
    15:55:29.0833 0844 [ 1FAF6926F3416D3DA05C5B265491BDAE ] KtmRm C:\Windows\system32\msdtckrm.dll
    15:55:29.0865 0844 KtmRm - ok
    15:55:29.0911 0844 [ 50C7A3CB427E9BB5ED0708A669956AB5 ] LanmanServer C:\Windows\system32\srvsvc.dll
    15:55:29.0927 0844 LanmanServer - ok
    15:55:29.0958 0844 [ CAF86FC1388BE1E470F1A7B43E348ADB ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
    15:55:29.0974 0844 LanmanWorkstation - ok
    15:55:30.0067 0844 [ 793FF718477345CD5D232C50BED1E452 ] LightScribeService C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe
    15:55:30.0067 0844 LightScribeService ( UnsignedFile.Multi.Generic ) - warning
    15:55:30.0067 0844 LightScribeService - detected UnsignedFile.Multi.Generic (1)
    15:55:30.0099 0844 [ 96ECE2659B6654C10A0C310AE3A6D02C ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
    15:55:30.0130 0844 lltdio - ok
    15:55:30.0208 0844 [ 961CCBD0B1CCB5675D64976FAE37D092 ] lltdsvc C:\Windows\System32\lltdsvc.dll
    15:55:30.0239 0844 lltdsvc - ok
    15:55:30.0255 0844 [ A47F8080CACC23C91FE823AD19AA5612 ] lmhosts C:\Windows\System32\lmhsvc.dll
    15:55:30.0286 0844 lmhosts - ok
    15:55:30.0317 0844 [ ACBE1AF32D3123E330A07BFBC5EC4A9B ] LSI_FC C:\Windows\system32\drivers\lsi_fc.sys
    15:55:30.0317 0844 LSI_FC - ok
    15:55:30.0348 0844 [ 799FFB2FC4729FA46D2157C0065B3525 ] LSI_SAS C:\Windows\system32\drivers\lsi_sas.sys
    15:55:30.0364 0844 LSI_SAS - ok
    15:55:30.0379 0844 [ F445FF1DAAD8A226366BFAF42551226B ] LSI_SCSI C:\Windows\system32\drivers\lsi_scsi.sys
    15:55:30.0395 0844 LSI_SCSI - ok
    15:55:30.0411 0844 [ 52F87B9CC8932C2A7375C3B2A9BE5E3E ] luafv C:\Windows\system32\drivers\luafv.sys
    15:55:30.0457 0844 luafv - ok
    15:55:30.0457 0844 [ 76A58DF02BD4EA29F189B82D0BEF17F8 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
    15:55:30.0473 0844 Mcx2Svc - ok
    15:55:30.0504 0844 [ 5C5CD6AACED32FB26C3FB34B3DCF972F ] megasas C:\Windows\system32\drivers\megasas.sys
    15:55:30.0504 0844 megasas - ok
    15:55:30.0567 0844 [ 859BC2436B076C77C159ED694ACFE8F8 ] MegaSR C:\Windows\system32\drivers\megasr.sys
    15:55:30.0598 0844 MegaSR - ok
    15:55:30.0629 0844 [ 3CBE4995E80E13CCFBC42E5DCF3AC81A ] MMCSS C:\Windows\system32\mmcss.dll
    15:55:30.0660 0844 MMCSS - ok
    15:55:30.0691 0844 [ 59848D5CC74606F0EE7557983BB73C2E ] Modem C:\Windows\system32\drivers\modem.sys
    15:55:30.0723 0844 Modem - ok
    15:55:30.0769 0844 [ C247CC2A57E0A0C8C6DCCF7807B3E9E5 ] monitor C:\Windows\system32\DRIVERS\monitor.sys
    15:55:30.0801 0844 monitor - ok
    15:55:30.0847 0844 [ E90ABA3C6F01BE2C456C4AA857B28646 ] motmodem C:\Windows\system32\DRIVERS\motmodem.sys
    15:55:30.0863 0844 motmodem - ok
    15:55:30.0894 0844 [ 9367304E5E412B120CF5F4EA14E4E4F1 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
    15:55:30.0910 0844 mouclass - ok
    15:55:30.0941 0844 [ C2C2BD5C5CE5AAF786DDD74B75D2AC69 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
    15:55:30.0972 0844 mouhid - ok
    15:55:31.0003 0844 [ 11BC9B1E8801B01F7F6ADB9EAD30019B ] MountMgr C:\Windows\system32\drivers\mountmgr.sys
    15:55:31.0019 0844 MountMgr - ok
    15:55:31.0113 0844 [ 8C7336950F1E69CDFD811CBBD9CF00A2 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
    15:55:31.0128 0844 MozillaMaintenance - ok
    15:55:31.0175 0844 [ F8276EB8698142884498A528DFEA8478 ] mpio C:\Windows\system32\drivers\mpio.sys
    15:55:31.0191 0844 mpio - ok
    15:55:31.0222 0844 [ C92B9ABDB65A5991E00C28F13491DBA2 ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
    15:55:31.0253 0844 mpsdrv - ok
    15:55:31.0487 0844 [ 897E3BAF68BA406A61682AE39C83900C ] MpsSvc C:\Windows\system32\mpssvc.dll
    15:55:31.0518 0844 MpsSvc - ok
    15:55:31.0549 0844 [ 3C200630A89EF2C0864D515B7A75802E ] Mraid35x C:\Windows\system32\drivers\mraid35x.sys
    15:55:31.0565 0844 Mraid35x - ok
    15:55:31.0659 0844 MREMP50 - ok
    15:55:31.0659 0844 MREMP50a64 - ok
    15:55:31.0674 0844 MRESP50 - ok
    15:55:31.0674 0844 MRESP50a64 - ok
    15:55:31.0783 0844 [ 7C1DE4AA96DC0C071611F9E7DE02A68D ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
    15:55:31.0799 0844 MRxDAV - ok
    15:55:31.0908 0844 [ 1485811B320FF8C7EDAD1CAEBB1C6C2B ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
    15:55:31.0924 0844 mrxsmb - ok
    15:55:32.0002 0844 [ 3B929A60C833FC615FD97FBA82BC7632 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
    15:55:32.0017 0844 mrxsmb10 - ok
    15:55:32.0127 0844 [ C64AB3E1F53B4F5B5BB6D796B2D7BEC3 ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
    15:55:32.0142 0844 mrxsmb20 - ok
    15:55:32.0205 0844 [ 1AC860612B85D8E85EE257D372E39F4D ] msahci C:\Windows\system32\drivers\msahci.sys
    15:55:32.0220 0844 msahci - ok
    15:55:32.0283 0844 [ 264BBB4AAF312A485F0E44B65A6B7202 ] msdsm C:\Windows\system32\drivers\msdsm.sys
    15:55:32.0298 0844 msdsm - ok
    15:55:32.0314 0844 [ 7EC02CE772F068ED0BEAFA3DA341A9BC ] MSDTC C:\Windows\System32\msdtc.exe
    15:55:32.0345 0844 MSDTC - ok
    15:55:32.0376 0844 [ 704F59BFC4512D2BB0146AEC31B10A7C ] Msfs C:\Windows\system32\drivers\Msfs.sys
    15:55:32.0407 0844 Msfs - ok
    15:55:32.0470 0844 [ 00EBC952961664780D43DCA157E79B27 ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
    15:55:32.0485 0844 msisadrv - ok
    15:55:32.0626 0844 [ 366B0C1F4478B519C181E37D43DCDA32 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
    15:55:32.0657 0844 MSiSCSI - ok
    15:55:32.0673 0844 msiserver - ok
    15:55:32.0688 0844 [ 0EA73E498F53B96D83DBFCA074AD4CF8 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
    15:55:32.0719 0844 MSKSSRV - ok
    15:55:32.0782 0844 [ 52E59B7E992A58E740AA63F57EDBAE8B ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
    15:55:32.0797 0844 MSPCLOCK - ok
    15:55:32.0860 0844 [ 49084A75BAE043AE02D5B44D02991BB2 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
    15:55:32.0891 0844 MSPQM - ok
    15:55:33.0016 0844 [ DC6CCF440CDEDE4293DB41C37A5060A5 ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
    15:55:33.0047 0844 MsRPC - ok
    15:55:33.0063 0844 [ 855796E59DF77EA93AF46F20155BF55B ] mssmbios C:\Windows\system32\DRIVERS\mssmbios.sys
    15:55:33.0078 0844 mssmbios - ok
    15:55:33.0297 0844 MSSQL$MSSMLBIZ - ok
    15:55:33.0359 0844 [ C06EA83F6FC2959E897C117255B6B1D5 ] MSSQLServerADHelper C:\Program Files (x86)\Microsoft SQL Server\90\Shared\sqladhlp90.exe
    15:55:33.0359 0844 MSSQLServerADHelper - ok
    15:55:33.0390 0844 [ 86D632D75D05D5B7C7C043FA3564AE86 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
    15:55:33.0421 0844 MSTEE - ok
    15:55:33.0468 0844 [ 0CC49F78D8ACA0877D885F149084E543 ] Mup C:\Windows\system32\Drivers\mup.sys
    15:55:33.0484 0844 Mup - ok
    15:55:33.0640 0844 [ A5B10C845E7538C60C0F5D87A57CB3F5 ] napagent C:\Windows\system32\qagentRT.dll
    15:55:33.0671 0844 napagent - ok
    15:55:33.0718 0844 [ 2007B826C4ACD94AE32232B41F0842B9 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
    15:55:33.0718 0844 NativeWifiP - ok
    15:55:33.0889 0844 [ 65950E07329FCEE8E6516B17C8D0ABB6 ] NDIS C:\Windows\system32\drivers\ndis.sys
    15:55:33.0921 0844 NDIS - ok
    15:55:33.0936 0844 [ 64DF698A425478E321981431AC171334 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
    15:55:33.0967 0844 NdisTapi - ok
    15:55:34.0030 0844 [ 8BAA43196D7B5BB972C9A6B2BBF61A19 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
    15:55:34.0061 0844 Ndisuio - ok
    15:55:34.0170 0844 [ F8158771905260982CE724076419EF19 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
    15:55:34.0201 0844 NdisWan - ok
    15:55:34.0248 0844 [ 9CB77ED7CB72850253E973A2D6AFDF49 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
    15:55:34.0279 0844 NDProxy - ok
    15:55:34.0311 0844 [ A499294F5029A7862ADC115BDA7371CE ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
    15:55:34.0342 0844 NetBIOS - ok
    15:55:34.0451 0844 [ FC2C792EBDDC8E28DF939D6A92C83D61 ] netbt C:\Windows\system32\DRIVERS\netbt.sys
    15:55:34.0482 0844 netbt - ok
    15:55:34.0482 0844 [ 260BF9C43EE12C6898A9F5AAB0FB0E5D ] Netlogon C:\Windows\system32\lsass.exe
    15:55:34.0498 0844 Netlogon - ok
    15:55:34.0669 0844 [ 9B63B29DEFC0F3115A559D2597BF5D75 ] Netman C:\Windows\System32\netman.dll
    15:55:34.0701 0844 Netman - ok
    15:55:34.0732 0844 [ 7846D0136CC2B264926A73047BA7688A ] netprofm C:\Windows\System32\netprofm.dll
    15:55:34.0779 0844 netprofm - ok
    15:55:34.0872 0844 [ 74751DDA198165947FD7454D83F49825 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
    15:55:34.0888 0844 NetTcpPortSharing - ok
    15:55:34.0950 0844 [ 4AC08BD6AF2DF42E0C3196D826C8AEA7 ] nfrd960 C:\Windows\system32\drivers\nfrd960.sys
    15:55:34.0950 0844 nfrd960 - ok
    15:55:35.0044 0844 [ F145BF4C4668E7E312069F81EF847CFC ] NlaSvc C:\Windows\System32\nlasvc.dll
    15:55:35.0075 0844 NlaSvc - ok
    15:55:35.0153 0844 [ 351533ACC2A069B94E80BBFC177E8FDF ] NPF C:\Windows\system32\drivers\npf.sys
    15:55:35.0169 0844 NPF - ok
    15:55:35.0231 0844 [ B298874F8E0EA93F06EC40AA8D146478 ] Npfs C:\Windows\system32\drivers\Npfs.sys
    15:55:35.0262 0844 Npfs - ok
    15:55:35.0340 0844 [ ACB62BAA1C319B17752553DF3026EEEB ] nsi C:\Windows\system32\nsisvc.dll
    15:55:35.0371 0844 nsi - ok
    15:55:35.0496 0844 [ 1523AF19EE8B030BA682F7A53537EAEB ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
    15:55:35.0527 0844 nsiproxy - ok
    15:55:35.0917 0844 [ BAC869DFB98E499BA4D9BB1FB43270E1 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
    15:55:35.0964 0844 Ntfs - ok
    15:55:35.0980 0844 [ DD5D684975352B85B52E3FD5347C20CB ] Null C:\Windows\system32\drivers\Null.sys
    15:55:36.0011 0844 Null - ok
    15:55:36.0448 0844 [ 98350606682594521D56ECCB5D01ECF7 ] NVENETFD C:\Windows\system32\DRIVERS\nvmfdx64.sys
    15:55:36.0495 0844 NVENETFD - ok
    15:55:36.0510 0844 [ 6E022D5F44CD8B029CF799807BB31269 ] NVHDA C:\Windows\system32\drivers\nvhda64v.sys
    15:55:36.0526 0844 NVHDA - ok
    15:55:36.0541 0844 nvlddmkm - ok
    15:55:36.0604 0844 [ 2C040B7ADA5B06F6FACADAC8514AA034 ] nvraid C:\Windows\system32\drivers\nvraid.sys
    15:55:36.0619 0844 nvraid - ok
    15:55:36.0651 0844 [ F7EA0FE82842D05EDA3EFDD376DBFDBA ] nvstor C:\Windows\system32\drivers\nvstor.sys
    15:55:36.0666 0844 nvstor - ok
    15:55:36.0744 0844 [ 581286807B5832503FD700A3217B589F ] nvstor64 C:\Windows\system32\DRIVERS\nvstor64.sys
    15:55:36.0744 0844 nvstor64 - ok
    15:55:36.0775 0844 [ 19067CA93075EF4823E3938A686F532F ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
    15:55:36.0791 0844 nv_agp - ok
    15:55:36.0791 0844 NwlnkFlt - ok
    15:55:36.0791 0844 NwlnkFwd - ok
    15:55:37.0150 0844 [ 785F487A64950F3CB8E9F16253BA3B7B ] odserv C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
    15:55:37.0165 0844 odserv - ok
    15:55:37.0197 0844 [ B5B1CE65AC15BBD11C0619E3EF7CFC28 ] ohci1394 C:\Windows\system32\DRIVERS\ohci1394.sys
    15:55:37.0212 0844 ohci1394 - ok
    15:55:37.0290 0844 [ 5A432A042DAE460ABE7199B758E8606C ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
    15:55:37.0306 0844 ose - ok
    15:55:37.0649 0844 [ 9AE31D2E1D15C10D91318E0EC149CEAC ] p2pimsvc C:\Windows\system32\p2psvc.dll
    15:55:37.0680 0844 p2pimsvc - ok
    15:55:37.0696 0844 [ 9AE31D2E1D15C10D91318E0EC149CEAC ] p2psvc C:\Windows\system32\p2psvc.dll
    15:55:37.0711 0844 p2psvc - ok
    15:55:37.0758 0844 [ AECD57F94C887F58919F307C35498EA0 ] Parport C:\Windows\system32\drivers\parport.sys
    15:55:37.0805 0844 Parport - ok
    15:55:37.0867 0844 [ B43751085E2ABE389DA466BC62A4B987 ] partmgr C:\Windows\system32\drivers\partmgr.sys
    15:55:37.0867 0844 partmgr - ok
    15:55:37.0961 0844 [ 9AB157B374192FF276C1628FBDBA2B0E ] PcaSvc C:\Windows\System32\pcasvc.dll
    15:55:37.0977 0844 PcaSvc - ok
    15:55:38.0086 0844 [ 47AB1E0FC9D0E12BB53BA246E3A0906D ] pci C:\Windows\system32\drivers\pci.sys
    15:55:38.0101 0844 pci - ok
    15:55:38.0148 0844 [ 2657F6C0B78C36D95034BE109336E382 ] pciide C:\Windows\system32\drivers\pciide.sys
    15:55:38.0164 0844 pciide - ok
    15:55:38.0273 0844 [ 037661F3D7C507C9993B7010CEEE6288 ] pcmcia C:\Windows\system32\drivers\pcmcia.sys
    15:55:38.0289 0844 pcmcia - ok
    15:55:38.0507 0844 [ 58865916F53592A61549B04941BFD80D ] PEAUTH C:\Windows\system32\drivers\peauth.sys
    15:55:38.0554 0844 PEAUTH - ok
    15:55:38.0616 0844 [ 0ED8727EA0172860F47258456C06CAEA ] PerfHost C:\Windows\SysWow64\perfhost.exe
    15:55:38.0647 0844 PerfHost - ok
    15:55:38.0959 0844 [ E9E68C1A0F25CF4A7AC966EEA74EE89E ] pla C:\Windows\system32\pla.dll
    15:55:38.0991 0844 pla - ok
    15:55:39.0053 0844 [ FE6B0F59215C9FD9F9D26539C58C8B82 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
    15:55:39.0069 0844 PlugPlay - ok
    15:55:39.0334 0844 [ 9AE31D2E1D15C10D91318E0EC149CEAC ] PNRPAutoReg C:\Windows\system32\p2psvc.dll
    15:55:39.0365 0844 PNRPAutoReg - ok
    15:55:39.0381 0844 [ 9AE31D2E1D15C10D91318E0EC149CEAC ] PNRPsvc C:\Windows\system32\p2psvc.dll
    15:55:39.0396 0844 PNRPsvc - ok
    15:55:39.0459 0844 [ 89A5560671C2D8B4A4B51F3E1AA069D8 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
    15:55:39.0490 0844 PolicyAgent - ok
    15:55:39.0521 0844 [ 23386E9952025F5F21C368971E2E7301 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
    15:55:39.0537 0844 PptpMiniport - ok
    15:55:39.0552 0844 [ 5080E59ECEE0BC923F14018803AA7A01 ] Processor C:\Windows\system32\drivers\processr.sys
    15:55:39.0583 0844 Processor - ok
    15:55:39.0724 0844 [ E058CE4FC2449D8BFA14739C83B7FF2A ] ProfSvc C:\Windows\system32\profsvc.dll
    15:55:39.0739 0844 ProfSvc - ok
    15:55:39.0802 0844 [ 260BF9C43EE12C6898A9F5AAB0FB0E5D ] ProtectedStorage C:\Windows\system32\lsass.exe
    15:55:39.0833 0844 ProtectedStorage - ok
    15:55:39.0880 0844 [ C5AB7F0809392D0DA027F4A2A81BFA31 ] PSched C:\Windows\system32\DRIVERS\pacer.sys
    15:55:39.0895 0844 PSched - ok
    15:55:40.0176 0844 [ 0B83F4E681062F3839BE2EC1D98FD94A ] ql2300 C:\Windows\system32\drivers\ql2300.sys
    15:55:40.0207 0844 ql2300 - ok
    15:55:40.0223 0844 [ E1C80F8D4D1E39EF9595809C1369BF2A ] ql40xx C:\Windows\system32\drivers\ql40xx.sys
    15:55:40.0254 0844 ql40xx - ok
    15:55:40.0332 0844 [ 90574842C3DA781E279061A3EFF91F07 ] QWAVE C:\Windows\system32\qwave.dll
    15:55:40.0348 0844 QWAVE - ok
    15:55:40.0379 0844 [ E8D76EDAB77EC9C634C27B8EAC33ADC5 ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
    15:55:40.0410 0844 QWAVEdrv - ok
    15:55:40.0441 0844 [ 1013B3B663A56D3DDD784F581C1BD005 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
    15:55:40.0473 0844 RasAcd - ok
    15:55:40.0504 0844 [ B2AE18F847D07F0044404DDF7CB04497 ] RasAuto C:\Windows\System32\rasauto.dll
    15:55:40.0535 0844 RasAuto - ok
    15:55:40.0566 0844 [ AC7BC4D42A7E558718DFDEC599BBFC2C ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
    15:55:40.0597 0844 Rasl2tp - ok
    15:55:40.0675 0844 [ 3AD83E4046C43BE510DE681588ACB8AF ] RasMan C:\Windows\System32\rasmans.dll
    15:55:40.0707 0844 RasMan - ok
    15:55:40.0753 0844 [ 4517FBF8B42524AFE4EDE1DE102AAE3E ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
    15:55:40.0769 0844 RasPppoe - ok
    15:55:40.0816 0844 [ C6A593B51F34C33E5474539544072527 ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
    15:55:40.0831 0844 RasSstp - ok
    15:55:40.0941 0844 [ 322DB5C6B55E8D8EE8D6F358B2AAABB1 ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
    15:55:40.0972 0844 rdbss - ok
    15:55:41.0003 0844 [ 603900CC05F6BE65CCBF373800AF3716 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
    15:55:41.0034 0844 RDPCDD - ok
    15:55:41.0128 0844 [ C045D1FB111C28DF0D1BE8D4BDA22C06 ] rdpdr C:\Windows\system32\drivers\rdpdr.sys
    15:55:41.0159 0844 rdpdr - ok
    15:55:41.0175 0844 [ CAB9421DAF3D97B33D0D055858E2C3AB ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
    15:55:41.0206 0844 RDPENCDD - ok
    15:55:41.0253 0844 [ AE4BD9E1C33D351D8E607FC81F15160C ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
    15:55:41.0268 0844 RDPWD - ok
    15:55:41.0331 0844 [ C612B9557DA73F70D41F8A6FBC8E5344 ] RemoteAccess C:\Windows\System32\mprdim.dll
    15:55:41.0377 0844 RemoteAccess - ok
    15:55:41.0409 0844 [ 44B9D8EC2F3EF3A0EFB00857AF70D861 ] RemoteRegistry C:\Windows\system32\regsvc.dll
    15:55:41.0440 0844 RemoteRegistry - ok
    15:55:41.0487 0844 [ B60F58F175DE20A6739194E85B035178 ] rpcapd C:\Program Files (x86)\WinPcap\rpcapd.exe
    15:55:41.0502 0844 rpcapd - ok
    15:55:41.0580 0844 [ F46C457840D4B7A4DAAFEE739CE04102 ] RpcLocator C:\Windows\system32\locator.exe
    15:55:41.0596 0844 RpcLocator - ok
    15:55:41.0689 0844 [ CF8B9A3A5E7DC57724A89D0C3E8CF9EF ] RpcSs C:\Windows\system32\rpcss.dll
    15:55:41.0721 0844 RpcSs - ok
    15:55:41.0767 0844 [ 22A9CB08B1A6707C1550C6BF099AAE73 ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
    15:55:41.0799 0844 rspndr - ok
    15:55:41.0861 0844 [ 56E8DBA585F8164E12CB2BECA4C04E7B ] RTL8192su C:\Windows\system32\DRIVERS\RTL8192su.sys
    15:55:41.0877 0844 RTL8192su - ok
    15:55:41.0923 0844 [ 260BF9C43EE12C6898A9F5AAB0FB0E5D ] SamSs C:\Windows\system32\lsass.exe
    15:55:41.0939 0844 SamSs - ok
    15:55:42.0064 0844 [ 3289766038DB2CB14D07DC84392138D5 ] SASDIFSV C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS
    15:55:42.0064 0844 SASDIFSV - ok
    15:55:42.0111 0844 [ 58A38E75F3316A83C23DF6173D41F2B5 ] SASKUTIL C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS
    15:55:42.0126 0844 SASKUTIL - ok
    15:55:42.0157 0844 [ CD9C693589C60AD59BBBCFB0E524E01B ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
    15:55:42.0173 0844 sbp2port - ok
    15:55:42.0251 0844 [ FD1CDCF108D5EF3366F00D18B70FB89B ] SCardSvr C:\Windows\System32\SCardSvr.dll
    15:55:42.0282 0844 SCardSvr - ok
    15:55:42.0345 0844 [ 0F838C811AD295D2A4489B9993096C63 ] Schedule C:\Windows\system32\schedsvc.dll
    15:55:42.0376 0844 Schedule - ok
    15:55:42.0423 0844 [ 5A268127633C7EE2A7FB87F39D748D56 ] SCPolicySvc C:\Windows\System32\certprop.dll
    15:55:42.0438 0844 SCPolicySvc - ok
    15:55:42.0501 0844 [ 4FF71B076A7760FE75EA5AE2D0EE0018 ] SDRSVC C:\Windows\System32\SDRSVC.dll
    15:55:42.0516 0844 SDRSVC - ok
    15:55:42.0563 0844 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys
    15:55:42.0610 0844 secdrv - ok
    15:55:42.0641 0844 [ 5ACDCBC67FCF894A1815B9F96D704490 ] seclogon C:\Windows\system32\seclogon.dll
    15:55:42.0672 0844 seclogon - ok
    15:55:42.0703 0844 [ 90973A64B96CD647FF81C79443618EED ] SENS C:\Windows\System32\sens.dll
    15:55:42.0735 0844 SENS - ok
    15:55:42.0781 0844 [ 2449316316411D65BD2C761A6FFB2CE2 ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
    15:55:42.0813 0844 Serenum - ok
    15:55:42.0844 0844 [ 4B438170BE2FC8E0BD35EE87A960F84F ] Serial C:\Windows\system32\DRIVERS\serial.sys
    15:55:42.0875 0844 Serial - ok
    15:55:42.0906 0844 [ A842F04833684BCEEA7336211BE478DF ] sermouse C:\Windows\system32\drivers\sermouse.sys
    15:55:42.0937 0844 sermouse - ok
    15:55:42.0984 0844 [ A8E4A4407A09F35DCCC3771AF590B0C4 ] SessionEnv C:\Windows\system32\sessenv.dll
    15:55:43.0031 0844 SessionEnv - ok
    15:55:43.0078 0844 [ 14D4B4465193A87C127933978E8C4106 ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
    15:55:43.0109 0844 sffdisk - ok
    15:55:43.0140 0844 [ 7073AEE3F82F3D598E3825962AA98AB2 ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
    15:55:43.0171 0844 sffp_mmc - ok
    15:55:43.0187 0844 [ 35E59EBE4A01A0532ED67975161C7B82 ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
    15:55:43.0218 0844 sffp_sd - ok
    15:55:43.0249 0844 [ 6B7838C94135768BD455CBDC23E39E5F ] sfloppy C:\Windows\system32\drivers\sfloppy.sys
    15:55:43.0296 0844 sfloppy - ok
    15:55:43.0343 0844 [ 4C5AEE179DA7E1EE9A9CCB9DA289AF34 ] SharedAccess C:\Windows\System32\ipnathlp.dll
    15:55:43.0390 0844 SharedAccess - ok
    15:55:43.0452 0844 [ 56793271ECDEDD350C5ADD305603E963 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
    15:55:43.0468 0844 ShellHWDetection - ok
    15:55:43.0546 0844 [ 7A5DE502AEB719D4594C6471060A78B3 ] SiSRaid2 C:\Windows\system32\drivers\sisraid2.sys
    15:55:43.0561 0844 SiSRaid2 - ok
    15:55:43.0577 0844 [ 3A2F769FAB9582BC720E11EA1DFB184D ] SiSRaid4 C:\Windows\system32\drivers\sisraid4.sys
    15:55:43.0593 0844 SiSRaid4 - ok
    15:55:43.0639 0844 [ F07AF60B152221472FBDB2FECEC4896D ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe
    15:55:43.0655 0844 SkypeUpdate - ok
    15:55:43.0998 0844 [ A9A27A8E257B45A604FDAD4F26FE7241 ] slsvc C:\Windows\system32\SLsvc.exe
    15:55:44.0061 0844 slsvc - ok
    15:55:44.0092 0844 [ FD74B4B7C2088E390A30C85A896FC3AF ] SLUINotify C:\Windows\system32\SLUINotify.dll
    15:55:44.0123 0844 SLUINotify - ok
    15:55:44.0170 0844 [ 290B6F6A0EC4FCDFC90F5CB6D7020473 ] Smb C:\Windows\system32\DRIVERS\smb.sys
    15:55:44.0185 0844 Smb - ok
    15:55:44.0263 0844 [ F8F47F38909823B1AF28D60B96340CFF ] SNMPTRAP C:\Windows\System32\snmptrap.exe
    15:55:44.0279 0844 SNMPTRAP - ok
    15:55:44.0341 0844 [ 386C3C63F00A7040C7EC5E384217E89D ] spldr C:\Windows\system32\drivers\spldr.sys
    15:55:44.0357 0844 spldr - ok
    15:55:44.0435 0844 [ F66FF751E7EFC816D266977939EF5DC3 ] Spooler C:\Windows\System32\spoolsv.exe
    15:55:44.0466 0844 Spooler - ok
    15:55:44.0544 0844 [ B2EC3E1DEAC5F0A764BD3486D213A0AF ] SQLBrowser C:\Program Files (x86)\Microsoft SQL Server\90\Shared\sqlbrowser.exe
    15:55:44.0560 0844 SQLBrowser - ok
    15:55:44.0716 0844 [ D63FC56C7C3F9B576BC25F617E3F7963 ] SQLWriter C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
    15:55:44.0731 0844 SQLWriter - ok
    15:55:44.0872 0844 [ 880A57FCCB571EBD063D4DD50E93E46D ] srv C:\Windows\system32\DRIVERS\srv.sys
    15:55:44.0903 0844 srv - ok
    15:55:44.0965 0844 [ A1AD14A6D7A37891FFFECA35EBBB0730 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
    15:55:44.0981 0844 srv2 - ok
    15:55:45.0012 0844 [ 4BED62F4FA4D8300973F1151F4C4D8A7 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
    15:55:45.0028 0844 srvnet - ok
    15:55:45.0090 0844 [ 192C74646EC5725AEF3F80D19FF75F6A ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
    15:55:45.0121 0844 SSDPSRV - ok
    15:55:45.0153 0844 [ 2EE3FA0308E6185BA64A9A7F2E74332B ] SstpSvc C:\Windows\system32\sstpsvc.dll
    15:55:45.0168 0844 SstpSvc - ok
    15:55:45.0199 0844 [ 15825C1FBFB8779992CB65087F316AF5 ] stisvc C:\Windows\System32\wiaservc.dll
    15:55:45.0231 0844 stisvc - ok
    15:55:45.0262 0844 [ 8A851CA908B8B974F89C50D2E18D4F0C ] swenum C:\Windows\system32\DRIVERS\swenum.sys
    15:55:45.0262 0844 swenum - ok
    15:55:45.0433 0844 [ 6DE37F4DE19D4EFD9C48C43ADDBC949A ] swprv C:\Windows\System32\swprv.dll
    15:55:45.0465 0844 swprv - ok
    15:55:45.0511 0844 [ 2F26A2C6FC96B29BEFF5D8ED74E6625B ] Symc8xx C:\Windows\system32\drivers\symc8xx.sys
    15:55:45.0511 0844 Symc8xx - ok
    15:55:45.0527 0844 [ A909667976D3BCCD1DF813FED517D837 ] Sym_hi C:\Windows\system32\drivers\sym_hi.sys
    15:55:45.0543 0844 Sym_hi - ok
    15:55:45.0558 0844 [ 36887B56EC2D98B9C362F6AE4DE5B7B0 ] Sym_u3 C:\Windows\system32\drivers\sym_u3.sys
    15:55:45.0574 0844 Sym_u3 - ok
    15:55:45.0667 0844 [ 92D7A8B0F87B036F17D25885937897A6 ] SysMain C:\Windows\system32\sysmain.dll
    15:55:45.0714 0844 SysMain - ok
    15:55:45.0777 0844 [ 005CE42567F9113A3BCCB3B20073B029 ] TabletInputService C:\Windows\System32\TabSvc.dll
    15:55:45.0792 0844 TabletInputService - ok
    15:55:45.0901 0844 [ CC2562B4D55E0B6A4758C65407F63B79 ] TapiSrv C:\Windows\System32\tapisrv.dll
    15:55:45.0933 0844 TapiSrv - ok
    15:55:45.0995 0844 [ CDBE8D7C1E201B911CDC346D06617FB5 ] TBS C:\Windows\System32\tbssvc.dll
    15:55:46.0026 0844 TBS - ok
    15:55:46.0213 0844 [ 46D448E9117464E4D3BBF36D7E3FA48E ] Tcpip C:\Windows\system32\drivers\tcpip.sys
    15:55:46.0260 0844 Tcpip - ok
    15:55:46.0369 0844 [ 46D448E9117464E4D3BBF36D7E3FA48E ] Tcpip6 C:\Windows\system32\DRIVERS\tcpip.sys
    15:55:46.0401 0844 Tcpip6 - ok
    15:55:46.0463 0844 [ C7E72A4071EE0200E3C075DACFB2B334 ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
    15:55:46.0479 0844 tcpipreg - ok
    15:55:46.0510 0844 [ 1D8BF4AAA5FB7A2761475781DC1195BC ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
    15:55:46.0541 0844 TDPIPE - ok
    15:55:46.0572 0844 [ 7F7E00CDF609DF657F4CDA02DD1C9BB1 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
    15:55:46.0603 0844 TDTCP - ok
    15:55:46.0635 0844 [ 458919C8C42E398DC4802178D5FFEE27 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
    15:55:46.0650 0844 tdx - ok
    15:55:46.0697 0844 [ 8C19678D22649EC002EF2282EAE92F98 ] TermDD C:\Windows\system32\DRIVERS\termdd.sys
    15:55:46.0713 0844 TermDD - ok
    15:55:46.0775 0844 [ 5CDD30BC217082DAC71A9878D9BFD566 ] TermService C:\Windows\System32\termsrv.dll
    15:55:46.0806 0844 TermService - ok
    15:55:46.0853 0844 [ 56793271ECDEDD350C5ADD305603E963 ] Themes C:\Windows\system32\shsvcs.dll
    15:55:46.0869 0844 Themes - ok
    15:55:46.0900 0844 [ 3CBE4995E80E13CCFBC42E5DCF3AC81A ] THREADORDER C:\Windows\system32\mmcss.dll
    15:55:46.0931 0844 THREADORDER - ok
    15:55:47.0009 0844 [ F4689F05AF472A651A7B1B7B02D200E7 ] TrkWks C:\Windows\System32\trkwks.dll
    15:55:47.0040 0844 TrkWks - ok
    15:55:47.0165 0844 [ 66328B08EF5A9305D8EDE36B93930369 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
    15:55:47.0196 0844 TrustedInstaller - ok
    15:55:47.0227 0844 [ 9E5409CD17C8BEF193AAD498F3BC2CB8 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
    15:55:47.0259 0844 tssecsrv - ok
    15:55:47.0290 0844 [ 89EC74A9E602D16A75A4170511029B3C ] tunmp C:\Windows\system32\DRIVERS\tunmp.sys
    15:55:47.0305 0844 tunmp - ok
    15:55:47.0368 0844 [ 30A9B3F45AD081BFFC3BCAA9C812B609 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
    15:55:47.0383 0844 tunnel - ok
    15:55:47.0430 0844 [ FEC266EF401966311744BD0F359F7F56 ] uagp35 C:\Windows\system32\drivers\uagp35.sys
    15:55:47.0430 0844 uagp35 - ok
    15:55:47.0524 0844 [ FAF2640A2A76ED03D449E443194C4C34 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
    15:55:47.0555 0844 udfs - ok
    15:55:47.0586 0844 [ 060507C4113391394478F6953A79EEDC ] UI0Detect C:\Windows\system32\UI0Detect.exe
    15:55:47.0617 0844 UI0Detect - ok
    15:55:47.0633 0844 [ 4EC9447AC3AB462647F60E547208CA00 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
    15:55:47.0649 0844 uliagpkx - ok
    15:55:47.0680 0844 [ 697F0446134CDC8F99E69306184FBBB4 ] uliahci C:\Windows\system32\drivers\uliahci.sys
    15:55:47.0695 0844 uliahci - ok
    15:55:47.0742 0844 [ 31707F09846056651EA2C37858F5DDB0 ] UlSata C:\Windows\system32\drivers\ulsata.sys
    15:55:47.0742 0844 UlSata - ok
    15:55:47.0773 0844 [ 85E5E43ED5B48C8376281BAB519271B7 ] ulsata2 C:\Windows\system32\drivers\ulsata2.sys
    15:55:47.0789 0844 ulsata2 - ok
    15:55:47.0805 0844 [ 46E9A994C4FED537DD951F60B86AD3F4 ] umbus C:\Windows\system32\DRIVERS\umbus.sys
    15:55:47.0836 0844 umbus - ok
    15:55:47.0961 0844 [ 7093799FF80E9DECA0680D2E3535BE60 ] upnphost C:\Windows\System32\upnphost.dll
    15:55:47.0992 0844 upnphost - ok
    15:55:48.0070 0844 [ AA33FC47ED58C34E6E9261E4F850B7EB ] USBAAPL64 C:\Windows\system32\Drivers\usbaapl64.sys
    15:55:48.0070 0844 USBAAPL64 - ok
    15:55:48.0132 0844 [ C6BA890DE6E41857FBE84175519CAE7D ] usbaudio C:\Windows\system32\drivers\usbaudio.sys
    15:55:48.0163 0844 usbaudio - ok
    15:55:48.0195 0844 [ 07E3498FC60834219D2356293DA0FECC ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
    15:55:48.0210 0844 usbccgp - ok
    15:55:48.0241 0844 [ 9247F7E0B65852C1F6631480984D6ED2 ] usbcir C:\Windows\system32\drivers\usbcir.sys
    15:55:48.0288 0844 usbcir - ok
    15:55:48.0351 0844 [ 827E44DE934A736EA31E91D353EB126F ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
    15:55:48.0382 0844 usbehci - ok
    15:55:48.0444 0844 [ BB35CD80A2ECECFADC73569B3D70C7D1 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
    15:55:48.0475 0844 usbhub - ok
    15:55:48.0491 0844 [ E406B003A354776D317762694956B0FC ] usbohci C:\Windows\system32\DRIVERS\usbohci.sys
    15:55:48.0507 0844 usbohci - ok
    15:55:48.0538 0844 [ 28B693B6D31E7B9332C1BDCEFEF228C1 ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
    15:55:48.0569 0844 usbprint - ok
    15:55:48.0585 0844 [ EA0BF666868964FBE8CB10E50C97B9F1 ] usbscan C:\Windows\system32\DRIVERS\usbscan.sys
    15:55:48.0616 0844 usbscan - ok
    15:55:48.0678 0844 [ B854C1558FCA0C269A38663E8B59B581 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
    15:55:48.0694 0844 USBSTOR - ok
    15:55:48.0709 0844 [ B2872CBF9F47316ABD0E0C74A1ABA507 ] usbuhci C:\Windows\system32\DRIVERS\usbuhci.sys
    15:55:48.0741 0844 usbuhci - ok
    15:55:48.0787 0844 [ D76E231E4850BB3F88A3D9A78DF191E3 ] UxSms C:\Windows\System32\uxsms.dll
    15:55:48.0819 0844 UxSms - ok
    15:55:48.0865 0844 [ 294945381DFA7CE58CECF0A9896AF327 ] vds C:\Windows\System32\vds.exe
    15:55:48.0897 0844 vds - ok
    15:55:48.0943 0844 [ 916B94BCF1E09873FFF2D5FB11767BBC ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
    15:55:48.0975 0844 vga - ok
    15:55:49.0006 0844 [ B83AB16B51FEDA65DD81B8C59D114D63 ] VgaSave C:\Windows\System32\drivers\vga.sys
    15:55:49.0037 0844 VgaSave - ok
    15:55:49.0068 0844 [ 8294B6C3FDB6C33F24E150DE647ECDAA ] viaide C:\Windows\system32\drivers\viaide.sys
    15:55:49.0084 0844 viaide - ok
    15:55:49.0099 0844 [ 2B7E885ED951519A12C450D24535DFCA ] volmgr C:\Windows\system32\drivers\volmgr.sys
    15:55:49.0115 0844 volmgr - ok
    15:55:49.0146 0844 [ CEC5AC15277D75D9E5DEC2E1C6EAF877 ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
    15:55:49.0162 0844 volmgrx - ok
    15:55:49.0193 0844 [ 582F710097B46140F5A89A19A6573D4B ] volsnap C:\Windows\system32\drivers\volsnap.sys
    15:55:49.0209 0844 volsnap - ok
    15:55:49.0240 0844 [ A68F455ED2673835209318DD61BFBB0E ] vsmraid C:\Windows\system32\drivers\vsmraid.sys
    15:55:49.0240 0844 vsmraid - ok
    15:55:49.0302 0844 [ B75232DAD33BFD95BF6F0A3E6BFF51E1 ] VSS C:\Windows\system32\vssvc.exe
    15:55:49.0349 0844 VSS - ok
    15:55:49.0443 0844 [ F14A7DE2EA41883E250892E1E5230A9A ] W32Time C:\Windows\system32\w32time.dll
    15:55:49.0474 0844 W32Time - ok
    15:55:49.0489 0844 [ FEF8FE5923FEAD2CEE4DFABFCE3393A7 ] WacomPen C:\Windows\system32\drivers\wacompen.sys
    15:55:49.0552 0844 WacomPen - ok
    15:55:49.0567 0844 [ B8E7049622300D20BA6D8BE0C47C0CFD ] Wanarp C:\Windows\system32\DRIVERS\wanarp.sys
    15:55:49.0599 0844 Wanarp - ok
    15:55:49.0599 0844 [ B8E7049622300D20BA6D8BE0C47C0CFD ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
    15:55:49.0630 0844 Wanarpv6 - ok
    15:55:49.0661 0844 [ B4E4C37D0AA6100090A53213EE2BF1C1 ] wcncsvc C:\Windows\System32\wcncsvc.dll
    15:55:49.0677 0844 wcncsvc - ok
    15:55:49.0708 0844 [ EA4B369560E986F19D93F45A881484AC ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
    15:55:49.0739 0844 WcsPlugInService - ok
    15:55:49.0770 0844 [ 0C17A0816F65B89E362E682AD5E7266E ] Wd C:\Windows\system32\drivers\wd.sys
    15:55:49.0786 0844 Wd - ok
    15:55:49.0817 0844 [ 442783E2CB0DA19873B7A63833FF4CB4 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
    15:55:49.0848 0844 Wdf01000 - ok
    15:55:49.0879 0844 [ C5EFDA73EBFCA8B02A094898DE0A9276 ] WdiServiceHost C:\Windows\system32\wdi.dll
    15:55:49.0911 0844 WdiServiceHost - ok
    15:55:49.0942 0844 [ C5EFDA73EBFCA8B02A094898DE0A9276 ] WdiSystemHost C:\Windows\system32\wdi.dll
    15:55:49.0973 0844 WdiSystemHost - ok
    15:55:50.0004 0844 [ 3E6D05381CF35F75EBB055544A8ED9AC ] WebClient C:\Windows\System32\webclnt.dll
    15:55:50.0020 0844 WebClient - ok
    15:55:50.0067 0844 [ 8D40BC587993F876658BF9FB0F7D3462 ] Wecsvc C:\Windows\system32\wecsvc.dll
    15:55:50.0082 0844 Wecsvc - ok
    15:55:50.0098 0844 [ 9C980351D7E96288EA0C23AE232BD065 ] wercplsupport C:\Windows\System32\wercplsupport.dll
    15:55:50.0129 0844 wercplsupport - ok
    15:55:50.0145 0844 [ 66B9ECEBC46683F47EDC06333C075FEF ] WerSvc C:\Windows\System32\WerSvc.dll
    15:55:50.0176 0844 WerSvc - ok
    15:55:50.0207 0844 WinDefend - ok
    15:55:50.0223 0844 WinHttpAutoProxySvc - ok
    15:55:50.0316 0844 [ D2E7296ED1BD26D8DB2799770C077A02 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
    15:55:50.0347 0844 Winmgmt - ok
    15:55:50.0425 0844 [ 6CBB0C68F13B9C2EC1B16F5FA5E7C869 ] WinRM C:\Windows\system32\WsmSvc.dll
    15:55:50.0472 0844 WinRM - ok
    15:55:50.0581 0844 [ EC339C8115E91BAED835957E9A677F16 ] Wlansvc C:\Windows\System32\wlansvc.dll
    15:55:50.0613 0844 Wlansvc - ok
    15:55:50.0659 0844 [ 06C8FA1CF39DE6A735B54D906BA791C6 ] wlcrasvc C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
    15:55:50.0675 0844 wlcrasvc - ok
    15:55:50.0862 0844 [ 7E47C328FC4768CB8BEAFBCFAFA70362 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
    15:55:50.0925 0844 wlidsvc - ok
    15:55:50.0971 0844 [ E18AEBAAA5A773FE11AA2C70F65320F5 ] WmiAcpi C:\Windows\system32\DRIVERS\wmiacpi.sys
    15:55:50.0987 0844 WmiAcpi - ok
    15:55:51.0049 0844 [ 21FA389E65A852698B6A1341F36EE02D ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
    15:55:51.0081 0844 wmiApSrv - ok
    15:55:51.0112 0844 WMPNetworkSvc - ok
    15:55:51.0143 0844 [ CBC156C913F099E6680D1DF9307DB7A8 ] WPCSvc C:\Windows\System32\wpcsvc.dll
    15:55:51.0159 0844 WPCSvc - ok
    15:55:51.0190 0844 [ 490A18B4E4D53DC10879DEAA8E8B70D9 ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
    15:55:51.0205 0844 WPDBusEnum - ok
    15:55:51.0237 0844 [ 5E2401B3FC1089C90E081291357371A9 ] WpdUsb C:\Windows\system32\DRIVERS\wpdusb.sys
    15:55:51.0252 0844 WpdUsb - ok
    15:55:51.0268 0844 [ 8A900348370E359B6BFF6A550E4649E1 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
    15:55:51.0299 0844 ws2ifsl - ok
    15:55:51.0377 0844 [ 9EA3E6D0EF7A5C2B9181961052A4B01A ] wscsvc C:\Windows\System32\wscsvc.dll
    15:55:51.0393 0844 wscsvc - ok
    15:55:51.0408 0844 WSearch - ok
    15:55:51.0736 0844 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv C:\Windows\system32\wuaueng.dll
    15:55:51.0845 0844 wuauserv - ok
    15:55:51.0876 0844 [ AB886378EEB55C6C75B4F2D14B6C869F ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
    15:55:51.0876 0844 WudfPf - ok
    15:55:51.0907 0844 [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
    15:55:51.0923 0844 WUDFRd - ok
    15:55:51.0970 0844 [ B20F051B03A966392364C83F009F7D17 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
    15:55:51.0985 0844 wudfsvc - ok
    15:55:53.0093 0844 X6va003 - ok
    15:55:53.0109 0844 ================ Scan global ===============================
    15:55:53.0233 0844 [ 060DC3A7A9A2626031EB23D90151428D ] C:\Windows\system32\basesrv.dll
    15:55:53.0265 0844 [ AA137104CDFC81818A309CDE32ABB74A ] C:\Windows\system32\winsrv.dll
    15:55:53.0280 0844 [ AA137104CDFC81818A309CDE32ABB74A ] C:\Windows\system32\winsrv.dll
    15:55:53.0311 0844 [ 934E0B7D77FF78C18D9F8891221B6DE3 ] C:\Windows\system32\services.exe
    15:55:53.0327 0844 [Global] - ok
    15:55:53.0327 0844 ================ Scan MBR ==================================
    15:55:53.0343 0844 [ EF932EAA6EF4C94E66A7F6CEEC7EB422 ] \Device\Harddisk0\DR0
    15:55:57.0929 0844 \Device\Harddisk0\DR0 - ok
    15:55:57.0929 0844 ================ Scan VBR ==================================
    15:55:57.0960 0844 [ 3941056915745A06AF750043A12850D9 ] \Device\Harddisk0\DR0\Partition1
    15:55:57.0976 0844 \Device\Harddisk0\DR0\Partition1 - ok
    15:55:57.0991 0844 [ B0560B1A005DE0DDEA0D1F2346A4F5FD ] \Device\Harddisk0\DR0\Partition2
    15:55:58.0007 0844 \Device\Harddisk0\DR0\Partition2 - ok
    15:55:58.0007 0844 ================ Scan active images ========================
    15:55:58.0007 0844 [ 4F4E1093ADFBAE48544DA6E7CCF09FE4 ] C:\Windows\System32\drivers\crashdmp.sys
    15:55:58.0007 0844 C:\Windows\System32\drivers\crashdmp.sys - ok
    15:55:58.0023 0844 [ 3333213D1902942196D7BFF8E34FFB7F ] C:\Windows\System32\drivers\Diskdump.sys
    15:55:58.0023 0844 C:\Windows\System32\drivers\Diskdump.sys - ok
    15:55:58.0023 0844 [ 581286807B5832503FD700A3217B589F ] C:\Windows\System32\drivers\nvstor64.sys
    15:55:58.0038 0844 C:\Windows\System32\drivers\nvstor64.sys - ok
    15:55:58.0038 0844 [ BFD84AF32FA1BAD6231C4585CB469630 ] C:\Windows\System32\drivers\intelppm.sys
    15:55:58.0038 0844 C:\Windows\System32\drivers\intelppm.sys - ok
    15:55:58.0038 0844 [ 89EC74A9E602D16A75A4170511029B3C ] C:\Windows\System32\drivers\TUNMP.SYS
    15:55:58.0038 0844 C:\Windows\System32\drivers\TUNMP.SYS - ok
    15:55:58.0054 0844 [ 30A9B3F45AD081BFFC3BCAA9C812B609 ] C:\Windows\System32\drivers\tunnel.sys
    15:55:58.0054 0844 C:\Windows\System32\drivers\tunnel.sys - ok
    15:55:58.0069 0844 [ CBB597659A2713CE0C9CC20C88C7591F ] C:\Windows\System32\drivers\i8042prt.sys
    15:55:58.0069 0844 C:\Windows\System32\drivers\i8042prt.sys - ok
    15:55:58.0069 0844 [ 9367304E5E412B120CF5F4EA14E4E4F1 ] C:\Windows\System32\drivers\mouclass.sys
    15:55:58.0069 0844 C:\Windows\System32\drivers\mouclass.sys - ok
    15:55:58.0085 0844 [ 2449316316411D65BD2C761A6FFB2CE2 ] C:\Windows\System32\drivers\serenum.sys
    15:55:58.0085 0844 C:\Windows\System32\drivers\serenum.sys - ok
    15:55:58.0085 0844 [ 4B438170BE2FC8E0BD35EE87A960F84F ] C:\Windows\System32\drivers\serial.sys
    15:55:58.0085 0844 C:\Windows\System32\drivers\serial.sys - ok
    15:55:58.0101 0844 [ 827E44DE934A736EA31E91D353EB126F ] C:\Windows\System32\drivers\usbehci.sys
    15:55:58.0101 0844 C:\Windows\System32\drivers\usbehci.sys - ok
    15:55:58.0101 0844 [ E406B003A354776D317762694956B0FC ] C:\Windows\System32\drivers\usbohci.sys
    15:55:58.0101 0844 C:\Windows\System32\drivers\usbohci.sys - ok
    15:55:58.0116 0844 [ A60FDA63F3901AE49C244FF988427A9C ] C:\Windows\System32\drivers\usbport.sys
    15:55:58.0116 0844 C:\Windows\System32\drivers\usbport.sys - ok
    15:55:58.0116 0844 [ F942C5820205F2FB453243EDFEC82A3D ] C:\Windows\System32\drivers\hdaudbus.sys
    15:55:58.0116 0844 C:\Windows\System32\drivers\hdaudbus.sys - ok
    15:55:58.0132 0844 [ 6B4E9261B613B047A9A145F328889968 ] C:\Windows\System32\drivers\atikmpag.sys
    15:55:58.0132 0844 C:\Windows\System32\drivers\atikmpag.sys - ok
    15:55:58.0147 0844 [ 60216B0E704584DE6D5A9F59E9C34C47 ] C:\Windows\System32\drivers\atikmdag.sys
    15:55:58.0147 0844 C:\Windows\System32\drivers\atikmdag.sys - ok
    15:55:58.0147 0844 [ B8E554E502D5123BC111F99D6A2181B4 ] C:\Windows\System32\drivers\dxgkrnl.sys
    15:55:58.0147 0844 C:\Windows\System32\drivers\dxgkrnl.sys - ok
    15:55:58.0163 0844 [ 2F956EA22FCCE4C9F15C64175C891A1E ] C:\Windows\System32\drivers\watchdog.sys
    15:55:58.0163 0844 C:\Windows\System32\drivers\watchdog.sys - ok
    15:55:58.0163 0844 [ 6051B172930F3B2723D04C555F7EC55A ] C:\Windows\System32\drivers\agrsm64.sys
    15:55:58.0163 0844 C:\Windows\System32\drivers\agrsm64.sys - ok
    15:55:58.0179 0844 [ 4C01941132AF4405D43668302CC59D2F ] C:\Windows\System32\drivers\usbd.sys
    15:55:58.0179 0844 C:\Windows\System32\drivers\usbd.sys - ok
    15:55:58.0179 0844 [ 59848D5CC74606F0EE7557983BB73C2E ] C:\Windows\System32\drivers\modem.sys
    15:55:58.0179 0844 C:\Windows\System32\drivers\modem.sys - ok
    15:55:58.0194 0844 [ 4BA7814D6067E313A8713CAEB7239594 ] C:\Windows\System32\drivers\1394bus.sys
    15:55:58.0194 0844 C:\Windows\System32\drivers\1394bus.sys - ok
    15:55:58.0194 0844 [ C025AA69BE3D0D25C7A2E746EF6F94FC ] C:\Windows\System32\drivers\cdrom.sys
    15:55:58.0194 0844 C:\Windows\System32\drivers\cdrom.sys - ok
    15:55:58.0210 0844 [ B5B1CE65AC15BBD11C0619E3EF7CFC28 ] C:\Windows\System32\drivers\ohci1394.sys
    15:55:58.0210 0844 C:\Windows\System32\drivers\ohci1394.sys - ok
    15:55:58.0210 0844 [ 98350606682594521D56ECCB5D01ECF7 ] C:\Windows\System32\drivers\nvmfdx64.sys
    15:55:58.0210 0844 C:\Windows\System32\drivers\nvmfdx64.sys - ok
    15:55:58.0225 0844 [ E18AEBAAA5A773FE11AA2C70F65320F5 ] C:\Windows\System32\drivers\wmiacpi.sys
    15:55:58.0225 0844 C:\Windows\System32\drivers\wmiacpi.sys - ok
    15:55:58.0225 0844 [ E4FDF99599F27EC25D2CF6D754243520 ] C:\Windows\System32\drivers\msiscsi.sys
    15:55:58.0225 0844 C:\Windows\System32\drivers\msiscsi.sys - ok
    15:55:58.0241 0844 [ C39A90534C5B1E28B8BC8B38A3900AFF ] C:\Windows\System32\drivers\tdi.sys
    15:55:58.0241 0844 C:\Windows\System32\drivers\tdi.sys - ok
    15:55:58.0257 0844 [ 64DF698A425478E321981431AC171334 ] C:\Windows\System32\drivers\ndistapi.sys
    15:55:58.0257 0844 C:\Windows\System32\drivers\ndistapi.sys - ok
    15:55:58.0257 0844 [ AC7BC4D42A7E558718DFDEC599BBFC2C ] C:\Windows\System32\drivers\rasl2tp.sys
    15:55:58.0257 0844 C:\Windows\System32\drivers\rasl2tp.sys - ok
    15:55:58.0272 0844 [ F8158771905260982CE724076419EF19 ] C:\Windows\System32\drivers\ndiswan.sys
    15:55:58.0272 0844 C:\Windows\System32\drivers\ndiswan.sys - ok
    15:55:58.0272 0844 [ 4517FBF8B42524AFE4EDE1DE102AAE3E ] C:\Windows\System32\drivers\raspppoe.sys
    15:55:58.0272 0844 C:\Windows\System32\drivers\raspppoe.sys - ok
    15:55:58.0288 0844 [ 23386E9952025F5F21C368971E2E7301 ] C:\Windows\System32\drivers\raspptp.sys
    15:55:58.0288 0844 C:\Windows\System32\drivers\raspptp.sys - ok
    15:55:58.0288 0844 [ C6A593B51F34C33E5474539544072527 ] C:\Windows\System32\drivers\rassstp.sys
    15:55:58.0288 0844 C:\Windows\System32\drivers\rassstp.sys - ok
    15:55:58.0303 0844 [ 8C19678D22649EC002EF2282EAE92F98 ] C:\Windows\System32\drivers\termdd.sys
    15:55:58.0303 0844 C:\Windows\System32\drivers\termdd.sys - ok
    15:55:58.0303 0844 [ 423696F3BA6472DD17699209B933BC26 ] C:\Windows\System32\drivers\kbdclass.sys
    15:55:58.0303 0844 C:\Windows\System32\drivers\kbdclass.sys - ok
    15:55:58.0319 0844 [ 6DF6A6E5642D97B07214B1FBED4A15B3 ] C:\Windows\System32\drivers\ks.sys
    15:55:58.0319 0844 C:\Windows\System32\drivers\ks.sys - ok
    15:55:58.0319 0844 [ 855796E59DF77EA93AF46F20155BF55B ] C:\Windows\System32\drivers\mssmbios.sys
    15:55:58.0319 0844 C:\Windows\System32\drivers\mssmbios.sys - ok
    15:55:58.0335 0844 [ 8A851CA908B8B974F89C50D2E18D4F0C ] C:\Windows\System32\drivers\swenum.sys
    15:55:58.0335 0844 C:\Windows\System32\drivers\swenum.sys - ok
    15:55:58.0335 0844 [ 46E9A994C4FED537DD951F60B86AD3F4 ] C:\Windows\System32\drivers\umbus.sys
    15:55:58.0335 0844 C:\Windows\System32\drivers\umbus.sys - ok
    15:55:58.0350 0844 [ BB35CD80A2ECECFADC73569B3D70C7D1 ] C:\Windows\System32\drivers\usbhub.sys
    15:55:58.0350 0844 C:\Windows\System32\drivers\usbhub.sys - ok
    15:55:58.0350 0844 [ 9CB77ED7CB72850253E973A2D6AFDF49 ] C:\Windows\System32\drivers\ndproxy.sys
    15:55:58.0350 0844 C:\Windows\System32\drivers\ndproxy.sys - ok
    15:55:58.0366 0844 [ A54FA007FD0349AB68DE6D3016A95C8C ] C:\Windows\System32\drivers\drmk.sys
    15:55:58.0366 0844 C:\Windows\System32\drivers\drmk.sys - ok
    15:55:58.0366 0844 [ 7B7820082CACF593D6FF343D082A3AA3 ] C:\Windows\System32\drivers\portcls.sys
    15:55:58.0366 0844 C:\Windows\System32\drivers\portcls.sys - ok
    15:55:58.0381 0844 [ 023EB98945069178C21B324B880AD787 ] C:\Windows\System32\drivers\RTKVHD64.sys
    15:55:58.0381 0844 C:\Windows\System32\drivers\RTKVHD64.sys - ok
    15:55:58.0397 0844 [ 1D419CF43DB29396ECD7113D129D94EB ] C:\Windows\System32\drivers\ksthunk.sys
    15:55:58.0397 0844 C:\Windows\System32\drivers\ksthunk.sys - ok
    15:55:58.0397 0844 [ 68E732382B32417FF61FD663259B4B09 ] C:\Windows\System32\drivers\HdAudio.sys
    15:55:58.0397 0844 C:\Windows\System32\drivers\HdAudio.sys - ok
    15:55:58.0428 0844 [ 5779B86CD8B32519FBECB136394D946A ] C:\Windows\System32\drivers\fs_rec.sys
    15:55:58.0428 0844 C:\Windows\System32\drivers\fs_rec.sys - ok
    15:55:58.0444 0844 [ B13C6930BE914AA433C320E01B0182F3 ] C:\Windows\System32\drivers\hidparse.sys
    15:55:58.0444 0844 C:\Windows\System32\drivers\hidparse.sys - ok
    15:55:58.0444 0844 [ DBDF75D51464FBC47D0104EC3D572C05 ] C:\Windows\System32\drivers\kbdhid.sys
    15:55:58.0444 0844 C:\Windows\System32\drivers\kbdhid.sys - ok
    15:55:58.0459 0844 [ DD5D684975352B85B52E3FD5347C20CB ] C:\Windows\System32\drivers\null.sys
    15:55:58.0459 0844 C:\Windows\System32\drivers\null.sys - ok
    15:55:58.0459 0844 [ B83AB16B51FEDA65DD81B8C59D114D63 ] C:\Windows\System32\drivers\vga.sys
    15:55:58.0459 0844 C:\Windows\System32\drivers\vga.sys - ok
    15:55:58.0475 0844 [ 84F9479F8BD5EF517E98CBBD8D3300F7 ] C:\Windows\System32\drivers\videoprt.sys
    15:55:58.0475 0844 C:\Windows\System32\drivers\videoprt.sys - ok
    15:55:58.0475 0844 [ 704F59BFC4512D2BB0146AEC31B10A7C ] C:\Windows\System32\drivers\msfs.sys
    15:55:58.0475 0844 C:\Windows\System32\drivers\msfs.sys - ok
    15:55:58.0491 0844 [ B298874F8E0EA93F06EC40AA8D146478 ] C:\Windows\System32\drivers\npfs.sys
    15:55:58.0491 0844 C:\Windows\System32\drivers\npfs.sys - ok
    15:55:58.0491 0844 [ 1013B3B663A56D3DDD784F581C1BD005 ] C:\Windows\System32\drivers\rasacd.sys
    15:55:58.0491 0844 C:\Windows\System32\drivers\rasacd.sys - ok
    15:55:58.0506 0844 [ 603900CC05F6BE65CCBF373800AF3716 ] C:\Windows\System32\drivers\RDPCDD.sys
    15:55:58.0506 0844 C:\Windows\System32\drivers\RDPCDD.sys - ok
    15:55:58.0506 0844 [ CAB9421DAF3D97B33D0D055858E2C3AB ] C:\Windows\System32\drivers\RDPENCDD.sys
    15:55:58.0506 0844 C:\Windows\System32\drivers\RDPENCDD.sys - ok
    15:55:58.0522 0844 [ 458919C8C42E398DC4802178D5FFEE27 ] C:\Windows\System32\drivers\tdx.sys
    15:55:58.0522 0844 C:\Windows\System32\drivers\tdx.sys - ok
    15:55:58.0522 0844 [ 290B6F6A0EC4FCDFC90F5CB6D7020473 ] C:\Windows\System32\drivers\smb.sys
    15:55:58.0522 0844 C:\Windows\System32\drivers\smb.sys - ok
    15:55:58.0537 0844 [ C4F6CE6087760AD70960C9EB130E7943 ] C:\Windows\System32\drivers\afd.sys
    15:55:58.0537 0844 C:\Windows\System32\drivers\afd.sys - ok
    15:55:58.0537 0844 [ FC2C792EBDDC8E28DF939D6A92C83D61 ] C:\Windows\System32\drivers\netbt.sys
    15:55:58.0537 0844 C:\Windows\System32\drivers\netbt.sys - ok
    15:55:58.0553 0844 [ C5AB7F0809392D0DA027F4A2A81BFA31 ] C:\Windows\System32\drivers\pacer.sys
    15:55:58.0553 0844 C:\Windows\System32\drivers\pacer.sys - ok
    15:55:58.0553 0844 [ A499294F5029A7862ADC115BDA7371CE ] C:\Windows\System32\drivers\netbios.sys
    15:55:58.0553 0844 C:\Windows\System32\drivers\netbios.sys - ok
    15:55:58.0553 0844 [ B8E7049622300D20BA6D8BE0C47C0CFD ] C:\Windows\System32\drivers\wanarp.sys
    15:55:58.0553 0844 C:\Windows\System32\drivers\wanarp.sys - ok
    15:55:58.0569 0844 [ 58A38E75F3316A83C23DF6173D41F2B5 ] C:\Program Files\SUPERAntiSpyware\saskutil64.sys
    15:55:58.0569 0844 C:\Program Files\SUPERAntiSpyware\saskutil64.sys - ok
    15:55:58.0569 0844 [ 3289766038DB2CB14D07DC84392138D5 ] C:\Program Files\SUPERAntiSpyware\sasdifsv64.sys
    15:55:58.0569 0844 C:\Program Files\SUPERAntiSpyware\sasdifsv64.sys - ok
    15:55:58.0584 0844 [ 70B7902B8DDD3C4B88AC3FC278A9B987 ] C:\Windows\System32\drivers\hidclass.sys
    15:55:58.0584 0844 C:\Windows\System32\drivers\hidclass.sys - ok
    15:55:58.0600 0844 [ 443BDD2D30BB4F00795C797E2CF99EDF ] C:\Windows\System32\drivers\hidusb.sys
    15:55:58.0600 0844 C:\Windows\System32\drivers\hidusb.sys - ok
    15:55:58.0600 0844 [ 322DB5C6B55E8D8EE8D6F358B2AAABB1 ] C:\Windows\System32\drivers\rdbss.sys
    15:55:58.0600 0844 C:\Windows\System32\drivers\rdbss.sys - ok
    15:55:58.0615 0844 [ 8B722BA35205C71E7951CDC4CDBADE19 ] C:\Windows\System32\drivers\dfsc.sys
    15:55:58.0615 0844 C:\Windows\System32\drivers\dfsc.sys - ok
    15:55:58.0615 0844 [ C2C2BD5C5CE5AAF786DDD74B75D2AC69 ] C:\Windows\System32\drivers\mouhid.sys
    15:55:58.0615 0844 C:\Windows\System32\drivers\mouhid.sys - ok
    15:55:58.0631 0844 [ 1523AF19EE8B030BA682F7A53537EAEB ] C:\Windows\System32\drivers\nsiproxy.sys
    15:55:58.0631 0844 C:\Windows\System32\drivers\nsiproxy.sys - ok
    15:55:58.0631 0844 [ 784491AA0A781059AA3EC0BCB7AD760A ] C:\Windows\System32\ntdll.dll
    15:55:58.0631 0844 C:\Windows\System32\ntdll.dll - ok
    15:55:58.0647 0844 [ C17704EA5B0F83D78F1377075FFE1C89 ] C:\Windows\System32\smss.exe
    15:55:58.0647 0844 C:\Windows\System32\smss.exe - ok
    15:55:58.0647 0844 [ E24D4475713CB382A720D003BDDA9628 ] C:\Windows\System32\autochk.exe
    15:55:58.0647 0844 C:\Windows\System32\autochk.exe - ok
    15:55:58.0662 0844 [ 07E3498FC60834219D2356293DA0FECC ] C:\Windows\System32\drivers\usbccgp.sys
    15:55:58.0662 0844 C:\Windows\System32\drivers\usbccgp.sys - ok
    15:55:58.0662 0844 [ B854C1558FCA0C269A38663E8B59B581 ] C:\Windows\System32\drivers\USBSTOR.SYS
    15:55:58.0662 0844 C:\Windows\System32\drivers\USBSTOR.SYS - ok
    15:55:58.0678 0844 [ DB310BF331A32FD208CADA64ABA2903A ] C:\Windows\System32\clbcatq.dll
    15:55:58.0678 0844 C:\Windows\System32\clbcatq.dll - ok
    15:55:58.0678 0844 [ ADC1964755BB12485A15070A4D4F2697 ] C:\Windows\System32\Wldap32.dll
    15:55:58.0678 0844 C:\Windows\System32\Wldap32.dll - ok
    15:55:58.0693 0844 [ A02EB771DAE80667E3C877CF19E3F6EE ] C:\Windows\System32\kernel32.dll
    15:55:58.0693 0844 C:\Windows\System32\kernel32.dll - ok
    15:55:58.0693 0844 [ 719B305C95E3F1423D1CF401BB91F39B ] C:\Windows\System32\iertutil.dll
    15:55:58.0693 0844 C:\Windows\System32\iertutil.dll - ok
    15:55:58.0709 0844 [ BE2E23B3DD533B33338D9B3D826574DA ] C:\Windows\System32\setupapi.dll
    15:55:58.0709 0844 C:\Windows\System32\setupapi.dll - ok
    15:55:58.0709 0844 [ 7CAF51D586DFE475147DFB158BEBB3F8 ] C:\Windows\System32\nsi.dll
    15:55:58.0709 0844 C:\Windows\System32\nsi.dll - ok
    15:55:58.0709 0844 [ 891E1D0DCDE747C8F1EE71E61EA193F5 ] C:\Windows\System32\lpk.dll
    15:55:58.0709 0844 C:\Windows\System32\lpk.dll - ok
    15:55:58.0725 0844 [ 0CB93E3F36C4F4122E7CBBAA731F67D1 ] C:\Windows\System32\ole32.dll
    15:55:58.0725 0844 C:\Windows\System32\ole32.dll - ok
    15:55:58.0725 0844 [ C669ABA2C3298B4B4F252EB6A5AE8964 ] C:\Windows\System32\gdi32.dll
    15:55:58.0725 0844 C:\Windows\System32\gdi32.dll - ok
    15:55:58.0740 0844 [ 8E0189219E941613B1512431604114E0 ] C:\Windows\System32\rpcrt4.dll
    15:55:58.0740 0844 C:\Windows\System32\rpcrt4.dll - ok
    15:55:58.0740 0844 [ AA09B70F619CBF499EFC22E7A63E3CE6 ] C:\Windows\System32\comdlg32.dll
    15:55:58.0740 0844 C:\Windows\System32\comdlg32.dll - ok
    15:55:58.0756 0844 [ 62C15795629FA290656C6A7E5CD25F52 ] C:\Windows\System32\imm32.dll
    15:55:58.0756 0844 C:\Windows\System32\imm32.dll - ok
    15:55:58.0771 0844 [ 88E702F506209173B723822318FAEED6 ] C:\Windows\System32\urlmon.dll
    15:55:58.0771 0844 C:\Windows\System32\urlmon.dll - ok
    15:55:58.0771 0844 [ 87CB61DF57FEC0948A26F9E671ADD81A ] C:\Windows\System32\msctf.dll
    15:55:58.0771 0844 C:\Windows\System32\msctf.dll - ok
    15:55:58.0787 0844 [ BB8C4784AA400BDC3D51B6ACAA077E96 ] C:\Windows\System32\advapi32.dll
    15:55:58.0787 0844 C:\Windows\System32\advapi32.dll - ok
    15:55:58.0803 0844 [ BAB10B35E2D5EE0DC3DE05A177C52C50 ] C:\Windows\System32\ws2_32.dll
    15:55:58.0803 0844 C:\Windows\System32\ws2_32.dll - ok
    15:55:58.0803 0844 [ 11EAF90B44A9E378CB6F4ECBF2471F60 ] C:\Windows\System32\usp10.dll
    15:55:58.0803 0844 C:\Windows\System32\usp10.dll - ok
    15:55:58.0818 0844 [ 533B3BA63E5DB49FC59A842A1DE3121F ] C:\Windows\System32\normaliz.dll
    15:55:58.0818 0844 C:\Windows\System32\normaliz.dll - ok
    15:55:58.0818 0844 [ FECB38684670F750501A9ADFE7580725 ] C:\Windows\System32\shlwapi.dll
    15:55:58.0818 0844 C:\Windows\System32\shlwapi.dll - ok
    15:55:58.0818 0844 [ 13C073F14F948CC9F875147DA74F300D ] C:\Windows\System32\wininet.dll
    15:55:58.0818 0844 C:\Windows\System32\wininet.dll - ok
    15:55:58.0834 0844 [ 09ED5DF1622C759B5EB9C40B89FD310A ] C:\Windows\System32\imagehlp.dll
    15:55:58.0834 0844 C:\Windows\System32\imagehlp.dll - ok
    15:55:58.0834 0844 [ F3F5549E69AE8509342E67E4F972CA1C ] C:\Windows\System32\user32.dll
    15:55:58.0834 0844 C:\Windows\System32\user32.dll - ok
    15:55:58.0849 0844 [ 3B2671CBC989F1B2084290D787DE8499 ] C:\Windows\System32\oleaut32.dll
    15:55:58.0849 0844 C:\Windows\System32\oleaut32.dll - ok
    15:55:58.0849 0844 [ 2C74308C8A20F3F3A2226DFE36914CBF ] C:\Windows\System32\msvcrt.dll
    15:55:58.0849 0844 C:\Windows\System32\msvcrt.dll - ok
    15:55:58.0865 0844 [ 487C3C0927F67331681294B867A4141B ] C:\Windows\System32\shell32.dll
    15:55:58.0865 0844 C:\Windows\System32\shell32.dll - ok
    15:55:58.0865 0844 [ 74ABE02BF1937B32C6FC169A782FCF60 ] C:\Windows\System32\comctl32.dll
    15:55:58.0865 0844 C:\Windows\System32\comctl32.dll - ok
    15:55:58.0865 0844 [ AEF2D8B0B518A5623FC5F9832F622677 ] C:\Windows\System32\psapi.dll
    15:55:58.0865 0844 C:\Windows\System32\psapi.dll - ok
    15:55:58.0881 0844 [ 6F29236AB5926100972924BD29D9D225 ] C:\Windows\SysWOW64\normaliz.dll
    15:55:58.0881 0844 C:\Windows\SysWOW64\normaliz.dll - ok
    15:55:58.0881 0844 [ 4C2DC63036D452FDB636D58D8EA7BC90 ] C:\Windows\System32\drivers\dxapi.sys
    15:55:58.0881 0844 C:\Windows\System32\drivers\dxapi.sys - ok
    15:55:58.0896 0844 [ 9D95F1F49158435B0EBF381F805B24CB ] C:\Windows\System32\win32k.sys
    15:55:58.0896 0844 C:\Windows\System32\win32k.sys - ok
    15:55:58.0896 0844 [ D01E68E878FC8E3D79A1E84308745E82 ] C:\Windows\System32\csrsrv.dll
    15:55:58.0896 0844 C:\Windows\System32\csrsrv.dll - ok
    15:55:58.0912 0844 [ B4ABE68596B173FF2AB2076BC7C35EB4 ] C:\Windows\System32\csrss.exe
    15:55:58.0912 0844 C:\Windows\System32\csrss.exe - ok
    15:55:58.0912 0844 [ 060DC3A7A9A2626031EB23D90151428D ] C:\Windows\System32\basesrv.dll
    15:55:58.0912 0844 C:\Windows\System32\basesrv.dll - ok
    15:55:58.0912 0844 [ AA137104CDFC81818A309CDE32ABB74A ] C:\Windows\System32\winsrv.dll
    15:55:58.0912 0844 C:\Windows\System32\winsrv.dll - ok
    15:55:58.0927 0844 [ C247CC2A57E0A0C8C6DCCF7807B3E9E5 ] C:\Windows\System32\drivers\monitor.sys
    15:55:58.0927 0844 C:\Windows\System32\drivers\monitor.sys - ok
    15:55:58.0927 0844 [ 86173B7125321C93E355DF3837039244 ] C:\Windows\System32\tsddd.dll
    15:55:58.0927 0844 C:\Windows\System32\tsddd.dll - ok
    15:55:58.0943 0844 [ 95E848589698D6CF716ECF1403925DFC ] C:\Windows\System32\userenv.dll
    15:55:58.0943 0844 C:\Windows\System32\userenv.dll - ok
    15:55:58.0943 0844 [ 117EA87DF785CA1B9D821F6F213DCE07 ] C:\Windows\System32\wininit.exe
    15:55:58.0943 0844 C:\Windows\System32\wininit.exe - ok
    15:55:58.0959 0844 [ 89A722B06A83706797E283016181BEAB ] C:\Windows\System32\KBDUS.DLL
    15:55:58.0959 0844 C:\Windows\System32\KBDUS.DLL - ok
    15:55:58.0959 0844 [ FEA83138B1C1D6EB55046C4612905888 ] C:\Windows\System32\secur32.dll
    15:55:58.0959 0844 C:\Windows\System32\secur32.dll - ok
    15:55:58.0959 0844 [ D1BDCF6DE24D16E16FC57AEE4A1BE9AE ] C:\Windows\System32\WlS0WndH.dll
    15:55:58.0959 0844 C:\Windows\System32\WlS0WndH.dll - ok
    15:55:58.0974 0844 [ F33E804A031F160D128AB78990DE7C91 ] C:\Windows\System32\apphelp.dll
    15:55:58.0974 0844 C:\Windows\System32\apphelp.dll - ok
    15:55:58.0974 0844 [ 934E0B7D77FF78C18D9F8891221B6DE3 ] C:\Windows\System32\services.exe
    15:55:58.0974 0844 C:\Windows\System32\services.exe - ok
    15:55:58.0990 0844 [ AFBE3FC3CF0996A9ABC8925419250AB3 ] C:\Windows\System32\cdd.dll
    15:55:58.0990 0844 C:\Windows\System32\cdd.dll - ok
    15:55:58.0990 0844 [ 16687F0351E513BF2019073ABF02B585 ] C:\Windows\System32\sxs.dll
    15:55:58.0990 0844 C:\Windows\System32\sxs.dll - ok
    15:55:59.0005 0844 [ 260BF9C43EE12C6898A9F5AAB0FB0E5D ] C:\Windows\System32\lsass.exe
    15:55:59.0005 0844 C:\Windows\System32\lsass.exe - ok
    15:55:59.0005 0844 [ 902F14A1FDF1B4A543326A35CB21EB1F ] C:\Windows\System32\lsasrv.dll
    15:55:59.0005 0844 C:\Windows\System32\lsasrv.dll - ok
    15:55:59.0021 0844 [ 54D814DC2FA54AA847D240D4EA0E6586 ] C:\Windows\System32\lsm.exe
    15:55:59.0021 0844 C:\Windows\System32\lsm.exe - ok
    15:55:59.0021 0844 [ 495EB57ACF30983AA441B70A8DE2B7ED ] C:\Windows\System32\scesrv.dll
    15:55:59.0021 0844 C:\Windows\System32\scesrv.dll - ok
    15:55:59.0037 0844 [ 009456399B31D69C67654F6C3618D9A8 ] C:\Windows\System32\sysntfy.dll
    15:55:59.0037 0844 C:\Windows\System32\sysntfy.dll - ok
    15:55:59.0037 0844 [ 0C2E0A8562FE4B33D00E175A97E05793 ] C:\Windows\System32\wmsgapi.dll
    15:55:59.0037 0844 C:\Windows\System32\wmsgapi.dll - ok
    15:55:59.0037 0844 [ 5EF9205E045643A5A75A82B116395B25 ] C:\Windows\System32\authz.dll
    15:55:59.0037 0844 C:\Windows\System32\authz.dll - ok
    15:55:59.0052 0844 [ F3E5C76AA1175D29F6459BDB7DF345EC ] C:\Windows\System32\netapi32.dll
    15:55:59.0052 0844 C:\Windows\System32\netapi32.dll - ok
    15:55:59.0052 0844 [ FA19D9DE54B122316274703D50F34130 ] C:\Windows\System32\ncobjapi.dll
    15:55:59.0052 0844 C:\Windows\System32\ncobjapi.dll - ok
    15:55:59.0068 0844 [ 60EEC5440C2D05E5FDA04900E45FF717 ] C:\Windows\System32\samsrv.dll
    15:55:59.0068 0844 C:\Windows\System32\samsrv.dll - ok
    15:55:59.0068 0844 [ 419CE835359938213BD32A7AA327F2B9 ] C:\Windows\System32\cryptdll.dll
    15:55:59.0068 0844 C:\Windows\System32\cryptdll.dll - ok
    15:55:59.0083 0844 [ E4C283A98F118CEC9E087EAC4E9EFB6A ] C:\Windows\System32\dnsapi.dll
    15:55:59.0083 0844 C:\Windows\System32\dnsapi.dll - ok
    15:55:59.0083 0844 [ 5279672A8BDAF3CFB0A4C6E0591987AC ] C:\Windows\System32\samlib.dll
    15:55:59.0083 0844 C:\Windows\System32\samlib.dll - ok
    15:55:59.0083 0844 [ 301D19A870E40C12540BE46034BD6B20 ] C:\Windows\System32\msasn1.dll
    15:55:59.0083 0844 C:\Windows\System32\msasn1.dll - ok
    15:55:59.0099 0844 [ 33741BA808457C9AF07055C0FBEFE973 ] C:\Windows\System32\ntdsapi.dll
    15:55:59.0099 0844 C:\Windows\System32\ntdsapi.dll - ok
    15:55:59.0099 0844 [ 9BDB79FD2FD662BA9AD573C3EC0342A6 ] C:\Windows\System32\crypt32.dll
    15:55:59.0099 0844 C:\Windows\System32\crypt32.dll - ok
    15:55:59.0115 0844 [ D7924B0F3AB5574BF59CA2892BE8961A ] C:\Windows\System32\feclient.dll
    15:55:59.0115 0844 C:\Windows\System32\feclient.dll - ok
    15:55:59.0115 0844 [ B3EBBD687BDFCBBBBCB6115B682D1845 ] C:\Windows\System32\mpr.dll
    15:55:59.0115 0844 C:\Windows\System32\mpr.dll - ok
    15:55:59.0130 0844 [ EE11F2630840479C4AA784AF3770F8E2 ] C:\Windows\System32\SLC.dll
    15:55:59.0130 0844 C:\Windows\System32\SLC.dll - ok
    15:55:59.0130 0844 [ 45B4004F43B48E4A3F12B85891F81221 ] C:\Windows\System32\wevtapi.dll
    15:55:59.0130 0844 C:\Windows\System32\wevtapi.dll - ok
    15:55:59.0130 0844 [ 3ED0321127CE70ACDAABBF77E157C2A7 ] C:\Windows\System32\dhcpcsvc.dll
    15:55:59.0130 0844 C:\Windows\System32\dhcpcsvc.dll - ok
    15:55:59.0146 0844 [ 956148910C7EB6A8C095D9B4E6F94E62 ] C:\Windows\System32\dhcpcsvc6.dll
    15:55:59.0146 0844 C:\Windows\System32\dhcpcsvc6.dll - ok
    15:55:59.0146 0844 [ A9D70295BA8F31D5EA118B0A6B74183E ] C:\Windows\System32\IPHLPAPI.DLL
    15:55:59.0146 0844 C:\Windows\System32\IPHLPAPI.DLL - ok
    15:55:59.0161 0844 [ 58AAAEA100F45F4F44297D6DE9ACF8ED ] C:\Windows\System32\winnsi.dll
    15:55:59.0161 0844 C:\Windows\System32\winnsi.dll - ok
    15:55:59.0161 0844 [ 0F421175574BFE0BF2F4D8E910A253BB ] C:\Windows\System32\aelupsvc.dll
    15:55:59.0161 0844 C:\Windows\System32\aelupsvc.dll - ok
    15:55:59.0177 0844 [ 9C37B3FD5615477CB9A0CD116CF43F5C ] C:\Windows\System32\appinfo.dll
    15:55:59.0177 0844 C:\Windows\System32\appinfo.dll - ok
    15:55:59.0177 0844 [ 21322B1A2AD337C579F4A65EA0D25193 ] C:\Windows\System32\cngaudit.dll
    15:55:59.0177 0844 C:\Windows\System32\cngaudit.dll - ok
    15:55:59.0193 0844 [ D66F2FE8AE116999DBF1EF46F485FD8C ] C:\Windows\System32\ncrypt.dll
    15:55:59.0193 0844 C:\Windows\System32\ncrypt.dll - ok
    15:55:59.0193 0844 [ 02EE316487BCC8F4F6017CAD538365CC ] C:\Windows\System32\bcrypt.dll
    15:55:59.0193 0844 C:\Windows\System32\bcrypt.dll - ok
    15:55:59.0193 0844 [ B7CCDC4B877DC3CC665DE8F322F2BD9E ] C:\Windows\System32\credssp.dll
    15:55:59.0193 0844 C:\Windows\System32\credssp.dll - ok
    15:55:59.0208 0844 [ 15C815573011719585EB836614ED1DF1 ] C:\Windows\System32\rascfg.dll
    15:55:59.0208 0844 C:\Windows\System32\rascfg.dll - ok
    15:55:59.0208 0844 [ 6D0773A3A65D28B663F334C90441D01A ] C:\Windows\System32\winlogon.exe
    15:55:59.0208 0844 C:\Windows\System32\winlogon.exe - ok
    15:55:59.0224 0844 [ 79318C744693EC983D20E9337A2F8196 ] C:\Windows\System32\audiosrv.dll
    15:55:59.0224 0844 C:\Windows\System32\audiosrv.dll - ok
    15:55:59.0224 0844 [ F7097878AE102618656A04F03951C339 ] C:\Windows\System32\msprivs.dll
    15:55:59.0224 0844 C:\Windows\System32\msprivs.dll - ok
    15:55:59.0239 0844 [ FFB96C2589FFA60473EAD78B39FBDE29 ] C:\Windows\System32\BFE.DLL
    15:55:59.0239 0844 C:\Windows\System32\BFE.DLL - ok
    15:55:59.0239 0844 [ CD6D49EA9DBBD3EA9E449FD84C51C731 ] C:\Windows\System32\kerberos.dll
    15:55:59.0239 0844 C:\Windows\System32\kerberos.dll - ok
    15:55:59.0255 0844 [ 1671EF15434501ABBE9E7BE905EF998B ] C:\Windows\System32\winsta.dll
    15:55:59.0255 0844 C:\Windows\System32\winsta.dll - ok
    15:55:59.0255 0844 [ 6D316F4859634071CC25C4FD4589AD2C ] C:\Windows\System32\qmgr.dll
    15:55:59.0255 0844 C:\Windows\System32\qmgr.dll - ok
    15:55:59.0271 0844 [ 253607D6C54A1604436F08E67CCED044 ] C:\Windows\System32\WSHTCPIP.DLL
    15:55:59.0271 0844 C:\Windows\System32\WSHTCPIP.DLL - ok
    15:55:59.0271 0844 [ A1B39DE453433B115B4EA69EE0343816 ] C:\Windows\System32\browser.dll
    15:55:59.0271 0844 C:\Windows\System32\browser.dll - ok
    15:55:59.0271 0844 [ DDEE5FE5C3C3141CE02DE6B7B2BF686B ] C:\Windows\System32\comres.dll
    15:55:59.0271 0844 C:\Windows\System32\comres.dll - ok
    15:55:59.0286 0844 [ 2C305F6445662EFF9A08B1BA41784CC0 ] C:\Windows\System32\wship6.dll
    15:55:59.0286 0844 C:\Windows\System32\wship6.dll - ok
    15:55:59.0286 0844 [ 599DA6EB260D9601D2D67AE177F95568 ] C:\Windows\System32\wshqos.dll
    15:55:59.0286 0844 C:\Windows\System32\wshqos.dll - ok
    15:55:59.0302 0844 [ F145BF4C4668E7E312069F81EF847CFC ] C:\Windows\System32\nlasvc.dll
    15:55:59.0302 0844 C:\Windows\System32\nlasvc.dll - ok
    15:55:59.0302 0844 [ CA78B312C44E4D52E842C2C8BD48E452 ] C:\Windows\System32\cryptsvc.dll
    15:55:59.0302 0844 C:\Windows\System32\cryptsvc.dll - ok
    15:55:59.0302 0844 [ 062972C53BDC6819CE0BAAAA5382F758 ] C:\Windows\System32\NapiNSP.dll
    15:55:59.0302 0844 C:\Windows\System32\NapiNSP.dll - ok
    15:55:59.0317 0844 [ CE7183F26642FAFE46C8374AE70A66DB ] C:\Windows\System32\oleres.dll
    15:55:59.0317 0844 C:\Windows\System32\oleres.dll - ok
    15:55:59.0317 0844 [ E1BAEEE7949ED5019259E69393367400 ] C:\Windows\System32\pnrpnsp.dll
    15:55:59.0317 0844 C:\Windows\System32\pnrpnsp.dll - ok
    15:55:59.0333 0844 [ 1A7156DD1E850E9914E5E991E3225B94 ] C:\Windows\System32\dot3svc.dll
    15:55:59.0333 0844 C:\Windows\System32\dot3svc.dll - ok
    15:55:59.0333 0844 [ BB08D93011B82883EC33C7707A9627BE ] C:\Windows\System32\mswsock.dll
    15:55:59.0333 0844 C:\Windows\System32\mswsock.dll - ok
    15:55:59.0349 0844 [ 1583B39790DB3EAEC7EDB0CB0140C708 ] C:\Windows\System32\dps.dll
    15:55:59.0349 0844 C:\Windows\System32\dps.dll - ok
    15:55:59.0349 0844 [ C2303883FD9BE49DC36A6400643002EA ] C:\Windows\System32\eapsvc.dll
    15:55:59.0349 0844 C:\Windows\System32\eapsvc.dll - ok
    15:55:59.0364 0844 [ A9B18B63A4FD6BAAB83326706D857FAB ] C:\Windows\System32\emdmgmt.dll
    15:55:59.0364 0844 C:\Windows\System32\emdmgmt.dll - ok
    15:55:59.0364 0844 [ B3564B747D0B059D99E888F8369E56BC ] C:\Windows\System32\wevtsvc.dll
    15:55:59.0364 0844 C:\Windows\System32\wevtsvc.dll - ok
    15:55:59.0364 0844 [ BB9267ACACD8B7533DD936C34A0CBA5E ] C:\Windows\System32\fdPHost.dll
    15:55:59.0364 0844 C:\Windows\System32\fdPHost.dll - ok
    15:55:59.0380 0844 [ 300C80931EABBE1DB7591C516EFE8D0F ] C:\Windows\System32\FDResPub.dll
    15:55:59.0380 0844 C:\Windows\System32\FDResPub.dll - ok
    15:55:59.0380 0844 [ 434B2B82B237FC2F4F8F6844A8FF1909 ] C:\Windows\System32\msv1_0.dll
    15:55:59.0380 0844 C:\Windows\System32\msv1_0.dll - ok
    15:55:59.0395 0844 [ BE1C5BD1CA7ED015BC6FA1AE67E592C8 ] C:\Windows\System32\FntCache.dll
    15:55:59.0395 0844 C:\Windows\System32\FntCache.dll - ok
    15:55:59.0395 0844 [ A3F1B171702CA04744EE514243B45BFB ] C:\Windows\System32\netlogon.dll
    15:55:59.0395 0844 C:\Windows\System32\netlogon.dll - ok
    15:55:59.0395 0844 [ CA307C0BD127FA7ADE5E6FEE8750F046 ] C:\Windows\System32\winbrand.dll
    15:55:59.0395 0844 C:\Windows\System32\winbrand.dll - ok
    15:55:59.0411 0844 [ E60BB0CDC5EA153F6D24C51AAD4A73FD ] C:\Windows\System32\PresentationHost.exe
    15:55:59.0411 0844 C:\Windows\System32\PresentationHost.exe - ok
    15:55:59.0411 0844 [ 899F834C330A96A80EC36DAEDA2FF018 ] C:\Windows\System32\gpapi.dll
    15:55:59.0411 0844 C:\Windows\System32\gpapi.dll - ok
    15:55:59.0427 0844 [ 59361D38A297755D46A540E450202B2A ] C:\Windows\System32\hidserv.dll
    15:55:59.0427 0844 C:\Windows\System32\hidserv.dll - ok
    15:55:59.0427 0844 [ B12F367EA39C0795FD57E31242CE1A5A ] C:\Windows\System32\KMSVC.DLL
    15:55:59.0427 0844 C:\Windows\System32\KMSVC.DLL - ok
    15:55:59.0442 0844 [ 4C7F1DA7E2BF41EB19208540DD5574C8 ] C:\Windows\System32\schannel.dll
    15:55:59.0442 0844 C:\Windows\System32\schannel.dll - ok
    15:55:59.0442 0844 [ 0C9EA6E654E7B0471741E343A6C671AF ] C:\Windows\System32\IKEEXT.DLL
    15:55:59.0442 0844 C:\Windows\System32\IKEEXT.DLL - ok
    15:55:59.0442 0844 [ 5624BC1BC5EEB49C0AB76A8114F05EA3 ] C:\Windows\System32\IPBusEnum.dll
    15:55:59.0442 0844 C:\Windows\System32\IPBusEnum.dll - ok
    15:55:59.0458 0844 [ BF0DBFA9792C5C14FA00F61C75116C1B ] C:\Windows\System32\iphlpsvc.dll
    15:55:59.0458 0844 C:\Windows\System32\iphlpsvc.dll - ok
    15:55:59.0458 0844 [ C6336D1625515CC5F70E5630CFF14182 ] C:\Windows\System32\keyiso.dll
    15:55:59.0458 0844 C:\Windows\System32\keyiso.dll - ok
    15:55:59.0473 0844 [ B4A04D5AA66E8F77DE19E0EB89C52D2B ] C:\Windows\System32\wdigest.dll
    15:55:59.0473 0844 C:\Windows\System32\wdigest.dll - ok
    15:55:59.0473 0844 [ 4D27759CC69F69E4B3228A970FF55F88 ] C:\Windows\System32\rsaenh.dll
    15:55:59.0473 0844 C:\Windows\System32\rsaenh.dll - ok
    15:55:59.0489 0844 [ 50C7A3CB427E9BB5ED0708A669956AB5 ] C:\Windows\System32\srvsvc.dll
    15:55:59.0489 0844 C:\Windows\System32\srvsvc.dll - ok
    15:55:59.0489 0844 [ BC69DA355B62C898DFEA93851335EAF0 ] C:\Windows\System32\TSpkg.dll
    15:55:59.0489 0844 C:\Windows\System32\TSpkg.dll - ok
    15:55:59.0489 0844 [ CAF86FC1388BE1E470F1A7B43E348ADB ] C:\Windows\System32\wkssvc.dll
    15:55:59.0489 0844 C:\Windows\System32\wkssvc.dll - ok
    15:55:59.0505 0844 [ 4698036AE905F88E02C3F69BA77981FB ] C:\Windows\ehome\ehres.dll
    15:55:59.0505 0844 C:\Windows\ehome\ehres.dll - ok
    15:55:59.0505 0844 [ 4B8C95B49C58D7A41BF3FE38AA64DC6C ] C:\Windows\System32\lltdres.dll
    15:55:59.0505 0844 C:\Windows\System32\lltdres.dll - ok
    15:55:59.0520 0844 [ A47F8080CACC23C91FE823AD19AA5612 ] C:\Windows\System32\lmhsvc.dll
    15:55:59.0520 0844 C:\Windows\System32\lmhsvc.dll - ok
    15:55:59.0520 0844 [ FFA2B274A5CC6C9A03CBDCF5B8F0239A ] C:\Windows\System32\FirewallAPI.dll
    15:55:59.0520 0844 C:\Windows\System32\FirewallAPI.dll - ok
    15:55:59.0536 0844 [ 3CBE4995E80E13CCFBC42E5DCF3AC81A ] C:\Windows\System32\mmcss.dll
    15:55:59.0536 0844 C:\Windows\System32\mmcss.dll - ok
    15:55:59.0536 0844 [ FCD84867883C365A24C61E50AF8A6DB9 ] C:\Windows\System32\msimsg.dll
    15:55:59.0536 0844 C:\Windows\System32\msimsg.dll - ok
    15:55:59.0536 0844 [ A5B10C845E7538C60C0F5D87A57CB3F5 ] C:\Windows\System32\QAGENTRT.DLL
    15:55:59.0536 0844 C:\Windows\System32\QAGENTRT.DLL - ok
    15:55:59.0551 0844 [ 9B63B29DEFC0F3115A559D2597BF5D75 ] C:\Windows\System32\netman.dll
    15:55:59.0551 0844 C:\Windows\System32\netman.dll - ok
    15:55:59.0551 0844 [ 0341CB05512AA87BB64A834DE6264C34 ] C:\Windows\System32\netprof.dll
    15:55:59.0551 0844 C:\Windows\System32\netprof.dll - ok
    15:55:59.0567 0844 [ 42161FDC47A49CD513D29BACB99D6E0D ] C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\ServiceModelInstallRC.dll
    15:55:59.0567 0844 C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\ServiceModelInstallRC.dll - ok
    15:55:59.0567 0844 [ ACB62BAA1C319B17752553DF3026EEEB ] C:\Windows\System32\nsisvc.dll
    15:55:59.0567 0844 C:\Windows\System32\nsisvc.dll - ok
    15:55:59.0583 0844 [ 9AE31D2E1D15C10D91318E0EC149CEAC ] C:\Windows\System32\p2psvc.dll
    15:55:59.0583 0844 C:\Windows\System32\p2psvc.dll - ok
    15:55:59.0583 0844 [ 9AB157B374192FF276C1628FBDBA2B0E ] C:\Windows\System32\pcasvc.dll
    15:55:59.0583 0844 C:\Windows\System32\pcasvc.dll - ok
    15:55:59.0598 0844 [ E9E68C1A0F25CF4A7AC966EEA74EE89E ] C:\Windows\System32\pla.dll
    15:55:59.0598 0844 C:\Windows\System32\pla.dll - ok
    15:55:59.0614 0844 [ FE6B0F59215C9FD9F9D26539C58C8B82 ] C:\Windows\System32\umpnpmgr.dll
    15:55:59.0614 0844 C:\Windows\System32\umpnpmgr.dll - ok
    15:55:59.0629 0844 [ F7BEA2085635CA9B2B991D8EDC426D3A ] C:\Windows\System32\polstore.dll
    15:55:59.0629 0844 C:\Windows\System32\polstore.dll - ok
    15:55:59.0629 0844 [ E058CE4FC2449D8BFA14739C83B7FF2A ] C:\Windows\System32\profsvc.dll
    15:55:59.0629 0844 C:\Windows\System32\profsvc.dll - ok
    15:55:59.0645 0844 [ 43A4F5B4EAC81FA11DAC3143ADC77CBA ] C:\Windows\System32\psbase.dll
    15:55:59.0645 0844 C:\Windows\System32\psbase.dll - ok
    15:55:59.0645 0844 [ 90574842C3DA781E279061A3EFF91F07 ] C:\Windows\System32\qwave.dll
    15:55:59.0645 0844 C:\Windows\System32\qwave.dll - ok
    15:55:59.0661 0844 [ E8D76EDAB77EC9C634C27B8EAC33ADC5 ] C:\Windows\System32\drivers\qwavedrv.sys
    15:55:59.0661 0844 C:\Windows\System32\drivers\qwavedrv.sys - ok
    15:55:59.0661 0844 [ B2AE18F847D07F0044404DDF7CB04497 ] C:\Windows\System32\rasauto.dll
    15:55:59.0661 0844 C:\Windows\System32\rasauto.dll - ok
    15:55:59.0661 0844 [ 3AD83E4046C43BE510DE681588ACB8AF ] C:\Windows\System32\rasmans.dll
    15:55:59.0661 0844 C:\Windows\System32\rasmans.dll - ok
    15:55:59.0676 0844 [ C612B9557DA73F70D41F8A6FBC8E5344 ] C:\Windows\System32\mprdim.dll
    15:55:59.0676 0844 C:\Windows\System32\mprdim.dll - ok
    15:55:59.0676 0844 [ 2EE3FA0308E6185BA64A9A7F2E74332B ] C:\Windows\System32\sstpsvc.dll
    15:55:59.0676 0844 C:\Windows\System32\sstpsvc.dll - ok
    15:55:59.0692 0844 [ F46C457840D4B7A4DAAFEE739CE04102 ] C:\Windows\System32\Locator.exe
    15:55:59.0692 0844 C:\Windows\System32\Locator.exe - ok
    15:55:59.0692 0844 [ FD1CDCF108D5EF3366F00D18B70FB89B ] C:\Windows\System32\SCardSvr.dll
    15:55:59.0692 0844 C:\Windows\System32\SCardSvr.dll - ok
    15:55:59.0707 0844 [ 0F838C811AD295D2A4489B9993096C63 ] C:\Windows\System32\schedsvc.dll
    15:55:59.0707 0844 C:\Windows\System32\schedsvc.dll - ok
    15:55:59.0707 0844 [ 5A268127633C7EE2A7FB87F39D748D56 ] C:\Windows\System32\certprop.dll
    15:55:59.0707 0844 C:\Windows\System32\certprop.dll - ok
    15:55:59.0723 0844 [ 4FF71B076A7760FE75EA5AE2D0EE0018 ] C:\Windows\System32\sdrsvc.dll
    15:55:59.0723 0844 C:\Windows\System32\sdrsvc.dll - ok
    15:55:59.0723 0844 [ 5ACDCBC67FCF894A1815B9F96D704490 ] C:\Windows\System32\seclogon.dll
    15:55:59.0723 0844 C:\Windows\System32\seclogon.dll - ok
    15:55:59.0739 0844 [ 90973A64B96CD647FF81C79443618EED ] C:\Windows\System32\Sens.dll
    15:55:59.0739 0844 C:\Windows\System32\Sens.dll - ok
    15:55:59.0739 0844 [ A8E4A4407A09F35DCCC3771AF590B0C4 ] C:\Windows\System32\SessEnv.dll
    15:55:59.0739 0844 C:\Windows\System32\SessEnv.dll - ok
    15:55:59.0739 0844 [ 4C5AEE179DA7E1EE9A9CCB9DA289AF34 ] C:\Windows\System32\ipnathlp.dll
    15:55:59.0739 0844 C:\Windows\System32\ipnathlp.dll - ok
    15:55:59.0754 0844 [ 56793271ECDEDD350C5ADD305603E963 ] C:\Windows\System32\shsvcs.dll
    15:55:59.0754 0844 C:\Windows\System32\shsvcs.dll - ok
    15:55:59.0754 0844 [ A9A27A8E257B45A604FDAD4F26FE7241 ] C:\Windows\System32\SLsvc.exe
    15:55:59.0754 0844 C:\Windows\System32\SLsvc.exe - ok
    15:55:59.0770 0844 [ FD74B4B7C2088E390A30C85A896FC3AF ] C:\Windows\System32\SLUINotify.dll
    15:55:59.0770 0844 C:\Windows\System32\SLUINotify.dll - ok
    15:55:59.0770 0844 [ F8F08779E7D997913607B0146710CC04 ] C:\Windows\System32\tcpipcfg.dll
    15:55:59.0770 0844 C:\Windows\System32\tcpipcfg.dll - ok
    15:55:59.0785 0844 [ F8F47F38909823B1AF28D60B96340CFF ] C:\Windows\System32\snmptrap.exe
    15:55:59.0785 0844 C:\Windows\System32\snmptrap.exe - ok
    15:55:59.0785 0844 [ F66FF751E7EFC816D266977939EF5DC3 ] C:\Windows\System32\spoolsv.exe
    15:55:59.0785 0844 C:\Windows\System32\spoolsv.exe - ok
    15:55:59.0785 0844 [ 192C74646EC5725AEF3F80D19FF75F6A ] C:\Windows\System32\ssdpsrv.dll
    15:55:59.0801 0844 C:\Windows\System32\ssdpsrv.dll - ok
    15:55:59.0801 0844 [ 15825C1FBFB8779992CB65087F316AF5 ] C:\Windows\System32\wiaservc.dll
    15:55:59.0801 0844 C:\Windows\System32\wiaservc.dll - ok
    15:55:59.0801 0844 [ 92D7A8B0F87B036F17D25885937897A6 ] C:\Windows\System32\sysmain.dll
    15:55:59.0801 0844 C:\Windows\System32\sysmain.dll - ok
    15:55:59.0817 0844 [ CC2562B4D55E0B6A4758C65407F63B79 ] C:\Windows\System32\tapisrv.dll
    15:55:59.0817 0844 C:\Windows\System32\tapisrv.dll - ok
    15:55:59.0817 0844 [ CDBE8D7C1E201B911CDC346D06617FB5 ] C:\Windows\System32\tbssvc.dll
    15:55:59.0817 0844 C:\Windows\System32\tbssvc.dll - ok
    15:55:59.0832 0844 [ 5CDD30BC217082DAC71A9878D9BFD566 ] C:\Windows\System32\termsrv.dll
    15:55:59.0832 0844 C:\Windows\System32\termsrv.dll - ok
    15:55:59.0832 0844 [ F4689F05AF472A651A7B1B7B02D200E7 ] C:\Windows\System32\trkwks.dll
    15:55:59.0832 0844 C:\Windows\System32\trkwks.dll - ok
    15:55:59.0848 0844 [ 66328B08EF5A9305D8EDE36B93930369 ] C:\Windows\servicing\TrustedInstaller.exe
    15:55:59.0848 0844 C:\Windows\servicing\TrustedInstaller.exe - ok
    15:55:59.0848 0844 [ 060507C4113391394478F6953A79EEDC ] C:\Windows\System32\UI0Detect.exe
    15:55:59.0848 0844 C:\Windows\System32\UI0Detect.exe - ok
    15:55:59.0863 0844 [ 449F5AB17863698F12F0BC8E99079AA6 ] C:\Windows\System32\dwm.exe
    15:55:59.0863 0844 C:\Windows\System32\dwm.exe - ok
    15:55:59.0863 0844 [ 7093799FF80E9DECA0680D2E3535BE60 ] C:\Windows\System32\upnphost.dll
    15:55:59.0863 0844 C:\Windows\System32\upnphost.dll - ok
    15:55:59.0863 0844 [ 294945381DFA7CE58CECF0A9896AF327 ] C:\Windows\System32\vds.exe
    15:55:59.0863 0844 C:\Windows\System32\vds.exe - ok
    15:55:59.0879 0844 [ F14A7DE2EA41883E250892E1E5230A9A ] C:\Windows\System32\w32time.dll
    15:55:59.0879 0844 C:\Windows\System32\w32time.dll - ok
    15:55:59.0879 0844 [ EA4B369560E986F19D93F45A881484AC ] C:\Windows\System32\WcsPlugInService.dll
    15:55:59.0879 0844 C:\Windows\System32\WcsPlugInService.dll - ok
    15:55:59.0895 0844 [ 442783E2CB0DA19873B7A63833FF4CB4 ] C:\Windows\System32\drivers\Wdf01000.sys
    15:55:59.0895 0844 C:\Windows\System32\drivers\Wdf01000.sys - ok
    15:55:59.0895 0844 [ C5EFDA73EBFCA8B02A094898DE0A9276 ] C:\Windows\System32\wdi.dll
    15:55:59.0895 0844 C:\Windows\System32\wdi.dll - ok
    15:55:59.0910 0844 [ 8D40BC587993F876658BF9FB0F7D3462 ] C:\Windows\System32\wecsvc.dll
    15:55:59.0910 0844 C:\Windows\System32\wecsvc.dll - ok
    15:55:59.0910 0844 [ 9C980351D7E96288EA0C23AE232BD065 ] C:\Windows\System32\wercplsupport.dll
    15:55:59.0910 0844 C:\Windows\System32\wercplsupport.dll - ok
    15:55:59.0926 0844 [ D2E7296ED1BD26D8DB2799770C077A02 ] C:\Windows\System32\wbem\WMIsvc.dll
    15:55:59.0926 0844 C:\Windows\System32\wbem\WMIsvc.dll - ok
    15:55:59.0926 0844 [ 66B9ECEBC46683F47EDC06333C075FEF ] C:\Windows\System32\wersvc.dll
    15:55:59.0926 0844 C:\Windows\System32\wersvc.dll - ok
    15:55:59.0926 0844 [ EC339C8115E91BAED835957E9A677F16 ] C:\Windows\System32\wlansvc.dll
    15:55:59.0926 0844 C:\Windows\System32\wlansvc.dll - ok
    15:55:59.0941 0844 [ CBC156C913F099E6680D1DF9307DB7A8 ] C:\Windows\System32\wpcsvc.dll
    15:55:59.0941 0844 C:\Windows\System32\wpcsvc.dll - ok
    15:55:59.0941 0844 [ 490A18B4E4D53DC10879DEAA8E8B70D9 ] C:\Windows\System32\wpdbusenum.dll
    15:55:59.0941 0844 C:\Windows\System32\wpdbusenum.dll - ok
    15:55:59.0957 0844 [ 9EA3E6D0EF7A5C2B9181961052A4B01A ] C:\Windows\System32\wscsvc.dll
    15:55:59.0957 0844 C:\Windows\System32\wscsvc.dll - ok
    15:55:59.0957 0844 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] C:\Windows\System32\wuaueng.dll
    15:55:59.0957 0844 C:\Windows\System32\wuaueng.dll - ok
    15:55:59.0973 0844 [ AB886378EEB55C6C75B4F2D14B6C869F ] C:\Windows\System32\drivers\WUDFPf.sys
    15:55:59.0973 0844 C:\Windows\System32\drivers\WUDFPf.sys - ok
    15:55:59.0973 0844 [ 9922ADB6DCA8F0F5EA038BEFF339C08B ] C:\Windows\System32\scecli.dll
    15:55:59.0973 0844 C:\Windows\System32\scecli.dll - ok
    15:55:59.0973 0844 [ EE3718BCF5CEF1C457C10A745E410959 ] C:\Windows\System32\ntmarta.dll
    15:55:59.0973 0844 C:\Windows\System32\ntmarta.dll - ok
    15:55:59.0988 0844 [ CDA9F1373805AF88F6FA4F2064BBA24D ] C:\Windows\System32\svchost.exe
    15:55:59.0988 0844 C:\Windows\System32\svchost.exe - ok
    15:55:59.0988 0844 [ 7823A58BF0FE3CAAA555C12B5CF91290 ] C:\Windows\System32\powrprof.dll
    15:55:59.0988 0844 C:\Windows\System32\powrprof.dll - ok
    15:56:00.0004 0844 [ 52F87B9CC8932C2A7375C3B2A9BE5E3E ] C:\Windows\System32\drivers\luafv.sys
    15:56:00.0004 0844 C:\Windows\System32\drivers\luafv.sys - ok
    15:56:00.0004 0844 [ CF8B9A3A5E7DC57724A89D0C3E8CF9EF ] C:\Windows\System32\rpcss.dll
    15:56:00.0004 0844 C:\Windows\System32\rpcss.dll - ok
    15:56:00.0019 0844 [ EA3D2B63BA304EB6EDABBAFA21599B47 ] C:\Windows\System32\version.dll
    15:56:00.0019 0844 C:\Windows\System32\version.dll - ok
    15:56:00.0019 0844 [ 7D2A43E8FDF725A1133F6C6056A72CDC ] C:\Program Files\Windows Defender\MpSvc.dll
    15:56:00.0019 0844 C:\Program Files\Windows Defender\MpSvc.dll - ok
    15:56:00.0035 0844 [ BAD79FECE1387CDD8388A3314645757F ] C:\Windows\System32\LogonUI.exe
    15:56:00.0035 0844 C:\Windows\System32\LogonUI.exe - ok
    15:56:00.0035 0844 [ 08C16507241D274FF9B583E5C4F9DBC8 ] C:\Windows\System32\wintrust.dll
    15:56:00.0035 0844 C:\Windows\System32\wintrust.dll - ok
    15:56:00.0035 0844 [ 363D07C0F427C72BDE0B6D6492A205C9 ] C:\Windows\System32\authui.dll
    15:56:00.0035 0844 C:\Windows\System32\authui.dll - ok
    15:56:00.0051 0844 [ D07D4DA02FA8C7092FD402634419797D ] C:\Program Files\Windows Defender\MpClient.dll
    15:56:00.0051 0844 C:\Program Files\Windows Defender\MpClient.dll - ok
    15:56:00.0051 0844 [ 46662CD685A6341AB4AED86D134D80E9 ] C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6002.18305_none_1509f852f40ee5cd\comctl32.dll
    15:56:00.0051 0844 C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6002.18305_none_1509f852f40ee5cd\comctl32.dll - ok
    15:56:00.0066 0844 [ 6B58266234B36ABCDD43C797B0D1932E ] C:\Windows\System32\msimg32.dll
    15:56:00.0066 0844 C:\Windows\System32\msimg32.dll - ok
    15:56:00.0066 0844 [ 88DBC757681093478BC80211C21695E5 ] C:\Windows\System32\uxtheme.dll
    15:56:00.0066 0844 C:\Windows\System32\uxtheme.dll - ok
    15:56:00.0082 0844 [ A359974EAAC83A435497C52F62A2E590 ] C:\Windows\System32\atiesrxx.exe
    15:56:00.0082 0844 C:\Windows\System32\atiesrxx.exe - ok
    15:56:00.0082 0844 [ 6B5DC9711FD15A0E944A4F17366E2300 ] C:\Windows\System32\slwga.dll
    15:56:00.0082 0844 C:\Windows\System32\slwga.dll - ok
    15:56:00.0097 0844 [ 6C2D2558DECB89C83873F80160D19F2C ] C:\Windows\System32\wtsapi32.dll
    15:56:00.0097 0844 C:\Windows\System32\wtsapi32.dll - ok
    15:56:00.0097 0844 [ 4EAC411F90DCDE41D05D8184DE335524 ] C:\Windows\winsxs\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6002.18581_none_56abd97bb593eaca\GdiPlus.dll
    15:56:00.0097 0844 C:\Windows\winsxs\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6002.18581_none_56abd97bb593eaca\GdiPlus.dll - ok
    15:56:00.0113 0844 [ D883BD7C5BA86AE7D442C3A24F13A46D ] C:\Windows\System32\p2pcollab.dll
    15:56:00.0113 0844 C:\Windows\System32\p2pcollab.dll - ok
    15:56:00.0113 0844 [ 16881B42E07390FAA8C7331E9B8316A7 ] C:\Windows\System32\duser.dll
    15:56:00.0113 0844 C:\Windows\System32\duser.dll - ok
    15:56:00.0113 0844 [ 656CF740A2FDB99664A91C439D05C0ED ] C:\Windows\System32\xmllite.dll
    15:56:00.0113 0844 C:\Windows\System32\xmllite.dll - ok
    15:56:00.0129 0844 [ 99AA51A6AE40DED4A74776E6E1C066C1 ] C:\Windows\System32\adtschema.dll
    15:56:00.0129 0844 C:\Windows\System32\adtschema.dll - ok
    15:56:00.0129 0844 [ C501852F1CA40FFC55363ACC0D2DF5BA ] C:\Windows\System32\SmartcardCredentialProvider.dll
    15:56:00.0129 0844 C:\Windows\System32\SmartcardCredentialProvider.dll - ok
    15:56:00.0144 0844 [ 303C4EB5C2FB40F194E2B24CAD7148EF ] C:\Windows\System32\MMDevAPI.dll
    15:56:00.0144 0844 C:\Windows\System32\MMDevAPI.dll - ok
    15:56:00.0144 0844 [ F59CF3BFE865EB795C5DE5850F48B321 ] C:\Windows\System32\rasplap.dll
    15:56:00.0144 0844 C:\Windows\System32\rasplap.dll - ok
    15:56:00.0160 0844 [ B1DF2D87DC8BF6072699AC8301B37796 ] C:\Windows\System32\WUDFPlatform.dll
    15:56:00.0160 0844 C:\Windows\System32\WUDFPlatform.dll - ok
    15:56:00.0160 0844 [ 514A07C903607458B6B5A430B09BF794 ] C:\Windows\System32\avrt.dll
    15:56:00.0160 0844 C:\Windows\System32\avrt.dll - ok
    15:56:00.0160 0844 [ A4F3F34A7146D8633FA8D346535A9CAA ] C:\Windows\System32\rasapi32.dll
    15:56:00.0160 0844 C:\Windows\System32\rasapi32.dll - ok
    15:56:00.0175 0844 [ C30BD20F185A47DCD4FD05F5AE1BC077 ] C:\Windows\System32\rasman.dll
    15:56:00.0175 0844 C:\Windows\System32\rasman.dll - ok
    15:56:00.0191 0844 [ F0884FA3E83C79775BF89C74DD28B616 ] C:\Windows\System32\tapi32.dll
    15:56:00.0191 0844 C:\Windows\System32\tapi32.dll - ok
    15:56:00.0191 0844 [ 73F18E253DF8E0A9CE5FC45E62FB1945 ] C:\Windows\System32\cabinet.dll
    15:56:00.0191 0844 C:\Windows\System32\cabinet.dll - ok
    15:56:00.0191 0844 [ F1D25FB6A8BF8FBAE49717B684670393 ] C:\Windows\System32\rtutils.dll
    15:56:00.0191 0844 C:\Windows\System32\rtutils.dll - ok
    15:56:00.0207 0844 [ 7500278FEF4A66B0D76D8438F0295F4E ] C:\Windows\System32\winmm.dll
    15:56:00.0207 0844 C:\Windows\System32\winmm.dll - ok
    15:56:00.0207 0844 [ 05411EF3E66659C63803563BB06C2E17 ] C:\Windows\System32\dimsjob.dll
    15:56:00.0207 0844 C:\Windows\System32\dimsjob.dll - ok
    15:56:00.0222 0844 [ E3041BC26D6930D61F42AEDB79C91720 ] C:\Windows\System32\drivers\fltMgr.sys
    15:56:00.0222 0844 C:\Windows\System32\drivers\fltMgr.sys - ok
    15:56:00.0222 0844 [ D58A65112AE355CADFABEEFC8D329A8F ] C:\Windows\System32\oleacc.dll
    15:56:00.0222 0844 C:\Windows\System32\oleacc.dll - ok
    15:56:00.0238 0844 [ 9E693C6146932B5369DFFA584E805EF6 ] C:\Windows\System32\PSHED.DLL
    15:56:00.0238 0844 C:\Windows\System32\PSHED.DLL - ok
    15:56:00.0238 0844 [ B1D4BB8DFD7128A90982562268920724 ] C:\Windows\System32\WinSCard.dll
    15:56:00.0238 0844 C:\Windows\System32\WinSCard.dll - ok
    15:56:00.0238 0844 [ 4CEA4255CAE84BF21FCA9A2827E16CBB ] C:\Windows\System32\shacct.dll
    15:56:00.0238 0844 C:\Windows\System32\shacct.dll - ok
    15:56:00.0253 0844 [ 00C7DAFAD08FAD59E51EB9A1F90925DE ] C:\Windows\System32\shgina.dll
    15:56:00.0253 0844 C:\Windows\System32\shgina.dll - ok
    15:56:00.0253 0844 [ FE13271EF661F8BE83A1A0D3366164D0 ] C:\Windows\System32\propsys.dll
    15:56:00.0253 0844 C:\Windows\System32\propsys.dll - ok
    15:56:00.0269 0844 [ D527EF4364D2D00443470940B177EAD4 ] C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{353CBA38-F023-4D23-B6A5-556BF3733AAB}\mpengine.dll
    15:56:00.0269 0844 C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{353CBA38-F023-4D23-B6A5-556BF3733AAB}\mpengine.dll - ok
    15:56:00.0269 0844 [ B144A2223EF11ED42310124A7839258E ] C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{353CBA38-F023-4D23-B6A5-556BF3733AAB}\mpasbase.vdm
    15:56:00.0269 0844 C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{353CBA38-F023-4D23-B6A5-556BF3733AAB}\mpasbase.vdm - ok
    15:56:00.0285 0844 [ 7F633AC83782EB0E8ADE513B8A1A9BC8 ] C:\Windows\System32\audiodg.exe
    15:56:00.0285 0844 C:\Windows\System32\audiodg.exe - ok
    15:56:00.0285 0844 [ 3AD3754D21038807238B96C455DFE165 ] C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{353CBA38-F023-4D23-B6A5-556BF3733AAB}\mpasdlta.vdm
    15:56:00.0285 0844 C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{353CBA38-F023-4D23-B6A5-556BF3733AAB}\mpasdlta.vdm - ok
    15:56:00.0285 0844 [ A0E1B575BA8F504968CD40C0FAEB2384 ] C:\Windows\System32\gpsvc.dll
    15:56:00.0285 0844 C:\Windows\System32\gpsvc.dll - ok
    15:56:00.0300 0844 [ C5EDECA7546B009484B23FAD0E9724C1 ] C:\Windows\System32\nlaapi.dll
    15:56:00.0300 0844 C:\Windows\System32\nlaapi.dll - ok
    15:56:00.0300 0844 [ 7FC9AFDD2A2ACFCB52FB05D57FE8C2F4 ] C:\Windows\System32\atl.dll
    15:56:00.0300 0844 C:\Windows\System32\atl.dll - ok
    15:56:00.0316 0844 [ 75C881C65CEF2C7B911EB0A351957368 ] C:\Windows\System32\drivers\spsys.sys
    15:56:00.0316 0844 C:\Windows\System32\drivers\spsys.sys - ok
    15:56:00.0316 0844 [ 4EFC5F29CA5CF912C09BD5586468A945 ] C:\Windows\System32\atieclxx.exe
    15:56:00.0316 0844 C:\Windows\System32\atieclxx.exe - ok
    15:56:00.0331 0844 [ 48FEF0CD6C0D4CA428DE7024F297E1CD ] C:\Windows\System32\WindowsCodecs.dll
    15:56:00.0331 0844 C:\Windows\System32\WindowsCodecs.dll - ok
    15:56:00.0331 0844 [ 1AD703C14E705F69D4ADF79154054173 ] C:\Windows\System32\dwmapi.dll
    15:56:00.0331 0844 C:\Windows\System32\dwmapi.dll - ok
    15:56:00.0347 0844 [ 9D2112F3D3321CBAFB3EE460C1D78E62 ] C:\Windows\System32\atiadlxx.dll
    15:56:00.0347 0844 C:\Windows\System32\atiadlxx.dll - ok
    15:56:00.0347 0844 [ E12F22B73F153DECE721CD45EC05B4AF ] C:\Windows\System32\es.dll
    15:56:00.0347 0844 C:\Windows\System32\es.dll - ok
    15:56:00.0363 0844 [ 56697D33950E5E83A4049F477BE7C320 ] C:\Windows\System32\hid.dll
    15:56:00.0363 0844 C:\Windows\System32\hid.dll - ok
    15:56:00.0363 0844 [ D76E231E4850BB3F88A3D9A78DF191E3 ] C:\Windows\System32\uxsms.dll
    15:56:00.0363 0844 C:\Windows\System32\uxsms.dll - ok
    15:56:00.0363 0844 [ B20F051B03A966392364C83F009F7D17 ] C:\Windows\System32\WUDFSvc.dll
    15:56:00.0363 0844 C:\Windows\System32\WUDFSvc.dll - ok
    15:56:00.0378 0844 [ 96ECE2659B6654C10A0C310AE3A6D02C ] C:\Windows\System32\drivers\lltdio.sys
    15:56:00.0378 0844 C:\Windows\System32\drivers\lltdio.sys - ok
    15:56:00.0378 0844 [ 2007B826C4ACD94AE32232B41F0842B9 ] C:\Windows\System32\drivers\nwifi.sys
    15:56:00.0378 0844 C:\Windows\System32\drivers\nwifi.sys - ok
    15:56:00.0394 0844 [ 8BAA43196D7B5BB972C9A6B2BBF61A19 ] C:\Windows\System32\drivers\ndisuio.sys
    15:56:00.0394 0844 C:\Windows\System32\drivers\ndisuio.sys - ok
    15:56:00.0394 0844 [ 22A9CB08B1A6707C1550C6BF099AAE73 ] C:\Windows\System32\drivers\rspndr.sys
    15:56:00.0394 0844 C:\Windows\System32\drivers\rspndr.sys - ok
    15:56:00.0409 0844 [ 06230F1B721494A6DF8D47FD395BB1B0 ] C:\Windows\System32\dnsrslvr.dll
    15:56:00.0409 0844 C:\Windows\System32\dnsrslvr.dll - ok
    15:56:00.0409 0844 [ E0159CE395B31F746AA26D0A6996DB29 ] C:\Windows\System32\eapphost.dll
    15:56:00.0409 0844 C:\Windows\System32\eapphost.dll - ok
    15:56:00.0425 0844 [ 0160AD4F8F4F817428CA74358612EC48 ] C:\Windows\System32\rastls.dll
    15:56:00.0425 0844 C:\Windows\System32\rastls.dll - ok
    15:56:00.0425 0844 [ 0CACD3E5A4E1F231DAA19A737F9B6FF9 ] C:\Program Files\Windows Defender\MpRtPlug.dll
    15:56:00.0425 0844 C:\Program Files\Windows Defender\MpRtPlug.dll - ok
    15:56:00.0425 0844 [ CE010ACB489CAA0253A3F692E0892631 ] C:\Windows\System32\tdh.dll
    15:56:00.0425 0844 C:\Windows\System32\tdh.dll - ok
    15:56:00.0441 0844 [ BFDF69526CB6476992540D4C477CC27A ] C:\Windows\System32\raschap.dll
    15:56:00.0441 0844 C:\Windows\System32\raschap.dll - ok
    15:56:00.0441 0844 [ 2CAB7B034B867AAB48D298F93D04BD3E ] C:\Windows\System32\wscapi.dll
    15:56:00.0441 0844 C:\Windows\System32\wscapi.dll - ok
    15:56:00.0456 0844 [ 57D1DE90D43E25C9E645D81FFC4FB678 ] C:\Windows\System32\umb.dll
    15:56:00.0456 0844 C:\Windows\System32\umb.dll - ok
    15:56:00.0456 0844 [ F64C1360D0590DF16AF01C8DA66973CB ] C:\Windows\System32\wlanmsm.dll
    15:56:00.0456 0844 C:\Windows\System32\wlanmsm.dll - ok
    15:56:00.0456 0844 [ CE11C00CCC066FB06CC0E671CA0D7660 ] C:\Windows\System32\wlansec.dll
    15:56:00.0456 0844 C:\Windows\System32\wlansec.dll - ok
    15:56:00.0472 0844 [ DED15764B578A26BE9E45E7692820549 ] C:\Windows\System32\onex.dll
    15:56:00.0472 0844 C:\Windows\System32\onex.dll - ok
    15:56:00.0472 0844 [ B50D0BF177657752B826697259341858 ] C:\Windows\System32\eappprxy.dll
    15:56:00.0472 0844 C:\Windows\System32\eappprxy.dll - ok
    15:56:00.0487 0844 [ 03FDED7449428CE493432EE35FE5A2FB ] C:\Windows\System32\eappcfg.dll
    15:56:00.0487 0844 C:\Windows\System32\eappcfg.dll - ok
    15:56:00.0487 0844 [ 9689076012A34CE4631D0CBFE148D092 ] C:\Windows\System32\wlgpclnt.dll
    15:56:00.0487 0844 C:\Windows\System32\wlgpclnt.dll - ok
    15:56:00.0503 0844 [ A73C52B285405E1FD79388AF2C7B2EB6 ] C:\Windows\System32\l2gpstore.dll
    15:56:00.0503 0844 C:\Windows\System32\l2gpstore.dll - ok
    15:56:00.0503 0844 [ 4DD86EDDA09715DC235E41C1F698F041 ] C:\Windows\System32\wlanutil.dll
    15:56:00.0503 0844 C:\Windows\System32\wlanutil.dll - ok
    15:56:00.0503 0844 [ 1D97BF03AC56D86E3498705A59BDCF72 ] C:\Windows\System32\msxml6.dll
    15:56:00.0503 0844 C:\Windows\System32\msxml6.dll - ok
    15:56:00.0519 0844 [ 6B6D0747C1D56D5742F5171B57E8CB6F ] C:\Windows\System32\ktmw32.dll
    15:56:00.0519 0844 C:\Windows\System32\ktmw32.dll - ok
    15:56:00.0519 0844 [ 09451F87CFF73FF22D9479FB0A73861C ] C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_5.82.6002.18305_none_41466cae55469b30\comctl32.dll
    15:56:00.0519 0844 C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_5.82.6002.18305_none_41466cae55469b30\comctl32.dll - ok
    15:56:00.0534 0844 [ 3ADB1950539C78F82EFD392BE98BE80D ] C:\Windows\System32\taskcomp.dll
    15:56:00.0534 0844 C:\Windows\System32\taskcomp.dll - ok
    15:56:00.0534 0844 [ 098F1E4E5C9CB5B0063A959063631610 ] C:\Windows\System32\drivers\http.sys
    15:56:00.0534 0844 C:\Windows\System32\drivers\http.sys - ok
    15:56:00.0550 0844 [ D48445B07F61CAFE2FE8972AAB4E31B8 ] C:\Windows\System32\spoolss.dll
    15:56:00.0550 0844 C:\Windows\System32\spoolss.dll - ok
    15:56:00.0550 0844 [ 808A26DA7028B02A081A5A1BCBF69A2A ] C:\Windows\System32\wiarpc.dll
    15:56:00.0550 0844 C:\Windows\System32\wiarpc.dll - ok
    15:56:00.0565 0844 [ 4BED62F4FA4D8300973F1151F4C4D8A7 ] C:\Windows\System32\drivers\srvnet.sys
    15:56:00.0565 0844 C:\Windows\System32\drivers\srvnet.sys - ok
    15:56:00.0565 0844 [ 7972615E382EF39785FD45F136F64D8C ] C:\Windows\System32\FWPUCLNT.DLL
    15:56:00.0565 0844 C:\Windows\System32\FWPUCLNT.DLL - ok
    15:56:00.0565 0844 [ 2348447A80920B2493A9B582A23E81E1 ] C:\Windows\System32\drivers\bowser.sys
    15:56:00.0565 0844 C:\Windows\System32\drivers\bowser.sys - ok
    15:56:00.0581 0844 [ C92B9ABDB65A5991E00C28F13491DBA2 ] C:\Windows\System32\drivers\mpsdrv.sys
    15:56:00.0581 0844 C:\Windows\System32\drivers\mpsdrv.sys - ok
    15:56:00.0581 0844 [ 897E3BAF68BA406A61682AE39C83900C ] C:\Windows\System32\MPSSVC.dll
    15:56:00.0581 0844 C:\Windows\System32\MPSSVC.dll - ok
    15:56:00.0597 0844 [ 1485811B320FF8C7EDAD1CAEBB1C6C2B ] C:\Windows\System32\drivers\mrxsmb.sys
    15:56:00.0597 0844 C:\Windows\System32\drivers\mrxsmb.sys - ok
    15:56:00.0597 0844 [ 3B929A60C833FC615FD97FBA82BC7632 ] C:\Windows\System32\drivers\mrxsmb10.sys
    15:56:00.0597 0844 C:\Windows\System32\drivers\mrxsmb10.sys - ok
    15:56:00.0612 0844 [ C64AB3E1F53B4F5B5BB6D796B2D7BEC3 ] C:\Windows\System32\drivers\mrxsmb20.sys
    15:56:00.0612 0844 C:\Windows\System32\drivers\mrxsmb20.sys - ok
    15:56:00.0612 0844 [ A1AD14A6D7A37891FFFECA35EBBB0730 ] C:\Windows\System32\drivers\srv2.sys
    15:56:00.0612 0844 C:\Windows\System32\drivers\srv2.sys - ok
    15:56:00.0628 0844 [ 880A57FCCB571EBD063D4DD50E93E46D ] C:\Windows\System32\drivers\srv.sys
    15:56:00.0628 0844 C:\Windows\System32\drivers\srv.sys - ok
    15:56:00.0628 0844 [ D1E792408F710173E4E4FB6BFB248DB3 ] C:\Windows\System32\wfapigp.dll
    15:56:00.0628 0844 C:\Windows\System32\wfapigp.dll - ok
    15:56:00.0628 0844 [ 87B1E9B5DBFADA04D9FFDC52D16CB000 ] C:\Windows\System32\mscms.dll
    15:56:00.0628 0844 C:\Windows\System32\mscms.dll - ok
    15:56:00.0643 0844 [ 10EAB90C1AE8271B5FE5A8930987EE5C ] C:\Program Files\Windows Live\Mesh\WLRemoteServiceResource.dll
    15:56:00.0643 0844 C:\Program Files\Windows Live\Mesh\WLRemoteServiceResource.dll - ok
    15:56:00.0643 0844 [ 129F59470F770A2675A39C245BC5AB3F ] C:\Windows\System32\WsmRes.dll
    15:56:00.0643 0844 C:\Windows\System32\WsmRes.dll - ok
    15:56:00.0659 0844 [ 1E68A512FB6010B600CBC3577147AC50 ] C:\Windows\System32\plasrv.exe
    15:56:00.0659 0844 C:\Windows\System32\plasrv.exe - ok
    15:56:00.0659 0844 [ BED93F434CD291DEC110901F7343E000 ] C:\Windows\System32\dllhost.exe
    15:56:00.0659 0844 C:\Windows\System32\dllhost.exe - ok
    15:56:00.0675 0844 [ ED4EC7C21A3607A4CB7D36E9C5B90AB2 ] C:\Windows\System32\AtBroker.exe
    15:56:00.0675 0844 C:\Windows\System32\AtBroker.exe - ok
    15:56:00.0675 0844 [ A0AB2BB9A92293D9CE66E252719AB5FE ] C:\Windows\System32\userinit.exe
    15:56:00.0675 0844 C:\Windows\System32\userinit.exe - ok
    15:56:00.0690 0844 [ EA85B96A8BFB435749C9004BC7340347 ] C:\Windows\System32\taskeng.exe
    15:56:00.0690 0844 C:\Windows\System32\taskeng.exe - ok
    15:56:00.0690 0844 [ A78E7E16E8696172FF3F4147E6050DC3 ] C:\Windows\System32\dwmredir.dll
    15:56:00.0690 0844 C:\Windows\System32\dwmredir.dll - ok
    15:56:00.0690 0844 [ B77AD1818DBD476245B1281016E075E4 ] C:\Windows\System32\milcore.dll
    15:56:00.0706 0844 C:\Windows\System32\milcore.dll - ok
    15:56:00.0706 0844 [ E849BBF4D8045C3E6BF7A23FA91E36AB ] C:\Program Files\Bonjour\mdnsNSP.dll
    15:56:00.0706 0844 C:\Program Files\Bonjour\mdnsNSP.dll - ok
    15:56:00.0706 0844 [ 8449D81B9FB1CCADEC3E64F30E1076C7 ] C:\Windows\System32\winrnr.dll
    15:56:00.0706 0844 C:\Windows\System32\winrnr.dll - ok
    15:56:00.0721 0844 [ D4175BE7CA634C7BB9205F7EE4F3F7E4 ] C:\Windows\System32\d3d9.dll
    15:56:00.0721 0844 C:\Windows\System32\d3d9.dll - ok
    15:56:00.0721 0844 [ 70071E1657823DA231713D74A9CC8ECA ] C:\Windows\System32\rasadhlp.dll
    15:56:00.0721 0844 C:\Windows\System32\rasadhlp.dll - ok
    15:56:00.0737 0844 [ E6409B960CCAA48F292A4808E00167C8 ] C:\Windows\System32\d3d8thk.dll
    15:56:00.0737 0844 C:\Windows\System32\d3d8thk.dll - ok
    15:56:00.0737 0844 [ 4B9226E19E2D19C03477BF8CFE9583D8 ] C:\Windows\System32\aticfx64.dll
    15:56:00.0737 0844 C:\Windows\System32\aticfx64.dll - ok
    15:56:00.0753 0844 [ 18ADF933B54C8953FCC3EEAB4EAF4A63 ] C:\Windows\System32\TSChannel.dll
    15:56:00.0753 0844 C:\Windows\System32\TSChannel.dll - ok
    15:56:00.0753 0844 [ BA43D5553AB01E74DB3220F5AD0A0DFF ] C:\Windows\System32\atiu9p64.dll
    15:56:00.0753 0844 C:\Windows\System32\atiu9p64.dll - ok
    15:56:00.0768 0844 [ 861803E9EE221DAA2F80CAF9AE9485AD ] C:\Windows\System32\atiumd64.dll
    15:56:00.0768 0844 C:\Windows\System32\atiumd64.dll - ok
    15:56:00.0768 0844 [ 626A24ED1228580B9518C01930936DF9 ] C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
    15:56:00.0768 0844 C:\Program Files (x86)\Google\Update\GoogleUpdate.exe - ok
    15:56:00.0768 0844 [ 6AAF63A85181E39F94EC0641C55A4EF0 ] C:\Windows\SysWOW64\ntdll.dll
    15:56:00.0768 0844 C:\Windows\SysWOW64\ntdll.dll - ok
    15:56:00.0784 0844 [ 38573C7D9D91B316E6EE76E0C94F749E ] C:\Windows\System32\localspl.dll
    15:56:00.0784 0844 C:\Windows\System32\localspl.dll - ok
    15:56:00.0784 0844 [ 813C216E14005CB42BBD1B037FCF030F ] C:\Windows\System32\wow64.dll
    15:56:00.0784 0844 C:\Windows\System32\wow64.dll - ok
    15:56:00.0799 0844 [ 2CCA759379C220D29F0066CA49E9259F ] C:\Windows\System32\sfc.dll
    15:56:00.0799 0844 C:\Windows\System32\sfc.dll - ok
    15:56:00.0799 0844 [ 8FE910915F14C9C6A9561D8032B603D3 ] C:\Windows\System32\wow64win.dll
    15:56:00.0799 0844 C:\Windows\System32\wow64win.dll - ok
    15:56:00.0815 0844 [ FEB771AF00A645DCA8A7D07CC33F7E8E ] C:\Windows\System32\winspool.drv
    15:56:00.0815 0844 C:\Windows\System32\winspool.drv - ok
    15:56:00.0815 0844 [ 7B005E3F9825A98312E089CBA0F83DAA ] C:\Windows\System32\uDWM.dll
    15:56:00.0815 0844 C:\Windows\System32\uDWM.dll - ok
    15:56:00.0815 0844 [ 6B08E54A451B3F95E4109DBA7E594270 ] C:\Windows\explorer.exe
    15:56:00.0815 0844 C:\Windows\explorer.exe - ok
    15:56:00.0831 0844 [ CA9EECC6092B9C2CE86D95C04B51BA20 ] C:\Windows\System32\wow64cpu.dll
    15:56:00.0831 0844 C:\Windows\System32\wow64cpu.dll - ok
    15:56:00.0831 0844 [ D59DD2AAFF94EAB9BD6C7940C2851735 ] C:\Windows\SysWOW64\kernel32.dll
    15:56:00.0831 0844 C:\Windows\SysWOW64\kernel32.dll - ok
    15:56:00.0846 0844 [ 6EDCBE63E982F33D7578854D61CC1FD4 ] C:\Windows\System32\HPZ3LLHN.DLL
    15:56:00.0846 0844 C:\Windows\System32\HPZ3LLHN.DLL - ok
    15:56:00.0846 0844 [ 74D59F72104C9FF8D154D1AB372A5A57 ] C:\Windows\System32\tcpmon.dll
    15:56:00.0846 0844 C:\Windows\System32\tcpmon.dll - ok
    15:56:00.0846 0844 [ 9586E7CB2255A8B097A7E4538202585E ] C:\Windows\SysWOW64\ole32.dll
    15:56:00.0846 0844 C:\Windows\SysWOW64\ole32.dll - ok
    15:56:00.0862 0844 [ 9DCAA0F7D8EC0C07BBBE724041DB7AC5 ] C:\Windows\System32\shdocvw.dll
    15:56:00.0862 0844 C:\Windows\System32\shdocvw.dll - ok
    15:56:00.0862 0844 [ 943F05B78BC03F3463FCE26D4B5B81A9 ] C:\Windows\System32\snmpapi.dll
    15:56:00.0862 0844 C:\Windows\System32\snmpapi.dll - ok
    15:56:00.0877 0844 [ 5F0501B0C731E7F2DDE196E3A32E3500 ] C:\Windows\System32\PlaySndSrv.dll
    15:56:00.0877 0844 C:\Windows\System32\PlaySndSrv.dll - ok
    15:56:00.0877 0844 [ 57120423BC6342F0EAE16E3720184D5A ] C:\Windows\System32\wsnmp32.dll
    15:56:00.0877 0844 C:\Windows\System32\wsnmp32.dll - ok
    15:56:00.0893 0844 [ AD8DDBB13B341B931CC9229BBC9D0625 ] C:\Windows\System32\HotStartUserAgent.dll
    15:56:00.0893 0844 C:\Windows\System32\HotStartUserAgent.dll - ok
    15:56:00.0893 0844 [ 4B7BB89AFC32632F775D8A3E62FCA979 ] C:\Windows\System32\mgmtapi.dll
    15:56:00.0893 0844 C:\Windows\System32\mgmtapi.dll - ok
    15:56:00.0893 0844 [ 7BCB22C93FF0E90683F3513531E2990B ] C:\Windows\System32\tcpmib.dll
    15:56:00.0893 0844 C:\Windows\System32\tcpmib.dll - ok
    15:56:00.0909 0844 [ EE9040473EB1339E75E79A75FA47A825 ] C:\Windows\System32\browseui.dll
    15:56:00.0909 0844 C:\Windows\System32\browseui.dll - ok
    15:56:00.0909 0844 [ B420EB9D254C2C16CCFBB09BCC6AB113 ] C:\Windows\System32\MsCtfMonitor.dll
    15:56:00.0909 0844 C:\Windows\System32\MsCtfMonitor.dll - ok
    15:56:00.0924 0844 [ AD27B41DA928C0338E6F364BE928D3F7 ] C:\Windows\System32\msutb.dll
    15:56:00.0924 0844 C:\Windows\System32\msutb.dll - ok
    15:56:00.0924 0844 [ 5948F2B4FECE4F3301D290771F5183CF ] C:\Windows\System32\usbmon.dll
    15:56:00.0924 0844 C:\Windows\System32\usbmon.dll - ok
    15:56:00.0940 0844 [ 17AF64D727545F2804F6E6D998327E3F ] C:\Windows\SysWOW64\msvcrt.dll
    15:56:00.0940 0844 C:\Windows\SysWOW64\msvcrt.dll - ok
    15:56:00.0940 0844 [ DE0EED5106BD03CE11CDBF690285FE6C ] C:\Windows\System32\WSDMon.dll
    15:56:00.0940 0844 C:\Windows\System32\WSDMon.dll - ok
    15:56:00.0940 0844 [ 05C8C8767E29163FC251164FF6839EA5 ] C:\Windows\SysWOW64\gdi32.dll
    15:56:00.0940 0844 C:\Windows\SysWOW64\gdi32.dll - ok
    15:56:00.0955 0844 [ 6542A767BD7A90F5383605E6849FDF48 ] C:\Windows\System32\WSDApi.dll
    15:56:00.0955 0844 C:\Windows\System32\WSDApi.dll - ok
    15:56:00.0955 0844 [ D29FDB5DEDBDC1BD882164DC6DC4DD53 ] C:\Windows\SysWOW64\user32.dll
    15:56:00.0955 0844 C:\Windows\SysWOW64\user32.dll - ok
    15:56:00.0971 0844 [ 50CAA7072C171B9887215C83D52069E4 ] C:\Windows\SysWOW64\advapi32.dll
    15:56:00.0971 0844 C:\Windows\SysWOW64\advapi32.dll - ok
    15:56:00.0971 0844 [ 0ABE67004EB4C162F4456E64F90A11FD ] C:\Windows\SysWOW64\rpcrt4.dll
    15:56:00.0971 0844 C:\Windows\SysWOW64\rpcrt4.dll - ok
    15:56:00.0987 0844 [ 3D4DD2D3D59ABE3BA902778C57D2E004 ] C:\Windows\SysWOW64\secur32.dll
    15:56:00.0987 0844 C:\Windows\SysWOW64\secur32.dll - ok
    15:56:00.0987 0844 [ 65247F45AADA547397134AF688EFE471 ] C:\Windows\System32\httpapi.dll
    15:56:00.0987 0844 C:\Windows\System32\httpapi.dll - ok
    15:56:00.0987 0844 [ 35FBB6F5993C9EE70CDB72CC8AAB5D38 ] C:\Windows\System32\wdmaud.drv
    15:56:00.0987 0844 C:\Windows\System32\wdmaud.drv - ok
    15:56:01.0002 0844 [ A2D043408A2DC9CDE48CFF88FCD74662 ] C:\Windows\System32\winhttp.dll
    15:56:01.0002 0844 C:\Windows\System32\winhttp.dll - ok
    15:56:01.0002 0844 [ 1DACD1530C6E58AEAE9F6DE7DA851935 ] C:\Windows\SysWOW64\shimeng.dll
    15:56:01.0002 0844 C:\Windows\SysWOW64\shimeng.dll - ok
    15:56:01.0002 0844 [ 0C063350E73B443666B17F225BB9FEC7 ] C:\Windows\System32\cfgmgr32.dll
    15:56:01.0002 0844 C:\Windows\System32\cfgmgr32.dll - ok
    15:56:01.0018 0844 [ 7F80E2C493079E9D42CCECC715790E10 ] C:\Windows\System32\fundisc.dll
    15:56:01.0018 0844 C:\Windows\System32\fundisc.dll - ok
    15:56:01.0018 0844 [ B2E32F41E1D6500F62CAEF5EF2B17196 ] C:\Windows\System32\EhStorShell.dll
    15:56:01.0018 0844 C:\Windows\System32\EhStorShell.dll - ok
    15:56:01.0033 0844 [ 17BF3BF5296936B153FDDDA189B60E07 ] C:\Windows\System32\ksuser.dll
    15:56:01.0033 0844 C:\Windows\System32\ksuser.dll - ok
    15:56:01.0033 0844 [ 1107BD574A84367735FEC38B9BD64E6B ] C:\Windows\SysWOW64\apphelp.dll
    15:56:01.0033 0844 C:\Windows\SysWOW64\apphelp.dll - ok
    15:56:01.0033 0844 [ B8FBE5F40B09F5D20E1E5CCFEF893D62 ] C:\Windows\SysWOW64\imm32.dll
    15:56:01.0033 0844 C:\Windows\SysWOW64\imm32.dll - ok
    15:56:01.0049 0844 [ EEFDA2A090E8000740D46B09DCDBEAFF ] C:\Windows\System32\AudioSes.dll
    15:56:01.0049 0844 C:\Windows\System32\AudioSes.dll - ok
    15:56:01.0049 0844 [ EDC41901878A99EA11765F5536CCAE67 ] C:\Windows\System32\imageres.dll
    15:56:01.0049 0844 C:\Windows\System32\imageres.dll - ok
    15:56:01.0049 0844 [ 22B876778EF74ED65C8B20C2EDD2A3F6 ] C:\Windows\System32\msxml3.dll
    15:56:01.0049 0844 C:\Windows\System32\msxml3.dll - ok
    15:56:01.0065 0844 [ E3C3BD69701CE6B7B17101E4F7740534 ] C:\Windows\SysWOW64\msctf.dll
    15:56:01.0065 0844 C:\Windows\SysWOW64\msctf.dll - ok
    15:56:01.0065 0844 [ DF37346EA13082E3E1B423B54014E641 ] C:\Windows\SysWOW64\lpk.dll
    15:56:01.0065 0844 C:\Windows\SysWOW64\lpk.dll - ok
    15:56:01.0080 0844 [ 80FFF14F1757B9AF8BE9D314FC1AE88B ] C:\Windows\SysWOW64\usp10.dll
    15:56:01.0080 0844 C:\Windows\SysWOW64\usp10.dll - ok
    15:56:01.0080 0844 [ A1A408E9F8C2DB9C3B3BA21C25CCF9C3 ] C:\Windows\System32\AudioEng.dll
    15:56:01.0080 0844 C:\Windows\System32\AudioEng.dll - ok
    15:56:01.0096 0844 [ 9176285122B7B849FEC2AA1B72A8F7A8 ] C:\Windows\SysWOW64\shlwapi.dll
    15:56:01.0096 0844 C:\Windows\SysWOW64\shlwapi.dll - ok
    15:56:01.0096 0844 [ CEA1E5A0E399A8F9AAE7CA818217FC05 ] C:\Windows\System32\spool\prtprocs\x64\HPZPPLHN.DLL
    15:56:01.0096 0844 C:\Windows\System32\spool\prtprocs\x64\HPZPPLHN.DLL - ok
    15:56:01.0096 0844 [ BE3C082837866C4C291ADAF163C10EA6 ] C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6002.18305_none_5cb72f2a088b0ed3\comctl32.dll
    15:56:01.0111 0844 C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6002.18305_none_5cb72f2a088b0ed3\comctl32.dll - ok
    15:56:01.0111 0844 [ 1D2CC592516BD0544A107104461688F4 ] C:\Windows\System32\win32spl.dll
    15:56:01.0111 0844 C:\Windows\System32\win32spl.dll - ok
    15:56:01.0111 0844 [ AAF101900A23D75AE1AE00840FA6F3B8 ] C:\Windows\SysWOW64\shell32.dll
    15:56:01.0111 0844 C:\Windows\SysWOW64\shell32.dll - ok
    15:56:01.0127 0844 [ A5A54257E6FD4AF082CCB0470AD4FC98 ] C:\Windows\System32\inetpp.dll
    15:56:01.0127 0844 C:\Windows\System32\inetpp.dll - ok
    15:56:01.0127 0844 [ 961F7B0A130E1FA3976ED1E9573D4D36 ] C:\Windows\System32\netrap.dll
    15:56:01.0127 0844 C:\Windows\System32\netrap.dll - ok
    15:56:01.0143 0844 [ 19CB8D7776D3656006496C4D890F5312 ] C:\Windows\System32\printcom.dll
    15:56:01.0143 0844 C:\Windows\System32\printcom.dll - ok
    15:56:01.0143 0844 [ 0842A765D31D6E4AE50D6DF7DED61748 ] C:\Windows\System32\SensApi.dll
    15:56:01.0143 0844 C:\Windows\System32\SensApi.dll - ok
    15:56:01.0158 0844 [ 215DFBEF790637C2B9C02BB23C9887EB ] C:\Windows\System32\msacm32.dll
    15:56:01.0158 0844 C:\Windows\System32\msacm32.dll - ok
    15:56:01.0158 0844 [ 9A328CC4E4490E929E30332AC902CAC1 ] C:\Windows\System32\msacm32.drv
    15:56:01.0158 0844 C:\Windows\System32\msacm32.drv - ok
    15:56:01.0158 0844 [ 62BDB059ED8AE0C63E33BBF990941E0F ] C:\Windows\System32\midimap.dll
    15:56:01.0174 0844 C:\Windows\System32\midimap.dll - ok
    15:56:01.0174 0844 [ A45D8543AE13502984366767D7A4B4CD ] C:\Windows\System32\IconCodecService.dll
    15:56:01.0174 0844 C:\Windows\System32\IconCodecService.dll - ok
    15:56:01.0174 0844 [ 9FF47CD8A3787C8FD3CDFE40441C722E ] C:\Program Files (x86)\Google\Update\1.3.21.123\goopdate.dll
    15:56:01.0174 0844 C:\Program Files (x86)\Google\Update\1.3.21.123\goopdate.dll - ok
    15:56:01.0189 0844 [ 24DC07F75E0683A3D4AB16FA38290A18 ] C:\Windows\System32\ntprint.dll
    15:56:01.0189 0844 C:\Windows\System32\ntprint.dll - ok
    15:56:01.0189 0844 [ 9028559C132146FB75EB7ACF384B086A ] C:\Windows\SysWOW64\dhcpcsvc.dll
    15:56:01.0189 0844 C:\Windows\SysWOW64\dhcpcsvc.dll - ok
    15:56:01.0205 0844 [ 4FE8425F21B3F0F8C4B4726351D43EAA ] C:\Windows\SysWOW64\IPHLPAPI.DLL
    15:56:01.0205 0844 C:\Windows\SysWOW64\IPHLPAPI.DLL - ok
    15:56:01.0205 0844 [ 85E861D0B88DB2B54ACB0839654C09F7 ] C:\Windows\SysWOW64\dnsapi.dll
    15:56:01.0205 0844 C:\Windows\SysWOW64\dnsapi.dll - ok
    15:56:01.0221 0844 [ B304D47D5744BA20FCB99FB8B2C07B0B ] C:\Windows\SysWOW64\ws2_32.dll
    15:56:01.0221 0844 C:\Windows\SysWOW64\ws2_32.dll - ok
    15:56:01.0221 0844 [ DFB6B71CDABA9DFB49C9D2B318B97A1A ] C:\Windows\SysWOW64\dhcpcsvc6.dll
    15:56:01.0221 0844 C:\Windows\SysWOW64\dhcpcsvc6.dll - ok
    15:56:01.0236 0844 [ 98B656EAF128CD06F625B09C84D959E1 ] C:\Windows\SysWOW64\netapi32.dll
    15:56:01.0236 0844 C:\Windows\SysWOW64\netapi32.dll - ok
    15:56:01.0236 0844 [ A64AEBC6C78B4CFD7F41A7277879DF8F ] C:\Windows\SysWOW64\nsi.dll
    15:56:01.0236 0844 C:\Windows\SysWOW64\nsi.dll - ok
    15:56:01.0236 0844 [ 6B09105742C75DF80CEF21700F20F55A ] C:\Windows\SysWOW64\winnsi.dll
    15:56:01.0236 0844 C:\Windows\SysWOW64\winnsi.dll - ok
    15:56:01.0252 0844 [ B0F9073BE86C6D4EDD4EBA674251E699 ] C:\Windows\SysWOW64\crypt32.dll
    15:56:01.0252 0844 C:\Windows\SysWOW64\crypt32.dll - ok
    15:56:01.0252 0844 [ 93A1732F7F997E36A5C3893539E2FF02 ] C:\Windows\SysWOW64\psapi.dll
    15:56:01.0252 0844 C:\Windows\SysWOW64\psapi.dll - ok
    15:56:01.0267 0844 [ EE2FF9A3FC4404234BE3B7C6AA383AF8 ] C:\Windows\SysWOW64\msasn1.dll
    15:56:01.0267 0844 C:\Windows\SysWOW64\msasn1.dll - ok
    15:56:01.0267 0844 [ 665417528489096BBCB8AEA46D3DA924 ] C:\Windows\SysWOW64\userenv.dll
    15:56:01.0267 0844 C:\Windows\SysWOW64\userenv.dll - ok
    15:56:01.0267 0844 [ EB49FAA5EBBC06356FB12476438781B9 ] C:\Windows\SysWOW64\imagehlp.dll
    15:56:01.0267 0844 C:\Windows\SysWOW64\imagehlp.dll - ok
    15:56:01.0283 0844 [ 401DFFDBBBD3F07C747ED1AE2BB88106 ] C:\Windows\SysWOW64\msi.dll
    15:56:01.0283 0844 C:\Windows\SysWOW64\msi.dll - ok
    15:56:01.0283 0844 [ C1E1FE2224CA46F112C2D65A4EA3BF25 ] C:\Windows\SysWOW64\wininet.dll
    15:56:01.0283 0844 C:\Windows\SysWOW64\wininet.dll - ok
    15:56:01.0299 0844 [ 8D9C89A5FFBC56C53E1E5E84FD6F2E87 ] C:\Windows\SysWOW64\urlmon.dll
    15:56:01.0299 0844 C:\Windows\SysWOW64\urlmon.dll - ok
    15:56:01.0299 0844 [ B218342214D9BBA0F54EA12BA2E9278C ] C:\Windows\SysWOW64\oleaut32.dll
    15:56:01.0299 0844 C:\Windows\SysWOW64\oleaut32.dll - ok
    15:56:01.0314 0844 [ C5FD19CA926D149DB12968F1B7CC344E ] C:\Windows\SysWOW64\iertutil.dll
    15:56:01.0314 0844 C:\Windows\SysWOW64\iertutil.dll - ok
    15:56:01.0314 0844 [ B2E569EF26DAC9D6994A2AFF4F601B7A ] C:\Windows\SysWOW64\wintrust.dll
    15:56:01.0314 0844 C:\Windows\SysWOW64\wintrust.dll - ok
    15:56:01.0330 0844 [ 69827805A221C21450BA22F4326A2EE3 ] C:\Windows\SysWOW64\version.dll
    15:56:01.0330 0844 C:\Windows\SysWOW64\version.dll - ok
    15:56:01.0330 0844 [ D922592AB65C5D9B88B30B4510A3464E ] C:\Windows\SysWOW64\cscapi.dll
    15:56:01.0330 0844 C:\Windows\SysWOW64\cscapi.dll - ok
    15:56:01.0330 0844 [ CD08EEC61C591AF59A39F4363C567D30 ] C:\Windows\SysWOW64\ntmarta.dll
    15:56:01.0330 0844 C:\Windows\SysWOW64\ntmarta.dll - ok
    15:56:01.0345 0844 [ B8A609FB5EFB4E44FC1355B1C01C64BC ] C:\Windows\SysWOW64\Wldap32.dll
    15:56:01.0345 0844 C:\Windows\SysWOW64\Wldap32.dll - ok
    15:56:01.0345 0844 [ 4934241CD20AC87D78121352E3BA8318 ] C:\Windows\SysWOW64\dbghelp.dll
    15:56:01.0345 0844 C:\Windows\SysWOW64\dbghelp.dll - ok
    15:56:01.0361 0844 [ 453DE2958C885527E20C79A3FEFE6AF7 ] C:\Windows\SysWOW64\samlib.dll
    15:56:01.0361 0844 C:\Windows\SysWOW64\samlib.dll - ok
    15:56:01.0361 0844 [ 2EDBDB75D2F41386804B2CB53C572E75 ] C:\Windows\System32\TMM.dll
    15:56:01.0361 0844 C:\Windows\System32\TMM.dll - ok
    15:56:01.0377 0844 [ AE5A69F44C1F97EDC83237FC0B29B6FB ] C:\Program Files (x86)\Google\Update\1.3.21.123\GoogleCrashHandler.exe
    15:56:01.0377 0844 C:\Program Files (x86)\Google\Update\1.3.21.123\GoogleCrashHandler.exe - ok
    15:56:01.0377 0844 [ 96360FF15946F676E8D3630798A3F896 ] C:\Windows\System32\atiumd6a.dll
    15:56:01.0377 0844 C:\Windows\System32\atiumd6a.dll - ok
    15:56:01.0392 0844 [ 41938F2C1642459CBBA691B5DBD6395A ] C:\Program Files (x86)\Google\Update\1.3.21.123\GoogleCrashHandler64.exe
    15:56:01.0392 0844 C:\Program Files (x86)\Google\Update\1.3.21.123\GoogleCrashHandler64.exe - ok
    15:56:01.0392 0844 [ C394079EB162E812D682C73FA96AF6E4 ] C:\Windows\SysWOW64\clbcatq.dll
    15:56:01.0392 0844 C:\Windows\SysWOW64\clbcatq.dll - ok
    15:56:01.0392 0844 [ 73FD66B14D3C4252F7A524B8836A4359 ] C:\Windows\SysWOW64\mstask.dll
    15:56:01.0392 0844 C:\Windows\SysWOW64\mstask.dll - ok
    15:56:01.0408 0844 [ 4AA2A0E26CEF1A803741253DCF9A1503 ] C:\Windows\SysWOW64\comdlg32.dll
    15:56:01.0408 0844 C:\Windows\SysWOW64\comdlg32.dll - ok
    15:56:01.0408 0844 [ 7F0F1D4B0D847696F8E309423D227DCE ] C:\Windows\SysWOW64\ntdsapi.dll
    15:56:01.0408 0844 C:\Windows\SysWOW64\ntdsapi.dll - ok
    15:56:01.0423 0844 [ 4BA689B12B0B942DA351978D9FEF76FC ] C:\Windows\System32\atitmp64.dll
    15:56:01.0423 0844 C:\Windows\System32\atitmp64.dll - ok
    15:56:01.0423 0844 [ 75C34D22D3E7D1D0238B62C55F604BFC ] C:\Windows\System32\cscapi.dll
    15:56:01.0423 0844 C:\Windows\System32\cscapi.dll - ok
    15:56:01.0439 0844 [ 900B9B25C345AAA4F90913BA9AECABF4 ] C:\Windows\System32\dbghelp.dll
    15:56:01.0439 0844 C:\Windows\System32\dbghelp.dll - ok
    15:56:01.0439 0844 [ 2BFD160AB9531CD20EDC9639EB0CD711 ] C:\Windows\System32\clusapi.dll
    15:56:01.0439 0844 C:\Windows\System32\clusapi.dll - ok
    15:56:01.0455 0844 [ DE3C091D7E05093B7ABA93DA5952F0FD ] C:\Windows\System32\netmsg.dll
    15:56:01.0455 0844 C:\Windows\System32\netmsg.dll - ok
    15:56:01.0455 0844 [ 476616A17AE5F69CE583D8E1E2A7B134 ] C:\Windows\System32\sscore.dll
    15:56:01.0455 0844 C:\Windows\System32\sscore.dll - ok
    15:56:01.0455 0844 [ 45C5EAB112D3481A25485B0CF7E3597D ] C:\Windows\System32\activeds.dll
    15:56:01.0455 0844 C:\Windows\System32\activeds.dll - ok
    15:56:01.0470 0844 [ 80B8B7FF3AADD2156EE969C048644CAF ] C:\Windows\System32\adsldpc.dll
    15:56:01.0470 0844 C:\Windows\System32\adsldpc.dll - ok
    15:56:01.0470 0844 [ 77C276A0E431203EE56E52600A2575EA ] C:\Windows\System32\credui.dll
    15:56:01.0470 0844 C:\Windows\System32\credui.dll - ok
    15:56:01.0486 0844 [ D55A487295CC38D9E533C5AD87C1EB69 ] C:\Windows\System32\resutils.dll
    15:56:01.0486 0844 C:\Windows\System32\resutils.dll - ok
    15:56:01.0486 0844 [ 581D88B25C4D4121824FED2CA38E562F ] C:\Program Files\SUPERAntiSpyware\SASCore64.exe
    15:56:01.0486 0844 C:\Program Files\SUPERAntiSpyware\SASCore64.exe - ok
    15:56:01.0501 0844 [ F2060A34C8A75BC24A9222EB4F8C07BD ] C:\Program Files (x86)\Bonjour\mDNSResponder.exe
    15:56:01.0501 0844 C:\Program Files (x86)\Bonjour\mDNSResponder.exe - ok
    15:56:01.0501 0844 [ 9A7F4B2EDACD11444D048AA19CBB26AF ] C:\Windows\SysWOW64\powrprof.dll
    15:56:01.0501 0844 C:\Windows\SysWOW64\powrprof.dll - ok
    15:56:01.0501 0844 [ 8C7FA71CB1EBCD3EDE8958D27B1BF0B4 ] C:\Windows\SysWOW64\drivers\int15_64.sys
    15:56:01.0501 0844 C:\Windows\SysWOW64\drivers\int15_64.sys - ok
    15:56:01.0517 0844 [ E14170AEA125119B98FA2BDE3FF4F462 ] C:\Windows\SysWOW64\rsaenh.dll
    15:56:01.0517 0844 C:\Windows\SysWOW64\rsaenh.dll - ok
    15:56:01.0517 0844 [ 793FF718477345CD5D232C50BED1E452 ] C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe
    15:56:01.0517 0844 C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe - ok
    15:56:01.0533 0844 [ 2E10EB73ED1E094E9A113D0798058B88 ] C:\Windows\System32\vssapi.dll
    15:56:01.0533 0844 C:\Windows\System32\vssapi.dll - ok
    15:56:01.0533 0844 [ D7EB32B51B7472FBEE86BFA47B3C4BC5 ] C:\Program Files (x86)\Common Files\LightScribe\LSSProxy.dll
    15:56:01.0533 0844 C:\Program Files (x86)\Common Files\LightScribe\LSSProxy.dll - ok
    15:56:01.0548 0844 [ 290A15C136531024982698A124F299FB ] C:\Windows\System32\taskschd.dll
    15:56:01.0548 0844 C:\Windows\System32\taskschd.dll - ok
    15:56:01.0548 0844 [ A6BCDC241B6578C7DB57B5973B99FE7E ] C:\Windows\System32\wdscore.dll
    15:56:01.0548 0844 C:\Windows\System32\wdscore.dll - ok
    15:56:01.0548 0844 [ 0EE266A90D43E82A07CF33755D6DE1CC ] C:\Program Files (x86)\Common Files\LightScribe\LSLog.dll
    15:56:01.0548 0844 C:\Program Files (x86)\Common Files\LightScribe\LSLog.dll - ok
    15:56:01.0564 0844 [ 22CFAEB9172F5F198048401485CD0571 ] C:\Windows\SysWOW64\WSHTCPIP.DLL
    15:56:01.0564 0844 C:\Windows\SysWOW64\WSHTCPIP.DLL - ok
    15:56:01.0564 0844 [ E8AECB69B2057EB308BE15A77AF2489E ] C:\Windows\System32\vsstrace.dll
    15:56:01.0564 0844 C:\Windows\System32\vsstrace.dll - ok
    15:56:01.0579 0844 [ 9E80FF0752E365F97FD2D1D68C2AFDA1 ] C:\Windows\SysWOW64\wship6.dll
    15:56:01.0579 0844 C:\Windows\SysWOW64\wship6.dll - ok
    15:56:01.0579 0844 [ C9564CF4976E7E96B4052737AA2492B4 ] C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcr80.dll
    15:56:01.0579 0844 C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcr80.dll - ok
    15:56:01.0595 0844 [ 05C3B38DB95BA5585817A4F898EE5581 ] C:\Windows\SysWOW64\wshqos.dll
    15:56:01.0595 0844 C:\Windows\SysWOW64\wshqos.dll - ok
    15:56:01.0595 0844 [ 0B3595A4FF0B36D68E5FC67FD7D70FDC ] C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcp80.dll
    15:56:01.0595 0844 C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcp80.dll - ok
    15:56:01.0611 0844 [ C2156710CD27EDCEBB24239681F22AAC ] C:\Windows\System32\cryptnet.dll
    15:56:01.0611 0844 C:\Windows\System32\cryptnet.dll - ok
    15:56:01.0611 0844 [ 351533ACC2A069B94E80BBFC177E8FDF ] C:\Windows\System32\drivers\npf.sys
    15:56:01.0611 0844 C:\Windows\System32\drivers\npf.sys - ok
    15:56:01.0611 0844 [ 5E1D96076745F73C56B1307FEE6BEDFE ] C:\Windows\System32\ncsi.dll
    15:56:01.0611 0844 C:\Windows\System32\ncsi.dll - ok
    15:56:01.0626 0844 [ FC62A635063B762E1C3C60EA77279378 ] C:\Windows\SysWOW64\NapiNSP.dll
    15:56:01.0626 0844 C:\Windows\SysWOW64\NapiNSP.dll - ok
    15:56:01.0626 0844 [ 690D41DF1D555F96D4898A0F54EBA065 ] C:\Windows\SysWOW64\pnrpnsp.dll
    15:56:01.0626 0844 C:\Windows\SysWOW64\pnrpnsp.dll - ok
    15:56:01.0642 0844 [ 58865916F53592A61549B04941BFD80D ] C:\Windows\System32\drivers\PEAuth.sys
    15:56:01.0642 0844 C:\Windows\System32\drivers\PEAuth.sys - ok
    15:56:01.0642 0844 [ 8617350C9B590B63E620881092751BCB ] C:\Windows\SysWOW64\mswsock.dll
    15:56:01.0642 0844 C:\Windows\SysWOW64\mswsock.dll - ok
    15:56:01.0657 0844 [ 467FBA22AD764B6AB85BE58C25EEF15D ] C:\Windows\System32\ssdpapi.dll
    15:56:01.0657 0844 C:\Windows\System32\ssdpapi.dll - ok
    15:56:01.0657 0844 [ 3EA8A16169C26AFBEB544E0E48421186 ] C:\Windows\System32\drivers\secdrv.sys
    15:56:01.0657 0844 C:\Windows\System32\drivers\secdrv.sys - ok
    15:56:01.0673 0844 [ 89A5560671C2D8B4A4B51F3E1AA069D8 ] C:\Windows\System32\IPSECSVC.DLL
    15:56:01.0673 0844 C:\Windows\System32\IPSECSVC.DLL - ok
    15:56:01.0673 0844 [ F07AF60B152221472FBDB2FECEC4896D ] C:\Program Files (x86)\Skype\Updater\Updater.exe
    15:56:01.0673 0844 C:\Program Files (x86)\Skype\Updater\Updater.exe - ok
    15:56:01.0673 0844 [ F42483814FC39170B3982A184EC5AAA2 ] C:\Windows\SysWOW64\wtsapi32.dll
    15:56:01.0673 0844 C:\Windows\SysWOW64\wtsapi32.dll - ok
    15:56:01.0689 0844 [ C7E72A4071EE0200E3C075DACFB2B334 ] C:\Windows\System32\drivers\tcpipreg.sys
    15:56:01.0689 0844 C:\Windows\System32\drivers\tcpipreg.sys - ok
    15:56:01.0689 0844 [ 14DC30962660BA05F1F54EB11AA5A2B4 ] C:\Windows\System32\FwRemoteSvr.dll
    15:56:01.0689 0844 C:\Windows\System32\FwRemoteSvr.dll - ok
    15:56:01.0704 0844 [ 6DE37F4DE19D4EFD9C48C43ADDBC949A ] C:\Windows\System32\swprv.dll
    15:56:01.0704 0844 C:\Windows\System32\swprv.dll - ok
    15:56:01.0704 0844 [ 4E1CC9DB8B680795F17F20FC6C51974B ] C:\Windows\System32\icaapi.dll
    15:56:01.0704 0844 C:\Windows\System32\icaapi.dll - ok
    15:56:01.0720 0844 [ 3E5EF481EAA9695181B6C02A2B88983E ] C:\Windows\System32\wiatrace.dll
    15:56:01.0720 0844 C:\Windows\System32\wiatrace.dll - ok
    15:56:01.0720 0844 [ E9DBC876EC1C78A74A55D8D121016344 ] C:\Windows\System32\wbemcomn.dll
    15:56:01.0720 0844 C:\Windows\System32\wbemcomn.dll - ok
    15:56:01.0735 0844 [ 8E10B36901325C1ABE28E71FB8E437D9 ] C:\Windows\System32\wsdchngr.dll
    15:56:01.0735 0844 C:\Windows\System32\wsdchngr.dll - ok
    15:56:01.0735 0844 [ 7E47C328FC4768CB8BEAFBCFAFA70362 ] C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
    15:56:01.0735 0844 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE - ok
    15:56:01.0751 0844 [ 93812FDC01AA864195816CD814445F95 ] C:\Program Files\Common Files\Microsoft Shared\Windows Live\SQMAPI.DLL
    15:56:01.0751 0844 C:\Program Files\Common Files\Microsoft Shared\Windows Live\SQMAPI.DLL - ok
    15:56:01.0751 0844 [ B25321F9C037BA9AE1DD68B36913ACAC ] C:\Windows\System32\wbem\WinMgmtR.dll
    15:56:01.0751 0844 C:\Windows\System32\wbem\WinMgmtR.dll - ok
    15:56:01.0751 0844 [ 589CDC23CCDC419C36DDD200BEB00944 ] C:\Windows\System32\wer.dll
    15:56:01.0751 0844 C:\Windows\System32\wer.dll - ok
    15:56:01.0767 0844 [ A2AC37A1EEF83BD9E912B0EFCBEA06BD ] C:\Windows\System32\SearchIndexer.exe
    15:56:01.0767 0844 C:\Windows\System32\SearchIndexer.exe - ok
    15:56:01.0767 0844 [ 6FF25F418D373097C199E3ACCFA06E78 ] C:\Windows\System32\tquery.dll
    15:56:01.0767 0844 C:\Windows\System32\tquery.dll - ok
    15:56:01.0782 0844 [ 898804F8043BA721AC2E9F45AA55558B ] C:\Windows\System32\PortableDeviceApi.dll
    15:56:01.0782 0844 C:\Windows\System32\PortableDeviceApi.dll - ok
    15:56:01.0782 0844 [ 63DCDFFCBB7E41540F4D64CCED66536B ] C:\ProgramData\Microsoft\IdentityCRL\production\ppcrlconfig600.dll
    15:56:01.0782 0844 C:\ProgramData\Microsoft\IdentityCRL\production\ppcrlconfig600.dll - ok
    15:56:01.0782 0844 [ A0B762992A52FA8A657A97C34BEEA807 ] C:\Windows\System32\mssrch.dll
    15:56:01.0782 0844 C:\Windows\System32\mssrch.dll - ok
    15:56:01.0798 0844 [ 70A176BF2ED362862944C371838262F8 ] C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
    15:56:01.0798 0844 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE - ok
    15:56:01.0798 0844 [ BA019C21DAC7CAC193C93E86B9F2F3CB ] C:\Windows\System32\wsock32.dll
    15:56:01.0798 0844 C:\Windows\System32\wsock32.dll - ok
    15:56:01.0813 0844 [ 41F84775AE00035887A98EE774914939 ] C:\Windows\System32\PortableDeviceConnectApi.dll
    15:56:01.0813 0844 C:\Windows\System32\PortableDeviceConnectApi.dll - ok
    15:56:01.0813 0844 [ DDA4CAF29D8C0A297F886BFE561E6659 ] C:\Windows\System32\drivers\WUDFRd.sys
    15:56:01.0813 0844 C:\Windows\System32\drivers\WUDFRd.sys - ok
    15:56:01.0829 0844 [ 21F36392598072A73C7576CD8AFD6E70 ] C:\Windows\System32\wbem\wbemprox.dll
    15:56:01.0829 0844 C:\Windows\System32\wbem\wbemprox.dll - ok
    15:56:01.0829 0844 [ D642A49B5E19B3F5B0B4647FAE27817E ] C:\Windows\System32\wbem\wbemcore.dll
    15:56:01.0829 0844 C:\Windows\System32\wbem\wbemcore.dll - ok
    15:56:01.0845 0844 [ 37B697901FE364144D634128369098FF ] C:\Windows\System32\wbem\esscli.dll
    15:56:01.0845 0844 C:\Windows\System32\wbem\esscli.dll - ok
    15:56:01.0845 0844 [ 54BEFBE0B681A7254FD74E1E5288F7F6 ] C:\Windows\System32\msidle.dll
    15:56:01.0845 0844 C:\Windows\System32\msidle.dll - ok
    15:56:01.0845 0844 [ 11F705A35F4CB2B4D6FA51606A9B8C54 ] C:\Windows\System32\wbem\fastprox.dll
    15:56:01.0845 0844 C:\Windows\System32\wbem\fastprox.dll - ok
    15:56:01.0860 0844 [ D89585872F9C5130226CB42A0C42C220 ] C:\Windows\System32\dssenh.dll
    15:56:01.0860 0844 C:\Windows\System32\dssenh.dll - ok
    15:56:01.0860 0844 [ 8F8380E73A04BCB85340B1A3653FB8A5 ] C:\Windows\System32\wbem\wbemsvc.dll
    15:56:01.0860 0844 C:\Windows\System32\wbem\wbemsvc.dll - ok
    15:56:01.0876 0844 [ 7846D0136CC2B264926A73047BA7688A ] C:\Windows\System32\netprofm.dll
    15:56:01.0876 0844 C:\Windows\System32\netprofm.dll - ok
    15:56:01.0876 0844 [ 1894F161AF417784AAECFAFE77DE940E ] C:\Windows\System32\sqmapi.dll
    15:56:01.0876 0844 C:\Windows\System32\sqmapi.dll - ok
    15:56:01.0891 0844 [ 5103B1E343F2D5FBDFA8D0318ABC59C4 ] C:\Windows\System32\wbem\repdrvfs.dll
    15:56:01.0891 0844 C:\Windows\System32\wbem\repdrvfs.dll - ok
    15:56:01.0891 0844 [ 1AE49D81622BE6364194F70045F07194 ] C:\Windows\System32\wbem\wmiutils.dll
    15:56:01.0891 0844 C:\Windows\System32\wbem\wmiutils.dll - ok
    15:56:01.0907 0844 [ C1AE82B8F60ADB630C00DCE48E571CDD ] C:\Windows\System32\netcfgx.dll
    15:56:01.0907 0844 C:\Windows\System32\netcfgx.dll - ok
    15:56:01.0907 0844 [ A5D8AD128FBB763F147F29F3D6A1C084 ] C:\Windows\System32\npmproxy.dll
    15:56:01.0907 0844 C:\Windows\System32\npmproxy.dll - ok
    15:56:01.0923 0844 [ 1B7A24F2BFA1BB09CC67D4688B411039 ] C:\Windows\System32\pcadm.dll
    15:56:01.0923 0844 C:\Windows\System32\pcadm.dll - ok
    15:56:01.0923 0844 [ 7371D6B52B85190971CB3F35FA0CED05 ] C:\Windows\System32\diagperf.dll
    15:56:01.0923 0844 C:\Windows\System32\diagperf.dll - ok
    15:56:01.0923 0844 [ 27F479DFA5E1BD942E056888DCF5C270 ] C:\Windows\System32\Query.dll
    15:56:01.0923 0844 C:\Windows\System32\Query.dll - ok
    15:56:01.0938 0844 [ D23E5184266747DDCE9D0C6581D916B3 ] C:\Windows\System32\hnetcfg.dll
    15:56:01.0938 0844 C:\Windows\System32\hnetcfg.dll - ok
    15:56:01.0938 0844 [ E946553F786521C073AABC7CD0714807 ] C:\Windows\System32\wbem\WmiPrvSD.dll
    15:56:01.0938 0844 C:\Windows\System32\wbem\WmiPrvSD.dll - ok
    15:56:01.0954 0844 [ 595BAC1B188813CEAE88A599738E60F8 ] C:\Windows\System32\mssprxy.dll
    15:56:01.0954 0844 C:\Windows\System32\mssprxy.dll - ok
    15:56:01.0954 0844 [ 0FD5754319A388FBD2E13C21E806AC42 ] C:\Windows\System32\pnpts.dll
    15:56:01.0954 0844 C:\Windows\System32\pnpts.dll - ok
    15:56:01.0969 0844 [ 8D94313E7A7786997B4C362B7CCB5D29 ] C:\Windows\System32\wbem\wbemess.dll
    15:56:01.0969 0844 C:\Windows\System32\wbem\wbemess.dll - ok
    15:56:01.0969 0844 [ 8ABFE00F213F2571498F1B8FD7939A98 ] C:\Windows\System32\WUDFHost.exe
    15:56:01.0969 0844 C:\Windows\System32\WUDFHost.exe - ok
    15:56:01.0985 0844 [ AA6FAA30D3D0D4424DBA3D74D1CA1E14 ] C:\Windows\System32\netshell.dll
    15:56:01.0985 0844 C:\Windows\System32\netshell.dll - ok
    15:56:01.0985 0844 [ CDBAE31A2B6C8819DDBC5CF8432E3B3E ] C:\Windows\System32\en-US\tquery.dll.mui
    15:56:01.0985 0844 C:\Windows\System32\en-US\tquery.dll.mui - ok
    15:56:01.0985 0844 [ E21FFFE678FF09BAA6BF5F76BD8805C6 ] C:\Windows\System32\esent.dll
    15:56:01.0985 0844 C:\Windows\System32\esent.dll - ok
    15:56:02.0001 0844 [ 39872A309B2DB96738AF44402F7BD43C ] C:\Windows\System32\rasdlg.dll
    15:56:02.0001 0844 C:\Windows\System32\rasdlg.dll - ok
    15:56:02.0001 0844 [ F77B49A32331FA80F11C86877A6700DB ] C:\Windows\System32\mprapi.dll
    15:56:02.0001 0844 C:\Windows\System32\mprapi.dll - ok
    15:56:02.0016 0844 [ A44E61A183FD6D65C655E31A330ECA7E ] C:\Windows\System32\msscb.dll
    15:56:02.0016 0844 C:\Windows\System32\msscb.dll - ok
    15:56:02.0016 0844 [ 5398BD3BA9735ECF658487A2826C0885 ] C:\Windows\System32\runonce.exe
    15:56:02.0016 0844 C:\Windows\System32\runonce.exe - ok
    15:56:02.0032 0844 [ 25AE683DCB4AE7E6F1B193A0CB9DB35F ] C:\Windows\System32\WUDFx.dll
    15:56:02.0032 0844 C:\Windows\System32\WUDFx.dll - ok
    15:56:02.0032 0844 [ A2F0CFDCEA42C4CE7FEF5694A35647D8 ] C:\Windows\System32\drivers\UMDF\WpdFs.dll
    15:56:02.0032 0844 C:\Windows\System32\drivers\UMDF\WpdFs.dll - ok
    15:56:02.0047 0844 [ D4F19174AE170369E44E4F9AEFE71111 ] C:\Windows\System32\WMVCORE.DLL
    15:56:02.0047 0844 C:\Windows\System32\WMVCORE.DLL - ok
    15:56:02.0047 0844 [ 8812E3739BB8AB48D7A4867522D50B6B ] C:\Windows\System32\WMASF.DLL
    15:56:02.0047 0844 C:\Windows\System32\WMASF.DLL - ok
    15:56:02.0047 0844 [ 9A6A653ADF28D9D69670B48F535E6B90 ] C:\Windows\SysWOW64\runonce.exe
    15:56:02.0047 0844 C:\Windows\SysWOW64\runonce.exe - ok
    15:56:02.0063 0844 [ CB93619E613950A9DF4085BD23B22D57 ] C:\Windows\System32\PortableDeviceClassExtension.dll
    15:56:02.0063 0844 C:\Windows\System32\PortableDeviceClassExtension.dll - ok
    15:56:02.0063 0844 [ A0A92B5F2926C52A3FF415E928BC9301 ] C:\Windows\System32\PortableDeviceTypes.dll
    15:56:02.0063 0844 C:\Windows\System32\PortableDeviceTypes.dll - ok
    15:56:02.0079 0844 [ 88B630F6AEB5A11F6AD064930B38C2C0 ] C:\Windows\SysWOW64\uxtheme.dll
    15:56:02.0079 0844 C:\Windows\SysWOW64\uxtheme.dll - ok
    15:56:02.0079 0844 [ B86856774D194C43D8BE0E9900DD76F3 ] C:\Windows\System32\PortableDeviceWiaCompat.dll
    15:56:02.0079 0844 C:\Windows\System32\PortableDeviceWiaCompat.dll - ok
    15:56:02.0094 0844 [ 551F51B66E5EA87A38D8197EB3BDB57A ] C:\Windows\SysWOW64\setupapi.dll
    15:56:02.0094 0844 C:\Windows\SysWOW64\setupapi.dll - ok
    15:56:02.0094 0844 [ 74F26FC01B180D4A99A168ED69C30A53 ] C:\Windows\SysWOW64\cmd.exe
    15:56:02.0094 0844 C:\Windows\SysWOW64\cmd.exe - ok
    15:56:02.0110 0844 [ A77267CDDE66443FB779CEE39CEE2141 ] C:\Windows\System32\QAGENT.DLL
    15:56:02.0110 0844 C:\Windows\System32\QAGENT.DLL - ok
    15:56:02.0110 0844 [ 7DACD94118E2D8B6D72F47ADEB0367BF ] C:\Windows\SysWOW64\propsys.dll
    15:56:02.0110 0844 C:\Windows\SysWOW64\propsys.dll - ok
    15:56:02.0125 0844 [ ED99B5F4B9DFE4BECA711F3B0340F931 ] C:\Windows\System32\QUTIL.DLL
    15:56:02.0125 0844 C:\Windows\System32\QUTIL.DLL - ok
    15:56:02.0125 0844 [ B3799348A888DD5B8CB9651C90ACCF12 ] C:\Windows\SysWOW64\ieframe.dll
    15:56:02.0125 0844 C:\Windows\SysWOW64\ieframe.dll - ok
    15:56:02.0141 0844 [ 72A73B43C20902760022FBC91B3EC948 ] C:\Windows\System32\cmd.exe
    15:56:02.0141 0844 C:\Windows\System32\cmd.exe - ok
    15:56:02.0141 0844 [ 167AC31450C0C53A01FA1491E94D7678 ] C:\Windows\SysWOW64\shdocvw.dll
    15:56:02.0141 0844 C:\Windows\SysWOW64\shdocvw.dll - ok
    15:56:02.0157 0844 [ EBC984F0CE40E0DAF0454D806EC2A7EC ] C:\Users\FamilyLove\AppData\Local\Temp\5A6965D8-E333-41A0-974C-9CE0962D96F4.exe
    15:56:02.0157 0844 C:\Users\FamilyLove\AppData\Local\Temp\5A6965D8-E333-41A0-974C-9CE0962D96F4.exe - ok
    15:56:02.0157 0844 [ 5CAAE5333EF36DB4A8D294418AB37E80 ] C:\Windows\SysWOW64\p2pcollab.dll
    15:56:02.0157 0844 C:\Windows\SysWOW64\p2pcollab.dll - ok
    15:56:02.0172 0844 [ 188CC19108B0EBD6332D6628D4EDE469 ] C:\Windows\SysWOW64\ncrypt.dll
    15:56:02.0172 0844 C:\Windows\SysWOW64\ncrypt.dll - ok
    15:56:02.0172 0844 [ 4ACF748A8E576761E4C610ACAB67B1BC ] C:\Windows\SysWOW64\bcrypt.dll
    15:56:02.0172 0844 C:\Windows\SysWOW64\bcrypt.dll - ok
    15:56:02.0188 0844 [ 48DC4268BAA33F8770F498F96100E301 ] C:\Windows\System32\pautoenr.dll
    15:56:02.0188 0844 C:\Windows\System32\pautoenr.dll - ok
    15:56:02.0188 0844 [ C88208718545410FA0F11E06F6E7F01B ] C:\Windows\System32\certcli.dll
    15:56:02.0188 0844 C:\Windows\System32\certcli.dll - ok
    15:56:02.0203 0844 [ 5AF34B08C676F16A070A7D7EF2AB4C3E ] C:\Windows\System32\CertEnroll.dll
    15:56:02.0203 0844 C:\Windows\System32\CertEnroll.dll - ok
    15:56:02.0203 0844 [ 0F420E81062757EA8363CBACD4D40D6D ] C:\Windows\SysWOW64\gpapi.dll
    15:56:02.0203 0844 C:\Windows\SysWOW64\gpapi.dll - ok
    15:56:02.0219 0844 [ C6DF7A87063D006ECF1FD8156CB6DE3F ] C:\Windows\SysWOW64\SLC.dll
    15:56:02.0219 0844 C:\Windows\SysWOW64\SLC.dll - ok
    15:56:02.0219 0844 [ 09469B8EDD2755143FDA06867AAD7E73 ] C:\Windows\SysWOW64\cryptnet.dll
    15:56:02.0219 0844 C:\Windows\SysWOW64\cryptnet.dll - ok
    15:56:02.0235 0844 [ EC760B0B76A4353DE49D66520EB2141F ] C:\Windows\SysWOW64\SensApi.dll
    15:56:02.0235 0844 C:\Windows\SysWOW64\SensApi.dll - ok
    15:56:02.0235 0844 [ 6836D001FC733F205ACB80A7986CB6C9 ] C:\Windows\SysWOW64\WindowsCodecs.dll
    15:56:02.0235 0844 C:\Windows\SysWOW64\WindowsCodecs.dll - ok
    15:56:02.0235 0844 [ 14E4470BF8ACA69A85D741BA99F75F96 ] C:\Windows\SysWOW64\EhStorShell.dll
    15:56:02.0235 0844 C:\Windows\SysWOW64\EhStorShell.dll - ok
    15:56:02.0250 0844 [ 111C47816F39A91EAAA18DA0A54E8E63 ] C:\Windows\SysWOW64\imageres.dll
    15:56:02.0250 0844 C:\Windows\SysWOW64\imageres.dll - ok
    15:56:02.0250 0844 [ F4E1AA5D59C849A4AB47E895DC76B9C8 ] C:\Windows\SysWOW64\sfc.dll
    15:56:02.0250 0844 C:\Windows\SysWOW64\sfc.dll - ok
    15:56:02.0266 0844 [ 12BCF4DAD8E5A1B3D5FA7AB4A79DA105 ] C:\Windows\SysWOW64\sfc_os.dll
    15:56:02.0266 0844 C:\Windows\SysWOW64\sfc_os.dll - ok
    15:56:02.0266 0844 [ A99871BA522CB2539AE275AC18CACC8F ] C:\Windows\SysWOW64\cabinet.dll
    15:56:02.0266 0844 C:\Windows\SysWOW64\cabinet.dll - ok
    15:56:02.0281 0844 [ 1F94EA31C9543B855F53BDAC7792DA4E ] C:\Windows\SysWOW64\mpr.dll
    15:56:02.0281 0844 C:\Windows\SysWOW64\mpr.dll - ok
    15:56:02.0281 0844 [ DBD02E3E6F061EBBBF9B99A9D7CBA30B ] C:\Windows\SysWOW64\winhttp.dll
    15:56:02.0281 0844 C:\Windows\SysWOW64\winhttp.dll - ok
    15:56:02.0297 0844 [ DBBB05E1AD745B842BA790A3835637C8 ] C:\Windows\System32\timedate.cpl
    15:56:02.0297 0844 C:\Windows\System32\timedate.cpl - ok
    15:56:02.0297 0844 [ 27CEEAA8E6149FC6F2F9EE5E0BDAC5A5 ] C:\Windows\System32\actxprxy.dll
    15:56:02.0297 0844 C:\Windows\System32\actxprxy.dll - ok
    15:56:02.0297 0844 [ 5C45623C1A5EC70BCCB3090DB21BF075 ] C:\Windows\System32\msshsq.dll
    15:56:02.0297 0844 C:\Windows\System32\msshsq.dll - ok
    15:56:02.0313 0844 [ 1E642FBD902FB74778F57A76F8D620F5 ] C:\Windows\System32\NaturalLanguage6.dll
    15:56:02.0313 0844 C:\Windows\System32\NaturalLanguage6.dll - ok
    15:56:02.0313 0844 [ 90FABA79E004399E5FC69BBBD016CAF9 ] C:\Windows\System32\NlsData0009.dll
    15:56:02.0313 0844 C:\Windows\System32\NlsData0009.dll - ok
    15:56:02.0328 0844 [ C8E7E069468BC0DEAFE69375421FE839 ] C:\Windows\System32\NlsLexicons0009.dll
    15:56:02.0328 0844 C:\Windows\System32\NlsLexicons0009.dll - ok
    15:56:02.0328 0844 [ D1A84F7D4CAFCFE2A32149FF418056E5 ] C:\Windows\SysWOW64\nlaapi.dll
    15:56:02.0328 0844 C:\Windows\SysWOW64\nlaapi.dll - ok
    15:56:02.0344 0844 [ C411C80F90D6732380352B98B37BBD53 ] C:\Windows\SysWOW64\winrnr.dll
    15:56:02.0344 0844 C:\Windows\SysWOW64\winrnr.dll - ok
    15:56:02.0344 0844 [ 37BC9E0E4B3657B54037777135569D1E ] C:\Program Files (x86)\Bonjour\mdnsNSP.dll
    15:56:02.0344 0844 C:\Program Files (x86)\Bonjour\mdnsNSP.dll - ok
    15:56:02.0359 0844 [ 8BDE3074EE7BB92030448419E33635C7 ] C:\Windows\System32\linkinfo.dll
    15:56:02.0359 0844 C:\Windows\System32\linkinfo.dll - ok
    15:56:02.0359 0844 [ A7D525E5C0D91C8C1D84C6BCD25AD77D ] C:\Windows\SysWOW64\rasadhlp.dll
    15:56:02.0359 0844 C:\Windows\SysWOW64\rasadhlp.dll - ok
    15:56:02.0375 0844 [ E572915DB4DAD7F062D99334D9F10BFF ] C:\Windows\System32\networkexplorer.dll
    15:56:02.0375 0844 C:\Windows\System32\networkexplorer.dll - ok
    15:56:02.0375 0844 [ 76EBE3424801C896CA071EFE6CF110E3 ] C:\Windows\System32\ieframe.dll
    15:56:02.0375 0844 C:\Windows\System32\ieframe.dll - ok
    15:56:02.0375 0844 [ 48DD40677817CE1053C2315F5A87E0D3 ] C:\Program Files\Windows Defender\MSASCui.exe
    15:56:02.0375 0844 C:\Program Files\Windows Defender\MSASCui.exe - ok
    15:56:02.0391 0844 [ 3BCE40C17DAA88ADF19925C6BBEBC6B4 ] C:\Windows\RAVCpl64.exe
    15:56:02.0391 0844 C:\Windows\RAVCpl64.exe - ok
    15:56:02.0391 0844 [ ECFA1AC9D63D42B9B40AF8B5798513E8 ] C:\Program Files\Windows Defender\MsMpRes.dll
    15:56:02.0391 0844 C:\Program Files\Windows Defender\MsMpRes.dll - ok
    15:56:02.0406 0844 [ 079C4723655133D5F74A93E232A2E8A8 ] C:\Windows\System32\ntshrui.dll
    15:56:02.0406 0844 C:\Windows\System32\ntshrui.dll - ok
    15:56:02.0406 0844 [ 65437DAD4F238EA9549408A783002222 ] C:\Windows\ehome\ehtray.exe
    15:56:02.0406 0844 C:\Windows\ehome\ehtray.exe - ok
    15:56:02.0422 0844 [ E616A6A6E91B0A86F2F6217CDE835FFE ] C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
    15:56:02.0422 0844 C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe - ok
    15:56:02.0422 0844 [ C583E2A7C0E231DBD1D15BF5DFC8D303 ] C:\Program Files\Windows Defender\MpRtMon.dll
    15:56:02.0422 0844 C:\Program Files\Windows Defender\MpRtMon.dll - ok
    15:56:02.0437 0844 [ F146E2BA475893DD77B2370DC1211FC6 ] C:\Windows\System32\drivers\99558424.sys
    15:56:02.0437 0844 C:\Windows\System32\drivers\99558424.sys - ok
    15:56:02.0437 0844 [ 61C090AFC693640742904A4FA2409BBC ] C:\Windows\System32\ExplorerFrame.dll
    15:56:02.0437 0844 C:\Windows\System32\ExplorerFrame.dll - ok
    15:56:02.0453 0844 [ E08935E54CEE225BEB3CC220CBCC734A ] C:\Windows\System32\AUDIOKSE.dll
    15:56:02.0453 0844 C:\Windows\System32\AUDIOKSE.dll - ok
    15:56:02.0453 0844 [ 82955BAF6EE545110F7CE768AECA4144 ] C:\Windows\System32\thumbcache.dll
    15:56:02.0453 0844 C:\Windows\System32\thumbcache.dll - ok
    15:56:02.0453 0844 [ FA752544EE1EE59E8AD938CBB43CAC93 ] C:\PROGRA~2\WI1F86~1\MESSEN~1\msgslang.dll
    15:56:02.0453 0844 C:\PROGRA~2\WI1F86~1\MESSEN~1\msgslang.dll - ok
    15:56:02.0469 0844 [ 554BD984C71129A8BD4450BE8170695C ] C:\Windows\System32\msftedit.dll
    15:56:02.0469 0844 C:\Windows\System32\msftedit.dll - ok
    15:56:02.0469 0844 [ 484ACF6AF85A29AC52F3CF054DFDE9D3 ] C:\Windows\Installer\{91120000-0014-0000-0000-0000000FF1CE}\wordicon.exe
    15:56:02.0469 0844 C:\Windows\Installer\{91120000-0014-0000-0000-0000000FF1CE}\wordicon.exe - ok
    15:56:02.0484 0844 [ EA47AF4FBF17580D093C0C36C4E49921 ] C:\Windows\System32\dsound.dll
    15:56:02.0484 0844 C:\Windows\System32\dsound.dll - ok
    15:56:02.0484 0844 [ 22EB4EA6A6525E01947CFC9522412D3B ] C:\Windows\System32\oledlg.dll
    15:56:02.0484 0844 C:\Windows\System32\oledlg.dll - ok
    15:56:02.0500 0844 [ 6C12BD722FFC94584348DD34F4059FC5 ] C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
    15:56:02.0500 0844 C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe - ok
    15:56:02.0500 0844 [ 0700EA00C2CBB1F89E2681F90A14820C ] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe
    15:56:02.0500 0844 C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe - ok
    15:56:02.0515 0844 [ 973A86B13BE054AED691F097B5A5BD6F ] C:\Program Files (x86)\NHC\nhcMediaPlugin.exe
    15:56:02.0515 0844 C:\Program Files (x86)\NHC\nhcMediaPlugin.exe - ok
    15:56:02.0515 0844 [ 314C76642049DD4E9B964BC333A620B1 ] C:\Windows\Installer\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}\AppleSoftwareUpdateIco.exe
    15:56:02.0515 0844 C:\Windows\Installer\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}\AppleSoftwareUpdateIco.exe - ok
    15:56:02.0515 0844 [ 3C7B7077FB810434500F64327F01E273 ] C:\Windows\SysWOW64\atiadlxy.dll
    15:56:02.0515 0844 C:\Windows\SysWOW64\atiadlxy.dll - ok
    15:56:02.0531 0844 [ 236E7117BCEABEAA0F4C0796AB3CC1C8 ] C:\Windows\System32\RtkAPO64.dll
    15:56:02.0531 0844 C:\Windows\System32\RtkAPO64.dll - ok
    15:56:02.0531 0844 [ 814B65E22070E087479A275AAE1931AC ] C:\Windows\System32\control.exe
    15:56:02.0531 0844 C:\Windows\System32\control.exe - ok
    15:56:02.0547 0844 [ 12916E0642E92561C98B18A2A2D01B14 ] C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
    15:56:02.0547 0844 C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe - ok
    15:56:02.0547 0844 [ DE2B9C350BB7C9CF355972AB8CB9B865 ] C:\Windows\System32\WMALFXGFXDSP.dll
    15:56:02.0547 0844 C:\Windows\System32\WMALFXGFXDSP.dll - ok
    15:56:02.0562 0844 [ E7704CBF568815C1CAA6E513387BD3F2 ] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
    15:56:02.0562 0844 C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe - ok
    15:56:02.0562 0844 [ B7BD00787568A178CDE26A83B5C847BE ] C:\Windows\System32\mfplat.dll
    15:56:02.0562 0844 C:\Windows\System32\mfplat.dll - ok
    15:56:02.0578 0844 [ 72AB6633E9B39EC7FEBEDF083A9061E5 ] C:\Windows\System32\mscoree.dll
    15:56:02.0578 0844 C:\Windows\System32\mscoree.dll - ok
    15:56:02.0578 0844 [ 667224FF4FD48B182F574AA96E93267C ] C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscoreei.dll
    15:56:02.0578 0844 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscoreei.dll - ok
    15:56:02.0593 0844 [ EEFC574358F36D49645ACD11A5E59674 ] C:\Program Files\Internet Explorer\iexplore.exe
    15:56:02.0593 0844 C:\Program Files\Internet Explorer\iexplore.exe - ok
    15:56:02.0593 0844 [ 8FC3025462B3AA725EF63230F9F18191 ] C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorwks.dll
    15:56:02.0593 0844 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorwks.dll - ok
    15:56:02.0593 0844 [ 946D660DC095885F0C210640BE471949 ] C:\Windows\Installer\{28D73032-5DAA-4F83-B154-85105DBCCB92}\iTunesIco.exe
    15:56:02.0593 0844 C:\Windows\Installer\{28D73032-5DAA-4F83-B154-85105DBCCB92}\iTunesIco.exe - ok
    15:56:02.0609 0844 [ F50B03EB7C150E44DF2843F2138D4F70 ] C:\Windows\System32\mlang.dll
    15:56:02.0609 0844 C:\Windows\System32\mlang.dll - ok
    15:56:02.0609 0844 [ A55E64922F7FF513AA8133E33F3E9704 ] C:\Windows\Installer\{6C1E7AA1-44E9-446D-AAB2-0DE6D9EFEAB1}\SafariIco.exe
    15:56:02.0609 0844 C:\Windows\Installer\{6C1E7AA1-44E9-446D-AAB2-0DE6D9EFEAB1}\SafariIco.exe - ok
    15:56:02.0625 0844 [ 9E3244FE8BA484E98461B8619C86F0D5 ] C:\Program Files\Windows Calendar\WinCal.exe
    15:56:02.0625 0844 C:\Program Files\Windows Calendar\WinCal.exe - ok
    15:56:02.0625 0844 [ 0CFCDE5D9D074D96B78D1F1CBF1AAB1D ] C:\Windows\SysWOW64\riched20.dll
    15:56:02.0625 0844 C:\Windows\SysWOW64\riched20.dll - ok
    15:56:02.0640 0844 [ 13E47C975E14031E7DC611191B70FD35 ] C:\Program Files\Movie Maker\DVDMaker.exe
    15:56:02.0640 0844 C:\Program Files\Movie Maker\DVDMaker.exe - ok
    15:56:02.0640 0844 [ D3D7E1D34FB73E371C2C729213F01CA1 ] C:\Windows\System32\url.dll
    15:56:02.0640 0844 C:\Windows\System32\url.dll - ok
    15:56:02.0656 0844 [ 32BFF048169F9A57B9BBAF2DC90EAC1B ] C:\Windows\System32\stobject.dll
    15:56:02.0656 0844 C:\Windows\System32\stobject.dll - ok
    15:56:02.0656 0844 [ 93E888DA525F3DA1D8A94C174DDCC7C0 ] C:\Windows\System32\batmeter.dll
    15:56:02.0656 0844 C:\Windows\System32\batmeter.dll - ok
    15:56:02.0671 0844 [ 5C8C51B679B947F3DF948533C0926240 ] C:\Windows\System32\SndVolSSO.dll
    15:56:02.0671 0844 C:\Windows\System32\SndVolSSO.dll - ok
    15:56:02.0671 0844 [ 4E1784B96F81FA2F561E5524CCD5FC7E ] C:\Windows\winsxs\amd64_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.4016_none_88dc01492fb256de\msvcr80.dll
    15:56:02.0671 0844 C:\Windows\winsxs\amd64_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.4016_none_88dc01492fb256de\msvcr80.dll - ok
    15:56:02.0687 0844 [ E11624A91623997A21B3567BD63F4D19 ] C:\Windows\assembly\GAC_64\mscorlib\2.0.0.0__b77a5c561934e089\mscorlib.dll
    15:56:02.0687 0844 C:\Windows\assembly\GAC_64\mscorlib\2.0.0.0__b77a5c561934e089\mscorlib.dll - ok
    15:56:02.0687 0844 [ 1A483485C57DAE3EC91A2A2B52753ED5 ] C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorjit.dll
    15:56:02.0687 0844 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorjit.dll - ok
    15:56:02.0703 0844 [ FF253B202C460492B9A35C457066CCC0 ] C:\Windows\ehome\ehSSO.dll
    15:56:02.0703 0844 C:\Windows\ehome\ehSSO.dll - ok
    15:56:02.0703 0844 [ F2C56E2FB83F06831F9565E77C48078D ] C:\Windows\ehome\ehmsas.exe
    15:56:02.0703 0844 C:\Windows\ehome\ehmsas.exe - ok
    15:56:02.0703 0844 [ D092AA9740076D7B55BA7E3ECD22DFA7 ] C:\Windows\System32\msi.dll
    15:56:02.0703 0844 C:\Windows\System32\msi.dll - ok
    15:56:02.0718 0844 [ 0058E2924F2B6483591FAA7C2A6595A7 ] C:\Windows\System32\msiltcfg.dll
    15:56:02.0718 0844 C:\Windows\System32\msiltcfg.dll - ok
    15:56:02.0718 0844 [ DE95622B09554A70DB4F035D197330BF ] C:\Windows\System32\pnidui.dll
    15:56:02.0718 0844 C:\Windows\System32\pnidui.dll - ok
    15:56:02.0734 0844 [ 65AB1A3B45B933697F74B53116B46523 ] C:\Program Files (x86)\Windows Live\Messenger\msgsres.dll
    15:56:02.0734 0844 C:\Program Files (x86)\Windows Live\Messenger\msgsres.dll - ok
    15:56:02.0734 0844 [ E9B44CD74DBA07FDDAA6562C29BCF8F2 ] C:\Windows\ehome\ehProxy.dll
    15:56:02.0734 0844 C:\Windows\ehome\ehProxy.dll - ok
    15:56:02.0749 0844 [ B51A921F2CA7A068F5025D6EF3C5C8DD ] C:\Program Files\Windows Mail\WinMail.exe
    15:56:02.0749 0844 C:\Program Files\Windows Mail\WinMail.exe - ok
    15:56:02.0749 0844 [ 9DD626CC4FB7CAAC19B2F4C33CD6A2A3 ] C:\Windows\System32\fdProxy.dll
    15:56:02.0749 0844 C:\Windows\System32\fdProxy.dll - ok
    15:56:02.0749 0844 [ 31519A9B25D4A8998EEC9C81E69269D9 ] C:\Windows\System32\fdWSD.dll
    15:56:02.0749 0844 C:\Windows\System32\fdWSD.dll - ok
    15:56:02.0765 0844 [ DDCDE414B6DB14707DBD504EB23EF13E ] C:\Windows\System32\fdSSDP.dll
    15:56:02.0765 0844 C:\Windows\System32\fdSSDP.dll - ok
    15:56:02.0765 0844 [ B6A7E7F43234BFA6A8E6CC4110CB9448 ] C:\Program Files\Windows Media Player\wmpnscfg.exe
    15:56:02.0765 0844 C:\Program Files\Windows Media Player\wmpnscfg.exe - ok
    15:56:02.0781 0844 [ 483E6FE556B3146D5A634B8552FDD15C ] C:\Windows\System32\wlanapi.dll
    15:56:02.0781 0844 C:\Windows\System32\wlanapi.dll - ok
    15:56:02.0781 0844 [ BF2DD8B1253FB01CADB9C7C152984C89 ] C:\Windows\ehome\ehshell.exe
    15:56:02.0781 0844 C:\Windows\ehome\ehshell.exe - ok
    15:56:02.0796 0844 [ FDAC777249FC4A5ED75FF3F563817FA1 ] C:\Windows\System32\AltTab.dll
    15:56:02.0796 0844 C:\Windows\System32\AltTab.dll - ok
    15:56:02.0796 0844 [ 6B28D35E4C2C9D9ABA083EE4F9FD51CC ] C:\Windows\System32\WPDShServiceObj.dll
    15:56:02.0796 0844 C:\Windows\System32\WPDShServiceObj.dll - ok
    15:56:02.0812 0844 [ 8F50FB284B7C97C241F6F53E4C88453B ] C:\Program Files\Windows Collaboration\WinCollab.exe
    15:56:02.0812 0844 C:\Program Files\Windows Collaboration\WinCollab.exe - ok
    15:56:02.0812 0844 [ 5DD36EC36334E0ED4275AA3A55F5D22C ] C:\Program Files\Movie Maker\MOVIEMK.exe
    15:56:02.0812 0844 C:\Program Files\Movie Maker\MOVIEMK.exe - ok
    15:56:02.0827 0844 [ 7FB82497FBBF96ACC9E143E7F183BFA7 ] C:\Program Files\Windows Photo Gallery\WindowsPhotoGallery.exe
    15:56:02.0827 0844 C:\Program Files\Windows Photo Gallery\WindowsPhotoGallery.exe - ok
    15:56:02.0827 0844 [ FF0729002E081668620A681182D63FE6 ] C:\Windows\System32\wuapp.exe
    15:56:02.0827 0844 C:\Windows\System32\wuapp.exe - ok
    15:56:02.0843 0844 [ 50EBD31C3527366FAFA468BD609F7352 ] C:\Windows\System32\wucltux.dll
    15:56:02.0843 0844 C:\Windows\System32\wucltux.dll - ok
    15:56:02.0843 0844 [ B6D5917CF9FDA3B434AD908559EBD2B3 ] C:\Windows\System32\srchadmin.dll
    15:56:02.0843 0844 C:\Windows\System32\srchadmin.dll - ok
    15:56:02.0843 0844 [ 0D9B9F9B8AA10BADD02F7EADEAC5D237 ] C:\Program Files\Wireshark\wireshark.exe
    15:56:02.0843 0844 C:\Program Files\Wireshark\wireshark.exe - ok
    15:56:02.0859 0844 [ 48FC58A3089830A0956D3165BAF5BDCC ] C:\Windows\System32\webcheck.dll
    15:56:02.0859 0844 C:\Windows\System32\webcheck.dll - ok
    15:56:02.0859 0844 [ E55DE59CD89138BD973602F9F202E84D ] C:\Windows\System32\SyncCenter.dll
    15:56:02.0859 0844 C:\Windows\System32\SyncCenter.dll - ok
    15:56:02.0874 0844 [ 70DD82E202BD8022452DC8D2B73231AA ] C:\Windows\System32\wscntfy.dll
    15:56:02.0874 0844 C:\Windows\System32\wscntfy.dll - ok
    15:56:02.0874 0844 [ B4D787DB8D30793A4D4DF9FEED18F136 ] C:\Windows\System32\drivers\cdfs.sys
    15:56:02.0874 0844 C:\Windows\System32\drivers\cdfs.sys - ok
    15:56:02.0890 0844 [ 76E7410B3A308F6960D3CE06DC7874AD ] C:\Program Files (x86)\Google\GoogleToolbarNotifier\5.7.8313.1002\gtn.dll
    15:56:02.0890 0844 C:\Program Files (x86)\Google\GoogleToolbarNotifier\5.7.8313.1002\gtn.dll - ok
    15:56:02.0890 0844 [ ED10D55B28FCD8A6DEA09AE3FE20EC3A ] C:\Windows\System32\imapi2.dll
    15:56:02.0890 0844 C:\Windows\System32\imapi2.dll - ok
    15:56:02.0905 0844 [ 7D2CB10042CAC091DE7BC04AFF27CF9E ] C:\Windows\System32\wbem\unsecapp.exe
    15:56:02.0905 0844 C:\Windows\System32\wbem\unsecapp.exe - ok
    15:56:02.0905 0844 [ 7E451C585AD79B895D03A3301EC5A675 ] C:\Windows\System32\shfolder.dll
    15:56:02.0905 0844 C:\Windows\System32\shfolder.dll - ok
    15:56:02.0921 0844 [ 11D415DB881C617288D3CB81BB1FE51D ] C:\Windows\System32\wbem\NCProv.dll
    15:56:02.0921 0844 C:\Windows\System32\wbem\NCProv.dll - ok
    15:56:02.0921 0844 [ E97B6931B5629D7E9F6EE29A68FD6123 ] C:\Windows\System32\wbem\WmiPrvSE.exe
    15:56:02.0921 0844 C:\Windows\System32\wbem\WmiPrvSE.exe - ok
    15:56:02.0921 0844 [ 06FDEA0167BAD4CDE26210F92F33FDBA ] C:\Windows\System32\wbem\wbemcons.dll
    15:56:02.0921 0844 C:\Windows\System32\wbem\wbemcons.dll - ok
    15:56:02.0937 0844 [ 74EF310FAC89341CE2897B7F2C4A7B0F ] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
    15:56:02.0937 0844 C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe - ok
    15:56:02.0937 0844 [ F347FD7DD03B3408691049CDE0ABB6B6 ] C:\Windows\System32\wbem\wmiprov.dll
    15:56:02.0937 0844 C:\Windows\System32\wbem\wmiprov.dll - ok
    15:56:02.0952 0844 [ 98C42F36A13C25E099F1E081EB4EC59D ] C:\Windows\System32\wmi.dll
    15:56:02.0952 0844 C:\Windows\System32\wmi.dll - ok
    15:56:02.0952 0844 [ DBC0B012A13C7738871D569005DEB5D1 ] C:\Windows\System32\bthprops.cpl
    15:56:02.0952 0844 C:\Windows\System32\bthprops.cpl - ok
    15:56:02.0968 0844 [ C72A515E6835CB775A01BA4F42B1A730 ] C:\Windows\System32\calc.exe
    15:56:02.0968 0844 C:\Windows\System32\calc.exe - ok
    15:56:02.0968 0844 [ DB4A027E320B226D33F68C71D85103F6 ] C:\Windows\System32\mblctr.exe
    15:56:02.0968 0844 C:\Windows\System32\mblctr.exe - ok
    15:56:02.0983 0844 [ 48B306A0F08606FEB6C6DD9BDF6E4E0F ] C:\Windows\System32\NetProj.exe
    15:56:02.0983 0844 C:\Windows\System32\NetProj.exe - ok
    15:56:02.0983 0844 [ 61D4DBC6D1C1C98DC935888295A89D01 ] C:\Windows\System32\NetProjW.dll
    15:56:02.0983 0844 C:\Windows\System32\NetProjW.dll - ok
    15:56:02.0983 0844 [ EC0A7FB35A11EEF77C76781E122BAF0C ] C:\Windows\System32\mspaint.exe
    15:56:02.0983 0844 C:\Windows\System32\mspaint.exe - ok
    15:56:02.0999 0844 [ 30485EC6C84241DDB0BD7B8A2EB6BB3C ] C:\Windows\System32\mstsc.exe
    15:56:02.0999 0844 C:\Windows\System32\mstsc.exe - ok
    15:56:02.0999 0844 [ 3CB863B78642405371CB3A71C07E2382 ] C:\Windows\SysWOW64\rasapi32.dll
    15:56:02.0999 0844 C:\Windows\SysWOW64\rasapi32.dll - ok
    15:56:03.0015 0844 [ 35ACD5EA63D75E97DD0E9A1629E582B2 ] C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_5.82.6002.18305_none_88f3a38569c2c436\comctl32.dll
    15:56:03.0015 0844 C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_5.82.6002.18305_none_88f3a38569c2c436\comctl32.dll - ok
    15:56:03.0015 0844 [ 3A1DDA77F331D107BA40DB06E4D666E9 ] C:\Windows\SysWOW64\rasman.dll
    15:56:03.0015 0844 C:\Windows\SysWOW64\rasman.dll - ok
    15:56:03.0030 0844 [ 9C5A0F070196B601D629F5BA9AA921F8 ] C:\Program Files\Windows Sidebar\sidebar.exe
    15:56:03.0030 0844 C:\Program Files\Windows Sidebar\sidebar.exe - ok
    15:56:03.0030 0844 [ 0B40AAC953EE451373FB8E26A73ADC94 ] C:\Windows\System32\SnippingTool.exe
    15:56:03.0030 0844 C:\Windows\System32\SnippingTool.exe - ok
    15:56:03.0046 0844 [ ECBAA8694660229262B781BEB7DDD625 ] C:\Windows\System32\SoundRecorder.exe
    15:56:03.0046 0844 C:\Windows\System32\SoundRecorder.exe - ok
    15:56:03.0046 0844 [ A41D6AFF8AFD743507887FD7747B35D3 ] C:\Windows\System32\mobsync.exe
    15:56:03.0046 0844 C:\Windows\System32\mobsync.exe - ok
    15:56:03.0046 0844 [ 8E29B921BC400F51276F781C4CFB87F6 ] C:\Windows\System32\oobefldr.dll
    15:56:03.0046 0844 C:\Windows\System32\oobefldr.dll - ok
    15:56:03.0061 0844 [ FAFD25FE1BE024AE20605DCD01F1C435 ] C:\Program Files\Windows NT\Accessories\wordpad.exe
    15:56:03.0061 0844 C:\Program Files\Windows NT\Accessories\wordpad.exe - ok
    15:56:03.0061 0844 [ CE881FB400AAFE32D3DC0A7561B547C2 ] C:\Windows\Speech\Common\sapisvr.exe
    15:56:03.0061 0844 C:\Windows\Speech\Common\sapisvr.exe - ok
    15:56:03.0077 0844 [ 4FDF6B8B9449D4AF1D98A0705CB6747D ] C:\Windows\System32\Speech\SpeechUX\sapi.cpl
    15:56:03.0077 0844 C:\Windows\System32\Speech\SpeechUX\sapi.cpl - ok
    15:56:03.0077 0844 [ 57CAC848FA14AE38F14F9441F8933282 ] C:\Program Files (x86)\NHC\pcre3.dll
    15:56:03.0077 0844 C:\Program Files (x86)\NHC\pcre3.dll - ok
    15:56:03.0093 0844 [ 70F08ECE7A30A639D3F0C8C433685C7D ] C:\Windows\SysWOW64\tapi32.dll
    15:56:03.0093 0844 C:\Windows\SysWOW64\tapi32.dll - ok
    15:56:03.0093 0844 [ C1303E3D550F2934BA825A80D335D18A ] C:\Windows\System32\sdclt.exe
    15:56:03.0093 0844 C:\Windows\System32\sdclt.exe - ok
    15:56:03.0093 0844 [ 38D057FA41217FB904B3A0BC34B8D367 ] C:\Windows\System32\charmap.exe
    15:56:03.0093 0844 C:\Windows\System32\charmap.exe - ok
    15:56:03.0108 0844 [ 641AD6D54DA090AB0FF14F8017FEF3FE ] C:\Windows\assembly\GAC_64\System.Web\2.0.0.0__b03f5f7f11d50a3a\System.Web.dll
    15:56:03.0108 0844 C:\Windows\assembly\GAC_64\System.Web\2.0.0.0__b03f5f7f11d50a3a\System.Web.dll - ok
    15:56:03.0108 0844 [ F54D10EA2FE5EC846603A4CABDD6F235 ] C:\Windows\System32\mstask.dll
    15:56:03.0108 0844 C:\Windows\System32\mstask.dll - ok
    15:56:03.0124 0844 [ 10DEAF6B32EB834F5C534EB942111FA8 ] C:\Windows\System32\migwiz\migwiz.exe
    15:56:03.0124 0844 C:\Windows\System32\migwiz\migwiz.exe - ok
    15:56:03.0124 0844 [ A4AF702E6BB80D014C56EDE22C6BC423 ] C:\Windows\System32\msinfo32.exe
    15:56:03.0124 0844 C:\Windows\System32\msinfo32.exe - ok
    15:56:03.0139 0844 [ 8DBF26D220D8EE44D7A6286BE2F2C767 ] C:\Windows\System32\rstrui.exe
    15:56:03.0139 0844 C:\Windows\System32\rstrui.exe - ok
    15:56:03.0139 0844 [ DB83DA870C2C9A612A07A635444BA846 ] C:\Windows\System32\miguiresource.dll
    15:56:03.0139 0844 C:\Windows\System32\miguiresource.dll - ok
    15:56:03.0139 0844 [ 549D573FE2B83C3ECF7553E8996DFA17 ] C:\Windows\System32\StikyNot.exe
    15:56:03.0139 0844 C:\Windows\System32\StikyNot.exe - ok
    15:56:03.0155 0844 [ 3D418A22A56471295AEB1CEB9027C3DA ] C:\Windows\SysWOW64\rtutils.dll
    15:56:03.0155 0844 C:\Windows\SysWOW64\rtutils.dll - ok
    15:56:03.0155 0844 [ A4E789205FB6C1FC0FB2FD3898455F57 ] C:\Program Files\Common Files\Microsoft Shared\ink\TabTip.exe
    15:56:03.0155 0844 C:\Program Files\Common Files\Microsoft Shared\ink\TabTip.exe - ok
    15:56:03.0171 0844 [ 4F69B3864A6FA36744E275BABD731B74 ] C:\Program Files\Windows Journal\Journal.exe
    15:56:03.0171 0844 C:\Program Files\Windows Journal\Journal.exe - ok
    15:56:03.0171 0844 [ EA61EC62B70FAF09468E53E598ABAC63 ] C:\Windows\System32\atipdl64.dll
    15:56:03.0171 0844 C:\Windows\System32\atipdl64.dll - ok
    15:56:03.0186 0844 [ ABB1B50F36CCBEF119FBEF8FDF14AD61 ] C:\Program Files\SUPERAntiSpyware\SASCTXMN64.DLL
    15:56:03.0186 0844 C:\Program Files\SUPERAntiSpyware\SASCTXMN64.DLL - ok
    15:56:03.0186 0844 [ 4CAAD229A00C0DEFFF51841AE2B93B46 ] C:\Windows\SysWOW64\WindowsPowerShell\v1.0\pwrshmsg.dll
    15:56:03.0186 0844 C:\Windows\SysWOW64\WindowsPowerShell\v1.0\pwrshmsg.dll - ok
    15:56:03.0202 0844 [ BADF546E20F3B6A8630EA80EB9E657C3 ] C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe
    15:56:03.0202 0844 C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe - ok
    15:56:03.0202 0844 [ 590D8BF1D514FC519CEFE9C1815FE41D ] C:\Windows\System32\WindowsPowerShell\v1.0\powershell_ise.exe
    15:56:03.0202 0844 C:\Windows\System32\WindowsPowerShell\v1.0\powershell_ise.exe - ok
    15:56:03.0217 0844 [ 19C3F7E0FC407E2F307D82FAB0858DDE ] C:\Windows\System32\WindowsPowerShell\v1.0\pwrshmsg.dll
    15:56:03.0217 0844 C:\Windows\System32\WindowsPowerShell\v1.0\pwrshmsg.dll - ok
    15:56:03.0217 0844 [ 8AA015739AA5D31E19E853FD1554C769 ] C:\Windows\System32\mycomput.dll
    15:56:03.0217 0844 C:\Windows\System32\mycomput.dll - ok
    15:56:03.0217 0844 [ F91D87E625D94F74477525861F7B38D7 ] C:\Windows\System32\odbcad32.exe
    15:56:03.0217 0844 C:\Windows\System32\odbcad32.exe - ok
    15:56:03.0233 0844 [ 53E401AE1E8CEF522E00576650CC11EB ] C:\Windows\System32\odbcint.dll
    15:56:03.0233 0844 C:\Windows\System32\odbcint.dll - ok
    15:56:03.0233 0844 [ 688844EFB733D426D90A56499B5DC6CD ] C:\Windows\System32\iscsicpl.exe
    15:56:03.0233 0844 C:\Windows\System32\iscsicpl.exe - ok
    15:56:03.0249 0844 [ 8BAFE3351162FB7CD8E392BA93B25EB4 ] C:\Windows\System32\iscsicpl.dll
    15:56:03.0249 0844 C:\Windows\System32\iscsicpl.dll - ok
    15:56:03.0249 0844 [ BEEBCBC84D58FC34B3C9DD3A24BB8F24 ] C:\Windows\System32\MdSched.exe
    15:56:03.0249 0844 C:\Windows\System32\MdSched.exe - ok
    15:56:03.0264 0844 [ 832726DEFA39BBA2D34C9E20CEA471C0 ] C:\Windows\System32\wdc.dll
    15:56:03.0264 0844 C:\Windows\System32\wdc.dll - ok
    15:56:03.0264 0844 [ 256AD83B5C6B3F36247AFCF3A95EFCF9 ] C:\Windows\System32\filemgmt.dll
    15:56:03.0264 0844 C:\Windows\System32\filemgmt.dll - ok
    15:56:03.0264 0844 [ F1F799F596CA296EE9725EFEA01A63D7 ] C:\Windows\System32\msconfig.exe
    15:56:03.0280 0844 C:\Windows\System32\msconfig.exe - ok
    15:56:03.0280 0844 [ D1EABC654E7E0B531EBFF68961C4BD8E ] C:\Program Files\Common Files\ATI Technologies\Multimedia\atixcode64.dll
    15:56:03.0280 0844 C:\Program Files\Common Files\ATI Technologies\Multimedia\atixcode64.dll - ok
    15:56:03.0280 0844 [ 03C1410DBD7B35D105B732424FEB7516 ] C:\Windows\System32\AuthFWGP.dll
    15:56:03.0280 0844 C:\Windows\System32\AuthFWGP.dll - ok
    15:56:03.0295 0844 [ 0661DBD7C4338B37E91DF77D0C31AA22 ] C:\Windows\winsxs\amd64_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.4016_none_88dc01492fb256de\msvcp80.dll
    15:56:03.0295 0844 C:\Windows\winsxs\amd64_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.4016_none_88dc01492fb256de\msvcp80.dll - ok
    15:56:03.0295 0844 [ D399FE1BF84086BFF04034A6535E6C5B ] C:\Program Files\Common Files\ATI Technologies\Multimedia\atimpenc64.dll
    15:56:03.0295 0844 C:\Program Files\Common Files\ATI Technologies\Multimedia\atimpenc64.dll - ok
    15:56:03.0311 0844 [ F3851A4F60518BA1113C93B50F047EE1 ] C:\Windows\System32\hhctrl.ocx
    15:56:03.0311 0844 C:\Windows\System32\hhctrl.ocx - ok
    15:56:03.0311 0844 [ 14FF750EFE13B0C21E5A06507C3A97B1 ] C:\Windows\SysWOW64\winmm.dll
    15:56:03.0311 0844 C:\Windows\SysWOW64\winmm.dll - ok
    15:56:03.0327 0844 [ 5F3AB07CE3D3F3522D695FF7ED37792C ] C:\Windows\System32\rdpdd.dll
    15:56:03.0327 0844 C:\Windows\System32\rdpdd.dll - ok
    15:56:03.0327 0844 [ 6DDF36D8B35FC8DF5159205C19A5367E ] C:\Windows\System32\RDPENCDD.dll
    15:56:03.0327 0844 C:\Windows\System32\RDPENCDD.dll - ok
    15:56:03.0342 0844 [ E4D4500B9F619DF2F1765FE259B12A4F ] C:\Windows\System32\WindowsAnytimeUpgrade.exe
    15:56:03.0342 0844 C:\Windows\System32\WindowsAnytimeUpgrade.exe - ok
    15:56:03.0342 0844 [ 23E4E5A6876082BADECA7B80DD7B21C0 ] C:\Windows\System32\WindowsAnytimeUpgradeCPL.dll
    15:56:03.0342 0844 C:\Windows\System32\WindowsAnytimeUpgradeCPL.dll - ok
    15:56:03.0342 0844 [ 25EEC01026548DC97635DB3CBC6C3834 ] C:\Windows\Microsoft.NET\Framework64\v2.0.50727\Culture.dll
    15:56:03.0342 0844 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\Culture.dll - ok
    15:56:03.0358 0844 [ 9BBD858EEC0AA9894B8063218CF1D19D ] C:\Windows\System32\upnp.dll
    15:56:03.0358 0844 C:\Windows\System32\upnp.dll - ok
    15:56:03.0358 0844 [ DC15AB7168C0309D8F04FD95B6240422 ] C:\Windows\SysWOW64\oleacc.dll
    15:56:03.0358 0844 C:\Windows\SysWOW64\oleacc.dll - ok
    15:56:03.0373 0844 [ BC687BE08AF06AB5FE481BFAFFC55C6D ] C:\Windows\System32\dot3api.dll
    15:56:03.0373 0844 C:\Windows\System32\dot3api.dll - ok
    15:56:03.0373 0844 [ D86A2D30934F2192E477D4159632AD63 ] C:\Windows\System32\wlanhlp.dll
    15:56:03.0373 0844 C:\Windows\System32\wlanhlp.dll - ok
    15:56:03.0389 0844 [ 8F8E0EE62D73C72015D43E91BBF62B01 ] C:\Windows\System32\rastapi.dll
    15:56:03.0389 0844 C:\Windows\System32\rastapi.dll - ok
    15:56:03.0389 0844 [ 8139F933EF1559D4E7187E48F93EA136 ] C:\Windows\System32\unimdm.tsp
    15:56:03.0389 0844 C:\Windows\System32\unimdm.tsp - ok
    15:56:03.0389 0844 [ B3F777F027078644A7EC57C1EA40A5F1 ] C:\Windows\System32\uniplat.dll
    15:56:03.0389 0844 C:\Windows\System32\uniplat.dll - ok
    15:56:03.0405 0844 [ AA2AD4B7292A3D5F2B0295DB8A35669B ] C:\Windows\System32\unimdmat.dll
    15:56:03.0405 0844 C:\Windows\System32\unimdmat.dll - ok
    15:56:03.0405 0844 [ 0C31659ABF8C63995E355B330ACB3AE2 ] C:\Windows\System32\modemui.dll
    15:56:03.0405 0844 C:\Windows\System32\modemui.dll - ok
    15:56:03.0420 0844 [ ABCA3F75096C7CAF510CE0117FA29397 ] C:\Windows\System32\kmddsp.tsp
    15:56:03.0420 0844 C:\Windows\System32\kmddsp.tsp - ok
    15:56:03.0420 0844 [ A39C6C710DAC32A2D3B0677F648FD711 ] C:\Windows\System32\ndptsp.tsp
    15:56:03.0420 0844 C:\Windows\System32\ndptsp.tsp - ok
    15:56:03.0436 0844 [ DF4F9708003752B4C475300BEC1F042B ] C:\Program Files\Microsoft Games\Chess\Chess.exe
    15:56:03.0436 0844 C:\Program Files\Microsoft Games\Chess\Chess.exe - ok
    15:56:03.0436 0844 [ AE865C840368BEEF09E2E2C619E8DB48 ] C:\Windows\System32\hidphone.tsp
    15:56:03.0436 0844 C:\Windows\System32\hidphone.tsp - ok
    15:56:03.0451 0844 [ 4500B574CB7F5ED6EE8E0BBC72AE2E31 ] C:\Windows\System32\rasppp.dll
    15:56:03.0451 0844 C:\Windows\System32\rasppp.dll - ok
    15:56:03.0451 0844 [ 88C3F45AAF528E67D85C6F303958AA0C ] C:\Windows\System32\rasqec.dll
    15:56:03.0451 0844 C:\Windows\System32\rasqec.dll - ok
    15:56:03.0451 0844 [ A361672E1AE1581B475F035607F4FD87 ] C:\Windows\System32\cryptui.dll
    15:56:03.0451 0844 C:\Windows\System32\cryptui.dll - ok
    15:56:03.0467 0844 [ CD2B49ACFAD057AD5577AA26040CC052 ] C:\Program Files\Microsoft Games\FreeCell\FreeCell.exe
    15:56:03.0467 0844 C:\Program Files\Microsoft Games\FreeCell\FreeCell.exe - ok
    15:56:03.0467 0844 [ F2DB8923DBF9491BC7D387E305505CF5 ] C:\Windows\System32\gameux.dll
    15:56:03.0467 0844 C:\Windows\System32\gameux.dll - ok
    15:56:03.0483 0844 [ 69C0460E837047E172A3B92858ED7AB3 ] C:\Program Files\Microsoft Games\Hearts\Hearts.exe
    15:56:03.0483 0844 C:\Program Files\Microsoft Games\Hearts\Hearts.exe - ok
    15:56:03.0483 0844 [ B4761127BA6B6353566FF735EC22F4A4 ] C:\Program Files\Microsoft Games\inkball\inkball.exe
    15:56:03.0483 0844 C:\Program Files\Microsoft Games\inkball\inkball.exe - ok
    15:56:03.0498 0844 [ A0CB916FDBB52C039F5D482701645E86 ] C:\Program Files\Microsoft Games\Mahjong\Mahjong.exe
    15:56:03.0498 0844 C:\Program Files\Microsoft Games\Mahjong\Mahjong.exe - ok
    15:56:03.0498 0844 [ 45EEA3DBE0182FBCFCF9B1F286178BB9 ] C:\Program Files\Microsoft Games\Minesweeper\MineSweeper.exe
    15:56:03.0498 0844 C:\Program Files\Microsoft Games\Minesweeper\MineSweeper.exe - ok
    15:56:03.0514 0844 [ C4E6DF4D491A82DFF4EA56BD4C3A6633 ] C:\Program Files\Microsoft Games\Purble Place\PurblePlace.exe
    15:56:03.0514 0844 C:\Program Files\Microsoft Games\Purble Place\PurblePlace.exe - ok
    15:56:03.0514 0844 [ 4EF7F56C5D3D3FC63E7296F2A3D283D5 ] C:\Program Files\Microsoft Games\Solitaire\Solitaire.exe
    15:56:03.0514 0844 C:\Program Files\Microsoft Games\Solitaire\Solitaire.exe - ok
    15:56:03.0529 0844 [ EF4C006CC67119A5E3EA534EC85BEA23 ] C:\Program Files\Microsoft Games\SpiderSolitaire\SpiderSolitaire.exe
    15:56:03.0529 0844 C:\Program Files\Microsoft Games\SpiderSolitaire\SpiderSolitaire.exe - ok
    15:56:03.0529 0844 [ EF6D2BC5AF87B6DDFB52245FF77046B7 ] C:\Windows\System32\brcpl.dll
    15:56:03.0529 0844 C:\Windows\System32\brcpl.dll - ok
    15:56:03.0529 0844 [ 406121C827A2901E72DAB2197DAE180E ] C:\Windows\System32\wercon.exe
    15:56:03.0529 0844 C:\Windows\System32\wercon.exe - ok
    15:56:03.0545 0844 [ 5767ED421A03FA524B5F18A2C28C1143 ] C:\Windows\System32\msra.exe
    15:56:03.0545 0844 C:\Windows\System32\msra.exe - ok
    15:56:03.0545 0844 [ 08457294C7E98C5D3E5EE8CDC25FA537 ] C:\Windows\Installer\{91120000-0014-0000-0000-0000000FF1CE}\accicons.exe
    15:56:03.0545 0844 C:\Windows\Installer\{91120000-0014-0000-0000-0000000FF1CE}\accicons.exe - ok
    15:56:03.0561 0844 [ 21EF4BB2A6FF4116FD83FAEE52D4A416 ] C:\Windows\Installer\{91120000-0014-0000-0000-0000000FF1CE}\xlicons.exe
    15:56:03.0561 0844 C:\Windows\Installer\{91120000-0014-0000-0000-0000000FF1CE}\xlicons.exe - ok
    15:56:03.0561 0844 [ 7E2CF680C69680064D43F4FFE5831DD1 ] C:\Windows\Installer\{91120000-002F-0000-0000-0000000FF1CE}\joticon.exe
    15:56:03.0561 0844 C:\Windows\Installer\{91120000-002F-0000-0000-0000000FF1CE}\joticon.exe - ok
    15:56:03.0576 0844 [ BECEEE04AAB6388B66D1FCBD2A9F19A1 ] C:\Windows\Installer\{91120000-0014-0000-0000-0000000FF1CE}\outicon.exe
    15:56:03.0576 0844 C:\Windows\Installer\{91120000-0014-0000-0000-0000000FF1CE}\outicon.exe - ok
    15:56:03.0592 0844 [ C0F4A57BA5E09A28AE3D2F67ED219EEA ] C:\Windows\Installer\{91120000-0014-0000-0000-0000000FF1CE}\pptico.exe
    15:56:03.0592 0844 C:\Windows\Installer\{91120000-0014-0000-0000-0000000FF1CE}\pptico.exe - ok
    15:56:03.0592 0844 [ 6CE25A4F4F2F70EBF004C9006C647F32 ] C:\Windows\Installer\{91120000-0014-0000-0000-0000000FF1CE}\pubs.exe
    15:56:03.0592 0844 C:\Windows\Installer\{91120000-0014-0000-0000-0000000FF1CE}\pubs.exe - ok
    15:56:03.0607 0844 [ FF6669F7A1782D54E338F5C6EC806E1E ] C:\Windows\Installer\{91120000-0014-0000-0000-0000000FF1CE}\misc.exe
    15:56:03.0607 0844 C:\Windows\Installer\{91120000-0014-0000-0000-0000000FF1CE}\misc.exe - ok
    15:56:03.0607 0844 [ E1AB2AC4A4D50B479DF1B1CEA4A7409B ] C:\Windows\Installer\{91120000-0014-0000-0000-0000000FF1CE}\cagicon.exe
    15:56:03.0607 0844 C:\Windows\Installer\{91120000-0014-0000-0000-0000000FF1CE}\cagicon.exe - ok
    15:56:03.0623 0844 [ 3E5AA6A816FA331E64C38A45C6FF5637 ] C:\Windows\Installer\{91120000-0014-0000-0000-0000000FF1CE}\oisicon.exe
    15:56:03.0623 0844 C:\Windows\Installer\{91120000-0014-0000-0000-0000000FF1CE}\oisicon.exe - ok
    15:56:03.0623 0844 [ EFC376FDA886DF2652B34D153D019F0C ] C:\Windows\Installer\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}\ConfigIcon.dll
    15:56:03.0623 0844 C:\Windows\Installer\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}\ConfigIcon.dll - ok
    15:56:03.0639 0844 [ 27336F3CC6B3B53043D0666AC0CA4A7F ] C:\Windows\System32\notepad.exe
    15:56:03.0639 0844 C:\Windows\System32\notepad.exe - ok
    15:56:03.0639 0844 [ 26F139DDEC6407508071930D3D07337E ] C:\Windows\SysWOW64\credssp.dll
    15:56:03.0639 0844 C:\Windows\SysWOW64\credssp.dll - ok
    15:56:03.0654 0844 [ 50E3E76B0901BB4FC029BB88BFA5CE79 ] C:\Windows\SysWOW64\schannel.dll
    15:56:03.0654 0844 C:\Windows\SysWOW64\schannel.dll - ok
    15:56:03.0654 0844 [ 4ABCE74D012971305249E45E095E9EA6 ] C:\Windows\SysWOW64\msv1_0.dll
    15:56:03.0654 0844 C:\Windows\SysWOW64\msv1_0.dll - ok
    15:56:03.0670 0844 [ 459B48188494490707DCA8BAA91AA185 ] C:\Windows\SysWOW64\cryptdll.dll
    15:56:03.0670 0844 C:\Windows\SysWOW64\cryptdll.dll - ok
    15:56:03.0670 0844 [ 917A728A12F25FCF4636858FAC9979FA ] C:\Program Files (x86)\Google\GoogleToolbarNotifier\5.7.8313.1002\swg.dll
    15:56:03.0670 0844 C:\Program Files (x86)\Google\GoogleToolbarNotifier\5.7.8313.1002\swg.dll - ok
    15:56:03.0685 0844 [ 0BC355C49DC6D3E678D4C5C5AE467AEF ] C:\Program Files (x86)\Internet Explorer\iexplore.exe
    15:56:03.0685 0844 C:\Program Files (x86)\Internet Explorer\iexplore.exe - ok
    15:56:03.0685 0844 [ BE6FAC6F0745C67DAE7522C96406D083 ] C:\Windows\SysWOW64\sxs.dll
    15:56:03.0685 0844 C:\Windows\SysWOW64\sxs.dll - ok
    15:56:03.0685 0844 [ 7DC262AEEA66CCD6ED86DAAB16C4CDFF ] C:\Windows\System32\ntlanman.dll
    15:56:03.0685 0844 C:\Windows\System32\ntlanman.dll - ok
    15:56:03.0701 0844 [ 2790F04DFDDA00B7B6DE6719399A8739 ] C:\Windows\System32\drprov.dll
    15:56:03.0701 0844 C:\Windows\System32\drprov.dll - ok
    15:56:03.0701 0844 [ AAC4DFF79689736D8B316FC05A3E25EC ] C:\Windows\System32\davclnt.dll
    15:56:03.0701 0844 C:\Windows\System32\davclnt.dll - ok
    15:56:03.0717 0844 [ E389EA130C4A9A4DBA0F138222261056 ] C:\Program Files\SUPERAntiSpyware\SSUpdate64.exe
    15:56:03.0717 0844 C:\Program Files\SUPERAntiSpyware\SSUpdate64.exe - ok
    15:56:03.0717 0844 [ 85155AC913CA65ADE0323DC751AF3391 ] C:\Windows\System32\bitsperf.dll
    15:56:03.0717 0844 C:\Windows\System32\bitsperf.dll - ok
    15:56:03.0732 0844 [ 980F1A36B970F5AE361C5C2A90C9E972 ] C:\Windows\System32\bitsigd.dll
    15:56:03.0732 0844 C:\Windows\System32\bitsigd.dll - ok
    15:56:03.0732 0844 [ 1BF61DEC44535EFE98FF20C20BDFF6C2 ] C:\Program Files\Diskeeper Corporation\Diskeeper\DkService.exe
    15:56:03.0732 0844 C:\Program Files\Diskeeper Corporation\Diskeeper\DkService.exe - ok
    15:56:03.0732 0844 [ 185A819D9AC5A1D7F387C45F476CFE32 ] C:\Windows\System32\pdh.dll
    15:56:03.0748 0844 C:\Windows\System32\pdh.dll - ok
    15:56:03.0748 0844 [ D233C7FEAE3FAA25F93A9E6B46815ADC ] C:\Windows\winsxs\amd64_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_08e61857a83bc251\msvcr90.dll
    15:56:03.0748 0844 C:\Windows\winsxs\amd64_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_08e61857a83bc251\msvcr90.dll - ok
    15:56:03.0748 0844 [ D817FA4382A9E752F2F15B64BB5C9168 ] C:\Program Files\Diskeeper Corporation\Diskeeper\MJS.dll
    15:56:03.0748 0844 C:\Program Files\Diskeeper Corporation\Diskeeper\MJS.dll - ok
    15:56:03.0763 0844 [ 7695838D5EB524AA20BFCC668AB1E054 ] C:\Program Files\Diskeeper Corporation\Diskeeper\DKLib.dll
    15:56:03.0763 0844 C:\Program Files\Diskeeper Corporation\Diskeeper\DKLib.dll - ok
    15:56:03.0763 0844 [ 4809DCE75464A833A5F37FB9AF5FB824 ] C:\Windows\System32\fltLib.dll
    15:56:03.0763 0844 C:\Windows\System32\fltLib.dll - ok
    15:56:03.0779 0844 [ 241AF87821FDA0F5792037B779F49BE0 ] C:\Windows\winsxs\amd64_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_08e61857a83bc251\msvcp90.dll
    15:56:03.0779 0844 C:\Windows\winsxs\amd64_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_08e61857a83bc251\msvcp90.dll - ok
    15:56:03.0779 0844 [ 669683492EB19E654C9D30F92CD10669 ] C:\Program Files\Diskeeper Corporation\Diskeeper\PrFacade.dll
    15:56:03.0779 0844 C:\Program Files\Diskeeper Corporation\Diskeeper\PrFacade.dll - ok
    15:56:03.0795 0844 [ 4FB3F1D4A6EAA139C9FB1F937F9F8101 ] C:\Program Files\Diskeeper Corporation\Diskeeper\Tab.dll
    15:56:03.0795 0844 C:\Program Files\Diskeeper Corporation\Diskeeper\Tab.dll - ok
    15:56:03.0795 0844 [ CAB9F1681862341AB2326E130D9BEF3A ] C:\Program Files\Diskeeper Corporation\Diskeeper\1033\DkRes.dll
    15:56:03.0795 0844 C:\Program Files\Diskeeper Corporation\Diskeeper\1033\DkRes.dll - ok
    15:56:03.0810 0844 [ DE9978DCD0CEBBEC5C4AD978CFD39BE7 ] C:\Program Files\Diskeeper Corporation\Diskeeper\DkTabProvider.dll
    15:56:03.0810 0844 C:\Program Files\Diskeeper Corporation\Diskeeper\DkTabProvider.dll - ok
    15:56:03.0810 0844 [ DB7F3573FF45612B7AF4FBF3740BC74C ] C:\Program Files\Common Files\Diskeeper Corporation\MJS\MJSCR.dll
    15:56:03.0810 0844 C:\Program Files\Common Files\Diskeeper Corporation\MJS\MJSCR.dll - ok
    15:56:03.0810 0844 [ 0D2352C1B6B90ABD83B568BE977B1463 ] C:\Windows\System32\perfos.dll
    15:56:03.0810 0844 C:\Windows\System32\perfos.dll - ok
    15:56:03.0826 0844 [ 0E802A6969EC8DEC4C3D7A4B09C6528F ] C:\Windows\System32\perfproc.dll
    15:56:03.0826 0844 C:\Windows\System32\perfproc.dll - ok
    15:56:03.0826 0844 [ 7297CDE753955F45070D38FEC52C9705 ] C:\Windows\System32\drivers\DKRtWrt.sys
    15:56:03.0826 0844 C:\Windows\System32\drivers\DKRtWrt.sys - ok
    15:56:03.0841 0844 [ C1B2A59FAAACFD6362C3E4D126C1F4C3 ] C:\Windows\System32\wbem\WmiDcPrv.dll
    15:56:03.0841 0844 C:\Windows\System32\wbem\WmiDcPrv.dll - ok
    15:56:03.0841 0844 [ 376D1B585060CD65BEEFE15A8577FCA0 ] C:\Windows\System32\sfc_os.dll
    15:56:03.0841 0844 C:\Windows\System32\sfc_os.dll - ok
    15:56:03.0841 0844 [ E4024CCF225A936207294DE50925D4F6 ] C:\Program Files (x86)\Google\Update\1.3.21.123\goopdateres_en.dll
    15:56:03.0841 0844 C:\Program Files (x86)\Google\Update\1.3.21.123\goopdateres_en.dll - ok
    15:56:03.0857 0844 [ 5EFFE121E12DC905E8E56BF4F4A96190 ] C:\Program Files\Diskeeper Corporation\Diskeeper\NsIfaastMeas.dll
    15:56:03.0857 0844 C:\Program Files\Diskeeper Corporation\Diskeeper\NsIfaastMeas.dll - ok
    15:56:03.0857 0844 [ C47F35CC6FA4F1BDBEF8F87AC1A46537 ] C:\Windows\System32\wuapi.dll
    15:56:03.0857 0844 C:\Windows\System32\wuapi.dll - ok
    15:56:03.0873 0844 [ E746ED90132C6B6313CE9179F56BD31D ] C:\Windows\System32\wups.dll
    15:56:03.0873 0844 C:\Windows\System32\wups.dll - ok
    15:56:03.0873 0844 [ EBFA7A306C65010DED108F5A26598642 ] C:\Windows\System32\wscisvif.dll
    15:56:03.0873 0844 C:\Windows\System32\wscisvif.dll - ok
    15:56:03.0888 0844 [ 52A4F6983D85E74275DA0573FCD36094 ] C:\Windows\System32\wscproxystub.dll
    15:56:03.0888 0844 C:\Windows\System32\wscproxystub.dll - ok
    15:56:03.0888 0844 [ 468B4C4E57F4F371F13990F0F3B010C4 ] C:\Windows\System32\mspatcha.dll
    15:56:03.0888 0844 C:\Windows\System32\mspatcha.dll - ok
    15:56:03.0888 0844 [ CF27F49978FB0B47E6DC0B81651F463C ] C:\Windows\System32\netfxperf.dll
    15:56:03.0888 0844 C:\Windows\System32\netfxperf.dll - ok
    15:56:03.0904 0844 [ 60A12C094689484B7556ED9BF930E0B8 ] C:\Windows\Microsoft.NET\Framework64\v4.0.30319\PerfCounter.dll
    15:56:03.0904 0844 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\PerfCounter.dll - ok
    15:56:03.0904 0844 [ CB21CD39637AC13F3455454B2F648257 ] C:\Windows\System32\msvcr100_clr0400.dll
    15:56:03.0904 0844 C:\Windows\System32\msvcr100_clr0400.dll - ok
    15:56:03.0919 0844 [ C5C3575BD6D6F9BF6BF8C1714AD18FA5 ] C:\Windows\Microsoft.NET\Framework64\v4.0.30319\CORPerfMonExt.dll
    15:56:03.0919 0844 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\CORPerfMonExt.dll - ok
    15:56:03.0919 0844 [ 32DD015B2FE80F70C3E16929EE54AE2F ] C:\Windows\System32\esentprf.dll
    15:56:03.0919 0844 C:\Windows\System32\esentprf.dll - ok
    15:56:03.0935 0844 [ 649672EED4626058CB740117DD453BFC ] C:\Windows\System32\msdtcprx.dll
    15:56:03.0935 0844 C:\Windows\System32\msdtcprx.dll - ok
    15:56:03.0935 0844 [ C1F8DF921187244125F4A0B838936012 ] C:\Windows\System32\msdtcuiu.dll
    15:56:03.0935 0844 C:\Windows\System32\msdtcuiu.dll - ok
    15:56:03.0951 0844 [ 663A071E67EB7052637E1549BF1A28B5 ] C:\Windows\System32\mtxclu.dll
    15:56:03.0951 0844 C:\Windows\System32\mtxclu.dll - ok
    15:56:03.0951 0844 [ 4702DF71B9AD487C84A90BAAC967615D ] C:\Windows\System32\msscntrs.dll
    15:56:03.0951 0844 C:\Windows\System32\msscntrs.dll - ok
    15:56:03.0951 0844 [ 67FB44CEBAFF6FB5A01920F9B311C76E ] C:\Windows\System32\perfdisk.dll
    15:56:03.0951 0844 C:\Windows\System32\perfdisk.dll - ok
    15:56:03.0966 0844 [ 7FE0D0C8F53735EA17C9AE93EFE7AD5A ] C:\Windows\System32\wups2.dll
    15:56:03.0966 0844 C:\Windows\System32\wups2.dll - ok
    15:56:03.0966 0844 [ 626AC68CA20801699B87ACFCEB81E497 ] C:\Windows\System32\perfnet.dll
    15:56:03.0966 0844 C:\Windows\System32\perfnet.dll - ok
    15:56:03.0982 0844 [ EAD5E3548242AC813ABBD416341C41AF ] C:\Windows\System32\pnrpperf.dll
    15:56:03.0982 0844 C:\Windows\System32\pnrpperf.dll - ok
    15:56:03.0982 0844 [ DA0865722263934EA333FBDC0246CA14 ] C:\Windows\System32\pacerprf.dll
    15:56:03.0982 0844 C:\Windows\System32\pacerprf.dll - ok
    15:56:04.0013 0844 [ E2AD028AAC8C00D0D11EE9BA7581019E ] C:\Windows\System32\traffic.dll
    15:56:04.0013 0844 C:\Windows\System32\traffic.dll - ok
    15:56:04.0013 0844 [ 97F892904011897CDC83E3C7BFAD6647 ] C:\Windows\System32\rasctrs.dll
    15:56:04.0013 0844 C:\Windows\System32\rasctrs.dll - ok
    15:56:04.0013 0844 [ 3F50CCE011814A470BC33D14AA6FF16D ] C:\Windows\System32\tapiperf.dll
    15:56:04.0013 0844 C:\Windows\System32\tapiperf.dll - ok
    15:56:04.0029 0844 [ D2344684B47C65546618311724EBD48C ] C:\Windows\System32\perfctrs.dll
    15:56:04.0029 0844 C:\Windows\System32\perfctrs.dll - ok
    15:56:04.0029 0844 [ 01866DCE8C1C4F7EDE6FD261B11E63B9 ] C:\Windows\System32\perfts.dll
    15:56:04.0029 0844 C:\Windows\System32\perfts.dll - ok
    15:56:04.0044 0844 [ 3A0CB63F1EED75A9369F38FDBE65C281 ] C:\Windows\System32\utildll.dll
    15:56:04.0044 0844 C:\Windows\System32\utildll.dll - ok
    15:56:04.0044 0844 [ 64BA269C5932F49F6D3D572ADEA3671A ] C:\Windows\System32\usbperf.dll
    15:56:04.0044 0844 C:\Windows\System32\usbperf.dll - ok
    15:56:04.0060 0844 [ 645A480501108B6156BE64B193B12770 ] C:\Windows\System32\wbem\WmiApRpl.dll
    15:56:04.0060 0844 C:\Windows\System32\wbem\WmiApRpl.dll - ok
    15:56:04.0060 0844 [ E4B386B22D1B6B1684D4CBB5D67AE04C ] C:\Windows\System32\loadperf.dll
    15:56:04.0060 0844 C:\Windows\System32\loadperf.dll - ok
    15:56:04.0075 0844 [ 03A72BF2E6A313E71961FC827B9B9E6C ] C:\Program Files\Diskeeper Corporation\Diskeeper\NsNtfsAutoAnalyze.dll
    15:56:04.0075 0844 C:\Program Files\Diskeeper Corporation\Diskeeper\NsNtfsAutoAnalyze.dll - ok
    15:56:04.0075 0844 [ 82E78A03B6B8489BABEA34ACB57325FD ] C:\Program Files (x86)\Internet Explorer\sqmapi.dll
    15:56:04.0075 0844 C:\Program Files (x86)\Internet Explorer\sqmapi.dll - ok
    15:56:04.0075 0844 [ 2EF3BBE22E5A5ACD1428EE387A0D0172 ] C:\Windows\SysWOW64\netprofm.dll
    15:56:04.0075 0844 C:\Windows\SysWOW64\netprofm.dll - ok
    15:56:04.0091 0844 [ 2D7382773F86CB6051B0C0B86A03DB66 ] C:\Windows\SysWOW64\ieui.dll
    15:56:04.0091 0844 C:\Windows\SysWOW64\ieui.dll - ok
    15:56:04.0091 0844 [ 2EC53B5A351C4D443896DBAD117F7E82 ] C:\Windows\SysWOW64\msimg32.dll
    15:56:04.0091 0844 C:\Windows\SysWOW64\msimg32.dll - ok
    15:56:04.0107 0844 [ 8D78BA30DB4AE040A52EDEE725782715 ] C:\Windows\SysWOW64\actxprxy.dll
    15:56:04.0107 0844 C:\Windows\SysWOW64\actxprxy.dll - ok
    15:56:04.0107 0844 [ DFCAB29E8FD38F95650CC1E203E8D318 ] C:\Windows\SysWOW64\npmproxy.dll
    15:56:04.0107 0844 C:\Windows\SysWOW64\npmproxy.dll - ok
    15:56:04.0122 0844 [ EBB3FE2461DEC5997F99D075FADCBF72 ] C:\Program Files (x86)\Internet Explorer\ieproxy.dll
    15:56:04.0122 0844 C:\Program Files (x86)\Internet Explorer\ieproxy.dll - ok
    15:56:04.0122 0844 [ C683D6CC737E336A7ECA277BB9DA2EE5 ] C:\Windows\winsxs\x86_microsoft-windows-ie-winsockautodialstub_31bf3856ad364e35_8.0.6001.19393_none_d2b5863e73de0ac2\url.dll
    15:56:04.0122 0844 C:\Windows\winsxs\x86_microsoft-windows-ie-winsockautodialstub_31bf3856ad364e35_8.0.6001.19393_none_d2b5863e73de0ac2\url.dll - ok
    15:56:04.0122 0844 [ 1908CC7673F72601AFFDCA022689CEDF ] C:\Windows\SysWOW64\xmllite.dll
    15:56:04.0138 0844 C:\Windows\SysWOW64\xmllite.dll - ok
    15:56:04.0138 0844 [ 9B96F6952186336CC6E3D4E08BE2E0AF ] C:\Windows\SysWOW64\dwmapi.dll
    15:56:04.0138 0844 C:\Windows\SysWOW64\dwmapi.dll - ok
    15:56:04.0138 0844 [ 2071CED6AD98F09A45E885FC04BFC311 ] C:\Program Files (x86)\Internet Explorer\IEShims.dll
    15:56:04.0138 0844 C:\Program Files (x86)\Internet Explorer\IEShims.dll - ok
    15:56:04.0153 0844 [ 4AF1E887FF47EE61215E9803D9746B31 ] C:\Windows\SysWOW64\msfeeds.dll
    15:56:04.0153 0844 C:\Windows\SysWOW64\msfeeds.dll - ok
    15:56:04.0153 0844 [ 3EB6D30D82F0E300FCFBAD0498F654FD ] C:\Windows\SysWOW64\mlang.dll
    15:56:04.0153 0844 C:\Windows\SysWOW64\mlang.dll - ok
    15:56:04.0169 0844 [ 069686D0D4F099E0A92E83051F578713 ] C:\Program Files (x86)\Internet Explorer\iecompat.dll
    15:56:04.0169 0844 C:\Program Files (x86)\Internet Explorer\iecompat.dll - ok
    15:56:04.0169 0844 [ B9497C5ACAEA521663BFFBB321DD3AFA ] C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
    15:56:04.0169 0844 C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll - ok
    15:56:04.0185 0844 [ BA0ED7AA3C36A8DA27DED1D6B3508158 ] C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
    15:56:04.0185 0844 C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll - ok
    15:56:04.0185 0844 [ B53A732C08002F6EDA943DEB8CE91F6E ] C:\Program Files (x86)\Google\Google Toolbar\Component\GoogleToolbarDynamic_32_68D43262AB91CB4A.dll
    15:56:04.0185 0844 C:\Program Files (x86)\Google\Google Toolbar\Component\GoogleToolbarDynamic_32_68D43262AB91CB4A.dll - ok
    15:56:04.0185 0844 [ 76EAEF4DDEBBC7C38853F586C0E91DCE ] C:\Windows\winsxs\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6002.18581_none_9e591052ca1013d0\GdiPlus.dll
    15:56:04.0185 0844 C:\Windows\winsxs\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6002.18581_none_9e591052ca1013d0\GdiPlus.dll - ok
    15:56:04.0200 0844 [ B458B58F7BB97C48D01AC3CF5805AAAC ] C:\Windows\SysWOW64\Query.dll
    15:56:04.0200 0844 C:\Windows\SysWOW64\Query.dll - ok
    15:56:04.0200 0844 [ CDBE9690CF2B8409FACAD94FAC9479C9 ] C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcr90.dll
    15:56:04.0200 0844 C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcr90.dll - ok
    15:56:04.0216 0844 [ 4C39358EBDD2FFCD9132A30E1EC31E16 ] C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcp90.dll
    15:56:04.0216 0844 C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcp90.dll - ok
    15:56:04.0216 0844 [ 6CD44651413CE8F6F8A66760B027D23C ] C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
    15:56:04.0216 0844 C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll - ok
    15:56:04.0231 0844 [ BC8AB9AA21934B663A07F79F7EFA0123 ] C:\Program Files (x86)\DivX\DivX Plus Web Player\ie\DivXHTML5\DivXHTML5.dll
    15:56:04.0231 0844 C:\Program Files (x86)\DivX\DivX Plus Web Player\ie\DivXHTML5\DivXHTML5.dll - ok
    15:56:04.0231 0844 [ 022C2F6DCCDFA0AD73024D254E62AFAC ] C:\Program Files (x86)\Spybot - Search & Destroy\SDHelper.dll
    15:56:04.0231 0844 C:\Program Files (x86)\Spybot - Search & Destroy\SDHelper.dll - ok
    15:56:04.0247 0844 [ BAD663957F682F95B22C4E83AB49CB52 ] C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbarUser_32.exe
    15:56:04.0247 0844 C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbarUser_32.exe - ok
    15:56:04.0247 0844 [ 5EC8FB83F31AA2D6F421F02C3F4F4475 ] C:\Windows\SysWOW64\winspool.drv
    15:56:04.0247 0844 C:\Windows\SysWOW64\winspool.drv - ok
    15:56:04.0263 0844 [ E582816A4855914DEFFC212E12B3B744 ] C:\Windows\SysWOW64\wsock32.dll
    15:56:04.0263 0844 C:\Windows\SysWOW64\wsock32.dll - ok
    15:56:04.0263 0844 [ 8BE000F9A0B0FF7194AAEFB02C9BDE99 ] C:\Windows\SysWOW64\wer.dll
    15:56:04.0263 0844 C:\Windows\SysWOW64\wer.dll - ok
    15:56:04.0263 0844 [ 77784A2BD5912A4EC6284255865526BC ] C:\Windows\SysWOW64\Faultrep.dll
    15:56:04.0263 0844 C:\Windows\SysWOW64\Faultrep.dll - ok
    15:56:04.0278 0844 [ A944A73CEC5921B871542FE5CC5E03E4 ] C:\Windows\SysWOW64\olepro32.dll
    15:56:04.0278 0844 C:\Windows\SysWOW64\olepro32.dll - ok
    15:56:04.0278 0844 [ 9B90EFB5AA4F41500087BA899A8EA6CA ] C:\Windows\SysWOW64\jsproxy.dll
    15:56:04.0278 0844 C:\Windows\SysWOW64\jsproxy.dll - ok
    15:56:04.0294 0844 [ 58EC0172DA8A00597E93A072F6E7F044 ] C:\Program Files (x86)\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_C9EDDF0B6984A451.dll
    15:56:04.0294 0844 C:\Program Files (x86)\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_C9EDDF0B6984A451.dll - ok
    15:56:04.0294 0844 [ A7A6954E500715117B64B414AB81CB44 ] C:\Program Files (x86)\Java\jre7\bin\ssv.dll
    15:56:04.0294 0844 C:\Program Files (x86)\Java\jre7\bin\ssv.dll - ok
    15:56:04.0309 0844 [ EB47E405A9222CA595E5E763B4156529 ] C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
    15:56:04.0309 0844 C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll - ok
    15:56:04.0309 0844 [ 67EC459E42D3081DD8FD34356F7CAFC1 ] C:\Program Files (x86)\Java\jre7\bin\msvcr100.dll
    15:56:04.0309 0844 C:\Program Files (x86)\Java\jre7\bin\msvcr100.dll - ok
    15:56:04.0325 0844 [ D2D31D7A394A70040FCAC5F54A130FBA ] C:\Program Files (x86)\Java\jre7\bin\deploy.dll
    15:56:04.0325 0844 C:\Program Files (x86)\Java\jre7\bin\deploy.dll - ok
    15:56:04.0325 0844 [ DE429F573EA79A5E2590CC52D9B8E282 ] C:\Windows\SysWOW64\mshtml.dll
    15:56:04.0325 0844 C:\Windows\SysWOW64\mshtml.dll - ok
    15:56:04.0325 0844 [ 2ACCD352451EC0F99AF2AD9DB6DB4439 ] C:\Windows\SysWOW64\msls31.dll
    15:56:04.0325 0844 C:\Windows\SysWOW64\msls31.dll - ok
    15:56:04.0341 0844 [ CA69DB1BB9982F7422D2FCCD00965740 ] C:\Program Files (x86)\Google\Google Toolbar\Component\GoogleCld_69A221B9205A3D78.dll
    15:56:04.0341 0844 C:\Program Files (x86)\Google\Google Toolbar\Component\GoogleCld_69A221B9205A3D78.dll - ok
    15:56:04.0341 0844 [ BADC359C9A0D9C217B7E8DA17BF3F5BB ] C:\Windows\SysWOW64\ntshrui.dll
    15:56:04.0341 0844 C:\Windows\SysWOW64\ntshrui.dll - ok
    15:56:04.0356 0844 [ 3A2EEE8444A8E5C1A454C57B2198F5FC ] C:\Windows\SysWOW64\ntlanman.dll
    15:56:04.0356 0844 C:\Windows\SysWOW64\ntlanman.dll - ok
    15:56:04.0356 0844 [ 582EFE56FC0858E58A6CEBA2A64B02C7 ] C:\Windows\SysWOW64\drprov.dll
    15:56:04.0356 0844 C:\Windows\SysWOW64\drprov.dll - ok
    15:56:04.0372 0844 [ CFBD2E1FE18B50748A76703A2DC6D4E3 ] C:\Windows\SysWOW64\davclnt.dll
    15:56:04.0372 0844 C:\Windows\SysWOW64\davclnt.dll - ok
    15:56:04.0372 0844 [ E92143D1B2E32FAF6CC56FD97B908F6A ] C:\Windows\SysWOW64\wpdshext.dll
    15:56:04.0372 0844 C:\Windows\SysWOW64\wpdshext.dll - ok
    15:56:04.0372 0844 [ 2205A220A264E8C8B86492BF3D112907 ] C:\Windows\SysWOW64\PortableDeviceApi.dll
    15:56:04.0372 0844 C:\Windows\SysWOW64\PortableDeviceApi.dll - ok
    15:56:04.0387 0844 [ AC6B8F8058EE27932F9AF8A2D959D201 ] C:\Windows\SysWOW64\msimtf.dll
    15:56:04.0387 0844 C:\Windows\SysWOW64\msimtf.dll - ok
    15:56:04.0387 0844 [ 883D02AB5D350BC45E0F60E8CFA97FDC ] C:\Windows\SysWOW64\PortableDeviceTypes.dll
    15:56:04.0387 0844 C:\Windows\SysWOW64\PortableDeviceTypes.dll - ok
    15:56:04.0403 0844 [ 4BD6F0340D467BC2567CFED43591A9E6 ] C:\Windows\SysWOW64\jscript.dll
    15:56:04.0403 0844 C:\Windows\SysWOW64\jscript.dll - ok
    15:56:04.0403 0844 [ 67C30FAFA58BD7E02A9DA8BE28512934 ] C:\Windows\SysWOW64\audiodev.dll
    15:56:04.0403 0844 C:\Windows\SysWOW64\audiodev.dll - ok
    15:56:04.0419 0844 [ 8DAB5F83430B7CF7BC61DF512F7B4DBC ] C:\Windows\SysWOW64\iepeers.dll
    15:56:04.0419 0844 C:\Windows\SysWOW64\iepeers.dll - ok
    15:56:04.0419 0844 [ 50ABE7CDA2DAE898216121D14092C182 ] C:\Windows\SysWOW64\WMVCORE.DLL
    15:56:04.0419 0844 C:\Windows\SysWOW64\WMVCORE.DLL - ok
    15:56:04.0419 0844 [ 5E1A0476E009A1930A524DFF4CA13982 ] C:\Windows\SysWOW64\dxtrans.dll
    15:56:04.0419 0844 C:\Windows\SysWOW64\dxtrans.dll - ok
    15:56:04.0434 0844 [ 409F36C8BD06FCE184631EB4142B009A ] C:\Windows\SysWOW64\atl.dll
    15:56:04.0434 0844 C:\Windows\SysWOW64\atl.dll - ok
    15:56:04.0434 0844 [ 734DAA4FEAC6905BCFB30410D6C7E003 ] C:\Windows\SysWOW64\ddrawex.dll
    15:56:04.0434 0844 C:\Windows\SysWOW64\ddrawex.dll - ok
    15:56:04.0434 0844 [ FA2A3AFADC4FB47DBC234A4E57F92CDB ] C:\Windows\SysWOW64\ddraw.dll
    15:56:04.0434 0844 C:\Windows\SysWOW64\ddraw.dll - ok
    15:56:04.0450 0844 [ EF764E33878B3A4A9E5A2FB5D0D031D0 ] C:\Windows\SysWOW64\dciman32.dll
    15:56:04.0450 0844 C:\Windows\SysWOW64\dciman32.dll - ok
    15:56:04.0450 0844 [ 0E4F5F276AC0DD50233FC4074CF30F8C ] C:\Windows\SysWOW64\aticfx32.dll
    15:56:04.0450 0844 C:\Windows\SysWOW64\aticfx32.dll - ok
    15:56:04.0465 0844 [ 36CCD8A79539C4ACE3BABE09C2CFBA16 ] C:\Windows\SysWOW64\WMASF.DLL
    15:56:04.0465 0844 C:\Windows\SysWOW64\WMASF.DLL - ok
    15:56:04.0465 0844 [ 9F4CE6ACF73FC5B2E0C5025EB52F547C ] C:\Windows\SysWOW64\atiu9pag.dll
    15:56:04.0465 0844 C:\Windows\SysWOW64\atiu9pag.dll - ok
    15:56:04.0481 0844 [ 9E5C1D19851FAE2ACDBA118AB20D55AC ] C:\Windows\SysWOW64\EhStorAPI.dll
    15:56:04.0481 0844 C:\Windows\SysWOW64\EhStorAPI.dll - ok
    15:56:04.0481 0844 [ 04A518F86D66E856FEB554B924749FCC ] C:\Windows\SysWOW64\atiumdag.dll
    15:56:04.0481 0844 C:\Windows\SysWOW64\atiumdag.dll - ok
    15:56:04.0481 0844 [ 75FCA6334DD97B196D269C10AA7F8ABB ] C:\Windows\SysWOW64\atiumdva.dll
    15:56:04.0481 0844 C:\Windows\SysWOW64\atiumdva.dll - ok
    15:56:04.0497 0844 [ 057D53F1490598D41D9D4DEE9A92B0B1 ] C:\Windows\SysWOW64\dxtmsft.dll
    15:56:04.0497 0844 C:\Windows\SysWOW64\dxtmsft.dll - ok
    15:56:04.0497 0844 [ 42B928FC8518D793BF7A5EAFC57B1D8B ] C:\Windows\SysWOW64\imgutil.dll
    15:56:04.0497 0844 C:\Windows\SysWOW64\imgutil.dll - ok
    15:56:04.0512 0844 [ E5FA1B044DAC5F6F600A1742D73F6936 ] C:\Windows\SysWOW64\pngfilt.dll
    15:56:04.0512 0844 C:\Windows\SysWOW64\pngfilt.dll - ok
    15:56:04.0512 0844 [ C166EF14CBC85AC9747DDA3797F30A06 ] C:\Windows\SysWOW64\d3dim700.dll
    15:56:04.0512 0844 C:\Windows\SysWOW64\d3dim700.dll - ok
    15:56:04.0528 0844 [ 25DEF2EF843275862FFBF55487CEFDDD ] C:\Windows\SysWOW64\Macromed\Flash\Flash32_11_5_502_135.ocx
    15:56:04.0528 0844 C:\Windows\SysWOW64\Macromed\Flash\Flash32_11_5_502_135.ocx - ok
    15:56:04.0528 0844 [ 84B8827562B005C118CADBA0F25DB2C6 ] C:\Windows\SysWOW64\dsound.dll
    15:56:04.0528 0844 C:\Windows\SysWOW64\dsound.dll - ok
    15:56:04.0528 0844 [ 5F1DEC3824E566457F53F24F493FEF08 ] C:\Windows\SysWOW64\mscms.dll
    15:56:04.0528 0844 C:\Windows\SysWOW64\mscms.dll - ok
    15:56:04.0543 0844 [ 6DD10297FF945998E37DE7A107D95855 ] C:\Windows\System32\Macromed\Flash\FlashUtil64_11_5_502_135_ActiveX.exe
    15:56:04.0543 0844 C:\Windows\System32\Macromed\Flash\FlashUtil64_11_5_502_135_ActiveX.exe - ok
    15:56:04.0543 0844 [ E44242BF9861C118A1DE12E279BF4B1E ] C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_11_5_502_135_ActiveX.exe
    15:56:04.0543 0844 C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_11_5_502_135_ActiveX.exe - ok
    15:56:04.0559 0844 [ 376FAD0BD6E157205C8144D23A66493D ] C:\Windows\System32\wbem\cimwin32.dll
    15:56:04.0559 0844 C:\Windows\System32\wbem\cimwin32.dll - ok
    15:56:04.0559 0844 [ BFEFE6082328C37E7A441143E5ADCA31 ] C:\Windows\System32\framedynos.dll
    15:56:04.0559 0844 C:\Windows\System32\framedynos.dll - ok
    15:56:04.0575 0844 [ A483A370982BB46F7962C3190EB468FD ] C:\Windows\System32\security.dll
    15:56:04.0575 0844 C:\Windows\System32\security.dll - ok
    15:56:04.0575 0844 [ 8AAEEE8E59A70F37579993D118A34EE0 ] C:\Windows\SysWOW64\d3d9.dll
    15:56:04.0575 0844 C:\Windows\SysWOW64\d3d9.dll - ok
    15:56:04.0590 0844 [ CD6DA5770CAE9D5E6E86722E17B442E0 ] C:\Windows\SysWOW64\d3d8thk.dll
    15:56:04.0590 0844 C:\Windows\SysWOW64\d3d8thk.dll - ok
    15:56:04.0590 0844 [ 7E38DA8C11833B99766A97CEE3F80F07 ] C:\Windows\SysWOW64\oleaccrc.dll
    15:56:04.0590 0844 C:\Windows\SysWOW64\oleaccrc.dll - ok
    15:56:04.0590 0844 [ 6931C2B4CDBE3305833491D07C71BA07 ] C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_11_5_502_135_ActiveX.dll
    15:56:04.0590 0844 C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_11_5_502_135_ActiveX.dll - ok
    15:56:04.0606 0844 [ C847CF49E40CC92523C6EB231AA1BAE5 ] C:\Windows\System32\wbem\wmipcima.dll
    15:56:04.0606 0844 C:\Windows\System32\wbem\wmipcima.dll - ok
    15:56:04.0606 0844 [ 56B5914070B2C243DFB3D186070DA89D ] C:\Windows\SysWOW64\MMDevAPI.dll
    15:56:04.0606 0844 C:\Windows\SysWOW64\MMDevAPI.dll - ok
    15:56:04.0621 0844 [ 7258434974EA735725FD2D4A65C5E821 ] C:\Windows\SysWOW64\AudioSes.dll
    15:56:04.0621 0844 C:\Windows\SysWOW64\AudioSes.dll - ok
    15:56:04.0621 0844 [ DA7478BA9E41B60B3D5DA456E253002A ] C:\Windows\SysWOW64\AudioEng.dll
    15:56:04.0621 0844 C:\Windows\SysWOW64\AudioEng.dll - ok
    15:56:04.0637 0844 [ 6ABD253226770EAE1292B4C945ED4B4B ] C:\Windows\SysWOW64\msxml3.dll
    15:56:04.0637 0844 C:\Windows\SysWOW64\msxml3.dll - ok
    15:56:04.0637 0844 [ C9244BCAC83B259B920BBEE18A97BFE1 ] C:\Windows\SysWOW64\avrt.dll
    15:56:04.0637 0844 C:\Windows\SysWOW64\avrt.dll - ok
    15:56:04.0637 0844 [ 4AAFC7461633848AA87A363B2CBEC522 ] C:\Windows\SysWOW64\winsta.dll
    15:56:04.0637 0844 C:\Windows\SysWOW64\winsta.dll - ok
    15:56:04.0653 0844 [ 4DF066ECEE5A7B20BF8B39EF4D646600 ] C:\Windows\SysWOW64\wdmaud.drv
    15:56:04.0653 0844 C:\Windows\SysWOW64\wdmaud.drv - ok
    15:56:04.0653 0844 [ 919CC2A0476D5A6A4C935D4B88E29912 ] C:\Windows\SysWOW64\ksuser.dll
    15:56:04.0653 0844 C:\Windows\SysWOW64\ksuser.dll - ok
    15:56:04.0668 0844 [ 166F004D73EA2CF4AC61800CA469458D ] C:\Windows\SysWOW64\msacm32.drv
    15:56:04.0668 0844 C:\Windows\SysWOW64\msacm32.drv - ok
    15:56:04.0668 0844 [ BDBB449425991154135E5ED1559927E6 ] C:\Windows\SysWOW64\msacm32.dll
    15:56:04.0668 0844 C:\Windows\SysWOW64\msacm32.dll - ok
    15:56:04.0684 0844 [ 83199EF88D691E730B80666E29F90D58 ] C:\Windows\SysWOW64\midimap.dll
    15:56:04.0684 0844 C:\Windows\SysWOW64\midimap.dll - ok
    15:56:04.0684 0844 [ C8DBFEF835FF54467425C8F3ABCF7046 ] C:\Windows\SysWOW64\dssenh.dll
    15:56:04.0684 0844 C:\Windows\SysWOW64\dssenh.dll - ok
    15:56:04.0684 0844 [ C1C03EA437EDDA8A7D4D8786E5AE6751 ] C:\Windows\System32\wuauclt.exe
    15:56:04.0684 0844 C:\Windows\System32\wuauclt.exe - ok
    15:56:04.0699 0844 [ 5C27AAAB9A1B1CA30F14C624C19F4DEE ] C:\Windows\System32\wbem\WMIADAP.exe
    15:56:04.0699 0844 C:\Windows\System32\wbem\WMIADAP.exe - ok
    15:56:04.0699 0844 [ 0E642B82DC6C9AFA42128077D086264C ] C:\Program Files\Windows Defender\MpEvMsg.dll
    15:56:04.0699 0844 C:\Program Files\Windows Defender\MpEvMsg.dll - ok
    15:56:04.0715 0844 [ 6C8C001EF62CEFA7E333AF8D0AAED564 ] C:\Program Files (x86)\Microsoft Office\Office12\WINWORD.EXE
    15:56:04.0715 0844 C:\Program Files (x86)\Microsoft Office\Office12\WINWORD.EXE - ok
    15:56:04.0715 0844 [ 18A67CD5082F436D28DD8007CC4A46B6 ] C:\Program Files (x86)\Microsoft Office\Office12\WWLIB.DLL
    15:56:04.0715 0844 C:\Program Files (x86)\Microsoft Office\Office12\WWLIB.DLL - ok
    15:56:04.0715 0844 [ 2C6E01C2269CD4306AD2BC070A2A68F8 ] C:\Program Files (x86)\Microsoft Office\Office12\OART.DLL
    15:56:04.0715 0844 C:\Program Files (x86)\Microsoft Office\Office12\OART.DLL - ok
    15:56:04.0731 0844 [ 7043D485AEAE435312659FF1461F1491 ] C:\Program Files (x86)\Common Files\microsoft shared\OFFICE12\MSO.DLL
    15:56:04.0731 0844 C:\Program Files (x86)\Common Files\microsoft shared\OFFICE12\MSO.DLL - ok
    15:56:04.0731 0844 [ BEF1EAD605CF791FDBB48ADD71075509 ] C:\Program Files (x86)\Microsoft Office\Office12\1033\WWINTL.DLL
    15:56:04.0731 0844 C:\Program Files (x86)\Microsoft Office\Office12\1033\WWINTL.DLL - ok
    15:56:04.0746 0844 [ 8FA9A16022A664F536B616130B2EA866 ] C:\Program Files (x86)\Common Files\microsoft shared\OFFICE12\MSPTLS.DLL
    15:56:04.0746 0844 C:\Program Files (x86)\Common Files\microsoft shared\OFFICE12\MSPTLS.DLL - ok
    15:56:04.0746 0844 [ C7D010BD8BCEF2EB3FCA8F7CD3C08D9F ] C:\Program Files (x86)\Common Files\microsoft shared\OFFICE12\MSORES.DLL
    15:56:04.0746 0844 C:\Program Files (x86)\Common Files\microsoft shared\OFFICE12\MSORES.DLL - ok
    15:56:04.0762 0844 [ 4C5D603A632023BFDB8EDD4436882ABF ] C:\Program Files (x86)\Common Files\microsoft shared\OFFICE12\1033\MSOINTL.DLL
    15:56:04.0762 0844 C:\Program Files (x86)\Common Files\microsoft shared\OFFICE12\1033\MSOINTL.DLL - ok
    15:56:04.0762 0844 [ 128DD9AF8640DBCC711940903C8B554F ] C:\Windows\SysWOW64\mscoree.dll
    15:56:04.0762 0844 C:\Windows\SysWOW64\mscoree.dll - ok
    15:56:04.0777 0844 [ 83BA5E873164A3711B44052F58C8FE9F ] C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscoreei.dll
    15:56:04.0777 0844 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscoreei.dll - ok
    15:56:04.0777 0844 [ 8FECD12803558FA84F63B7DDD16D89F1 ] C:\Program Files (x86)\Common Files\microsoft shared\OFFICE11\MSXML5.DLL
    15:56:04.0777 0844 C:\Program Files (x86)\Common Files\microsoft shared\OFFICE11\MSXML5.DLL - ok
    15:56:04.0793 0844 [ 3D85663DB8A364B5A20ECD588CF4C870 ] C:\Windows\splwow64.exe
    15:56:04.0793 0844 C:\Windows\splwow64.exe - ok
    15:56:04.0793 0844 [ 75EB974222F293159427F9A77A5F3C6A ] C:\Program Files\Common Files\Microsoft Shared\OFFICE12\msoshext.dll
    15:56:04.0793 0844 C:\Program Files\Common Files\Microsoft Shared\OFFICE12\msoshext.dll - ok
    15:56:04.0809 0844 [ 93041736961E33317C5005684D9F2105 ] C:\Program Files\Common Files\Microsoft Shared\OFFICE11\msxml5.dll
    15:56:04.0809 0844 C:\Program Files\Common Files\Microsoft Shared\OFFICE11\msxml5.dll - ok
    15:56:04.0809 0844 [ 2EB650934802BBB781454FDE5E6C3E4C ] C:\Windows\System32\spool\drivers\x64\3\HPZUILHN.DLL
    15:56:04.0809 0844 C:\Windows\System32\spool\drivers\x64\3\HPZUILHN.DLL - ok
    15:56:04.0809 0844 [ ADE2BCD1FDE5C9669FCE1F4541AB46DD ] C:\Windows\System32\spool\drivers\x64\3\UNIDRV.DLL
    15:56:04.0809 0844 C:\Windows\System32\spool\drivers\x64\3\UNIDRV.DLL - ok
    15:56:04.0824 0844 [ 5AC3CB53406CB9AABB25D46B3385528F ] C:\Windows\System32\spool\drivers\x64\3\UNIDRVUI.DLL
    15:56:04.0824 0844 C:\Windows\System32\spool\drivers\x64\3\UNIDRVUI.DLL - ok
    15:56:04.0824 0844 [ E5A2A9DC53E0F12AE4409AB32DAA54A7 ] C:\Windows\System32\compstui.dll
    15:56:04.0824 0844 C:\Windows\System32\compstui.dll - ok
    15:56:04.0840 0844 [ 1A8B4857F2CAAED89E16B1ED1F24930D ] C:\Program Files (x86)\Common Files\microsoft shared\OFFICE12\RICHED20.DLL
    15:56:04.0840 0844 C:\Program Files (x86)\Common Files\microsoft shared\OFFICE12\RICHED20.DLL - ok
    15:56:04.0840 0844 [ EC3989CBBA7310E4A07DEF1986C3B1EE ] C:\Program Files (x86)\Microsoft Small Business\Small Business Accounting 2007\PayPalWordAddinShim.dll
    15:56:04.0840 0844 C:\Program Files (x86)\Microsoft Small Business\Small Business Accounting 2007\PayPalWordAddinShim.dll - ok
    15:56:04.0855 0844 [ 4E289C24E5BEB5FF9CF5B118AB96FDB0 ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorwks.dll
    15:56:04.0855 0844 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorwks.dll - ok
    15:56:04.0855 0844 [ 017796FBD97D85BF0A3670F72A801A8F ] C:\Windows\assembly\GAC_32\mscorlib\2.0.0.0__b77a5c561934e089\mscorlib.dll
    15:56:04.0855 0844 C:\Windows\assembly\GAC_32\mscorlib\2.0.0.0__b77a5c561934e089\mscorlib.dll - ok
    15:56:04.0871 0844 [ 3787A4BC97CE6C630F4B581425223D96 ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorjit.dll
    15:56:04.0871 0844 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorjit.dll - ok
    15:56:04.0871 0844 [ 1972322B0D8130C41DEC917FFF1D926B ] C:\Program Files (x86)\Microsoft Small Business\Small Business Accounting 2007\PayPalWordAddin.dll
    15:56:04.0871 0844 C:\Program Files (x86)\Microsoft Small Business\Small Business Accounting 2007\PayPalWordAddin.dll - ok
    15:56:04.0871 0844 [ A6FA5D45ACF2E855F890FAC505EFEDB2 ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsec.dll
    15:56:04.0871 0844 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsec.dll - ok
    15:56:04.0887 0844 [ 74C8987F1B2549E1DF3EB3874B68ECAC ] C:\Windows\assembly\GAC\Extensibility\7.0.3300.0__b03f5f7f11d50a3a\extensibility.dll
    15:56:04.0887 0844 C:\Windows\assembly\GAC\Extensibility\7.0.3300.0__b03f5f7f11d50a3a\extensibility.dll - ok
    15:56:04.0887 0844 [ 54719FDC6A752DC78B364A3980DBC2E9 ] C:\Windows\assembly\GAC\Microsoft.Office.Interop.Word\12.0.0.0__71e9bce111e9429c\Microsoft.Office.Interop.Word.dll
    15:56:04.0887 0844 C:\Windows\assembly\GAC\Microsoft.Office.Interop.Word\12.0.0.0__71e9bce111e9429c\Microsoft.Office.Interop.Word.dll - ok
    15:56:04.0902 0844 [ B60C87E3CD3ACFA71DAD8145C66D6E9C ] C:\Windows\assembly\GAC\Microsoft.Vbe.Interop\12.0.0.0__71e9bce111e9429c\Microsoft.Vbe.Interop.dll
    15:56:04.0902 0844 C:\Windows\assembly\GAC\Microsoft.Vbe.Interop\12.0.0.0__71e9bce111e9429c\Microsoft.Vbe.Interop.dll - ok
    15:56:04.0902 0844 [ DF7CBCD2DB89880A8A92EA134611B038 ] C:\Windows\assembly\GAC\office\12.0.0.0__71e9bce111e9429c\OFFICE.DLL
    15:56:04.0902 0844 C:\Windows\assembly\GAC\office\12.0.0.0__71e9bce111e9429c\OFFICE.DLL - ok
    15:56:04.0918 0844 [ E1EEB7E26AB04075EECC7275239B20B3 ] C:\Windows\assembly\GAC\stdole\7.0.3300.0__b03f5f7f11d50a3a\stdole.dll
    15:56:04.0918 0844 C:\Windows\assembly\GAC\stdole\7.0.3300.0__b03f5f7f11d50a3a\stdole.dll - ok
    15:56:04.0918 0844 [ E06D9B2C2F3877615081120E65212A83 ] C:\Windows\assembly\GAC_MSIL\Microsoft.BusinessSolutions.SBA.Interop.Word\8.3.0.0__31bf3856ad364e35\Microsoft.BusinessSolutions.SBA.Interop.Word.dll
    15:56:04.0918 0844 C:\Windows\assembly\GAC_MSIL\Microsoft.BusinessSolutions.SBA.Interop.Word\8.3.0.0__31bf3856ad364e35\Microsoft.BusinessSolutions.SBA.Interop.Word.dll - ok
    15:56:04.0933 0844 [ 4428CD96F050498FCC6847980F10E2FD ] C:\Windows\assembly\GAC\SBAIAPI\1.0.2409.0__31bf3856ad364e35\SBAIAPI.dll
    15:56:04.0933 0844 C:\Windows\assembly\GAC\SBAIAPI\1.0.2409.0__31bf3856ad364e35\SBAIAPI.dll - ok
    15:56:04.0933 0844 [ 530ED4B00397C2E65DDFDDFAC60744D2 ] C:\Windows\assembly\GAC_MSIL\System.Windows.Forms\2.0.0.0__b77a5c561934e089\System.Windows.Forms.dll
    15:56:04.0933 0844 C:\Windows\assembly\GAC_MSIL\System.Windows.Forms\2.0.0.0__b77a5c561934e089\System.Windows.Forms.dll - ok
    15:56:04.0949 0844 [ 1DE412C2A8557441B5D8CAC287280705 ] C:\Windows\assembly\GAC_MSIL\System\2.0.0.0__b77a5c561934e089\System.dll
    15:56:04.0949 0844 C:\Windows\assembly\GAC_MSIL\System\2.0.0.0__b77a5c561934e089\System.dll - ok
    15:56:04.0949 0844 [ 88D483E7AD4E02205F5F67E7D7007BD4 ] C:\Windows\assembly\GAC_MSIL\System.Drawing\2.0.0.0__b03f5f7f11d50a3a\System.Drawing.dll
    15:56:04.0949 0844 C:\Windows\assembly\GAC_MSIL\System.Drawing\2.0.0.0__b03f5f7f11d50a3a\System.Drawing.dll - ok
    15:56:04.0965 0844 [ 562AC2A26CA4AA54ABD5F50463F5FA6A ] C:\Windows\assembly\GAC_MSIL\System.Configuration\2.0.0.0__b03f5f7f11d50a3a\System.configuration.dll
    15:56:04.0965 0844 C:\Windows\assembly\GAC_MSIL\System.Configuration\2.0.0.0__b03f5f7f11d50a3a\System.configuration.dll - ok
    15:56:04.0965 0844 [ 214A848813988454474E21ED531D3CEC ] C:\Windows\assembly\GAC_MSIL\System.Xml\2.0.0.0__b77a5c561934e089\System.XML.dll
    15:56:04.0965 0844 C:\Windows\assembly\GAC_MSIL\System.Xml\2.0.0.0__b77a5c561934e089\System.XML.dll - ok
    15:56:04.0965 0844 [ DA79517783552B80229705D9720B8E8D ] C:\Program Files (x86)\Microsoft Office\Office12\msproof6.dll
    15:56:04.0965 0844 C:\Program Files (x86)\Microsoft Office\Office12\msproof6.dll - ok
    15:56:04.0980 0844 [ 22D13FF3DAFEC2A80634752B1EAA2DE6 ] C:\Windows\System32\drivers\asyncmac.sys
    15:56:04.0980 0844 C:\Windows\System32\drivers\asyncmac.sys - ok
    15:56:04.0980 0844 [ EAFEF8A6A14B024C5F97D00D0D501078 ] C:\Program Files (x86)\Common Files\microsoft shared\VBA\VBA6\VBE6.DLL
    15:56:04.0980 0844 C:\Program Files (x86)\Common Files\microsoft shared\VBA\VBA6\VBE6.DLL - ok
    15:56:04.0996 0844 [ B64D8A3F75C4AB72242910D9F4BBEB75 ] C:\Program Files (x86)\Common Files\microsoft shared\VBA\VBA6\1033\VBE6INTL.DLL
    15:56:04.0996 0844 C:\Program Files (x86)\Common Files\microsoft shared\VBA\VBA6\1033\VBE6INTL.DLL - ok
    15:56:04.0996 0844 [ 8607A3AE9C287A8E3CDF6E410A1426A7 ] C:\Windows\assembly\GAC_32\CustomMarshalers\2.0.0.0__b03f5f7f11d50a3a\CustomMarshalers.dll
    15:56:04.0996 0844 C:\Windows\assembly\GAC_32\CustomMarshalers\2.0.0.0__b03f5f7f11d50a3a\CustomMarshalers.dll - ok
    15:56:05.0011 0844 [ 24F90AEFEBE601D427CB4511E74CDCB6 ] C:\Windows\SysWOW64\linkinfo.dll
    15:56:05.0011 0844 C:\Windows\SysWOW64\linkinfo.dll - ok
    15:56:05.0011 0844 [ 4A1B8AF97E3B0AEF8BE1B8684277200B ] C:\Program Files (x86)\Common Files\microsoft shared\OFFICE12\OGL.DLL
    15:56:05.0011 0844 C:\Program Files (x86)\Common Files\microsoft shared\OFFICE12\OGL.DLL - ok
    15:56:05.0027 0844 [ 7E28AF47DD4E878271ABCAE01071FA07 ] C:\Program Files (x86)\Microsoft Office\Office12\MSOHEV.DLL
    15:56:05.0027 0844 C:\Program Files (x86)\Microsoft Office\Office12\MSOHEV.DLL - ok
    15:56:05.0043 0844 [ CB0C98DD5C3108F71BAA938B1ECD8B04 ] C:\Program Files (x86)\Common Files\microsoft shared\PROOF\MSLID.DLL
    15:56:05.0043 0844 C:\Program Files (x86)\Common Files\microsoft shared\PROOF\MSLID.DLL - ok
    15:56:05.0043 0844 [ C2B290CE6B81520B96377E890F4C021C ] C:\Program Files (x86)\Common Files\microsoft shared\PROOF\1033\MSGR3EN.DLL
    15:56:05.0043 0844 C:\Program Files (x86)\Common Files\microsoft shared\PROOF\1033\MSGR3EN.DLL - ok
    15:56:05.0058 0844 [ 3A9FBA6005BC10EF8D1E61B9FE589505 ] C:\Program Files (x86)\Microsoft Office\Office12\NLSDATA0009.DLL
    15:56:05.0058 0844 C:\Program Files (x86)\Microsoft Office\Office12\NLSDATA0009.DLL - ok
    15:56:05.0058 0844 [ 1A514CA70E5FAF1CEC2F51CDAB1367A7 ] C:\Program Files (x86)\Microsoft Office\Office12\NLSLEXICONS0009_SP.dll
    15:56:05.0058 0844 C:\Program Files (x86)\Microsoft Office\Office12\NLSLEXICONS0009_SP.dll - ok
    15:56:05.0074 0844 [ 707F023159B541EAD5DD6ADB2E605443 ] C:\Program Files (x86)\Microsoft Office\Office12\NLSMODELS0009.dll
    15:56:05.0074 0844 C:\Program Files (x86)\Microsoft Office\Office12\NLSMODELS0009.dll - ok
    15:56:05.0074 0844 [ 11913501760C633AC044A56FFD6A9A2E ] C:\Program Files (x86)\Common Files\System\ado\msadox.dll
    15:56:05.0074 0844 C:\Program Files (x86)\Common Files\System\ado\msadox.dll - ok
    15:56:05.0089 0844 [ EBC984F0CE40E0DAF0454D806EC2A7EC ] C:\Users\FamilyLove\Desktop\tdsskiller.exe
    15:56:05.0089 0844 C:\Users\FamilyLove\Desktop\tdsskiller.exe - ok
    15:56:05.0089 0844 [ AEC6EF113ADB5308F178975EB9C52E71 ] C:\Windows\System32\consent.exe
    15:56:05.0089 0844 C:\Windows\System32\consent.exe - ok
    15:56:05.0105 0844 [ 0C70F62806667FDD3271A331D3BC527F ] C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamext.dll
    15:56:05.0105 0844 C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamext.dll - ok
    15:56:05.0105 0844 [ F7A5CC67E7ECEAFD6982F08A7AC60BD3 ] C:\Windows\System32\synceng.dll
    15:56:05.0105 0844 C:\Windows\System32\synceng.dll - ok
    15:56:05.0105 0844 [ 9DBA941FCC46A45C55C7A2105FB794AC ] C:\Windows\System32\syncui.dll
    15:56:05.0105 0844 C:\Windows\System32\syncui.dll - ok
    15:56:05.0121 0844 [ F146E2BA475893DD77B2370DC1211FC6 ] C:\Windows\System32\drivers\90168158.sys
    15:56:05.0121 0844 C:\Windows\System32\drivers\90168158.sys - ok
    15:56:05.0121 0844 ============================================================
    15:56:05.0121 0844 Scan finished
    15:56:05.0121 0844 ============================================================
    15:56:05.0136 2992 Detected object count: 4
    15:56:05.0136 2992 Actual detected object count: 4
    15:56:08.0225 2992 ETService ( UnsignedFile.Multi.Generic ) - skipped by user
    15:56:08.0225 2992 ETService ( UnsignedFile.Multi.Generic ) - User select action: Skip
    15:56:08.0241 2992 IDriverT ( UnsignedFile.Multi.Generic ) - skipped by user
    15:56:08.0241 2992 IDriverT ( UnsignedFile.Multi.Generic ) - User select action: Skip
    15:56:08.0241 2992 ITEIO.SYS ( UnsignedFile.Multi.Generic ) - skipped by user
    15:56:08.0241 2992 ITEIO.SYS ( UnsignedFile.Multi.Generic ) - User select action: Skip
    15:56:08.0241 2992 LightScribeService ( UnsignedFile.Multi.Generic ) - skipped by user
    15:56:08.0241 2992 LightScribeService ( UnsignedFile.Multi.Generic ) - User select action: Skip
    15:58:03.0209 4400 Deinitialize success
     
  10. Gabriellaa

    Gabriellaa Thread Starter

    Joined:
    Nov 14, 2008
    Messages:
    14
    I also downloaded Superantispyware and this is the log it found. I had it quarantine everything at the moment.
    It is just a trial version.

    SUPERAntiSpyware Scan Log
    http://www.superantispyware.com

    Generated 12/24/2012 at 03:24 PM

    Application Version : 5.6.1014

    Core Rules Database Version : 9786
    Trace Rules Database Version: 7598

    Scan type : Complete Scan
    Total Scan Time : 01:00:56

    Operating System Information
    Windows Vista Home Premium 64-bit, Service Pack 2 (Build 6.00.6002)
    UAC On - Limited User

    Memory items scanned : 663
    Memory threats detected : 0
    Registry items scanned : 74775
    Registry threats detected : 24
    File items scanned : 79357
    File threats detected : 126

    Adware.HBHelper
    (x86) HKCR\CLSID\{CA3EB689-8F09-4026-AA10-B9534C691CE0}
    (x86) HKCR\CLSID\{CA3EB689-8F09-4026-AA10-B9534C691CE0}\InprocServer32
    (x86) HKCR\CLSID\{CA3EB689-8F09-4026-AA10-B9534C691CE0}\InprocServer32#ThreadingModel
    (x86) HKCR\CLSID\{CA3EB689-8F09-4026-AA10-B9534C691CE0}\ProgID
    (x86) HKCR\CLSID\{CA3EB689-8F09-4026-AA10-B9534C691CE0}\TypeLib
    (x86) HKCR\CLSID\{CA3EB689-8F09-4026-AA10-B9534C691CE0}\VersionIndependentProgID
    (x86) HKLM\Software\Classes\CLSID\{CA3EB689-8F09-4026-AA10-B9534C691CE0}
    (x86) HKCR\CLSID\{CA3EB689-8F09-4026-AA10-B9534C691CE0}
    (x86) HKCR\URLSearchHook.ToolbarURLSearchHook.1
    (x86) HKCR\URLSearchHook.ToolbarURLSearchHook.1\CLSID
    (x86) HKCR\URLSearchHook.ToolbarURLSearchHook
    (x86) HKCR\URLSearchHook.ToolbarURLSearchHook\CLSID
    (x86) HKCR\TypeLib\{4509D3CC-B642-4745-B030-645B79522C6D}
    (x86) HKCR\TypeLib\{4509D3CC-B642-4745-B030-645B79522C6D}\1.0
    (x86) HKCR\TypeLib\{4509D3CC-B642-4745-B030-645B79522C6D}\1.0\0
    (x86) HKCR\TypeLib\{4509D3CC-B642-4745-B030-645B79522C6D}\1.0\0\win32
    (x86) HKCR\TypeLib\{4509D3CC-B642-4745-B030-645B79522C6D}\1.0\FLAGS
    (x86) HKCR\TypeLib\{4509D3CC-B642-4745-B030-645B79522C6D}\1.0\HELPDIR

    Browser Hijacker.Deskbar
    (x86) HKCR\Interface\{4897BBA6-48D9-468C-8EFA-846275D7701B}
    (x86) HKCR\Interface\{4897BBA6-48D9-468C-8EFA-846275D7701B}\ProxyStubClsid
    (x86) HKCR\Interface\{4897BBA6-48D9-468C-8EFA-846275D7701B}\ProxyStubClsid32
    (x86) HKCR\Interface\{4897BBA6-48D9-468C-8EFA-846275D7701B}\TypeLib
    (x86) HKCR\Interface\{4897BBA6-48D9-468C-8EFA-846275D7701B}\TypeLib#Version

    Adware.Tracking Cookie
    C:\USERS\FAMILYLOVE\AppData\Roaming\Microsoft\Windows\Cookies\Low\HIYUVFRI.txt [ Cookie:[email protected]/ ]
    C:\USERS\FAMILYLOVE\AppData\Roaming\Microsoft\Windows\Cookies\Low\P4X5SQQ0.txt [ Cookie:[email protected]/ ]
    C:\USERS\FAMILYLOVE\AppData\Roaming\Microsoft\Windows\Cookies\Low\AWBGD41X.txt [ Cookie:[email protected]/ ]
    C:\USERS\FAMILYLOVE\AppData\Roaming\Microsoft\Windows\Cookies\Low\E0KQ2CSS.txt [ Cookie:[email protected]/ ]
    C:\USERS\FAMILYLOVE\AppData\Roaming\Microsoft\Windows\Cookies\Low\T0OHIP7F.txt [ Cookie:[email protected]/ ]
    C:\USERS\FAMILYLOVE\AppData\Roaming\Microsoft\Windows\Cookies\Low\WM22XHSV.txt [ Cookie:[email protected]/pagead/conversion/1065648472/ ]
    C:\USERS\FAMILYLOVE\AppData\Roaming\Microsoft\Windows\Cookies\Low\VP0AF6T0.txt [ Cookie:[email protected]/ ]
    C:\USERS\FAMILYLOVE\AppData\Roaming\Microsoft\Windows\Cookies\Low\E8MBM1YZ.txt [ Cookie:[email protected]/ ]
    C:\USERS\FAMILYLOVE\AppData\Roaming\Microsoft\Windows\Cookies\Low\6BGU6OR7.txt [ Cookie:[email protected]/ ]
    C:\USERS\FAMILYLOVE\AppData\Roaming\Microsoft\Windows\Cookies\Low\1U885FU9.txt [ Cookie:[email protected]/ ]
    C:\USERS\FAMILYLOVE\AppData\Roaming\Microsoft\Windows\Cookies\Low\1YW6H30T.txt [ Cookie:[email protected]/ ]
    C:\USERS\FAMILYLOVE\AppData\Roaming\Microsoft\Windows\Cookies\Low\3O7IYDJO.txt [ Cookie:[email protected]/ ]
    C:\USERS\FAMILYLOVE\AppData\Roaming\Microsoft\Windows\Cookies\Low\ZWZ1408D.txt [ Cookie:[email protected]/ ]
    C:\USERS\FAMILYLOVE\AppData\Roaming\Microsoft\Windows\Cookies\Low\2GW28TOF.txt [ Cookie:[email protected]/ ]
    C:\USERS\FAMILYLOVE\AppData\Roaming\Microsoft\Windows\Cookies\Low\09NDRFN9.txt [ Cookie:[email protected]/ ]
    C:\USERS\FAMILYLOVE\AppData\Roaming\Microsoft\Windows\Cookies\Low\81H8YQW3.txt [ Cookie:[email protected]/ ]
    C:\USERS\FAMILYLOVE\AppData\Roaming\Microsoft\Windows\Cookies\Low\QN3C45B4.txt [ Cookie:[email protected]/ ]
    C:\USERS\FAMILYLOVE\AppData\Roaming\Microsoft\Windows\Cookies\Low\UBC5TPTB.txt [ Cookie:[email protected]/cgi-bin ]
    C:\USERS\FAMILYLOVE\AppData\Roaming\Microsoft\Windows\Cookies\Low\MCT54Q2S.txt [ Cookie:[email protected]/ ]
    C:\USERS\FAMILYLOVE\AppData\Roaming\Microsoft\Windows\Cookies\Low\7XX12GL3.txt [ Cookie:[email protected]/ ]
    C:\USERS\FAMILYLOVE\AppData\Roaming\Microsoft\Windows\Cookies\Low\2HRU2APX.txt [ Cookie:[email protected]/ ]
    C:\USERS\FAMILYLOVE\AppData\Roaming\Microsoft\Windows\Cookies\Low\3IDIVYYX.txt [ Cookie:[email protected]/ ]
    C:\USERS\FAMILYLOVE\AppData\Roaming\Microsoft\Windows\Cookies\Low\JPC410LP.txt [ Cookie:[email protected]/hc/65861323 ]
    C:\USERS\FAMILYLOVE\AppData\Roaming\Microsoft\Windows\Cookies\Low\GNW2RJ77.txt [ Cookie:[email protected]/ ]
    C:\USERS\FAMILYLOVE\AppData\Roaming\Microsoft\Windows\Cookies\Low\HTPV8J2J.txt [ Cookie:[email protected]/ ]
    C:\USERS\FAMILYLOVE\AppData\Roaming\Microsoft\Windows\Cookies\Low\XP0XDFI5.txt [ Cookie:[email protected]/ ]
    C:\USERS\FAMILYLOVE\AppData\Roaming\Microsoft\Windows\Cookies\Low\4Y7UC27G.txt [ Cookie:[email protected]/ ]
    C:\USERS\FAMILYLOVE\AppData\Roaming\Microsoft\Windows\Cookies\Low\UY026RNO.txt [ Cookie:[email protected]/ ]
    C:\USERS\FAMILYLOVE\AppData\Roaming\Microsoft\Windows\Cookies\Low\5CJU41SD.txt [ Cookie:[email protected]/ ]
    C:\USERS\FAMILYLOVE\AppData\Roaming\Microsoft\Windows\Cookies\Low\SOQL1XR5.txt [ Cookie:[email protected]/ ]
    C:\USERS\FAMILYLOVE\AppData\Roaming\Microsoft\Windows\Cookies\Low\Z0YNLRZJ.txt [ Cookie:[email protected]/hc/19452074 ]
    C:\USERS\FAMILYLOVE\AppData\Roaming\Microsoft\Windows\Cookies\Low\O4ZI147Q.txt [ Cookie:[email protected]/ ]
    C:\USERS\FAMILYLOVE\AppData\Roaming\Microsoft\Windows\Cookies\Low\UGH3VRW9.txt [ Cookie:[email protected]/ ]
    .ads.pointroll.com [ C:\USERS\FAMILYLOVE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .pointroll.com [ C:\USERS\FAMILYLOVE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .2o7.net [ C:\USERS\FAMILYLOVE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .2o7.net [ C:\USERS\FAMILYLOVE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .specificclick.net [ C:\USERS\FAMILYLOVE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .specificclick.net [ C:\USERS\FAMILYLOVE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .specificclick.net [ C:\USERS\FAMILYLOVE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .specificclick.net [ C:\USERS\FAMILYLOVE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .revsci.net [ C:\USERS\FAMILYLOVE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .revsci.net [ C:\USERS\FAMILYLOVE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    ad.yieldmanager.com [ C:\USERS\FAMILYLOVE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    ad.yieldmanager.com [ C:\USERS\FAMILYLOVE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .eaeacom.112.2o7.net [ C:\USERS\FAMILYLOVE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .divx.112.2o7.net [ C:\USERS\FAMILYLOVE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .atdmt.com [ C:\USERS\FAMILYLOVE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .interclick.com [ C:\USERS\FAMILYLOVE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .interclick.com [ C:\USERS\FAMILYLOVE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .a1.interclick.com [ C:\USERS\FAMILYLOVE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .interclick.com [ C:\USERS\FAMILYLOVE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .interclick.com [ C:\USERS\FAMILYLOVE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    ad.yieldmanager.com [ C:\USERS\FAMILYLOVE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    ad.yieldmanager.com [ C:\USERS\FAMILYLOVE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .serving-sys.com [ C:\USERS\FAMILYLOVE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .serving-sys.com [ C:\USERS\FAMILYLOVE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .collective-media.net [ C:\USERS\FAMILYLOVE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .invitemedia.com [ C:\USERS\FAMILYLOVE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .invitemedia.com [ C:\USERS\FAMILYLOVE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .invitemedia.com [ C:\USERS\FAMILYLOVE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .invitemedia.com [ C:\USERS\FAMILYLOVE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .a1.interclick.com [ C:\USERS\FAMILYLOVE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .a1.interclick.com [ C:\USERS\FAMILYLOVE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .a1.interclick.com [ C:\USERS\FAMILYLOVE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .a1.interclick.com [ C:\USERS\FAMILYLOVE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .interclick.com [ C:\USERS\FAMILYLOVE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .a1.interclick.com [ C:\USERS\FAMILYLOVE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .adbrite.com [ C:\USERS\FAMILYLOVE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .imrworldwide.com [ C:\USERS\FAMILYLOVE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .imrworldwide.com [ C:\USERS\FAMILYLOVE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .insightexpressai.com [ C:\USERS\FAMILYLOVE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .insightexpressai.com [ C:\USERS\FAMILYLOVE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .revsci.net [ C:\USERS\FAMILYLOVE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .advertising.com [ C:\USERS\FAMILYLOVE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .questionmarket.com [ C:\USERS\FAMILYLOVE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .advertising.com [ C:\USERS\FAMILYLOVE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .sendtraffic.com [ C:\USERS\FAMILYLOVE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .revsci.net [ C:\USERS\FAMILYLOVE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .revsci.net [ C:\USERS\FAMILYLOVE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .revsci.net [ C:\USERS\FAMILYLOVE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    ad.yieldmanager.com [ C:\USERS\FAMILYLOVE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .atdmt.com [ C:\USERS\FAMILYLOVE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .h.atdmt.com [ C:\USERS\FAMILYLOVE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .h.atdmt.com [ C:\USERS\FAMILYLOVE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .atdmt.com [ C:\USERS\FAMILYLOVE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .atdmt.com [ C:\USERS\FAMILYLOVE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .h.atdmt.com [ C:\USERS\FAMILYLOVE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .h.atdmt.com [ C:\USERS\FAMILYLOVE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .advertising.com [ C:\USERS\FAMILYLOVE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .advertising.com [ C:\USERS\FAMILYLOVE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .ads.pointroll.com [ C:\USERS\FAMILYLOVE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .pointroll.com [ C:\USERS\FAMILYLOVE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .ads.pointroll.com [ C:\USERS\FAMILYLOVE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .ads.pointroll.com [ C:\USERS\FAMILYLOVE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .ads.pointroll.com [ C:\USERS\FAMILYLOVE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .ads.pointroll.com [ C:\USERS\FAMILYLOVE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .ads.pointroll.com [ C:\USERS\FAMILYLOVE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .ads.pointroll.com [ C:\USERS\FAMILYLOVE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .media6degrees.com [ C:\USERS\FAMILYLOVE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .media6degrees.com [ C:\USERS\FAMILYLOVE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .media6degrees.com [ C:\USERS\FAMILYLOVE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .media6degrees.com [ C:\USERS\FAMILYLOVE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    ad.yieldmanager.com [ C:\USERS\FAMILYLOVE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .invitemedia.com [ C:\USERS\FAMILYLOVE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .at.atwola.com [ C:\USERS\FAMILYLOVE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .ru4.com [ C:\USERS\FAMILYLOVE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .serving-sys.com [ C:\USERS\FAMILYLOVE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .serving-sys.com [ C:\USERS\FAMILYLOVE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .serving-sys.com [ C:\USERS\FAMILYLOVE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .collective-media.net [ C:\USERS\FAMILYLOVE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .collective-media.net [ C:\USERS\FAMILYLOVE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .collective-media.net [ C:\USERS\FAMILYLOVE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .collective-media.net [ C:\USERS\FAMILYLOVE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .questionmarket.com [ C:\USERS\FAMILYLOVE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .questionmarket.com [ C:\USERS\FAMILYLOVE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .adbrite.com [ C:\USERS\FAMILYLOVE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .invitemedia.com [ C:\USERS\FAMILYLOVE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .advertising.com [ C:\USERS\FAMILYLOVE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    core.insightexpressai.com [ C:\USERS\FAMILYLOVE\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\3GJW2TUT ]
    core.saymedia.com [ C:\USERS\FAMILYLOVE\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\3GJW2TUT ]
    crackle.com [ C:\USERS\FAMILYLOVE\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\3GJW2TUT ]
    ia.media-imdb.com [ C:\USERS\FAMILYLOVE\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\3GJW2TUT ]
    img-cdn.mediaplex.com [ C:\USERS\FAMILYLOVE\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\3GJW2TUT ]
    memecounter.com [ C:\USERS\FAMILYLOVE\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\3GJW2TUT ]
    msnbcmedia.msn.com [ C:\USERS\FAMILYLOVE\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\3GJW2TUT ]

    Adware.IWinGames
    (x86) HKU\S-1-5-21-3586427782-1107690275-415207812-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{8CA5ED52-F3FB-4414-A105-2E3491156990}
     
  11. Gabriellaa

    Gabriellaa Thread Starter

    Joined:
    Nov 14, 2008
    Messages:
    14
    I do not see anything that says Vista Defender 2013 in it. Is it possible that it is actually removed? I was under the understanding that it takes more than just quarantine action.
     
  12. Gabriellaa

    Gabriellaa Thread Starter

    Joined:
    Nov 14, 2008
    Messages:
    14
    Sorry about the constant post, just wanting to inform you of actions I have taken.


    I used microsoft system file checker by typing in sfc/scannow in cmd.
    This was the result:
    Microsoft Windows (Version 6.0.6002)
    Copyright © 2006 Microsoft Corporation. All rights reserved.

    C:\Windows\system32>sfc/scannow
    Beginning system scan. This process will take some time.

    Beginning verification phase of system scan.
    Verification 100% complete.
    Windows Resource Protection found corrupt files but was unable to fix some of them.

    I then rebooted for the system to fix what it could. That file is extremely long and I am SURE you do not want it posted. :eek:
     
  13. dvk01

    dvk01 Moderator Malware Specialist

    Joined:
    Dec 14, 2002
    Messages:
    56,451
    First Name:
    Derek
    there are no signs of anything there

    if you aren't having any problem s then there isn't much we can do

    I don't see any antivirus on that computer so
    download & install the Microsoft Security Essentials Antivirus

    do a full scan, let it fix what ever it finds & post back any log it makes
     
  14. Gabriellaa

    Gabriellaa Thread Starter

    Joined:
    Nov 14, 2008
    Messages:
    14
    That is music to my ears. I did download the security essentials however I guess it was deleted when I did a system restore. Thank you Derek for all your help. I do have a question.. what is your take on SpyHunter? After all the cleaning I have done it is still showing that I have trojans on my pc, it is only a scanner version, I am wondering if they are just trying to get me to buy their product?

    Thank you again for your help.

    Sincerely
    Gabriella
     
  15. Gabriellaa

    Gabriellaa Thread Starter

    Joined:
    Nov 14, 2008
    Messages:
    14
    I am truly sorry if I am coming off as a nuisance..... so much posting, anyways, about SpyHunter, it is showing that I have over 344 threats which two of them are level 5 --- one is Rogue PC defender Plus with four locations, and the second is Trojan BHO with 6 locations. Do I ignore that report?
     
  16. Sponsor

As Seen On
As Seen On...

Welcome to Tech Support Guy!

Are you looking for the solution to your computer problem? Join our site today to ask your question. This site is completely free -- paid for by advertisers and donations.

If you're not already familiar with forums, watch our Welcome Guide to get started.

Join over 733,556 other people just like you!

Loading...
Thread Status:
Not open for further replies.

Short URL to this thread: https://techguy.org/1082181

  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.
    Dismiss Notice