Jump to content

Welcome to Geeks to Go - Register now for FREE

Geeks To Go is a helpful hub, where thousands of volunteer geeks quickly serve friendly answers and support. Check out the forums and get free advice from the experts. Register now to gain access to all of our features, it's FREE and only takes one minute. Once registered and logged in, you will be able to create topics, post replies to existing threads, give reputation to your fellow members, get your own private messenger, post status updates, manage your profile and so much more.

Create Account How it Works
Photo

Trojan:DOS/Alureon.A [Solved]


  • This topic is locked This topic is locked

#46
gg101

gg101

    Member

  • Topic Starter
  • Member
  • PipPip
  • 41 posts
Hello, here is the combo fix log.

ComboFix 12-11-09.02 - Glory 11/09/2012 9:07.4.2 - x64 MINIMAL
Microsoft Windows 7 Home Premium 6.1.7600.0.1252.1.1033.18.3003.2447 [GMT -6:00]
Running from: c:\users\Glory\Desktop\ComboFix.exe
AV: avast! Antivirus *Enabled/Updated* {2B2D1395-420B-D5C9-657E-930FE358FC3C}
AV: Microsoft Security Essentials *Enabled/Updated* {B140BF4E-23BB-4198-90AB-A51A4C60A69C}
SP: avast! Antivirus *Enabled/Updated* {904CF271-6431-DA47-5FCE-A87D98DFB681}
SP: Microsoft Security Essentials *Enabled/Updated* {0A215EAA-0581-4E16-AA1B-9E6837E7EC21}
SP: Windows Defender *Disabled/Outdated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
* Created a new restore point
.
.
((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\windows\svchost.exe
.
---- Previous Run -------
.
c:\windows\svchost.exe
.
.
((((((((((((((((((((((((( Files Created from 2012-10-09 to 2012-11-09 )))))))))))))))))))))))))))))))
.
.
2012-11-09 15:18 . 2012-11-09 15:18 -------- d-----w- c:\users\Mcx1-GLORY-PC\AppData\Local\temp
2012-11-09 15:18 . 2012-11-09 15:18 -------- d-----w- c:\users\Default\AppData\Local\temp
2012-11-09 13:30 . 2012-10-12 07:19 9291768 ----a-w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{2E2998EB-0A48-4BE0-BC48-0F74D47657E6}\mpengine.dll
2012-11-04 21:47 . 2012-11-04 21:49 -------- d-----w- C:\FRST
2012-11-03 21:08 . 2012-10-30 22:51 370288 ----a-w- c:\windows\system32\drivers\aswSP.sys
2012-11-03 21:08 . 2012-10-30 22:51 25232 ----a-w- c:\windows\system32\drivers\aswFsBlk.sys
2012-11-03 21:07 . 2012-10-15 15:59 54072 ----a-w- c:\windows\system32\drivers\aswRdr2.sys
2012-11-03 21:07 . 2012-10-30 22:51 59728 ----a-w- c:\windows\system32\drivers\aswTdi.sys
2012-11-03 21:07 . 2012-10-30 22:51 984144 ----a-w- c:\windows\system32\drivers\aswSnx.sys
2012-11-03 21:07 . 2012-10-30 22:51 71600 ----a-w- c:\windows\system32\drivers\aswMonFlt.sys
2012-11-03 21:07 . 2012-10-30 22:50 285328 ----a-w- c:\windows\system32\aswBoot.exe
2012-11-03 21:07 . 2012-10-30 22:51 41224 ----a-w- c:\windows\avastSS.scr
2012-11-03 21:07 . 2012-10-30 22:50 227648 ----a-w- c:\windows\SysWow64\aswBoot.exe
2012-11-03 21:07 . 2012-11-03 21:07 -------- d-----w- c:\programdata\AVAST Software
2012-11-03 21:07 . 2012-11-03 21:07 -------- d-----w- c:\program files\AVAST Software
2012-11-03 20:47 . 2012-10-12 07:19 9291768 ----a-w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\Backup\mpengine.dll
2012-11-03 14:33 . 2012-11-03 14:33 61440 ----a-w- c:\windows\SysWow64\drivers\pmehele.sys
2012-11-03 14:20 . 2012-11-03 14:20 61440 ----a-w- c:\windows\SysWow64\drivers\hlpbggxt.sys
2012-11-02 16:32 . 2012-11-02 16:32 61440 ----a-w- c:\windows\SysWow64\drivers\nrolf.sys
2012-11-02 15:46 . 2012-11-02 15:46 61440 ----a-w- c:\windows\SysWow64\drivers\dkauii.sys
2012-10-29 17:44 . 2012-10-29 17:44 -------- d-----w- c:\programdata\Kaspersky Lab
2012-10-28 04:21 . 2012-10-28 04:21 -------- d-----w- C:\found.000
2012-10-27 03:08 . 2012-10-27 03:08 -------- d-----w- c:\windows\Sun
2012-10-11 18:45 . 2012-08-31 18:02 1656688 ----a-w- c:\windows\system32\drivers\ntfs.sys
2012-10-11 18:44 . 2012-09-14 19:23 2048 ----a-w- c:\windows\system32\tzres.dll
2012-10-11 18:44 . 2012-09-14 18:30 2048 ----a-w- c:\windows\SysWow64\tzres.dll
2012-10-11 18:43 . 2012-08-30 18:11 5505904 ----a-w- c:\windows\system32\ntoskrnl.exe
2012-10-11 18:43 . 2012-08-30 17:18 3958128 ----a-w- c:\windows\SysWow64\ntkrnlpa.exe
2012-10-11 18:43 . 2012-08-30 17:18 3902832 ----a-w- c:\windows\SysWow64\ntoskrnl.exe
2012-10-11 18:43 . 2012-08-18 15:37 425984 ----a-w- c:\windows\system32\KernelBase.dll
2012-10-11 18:43 . 2012-08-18 15:37 1162240 ----a-w- c:\windows\system32\kernel32.dll
2012-10-11 18:43 . 2012-08-18 15:42 215040 ----a-w- c:\windows\system32\winsrv.dll
2012-10-11 18:43 . 2012-08-18 15:34 338432 ----a-w- c:\windows\system32\conhost.exe
2012-10-11 18:43 . 2012-08-18 11:17 274944 ----a-w- c:\windows\SysWow64\KernelBase.dll
2012-10-11 18:41 . 2012-08-24 18:05 220160 ----a-w- c:\windows\system32\wintrust.dll
2012-10-11 18:41 . 2012-08-24 17:10 172544 ----a-w- c:\windows\SysWow64\wintrust.dll
2012-10-11 18:41 . 2012-08-11 00:53 714752 ----a-w- c:\windows\system32\kerberos.dll
2012-10-11 18:41 . 2012-08-10 23:54 541184 ----a-w- c:\windows\SysWow64\kerberos.dll
2012-10-11 18:41 . 2012-06-02 05:25 1462784 ----a-w- c:\windows\system32\crypt32.dll
2012-10-11 18:41 . 2012-06-02 05:25 182272 ----a-w- c:\windows\system32\cryptsvc.dll
2012-10-11 18:41 . 2012-06-02 04:45 1157632 ----a-w- c:\windows\SysWow64\crypt32.dll
2012-10-11 18:41 . 2012-06-02 05:25 140288 ----a-w- c:\windows\system32\cryptnet.dll
2012-10-11 18:41 . 2012-06-02 04:45 139264 ----a-w- c:\windows\SysWow64\cryptsvc.dll
2012-10-11 18:41 . 2012-06-02 04:45 103936 ----a-w- c:\windows\SysWow64\cryptnet.dll
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2012-09-30 00:54 . 2011-02-08 23:12 25928 ----a-w- c:\windows\system32\drivers\mbam.sys
2012-09-26 17:00 . 2012-09-17 04:46 321384 ----a-w- c:\windows\SysWow64\Sendori.dll
2012-09-17 04:49 . 2012-09-17 04:49 31080 ----a-w- c:\windows\system32\drivers\avgtpx64.sys
2012-09-17 04:46 . 2012-09-17 04:46 283200 ----a-w- c:\windows\system32\drivers\dtsoftbus01.sys
2012-08-31 03:03 . 2012-08-31 03:03 228768 ----a-w- c:\windows\system32\drivers\MpFilter.sys
2012-08-31 03:03 . 2011-04-27 20:25 128456 ----a-w- c:\windows\system32\drivers\NisDrvWFP.sys
2012-08-24 11:15 . 2012-09-25 00:39 17810944 ----a-w- c:\windows\system32\mshtml.dll
2012-08-24 10:39 . 2012-09-25 00:39 10925568 ----a-w- c:\windows\system32\ieframe.dll
2012-08-24 10:31 . 2012-09-25 00:39 2312704 ----a-w- c:\windows\system32\jscript9.dll
2012-08-24 10:22 . 2012-09-25 00:39 1346048 ----a-w- c:\windows\system32\urlmon.dll
2012-08-24 10:21 . 2012-09-25 00:39 1392128 ----a-w- c:\windows\system32\wininet.dll
2012-08-24 10:20 . 2012-09-25 00:39 1494528 ----a-w- c:\windows\system32\inetcpl.cpl
2012-08-24 10:18 . 2012-09-25 00:39 237056 ----a-w- c:\windows\system32\url.dll
2012-08-24 10:17 . 2012-09-25 00:39 85504 ----a-w- c:\windows\system32\jsproxy.dll
2012-08-24 10:14 . 2012-09-25 00:39 173056 ----a-w- c:\windows\system32\ieUnatt.exe
2012-08-24 10:14 . 2012-09-25 00:39 816640 ----a-w- c:\windows\system32\jscript.dll
2012-08-24 10:13 . 2012-09-25 00:39 599040 ----a-w- c:\windows\system32\vbscript.dll
2012-08-24 10:12 . 2012-09-25 00:39 2144768 ----a-w- c:\windows\system32\iertutil.dll
2012-08-24 10:11 . 2012-09-25 00:39 729088 ----a-w- c:\windows\system32\msfeeds.dll
2012-08-24 10:10 . 2012-09-25 00:40 96768 ----a-w- c:\windows\system32\mshtmled.dll
2012-08-24 10:09 . 2012-09-25 00:40 2382848 ----a-w- c:\windows\system32\mshtml.tlb
2012-08-24 10:04 . 2012-09-25 00:39 248320 ----a-w- c:\windows\system32\ieui.dll
2012-08-24 06:59 . 2012-09-25 00:39 1800704 ----a-w- c:\windows\SysWow64\jscript9.dll
2012-08-24 06:51 . 2012-09-25 00:39 1129472 ----a-w- c:\windows\SysWow64\wininet.dll
2012-08-24 06:51 . 2012-09-25 00:39 1427968 ----a-w- c:\windows\SysWow64\inetcpl.cpl
2012-08-24 06:47 . 2012-09-25 00:39 142848 ----a-w- c:\windows\SysWow64\ieUnatt.exe
2012-08-24 06:47 . 2012-09-25 00:39 420864 ----a-w- c:\windows\SysWow64\vbscript.dll
2012-08-24 06:43 . 2012-09-25 00:40 2382848 ----a-w- c:\windows\SysWow64\mshtml.tlb
2012-08-18 11:19 . 2012-10-11 18:42 44032 ----a-w- c:\windows\apppatch\acwow64.dll
.
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
.
[HKEY_LOCAL_MACHINE\Wow6432Node\~\Browser Helper Objects\{95B7759C-8C7F-4BF1-B163-73684A933233}]
2012-09-17 04:49 1734240 ----a-w- c:\program files (x86)\AVG Secure Search\12.2.5.34\AVG Secure Search_toolbar.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar]
"{95B7759C-8C7F-4BF1-B163-73684A933233}"= "c:\program files (x86)\AVG Secure Search\12.2.5.34\AVG Secure Search_toolbar.dll" [2012-09-17 1734240]
.
[HKEY_CLASSES_ROOT\clsid\{95b7759c-8c7f-4bf1-b163-73684a933233}]
[HKEY_CLASSES_ROOT\AVG Secure Search.PugiObj.1]
[HKEY_CLASSES_ROOT\AVG Secure Search.PugiObj]
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"HPAdvisorDock"="c:\program files (x86)\Hewlett-Packard\HP Advisor\Dock\HPAdvisorDock.exe" [2010-02-10 1712184]
"cdloader"="c:\users\Glory\AppData\Roaming\mjusbsp\cdloader2.exe" [2010-10-08 50592]
"DAEMON Tools Lite"="c:\program files (x86)\DAEMON Tools Lite\DTLite.exe" [2012-08-28 3671904]
"swg"="c:\program files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [2012-09-16 39408]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"NortonOnlineBackupReminder"="c:\program files (x86)\Symantec\Norton Online Backup\Activation\NobuActivation.exe" [2009-06-29 600936]
"Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2012-01-03 843712]
"Adobe Reader Speed Launcher"="c:\program files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe" [2012-03-27 37296]
"SunJavaUpdateSched"="c:\program files (x86)\Common Files\Java\Java Update\jusched.exe" [2011-04-08 254696]
"HP Software Update"="c:\program files (x86)\Hp\HP Software Update\HPWuSchd2.exe" [2008-12-08 54576]
"WirelessAssistant"="c:\program files (x86)\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe" [2009-07-23 498744]
"ApnUpdater"="c:\program files (x86)\Ask.com\Updater\Updater.exe" [2011-07-27 397992]
"Malwarebytes Anti-Malware (reboot)"="c:\program files (x86)\Malwarebytes' Anti-Malware\mbam.exe" [2012-09-30 981656]
"Sendori Tray"="c:\program files (x86)\Sendori\SendoriTray.exe" [2012-09-26 82792]
"vProt"="c:\program files (x86)\AVG Secure Search\vprot.exe" [2012-09-17 947808]
"ROC_ROC_NT"="c:\program files (x86)\AVG Secure Search\ROC_ROC_NT.exe" [2012-09-17 856160]
"avast"="c:\program files\AVAST Software\Avast\avastUI.exe" [2012-10-30 4297136]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\RunOnce]
"Malwarebytes Anti-Malware (cleanup)"="c:\programdata\Malwarebytes\Malwarebytes' Anti-Malware\cleanup.dll" [2012-09-30 1089608]
.
c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
PictureMover.lnk - c:\program files (x86)\PictureMover\Bin\PictureMover.exe [2009-5-24 430080]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\windows]
"LoadAppInit_DLLs"=1 (0x1)
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]
@="Service"
.
R1 aswSnx;aswSnx; [x]
R1 aswSP;aswSP; [x]
R2 AERTFilters;Andrea RT Filters Service;c:\program files\Realtek\Audio\HDA\AERTSr64.exe [2009-11-18 98208]
R2 Application Sendori;Application Sendori;c:\program files (x86)\Sendori\SendoriSvc.exe [2012-09-26 118632]
R2 aswFsBlk;aswFsBlk; [x]
R2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys [2012-10-30 71600]
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
R2 HPWMISVC;HPWMISVC;c:\program files\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe [2010-01-18 20480]
R2 NovacomD;Palm Novacom;c:\program files\Palm, Inc\novacomd\amd64\novacomd.exe [2011-03-15 71168]
R2 Service Sendori;Service Sendori;c:\program files (x86)\Sendori\Sendori.Service.exe [2012-09-26 15208]
R2 sndappv2;sndappv2;c:\program files (x86)\Sendori\sndappv2.exe [2012-09-26 3569512]
R2 vToolbarUpdater12.2.6;vToolbarUpdater12.2.6;c:\program files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\12.2.6\ToolbarUpdater.exe [2012-09-17 722528]
R3 IntcHdmiAddService;Intel® High Definition Audio HDMI;c:\windows\system32\drivers\IntcHdmi.sys [2010-03-05 144896]
R3 netw5v64;Intel® Wireless WiFi Link 5000 Series Adapter Driver for Windows Vista 64 Bit;c:\windows\system32\DRIVERS\netw5v64.sys [2009-06-10 5434368]
R3 NisDrv;Microsoft Network Inspection System;c:\windows\system32\DRIVERS\NisDrvWFP.sys [2012-08-31 128456]
R3 NisSrv;Microsoft Network Inspection;c:\program files\Microsoft Security Client\NisSrv.exe [2012-09-13 368896]
R3 ose64;Office 64 Source Engine;c:\program files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-10 174440]
R3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader;c:\windows\system32\Drivers\RtsUStor.sys [2009-09-23 225280]
R3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys [2009-11-28 295424]
R3 rtl8192se;Realtek Wireless LAN 802.11n PCI-E NIC NT Driver;c:\windows\system32\DRIVERS\rtl8192se.sys [2010-01-20 1088544]
R3 SrvHsfHDA;SrvHsfHDA;c:\windows\system32\DRIVERS\VSTAZL6.SYS [2009-06-10 292864]
R3 SrvHsfV92;SrvHsfV92;c:\windows\system32\DRIVERS\VSTDPV6.SYS [2009-06-10 1485312]
R3 SrvHsfWinac;SrvHsfWinac;c:\windows\system32\DRIVERS\VSTCNXT6.SYS [2009-06-10 740864]
R3 WatAdminSvc;Windows Activation Technologies Service;c:\windows\system32\Wat\WatAdminSvc.exe [2010-11-28 1255736]
R3 yukonw7;NDIS6.2 Miniport Driver for Marvell Yukon Ethernet Controller;c:\windows\system32\DRIVERS\yk62x64.sys [2009-06-10 389120]
S1 avgtp;avgtp;c:\windows\system32\drivers\avgtpx64.sys [2012-09-17 31080]
S1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\DRIVERS\dtsoftbus01.sys [2012-09-17 283200]
.
.
Contents of the 'Scheduled Tasks' folder
.
2012-11-03 c:\windows\Tasks\avast! Emergency Update.job
- c:\program files\AVAST Software\Avast\AvastEmUpdate.exe [2012-11-03 22:50]
.
2012-11-04 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2012-09-16 18:21]
.
2012-11-03 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2012-09-16 18:21]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast]
@="{472083B0-C522-11CF-8763-00608CC02F24}"
[HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}]
2012-10-30 22:50 133400 ----a-w- c:\program files\AVAST Software\Avast\ashShA64.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"SynTPEnh"="c:\program files (x86)\Synaptics\SynTP\SynTPEnh.exe" [BU]
"RTHDVCPL"="c:\program files\Realtek\Audio\HDA\RtkNGUI64.exe" [2010-01-29 6160928]
"RtkOSD"="c:\program files (x86)\Realtek\Audio\OSD\RtVOsd64.exe" [2010-01-13 995840]
"HP Quick Launch"="c:\program files\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe" [2010-01-18 451072]
"SunJavaUpdateSched"="c:\program files\Java\jre6\bin\jusched.exe" [2010-05-15 172032]
"IgfxTray"="c:\windows\system32\igfxtray.exe" [2010-08-26 161304]
"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2010-08-26 386584]
"Persistence"="c:\windows\system32\igfxpers.exe" [2010-08-26 415256]
"MSC"="c:\program files\Microsoft Security Client\msseces.exe" [2012-09-13 1289704]
"BCSSync"="c:\program files\Microsoft Office\Office14\BCSSync.exe" [2010-03-13 112512]
.
------- Supplementary Scan -------
.
uLocal Page = c:\windows\system32\blank.htm
mStart Page = hxxp://search.gboxapp.com/
mLocal Page = c:\windows\SysWOW64\blank.htm
IE: E&xport to Microsoft Excel - c:\progra~1\MICROS~2\Office14\EXCEL.EXE/3000
IE: Se&nd to OneNote - c:\progra~1\MICROS~2\Office14\ONBttnIE.dll/105
TCP: DhcpNameServer = 192.168.1.1
Handler: viprotocol - {B658800C-F66E-4EF3-AB85-6C0C227862A9} - c:\program files (x86)\Common Files\AVG Secure Search\ViProtocolInstaller\12.2.6\ViProtocol.dll
.
- - - - ORPHANS REMOVED - - - -
.
URLSearchHooks-{00000000-6E41-4FD3-8538-502F5495E5FC} - c:\program files (x86)\Ask.com\GenericAskToolbar.dll
Wow6432Node-HKLM-Run-<NO NAME> - (no file)
Wow6432Node-HKLM-RunOnce-OTL - I:\OTL.exe
WebBrowser-{D4027C7F-154A-4066-A1AD-4243D8127440} - (no file)
AddRemove-{20E7BC40-33F6-4A81-9D52-B58349326206} - c:\programdata\Bcool\uninstall.exe
AddRemove-{B60DCA15-56A3-4D2D-8747-22CF7D7B588B} - c:\program files (x86)\InstallShield Installation Information\{B60DCA15-56A3-4D2D-8747-22CF7D7B588B}\setup.exe
.
.
.
--------------------- LOCKED REGISTRY KEYS ---------------------
.
[HKEY_USERS\.Default\Software\Microsoft\Internet Explorer\ApprovedExtensionsMigration]
@Denied: (2) (LocalSystem)
"Timestamp"=hex:2c,e7,3c,83,34,b6,cd,01
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil11e_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\LocalServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil11e_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash11e.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.10"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash11e.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash11e.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash11e.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}]
@Denied: (A 2) (Everyone)
@="IFlashBroker4"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Completion time: 2012-11-09 09:21:36
ComboFix-quarantined-files.txt 2012-11-09 15:21
ComboFix2.txt 2012-11-01 16:03
ComboFix3.txt 2012-10-29 07:53
.
Pre-Run: 205,377,613,824 bytes free
Post-Run: 204,988,407,808 bytes free
.
- - End Of File - - 5BBCCD652E04F4999760F783BE518CD2
  • 0

Advertisements


#47
gg101

gg101

    Member

  • Topic Starter
  • Member
  • PipPip
  • 41 posts
ok, here is the new OTL...


OTL logfile created on: 11/9/2012 12:33:36 PM - Run 2
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Glory\Desktop
64bit- Home Premium Edition (Version = 6.1.7600) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

2.93 Gb Total Physical Memory | 1.41 Gb Available Physical Memory | 48.14% Memory free
5.86 Gb Paging File | 3.99 Gb Available in Paging File | 68.12% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 283.49 Gb Total Space | 191.03 Gb Free Space | 67.38% Space Free | Partition Type: NTFS
Drive D: | 14.31 Gb Total Space | 2.36 Gb Free Space | 16.50% Space Free | Partition Type: NTFS
Drive G: | 1.37 Gb Total Space | 0.00 Gb Free Space | 0.00% Space Free | Partition Type: UDF
Drive H: | 1.37 Gb Total Space | 0.00 Gb Free Space | 0.00% Space Free | Partition Type: UDF

Computer Name: GLORY-PC | User Name: Glory | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Quick Scan | Include 64bit Scans
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2012/11/09 12:33:02 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\Glory\Desktop\OTL.exe
PRC - [2012/11/09 12:25:56 | 000,997,320 | ---- | M] () -- C:\Program Files (x86)\AVG Secure Search\vprot.exe
PRC - [2012/11/09 12:25:56 | 000,711,112 | ---- | M] () -- C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\13.2.0\ToolbarUpdater.exe
PRC - [2012/10/30 16:50:59 | 004,297,136 | ---- | M] (AVAST Software) -- C:\Program Files\AVAST Software\Avast\AvastUI.exe
PRC - [2012/10/30 16:50:59 | 000,044,808 | ---- | M] (AVAST Software) -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe
PRC - [2012/09/26 11:00:00 | 003,569,512 | ---- | M] (Sendori) -- C:\Program Files (x86)\Sendori\sndappv2.exe
PRC - [2012/09/26 11:00:00 | 000,195,944 | ---- | M] (Sendori, Inc.) -- C:\Program Files (x86)\Sendori\SendoriUp.exe
PRC - [2012/09/26 11:00:00 | 000,118,632 | ---- | M] (Sendori, Inc.) -- C:\Program Files (x86)\Sendori\SendoriSvc.exe
PRC - [2012/09/26 11:00:00 | 000,082,792 | ---- | M] (Sendori, Inc.) -- C:\Program Files (x86)\Sendori\SendoriTray.exe
PRC - [2012/09/26 11:00:00 | 000,015,208 | ---- | M] (sendori) -- C:\Program Files (x86)\Sendori\Sendori.Service.exe
PRC - [2012/09/16 12:22:15 | 000,307,856 | ---- | M] (Google Inc.) -- C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbarUser_32.exe
PRC - [2012/08/28 07:52:56 | 003,671,904 | ---- | M] (DT Soft Ltd) -- C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe
PRC - [2011/12/12 14:15:46 | 000,247,968 | ---- | M] (Adobe Systems, Inc.) -- C:\Windows\SysWOW64\Macromed\Flash\FlashUtil11e_ActiveX.exe
PRC - [2011/07/26 18:23:20 | 000,397,992 | ---- | M] (Ask) -- C:\Program Files (x86)\Ask.com\Updater\Updater.exe
PRC - [2009/07/13 19:14:45 | 000,020,480 | ---- | M] () -- \\.\globalroot\systemroot\svchost.exe
PRC - [2009/07/13 19:14:45 | 000,020,480 | ---- | M] () -- \\.\globalroot\systemroot\svchost.exe
PRC - [2009/05/24 21:26:22 | 000,430,080 | ---- | M] (Hewlett-Packard Company) -- C:\Program Files (x86)\PictureMover\Bin\PictureMover.exe


========== Modules (No Company Name) ==========

MOD - [2012/11/09 12:26:01 | 000,134,600 | ---- | M] () -- C:\Program Files (x86)\Common Files\AVG Secure Search\SiteSafetyInstaller\13.2.0\SiteSafety.dll
MOD - [2012/11/09 12:25:56 | 000,997,320 | ---- | M] () -- C:\Program Files (x86)\AVG Secure Search\vprot.exe
MOD - [2012/09/16 22:49:23 | 000,564,832 | ---- | M] () -- C:\Program Files (x86)\Common Files\AVG Secure Search\DNTInstaller\12.2.6\avgdttbx.dll
MOD - [2011/03/16 23:11:16 | 004,297,568 | ---- | M] () -- C:\Program Files (x86)\Common Files\microsoft shared\OFFICE14\Cultures\OFFICE.ODF
MOD - [2010/10/20 14:45:26 | 008,801,120 | ---- | M] () -- C:\Program Files (x86)\Microsoft Office\Office14\1033\GrooveIntlResource.dll
MOD - [2009/07/13 19:15:45 | 000,364,544 | ---- | M] () -- C:\Windows\SysWOW64\msjetoledb40.dll
MOD - [2009/05/24 21:34:02 | 001,703,936 | ---- | M] () -- C:\Users\Glory\AppData\Roaming\PictureMover\EN-US\Presentation.dll
MOD - [2009/05/24 21:25:22 | 003,760,128 | ---- | M] () -- C:\Users\Glory\AppData\Roaming\PictureMover\Bin\Core.dll


========== Services (SafeList) ==========

SRV:64bit: - [2012/10/30 16:50:59 | 000,044,808 | ---- | M] (AVAST Software) [Auto | Running] -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe -- (avast! Antivirus)
SRV:64bit: - [2012/09/12 20:21:48 | 000,368,896 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- c:\Program Files\Microsoft Security Client\NisSrv.exe -- (NisSrv)
SRV:64bit: - [2012/09/12 20:21:48 | 000,022,072 | ---- | M] (Microsoft Corporation) [Auto | Running] -- c:\Program Files\Microsoft Security Client\MsMpEng.exe -- (MsMpSvc)
SRV:64bit: - [2011/03/15 16:35:18 | 000,071,168 | ---- | M] (Palm) [Auto | Running] -- C:\Program Files\Palm, Inc\novacomd\amd64\novacomd.exe -- (NovacomD)
SRV:64bit: - [2010/01/18 16:04:08 | 000,020,480 | ---- | M] () [Auto | Running] -- C:\Program Files\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe -- (HPWMISVC)
SRV:64bit: - [2009/11/17 20:14:26 | 000,098,208 | ---- | M] (Andrea Electronics Corporation) [Auto | Running] -- C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe -- (AERTFilters)
SRV:64bit: - [2009/07/13 19:41:27 | 001,011,712 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV - [2012/11/09 12:25:56 | 000,711,112 | ---- | M] () [Auto | Running] -- C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\13.2.0\ToolbarUpdater.exe -- (vToolbarUpdater13.2.0)
SRV - [2012/09/26 11:00:00 | 003,569,512 | ---- | M] (Sendori) [Auto | Running] -- C:\Program Files (x86)\Sendori\sndappv2.exe -- (sndappv2)
SRV - [2012/09/26 11:00:00 | 000,118,632 | ---- | M] (Sendori, Inc.) [Auto | Running] -- C:\Program Files (x86)\Sendori\SendoriSvc.exe -- (Application Sendori)
SRV - [2012/09/26 11:00:00 | 000,015,208 | ---- | M] (sendori) [Auto | Running] -- C:\Program Files (x86)\Sendori\Sendori.Service.exe -- (Service Sendori)
SRV - [2011/07/04 12:26:05 | 000,655,624 | ---- | M] (Acresso Software Inc.) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe -- (FLEXnet Licensing Service)
SRV - [2010/03/18 13:16:28 | 000,130,384 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_32)
SRV - [2010/01/04 12:03:42 | 000,238,328 | ---- | M] (WildTangent, Inc.) [On_Demand | Stopped] -- C:\Program Files (x86)\HP Games\HP Game Console\GameConsoleService.exe -- (GameConsoleService)
SRV - [2009/06/10 15:23:09 | 000,066,384 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32)


========== Driver Services (SafeList) ==========

DRV:64bit: - [2012/11/09 12:26:01 | 000,030,568 | ---- | M] (AVG Technologies) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\avgtpx64.sys -- (avgtp)
DRV:64bit: - [2012/10/30 16:51:56 | 000,059,728 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\aswTdi.sys -- (aswTdi)
DRV:64bit: - [2012/10/30 16:51:55 | 000,984,144 | ---- | M] (AVAST Software) [File_System | System | Running] -- C:\Windows\SysNative\drivers\aswSnx.sys -- (aswSnx)
DRV:64bit: - [2012/10/30 16:51:55 | 000,370,288 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\aswSP.sys -- (aswSP)
DRV:64bit: - [2012/10/30 16:51:55 | 000,071,600 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\Windows\SysNative\drivers\aswMonFlt.sys -- (aswMonFlt)
DRV:64bit: - [2012/10/30 16:51:53 | 000,025,232 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\Windows\SysNative\drivers\aswFsBlk.sys -- (aswFsBlk)
DRV:64bit: - [2012/10/15 09:59:28 | 000,054,072 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\aswRdr2.sys -- (aswRdr)
DRV:64bit: - [2012/09/16 22:46:10 | 000,283,200 | ---- | M] (DT Soft Ltd) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\dtsoftbus01.sys -- (dtsoftbus01)
DRV:64bit: - [2012/08/30 21:03:48 | 000,128,456 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\NisDrvWFP.sys -- (NisDrv)
DRV:64bit: - [2012/03/01 00:54:38 | 000,022,896 | ---- | M] (Microsoft Corporation) [Recognizer | Boot | Unknown] -- C:\Windows\SysNative\drivers\fs_rec.sys -- (Fs_Rec)
DRV:64bit: - [2011/03/11 00:22:41 | 000,107,904 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsata.sys -- (amdsata)
DRV:64bit: - [2011/03/11 00:22:40 | 000,027,008 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amdxata.sys -- (amdxata)
DRV:64bit: - [2010/08/25 19:36:04 | 010,611,552 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\igdkmd64.sys -- (igfx)
DRV:64bit: - [2010/03/05 13:57:18 | 000,144,896 | ---- | M] (Intel® Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\IntcHdmi.sys -- (IntcHdmiAddService)
DRV:64bit: - [2010/02/05 18:49:04 | 000,316,464 | ---- | M] (Synaptics Incorporated) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\SynTP.sys -- (SynTP)
DRV:64bit: - [2010/01/19 19:55:34 | 001,088,544 | ---- | M] (Realtek Semiconductor Corporation ) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\rtl8192se.sys -- (rtl8192se)
DRV:64bit: - [2009/11/27 19:45:00 | 000,295,424 | ---- | M] (Realtek ) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\Rt64win7.sys -- (RTL8167)
DRV:64bit: - [2009/10/13 12:16:40 | 000,409,624 | ---- | M] (Intel Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\iaStor.sys -- (iaStor)
DRV:64bit: - [2009/09/22 19:39:00 | 000,225,280 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\RtsUStor.sys -- (RSUSBSTOR)
DRV:64bit: - [2009/07/13 19:52:20 | 000,194,128 | ---- | M] (AMD Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsbs.sys -- (amdsbs)
DRV:64bit: - [2009/07/13 19:48:04 | 000,065,600 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas2.sys -- (LSI_SAS2)
DRV:64bit: - [2009/07/13 19:47:48 | 000,077,888 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\HpSAMD.sys -- (HpSAMD)
DRV:64bit: - [2009/07/13 19:45:55 | 000,024,656 | ---- | M] (Promise Technology) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\stexstor.sys -- (stexstor)
DRV:64bit: - [2009/07/13 17:31:10 | 000,109,056 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\sdbus.sys -- (sdbus)
DRV:64bit: - [2009/06/10 15:01:11 | 001,485,312 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\VSTDPV6.SYS -- (SrvHsfV92)
DRV:64bit: - [2009/06/10 15:01:11 | 000,740,864 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\VSTCNXT6.SYS -- (SrvHsfWinac)
DRV:64bit: - [2009/06/10 15:01:11 | 000,292,864 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\VSTAZL6.SYS -- (SrvHsfHDA)
DRV:64bit: - [2009/06/10 14:35:33 | 000,389,120 | ---- | M] (Marvell) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\yk62x64.sys -- (yukonw7)
DRV:64bit: - [2009/06/10 14:35:28 | 005,434,368 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\netw5v64.sys -- (netw5v64)
DRV:64bit: - [2009/06/10 14:34:33 | 003,286,016 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\evbda.sys -- (ebdrv)
DRV:64bit: - [2009/06/10 14:34:28 | 000,468,480 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv)
DRV:64bit: - [2009/06/10 14:34:23 | 000,270,848 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\b57nd60a.sys -- (b57nd60a)
DRV:64bit: - [2009/06/10 14:31:59 | 000,031,232 | ---- | M] (Hauppauge Computer Works, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hcw85cir.sys -- (hcw85cir)
DRV - [2009/09/22 19:39:00 | 000,225,280 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysWOW64\drivers\RtsUStor.sys -- (RSUSBSTOR)
DRV - [2009/07/13 19:19:10 | 000,019,008 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysWOW64\drivers\wimmount.sys -- (WIMMount)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://g.msn.com/HPNOT/1
IE:64bit: - HKLM\..\SearchScopes,DefaultScope = {6A1806CD-94D4-4689-BA73-E35EA1EA9990}
IE:64bit: - HKLM\..\SearchScopes\{27535942-7BB1-4158-AD53-939206F65BE2}: "URL" = http://www.bing.com/...rc=IE-SearchBox
IE:64bit: - HKLM\..\SearchScopes\{53B8828B-3F14-4D12-83C6-86518CDE7E37}: "URL" = http://www.ask.com/w...}&l=dis&o=ushpl
IE:64bit: - HKLM\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = http://www.google.co...g}&sourceid=ie7
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://g.msn.com/HPNOT/1
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://search.gboxapp.com/
IE - HKLM\..\SearchScopes,DefaultScope = {6A1806CD-94D4-4689-BA73-E35EA1EA9990}
IE - HKLM\..\SearchScopes\{27535942-7BB1-4158-AD53-939206F65BE2}: "URL" = http://www.bing.com/...rc=IE-SearchBox
IE - HKLM\..\SearchScopes\{53B8828B-3F14-4D12-83C6-86518CDE7E37}: "URL" = http://www.ask.com/w...}&l=dis&o=ushpl
IE - HKLM\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = http://www.google.co...g}&sourceid=ie7
IE - HKLM\..\SearchScopes\{BB74DE59-BC4C-4172-9AC4-73315F71CFFE}: "URL" = http://search.gboxap...q={searchTerms}

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,bProtector Start Page = http://www.msn.com/?...CID=msnHomepage
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,BrowserMngr Start Page = http://www.msn.com/?...CID=msnHomepage
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.msn.com/?...CID=msnHomepage
IE - HKCU\..\SearchScopes,bProtectorDefaultScope = {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}
IE - HKCU\..\SearchScopes,BrowserMngrDefaultScope = {819E66B8-F9CC-4F4F-B852-84B88C1D4408}
IE - HKCU\..\SearchScopes,DefaultScope = {95B7759C-8C7F-4BF1-B163-73684A933233}
IE - HKCU\..\SearchScopes\{27535942-7BB1-4158-AD53-939206F65BE2}: "URL" = http://www.bing.com/...rc=IE-SearchBox
IE - HKCU\..\SearchScopes\{53B8828B-3F14-4D12-83C6-86518CDE7E37}: "URL" = http://www.ask.com/w...}&l=dis&o=ushpl
IE - HKCU\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = http://www.google.co...g}&sourceid=ie7
IE - HKCU\..\SearchScopes\{819E66B8-F9CC-4F4F-B852-84B88C1D4408}: "URL" = http://www.google.co...1I7GZBN_enUS501
IE - HKCU\..\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233}: "URL" = https://isearch.avg....sa&d=2012-09-16 23:49:23&v=12.2.5.34&sap=dsp&q={searchTerms}
IE - HKCU\..\SearchScopes\{BB74DE59-BC4C-4172-9AC4-73315F71CFFE}: "URL" = http://search.gboxap...q={searchTerms}
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0


========== FireFox ==========

FF:64bit: - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF:64bit: - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0: C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: C:\Windows\SysWOW64\Adobe\Director\np32dsw.dll (Adobe Systems, Inc.)
FF - HKLM\Software\MozillaPlugins\@avg.com/AVG SiteSafety plugin,version=11.0.0.1,application/x-avg-sitesafety-plugin: C:\Program Files (x86)\Common Files\AVG Secure Search\SiteSafetyInstaller\13.2.0\\npsitesafety.dll ()
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files (x86)\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files (x86)\Microsoft Silverlight\4.1.10329.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0: C:\PROGRA~2\MICROS~3\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/SharePoint,version=14.0: C:\PROGRA~2\MICROS~3\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=14.0.8081.0709: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files (x86)\Google\Update\1.3.21.123\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files (x86)\Google\Update\1.3.21.123\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)

FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\[email protected]: C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3 [2010/05/14 23:56:14 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\[email protected]: C:\ProgramData\AVG Secure Search\FireFoxExt\13.2.0.5 [2012/11/09 12:28:17 | 000,000,000 | ---D | M]
FF - HKEY_CURRENT_USER\software\mozilla\Firefox\Extensions\\{b64982b1-d112-42b5-b1e4-d3867c4533f8}: C:\ProgramData\Browser Manager\2.3.787.43\{16cdff19-861d-48e3-a751-d99a27784753}\FirefoxExtension [2012/10/11 05:38:17 | 000,000,000 | ---D | M]

[2012/09/06 19:49:32 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\Mozilla Firefox\extensions

========== Chrome ==========

CHR - homepage: http://www.google.com
CHR - default_search_provider: Google (Enabled)
CHR - default_search_provider: search_url = {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:acceptedSuggestion}{google:originalQueryForSuggestion}{google:assistedQueryStats}{google:searchFieldtrialParameter}sourceid=chrome&ie={inputEncoding}
CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client=chrome&hl={language}&q={searchTerms}
CHR - homepage: http://www.google.com
CHR - plugin: Shockwave Flash (Enabled) = C:\Program Files (x86)\Google\Chrome\Application\22.0.1229.96\PepperFlash\pepflashplayer.dll
CHR - plugin: Chrome Remote Desktop Viewer (Enabled) = internal-remoting-viewer
CHR - plugin: Native Client (Enabled) = C:\Program Files (x86)\Google\Chrome\Application\22.0.1229.96\ppGoogleNaClPluginChrome.dll
CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Program Files (x86)\Google\Chrome\Application\22.0.1229.96\pdf.dll
CHR - plugin: Application Manager (Enabled) = C:\Users\Glory\AppData\Local\Google\Chrome\User Data\Default\Extensions\pgafcinpmmpklohkojmllohdhomoefph\1.0_0\spext.dll
CHR - plugin: Adobe Acrobat (Enabled) = C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Browser\nppdf32.dll
CHR - plugin: Java Deployment Toolkit 6.0.260.3 (Enabled) = C:\Program Files (x86)\Java\jre6\bin\new_plugin\npdeployJava1.dll
CHR - plugin: Java™ Platform SE 6 U26 (Enabled) = C:\Program Files (x86)\Java\jre6\bin\new_plugin\npjp2.dll
CHR - plugin: Microsoft Office 2010 (Enabled) = C:\PROGRA~2\MICROS~3\Office14\NPAUTHZ.DLL
CHR - plugin: Microsoft Office 2010 (Enabled) = C:\PROGRA~2\MICROS~3\Office14\NPSPWRAP.DLL
CHR - plugin: AVG SiteSafety plugin (Enabled) = C:\Program Files (x86)\Common Files\AVG Secure Search\SiteSafetyInstaller\12.2.6\\npsitesafety.dll
CHR - plugin: Google Update (Enabled) = C:\Program Files (x86)\Google\Update\1.3.21.123\npGoogleUpdate3.dll
CHR - plugin: Windows Live\u00AE Photo Gallery (Enabled) = C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
CHR - plugin: Shockwave for Director (Enabled) = C:\Windows\SysWOW64\Adobe\Director\np32dsw.dll
CHR - plugin: Silverlight Plug-In (Enabled) = c:\Program Files (x86)\Microsoft Silverlight\4.1.10329.0\npctrl.dll
CHR - Extension: YouTube = C:\Users\Glory\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\
CHR - Extension: Google Search = C:\Users\Glory\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\
CHR - Extension: avast! WebRep = C:\Users\Glory\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\7.0.1474_0\
CHR - Extension: AVG Secure Search = C:\Users\Glory\AppData\Local\Google\Chrome\User Data\Default\Extensions\ndibdjnfmopecpmkdieinmbadjfpblof\12.2.5.34_0\
CHR - Extension: Settings Protector = C:\Users\Glory\AppData\Local\Google\Chrome\User Data\Default\Extensions\pgafcinpmmpklohkojmllohdhomoefph\1.0_0\
CHR - Extension: Gmail = C:\Users\Glory\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\

O1 HOSTS File: ([2012/11/09 09:18:30 | 000,000,027 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2:64bit: - BHO: (avast! WebRep) - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
O2:64bit: - BHO: (Google Toolbar Helper) - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - No CLSID value found.
O2 - BHO: (avast! WebRep) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
O2 - BHO: (AVG Security Toolbar) - {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files (x86)\AVG Secure Search\13.2.0.5\AVG Secure Search_toolbar.dll ()
O2 - BHO: (Microsoft Live Search Toolbar Helper) - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - c:\Program Files (x86)\MSN\Toolbar\3.0.0566.0\msneshellx.dll (Microsoft Corp.)
O3:64bit: - HKLM\..\Toolbar: (Google Toolbar) - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
O3:64bit: - HKLM\..\Toolbar: (avast! WebRep) - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
O3 - HKLM\..\Toolbar: (Microsoft Live Search Toolbar) - {1E61ED7C-7CB8-49d6-B9E9-AB4C880C8414} - c:\Program Files (x86)\MSN\Toolbar\3.0.0566.0\msneshellx.dll (Microsoft Corp.)
O3 - HKLM\..\Toolbar: (avast! WebRep) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
O3 - HKLM\..\Toolbar: (AVG Security Toolbar) - {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files (x86)\AVG Secure Search\13.2.0.5\AVG Secure Search_toolbar.dll ()
O3:64bit: - HKCU\..\Toolbar\WebBrowser: (Google Toolbar) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
O4:64bit: - HKLM..\Run: [HotKeysCmds] C:\Windows\SysNative\hkcmd.exe (Intel Corporation)
O4:64bit: - HKLM..\Run: [HP Quick Launch] C:\Program Files\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe (Hewlett-Packard Company)
O4:64bit: - HKLM..\Run: [IgfxTray] C:\Windows\SysNative\igfxtray.exe (Intel Corporation)
O4:64bit: - HKLM..\Run: [MSC] c:\Program Files\Microsoft Security Client\msseces.exe (Microsoft Corporation)
O4:64bit: - HKLM..\Run: [Persistence] C:\Windows\SysNative\igfxpers.exe (Intel Corporation)
O4:64bit: - HKLM..\Run: [RTHDVCPL] C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe (Realtek Semiconductor)
O4:64bit: - HKLM..\Run: [RtkOSD] C:\Program Files (x86)\Realtek\Audio\OSD\RtVOsd64.exe (Realtek Semiconductor Corp.)
O4 - HKLM..\Run: [] File not found
O4 - HKLM..\Run: [ApnUpdater] C:\Program Files (x86)\Ask.com\Updater\Updater.exe (Ask)
O4 - HKLM..\Run: [avast] C:\Program Files\AVAST Software\Avast\avastUI.exe (AVAST Software)
O4 - HKLM..\Run: [Malwarebytes Anti-Malware (reboot)] C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbam.exe (Malwarebytes Corporation)
O4 - HKLM..\Run: [NortonOnlineBackupReminder] C:\Program Files (x86)\Symantec\Norton Online Backup\Activation\NobuActivation.exe (Symantec Corporation)
O4 - HKLM..\Run: [ROC_ROC_NT] C:\Program Files (x86)\AVG Secure Search\ROC_ROC_NT.exe ()
O4 - HKLM..\Run: [Sendori Tray] C:\Program Files (x86)\Sendori\SendoriTray.exe (Sendori, Inc.)
O4 - HKLM..\Run: [vProt] C:\Program Files (x86)\AVG Secure Search\vprot.exe ()
O4 - HKCU..\Run: [cdloader] C:\Users\Glory\AppData\Roaming\mjusbsp\cdloader2.exe (magicJack L.P.)
O4 - HKCU..\Run: [DAEMON Tools Lite] C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe (DT Soft Ltd)
O4 - HKCU..\Run: [HPAdvisorDock] C:\Program Files (x86)\Hewlett-Packard\HP Advisor\Dock\HPAdvisorDock.exe ()
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O13 - gopher Prefix: missing
O16:64bit: - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_17)
O16:64bit: - DPF: {CAFEEFAC-0016-0000-0017-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_17)
O16:64bit: - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_17)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_26)
O16 - DPF: {BEA7310D-06C4-4339-A784-DC3804819809} http://www.cvsphoto....veX_Control.cab (Photo Upload Plugin Class)
O16 - DPF: {CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_26)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_26)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{A1686139-EB42-487E-A713-9E9197F3AFC2}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{A1686139-EB42-487E-A713-9E9197F3AFC2}: NameServer = 216.146.35.240,216.146.36.240,192.168.1.1
O18:64bit: - Protocol\Handler\livecall - No CLSID value found
O18:64bit: - Protocol\Handler\msnim - No CLSID value found
O18:64bit: - Protocol\Handler\viprotocol - No CLSID value found
O18:64bit: - Protocol\Handler\wlmailhtml - No CLSID value found
O18 - Protocol\Handler\ms-help - No CLSID value found
O18 - Protocol\Handler\viprotocol {B658800C-F66E-4EF3-AB85-6C0C227862A9} - C:\Program Files (x86)\Common Files\AVG Secure Search\ViProtocolInstaller\13.2.0\ViProtocol.dll ()
O20:64bit: - HKLM Winlogon: Shell - (Explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysWOW64\userinit.exe (Microsoft Corporation)
O20:64bit: - Winlogon\Notify\igfxcui: DllName - (igfxdev.dll) - C:\Windows\SysNative\igfxdev.dll (Intel Corporation)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2011/05/03 23:43:58 | 000,000,175 | R--- | M] () - G:\autorun.inf -- [ UDF ]
O32 - AutoRun File - [2011/05/03 23:43:58 | 000,000,175 | R--- | M] () - H:\autorun.inf -- [ UDF ]
O34 - HKLM BootExecute: (autocheck autochk *)
O35:64bit: - HKLM\..comfile [open] -- "%1" %*
O35:64bit: - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:64bit: - HKLM\...com [@ = ComFile] -- "%1" %*
O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = ComFile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)

========== Files/Folders - Created Within 30 Days ==========

[2012/11/09 12:33:02 | 000,602,112 | ---- | C] (OldTimer Tools) -- C:\Users\Glory\Desktop\OTL.exe
[2012/11/09 12:15:52 | 000,000,000 | -HSD | C] -- C:\$RECYCLE.BIN
[2012/11/09 09:21:39 | 000,000,000 | ---D | C] -- C:\Windows\temp
[2012/11/09 08:35:48 | 004,998,937 | R--- | C] (Swearware) -- C:\Users\Glory\Desktop\ComboFix.exe
[2012/11/04 15:47:10 | 000,000,000 | ---D | C] -- C:\FRST
[2012/11/03 15:14:38 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
[2012/11/03 15:08:06 | 000,370,288 | ---- | C] (AVAST Software) -- C:\Windows\SysNative\drivers\aswSP.sys
[2012/11/03 15:08:06 | 000,025,232 | ---- | C] (AVAST Software) -- C:\Windows\SysNative\drivers\aswFsBlk.sys
[2012/11/03 15:08:06 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\avast! Free Antivirus
[2012/11/03 15:07:58 | 000,054,072 | ---- | C] (AVAST Software) -- C:\Windows\SysNative\drivers\aswRdr2.sys
[2012/11/03 15:07:55 | 000,984,144 | ---- | C] (AVAST Software) -- C:\Windows\SysNative\drivers\aswSnx.sys
[2012/11/03 15:07:55 | 000,071,600 | ---- | C] (AVAST Software) -- C:\Windows\SysNative\drivers\aswMonFlt.sys
[2012/11/03 15:07:55 | 000,059,728 | ---- | C] (AVAST Software) -- C:\Windows\SysNative\drivers\aswTdi.sys
[2012/11/03 15:07:54 | 000,285,328 | ---- | C] (AVAST Software) -- C:\Windows\SysNative\aswBoot.exe
[2012/11/03 15:07:42 | 000,227,648 | ---- | C] (AVAST Software) -- C:\Windows\SysWow64\aswBoot.exe
[2012/11/03 15:07:42 | 000,041,224 | ---- | C] (AVAST Software) -- C:\Windows\avastSS.scr
[2012/11/03 15:07:29 | 000,000,000 | ---D | C] -- C:\ProgramData\AVAST Software
[2012/11/03 15:07:29 | 000,000,000 | ---D | C] -- C:\Program Files\AVAST Software
[2012/10/29 11:44:54 | 000,000,000 | ---D | C] -- C:\ProgramData\Kaspersky Lab
[2012/10/29 01:31:44 | 000,518,144 | ---- | C] (SteelWerX) -- C:\Windows\SWREG.exe
[2012/10/29 01:31:44 | 000,406,528 | ---- | C] (SteelWerX) -- C:\Windows\SWSC.exe
[2012/10/29 01:31:44 | 000,060,416 | ---- | C] (NirSoft) -- C:\Windows\NIRCMD.exe
[2012/10/29 01:30:25 | 000,000,000 | ---D | C] -- C:\Qoobox
[2012/10/29 00:46:17 | 000,000,000 | ---D | C] -- C:\Windows\erdnt
[2012/10/27 22:21:24 | 000,000,000 | ---D | C] -- C:\found.000
[2012/10/26 21:08:24 | 000,000,000 | ---D | C] -- C:\Windows\Sun

========== Files - Modified Within 30 Days ==========

[2012/11/09 12:33:02 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\Glory\Desktop\OTL.exe
[2012/11/09 12:32:54 | 000,023,248 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2012/11/09 12:32:54 | 000,023,248 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2012/11/09 12:31:45 | 000,791,694 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI
[2012/11/09 12:31:45 | 000,668,830 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat
[2012/11/09 12:31:45 | 000,125,330 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat
[2012/11/09 12:26:01 | 000,030,568 | ---- | M] (AVG Technologies) -- C:\Windows\SysNative\drivers\avgtpx64.sys
[2012/11/09 12:25:16 | 000,000,892 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2012/11/09 12:23:44 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2012/11/09 12:22:40 | 2361,593,856 | -HS- | M] () -- C:\hiberfil.sys
[2012/11/09 09:18:30 | 000,000,027 | ---- | M] () -- C:\Windows\SysNative\drivers\etc\hosts
[2012/11/09 08:41:15 | 004,998,937 | R--- | M] (Swearware) -- C:\Users\Glory\Desktop\ComboFix.exe
[2012/11/07 15:43:40 | 000,000,512 | ---- | M] () -- C:\Users\Glory\Desktop\MBR.dat
[2012/11/03 16:04:32 | 000,000,896 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2012/11/03 15:26:10 | 000,002,111 | ---- | M] () -- C:\Users\Public\Desktop\avast! Free Antivirus.lnk
[2012/11/03 15:14:38 | 000,002,289 | ---- | M] () -- C:\Users\Public\Desktop\Google Chrome.lnk
[2012/11/03 15:14:38 | 000,002,273 | ---- | M] () -- C:\Users\Glory\Application Data\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk
[2012/11/03 15:07:56 | 000,000,350 | -H-- | M] () -- C:\Windows\tasks\avast! Emergency Update.job
[2012/11/03 15:07:55 | 000,000,000 | ---- | M] () -- C:\Windows\SysWow64\config.nt
[2012/11/03 08:33:08 | 000,061,440 | ---- | M] () -- C:\Windows\SysWow64\drivers\pmehele.sys
[2012/11/03 08:20:45 | 000,061,440 | ---- | M] () -- C:\Windows\SysWow64\drivers\hlpbggxt.sys
[2012/11/02 10:32:18 | 000,061,440 | ---- | M] () -- C:\Windows\SysWow64\drivers\nrolf.sys
[2012/11/02 09:46:11 | 000,061,440 | ---- | M] () -- C:\Windows\SysWow64\drivers\dkauii.sys
[2012/11/02 09:29:58 | 000,724,952 | ---- | M] () -- C:\Users\Glory\Desktop\avenger.zip
[2012/10/30 16:51:56 | 000,059,728 | ---- | M] (AVAST Software) -- C:\Windows\SysNative\drivers\aswTdi.sys
[2012/10/30 16:51:55 | 000,984,144 | ---- | M] (AVAST Software) -- C:\Windows\SysNative\drivers\aswSnx.sys
[2012/10/30 16:51:55 | 000,370,288 | ---- | M] (AVAST Software) -- C:\Windows\SysNative\drivers\aswSP.sys
[2012/10/30 16:51:55 | 000,071,600 | ---- | M] (AVAST Software) -- C:\Windows\SysNative\drivers\aswMonFlt.sys
[2012/10/30 16:51:53 | 000,025,232 | ---- | M] (AVAST Software) -- C:\Windows\SysNative\drivers\aswFsBlk.sys
[2012/10/30 16:51:07 | 000,041,224 | ---- | M] (AVAST Software) -- C:\Windows\avastSS.scr
[2012/10/30 16:50:59 | 000,227,648 | ---- | M] (AVAST Software) -- C:\Windows\SysWow64\aswBoot.exe
[2012/10/30 16:50:30 | 000,285,328 | ---- | M] (AVAST Software) -- C:\Windows\SysNative\aswBoot.exe
[2012/10/29 11:28:23 | 141,930,336 | ---- | M] () -- C:\Users\Glory\Desktop\Rkill.exe
[2012/10/27 22:22:30 | 000,003,352 | ---- | M] () -- C:\bootsqm.dat
[2012/10/26 23:35:43 | 000,001,109 | ---- | M] () -- C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
[2012/10/15 09:59:28 | 000,054,072 | ---- | M] (AVAST Software) -- C:\Windows\SysNative\drivers\aswRdr2.sys

========== Files Created - No Company Name ==========

[2012/11/07 15:43:39 | 000,000,512 | ---- | C] () -- C:\Users\Glory\Desktop\MBR.dat
[2012/11/03 15:14:38 | 000,002,289 | ---- | C] () -- C:\Users\Public\Desktop\Google Chrome.lnk
[2012/11/03 15:14:38 | 000,002,273 | ---- | C] () -- C:\Users\Glory\Application Data\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk
[2012/11/03 15:08:06 | 000,002,111 | ---- | C] () -- C:\Users\Public\Desktop\avast! Free Antivirus.lnk
[2012/11/03 15:07:56 | 000,000,350 | -H-- | C] () -- C:\Windows\tasks\avast! Emergency Update.job
[2012/11/03 15:07:55 | 000,000,000 | ---- | C] () -- C:\Windows\SysWow64\config.nt
[2012/11/03 08:33:08 | 000,061,440 | ---- | C] () -- C:\Windows\SysWow64\drivers\pmehele.sys
[2012/11/03 08:20:45 | 000,061,440 | ---- | C] () -- C:\Windows\SysWow64\drivers\hlpbggxt.sys
[2012/11/02 10:32:18 | 000,061,440 | ---- | C] () -- C:\Windows\SysWow64\drivers\nrolf.sys
[2012/11/02 10:30:26 | 000,731,136 | ---- | C] () -- C:\Users\Glory\Desktop\avenger.exe
[2012/11/02 09:46:11 | 000,061,440 | ---- | C] () -- C:\Windows\SysWow64\drivers\dkauii.sys
[2012/11/02 09:29:58 | 000,724,952 | ---- | C] () -- C:\Users\Glory\Desktop\avenger.zip
[2012/10/29 11:12:21 | 141,930,336 | ---- | C] () -- C:\Users\Glory\Desktop\Rkill.exe
[2012/10/29 01:31:44 | 000,256,000 | ---- | C] () -- C:\Windows\PEV.exe
[2012/10/29 01:31:44 | 000,208,896 | ---- | C] () -- C:\Windows\MBR.exe
[2012/10/29 01:31:44 | 000,098,816 | ---- | C] () -- C:\Windows\sed.exe
[2012/10/29 01:31:44 | 000,080,412 | ---- | C] () -- C:\Windows\grep.exe
[2012/10/29 01:31:44 | 000,068,096 | ---- | C] () -- C:\Windows\zip.exe
[2012/10/27 22:22:30 | 000,003,352 | ---- | C] () -- C:\bootsqm.dat
[2011/12/04 22:17:12 | 000,000,258 | RHS- | C] () -- C:\ProgramData\ntuser.pol
[2010/11/26 15:02:45 | 000,790,236 | ---- | C] () -- C:\Windows\SysWow64\PerfStringBackup.INI

========== ZeroAccess Check ==========

[2009/07/13 22:55:00 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini

[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64

[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]

[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] /64

[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
"" = C:\Windows\SysNative\shell32.dll -- [2012/06/08 23:30:56 | 014,165,504 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shell32.dll -- [2012/06/08 22:46:56 | 012,868,608 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\fastprox.dll -- [2009/07/13 19:40:51 | 000,909,312 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2009/07/13 19:15:20 | 000,605,696 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\wbemess.dll -- [2009/07/13 19:41:56 | 000,505,856 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]

========== LOP Check ==========

[2012/09/17 00:49:36 | 000,000,000 | ---D | M] -- C:\Users\Glory\AppData\Roaming\DAEMON Tools Lite
[2011/07/04 12:40:08 | 000,000,000 | ---D | M] -- C:\Users\Glory\AppData\Roaming\DAEMON Tools Pro
[2011/05/14 15:10:00 | 000,000,000 | ---D | M] -- C:\Users\Glory\AppData\Roaming\funkitron
[2010/11/26 15:16:33 | 000,000,000 | ---D | M] -- C:\Users\Glory\AppData\Roaming\mjusbsp
[2012/09/16 22:45:58 | 000,000,000 | ---D | M] -- C:\Users\Glory\AppData\Roaming\OpenCandy
[2010/11/26 06:11:21 | 000,000,000 | ---D | M] -- C:\Users\Glory\AppData\Roaming\PictureMover
[2012/09/17 00:45:34 | 000,000,000 | ---D | M] -- C:\Users\Glory\AppData\Roaming\SoftGrid Client
[2010/11/26 15:03:26 | 000,000,000 | ---D | M] -- C:\Users\Glory\AppData\Roaming\TP
[2012/10/26 21:01:01 | 000,000,000 | ---D | M] -- C:\Users\Glory\AppData\Roaming\uTorrent
[2011/01/31 17:49:31 | 000,000,000 | ---D | M] -- C:\Users\Glory\AppData\Roaming\WildTangent
[2012/09/06 19:58:06 | 000,000,000 | ---D | M] -- C:\Users\Glory\AppData\Roaming\YourFileDownloader

========== Purity Check ==========



< End of report >
  • 0

#48
maliprog

maliprog

    Trusted Helper

  • Malware Removal
  • 6,172 posts
Please delete your version of TDSSKiller and download new version as instructed below.

Please download the latest version of TDSSKiller from here and save it to your Desktop.
  • Doubleclick on TDSSKiller.exe to run the application, then click on Change parameters.
    Posted Image
  • Put a checkmark beside loaded modules.
    Posted Image
  • A reboot will be needed to apply the changes. Do it.
  • TDSSKiller will launch automatically after the reboot. Also your computer may seem very slow and unusable. This is normal. Give it enough time to load your background programs.
  • Then click on Change parameters in TDSSKiller.
  • Check all boxes then click OK.
    Posted Image
  • Click the Start Scan button.
    Posted Image
  • The scan should take no longer than 2 minutes.
  • If a suspicious object is detected, the default action will be Skip, click on Continue.
    Posted Image
  • If malicious objects are found, they will show in the Scan results - Select action for found objects and offer three options.
    Ensure Cure (default) is selected, then click Continue > Reboot now to finish the cleaning process.
    Posted Image
    Note: If Cure is not available, please choose Skip instead, do not choose Delete unless instructed.
  • A report will be created in your root directory, (usually C:\ folder) in the form of "TDSSKiller.[Version]_[Date]_[Time]_log.txt". Please copy and paste the contents of that file here.

  • 0

#49
gg101

gg101

    Member

  • Topic Starter
  • Member
  • PipPip
  • 41 posts
hi, I actually started the scan before changing parameters so I will paste both logs for you. Here is the first one...

17:07:59.0115 2888 TDSS rootkit removing tool 2.8.15.0 Oct 31 2012 21:47:35
17:07:59.0411 2888 ============================================================
17:07:59.0411 2888 Current date / time: 2012/11/09 17:07:59.0411
17:07:59.0411 2888 SystemInfo:
17:07:59.0411 2888
17:07:59.0411 2888 OS Version: 6.1.7600 ServicePack: 0.0
17:07:59.0411 2888 Product type: Workstation
17:07:59.0411 2888 ComputerName: GLORY-PC
17:07:59.0411 2888 UserName: Glory
17:07:59.0411 2888 Windows directory: C:\Windows
17:07:59.0411 2888 System windows directory: C:\Windows
17:07:59.0411 2888 Running under WOW64
17:07:59.0411 2888 Processor architecture: Intel x64
17:07:59.0411 2888 Number of processors: 2
17:07:59.0411 2888 Page size: 0x1000
17:07:59.0411 2888 Boot type: Safe boot with network
17:07:59.0411 2888 ============================================================
17:07:59.0832 2888 Drive \Device\Harddisk0\DR0 - Size: 0x4A85D56000 (298.09 Gb), SectorSize: 0x200, Cylinders: 0x9801, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
17:07:59.0832 2888 ============================================================
17:07:59.0832 2888 \Device\Harddisk0\DR0:
17:07:59.0832 2888 MBR partitions:
17:07:59.0832 2888 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x63800
17:07:59.0832 2888 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x64000, BlocksNum 0x236FA000
17:07:59.0832 2888 \Device\Harddisk0\DR0\Partition3: MBR, Type 0x7, StartLBA 0x2375E000, BlocksNum 0x1C9C800
17:07:59.0832 2888 ============================================================
17:07:59.0879 2888 C: <-> \Device\Harddisk0\DR0\Partition2
17:07:59.0926 2888 D: <-> \Device\Harddisk0\DR0\Partition3
17:07:59.0926 2888 ============================================================
17:07:59.0926 2888 Initialize success
17:07:59.0926 2888 ============================================================
17:08:02.0328 2016 ============================================================
17:08:02.0328 2016 Scan started
17:08:02.0328 2016 Mode: Manual;
17:08:02.0328 2016 ============================================================
17:08:02.0562 2016 ================ Scan system memory ========================
17:08:02.0562 2016 System memory - ok
17:08:02.0562 2016 ================ Scan services =============================
17:08:02.0765 2016 [ 1B00662092F9F9568B995902F0CC40D5 ] 1394ohci C:\Windows\system32\DRIVERS\1394ohci.sys
17:08:02.0765 2016 1394ohci - ok
17:08:02.0812 2016 [ 6F11E88748CDEFD2F76AA215F97DDFE5 ] ACPI C:\Windows\system32\DRIVERS\ACPI.sys
17:08:02.0828 2016 ACPI - ok
17:08:02.0874 2016 [ 63B05A0420CE4BF0E4AF6DCC7CADA254 ] AcpiPmi C:\Windows\system32\DRIVERS\acpipmi.sys
17:08:02.0874 2016 AcpiPmi - ok
17:08:02.0937 2016 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
17:08:02.0937 2016 adp94xx - ok
17:08:02.0968 2016 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
17:08:02.0968 2016 adpahci - ok
17:08:03.0015 2016 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
17:08:03.0015 2016 adpu320 - ok
17:08:03.0046 2016 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
17:08:03.0046 2016 AeLookupSvc - ok
17:08:03.0124 2016 [ D1E343BC00136CE03C4D403194D06A80 ] AERTFilters C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe
17:08:03.0124 2016 AERTFilters - ok
17:08:03.0186 2016 [ DB9D6C6B2CD95A9CA414D045B627422E ] AFD C:\Windows\system32\drivers\afd.sys
17:08:03.0186 2016 AFD - ok
17:08:03.0218 2016 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\Windows\system32\DRIVERS\agp440.sys
17:08:03.0218 2016 agp440 - ok
17:08:03.0280 2016 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\Windows\System32\alg.exe
17:08:03.0280 2016 ALG - ok
17:08:03.0311 2016 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\Windows\system32\DRIVERS\aliide.sys
17:08:03.0311 2016 aliide - ok
17:08:03.0342 2016 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\Windows\system32\DRIVERS\amdide.sys
17:08:03.0342 2016 amdide - ok
17:08:03.0358 2016 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
17:08:03.0358 2016 AmdK8 - ok
17:08:03.0405 2016 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
17:08:03.0405 2016 AmdPPM - ok
17:08:03.0452 2016 [ EC7EBAB00A4D8448BAB68D1E49B4BEB9 ] amdsata C:\Windows\system32\drivers\amdsata.sys
17:08:03.0452 2016 amdsata - ok
17:08:03.0483 2016 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
17:08:03.0483 2016 amdsbs - ok
17:08:03.0498 2016 [ DB27766102C7BF7E95140A2AA81D042E ] amdxata C:\Windows\system32\drivers\amdxata.sys
17:08:03.0498 2016 amdxata - ok
17:08:03.0545 2016 [ 42FD751B27FA0E9C69BB39F39E409594 ] AppID C:\Windows\system32\drivers\appid.sys
17:08:03.0545 2016 AppID - ok
17:08:03.0576 2016 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\Windows\System32\appidsvc.dll
17:08:03.0576 2016 AppIDSvc - ok
17:08:03.0592 2016 [ D065BE66822847B7F127D1F90158376E ] Appinfo C:\Windows\System32\appinfo.dll
17:08:03.0592 2016 Appinfo - ok
17:08:03.0748 2016 [ 44F0479ACDBC24D20C62B63E23720B4A ] Application Sendori C:\Program Files (x86)\Sendori\SendoriSvc.exe
17:08:03.0748 2016 Application Sendori - ok
17:08:03.0826 2016 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\Windows\system32\DRIVERS\arc.sys
17:08:03.0826 2016 arc - ok
17:08:03.0873 2016 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
17:08:03.0873 2016 arcsas - ok
17:08:03.0998 2016 [ 9217D874131AE6FF8F642F124F00A555 ] aspnet_state C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
17:08:04.0076 2016 aspnet_state - ok
17:08:04.0122 2016 [ 4FCAEF0C5BE7629AEB878998E0FE959B ] aswFsBlk C:\Windows\system32\drivers\aswFsBlk.sys
17:08:04.0122 2016 aswFsBlk - ok
17:08:04.0185 2016 [ B50CDD87772D6A11CB90924AAD399DF8 ] aswMonFlt C:\Windows\system32\drivers\aswMonFlt.sys
17:08:04.0185 2016 aswMonFlt - ok
17:08:04.0232 2016 [ 57768C7DB4681F2510F247F82EF31D4F ] aswRdr C:\Windows\System32\Drivers\aswrdr2.sys
17:08:04.0232 2016 aswRdr - ok
17:08:04.0294 2016 [ E71D826A1F3CE9C9DE3E77F2D02AFFBF ] aswSnx C:\Windows\system32\drivers\aswSnx.sys
17:08:04.0310 2016 aswSnx - ok
17:08:04.0372 2016 [ 538A32E2C99BF073D4CA76C30BEDAA60 ] aswSP C:\Windows\system32\drivers\aswSP.sys
17:08:04.0372 2016 aswSP - ok
17:08:04.0419 2016 [ 6EDC79D73745FD44C41B55B2D13D0B70 ] aswTdi C:\Windows\system32\drivers\aswTdi.sys
17:08:04.0419 2016 aswTdi - ok
17:08:04.0466 2016 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
17:08:04.0466 2016 AsyncMac - ok
17:08:04.0497 2016 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\Windows\system32\DRIVERS\atapi.sys
17:08:04.0497 2016 atapi - ok
17:08:04.0544 2016 [ 07721A77180EDD4D39CCB865BF63C7FD ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
17:08:04.0544 2016 AudioEndpointBuilder - ok
17:08:04.0559 2016 [ 07721A77180EDD4D39CCB865BF63C7FD ] AudioSrv C:\Windows\System32\Audiosrv.dll
17:08:04.0559 2016 AudioSrv - ok
17:08:04.0700 2016 [ 8FA553E9AE69808D99C164733A0F9590 ] avast! Antivirus C:\Program Files\AVAST Software\Avast\AvastSvc.exe
17:08:04.0715 2016 avast! Antivirus - ok
17:08:04.0762 2016 [ 371428CF0F71934CB0F2344823ADFA32 ] avgtp C:\Windows\system32\drivers\avgtpx64.sys
17:08:04.0762 2016 avgtp - ok
17:08:04.0809 2016 [ B20B5FA5CA050E9926E4D1DB81501B32 ] AxInstSV C:\Windows\System32\AxInstSV.dll
17:08:04.0809 2016 AxInstSV - ok
17:08:04.0856 2016 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\Windows\system32\DRIVERS\bxvbda.sys
17:08:04.0856 2016 b06bdrv - ok
17:08:04.0887 2016 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
17:08:04.0887 2016 b57nd60a - ok
17:08:04.0949 2016 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\Windows\System32\bdesvc.dll
17:08:04.0949 2016 BDESVC - ok
17:08:04.0980 2016 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\Windows\system32\drivers\Beep.sys
17:08:04.0980 2016 Beep - ok
17:08:05.0074 2016 [ 4992C609A6315671463E30F6512BC022 ] BFE C:\Windows\System32\bfe.dll
17:08:05.0090 2016 BFE - ok
17:08:05.0136 2016 [ 7F0C323FE3DA28AA4AA1BDA3F575707F ] BITS C:\Windows\system32\qmgr.dll
17:08:05.0183 2016 BITS - ok
17:08:05.0230 2016 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
17:08:05.0230 2016 blbdrive - ok
17:08:05.0292 2016 [ 19D20159708E152267E53B66677A4995 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
17:08:05.0292 2016 bowser - ok
17:08:05.0324 2016 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
17:08:05.0324 2016 BrFiltLo - ok
17:08:05.0355 2016 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
17:08:05.0370 2016 BrFiltUp - ok
17:08:05.0417 2016 [ 5C2F352A4E961D72518261257AAE204B ] BridgeMP C:\Windows\system32\DRIVERS\bridge.sys
17:08:05.0417 2016 BridgeMP - ok
17:08:05.0448 2016 [ 6B054C67AAA87843504E8E3C09102009 ] Browser C:\Windows\System32\browser.dll
17:08:05.0448 2016 Browser - ok
17:08:05.0495 2016 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\Windows\System32\Drivers\Brserid.sys
17:08:05.0495 2016 Brserid - ok
17:08:05.0511 2016 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
17:08:05.0511 2016 BrSerWdm - ok
17:08:05.0558 2016 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
17:08:05.0558 2016 BrUsbMdm - ok
17:08:05.0573 2016 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
17:08:05.0573 2016 BrUsbSer - ok
17:08:05.0604 2016 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
17:08:05.0604 2016 BTHMODEM - ok
17:08:05.0651 2016 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\Windows\system32\bthserv.dll
17:08:05.0651 2016 bthserv - ok
17:08:05.0667 2016 catchme - ok
17:08:05.0682 2016 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
17:08:05.0682 2016 cdfs - ok
17:08:05.0714 2016 [ 83D2D75E1EFB81B3450C18131443F7DB ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
17:08:05.0714 2016 cdrom - ok
17:08:05.0760 2016 [ 312E2F82AF11E79906898AC3E3D58A1F ] CertPropSvc C:\Windows\System32\certprop.dll
17:08:05.0760 2016 CertPropSvc - ok
17:08:05.0792 2016 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\Windows\system32\DRIVERS\circlass.sys
17:08:05.0792 2016 circlass - ok
17:08:05.0807 2016 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\Windows\system32\CLFS.sys
17:08:05.0823 2016 CLFS - ok
17:08:05.0885 2016 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
17:08:05.0885 2016 clr_optimization_v2.0.50727_32 - ok
17:08:05.0932 2016 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
17:08:05.0932 2016 clr_optimization_v2.0.50727_64 - ok
17:08:06.0010 2016 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
17:08:06.0213 2016 clr_optimization_v4.0.30319_32 - ok
17:08:06.0228 2016 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
17:08:06.0400 2016 clr_optimization_v4.0.30319_64 - ok
17:08:06.0431 2016 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
17:08:06.0447 2016 CmBatt - ok
17:08:06.0478 2016 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\Windows\system32\DRIVERS\cmdide.sys
17:08:06.0478 2016 cmdide - ok
17:08:06.0525 2016 [ CA7720B73446FDDEC5C69519C1174C98 ] CNG C:\Windows\system32\Drivers\cng.sys
17:08:06.0525 2016 CNG - ok
17:08:06.0572 2016 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
17:08:06.0572 2016 Compbatt - ok
17:08:06.0618 2016 [ F26B3A86F6FA87CA360B879581AB4123 ] CompositeBus C:\Windows\system32\DRIVERS\CompositeBus.sys
17:08:06.0618 2016 CompositeBus - ok
17:08:06.0634 2016 COMSysApp - ok
17:08:06.0681 2016 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
17:08:06.0696 2016 crcdisk - ok
17:08:06.0977 2016 [ BAF19B633933A9FB4883D27D66C39E9A ] CryptSvc C:\Windows\system32\cryptsvc.dll
17:08:06.0977 2016 CryptSvc - ok
17:08:07.0040 2016 [ 7266972E86890E2B30C0C322E906B027 ] DcomLaunch C:\Windows\system32\rpcss.dll
17:08:07.0040 2016 DcomLaunch - ok
17:08:07.0102 2016 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\Windows\System32\defragsvc.dll
17:08:07.0102 2016 defragsvc - ok
17:08:07.0149 2016 [ 9C253CE7311CA60FC11C774692A13208 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
17:08:07.0149 2016 DfsC - ok
17:08:07.0180 2016 [ CE3B9562D997F69B330D181A8875960F ] Dhcp C:\Windows\system32\dhcpcore.dll
17:08:07.0196 2016 Dhcp - ok
17:08:07.0242 2016 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\Windows\system32\drivers\discache.sys
17:08:07.0242 2016 discache - ok
17:08:07.0289 2016 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\Windows\system32\DRIVERS\disk.sys
17:08:07.0289 2016 Disk - ok
17:08:07.0320 2016 [ 85CF424C74A1D5EC33533E1DBFF9920A ] Dnscache C:\Windows\System32\dnsrslvr.dll
17:08:07.0320 2016 Dnscache - ok
17:08:07.0352 2016 [ 14452ACDB09B70964C8C21BF80A13ACB ] dot3svc C:\Windows\System32\dot3svc.dll
17:08:07.0352 2016 dot3svc - ok
17:08:07.0398 2016 [ 8C2BA6BEA949EE6E68385F5692BAFB94 ] DPS C:\Windows\system32\dps.dll
17:08:07.0398 2016 DPS - ok
17:08:07.0414 2016 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
17:08:07.0414 2016 drmkaud - ok
17:08:07.0461 2016 [ 46571ED73AE84469DCA53081D33CF3C8 ] dtsoftbus01 C:\Windows\system32\DRIVERS\dtsoftbus01.sys
17:08:07.0461 2016 dtsoftbus01 - ok
17:08:07.0492 2016 [ 1633B9ABF52784A1331476397A48CBEF ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
17:08:07.0508 2016 DXGKrnl - ok
17:08:07.0539 2016 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\Windows\System32\eapsvc.dll
17:08:07.0539 2016 EapHost - ok
17:08:07.0648 2016 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\Windows\system32\DRIVERS\evbda.sys
17:08:07.0695 2016 ebdrv - ok
17:08:07.0742 2016 [ 156F6159457D0AA7E59B62681B56EB90 ] EFS C:\Windows\System32\lsass.exe
17:08:07.0742 2016 EFS - ok
17:08:07.0804 2016 [ 47C071994C3F649F23D9CD075AC9304A ] ehRecvr C:\Windows\ehome\ehRecvr.exe
17:08:07.0820 2016 ehRecvr - ok
17:08:07.0835 2016 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\Windows\ehome\ehsched.exe
17:08:07.0835 2016 ehSched - ok
17:08:07.0882 2016 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys
17:08:07.0882 2016 elxstor - ok
17:08:07.0913 2016 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\Windows\system32\DRIVERS\errdev.sys
17:08:07.0913 2016 ErrDev - ok
17:08:07.0960 2016 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\Windows\system32\es.dll
17:08:07.0960 2016 EventSystem - ok
17:08:07.0976 2016 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\Windows\system32\drivers\exfat.sys
17:08:07.0976 2016 exfat - ok
17:08:08.0022 2016 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\Windows\system32\drivers\fastfat.sys
17:08:08.0022 2016 fastfat - ok
17:08:08.0054 2016 [ D607B2F1BEE3992AA6C2C92C0A2F0855 ] Fax C:\Windows\system32\fxssvc.exe
17:08:08.0054 2016 Fax - ok
17:08:08.0085 2016 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\Windows\system32\DRIVERS\fdc.sys
17:08:08.0085 2016 fdc - ok
17:08:08.0116 2016 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\Windows\system32\fdPHost.dll
17:08:08.0116 2016 fdPHost - ok
17:08:08.0132 2016 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\Windows\system32\fdrespub.dll
17:08:08.0132 2016 FDResPub - ok
17:08:08.0147 2016 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
17:08:08.0147 2016 FileInfo - ok
17:08:08.0163 2016 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
17:08:08.0163 2016 Filetrace - ok
17:08:08.0241 2016 [ BB0667B0171B632B97EA759515476F07 ] FLEXnet Licensing Service C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
17:08:08.0241 2016 FLEXnet Licensing Service - ok
17:08:08.0272 2016 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
17:08:08.0272 2016 flpydisk - ok
17:08:08.0303 2016 [ F7866AF72ABBAF84B1FA5AA195378C59 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
17:08:08.0303 2016 FltMgr - ok
17:08:08.0397 2016 [ CB5E4B9C319E3C6BB363EB7E58A4A051 ] FontCache C:\Windows\system32\FntCache.dll
17:08:08.0397 2016 FontCache - ok
17:08:08.0459 2016 [ 8D89E3131C27FDD6932189CB785E1B7A ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
17:08:08.0459 2016 FontCache3.0.0.0 - ok
17:08:08.0475 2016 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
17:08:08.0475 2016 FsDepends - ok
17:08:08.0506 2016 [ D3E3F93D67821A2DB2B3D9FAC2DC2064 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
17:08:08.0506 2016 Fs_Rec - ok
17:08:08.0568 2016 [ AE87BA80D0EC3B57126ED2CDC15B24ED ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
17:08:08.0568 2016 fvevol - ok
17:08:08.0600 2016 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys
17:08:08.0600 2016 gagp30kx - ok
17:08:08.0662 2016 [ E53EE18A21C025DEABCFE0F72FC481BB ] GameConsoleService C:\Program Files (x86)\HP Games\HP Game Console\GameConsoleService.exe
17:08:08.0662 2016 GameConsoleService - ok
17:08:08.0693 2016 [ FE5AB4525BC2EC68B9119A6E5D40128B ] gpsvc C:\Windows\System32\gpsvc.dll
17:08:08.0709 2016 gpsvc - ok
17:08:08.0818 2016 [ 506708142BC63DABA64F2D3AD1DCD5BF ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
17:08:08.0818 2016 gupdate - ok
17:08:08.0818 2016 [ 506708142BC63DABA64F2D3AD1DCD5BF ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
17:08:08.0818 2016 gupdatem - ok
17:08:08.0849 2016 [ 5D4BC124FAAE6730AC002CDB67BF1A1C ] gusvc C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
17:08:08.0849 2016 gusvc - ok
17:08:08.0880 2016 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
17:08:08.0880 2016 hcw85cir - ok
17:08:08.0927 2016 [ 6410F6F415B2A5A9037224C41DA8BF12 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
17:08:08.0927 2016 HdAudAddService - ok
17:08:08.0958 2016 [ 0A49913402747A0B67DE940FB42CBDBB ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys
17:08:08.0958 2016 HDAudBus - ok
17:08:08.0990 2016 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys
17:08:08.0990 2016 HidBatt - ok
17:08:09.0005 2016 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
17:08:09.0005 2016 HidBth - ok
17:08:09.0021 2016 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
17:08:09.0036 2016 HidIr - ok
17:08:09.0068 2016 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\Windows\System32\hidserv.dll
17:08:09.0068 2016 hidserv - ok
17:08:09.0099 2016 [ B3BF6B5B50006DEF50B66306D99FCF6F ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
17:08:09.0099 2016 HidUsb - ok
17:08:09.0130 2016 [ EFA58EDE58DD74388FFD04CB32681518 ] hkmsvc C:\Windows\system32\kmsvc.dll
17:08:09.0130 2016 hkmsvc - ok
17:08:09.0146 2016 [ 046B2673767CA626E2CFB7FDF735E9E8 ] HomeGroupListener C:\Windows\system32\ListSvc.dll
17:08:09.0146 2016 HomeGroupListener - ok
17:08:09.0192 2016 [ 06A7422224D9865A5613710A089987DF ] HomeGroupProvider C:\Windows\system32\provsvc.dll
17:08:09.0192 2016 HomeGroupProvider - ok
17:08:09.0255 2016 [ 58C91CCA61A948DC6E789C93C05A1D6F ] HP Health Check Service C:\Program Files (x86)\Hewlett-Packard\HP Health Check\hphc_service.exe
17:08:09.0270 2016 HP Health Check Service - ok
17:08:09.0302 2016 [ EF3EA06057132138B4E5895A61601DBE ] hpqwmiex C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe
17:08:09.0302 2016 hpqwmiex - ok
17:08:09.0333 2016 [ 0886D440058F203EBA0E1825E4355914 ] HpSAMD C:\Windows\system32\DRIVERS\HpSAMD.sys
17:08:09.0333 2016 HpSAMD - ok
17:08:09.0395 2016 [ B6492D01712A22FF3FEA25A999DBD321 ] HPWMISVC C:\Program Files\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe
17:08:09.0411 2016 HPWMISVC - ok
17:08:09.0520 2016 [ CEE049CAC4EFA7F4E1E4AD014414A5D4 ] HTTP C:\Windows\system32\drivers\HTTP.sys
17:08:09.0520 2016 HTTP - ok
17:08:09.0551 2016 [ F17766A19145F111856378DF337A5D79 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
17:08:09.0551 2016 hwpolicy - ok
17:08:09.0598 2016 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\Windows\system32\DRIVERS\i8042prt.sys
17:08:09.0598 2016 i8042prt - ok
17:08:09.0629 2016 [ BE7D72FCF442C26975942007E0831241 ] iaStor C:\Windows\system32\DRIVERS\iaStor.sys
17:08:09.0629 2016 iaStor - ok
17:08:09.0676 2016 [ B75E45C564E944A2657167D197AB29DA ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
17:08:09.0676 2016 iaStorV - ok
17:08:09.0770 2016 [ 2F2BE70D3E02B6FA877921AB9516D43C ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
17:08:09.0785 2016 idsvc - ok
17:08:10.0004 2016 [ 677AA5991026A65ADA128C4B59CF2BAD ] igfx C:\Windows\system32\DRIVERS\igdkmd64.sys
17:08:10.0206 2016 igfx - ok
17:08:10.0238 2016 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys
17:08:10.0253 2016 iirsp - ok
17:08:10.0284 2016 [ C5B4683680DF085B57BC53E5EF34861F ] IKEEXT C:\Windows\System32\ikeext.dll
17:08:10.0300 2016 IKEEXT - ok
17:08:10.0378 2016 [ A3BCBD0F710580A07D1B929D787D36CE ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
17:08:10.0394 2016 IntcAzAudAddService - ok
17:08:10.0487 2016 [ CFC68CA36A63637E8CA69669EE3693DA ] IntcHdmiAddService C:\Windows\system32\drivers\IntcHdmi.sys
17:08:10.0487 2016 IntcHdmiAddService - ok
17:08:10.0503 2016 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\Windows\system32\DRIVERS\intelide.sys
17:08:10.0503 2016 intelide - ok
17:08:10.0550 2016 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
17:08:10.0550 2016 intelppm - ok
17:08:10.0581 2016 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\Windows\system32\ipbusenum.dll
17:08:10.0581 2016 IPBusEnum - ok
17:08:10.0596 2016 [ 722DD294DF62483CECAAE6E094B4D695 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
17:08:10.0596 2016 IpFilterDriver - ok
17:08:10.0612 2016 [ E2B4A4494DB7CB9B89B55CA268C337C5 ] IPMIDRV C:\Windows\system32\DRIVERS\IPMIDrv.sys
17:08:10.0612 2016 IPMIDRV - ok
17:08:10.0643 2016 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
17:08:10.0643 2016 IPNAT - ok
17:08:10.0674 2016 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
17:08:10.0674 2016 IRENUM - ok
17:08:10.0690 2016 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\Windows\system32\DRIVERS\isapnp.sys
17:08:10.0690 2016 isapnp - ok
17:08:10.0706 2016 [ FA4D2557DE56D45B0A346F93564BE6E1 ] iScsiPrt C:\Windows\system32\DRIVERS\msiscsi.sys
17:08:10.0706 2016 iScsiPrt - ok
17:08:10.0737 2016 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
17:08:10.0737 2016 kbdclass - ok
17:08:10.0768 2016 [ 6DEF98F8541E1B5DCEB2C822A11F7323 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
17:08:10.0768 2016 kbdhid - ok
17:08:10.0799 2016 [ 156F6159457D0AA7E59B62681B56EB90 ] KeyIso C:\Windows\system32\lsass.exe
17:08:10.0799 2016 KeyIso - ok
17:08:10.0830 2016 [ 4F4B5FDE429416877DE7143044582EB5 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
17:08:10.0830 2016 KSecDD - ok
17:08:10.0846 2016 [ 6F40465A44ECDC1731BEFAFEC5BDD03C ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
17:08:10.0846 2016 KSecPkg - ok
17:08:10.0877 2016 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
17:08:10.0877 2016 ksthunk - ok
17:08:10.0908 2016 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\Windows\system32\msdtckrm.dll
17:08:10.0924 2016 KtmRm - ok
17:08:10.0955 2016 [ 81F1D04D4D0E433099365127375FD501 ] LanmanServer C:\Windows\System32\srvsvc.dll
17:08:10.0971 2016 LanmanServer - ok
17:08:11.0002 2016 [ 27026EAC8818E8A6C00A1CAD2F11D29A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
17:08:11.0002 2016 LanmanWorkstation - ok
17:08:11.0033 2016 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
17:08:11.0033 2016 lltdio - ok
17:08:11.0080 2016 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\Windows\System32\lltdsvc.dll
17:08:11.0080 2016 lltdsvc - ok
17:08:11.0096 2016 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\Windows\System32\lmhsvc.dll
17:08:11.0096 2016 lmhosts - ok
17:08:11.0127 2016 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys
17:08:11.0127 2016 LSI_FC - ok
17:08:11.0158 2016 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys
17:08:11.0158 2016 LSI_SAS - ok
17:08:11.0174 2016 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys
17:08:11.0174 2016 LSI_SAS2 - ok
17:08:11.0189 2016 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys
17:08:11.0189 2016 LSI_SCSI - ok
17:08:11.0220 2016 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\Windows\system32\drivers\luafv.sys
17:08:11.0220 2016 luafv - ok
17:08:11.0252 2016 [ F84C8F1000BC11E3B7B23CBD3BAFF111 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
17:08:11.0267 2016 Mcx2Svc - ok
17:08:11.0283 2016 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\Windows\system32\DRIVERS\megasas.sys
17:08:11.0283 2016 megasas - ok
17:08:11.0330 2016 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys
17:08:11.0330 2016 MegaSR - ok
17:08:11.0579 2016 Microsoft SharePoint Workspace Audit Service - ok
17:08:11.0610 2016 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\Windows\system32\mmcss.dll
17:08:11.0610 2016 MMCSS - ok
17:08:11.0642 2016 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\Windows\system32\drivers\modem.sys
17:08:11.0657 2016 Modem - ok
17:08:11.0720 2016 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\Windows\system32\DRIVERS\monitor.sys
17:08:11.0720 2016 monitor - ok
17:08:11.0798 2016 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
17:08:11.0798 2016 mouclass - ok
17:08:11.0844 2016 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
17:08:11.0860 2016 mouhid - ok
17:08:11.0891 2016 [ 791AF66C4D0E7C90A3646066386FB571 ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
17:08:11.0891 2016 mountmgr - ok
17:08:12.0078 2016 [ 05BF204EC0E82CC4A054DB189C8A3D84 ] MpFilter C:\Windows\system32\DRIVERS\MpFilter.sys
17:08:12.0078 2016 MpFilter - ok
17:08:12.0125 2016 [ 609D1D87649ECC19796F4D76D4C15CEA ] mpio C:\Windows\system32\DRIVERS\mpio.sys
17:08:12.0172 2016 mpio - ok
17:08:12.0203 2016 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
17:08:12.0281 2016 mpsdrv - ok
17:08:12.0375 2016 [ 30524261BB51D96D6FCBAC20C810183C ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
17:08:12.0390 2016 MRxDAV - ok
17:08:12.0437 2016 [ 040D62A9D8AD28922632137ACDD984F2 ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
17:08:12.0437 2016 mrxsmb - ok
17:08:12.0468 2016 [ F0067552F8F9B33D7C59403AB808A3CB ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
17:08:12.0468 2016 mrxsmb10 - ok
17:08:12.0515 2016 [ 3C142D31DE9F2F193218A53FE2632051 ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
17:08:12.0515 2016 mrxsmb20 - ok
17:08:12.0546 2016 [ 5C37497276E3B3A5488B23A326A754B7 ] msahci C:\Windows\system32\DRIVERS\msahci.sys
17:08:12.0546 2016 msahci - ok
17:08:12.0578 2016 [ 8D27B597229AED79430FB9DB3BCBFBD0 ] msdsm C:\Windows\system32\DRIVERS\msdsm.sys
17:08:12.0578 2016 msdsm - ok
17:08:12.0593 2016 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\Windows\System32\msdtc.exe
17:08:12.0593 2016 MSDTC - ok
17:08:12.0624 2016 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\Windows\system32\drivers\Msfs.sys
17:08:12.0624 2016 Msfs - ok
17:08:12.0640 2016 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
17:08:12.0640 2016 mshidkmdf - ok
17:08:12.0656 2016 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\Windows\system32\DRIVERS\msisadrv.sys
17:08:12.0656 2016 msisadrv - ok
17:08:12.0702 2016 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
17:08:12.0702 2016 MSiSCSI - ok
17:08:12.0702 2016 msiserver - ok
17:08:12.0718 2016 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
17:08:12.0718 2016 MSKSSRV - ok
17:08:12.0796 2016 [ CC8E4F72F21340A4D3A3D4DB50313EF5 ] MsMpSvc c:\Program Files\Microsoft Security Client\MsMpEng.exe
17:08:12.0812 2016 MsMpSvc - ok
17:08:12.0812 2016 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
17:08:12.0812 2016 MSPCLOCK - ok
17:08:12.0843 2016 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
17:08:12.0843 2016 MSPQM - ok
17:08:12.0874 2016 [ 89CB141AA8616D8C6A4610FA26C60964 ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
17:08:12.0890 2016 MsRPC - ok
17:08:12.0905 2016 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\Windows\system32\DRIVERS\mssmbios.sys
17:08:12.0905 2016 mssmbios - ok
17:08:12.0921 2016 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
17:08:12.0921 2016 MSTEE - ok
17:08:12.0921 2016 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys
17:08:12.0921 2016 MTConfig - ok
17:08:12.0952 2016 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\Windows\system32\Drivers\mup.sys
17:08:12.0952 2016 Mup - ok
17:08:12.0983 2016 [ 4987E079A4530FA737A128BE54B63B12 ] napagent C:\Windows\system32\qagentRT.dll
17:08:12.0983 2016 napagent - ok
17:08:13.0014 2016 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
17:08:13.0014 2016 NativeWifiP - ok
17:08:13.0046 2016 [ CAD515DBD07D082BB317D9928CE8962C ] NDIS C:\Windows\system32\drivers\ndis.sys
17:08:13.0061 2016 NDIS - ok
17:08:13.0077 2016 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
17:08:13.0077 2016 NdisCap - ok
17:08:13.0124 2016 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
17:08:13.0124 2016 NdisTapi - ok
17:08:13.0155 2016 [ F105BA1E22BF1F2EE8F005D4305E4BEC ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
17:08:13.0155 2016 Ndisuio - ok
17:08:13.0186 2016 [ 557DFAB9CA1FCB036AC77564C010DAD3 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
17:08:13.0202 2016 NdisWan - ok
17:08:13.0217 2016 [ 659B74FB74B86228D6338D643CD3E3CF ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
17:08:13.0217 2016 NDProxy - ok
17:08:13.0233 2016 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
17:08:13.0233 2016 NetBIOS - ok
17:08:13.0248 2016 [ 9162B273A44AB9DCE5B44362731D062A ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
17:08:13.0248 2016 NetBT - ok
17:08:13.0264 2016 [ 156F6159457D0AA7E59B62681B56EB90 ] Netlogon C:\Windows\system32\lsass.exe
17:08:13.0264 2016 Netlogon - ok
17:08:13.0295 2016 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\Windows\System32\netman.dll
17:08:13.0311 2016 Netman - ok
17:08:13.0342 2016 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
17:08:13.0373 2016 NetMsmqActivator - ok
17:08:13.0373 2016 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
17:08:13.0373 2016 NetPipeActivator - ok
17:08:13.0404 2016 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\Windows\System32\netprofm.dll
17:08:13.0404 2016 netprofm - ok
17:08:13.0404 2016 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
17:08:13.0404 2016 NetTcpActivator - ok
17:08:13.0420 2016 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
17:08:13.0420 2016 NetTcpPortSharing - ok
17:08:13.0545 2016 [ 64428DFDAF6E88366CB51F45A79C5F69 ] netw5v64 C:\Windows\system32\DRIVERS\netw5v64.sys
17:08:13.0654 2016 netw5v64 - ok
17:08:13.0701 2016 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys
17:08:13.0701 2016 nfrd960 - ok
17:08:13.0763 2016 [ 5FF89F20317309D28AC1EDEB0CD1BA72 ] NisDrv C:\Windows\system32\DRIVERS\NisDrvWFP.sys
17:08:13.0763 2016 NisDrv - ok
17:08:13.0779 2016 [ 79E80B10FE8F6662E0C9162A68C43444 ] NisSrv c:\Program Files\Microsoft Security Client\NisSrv.exe
17:08:13.0779 2016 NisSrv - ok
17:08:13.0841 2016 [ D9A0CE66046D6EFA0C61BAA885CBA0A8 ] NlaSvc C:\Windows\System32\nlasvc.dll
17:08:13.0841 2016 NlaSvc - ok
17:08:13.0919 2016 [ 1E8281A0BC4358CF816754E0A195D329 ] NovacomD C:\Program Files\Palm, Inc\novacomd\amd64\novacomd.exe
17:08:13.0919 2016 NovacomD - ok
17:08:13.0935 2016 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\Windows\system32\drivers\Npfs.sys
17:08:13.0950 2016 Npfs - ok
17:08:13.0997 2016 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\Windows\system32\nsisvc.dll
17:08:13.0997 2016 nsi - ok
17:08:14.0028 2016 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
17:08:14.0028 2016 nsiproxy - ok
17:08:14.0122 2016 [ 184C189D4FC416978550FC599BB4EDDA ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
17:08:14.0138 2016 Ntfs - ok
17:08:14.0153 2016 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\Windows\system32\drivers\Null.sys
17:08:14.0153 2016 Null - ok
17:08:14.0184 2016 [ A4D9C9A608A97F59307C2F2600EDC6A4 ] nvraid C:\Windows\system32\drivers\nvraid.sys
17:08:14.0184 2016 nvraid - ok
17:08:14.0216 2016 [ 6C1D5F70E7A6A3FD1C90D840EDC048B9 ] nvstor C:\Windows\system32\drivers\nvstor.sys
17:08:14.0216 2016 nvstor - ok
17:08:14.0262 2016 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\Windows\system32\DRIVERS\nv_agp.sys
17:08:14.0262 2016 nv_agp - ok
17:08:14.0294 2016 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\Windows\system32\DRIVERS\ohci1394.sys
17:08:14.0294 2016 ohci1394 - ok
17:08:14.0356 2016 [ 4965B005492CBA7719E82B71E3245495 ] ose64 C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
17:08:14.0372 2016 ose64 - ok
17:08:14.0528 2016 [ 61BFFB5F57AD12F83AB64B7181829B34 ] osppsvc C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
17:08:14.0684 2016 osppsvc - ok
17:08:14.0715 2016 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
17:08:14.0715 2016 p2pimsvc - ok
17:08:14.0746 2016 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\Windows\system32\p2psvc.dll
17:08:14.0746 2016 p2psvc - ok
17:08:14.0777 2016 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\Windows\system32\DRIVERS\parport.sys
17:08:14.0777 2016 Parport - ok
17:08:14.0808 2016 [ 90061B1ACFE8CCAA5345750FFE08D8B8 ] partmgr C:\Windows\system32\drivers\partmgr.sys
17:08:14.0808 2016 partmgr - ok
17:08:14.0840 2016 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll
17:08:14.0840 2016 PcaSvc - ok
17:08:14.0902 2016 [ F36F6504009F2FB0DFD1B17A116AD74B ] pci C:\Windows\system32\DRIVERS\pci.sys
17:08:14.0902 2016 pci - ok
17:08:14.0933 2016 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\Windows\system32\DRIVERS\pciide.sys
17:08:14.0933 2016 pciide - ok
17:08:14.0949 2016 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
17:08:14.0949 2016 pcmcia - ok
17:08:14.0980 2016 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\Windows\system32\drivers\pcw.sys
17:08:14.0980 2016 pcw - ok
17:08:15.0011 2016 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\Windows\system32\drivers\peauth.sys
17:08:15.0027 2016 PEAUTH - ok
17:08:15.0089 2016 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\Windows\SysWow64\perfhost.exe
17:08:15.0105 2016 PerfHost - ok
17:08:15.0167 2016 [ 557E9A86F65F0DE18C9B6751DFE9D3F1 ] pla C:\Windows\system32\pla.dll
17:08:15.0183 2016 pla - ok
17:08:15.0230 2016 [ 98B1721B8718164293B9701B98C52D77 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
17:08:15.0230 2016 PlugPlay - ok
17:08:15.0245 2016 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
17:08:15.0245 2016 PNRPAutoReg - ok
17:08:15.0261 2016 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
17:08:15.0261 2016 PNRPsvc - ok
17:08:15.0292 2016 [ 166EB40D1F5B47E615DE3D0FFFE5F243 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
17:08:15.0308 2016 PolicyAgent - ok
17:08:15.0339 2016 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\Windows\system32\umpo.dll
17:08:15.0339 2016 Power - ok
17:08:15.0370 2016 [ 27CC19E81BA5E3403C48302127BDA717 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
17:08:15.0386 2016 PptpMiniport - ok
17:08:15.0417 2016 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\Windows\system32\DRIVERS\processr.sys
17:08:15.0417 2016 Processor - ok
17:08:15.0464 2016 [ 97293447431311C06703368AD0F6C4BE ] ProfSvc C:\Windows\system32\profsvc.dll
17:08:15.0464 2016 ProfSvc - ok
17:08:15.0479 2016 [ 156F6159457D0AA7E59B62681B56EB90 ] ProtectedStorage C:\Windows\system32\lsass.exe
17:08:15.0479 2016 ProtectedStorage - ok
17:08:15.0495 2016 [ EE992183BD8EAEFD9973F352E587A299 ] Psched C:\Windows\system32\DRIVERS\pacer.sys
17:08:15.0495 2016 Psched - ok
17:08:15.0557 2016 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys
17:08:15.0573 2016 ql2300 - ok
17:08:15.0604 2016 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys
17:08:15.0604 2016 ql40xx - ok
17:08:15.0651 2016 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\Windows\system32\qwave.dll
17:08:15.0651 2016 QWAVE - ok
17:08:15.0682 2016 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
17:08:15.0682 2016 QWAVEdrv - ok
17:08:15.0698 2016 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
17:08:15.0698 2016 RasAcd - ok
17:08:15.0713 2016 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
17:08:15.0744 2016 RasAgileVpn - ok
17:08:15.0776 2016 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\Windows\System32\rasauto.dll
17:08:15.0791 2016 RasAuto - ok
17:08:15.0822 2016 [ 87A6E852A22991580D6D39ADC4790463 ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
17:08:15.0822 2016 Rasl2tp - ok
17:08:15.0900 2016 [ 47394ED3D16D053F5906EFE5AB51CC83 ] RasMan C:\Windows\System32\rasmans.dll
17:08:15.0900 2016 RasMan - ok
17:08:15.0932 2016 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
17:08:15.0932 2016 RasPppoe - ok
17:08:15.0947 2016 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
17:08:15.0947 2016 RasSstp - ok
17:08:15.0963 2016 [ 3BAC8142102C15D59A87757C1D41DCE5 ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
17:08:15.0978 2016 rdbss - ok
17:08:15.0994 2016 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
17:08:15.0994 2016 rdpbus - ok
17:08:16.0025 2016 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
17:08:16.0025 2016 RDPCDD - ok
17:08:16.0041 2016 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
17:08:16.0041 2016 RDPENCDD - ok
17:08:16.0072 2016 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
17:08:16.0072 2016 RDPREFMP - ok
17:08:16.0150 2016 [ 447DE7E3DEA39D422C1504F245B668B1 ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
17:08:16.0212 2016 RDPWD - ok
17:08:16.0306 2016 [ 634B9A2181D98F15941236886164EC8B ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
17:08:16.0322 2016 rdyboost - ok
17:08:16.0353 2016 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\Windows\System32\mprdim.dll
17:08:16.0353 2016 RemoteAccess - ok
17:08:16.0384 2016 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll
17:08:16.0384 2016 RemoteRegistry - ok
17:08:16.0493 2016 [ 498EB62A160674E793FA40FD65390625 ] RichVideo C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe
17:08:16.0509 2016 RichVideo - ok
17:08:16.0540 2016 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
17:08:16.0556 2016 RpcEptMapper - ok
17:08:16.0587 2016 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\Windows\system32\locator.exe
17:08:16.0602 2016 RpcLocator - ok
17:08:16.0696 2016 [ 7266972E86890E2B30C0C322E906B027 ] RpcSs C:\Windows\System32\rpcss.dll
17:08:16.0696 2016 RpcSs - ok
17:08:16.0758 2016 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
17:08:16.0774 2016 rspndr - ok
17:08:16.0852 2016 [ 483DF0B58CA532E5240E59DC41F30AA2 ] RSUSBSTOR C:\Windows\system32\Drivers\RtsUStor.sys
17:08:16.0852 2016 RSUSBSTOR - ok
17:08:16.0883 2016 [ 777FC2C418465404E3D8A290DC247D24 ] RTL8167 C:\Windows\system32\DRIVERS\Rt64win7.sys
17:08:16.0883 2016 RTL8167 - ok
17:08:17.0148 2016 [ 03E0627C26943916A7276AC5306206C7 ] rtl8192se C:\Windows\system32\DRIVERS\rtl8192se.sys
17:08:17.0164 2016 rtl8192se - ok
17:08:17.0180 2016 [ 156F6159457D0AA7E59B62681B56EB90 ] SamSs C:\Windows\system32\lsass.exe
17:08:17.0180 2016 SamSs - ok
17:08:17.0226 2016 [ E3BBB89983DAF5622C1D50CF49F28227 ] sbp2port C:\Windows\system32\DRIVERS\sbp2port.sys
17:08:17.0242 2016 sbp2port - ok
17:08:17.0273 2016 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\Windows\System32\SCardSvr.dll
17:08:17.0273 2016 SCardSvr - ok
17:08:17.0304 2016 [ C94DA20C7E3BA1DCA269BC8460D98387 ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
17:08:17.0304 2016 scfilter - ok
17:08:17.0351 2016 [ 624D0F5FF99428BB90A5B8A4123E918E ] Schedule C:\Windows\system32\schedsvc.dll
17:08:17.0367 2016 Schedule - ok
17:08:17.0398 2016 [ 312E2F82AF11E79906898AC3E3D58A1F ] SCPolicySvc C:\Windows\System32\certprop.dll
17:08:17.0398 2016 SCPolicySvc - ok
17:08:17.0445 2016 [ 54E47AD086782D3AE9417C155CDCEB9B ] sdbus C:\Windows\system32\DRIVERS\sdbus.sys
17:08:17.0445 2016 sdbus - ok
17:08:17.0523 2016 [ 765A27C3279CE11D14CB9E4F5869FCA5 ] SDRSVC C:\Windows\System32\SDRSVC.dll
17:08:17.0523 2016 SDRSVC - ok
17:08:17.0554 2016 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys
17:08:17.0554 2016 secdrv - ok
17:08:17.0585 2016 [ 463B386EBC70F98DA5DFF85F7E654346 ] seclogon C:\Windows\system32\seclogon.dll
17:08:17.0601 2016 seclogon - ok
17:08:17.0616 2016 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\Windows\system32\sens.dll
17:08:17.0616 2016 SENS - ok
17:08:17.0632 2016 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\Windows\system32\sensrsvc.dll
17:08:17.0632 2016 SensrSvc - ok
17:08:17.0679 2016 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
17:08:17.0679 2016 Serenum - ok
17:08:17.0679 2016 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\Windows\system32\DRIVERS\serial.sys
17:08:17.0694 2016 Serial - ok
17:08:17.0726 2016 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys
17:08:17.0726 2016 sermouse - ok
17:08:17.0835 2016 [ 7B51D631CACD0EEEAA7ED20EDB1A7AFA ] Service Sendori C:\Program Files (x86)\Sendori\Sendori.Service.exe
17:08:17.0835 2016 Service Sendori - ok
17:08:17.0866 2016 [ C3BC61CE47FF6F4E88AB8A3B429A36AF ] SessionEnv C:\Windows\system32\sessenv.dll
17:08:17.0866 2016 SessionEnv - ok
17:08:17.0897 2016 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\Windows\system32\DRIVERS\sffdisk.sys
17:08:17.0897 2016 sffdisk - ok
17:08:17.0928 2016 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\Windows\system32\DRIVERS\sffp_mmc.sys
17:08:17.0928 2016 sffp_mmc - ok
17:08:17.0928 2016 [ 5588B8C6193EB1522490C122EB94DFFA ] sffp_sd C:\Windows\system32\DRIVERS\sffp_sd.sys
17:08:17.0928 2016 sffp_sd - ok
17:08:17.0975 2016 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
17:08:17.0975 2016 sfloppy - ok
17:08:18.0022 2016 [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess C:\Windows\System32\ipnathlp.dll
17:08:18.0038 2016 SharedAccess - ok
17:08:18.0069 2016 [ 0298AC45D0EFFFB2DB4BAA7DD186E7BF ] ShellHWDetection C:\Windows\System32\shsvcs.dll
17:08:18.0069 2016 ShellHWDetection - ok
17:08:18.0131 2016 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys
17:08:18.0131 2016 SiSRaid2 - ok
17:08:18.0162 2016 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys
17:08:18.0162 2016 SiSRaid4 - ok
17:08:18.0194 2016 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\Windows\system32\DRIVERS\smb.sys
17:08:18.0194 2016 Smb - ok
17:08:18.0537 2016 [ 4E9E7C7D857EA1C83BE6160DAE25B4DA ] sndappv2 C:\Program Files (x86)\Sendori\sndappv2.exe
17:08:18.0693 2016 sndappv2 - ok
17:08:18.0818 2016 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\Windows\System32\snmptrap.exe
17:08:18.0818 2016 SNMPTRAP - ok
17:08:18.0864 2016 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\Windows\system32\drivers\spldr.sys
17:08:18.0911 2016 spldr - ok
17:08:18.0958 2016 [ 567977DC43CC13C4C35ED7084C0B84D5 ] Spooler C:\Windows\System32\spoolsv.exe
17:08:18.0974 2016 Spooler - ok
17:08:19.0176 2016 [ 913D843498553A1BC8F8DBAD6358E49F ] sppsvc C:\Windows\system32\sppsvc.exe
17:08:19.0223 2016 sppsvc - ok
17:08:19.0239 2016 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\Windows\system32\sppuinotify.dll
17:08:19.0239 2016 sppuinotify - ok
17:08:19.0457 2016 [ 2408C0366D96BCDF63E8F1C78E4A29C5 ] srv C:\Windows\system32\DRIVERS\srv.sys
17:08:19.0473 2016 srv - ok
17:08:19.0676 2016 [ 76548F7B818881B47D8D1AE1BE9C11F8 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
17:08:19.0691 2016 srv2 - ok
17:08:19.0800 2016 [ 0C4540311E11664B245A263E1154CEF8 ] SrvHsfHDA C:\Windows\system32\DRIVERS\VSTAZL6.SYS
17:08:19.0800 2016 SrvHsfHDA - ok
17:08:19.0941 2016 [ 02071D207A9858FBE3A48CBFD59C4A04 ] SrvHsfV92 C:\Windows\system32\DRIVERS\VSTDPV6.SYS
17:08:19.0956 2016 SrvHsfV92 - ok
17:08:19.0988 2016 [ 18E40C245DBFAF36FD0134A7EF2DF396 ] SrvHsfWinac C:\Windows\system32\DRIVERS\VSTCNXT6.SYS
17:08:20.0003 2016 SrvHsfWinac - ok
17:08:20.0050 2016 [ 0AF6E19D39C70844C5CAA8FB0183C36E ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
17:08:20.0050 2016 srvnet - ok
17:08:20.0128 2016 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
17:08:20.0144 2016 SSDPSRV - ok
17:08:20.0175 2016 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\Windows\system32\sstpsvc.dll
17:08:20.0190 2016 SstpSvc - ok
17:08:20.0268 2016 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys
17:08:20.0284 2016 stexstor - ok
17:08:20.0487 2016 [ 52D0E33B681BD0F33FDC08812FEE4F7D ] stisvc C:\Windows\System32\wiaservc.dll
17:08:20.0534 2016 stisvc - ok
17:08:20.0580 2016 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\Windows\system32\DRIVERS\swenum.sys
17:08:20.0580 2016 swenum - ok
17:08:20.0768 2016 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\Windows\System32\swprv.dll
17:08:20.0768 2016 swprv - ok
17:08:20.0908 2016 [ 91853F78B68F9F036670291F5EDD4EAE ] SynTP C:\Windows\system32\DRIVERS\SynTP.sys
17:08:20.0908 2016 SynTP - ok
17:08:21.0236 2016 [ 3C1284516A62078FB68F768DE4F1A7BE ] SysMain C:\Windows\system32\sysmain.dll
17:08:21.0267 2016 SysMain - ok
17:08:21.0329 2016 [ 238935C3CF2854886DC7CBB2A0E2CC66 ] TabletInputService C:\Windows\System32\TabSvc.dll
17:08:21.0345 2016 TabletInputService - ok
17:08:21.0470 2016 [ 884264AC597B690C5707C89723BB8E7B ] TapiSrv C:\Windows\System32\tapisrv.dll
17:08:21.0485 2016 TapiSrv - ok
17:08:21.0548 2016 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\Windows\System32\tbssvc.dll
17:08:21.0563 2016 TBS - ok
17:08:21.0969 2016 [ 624C5B3AA4C99B3184BB922D9ECE3FF0 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
17:08:22.0031 2016 Tcpip - ok
17:08:22.0125 2016 [ 624C5B3AA4C99B3184BB922D9ECE3FF0 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
17:08:22.0140 2016 TCPIP6 - ok
17:08:22.0172 2016 [ 76D078AF6F587B162D50210F761EB9ED ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
17:08:22.0172 2016 tcpipreg - ok
17:08:22.0218 2016 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
17:08:22.0218 2016 TDPIPE - ok
17:08:22.0281 2016 [ 7518F7BCFD4B308ABC9192BACAF6C970 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
17:08:22.0296 2016 TDTCP - ok
17:08:22.0343 2016 [ 079125C4B17B01FCAEEBCE0BCB290C0F ] tdx C:\Windows\system32\DRIVERS\tdx.sys
17:08:22.0374 2016 tdx - ok
17:08:22.0390 2016 [ C448651339196C0E869A355171875522 ] TermDD C:\Windows\system32\DRIVERS\termdd.sys
17:08:22.0406 2016 TermDD - ok
17:08:22.0452 2016 [ 0F05EC2887BFE197AD82A13287D2F404 ] TermService C:\Windows\System32\termsrv.dll
17:08:22.0468 2016 TermService - ok
17:08:22.0484 2016 [ F0344071948D1A1FA732231785A0664C ] Themes C:\Windows\system32\themeservice.dll
17:08:22.0484 2016 Themes - ok
17:08:22.0546 2016 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\Windows\system32\mmcss.dll
17:08:22.0546 2016 THREADORDER - ok
17:08:22.0577 2016 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\Windows\System32\trkwks.dll
17:08:22.0608 2016 TrkWks - ok
17:08:22.0749 2016 [ 840F7FB849F5887A49BA18C13B2DA920 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
17:08:22.0764 2016 TrustedInstaller - ok
17:08:22.0842 2016 [ 61B96C26131E37B24E93327A0BD1FB95 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
17:08:22.0874 2016 tssecsrv - ok
17:08:22.0920 2016 [ 3836171A2CDF3AF8EF10856DB9835A70 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
17:08:22.0920 2016 tunnel - ok
17:08:22.0967 2016 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys
17:08:22.0998 2016 uagp35 - ok
17:08:23.0092 2016 [ C06E6F4679CEB8F430B90A51D76D8D3C ] udfs C:\Windows\system32\DRIVERS\udfs.sys
17:08:23.0139 2016 udfs - ok
17:08:23.0201 2016 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\Windows\system32\UI0Detect.exe
17:08:23.0217 2016 UI0Detect - ok
17:08:23.0279 2016 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\Windows\system32\DRIVERS\uliagpkx.sys
17:08:23.0295 2016 uliagpkx - ok
17:08:23.0388 2016 [ EAB6C35E62B1B0DB0D1B48B671D3A117 ] umbus C:\Windows\system32\DRIVERS\umbus.sys
17:08:23.0388 2016 umbus - ok
17:08:23.0435 2016 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\Windows\system32\DRIVERS\umpass.sys
17:08:23.0451 2016 UmPass - ok
17:08:23.0529 2016 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\Windows\System32\upnphost.dll
17:08:23.0529 2016 upnphost - ok
17:08:23.0654 2016 [ 77B01BC848298223A95D4EC23E1785A1 ] usbaudio C:\Windows\system32\drivers\usbaudio.sys
17:08:23.0669 2016 usbaudio - ok
17:08:23.0747 2016 [ 537A4E03D7103C12D42DFD8FFDB5BDC9 ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
17:08:23.0747 2016 usbccgp - ok
17:08:23.0778 2016 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\Windows\system32\DRIVERS\usbcir.sys
17:08:23.0778 2016 usbcir - ok
17:08:23.0810 2016 [ FBB21EBE49F6D560DB37AC25FBC68E66 ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
17:08:23.0825 2016 usbehci - ok
17:08:23.0872 2016 [ 6B7A8A99C4A459E73C286A6763EA24CC ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
17:08:23.0872 2016 usbhub - ok
17:08:23.0903 2016 [ 8C88AA7617B4CBC2E4BED61D26B33A27 ] usbohci C:\Windows\system32\drivers\usbohci.sys
17:08:23.0934 2016 usbohci - ok
17:08:24.0059 2016 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
17:08:24.0090 2016 usbprint - ok
17:08:24.0137 2016 [ AAA2513C8AED8B54B189FD0C6B1634C0 ] usbscan C:\Windows\system32\DRIVERS\usbscan.sys
17:08:24.0137 2016 usbscan - ok
17:08:24.0168 2016 [ F39983647BC1F3E6100778DDFE9DCE29 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
17:08:24.0168 2016 USBSTOR - ok
17:08:24.0215 2016 [ 0B5B3B2DF3FD1709618ACFA50B8392B0 ] usbuhci C:\Windows\system32\DRIVERS\usbuhci.sys
17:08:24.0215 2016 usbuhci - ok
17:08:24.0246 2016 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\Windows\System32\uxsms.dll
17:08:24.0246 2016 UxSms - ok
17:08:24.0293 2016 [ 156F6159457D0AA7E59B62681B56EB90 ] VaultSvc C:\Windows\system32\lsass.exe
17:08:24.0293 2016 VaultSvc - ok
17:08:24.0324 2016 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\Windows\system32\DRIVERS\vdrvroot.sys
17:08:24.0324 2016 vdrvroot - ok
17:08:24.0490 2016 [ 44D73E0BBC1D3C8981304BA15135C2F2 ] vds C:\Windows\System32\vds.exe
17:08:24.0510 2016 vds - ok
17:08:24.0570 2016 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
17:08:24.0570 2016 vga - ok
17:08:24.0600 2016 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\Windows\System32\drivers\vga.sys
17:08:24.0610 2016 VgaSave - ok
17:08:24.0690 2016 [ C82E748660F62A242B2DFAC1442F22A4 ] vhdmp C:\Windows\system32\DRIVERS\vhdmp.sys
17:08:24.0700 2016 vhdmp - ok
17:08:24.0750 2016 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\Windows\system32\DRIVERS\viaide.sys
17:08:24.0750 2016 viaide - ok
17:08:24.0790 2016 [ 2B1A3DAE2B4E70DBBA822B7A03FBD4A3 ] volmgr C:\Windows\system32\DRIVERS\volmgr.sys
17:08:24.0810 2016 volmgr - ok
17:08:24.0870 2016 [ 99B0CBB569CA79ACAED8C91461D765FB ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
17:08:24.0890 2016 volmgrx - ok
17:08:24.0960 2016 [ 58F82EED8CA24B461441F9C3E4F0BF5C ] volsnap C:\Windows\system32\DRIVERS\volsnap.sys
17:08:24.0970 2016 volsnap - ok
17:08:25.0000 2016 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys
17:08:25.0000 2016 vsmraid - ok
17:08:25.0060 2016 [ 787898BF9FB6D7BD87A36E2D95C899BA ] VSS C:\Windows\system32\vssvc.exe
17:08:25.0080 2016 VSS - ok
17:08:25.0500 2016 [ 7D110D645030C05A06C3CD08D1E47D0A ] vToolbarUpdater13.2.0 C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\13.2.0\ToolbarUpdater.exe
17:08:25.0550 2016 vToolbarUpdater13.2.0 - ok
17:08:26.0080 2016 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\Windows\system32\DRIVERS\vwifibus.sys
17:08:26.0110 2016 vwifibus - ok
17:08:26.0180 2016 [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys
17:08:26.0180 2016 vwififlt - ok
17:08:26.0300 2016 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\Windows\system32\w32time.dll
17:08:26.0310 2016 W32Time - ok
17:08:26.0390 2016 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys
17:08:26.0390 2016 WacomPen - ok
17:08:26.0480 2016 [ 47CA49400643EFFD3F1C9A27E1D69324 ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
17:08:26.0500 2016 WANARP - ok
17:08:26.0540 2016 [ 47CA49400643EFFD3F1C9A27E1D69324 ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
17:08:26.0540 2016 Wanarpv6 - ok
17:08:26.0980 2016 [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe
17:08:27.0060 2016 WatAdminSvc - ok
17:08:27.0480 2016 [ 5AB1BB85BD8B5089CC5D64200DEDAE68 ] wbengine C:\Windows\system32\wbengine.exe
17:08:27.0540 2016 wbengine - ok
17:08:27.0600 2016 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
17:08:27.0610 2016 WbioSrvc - ok
17:08:27.0660 2016 [ DD1BAE8EBFC653824D29CCF8C9054D68 ] wcncsvc C:\Windows\System32\wcncsvc.dll
17:08:27.0670 2016 wcncsvc - ok
17:08:27.0760 2016 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
17:08:27.0790 2016 WcsPlugInService - ok
17:08:27.0840 2016 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\Windows\system32\DRIVERS\wd.sys
17:08:27.0870 2016 Wd - ok
17:08:27.0900 2016 [ 441BD2D7B4F98134C3A4F9FA570FD250 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
17:08:27.0910 2016 Wdf01000 - ok
17:08:27.0940 2016 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\Windows\system32\wdi.dll
17:08:27.0950 2016 WdiServiceHost - ok
17:08:27.0950 2016 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\Windows\system32\wdi.dll
17:08:27.0950 2016 WdiSystemHost - ok
17:08:28.0000 2016 [ 733006127F235BE7C35354EBEE7B9A7B ] WebClient C:\Windows\System32\webclnt.dll
17:08:28.0010 2016 WebClient - ok
17:08:28.0090 2016 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\Windows\system32\wecsvc.dll
17:08:28.0150 2016 Wecsvc - ok
17:08:28.0180 2016 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\Windows\System32\wercplsupport.dll
17:08:28.0200 2016 wercplsupport - ok
17:08:28.0300 2016 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\Windows\System32\WerSvc.dll
17:08:28.0310 2016 WerSvc - ok
17:08:28.0350 2016 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
17:08:28.0360 2016 WfpLwf - ok
17:08:28.0380 2016 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\Windows\system32\drivers\wimmount.sys
17:08:28.0390 2016 WIMMount - ok
17:08:28.0450 2016 WinDefend - ok
17:08:28.0490 2016 WinHttpAutoProxySvc - ok
17:08:28.0800 2016 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
17:08:28.0820 2016 Winmgmt - ok
17:08:29.0310 2016 [ 41FBB751936B387F9179E7F03A74FE29 ] WinRM C:\Windows\system32\WsmSvc.dll
17:08:29.0400 2016 WinRM - ok
17:08:29.0520 2016 [ 817EAFF5D38674EDD7713B9DFB8E9791 ] WinUSB C:\Windows\system32\DRIVERS\WinUSB.sys
17:08:29.0540 2016 WinUSB - ok
17:08:29.0760 2016 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\Windows\System32\wlansvc.dll
17:08:29.0780 2016 Wlansvc - ok
17:08:29.0820 2016 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\Windows\system32\DRIVERS\wmiacpi.sys
17:08:29.0820 2016 WmiAcpi - ok
17:08:29.0950 2016 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
17:08:29.0990 2016 wmiApSrv - ok
17:08:30.0060 2016 WMPNetworkSvc - ok
17:08:30.0140 2016 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\Windows\System32\wpcsvc.dll
17:08:30.0140 2016 WPCSvc - ok
17:08:30.0210 2016 [ 2E57DDF2880A7E52E76F41C7E96D327B ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
17:08:30.0240 2016 WPDBusEnum - ok
17:08:30.0290 2016 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
17:08:30.0310 2016 ws2ifsl - ok
17:08:30.0420 2016 [ 8F9F3969933C02DA96EB0F84576DB43E ] wscsvc C:\Windows\system32\wscsvc.dll
17:08:30.0440 2016 wscsvc - ok
17:08:30.0450 2016 WSearch - ok
17:08:31.0080 2016 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv C:\Windows\system32\wuaueng.dll
17:08:31.0290 2016 wuauserv - ok
17:08:31.0310 2016 [ 7CADC74271DD6461C452C271B30BD378 ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
17:08:31.0340 2016 WudfPf - ok
17:08:31.0400 2016 [ 3B197AF0FFF08AA66B6B2241CA538D64 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
17:08:31.0410 2016 WUDFRd - ok
17:08:31.0480 2016 [ B551D6637AA0E132C18AC6E504F7B79B ] wudfsvc C:\Windows\System32\WUDFSvc.dll
17:08:31.0480 2016 wudfsvc - ok
17:08:31.0560 2016 [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc C:\Windows\System32\wwansvc.dll
17:08:31.0590 2016 WwanSvc - ok
17:08:31.0800 2016 [ B3EEACF62445E24FBB2CD4B0FB4DB026 ] yukonw7 C:\Windows\system32\DRIVERS\yk62x64.sys
17:08:31.0810 2016 yukonw7 - ok
17:08:31.0810 2016 ================ Scan global ===============================
17:08:31.0850 2016 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
17:08:31.0950 2016 [ 79CDA06F75AD5373DD447F57575C4400 ] C:\Windows\system32\winsrv.dll
17:08:31.0980 2016 [ 79CDA06F75AD5373DD447F57575C4400 ] C:\Windows\system32\winsrv.dll
17:08:32.0020 2016 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
17:08:32.0060 2016 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
17:08:32.0060 2016 [Global] - ok
17:08:32.0060 2016 ================ Scan MBR ==================================
17:08:32.0080 2016 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
17:08:32.0080 2016 Suspicious mbr (Forged): \Device\Harddisk0\DR0
17:08:32.0170 2016 \Device\Harddisk0\DR0 ( Rootkit.Boot.Pihar.c ) - infected
17:08:32.0170 2016 \Device\Harddisk0\DR0 - detected Rootkit.Boot.Pihar.c (0)
17:08:32.0170 2016 ================ Scan VBR ==================================
17:08:32.0190 2016 [ AE27C7FF620F69E154378A89A34E8331 ] \Device\Harddisk0\DR0\Partition1
17:08:32.0230 2016 \Device\Harddisk0\DR0\Partition1 - ok
17:08:32.0240 2016 [ ADB9AA13B939BE3875CBB850EF658F50 ] \Device\Harddisk0\DR0\Partition2
17:08:32.0240 2016 \Device\Harddisk0\DR0\Partition2 - ok
17:08:32.0260 2016 [ D467E9AF3AE10846995719E0759E99EE ] \Device\Harddisk0\DR0\Partition3
17:08:32.0260 2016 \Device\Harddisk0\DR0\Partition3 - ok
17:08:32.0260 2016 ============================================================
17:08:32.0260 2016 Scan finished
17:08:32.0260 2016 ============================================================
17:08:32.0280 1104 Detected object count: 1
17:08:32.0280 1104 Actual detected object count: 1
17:09:25.0892 1104 \Device\Harddisk0\DR0\# - copied to quarantine
17:09:25.0892 1104 \Device\Harddisk0\DR0 - copied to quarantine
17:09:25.0922 1104 \Device\Harddisk0\DR0\TDLFS\cmd.dll - copied to quarantine
17:09:25.0922 1104 \Device\Harddisk0\DR0\TDLFS\cmd64.dll - copied to quarantine
17:09:26.0002 1104 \Device\Harddisk0\DR0\TDLFS\drv32 - copied to quarantine
17:09:26.0012 1104 \Device\Harddisk0\DR0\TDLFS\drv64 - copied to quarantine
17:09:26.0012 1104 \Device\Harddisk0\DR0\TDLFS\servers.dat - copied to quarantine
17:09:26.0012 1104 \Device\Harddisk0\DR0\TDLFS\config.ini - copied to quarantine
17:09:26.0012 1104 \Device\Harddisk0\DR0\TDLFS\ldr16 - copied to quarantine
17:09:26.0012 1104 \Device\Harddisk0\DR0\TDLFS\ldr32 - copied to quarantine
17:09:26.0022 1104 \Device\Harddisk0\DR0\TDLFS\ldr64 - copied to quarantine
17:09:26.0052 1104 \Device\Harddisk0\DR0\TDLFS\s - copied to quarantine
17:09:26.0052 1104 \Device\Harddisk0\DR0\TDLFS\ldrm - copied to quarantine
17:09:26.0052 1104 \Device\Harddisk0\DR0\TDLFS\u - copied to quarantine
17:09:26.0082 1104 \Device\Harddisk0\DR0 ( Rootkit.Boot.Pihar.c ) - will be cured on reboot
17:09:26.0082 1104 \Device\Harddisk0\DR0 - ok
17:09:26.0352 1104 \Device\Harddisk0\DR0 ( Rootkit.Boot.Pihar.c ) - User select action: Cure
17:09:37.0992 2528 Deinitialize success
  • 0

#50
gg101

gg101

    Member

  • Topic Starter
  • Member
  • PipPip
  • 41 posts
Here is the second scan wir the load module checked off...

17:13:39.0558 3048 TDSS rootkit removing tool 2.8.15.0 Oct 31 2012 21:47:35
17:13:39.0870 3048 ============================================================
17:13:39.0870 3048 Current date / time: 2012/11/09 17:13:39.0870
17:13:39.0870 3048 SystemInfo:
17:13:39.0870 3048
17:13:39.0870 3048 OS Version: 6.1.7600 ServicePack: 0.0
17:13:39.0870 3048 Product type: Workstation
17:13:39.0870 3048 ComputerName: GLORY-PC
17:13:39.0870 3048 UserName: Glory
17:13:39.0870 3048 Windows directory: C:\Windows
17:13:39.0870 3048 System windows directory: C:\Windows
17:13:39.0870 3048 Running under WOW64
17:13:39.0870 3048 Processor architecture: Intel x64
17:13:39.0870 3048 Number of processors: 2
17:13:39.0870 3048 Page size: 0x1000
17:13:39.0870 3048 Boot type: Safe boot with network
17:13:39.0870 3048 ============================================================
17:13:39.0901 3048 BG loaded
17:13:40.0291 3048 Drive \Device\Harddisk0\DR0 - Size: 0x4A85D56000 (298.09 Gb), SectorSize: 0x200, Cylinders: 0x9801, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
17:13:40.0291 3048 ============================================================
17:13:40.0291 3048 \Device\Harddisk0\DR0:
17:13:40.0291 3048 MBR partitions:
17:13:40.0291 3048 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x63800
17:13:40.0291 3048 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x64000, BlocksNum 0x236FA000
17:13:40.0291 3048 \Device\Harddisk0\DR0\Partition3: MBR, Type 0x7, StartLBA 0x2375E000, BlocksNum 0x1C9C800
17:13:40.0291 3048 \Device\Harddisk0\DR0\Partition4: MBR, Type 0xC, StartLBA 0x253FA800, BlocksNum 0x33AB0
17:13:40.0291 3048 ============================================================
17:13:40.0338 3048 C: <-> \Device\Harddisk0\DR0\Partition2
17:13:40.0369 3048 D: <-> \Device\Harddisk0\DR0\Partition3
17:13:40.0385 3048 E: <-> \Device\Harddisk0\DR0\Partition4
17:13:40.0385 3048 ============================================================
17:13:40.0385 3048 Initialize success
17:13:40.0385 3048 ============================================================
17:14:47.0262 2132 ============================================================
17:14:47.0262 2132 Scan started
17:14:47.0262 2132 Mode: Manual;
17:14:47.0262 2132 ============================================================
17:14:47.0465 2132 ================ Scan system memory ========================
17:14:47.0465 2132 System memory - ok
17:14:47.0465 2132 ================ Scan services =============================
17:14:47.0668 2132 [ 1B00662092F9F9568B995902F0CC40D5 ] 1394ohci C:\Windows\system32\DRIVERS\1394ohci.sys
17:14:47.0668 2132 1394ohci - ok
17:14:47.0714 2132 [ 6F11E88748CDEFD2F76AA215F97DDFE5 ] ACPI C:\Windows\system32\DRIVERS\ACPI.sys
17:14:47.0714 2132 ACPI - ok
17:14:47.0761 2132 [ 63B05A0420CE4BF0E4AF6DCC7CADA254 ] AcpiPmi C:\Windows\system32\DRIVERS\acpipmi.sys
17:14:47.0761 2132 AcpiPmi - ok
17:14:47.0808 2132 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
17:14:47.0808 2132 adp94xx - ok
17:14:47.0839 2132 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
17:14:47.0855 2132 adpahci - ok
17:14:47.0886 2132 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
17:14:47.0886 2132 adpu320 - ok
17:14:47.0917 2132 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
17:14:47.0917 2132 AeLookupSvc - ok
17:14:47.0995 2132 [ D1E343BC00136CE03C4D403194D06A80 ] AERTFilters C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe
17:14:47.0995 2132 AERTFilters - ok
17:14:48.0073 2132 [ DB9D6C6B2CD95A9CA414D045B627422E ] AFD C:\Windows\system32\drivers\afd.sys
17:14:48.0073 2132 AFD - ok
17:14:48.0104 2132 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\Windows\system32\DRIVERS\agp440.sys
17:14:48.0120 2132 agp440 - ok
17:14:48.0151 2132 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\Windows\System32\alg.exe
17:14:48.0151 2132 ALG - ok
17:14:48.0182 2132 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\Windows\system32\DRIVERS\aliide.sys
17:14:48.0182 2132 aliide - ok
17:14:48.0198 2132 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\Windows\system32\DRIVERS\amdide.sys
17:14:48.0198 2132 amdide - ok
17:14:48.0245 2132 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
17:14:48.0245 2132 AmdK8 - ok
17:14:48.0292 2132 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
17:14:48.0292 2132 AmdPPM - ok
17:14:48.0338 2132 [ EC7EBAB00A4D8448BAB68D1E49B4BEB9 ] amdsata C:\Windows\system32\drivers\amdsata.sys
17:14:48.0338 2132 amdsata - ok
17:14:48.0370 2132 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
17:14:48.0370 2132 amdsbs - ok
17:14:48.0385 2132 [ DB27766102C7BF7E95140A2AA81D042E ] amdxata C:\Windows\system32\drivers\amdxata.sys
17:14:48.0385 2132 amdxata - ok
17:14:48.0432 2132 [ 42FD751B27FA0E9C69BB39F39E409594 ] AppID C:\Windows\system32\drivers\appid.sys
17:14:48.0432 2132 AppID - ok
17:14:48.0463 2132 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\Windows\System32\appidsvc.dll
17:14:48.0463 2132 AppIDSvc - ok
17:14:48.0494 2132 [ D065BE66822847B7F127D1F90158376E ] Appinfo C:\Windows\System32\appinfo.dll
17:14:48.0494 2132 Appinfo - ok
17:14:48.0635 2132 [ 44F0479ACDBC24D20C62B63E23720B4A ] Application Sendori C:\Program Files (x86)\Sendori\SendoriSvc.exe
17:14:48.0635 2132 Application Sendori - ok
17:14:48.0697 2132 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\Windows\system32\DRIVERS\arc.sys
17:14:48.0697 2132 arc - ok
17:14:48.0744 2132 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
17:14:48.0744 2132 arcsas - ok
17:14:48.0838 2132 [ 9217D874131AE6FF8F642F124F00A555 ] aspnet_state C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
17:14:48.0884 2132 aspnet_state - ok
17:14:48.0947 2132 [ 4FCAEF0C5BE7629AEB878998E0FE959B ] aswFsBlk C:\Windows\system32\drivers\aswFsBlk.sys
17:14:48.0947 2132 aswFsBlk - ok
17:14:49.0009 2132 [ B50CDD87772D6A11CB90924AAD399DF8 ] aswMonFlt C:\Windows\system32\drivers\aswMonFlt.sys
17:14:49.0009 2132 aswMonFlt - ok
17:14:49.0056 2132 [ 57768C7DB4681F2510F247F82EF31D4F ] aswRdr C:\Windows\System32\Drivers\aswrdr2.sys
17:14:49.0056 2132 aswRdr - ok
17:14:49.0103 2132 [ E71D826A1F3CE9C9DE3E77F2D02AFFBF ] aswSnx C:\Windows\system32\drivers\aswSnx.sys
17:14:49.0118 2132 aswSnx - ok
17:14:49.0181 2132 [ 538A32E2C99BF073D4CA76C30BEDAA60 ] aswSP C:\Windows\system32\drivers\aswSP.sys
17:14:49.0181 2132 aswSP - ok
17:14:49.0243 2132 [ 6EDC79D73745FD44C41B55B2D13D0B70 ] aswTdi C:\Windows\system32\drivers\aswTdi.sys
17:14:49.0243 2132 aswTdi - ok
17:14:49.0274 2132 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
17:14:49.0274 2132 AsyncMac - ok
17:14:49.0290 2132 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\Windows\system32\DRIVERS\atapi.sys
17:14:49.0290 2132 atapi - ok
17:14:49.0337 2132 [ 07721A77180EDD4D39CCB865BF63C7FD ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
17:14:49.0337 2132 AudioEndpointBuilder - ok
17:14:49.0352 2132 [ 07721A77180EDD4D39CCB865BF63C7FD ] AudioSrv C:\Windows\System32\Audiosrv.dll
17:14:49.0368 2132 AudioSrv - ok
17:14:49.0477 2132 [ 8FA553E9AE69808D99C164733A0F9590 ] avast! Antivirus C:\Program Files\AVAST Software\Avast\AvastSvc.exe
17:14:49.0493 2132 avast! Antivirus - ok
17:14:49.0540 2132 [ 371428CF0F71934CB0F2344823ADFA32 ] avgtp C:\Windows\system32\drivers\avgtpx64.sys
17:14:49.0540 2132 avgtp - ok
17:14:49.0586 2132 [ B20B5FA5CA050E9926E4D1DB81501B32 ] AxInstSV C:\Windows\System32\AxInstSV.dll
17:14:49.0586 2132 AxInstSV - ok
17:14:49.0633 2132 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\Windows\system32\DRIVERS\bxvbda.sys
17:14:49.0633 2132 b06bdrv - ok
17:14:49.0664 2132 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
17:14:49.0664 2132 b57nd60a - ok
17:14:49.0727 2132 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\Windows\System32\bdesvc.dll
17:14:49.0727 2132 BDESVC - ok
17:14:49.0758 2132 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\Windows\system32\drivers\Beep.sys
17:14:49.0758 2132 Beep - ok
17:14:49.0852 2132 [ 4992C609A6315671463E30F6512BC022 ] BFE C:\Windows\System32\bfe.dll
17:14:49.0852 2132 BFE - ok
17:14:49.0898 2132 [ 7F0C323FE3DA28AA4AA1BDA3F575707F ] BITS C:\Windows\system32\qmgr.dll
17:14:49.0898 2132 BITS - ok
17:14:49.0961 2132 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
17:14:49.0961 2132 blbdrive - ok
17:14:49.0992 2132 [ 19D20159708E152267E53B66677A4995 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
17:14:49.0992 2132 bowser - ok
17:14:50.0023 2132 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
17:14:50.0023 2132 BrFiltLo - ok
17:14:50.0039 2132 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
17:14:50.0039 2132 BrFiltUp - ok
17:14:50.0070 2132 [ 5C2F352A4E961D72518261257AAE204B ] BridgeMP C:\Windows\system32\DRIVERS\bridge.sys
17:14:50.0070 2132 BridgeMP - ok
17:14:50.0117 2132 [ 6B054C67AAA87843504E8E3C09102009 ] Browser C:\Windows\System32\browser.dll
17:14:50.0117 2132 Browser - ok
17:14:50.0164 2132 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\Windows\System32\Drivers\Brserid.sys
17:14:50.0164 2132 Brserid - ok
17:14:50.0195 2132 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
17:14:50.0195 2132 BrSerWdm - ok
17:14:50.0226 2132 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
17:14:50.0226 2132 BrUsbMdm - ok
17:14:50.0257 2132 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
17:14:50.0257 2132 BrUsbSer - ok
17:14:50.0288 2132 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
17:14:50.0288 2132 BTHMODEM - ok
17:14:50.0320 2132 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\Windows\system32\bthserv.dll
17:14:50.0320 2132 bthserv - ok
17:14:50.0335 2132 catchme - ok
17:14:50.0382 2132 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
17:14:50.0398 2132 cdfs - ok
17:14:50.0413 2132 [ 83D2D75E1EFB81B3450C18131443F7DB ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
17:14:50.0413 2132 cdrom - ok
17:14:50.0444 2132 [ 312E2F82AF11E79906898AC3E3D58A1F ] CertPropSvc C:\Windows\System32\certprop.dll
17:14:50.0444 2132 CertPropSvc - ok
17:14:50.0476 2132 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\Windows\system32\DRIVERS\circlass.sys
17:14:50.0476 2132 circlass - ok
17:14:50.0522 2132 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\Windows\system32\CLFS.sys
17:14:50.0522 2132 CLFS - ok
17:14:50.0600 2132 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
17:14:50.0600 2132 clr_optimization_v2.0.50727_32 - ok
17:14:50.0647 2132 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
17:14:50.0647 2132 clr_optimization_v2.0.50727_64 - ok
17:14:50.0725 2132 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
17:14:50.0912 2132 clr_optimization_v4.0.30319_32 - ok
17:14:50.0928 2132 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
17:14:50.0944 2132 clr_optimization_v4.0.30319_64 - ok
17:14:50.0990 2132 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
17:14:50.0990 2132 CmBatt - ok
17:14:51.0022 2132 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\Windows\system32\DRIVERS\cmdide.sys
17:14:51.0022 2132 cmdide - ok
17:14:51.0068 2132 [ CA7720B73446FDDEC5C69519C1174C98 ] CNG C:\Windows\system32\Drivers\cng.sys
17:14:51.0068 2132 CNG - ok
17:14:51.0131 2132 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
17:14:51.0131 2132 Compbatt - ok
17:14:51.0162 2132 [ F26B3A86F6FA87CA360B879581AB4123 ] CompositeBus C:\Windows\system32\DRIVERS\CompositeBus.sys
17:14:51.0162 2132 CompositeBus - ok
17:14:51.0178 2132 COMSysApp - ok
17:14:51.0209 2132 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
17:14:51.0209 2132 crcdisk - ok
17:14:51.0256 2132 [ BAF19B633933A9FB4883D27D66C39E9A ] CryptSvc C:\Windows\system32\cryptsvc.dll
17:14:51.0256 2132 CryptSvc - ok
17:14:51.0318 2132 [ 7266972E86890E2B30C0C322E906B027 ] DcomLaunch C:\Windows\system32\rpcss.dll
17:14:51.0318 2132 DcomLaunch - ok
17:14:51.0349 2132 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\Windows\System32\defragsvc.dll
17:14:51.0349 2132 defragsvc - ok
17:14:51.0412 2132 [ 9C253CE7311CA60FC11C774692A13208 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
17:14:51.0412 2132 DfsC - ok
17:14:51.0458 2132 [ CE3B9562D997F69B330D181A8875960F ] Dhcp C:\Windows\system32\dhcpcore.dll
17:14:51.0458 2132 Dhcp - ok
17:14:51.0505 2132 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\Windows\system32\drivers\discache.sys
17:14:51.0505 2132 discache - ok
17:14:51.0552 2132 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\Windows\system32\DRIVERS\disk.sys
17:14:51.0568 2132 Disk - ok
17:14:51.0614 2132 [ 85CF424C74A1D5EC33533E1DBFF9920A ] Dnscache C:\Windows\System32\dnsrslvr.dll
17:14:51.0614 2132 Dnscache - ok
17:14:51.0661 2132 [ 14452ACDB09B70964C8C21BF80A13ACB ] dot3svc C:\Windows\System32\dot3svc.dll
17:14:51.0661 2132 dot3svc - ok
17:14:51.0692 2132 [ 8C2BA6BEA949EE6E68385F5692BAFB94 ] DPS C:\Windows\system32\dps.dll
17:14:51.0692 2132 DPS - ok
17:14:51.0708 2132 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
17:14:51.0708 2132 drmkaud - ok
17:14:51.0755 2132 [ 46571ED73AE84469DCA53081D33CF3C8 ] dtsoftbus01 C:\Windows\system32\DRIVERS\dtsoftbus01.sys
17:14:51.0755 2132 dtsoftbus01 - ok
17:14:51.0817 2132 [ 1633B9ABF52784A1331476397A48CBEF ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
17:14:51.0817 2132 DXGKrnl - ok
17:14:51.0864 2132 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\Windows\System32\eapsvc.dll
17:14:51.0864 2132 EapHost - ok
17:14:51.0973 2132 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\Windows\system32\DRIVERS\evbda.sys
17:14:52.0020 2132 ebdrv - ok
17:14:52.0067 2132 [ 156F6159457D0AA7E59B62681B56EB90 ] EFS C:\Windows\System32\lsass.exe
17:14:52.0067 2132 EFS - ok
17:14:52.0129 2132 [ 47C071994C3F649F23D9CD075AC9304A ] ehRecvr C:\Windows\ehome\ehRecvr.exe
17:14:52.0145 2132 ehRecvr - ok
17:14:52.0176 2132 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\Windows\ehome\ehsched.exe
17:14:52.0176 2132 ehSched - ok
17:14:52.0207 2132 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys
17:14:52.0223 2132 elxstor - ok
17:14:52.0238 2132 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\Windows\system32\DRIVERS\errdev.sys
17:14:52.0238 2132 ErrDev - ok
17:14:52.0316 2132 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\Windows\system32\es.dll
17:14:52.0316 2132 EventSystem - ok
17:14:52.0332 2132 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\Windows\system32\drivers\exfat.sys
17:14:52.0348 2132 exfat - ok
17:14:52.0379 2132 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\Windows\system32\drivers\fastfat.sys
17:14:52.0379 2132 fastfat - ok
17:14:52.0410 2132 [ D607B2F1BEE3992AA6C2C92C0A2F0855 ] Fax C:\Windows\system32\fxssvc.exe
17:14:52.0410 2132 Fax - ok
17:14:52.0441 2132 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\Windows\system32\DRIVERS\fdc.sys
17:14:52.0441 2132 fdc - ok
17:14:52.0472 2132 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\Windows\system32\fdPHost.dll
17:14:52.0472 2132 fdPHost - ok
17:14:52.0504 2132 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\Windows\system32\fdrespub.dll
17:14:52.0504 2132 FDResPub - ok
17:14:52.0519 2132 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
17:14:52.0519 2132 FileInfo - ok
17:14:52.0535 2132 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
17:14:52.0535 2132 Filetrace - ok
17:14:52.0597 2132 [ BB0667B0171B632B97EA759515476F07 ] FLEXnet Licensing Service C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
17:14:52.0613 2132 FLEXnet Licensing Service - ok
17:14:52.0628 2132 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
17:14:52.0628 2132 flpydisk - ok
17:14:52.0660 2132 [ F7866AF72ABBAF84B1FA5AA195378C59 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
17:14:52.0660 2132 FltMgr - ok
17:14:52.0722 2132 [ CB5E4B9C319E3C6BB363EB7E58A4A051 ] FontCache C:\Windows\system32\FntCache.dll
17:14:52.0722 2132 FontCache - ok
17:14:52.0784 2132 [ 8D89E3131C27FDD6932189CB785E1B7A ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
17:14:52.0784 2132 FontCache3.0.0.0 - ok
17:14:52.0800 2132 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
17:14:52.0800 2132 FsDepends - ok
17:14:52.0831 2132 [ D3E3F93D67821A2DB2B3D9FAC2DC2064 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
17:14:52.0831 2132 Fs_Rec - ok
17:14:52.0894 2132 [ AE87BA80D0EC3B57126ED2CDC15B24ED ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
17:14:52.0894 2132 fvevol - ok
17:14:52.0925 2132 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys
17:14:52.0925 2132 gagp30kx - ok
17:14:52.0987 2132 [ E53EE18A21C025DEABCFE0F72FC481BB ] GameConsoleService C:\Program Files (x86)\HP Games\HP Game Console\GameConsoleService.exe
17:14:52.0987 2132 GameConsoleService - ok
17:14:53.0050 2132 [ FE5AB4525BC2EC68B9119A6E5D40128B ] gpsvc C:\Windows\System32\gpsvc.dll
17:14:53.0065 2132 gpsvc - ok
17:14:53.0159 2132 [ 506708142BC63DABA64F2D3AD1DCD5BF ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
17:14:53.0159 2132 gupdate - ok
17:14:53.0174 2132 [ 506708142BC63DABA64F2D3AD1DCD5BF ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
17:14:53.0174 2132 gupdatem - ok
17:14:53.0190 2132 [ 5D4BC124FAAE6730AC002CDB67BF1A1C ] gusvc C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
17:14:53.0206 2132 gusvc - ok
17:14:53.0237 2132 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
17:14:53.0237 2132 hcw85cir - ok
17:14:53.0268 2132 [ 6410F6F415B2A5A9037224C41DA8BF12 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
17:14:53.0268 2132 HdAudAddService - ok
17:14:53.0299 2132 [ 0A49913402747A0B67DE940FB42CBDBB ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys
17:14:53.0299 2132 HDAudBus - ok
17:14:53.0330 2132 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys
17:14:53.0330 2132 HidBatt - ok
17:14:53.0346 2132 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
17:14:53.0346 2132 HidBth - ok
17:14:53.0362 2132 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
17:14:53.0362 2132 HidIr - ok
17:14:53.0393 2132 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\Windows\System32\hidserv.dll
17:14:53.0393 2132 hidserv - ok
17:14:53.0424 2132 [ B3BF6B5B50006DEF50B66306D99FCF6F ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
17:14:53.0424 2132 HidUsb - ok
17:14:53.0455 2132 [ EFA58EDE58DD74388FFD04CB32681518 ] hkmsvc C:\Windows\system32\kmsvc.dll
17:14:53.0455 2132 hkmsvc - ok
17:14:53.0471 2132 [ 046B2673767CA626E2CFB7FDF735E9E8 ] HomeGroupListener C:\Windows\system32\ListSvc.dll
17:14:53.0471 2132 HomeGroupListener - ok
17:14:53.0502 2132 [ 06A7422224D9865A5613710A089987DF ] HomeGroupProvider C:\Windows\system32\provsvc.dll
17:14:53.0502 2132 HomeGroupProvider - ok
17:14:53.0580 2132 [ 58C91CCA61A948DC6E789C93C05A1D6F ] HP Health Check Service C:\Program Files (x86)\Hewlett-Packard\HP Health Check\hphc_service.exe
17:14:53.0580 2132 HP Health Check Service - ok
17:14:53.0611 2132 [ EF3EA06057132138B4E5895A61601DBE ] hpqwmiex C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe
17:14:53.0611 2132 hpqwmiex - ok
17:14:53.0642 2132 [ 0886D440058F203EBA0E1825E4355914 ] HpSAMD C:\Windows\system32\DRIVERS\HpSAMD.sys
17:14:53.0642 2132 HpSAMD - ok
17:14:53.0720 2132 [ B6492D01712A22FF3FEA25A999DBD321 ] HPWMISVC C:\Program Files\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe
17:14:53.0720 2132 HPWMISVC - ok
17:14:53.0767 2132 [ CEE049CAC4EFA7F4E1E4AD014414A5D4 ] HTTP C:\Windows\system32\drivers\HTTP.sys
17:14:53.0767 2132 HTTP - ok
17:14:53.0783 2132 [ F17766A19145F111856378DF337A5D79 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
17:14:53.0783 2132 hwpolicy - ok
17:14:53.0814 2132 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\Windows\system32\DRIVERS\i8042prt.sys
17:14:53.0814 2132 i8042prt - ok
17:14:53.0861 2132 [ BE7D72FCF442C26975942007E0831241 ] iaStor C:\Windows\system32\DRIVERS\iaStor.sys
17:14:53.0861 2132 iaStor - ok
17:14:53.0908 2132 [ B75E45C564E944A2657167D197AB29DA ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
17:14:53.0908 2132 iaStorV - ok
17:14:53.0970 2132 [ 2F2BE70D3E02B6FA877921AB9516D43C ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
17:14:53.0970 2132 idsvc - ok
17:14:54.0188 2132 [ 677AA5991026A65ADA128C4B59CF2BAD ] igfx C:\Windows\system32\DRIVERS\igdkmd64.sys
17:14:54.0391 2132 igfx - ok
17:14:54.0407 2132 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys
17:14:54.0422 2132 iirsp - ok
17:14:54.0469 2132 [ C5B4683680DF085B57BC53E5EF34861F ] IKEEXT C:\Windows\System32\ikeext.dll
17:14:54.0469 2132 IKEEXT - ok
17:14:54.0547 2132 [ A3BCBD0F710580A07D1B929D787D36CE ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
17:14:54.0563 2132 IntcAzAudAddService - ok
17:14:54.0610 2132 [ CFC68CA36A63637E8CA69669EE3693DA ] IntcHdmiAddService C:\Windows\system32\drivers\IntcHdmi.sys
17:14:54.0625 2132 IntcHdmiAddService - ok
17:14:54.0641 2132 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\Windows\system32\DRIVERS\intelide.sys
17:14:54.0641 2132 intelide - ok
17:14:54.0688 2132 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
17:14:54.0688 2132 intelppm - ok
17:14:54.0750 2132 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\Windows\system32\ipbusenum.dll
17:14:54.0750 2132 IPBusEnum - ok
17:14:54.0766 2132 [ 722DD294DF62483CECAAE6E094B4D695 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
17:14:54.0766 2132 IpFilterDriver - ok
17:14:54.0781 2132 [ E2B4A4494DB7CB9B89B55CA268C337C5 ] IPMIDRV C:\Windows\system32\DRIVERS\IPMIDrv.sys
17:14:54.0797 2132 IPMIDRV - ok
17:14:54.0812 2132 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
17:14:54.0812 2132 IPNAT - ok
17:14:54.0844 2132 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
17:14:54.0844 2132 IRENUM - ok
17:14:54.0859 2132 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\Windows\system32\DRIVERS\isapnp.sys
17:14:54.0859 2132 isapnp - ok
17:14:54.0875 2132 [ FA4D2557DE56D45B0A346F93564BE6E1 ] iScsiPrt C:\Windows\system32\DRIVERS\msiscsi.sys
17:14:54.0875 2132 iScsiPrt - ok
17:14:54.0906 2132 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
17:14:54.0906 2132 kbdclass - ok
17:14:54.0937 2132 [ 6DEF98F8541E1B5DCEB2C822A11F7323 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
17:14:54.0937 2132 kbdhid - ok
17:14:54.0953 2132 [ 156F6159457D0AA7E59B62681B56EB90 ] KeyIso C:\Windows\system32\lsass.exe
17:14:54.0953 2132 KeyIso - ok
17:14:54.0984 2132 [ 4F4B5FDE429416877DE7143044582EB5 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
17:14:54.0984 2132 KSecDD - ok
17:14:55.0000 2132 [ 6F40465A44ECDC1731BEFAFEC5BDD03C ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
17:14:55.0000 2132 KSecPkg - ok
17:14:55.0031 2132 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
17:14:55.0031 2132 ksthunk - ok
17:14:55.0062 2132 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\Windows\system32\msdtckrm.dll
17:14:55.0062 2132 KtmRm - ok
17:14:55.0109 2132 [ 81F1D04D4D0E433099365127375FD501 ] LanmanServer C:\Windows\System32\srvsvc.dll
17:14:55.0109 2132 LanmanServer - ok
17:14:55.0140 2132 [ 27026EAC8818E8A6C00A1CAD2F11D29A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
17:14:55.0156 2132 LanmanWorkstation - ok
17:14:55.0187 2132 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
17:14:55.0187 2132 lltdio - ok
17:14:55.0218 2132 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\Windows\System32\lltdsvc.dll
17:14:55.0234 2132 lltdsvc - ok
17:14:55.0249 2132 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\Windows\System32\lmhsvc.dll
17:14:55.0249 2132 lmhosts - ok
17:14:55.0296 2132 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys
17:14:55.0296 2132 LSI_FC - ok
17:14:55.0312 2132 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys
17:14:55.0312 2132 LSI_SAS - ok
17:14:55.0327 2132 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys
17:14:55.0327 2132 LSI_SAS2 - ok
17:14:55.0343 2132 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys
17:14:55.0343 2132 LSI_SCSI - ok
17:14:55.0374 2132 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\Windows\system32\drivers\luafv.sys
17:14:55.0374 2132 luafv - ok
17:14:55.0421 2132 [ F84C8F1000BC11E3B7B23CBD3BAFF111 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
17:14:55.0421 2132 Mcx2Svc - ok
17:14:55.0452 2132 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\Windows\system32\DRIVERS\megasas.sys
17:14:55.0452 2132 megasas - ok
17:14:55.0483 2132 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys
17:14:55.0483 2132 MegaSR - ok
17:14:55.0670 2132 Microsoft SharePoint Workspace Audit Service - ok
17:14:55.0702 2132 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\Windows\system32\mmcss.dll
17:14:55.0702 2132 MMCSS - ok
17:14:55.0717 2132 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\Windows\system32\drivers\modem.sys
17:14:55.0717 2132 Modem - ok
17:14:55.0748 2132 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\Windows\system32\DRIVERS\monitor.sys
17:14:55.0748 2132 monitor - ok
17:14:55.0795 2132 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
17:14:55.0795 2132 mouclass - ok
17:14:55.0826 2132 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
17:14:55.0842 2132 mouhid - ok
17:14:55.0858 2132 [ 791AF66C4D0E7C90A3646066386FB571 ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
17:14:55.0858 2132 mountmgr - ok
17:14:55.0920 2132 [ 05BF204EC0E82CC4A054DB189C8A3D84 ] MpFilter C:\Windows\system32\DRIVERS\MpFilter.sys
17:14:55.0920 2132 MpFilter - ok
17:14:55.0951 2132 [ 609D1D87649ECC19796F4D76D4C15CEA ] mpio C:\Windows\system32\DRIVERS\mpio.sys
17:14:55.0951 2132 mpio - ok
17:14:55.0967 2132 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
17:14:55.0967 2132 mpsdrv - ok
17:14:55.0982 2132 [ 30524261BB51D96D6FCBAC20C810183C ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
17:14:55.0998 2132 MRxDAV - ok
17:14:56.0029 2132 [ 040D62A9D8AD28922632137ACDD984F2 ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
17:14:56.0029 2132 mrxsmb - ok
17:14:56.0060 2132 [ F0067552F8F9B33D7C59403AB808A3CB ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
17:14:56.0076 2132 mrxsmb10 - ok
17:14:56.0092 2132 [ 3C142D31DE9F2F193218A53FE2632051 ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
17:14:56.0092 2132 mrxsmb20 - ok
17:14:56.0107 2132 [ 5C37497276E3B3A5488B23A326A754B7 ] msahci C:\Windows\system32\DRIVERS\msahci.sys
17:14:56.0107 2132 msahci - ok
17:14:56.0154 2132 [ 8D27B597229AED79430FB9DB3BCBFBD0 ] msdsm C:\Windows\system32\DRIVERS\msdsm.sys
17:14:56.0154 2132 msdsm - ok
17:14:56.0170 2132 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\Windows\System32\msdtc.exe
17:14:56.0170 2132 MSDTC - ok
17:14:56.0201 2132 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\Windows\system32\drivers\Msfs.sys
17:14:56.0201 2132 Msfs - ok
17:14:56.0216 2132 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
17:14:56.0216 2132 mshidkmdf - ok
17:14:56.0232 2132 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\Windows\system32\DRIVERS\msisadrv.sys
17:14:56.0248 2132 msisadrv - ok
17:14:56.0279 2132 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
17:14:56.0279 2132 MSiSCSI - ok
17:14:56.0294 2132 msiserver - ok
17:14:56.0310 2132 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
17:14:56.0310 2132 MSKSSRV - ok
17:14:56.0388 2132 [ CC8E4F72F21340A4D3A3D4DB50313EF5 ] MsMpSvc c:\Program Files\Microsoft Security Client\MsMpEng.exe
17:14:56.0388 2132 MsMpSvc - ok
17:14:56.0388 2132 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
17:14:56.0404 2132 MSPCLOCK - ok
17:14:56.0419 2132 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
17:14:56.0419 2132 MSPQM - ok
17:14:56.0466 2132 [ 89CB141AA8616D8C6A4610FA26C60964 ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
17:14:56.0466 2132 MsRPC - ok
17:14:56.0497 2132 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\Windows\system32\DRIVERS\mssmbios.sys
17:14:56.0497 2132 mssmbios - ok
17:14:56.0528 2132 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
17:14:56.0528 2132 MSTEE - ok
17:14:56.0528 2132 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys
17:14:56.0528 2132 MTConfig - ok
17:14:56.0575 2132 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\Windows\system32\Drivers\mup.sys
17:14:56.0575 2132 Mup - ok
17:14:56.0622 2132 [ 4987E079A4530FA737A128BE54B63B12 ] napagent C:\Windows\system32\qagentRT.dll
17:14:56.0622 2132 napagent - ok
17:14:56.0653 2132 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
17:14:56.0669 2132 NativeWifiP - ok
17:14:56.0700 2132 [ CAD515DBD07D082BB317D9928CE8962C ] NDIS C:\Windows\system32\drivers\ndis.sys
17:14:56.0716 2132 NDIS - ok
17:14:56.0716 2132 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
17:14:56.0716 2132 NdisCap - ok
17:14:56.0762 2132 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
17:14:56.0762 2132 NdisTapi - ok
17:14:56.0794 2132 [ F105BA1E22BF1F2EE8F005D4305E4BEC ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
17:14:56.0794 2132 Ndisuio - ok
17:14:56.0809 2132 [ 557DFAB9CA1FCB036AC77564C010DAD3 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
17:14:56.0809 2132 NdisWan - ok
17:14:56.0825 2132 [ 659B74FB74B86228D6338D643CD3E3CF ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
17:14:56.0825 2132 NDProxy - ok
17:14:56.0856 2132 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
17:14:56.0856 2132 NetBIOS - ok
17:14:56.0887 2132 [ 9162B273A44AB9DCE5B44362731D062A ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
17:14:56.0887 2132 NetBT - ok
17:14:56.0903 2132 [ 156F6159457D0AA7E59B62681B56EB90 ] Netlogon C:\Windows\system32\lsass.exe
17:14:56.0903 2132 Netlogon - ok
17:14:56.0950 2132 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\Windows\System32\netman.dll
17:14:56.0950 2132 Netman - ok
17:14:56.0981 2132 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
17:14:57.0012 2132 NetMsmqActivator - ok
17:14:57.0028 2132 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
17:14:57.0028 2132 NetPipeActivator - ok
17:14:57.0043 2132 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\Windows\System32\netprofm.dll
17:14:57.0059 2132 netprofm - ok
17:14:57.0059 2132 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
17:14:57.0059 2132 NetTcpActivator - ok
17:14:57.0074 2132 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
17:14:57.0074 2132 NetTcpPortSharing - ok
17:14:57.0199 2132 [ 64428DFDAF6E88366CB51F45A79C5F69 ] netw5v64 C:\Windows\system32\DRIVERS\netw5v64.sys
17:14:57.0308 2132 netw5v64 - ok
17:14:57.0340 2132 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys
17:14:57.0340 2132 nfrd960 - ok
17:14:57.0402 2132 [ 5FF89F20317309D28AC1EDEB0CD1BA72 ] NisDrv C:\Windows\system32\DRIVERS\NisDrvWFP.sys
17:14:57.0402 2132 NisDrv - ok
17:14:57.0449 2132 [ 79E80B10FE8F6662E0C9162A68C43444 ] NisSrv c:\Program Files\Microsoft Security Client\NisSrv.exe
17:14:57.0449 2132 NisSrv - ok
17:14:57.0527 2132 [ D9A0CE66046D6EFA0C61BAA885CBA0A8 ] NlaSvc C:\Windows\System32\nlasvc.dll
17:14:57.0542 2132 NlaSvc - ok
17:14:57.0605 2132 [ 1E8281A0BC4358CF816754E0A195D329 ] NovacomD C:\Program Files\Palm, Inc\novacomd\amd64\novacomd.exe
17:14:57.0605 2132 NovacomD - ok
17:14:57.0620 2132 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\Windows\system32\drivers\Npfs.sys
17:14:57.0620 2132 Npfs - ok
17:14:57.0667 2132 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\Windows\system32\nsisvc.dll
17:14:57.0667 2132 nsi - ok
17:14:57.0683 2132 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
17:14:57.0683 2132 nsiproxy - ok
17:14:57.0761 2132 [ 184C189D4FC416978550FC599BB4EDDA ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
17:14:57.0776 2132 Ntfs - ok
17:14:57.0808 2132 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\Windows\system32\drivers\Null.sys
17:14:57.0808 2132 Null - ok
17:14:57.0823 2132 [ A4D9C9A608A97F59307C2F2600EDC6A4 ] nvraid C:\Windows\system32\drivers\nvraid.sys
17:14:57.0823 2132 nvraid - ok
17:14:57.0839 2132 [ 6C1D5F70E7A6A3FD1C90D840EDC048B9 ] nvstor C:\Windows\system32\drivers\nvstor.sys
17:14:57.0839 2132 nvstor - ok
17:14:57.0870 2132 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\Windows\system32\DRIVERS\nv_agp.sys
17:14:57.0870 2132 nv_agp - ok
17:14:57.0901 2132 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\Windows\system32\DRIVERS\ohci1394.sys
17:14:57.0917 2132 ohci1394 - ok
17:14:57.0995 2132 [ 4965B005492CBA7719E82B71E3245495 ] ose64 C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
17:14:57.0995 2132 ose64 - ok
17:14:58.0135 2132 [ 61BFFB5F57AD12F83AB64B7181829B34 ] osppsvc C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
17:14:58.0276 2132 osppsvc - ok
17:14:58.0307 2132 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
17:14:58.0322 2132 p2pimsvc - ok
17:14:58.0338 2132 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\Windows\system32\p2psvc.dll
17:14:58.0338 2132 p2psvc - ok
17:14:58.0354 2132 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\Windows\system32\DRIVERS\parport.sys
17:14:58.0354 2132 Parport - ok
17:14:58.0385 2132 [ 90061B1ACFE8CCAA5345750FFE08D8B8 ] partmgr C:\Windows\system32\drivers\partmgr.sys
17:14:58.0385 2132 partmgr - ok
17:14:58.0416 2132 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll
17:14:58.0416 2132 PcaSvc - ok
17:14:58.0463 2132 [ F36F6504009F2FB0DFD1B17A116AD74B ] pci C:\Windows\system32\DRIVERS\pci.sys
17:14:58.0463 2132 pci - ok
17:14:58.0478 2132 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\Windows\system32\DRIVERS\pciide.sys
17:14:58.0478 2132 pciide - ok
17:14:58.0494 2132 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
17:14:58.0510 2132 pcmcia - ok
17:14:58.0525 2132 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\Windows\system32\drivers\pcw.sys
17:14:58.0525 2132 pcw - ok
17:14:58.0556 2132 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\Windows\system32\drivers\peauth.sys
17:14:58.0556 2132 PEAUTH - ok
17:14:58.0634 2132 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\Windows\SysWow64\perfhost.exe
17:14:58.0634 2132 PerfHost - ok
17:14:58.0697 2132 [ 557E9A86F65F0DE18C9B6751DFE9D3F1 ] pla C:\Windows\system32\pla.dll
17:14:58.0712 2132 pla - ok
17:14:58.0759 2132 [ 98B1721B8718164293B9701B98C52D77 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
17:14:58.0759 2132 PlugPlay - ok
17:14:58.0775 2132 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
17:14:58.0790 2132 PNRPAutoReg - ok
17:14:58.0790 2132 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
17:14:58.0806 2132 PNRPsvc - ok
17:14:58.0837 2132 [ 166EB40D1F5B47E615DE3D0FFFE5F243 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
17:14:58.0837 2132 PolicyAgent - ok
17:14:58.0868 2132 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\Windows\system32\umpo.dll
17:14:58.0884 2132 Power - ok
17:14:58.0900 2132 [ 27CC19E81BA5E3403C48302127BDA717 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
17:14:58.0915 2132 PptpMiniport - ok
17:14:58.0931 2132 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\Windows\system32\DRIVERS\processr.sys
17:14:58.0931 2132 Processor - ok
17:14:58.0962 2132 [ 97293447431311C06703368AD0F6C4BE ] ProfSvc C:\Windows\system32\profsvc.dll
17:14:58.0962 2132 ProfSvc - ok
17:14:58.0978 2132 [ 156F6159457D0AA7E59B62681B56EB90 ] ProtectedStorage C:\Windows\system32\lsass.exe
17:14:58.0978 2132 ProtectedStorage - ok
17:14:58.0993 2132 [ EE992183BD8EAEFD9973F352E587A299 ] Psched C:\Windows\system32\DRIVERS\pacer.sys
17:14:58.0993 2132 Psched - ok
17:14:59.0056 2132 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys
17:14:59.0071 2132 ql2300 - ok
17:14:59.0087 2132 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys
17:14:59.0087 2132 ql40xx - ok
17:14:59.0118 2132 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\Windows\system32\qwave.dll
17:14:59.0118 2132 QWAVE - ok
17:14:59.0149 2132 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
17:14:59.0149 2132 QWAVEdrv - ok
17:14:59.0165 2132 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
17:14:59.0165 2132 RasAcd - ok
17:14:59.0180 2132 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
17:14:59.0180 2132 RasAgileVpn - ok
17:14:59.0196 2132 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\Windows\System32\rasauto.dll
17:14:59.0196 2132 RasAuto - ok
17:14:59.0227 2132 [ 87A6E852A22991580D6D39ADC4790463 ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
17:14:59.0227 2132 Rasl2tp - ok
17:14:59.0243 2132 [ 47394ED3D16D053F5906EFE5AB51CC83 ] RasMan C:\Windows\System32\rasmans.dll
17:14:59.0243 2132 RasMan - ok
17:14:59.0258 2132 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
17:14:59.0258 2132 RasPppoe - ok
17:14:59.0274 2132 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
17:14:59.0274 2132 RasSstp - ok
17:14:59.0290 2132 [ 3BAC8142102C15D59A87757C1D41DCE5 ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
17:14:59.0290 2132 rdbss - ok
17:14:59.0305 2132 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
17:14:59.0305 2132 rdpbus - ok
17:14:59.0321 2132 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
17:14:59.0321 2132 RDPCDD - ok
17:14:59.0336 2132 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
17:14:59.0336 2132 RDPENCDD - ok
17:14:59.0352 2132 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
17:14:59.0352 2132 RDPREFMP - ok
17:14:59.0383 2132 [ 447DE7E3DEA39D422C1504F245B668B1 ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
17:14:59.0383 2132 RDPWD - ok
17:14:59.0414 2132 [ 634B9A2181D98F15941236886164EC8B ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
17:14:59.0414 2132 rdyboost - ok
17:14:59.0461 2132 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\Windows\System32\mprdim.dll
17:14:59.0461 2132 RemoteAccess - ok
17:14:59.0492 2132 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll
17:14:59.0492 2132 RemoteRegistry - ok
17:14:59.0602 2132 [ 498EB62A160674E793FA40FD65390625 ] RichVideo C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe
17:14:59.0602 2132 RichVideo - ok
17:14:59.0617 2132 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
17:14:59.0617 2132 RpcEptMapper - ok
17:14:59.0633 2132 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\Windows\system32\locator.exe
17:14:59.0633 2132 RpcLocator - ok
17:14:59.0664 2132 [ 7266972E86890E2B30C0C322E906B027 ] RpcSs C:\Windows\System32\rpcss.dll
17:14:59.0664 2132 RpcSs - ok
17:14:59.0711 2132 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
17:14:59.0711 2132 rspndr - ok
17:14:59.0758 2132 [ 483DF0B58CA532E5240E59DC41F30AA2 ] RSUSBSTOR C:\Windows\system32\Drivers\RtsUStor.sys
17:14:59.0758 2132 RSUSBSTOR - ok
17:14:59.0820 2132 [ 777FC2C418465404E3D8A290DC247D24 ] RTL8167 C:\Windows\system32\DRIVERS\Rt64win7.sys
17:14:59.0820 2132 RTL8167 - ok
17:14:59.0867 2132 [ 03E0627C26943916A7276AC5306206C7 ] rtl8192se C:\Windows\system32\DRIVERS\rtl8192se.sys
17:14:59.0867 2132 rtl8192se - ok
17:14:59.0882 2132 [ 156F6159457D0AA7E59B62681B56EB90 ] SamSs C:\Windows\system32\lsass.exe
17:14:59.0882 2132 SamSs - ok
17:14:59.0914 2132 [ E3BBB89983DAF5622C1D50CF49F28227 ] sbp2port C:\Windows\system32\DRIVERS\sbp2port.sys
17:14:59.0914 2132 sbp2port - ok
17:14:59.0929 2132 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\Windows\System32\SCardSvr.dll
17:14:59.0929 2132 SCardSvr - ok
17:14:59.0960 2132 [ C94DA20C7E3BA1DCA269BC8460D98387 ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
17:14:59.0960 2132 scfilter - ok
17:15:00.0007 2132 [ 624D0F5FF99428BB90A5B8A4123E918E ] Schedule C:\Windows\system32\schedsvc.dll
17:15:00.0023 2132 Schedule - ok
17:15:00.0054 2132 [ 312E2F82AF11E79906898AC3E3D58A1F ] SCPolicySvc C:\Windows\System32\certprop.dll
17:15:00.0054 2132 SCPolicySvc - ok
17:15:00.0085 2132 [ 54E47AD086782D3AE9417C155CDCEB9B ] sdbus C:\Windows\system32\DRIVERS\sdbus.sys
17:15:00.0085 2132 sdbus - ok
17:15:00.0101 2132 [ 765A27C3279CE11D14CB9E4F5869FCA5 ] SDRSVC C:\Windows\System32\SDRSVC.dll
17:15:00.0116 2132 SDRSVC - ok
17:15:00.0132 2132 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys
17:15:00.0132 2132 secdrv - ok
17:15:00.0148 2132 [ 463B386EBC70F98DA5DFF85F7E654346 ] seclogon C:\Windows\system32\seclogon.dll
17:15:00.0148 2132 seclogon - ok
17:15:00.0163 2132 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\Windows\system32\sens.dll
17:15:00.0179 2132 SENS - ok
17:15:00.0179 2132 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\Windows\system32\sensrsvc.dll
17:15:00.0179 2132 SensrSvc - ok
17:15:00.0210 2132 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
17:15:00.0210 2132 Serenum - ok
17:15:00.0226 2132 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\Windows\system32\DRIVERS\serial.sys
17:15:00.0226 2132 Serial - ok
17:15:00.0257 2132 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys
17:15:00.0257 2132 sermouse - ok
17:15:00.0366 2132 [ 7B51D631CACD0EEEAA7ED20EDB1A7AFA ] Service Sendori C:\Program Files (x86)\Sendori\Sendori.Service.exe
17:15:00.0366 2132 Service Sendori - ok
17:15:00.0413 2132 [ C3BC61CE47FF6F4E88AB8A3B429A36AF ] SessionEnv C:\Windows\system32\sessenv.dll
17:15:00.0413 2132 SessionEnv - ok
17:15:00.0444 2132 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\Windows\system32\DRIVERS\sffdisk.sys
17:15:00.0444 2132 sffdisk - ok
17:15:00.0460 2132 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\Windows\system32\DRIVERS\sffp_mmc.sys
17:15:00.0460 2132 sffp_mmc - ok
17:15:00.0460 2132 [ 5588B8C6193EB1522490C122EB94DFFA ] sffp_sd C:\Windows\system32\DRIVERS\sffp_sd.sys
17:15:00.0460 2132 sffp_sd - ok
17:15:00.0491 2132 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
17:15:00.0506 2132 sfloppy - ok
17:15:00.0538 2132 [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess C:\Windows\System32\ipnathlp.dll
17:15:00.0538 2132 SharedAccess - ok
17:15:00.0553 2132 [ 0298AC45D0EFFFB2DB4BAA7DD186E7BF ] ShellHWDetection C:\Windows\System32\shsvcs.dll
17:15:00.0569 2132 ShellHWDetection - ok
17:15:00.0600 2132 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys
17:15:00.0600 2132 SiSRaid2 - ok
17:15:00.0616 2132 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys
17:15:00.0616 2132 SiSRaid4 - ok
17:15:00.0647 2132 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\Windows\system32\DRIVERS\smb.sys
17:15:00.0647 2132 Smb - ok
17:15:00.0974 2132 [ 4E9E7C7D857EA1C83BE6160DAE25B4DA ] sndappv2 C:\Program Files (x86)\Sendori\sndappv2.exe
17:15:00.0990 2132 sndappv2 - ok
17:15:01.0052 2132 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\Windows\System32\snmptrap.exe
17:15:01.0052 2132 SNMPTRAP - ok
17:15:01.0068 2132 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\Windows\system32\drivers\spldr.sys
17:15:01.0068 2132 spldr - ok
17:15:01.0115 2132 [ 567977DC43CC13C4C35ED7084C0B84D5 ] Spooler C:\Windows\System32\spoolsv.exe
17:15:01.0115 2132 Spooler - ok
17:15:01.0193 2132 [ 913D843498553A1BC8F8DBAD6358E49F ] sppsvc C:\Windows\system32\sppsvc.exe
17:15:01.0224 2132 sppsvc - ok
17:15:01.0240 2132 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\Windows\system32\sppuinotify.dll
17:15:01.0240 2132 sppuinotify - ok
17:15:01.0286 2132 [ 2408C0366D96BCDF63E8F1C78E4A29C5 ] srv C:\Windows\system32\DRIVERS\srv.sys
17:15:01.0286 2132 srv - ok
17:15:01.0302 2132 [ 76548F7B818881B47D8D1AE1BE9C11F8 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
17:15:01.0318 2132 srv2 - ok
17:15:01.0333 2132 [ 0C4540311E11664B245A263E1154CEF8 ] SrvHsfHDA C:\Windows\system32\DRIVERS\VSTAZL6.SYS
17:15:01.0349 2132 SrvHsfHDA - ok
17:15:01.0380 2132 [ 02071D207A9858FBE3A48CBFD59C4A04 ] SrvHsfV92 C:\Windows\system32\DRIVERS\VSTDPV6.SYS
17:15:01.0396 2132 SrvHsfV92 - ok
17:15:01.0427 2132 [ 18E40C245DBFAF36FD0134A7EF2DF396 ] SrvHsfWinac C:\Windows\system32\DRIVERS\VSTCNXT6.SYS
17:15:01.0442 2132 SrvHsfWinac - ok
17:15:01.0474 2132 [ 0AF6E19D39C70844C5CAA8FB0183C36E ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
17:15:01.0474 2132 srvnet - ok
17:15:01.0505 2132 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
17:15:01.0505 2132 SSDPSRV - ok
17:15:01.0520 2132 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\Windows\system32\sstpsvc.dll
17:15:01.0520 2132 SstpSvc - ok
17:15:01.0552 2132 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys
17:15:01.0552 2132 stexstor - ok
17:15:01.0598 2132 [ 52D0E33B681BD0F33FDC08812FEE4F7D ] stisvc C:\Windows\System32\wiaservc.dll
17:15:01.0614 2132 stisvc - ok
17:15:01.0630 2132 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\Windows\system32\DRIVERS\swenum.sys
17:15:01.0645 2132 swenum - ok
17:15:01.0661 2132 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\Windows\System32\swprv.dll
17:15:01.0676 2132 swprv - ok
17:15:01.0723 2132 [ 91853F78B68F9F036670291F5EDD4EAE ] SynTP C:\Windows\system32\DRIVERS\SynTP.sys
17:15:01.0723 2132 SynTP - ok
17:15:01.0770 2132 [ 3C1284516A62078FB68F768DE4F1A7BE ] SysMain C:\Windows\system32\sysmain.dll
17:15:01.0786 2132 SysMain - ok
17:15:01.0817 2132 [ 238935C3CF2854886DC7CBB2A0E2CC66 ] TabletInputService C:\Windows\System32\TabSvc.dll
17:15:01.0832 2132 TabletInputService - ok
17:15:01.0848 2132 [ 884264AC597B690C5707C89723BB8E7B ] TapiSrv C:\Windows\System32\tapisrv.dll
17:15:01.0848 2132 TapiSrv - ok
17:15:01.0879 2132 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\Windows\System32\tbssvc.dll
17:15:01.0879 2132 TBS - ok
17:15:01.0957 2132 [ 624C5B3AA4C99B3184BB922D9ECE3FF0 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
17:15:01.0988 2132 Tcpip - ok
17:15:02.0020 2132 [ 624C5B3AA4C99B3184BB922D9ECE3FF0 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
17:15:02.0035 2132 TCPIP6 - ok
17:15:02.0066 2132 [ 76D078AF6F587B162D50210F761EB9ED ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
17:15:02.0066 2132 tcpipreg - ok
17:15:02.0098 2132 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
17:15:02.0098 2132 TDPIPE - ok
17:15:02.0129 2132 [ 7518F7BCFD4B308ABC9192BACAF6C970 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
17:15:02.0129 2132 TDTCP - ok
17:15:02.0144 2132 [ 079125C4B17B01FCAEEBCE0BCB290C0F ] tdx C:\Windows\system32\DRIVERS\tdx.sys
17:15:02.0144 2132 tdx - ok
17:15:02.0144 2132 [ C448651339196C0E869A355171875522 ] TermDD C:\Windows\system32\DRIVERS\termdd.sys
17:15:02.0144 2132 TermDD - ok
17:15:02.0176 2132 [ 0F05EC2887BFE197AD82A13287D2F404 ] TermService C:\Windows\System32\termsrv.dll
17:15:02.0191 2132 TermService - ok
17:15:02.0207 2132 [ F0344071948D1A1FA732231785A0664C ] Themes C:\Windows\system32\themeservice.dll
17:15:02.0207 2132 Themes - ok
17:15:02.0238 2132 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\Windows\system32\mmcss.dll
17:15:02.0238 2132 THREADORDER - ok
17:15:02.0254 2132 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\Windows\System32\trkwks.dll
17:15:02.0254 2132 TrkWks - ok
17:15:02.0316 2132 [ 840F7FB849F5887A49BA18C13B2DA920 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
17:15:02.0316 2132 TrustedInstaller - ok
17:15:02.0347 2132 [ 61B96C26131E37B24E93327A0BD1FB95 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
17:15:02.0347 2132 tssecsrv - ok
17:15:02.0378 2132 [ 3836171A2CDF3AF8EF10856DB9835A70 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
17:15:02.0378 2132 tunnel - ok
17:15:02.0410 2132 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys
17:15:02.0410 2132 uagp35 - ok
17:15:02.0456 2132 [ C06E6F4679CEB8F430B90A51D76D8D3C ] udfs C:\Windows\system32\DRIVERS\udfs.sys
17:15:02.0456 2132 udfs - ok
17:15:02.0503 2132 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\Windows\system32\UI0Detect.exe
17:15:02.0503 2132 UI0Detect - ok
17:15:02.0534 2132 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\Windows\system32\DRIVERS\uliagpkx.sys
17:15:02.0534 2132 uliagpkx - ok
17:15:02.0566 2132 [ EAB6C35E62B1B0DB0D1B48B671D3A117 ] umbus C:\Windows\system32\DRIVERS\umbus.sys
17:15:02.0566 2132 umbus - ok
17:15:02.0597 2132 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\Windows\system32\DRIVERS\umpass.sys
17:15:02.0597 2132 UmPass - ok
17:15:02.0644 2132 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\Windows\System32\upnphost.dll
17:15:02.0644 2132 upnphost - ok
17:15:02.0690 2132 [ 77B01BC848298223A95D4EC23E1785A1 ] usbaudio C:\Windows\system32\drivers\usbaudio.sys
17:15:02.0690 2132 usbaudio - ok
17:15:02.0722 2132 [ 537A4E03D7103C12D42DFD8FFDB5BDC9 ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
17:15:02.0722 2132 usbccgp - ok
17:15:02.0768 2132 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\Windows\system32\DRIVERS\usbcir.sys
17:15:02.0768 2132 usbcir - ok
17:15:02.0815 2132 [ FBB21EBE49F6D560DB37AC25FBC68E66 ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
17:15:02.0815 2132 usbehci - ok
17:15:02.0846 2132 [ 6B7A8A99C4A459E73C286A6763EA24CC ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
17:15:02.0846 2132 usbhub - ok
17:15:02.0862 2132 [ 8C88AA7617B4CBC2E4BED61D26B33A27 ] usbohci C:\Windows\system32\drivers\usbohci.sys
17:15:02.0862 2132 usbohci - ok
17:15:02.0893 2132 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
17:15:02.0893 2132 usbprint - ok
17:15:02.0924 2132 [ AAA2513C8AED8B54B189FD0C6B1634C0 ] usbscan C:\Windows\system32\DRIVERS\usbscan.sys
17:15:02.0924 2132 usbscan - ok
17:15:02.0956 2132 [ F39983647BC1F3E6100778DDFE9DCE29 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
17:15:02.0956 2132 USBSTOR - ok
17:15:02.0987 2132 [ 0B5B3B2DF3FD1709618ACFA50B8392B0 ] usbuhci C:\Windows\system32\DRIVERS\usbuhci.sys
17:15:02.0987 2132 usbuhci - ok
17:15:03.0018 2132 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\Windows\System32\uxsms.dll
17:15:03.0018 2132 UxSms - ok
17:15:03.0034 2132 [ 156F6159457D0AA7E59B62681B56EB90 ] VaultSvc C:\Windows\system32\lsass.exe
17:15:03.0034 2132 VaultSvc - ok
17:15:03.0065 2132 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\Windows\system32\DRIVERS\vdrvroot.sys
17:15:03.0065 2132 vdrvroot - ok
17:15:03.0096 2132 [ 44D73E0BBC1D3C8981304BA15135C2F2 ] vds C:\Windows\System32\vds.exe
17:15:03.0096 2132 vds - ok
17:15:03.0143 2132 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
17:15:03.0143 2132 vga - ok
17:15:03.0158 2132 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\Windows\System32\drivers\vga.sys
17:15:03.0158 2132 VgaSave - ok
17:15:03.0174 2132 [ C82E748660F62A242B2DFAC1442F22A4 ] vhdmp C:\Windows\system32\DRIVERS\vhdmp.sys
17:15:03.0174 2132 vhdmp - ok
17:15:03.0190 2132 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\Windows\system32\DRIVERS\viaide.sys
17:15:03.0190 2132 viaide - ok
17:15:03.0221 2132 [ 2B1A3DAE2B4E70DBBA822B7A03FBD4A3 ] volmgr C:\Windows\system32\DRIVERS\volmgr.sys
17:15:03.0221 2132 volmgr - ok
17:15:03.0236 2132 [ 99B0CBB569CA79ACAED8C91461D765FB ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
17:15:03.0236 2132 volmgrx - ok
17:15:03.0268 2132 [ 58F82EED8CA24B461441F9C3E4F0BF5C ] volsnap C:\Windows\system32\DRIVERS\volsnap.sys
17:15:03.0268 2132 volsnap - ok
17:15:03.0299 2132 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys
17:15:03.0299 2132 vsmraid - ok
17:15:03.0361 2132 [ 787898BF9FB6D7BD87A36E2D95C899BA ] VSS C:\Windows\system32\vssvc.exe
17:15:03.0377 2132 VSS - ok
17:15:03.0502 2132 [ 7D110D645030C05A06C3CD08D1E47D0A ] vToolbarUpdater13.2.0 C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\13.2.0\ToolbarUpdater.exe
17:15:03.0517 2132 vToolbarUpdater13.2.0 - ok
17:15:03.0564 2132 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\Windows\system32\DRIVERS\vwifibus.sys
17:15:03.0564 2132 vwifibus - ok
17:15:03.0595 2132 [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys
17:15:03.0595 2132 vwififlt - ok
17:15:03.0626 2132 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\Windows\system32\w32time.dll
17:15:03.0626 2132 W32Time - ok
17:15:03.0658 2132 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys
17:15:03.0658 2132 WacomPen - ok
17:15:03.0689 2132 [ 47CA49400643EFFD3F1C9A27E1D69324 ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
17:15:03.0689 2132 WANARP - ok
17:15:03.0704 2132 [ 47CA49400643EFFD3F1C9A27E1D69324 ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
17:15:03.0704 2132 Wanarpv6 - ok
17:15:03.0751 2132 [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe
17:15:03.0767 2132 WatAdminSvc - ok
17:15:03.0814 2132 [ 5AB1BB85BD8B5089CC5D64200DEDAE68 ] wbengine C:\Windows\system32\wbengine.exe
17:15:03.0845 2132 wbengine - ok
17:15:03.0860 2132 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
17:15:03.0860 2132 WbioSrvc - ok
17:15:03.0892 2132 [ DD1BAE8EBFC653824D29CCF8C9054D68 ] wcncsvc C:\Windows\System32\wcncsvc.dll
17:15:03.0892 2132 wcncsvc - ok
17:15:03.0923 2132 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
17:15:03.0923 2132 WcsPlugInService - ok
17:15:03.0954 2132 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\Windows\system32\DRIVERS\wd.sys
17:15:03.0954 2132 Wd - ok
17:15:03.0985 2132 [ 441BD2D7B4F98134C3A4F9FA570FD250 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
17:15:04.0001 2132 Wdf01000 - ok
17:15:04.0001 2132 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\Windows\system32\wdi.dll
17:15:04.0016 2132 WdiServiceHost - ok
17:15:04.0016 2132 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\Windows\system32\wdi.dll
17:15:04.0016 2132 WdiSystemHost - ok
17:15:04.0048 2132 [ 733006127F235BE7C35354EBEE7B9A7B ] WebClient C:\Windows\System32\webclnt.dll
17:15:04.0048 2132 WebClient - ok
17:15:04.0094 2132 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\Windows\system32\wecsvc.dll
17:15:04.0094 2132 Wecsvc - ok
17:15:04.0126 2132 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\Windows\System32\wercplsupport.dll
17:15:04.0141 2132 wercplsupport - ok
17:15:04.0172 2132 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\Windows\System32\WerSvc.dll
17:15:04.0172 2132 WerSvc - ok
17:15:04.0204 2132 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
17:15:04.0204 2132 WfpLwf - ok
17:15:04.0235 2132 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\Windows\system32\drivers\wimmount.sys
17:15:04.0250 2132 WIMMount - ok
17:15:04.0266 2132 WinDefend - ok
17:15:04.0282 2132 WinHttpAutoProxySvc - ok
17:15:04.0453 2132 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
17:15:04.0469 2132 Winmgmt - ok
17:15:04.0750 2132 [ 41FBB751936B387F9179E7F03A74FE29 ] WinRM C:\Windows\system32\WsmSvc.dll
17:15:04.0781 2132 WinRM - ok
17:15:04.0874 2132 [ 817EAFF5D38674EDD7713B9DFB8E9791 ] WinUSB C:\Windows\system32\DRIVERS\WinUSB.sys
17:15:04.0890 2132 WinUSB - ok
17:15:05.0015 2132 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\Windows\System32\wlansvc.dll
17:15:05.0030 2132 Wlansvc - ok
17:15:05.0062 2132 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\Windows\system32\DRIVERS\wmiacpi.sys
17:15:05.0062 2132 WmiAcpi - ok
17:15:05.0108 2132 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
17:15:05.0108 2132 wmiApSrv - ok
17:15:05.0140 2132 WMPNetworkSvc - ok
17:15:05.0171 2132 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\Windows\System32\wpcsvc.dll
17:15:05.0171 2132 WPCSvc - ok
17:15:05.0218 2132 [ 2E57DDF2880A7E52E76F41C7E96D327B ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
17:15:05.0218 2132 WPDBusEnum - ok
17:15:05.0264 2132 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
17:15:05.0264 2132 ws2ifsl - ok
17:15:05.0327 2132 [ 8F9F3969933C02DA96EB0F84576DB43E ] wscsvc C:\Windows\system32\wscsvc.dll
17:15:05.0327 2132 wscsvc - ok
17:15:05.0342 2132 WSearch - ok
17:15:05.0452 2132 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv C:\Windows\system32\wuaueng.dll
17:15:05.0483 2132 wuauserv - ok
17:15:05.0498 2132 [ 7CADC74271DD6461C452C271B30BD378 ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
17:15:05.0498 2132 WudfPf - ok
17:15:05.0514 2132 [ 3B197AF0FFF08AA66B6B2241CA538D64 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
17:15:05.0530 2132 WUDFRd - ok
17:15:05.0561 2132 [ B551D6637AA0E132C18AC6E504F7B79B ] wudfsvc C:\Windows\System32\WUDFSvc.dll
17:15:05.0561 2132 wudfsvc - ok
17:15:05.0592 2132 [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc C:\Windows\System32\wwansvc.dll
17:15:05.0608 2132 WwanSvc - ok
17:15:05.0670 2132 [ B3EEACF62445E24FBB2CD4B0FB4DB026 ] yukonw7 C:\Windows\system32\DRIVERS\yk62x64.sys
17:15:05.0670 2132 yukonw7 - ok
17:15:05.0686 2132 ================ Scan global ===============================
17:15:05.0701 2132 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
17:15:05.0748 2132 [ 79CDA06F75AD5373DD447F57575C4400 ] C:\Windows\system32\winsrv.dll
17:15:05.0764 2132 [ 79CDA06F75AD5373DD447F57575C4400 ] C:\Windows\system32\winsrv.dll
17:15:05.0795 2132 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
17:15:05.0873 2132 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
17:15:05.0873 2132 [Global] - ok
17:15:05.0873 2132 ================ Scan MBR ==================================
17:15:05.0904 2132 [ 53686036AA8CEA3923D0EAD2C16B7C54 ] \Device\Harddisk0\DR0
17:15:06.0154 2132 \Device\Harddisk0\DR0 - ok
17:15:06.0154 2132 ================ Scan VBR ==================================
17:15:06.0154 2132 [ AE27C7FF620F69E154378A89A34E8331 ] \Device\Harddisk0\DR0\Partition1
17:15:06.0169 2132 \Device\Harddisk0\DR0\Partition1 - ok
17:15:06.0185 2132 [ ADB9AA13B939BE3875CBB850EF658F50 ] \Device\Harddisk0\DR0\Partition2
17:15:06.0185 2132 \Device\Harddisk0\DR0\Partition2 - ok
17:15:06.0200 2132 [ D467E9AF3AE10846995719E0759E99EE ] \Device\Harddisk0\DR0\Partition3
17:15:06.0200 2132 \Device\Harddisk0\DR0\Partition3 - ok
17:15:06.0216 2132 [ BD4D5BC3B7505D5D08829212A657A3C5 ] \Device\Harddisk0\DR0\Partition4
17:15:06.0232 2132 \Device\Harddisk0\DR0\Partition4 - ok
17:15:06.0232 2132 ================ Scan active images ========================
17:15:06.0232 2132 [ 3E588B60EC061686BA05D33574A344C6 ] C:\Windows\System32\drivers\crashdmp.sys
17:15:06.0232 2132 C:\Windows\System32\drivers\crashdmp.sys - ok
17:15:06.0232 2132 [ BE7D72FCF442C26975942007E0831241 ] C:\Windows\System32\drivers\iaStor.sys
17:15:06.0232 2132 C:\Windows\System32\drivers\iaStor.sys - ok
17:15:06.0232 2132 [ 814DB88F2641691575A455CF25354098 ] C:\Windows\System32\drivers\dumpfve.sys
17:15:06.0232 2132 C:\Windows\System32\drivers\dumpfve.sys - ok
17:15:06.0247 2132 [ 9899284589F75FA8724FF3D16AED75C1 ] C:\Windows\System32\drivers\null.sys
17:15:06.0247 2132 C:\Windows\System32\drivers\null.sys - ok
17:15:06.0247 2132 [ 16A47CE2DECC9B099349A5F840654746 ] C:\Windows\System32\drivers\beep.sys
17:15:06.0247 2132 C:\Windows\System32\drivers\beep.sys - ok
17:15:06.0247 2132 [ 371428CF0F71934CB0F2344823ADFA32 ] C:\Windows\System32\drivers\avgtpx64.sys
17:15:06.0247 2132 C:\Windows\System32\drivers\avgtpx64.sys - ok
17:15:06.0247 2132 [ 53E92A310193CB3C03BEA963DE7D9CFC ] C:\Windows\System32\drivers\vga.sys
17:15:06.0247 2132 C:\Windows\System32\drivers\vga.sys - ok
17:15:06.0263 2132 [ E7353D59C9842BC7299FAEB7E7E09340 ] C:\Windows\System32\drivers\videoprt.sys
17:15:06.0263 2132 C:\Windows\System32\drivers\videoprt.sys - ok
17:15:06.0263 2132 [ FC438D1430B28618E2D0C7C332A710AD ] C:\Windows\System32\drivers\watchdog.sys
17:15:06.0263 2132 C:\Windows\System32\drivers\watchdog.sys - ok
17:15:06.0263 2132 [ BB5971A4F00659529A5C44831AF22365 ] C:\Windows\System32\drivers\RDPENCDD.sys
17:15:06.0263 2132 C:\Windows\System32\drivers\RDPENCDD.sys - ok
17:15:06.0278 2132 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] C:\Windows\System32\drivers\msfs.sys
17:15:06.0278 2132 C:\Windows\System32\drivers\msfs.sys - ok
17:15:06.0278 2132 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] C:\Windows\System32\drivers\npfs.sys
17:15:06.0278 2132 C:\Windows\System32\drivers\npfs.sys - ok
17:15:06.0278 2132 [ 0CA6FE26ACC7FFEE1BD0463F40835F32 ] C:\Windows\System32\drivers\tdi.sys
17:15:06.0278 2132 C:\Windows\System32\drivers\tdi.sys - ok
17:15:06.0278 2132 [ 079125C4B17B01FCAEEBCE0BCB290C0F ] C:\Windows\System32\drivers\tdx.sys
17:15:06.0278 2132 C:\Windows\System32\drivers\tdx.sys - ok
17:15:06.0294 2132 [ 6EDC79D73745FD44C41B55B2D13D0B70 ] C:\Windows\System32\drivers\aswTdi.sys
17:15:06.0294 2132 C:\Windows\System32\drivers\aswTdi.sys - ok
17:15:06.0294 2132 [ DB9D6C6B2CD95A9CA414D045B627422E ] C:\Windows\System32\drivers\afd.sys
17:15:06.0294 2132 C:\Windows\System32\drivers\afd.sys - ok
17:15:06.0294 2132 [ 57768C7DB4681F2510F247F82EF31D4F ] C:\Windows\System32\drivers\aswRdr2.sys
17:15:06.0294 2132 C:\Windows\System32\drivers\aswRdr2.sys - ok
17:15:06.0310 2132 [ 9162B273A44AB9DCE5B44362731D062A ] C:\Windows\System32\drivers\netbt.sys
17:15:06.0310 2132 C:\Windows\System32\drivers\netbt.sys - ok
17:15:06.0310 2132 [ 611B23304BF067451A9FDEE01FBDD725 ] C:\Windows\System32\drivers\wfplwf.sys
17:15:06.0310 2132 C:\Windows\System32\drivers\wfplwf.sys - ok
17:15:06.0310 2132 [ 6BCC1D7D2FD2453957C5479A32364E52 ] C:\Windows\System32\drivers\ws2ifsl.sys
17:15:06.0310 2132 C:\Windows\System32\drivers\ws2ifsl.sys - ok
17:15:06.0310 2132 [ 86743D9F5D2B1048062B14B1D84501C4 ] C:\Windows\System32\drivers\netbios.sys
17:15:06.0310 2132 C:\Windows\System32\drivers\netbios.sys - ok
17:15:06.0325 2132 [ E7F5AE18AF4168178A642A9247C63001 ] C:\Windows\System32\drivers\nsiproxy.sys
17:15:06.0325 2132 C:\Windows\System32\drivers\nsiproxy.sys - ok
17:15:06.0325 2132 [ EE992183BD8EAEFD9973F352E587A299 ] C:\Windows\System32\drivers\pacer.sys
17:15:06.0325 2132 C:\Windows\System32\drivers\pacer.sys - ok
17:15:06.0325 2132 [ 3BAC8142102C15D59A87757C1D41DCE5 ] C:\Windows\System32\drivers\rdbss.sys
17:15:06.0325 2132 C:\Windows\System32\drivers\rdbss.sys - ok
17:15:06.0341 2132 [ 6A3D66263414FF0D6FA754C646612F3F ] C:\Windows\System32\drivers\vwififlt.sys
17:15:06.0341 2132 C:\Windows\System32\drivers\vwififlt.sys - ok
17:15:06.0341 2132 [ 9C253CE7311CA60FC11C774692A13208 ] C:\Windows\System32\drivers\dfsc.sys
17:15:06.0341 2132 C:\Windows\System32\drivers\dfsc.sys - ok
17:15:06.0341 2132 [ 3836171A2CDF3AF8EF10856DB9835A70 ] C:\Windows\System32\drivers\tunnel.sys
17:15:06.0341 2132 C:\Windows\System32\drivers\tunnel.sys - ok
17:15:06.0341 2132 [ 1911A3356FA3F77CCC825CCBAC038C2A ] C:\Windows\System32\smss.exe
17:15:06.0341 2132 C:\Windows\System32\smss.exe - ok
17:15:06.0356 2132 [ B37C3BF3FFC97177B1A9C016B7C8CDD6 ] C:\Windows\System32\drivers\usbport.sys
17:15:06.0356 2132 C:\Windows\System32\drivers\usbport.sys - ok
17:15:06.0356 2132 [ 3AE12EC776AB9830462E8197FB5C88CF ] C:\Windows\System32\autochk.exe
17:15:06.0356 2132 C:\Windows\System32\autochk.exe - ok
17:15:06.0356 2132 [ 0A49913402747A0B67DE940FB42CBDBB ] C:\Windows\System32\drivers\hdaudbus.sys
17:15:06.0356 2132 C:\Windows\System32\drivers\hdaudbus.sys - ok
17:15:06.0372 2132 [ FBB21EBE49F6D560DB37AC25FBC68E66 ] C:\Windows\System32\drivers\usbehci.sys
17:15:06.0372 2132 C:\Windows\System32\drivers\usbehci.sys - ok
17:15:06.0372 2132 [ 0B5B3B2DF3FD1709618ACFA50B8392B0 ] C:\Windows\System32\drivers\usbuhci.sys
17:15:06.0372 2132 C:\Windows\System32\drivers\usbuhci.sys - ok
17:15:06.0372 2132 [ 68DB778AC4FD7896CE2F153353BA15C8 ] C:\Windows\System32\ntdll.dll
17:15:06.0372 2132 C:\Windows\System32\ntdll.dll - ok
17:15:06.0372 2132 [ 777FC2C418465404E3D8A290DC247D24 ] C:\Windows\System32\drivers\Rt64win7.sys
17:15:06.0372 2132 C:\Windows\System32\drivers\Rt64win7.sys - ok
17:15:06.0388 2132 [ 03E0627C26943916A7276AC5306206C7 ] C:\Windows\System32\drivers\rtl8192se.sys
17:15:06.0388 2132 C:\Windows\System32\drivers\rtl8192se.sys - ok
17:15:06.0388 2132 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] C:\Windows\System32\drivers\vwifibus.sys
17:15:06.0388 2132 C:\Windows\System32\drivers\vwifibus.sys - ok
17:15:06.0388 2132 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] C:\Windows\System32\drivers\i8042prt.sys
17:15:06.0388 2132 C:\Windows\System32\drivers\i8042prt.sys - ok
17:15:06.0403 2132 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] C:\Windows\System32\drivers\kbdclass.sys
17:15:06.0403 2132 C:\Windows\System32\drivers\kbdclass.sys - ok
17:15:06.0403 2132 [ F96F7835C8818895C47F6213E3A01F5D ] C:\Windows\System32\drivers\usbd.sys
17:15:06.0403 2132 C:\Windows\System32\drivers\usbd.sys - ok
17:15:06.0403 2132 [ 83D2D75E1EFB81B3450C18131443F7DB ] C:\Windows\System32\drivers\cdrom.sys
17:15:06.0403 2132 C:\Windows\System32\drivers\cdrom.sys - ok
17:15:06.0419 2132 [ 7D27EA49F3C1F687D357E77A470AEA99 ] C:\Windows\System32\drivers\mouclass.sys
17:15:06.0419 2132 C:\Windows\System32\drivers\mouclass.sys - ok
17:15:06.0419 2132 [ 91853F78B68F9F036670291F5EDD4EAE ] C:\Windows\System32\drivers\SynTP.sys
17:15:06.0419 2132 C:\Windows\System32\drivers\SynTP.sys - ok
17:15:06.0419 2132 [ F6FF8944478594D0E414D3F048F0D778 ] C:\Windows\System32\drivers\wmiacpi.sys
17:15:06.0419 2132 C:\Windows\System32\drivers\wmiacpi.sys - ok
17:15:06.0419 2132 [ 7ECFF9B22276B73F43A99A15A6094E90 ] C:\Windows\System32\drivers\agilevpn.sys
17:15:06.0419 2132 C:\Windows\System32\drivers\agilevpn.sys - ok
17:15:06.0434 2132 [ 61583EE3C3A17003C4ACD0475646B4D3 ] C:\Windows\System32\drivers\blbdrive.sys
17:15:06.0434 2132 C:\Windows\System32\drivers\blbdrive.sys - ok
17:15:06.0434 2132 [ F26B3A86F6FA87CA360B879581AB4123 ] C:\Windows\System32\drivers\CompositeBus.sys
17:15:06.0434 2132 C:\Windows\System32\drivers\CompositeBus.sys - ok
17:15:06.0434 2132 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] C:\Windows\System32\drivers\mssmbios.sys
17:15:06.0434 2132 C:\Windows\System32\drivers\mssmbios.sys - ok
17:15:06.0450 2132 [ 30639C932D9FEF22B31268FE25A1B6E5 ] C:\Windows\System32\drivers\ndistapi.sys
17:15:06.0450 2132 C:\Windows\System32\drivers\ndistapi.sys - ok
17:15:06.0450 2132 [ 87A6E852A22991580D6D39ADC4790463 ] C:\Windows\System32\drivers\rasl2tp.sys
17:15:06.0450 2132 C:\Windows\System32\drivers\rasl2tp.sys - ok
17:15:06.0450 2132 [ 557DFAB9CA1FCB036AC77564C010DAD3 ] C:\Windows\System32\drivers\ndiswan.sys
17:15:06.0450 2132 C:\Windows\System32\drivers\ndiswan.sys - ok
17:15:06.0450 2132 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] C:\Windows\System32\drivers\raspppoe.sys
17:15:06.0450 2132 C:\Windows\System32\drivers\raspppoe.sys - ok
17:15:06.0466 2132 [ 27CC19E81BA5E3403C48302127BDA717 ] C:\Windows\System32\drivers\raspptp.sys
17:15:06.0466 2132 C:\Windows\System32\drivers\raspptp.sys - ok
17:15:06.0466 2132 [ E8B1E447B008D07FF47D016C2B0EEECB ] C:\Windows\System32\drivers\rassstp.sys
17:15:06.0466 2132 C:\Windows\System32\drivers\rassstp.sys - ok
17:15:06.0466 2132 [ 5C7AF4A20F5BF67042B2E613D123D111 ] C:\Windows\System32\drivers\ks.sys
17:15:06.0466 2132 C:\Windows\System32\drivers\ks.sys - ok
17:15:06.0481 2132 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] C:\Windows\System32\drivers\swenum.sys
17:15:06.0481 2132 C:\Windows\System32\drivers\swenum.sys - ok
17:15:06.0481 2132 [ C448651339196C0E869A355171875522 ] C:\Windows\System32\drivers\termdd.sys
17:15:06.0481 2132 C:\Windows\System32\drivers\termdd.sys - ok
17:15:06.0481 2132 [ 46571ED73AE84469DCA53081D33CF3C8 ] C:\Windows\System32\drivers\dtsoftbus01.sys
17:15:06.0481 2132 C:\Windows\System32\drivers\dtsoftbus01.sys - ok
17:15:06.0481 2132 [ EAB6C35E62B1B0DB0D1B48B671D3A117 ] C:\Windows\System32\drivers\umbus.sys
17:15:06.0481 2132 C:\Windows\System32\drivers\umbus.sys - ok
17:15:06.0497 2132 [ 0ADC83218B66A6DB380C330836F3E36D ] C:\Windows\System32\drivers\fastfat.sys
17:15:06.0497 2132 C:\Windows\System32\drivers\fastfat.sys - ok
17:15:06.0497 2132 [ 6B7A8A99C4A459E73C286A6763EA24CC ] C:\Windows\System32\drivers\usbhub.sys
17:15:06.0497 2132 C:\Windows\System32\drivers\usbhub.sys - ok
17:15:06.0497 2132 [ 8E7F88A62E1AA28F15C0D6784E4C78B6 ] C:\Windows\System32\kernel32.dll
17:15:06.0497 2132 C:\Windows\System32\kernel32.dll - ok
17:15:06.0512 2132 [ 6A4EA4C29FBF78112AE20013FB71E9C1 ] C:\Windows\System32\setupapi.dll
17:15:06.0512 2132 C:\Windows\System32\setupapi.dll - ok
17:15:06.0512 2132 [ 3D165C53E40236A68B7102D1A622D4E0 ] C:\Windows\System32\wininet.dll
17:15:06.0512 2132 C:\Windows\System32\wininet.dll - ok
17:15:06.0512 2132 [ F7CE0C81C545364020ED8203CF0A633E ] C:\Windows\System32\difxapi.dll
17:15:06.0512 2132 C:\Windows\System32\difxapi.dll - ok
17:15:06.0512 2132 [ 83404DCBCE4925B6A5A77C5170F46D86 ] C:\Windows\System32\sechost.dll
17:15:06.0512 2132 C:\Windows\System32\sechost.dll - ok
17:15:06.0528 2132 [ 659B74FB74B86228D6338D643CD3E3CF ] C:\Windows\System32\drivers\ndproxy.sys
17:15:06.0528 2132 C:\Windows\System32\drivers\ndproxy.sys - ok
17:15:06.0528 2132 [ E1B1255D3A4B3367FE4E9C71E62E3B5A ] C:\Windows\System32\gdi32.dll
17:15:06.0528 2132 C:\Windows\System32\gdi32.dll - ok
17:15:06.0528 2132 [ 72D7B3EA16946E8F0CF7458150031CC6 ] C:\Windows\System32\user32.dll
17:15:06.0528 2132 C:\Windows\System32\user32.dll - ok
17:15:06.0544 2132 [ 48CC125A6AB6C72A13E3D3E9C39AD9D9 ] C:\Windows\System32\shell32.dll
17:15:06.0544 2132 C:\Windows\System32\shell32.dll - ok
17:15:06.0544 2132 [ 28C0B5024F5C5A438E78B188CFC81B7F ] C:\Windows\System32\normaliz.dll
17:15:06.0544 2132 C:\Windows\System32\normaliz.dll - ok
17:15:06.0544 2132 [ 48C903068B6BDAB5EF650B9CBEE85295 ] C:\Windows\System32\rpcrt4.dll
17:15:06.0544 2132 C:\Windows\System32\rpcrt4.dll - ok
17:15:06.0544 2132 [ 15BDC173EB5FA4F92B67D9FFB269A6EA ] C:\Windows\System32\shlwapi.dll
17:15:06.0544 2132 C:\Windows\System32\shlwapi.dll - ok
17:15:06.0559 2132 [ 7083F463788CB34FCC42F565D56F89E8 ] C:\Windows\System32\ws2_32.dll
17:15:06.0559 2132 C:\Windows\System32\ws2_32.dll - ok
17:15:06.0559 2132 [ 2A46451EE42BCD2C842D8AA4923FAC16 ] C:\Windows\System32\oleaut32.dll
17:15:06.0559 2132 C:\Windows\System32\oleaut32.dll - ok
17:15:06.0559 2132 [ 15A54626213EBF003F7D4C9D8380A656 ] C:\Windows\System32\imagehlp.dll
17:15:06.0559 2132 C:\Windows\System32\imagehlp.dll - ok
17:15:06.0575 2132 [ 5F2BDCA5FA0F20A6F452CF0EE2A2B18C ] C:\Windows\System32\usp10.dll
17:15:06.0575 2132 C:\Windows\System32\usp10.dll - ok
17:15:06.0575 2132 [ F94B8644F3AFE040EC6E1B6FBC9EFAA9 ] C:\Windows\System32\comdlg32.dll
17:15:06.0575 2132 C:\Windows\System32\comdlg32.dll - ok
17:15:06.0575 2132 [ D87E1E59C73C1F98D5DED5B3850C40F5 ] C:\Windows\System32\psapi.dll
17:15:06.0575 2132 C:\Windows\System32\psapi.dll - ok
17:15:06.0575 2132 [ AA2C08CE85653B1A0D2E4AB407FA176C ] C:\Windows\System32\imm32.dll
17:15:06.0575 2132 C:\Windows\System32\imm32.dll - ok
17:15:06.0590 2132 [ D202223587518B13D72D68937B7E3F70 ] C:\Windows\System32\lpk.dll
17:15:06.0590 2132 C:\Windows\System32\lpk.dll - ok
17:15:06.0590 2132 [ 579F6AFC6A6561951FA2202EFC3FE485 ] C:\Windows\System32\msvcrt.dll
17:15:06.0590 2132 C:\Windows\System32\msvcrt.dll - ok
17:15:06.0590 2132 [ C431EAF5CAA1C82CAC2534A2EAB348A3 ] C:\Windows\System32\msctf.dll
17:15:06.0590 2132 C:\Windows\System32\msctf.dll - ok
17:15:06.0606 2132 [ D841F7629505EE542E26E5F0A4D20101 ] C:\Windows\System32\iertutil.dll
17:15:06.0606 2132 C:\Windows\System32\iertutil.dll - ok
17:15:06.0606 2132 [ 25983DE69B57142039AC8D95E71CD9C9 ] C:\Windows\System32\clbcatq.dll
17:15:06.0606 2132 C:\Windows\System32\clbcatq.dll - ok
17:15:06.0606 2132 [ AC8F79017C5C1FB316930EDEAD0AF517 ] C:\Windows\System32\ole32.dll
17:15:06.0606 2132 C:\Windows\System32\ole32.dll - ok
17:15:06.0606 2132 [ 2885A3C3148F725CDA0B4C593BA8F7CE ] C:\Windows\System32\urlmon.dll
17:15:06.0606 2132 C:\Windows\System32\urlmon.dll - ok
17:15:06.0622 2132 [ 6DF46D2BD74E3DA1B45F08F10D172732 ] C:\Windows\System32\advapi32.dll
17:15:06.0622 2132 C:\Windows\System32\advapi32.dll - ok
17:15:06.0622 2132 [ E5CBF5F8623BBD1DB7B8148A66F6EBA4 ] C:\Windows\System32\Wldap32.dll
17:15:06.0622 2132 C:\Windows\System32\Wldap32.dll - ok
17:15:06.0622 2132 [ D05E03C1B2824236531F5E37334B6A8A ] C:\Windows\System32\cfgmgr32.dll
17:15:06.0622 2132 C:\Windows\System32\cfgmgr32.dll - ok
17:15:06.0622 2132 [ 06FEC9E8117103BB1141A560E98077DA ] C:\Windows\System32\devobj.dll
17:15:06.0622 2132 C:\Windows\System32\devobj.dll - ok
17:15:06.0637 2132 [ 044FE45FFD6AD40E3BBBE60B7F41BABE ] C:\Windows\System32\nsi.dll
17:15:06.0637 2132 C:\Windows\System32\nsi.dll - ok
17:15:06.0637 2132 [ 987508ED06FC097E754A91BA8A8AAD0E ] C:\Windows\System32\wintrust.dll
17:15:06.0637 2132 C:\Windows\System32\wintrust.dll - ok
17:15:06.0637 2132 [ BC052EFAD10ACA1AD69545B629F50D99 ] C:\Windows\System32\comctl32.dll
17:15:06.0637 2132 C:\Windows\System32\comctl32.dll - ok
17:15:06.0653 2132 [ 140A25BE1A1D2F6B17A019B305611A02 ] C:\Windows\System32\KernelBase.dll
17:15:06.0653 2132 C:\Windows\System32\KernelBase.dll - ok
17:15:06.0653 2132 [ D256EB74BF77026FC9A3D7193861C7AD ] C:\Windows\System32\crypt32.dll
17:15:06.0653 2132 C:\Windows\System32\crypt32.dll - ok
17:15:06.0653 2132 [ 98FB7DD3B28A92E3C0E5B4BD9D63EF01 ] C:\Windows\System32\msasn1.dll
17:15:06.0653 2132 C:\Windows\System32\msasn1.dll - ok
17:15:06.0653 2132 [ 9C278785347BCC991F8EA2999D90F58D ] C:\Windows\SysWOW64\normaliz.dll
17:15:06.0653 2132 C:\Windows\SysWOW64\normaliz.dll - ok
17:15:06.0668 2132 [ BF24D6F2ED97FE830BFD52B246F98E67 ] C:\Windows\System32\drivers\dxapi.sys
17:15:06.0668 2132 C:\Windows\System32\drivers\dxapi.sys - ok
17:15:06.0668 2132 [ E37C71EA972AD883E7841D07BC6D5F1C ] C:\Windows\System32\win32k.sys
17:15:06.0668 2132 C:\Windows\System32\win32k.sys - ok
17:15:06.0668 2132 [ E730EADB8F176DB06A378435BEB2E823 ] C:\Windows\System32\csrsrv.dll
17:15:06.0668 2132 C:\Windows\System32\csrsrv.dll - ok
17:15:06.0684 2132 [ 60C2862B4BF0FD9F582EF344C2B1EC72 ] C:\Windows\System32\csrss.exe
17:15:06.0684 2132 C:\Windows\System32\csrss.exe - ok
17:15:06.0684 2132 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\System32\basesrv.dll
17:15:06.0684 2132 C:\Windows\System32\basesrv.dll - ok
17:15:06.0684 2132 [ 79CDA06F75AD5373DD447F57575C4400 ] C:\Windows\System32\winsrv.dll
17:15:06.0684 2132 C:\Windows\System32\winsrv.dll - ok
17:15:06.0684 2132 [ FEDE0629ECB23650D48989517D4914DA ] C:\Windows\System32\drivers\dxg.sys
17:15:06.0684 2132 C:\Windows\System32\drivers\dxg.sys - ok
17:15:06.0700 2132 [ F29FE765E1448EF371CFE05BFAC74ADB ] C:\Windows\System32\tsddd.dll
17:15:06.0700 2132 C:\Windows\System32\tsddd.dll - ok
17:15:06.0700 2132 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\System32\sxssrv.dll
17:15:06.0700 2132 C:\Windows\System32\sxssrv.dll - ok
17:15:06.0700 2132 [ 94355C28C1970635A31B3FE52EB7CEBA ] C:\Windows\System32\wininit.exe
17:15:06.0700 2132 C:\Windows\System32\wininit.exe - ok
17:15:06.0715 2132 [ 2C942733A5983DD4502219FF37C7EBC7 ] C:\Windows\System32\profapi.dll
17:15:06.0715 2132 C:\Windows\System32\profapi.dll - ok
17:15:06.0715 2132 [ B9A047D231D32FDF5AF2F281E4326A9D ] C:\Windows\System32\KBDUS.DLL
17:15:06.0715 2132 C:\Windows\System32\KBDUS.DLL - ok
17:15:06.0715 2132 [ F4389DA7DBDA2E7D292D360CF8E400C7 ] C:\Windows\System32\RpcRtRemote.dll
17:15:06.0715 2132 C:\Windows\System32\RpcRtRemote.dll - ok
17:15:06.0715 2132 [ 8BEC4D6AD2864EDF68D9AD0C6AA6C6D1 ] C:\Windows\System32\vga.dll
17:15:06.0715 2132 C:\Windows\System32\vga.dll - ok
17:15:06.0731 2132 [ E30B04A8FE665C52162D70233ABEA9A3 ] C:\Windows\System32\framebuf.dll
17:15:06.0731 2132 C:\Windows\System32\framebuf.dll - ok
17:15:06.0731 2132 [ DA3E2A6FA9660CC75B471530CE88453A ] C:\Windows\System32\winlogon.exe
17:15:06.0731 2132 C:\Windows\System32\winlogon.exe - ok
17:15:06.0731 2132 [ D8C88512BA9544AE1CC2034F50ECFA12 ] C:\Windows\System32\winsta.dll
17:15:06.0731 2132 C:\Windows\System32\winsta.dll - ok
17:15:06.0746 2132 [ 456C92A9D8DB51B9938A6234BBC65FC9 ] C:\Windows\System32\sxs.dll
17:15:06.0746 2132 C:\Windows\System32\sxs.dll - ok
17:15:06.0746 2132 [ B26B1801356760841C3BC69F9F91537F ] C:\Windows\System32\WlS0WndH.dll
17:15:06.0746 2132 C:\Windows\System32\WlS0WndH.dll - ok
17:15:06.0746 2132 [ 784FA3DF338E2E8F5F0389D6FAC428AF ] C:\Windows\System32\cryptbase.dll
17:15:06.0746 2132 C:\Windows\System32\cryptbase.dll - ok
17:15:06.0746 2132 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\System32\services.exe
17:15:06.0746 2132 C:\Windows\System32\services.exe - ok
17:15:06.0762 2132 [ 156F6159457D0AA7E59B62681B56EB90 ] C:\Windows\System32\lsass.exe
17:15:06.0762 2132 C:\Windows\System32\lsass.exe - ok
17:15:06.0762 2132 [ 1F582C6C84D5243692F9C3E04D0A663F ] C:\Windows\System32\sspicli.dll
17:15:06.0762 2132 C:\Windows\System32\sspicli.dll - ok
17:15:06.0762 2132 [ 68EA2513CA68AD8F741FF4F5B8D8590C ] C:\Windows\System32\sspisrv.dll
17:15:06.0762 2132 C:\Windows\System32\sspisrv.dll - ok
17:15:06.0762 2132 [ E914A50A151DFFE63D3935226DB5E2C1 ] C:\Windows\System32\scext.dll
17:15:06.0778 2132 C:\Windows\System32\scext.dll - ok
17:15:06.0778 2132 [ 941AF3C8B0DE1B359BE22DD3288A8C8E ] C:\Windows\System32\scesrv.dll
17:15:06.0778 2132 C:\Windows\System32\scesrv.dll - ok
17:15:06.0778 2132 [ 74A0871810BF0F2AA3EB6681E9BECDD3 ] C:\Windows\System32\secur32.dll
17:15:06.0778 2132 C:\Windows\System32\secur32.dll - ok
17:15:06.0778 2132 [ D23371AB9607651937C7641A38CD52BC ] C:\Windows\System32\srvcli.dll
17:15:06.0778 2132 C:\Windows\System32\srvcli.dll - ok
17:15:06.0793 2132 [ 04FCA22B77A2E37332CC8226187AF87B ] C:\Windows\System32\lsm.exe
17:15:06.0793 2132 C:\Windows\System32\lsm.exe - ok
17:15:06.0793 2132 [ 68083118797CAF30FB2EA3E71494D67E ] C:\Windows\System32\sysntfy.dll
17:15:06.0793 2132 C:\Windows\System32\sysntfy.dll - ok
17:15:06.0793 2132 [ DEE7267C5D232A3B816866872CE199E6 ] C:\Windows\System32\wmsgapi.dll
17:15:06.0793 2132 C:\Windows\System32\wmsgapi.dll - ok
17:15:06.0793 2132 [ BFA69408620587AFDEC2E8C12CA60492 ] C:\Windows\System32\lsasrv.dll
17:15:06.0793 2132 C:\Windows\System32\lsasrv.dll - ok
17:15:06.0809 2132 [ B160ADAEFC76031D92C4FBAC0918B033 ] C:\Windows\System32\samsrv.dll
17:15:06.0809 2132 C:\Windows\System32\samsrv.dll - ok
17:15:06.0809 2132 [ 3A061472B38233BAFF9CFEFF2E49C46B ] C:\Windows\System32\cryptdll.dll
17:15:06.0809 2132 C:\Windows\System32\cryptdll.dll - ok
17:15:06.0809 2132 [ 3C073B0C596A0AF84933E7406766B040 ] C:\Windows\System32\wevtapi.dll
17:15:06.0809 2132 C:\Windows\System32\wevtapi.dll - ok
17:15:06.0824 2132 [ 7FBEBD2229EA5FD48D41B199EC2D541C ] C:\Windows\System32\authz.dll
17:15:06.0824 2132 C:\Windows\System32\authz.dll - ok
17:15:06.0824 2132 [ 86FE1B1F8FD42CD0DB641AB1CDB13093 ] C:\Windows\System32\cngaudit.dll
17:15:06.0824 2132 C:\Windows\System32\cngaudit.dll - ok
17:15:06.0824 2132 [ E08926B4E52F92FF8852BECC0E2F358A ] C:\Windows\System32\ncrypt.dll
17:15:06.0824 2132 C:\Windows\System32\ncrypt.dll - ok
17:15:06.0824 2132 [ B9A95365E52F421A20E1501935FADDA5 ] C:\Windows\System32\bcrypt.dll
17:15:06.0824 2132 C:\Windows\System32\bcrypt.dll - ok
17:15:06.0840 2132 [ 02B64609F865A39365FF88580DF11738 ] C:\Windows\System32\msprivs.dll
17:15:06.0840 2132 C:\Windows\System32\msprivs.dll - ok
17:15:06.0840 2132 [ B561B451320B0B40908A8BFD81705262 ] C:\Windows\System32\netjoin.dll
17:15:06.0840 2132 C:\Windows\System32\netjoin.dll - ok
17:15:06.0840 2132 [ 50532FCD7ECF02DD169CE5C485F02534 ] C:\Windows\System32\negoexts.dll
17:15:06.0840 2132 C:\Windows\System32\negoexts.dll - ok
17:15:06.0856 2132 [ 00B40A10E3DB79E4D3E127B9C2233A6B ] C:\Windows\System32\kerberos.dll
17:15:06.0856 2132 C:\Windows\System32\kerberos.dll - ok
17:15:06.0856 2132 [ D0C2FBB6D97416B0166478FC7AE2B212 ] C:\Windows\System32\cryptsp.dll
17:15:06.0856 2132 C:\Windows\System32\cryptsp.dll - ok
17:15:06.0856 2132 [ FC76FE3C1E1FDB761244D4F74EF560FD ] C:\Windows\System32\mswsock.dll
17:15:06.0856 2132 C:\Windows\System32\mswsock.dll - ok
17:15:06.0856 2132 [ FA4DB05923DDDEDE3196ABD09AE0F1E9 ] C:\Windows\System32\msv1_0.dll
17:15:06.0856 2132 C:\Windows\System32\msv1_0.dll - ok
17:15:06.0871 2132 [ EC7CBFF96B05ECF3D366355B3C64ADCF ] C:\Windows\System32\wship6.dll
17:15:06.0871 2132 C:\Windows\System32\wship6.dll - ok
17:15:06.0871 2132 [ 956D030D375F207B22FB111E06EF9C35 ] C:\Windows\System32\netlogon.dll
17:15:06.0871 2132 C:\Windows\System32\netlogon.dll - ok
17:15:06.0871 2132 [ E247E7DEB20C0CF0801A8AC39E9CE1DF ] C:\Windows\System32\dnsapi.dll
17:15:06.0871 2132 C:\Windows\System32\dnsapi.dll - ok
17:15:06.0871 2132 [ 8CE22E63F08613036DF8C7B00FBDF36B ] C:\Windows\System32\logoncli.dll
17:15:06.0871 2132 C:\Windows\System32\logoncli.dll - ok
17:15:06.0887 2132 [ EFC5353E4F513DEF55ED7B7872363957 ] C:\Windows\System32\atmfd.dll
17:15:06.0887 2132 C:\Windows\System32\atmfd.dll - ok
17:15:06.0887 2132 [ 90B780886BD813882CB382FF3E90E092 ] C:\Windows\System32\schannel.dll
17:15:06.0887 2132 C:\Windows\System32\schannel.dll - ok
17:15:06.0887 2132 [ 95FB6CA4374E343DDD653FCC43F9D26B ] C:\Windows\System32\wdigest.dll
17:15:06.0887 2132 C:\Windows\System32\wdigest.dll - ok
17:15:06.0902 2132 [ 5D8874A8C11DDDDE29E12DE0E2013493 ] C:\Windows\System32\rsaenh.dll
17:15:06.0902 2132 C:\Windows\System32\rsaenh.dll - ok
17:15:06.0902 2132 [ 0DEFD5FBF801DD8F83BC0ED09861A8EC ] C:\Windows\System32\TSpkg.dll
17:15:06.0902 2132 C:\Windows\System32\TSpkg.dll - ok
17:15:06.0902 2132 [ DA090E97E57DCB48888015B5D3C749CD ] C:\Windows\System32\bcryptprimitives.dll
17:15:06.0902 2132 C:\Windows\System32\bcryptprimitives.dll - ok
17:15:06.0902 2132 [ E08088A97F95345E181C3DFCE2C615EF ] C:\Windows\System32\pku2u.dll
17:15:06.0902 2132 C:\Windows\System32\pku2u.dll - ok
17:15:06.0918 2132 [ 9301B8810B2DA4EB6AD55DB75FC1E339 ] C:\Windows\System32\credssp.dll
17:15:06.0918 2132 C:\Windows\System32\credssp.dll - ok
17:15:06.0918 2132 [ 90BDEFC5DF334E5100EAA781D798DE1A ] C:\Windows\System32\efslsaext.dll
17:15:06.0918 2132 C:\Windows\System32\efslsaext.dll - ok
17:15:06.0918 2132 [ 398712DDDAEFB85EDF61DF6A07B65C79 ] C:\Windows\System32\scecli.dll
17:15:06.0918 2132 C:\Windows\System32\scecli.dll - ok
17:15:06.0934 2132 [ 7CC7DF5B654DA579613F811D8C637E29 ] C:\Windows\System32\ubpm.dll
17:15:06.0934 2132 C:\Windows\System32\ubpm.dll - ok
17:15:06.0934 2132 [ C78655BC80301D76ED4FEF1C1EA40A7D ] C:\Windows\System32\svchost.exe
17:15:06.0934 2132 C:\Windows\System32\svchost.exe - ok
17:15:06.0934 2132 [ 98B1721B8718164293B9701B98C52D77 ] C:\Windows\System32\umpnpmgr.dll
17:15:06.0934 2132 C:\Windows\System32\umpnpmgr.dll - ok
17:15:06.0934 2132 [ E6EB44ABAAF1F330119F854856C53EBE ] C:\Windows\System32\SPInf.dll
17:15:06.0934 2132 C:\Windows\System32\SPInf.dll - ok
17:15:06.0949 2132 [ CD1B5AD07E5F7FEF30E055DCC9E96180 ] C:\Windows\System32\devrtl.dll
17:15:06.0949 2132 C:\Windows\System32\devrtl.dll - ok
17:15:06.0949 2132 [ 9C9307C95671AC962F3D6EB3A4A89BAE ] C:\Windows\System32\gpapi.dll
17:15:06.0949 2132 C:\Windows\System32\gpapi.dll - ok
17:15:06.0949 2132 [ 0776CF79590BDEF0A2728B0B9A813B96 ] C:\Windows\System32\userenv.dll
17:15:06.0949 2132 C:\Windows\System32\userenv.dll - ok
17:15:06.0965 2132 [ F6C011B46FAEEF33536B2E80F48B5CBE ] C:\Windows\System32\pcwum.dll
17:15:06.0965 2132 C:\Windows\System32\pcwum.dll - ok
17:15:06.0965 2132 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] C:\Windows\System32\umpo.dll
17:15:06.0965 2132 C:\Windows\System32\umpo.dll - ok
17:15:06.0965 2132 [ 716175021BDA290504CE434273F666BC ] C:\Windows\System32\powrprof.dll
17:15:06.0965 2132 C:\Windows\System32\powrprof.dll - ok
17:15:06.0965 2132 [ 7CADC74271DD6461C452C271B30BD378 ] C:\Windows\System32\drivers\WUDFPf.sys
17:15:06.0965 2132 C:\Windows\System32\drivers\WUDFPf.sys - ok
17:15:06.0980 2132 [ 7266972E86890E2B30C0C322E906B027 ] C:\Windows\System32\rpcss.dll
17:15:06.0980 2132 C:\Windows\System32\rpcss.dll - ok
17:15:06.0980 2132 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] C:\Windows\System32\RpcEpMap.dll
17:15:06.0980 2132 C:\Windows\System32\RpcEpMap.dll - ok
17:15:06.0980 2132 [ 31559F3244C6BC00A52030CAA83B6B91 ] C:\Windows\System32\WSHTCPIP.DLL
17:15:06.0980 2132 C:\Windows\System32\WSHTCPIP.DLL - ok
17:15:06.0996 2132 [ 16E964ABF6D1E0F0CC7822FCA9BA754D ] C:\Windows\System32\wshqos.dll
17:15:06.0996 2132 C:\Windows\System32\wshqos.dll - ok
17:15:06.0996 2132 [ 9AD9E06F8656F296D91FAE8EE5B95A27 ] C:\Windows\System32\FirewallAPI.dll
17:15:06.0996 2132 C:\Windows\System32\FirewallAPI.dll - ok
17:15:06.0996 2132 [ 1F4492FE41767CDB8B89D17655847CDD ] C:\Windows\System32\ntmarta.dll
17:15:06.0996 2132 C:\Windows\System32\ntmarta.dll - ok
17:15:06.0996 2132 [ BCF0A980D21711E47D0803BDB0E99CAD ] C:\Windows\System32\authui.dll
17:15:06.0996 2132 C:\Windows\System32\authui.dll - ok
17:15:07.0012 2132 [ 93E6A39B1DB898F7C949FA5567E774CF ] C:\Windows\System32\LogonUI.exe
17:15:07.0012 2132 C:\Windows\System32\LogonUI.exe - ok
17:15:07.0012 2132 [ 94E026870A55AAEAFF7853C1754091E9 ] C:\Windows\System32\version.dll
17:15:07.0012 2132 C:\Windows\System32\version.dll - ok
17:15:07.0012 2132 [ DBA90306A721FB922FDACED9E9728C28 ] C:\Windows\System32\cryptui.dll
17:15:07.0012 2132 C:\Windows\System32\cryptui.dll - ok
17:15:07.0027 2132 [ 113921FC4A80A3DDF646852998B836D0 ] C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7\comctl32.dll
17:15:07.0027 2132 C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7\comctl32.dll - ok
17:15:07.0027 2132 [ 5B3EBFC3DA142324B388DDCC4465E1FF ] C:\Windows\System32\samlib.dll
17:15:07.0027 2132 C:\Windows\System32\samlib.dll - ok
17:15:07.0027 2132 [ 84F8C8B9FB1F12532999D25F5DD7E77C ] C:\Windows\System32\shacct.dll
17:15:07.0027 2132 C:\Windows\System32\shacct.dll - ok
17:15:07.0027 2132 [ B27EA141A7E748B607600A8551A44D5A ] C:\Windows\System32\propsys.dll
17:15:07.0027 2132 C:\Windows\System32\propsys.dll - ok
17:15:07.0043 2132 [ D29E998E8277666982B4F0303BF4E7AF ] C:\Windows\System32\uxtheme.dll
17:15:07.0043 2132 C:\Windows\System32\uxtheme.dll - ok
17:15:07.0043 2132 [ DD0701DE0AAA010E6EBD0F53B672DCEE ] C:\Windows\winsxs\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7600.17007_none_2b47185a719d6182\GdiPlus.dll
17:15:07.0043 2132 C:\Windows\winsxs\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7600.17007_none_2b47185a719d6182\GdiPlus.dll - ok
17:15:07.0043 2132 [ 3CB6A7286422C72C34DAB54A5DFF1A34 ] C:\Windows\System32\dui70.dll
17:15:07.0043 2132 C:\Windows\System32\dui70.dll - ok
17:15:07.0058 2132 [ 8CCDE014A4CDF84564E03ACE064CA753 ] C:\Windows\System32\duser.dll
17:15:07.0058 2132 C:\Windows\System32\duser.dll - ok
17:15:07.0058 2132 [ B2E3D4BB3389817FB5E4CD9378BC8791 ] C:\Windows\System32\SndVolSSO.dll
17:15:07.0058 2132 C:\Windows\System32\SndVolSSO.dll - ok
17:15:07.0058 2132 [ 896F15A6434D93EDB42519D5E18E6B50 ] C:\Windows\System32\hid.dll
17:15:07.0058 2132 C:\Windows\System32\hid.dll - ok
17:15:07.0058 2132 [ 227E2C382A1E02F8D4965E664D3BBE43 ] C:\Windows\System32\MMDevAPI.dll
17:15:07.0058 2132 C:\Windows\System32\MMDevAPI.dll - ok
17:15:07.0074 2132 [ DA1B7075260F3872585BFCDD668C648B ] C:\Windows\System32\dwmapi.dll
17:15:07.0074 2132 C:\Windows\System32\dwmapi.dll - ok
17:15:07.0074 2132 [ 39F91A948E6017B732C4A0B3086A8E32 ] C:\Windows\System32\xmllite.dll
17:15:07.0074 2132 C:\Windows\System32\xmllite.dll - ok
17:15:07.0074 2132 [ EA99F234843BBDDA1ABD2767111ADE25 ] C:\Windows\System32\WindowsCodecs.dll
17:15:07.0074 2132 C:\Windows\System32\WindowsCodecs.dll - ok
17:15:07.0090 2132 [ 9F2BACD5E1776A4BB7CC0EC3C3A4F96D ] C:\Windows\System32\winbrand.dll
17:15:07.0090 2132 C:\Windows\System32\winbrand.dll - ok
17:15:07.0090 2132 [ 2A381A9740165D7A1405148B6DFB3E38 ] C:\Windows\System32\SmartcardCredentialProvider.dll
17:15:07.0090 2132 C:\Windows\System32\SmartcardCredentialProvider.dll - ok
17:15:07.0090 2132 [ C2762A57DF0EE85E63CE4893C5215313 ] C:\Windows\System32\VaultCredProvider.dll
17:15:07.0090 2132 C:\Windows\System32\VaultCredProvider.dll - ok
17:15:07.0090 2132 [ BD3674BE7FC9D8D3732C83E8499576ED ] C:\Windows\System32\wtsapi32.dll
17:15:07.0090 2132 C:\Windows\System32\wtsapi32.dll - ok
17:15:07.0105 2132 [ BCF8F2758AA5C451F8E366C66A98BBFE ] C:\Program Files\Microsoft Security Client\MpSvc.dll
17:15:07.0105 2132 C:\Program Files\Microsoft Security Client\MpSvc.dll - ok
17:15:07.0105 2132 [ CC8E4F72F21340A4D3A3D4DB50313EF5 ] C:\Program Files\Microsoft Security Client\MsMpEng.exe
17:15:07.0105 2132 C:\Program Files\Microsoft Security Client\MsMpEng.exe - ok
17:15:07.0105 2132 [ 2F67DEE6452EBC9F4A6C97A1CCC232FE ] C:\Program Files\Microsoft Security Client\MpClient.dll
17:15:07.0105 2132 C:\Program Files\Microsoft Security Client\MpClient.dll - ok
17:15:07.0121 2132 [ 5F10310A5A9273475AA04930DFE16742 ] C:\Program Files\Microsoft Security Client\EppManifest.dll
17:15:07.0121 2132 C:\Program Files\Microsoft Security Client\EppManifest.dll - ok
17:15:07.0121 2132 [ BF62F3BC1BE0700804EC394BB77F02C4 ] C:\Program Files\Microsoft Security Client\MpRTP.dll
17:15:07.0121 2132 C:\Program Files\Microsoft Security Client\MpRTP.dll - ok
17:15:07.0121 2132 [ F3D202F53A222D5F6944D459B73CF967 ] C:\Windows\System32\fltLib.dll
17:15:07.0121 2132 C:\Windows\System32\fltLib.dll - ok
17:15:07.0121 2132 [ E5AC79743E58A973CB0A140CDD1B3DC0 ] C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{2E2998EB-0A48-4BE0-BC48-0F74D47657E6}\mpengine.dll
17:15:07.0121 2132 C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{2E2998EB-0A48-4BE0-BC48-0F74D47657E6}\mpengine.dll - ok
17:15:07.0136 2132 [ FF7E814CBFEC3C27922C13BB94667416 ] C:\Program Files\Microsoft Security Client\MsMpLics.dll
17:15:07.0136 2132 C:\Program Files\Microsoft Security Client\MsMpLics.dll - ok
17:15:07.0136 2132 [ 05BF204EC0E82CC4A054DB189C8A3D84 ] C:\Windows\System32\drivers\MpFilter.sys
17:15:07.0136 2132 C:\Windows\System32\drivers\MpFilter.sys - ok
17:15:07.0136 2132 [ 99ABDA9C92EC76CBAF52F00239D909C9 ] C:\Windows\System32\wevtsvc.dll
17:15:07.0136 2132 C:\Windows\System32\wevtsvc.dll - ok
17:15:07.0152 2132 [ 97293447431311C06703368AD0F6C4BE ] C:\Windows\System32\profsvc.dll
17:15:07.0152 2132 C:\Windows\System32\profsvc.dll - ok
17:15:07.0152 2132 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] C:\Windows\System32\wlansvc.dll
17:15:07.0152 2132 C:\Windows\System32\wlansvc.dll - ok
17:15:07.0152 2132 [ 588CD0C78A7FAAE4186B5EEA0AF3ED67 ] C:\Windows\System32\adtschema.dll
17:15:07.0152 2132 C:\Windows\System32\adtschema.dll - ok
17:15:07.0152 2132 [ 58775492FFD419248B08325E583C527F ] C:\Windows\System32\atl.dll
17:15:07.0152 2132 C:\Windows\System32\atl.dll - ok
17:15:07.0168 2132 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] C:\Windows\System32\netprofm.dll
17:15:07.0168 2132 C:\Windows\System32\netprofm.dll - ok
17:15:07.0168 2132 [ 37B68E458C0BC255DF2FB7454D0798D3 ] C:\Windows\System32\WUDFPlatform.dll
17:15:07.0168 2132 C:\Windows\System32\WUDFPlatform.dll - ok
17:15:07.0168 2132 [ B551D6637AA0E132C18AC6E504F7B79B ] C:\Windows\System32\WUDFSvc.dll
17:15:07.0168 2132 C:\Windows\System32\WUDFSvc.dll - ok
17:15:07.0183 2132 [ F7866AF72ABBAF84B1FA5AA195378C59 ] C:\Windows\System32\drivers\fltMgr.sys
17:15:07.0183 2132 C:\Windows\System32\drivers\fltMgr.sys - ok
17:15:07.0183 2132 [ 50544D04AD845C43130B70212EC05CCD ] C:\Windows\System32\microsoft-windows-kernel-power-events.dll
17:15:07.0183 2132 C:\Windows\System32\microsoft-windows-kernel-power-events.dll - ok
17:15:07.0183 2132 [ A3DB3C17EE6CAE65D53602B4E80BCCBC ] C:\Windows\System32\PSHED.DLL
17:15:07.0183 2132 C:\Windows\System32\PSHED.DLL - ok
17:15:07.0183 2132 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] C:\Windows\System32\drivers\nwifi.sys
17:15:07.0183 2132 C:\Windows\System32\drivers\nwifi.sys - ok
17:15:07.0199 2132 [ F105BA1E22BF1F2EE8F005D4305E4BEC ] C:\Windows\System32\drivers\ndisuio.sys
17:15:07.0199 2132 C:\Windows\System32\drivers\ndisuio.sys - ok
17:15:07.0199 2132 [ 57FE2CFC2F25C200499D5D934EA24EB5 ] C:\Windows\System32\IPHLPAPI.DLL
17:15:07.0199 2132 C:\Windows\System32\IPHLPAPI.DLL - ok
17:15:07.0199 2132 [ F993A32249B66C9D622EA5592A8B76B8 ] C:\Windows\System32\lmhsvc.dll
17:15:07.0199 2132 C:\Windows\System32\lmhsvc.dll - ok
17:15:07.0214 2132 [ D54BFDF3E0C953F823B3D0BFE4732528 ] C:\Windows\System32\nsisvc.dll
17:15:07.0214 2132 C:\Windows\System32\nsisvc.dll - ok
17:15:07.0214 2132 [ CE3B9562D997F69B330D181A8875960F ] C:\Windows\System32\dhcpcore.dll
17:15:07.0214 2132 C:\Windows\System32\dhcpcore.dll - ok
17:15:07.0214 2132 [ FD5BA198F7190DFE9BE1947EB8710396 ] C:\Windows\System32\nrpsrv.dll
17:15:07.0214 2132 C:\Windows\System32\nrpsrv.dll - ok
17:15:07.0214 2132 [ 4C9210E8F4E052F6A4EB87716DA0C24C ] C:\Windows\System32\winnsi.dll
17:15:07.0214 2132 C:\Windows\System32\winnsi.dll - ok
17:15:07.0230 2132 [ 85CF424C74A1D5EC33533E1DBFF9920A ] C:\Windows\System32\dnsrslvr.dll
17:15:07.0230 2132 C:\Windows\System32\dnsrslvr.dll - ok
17:15:07.0230 2132 [ 71C7B65B6557B75B99907E76956AE4B8 ] C:\Windows\System32\dhcpcore6.dll
17:15:07.0230 2132 C:\Windows\System32\dhcpcore6.dll - ok
17:15:07.0230 2132 [ 982F5395AD181179320083A4FA7E7CA8 ] C:\Windows\System32\eapphost.dll
17:15:07.0230 2132 C:\Windows\System32\eapphost.dll - ok
17:15:07.0246 2132 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] C:\Windows\System32\eapsvc.dll
17:15:07.0246 2132 C:\Windows\System32\eapsvc.dll - ok
17:15:07.0246 2132 [ F9EC845C5EECF20E9A67F9F805F2EF1F ] C:\Windows\System32\keyiso.dll
17:15:07.0246 2132 C:\Windows\System32\keyiso.dll - ok
17:15:07.0246 2132 [ 0040C486584A8E582C861CFB57AB5387 ] C:\Windows\System32\FWPUCLNT.DLL
17:15:07.0246 2132 C:\Windows\System32\FWPUCLNT.DLL - ok
17:15:07.0246 2132 [ 885D0942E0F28DB90919BE3129ECF279 ] C:\Windows\System32\dnsext.dll
17:15:07.0246 2132 C:\Windows\System32\dnsext.dll - ok
17:15:07.0261 2132 [ F568F7C08458D69E4FCD8675BBB107E4 ] C:\Windows\System32\dhcpcsvc.dll
17:15:07.0261 2132 C:\Windows\System32\dhcpcsvc.dll - ok
17:15:07.0261 2132 [ A77BE7CB3222B4FB0AC6C71D1C2698D4 ] C:\Windows\System32\dsrole.dll
17:15:07.0261 2132 C:\Windows\System32\dsrole.dll - ok
17:15:07.0261 2132 [ 2017BFE87CAB3D7EF632CFD2AA08D3F0 ] C:\Windows\System32\umb.dll
17:15:07.0261 2132 C:\Windows\System32\umb.dll - ok
17:15:07.0261 2132 [ 48A31B7CF046702059A86836DC21D786 ] C:\Windows\System32\wlanmsm.dll
17:15:07.0261 2132 C:\Windows\System32\wlanmsm.dll - ok
17:15:07.0277 2132 [ 06A1386B6E3A0CBC368665C1840906F4 ] C:\Windows\System32\wlansec.dll
17:15:07.0277 2132 C:\Windows\System32\wlansec.dll - ok
17:15:07.0277 2132 [ 4CBCC37856EA2039C27A2FB661DDA0E5 ] C:\Windows\System32\dhcpcsvc6.dll
17:15:07.0277 2132 C:\Windows\System32\dhcpcsvc6.dll - ok
17:15:07.0277 2132 [ D2B0D1C2BE5ECA80387F7CB8626DCAFE ] C:\Windows\System32\onex.dll
17:15:07.0277 2132 C:\Windows\System32\onex.dll - ok
17:15:07.0292 2132 [ 0D753307D274F3688BD21C377B616700 ] C:\Windows\System32\eappcfg.dll
17:15:07.0292 2132 C:\Windows\System32\eappcfg.dll - ok
17:15:07.0292 2132 [ 65522E77A1360DBC8D199DA3BF5EFFE4 ] C:\Windows\System32\eappprxy.dll
17:15:07.0292 2132 C:\Windows\System32\eappprxy.dll - ok
17:15:07.0292 2132 [ 97E43F324BE1503CB2FFB058534688DA ] C:\Windows\System32\l2gpstore.dll
17:15:07.0292 2132 C:\Windows\System32\l2gpstore.dll - ok
17:15:07.0292 2132 [ 730BF204A595D5B6D7DC57A247CC741C ] C:\Windows\System32\wlgpclnt.dll
17:15:07.0292 2132 C:\Windows\System32\wlgpclnt.dll - ok
17:15:07.0308 2132 [ 22E7431E7DAE8463AF94A79A054276E5 ] C:\Windows\System32\WinSCard.dll
17:15:07.0308 2132 C:\Windows\System32\WinSCard.dll - ok
17:15:07.0308 2132 [ 7F1B4C6FF3B85F9ADF74055187B8A22C ] C:\Windows\System32\wlanutil.dll
17:15:07.0308 2132 C:\Windows\System32\wlanutil.dll - ok
17:15:07.0308 2132 [ 72D3D64526765C34DBFC7D895B4FBDF6 ] C:\Windows\System32\msxml6.dll
17:15:07.0308 2132 C:\Windows\System32\msxml6.dll - ok
17:15:07.0324 2132 [ 4992C609A6315671463E30F6512BC022 ] C:\Windows\System32\BFE.DLL
17:15:07.0324 2132 C:\Windows\System32\BFE.DLL - ok
17:15:07.0324 2132 [ BE097F5BB10F9079FCEB2DC4E7E20F02 ] C:\Windows\System32\slc.dll
17:15:07.0324 2132 C:\Windows\System32\slc.dll - ok
17:15:07.0324 2132 [ 8F6D9A20F1FB06F0602A7D5A82840DBF ] C:\Windows\System32\netcfgx.dll
17:15:07.0324 2132 C:\Windows\System32\netcfgx.dll - ok
17:15:07.0324 2132 [ 19D20159708E152267E53B66677A4995 ] C:\Windows\System32\drivers\bowser.sys
17:15:07.0324 2132 C:\Windows\System32\drivers\bowser.sys - ok
17:15:07.0339 2132 [ 040D62A9D8AD28922632137ACDD984F2 ] C:\Windows\System32\drivers\mrxsmb.sys
17:15:07.0339 2132 C:\Windows\System32\drivers\mrxsmb.sys - ok
17:15:07.0339 2132 [ F0067552F8F9B33D7C59403AB808A3CB ] C:\Windows\System32\drivers\mrxsmb10.sys
17:15:07.0339 2132 C:\Windows\System32\drivers\mrxsmb10.sys - ok
17:15:07.0339 2132 [ 3C142D31DE9F2F193218A53FE2632051 ] C:\Windows\System32\drivers\mrxsmb20.sys
17:15:07.0339 2132 C:\Windows\System32\drivers\mrxsmb20.sys - ok
17:15:07.0355 2132 [ 4C8C2F987FC397DCE98874D6C9C0736A ] C:\Windows\System32\netutils.dll
17:15:07.0355 2132 C:\Windows\System32\netutils.dll - ok
17:15:07.0355 2132 [ 27026EAC8818E8A6C00A1CAD2F11D29A ] C:\Windows\System32\wkssvc.dll
17:15:07.0355 2132 C:\Windows\System32\wkssvc.dll - ok
17:15:07.0355 2132 [ 4FAC55936209B4F3EB78532181C9ED5E ] C:\Windows\System32\cryptnet.dll
17:15:07.0355 2132 C:\Windows\System32\cryptnet.dll - ok
17:15:07.0355 2132 [ BAF19B633933A9FB4883D27D66C39E9A ] C:\Windows\System32\cryptsvc.dll
17:15:07.0355 2132 C:\Windows\System32\cryptsvc.dll - ok
17:15:07.0370 2132 [ C5B4683680DF085B57BC53E5EF34861F ] C:\Windows\System32\IKEEXT.DLL
17:15:07.0370 2132 C:\Windows\System32\IKEEXT.DLL - ok
17:15:07.0370 2132 [ 847D3AE376C0817161A14A82C8922A9E ] C:\Windows\System32\netman.dll
17:15:07.0370 2132 C:\Windows\System32\netman.dll - ok
17:15:07.0370 2132 [ D9A0CE66046D6EFA0C61BAA885CBA0A8 ] C:\Windows\System32\nlasvc.dll
17:15:07.0370 2132 C:\Windows\System32\nlasvc.dll - ok
17:15:07.0386 2132 [ 107F279517E2A04DB4AC1B1FAF1D573B ] C:\Windows\System32\ncsi.dll
17:15:07.0386 2132 C:\Windows\System32\ncsi.dll - ok
17:15:07.0386 2132 [ 0BF0C2A72F2CB0BA4382C392D3E331AF ] C:\Windows\System32\winhttp.dll
17:15:07.0386 2132 C:\Windows\System32\winhttp.dll - ok
17:15:07.0386 2132 [ 166EB40D1F5B47E615DE3D0FFFE5F243 ] C:\Windows\System32\IPSECSVC.DLL
17:15:07.0386 2132 C:\Windows\System32\IPSECSVC.DLL - ok
17:15:07.0386 2132 [ 2196CDBFA4B99BEEDAE300FA21DFE718 ] C:\Windows\System32\webio.dll
17:15:07.0386 2132 C:\Windows\System32\webio.dll - ok
17:15:07.0402 2132 [ 2BBF3FDB70B8965DFA0258CBAB41ECCE ] C:\Windows\System32\ssdpapi.dll
17:15:07.0402 2132 C:\Windows\System32\ssdpapi.dll - ok
17:15:07.0402 2132 [ B33CBD1A8C2A33121321D0FEBD7DD870 ] C:\Windows\System32\wkscli.dll
17:15:07.0402 2132 C:\Windows\System32\wkscli.dll - ok
17:15:07.0402 2132 [ 9BC93C9ACFA34DB5A41B89357B31E4ED ] C:\Windows\System32\FwRemoteSvr.dll
17:15:07.0402 2132 C:\Windows\System32\FwRemoteSvr.dll - ok
17:15:07.0402 2132 [ 4E9E7C7D857EA1C83BE6160DAE25B4DA ] C:\Program Files (x86)\Sendori\sndappv2.exe
17:15:07.0402 2132 C:\Program Files (x86)\Sendori\sndappv2.exe - ok
17:15:07.0417 2132 [ 9316FB3C3513AA99D35D8195C857841F ] C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{26CD0386-77AC-490D-85D1-E5ECCD859140}\gapaengine.dll
17:15:07.0417 2132 C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{26CD0386-77AC-490D-85D1-E5ECCD859140}\gapaengine.dll - ok
17:15:07.0417 2132 [ 9BC8610C32C96A2983A65DC21CAFA921 ] C:\Windows\System32\UXInit.dll
17:15:07.0417 2132 C:\Windows\System32\UXInit.dll - ok
17:15:07.0417 2132 [ 89CDC79E025E074002020B89558216C0 ] C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{26CD0386-77AC-490D-85D1-E5ECCD859140}\nisbase.vdm
17:15:07.0417 2132 C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{26CD0386-77AC-490D-85D1-E5ECCD859140}\nisbase.vdm - ok
17:15:07.0433 2132 [ DB6DD54A93522CA3572D04B56C5DB890 ] C:\Windows\SysWOW64\ntdll.dll
17:15:07.0433 2132 C:\Windows\SysWOW64\ntdll.dll - ok
17:15:07.0433 2132 [ 4C06764FC453847F2F9356E84FBA3BBE ] C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{26CD0386-77AC-490D-85D1-E5ECCD859140}\nisfull.vdm
17:15:07.0433 2132 C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{26CD0386-77AC-490D-85D1-E5ECCD859140}\nisfull.vdm - ok
17:15:07.0433 2132 [ 0E7045E24F78351E021D3C01566DBBA3 ] C:\Program Files\Microsoft Security Client\MpAsDesc.dll
17:15:07.0433 2132 C:\Program Files\Microsoft Security Client\MpAsDesc.dll - ok
17:15:07.0448 2132 [ 5B8580B819BE32EEC18CE1FEC52A4BCE ] C:\Program Files\Microsoft Security Client\MpCmdRun.exe
17:15:07.0448 2132 C:\Program Files\Microsoft Security Client\MpCmdRun.exe - ok
17:15:07.0448 2132 [ 22FF251AE6A780960B02A6DEADFEA7FB ] C:\Windows\System32\conhost.exe
17:15:07.0448 2132 C:\Windows\System32\conhost.exe - ok
17:15:07.0448 2132 [ 64E6A44177ACF348D68255A37F4723DA ] C:\Windows\System32\cabinet.dll
17:15:07.0448 2132 C:\Windows\System32\cabinet.dll - ok
17:15:07.0448 2132 [ A87205FE194B239D8D96E4972B779CC1 ] C:\Windows\System32\samcli.dll
17:15:07.0448 2132 C:\Windows\System32\samcli.dll - ok
17:15:07.0464 2132 [ 85409DCE247D97E4D6958B7C5916BE4A ] C:\Windows\System32\wscapi.dll
17:15:07.0464 2132 C:\Windows\System32\wscapi.dll - ok
17:15:07.0464 2132 [ 5AA945234E9D4CCE4F715276B9AA712C ] C:\Windows\System32\imageres.dll
17:15:07.0464 2132 C:\Windows\System32\imageres.dll - ok
17:15:07.0464 2132 [ C823A6F302D12FFE5DA305041F5213C7 ] C:\Windows\System32\wow64.dll
17:15:07.0464 2132 C:\Windows\System32\wow64.dll - ok
17:15:07.0480 2132 [ CA6CEE750AFE37BF90044774B7FE8DAD ] C:\Windows\System32\wow64win.dll
17:15:07.0480 2132 C:\Windows\System32\wow64win.dll - ok
17:15:07.0480 2132 [ 4E89D6A7571545F09F1234E7F6618099 ] C:\Windows\System32\wow64cpu.dll
17:15:07.0480 2132 C:\Windows\System32\wow64cpu.dll - ok
17:15:07.0480 2132 [ 33616DACC75C9E105DAE944120DB4274 ] C:\Windows\SysWOW64\kernel32.dll
17:15:07.0480 2132 C:\Windows\SysWOW64\kernel32.dll - ok
17:15:07.0480 2132 [ 0223642C49CF1B7BBF0B2CCC6FEA707C ] C:\Windows\SysWOW64\KernelBase.dll
17:15:07.0480 2132 C:\Windows\SysWOW64\KernelBase.dll - ok
17:15:07.0495 2132 [ F8A61B2E713309B4616D107919BDAB6E ] C:\Windows\SysWOW64\msvcrt.dll
17:15:07.0495 2132 C:\Windows\SysWOW64\msvcrt.dll - ok
17:15:07.0495 2132 [ 702254574E7E52052DE39408457B7149 ] C:\Windows\SysWOW64\version.dll
17:15:07.0495 2132 C:\Windows\SysWOW64\version.dll - ok
17:15:07.0495 2132 [ A543AC1F7138376D778D630A35FCBC4C ] C:\Windows\SysWOW64\psapi.dll
17:15:07.0495 2132 C:\Windows\SysWOW64\psapi.dll - ok
17:15:07.0511 2132 [ DAAE8A9B8C0ACC7F858454132553C30D ] C:\Windows\SysWOW64\ws2_32.dll
17:15:07.0511 2132 C:\Windows\SysWOW64\ws2_32.dll - ok
17:15:07.0511 2132 [ 90385551B6B3793E949DF310A11D64E7 ] C:\Windows\SysWOW64\rpcrt4.dll
17:15:07.0511 2132 C:\Windows\SysWOW64\rpcrt4.dll - ok
17:15:07.0511 2132 [ F08F6FCD09F9BE94C37ACC1B344685FF ] C:\Windows\SysWOW64\cryptbase.dll
17:15:07.0511 2132 C:\Windows\SysWOW64\cryptbase.dll - ok
17:15:07.0511 2132 [ 6377051C63D5552A311935C67E9FDFDC ] C:\Windows\SysWOW64\nsi.dll
17:15:07.0511 2132 C:\Windows\SysWOW64\nsi.dll - ok
17:15:07.0526 2132 [ CFC97F07904067A1E5FAE195D534DA3A ] C:\Windows\SysWOW64\sechost.dll
17:15:07.0526 2132 C:\Windows\SysWOW64\sechost.dll - ok
17:15:07.0526 2132 [ 351F62085F1D007533B4BB159C9EFDE3 ] C:\Windows\SysWOW64\sspicli.dll
17:15:07.0526 2132 C:\Windows\SysWOW64\sspicli.dll - ok
17:15:07.0526 2132 [ E8B0FFC209E504CB7E79FC24E6C085F0 ] C:\Windows\SysWOW64\user32.dll
17:15:07.0526 2132 C:\Windows\SysWOW64\user32.dll - ok
17:15:07.0542 2132 [ FBE1E0B9EF53B5BB7C36763AA6A685CF ] C:\Windows\SysWOW64\gdi32.dll
17:15:07.0542 2132 C:\Windows\SysWOW64\gdi32.dll - ok
17:15:07.0542 2132 [ 384721EF4024890092625E20CADFAF85 ] C:\Windows\SysWOW64\lpk.dll
17:15:07.0542 2132 C:\Windows\SysWOW64\lpk.dll - ok
17:15:07.0542 2132 [ 0BA19F3198C40AC4E8CC66EE02EDA6C6 ] C:\Windows\SysWOW64\usp10.dll
17:15:07.0542 2132 C:\Windows\SysWOW64\usp10.dll - ok
17:15:07.0542 2132 [ 0C65FA8214D6F8378D1D3BA1CA46AF0A ] C:\Windows\SysWOW64\advapi32.dll
17:15:07.0542 2132 C:\Windows\SysWOW64\advapi32.dll - ok
17:15:07.0558 2132 [ E2C2D8C982316C8ABF800C6CE3F28FAB ] C:\Windows\SysWOW64\ole32.dll
17:15:07.0558 2132 C:\Windows\SysWOW64\ole32.dll - ok
17:15:07.0558 2132 [ 705C210EFC5564BE49EB026BD7AFF27A ] C:\Windows\SysWOW64\oleaut32.dll
17:15:07.0558 2132 C:\Windows\SysWOW64\oleaut32.dll - ok
17:15:07.0558 2132 [ 7DA089C75B1E92032D0CBE4ADE7C32BC ] C:\Windows\SysWOW64\crypt32.dll
17:15:07.0558 2132 C:\Windows\SysWOW64\crypt32.dll - ok
17:15:07.0573 2132 [ 6CC10D9FD128069DBFE476222F097616 ] C:\Windows\SysWOW64\secur32.dll
17:15:07.0573 2132 C:\Windows\SysWOW64\secur32.dll - ok
17:15:07.0573 2132 [ 0DE3069D6E09BA262856EF31C941BEFE ] C:\Windows\SysWOW64\imm32.dll
17:15:07.0573 2132 C:\Windows\SysWOW64\imm32.dll - ok
17:15:07.0573 2132 [ 4C04900AA8C323F5D4C316A89E976849 ] C:\Windows\SysWOW64\msasn1.dll
17:15:07.0573 2132 C:\Windows\SysWOW64\msasn1.dll - ok
17:15:07.0573 2132 [ C9618BC9B2B0FD7C1138D8774795A79B ] C:\Windows\SysWOW64\msctf.dll
17:15:07.0573 2132 C:\Windows\SysWOW64\msctf.dll - ok
17:15:07.0589 2132 [ 3FD15B4611D9BDA3F8013548C0ECAECA ] C:\Windows\SysWOW64\ntmarta.dll
17:15:07.0589 2132 C:\Windows\SysWOW64\ntmarta.dll - ok
17:15:07.0589 2132 [ BFA70A99AD1434263F2DFBBA103BDEF8 ] C:\Windows\SysWOW64\Wldap32.dll
17:15:07.0589 2132 C:\Windows\SysWOW64\Wldap32.dll - ok
17:15:07.0589 2132 [ 5DE691884C240227B733CC18BBFCA3D8 ] C:\Windows\SysWOW64\netapi32.dll
17:15:07.0589 2132 C:\Windows\SysWOW64\netapi32.dll - ok
17:15:07.0604 2132 [ C6BB27D9A8AC13D4A44486F528B5C884 ] C:\Windows\SysWOW64\netutils.dll
17:15:07.0604 2132 C:\Windows\SysWOW64\netutils.dll - ok
17:15:07.0604 2132 [ 89D840773C9C4358A5031DCC860449EC ] C:\Windows\SysWOW64\srvcli.dll
17:15:07.0604 2132 C:\Windows\SysWOW64\srvcli.dll - ok
17:15:07.0604 2132 [ 7321F18D1F820612ED0E9F2D4B578A7E ] C:\Windows\SysWOW64\cryptsp.dll
17:15:07.0604 2132 C:\Windows\SysWOW64\cryptsp.dll - ok
17:15:07.0604 2132 [ ED8EC63F7522DF4852147C84EC62C36A ] C:\Windows\SysWOW64\rsaenh.dll
17:15:07.0604 2132 C:\Windows\SysWOW64\rsaenh.dll - ok
17:15:07.0620 2132 [ 7AD12703039056D2A0815F85960E1FA1 ] C:\Windows\SysWOW64\wkscli.dll
17:15:07.0620 2132 C:\Windows\SysWOW64\wkscli.dll - ok
17:15:07.0620 2132 [ 92E0508D924512F63FFEEFE498CBD11F ] C:\Windows\System32\p2pcollab.dll
17:15:07.0620 2132 C:\Windows\System32\p2pcollab.dll - ok
17:15:07.0620 2132 [ 4987E079A4530FA737A128BE54B63B12 ] C:\Windows\System32\QAGENTRT.DLL
17:15:07.0620 2132 C:\Windows\System32\QAGENTRT.DLL - ok
17:15:07.0620 2132 [ 506A83A3BEEE9FCA09F0170DE9FC7D1B ] C:\Windows\System32\fveui.dll
17:15:07.0636 2132 C:\Windows\System32\fveui.dll - ok
17:15:07.0636 2132 [ FF5688D309347F2720911D8796912834 ] C:\Windows\SysWOW64\clbcatq.dll
17:15:07.0636 2132 C:\Windows\SysWOW64\clbcatq.dll - ok
17:15:07.0636 2132 [ CA9E3BD4752FA2C084F5CD35FD8D0025 ] C:\Program Files\Microsoft Security Client\MsseWat.dll
17:15:07.0636 2132 C:\Program Files\Microsoft Security Client\MsseWat.dll - ok
17:15:07.0636 2132 [ B7213E92B270761B88B313B62BA0E13B ] C:\Windows\System32\slwga.dll
17:15:07.0636 2132 C:\Windows\System32\slwga.dll - ok
17:15:07.0651 2132 [ 64856DFE10FC7B429E6999380BC3BB62 ] C:\Windows\System32\sppc.dll
17:15:07.0651 2132 C:\Windows\System32\sppc.dll - ok
17:15:07.0651 2132 [ 6C0BD9D59C7E97DEE2FB3407D17BF697 ] C:\Windows\SysWOW64\RpcRtRemote.dll
17:15:07.0651 2132 C:\Windows\SysWOW64\RpcRtRemote.dll - ok
17:15:07.0651 2132 [ 11A41F17527ED75D6B758FDD7F4FD00D ] C:\Windows\SysWOW64\mswsock.dll
17:15:07.0651 2132 C:\Windows\SysWOW64\mswsock.dll - ok
17:15:07.0651 2132 [ EE5C8E27C37B79CB54A2FCEEED2DC262 ] C:\Windows\SysWOW64\WSHTCPIP.DLL
17:15:07.0651 2132 C:\Windows\SysWOW64\WSHTCPIP.DLL - ok
17:15:07.0667 2132 [ 19B07E7E8915D701225DA41CB3877306 ] C:\Windows\System32\wbem\WMIsvc.dll
17:15:07.0667 2132 C:\Windows\System32\wbem\WMIsvc.dll - ok
17:15:07.0667 2132 [ FAF9BA81FB0543CB4B7EFFD24CFA815F ] C:\Windows\System32\wbemcomn.dll
17:15:07.0667 2132 C:\Windows\System32\wbemcomn.dll - ok
17:15:07.0667 2132 [ 0255C22D99602534F15CBB8D9B6F152F ] C:\Windows\System32\wbem\WinMgmtR.dll
17:15:07.0667 2132 C:\Windows\System32\wbem\WinMgmtR.dll - ok
17:15:07.0682 2132 [ A7582A70802D5B9F28ED3940F6A3E9ED ] C:\Windows\System32\wbem\WmiDcPrv.dll
17:15:07.0682 2132 C:\Windows\System32\wbem\WmiDcPrv.dll - ok
17:15:07.0682 2132 [ A3F5E8EC1316C3E2562B82694A251C9E ] C:\Windows\System32\wbem\fastprox.dll
17:15:07.0682 2132 C:\Windows\System32\wbem\fastprox.dll - ok
17:15:07.0682 2132 [ EE26D130808D16C0E417BBBED0451B34 ] C:\Windows\System32\ntdsapi.dll
17:15:07.0682 2132 C:\Windows\System32\ntdsapi.dll - ok
17:15:07.0682 2132 [ 666A60F6F5E719856FF6254E0966EFF7 ] C:\Windows\System32\wbem\wbemprox.dll
17:15:07.0682 2132 C:\Windows\System32\wbem\wbemprox.dll - ok
17:15:07.0698 2132 [ 732E668096B1A37B7BFD4B9021E69A8E ] C:\Windows\System32\oleres.dll
17:15:07.0698 2132 C:\Windows\System32\oleres.dll - ok
17:15:07.0698 2132 [ A261AD1FDC6D6A658A82B81AF81B215F ] C:\Windows\System32\vssapi.dll
17:15:07.0698 2132 C:\Windows\System32\vssapi.dll - ok
17:15:07.0698 2132 [ 287923557447D7E4BDD7E65B1F0F5428 ] C:\Windows\System32\vsstrace.dll
17:15:07.0698 2132 C:\Windows\System32\vsstrace.dll - ok
17:15:07.0714 2132 [ 3B9665D4B8C587A6014B9B8DFF5974A0 ] C:\Windows\System32\wbem\wbemcore.dll
17:15:07.0714 2132 C:\Windows\System32\wbem\wbemcore.dll - ok
17:15:07.0714 2132 [ 087D8668C71634A3A3761135ABF16EEE ] C:\Windows\System32\wbem\esscli.dll
17:15:07.0714 2132 C:\Windows\System32\wbem\esscli.dll - ok
17:15:07.0714 2132 [ 718B6F51AB7F6FE2988A36868F9AD3AB ] C:\Windows\System32\wbem\wbemsvc.dll
17:15:07.0714 2132 C:\Windows\System32\wbem\wbemsvc.dll - ok
17:15:07.0714 2132 [ 0AB34456654C283DAA13B8D2BA21439B ] C:\Windows\System32\wbem\repdrvfs.dll
17:15:07.0714 2132 C:\Windows\System32\wbem\repdrvfs.dll - ok
17:15:07.0729 2132 [ 0143DB80DACFB7C2B5B7009ED9063353 ] C:\Windows\System32\wbem\wmiutils.dll
17:15:07.0729 2132 C:\Windows\System32\wbem\wmiutils.dll - ok
17:15:07.0729 2132 [ 82BC97E5793DEF69691AAD5AB953A200 ] C:\Windows\System32\wbem\WmiPrvSD.dll
17:15:07.0729 2132 C:\Windows\System32\wbem\WmiPrvSD.dll - ok
17:15:07.0729 2132 [ D41FEBD098234F02485A4EA98D4730A4 ] C:\Windows\System32\ncobjapi.dll
17:15:07.0729 2132 C:\Windows\System32\ncobjapi.dll - ok
17:15:07.0745 2132 [ 6F40D6FB05E0C1E5402812B426971AF0 ] C:\Windows\System32\wbem\wbemess.dll
17:15:07.0745 2132 C:\Windows\System32\wbem\wbemess.dll - ok
17:15:07.0745 2132 [ A8EDB86FC2A4D6D1285E4C70384AC35A ] C:\Windows\System32\dllhost.exe
17:15:07.0745 2132 C:\Windows\System32\dllhost.exe - ok
17:15:07.0745 2132 [ BC052EFAD10ACA1AD69545B629F50D99 ] C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7600.16661_none_a44e1fc257f685f6\comctl32.dll
17:15:07.0745 2132 C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7600.16661_none_a44e1fc257f685f6\comctl32.dll - ok
17:15:07.0745 2132 [ A0A2C1D812C231C9BFE119FDC68E341B ] C:\Windows\System32\IDStore.dll
17:15:07.0745 2132 C:\Windows\System32\IDStore.dll - ok
17:15:07.0760 2132 [ 6CEF7856A3EFAC59470F6208F0F585CE ] C:\Windows\System32\mpr.dll
17:15:07.0760 2132 C:\Windows\System32\mpr.dll - ok
17:15:07.0760 2132 [ 6F8F1376A13114CC10C0E69274F5A4DE ] C:\Windows\System32\userinit.exe
17:15:07.0760 2132 C:\Windows\System32\userinit.exe - ok
17:15:07.0760 2132 [ 0862495E0C825893DB75EF44FAEA8E93 ] C:\Windows\explorer.exe
17:15:07.0760 2132 C:\Windows\explorer.exe - ok
17:15:07.0776 2132 [ 1C27E145EC99F20BC1B13FD98165A83F ] C:\Windows\System32\ExplorerFrame.dll
17:15:07.0776 2132 C:\Windows\System32\ExplorerFrame.dll - ok
17:15:07.0776 2132 [ 01A465AC251BCCF6037DF2EF28AA4292 ] C:\Windows\System32\apphelp.dll
17:15:07.0776 2132 C:\Windows\System32\apphelp.dll - ok
17:15:07.0776 2132 [ 867C93CE4B4CCFCDE65CE48A769CD227 ] C:\Program Files\AVAST Software\Avast\ashShA64.dll
17:15:07.0776 2132 C:\Program Files\AVAST Software\Avast\ashShA64.dll - ok
17:15:07.0776 2132 [ 024352FEEC9042260BB4CFB4D79A206B ] C:\Windows\System32\EhStorShell.dll
17:15:07.0776 2132 C:\Windows\System32\EhStorShell.dll - ok
17:15:07.0792 2132 [ 68D8AC3F047D3E105C1674FD4EF08913 ] C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL
17:15:07.0792 2132 C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL - ok
17:15:07.0792 2132 [ D233C7FEAE3FAA25F93A9E6B46815ADC ] C:\Windows\winsxs\amd64_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_08e61857a83bc251\msvcr90.dll
17:15:07.0792 2132 C:\Windows\winsxs\amd64_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_08e61857a83bc251\msvcr90.dll - ok
17:15:07.0792 2132 [ 241AF87821FDA0F5792037B779F49BE0 ] C:\Windows\winsxs\amd64_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_08e61857a83bc251\msvcp90.dll
17:15:07.0792 2132 C:\Windows\winsxs\amd64_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_08e61857a83bc251\msvcp90.dll - ok
17:15:07.0807 2132 [ 57AC86AC664CC774C861DAB2B1D1E978 ] C:\Windows\winsxs\amd64_microsoft.vc90.atl_1fc8b3b9a1e18e3b_9.0.30729.6161_none_0a1fd3a3a768b895\ATL90.dll
17:15:07.0807 2132 C:\Windows\winsxs\amd64_microsoft.vc90.atl_1fc8b3b9a1e18e3b_9.0.30729.6161_none_0a1fd3a3a768b895\ATL90.dll - ok
17:15:07.0807 2132 [ 5ABAEB53E6ECF7878A5C4C4ABED92050 ] C:\PROGRA~1\COMMON~1\MICROS~1\OFFICE14\Cultures\OFFICE.ODF
17:15:07.0807 2132 C:\PROGRA~1\COMMON~1\MICROS~1\OFFICE14\Cultures\OFFICE.ODF - ok
17:15:07.0807 2132 [ 66E3C667D853DF349E310568F60B9B6A ] C:\PROGRA~1\MICROS~2\Office14\1033\GrooveIntlResource.dll
17:15:07.0807 2132 C:\PROGRA~1\MICROS~2\Office14\1033\GrooveIntlResource.dll - ok
17:15:07.0823 2132 [ 5F917AEEEA363B8A5DC8624795CB1D60 ] C:\Windows\System32\ntshrui.dll
17:15:07.0823 2132 C:\Windows\System32\ntshrui.dll - ok
17:15:07.0823 2132 [ BFEBE1E4B301F44CEA7C1B4021BD0264 ] C:\Windows\System32\cscapi.dll
17:15:07.0823 2132 C:\Windows\System32\cscapi.dll - ok
17:15:07.0823 2132 [ 1D63F4366288B8A7595397E27010FD44 ] C:\Windows\System32\IconCodecService.dll
17:15:07.0823 2132 C:\Windows\System32\IconCodecService.dll - ok
17:15:07.0823 2132 [ 6AB6D4DF10EC784CF4A66CBFAF417A11 ] C:\Windows\System32\runonce.exe
17:15:07.0823 2132 C:\Windows\System32\runonce.exe - ok
17:15:07.0838 2132 [ 169F916EFEAA44487E65305B7D2D754B ] C:\Windows\SysWOW64\runonce.exe
17:15:07.0838 2132 C:\Windows\SysWOW64\runonce.exe - ok
17:15:07.0838 2132 [ F037DB14CF6165C62F4A64D12A25B07C ] C:\Windows\SysWOW64\shlwapi.dll
17:15:07.0838 2132 C:\Windows\SysWOW64\shlwapi.dll - ok
17:15:07.0838 2132 [ 4B8DD8541C0E26602005DD0137333615 ] C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_420fe3fa2b8113bd\comctl32.dll
17:15:07.0838 2132 C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_420fe3fa2b8113bd\comctl32.dll - ok
17:15:07.0854 2132 [ 2CBC35E872BA9B46474890135B56DD66 ] C:\Windows\SysWOW64\shell32.dll
17:15:07.0854 2132 C:\Windows\SysWOW64\shell32.dll - ok
17:15:07.0854 2132 [ 42B6A94DD747DF2B5F628A2752E62A98 ] C:\Windows\System32\ctfmon.exe
17:15:07.0854 2132 C:\Windows\System32\ctfmon.exe - ok
17:15:07.0854 2132 [ 1F1CA9E99DD5BF918BE0BF30B5A42FDA ] C:\Windows\System32\MsCtfMonitor.dll
17:15:07.0854 2132 C:\Windows\System32\MsCtfMonitor.dll - ok
17:15:07.0854 2132 [ F09A9A1AD21FE618C4C8B0A0D830C886 ] C:\Windows\System32\msutb.dll
17:15:07.0854 2132 C:\Windows\System32\msutb.dll - ok
17:15:07.0870 2132 [ 18245DC72B65D488A8B2D75A8FE088EA ] C:\Windows\System32\timedate.cpl
17:15:07.0870 2132 C:\Windows\System32\timedate.cpl - ok
17:15:07.0870 2132 [ FBE8EBF528DC49B3DEB186CA9545D97E ] C:\Windows\System32\shdocvw.dll
17:15:07.0870 2132 C:\Windows\System32\shdocvw.dll - ok
17:15:07.0870 2132 [ A0A65D306A5490D2EB8E7DE66898ECFD ] C:\Windows\System32\linkinfo.dll
17:15:07.0870 2132 C:\Windows\System32\linkinfo.dll - ok
17:15:07.0885 2132 [ 14F5C0DB4B2C47874D6C937A5A1B367C ] C:\Windows\System32\gameux.dll
17:15:07.0885 2132 C:\Windows\System32\gameux.dll - ok
17:15:07.0885 2132 [ 9689A9C7F7C2A1A423CDA2C3B43FFF65 ] C:\Windows\System32\wer.dll
17:15:07.0885 2132 C:\Windows\System32\wer.dll - ok
17:15:07.0885 2132 [ 46EDD0A6B42BA5D2044FA0909BE4BE95 ] C:\Windows\System32\msftedit.dll
17:15:07.0885 2132 C:\Windows\System32\msftedit.dll - ok
17:15:07.0885 2132 [ 599EBE6C7EA52B5FF9603F203E8EC080 ] C:\Windows\System32\msi.dll
17:15:07.0885 2132 C:\Windows\System32\msi.dll - ok
17:15:07.0901 2132 [ 69754747274B76E7FAF287239333D7E6 ] C:\Windows\System32\msiltcfg.dll
17:15:07.0901 2132 C:\Windows\System32\msiltcfg.dll - ok
17:15:07.0901 2132 [ 7FCAB194F01E3403C300EB034E480B36 ] C:\Windows\System32\msls31.dll
17:15:07.0901 2132 C:\Windows\System32\msls31.dll - ok
17:15:07.0901 2132 [ DD76912E8D165C68659D9875256710A3 ] C:\Windows\System32\DeviceCenter.dll
17:15:07.0901 2132 C:\Windows\System32\DeviceCenter.dll - ok
17:15:07.0916 2132 [ 10E4A1D2132CCB5C6759F038CDB6F3C9 ] C:\Windows\System32\calc.exe
17:15:07.0916 2132 C:\Windows\System32\calc.exe - ok
17:15:07.0916 2132 [ 4ECE12D296ED94CA2C7DD6C383A5AB66 ] C:\Windows\System32\ieframe.dll
17:15:07.0916 2132 C:\Windows\System32\ieframe.dll - ok
17:15:07.0916 2132 [ AF28348ED585539C4A33A4341FF23696 ] C:\Windows\System32\oleacc.dll
17:15:07.0916 2132 C:\Windows\System32\oleacc.dll - ok
17:15:07.0916 2132 [ 8BC7AE7E16458355508ECF5EC3A04E72 ] C:\Windows\System32\networkexplorer.dll
17:15:07.0916 2132 C:\Windows\System32\networkexplorer.dll - ok
17:15:07.0932 2132 [ F468C806267D46B68DB7EB32FBF0A103 ] C:\Windows\System32\thumbcache.dll
17:15:07.0932 2132 C:\Windows\System32\thumbcache.dll - ok
17:15:07.0932 2132 [ EF2AE43BCD46ABB13FC3E5B2B1935C73 ] C:\Windows\System32\winmm.dll
17:15:07.0932 2132 C:\Windows\System32\winmm.dll - ok
17:15:07.0932 2132 [ 0DC6669BC2B552C0ECC905B6B761F508 ] C:\Program Files\Microsoft Security Client\msseces.exe
17:15:07.0932 2132 C:\Program Files\Microsoft Security Client\msseces.exe - ok
17:15:07.0932 2132 [ 30F9BACA07F8251D7DD1805A9E919CE0 ] C:\Windows\System32\wdmaud.drv
17:15:07.0932 2132 C:\Windows\System32\wdmaud.drv - ok
17:15:07.0948 2132 [ 78A1E65207484B7F8D3217507745F47C ] C:\Windows\System32\avrt.dll
17:15:07.0948 2132 C:\Windows\System32\avrt.dll - ok
17:15:07.0948 2132 [ 8560FFFC8EB3A806DCD4F82252CFC8C6 ] C:\Windows\System32\ksuser.dll
17:15:07.0948 2132 C:\Windows\System32\ksuser.dll - ok
17:15:07.0948 2132 [ 2D53C5F71653EF94E7829846405D4ED2 ] C:\Program Files\Internet Explorer\iexplore.exe
17:15:07.0948 2132 C:\Program Files\Internet Explorer\iexplore.exe - ok
17:15:07.0963 2132 [ F2C7BB8ACC97F92E987A2D4087D021B1 ] C:\Windows\System32\notepad.exe
17:15:07.0963 2132 C:\Windows\System32\notepad.exe - ok
17:15:07.0963 2132 [ D61C7C567AEBE8397F21F1BA775CE269 ] C:\Windows\Installer\{90140000-0011-0000-1000-0000000FF1CE}\wordicon.exe
17:15:07.0963 2132 C:\Windows\Installer\{90140000-0011-0000-1000-0000000FF1CE}\wordicon.exe - ok
17:15:07.0963 2132 [ 8494E126F0B10180F3293AF861CE1F7A ] C:\Windows\System32\mlang.dll
17:15:07.0963 2132 C:\Windows\System32\mlang.dll - ok
17:15:07.0963 2132 [ 60CC15392FF14DCB9C29C69B3233741B ] C:\Windows\System32\stobject.dll
17:15:07.0963 2132 C:\Windows\System32\stobject.dll - ok
17:15:07.0979 2132 [ 86B6AC0FD2881B3D20B80F51C7152AE0 ] C:\Windows\System32\batmeter.dll
17:15:07.0979 2132 C:\Windows\System32\batmeter.dll - ok
17:15:07.0979 2132 [ 4166F82BE4D24938977DD1746BE9B8A0 ] C:\Windows\System32\es.dll
17:15:07.0979 2132 C:\Windows\System32\es.dll - ok
17:15:07.0979 2132 [ 651F169718CC46C8A9264880C538D5FF ] C:\Windows\System32\prnfldr.dll
17:15:07.0979 2132 C:\Windows\System32\prnfldr.dll - ok
17:15:07.0994 2132 [ 02CDEB5D8B3DD5F6770DEFFBBC0CFAD0 ] C:\Windows\System32\winspool.drv
17:15:07.0994 2132 C:\Windows\System32\winspool.drv - ok
17:15:07.0994 2132 [ 913C2E4A03201644FC986EDEB5F8A390 ] C:\Windows\System32\DXP.dll
17:15:07.0994 2132 C:\Windows\System32\DXP.dll - ok
17:15:07.0994 2132 [ 2BC7C9FD0A9F2C9AFC373F3AD1EE3891 ] C:\Windows\System32\Syncreg.dll
17:15:07.0994 2132 C:\Windows\System32\Syncreg.dll - ok
17:15:07.0994 2132 [ DB70FE36AC8F594E9E69479C076BADB8 ] C:\Windows\System32\HelpPaneProxy.dll
17:15:07.0994 2132 C:\Windows\System32\HelpPaneProxy.dll - ok
17:15:08.0010 2132 [ CD47548A52B02D254BF6D7F7A5F2BFD3 ] C:\Windows\HelpPane.exe
17:15:08.0010 2132 C:\Windows\HelpPane.exe - ok
17:15:08.0010 2132 [ 86F1F949DD51FB5A044F1BD34CBE4AA8 ] C:\Windows\System32\apds.dll
17:15:08.0010 2132 C:\Windows\System32\apds.dll - ok
17:15:08.0010 2132 [ 3819AD4329303EAC88480CA16A650735 ] C:\Windows\System32\UIAnimation.dll
17:15:08.0010 2132 C:\Windows\System32\UIAnimation.dll - ok
17:15:08.0026 2132 [ F244DA6DD2C365ABAFD076222C22C2BE ] C:\Windows\System32\mshtml.dll
17:15:08.0026 2132 C:\Windows\System32\mshtml.dll - ok
17:15:08.0026 2132 [ E7368F0A8D19445EAF5C5D0DBB8B8DAB ] C:\Windows\System32\AltTab.dll
17:15:08.0026 2132 C:\Windows\System32\AltTab.dll - ok
17:15:08.0026 2132 [ C836175870E00ACC546066632E15BD10 ] C:\Windows\ehome\ehSSO.dll
17:15:08.0026 2132 C:\Windows\ehome\ehSSO.dll - ok
17:15:08.0026 2132 [ 66920354B984D4A3848A84B4E66745EA ] C:\Windows\System32\netshell.dll
17:15:08.0026 2132 C:\Windows\System32\netshell.dll - ok
17:15:08.0041 2132 [ A0BFC858B3A45CF9BFFFC3C8C08ED7FC ] C:\Windows\System32\apss.dll
17:15:08.0041 2132 C:\Windows\System32\apss.dll - ok
17:15:08.0041 2132 [ 7FA5CA36B613A000F3A37E6B5170A195 ] C:\Windows\System32\d2d1.dll
17:15:08.0041 2132 C:\Windows\System32\d2d1.dll - ok
17:15:08.0041 2132 [ 86E3822A34D454032D8E88C72AE8CF2D ] C:\Windows\System32\nlaapi.dll
17:15:08.0041 2132 C:\Windows\System32\nlaapi.dll - ok
17:15:08.0057 2132 [ FD4F95ABDE5603478C929B6CB0BDCFFF ] C:\Windows\System32\pnidui.dll
17:15:08.0057 2132 C:\Windows\System32\pnidui.dll - ok
17:15:08.0057 2132 [ E9FD4DA5188391ECD30E6C29213EABF0 ] C:\Windows\System32\DWrite.dll
17:15:08.0057 2132 C:\Windows\System32\DWrite.dll - ok
17:15:08.0057 2132 [ D95DB5C915C001F78709C17285109BDC ] C:\Windows\System32\dxgi.dll
17:15:08.0057 2132 C:\Windows\System32\dxgi.dll - ok
17:15:08.0057 2132 [ 58A0C212ED2ABE462B3A9626F5B96261 ] C:\Windows\System32\d3d10_1.dll
17:15:08.0057 2132 C:\Windows\System32\d3d10_1.dll - ok
17:15:08.0072 2132 [ BD03C64C4B1F34D1F330BF6C4AC8113D ] C:\Windows\System32\QUTIL.DLL
17:15:08.0072 2132 C:\Windows\System32\QUTIL.DLL - ok
17:15:08.0072 2132 [ AB01C36BCC34CCFE5B0BB5FFB2605135 ] C:\Windows\System32\WPDShServiceObj.dll
17:15:08.0072 2132 C:\Windows\System32\WPDShServiceObj.dll - ok
17:15:08.0072 2132 [ AFBBC34687FA48A4928B99AF097C1EC0 ] C:\Windows\System32\d3d10_1core.dll
17:15:08.0072 2132 C:\Windows\System32\d3d10_1core.dll - ok
17:15:08.0072 2132 [ 0CCA9F023E7DC078D7CFBF024655AB7F ] C:\Windows\System32\d3d10warp.dll
17:15:08.0072 2132 C:\Windows\System32\d3d10warp.dll - ok
17:15:08.0088 2132 [ 4F3CD1C59EA71401E155C432BCECE180 ] C:\Windows\System32\PortableDeviceTypes.dll
17:15:08.0088 2132 C:\Windows\System32\PortableDeviceTypes.dll - ok
17:15:08.0088 2132 [ 5DA7D8934F7AB0884A6A8FC02E8B2AA7 ] C:\Windows\System32\PortableDeviceApi.dll
17:15:08.0088 2132 C:\Windows\System32\PortableDeviceApi.dll - ok
17:15:08.0088 2132 [ 92AAF75C3EB344A098DC026BC9DDF42A ] C:\Windows\System32\bthprops.cpl
17:15:08.0088 2132 C:\Windows\System32\bthprops.cpl - ok
17:15:08.0104 2132 [ 2C5B8A680A90E96B1EC0D6DA0505E685 ] C:\Windows\System32\srchadmin.dll
17:15:08.0104 2132 C:\Windows\System32\srchadmin.dll - ok
17:15:08.0104 2132 [ D7CEAEDD5F75D2C8A2E80887D7C114CE ] C:\Windows\System32\webcheck.dll
17:15:08.0104 2132 C:\Windows\System32\webcheck.dll - ok
17:15:08.0104 2132 [ E6F66F31422C44EDC00D9C9329E7DF60 ] C:\Windows\System32\SyncCenter.dll
17:15:08.0104 2132 C:\Windows\System32\SyncCenter.dll - ok
17:15:08.0104 2132 [ DC57BAF15064ECB79F6D2CCF352E1D88 ] C:\Windows\System32\taskschd.dll
17:15:08.0104 2132 C:\Windows\System32\taskschd.dll - ok
17:15:08.0119 2132 [ 8B886A0AC14EAA8599142887991A5A2E ] C:\Windows\System32\imapi2.dll
17:15:08.0119 2132 C:\Windows\System32\imapi2.dll - ok
17:15:08.0119 2132 [ F66A12ACF2B2DB8C73A2C180F562E3EC ] C:\Windows\System32\mstask.dll
17:15:08.0119 2132 C:\Windows\System32\mstask.dll - ok
17:15:08.0119 2132 [ F7073C962C4FB7C415565DDE109DE49F ] C:\Windows\System32\npmproxy.dll
17:15:08.0119 2132 C:\Windows\System32\npmproxy.dll - ok
17:15:08.0135 2132 [ C746F3BF98E92FB137B5BD2B8B5925BD ] C:\Windows\System32\FXSST.dll
17:15:08.0135 2132 C:\Windows\System32\FXSST.dll - ok
17:15:08.0135 2132 [ 34E6D8C67E7FD7C917BECFECA326B168 ] C:\Windows\System32\FXSAPI.dll
17:15:08.0135 2132 C:\Windows\System32\FXSAPI.dll - ok
17:15:08.0135 2132 [ C8E8B8239FCF17BEA10E751BE5854631 ] C:\Windows\System32\FXSRESM.dll
17:15:08.0135 2132 C:\Windows\System32\FXSRESM.dll - ok
17:15:08.0135 2132 [ D607B2F1BEE3992AA6C2C92C0A2F0855 ] C:\Windows\System32\FXSSVC.exe
17:15:08.0135 2132 C:\Windows\System32\FXSSVC.exe - ok
17:15:08.0150 2132 [ D2155709E336C3BC15729EB87FEC6064 ] C:\Windows\System32\rasdlg.dll
17:15:08.0150 2132 C:\Windows\System32\rasdlg.dll - ok
17:15:08.0150 2132 [ 114429A77D935053E13A9BF98A8B8CA1 ] C:\Windows\System32\mprapi.dll
17:15:08.0150 2132 C:\Windows\System32\mprapi.dll - ok
17:15:08.0150 2132 [ F0AAB2A76A7AF04C70A818E96BAF3E64 ] C:\Windows\System32\hgcpl.dll
17:15:08.0150 2132 C:\Windows\System32\hgcpl.dll - ok
17:15:08.0166 2132 [ 06A7422224D9865A5613710A089987DF ] C:\Windows\System32\provsvc.dll
17:15:08.0166 2132 C:\Windows\System32\provsvc.dll - ok
17:15:08.0166 2132 [ 019CD868461B646E09BDF04474C19341 ] C:\Windows\System32\rasapi32.dll
17:15:08.0166 2132 C:\Windows\System32\rasapi32.dll - ok
17:15:08.0166 2132 [ 1E4BDDBD5A63059A97063339B4F8986F ] C:\Windows\System32\actxprxy.dll
17:15:08.0166 2132 C:\Windows\System32\actxprxy.dll - ok
17:15:08.0166 2132 [ B28DEEC597C8DEB70C744C7CF9210E3E ] C:\Windows\System32\rasman.dll
17:15:08.0166 2132 C:\Windows\System32\rasman.dll - ok
17:15:08.0182 2132 [ F5A61F0A0030C80DF319B0C14A4C8885 ] C:\Windows\System32\rtutils.dll
17:15:08.0182 2132 C:\Windows\System32\rtutils.dll - ok
17:15:08.0182 2132 [ BB68579E181956E37EB11F9083C01CF3 ] C:\Windows\System32\dot3api.dll
17:15:08.0182 2132 C:\Windows\System32\dot3api.dll - ok
17:15:08.0182 2132 [ 3B367397320C26DBA890B260F80D1B1B ] C:\Windows\System32\hnetcfg.dll
17:15:08.0182 2132 C:\Windows\System32\hnetcfg.dll - ok
17:15:08.0197 2132 [ 357BE883C5236BFC7341CB9E82308908 ] C:\Windows\System32\wlanapi.dll
17:15:08.0197 2132 C:\Windows\System32\wlanapi.dll - ok
17:15:08.0197 2132 [ E4FCA0F99A41E460C84016DEFD31E6EF ] C:\Windows\System32\wlanhlp.dll
17:15:08.0197 2132 C:\Windows\System32\wlanhlp.dll - ok
17:15:08.0197 2132 [ 5DA219F57A9076FB6FBD3C9C3713A672 ] C:\Windows\System32\WWanAPI.dll
17:15:08.0197 2132 C:\Windows\System32\WWanAPI.dll - ok
17:15:08.0197 2132 [ 62C7AACC746C9723468A8F2169ED3E85 ] C:\Windows\System32\wwapi.dll
17:15:08.0197 2132 C:\Windows\System32\wwapi.dll - ok
17:15:08.0213 2132 [ 0B9F7D42D745038437FAE70D97F9AD5A ] C:\Windows\System32\QAGENT.DLL
17:15:08.0213 2132 C:\Windows\System32\QAGENT.DLL - ok
17:15:08.0213 2132 [ B3CE0951E3C1EA3C733573C472EE85F9 ] C:\Windows\System32\msimtf.dll
17:15:08.0213 2132 C:\Windows\System32\msimtf.dll - ok
17:15:08.0213 2132 [ C6DCD1D11ED6827F05C00773C3E7053C ] C:\Windows\System32\sfc.dll
17:15:08.0213 2132 C:\Windows\System32\sfc.dll - ok
17:15:08.0213 2132 [ 895C9AB0A855547445C4181195230757 ] C:\Windows\System32\sfc_os.dll
17:15:08.0213 2132 C:\Windows\System32\sfc_os.dll - ok
17:15:08.0228 2132 [ 22CC6CDBA678790046693654C3B212E4 ] C:\Program Files (x86)\Internet Explorer\iexplore.exe
17:15:08.0228 2132 C:\Program Files (x86)\Internet Explorer\iexplore.exe - ok
17:15:08.0228 2132 [ 9FAC0F6D5F3D922DB294E30CD3F62369 ] C:\Windows\SysWOW64\urlmon.dll
17:15:08.0228 2132 C:\Windows\SysWOW64\urlmon.dll - ok
17:15:08.0228 2132 [ EB8A00E8E9931A7EC04F920B09D880D8 ] C:\Windows\SysWOW64\iertutil.dll
17:15:08.0228 2132 C:\Windows\SysWOW64\iertutil.dll - ok
17:15:08.0244 2132 [ 5553611E2F9EA6F613079177F1233068 ] C:\Windows\SysWOW64\wininet.dll
17:15:08.0244 2132 C:\Windows\SysWOW64\wininet.dll - ok
17:15:08.0244 2132 [ 0BA3F31E2B4D8D99DF8DD19E81155374 ] C:\Windows\SysWOW64\ieframe.dll
17:15:08.0244 2132 C:\Windows\SysWOW64\ieframe.dll - ok
17:15:08.0244 2132 [ 4D59A5B6EF0AF6F9FDF3D157534380AF ] C:\Windows\SysWOW64\oleacc.dll
17:15:08.0244 2132 C:\Windows\SysWOW64\oleacc.dll - ok
17:15:08.0244 2132 [ A223CF703E28CBD7E9E7982141FA403C ] C:\Windows\SysWOW64\comdlg32.dll
17:15:08.0244 2132 C:\Windows\SysWOW64\comdlg32.dll - ok
17:15:08.0260 2132 [ C733D233B623B7FFCE5031E4B756EE26 ] C:\Windows\SysWOW64\profapi.dll
17:15:08.0260 2132 C:\Windows\SysWOW64\profapi.dll - ok
17:15:08.0260 2132 [ 62390F4ACE9E2B63E3CA26B7F7497897 ] C:\Windows\SysWOW64\dnsapi.dll
17:15:08.0260 2132 C:\Windows\SysWOW64\dnsapi.dll - ok
17:15:08.0260 2132 [ 6095266CAAF5E75F394CFD4844CC4C25 ] C:\Windows\SysWOW64\IPHLPAPI.DLL
17:15:08.0260 2132 C:\Windows\SysWOW64\IPHLPAPI.DLL - ok
17:15:08.0275 2132 [ CFF35B879D1618D42C86644C717BA947 ] C:\Windows\SysWOW64\winnsi.dll
17:15:08.0275 2132 C:\Windows\SysWOW64\winnsi.dll - ok
17:15:08.0275 2132 [ 8C338238C16777A802D6A9211EB2BA50 ] C:\Windows\SysWOW64\netprofm.dll
17:15:08.0275 2132 C:\Windows\SysWOW64\netprofm.dll - ok
17:15:08.0275 2132 [ 045DB4EAB4FBD23210E85ECC3F464A2E ] C:\Windows\SysWOW64\nlaapi.dll
17:15:08.0275 2132 C:\Windows\SysWOW64\nlaapi.dll - ok
17:15:08.0275 2132 [ 15E298B5EC5B89C5994A59863969D9FF ] C:\Windows\SysWOW64\npmproxy.dll
17:15:08.0275 2132 C:\Windows\SysWOW64\npmproxy.dll - ok
17:15:08.0291 2132 [ 4BA9EFCDA842C6A6692AFDA6E2BEF70A ] C:\Program Files (x86)\Internet Explorer\sqmapi.dll
17:15:08.0291 2132 C:\Program Files (x86)\Internet Explorer\sqmapi.dll - ok
17:15:08.0291 2132 [ 5E4FF36923C37C80B537DCE6CAA755F9 ] C:\Program Files (x86)\Internet Explorer\ieproxy.dll
17:15:08.0291 2132 C:\Program Files (x86)\Internet Explorer\ieproxy.dll - ok
17:15:08.0291 2132 [ C02E3CE20E7776C922B5C8938350B5F1 ] C:\Windows\SysWOW64\apphelp.dll
17:15:08.0291 2132 C:\Windows\SysWOW64\apphelp.dll - ok
17:15:08.0306 2132 [ 839F96DBAAFD3353E0B248A5E0BD2A51 ] C:\Windows\SysWOW64\rasapi32.dll
17:15:08.0306 2132 C:\Windows\SysWOW64\rasapi32.dll - ok
17:15:08.0306 2132 [ FFA7172354B9256DBB2CDD75F16F33FE ] C:\Windows\SysWOW64\rasman.dll
17:15:08.0306 2132 C:\Windows\SysWOW64\rasman.dll - ok
17:15:08.0306 2132 [ 406F7B9C71B99872670EE9A8D52E2FE5 ] C:\Windows\SysWOW64\rtutils.dll
17:15:08.0306 2132 C:\Windows\SysWOW64\rtutils.dll - ok
17:15:08.0306 2132 [ 73E8667A19FEEDD856DF2695E9E511D4 ] C:\Windows\SysWOW64\wship6.dll
17:15:08.0306 2132 C:\Windows\SysWOW64\wship6.dll - ok
17:15:08.0322 2132 [ 2DAD4B6B659F7E5DFBCB6D2C634FA6F3 ] C:\Program Files (x86)\Internet Explorer\IEShims.dll
17:15:08.0322 2132 C:\Program Files (x86)\Internet Explorer\IEShims.dll - ok
17:15:08.0322 2132 [ CC0713B192BF47A124168957ACD75CC1 ] C:\Windows\SysWOW64\ieui.dll
17:15:08.0322 2132 C:\Windows\SysWOW64\ieui.dll - ok
17:15:08.0322 2132 [ 18AB2E5A40064ED5F7791AC5946A90F3 ] C:\Windows\SysWOW64\msimg32.dll
17:15:08.0322 2132 C:\Windows\SysWOW64\msimg32.dll - ok
17:15:08.0338 2132 [ 43964FA89CCF97BA6BE34D69455AC65F ] C:\Windows\SysWOW64\uxtheme.dll
17:15:08.0338 2132 C:\Windows\SysWOW64\uxtheme.dll - ok
17:15:08.0338 2132 [ 26EAEE08CAF82AA7F03C5020F51DA541 ] C:\Windows\SysWOW64\propsys.dll
17:15:08.0338 2132 C:\Windows\SysWOW64\propsys.dll - ok
17:15:08.0338 2132 [ 0C2AE180D8C35F723BA13A16AA9AC453 ] C:\Windows\SysWOW64\xmllite.dll
17:15:08.0338 2132 C:\Windows\SysWOW64\xmllite.dll - ok
17:15:08.0338 2132 [ 8898C95862D03D16B2A06DB4DB6BB6B2 ] C:\Windows\SysWOW64\ExplorerFrame.dll
17:15:08.0338 2132 C:\Windows\SysWOW64\ExplorerFrame.dll - ok
17:15:08.0353 2132 [ BB197F54A8F69EEA8356B7F70E6D3A20 ] C:\Windows\SysWOW64\mshtml.dll
17:15:08.0353 2132 C:\Windows\SysWOW64\mshtml.dll - ok
17:15:08.0353 2132 [ 6E1F8165C365D35C8E3C045AF0CDD481 ] C:\Windows\SysWOW64\duser.dll
17:15:08.0353 2132 C:\Windows\SysWOW64\duser.dll - ok
17:15:08.0353 2132 [ EE06B85BC69F18826302348A2AD089E0 ] C:\Windows\SysWOW64\dui70.dll
17:15:08.0353 2132 C:\Windows\SysWOW64\dui70.dll - ok
17:15:08.0369 2132 [ 41323AB614A2B66AD77B1121D24AC895 ] C:\Windows\SysWOW64\setupapi.dll
17:15:08.0369 2132 C:\Windows\SysWOW64\setupapi.dll - ok
17:15:08.0369 2132 [ E702ED19C332C1F12C1403D100E2F4F3 ] C:\Windows\SysWOW64\cfgmgr32.dll
17:15:08.0369 2132 C:\Windows\SysWOW64\cfgmgr32.dll - ok
17:15:08.0369 2132 [ 6C9C05D5344B9AB80E9180FC859BC45A ] C:\Windows\SysWOW64\devobj.dll
17:15:08.0369 2132 C:\Windows\SysWOW64\devobj.dll - ok
17:15:08.0369 2132 [ 9FDF43178419CB0D4B50373C50396BDF ] C:\Windows\SysWOW64\d2d1.dll
17:15:08.0369 2132 C:\Windows\SysWOW64\d2d1.dll - ok
17:15:08.0384 2132 [ 9F9B0AD8804ECFF8CBD279992DCF7210 ] C:\Windows\SysWOW64\DWrite.dll
17:15:08.0384 2132 C:\Windows\SysWOW64\DWrite.dll - ok
17:15:08.0384 2132 [ 39C5F32747B3414D1BB216FDB1DEFC58 ] C:\Windows\SysWOW64\dwmapi.dll
17:15:08.0384 2132 C:\Windows\SysWOW64\dwmapi.dll - ok
17:15:08.0384 2132 [ DD76301614636306414EFA94A9AC5A03 ] C:\Windows\SysWOW64\dxgi.dll
17:15:08.0384 2132 C:\Windows\SysWOW64\dxgi.dll - ok
17:15:08.0400 2132 [ 334A663962618F7A136FA1F80F773C5F ] C:\Windows\SysWOW64\wintrust.dll
17:15:08.0400 2132 C:\Windows\SysWOW64\wintrust.dll - ok
17:15:08.0400 2132 [ AD8F6914F7A9AC28047389BE7AF56EBF ] C:\Windows\SysWOW64\d3d10_1.dll
17:15:08.0400 2132 C:\Windows\SysWOW64\d3d10_1.dll - ok
17:15:08.0400 2132 [ 9103E020906FC7A166F380EF2D2516B2 ] C:\Windows\SysWOW64\d3d10_1core.dll
17:15:08.0400 2132 C:\Windows\SysWOW64\d3d10_1core.dll - ok
17:15:08.0400 2132 [ 0DFD0ADD7FF9C48938757220F1CEBE95 ] C:\Windows\SysWOW64\d3d10level9.dll
17:15:08.0400 2132 C:\Windows\SysWOW64\d3d10level9.dll - ok
17:15:08.0416 2132 [ 8EE6BDE1D572677AA35707C52C585F75 ] C:\Windows\SysWOW64\mlang.dll
17:15:08.0416 2132 C:\Windows\SysWOW64\mlang.dll - ok
17:15:08.0416 2132 [ ED6EE83D61EBC683C2CD8E899EA6FEBE ] C:\Windows\SysWOW64\rasadhlp.dll
17:15:08.0416 2132 C:\Windows\SysWOW64\rasadhlp.dll - ok
17:15:08.0416 2132 [ ACCBA604D34842844133A731F8045B32 ] C:\Windows\SysWOW64\sxs.dll
17:15:08.0416 2132 C:\Windows\SysWOW64\sxs.dll - ok
17:15:08.0431 2132 [ EE9D715AF1B928982F417238B9914484 ] C:\Windows\SysWOW64\ieapfltr.dll
17:15:08.0431 2132 C:\Windows\SysWOW64\ieapfltr.dll - ok
17:15:08.0431 2132 [ 394373142655ACCF49D64AAD466C86FF ] C:\Windows\SysWOW64\jscript9.dll
17:15:08.0431 2132 C:\Windows\SysWOW64\jscript9.dll - ok
17:15:08.0431 2132 [ 1D1EAA16D193C6A2D45981ED3914D22A ] C:\Windows\SysWOW64\msimtf.dll
17:15:08.0431 2132 C:\Windows\SysWOW64\msimtf.dll - ok
17:15:08.0431 2132 [ 691C8DFB208227F0CBB5C0897C742ACE ] C:\Windows\SysWOW64\WindowsCodecs.dll
17:15:08.0431 2132 C:\Windows\SysWOW64\WindowsCodecs.dll - ok
17:15:08.0447 2132 [ BEADABADC909D2C7F59CD3DEA77EE67E ] C:\Windows\SysWOW64\d3d10warp.dll
17:15:08.0447 2132 C:\Windows\SysWOW64\d3d10warp.dll - ok
17:15:08.0447 2132 [ 2572E1F0254E2267E97DE1B15D099EC4 ] C:\Windows\SysWOW64\d3d10.dll
17:15:08.0447 2132 C:\Windows\SysWOW64\d3d10.dll - ok
17:15:08.0447 2132 [ 547F78746F20901C770E8653B242217C ] C:\Windows\SysWOW64\d3d10core.dll
17:15:08.0447 2132 C:\Windows\SysWOW64\d3d10core.dll - ok
17:15:08.0462 2132 [ 2C64AF297F12582BD95D7D94C18E464C ] C:\Windows\System32\esent.dll
17:15:08.0462 2132 C:\Windows\System32\esent.dll - ok
17:15:08.0462 2132 [ 220159496484D34009DE71CA1A68E0D4 ] C:\Windows\System32\wbem\NCProv.dll
17:15:08.0462 2132 C:\Windows\System32\wbem\NCProv.dll - ok
17:15:08.0462 2132 [ 9C0DC1DAAD14D443DD5A0D1EE78D775E ] C:\Windows\SysWOW64\userenv.dll
17:15:08.0462 2132 C:\Windows\SysWOW64\userenv.dll - ok
17:15:08.0462 2132 [ 5987EA8A82C53359BCD2C29D6588583E ] C:\Windows\SysWOW64\linkinfo.dll
17:15:08.0462 2132 C:\Windows\SysWOW64\linkinfo.dll - ok
17:15:08.0478 2132 [ 6699A112A3BDC9B52338512894EBA9D6 ] C:\Program Files\Windows Media Player\wmpnscfg.exe
17:15:08.0478 2132 C:\Program Files\Windows Media Player\wmpnscfg.exe - ok
17:15:08.0478 2132 [ C7494C67A6BF6FE914808E42F8265FEF ] C:\Program Files\Windows Media Player\wmpnssci.dll
17:15:08.0478 2132 C:\Program Files\Windows Media Player\wmpnssci.dll - ok
17:15:08.0478 2132 [ 58A0CDABEA255616827B1C22C9994466 ] C:\Windows\System32\NapiNSP.dll
17:15:08.0478 2132 C:\Windows\System32\NapiNSP.dll - ok
17:15:08.0478 2132 [ 2E2072EB48238FCA8FBB7A9F5FABAC45 ] C:\Windows\System32\winrnr.dll
17:15:08.0478 2132 C:\Windows\System32\winrnr.dll - ok
17:15:08.0494 2132 [ 613C8CE10A5FDE582BA5FA64C4D56AAA ] C:\Windows\System32\pnrpnsp.dll
17:15:08.0494 2132 C:\Windows\System32\pnrpnsp.dll - ok
17:15:08.0494 2132 [ 88351B29B622B30962D2FEB6CA8D860B ] C:\Windows\System32\rasadhlp.dll
17:15:08.0494 2132 C:\Windows\System32\rasadhlp.dll - ok
17:15:08.0494 2132 [ 9E113C0AD33F92A5741584286F93F84B ] C:\Windows\System32\VAN.dll
17:15:08.0494 2132 C:\Windows\System32\VAN.dll - ok
17:15:08.0509 2132 [ 5D68F68E12B8BCD35ADE5A7B4FE5F456 ] C:\Windows\System32\wwanmm.dll
17:15:08.0509 2132 C:\Windows\System32\wwanmm.dll - ok
17:15:08.0509 2132 [ 18C27789FCFDDDB8D45C1EC4BC77CC8C ] C:\Windows\System32\RASMM.dll
17:15:08.0509 2132 C:\Windows\System32\RASMM.dll - ok
17:15:08.0509 2132 [ 448DE6CDB7976373B35CA03B6BF9BE48 ] C:\Windows\System32\WlanMM.dll
17:15:08.0509 2132 C:\Windows\System32\WlanMM.dll - ok
17:15:08.0509 2132 [ 158117F3CF278F01C6F24E89E2141E81 ] C:\Windows\SysWOW64\FWPUCLNT.DLL
17:15:08.0509 2132 C:\Windows\SysWOW64\FWPUCLNT.DLL - ok
17:15:08.0525 2132 [ 39E9AACC4C5FB3C3C0B12DE6D491553D ] C:\Windows\SysWOW64\WindowsCodecsExt.dll
17:15:08.0525 2132 C:\Windows\SysWOW64\WindowsCodecsExt.dll - ok
17:15:08.0525 2132 [ 711A2E6A55EC7BFD59B5F649D58B704B ] C:\Program Files (x86)\Microsoft Silverlight\4.1.10329.0\npctrl.dll
17:15:08.0525 2132 C:\Program Files (x86)\Microsoft Silverlight\4.1.10329.0\npctrl.dll - ok
17:15:08.0525 2132 [ 7D548A7319094354AEECA5D14FEE319C ] C:\Program Files (x86)\Microsoft Silverlight\4.1.10329.0\agcore.dll
17:15:08.0525 2132 C:\Program Files (x86)\Microsoft Silverlight\4.1.10329.0\agcore.dll - ok
17:15:08.0540 2132 [ 26A634B2E0FD87F23541AD13A503CA72 ] C:\Windows\SysWOW64\winmm.dll
17:15:08.0540 2132 C:\Windows\SysWOW64\winmm.dll - ok
17:15:08.0540 2132 [ 742AA02BD9FA3492C9E525BBD427D87D ] C:\Windows\SysWOW64\samcli.dll
17:15:08.0540 2132 C:\Windows\SysWOW64\samcli.dll - ok
17:15:08.0540 2132 [ 4DBC81CEFE9DB36856880BFB3491C100 ] C:\Windows\SysWOW64\msxml6.dll
17:15:08.0540 2132 C:\Windows\SysWOW64\msxml6.dll - ok
17:15:08.0540 2132 [ E9F427EF46965D33E878A507A2F5CCB6 ] C:\Windows\SysWOW64\Macromed\Flash\Flash11e.ocx
17:15:08.0540 2132 C:\Windows\SysWOW64\Macromed\Flash\Flash11e.ocx - ok
17:15:08.0556 2132 [ 0E85C11F8850D524B02181C6E02BA9AE ] C:\Windows\SysWOW64\dsound.dll
17:15:08.0556 2132 C:\Windows\SysWOW64\dsound.dll - ok
17:15:08.0556 2132 [ 08DFDBD2FD4EA951DC46B1C7661ED35A ] C:\Windows\SysWOW64\powrprof.dll
17:15:08.0556 2132 C:\Windows\SysWOW64\powrprof.dll - ok
17:15:08.0556 2132 [ 7459301D21C2E21468823F73042D9F87 ] C:\Windows\SysWOW64\d3d9.dll
17:15:08.0556 2132 C:\Windows\SysWOW64\d3d9.dll - ok
17:15:08.0572 2132 [ 77B1471A490B53B24EFE136F09F76550 ] C:\Windows\SysWOW64\d3d8thk.dll
17:15:08.0572 2132 C:\Windows\SysWOW64\d3d8thk.dll - ok
17:15:08.0572 2132 [ 205B7034B64DE5A68DEB96B47B7E889B ] C:\Windows\SysWOW64\mscms.dll
17:15:08.0572 2132 C:\Windows\SysWOW64\mscms.dll - ok
17:15:08.0572 2132 [ 8C680C0E6B3D6711B2B88AC82FE1804E ] C:\Windows\SysWOW64\MMDevAPI.dll
17:15:08.0572 2132 C:\Windows\SysWOW64\MMDevAPI.dll - ok
17:15:08.0572 2132 [ 35AAE2E841AA1A949775168E119482C9 ] C:\Windows\SysWOW64\msls31.dll
17:15:08.0572 2132 C:\Windows\SysWOW64\msls31.dll - ok
17:15:08.0587 2132 [ 68563AC389F92EE79F1C714288BA1DCE ] C:\Windows\SysWOW64\imgutil.dll
17:15:08.0587 2132 C:\Windows\SysWOW64\imgutil.dll - ok
17:15:08.0587 2132 [ BF591B5C2CC38314518467E883AE37C5 ] C:\Windows\SysWOW64\credssp.dll
17:15:08.0587 2132 C:\Windows\SysWOW64\credssp.dll - ok
17:15:08.0587 2132 [ 76C48F0CD8A526858AB9A4886586942A ] C:\Windows\SysWOW64\schannel.dll
17:15:08.0587 2132 C:\Windows\SysWOW64\schannel.dll - ok
17:15:08.0603 2132 [ F11A57E91FDAECFB41A5CB21EB1EBC8E ] C:\Windows\System32\dssenh.dll
17:15:08.0603 2132 C:\Windows\System32\dssenh.dll - ok
17:15:08.0603 2132 [ B24ABFAB2D541996A38905369D511953 ] C:\Windows\SysWOW64\wdmaud.drv
17:15:08.0603 2132 C:\Windows\SysWOW64\wdmaud.drv - ok
17:15:08.0603 2132 [ 139D3AB6AA920C34C50CBFFB9EB7D222 ] C:\Windows\SysWOW64\avrt.dll
17:15:08.0603 2132 C:\Windows\SysWOW64\avrt.dll - ok
17:15:08.0603 2132 [ 9C67F6BBDA3881CFD02095160CF91576 ] C:\Windows\SysWOW64\ksuser.dll
17:15:08.0603 2132 C:\Windows\SysWOW64\ksuser.dll - ok
17:15:08.0618 2132 [ 3989BB6998C32753FDD5493879C1835A ] C:\Windows\SysWOW64\ncrypt.dll
17:15:08.0618 2132 C:\Windows\SysWOW64\ncrypt.dll - ok
17:15:08.0618 2132 [ CE71B9119A258EDD0A05B37D7B0F92E3 ] C:\Windows\SysWOW64\bcrypt.dll
17:15:08.0618 2132 C:\Windows\SysWOW64\bcrypt.dll - ok
17:15:08.0618 2132 [ E8449FE262D7406BCB2AC2A45C53EC5F ] C:\Windows\SysWOW64\bcryptprimitives.dll
17:15:08.0618 2132 C:\Windows\SysWOW64\bcryptprimitives.dll - ok
17:15:08.0634 2132 [ 1097F3035BAF46CED8B332B3564C5108 ] C:\Windows\SysWOW64\gpapi.dll
17:15:08.0634 2132 C:\Windows\SysWOW64\gpapi.dll - ok
17:15:08.0634 2132 [ 1F778C34C751E1B585E4FC66659BA904 ] C:\Windows\SysWOW64\cryptnet.dll
17:15:08.0634 2132 C:\Windows\SysWOW64\cryptnet.dll - ok
17:15:08.0634 2132 [ CA493A92DA9880B6F1A89C3DBD54BA5B ] C:\Windows\SysWOW64\dxtrans.dll
17:15:08.0634 2132 C:\Windows\SysWOW64\dxtrans.dll - ok
17:15:08.0634 2132 [ F10E5311E5093FA3C00FF88C54C32FCA ] C:\Windows\SysWOW64\atl.dll
17:15:08.0634 2132 C:\Windows\SysWOW64\atl.dll - ok
17:15:08.0650 2132 [ BAB9EF9A340113666F678AA2474904B6 ] C:\Windows\SysWOW64\ddrawex.dll
17:15:08.0650 2132 C:\Windows\SysWOW64\ddrawex.dll - ok
17:15:08.0650 2132 [ 198552AEFECA69D646867EC8D792DE95 ] C:\Windows\SysWOW64\ddraw.dll
17:15:08.0650 2132 C:\Windows\SysWOW64\ddraw.dll - ok
17:15:08.0650 2132 [ 55E5B32AE8D1F51A63C82919656FD275 ] C:\Windows\SysWOW64\dciman32.dll
17:15:08.0650 2132 C:\Windows\SysWOW64\dciman32.dll - ok
17:15:08.0650 2132 [ 6F8E3B7B70E1BBA871212940C1FBDF60 ] C:\Windows\SysWOW64\SensApi.dll
17:15:08.0665 2132 C:\Windows\SysWOW64\SensApi.dll - ok
17:15:08.0665 2132 [ 4312DEBDACBE338F0B90E7F08E7672BE ] C:\Windows\SysWOW64\dxtmsft.dll
17:15:08.0665 2132 C:\Windows\SysWOW64\dxtmsft.dll - ok
17:15:08.0665 2132 [ 17C237AC01D7C8AB91A0E6AF767A5831 ] C:\Windows\SysWOW64\NaturalLanguage6.dll
17:15:08.0665 2132 C:\Windows\SysWOW64\NaturalLanguage6.dll - ok
17:15:08.0665 2132 [ 2992932C1AB1D29A1A4A9E8CB8530CBF ] C:\Windows\SysWOW64\NlsData0009.dll
17:15:08.0665 2132 C:\Windows\SysWOW64\NlsData0009.dll - ok
17:15:08.0681 2132 [ C8CB301BF896C7C556BBE963FADF5BB6 ] C:\Windows\SysWOW64\NlsLexicons0009.dll
17:15:08.0681 2132 C:\Windows\SysWOW64\NlsLexicons0009.dll - ok
17:15:08.0681 2132 [ 00D1F89836927C0F2E37321E6B441FCE ] C:\Windows\SysWOW64\msxml3.dll
17:15:08.0681 2132 C:\Windows\SysWOW64\msxml3.dll - ok
17:15:08.0681 2132 [ 3DEBA83ECDAF6ED2E72430D238803117 ] C:\Windows\System32\wmp.dll
17:15:08.0681 2132 C:\Windows\System32\wmp.dll - ok
17:15:08.0681 2132 [ 550BF4ACD6FC3F41DC5A83EF31B9F9B4 ] C:\Windows\System32\wmploc.DLL
17:15:08.0681 2132 C:\Windows\System32\wmploc.DLL - ok
17:15:08.0696 2132 [ 816B681CC308FAA128EDCB90643DCED7 ] C:\Windows\SysWOW64\icm32.dll
17:15:08.0696 2132 C:\Windows\SysWOW64\icm32.dll - ok
17:15:08.0696 2132 [ 81E7E920312D372CF57A817049AC7C76 ] C:\Program Files (x86)\Common Files\microsoft shared\OFFICE14\MSOXMLMF.DLL
17:15:08.0696 2132 C:\Program Files (x86)\Common Files\microsoft shared\OFFICE14\MSOXMLMF.DLL - ok
17:15:08.0696 2132 [ CDBE9690CF2B8409FACAD94FAC9479C9 ] C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcr90.dll
17:15:08.0696 2132 C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcr90.dll - ok
17:15:08.0712 2132 [ 76A87EE9E61AC6C5F64DF4A3D1F13659 ] C:\Windows\System32\twext.dll
17:15:08.0712 2132 C:\Windows\System32\twext.dll - ok
17:15:08.0712 2132 [ 8163E23ED09D26E44D8F7E926DFEAC60 ] C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamext.dll
17:15:08.0712 2132 C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamext.dll - ok
17:15:08.0712 2132 [ EF33F6DD121B7F546F36112B8B73C609 ] C:\Windows\System32\zipfldr.dll
17:15:08.0712 2132 C:\Windows\System32\zipfldr.dll - ok
17:15:08.0728 2132 [ 93522C00D1F58DC015959FFF3D719C85 ] C:\Program Files (x86)\WinRAR\RarExt64.dll
17:15:08.0728 2132 C:\Program Files (x86)\WinRAR\RarExt64.dll - ok
17:15:08.0728 2132 [ DBC01686ED79C13F2F6F842E825B4F04 ] C:\PROGRA~1\MICROS~3\shellext.dll
17:15:08.0728 2132 C:\PROGRA~1\MICROS~3\shellext.dll - ok
17:15:08.0728 2132 [ CE07AF86AA72F4AE964239DE0DABE738 ] C:\Windows\System32\msxml3.dll
17:15:08.0728 2132 C:\Windows\System32\msxml3.dll - ok
17:15:08.0728 2132 [ 11EAC0C9B2D59C3E250127BADC543F03 ] C:\Windows\System32\syncui.dll
17:15:08.0728 2132 C:\Windows\System32\syncui.dll - ok
17:15:08.0743 2132 [ 33947F1566C8EC685EB6057D882C99D2 ] C:\Windows\System32\synceng.dll
17:15:08.0743 2132 C:\Windows\System32\synceng.dll - ok
17:15:08.0743 2132 [ 4E73FBEF1C00A2BF8C81586D7ECE4954 ] C:\Windows\System32\acppage.dll
17:15:08.0743 2132 C:\Windows\System32\acppage.dll - ok
17:15:08.0743 2132 [ 6441D2FFB14B613C1D44D709BC7F8FFA ] C:\Windows\System32\sendmail.dll
17:15:08.0743 2132 C:\Windows\System32\sendmail.dll - ok
17:15:08.0743 2132 [ 57794FADEA5E4C458BD98D1036C2E7CB ] C:\Windows\System32\mydocs.dll
17:15:08.0743 2132 C:\Windows\System32\mydocs.dll - ok
17:15:08.0759 2132 [ 1BE028941A8A77932C2948AB780046F6 ] C:\Windows\System32\WFS.exe
17:15:08.0759 2132 C:\Windows\System32\WFS.exe - ok
17:15:08.0759 2132 [ 21B62252D283FBF75A5F67849EBD9B2E ] C:\Windows\System32\WFSR.dll
17:15:08.0759 2132 C:\Windows\System32\WFSR.dll - ok
17:15:08.0759 2132 [ 5F639198C4137075DA50E61C23963C11 ] C:\Windows\System32\drprov.dll
17:15:08.0759 2132 C:\Windows\System32\drprov.dll - ok
17:15:08.0774 2132 [ 73A1430ABA9119A2C25892EF9C3CB7A1 ] C:\Windows\System32\davclnt.dll
17:15:08.0774 2132 C:\Windows\System32\davclnt.dll - ok
17:15:08.0774 2132 [ 45B24A357C801CE62052FE0CDC8BD4D2 ] C:\Windows\System32\davhlpr.dll
17:15:08.0774 2132 C:\Windows\System32\davhlpr.dll - ok
17:15:08.0774 2132 [ 7273921B6DDFEFF3A8567B9800C5673A ] C:\Windows\System32\ntlanman.dll
17:15:08.0774 2132 C:\Windows\System32\ntlanman.dll - ok
17:15:08.0774 2132 [ EFD63099ED552D8B2410D78ECA4AA040 ] C:\Windows\System32\wpdshext.dll
17:15:08.0774 2132 C:\Windows\System32\wpdshext.dll - ok
17:15:08.0790 2132 [ CFF03DCC74E5C80686FA8AA972CA4770 ] C:\Windows\System32\EhStorAPI.dll
17:15:08.0790 2132 C:\Windows\System32\EhStorAPI.dll - ok
17:15:08.0790 2132 [ EBC984F0CE40E0DAF0454D806EC2A7EC ] C:\Users\Glory\Desktop\tdsskiller.exe
17:15:08.0790 2132 C:\Users\Glory\Desktop\tdsskiller.exe - ok
17:15:08.0790 2132 [ CC9BBCFC715FBEDF7AE476106FE653E9 ] C:\Windows\SysWOW64\winhttp.dll
17:15:08.0790 2132 C:\Windows\SysWOW64\winhttp.dll - ok
17:15:08.0806 2132 [ A86A1C5DF1C662D1C75815BF4794F16D ] C:\Windows\SysWOW64\webio.dll
17:15:08.0806 2132 C:\Windows\SysWOW64\webio.dll - ok
17:15:08.0806 2132 [ F146E2BA475893DD77B2370DC1211FC6 ] C:\Windows\System32\drivers\26789392.sys
17:15:08.0806 2132 C:\Windows\System32\drivers\26789392.sys - ok
17:15:08.0806 2132 [ F1317678AC2FBA9F640279290B2E2988 ] C:\Windows\SysWOW64\msi.dll
17:15:08.0806 2132 C:\Windows\SysWOW64\msi.dll - ok
17:15:08.0806 2132 [ 6EC594AB7EFA45EACDE65FD4040F53D9 ] C:\Windows\SysWOW64\riched20.dll
17:15:08.0806 2132 C:\Windows\SysWOW64\riched20.dll - ok
17:15:08.0821 2132 ============================================================
17:15:08.0821 2132 Scan finished
17:15:08.0821 2132 ============================================================
17:15:08.0821 2124 Detected object count: 0
17:15:08.0821 2124 Actual detected object count: 0
17:16:37.0929 0304 ============================================================
17:16:37.0929 0304 Scan started
17:16:37.0929 0304 Mode: Manual; SigCheck; TDLFS;
17:16:37.0929 0304 ============================================================
17:16:38.0116 0304 ================ Scan system memory ========================
17:16:38.0116 0304 System memory - ok
17:16:38.0116 0304 ================ Scan services =============================
17:16:38.0272 0304 [ 1B00662092F9F9568B995902F0CC40D5 ] 1394ohci C:\Windows\system32\DRIVERS\1394ohci.sys
17:16:38.0381 0304 1394ohci - ok
17:16:38.0428 0304 [ 6F11E88748CDEFD2F76AA215F97DDFE5 ] ACPI C:\Windows\system32\DRIVERS\ACPI.sys
17:16:38.0443 0304 ACPI - ok
17:16:38.0475 0304 [ 63B05A0420CE4BF0E4AF6DCC7CADA254 ] AcpiPmi C:\Windows\system32\DRIVERS\acpipmi.sys
17:16:38.0506 0304 AcpiPmi - ok
17:16:38.0568 0304 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
17:16:38.0584 0304 adp94xx - ok
17:16:38.0599 0304 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
17:16:38.0615 0304 adpahci - ok
17:16:38.0646 0304 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
17:16:38.0662 0304 adpu320 - ok
17:16:38.0693 0304 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
17:16:38.0755 0304 AeLookupSvc - ok
17:16:38.0833 0304 [ D1E343BC00136CE03C4D403194D06A80 ] AERTFilters C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe
17:16:38.0849 0304 AERTFilters - ok
17:16:38.0896 0304 [ DB9D6C6B2CD95A9CA414D045B627422E ] AFD C:\Windows\system32\drivers\afd.sys
17:16:38.0927 0304 AFD - ok
17:16:38.0974 0304 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\Windows\system32\DRIVERS\agp440.sys
17:16:38.0989 0304 agp440 - ok
17:16:39.0005 0304 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\Windows\System32\alg.exe
17:16:39.0036 0304 ALG - ok
17:16:39.0052 0304 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\Windows\system32\DRIVERS\aliide.sys
17:16:39.0067 0304 aliide - ok
17:16:39.0099 0304 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\Windows\system32\DRIVERS\amdide.sys
17:16:39.0114 0304 amdide - ok
17:16:39.0114 0304 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
17:16:39.0161 0304 AmdK8 - ok
17:16:39.0177 0304 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
17:16:39.0208 0304 AmdPPM - ok
17:16:39.0239 0304 [ EC7EBAB00A4D8448BAB68D1E49B4BEB9 ] amdsata C:\Windows\system32\drivers\amdsata.sys
17:16:39.0255 0304 amdsata - ok
17:16:39.0286 0304 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
17:16:39.0301 0304 amdsbs - ok
17:16:39.0317 0304 [ DB27766102C7BF7E95140A2AA81D042E ] amdxata C:\Windows\system32\drivers\amdxata.sys
17:16:39.0333 0304 amdxata - ok
17:16:39.0364 0304 [ 42FD751B27FA0E9C69BB39F39E409594 ] AppID C:\Windows\system32\drivers\appid.sys
17:16:39.0395 0304 AppID - ok
17:16:39.0411 0304 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\Windows\System32\appidsvc.dll
17:16:39.0489 0304 AppIDSvc - ok
17:16:39.0504 0304 [ D065BE66822847B7F127D1F90158376E ] Appinfo C:\Windows\System32\appinfo.dll
17:16:39.0535 0304 Appinfo - ok
17:16:39.0613 0304 [ 44F0479ACDBC24D20C62B63E23720B4A ] Application Sendori C:\Program Files (x86)\Sendori\SendoriSvc.exe
17:16:39.0629 0304 Application Sendori - ok
17:16:39.0660 0304 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\Windows\system32\DRIVERS\arc.sys
17:16:39.0676 0304 arc - ok
17:16:39.0707 0304 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
17:16:39.0723 0304 arcsas - ok
17:16:39.0801 0304 [ 9217D874131AE6FF8F642F124F00A555 ] aspnet_state C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
17:16:39.0816 0304 aspnet_state - ok
17:16:39.0847 0304 [ 4FCAEF0C5BE7629AEB878998E0FE959B ] aswFsBlk C:\Windows\system32\drivers\aswFsBlk.sys
17:16:39.0863 0304 aswFsBlk - ok
17:16:39.0894 0304 [ B50CDD87772D6A11CB90924AAD399DF8 ] aswMonFlt C:\Windows\system32\drivers\aswMonFlt.sys
17:16:39.0910 0304 aswMonFlt - ok
17:16:39.0941 0304 [ 57768C7DB4681F2510F247F82EF31D4F ] aswRdr C:\Windows\System32\Drivers\aswrdr2.sys
17:16:39.0941 0304 aswRdr - ok
17:16:39.0988 0304 [ E71D826A1F3CE9C9DE3E77F2D02AFFBF ] aswSnx C:\Windows\system32\drivers\aswSnx.sys
17:16:40.0019 0304 aswSnx - ok
17:16:40.0050 0304 [ 538A32E2C99BF073D4CA76C30BEDAA60 ] aswSP C:\Windows\system32\drivers\aswSP.sys
17:16:40.0066 0304 aswSP - ok
17:16:40.0097 0304 [ 6EDC79D73745FD44C41B55B2D13D0B70 ] aswTdi C:\Windows\system32\drivers\aswTdi.sys
17:16:40.0113 0304 aswTdi - ok
17:16:40.0144 0304 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
17:16:40.0191 0304 AsyncMac - ok
17:16:40.0206 0304 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\Windows\system32\DRIVERS\atapi.sys
17:16:40.0222 0304 atapi - ok
17:16:40.0269 0304 [ 07721A77180EDD4D39CCB865BF63C7FD ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
17:16:40.0315 0304 AudioEndpointBuilder - ok
17:16:40.0315 0304 [ 07721A77180EDD4D39CCB865BF63C7FD ] AudioSrv C:\Windows\System32\Audiosrv.dll
17:16:40.0362 0304 AudioSrv - ok
17:16:40.0471 0304 [ 8FA553E9AE69808D99C164733A0F9590 ] avast! Antivirus C:\Program Files\AVAST Software\Avast\AvastSvc.exe
17:16:40.0471 0304 avast! Antivirus - ok
17:16:40.0503 0304 [ 371428CF0F71934CB0F2344823ADFA32 ] avgtp C:\Windows\system32\drivers\avgtpx64.sys
17:16:40.0518 0304 avgtp - ok
17:16:40.0534 0304 [ B20B5FA5CA050E9926E4D1DB81501B32 ] AxInstSV C:\Windows\System32\AxInstSV.dll
17:16:40.0565 0304 AxInstSV - ok
17:16:40.0612 0304 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\Windows\system32\DRIVERS\bxvbda.sys
17:16:40.0643 0304 b06bdrv - ok
17:16:40.0674 0304 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
17:16:40.0705 0304 b57nd60a - ok
17:16:40.0737 0304 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\Windows\System32\bdesvc.dll
17:16:40.0752 0304 BDESVC - ok
17:16:40.0783 0304 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\Windows\system32\drivers\Beep.sys
17:16:40.0830 0304 Beep - ok
17:16:40.0877 0304 [ 4992C609A6315671463E30F6512BC022 ] BFE C:\Windows\System32\bfe.dll
17:16:40.0924 0304 BFE - ok
17:16:40.0971 0304 [ 7F0C323FE3DA28AA4AA1BDA3F575707F ] BITS C:\Windows\system32\qmgr.dll
17:16:41.0017 0304 BITS - ok
17:16:41.0049 0304 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
17:16:41.0095 0304 blbdrive - ok
17:16:41.0127 0304 [ 19D20159708E152267E53B66677A4995 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
17:16:41.0158 0304 bowser - ok
17:16:41.0173 0304 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
17:16:41.0220 0304 BrFiltLo - ok
17:16:41.0236 0304 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
17:16:41.0251 0304 BrFiltUp - ok
17:16:41.0283 0304 [ 5C2F352A4E961D72518261257AAE204B ] BridgeMP C:\Windows\system32\DRIVERS\bridge.sys
17:16:41.0314 0304 BridgeMP - ok
17:16:41.0361 0304 [ 6B054C67AAA87843504E8E3C09102009 ] Browser C:\Windows\System32\browser.dll
17:16:41.0376 0304 Browser - ok
17:16:41.0423 0304 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\Windows\System32\Drivers\Brserid.sys
17:16:41.0454 0304 Brserid - ok
17:16:41.0470 0304 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
17:16:41.0501 0304 BrSerWdm - ok
17:16:41.0532 0304 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
17:16:41.0579 0304 BrUsbMdm - ok
17:16:41.0595 0304 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
17:16:41.0626 0304 BrUsbSer - ok
17:16:41.0641 0304 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
17:16:41.0673 0304 BTHMODEM - ok
17:16:41.0704 0304 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\Windows\system32\bthserv.dll
17:16:41.0751 0304 bthserv - ok
17:16:41.0751 0304 catchme - ok
17:16:41.0782 0304 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
17:16:41.0844 0304 cdfs - ok
17:16:41.0875 0304 [ 83D2D75E1EFB81B3450C18131443F7DB ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
17:16:41.0891 0304 cdrom - ok
17:16:41.0907 0304 [ 312E2F82AF11E79906898AC3E3D58A1F ] CertPropSvc C:\Windows\System32\certprop.dll
17:16:41.0969 0304 CertPropSvc - ok
17:16:41.0985 0304 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\Windows\system32\DRIVERS\circlass.sys
17:16:42.0016 0304 circlass - ok
17:16:42.0063 0304 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\Windows\system32\CLFS.sys
17:16:42.0078 0304 CLFS - ok
17:16:42.0156 0304 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
17:16:42.0156 0304 clr_optimization_v2.0.50727_32 - ok
17:16:42.0187 0304 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
17:16:42.0203 0304 clr_optimization_v2.0.50727_64 - ok
17:16:42.0265 0304 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
17:16:42.0265 0304 clr_optimization_v4.0.30319_32 - ok
17:16:42.0281 0304 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
17:16:42.0297 0304 clr_optimization_v4.0.30319_64 - ok
17:16:42.0312 0304 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
17:16:42.0343 0304 CmBatt - ok
17:16:42.0375 0304 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\Windows\system32\DRIVERS\cmdide.sys
17:16:42.0390 0304 cmdide - ok
17:16:42.0437 0304 [ CA7720B73446FDDEC5C69519C1174C98 ] CNG C:\Windows\system32\Drivers\cng.sys
17:16:42.0453 0304 CNG - ok
17:16:42.0484 0304 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
17:16:42.0484 0304 Compbatt - ok
17:16:42.0499 0304 [ F26B3A86F6FA87CA360B879581AB4123 ] CompositeBus C:\Windows\system32\DRIVERS\CompositeBus.sys
17:16:42.0531 0304 CompositeBus - ok
17:16:42.0531 0304 COMSysApp - ok
17:16:42.0546 0304 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
17:16:42.0562 0304 crcdisk - ok
17:16:42.0609 0304 [ BAF19B633933A9FB4883D27D66C39E9A ] CryptSvc C:\Windows\system32\cryptsvc.dll
17:16:42.0655 0304 CryptSvc - ok
17:16:42.0702 0304 [ 7266972E86890E2B30C0C322E906B027 ] DcomLaunch C:\Windows\system32\rpcss.dll
17:16:42.0749 0304 DcomLaunch - ok
17:16:42.0780 0304 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\Windows\System32\defragsvc.dll
17:16:42.0827 0304 defragsvc - ok
17:16:42.0858 0304 [ 9C253CE7311CA60FC11C774692A13208 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
17:16:42.0889 0304 DfsC - ok
17:16:42.0921 0304 [ CE3B9562D997F69B330D181A8875960F ] Dhcp C:\Windows\system32\dhcpcore.dll
17:16:42.0952 0304 Dhcp - ok
17:16:42.0983 0304 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\Windows\system32\drivers\discache.sys
17:16:43.0030 0304 discache - ok
17:16:43.0077 0304 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\Windows\system32\DRIVERS\disk.sys
17:16:43.0077 0304 Disk - ok
17:16:43.0123 0304 [ 85CF424C74A1D5EC33533E1DBFF9920A ] Dnscache C:\Windows\System32\dnsrslvr.dll
17:16:43.0155 0304 Dnscache - ok
17:16:43.0186 0304 [ 14452ACDB09B70964C8C21BF80A13ACB ] dot3svc C:\Windows\System32\dot3svc.dll
17:16:43.0248 0304 dot3svc - ok
17:16:43.0264 0304 [ 8C2BA6BEA949EE6E68385F5692BAFB94 ] DPS C:\Windows\system32\dps.dll
17:16:43.0295 0304 DPS - ok
17:16:43.0326 0304 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
17:16:43.0357 0304 drmkaud - ok
17:16:43.0404 0304 [ 46571ED73AE84469DCA53081D33CF3C8 ] dtsoftbus01 C:\Windows\system32\DRIVERS\dtsoftbus01.sys
17:16:43.0404 0304 dtsoftbus01 - ok
17:16:43.0451 0304 [ 1633B9ABF52784A1331476397A48CBEF ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
17:16:43.0467 0304 DXGKrnl - ok
17:16:43.0513 0304 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\Windows\System32\eapsvc.dll
17:16:43.0560 0304 EapHost - ok
17:16:43.0638 0304 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\Windows\system32\DRIVERS\evbda.sys
17:16:43.0716 0304 ebdrv - ok
17:16:43.0763 0304 [ 156F6159457D0AA7E59B62681B56EB90 ] EFS C:\Windows\System32\lsass.exe
17:16:43.0779 0304 EFS - ok
17:16:43.0841 0304 [ 47C071994C3F649F23D9CD075AC9304A ] ehRecvr C:\Windows\ehome\ehRecvr.exe
17:16:43.0872 0304 ehRecvr - ok
17:16:43.0903 0304 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\Windows\ehome\ehsched.exe
17:16:43.0935 0304 ehSched - ok
17:16:43.0966 0304 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys
17:16:43.0981 0304 elxstor - ok
17:16:44.0013 0304 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\Windows\system32\DRIVERS\errdev.sys
17:16:44.0044 0304 ErrDev - ok
17:16:44.0091 0304 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\Windows\system32\es.dll
17:16:44.0122 0304 EventSystem - ok
17:16:44.0153 0304 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\Windows\system32\drivers\exfat.sys
17:16:44.0184 0304 exfat - ok
17:16:44.0215 0304 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\Windows\system32\drivers\fastfat.sys
17:16:44.0262 0304 fastfat - ok
17:16:44.0293 0304 [ D607B2F1BEE3992AA6C2C92C0A2F0855 ] Fax C:\Windows\system32\fxssvc.exe
17:16:44.0325 0304 Fax - ok
17:16:44.0356 0304 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\Windows\system32\DRIVERS\fdc.sys
17:16:44.0371 0304 fdc - ok
17:16:44.0403 0304 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\Windows\system32\fdPHost.dll
17:16:44.0449 0304 fdPHost - ok
17:16:44.0465 0304 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\Windows\system32\fdrespub.dll
17:16:44.0496 0304 FDResPub - ok
17:16:44.0527 0304 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
17:16:44.0543 0304 FileInfo - ok
17:16:44.0543 0304 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
17:16:44.0605 0304 Filetrace - ok
17:16:44.0652 0304 [ BB0667B0171B632B97EA759515476F07 ] FLEXnet Licensing Service C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
17:16:44.0668 0304 FLEXnet Licensing Service - ok
17:16:44.0683 0304 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
17:16:44.0699 0304 flpydisk - ok
17:16:44.0730 0304 [ F7866AF72ABBAF84B1FA5AA195378C59 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
17:16:44.0746 0304 FltMgr - ok
17:16:44.0793 0304 [ CB5E4B9C319E3C6BB363EB7E58A4A051 ] FontCache C:\Windows\system32\FntCache.dll
17:16:44.0855 0304 FontCache - ok
17:16:44.0917 0304 [ 8D89E3131C27FDD6932189CB785E1B7A ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
17:16:44.0933 0304 FontCache3.0.0.0 - ok
17:16:44.0949 0304 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
17:16:44.0964 0304 FsDepends - ok
17:16:44.0995 0304 [ D3E3F93D67821A2DB2B3D9FAC2DC2064 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
17:16:44.0995 0304 Fs_Rec - ok
17:16:45.0042 0304 [ AE87BA80D0EC3B57126ED2CDC15B24ED ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
17:16:45.0058 0304 fvevol - ok
17:16:45.0073 0304 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys
17:16:45.0089 0304 gagp30kx - ok
17:16:45.0151 0304 [ E53EE18A21C025DEABCFE0F72FC481BB ] GameConsoleService C:\Program Files (x86)\HP Games\HP Game Console\GameConsoleService.exe
17:16:45.0167 0304 GameConsoleService - ok
17:16:45.0214 0304 [ FE5AB4525BC2EC68B9119A6E5D40128B ] gpsvc C:\Windows\System32\gpsvc.dll
17:16:45.0245 0304 gpsvc - ok
17:16:45.0307 0304 [ 506708142BC63DABA64F2D3AD1DCD5BF ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
17:16:45.0323 0304 gupdate - ok
17:16:45.0323 0304 [ 506708142BC63DABA64F2D3AD1DCD5BF ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
17:16:45.0339 0304 gupdatem - ok
17:16:45.0354 0304 [ 5D4BC124FAAE6730AC002CDB67BF1A1C ] gusvc C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
17:16:45.0370 0304 gusvc - ok
17:16:45.0417 0304 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
17:16:45.0432 0304 hcw85cir - ok
17:16:45.0463 0304 [ 6410F6F415B2A5A9037224C41DA8BF12 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
17:16:45.0495 0304 HdAudAddService - ok
17:16:45.0510 0304 [ 0A49913402747A0B67DE940FB42CBDBB ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys
17:16:45.0526 0304 HDAudBus - ok
17:16:45.0557 0304 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys
17:16:45.0573 0304 HidBatt - ok
17:16:45.0588 0304 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
17:16:45.0619 0304 HidBth - ok
17:16:45.0651 0304 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
17:16:45.0682 0304 HidIr - ok
17:16:45.0713 0304 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\Windows\System32\hidserv.dll
17:16:45.0760 0304 hidserv - ok
17:16:45.0791 0304 [ B3BF6B5B50006DEF50B66306D99FCF6F ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
17:16:45.0791 0304 HidUsb - ok
17:16:45.0822 0304 [ EFA58EDE58DD74388FFD04CB32681518 ] hkmsvc C:\Windows\system32\kmsvc.dll
17:16:45.0869 0304 hkmsvc - ok
17:16:45.0885 0304 [ 046B2673767CA626E2CFB7FDF735E9E8 ] HomeGroupListener C:\Windows\system32\ListSvc.dll
17:16:45.0916 0304 HomeGroupListener - ok
17:16:45.0947 0304 [ 06A7422224D9865A5613710A089987DF ] HomeGroupProvider C:\Windows\system32\provsvc.dll
17:16:45.0978 0304 HomeGroupProvider - ok
17:16:46.0041 0304 [ 58C91CCA61A948DC6E789C93C05A1D6F ] HP Health Check Service C:\Program Files (x86)\Hewlett-Packard\HP Health Check\hphc_service.exe
17:16:46.0072 0304 HP Health Check Service ( UnsignedFile.Multi.Generic ) - warning
17:16:46.0072 0304 HP Health Check Service - detected UnsignedFile.Multi.Generic (1)
17:16:46.0103 0304 [ EF3EA06057132138B4E5895A61601DBE ] hpqwmiex C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe
17:16:46.0119 0304 hpqwmiex - ok
17:16:46.0150 0304 [ 0886D440058F203EBA0E1825E4355914 ] HpSAMD C:\Windows\system32\DRIVERS\HpSAMD.sys
17:16:46.0165 0304 HpSAMD - ok
17:16:46.0212 0304 [ B6492D01712A22FF3FEA25A999DBD321 ] HPWMISVC C:\Program Files\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe
17:16:46.0228 0304 HPWMISVC ( UnsignedFile.Multi.Generic ) - warning
17:16:46.0228 0304 HPWMISVC - detected UnsignedFile.Multi.Generic (1)
17:16:46.0259 0304 [ CEE049CAC4EFA7F4E1E4AD014414A5D4 ] HTTP C:\Windows\system32\drivers\HTTP.sys
17:16:46.0321 0304 HTTP - ok
17:16:46.0337 0304 [ F17766A19145F111856378DF337A5D79 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
17:16:46.0353 0304 hwpolicy - ok
17:16:46.0353 0304 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\Windows\system32\DRIVERS\i8042prt.sys
17:16:46.0368 0304 i8042prt - ok
17:16:46.0399 0304 [ BE7D72FCF442C26975942007E0831241 ] iaStor C:\Windows\system32\DRIVERS\iaStor.sys
17:16:46.0415 0304 iaStor - ok
17:16:46.0462 0304 [ B75E45C564E944A2657167D197AB29DA ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
17:16:46.0477 0304 iaStorV - ok
17:16:46.0540 0304 [ 2F2BE70D3E02B6FA877921AB9516D43C ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
17:16:46.0555 0304 idsvc - ok
17:16:46.0758 0304 [ 677AA5991026A65ADA128C4B59CF2BAD ] igfx C:\Windows\system32\DRIVERS\igdkmd64.sys
17:16:46.0914 0304 igfx - ok
17:16:46.0945 0304 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys
17:16:46.0961 0304 iirsp - ok
17:16:46.0992 0304 [ C5B4683680DF085B57BC53E5EF34861F ] IKEEXT C:\Windows\System32\ikeext.dll
17:16:47.0055 0304 IKEEXT - ok
17:16:47.0133 0304 [ A3BCBD0F710580A07D1B929D787D36CE ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
17:16:47.0179 0304 IntcAzAudAddService - ok
17:16:47.0195 0304 [ CFC68CA36A63637E8CA69669EE3693DA ] IntcHdmiAddService C:\Windows\system32\drivers\IntcHdmi.sys
17:16:47.0226 0304 IntcHdmiAddService - ok
17:16:47.0257 0304 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\Windows\system32\DRIVERS\intelide.sys
17:16:47.0273 0304 intelide - ok
17:16:47.0304 0304 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
17:16:47.0320 0304 intelppm - ok
17:16:47.0351 0304 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\Windows\system32\ipbusenum.dll
17:16:47.0398 0304 IPBusEnum - ok
17:16:47.0413 0304 [ 722DD294DF62483CECAAE6E094B4D695 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
17:16:47.0460 0304 IpFilterDriver - ok
17:16:47.0476 0304 [ E2B4A4494DB7CB9B89B55CA268C337C5 ] IPMIDRV C:\Windows\system32\DRIVERS\IPMIDrv.sys
17:16:47.0507 0304 IPMIDRV - ok
17:16:47.0523 0304 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
17:16:47.0569 0304 IPNAT - ok
17:16:47.0585 0304 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
17:16:47.0601 0304 IRENUM - ok
17:16:47.0616 0304 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\Windows\system32\DRIVERS\isapnp.sys
17:16:47.0632 0304 isapnp - ok
17:16:47.0647 0304 [ FA4D2557DE56D45B0A346F93564BE6E1 ] iScsiPrt C:\Windows\system32\DRIVERS\msiscsi.sys
17:16:47.0663 0304 iScsiPrt - ok
17:16:47.0679 0304 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
17:16:47.0694 0304 kbdclass - ok
17:16:47.0710 0304 [ 6DEF98F8541E1B5DCEB2C822A11F7323 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
17:16:47.0757 0304 kbdhid - ok
17:16:47.0772 0304 [ 156F6159457D0AA7E59B62681B56EB90 ] KeyIso C:\Windows\system32\lsass.exe
17:16:47.0788 0304 KeyIso - ok
17:16:47.0819 0304 [ 4F4B5FDE429416877DE7143044582EB5 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
17:16:47.0835 0304 KSecDD - ok
17:16:47.0850 0304 [ 6F40465A44ECDC1731BEFAFEC5BDD03C ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
17:16:47.0866 0304 KSecPkg - ok
17:16:47.0881 0304 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
17:16:47.0928 0304 ksthunk - ok
17:16:47.0944 0304 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\Windows\system32\msdtckrm.dll
17:16:48.0006 0304 KtmRm - ok
17:16:48.0053 0304 [ 81F1D04D4D0E433099365127375FD501 ] LanmanServer C:\Windows\System32\srvsvc.dll
17:16:48.0084 0304 LanmanServer - ok
17:16:48.0131 0304 [ 27026EAC8818E8A6C00A1CAD2F11D29A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
17:16:48.0178 0304 LanmanWorkstation - ok
17:16:48.0225 0304 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
17:16:48.0271 0304 lltdio - ok
17:16:48.0318 0304 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\Windows\System32\lltdsvc.dll
17:16:48.0365 0304 lltdsvc - ok
17:16:48.0381 0304 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\Windows\System32\lmhsvc.dll
17:16:48.0412 0304 lmhosts - ok
17:16:48.0443 0304 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys
17:16:48.0443 0304 LSI_FC - ok
17:16:48.0474 0304 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys
17:16:48.0490 0304 LSI_SAS - ok
17:16:48.0505 0304 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys
17:16:48.0521 0304 LSI_SAS2 - ok
17:16:48.0552 0304 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys
17:16:48.0568 0304 LSI_SCSI - ok
17:16:48.0583 0304 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\Windows\system32\drivers\luafv.sys
17:16:48.0630 0304 luafv - ok
17:16:48.0661 0304 [ F84C8F1000BC11E3B7B23CBD3BAFF111 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
17:16:48.0693 0304 Mcx2Svc - ok
17:16:48.0724 0304 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\Windows\system32\DRIVERS\megasas.sys
17:16:48.0739 0304 megasas - ok
17:16:48.0771 0304 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys
17:16:48.0786 0304 MegaSR - ok
17:16:48.0958 0304 Microsoft SharePoint Workspace Audit Service - ok
17:16:48.0973 0304 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\Windows\system32\mmcss.dll
17:16:49.0036 0304 MMCSS - ok
17:16:49.0067 0304 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\Windows\system32\drivers\modem.sys
17:16:49.0114 0304 Modem - ok
17:16:49.0129 0304 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\Windows\system32\DRIVERS\monitor.sys
17:16:49.0145 0304 monitor - ok
17:16:49.0176 0304 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
17:16:49.0192 0304 mouclass - ok
17:16:49.0207 0304 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
17:16:49.0239 0304 mouhid - ok
17:16:49.0254 0304 [ 791AF66C4D0E7C90A3646066386FB571 ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
17:16:49.0270 0304 mountmgr - ok
17:16:49.0317 0304 [ 05BF204EC0E82CC4A054DB189C8A3D84 ] MpFilter C:\Windows\system32\DRIVERS\MpFilter.sys
17:16:49.0332 0304 MpFilter - ok
17:16:49.0348 0304 [ 609D1D87649ECC19796F4D76D4C15CEA ] mpio C:\Windows\system32\DRIVERS\mpio.sys
17:16:49.0363 0304 mpio - ok
17:16:49.0379 0304 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
17:16:49.0410 0304 mpsdrv - ok
17:16:49.0426 0304 [ 30524261BB51D96D6FCBAC20C810183C ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
17:16:49.0457 0304 MRxDAV - ok
17:16:49.0488 0304 [ 040D62A9D8AD28922632137ACDD984F2 ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
17:16:49.0504 0304 mrxsmb - ok
17:16:49.0551 0304 [ F0067552F8F9B33D7C59403AB808A3CB ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
17:16:49.0582 0304 mrxsmb10 - ok
17:16:49.0597 0304 [ 3C142D31DE9F2F193218A53FE2632051 ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
17:16:49.0629 0304 mrxsmb20 - ok
17:16:49.0660 0304 [ 5C37497276E3B3A5488B23A326A754B7 ] msahci C:\Windows\system32\DRIVERS\msahci.sys
17:16:49.0675 0304 msahci - ok
17:16:49.0707 0304 [ 8D27B597229AED79430FB9DB3BCBFBD0 ] msdsm C:\Windows\system32\DRIVERS\msdsm.sys
17:16:49.0722 0304 msdsm - ok
17:16:49.0753 0304 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\Windows\System32\msdtc.exe
17:16:49.0785 0304 MSDTC - ok
17:16:49.0800 0304 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\Windows\system32\drivers\Msfs.sys
17:16:49.0847 0304 Msfs - ok
17:16:49.0847 0304 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
17:16:49.0909 0304 mshidkmdf - ok
17:16:49.0925 0304 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\Windows\system32\DRIVERS\msisadrv.sys
17:16:49.0941 0304 msisadrv - ok
17:16:49.0972 0304 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
17:16:50.0003 0304 MSiSCSI - ok
17:16:50.0019 0304 msiserver - ok
17:16:50.0034 0304 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
17:16:50.0065 0304 MSKSSRV - ok
17:16:50.0128 0304 [ CC8E4F72F21340A4D3A3D4DB50313EF5 ] MsMpSvc c:\Program Files\Microsoft Security Client\MsMpEng.exe
17:16:50.0143 0304 MsMpSvc - ok
17:16:50.0159 0304 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
17:16:50.0221 0304 MSPCLOCK - ok
17:16:50.0237 0304 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
17:16:50.0284 0304 MSPQM - ok
17:16:50.0299 0304 [ 89CB141AA8616D8C6A4610FA26C60964 ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
17:16:50.0315 0304 MsRPC - ok
17:16:50.0346 0304 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\Windows\system32\DRIVERS\mssmbios.sys
17:16:50.0346 0304 mssmbios - ok
17:16:50.0362 0304 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
17:16:50.0409 0304 MSTEE - ok
17:16:50.0424 0304 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys
17:16:50.0455 0304 MTConfig - ok
17:16:50.0455 0304 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\Windows\system32\Drivers\mup.sys
17:16:50.0471 0304 Mup - ok
17:16:50.0502 0304 [ 4987E079A4530FA737A128BE54B63B12 ] napagent C:\Windows\system32\qagentRT.dll
17:16:50.0565 0304 napagent - ok
17:16:50.0596 0304 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
17:16:50.0627 0304 NativeWifiP - ok
17:16:50.0643 0304 [ CAD515DBD07D082BB317D9928CE8962C ] NDIS C:\Windows\system32\drivers\ndis.sys
17:16:50.0674 0304 NDIS - ok
17:16:50.0689 0304 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
17:16:50.0721 0304 NdisCap - ok
17:16:50.0752 0304 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
17:16:50.0783 0304 NdisTapi - ok
17:16:50.0799 0304 [ F105BA1E22BF1F2EE8F005D4305E4BEC ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
17:16:50.0861 0304 Ndisuio - ok
17:16:50.0877 0304 [ 557DFAB9CA1FCB036AC77564C010DAD3 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
17:16:50.0923 0304 NdisWan - ok
17:16:50.0939 0304 [ 659B74FB74B86228D6338D643CD3E3CF ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
17:16:50.0970 0304 NDProxy - ok
17:16:51.0001 0304 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
17:16:51.0048 0304 NetBIOS - ok
17:16:51.0064 0304 [ 9162B273A44AB9DCE5B44362731D062A ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
17:16:51.0111 0304 NetBT - ok
17:16:51.0126 0304 [ 156F6159457D0AA7E59B62681B56EB90 ] Netlogon C:\Windows\system32\lsass.exe
17:16:51.0142 0304 Netlogon - ok
17:16:51.0173 0304 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\Windows\System32\netman.dll
17:16:51.0220 0304 Netman - ok
17:16:51.0235 0304 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
17:16:51.0251 0304 NetMsmqActivator - ok
17:16:51.0251 0304 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
17:16:51.0267 0304 NetPipeActivator - ok
17:16:51.0282 0304 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\Windows\System32\netprofm.dll
17:16:51.0345 0304 netprofm - ok
17:16:51.0345 0304 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
17:16:51.0360 0304 NetTcpActivator - ok
17:16:51.0360 0304 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
17:16:51.0376 0304 NetTcpPortSharing - ok
17:16:51.0485 0304 [ 64428DFDAF6E88366CB51F45A79C5F69 ] netw5v64 C:\Windows\system32\DRIVERS\netw5v64.sys
17:16:51.0563 0304 netw5v64 - ok
17:16:51.0610 0304 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys
17:16:51.0610 0304 nfrd960 - ok
17:16:51.0641 0304 [ 5FF89F20317309D28AC1EDEB0CD1BA72 ] NisDrv C:\Windows\system32\DRIVERS\NisDrvWFP.sys
17:16:51.0657 0304 NisDrv - ok
17:16:51.0688 0304 [ 79E80B10FE8F6662E0C9162A68C43444 ] NisSrv c:\Program Files\Microsoft Security Client\NisSrv.exe
17:16:51.0703 0304 NisSrv - ok
17:16:51.0750 0304 [ D9A0CE66046D6EFA0C61BAA885CBA0A8 ] NlaSvc C:\Windows\System32\nlasvc.dll
17:16:51.0797 0304 NlaSvc - ok
17:16:51.0859 0304 [ 1E8281A0BC4358CF816754E0A195D329 ] NovacomD C:\Program Files\Palm, Inc\novacomd\amd64\novacomd.exe
17:16:51.0859 0304 NovacomD ( UnsignedFile.Multi.Generic ) - warning
17:16:51.0859 0304 NovacomD - detected UnsignedFile.Multi.Generic (1)
17:16:51.0875 0304 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\Windows\system32\drivers\Npfs.sys
17:16:51.0922 0304 Npfs - ok
17:16:51.0953 0304 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\Windows\system32\nsisvc.dll
17:16:52.0000 0304 nsi - ok
17:16:52.0015 0304 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
17:16:52.0062 0304 nsiproxy - ok
17:16:52.0140 0304 [ 184C189D4FC416978550FC599BB4EDDA ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
17:16:52.0171 0304 Ntfs - ok
17:16:52.0187 0304 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\Windows\system32\drivers\Null.sys
17:16:52.0249 0304 Null - ok
17:16:52.0281 0304 [ A4D9C9A608A97F59307C2F2600EDC6A4 ] nvraid C:\Windows\system32\drivers\nvraid.sys
17:16:52.0296 0304 nvraid - ok
17:16:52.0312 0304 [ 6C1D5F70E7A6A3FD1C90D840EDC048B9 ] nvstor C:\Windows\system32\drivers\nvstor.sys
17:16:52.0327 0304 nvstor - ok
17:16:52.0343 0304 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\Windows\system32\DRIVERS\nv_agp.sys
17:16:52.0359 0304 nv_agp - ok
17:16:52.0390 0304 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\Windows\system32\DRIVERS\ohci1394.sys
17:16:52.0405 0304 ohci1394 - ok
17:16:52.0468 0304 [ 4965B005492CBA7719E82B71E3245495 ] ose64 C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
17:16:52.0483 0304 ose64 - ok
17:16:52.0624 0304 [ 61BFFB5F57AD12F83AB64B7181829B34 ] osppsvc C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
17:16:52.0702 0304 osppsvc - ok
17:16:52.0733 0304 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
17:16:52.0764 0304 p2pimsvc - ok
17:16:52.0795 0304 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\Windows\system32\p2psvc.dll
17:16:52.0827 0304 p2psvc - ok
17:16:52.0842 0304 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\Windows\system32\DRIVERS\parport.sys
17:16:52.0842 0304 Parport - ok
17:16:52.0873 0304 [ 90061B1ACFE8CCAA5345750FFE08D8B8 ] partmgr C:\Windows\system32\drivers\partmgr.sys
17:16:52.0889 0304 partmgr - ok
17:16:52.0920 0304 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll
17:16:52.0936 0304 PcaSvc - ok
17:16:52.0967 0304 [ F36F6504009F2FB0DFD1B17A116AD74B ] pci C:\Windows\system32\DRIVERS\pci.sys
17:16:52.0983 0304 pci - ok
17:16:52.0998 0304 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\Windows\system32\DRIVERS\pciide.sys
17:16:53.0014 0304 pciide - ok
17:16:53.0045 0304 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
17:16:53.0061 0304 pcmcia - ok
17:16:53.0076 0304 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\Windows\system32\drivers\pcw.sys
17:16:53.0092 0304 pcw - ok
17:16:53.0107 0304 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\Windows\system32\drivers\peauth.sys
17:16:53.0170 0304 PEAUTH - ok
17:16:53.0248 0304 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\Windows\SysWow64\perfhost.exe
17:16:53.0263 0304 PerfHost - ok
17:16:53.0326 0304 [ 557E9A86F65F0DE18C9B6751DFE9D3F1 ] pla C:\Windows\system32\pla.dll
17:16:53.0388 0304 pla - ok
17:16:53.0435 0304 [ 98B1721B8718164293B9701B98C52D77 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
17:16:53.0466 0304 PlugPlay - ok
17:16:53.0513 0304 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
17:16:53.0513 0304 PNRPAutoReg - ok
17:16:53.0529 0304 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
17:16:53.0544 0304 PNRPsvc - ok
17:16:53.0591 0304 [ 166EB40D1F5B47E615DE3D0FFFE5F243 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
17:16:53.0653 0304 PolicyAgent - ok
17:16:53.0685 0304 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\Windows\system32\umpo.dll
17:16:53.0731 0304 Power - ok
17:16:53.0763 0304 [ 27CC19E81BA5E3403C48302127BDA717 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
17:16:53.0809 0304 PptpMiniport - ok
17:16:53.0841 0304 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\Windows\system32\DRIVERS\processr.sys
17:16:53.0856 0304 Processor - ok
17:16:53.0903 0304 [ 97293447431311C06703368AD0F6C4BE ] ProfSvc C:\Windows\system32\profsvc.dll
17:16:53.0919 0304 ProfSvc - ok
17:16:53.0934 0304 [ 156F6159457D0AA7E59B62681B56EB90 ] ProtectedStorage C:\Windows\system32\lsass.exe
17:16:53.0934 0304 ProtectedStorage - ok
17:16:53.0950 0304 [ EE992183BD8EAEFD9973F352E587A299 ] Psched C:\Windows\system32\DRIVERS\pacer.sys
17:16:53.0981 0304 Psched - ok
17:16:54.0043 0304 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys
17:16:54.0075 0304 ql2300 - ok
17:16:54.0090 0304 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys
17:16:54.0106 0304 ql40xx - ok
17:16:54.0137 0304 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\Windows\system32\qwave.dll
17:16:54.0153 0304 QWAVE - ok
17:16:54.0168 0304 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
17:16:54.0215 0304 QWAVEdrv - ok
17:16:54.0231 0304 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
17:16:54.0277 0304 RasAcd - ok
17:16:54.0293 0304 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
17:16:54.0324 0304 RasAgileVpn - ok
17:16:54.0340 0304 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\Windows\System32\rasauto.dll
17:16:54.0402 0304 RasAuto - ok
17:16:54.0418 0304 [ 87A6E852A22991580D6D39ADC4790463 ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
17:16:54.0465 0304 Rasl2tp - ok
17:16:54.0496 0304 [ 47394ED3D16D053F5906EFE5AB51CC83 ] RasMan C:\Windows\System32\rasmans.dll
17:16:54.0543 0304 RasMan - ok
17:16:54.0589 0304 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
17:16:54.0636 0304 RasPppoe - ok
17:16:54.0667 0304 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
17:16:54.0699 0304 RasSstp - ok
17:16:54.0730 0304 [ 3BAC8142102C15D59A87757C1D41DCE5 ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
17:16:54.0792 0304 rdbss - ok
17:16:54.0808 0304 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
17:16:54.0839 0304 rdpbus - ok
17:16:54.0855 0304 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
17:16:54.0886 0304 RDPCDD - ok
17:16:54.0901 0304 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
17:16:54.0948 0304 RDPENCDD - ok
17:16:54.0979 0304 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
17:16:55.0011 0304 RDPREFMP - ok
17:16:55.0042 0304 [ 447DE7E3DEA39D422C1504F245B668B1 ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
17:16:55.0073 0304 RDPWD - ok
17:16:55.0104 0304 [ 634B9A2181D98F15941236886164EC8B ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
17:16:55.0120 0304 rdyboost - ok
17:16:55.0151 0304 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\Windows\System32\mprdim.dll
17:16:55.0198 0304 RemoteAccess - ok
17:16:55.0229 0304 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll
17:16:55.0276 0304 RemoteRegistry - ok
17:16:55.0385 0304 [ 498EB62A160674E793FA40FD65390625 ] RichVideo C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe
17:16:55.0401 0304 RichVideo - ok
17:16:55.0401 0304 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
17:16:55.0463 0304 RpcEptMapper - ok
17:16:55.0479 0304 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\Windows\system32\locator.exe
17:16:55.0510 0304 RpcLocator - ok
17:16:55.0541 0304 [ 7266972E86890E2B30C0C322E906B027 ] RpcSs C:\Windows\System32\rpcss.dll
17:16:55.0572 0304 RpcSs - ok
17:16:55.0603 0304 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
17:16:55.0635 0304 rspndr - ok
17:16:55.0666 0304 [ 483DF0B58CA532E5240E59DC41F30AA2 ] RSUSBSTOR C:\Windows\system32\Drivers\RtsUStor.sys
17:16:55.0681 0304 RSUSBSTOR - ok
17:16:55.0728 0304 [ 777FC2C418465404E3D8A290DC247D24 ] RTL8167 C:\Windows\system32\DRIVERS\Rt64win7.sys
17:16:55.0744 0304 RTL8167 - ok
17:16:55.0775 0304 [ 03E0627C26943916A7276AC5306206C7 ] rtl8192se C:\Windows\system32\DRIVERS\rtl8192se.sys
17:16:55.0806 0304 rtl8192se - ok
17:16:55.0822 0304 [ 156F6159457D0AA7E59B62681B56EB90 ] SamSs C:\Windows\system32\lsass.exe
17:16:55.0837 0304 SamSs - ok
17:16:55.0853 0304 [ E3BBB89983DAF5622C1D50CF49F28227 ] sbp2port C:\Windows\system32\DRIVERS\sbp2port.sys
17:16:55.0869 0304 sbp2port - ok
17:16:55.0884 0304 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\Windows\System32\SCardSvr.dll
17:16:55.0931 0304 SCardSvr - ok
17:16:55.0947 0304 [ C94DA20C7E3BA1DCA269BC8460D98387 ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
17:16:55.0993 0304 scfilter - ok
17:16:56.0056 0304 [ 624D0F5FF99428BB90A5B8A4123E918E ] Schedule C:\Windows\system32\schedsvc.dll
17:16:56.0087 0304 Schedule - ok
17:16:56.0118 0304 [ 312E2F82AF11E79906898AC3E3D58A1F ] SCPolicySvc C:\Windows\System32\certprop.dll
17:16:56.0165 0304 SCPolicySvc - ok
17:16:56.0181 0304 [ 54E47AD086782D3AE9417C155CDCEB9B ] sdbus C:\Windows\system32\DRIVERS\sdbus.sys
17:16:56.0212 0304 sdbus - ok
17:16:56.0243 0304 [ 765A27C3279CE11D14CB9E4F5869FCA5 ] SDRSVC C:\Windows\System32\SDRSVC.dll
17:16:56.0259 0304 SDRSVC - ok
17:16:56.0274 0304 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys
17:16:56.0321 0304 secdrv - ok
17:16:56.0352 0304 [ 463B386EBC70F98DA5DFF85F7E654346 ] seclogon C:\Windows\system32\seclogon.dll
17:16:56.0383 0304 seclogon - ok
17:16:56.0415 0304 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\Windows\system32\sens.dll
17:16:56.0446 0304 SENS - ok
17:16:56.0461 0304 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\Windows\system32\sensrsvc.dll
17:16:56.0493 0304 SensrSvc - ok
17:16:56.0508 0304 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
17:16:56.0524 0304 Serenum - ok
17:16:56.0555 0304 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\Windows\system32\DRIVERS\serial.sys
17:16:56.0555 0304 Serial - ok
17:16:56.0586 0304 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys
17:16:56.0617 0304 sermouse - ok
17:16:56.0695 0304 [ 7B51D631CACD0EEEAA7ED20EDB1A7AFA ] Service Sendori C:\Program Files (x86)\Sendori\Sendori.Service.exe
17:16:56.0695 0304 Service Sendori - ok
17:16:56.0742 0304 [ C3BC61CE47FF6F4E88AB8A3B429A36AF ] SessionEnv C:\Windows\system32\sessenv.dll
17:16:56.0773 0304 SessionEnv - ok
17:16:56.0805 0304 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\Windows\system32\DRIVERS\sffdisk.sys
17:16:56.0820 0304 sffdisk - ok
17:16:56.0836 0304 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\Windows\system32\DRIVERS\sffp_mmc.sys
17:16:56.0867 0304 sffp_mmc - ok
17:16:56.0867 0304 [ 5588B8C6193EB1522490C122EB94DFFA ] sffp_sd C:\Windows\system32\DRIVERS\sffp_sd.sys
17:16:56.0883 0304 sffp_sd - ok
17:16:56.0914 0304 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
17:16:56.0929 0304 sfloppy - ok
17:16:56.0961 0304 [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess C:\Windows\System32\ipnathlp.dll
17:16:57.0007 0304 SharedAccess - ok
17:16:57.0023 0304 [ 0298AC45D0EFFFB2DB4BAA7DD186E7BF ] ShellHWDetection C:\Windows\System32\shsvcs.dll
17:16:57.0070 0304 ShellHWDetection - ok
17:16:57.0101 0304 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys
17:16:57.0101 0304 SiSRaid2 - ok
17:16:57.0148 0304 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys
17:16:57.0163 0304 SiSRaid4 - ok
17:16:57.0179 0304 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\Windows\system32\DRIVERS\smb.sys
17:16:57.0226 0304 Smb - ok
17:16:57.0522 0304 [ 4E9E7C7D857EA1C83BE6160DAE25B4DA ] sndappv2 C:\Program Files (x86)\Sendori\sndappv2.exe
17:16:57.0585 0304 sndappv2 - ok
17:16:57.0616 0304 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\Windows\System32\snmptrap.exe
17:16:57.0647 0304 SNMPTRAP - ok
17:16:57.0663 0304 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\Windows\system32\drivers\spldr.sys
17:16:57.0678 0304 spldr - ok
17:16:57.0709 0304 [ 567977DC43CC13C4C35ED7084C0B84D5 ] Spooler C:\Windows\System32\spoolsv.exe
17:16:57.0741 0304 Spooler - ok
17:16:57.0819 0304 [ 913D843498553A1BC8F8DBAD6358E49F ] sppsvc C:\Windows\system32\sppsvc.exe
17:16:57.0881 0304 sppsvc - ok
17:16:57.0897 0304 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\Windows\system32\sppuinotify.dll
17:16:57.0943 0304 sppuinotify - ok
17:16:57.0975 0304 [ 2408C0366D96BCDF63E8F1C78E4A29C5 ] srv C:\Windows\system32\DRIVERS\srv.sys
17:16:57.0990 0304 srv - ok
17:16:58.0021 0304 [ 76548F7B818881B47D8D1AE1BE9C11F8 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
17:16:58.0053 0304 srv2 - ok
17:16:58.0084 0304 [ 0C4540311E11664B245A263E1154CEF8 ] SrvHsfHDA C:\Windows\system32\DRIVERS\VSTAZL6.SYS
17:16:58.0099 0304 SrvHsfHDA - ok
17:16:58.0146 0304 [ 02071D207A9858FBE3A48CBFD59C4A04 ] SrvHsfV92 C:\Windows\system32\DRIVERS\VSTDPV6.SYS
17:16:58.0162 0304 SrvHsfV92 - ok
17:16:58.0193 0304 [ 18E40C245DBFAF36FD0134A7EF2DF396 ] SrvHsfWinac C:\Windows\system32\DRIVERS\VSTCNXT6.SYS
17:16:58.0209 0304 SrvHsfWinac - ok
17:16:58.0240 0304 [ 0AF6E19D39C70844C5CAA8FB0183C36E ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
17:16:58.0271 0304 srvnet - ok
17:16:58.0302 0304 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
17:16:58.0365 0304 SSDPSRV - ok
17:16:58.0396 0304 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\Windows\system32\sstpsvc.dll
17:16:58.0443 0304 SstpSvc - ok
17:16:58.0474 0304 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys
17:16:58.0489 0304 stexstor - ok
17:16:58.0521 0304 [ 52D0E33B681BD0F33FDC08812FEE4F7D ] stisvc C:\Windows\System32\wiaservc.dll
17:16:58.0552 0304 stisvc - ok
17:16:58.0599 0304 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\Windows\system32\DRIVERS\swenum.sys
17:16:58.0599 0304 swenum - ok
17:16:58.0661 0304 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\Windows\System32\swprv.dll
17:16:58.0708 0304 swprv - ok
17:16:58.0739 0304 [ 91853F78B68F9F036670291F5EDD4EAE ] SynTP C:\Windows\system32\DRIVERS\SynTP.sys
17:16:58.0755 0304 SynTP - ok
17:16:58.0801 0304 [ 3C1284516A62078FB68F768DE4F1A7BE ] SysMain C:\Windows\system32\sysmain.dll
17:16:58.0848 0304 SysMain - ok
17:16:58.0879 0304 [ 238935C3CF2854886DC7CBB2A0E2CC66 ] TabletInputService C:\Windows\System32\TabSvc.dll
17:16:58.0895 0304 TabletInputService - ok
17:16:58.0911 0304 [ 884264AC597B690C5707C89723BB8E7B ] TapiSrv C:\Windows\System32\tapisrv.dll
17:16:58.0942 0304 TapiSrv - ok
17:16:58.0957 0304 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\Windows\System32\tbssvc.dll
17:16:58.0989 0304 TBS - ok
17:16:59.0051 0304 [ 624C5B3AA4C99B3184BB922D9ECE3FF0 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
17:16:59.0098 0304 Tcpip - ok
17:16:59.0113 0304 [ 624C5B3AA4C99B3184BB922D9ECE3FF0 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
17:16:59.0160 0304 TCPIP6 - ok
17:16:59.0191 0304 [ 76D078AF6F587B162D50210F761EB9ED ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
17:16:59.0223 0304 tcpipreg - ok
17:16:59.0254 0304 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
17:16:59.0269 0304 TDPIPE - ok
17:16:59.0301 0304 [ 7518F7BCFD4B308ABC9192BACAF6C970 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
17:16:59.0332 0304 TDTCP - ok
17:16:59.0363 0304 [ 079125C4B17B01FCAEEBCE0BCB290C0F ] tdx C:\Windows\system32\DRIVERS\tdx.sys
17:16:59.0394 0304 tdx - ok
17:16:59.0410 0304 [ C448651339196C0E869A355171875522 ] TermDD C:\Windows\system32\DRIVERS\termdd.sys
17:16:59.0425 0304 TermDD - ok
17:16:59.0457 0304 [ 0F05EC2887BFE197AD82A13287D2F404 ] TermService C:\Windows\System32\termsrv.dll
17:16:59.0519 0304 TermService - ok
17:16:59.0535 0304 [ F0344071948D1A1FA732231785A0664C ] Themes C:\Windows\system32\themeservice.dll
17:16:59.0566 0304 Themes - ok
17:16:59.0613 0304 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\Windows\system32\mmcss.dll
17:16:59.0644 0304 THREADORDER - ok
17:16:59.0659 0304 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\Windows\System32\trkwks.dll
17:16:59.0691 0304 TrkWks - ok
17:16:59.0753 0304 [ 840F7FB849F5887A49BA18C13B2DA920 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
17:16:59.0769 0304 TrustedInstaller - ok
17:16:59.0800 0304 [ 61B96C26131E37B24E93327A0BD1FB95 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
17:16:59.0831 0304 tssecsrv - ok
17:16:59.0847 0304 [ 3836171A2CDF3AF8EF10856DB9835A70 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
17:16:59.0909 0304 tunnel - ok
17:16:59.0956 0304 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys
17:16:59.0971 0304 uagp35 - ok
17:17:00.0003 0304 [ C06E6F4679CEB8F430B90A51D76D8D3C ] udfs C:\Windows\system32\DRIVERS\udfs.sys
17:17:00.0018 0304 udfs - ok
17:17:00.0049 0304 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\Windows\system32\UI0Detect.exe
17:17:00.0049 0304 UI0Detect - ok
17:17:00.0081 0304 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\Windows\system32\DRIVERS\uliagpkx.sys
17:17:00.0096 0304 uliagpkx - ok
17:17:00.0112 0304 [ EAB6C35E62B1B0DB0D1B48B671D3A117 ] umbus C:\Windows\system32\DRIVERS\umbus.sys
17:17:00.0127 0304 umbus - ok
17:17:00.0159 0304 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\Windows\system32\DRIVERS\umpass.sys
17:17:00.0190 0304 UmPass - ok
17:17:00.0221 0304 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\Windows\System32\upnphost.dll
17:17:00.0283 0304 upnphost - ok
17:17:00.0315 0304 [ 77B01BC848298223A95D4EC23E1785A1 ] usbaudio C:\Windows\system32\drivers\usbaudio.sys
17:17:00.0346 0304 usbaudio - ok
17:17:00.0393 0304 [ 537A4E03D7103C12D42DFD8FFDB5BDC9 ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
17:17:00.0424 0304 usbccgp - ok
17:17:00.0439 0304 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\Windows\system32\DRIVERS\usbcir.sys
17:17:00.0471 0304 usbcir - ok
17:17:00.0502 0304 [ FBB21EBE49F6D560DB37AC25FBC68E66 ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
17:17:00.0517 0304 usbehci - ok
17:17:00.0533 0304 [ 6B7A8A99C4A459E73C286A6763EA24CC ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
17:17:00.0549 0304 usbhub - ok
17:17:00.0564 0304 [ 8C88AA7617B4CBC2E4BED61D26B33A27 ] usbohci C:\Windows\system32\drivers\usbohci.sys
17:17:00.0580 0304 usbohci - ok
17:17:00.0595 0304 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
17:17:00.0611 0304 usbprint - ok
17:17:00.0627 0304 [ AAA2513C8AED8B54B189FD0C6B1634C0 ] usbscan C:\Windows\system32\DRIVERS\usbscan.sys
17:17:00.0642 0304 usbscan - ok
17:17:00.0673 0304 [ F39983647BC1F3E6100778DDFE9DCE29 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
17:17:00.0705 0304 USBSTOR - ok
17:17:00.0751 0304 [ 0B5B3B2DF3FD1709618ACFA50B8392B0 ] usbuhci C:\Windows\system32\DRIVERS\usbuhci.sys
17:17:00.0767 0304 usbuhci - ok
17:17:00.0783 0304 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\Windows\System32\uxsms.dll
17:17:00.0845 0304 UxSms - ok
17:17:00.0861 0304 [ 156F6159457D0AA7E59B62681B56EB90 ] VaultSvc C:\Windows\system32\lsass.exe
17:17:00.0876 0304 VaultSvc - ok
17:17:00.0892 0304 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\Windows\system32\DRIVERS\vdrvroot.sys
17:17:00.0907 0304 vdrvroot - ok
17:17:00.0939 0304 [ 44D73E0BBC1D3C8981304BA15135C2F2 ] vds C:\Windows\System32\vds.exe
17:17:00.0954 0304 vds - ok
17:17:00.0985 0304 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
17:17:01.0001 0304 vga - ok
17:17:01.0032 0304 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\Windows\System32\drivers\vga.sys
17:17:01.0079 0304 VgaSave - ok
17:17:01.0110 0304 [ C82E748660F62A242B2DFAC1442F22A4 ] vhdmp C:\Windows\system32\DRIVERS\vhdmp.sys
17:17:01.0110 0304 vhdmp - ok
17:17:01.0126 0304 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\Windows\system32\DRIVERS\viaide.sys
17:17:01.0141 0304 viaide - ok
17:17:01.0173 0304 [ 2B1A3DAE2B4E70DBBA822B7A03FBD4A3 ] volmgr C:\Windows\system32\DRIVERS\volmgr.sys
17:17:01.0188 0304 volmgr - ok
17:17:01.0204 0304 [ 99B0CBB569CA79ACAED8C91461D765FB ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
17:17:01.0219 0304 volmgrx - ok
17:17:01.0235 0304 [ 58F82EED8CA24B461441F9C3E4F0BF5C ] volsnap C:\Windows\system32\DRIVERS\volsnap.sys
17:17:01.0251 0304 volsnap - ok
17:17:01.0266 0304 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys
17:17:01.0282 0304 vsmraid - ok
17:17:01.0329 0304 [ 787898BF9FB6D7BD87A36E2D95C899BA ] VSS C:\Windows\system32\vssvc.exe
17:17:01.0360 0304 VSS - ok
17:17:01.0469 0304 [ 7D110D645030C05A06C3CD08D1E47D0A ] vToolbarUpdater13.2.0 C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\13.2.0\ToolbarUpdater.exe
17:17:01.0485 0304 vToolbarUpdater13.2.0 - ok
17:17:01.0516 0304 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\Windows\system32\DRIVERS\vwifibus.sys
17:17:01.0531 0304 vwifibus - ok
17:17:01.0563 0304 [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys
17:17:01.0609 0304 vwififlt - ok
17:17:01.0641 0304 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\Windows\system32\w32time.dll
17:17:01.0687 0304 W32Time - ok
17:17:01.0719 0304 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys
17:17:01.0750 0304 WacomPen - ok
17:17:01.0781 0304 [ 47CA49400643EFFD3F1C9A27E1D69324 ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
17:17:01.0828 0304 WANARP - ok
17:17:01.0828 0304 [ 47CA49400643EFFD3F1C9A27E1D69324 ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
17:17:01.0875 0304 Wanarpv6 - ok
17:17:01.0921 0304 [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe
17:17:01.0953 0304 WatAdminSvc - ok
17:17:01.0999 0304 [ 5AB1BB85BD8B5089CC5D64200DEDAE68 ] wbengine C:\Windows\system32\wbengine.exe
17:17:02.0046 0304 wbengine - ok
17:17:02.0077 0304 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
17:17:02.0093 0304 WbioSrvc - ok
17:17:02.0109 0304 [ DD1BAE8EBFC653824D29CCF8C9054D68 ] wcncsvc C:\Windows\System32\wcncsvc.dll
17:17:02.0140 0304 wcncsvc - ok
17:17:02.0155 0304 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
17:17:02.0187 0304 WcsPlugInService - ok
17:17:02.0218 0304 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\Windows\system32\DRIVERS\wd.sys
17:17:02.0218 0304 Wd - ok
17:17:02.0265 0304 [ 441BD2D7B4F98134C3A4F9FA570FD250 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
17:17:02.0280 0304 Wdf01000 - ok
17:17:02.0311 0304 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\Windows\system32\wdi.dll
17:17:02.0343 0304 WdiServiceHost - ok
17:17:02.0343 0304 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\Windows\system32\wdi.dll
17:17:02.0358 0304 WdiSystemHost - ok
17:17:02.0389 0304 [ 733006127F235BE7C35354EBEE7B9A7B ] WebClient C:\Windows\System32\webclnt.dll
17:17:02.0421 0304 WebClient - ok
17:17:02.0452 0304 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\Windows\system32\wecsvc.dll
17:17:02.0499 0304 Wecsvc - ok
17:17:02.0514 0304 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\Windows\System32\wercplsupport.dll
17:17:02.0577 0304 wercplsupport - ok
17:17:02.0592 0304 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\Windows\System32\WerSvc.dll
17:17:02.0639 0304 WerSvc - ok
17:17:02.0639 0304 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
17:17:02.0686 0304 WfpLwf - ok
17:17:02.0686 0304 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\Windows\system32\drivers\wimmount.sys
17:17:02.0701 0304 WIMMount - ok
17:17:02.0717 0304 WinDefend - ok
17:17:02.0733 0304 WinHttpAutoProxySvc - ok
17:17:02.0795 0304 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
17:17:02.0826 0304 Winmgmt - ok
17:17:02.0904 0304 [ 41FBB751936B387F9179E7F03A74FE29 ] WinRM C:\Windows\system32\WsmSvc.dll
17:17:02.0982 0304 WinRM - ok
17:17:03.0013 0304 [ 817EAFF5D38674EDD7713B9DFB8E9791 ] WinUSB C:\Windows\system32\DRIVERS\WinUSB.sys
17:17:03.0045 0304 WinUSB - ok
17:17:03.0076 0304 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\Windows\System32\wlansvc.dll
17:17:03.0091 0304 Wlansvc - ok
17:17:03.0123 0304 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\Windows\system32\DRIVERS\wmiacpi.sys
17:17:03.0138 0304 WmiAcpi - ok
17:17:03.0169 0304 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
17:17:03.0185 0304 wmiApSrv - ok
17:17:03.0216 0304 WMPNetworkSvc - ok
17:17:03.0216 0304 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\Windows\System32\wpcsvc.dll
17:17:03.0232 0304 WPCSvc - ok
17:17:03.0247 0304 [ 2E57DDF2880A7E52E76F41C7E96D327B ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
17:17:03.0310 0304 WPDBusEnum - ok
17:17:03.0325 0304 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
17:17:03.0372 0304 ws2ifsl - ok
17:17:03.0388 0304 [ 8F9F3969933C02DA96EB0F84576DB43E ] wscsvc C:\Windows\system32\wscsvc.dll
17:17:03.0403 0304 wscsvc - ok
17:17:03.0419 0304 WSearch - ok
17:17:03.0497 0304 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv C:\Windows\system32\wuaueng.dll
17:17:03.0544 0304 wuauserv - ok
17:17:03.0559 0304 [ 7CADC74271DD6461C452C271B30BD378 ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
17:17:03.0622 0304 WudfPf - ok
17:17:03.0637 0304 [ 3B197AF0FFF08AA66B6B2241CA538D64 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
17:17:03.0669 0304 WUDFRd - ok
17:17:03.0715 0304 [ B551D6637AA0E132C18AC6E504F7B79B ] wudfsvc C:\Windows\System32\WUDFSvc.dll
17:17:03.0747 0304 wudfsvc - ok
17:17:03.0762 0304 [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc C:\Windows\System32\wwansvc.dll
17:17:03.0793 0304 WwanSvc - ok
17:17:03.0825 0304 [ B3EEACF62445E24FBB2CD4B0FB4DB026 ] yukonw7 C:\Windows\system32\DRIVERS\yk62x64.sys
17:17:03.0871 0304 yukonw7 - ok
17:17:03.0871 0304 ================ Scan global ===============================
17:17:03.0903 0304 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
17:17:03.0949 0304 [ 79CDA06F75AD5373DD447F57575C4400 ] C:\Windows\system32\winsrv.dll
17:17:03.0965 0304 [ 79CDA06F75AD5373DD447F57575C4400 ] C:\Windows\system32\winsrv.dll
17:17:03.0996 0304 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
17:17:04.0027 0304 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
17:17:04.0027 0304 [Global] - ok
17:17:04.0027 0304 ================ Scan MBR ==================================
17:17:04.0043 0304 [ 53686036AA8CEA3923D0EAD2C16B7C54 ] \Device\Harddisk0\DR0
17:17:04.0215 0304 \Device\Harddisk0\DR0 ( TDSS File System ) - warning
17:17:04.0215 0304 \Device\Harddisk0\DR0 - detected TDSS File System (1)
17:17:04.0215 0304 ================ Scan VBR ==================================
17:17:04.0215 0304 [ AE27C7FF620F69E154378A89A34E8331 ] \Device\Harddisk0\DR0\Partition1
17:17:04.0215 0304 \Device\Harddisk0\DR0\Partition1 - ok
17:17:04.0246 0304 [ ADB9AA13B939BE3875CBB850EF658F50 ] \Device\Harddisk0\DR0\Partition2
17:17:04.0246 0304 \Device\Harddisk0\DR0\Partition2 - ok
17:17:04.0293 0304 [ D467E9AF3AE10846995719E0759E99EE ] \Device\Harddisk0\DR0\Partition3
17:17:04.0293 0304 \Device\Harddisk0\DR0\Partition3 - ok
17:17:04.0308 0304 [ BD4D5BC3B7505D5D08829212A657A3C5 ] \Device\Harddisk0\DR0\Partition4
17:17:04.0308 0304 \Device\Harddisk0\DR0\Partition4 - ok
17:17:04.0308 0304 ================ Scan active images ========================
17:17:04.0308 0304 [ 3E588B60EC061686BA05D33574A344C6 ] C:\Windows\System32\drivers\crashdmp.sys
17:17:04.0308 0304 C:\Windows\System32\drivers\crashdmp.sys - ok
17:17:04.0308 0304 [ BE7D72FCF442C26975942007E0831241 ] C:\Windows\System32\drivers\iaStor.sys
17:17:04.0308 0304 C:\Windows\System32\drivers\iaStor.sys - ok
17:17:04.0324 0304 [ 814DB88F2641691575A455CF25354098 ] C:\Windows\System32\drivers\dumpfve.sys
17:17:04.0324 0304 C:\Windows\System32\drivers\dumpfve.sys - ok
17:17:04.0324 0304 [ 9899284589F75FA8724FF3D16AED75C1 ] C:\Windows\System32\drivers\null.sys
17:17:04.0324 0304 C:\Windows\System32\drivers\null.sys - ok
17:17:04.0339 0304 [ 16A47CE2DECC9B099349A5F840654746 ] C:\Windows\System32\drivers\beep.sys
17:17:04.0339 0304 C:\Windows\System32\drivers\beep.sys - ok
17:17:04.0339 0304 [ 371428CF0F71934CB0F2344823ADFA32 ] C:\Windows\System32\drivers\avgtpx64.sys
17:17:04.0339 0304 C:\Windows\System32\drivers\avgtpx64.sys - ok
17:17:04.0339 0304 [ 53E92A310193CB3C03BEA963DE7D9CFC ] C:\Windows\System32\drivers\vga.sys
17:17:04.0339 0304 C:\Windows\System32\drivers\vga.sys - ok
17:17:04.0355 0304 [ E7353D59C9842BC7299FAEB7E7E09340 ] C:\Windows\System32\drivers\videoprt.sys
17:17:04.0355 0304 C:\Windows\System32\drivers\videoprt.sys - ok
17:17:04.0355 0304 [ FC438D1430B28618E2D0C7C332A710AD ] C:\Windows\System32\drivers\watchdog.sys
17:17:04.0355 0304 C:\Windows\System32\drivers\watchdog.sys - ok
17:17:04.0371 0304 [ BB5971A4F00659529A5C44831AF22365 ] C:\Windows\System32\drivers\RDPENCDD.sys
17:17:04.0371 0304 C:\Windows\System32\drivers\RDPENCDD.sys - ok
17:17:04.0371 0304 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] C:\Windows\System32\drivers\msfs.sys
17:17:04.0371 0304 C:\Windows\System32\drivers\msfs.sys - ok
17:17:04.0386 0304 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] C:\Windows\System32\drivers\npfs.sys
17:17:04.0386 0304 C:\Windows\System32\drivers\npfs.sys - ok
17:17:04.0386 0304 [ 0CA6FE26ACC7FFEE1BD0463F40835F32 ] C:\Windows\System32\drivers\tdi.sys
17:17:04.0386 0304 C:\Windows\System32\drivers\tdi.sys - ok
17:17:04.0402 0304 [ 079125C4B17B01FCAEEBCE0BCB290C0F ] C:\Windows\System32\drivers\tdx.sys
17:17:04.0402 0304 C:\Windows\System32\drivers\tdx.sys - ok
17:17:04.0402 0304 [ 6EDC79D73745FD44C41B55B2D13D0B70 ] C:\Windows\System32\drivers\aswTdi.sys
17:17:04.0402 0304 C:\Windows\System32\drivers\aswTdi.sys - ok
17:17:04.0402 0304 [ DB9D6C6B2CD95A9CA414D045B627422E ] C:\Windows\System32\drivers\afd.sys
17:17:04.0402 0304 C:\Windows\System32\drivers\afd.sys - ok
17:17:04.0417 0304 [ 57768C7DB4681F2510F247F82EF31D4F ] C:\Windows\System32\drivers\aswRdr2.sys
17:17:04.0417 0304 C:\Windows\System32\drivers\aswRdr2.sys - ok
17:17:04.0417 0304 [ 9162B273A44AB9DCE5B44362731D062A ] C:\Windows\System32\drivers\netbt.sys
17:17:04.0417 0304 C:\Windows\System32\drivers\netbt.sys - ok
17:17:04.0433 0304 [ 611B23304BF067451A9FDEE01FBDD725 ] C:\Windows\System32\drivers\wfplwf.sys
17:17:04.0433 0304 C:\Windows\System32\drivers\wfplwf.sys - ok
17:17:04.0433 0304 [ 6BCC1D7D2FD2453957C5479A32364E52 ] C:\Windows\System32\drivers\ws2ifsl.sys
17:17:04.0433 0304 C:\Windows\System32\drivers\ws2ifsl.sys - ok
17:17:04.0449 0304 [ 86743D9F5D2B1048062B14B1D84501C4 ] C:\Windows\System32\drivers\netbios.sys
17:17:04.0449 0304 C:\Windows\System32\drivers\netbios.sys - ok
17:17:04.0449 0304 [ E7F5AE18AF4168178A642A9247C63001 ] C:\Windows\System32\drivers\nsiproxy.sys
17:17:04.0449 0304 C:\Windows\System32\drivers\nsiproxy.sys - ok
17:17:04.0449 0304 [ EE992183BD8EAEFD9973F352E587A299 ] C:\Windows\System32\drivers\pacer.sys
17:17:04.0449 0304 C:\Windows\System32\drivers\pacer.sys - ok
17:17:04.0464 0304 [ 3BAC8142102C15D59A87757C1D41DCE5 ] C:\Windows\System32\drivers\rdbss.sys
17:17:04.0464 0304 C:\Windows\System32\drivers\rdbss.sys - ok
17:17:04.0464 0304 [ 6A3D66263414FF0D6FA754C646612F3F ] C:\Windows\System32\drivers\vwififlt.sys
17:17:04.0464 0304 C:\Windows\System32\drivers\vwififlt.sys - ok
17:17:04.0464 0304 [ 9C253CE7311CA60FC11C774692A13208 ] C:\Windows\System32\drivers\dfsc.sys
17:17:04.0464 0304 C:\Windows\System32\drivers\dfsc.sys - ok
17:17:04.0480 0304 [ 3836171A2CDF3AF8EF10856DB9835A70 ] C:\Windows\System32\drivers\tunnel.sys
17:17:04.0480 0304 C:\Windows\System32\drivers\tunnel.sys - ok
17:17:04.0480 0304 [ 1911A3356FA3F77CCC825CCBAC038C2A ] C:\Windows\System32\smss.exe
17:17:04.0480 0304 C:\Windows\System32\smss.exe - ok
17:17:04.0495 0304 [ B37C3BF3FFC97177B1A9C016B7C8CDD6 ] C:\Windows\System32\drivers\usbport.sys
17:17:04.0495 0304 C:\Windows\System32\drivers\usbport.sys - ok
17:17:04.0495 0304 [ 3AE12EC776AB9830462E8197FB5C88CF ] C:\Windows\System32\autochk.exe
17:17:04.0495 0304 C:\Windows\System32\autochk.exe - ok
17:17:04.0511 0304 [ 0A49913402747A0B67DE940FB42CBDBB ] C:\Windows\System32\drivers\hdaudbus.sys
17:17:04.0511 0304 C:\Windows\System32\drivers\hdaudbus.sys - ok
17:17:04.0511 0304 [ FBB21EBE49F6D560DB37AC25FBC68E66 ] C:\Windows\System32\drivers\usbehci.sys
17:17:04.0511 0304 C:\Windows\System32\drivers\usbehci.sys - ok
17:17:04.0511 0304 [ 0B5B3B2DF3FD1709618ACFA50B8392B0 ] C:\Windows\System32\drivers\usbuhci.sys
17:17:04.0511 0304 C:\Windows\System32\drivers\usbuhci.sys - ok
17:17:04.0527 0304 [ 68DB778AC4FD7896CE2F153353BA15C8 ] C:\Windows\System32\ntdll.dll
17:17:04.0527 0304 C:\Windows\System32\ntdll.dll - ok
17:17:04.0527 0304 [ 777FC2C418465404E3D8A290DC247D24 ] C:\Windows\System32\drivers\Rt64win7.sys
17:17:04.0527 0304 C:\Windows\System32\drivers\Rt64win7.sys - ok
17:17:04.0542 0304 [ 03E0627C26943916A7276AC5306206C7 ] C:\Windows\System32\drivers\rtl8192se.sys
17:17:04.0542 0304 C:\Windows\System32\drivers\rtl8192se.sys - ok
17:17:04.0542 0304 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] C:\Windows\System32\drivers\vwifibus.sys
17:17:04.0542 0304 C:\Windows\System32\drivers\vwifibus.sys - ok
17:17:04.0558 0304 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] C:\Windows\System32\drivers\i8042prt.sys
17:17:04.0558 0304 C:\Windows\System32\drivers\i8042prt.sys - ok
17:17:04.0558 0304 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] C:\Windows\System32\drivers\kbdclass.sys
17:17:04.0558 0304 C:\Windows\System32\drivers\kbdclass.sys - ok
17:17:04.0573 0304 [ F96F7835C8818895C47F6213E3A01F5D ] C:\Windows\System32\drivers\usbd.sys
17:17:04.0573 0304 C:\Windows\System32\drivers\usbd.sys - ok
17:17:04.0573 0304 [ 83D2D75E1EFB81B3450C18131443F7DB ] C:\Windows\System32\drivers\cdrom.sys
17:17:04.0573 0304 C:\Windows\System32\drivers\cdrom.sys - ok
17:17:04.0589 0304 [ 7D27EA49F3C1F687D357E77A470AEA99 ] C:\Windows\System32\drivers\mouclass.sys
17:17:04.0589 0304 C:\Windows\System32\drivers\mouclass.sys - ok
17:17:04.0589 0304 [ 91853F78B68F9F036670291F5EDD4EAE ] C:\Windows\System32\drivers\SynTP.sys
17:17:04.0589 0304 C:\Windows\System32\drivers\SynTP.sys - ok
17:17:04.0589 0304 [ F6FF8944478594D0E414D3F048F0D778 ] C:\Windows\System32\drivers\wmiacpi.sys
17:17:04.0589 0304 C:\Windows\System32\drivers\wmiacpi.sys - ok
17:17:04.0605 0304 [ 7ECFF9B22276B73F43A99A15A6094E90 ] C:\Windows\System32\drivers\agilevpn.sys
17:17:04.0605 0304 C:\Windows\System32\drivers\agilevpn.sys - ok
17:17:04.0605 0304 [ 61583EE3C3A17003C4ACD0475646B4D3 ] C:\Windows\System32\drivers\blbdrive.sys
17:17:04.0605 0304 C:\Windows\System32\drivers\blbdrive.sys - ok
17:17:04.0620 0304 [ F26B3A86F6FA87CA360B879581AB4123 ] C:\Windows\System32\drivers\CompositeBus.sys
17:17:04.0620 0304 C:\Windows\System32\drivers\CompositeBus.sys - ok
17:17:04.0620 0304 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] C:\Windows\System32\drivers\mssmbios.sys
17:17:04.0620 0304 C:\Windows\System32\drivers\mssmbios.sys - ok
17:17:04.0636 0304 [ 30639C932D9FEF22B31268FE25A1B6E5 ] C:\Windows\System32\drivers\ndistapi.sys
17:17:04.0636 0304 C:\Windows\System32\drivers\ndistapi.sys - ok
17:17:04.0636 0304 [ 87A6E852A22991580D6D39ADC4790463 ] C:\Windows\System32\drivers\rasl2tp.sys
17:17:04.0636 0304 C:\Windows\System32\drivers\rasl2tp.sys - ok
17:17:04.0636 0304 [ 557DFAB9CA1FCB036AC77564C010DAD3 ] C:\Windows\System32\drivers\ndiswan.sys
17:17:04.0636 0304 C:\Windows\System32\drivers\ndiswan.sys - ok
17:17:04.0651 0304 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] C:\Windows\System32\drivers\raspppoe.sys
17:17:04.0651 0304 C:\Windows\System32\drivers\raspppoe.sys - ok
17:17:04.0651 0304 [ 27CC19E81BA5E3403C48302127BDA717 ] C:\Windows\System32\drivers\raspptp.sys
17:17:04.0651 0304 C:\Windows\System32\drivers\raspptp.sys - ok
17:17:04.0667 0304 [ E8B1E447B008D07FF47D016C2B0EEECB ] C:\Windows\System32\drivers\rassstp.sys
17:17:04.0667 0304 C:\Windows\System32\drivers\rassstp.sys - ok
17:17:04.0667 0304 [ 5C7AF4A20F5BF67042B2E613D123D111 ] C:\Windows\System32\drivers\ks.sys
17:17:04.0667 0304 C:\Windows\System32\drivers\ks.sys - ok
17:17:04.0683 0304 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] C:\Windows\System32\drivers\swenum.sys
17:17:04.0683 0304 C:\Windows\System32\drivers\swenum.sys - ok
17:17:04.0683 0304 [ C448651339196C0E869A355171875522 ] C:\Windows\System32\drivers\termdd.sys
17:17:04.0683 0304 C:\Windows\System32\drivers\termdd.sys - ok
17:17:04.0683 0304 [ 46571ED73AE84469DCA53081D33CF3C8 ] C:\Windows\System32\drivers\dtsoftbus01.sys
17:17:04.0683 0304 C:\Windows\System32\drivers\dtsoftbus01.sys - ok
17:17:04.0698 0304 [ EAB6C35E62B1B0DB0D1B48B671D3A117 ] C:\Windows\System32\drivers\umbus.sys
17:17:04.0698 0304 C:\Windows\System32\drivers\umbus.sys - ok
17:17:04.0714 0304 [ 0ADC83218B66A6DB380C330836F3E36D ] C:\Windows\System32\drivers\fastfat.sys
17:17:04.0714 0304 C:\Windows\System32\drivers\fastfat.sys - ok
17:17:04.0714 0304 [ 6B7A8A99C4A459E73C286A6763EA24CC ] C:\Windows\System32\drivers\usbhub.sys
17:17:04.0714 0304 C:\Windows\System32\drivers\usbhub.sys - ok
17:17:04.0714 0304 [ 8E7F88A62E1AA28F15C0D6784E4C78B6 ] C:\Windows\System32\kernel32.dll
17:17:04.0714 0304 C:\Windows\System32\kernel32.dll - ok
17:17:04.0729 0304 [ 6A4EA4C29FBF78112AE20013FB71E9C1 ] C:\Windows\System32\setupapi.dll
17:17:04.0729 0304 C:\Windows\System32\setupapi.dll - ok
17:17:04.0729 0304 [ 3D165C53E40236A68B7102D1A622D4E0 ] C:\Windows\System32\wininet.dll
17:17:04.0729 0304 C:\Windows\System32\wininet.dll - ok
17:17:04.0745 0304 [ F7CE0C81C545364020ED8203CF0A633E ] C:\Windows\System32\difxapi.dll
17:17:04.0745 0304 C:\Windows\System32\difxapi.dll - ok
17:17:04.0745 0304 [ 83404DCBCE4925B6A5A77C5170F46D86 ] C:\Windows\System32\sechost.dll
17:17:04.0745 0304 C:\Windows\System32\sechost.dll - ok
17:17:04.0745 0304 [ 659B74FB74B86228D6338D643CD3E3CF ] C:\Windows\System32\drivers\ndproxy.sys
17:17:04.0745 0304 C:\Windows\System32\drivers\ndproxy.sys - ok
17:17:04.0761 0304 [ E1B1255D3A4B3367FE4E9C71E62E3B5A ] C:\Windows\System32\gdi32.dll
17:17:04.0761 0304 C:\Windows\System32\gdi32.dll - ok
17:17:04.0761 0304 [ 72D7B3EA16946E8F0CF7458150031CC6 ] C:\Windows\System32\user32.dll
17:17:04.0761 0304 C:\Windows\System32\user32.dll - ok
17:17:04.0776 0304 [ 48CC125A6AB6C72A13E3D3E9C39AD9D9 ] C:\Windows\System32\shell32.dll
17:17:04.0776 0304 C:\Windows\System32\shell32.dll - ok
17:17:04.0776 0304 [ 28C0B5024F5C5A438E78B188CFC81B7F ] C:\Windows\System32\normaliz.dll
17:17:04.0776 0304 C:\Windows\System32\normaliz.dll - ok
17:17:04.0776 0304 [ 48C903068B6BDAB5EF650B9CBEE85295 ] C:\Windows\System32\rpcrt4.dll
17:17:04.0776 0304 C:\Windows\System32\rpcrt4.dll - ok
17:17:04.0792 0304 [ 15BDC173EB5FA4F92B67D9FFB269A6EA ] C:\Windows\System32\shlwapi.dll
17:17:04.0792 0304 C:\Windows\System32\shlwapi.dll - ok
17:17:04.0792 0304 [ 7083F463788CB34FCC42F565D56F89E8 ] C:\Windows\System32\ws2_32.dll
17:17:04.0792 0304 C:\Windows\System32\ws2_32.dll - ok
17:17:04.0807 0304 [ 2A46451EE42BCD2C842D8AA4923FAC16 ] C:\Windows\System32\oleaut32.dll
17:17:04.0807 0304 C:\Windows\System32\oleaut32.dll - ok
17:17:04.0807 0304 [ 15A54626213EBF003F7D4C9D8380A656 ] C:\Windows\System32\imagehlp.dll
17:17:04.0807 0304 C:\Windows\System32\imagehlp.dll - ok
17:17:04.0823 0304 [ 5F2BDCA5FA0F20A6F452CF0EE2A2B18C ] C:\Windows\System32\usp10.dll
17:17:04.0823 0304 C:\Windows\System32\usp10.dll - ok
17:17:04.0823 0304 [ F94B8644F3AFE040EC6E1B6FBC9EFAA9 ] C:\Windows\System32\comdlg32.dll
17:17:04.0823 0304 C:\Windows\System32\comdlg32.dll - ok
17:17:04.0823 0304 [ D87E1E59C73C1F98D5DED5B3850C40F5 ] C:\Windows\System32\psapi.dll
17:17:04.0823 0304 C:\Windows\System32\psapi.dll - ok
17:17:04.0839 0304 [ AA2C08CE85653B1A0D2E4AB407FA176C ] C:\Windows\System32\imm32.dll
17:17:04.0839 0304 C:\Windows\System32\imm32.dll - ok
17:17:04.0839 0304 [ D202223587518B13D72D68937B7E3F70 ] C:\Windows\System32\lpk.dll
17:17:04.0839 0304 C:\Windows\System32\lpk.dll - ok
17:17:04.0854 0304 [ 579F6AFC6A6561951FA2202EFC3FE485 ] C:\Windows\System32\msvcrt.dll
17:17:04.0854 0304 C:\Windows\System32\msvcrt.dll - ok
17:17:04.0854 0304 [ C431EAF5CAA1C82CAC2534A2EAB348A3 ] C:\Windows\System32\msctf.dll
17:17:04.0854 0304 C:\Windows\System32\msctf.dll - ok
17:17:04.0870 0304 [ D841F7629505EE542E26E5F0A4D20101 ] C:\Windows\System32\iertutil.dll
17:17:04.0870 0304 C:\Windows\System32\iertutil.dll - ok
17:17:04.0870 0304 [ 25983DE69B57142039AC8D95E71CD9C9 ] C:\Windows\System32\clbcatq.dll
17:17:04.0870 0304 C:\Windows\System32\clbcatq.dll - ok
17:17:04.0870 0304 [ AC8F79017C5C1FB316930EDEAD0AF517 ] C:\Windows\System32\ole32.dll
17:17:04.0870 0304 C:\Windows\System32\ole32.dll - ok
17:17:04.0885 0304 [ 2885A3C3148F725CDA0B4C593BA8F7CE ] C:\Windows\System32\urlmon.dll
17:17:04.0885 0304 C:\Windows\System32\urlmon.dll - ok
17:17:04.0885 0304 [ 6DF46D2BD74E3DA1B45F08F10D172732 ] C:\Windows\System32\advapi32.dll
17:17:04.0885 0304 C:\Windows\System32\advapi32.dll - ok
17:17:04.0901 0304 [ E5CBF5F8623BBD1DB7B8148A66F6EBA4 ] C:\Windows\System32\Wldap32.dll
17:17:04.0901 0304 C:\Windows\System32\Wldap32.dll - ok
17:17:04.0901 0304 [ D05E03C1B2824236531F5E37334B6A8A ] C:\Windows\System32\cfgmgr32.dll
17:17:04.0901 0304 C:\Windows\System32\cfgmgr32.dll - ok
17:17:04.0901 0304 [ 06FEC9E8117103BB1141A560E98077DA ] C:\Windows\System32\devobj.dll
17:17:04.0901 0304 C:\Windows\System32\devobj.dll - ok
17:17:04.0917 0304 [ 044FE45FFD6AD40E3BBBE60B7F41BABE ] C:\Windows\System32\nsi.dll
17:17:04.0917 0304 C:\Windows\System32\nsi.dll - ok
17:17:04.0917 0304 [ 987508ED06FC097E754A91BA8A8AAD0E ] C:\Windows\System32\wintrust.dll
17:17:04.0917 0304 C:\Windows\System32\wintrust.dll - ok
17:17:04.0932 0304 [ BC052EFAD10ACA1AD69545B629F50D99 ] C:\Windows\System32\comctl32.dll
17:17:04.0932 0304 C:\Windows\System32\comctl32.dll - ok
17:17:04.0932 0304 [ 140A25BE1A1D2F6B17A019B305611A02 ] C:\Windows\System32\KernelBase.dll
17:17:04.0932 0304 C:\Windows\System32\KernelBase.dll - ok
17:17:04.0948 0304 [ D256EB74BF77026FC9A3D7193861C7AD ] C:\Windows\System32\crypt32.dll
17:17:04.0948 0304 C:\Windows\System32\crypt32.dll - ok
17:17:04.0948 0304 [ 98FB7DD3B28A92E3C0E5B4BD9D63EF01 ] C:\Windows\System32\msasn1.dll
17:17:04.0948 0304 C:\Windows\System32\msasn1.dll - ok
17:17:04.0948 0304 [ 9C278785347BCC991F8EA2999D90F58D ] C:\Windows\SysWOW64\normaliz.dll
17:17:04.0948 0304 C:\Windows\SysWOW64\normaliz.dll - ok
17:17:04.0963 0304 [ BF24D6F2ED97FE830BFD52B246F98E67 ] C:\Windows\System32\drivers\dxapi.sys
17:17:04.0963 0304 C:\Windows\System32\drivers\dxapi.sys - ok
17:17:04.0963 0304 [ E37C71EA972AD883E7841D07BC6D5F1C ] C:\Windows\System32\win32k.sys
17:17:04.0963 0304 C:\Windows\System32\win32k.sys - ok
17:17:04.0963 0304 [ E730EADB8F176DB06A378435BEB2E823 ] C:\Windows\System32\csrsrv.dll
17:17:04.0963 0304 C:\Windows\System32\csrsrv.dll - ok
17:17:04.0979 0304 [ 60C2862B4BF0FD9F582EF344C2B1EC72 ] C:\Windows\System32\csrss.exe
17:17:04.0979 0304 C:\Windows\System32\csrss.exe - ok
17:17:04.0995 0304 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\System32\basesrv.dll
17:17:04.0995 0304 C:\Windows\System32\basesrv.dll - ok
17:17:04.0995 0304 [ 79CDA06F75AD5373DD447F57575C4400 ] C:\Windows\System32\winsrv.dll
17:17:04.0995 0304 C:\Windows\System32\winsrv.dll - ok
17:17:04.0995 0304 [ FEDE0629ECB23650D48989517D4914DA ] C:\Windows\System32\drivers\dxg.sys
17:17:04.0995 0304 C:\Windows\System32\drivers\dxg.sys - ok
17:17:05.0010 0304 [ F29FE765E1448EF371CFE05BFAC74ADB ] C:\Windows\System32\tsddd.dll
17:17:05.0010 0304 C:\Windows\System32\tsddd.dll - ok
17:17:05.0010 0304 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\System32\sxssrv.dll
17:17:05.0010 0304 C:\Windows\System32\sxssrv.dll - ok
17:17:05.0026 0304 [ 94355C28C1970635A31B3FE52EB7CEBA ] C:\Windows\System32\wininit.exe
17:17:05.0026 0304 C:\Windows\System32\wininit.exe - ok
17:17:05.0026 0304 [ 2C942733A5983DD4502219FF37C7EBC7 ] C:\Windows\System32\profapi.dll
17:17:05.0026 0304 C:\Windows\System32\profapi.dll - ok
17:17:05.0026 0304 [ B9A047D231D32FDF5AF2F281E4326A9D ] C:\Windows\System32\KBDUS.DLL
17:17:05.0026 0304 C:\Windows\System32\KBDUS.DLL - ok
17:17:05.0041 0304 [ F4389DA7DBDA2E7D292D360CF8E400C7 ] C:\Windows\System32\RpcRtRemote.dll
17:17:05.0041 0304 C:\Windows\System32\RpcRtRemote.dll - ok
17:17:05.0041 0304 [ 8BEC4D6AD2864EDF68D9AD0C6AA6C6D1 ] C:\Windows\System32\vga.dll
17:17:05.0041 0304 C:\Windows\System32\vga.dll - ok
17:17:05.0057 0304 [ E30B04A8FE665C52162D70233ABEA9A3 ] C:\Windows\System32\framebuf.dll
17:17:05.0057 0304 C:\Windows\System32\framebuf.dll - ok
17:17:05.0057 0304 [ DA3E2A6FA9660CC75B471530CE88453A ] C:\Windows\System32\winlogon.exe
17:17:05.0057 0304 C:\Windows\System32\winlogon.exe - ok
17:17:05.0073 0304 [ D8C88512BA9544AE1CC2034F50ECFA12 ] C:\Windows\System32\winsta.dll
17:17:05.0073 0304 C:\Windows\System32\winsta.dll - ok
17:17:05.0073 0304 [ 456C92A9D8DB51B9938A6234BBC65FC9 ] C:\Windows\System32\sxs.dll
17:17:05.0073 0304 C:\Windows\System32\sxs.dll - ok
17:17:05.0073 0304 [ B26B1801356760841C3BC69F9F91537F ] C:\Windows\System32\WlS0WndH.dll
17:17:05.0073 0304 C:\Windows\System32\WlS0WndH.dll - ok
17:17:05.0088 0304 [ 784FA3DF338E2E8F5F0389D6FAC428AF ] C:\Windows\System32\cryptbase.dll
17:17:05.0088 0304 C:\Windows\System32\cryptbase.dll - ok
17:17:05.0088 0304 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\System32\services.exe
17:17:05.0088 0304 C:\Windows\System32\services.exe - ok
17:17:05.0104 0304 [ 156F6159457D0AA7E59B62681B56EB90 ] C:\Windows\System32\lsass.exe
17:17:05.0104 0304 C:\Windows\System32\lsass.exe - ok
17:17:05.0104 0304 [ 1F582C6C84D5243692F9C3E04D0A663F ] C:\Windows\System32\sspicli.dll
17:17:05.0104 0304 C:\Windows\System32\sspicli.dll - ok
17:17:05.0119 0304 [ 68EA2513CA68AD8F741FF4F5B8D8590C ] C:\Windows\System32\sspisrv.dll
17:17:05.0119 0304 C:\Windows\System32\sspisrv.dll - ok
17:17:05.0119 0304 [ E914A50A151DFFE63D3935226DB5E2C1 ] C:\Windows\System32\scext.dll
17:17:05.0119 0304 C:\Windows\System32\scext.dll - ok
17:17:05.0119 0304 [ 941AF3C8B0DE1B359BE22DD3288A8C8E ] C:\Windows\System32\scesrv.dll
17:17:05.0119 0304 C:\Windows\System32\scesrv.dll - ok
17:17:05.0135 0304 [ 74A0871810BF0F2AA3EB6681E9BECDD3 ] C:\Windows\System32\secur32.dll
17:17:05.0135 0304 C:\Windows\System32\secur32.dll - ok
17:17:05.0135 0304 [ D23371AB9607651937C7641A38CD52BC ] C:\Windows\System32\srvcli.dll
17:17:05.0135 0304 C:\Windows\System32\srvcli.dll - ok
17:17:05.0151 0304 [ 04FCA22B77A2E37332CC8226187AF87B ] C:\Windows\System32\lsm.exe
17:17:05.0151 0304 C:\Windows\System32\lsm.exe - ok
17:17:05.0151 0304 [ 68083118797CAF30FB2EA3E71494D67E ] C:\Windows\System32\sysntfy.dll
17:17:05.0151 0304 C:\Windows\System32\sysntfy.dll - ok
17:17:05.0151 0304 [ DEE7267C5D232A3B816866872CE199E6 ] C:\Windows\System32\wmsgapi.dll
17:17:05.0151 0304 C:\Windows\System32\wmsgapi.dll - ok
17:17:05.0166 0304 [ BFA69408620587AFDEC2E8C12CA60492 ] C:\Windows\System32\lsasrv.dll
17:17:05.0166 0304 C:\Windows\System32\lsasrv.dll - ok
17:17:05.0166 0304 [ B160ADAEFC76031D92C4FBAC0918B033 ] C:\Windows\System32\samsrv.dll
17:17:05.0166 0304 C:\Windows\System32\samsrv.dll - ok
17:17:05.0182 0304 [ 3A061472B38233BAFF9CFEFF2E49C46B ] C:\Windows\System32\cryptdll.dll
17:17:05.0182 0304 C:\Windows\System32\cryptdll.dll - ok
17:17:05.0182 0304 [ 3C073B0C596A0AF84933E7406766B040 ] C:\Windows\System32\wevtapi.dll
17:17:05.0182 0304 C:\Windows\System32\wevtapi.dll - ok
17:17:05.0197 0304 [ 7FBEBD2229EA5FD48D41B199EC2D541C ] C:\Windows\System32\authz.dll
17:17:05.0197 0304 C:\Windows\System32\authz.dll - ok
17:17:05.0197 0304 [ 86FE1B1F8FD42CD0DB641AB1CDB13093 ] C:\Windows\System32\cngaudit.dll
17:17:05.0197 0304 C:\Windows\System32\cngaudit.dll - ok
17:17:05.0197 0304 [ E08926B4E52F92FF8852BECC0E2F358A ] C:\Windows\System32\ncrypt.dll
17:17:05.0197 0304 C:\Windows\System32\ncrypt.dll - ok
17:17:05.0213 0304 [ B9A95365E52F421A20E1501935FADDA5 ] C:\Windows\System32\bcrypt.dll
17:17:05.0213 0304 C:\Windows\System32\bcrypt.dll - ok
17:17:05.0213 0304 [ 02B64609F865A39365FF88580DF11738 ] C:\Windows\System32\msprivs.dll
17:17:05.0213 0304 C:\Windows\System32\msprivs.dll - ok
17:17:05.0229 0304 [ B561B451320B0B40908A8BFD81705262 ] C:\Windows\System32\netjoin.dll
17:17:05.0229 0304 C:\Windows\System32\netjoin.dll - ok
17:17:05.0229 0304 [ 50532FCD7ECF02DD169CE5C485F02534 ] C:\Windows\System32\negoexts.dll
17:17:05.0229 0304 C:\Windows\System32\negoexts.dll - ok
17:17:05.0244 0304 [ 00B40A10E3DB79E4D3E127B9C2233A6B ] C:\Windows\System32\kerberos.dll
17:17:05.0244 0304 C:\Windows\System32\kerberos.dll - ok
17:17:05.0244 0304 [ D0C2FBB6D97416B0166478FC7AE2B212 ] C:\Windows\System32\cryptsp.dll
17:17:05.0244 0304 C:\Windows\System32\cryptsp.dll - ok
17:17:05.0244 0304 [ FC76FE3C1E1FDB761244D4F74EF560FD ] C:\Windows\System32\mswsock.dll
17:17:05.0244 0304 C:\Windows\System32\mswsock.dll - ok
17:17:05.0260 0304 [ FA4DB05923DDDEDE3196ABD09AE0F1E9 ] C:\Windows\System32\msv1_0.dll
17:17:05.0260 0304 C:\Windows\System32\msv1_0.dll - ok
17:17:05.0260 0304 [ EC7CBFF96B05ECF3D366355B3C64ADCF ] C:\Windows\System32\wship6.dll
17:17:05.0260 0304 C:\Windows\System32\wship6.dll - ok
17:17:05.0260 0304 [ 956D030D375F207B22FB111E06EF9C35 ] C:\Windows\System32\netlogon.dll
17:17:05.0260 0304 C:\Windows\System32\netlogon.dll - ok
17:17:05.0275 0304 [ E247E7DEB20C0CF0801A8AC39E9CE1DF ] C:\Windows\System32\dnsapi.dll
17:17:05.0275 0304 C:\Windows\System32\dnsapi.dll - ok
17:17:05.0291 0304 [ 8CE22E63F08613036DF8C7B00FBDF36B ] C:\Windows\System32\logoncli.dll
17:17:05.0291 0304 C:\Windows\System32\logoncli.dll - ok
17:17:05.0291 0304 [ EFC5353E4F513DEF55ED7B7872363957 ] C:\Windows\System32\atmfd.dll
17:17:05.0291 0304 C:\Windows\System32\atmfd.dll - ok
17:17:05.0307 0304 [ 90B780886BD813882CB382FF3E90E092 ] C:\Windows\System32\schannel.dll
17:17:05.0307 0304 C:\Windows\System32\schannel.dll - ok
17:17:05.0307 0304 [ 95FB6CA4374E343DDD653FCC43F9D26B ] C:\Windows\System32\wdigest.dll
17:17:05.0307 0304 C:\Windows\System32\wdigest.dll - ok
17:17:05.0307 0304 [ 5D8874A8C11DDDDE29E12DE0E2013493 ] C:\Windows\System32\rsaenh.dll
17:17:05.0307 0304 C:\Windows\System32\rsaenh.dll - ok
17:17:05.0322 0304 [ 0DEFD5FBF801DD8F83BC0ED09861A8EC ] C:\Windows\System32\TSpkg.dll
17:17:05.0322 0304 C:\Windows\System32\TSpkg.dll - ok
17:17:05.0322 0304 [ DA090E97E57DCB48888015B5D3C749CD ] C:\Windows\System32\bcryptprimitives.dll
17:17:05.0322 0304 C:\Windows\System32\bcryptprimitives.dll - ok
17:17:05.0338 0304 [ E08088A97F95345E181C3DFCE2C615EF ] C:\Windows\System32\pku2u.dll
17:17:05.0338 0304 C:\Windows\System32\pku2u.dll - ok
17:17:05.0338 0304 [ 9301B8810B2DA4EB6AD55DB75FC1E339 ] C:\Windows\System32\credssp.dll
17:17:05.0338 0304 C:\Windows\System32\credssp.dll - ok
17:17:05.0338 0304 [ 90BDEFC5DF334E5100EAA781D798DE1A ] C:\Windows\System32\efslsaext.dll
17:17:05.0338 0304 C:\Windows\System32\efslsaext.dll - ok
17:17:05.0353 0304 [ 398712DDDAEFB85EDF61DF6A07B65C79 ] C:\Windows\System32\scecli.dll
17:17:05.0353 0304 C:\Windows\System32\scecli.dll - ok
17:17:05.0353 0304 [ 7CC7DF5B654DA579613F811D8C637E29 ] C:\Windows\System32\ubpm.dll
17:17:05.0353 0304 C:\Windows\System32\ubpm.dll - ok
17:17:05.0369 0304 [ C78655BC80301D76ED4FEF1C1EA40A7D ] C:\Windows\System32\svchost.exe
17:17:05.0369 0304 C:\Windows\System32\svchost.exe - ok
17:17:05.0369 0304 [ 98B1721B8718164293B9701B98C52D77 ] C:\Windows\System32\umpnpmgr.dll
17:17:05.0369 0304 C:\Windows\System32\umpnpmgr.dll - ok
17:17:05.0385 0304 [ E6EB44ABAAF1F330119F854856C53EBE ] C:\Windows\System32\SPInf.dll
17:17:05.0385 0304 C:\Windows\System32\SPInf.dll - ok
17:17:05.0385 0304 [ CD1B5AD07E5F7FEF30E055DCC9E96180 ] C:\Windows\System32\devrtl.dll
17:17:05.0385 0304 C:\Windows\System32\devrtl.dll - ok
17:17:05.0385 0304 [ 9C9307C95671AC962F3D6EB3A4A89BAE ] C:\Windows\System32\gpapi.dll
17:17:05.0385 0304 C:\Windows\System32\gpapi.dll - ok
17:17:05.0400 0304 [ 0776CF79590BDEF0A2728B0B9A813B96 ] C:\Windows\System32\userenv.dll
17:17:05.0400 0304 C:\Windows\System32\userenv.dll - ok
17:17:05.0400 0304 [ F6C011B46FAEEF33536B2E80F48B5CBE ] C:\Windows\System32\pcwum.dll
17:17:05.0400 0304 C:\Windows\System32\pcwum.dll - ok
17:17:05.0416 0304 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] C:\Windows\System32\umpo.dll
17:17:05.0416 0304 C:\Windows\System32\umpo.dll - ok
17:17:05.0416 0304 [ 716175021BDA290504CE434273F666BC ] C:\Windows\System32\powrprof.dll
17:17:05.0416 0304 C:\Windows\System32\powrprof.dll - ok
17:17:05.0431 0304 [ 7CADC74271DD6461C452C271B30BD378 ] C:\Windows\System32\drivers\WUDFPf.sys
17:17:05.0431 0304 C:\Windows\System32\drivers\WUDFPf.sys - ok
17:17:05.0431 0304 [ 7266972E86890E2B30C0C322E906B027 ] C:\Windows\System32\rpcss.dll
17:17:05.0431 0304 C:\Windows\System32\rpcss.dll - ok
17:17:05.0431 0304 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] C:\Windows\System32\RpcEpMap.dll
17:17:05.0431 0304 C:\Windows\System32\RpcEpMap.dll - ok
17:17:05.0447 0304 [ 31559F3244C6BC00A52030CAA83B6B91 ] C:\Windows\System32\WSHTCPIP.DLL
17:17:05.0447 0304 C:\Windows\System32\WSHTCPIP.DLL - ok
17:17:05.0447 0304 [ 16E964ABF6D1E0F0CC7822FCA9BA754D ] C:\Windows\System32\wshqos.dll
17:17:05.0447 0304 C:\Windows\System32\wshqos.dll - ok
17:17:05.0463 0304 [ 9AD9E06F8656F296D91FAE8EE5B95A27 ] C:\Windows\System32\FirewallAPI.dll
17:17:05.0463 0304 C:\Windows\System32\FirewallAPI.dll - ok
17:17:05.0463 0304 [ 1F4492FE41767CDB8B89D17655847CDD ] C:\Windows\System32\ntmarta.dll
17:17:05.0463 0304 C:\Windows\System32\ntmarta.dll - ok
17:17:05.0463 0304 [ BCF0A980D21711E47D0803BDB0E99CAD ] C:\Windows\System32\authui.dll
17:17:05.0463 0304 C:\Windows\System32\authui.dll - ok
17:17:05.0478 0304 [ 93E6A39B1DB898F7C949FA5567E774CF ] C:\Windows\System32\LogonUI.exe
17:17:05.0478 0304 C:\Windows\System32\LogonUI.exe - ok
17:17:05.0478 0304 [ 94E026870A55AAEAFF7853C1754091E9 ] C:\Windows\System32\version.dll
17:17:05.0478 0304 C:\Windows\System32\version.dll - ok
17:17:05.0494 0304 [ DBA90306A721FB922FDACED9E9728C28 ] C:\Windows\System32\cryptui.dll
17:17:05.0494 0304 C:\Windows\System32\cryptui.dll - ok
17:17:05.0494 0304 [ 113921FC4A80A3DDF646852998B836D0 ] C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7\comctl32.dll
17:17:05.0494 0304 C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7\comctl32.dll - ok
17:17:05.0509 0304 [ 5B3EBFC3DA142324B388DDCC4465E1FF ] C:\Windows\System32\samlib.dll
17:17:05.0509 0304 C:\Windows\System32\samlib.dll - ok
17:17:05.0509 0304 [ 84F8C8B9FB1F12532999D25F5DD7E77C ] C:\Windows\System32\shacct.dll
17:17:05.0509 0304 C:\Windows\System32\shacct.dll - ok
17:17:05.0509 0304 [ B27EA141A7E748B607600A8551A44D5A ] C:\Windows\System32\propsys.dll
17:17:05.0509 0304 C:\Windows\System32\propsys.dll - ok
17:17:05.0525 0304 [ D29E998E8277666982B4F0303BF4E7AF ] C:\Windows\System32\uxtheme.dll
17:17:05.0525 0304 C:\Windows\System32\uxtheme.dll - ok
17:17:05.0525 0304 [ DD0701DE0AAA010E6EBD0F53B672DCEE ] C:\Windows\winsxs\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7600.17007_none_2b47185a719d6182\GdiPlus.dll
17:17:05.0525 0304 C:\Windows\winsxs\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7600.17007_none_2b47185a719d6182\GdiPlus.dll - ok
17:17:05.0525 0304 [ 3CB6A7286422C72C34DAB54A5DFF1A34 ] C:\Windows\System32\dui70.dll
17:17:05.0525 0304 C:\Windows\System32\dui70.dll - ok
17:17:05.0541 0304 [ 8CCDE014A4CDF84564E03ACE064CA753 ] C:\Windows\System32\duser.dll
17:17:05.0541 0304 C:\Windows\System32\duser.dll - ok
17:17:05.0541 0304 [ B2E3D4BB3389817FB5E4CD9378BC8791 ] C:\Windows\System32\SndVolSSO.dll
17:17:05.0541 0304 C:\Windows\System32\SndVolSSO.dll - ok
17:17:05.0556 0304 [ 896F15A6434D93EDB42519D5E18E6B50 ] C:\Windows\System32\hid.dll
17:17:05.0556 0304 C:\Windows\System32\hid.dll - ok
17:17:05.0572 0304 [ 227E2C382A1E02F8D4965E664D3BBE43 ] C:\Windows\System32\MMDevAPI.dll
17:17:05.0572 0304 C:\Windows\System32\MMDevAPI.dll - ok
17:17:05.0572 0304 [ DA1B7075260F3872585BFCDD668C648B ] C:\Windows\System32\dwmapi.dll
17:17:05.0572 0304 C:\Windows\System32\dwmapi.dll - ok
17:17:05.0572 0304 [ 39F91A948E6017B732C4A0B3086A8E32 ] C:\Windows\System32\xmllite.dll
17:17:05.0572 0304 C:\Windows\System32\xmllite.dll - ok
17:17:05.0587 0304 [ EA99F234843BBDDA1ABD2767111ADE25 ] C:\Windows\System32\WindowsCodecs.dll
17:17:05.0587 0304 C:\Windows\System32\WindowsCodecs.dll - ok
17:17:05.0587 0304 [ 9F2BACD5E1776A4BB7CC0EC3C3A4F96D ] C:\Windows\System32\winbrand.dll
17:17:05.0587 0304 C:\Windows\System32\winbrand.dll - ok
17:17:05.0603 0304 [ 2A381A9740165D7A1405148B6DFB3E38 ] C:\Windows\System32\SmartcardCredentialProvider.dll
17:17:05.0603 0304 C:\Windows\System32\SmartcardCredentialProvider.dll - ok
17:17:05.0603 0304 [ C2762A57DF0EE85E63CE4893C5215313 ] C:\Windows\System32\VaultCredProvider.dll
17:17:05.0603 0304 C:\Windows\System32\VaultCredProvider.dll - ok
17:17:05.0619 0304 [ BD3674BE7FC9D8D3732C83E8499576ED ] C:\Windows\System32\wtsapi32.dll
17:17:05.0619 0304 C:\Windows\System32\wtsapi32.dll - ok
17:17:05.0619 0304 [ BCF8F2758AA5C451F8E366C66A98BBFE ] C:\Program Files\Microsoft Security Client\MpSvc.dll
17:17:05.0619 0304 C:\Program Files\Microsoft Security Client\MpSvc.dll - ok
17:17:05.0619 0304 [ CC8E4F72F21340A4D3A3D4DB50313EF5 ] C:\Program Files\Microsoft Security Client\MsMpEng.exe
17:17:05.0619 0304 C:\Program Files\Microsoft Security Client\MsMpEng.exe - ok
17:17:05.0634 0304 [ 2F67DEE6452EBC9F4A6C97A1CCC232FE ] C:\Program Files\Microsoft Security Client\MpClient.dll
17:17:05.0634 0304 C:\Program Files\Microsoft Security Client\MpClient.dll - ok
17:17:05.0634 0304 [ 5F10310A5A9273475AA04930DFE16742 ] C:\Program Files\Microsoft Security Client\EppManifest.dll
17:17:05.0634 0304 C:\Program Files\Microsoft Security Client\EppManifest.dll - ok
17:17:05.0650 0304 [ BF62F3BC1BE0700804EC394BB77F02C4 ] C:\Program Files\Microsoft Security Client\MpRTP.dll
17:17:05.0650 0304 C:\Program Files\Microsoft Security Client\MpRTP.dll - ok
17:17:05.0650 0304 [ F3D202F53A222D5F6944D459B73CF967 ] C:\Windows\System32\fltLib.dll
17:17:05.0650 0304 C:\Windows\System32\fltLib.dll - ok
17:17:05.0665 0304 [ E5AC79743E58A973CB0A140CDD1B3DC0 ] C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{2E2998EB-0A48-4BE0-BC48-0F74D47657E6}\mpengine.dll
17:17:05.0665 0304 C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{2E2998EB-0A48-4BE0-BC48-0F74D47657E6}\mpengine.dll - ok
17:17:05.0665 0304 [ FF7E814CBFEC3C27922C13BB94667416 ] C:\Program Files\Microsoft Security Client\MsMpLics.dll
17:17:05.0665 0304 C:\Program Files\Microsoft Security Client\MsMpLics.dll - ok
17:17:05.0681 0304 [ 05BF204EC0E82CC4A054DB189C8A3D84 ] C:\Windows\System32\drivers\MpFilter.sys
17:17:05.0681 0304 C:\Windows\System32\drivers\MpFilter.sys - ok
17:17:05.0681 0304 [ 99ABDA9C92EC76CBAF52F00239D909C9 ] C:\Windows\System32\wevtsvc.dll
17:17:05.0681 0304 C:\Windows\System32\wevtsvc.dll - ok
17:17:05.0681 0304 [ 97293447431311C06703368AD0F6C4BE ] C:\Windows\System32\profsvc.dll
17:17:05.0681 0304 C:\Windows\System32\profsvc.dll - ok
17:17:05.0697 0304 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] C:\Windows\System32\wlansvc.dll
17:17:05.0697 0304 C:\Windows\System32\wlansvc.dll - ok
17:17:05.0697 0304 [ 588CD0C78A7FAAE4186B5EEA0AF3ED67 ] C:\Windows\System32\adtschema.dll
17:17:05.0712 0304 C:\Windows\System32\adtschema.dll - ok
17:17:05.0712 0304 [ 58775492FFD419248B08325E583C527F ] C:\Windows\System32\atl.dll
17:17:05.0712 0304 C:\Windows\System32\atl.dll - ok
17:17:05.0712 0304 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] C:\Windows\System32\netprofm.dll
17:17:05.0712 0304 C:\Windows\System32\netprofm.dll - ok
17:17:05.0728 0304 [ 37B68E458C0BC255DF2FB7454D0798D3 ] C:\Windows\System32\WUDFPlatform.dll
17:17:05.0728 0304 C:\Windows\System32\WUDFPlatform.dll - ok
17:17:05.0728 0304 [ B551D6637AA0E132C18AC6E504F7B79B ] C:\Windows\System32\WUDFSvc.dll
17:17:05.0728 0304 C:\Windows\System32\WUDFSvc.dll - ok
17:17:05.0743 0304 [ F7866AF72ABBAF84B1FA5AA195378C59 ] C:\Windows\System32\drivers\fltMgr.sys
17:17:05.0743 0304 C:\Windows\System32\drivers\fltMgr.sys - ok
17:17:05.0743 0304 [ 50544D04AD845C43130B70212EC05CCD ] C:\Windows\System32\microsoft-windows-kernel-power-events.dll
17:17:05.0743 0304 C:\Windows\System32\microsoft-windows-kernel-power-events.dll - ok
17:17:05.0743 0304 [ A3DB3C17EE6CAE65D53602B4E80BCCBC ] C:\Windows\System32\PSHED.DLL
17:17:05.0743 0304 C:\Windows\System32\PSHED.DLL - ok
17:17:05.0759 0304 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] C:\Windows\System32\drivers\nwifi.sys
17:17:05.0759 0304 C:\Windows\System32\drivers\nwifi.sys - ok
17:17:05.0759 0304 [ F105BA1E22BF1F2EE8F005D4305E4BEC ] C:\Windows\System32\drivers\ndisuio.sys
17:17:05.0759 0304 C:\Windows\System32\drivers\ndisuio.sys - ok
17:17:05.0775 0304 [ 57FE2CFC2F25C200499D5D934EA24EB5 ] C:\Windows\System32\IPHLPAPI.DLL
17:17:05.0775 0304 C:\Windows\System32\IPHLPAPI.DLL - ok
17:17:05.0775 0304 [ F993A32249B66C9D622EA5592A8B76B8 ] C:\Windows\System32\lmhsvc.dll
17:17:05.0775 0304 C:\Windows\System32\lmhsvc.dll - ok
17:17:05.0775 0304 [ D54BFDF3E0C953F823B3D0BFE4732528 ] C:\Windows\System32\nsisvc.dll
17:17:05.0775 0304 C:\Windows\System32\nsisvc.dll - ok
17:17:05.0790 0304 [ CE3B9562D997F69B330D181A8875960F ] C:\Windows\System32\dhcpcore.dll
17:17:05.0790 0304 C:\Windows\System32\dhcpcore.dll - ok
17:17:05.0790 0304 [ FD5BA198F7190DFE9BE1947EB8710396 ] C:\Windows\System32\nrpsrv.dll
17:17:05.0790 0304 C:\Windows\System32\nrpsrv.dll - ok
17:17:05.0806 0304 [ 4C9210E8F4E052F6A4EB87716DA0C24C ] C:\Windows\System32\winnsi.dll
17:17:05.0806 0304 C:\Windows\System32\winnsi.dll - ok
17:17:05.0806 0304 [ 85CF424C74A1D5EC33533E1DBFF9920A ] C:\Windows\System32\dnsrslvr.dll
17:17:05.0806 0304 C:\Windows\System32\dnsrslvr.dll - ok
17:17:05.0806 0304 [ 71C7B65B6557B75B99907E76956AE4B8 ] C:\Windows\System32\dhcpcore6.dll
17:17:05.0806 0304 C:\Windows\System32\dhcpcore6.dll - ok
17:17:05.0821 0304 [ 982F5395AD181179320083A4FA7E7CA8 ] C:\Windows\System32\eapphost.dll
17:17:05.0821 0304 C:\Windows\System32\eapphost.dll - ok
17:17:05.0821 0304 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] C:\Windows\System32\eapsvc.dll
17:17:05.0821 0304 C:\Windows\System32\eapsvc.dll - ok
17:17:05.0837 0304 [ F9EC845C5EECF20E9A67F9F805F2EF1F ] C:\Windows\System32\keyiso.dll
17:17:05.0837 0304 C:\Windows\System32\keyiso.dll - ok
17:17:05.0837 0304 [ 0040C486584A8E582C861CFB57AB5387 ] C:\Windows\System32\FWPUCLNT.DLL
17:17:05.0837 0304 C:\Windows\System32\FWPUCLNT.DLL - ok
17:17:05.0837 0304 [ 885D0942E0F28DB90919BE3129ECF279 ] C:\Windows\System32\dnsext.dll
17:17:05.0837 0304 C:\Windows\System32\dnsext.dll - ok
17:17:05.0853 0304 [ F568F7C08458D69E4FCD8675BBB107E4 ] C:\Windows\System32\dhcpcsvc.dll
17:17:05.0853 0304 C:\Windows\System32\dhcpcsvc.dll - ok
17:17:05.0853 0304 [ A77BE7CB3222B4FB0AC6C71D1C2698D4 ] C:\Windows\System32\dsrole.dll
17:17:05.0853 0304 C:\Windows\System32\dsrole.dll - ok
17:17:05.0868 0304 [ 2017BFE87CAB3D7EF632CFD2AA08D3F0 ] C:\Windows\System32\umb.dll
17:17:05.0868 0304 C:\Windows\System32\umb.dll - ok
17:17:05.0868 0304 [ 48A31B7CF046702059A86836DC21D786 ] C:\Windows\System32\wlanmsm.dll
17:17:05.0868 0304 C:\Windows\System32\wlanmsm.dll - ok
17:17:05.0884 0304 [ 06A1386B6E3A0CBC368665C1840906F4 ] C:\Windows\System32\wlansec.dll
17:17:05.0884 0304 C:\Windows\System32\wlansec.dll - ok
17:17:05.0884 0304 [ 4CBCC37856EA2039C27A2FB661DDA0E5 ] C:\Windows\System32\dhcpcsvc6.dll
17:17:05.0884 0304 C:\Windows\System32\dhcpcsvc6.dll - ok
17:17:05.0884 0304 [ D2B0D1C2BE5ECA80387F7CB8626DCAFE ] C:\Windows\System32\onex.dll
17:17:05.0884 0304 C:\Windows\System32\onex.dll - ok
17:17:05.0899 0304 [ 0D753307D274F3688BD21C377B616700 ] C:\Windows\System32\eappcfg.dll
17:17:05.0899 0304 C:\Windows\System32\eappcfg.dll - ok
17:17:05.0899 0304 [ 65522E77A1360DBC8D199DA3BF5EFFE4 ] C:\Windows\System32\eappprxy.dll
17:17:05.0899 0304 C:\Windows\System32\eappprxy.dll - ok
17:17:05.0915 0304 [ 97E43F324BE1503CB2FFB058534688DA ] C:\Windows\System32\l2gpstore.dll
17:17:05.0915 0304 C:\Windows\System32\l2gpstore.dll - ok
17:17:05.0915 0304 [ 730BF204A595D5B6D7DC57A247CC741C ] C:\Windows\System32\wlgpclnt.dll
17:17:05.0915 0304 C:\Windows\System32\wlgpclnt.dll - ok
17:17:05.0931 0304 [ 22E7431E7DAE8463AF94A79A054276E5 ] C:\Windows\System32\WinSCard.dll
17:17:05.0931 0304 C:\Windows\System32\WinSCard.dll - ok
17:17:05.0931 0304 [ 7F1B4C6FF3B85F9ADF74055187B8A22C ] C:\Windows\System32\wlanutil.dll
17:17:05.0931 0304 C:\Windows\System32\wlanutil.dll - ok
17:17:05.0931 0304 [ 72D3D64526765C34DBFC7D895B4FBDF6 ] C:\Windows\System32\msxml6.dll
17:17:05.0931 0304 C:\Windows\System32\msxml6.dll - ok
17:17:05.0946 0304 [ 4992C609A6315671463E30F6512BC022 ] C:\Windows\System32\BFE.DLL
17:17:05.0946 0304 C:\Windows\System32\BFE.DLL - ok
17:17:05.0946 0304 [ BE097F5BB10F9079FCEB2DC4E7E20F02 ] C:\Windows\System32\slc.dll
17:17:05.0946 0304 C:\Windows\System32\slc.dll - ok
17:17:05.0962 0304 [ 8F6D9A20F1FB06F0602A7D5A82840DBF ] C:\Windows\System32\netcfgx.dll
17:17:05.0962 0304 C:\Windows\System32\netcfgx.dll - ok
17:17:05.0962 0304 [ 19D20159708E152267E53B66677A4995 ] C:\Windows\System32\drivers\bowser.sys
17:17:05.0962 0304 C:\Windows\System32\drivers\bowser.sys - ok
17:17:05.0962 0304 [ 040D62A9D8AD28922632137ACDD984F2 ] C:\Windows\System32\drivers\mrxsmb.sys
17:17:05.0962 0304 C:\Windows\System32\drivers\mrxsmb.sys - ok
17:17:05.0977 0304 [ F0067552F8F9B33D7C59403AB808A3CB ] C:\Windows\System32\drivers\mrxsmb10.sys
17:17:05.0977 0304 C:\Windows\System32\drivers\mrxsmb10.sys - ok
17:17:05.0977 0304 [ 3C142D31DE9F2F193218A53FE2632051 ] C:\Windows\System32\drivers\mrxsmb20.sys
17:17:05.0977 0304 C:\Windows\System32\drivers\mrxsmb20.sys - ok
17:17:05.0993 0304 [ 4C8C2F987FC397DCE98874D6C9C0736A ] C:\Windows\System32\netutils.dll
17:17:05.0993 0304 C:\Windows\System32\netutils.dll - ok
17:17:05.0993 0304 [ 27026EAC8818E8A6C00A1CAD2F11D29A ] C:\Windows\System32\wkssvc.dll
17:17:05.0993 0304 C:\Windows\System32\wkssvc.dll - ok
17:17:06.0009 0304 [ 4FAC55936209B4F3EB78532181C9ED5E ] C:\Windows\System32\cryptnet.dll
17:17:06.0009 0304 C:\Windows\System32\cryptnet.dll - ok
17:17:06.0009 0304 [ BAF19B633933A9FB4883D27D66C39E9A ] C:\Windows\System32\cryptsvc.dll
17:17:06.0009 0304 C:\Windows\System32\cryptsvc.dll - ok
17:17:06.0009 0304 [ C5B4683680DF085B57BC53E5EF34861F ] C:\Windows\System32\IKEEXT.DLL
17:17:06.0009 0304 C:\Windows\System32\IKEEXT.DLL - ok
17:17:06.0024 0304 [ 847D3AE376C0817161A14A82C8922A9E ] C:\Windows\System32\netman.dll
17:17:06.0024 0304 C:\Windows\System32\netman.dll - ok
17:17:06.0024 0304 [ D9A0CE66046D6EFA0C61BAA885CBA0A8 ] C:\Windows\System32\nlasvc.dll
17:17:06.0024 0304 C:\Windows\System32\nlasvc.dll - ok
17:17:06.0040 0304 [ 107F279517E2A04DB4AC1B1FAF1D573B ] C:\Windows\System32\ncsi.dll
17:17:06.0040 0304 C:\Windows\System32\ncsi.dll - ok
17:17:06.0040 0304 [ 0BF0C2A72F2CB0BA4382C392D3E331AF ] C:\Windows\System32\winhttp.dll
17:17:06.0040 0304 C:\Windows\System32\winhttp.dll - ok
17:17:06.0040 0304 [ 166EB40D1F5B47E615DE3D0FFFE5F243 ] C:\Windows\System32\IPSECSVC.DLL
17:17:06.0040 0304 C:\Windows\System32\IPSECSVC.DLL - ok
17:17:06.0055 0304 [ 2196CDBFA4B99BEEDAE300FA21DFE718 ] C:\Windows\System32\webio.dll
17:17:06.0055 0304 C:\Windows\System32\webio.dll - ok
17:17:06.0055 0304 [ 2BBF3FDB70B8965DFA0258CBAB41ECCE ] C:\Windows\System32\ssdpapi.dll
17:17:06.0055 0304 C:\Windows\System32\ssdpapi.dll - ok
17:17:06.0071 0304 [ B33CBD1A8C2A33121321D0FEBD7DD870 ] C:\Windows\System32\wkscli.dll
17:17:06.0071 0304 C:\Windows\System32\wkscli.dll - ok
17:17:06.0071 0304 [ 9BC93C9ACFA34DB5A41B89357B31E4ED ] C:\Windows\System32\FwRemoteSvr.dll
17:17:06.0071 0304 C:\Windows\System32\FwRemoteSvr.dll - ok
17:17:06.0071 0304 [ 4E9E7C7D857EA1C83BE6160DAE25B4DA ] C:\Program Files (x86)\Sendori\sndappv2.exe
17:17:06.0071 0304 C:\Program Files (x86)\Sendori\sndappv2.exe - ok
17:17:06.0087 0304 [ 9316FB3C3513AA99D35D8195C857841F ] C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{26CD0386-77AC-490D-85D1-E5ECCD859140}\gapaengine.dll
17:17:06.0087 0304 C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{26CD0386-77AC-490D-85D1-E5ECCD859140}\gapaengine.dll - ok
17:17:06.0087 0304 [ 9BC8610C32C96A2983A65DC21CAFA921 ] C:\Windows\System32\UXInit.dll
17:17:06.0087 0304 C:\Windows\System32\UXInit.dll - ok
17:17:06.0102 0304 [ 89CDC79E025E074002020B89558216C0 ] C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{26CD0386-77AC-490D-85D1-E5ECCD859140}\nisbase.vdm
17:17:06.0102 0304 C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{26CD0386-77AC-490D-85D1-E5ECCD859140}\nisbase.vdm - ok
17:17:06.0102 0304 [ DB6DD54A93522CA3572D04B56C5DB890 ] C:\Windows\SysWOW64\ntdll.dll
17:17:06.0102 0304 C:\Windows\SysWOW64\ntdll.dll - ok
17:17:06.0118 0304 [ 4C06764FC453847F2F9356E84FBA3BBE ] C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{26CD0386-77AC-490D-85D1-E5ECCD859140}\nisfull.vdm
17:17:06.0118 0304 C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{26CD0386-77AC-490D-85D1-E5ECCD859140}\nisfull.vdm - ok
17:17:06.0118 0304 [ 0E7045E24F78351E021D3C01566DBBA3 ] C:\Program Files\Microsoft Security Client\MpAsDesc.dll
17:17:06.0118 0304 C:\Program Files\Microsoft Security Client\MpAsDesc.dll - ok
17:17:06.0133 0304 [ 5B8580B819BE32EEC18CE1FEC52A4BCE ] C:\Program Files\Microsoft Security Client\MpCmdRun.exe
17:17:06.0133 0304 C:\Program Files\Microsoft Security Client\MpCmdRun.exe - ok
17:17:06.0133 0304 [ 22FF251AE6A780960B02A6DEADFEA7FB ] C:\Windows\System32\conhost.exe
17:17:06.0133 0304 C:\Windows\System32\conhost.exe - ok
17:17:06.0149 0304 [ 64E6A44177ACF348D68255A37F4723DA ] C:\Windows\System32\cabinet.dll
17:17:06.0149 0304 C:\Windows\System32\cabinet.dll - ok
17:17:06.0149 0304 [ A87205FE194B239D8D96E4972B779CC1 ] C:\Windows\System32\samcli.dll
17:17:06.0149 0304 C:\Windows\System32\samcli.dll - ok
17:17:06.0149 0304 [ 85409DCE247D97E4D6958B7C5916BE4A ] C:\Windows\System32\wscapi.dll
17:17:06.0149 0304 C:\Windows\System32\wscapi.dll - ok
17:17:06.0165 0304 [ 5AA945234E9D4CCE4F715276B9AA712C ] C:\Windows\System32\imageres.dll
17:17:06.0165 0304 C:\Windows\System32\imageres.dll - ok
17:17:06.0165 0304 [ C823A6F302D12FFE5DA305041F5213C7 ] C:\Windows\System32\wow64.dll
17:17:06.0165 0304 C:\Windows\System32\wow64.dll - ok
17:17:06.0180 0304 [ CA6CEE750AFE37BF90044774B7FE8DAD ] C:\Windows\System32\wow64win.dll
17:17:06.0180 0304 C:\Windows\System32\wow64win.dll - ok
17:17:06.0180 0304 [ 4E89D6A7571545F09F1234E7F6618099 ] C:\Windows\System32\wow64cpu.dll
17:17:06.0180 0304 C:\Windows\System32\wow64cpu.dll - ok
17:17:06.0196 0304 [ 33616DACC75C9E105DAE944120DB4274 ] C:\Windows\SysWOW64\kernel32.dll
17:17:06.0196 0304 C:\Windows\SysWOW64\kernel32.dll - ok
17:17:06.0196 0304 [ 0223642C49CF1B7BBF0B2CCC6FEA707C ] C:\Windows\SysWOW64\KernelBase.dll
17:17:06.0196 0304 C:\Windows\SysWOW64\KernelBase.dll - ok
17:17:06.0196 0304 [ F8A61B2E713309B4616D107919BDAB6E ] C:\Windows\SysWOW64\msvcrt.dll
17:17:06.0196 0304 C:\Windows\SysWOW64\msvcrt.dll - ok
17:17:06.0211 0304 [ 702254574E7E52052DE39408457B7149 ] C:\Windows\SysWOW64\version.dll
17:17:06.0211 0304 C:\Windows\SysWOW64\version.dll - ok
17:17:06.0211 0304 [ A543AC1F7138376D778D630A35FCBC4C ] C:\Windows\SysWOW64\psapi.dll
17:17:06.0211 0304 C:\Windows\SysWOW64\psapi.dll - ok
17:17:06.0227 0304 [ DAAE8A9B8C0ACC7F858454132553C30D ] C:\Windows\SysWOW64\ws2_32.dll
17:17:06.0227 0304 C:\Windows\SysWOW64\ws2_32.dll - ok
17:17:06.0227 0304 [ 90385551B6B3793E949DF310A11D64E7 ] C:\Windows\SysWOW64\rpcrt4.dll
17:17:06.0227 0304 C:\Windows\SysWOW64\rpcrt4.dll - ok
17:17:06.0243 0304 [ F08F6FCD09F9BE94C37ACC1B344685FF ] C:\Windows\SysWOW64\cryptbase.dll
17:17:06.0243 0304 C:\Windows\SysWOW64\cryptbase.dll - ok
17:17:06.0243 0304 [ 6377051C63D5552A311935C67E9FDFDC ] C:\Windows\SysWOW64\nsi.dll
17:17:06.0243 0304 C:\Windows\SysWOW64\nsi.dll - ok
17:17:06.0243 0304 [ CFC97F07904067A1E5FAE195D534DA3A ] C:\Windows\SysWOW64\sechost.dll
17:17:06.0243 0304 C:\Windows\SysWOW64\sechost.dll - ok
17:17:06.0258 0304 [ 351F62085F1D007533B4BB159C9EFDE3 ] C:\Windows\SysWOW64\sspicli.dll
17:17:06.0258 0304 C:\Windows\SysWOW64\sspicli.dll - ok
17:17:06.0258 0304 [ E8B0FFC209E504CB7E79FC24E6C085F0 ] C:\Windows\SysWOW64\user32.dll
17:17:06.0258 0304 C:\Windows\SysWOW64\user32.dll - ok
17:17:06.0274 0304 [ FBE1E0B9EF53B5BB7C36763AA6A685CF ] C:\Windows\SysWOW64\gdi32.dll
17:17:06.0274 0304 C:\Windows\SysWOW64\gdi32.dll - ok
17:17:06.0274 0304 [ 384721EF4024890092625E20CADFAF85 ] C:\Windows\SysWOW64\lpk.dll
17:17:06.0274 0304 C:\Windows\SysWOW64\lpk.dll - ok
17:17:06.0289 0304 [ 0BA19F3198C40AC4E8CC66EE02EDA6C6 ] C:\Windows\SysWOW64\usp10.dll
17:17:06.0289 0304 C:\Windows\SysWOW64\usp10.dll - ok
17:17:06.0289 0304 [ 0C65FA8214D6F8378D1D3BA1CA46AF0A ] C:\Windows\SysWOW64\advapi32.dll
17:17:06.0289 0304 C:\Windows\SysWOW64\advapi32.dll - ok
17:17:06.0305 0304 [ E2C2D8C982316C8ABF800C6CE3F28FAB ] C:\Windows\SysWOW64\ole32.dll
17:17:06.0305 0304 C:\Windows\SysWOW64\ole32.dll - ok
17:17:06.0305 0304 [ 705C210EFC5564BE49EB026BD7AFF27A ] C:\Windows\SysWOW64\oleaut32.dll
17:17:06.0305 0304 C:\Windows\SysWOW64\oleaut32.dll - ok
17:17:06.0305 0304 [ 7DA089C75B1E92032D0CBE4ADE7C32BC ] C:\Windows\SysWOW64\crypt32.dll
17:17:06.0305 0304 C:\Windows\SysWOW64\crypt32.dll - ok
17:17:06.0321 0304 [ 6CC10D9FD128069DBFE476222F097616 ] C:\Windows\SysWOW64\secur32.dll
17:17:06.0321 0304 C:\Windows\SysWOW64\secur32.dll - ok
17:17:06.0321 0304 [ 0DE3069D6E09BA262856EF31C941BEFE ] C:\Windows\SysWOW64\imm32.dll
17:17:06.0321 0304 C:\Windows\SysWOW64\imm32.dll - ok
17:17:06.0321 0304 [ 4C04900AA8C323F5D4C316A89E976849 ] C:\Windows\SysWOW64\msasn1.dll
17:17:06.0321 0304 C:\Windows\SysWOW64\msasn1.dll - ok
17:17:06.0336 0304 [ C9618BC9B2B0FD7C1138D8774795A79B ] C:\Windows\SysWOW64\msctf.dll
17:17:06.0336 0304 C:\Windows\SysWOW64\msctf.dll - ok
17:17:06.0336 0304 [ 3FD15B4611D9BDA3F8013548C0ECAECA ] C:\Windows\SysWOW64\ntmarta.dll
17:17:06.0336 0304 C:\Windows\SysWOW64\ntmarta.dll - ok
17:17:06.0352 0304 [ BFA70A99AD1434263F2DFBBA103BDEF8 ] C:\Windows\SysWOW64\Wldap32.dll
17:17:06.0352 0304 C:\Windows\SysWOW64\Wldap32.dll - ok
17:17:06.0352 0304 [ 5DE691884C240227B733CC18BBFCA3D8 ] C:\Windows\SysWOW64\netapi32.dll
17:17:06.0352 0304 C:\Windows\SysWOW64\netapi32.dll - ok
17:17:06.0367 0304 [ C6BB27D9A8AC13D4A44486F528B5C884 ] C:\Windows\SysWOW64\netutils.dll
17:17:06.0367 0304 C:\Windows\SysWOW64\netutils.dll - ok
17:17:06.0367 0304 [ 89D840773C9C4358A5031DCC860449EC ] C:\Windows\SysWOW64\srvcli.dll
17:17:06.0367 0304 C:\Windows\SysWOW64\srvcli.dll - ok
17:17:06.0367 0304 [ 7321F18D1F820612ED0E9F2D4B578A7E ] C:\Windows\SysWOW64\cryptsp.dll
17:17:06.0367 0304 C:\Windows\SysWOW64\cryptsp.dll - ok
17:17:06.0383 0304 [ ED8EC63F7522DF4852147C84EC62C36A ] C:\Windows\SysWOW64\rsaenh.dll
17:17:06.0383 0304 C:\Windows\SysWOW64\rsaenh.dll - ok
17:17:06.0383 0304 [ 7AD12703039056D2A0815F85960E1FA1 ] C:\Windows\SysWOW64\wkscli.dll
17:17:06.0383 0304 C:\Windows\SysWOW64\wkscli.dll - ok
17:17:06.0399 0304 [ 92E0508D924512F63FFEEFE498CBD11F ] C:\Windows\System32\p2pcollab.dll
17:17:06.0399 0304 C:\Windows\System32\p2pcollab.dll - ok
17:17:06.0399 0304 [ 4987E079A4530FA737A128BE54B63B12 ] C:\Windows\System32\QAGENTRT.DLL
17:17:06.0399 0304 C:\Windows\System32\QAGENTRT.DLL - ok
17:17:06.0399 0304 [ 506A83A3BEEE9FCA09F0170DE9FC7D1B ] C:\Windows\System32\fveui.dll
17:17:06.0399 0304 C:\Windows\System32\fveui.dll - ok
17:17:06.0414 0304 [ FF5688D309347F2720911D8796912834 ] C:\Windows\SysWOW64\clbcatq.dll
17:17:06.0414 0304 C:\Windows\SysWOW64\clbcatq.dll - ok
17:17:06.0430 0304 [ CA9E3BD4752FA2C084F5CD35FD8D0025 ] C:\Program Files\Microsoft Security Client\MsseWat.dll
17:17:06.0430 0304 C:\Program Files\Microsoft Security Client\MsseWat.dll - ok
17:17:06.0430 0304 [ B7213E92B270761B88B313B62BA0E13B ] C:\Windows\System32\slwga.dll
17:17:06.0430 0304 C:\Windows\System32\slwga.dll - ok
17:17:06.0430 0304 [ 64856DFE10FC7B429E6999380BC3BB62 ] C:\Windows\System32\sppc.dll
17:17:06.0430 0304 C:\Windows\System32\sppc.dll - ok
17:17:06.0445 0304 [ 6C0BD9D59C7E97DEE2FB3407D17BF697 ] C:\Windows\SysWOW64\RpcRtRemote.dll
17:17:06.0445 0304 C:\Windows\SysWOW64\RpcRtRemote.dll - ok
17:17:06.0445 0304 [ 11A41F17527ED75D6B758FDD7F4FD00D ] C:\Windows\SysWOW64\mswsock.dll
17:17:06.0445 0304 C:\Windows\SysWOW64\mswsock.dll - ok
17:17:06.0461 0304 [ EE5C8E27C37B79CB54A2FCEEED2DC262 ] C:\Windows\SysWOW64\WSHTCPIP.DLL
17:17:06.0461 0304 C:\Windows\SysWOW64\WSHTCPIP.DLL - ok
17:17:06.0461 0304 [ 19B07E7E8915D701225DA41CB3877306 ] C:\Windows\System32\wbem\WMIsvc.dll
17:17:06.0461 0304 C:\Windows\System32\wbem\WMIsvc.dll - ok
17:17:06.0461 0304 [ FAF9BA81FB0543CB4B7EFFD24CFA815F ] C:\Windows\System32\wbemcomn.dll
17:17:06.0461 0304 C:\Windows\System32\wbemcomn.dll - ok
17:17:06.0477 0304 [ 0255C22D99602534F15CBB8D9B6F152F ] C:\Windows\System32\wbem\WinMgmtR.dll
17:17:06.0477 0304 C:\Windows\System32\wbem\WinMgmtR.dll - ok
17:17:06.0477 0304 [ A7582A70802D5B9F28ED3940F6A3E9ED ] C:\Windows\System32\wbem\WmiDcPrv.dll
17:17:06.0477 0304 C:\Windows\System32\wbem\WmiDcPrv.dll - ok
17:17:06.0492 0304 [ A3F5E8EC1316C3E2562B82694A251C9E ] C:\Windows\System32\wbem\fastprox.dll
17:17:06.0492 0304 C:\Windows\System32\wbem\fastprox.dll - ok
17:17:06.0492 0304 [ EE26D130808D16C0E417BBBED0451B34 ] C:\Windows\System32\ntdsapi.dll
17:17:06.0492 0304 C:\Windows\System32\ntdsapi.dll - ok
17:17:06.0508 0304 [ 666A60F6F5E719856FF6254E0966EFF7 ] C:\Windows\System32\wbem\wbemprox.dll
17:17:06.0508 0304 C:\Windows\System32\wbem\wbemprox.dll - ok
17:17:06.0508 0304 [ 732E668096B1A37B7BFD4B9021E69A8E ] C:\Windows\System32\oleres.dll
17:17:06.0508 0304 C:\Windows\System32\oleres.dll - ok
17:17:06.0508 0304 [ A261AD1FDC6D6A658A82B81AF81B215F ] C:\Windows\System32\vssapi.dll
17:17:06.0508 0304 C:\Windows\System32\vssapi.dll - ok
17:17:06.0523 0304 [ 287923557447D7E4BDD7E65B1F0F5428 ] C:\Windows\System32\vsstrace.dll
17:17:06.0523 0304 C:\Windows\System32\vsstrace.dll - ok
17:17:06.0523 0304 [ 3B9665D4B8C587A6014B9B8DFF5974A0 ] C:\Windows\System32\wbem\wbemcore.dll
17:17:06.0523 0304 C:\Windows\System32\wbem\wbemcore.dll - ok
17:17:06.0539 0304 [ 087D8668C71634A3A3761135ABF16EEE ] C:\Windows\System32\wbem\esscli.dll
17:17:06.0539 0304 C:\Windows\System32\wbem\esscli.dll - ok
17:17:06.0539 0304 [ 718B6F51AB7F6FE2988A36868F9AD3AB ] C:\Windows\System32\wbem\wbemsvc.dll
17:17:06.0539 0304 C:\Windows\System32\wbem\wbemsvc.dll - ok
17:17:06.0555 0304 [ 0AB34456654C283DAA13B8D2BA21439B ] C:\Windows\System32\wbem\repdrvfs.dll
17:17:06.0555 0304 C:\Windows\System32\wbem\repdrvfs.dll - ok
17:17:06.0555 0304 [ 0143DB80DACFB7C2B5B7009ED9063353 ] C:\Windows\System32\wbem\wmiutils.dll
17:17:06.0555 0304 C:\Windows\System32\wbem\wmiutils.dll - ok
17:17:06.0570 0304 [ 82BC97E5793DEF69691AAD5AB953A200 ] C:\Windows\System32\wbem\WmiPrvSD.dll
17:17:06.0570 0304 C:\Windows\System32\wbem\WmiPrvSD.dll - ok
17:17:06.0570 0304 [ D41FEBD098234F02485A4EA98D4730A4 ] C:\Windows\System32\ncobjapi.dll
17:17:06.0570 0304 C:\Windows\System32\ncobjapi.dll - ok
17:17:06.0570 0304 [ 6F40D6FB05E0C1E5402812B426971AF0 ] C:\Windows\System32\wbem\wbemess.dll
17:17:06.0570 0304 C:\Windows\System32\wbem\wbemess.dll - ok
17:17:06.0586 0304 [ A8EDB86FC2A4D6D1285E4C70384AC35A ] C:\Windows\System32\dllhost.exe
17:17:06.0586 0304 C:\Windows\System32\dllhost.exe - ok
17:17:06.0586 0304 [ BC052EFAD10ACA1AD69545B629F50D99 ] C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7600.16661_none_a44e1fc257f685f6\comctl32.dll
17:17:06.0586 0304 C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7600.16661_none_a44e1fc257f685f6\comctl32.dll - ok
17:17:06.0601 0304 [ A0A2C1D812C231C9BFE119FDC68E341B ] C:\Windows\System32\IDStore.dll
17:17:06.0601 0304 C:\Windows\System32\IDStore.dll - ok
17:17:06.0601 0304 [ 6CEF7856A3EFAC59470F6208F0F585CE ] C:\Windows\System32\mpr.dll
17:17:06.0601 0304 C:\Windows\System32\mpr.dll - ok
17:17:06.0617 0304 [ 6F8F1376A13114CC10C0E69274F5A4DE ] C:\Windows\System32\userinit.exe
17:17:06.0617 0304 C:\Windows\System32\userinit.exe - ok
17:17:06.0617 0304 [ 0862495E0C825893DB75EF44FAEA8E93 ] C:\Windows\explorer.exe
17:17:06.0617 0304 C:\Windows\explorer.exe - ok
17:17:06.0633 0304 [ 1C27E145EC99F20BC1B13FD98165A83F ] C:\Windows\System32\ExplorerFrame.dll
17:17:06.0633 0304 C:\Windows\System32\ExplorerFrame.dll - ok
17:17:06.0633 0304 [ 01A465AC251BCCF6037DF2EF28AA4292 ] C:\Windows\System32\apphelp.dll
17:17:06.0633 0304 C:\Windows\System32\apphelp.dll - ok
17:17:06.0633 0304 [ 867C93CE4B4CCFCDE65CE48A769CD227 ] C:\Program Files\AVAST Software\Avast\ashShA64.dll
17:17:06.0633 0304 C:\Program Files\AVAST Software\Avast\ashShA64.dll - ok
17:17:06.0648 0304 [ 024352FEEC9042260BB4CFB4D79A206B ] C:\Windows\System32\EhStorShell.dll
17:17:06.0648 0304 C:\Windows\System32\EhStorShell.dll - ok
17:17:06.0648 0304 [ 68D8AC3F047D3E105C1674FD4EF08913 ] C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL
17:17:06.0648 0304 C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL - ok
17:17:06.0664 0304 [ D233C7FEAE3FAA25F93A9E6B46815ADC ] C:\Windows\winsxs\amd64_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_08e61857a83bc251\msvcr90.dll
17:17:06.0664 0304 C:\Windows\winsxs\amd64_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_08e61857a83bc251\msvcr90.dll - ok
17:17:06.0664 0304 [ 241AF87821FDA0F5792037B779F49BE0 ] C:\Windows\winsxs\amd64_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_08e61857a83bc251\msvcp90.dll
17:17:06.0664 0304 C:\Windows\winsxs\amd64_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_08e61857a83bc251\msvcp90.dll - ok
17:17:06.0679 0304 [ 57AC86AC664CC774C861DAB2B1D1E978 ] C:\Windows\winsxs\amd64_microsoft.vc90.atl_1fc8b3b9a1e18e3b_9.0.30729.6161_none_0a1fd3a3a768b895\ATL90.dll
17:17:06.0679 0304 C:\Windows\winsxs\amd64_microsoft.vc90.atl_1fc8b3b9a1e18e3b_9.0.30729.6161_none_0a1fd3a3a768b895\ATL90.dll - ok
17:17:06.0679 0304 [ 5ABAEB53E6ECF7878A5C4C4ABED92050 ] C:\PROGRA~1\COMMON~1\MICROS~1\OFFICE14\Cultures\OFFICE.ODF
17:17:06.0679 0304 C:\PROGRA~1\COMMON~1\MICROS~1\OFFICE14\Cultures\OFFICE.ODF - ok
17:17:06.0679 0304 [ 66E3C667D853DF349E310568F60B9B6A ] C:\PROGRA~1\MICROS~2\Office14\1033\GrooveIntlResource.dll
17:17:06.0679 0304 C:\PROGRA~1\MICROS~2\Office14\1033\GrooveIntlResource.dll - ok
17:17:06.0695 0304 [ 5F917AEEEA363B8A5DC8624795CB1D60 ] C:\Windows\System32\ntshrui.dll
17:17:06.0695 0304 C:\Windows\System32\ntshrui.dll - ok
17:17:06.0711 0304 [ BFEBE1E4B301F44CEA7C1B4021BD0264 ] C:\Windows\System32\cscapi.dll
17:17:06.0711 0304 C:\Windows\System32\cscapi.dll - ok
17:17:06.0711 0304 [ 1D63F4366288B8A7595397E27010FD44 ] C:\Windows\System32\IconCodecService.dll
17:17:06.0711 0304 C:\Windows\System32\IconCodecService.dll - ok
17:17:06.0711 0304 [ 6AB6D4DF10EC784CF4A66CBFAF417A11 ] C:\Windows\System32\runonce.exe
17:17:06.0711 0304 C:\Windows\System32\runonce.exe - ok
17:17:06.0726 0304 [ 169F916EFEAA44487E65305B7D2D754B ] C:\Windows\SysWOW64\runonce.exe
17:17:06.0726 0304 C:\Windows\SysWOW64\runonce.exe - ok
17:17:06.0726 0304 [ F037DB14CF6165C62F4A64D12A25B07C ] C:\Windows\SysWOW64\shlwapi.dll
17:17:06.0726 0304 C:\Windows\SysWOW64\shlwapi.dll - ok
17:17:06.0742 0304 [ 4B8DD8541C0E26602005DD0137333615 ] C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_420fe3fa2b8113bd\comctl32.dll
17:17:06.0742 0304 C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_420fe3fa2b8113bd\comctl32.dll - ok
17:17:06.0742 0304 [ 2CBC35E872BA9B46474890135B56DD66 ] C:\Windows\SysWOW64\shell32.dll
17:17:06.0742 0304 C:\Windows\SysWOW64\shell32.dll - ok
17:17:06.0757 0304 [ 42B6A94DD747DF2B5F628A2752E62A98 ] C:\Windows\System32\ctfmon.exe
17:17:06.0757 0304 C:\Windows\System32\ctfmon.exe - ok
17:17:06.0757 0304 [ 1F1CA9E99DD5BF918BE0BF30B5A42FDA ] C:\Windows\System32\MsCtfMonitor.dll
17:17:06.0757 0304 C:\Windows\System32\MsCtfMonitor.dll - ok
17:17:06.0757 0304 [ F09A9A1AD21FE618C4C8B0A0D830C886 ] C:\Windows\System32\msutb.dll
17:17:06.0757 0304 C:\Windows\System32\msutb.dll - ok
17:17:06.0773 0304 [ 18245DC72B65D488A8B2D75A8FE088EA ] C:\Windows\System32\timedate.cpl
17:17:06.0773 0304 C:\Windows\System32\timedate.cpl - ok
17:17:06.0773 0304 [ FBE8EBF528DC49B3DEB186CA9545D97E ] C:\Windows\System32\shdocvw.dll
17:17:06.0773 0304 C:\Windows\System32\shdocvw.dll - ok
17:17:06.0789 0304 [ A0A65D306A5490D2EB8E7DE66898ECFD ] C:\Windows\System32\linkinfo.dll
17:17:06.0789 0304 C:\Windows\System32\linkinfo.dll - ok
17:17:06.0789 0304 [ 14F5C0DB4B2C47874D6C937A5A1B367C ] C:\Windows\System32\gameux.dll
17:17:06.0789 0304 C:\Windows\System32\gameux.dll - ok
17:17:06.0804 0304 [ 9689A9C7F7C2A1A423CDA2C3B43FFF65 ] C:\Windows\System32\wer.dll
17:17:06.0804 0304 C:\Windows\System32\wer.dll - ok
17:17:06.0804 0304 [ 46EDD0A6B42BA5D2044FA0909BE4BE95 ] C:\Windows\System32\msftedit.dll
17:17:06.0804 0304 C:\Windows\System32\msftedit.dll - ok
17:17:06.0804 0304 [ 599EBE6C7EA52B5FF9603F203E8EC080 ] C:\Windows\System32\msi.dll
17:17:06.0804 0304 C:\Windows\System32\msi.dll - ok
17:17:06.0820 0304 [ 69754747274B76E7FAF287239333D7E6 ] C:\Windows\System32\msiltcfg.dll
17:17:06.0820 0304 C:\Windows\System32\msiltcfg.dll - ok
17:17:06.0820 0304 [ 7FCAB194F01E3403C300EB034E480B36 ] C:\Windows\System32\msls31.dll
17:17:06.0820 0304 C:\Windows\System32\msls31.dll - ok
17:17:06.0835 0304 [ DD76912E8D165C68659D9875256710A3 ] C:\Windows\System32\DeviceCenter.dll
17:17:06.0835 0304 C:\Windows\System32\DeviceCenter.dll - ok
17:17:06.0835 0304 [ 10E4A1D2132CCB5C6759F038CDB6F3C9 ] C:\Windows\System32\calc.exe
17:17:06.0835 0304 C:\Windows\System32\calc.exe - ok
17:17:06.0835 0304 [ 4ECE12D296ED94CA2C7DD6C383A5AB66 ] C:\Windows\System32\ieframe.dll
17:17:06.0835 0304 C:\Windows\System32\ieframe.dll - ok
17:17:06.0851 0304 [ AF28348ED585539C4A33A4341FF23696 ] C:\Windows\System32\oleacc.dll
17:17:06.0851 0304 C:\Windows\System32\oleacc.dll - ok
17:17:06.0851 0304 [ 8BC7AE7E16458355508ECF5EC3A04E72 ] C:\Windows\System32\networkexplorer.dll
17:17:06.0851 0304 C:\Windows\System32\networkexplorer.dll - ok
17:17:06.0867 0304 [ F468C806267D46B68DB7EB32FBF0A103 ] C:\Windows\System32\thumbcache.dll
17:17:06.0867 0304 C:\Windows\System32\thumbcache.dll - ok
17:17:06.0867 0304 [ EF2AE43BCD46ABB13FC3E5B2B1935C73 ] C:\Windows\System32\winmm.dll
17:17:06.0867 0304 C:\Windows\System32\winmm.dll - ok
17:17:06.0867 0304 [ 0DC6669BC2B552C0ECC905B6B761F508 ] C:\Program Files\Microsoft Security Client\msseces.exe
17:17:06.0867 0304 C:\Program Files\Microsoft Security Client\msseces.exe - ok
17:17:06.0882 0304 [ 30F9BACA07F8251D7DD1805A9E919CE0 ] C:\Windows\System32\wdmaud.drv
17:17:06.0882 0304 C:\Windows\System32\wdmaud.drv - ok
17:17:06.0882 0304 [ 78A1E65207484B7F8D3217507745F47C ] C:\Windows\System32\avrt.dll
17:17:06.0882 0304 C:\Windows\System32\avrt.dll - ok
17:17:06.0898 0304 [ 8560FFFC8EB3A806DCD4F82252CFC8C6 ] C:\Windows\System32\ksuser.dll
17:17:06.0898 0304 C:\Windows\System32\ksuser.dll - ok
17:17:06.0898 0304 [ 2D53C5F71653EF94E7829846405D4ED2 ] C:\Program Files\Internet Explorer\iexplore.exe
17:17:06.0898 0304 C:\Program Files\Internet Explorer\iexplore.exe - ok
17:17:06.0898 0304 [ F2C7BB8ACC97F92E987A2D4087D021B1 ] C:\Windows\System32\notepad.exe
17:17:06.0898 0304 C:\Windows\System32\notepad.exe - ok
17:17:06.0913 0304 [ D61C7C567AEBE8397F21F1BA775CE269 ] C:\Windows\Installer\{90140000-0011-0000-1000-0000000FF1CE}\wordicon.exe
17:17:06.0913 0304 C:\Windows\Installer\{90140000-0011-0000-1000-0000000FF1CE}\wordicon.exe - ok
17:17:06.0913 0304 [ 8494E126F0B10180F3293AF861CE1F7A ] C:\Windows\System32\mlang.dll
17:17:06.0913 0304 C:\Windows\System32\mlang.dll - ok
17:17:06.0929 0304 [ 60CC15392FF14DCB9C29C69B3233741B ] C:\Windows\System32\stobject.dll
17:17:06.0929 0304 C:\Windows\System32\stobject.dll - ok
17:17:06.0929 0304 [ 86B6AC0FD2881B3D20B80F51C7152AE0 ] C:\Windows\System32\batmeter.dll
17:17:06.0929 0304 C:\Windows\System32\batmeter.dll - ok
17:17:06.0945 0304 [ 4166F82BE4D24938977DD1746BE9B8A0 ] C:\Windows\System32\es.dll
17:17:06.0945 0304 C:\Windows\System32\es.dll - ok
17:17:06.0945 0304 [ 651F169718CC46C8A9264880C538D5FF ] C:\Windows\System32\prnfldr.dll
17:17:06.0945 0304 C:\Windows\System32\prnfldr.dll - ok
17:17:06.0945 0304 [ 02CDEB5D8B3DD5F6770DEFFBBC0CFAD0 ] C:\Windows\System32\winspool.drv
17:17:06.0945 0304 C:\Windows\System32\winspool.drv - ok
17:17:06.0960 0304 [ 913C2E4A03201644FC986EDEB5F8A390 ] C:\Windows\System32\DXP.dll
17:17:06.0960 0304 C:\Windows\System32\DXP.dll - ok
17:17:06.0960 0304 [ 2BC7C9FD0A9F2C9AFC373F3AD1EE3891 ] C:\Windows\System32\Syncreg.dll
17:17:06.0960 0304 C:\Windows\System32\Syncreg.dll - ok
17:17:06.0976 0304 [ DB70FE36AC8F594E9E69479C076BADB8 ] C:\Windows\System32\HelpPaneProxy.dll
17:17:06.0976 0304 C:\Windows\System32\HelpPaneProxy.dll - ok
17:17:06.0976 0304 [ CD47548A52B02D254BF6D7F7A5F2BFD3 ] C:\Windows\HelpPane.exe
17:17:06.0976 0304 C:\Windows\HelpPane.exe - ok
17:17:06.0991 0304 [ 86F1F949DD51FB5A044F1BD34CBE4AA8 ] C:\Windows\System32\apds.dll
17:17:06.0991 0304 C:\Windows\System32\apds.dll - ok
17:17:06.0991 0304 [ 3819AD4329303EAC88480CA16A650735 ] C:\Windows\System32\UIAnimation.dll
17:17:06.0991 0304 C:\Windows\System32\UIAnimation.dll - ok
17:17:07.0007 0304 [ F244DA6DD2C365ABAFD076222C22C2BE ] C:\Windows\System32\mshtml.dll
17:17:07.0007 0304 C:\Windows\System32\mshtml.dll - ok
17:17:07.0007 0304 [ E7368F0A8D19445EAF5C5D0DBB8B8DAB ] C:\Windows\System32\AltTab.dll
17:17:07.0007 0304 C:\Windows\System32\AltTab.dll - ok
17:17:07.0007 0304 [ C836175870E00ACC546066632E15BD10 ] C:\Windows\ehome\ehSSO.dll
17:17:07.0007 0304 C:\Windows\ehome\ehSSO.dll - ok
17:17:07.0023 0304 [ 66920354B984D4A3848A84B4E66745EA ] C:\Windows\System32\netshell.dll
17:17:07.0023 0304 C:\Windows\System32\netshell.dll - ok
17:17:07.0023 0304 [ A0BFC858B3A45CF9BFFFC3C8C08ED7FC ] C:\Windows\System32\apss.dll
17:17:07.0023 0304 C:\Windows\System32\apss.dll - ok
17:17:07.0038 0304 [ 7FA5CA36B613A000F3A37E6B5170A195 ] C:\Windows\System32\d2d1.dll
17:17:07.0038 0304 C:\Windows\System32\d2d1.dll - ok
17:17:07.0038 0304 [ 86E3822A34D454032D8E88C72AE8CF2D ] C:\Windows\System32\nlaapi.dll
17:17:07.0038 0304 C:\Windows\System32\nlaapi.dll - ok
17:17:07.0054 0304 [ FD4F95ABDE5603478C929B6CB0BDCFFF ] C:\Windows\System32\pnidui.dll
17:17:07.0054 0304 C:\Windows\System32\pnidui.dll - ok
17:17:07.0054 0304 [ E9FD4DA5188391ECD30E6C29213EABF0 ] C:\Windows\System32\DWrite.dll
17:17:07.0054 0304 C:\Windows\System32\DWrite.dll - ok
17:17:07.0054 0304 [ D95DB5C915C001F78709C17285109BDC ] C:\Windows\System32\dxgi.dll
17:17:07.0054 0304 C:\Windows\System32\dxgi.dll - ok
17:17:07.0069 0304 [ 58A0C212ED2ABE462B3A9626F5B96261 ] C:\Windows\System32\d3d10_1.dll
17:17:07.0069 0304 C:\Windows\System32\d3d10_1.dll - ok
17:17:07.0069 0304 [ BD03C64C4B1F34D1F330BF6C4AC8113D ] C:\Windows\System32\QUTIL.DLL
17:17:07.0069 0304 C:\Windows\System32\QUTIL.DLL - ok
17:17:07.0069 0304 [ AB01C36BCC34CCFE5B0BB5FFB2605135 ] C:\Windows\System32\WPDShServiceObj.dll
17:17:07.0069 0304 C:\Windows\System32\WPDShServiceObj.dll - ok
17:17:07.0085 0304 [ AFBBC34687FA48A4928B99AF097C1EC0 ] C:\Windows\System32\d3d10_1core.dll
17:17:07.0085 0304 C:\Windows\System32\d3d10_1core.dll - ok
17:17:07.0085 0304 [ 0CCA9F023E7DC078D7CFBF024655AB7F ] C:\Windows\System32\d3d10warp.dll
17:17:07.0085 0304 C:\Windows\System32\d3d10warp.dll - ok
17:17:07.0101 0304 [ 4F3CD1C59EA71401E155C432BCECE180 ] C:\Windows\System32\PortableDeviceTypes.dll
17:17:07.0101 0304 C:\Windows\System32\PortableDeviceTypes.dll - ok
17:17:07.0101 0304 [ 5DA7D8934F7AB0884A6A8FC02E8B2AA7 ] C:\Windows\System32\PortableDeviceApi.dll
17:17:07.0101 0304 C:\Windows\System32\PortableDeviceApi.dll - ok
17:17:07.0101 0304 [ 92AAF75C3EB344A098DC026BC9DDF42A ] C:\Windows\System32\bthprops.cpl
17:17:07.0101 0304 C:\Windows\System32\bthprops.cpl - ok
17:17:07.0116 0304 [ 2C5B8A680A90E96B1EC0D6DA0505E685 ] C:\Windows\System32\srchadmin.dll
17:17:07.0116 0304 C:\Windows\System32\srchadmin.dll - ok
17:17:07.0132 0304 [ D7CEAEDD5F75D2C8A2E80887D7C114CE ] C:\Windows\System32\webcheck.dll
17:17:07.0132 0304 C:\Windows\System32\webcheck.dll - ok
17:17:07.0132 0304 [ E6F66F31422C44EDC00D9C9329E7DF60 ] C:\Windows\System32\SyncCenter.dll
17:17:07.0132 0304 C:\Windows\System32\SyncCenter.dll - ok
17:17:07.0132 0304 [ DC57BAF15064ECB79F6D2CCF352E1D88 ] C:\Windows\System32\taskschd.dll
17:17:07.0132 0304 C:\Windows\System32\taskschd.dll - ok
17:17:07.0147 0304 [ 8B886A0AC14EAA8599142887991A5A2E ] C:\Windows\System32\imapi2.dll
17:17:07.0147 0304 C:\Windows\System32\imapi2.dll - ok
17:17:07.0147 0304 [ F66A12ACF2B2DB8C73A2C180F562E3EC ] C:\Windows\System32\mstask.dll
17:17:07.0147 0304 C:\Windows\System32\mstask.dll - ok
17:17:07.0163 0304 [ F7073C962C4FB7C415565DDE109DE49F ] C:\Windows\System32\npmproxy.dll
17:17:07.0163 0304 C:\Windows\System32\npmproxy.dll - ok
17:17:07.0163 0304 [ C746F3BF98E92FB137B5BD2B8B5925BD ] C:\Windows\System32\FXSST.dll
17:17:07.0163 0304 C:\Windows\System32\FXSST.dll - ok
17:17:07.0179 0304 [ 34E6D8C67E7FD7C917BECFECA326B168 ] C:\Windows\System32\FXSAPI.dll
17:17:07.0179 0304 C:\Windows\System32\FXSAPI.dll - ok
17:17:07.0179 0304 [ C8E8B8239FCF17BEA10E751BE5854631 ] C:\Windows\System32\FXSRESM.dll
17:17:07.0179 0304 C:\Windows\System32\FXSRESM.dll - ok
17:17:07.0179 0304 [ D607B2F1BEE3992AA6C2C92C0A2F0855 ] C:\Windows\System32\FXSSVC.exe
17:17:07.0179 0304 C:\Windows\System32\FXSSVC.exe - ok
17:17:07.0194 0304 [ D2155709E336C3BC15729EB87FEC6064 ] C:\Windows\System32\rasdlg.dll
17:17:07.0194 0304 C:\Windows\System32\rasdlg.dll - ok
17:17:07.0194 0304 [ 114429A77D935053E13A9BF98A8B8CA1 ] C:\Windows\System32\mprapi.dll
17:17:07.0194 0304 C:\Windows\System32\mprapi.dll - ok
17:17:07.0210 0304 [ F0AAB2A76A7AF04C70A818E96BAF3E64 ] C:\Windows\System32\hgcpl.dll
17:17:07.0210 0304 C:\Windows\System32\hgcpl.dll - ok
17:17:07.0210 0304 [ 06A7422224D9865A5613710A089987DF ] C:\Windows\System32\provsvc.dll
17:17:07.0210 0304 C:\Windows\System32\provsvc.dll - ok
17:17:07.0210 0304 [ 019CD868461B646E09BDF04474C19341 ] C:\Windows\System32\rasapi32.dll
17:17:07.0210 0304 C:\Windows\System32\rasapi32.dll - ok
17:17:07.0225 0304 [ 1E4BDDBD5A63059A97063339B4F8986F ] C:\Windows\System32\actxprxy.dll
17:17:07.0225 0304 C:\Windows\System32\actxprxy.dll - ok
17:17:07.0225 0304 [ B28DEEC597C8DEB70C744C7CF9210E3E ] C:\Windows\System32\rasman.dll
17:17:07.0225 0304 C:\Windows\System32\rasman.dll - ok
17:17:07.0241 0304 [ F5A61F0A0030C80DF319B0C14A4C8885 ] C:\Windows\System32\rtutils.dll
17:17:07.0241 0304 C:\Windows\System32\rtutils.dll - ok
17:17:07.0241 0304 [ BB68579E181956E37EB11F9083C01CF3 ] C:\Windows\System32\dot3api.dll
17:17:07.0241 0304 C:\Windows\System32\dot3api.dll - ok
17:17:07.0257 0304 [ 3B367397320C26DBA890B260F80D1B1B ] C:\Windows\System32\hnetcfg.dll
17:17:07.0257 0304 C:\Windows\System32\hnetcfg.dll - ok
17:17:07.0257 0304 [ 357BE883C5236BFC7341CB9E82308908 ] C:\Windows\System32\wlanapi.dll
17:17:07.0257 0304 C:\Windows\System32\wlanapi.dll - ok
17:17:07.0257 0304 [ E4FCA0F99A41E460C84016DEFD31E6EF ] C:\Windows\System32\wlanhlp.dll
17:17:07.0257 0304 C:\Windows\System32\wlanhlp.dll - ok
17:17:07.0272 0304 [ 5DA219F57A9076FB6FBD3C9C3713A672 ] C:\Windows\System32\WWanAPI.dll
17:17:07.0272 0304 C:\Windows\System32\WWanAPI.dll - ok
17:17:07.0272 0304 [ 62C7AACC746C9723468A8F2169ED3E85 ] C:\Windows\System32\wwapi.dll
17:17:07.0272 0304 C:\Windows\System32\wwapi.dll - ok
17:17:07.0288 0304 [ 0B9F7D42D745038437FAE70D97F9AD5A ] C:\Windows\System32\QAGENT.DLL
17:17:07.0288 0304 C:\Windows\System32\QAGENT.DLL - ok
17:17:07.0288 0304 [ B3CE0951E3C1EA3C733573C472EE85F9 ] C:\Windows\System32\msimtf.dll
17:17:07.0288 0304 C:\Windows\System32\msimtf.dll - ok
17:17:07.0303 0304 [ C6DCD1D11ED6827F05C00773C3E7053C ] C:\Windows\System32\sfc.dll
17:17:07.0303 0304 C:\Windows\System32\sfc.dll - ok
17:17:07.0303 0304 [ 895C9AB0A855547445C4181195230757 ] C:\Windows\System32\sfc_os.dll
17:17:07.0303 0304 C:\Windows\System32\sfc_os.dll - ok
17:17:07.0303 0304 [ 22CC6CDBA678790046693654C3B212E4 ] C:\Program Files (x86)\Internet Explorer\iexplore.exe
17:17:07.0303 0304 C:\Program Files (x86)\Internet Explorer\iexplore.exe - ok
17:17:07.0319 0304 [ 9FAC0F6D5F3D922DB294E30CD3F62369 ] C:\Windows\SysWOW64\urlmon.dll
17:17:07.0319 0304 C:\Windows\SysWOW64\urlmon.dll - ok
17:17:07.0319 0304 [ EB8A00E8E9931A7EC04F920B09D880D8 ] C:\Windows\SysWOW64\iertutil.dll
17:17:07.0319 0304 C:\Windows\SysWOW64\iertutil.dll - ok
17:17:07.0335 0304 [ 5553611E2F9EA6F613079177F1233068 ] C:\Windows\SysWOW64\wininet.dll
17:17:07.0335 0304 C:\Windows\SysWOW64\wininet.dll - ok
17:17:07.0335 0304 [ 0BA3F31E2B4D8D99DF8DD19E81155374 ] C:\Windows\SysWOW64\ieframe.dll
17:17:07.0335 0304 C:\Windows\SysWOW64\ieframe.dll - ok
17:17:07.0335 0304 [ 4D59A5B6EF0AF6F9FDF3D157534380AF ] C:\Windows\SysWOW64\oleacc.dll
17:17:07.0335 0304 C:\Windows\SysWOW64\oleacc.dll - ok
17:17:07.0350 0304 [ A223CF703E28CBD7E9E7982141FA403C ] C:\Windows\SysWOW64\comdlg32.dll
17:17:07.0350 0304 C:\Windows\SysWOW64\comdlg32.dll - ok
17:17:07.0350 0304 [ C733D233B623B7FFCE5031E4B756EE26 ] C:\Windows\SysWOW64\profapi.dll
17:17:07.0350 0304 C:\Windows\SysWOW64\profapi.dll - ok
17:17:07.0366 0304 [ 62390F4ACE9E2B63E3CA26B7F7497897 ] C:\Windows\SysWOW64\dnsapi.dll
17:17:07.0366 0304 C:\Windows\SysWOW64\dnsapi.dll - ok
17:17:07.0366 0304 [ 6095266CAAF5E75F394CFD4844CC4C25 ] C:\Windows\SysWOW64\IPHLPAPI.DLL
17:17:07.0366 0304 C:\Windows\SysWOW64\IPHLPAPI.DLL - ok
17:17:07.0366 0304 [ CFF35B879D1618D42C86644C717BA947 ] C:\Windows\SysWOW64\winnsi.dll
17:17:07.0366 0304 C:\Windows\SysWOW64\winnsi.dll - ok
17:17:07.0381 0304 [ 8C338238C16777A802D6A9211EB2BA50 ] C:\Windows\SysWOW64\netprofm.dll
17:17:07.0381 0304 C:\Windows\SysWOW64\netprofm.dll - ok
17:17:07.0381 0304 [ 045DB4EAB4FBD23210E85ECC3F464A2E ] C:\Windows\SysWOW64\nlaapi.dll
17:17:07.0381 0304 C:\Windows\SysWOW64\nlaapi.dll - ok
17:17:07.0397 0304 [ 15E298B5EC5B89C5994A59863969D9FF ] C:\Windows\SysWOW64\npmproxy.dll
17:17:07.0397 0304 C:\Windows\SysWOW64\npmproxy.dll - ok
17:17:07.0397 0304 [ 4BA9EFCDA842C6A6692AFDA6E2BEF70A ] C:\Program Files (x86)\Internet Explorer\sqmapi.dll
17:17:07.0397 0304 C:\Program Files (x86)\Internet Explorer\sqmapi.dll - ok
17:17:07.0397 0304 [ 5E4FF36923C37C80B537DCE6CAA755F9 ] C:\Program Files (x86)\Internet Explorer\ieproxy.dll
17:17:07.0397 0304 C:\Program Files (x86)\Internet Explorer\ieproxy.dll - ok
17:17:07.0413 0304 [ C02E3CE20E7776C922B5C8938350B5F1 ] C:\Windows\SysWOW64\apphelp.dll
17:17:07.0413 0304 C:\Windows\SysWOW64\apphelp.dll - ok
17:17:07.0428 0304 [ 839F96DBAAFD3353E0B248A5E0BD2A51 ] C:\Windows\SysWOW64\rasapi32.dll
17:17:07.0428 0304 C:\Windows\SysWOW64\rasapi32.dll - ok
17:17:07.0428 0304 [ FFA7172354B9256DBB2CDD75F16F33FE ] C:\Windows\SysWOW64\rasman.dll
17:17:07.0428 0304 C:\Windows\SysWOW64\rasman.dll - ok
17:17:07.0444 0304 [ 406F7B9C71B99872670EE9A8D52E2FE5 ] C:\Windows\SysWOW64\rtutils.dll
17:17:07.0444 0304 C:\Windows\SysWOW64\rtutils.dll - ok
17:17:07.0444 0304 [ 73E8667A19FEEDD856DF2695E9E511D4 ] C:\Windows\SysWOW64\wship6.dll
17:17:07.0444 0304 C:\Windows\SysWOW64\wship6.dll - ok
17:17:07.0444 0304 [ 2DAD4B6B659F7E5DFBCB6D2C634FA6F3 ] C:\Program Files (x86)\Internet Explorer\IEShims.dll
17:17:07.0444 0304 C:\Program Files (x86)\Internet Explorer\IEShims.dll - ok
17:17:07.0459 0304 [ CC0713B192BF47A124168957ACD75CC1 ] C:\Windows\SysWOW64\ieui.dll
17:17:07.0459 0304 C:\Windows\SysWOW64\ieui.dll - ok
17:17:07.0459 0304 [ 18AB2E5A40064ED5F7791AC5946A90F3 ] C:\Windows\SysWOW64\msimg32.dll
17:17:07.0459 0304 C:\Windows\SysWOW64\msimg32.dll - ok
17:17:07.0475 0304 [ 43964FA89CCF97BA6BE34D69455AC65F ] C:\Windows\SysWOW64\uxtheme.dll
17:17:07.0475 0304 C:\Windows\SysWOW64\uxtheme.dll - ok
17:17:07.0475 0304 [ 26EAEE08CAF82AA7F03C5020F51DA541 ] C:\Windows\SysWOW64\propsys.dll
17:17:07.0475 0304 C:\Windows\SysWOW64\propsys.dll - ok
17:17:07.0491 0304 [ 0C2AE180D8C35F723BA13A16AA9AC453 ] C:\Windows\SysWOW64\xmllite.dll
17:17:07.0491 0304 C:\Windows\SysWOW64\xmllite.dll - ok
17:17:07.0491 0304 [ 8898C95862D03D16B2A06DB4DB6BB6B2 ] C:\Windows\SysWOW64\ExplorerFrame.dll
17:17:07.0491 0304 C:\Windows\SysWOW64\ExplorerFrame.dll - ok
17:17:07.0491 0304 [ BB197F54A8F69EEA8356B7F70E6D3A20 ] C:\Windows\SysWOW64\mshtml.dll
17:17:07.0491 0304 C:\Windows\SysWOW64\mshtml.dll - ok
17:17:07.0506 0304 [ 6E1F8165C365D35C8E3C045AF0CDD481 ] C:\Windows\SysWOW64\duser.dll
17:17:07.0506 0304 C:\Windows\SysWOW64\duser.dll - ok
17:17:07.0506 0304 [ EE06B85BC69F18826302348A2AD089E0 ] C:\Windows\SysWOW64\dui70.dll
17:17:07.0506 0304 C:\Windows\SysWOW64\dui70.dll - ok
17:17:07.0522 0304 [ 41323AB614A2B66AD77B1121D24AC895 ] C:\Windows\SysWOW64\setupapi.dll
17:17:07.0522 0304 C:\Windows\SysWOW64\setupapi.dll - ok
17:17:07.0522 0304 [ E702ED19C332C1F12C1403D100E2F4F3 ] C:\Windows\SysWOW64\cfgmgr32.dll
17:17:07.0522 0304 C:\Windows\SysWOW64\cfgmgr32.dll - ok
17:17:07.0522 0304 [ 6C9C05D5344B9AB80E9180FC859BC45A ] C:\Windows\SysWOW64\devobj.dll
17:17:07.0522 0304 C:\Windows\SysWOW64\devobj.dll - ok
17:17:07.0537 0304 [ 9FDF43178419CB0D4B50373C50396BDF ] C:\Windows\SysWOW64\d2d1.dll
17:17:07.0537 0304 C:\Windows\SysWOW64\d2d1.dll - ok
17:17:07.0537 0304 [ 9F9B0AD8804ECFF8CBD279992DCF7210 ] C:\Windows\SysWOW64\DWrite.dll
17:17:07.0537 0304 C:\Windows\SysWOW64\DWrite.dll - ok
17:17:07.0553 0304 [ 39C5F32747B3414D1BB216FDB1DEFC58 ] C:\Windows\SysWOW64\dwmapi.dll
17:17:07.0553 0304 C:\Windows\SysWOW64\dwmapi.dll - ok
17:17:07.0553 0304 [ DD76301614636306414EFA94A9AC5A03 ] C:\Windows\SysWOW64\dxgi.dll
17:17:07.0553 0304 C:\Windows\SysWOW64\dxgi.dll - ok
17:17:07.0569 0304 [ 334A663962618F7A136FA1F80F773C5F ] C:\Windows\SysWOW64\wintrust.dll
17:17:07.0569 0304 C:\Windows\SysWOW64\wintrust.dll - ok
17:17:07.0569 0304 [ AD8F6914F7A9AC28047389BE7AF56EBF ] C:\Windows\SysWOW64\d3d10_1.dll
17:17:07.0569 0304 C:\Windows\SysWOW64\d3d10_1.dll - ok
17:17:07.0584 0304 [ 9103E020906FC7A166F380EF2D2516B2 ] C:\Windows\SysWOW64\d3d10_1core.dll
17:17:07.0584 0304 C:\Windows\SysWOW64\d3d10_1core.dll - ok
17:17:07.0584 0304 [ 0DFD0ADD7FF9C48938757220F1CEBE95 ] C:\Windows\SysWOW64\d3d10level9.dll
17:17:07.0584 0304 C:\Windows\SysWOW64\d3d10level9.dll - ok
17:17:07.0584 0304 [ 8EE6BDE1D572677AA35707C52C585F75 ] C:\Windows\SysWOW64\mlang.dll
17:17:07.0584 0304 C:\Windows\SysWOW64\mlang.dll - ok
17:17:07.0600 0304 [ ED6EE83D61EBC683C2CD8E899EA6FEBE ] C:\Windows\SysWOW64\rasadhlp.dll
17:17:07.0600 0304 C:\Windows\SysWOW64\rasadhlp.dll - ok
17:17:07.0600 0304 [ ACCBA604D34842844133A731F8045B32 ] C:\Windows\SysWOW64\sxs.dll
17:17:07.0600 0304 C:\Windows\SysWOW64\sxs.dll - ok
17:17:07.0615 0304 [ EE9D715AF1B928982F417238B9914484 ] C:\Windows\SysWOW64\ieapfltr.dll
17:17:07.0615 0304 C:\Windows\SysWOW64\ieapfltr.dll - ok
17:17:07.0615 0304 [ 394373142655ACCF49D64AAD466C86FF ] C:\Windows\SysWOW64\jscript9.dll
17:17:07.0615 0304 C:\Windows\SysWOW64\jscript9.dll - ok
17:17:07.0631 0304 [ 1D1EAA16D193C6A2D45981ED3914D22A ] C:\Windows\SysWOW64\msimtf.dll
17:17:07.0631 0304 C:\Windows\SysWOW64\msimtf.dll - ok
17:17:07.0631 0304 [ 691C8DFB208227F0CBB5C0897C742ACE ] C:\Windows\SysWOW64\WindowsCodecs.dll
17:17:07.0631 0304 C:\Windows\SysWOW64\WindowsCodecs.dll - ok
17:17:07.0631 0304 [ BEADABADC909D2C7F59CD3DEA77EE67E ] C:\Windows\SysWOW64\d3d10warp.dll
17:17:07.0631 0304 C:\Windows\SysWOW64\d3d10warp.dll - ok
17:17:07.0647 0304 [ 2572E1F0254E2267E97DE1B15D099EC4 ] C:\Windows\SysWOW64\d3d10.dll
17:17:07.0647 0304 C:\Windows\SysWOW64\d3d10.dll - ok
17:17:07.0647 0304 [ 547F78746F20901C770E8653B242217C ] C:\Windows\SysWOW64\d3d10core.dll
17:17:07.0647 0304 C:\Windows\SysWOW64\d3d10core.dll - ok
17:17:07.0647 0304 [ 2C64AF297F12582BD95D7D94C18E464C ] C:\Windows\System32\esent.dll
17:17:07.0647 0304 C:\Windows\System32\esent.dll - ok
17:17:07.0662 0304 [ 220159496484D34009DE71CA1A68E0D4 ] C:\Windows\System32\wbem\NCProv.dll
17:17:07.0662 0304 C:\Windows\System32\wbem\NCProv.dll - ok
17:17:07.0662 0304 [ 9C0DC1DAAD14D443DD5A0D1EE78D775E ] C:\Windows\SysWOW64\userenv.dll
17:17:07.0662 0304 C:\Windows\SysWOW64\userenv.dll - ok
17:17:07.0678 0304 [ 5987EA8A82C53359BCD2C29D6588583E ] C:\Windows\SysWOW64\linkinfo.dll
17:17:07.0678 0304 C:\Windows\SysWOW64\linkinfo.dll - ok
17:17:07.0678 0304 [ 6699A112A3BDC9B52338512894EBA9D6 ] C:\Program Files\Windows Media Player\wmpnscfg.exe
17:17:07.0678 0304 C:\Program Files\Windows Media Player\wmpnscfg.exe - ok
17:17:07.0693 0304 [ C7494C67A6BF6FE914808E42F8265FEF ] C:\Program Files\Windows Media Player\wmpnssci.dll
17:17:07.0693 0304 C:\Program Files\Windows Media Player\wmpnssci.dll - ok
17:17:07.0693 0304 [ 58A0CDABEA255616827B1C22C9994466 ] C:\Windows\System32\NapiNSP.dll
17:17:07.0693 0304 C:\Windows\System32\NapiNSP.dll - ok
17:17:07.0709 0304 [ 2E2072EB48238FCA8FBB7A9F5FABAC45 ] C:\Windows\System32\winrnr.dll
17:17:07.0709 0304 C:\Windows\System32\winrnr.dll - ok
17:17:07.0709 0304 [ 613C8CE10A5FDE582BA5FA64C4D56AAA ] C:\Windows\System32\pnrpnsp.dll
17:17:07.0709 0304 C:\Windows\System32\pnrpnsp.dll - ok
17:17:07.0725 0304 [ 88351B29B622B30962D2FEB6CA8D860B ] C:\Windows\System32\rasadhlp.dll
17:17:07.0725 0304 C:\Windows\System32\rasadhlp.dll - ok
17:17:07.0725 0304 [ 9E113C0AD33F92A5741584286F93F84B ] C:\Windows\System32\VAN.dll
17:17:07.0725 0304 C:\Windows\System32\VAN.dll - ok
17:17:07.0740 0304 [ 5D68F68E12B8BCD35ADE5A7B4FE5F456 ] C:\Windows\System32\wwanmm.dll
17:17:07.0740 0304 C:\Windows\System32\wwanmm.dll - ok
17:17:07.0740 0304 [ 18C27789FCFDDDB8D45C1EC4BC77CC8C ] C:\Windows\System32\RASMM.dll
17:17:07.0740 0304 C:\Windows\System32\RASMM.dll - ok
17:17:07.0740 0304 [ 448DE6CDB7976373B35CA03B6BF9BE48 ] C:\Windows\System32\WlanMM.dll
17:17:07.0740 0304 C:\Windows\System32\WlanMM.dll - ok
17:17:07.0756 0304 [ 158117F3CF278F01C6F24E89E2141E81 ] C:\Windows\SysWOW64\FWPUCLNT.DLL
17:17:07.0756 0304 C:\Windows\SysWOW64\FWPUCLNT.DLL - ok
17:17:07.0756 0304 [ 39E9AACC4C5FB3C3C0B12DE6D491553D ] C:\Windows\SysWOW64\WindowsCodecsExt.dll
17:17:07.0756 0304 C:\Windows\SysWOW64\WindowsCodecsExt.dll - ok
17:17:07.0771 0304 [ 711A2E6A55EC7BFD59B5F649D58B704B ] C:\Program Files (x86)\Microsoft Silverlight\4.1.10329.0\npctrl.dll
17:17:07.0771 0304 C:\Program Files (x86)\Microsoft Silverlight\4.1.10329.0\npctrl.dll - ok
17:17:07.0771 0304 [ 7D548A7319094354AEECA5D14FEE319C ] C:\Program Files (x86)\Microsoft Silverlight\4.1.10329.0\agcore.dll
17:17:07.0771 0304 C:\Program Files (x86)\Microsoft Silverlight\4.1.10329.0\agcore.dll - ok
17:17:07.0771 0304 [ 26A634B2E0FD87F23541AD13A503CA72 ] C:\Windows\SysWOW64\winmm.dll
17:17:07.0771 0304 C:\Windows\SysWOW64\winmm.dll - ok
17:17:07.0787 0304 [ 742AA02BD9FA3492C9E525BBD427D87D ] C:\Windows\SysWOW64\samcli.dll
17:17:07.0787 0304 C:\Windows\SysWOW64\samcli.dll - ok
17:17:07.0787 0304 [ 4DBC81CEFE9DB36856880BFB3491C100 ] C:\Windows\SysWOW64\msxml6.dll
17:17:07.0787 0304 C:\Windows\SysWOW64\msxml6.dll - ok
17:17:07.0803 0304 [ E9F427EF46965D33E878A507A2F5CCB6 ] C:\Windows\SysWOW64\Macromed\Flash\Flash11e.ocx
17:17:07.0803 0304 C:\Windows\SysWOW64\Macromed\Flash\Flash11e.ocx - ok
17:17:07.0803 0304 [ 0E85C11F8850D524B02181C6E02BA9AE ] C:\Windows\SysWOW64\dsound.dll
17:17:07.0803 0304 C:\Windows\SysWOW64\dsound.dll - ok
17:17:07.0818 0304 [ 08DFDBD2FD4EA951DC46B1C7661ED35A ] C:\Windows\SysWOW64\powrprof.dll
17:17:07.0818 0304 C:\Windows\SysWOW64\powrprof.dll - ok
17:17:07.0818 0304 [ 7459301D21C2E21468823F73042D9F87 ] C:\Windows\SysWOW64\d3d9.dll
17:17:07.0818 0304 C:\Windows\SysWOW64\d3d9.dll - ok
17:17:07.0818 0304 [ 77B1471A490B53B24EFE136F09F76550 ] C:\Windows\SysWOW64\d3d8thk.dll
17:17:07.0818 0304 C:\Windows\SysWOW64\d3d8thk.dll - ok
17:17:07.0834 0304 [ 205B7034B64DE5A68DEB96B47B7E889B ] C:\Windows\SysWOW64\mscms.dll
17:17:07.0834 0304 C:\Windows\SysWOW64\mscms.dll - ok
17:17:07.0834 0304 [ 8C680C0E6B3D6711B2B88AC82FE1804E ] C:\Windows\SysWOW64\MMDevAPI.dll
17:17:07.0834 0304 C:\Windows\SysWOW64\MMDevAPI.dll - ok
17:17:07.0849 0304 [ 35AAE2E841AA1A949775168E119482C9 ] C:\Windows\SysWOW64\msls31.dll
17:17:07.0849 0304 C:\Windows\SysWOW64\msls31.dll - ok
17:17:07.0849 0304 [ 68563AC389F92EE79F1C714288BA1DCE ] C:\Windows\SysWOW64\imgutil.dll
17:17:07.0849 0304 C:\Windows\SysWOW64\imgutil.dll - ok
17:17:07.0865 0304 [ BF591B5C2CC38314518467E883AE37C5 ] C:\Windows\SysWOW64\credssp.dll
17:17:07.0865 0304 C:\Windows\SysWOW64\credssp.dll - ok
17:17:07.0865 0304 [ 76C48F0CD8A526858AB9A4886586942A ] C:\Windows\SysWOW64\schannel.dll
17:17:07.0865 0304 C:\Windows\SysWOW64\schannel.dll - ok
17:17:07.0865 0304 [ F11A57E91FDAECFB41A5CB21EB1EBC8E ] C:\Windows\System32\dssenh.dll
17:17:07.0865 0304 C:\Windows\System32\dssenh.dll - ok
17:17:07.0881 0304 [ B24ABFAB2D541996A38905369D511953 ] C:\Windows\SysWOW64\wdmaud.drv
17:17:07.0881 0304 C:\Windows\SysWOW64\wdmaud.drv - ok
17:17:07.0881 0304 [ 139D3AB6AA920C34C50CBFFB9EB7D222 ] C:\Windows\SysWOW64\avrt.dll
17:17:07.0881 0304 C:\Windows\SysWOW64\avrt.dll - ok
17:17:07.0896 0304 [ 9C67F6BBDA3881CFD02095160CF91576 ] C:\Windows\SysWOW64\ksuser.dll
17:17:07.0896 0304 C:\Windows\SysWOW64\ksuser.dll - ok
17:17:07.0896 0304 [ 3989BB6998C32753FDD5493879C1835A ] C:\Windows\SysWOW64\ncrypt.dll
17:17:07.0896 0304 C:\Windows\SysWOW64\ncrypt.dll - ok
17:17:07.0896 0304 [ CE71B9119A258EDD0A05B37D7B0F92E3 ] C:\Windows\SysWOW64\bcrypt.dll
17:17:07.0896 0304 C:\Windows\SysWOW64\bcrypt.dll - ok
17:17:07.0912 0304 [ E8449FE262D7406BCB2AC2A45C53EC5F ] C:\Windows\SysWOW64\bcryptprimitives.dll
17:17:07.0912 0304 C:\Windows\SysWOW64\bcryptprimitives.dll - ok
17:17:07.0912 0304 [ 1097F3035BAF46CED8B332B3564C5108 ] C:\Windows\SysWOW64\gpapi.dll
17:17:07.0912 0304 C:\Windows\SysWOW64\gpapi.dll - ok
17:17:07.0927 0304 [ 1F778C34C751E1B585E4FC66659BA904 ] C:\Windows\SysWOW64\cryptnet.dll
17:17:07.0927 0304 C:\Windows\SysWOW64\cryptnet.dll - ok
17:17:07.0927 0304 [ CA493A92DA9880B6F1A89C3DBD54BA5B ] C:\Windows\SysWOW64\dxtrans.dll
17:17:07.0927 0304 C:\Windows\SysWOW64\dxtrans.dll - ok
17:17:07.0927 0304 [ F10E5311E5093FA3C00FF88C54C32FCA ] C:\Windows\SysWOW64\atl.dll
17:17:07.0927 0304 C:\Windows\SysWOW64\atl.dll - ok
17:17:07.0943 0304 [ BAB9EF9A340113666F678AA2474904B6 ] C:\Windows\SysWOW64\ddrawex.dll
17:17:07.0943 0304 C:\Windows\SysWOW64\ddrawex.dll - ok
17:17:07.0943 0304 [ 198552AEFECA69D646867EC8D792DE95 ] C:\Windows\SysWOW64\ddraw.dll
17:17:07.0943 0304 C:\Windows\SysWOW64\ddraw.dll - ok
17:17:07.0959 0304 [ 55E5B32AE8D1F51A63C82919656FD275 ] C:\Windows\SysWOW64\dciman32.dll
17:17:07.0959 0304 C:\Windows\SysWOW64\dciman32.dll - ok
17:17:07.0959 0304 [ 6F8E3B7B70E1BBA871212940C1FBDF60 ] C:\Windows\SysWOW64\SensApi.dll
17:17:07.0959 0304 C:\Windows\SysWOW64\SensApi.dll - ok
17:17:07.0959 0304 [ 4312DEBDACBE338F0B90E7F08E7672BE ] C:\Windows\SysWOW64\dxtmsft.dll
17:17:07.0959 0304 C:\Windows\SysWOW64\dxtmsft.dll - ok
17:17:07.0974 0304 [ 17C237AC01D7C8AB91A0E6AF767A5831 ] C:\Windows\SysWOW64\NaturalLanguage6.dll
17:17:07.0974 0304 C:\Windows\SysWOW64\NaturalLanguage6.dll - ok
17:17:07.0974 0304 [ 2992932C1AB1D29A1A4A9E8CB8530CBF ] C:\Windows\SysWOW64\NlsData0009.dll
17:17:07.0974 0304 C:\Windows\SysWOW64\NlsData0009.dll - ok
17:17:07.0990 0304 [ C8CB301BF896C7C556BBE963FADF5BB6 ] C:\Windows\SysWOW64\NlsLexicons0009.dll
17:17:07.0990 0304 C:\Windows\SysWOW64\NlsLexicons0009.dll - ok
17:17:07.0990 0304 [ 00D1F89836927C0F2E37321E6B441FCE ] C:\Windows\SysWOW64\msxml3.dll
17:17:07.0990 0304 C:\Windows\SysWOW64\msxml3.dll - ok
17:17:08.0005 0304 [ 3DEBA83ECDAF6ED2E72430D238803117 ] C:\Windows\System32\wmp.dll
17:17:08.0005 0304 C:\Windows\System32\wmp.dll - ok
17:17:08.0005 0304 [ 550BF4ACD6FC3F41DC5A83EF31B9F9B4 ] C:\Windows\System32\wmploc.DLL
17:17:08.0005 0304 C:\Windows\System32\wmploc.DLL - ok
17:17:08.0005 0304 [ 816B681CC308FAA128EDCB90643DCED7 ] C:\Windows\SysWOW64\icm32.dll
17:17:08.0005 0304 C:\Windows\SysWOW64\icm32.dll - ok
17:17:08.0021 0304 [ 81E7E920312D372CF57A817049AC7C76 ] C:\Program Files (x86)\Common Files\microsoft shared\OFFICE14\MSOXMLMF.DLL
17:17:08.0021 0304 C:\Program Files (x86)\Common Files\microsoft shared\OFFICE14\MSOXMLMF.DLL - ok
17:17:08.0021 0304 [ CDBE9690CF2B8409FACAD94FAC9479C9 ] C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcr90.dll
17:17:08.0021 0304 C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcr90.dll - ok
17:17:08.0037 0304 [ 76A87EE9E61AC6C5F64DF4A3D1F13659 ] C:\Windows\System32\twext.dll
17:17:08.0037 0304 C:\Windows\System32\twext.dll - ok
17:17:08.0037 0304 [ 8163E23ED09D26E44D8F7E926DFEAC60 ] C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamext.dll
17:17:08.0037 0304 C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamext.dll - ok
17:17:08.0052 0304 [ EF33F6DD121B7F546F36112B8B73C609 ] C:\Windows\System32\zipfldr.dll
17:17:08.0052 0304 C:\Windows\System32\zipfldr.dll - ok
17:17:08.0052 0304 [ 93522C00D1F58DC015959FFF3D719C85 ] C:\Program Files (x86)\WinRAR\RarExt64.dll
17:17:08.0052 0304 C:\Program Files (x86)\WinRAR\RarExt64.dll - ok
17:17:08.0052 0304 [ DBC01686ED79C13F2F6F842E825B4F04 ] C:\PROGRA~1\MICROS~3\shellext.dll
17:17:08.0052 0304 C:\PROGRA~1\MICROS~3\shellext.dll - ok
17:17:08.0068 0304 [ CE07AF86AA72F4AE964239DE0DABE738 ] C:\Windows\System32\msxml3.dll
17:17:08.0068 0304 C:\Windows\System32\msxml3.dll - ok
17:17:08.0068 0304 [ 11EAC0C9B2D59C3E250127BADC543F03 ] C:\Windows\System32\syncui.dll
17:17:08.0068 0304 C:\Windows\System32\syncui.dll - ok
17:17:08.0083 0304 [ 33947F1566C8EC685EB6057D882C99D2 ] C:\Windows\System32\synceng.dll
17:17:08.0083 0304 C:\Windows\System32\synceng.dll - ok
17:17:08.0083 0304 [ 4E73FBEF1C00A2BF8C81586D7ECE4954 ] C:\Windows\System32\acppage.dll
17:17:08.0083 0304 C:\Windows\System32\acppage.dll - ok
17:17:08.0083 0304 [ 6441D2FFB14B613C1D44D709BC7F8FFA ] C:\Windows\System32\sendmail.dll
17:17:08.0083 0304 C:\Windows\System32\sendmail.dll - ok
17:17:08.0099 0304 [ 57794FADEA5E4C458BD98D1036C2E7CB ] C:\Windows\System32\mydocs.dll
17:17:08.0099 0304 C:\Windows\System32\mydocs.dll - ok
17:17:08.0099 0304 [ 1BE028941A8A77932C2948AB780046F6 ] C:\Windows\System32\WFS.exe
17:17:08.0099 0304 C:\Windows\System32\WFS.exe - ok
17:17:08.0115 0304 [ 21B62252D283FBF75A5F67849EBD9B2E ] C:\Windows\System32\WFSR.dll
17:17:08.0115 0304 C:\Windows\System32\WFSR.dll - ok
17:17:08.0115 0304 [ 5F639198C4137075DA50E61C23963C11 ] C:\Windows\System32\drprov.dll
17:17:08.0115 0304 C:\Windows\System32\drprov.dll - ok
17:17:08.0130 0304 [ 73A1430ABA9119A2C25892EF9C3CB7A1 ] C:\Windows\System32\davclnt.dll
17:17:08.0130 0304 C:\Windows\System32\davclnt.dll - ok
17:17:08.0130 0304 [ 45B24A357C801CE62052FE0CDC8BD4D2 ] C:\Windows\System32\davhlpr.dll
17:17:08.0130 0304 C:\Windows\System32\davhlpr.dll - ok
17:17:08.0146 0304 [ 7273921B6DDFEFF3A8567B9800C5673A ] C:\Windows\System32\ntlanman.dll
17:17:08.0146 0304 C:\Windows\System32\ntlanman.dll - ok
17:17:08.0146 0304 [ EFD63099ED552D8B2410D78ECA4AA040 ] C:\Windows\System32\wpdshext.dll
17:17:08.0146 0304 C:\Windows\System32\wpdshext.dll - ok
17:17:08.0146 0304 [ CFF03DCC74E5C80686FA8AA972CA4770 ] C:\Windows\System32\EhStorAPI.dll
17:17:08.0146 0304 C:\Windows\System32\EhStorAPI.dll - ok
17:17:08.0161 0304 [ EBC984F0CE40E0DAF0454D806EC2A7EC ] C:\Users\Glory\Desktop\tdsskiller.exe
17:17:08.0161 0304 C:\Users\Glory\Desktop\tdsskiller.exe - ok
17:17:08.0161 0304 [ CC9BBCFC715FBEDF7AE476106FE653E9 ] C:\Windows\SysWOW64\winhttp.dll
17:17:08.0161 0304 C:\Windows\SysWOW64\winhttp.dll - ok
17:17:08.0177 0304 [ A86A1C5DF1C662D1C75815BF4794F16D ] C:\Windows\SysWOW64\webio.dll
17:17:08.0177 0304 C:\Windows\SysWOW64\webio.dll - ok
17:17:08.0177 0304 [ F146E2BA475893DD77B2370DC1211FC6 ] C:\Windows\System32\drivers\26789392.sys
17:17:08.0177 0304 C:\Windows\System32\drivers\26789392.sys - ok
17:17:08.0177 0304 [ F1317678AC2FBA9F640279290B2E2988 ] C:\Windows\SysWOW64\msi.dll
17:17:08.0177 0304 C:\Windows\SysWOW64\msi.dll - ok
17:17:08.0193 0304 [ 6EC594AB7EFA45EACDE65FD4040F53D9 ] C:\Windows\SysWOW64\riched20.dll
17:17:08.0193 0304 C:\Windows\SysWOW64\riched20.dll - ok
17:17:08.0193 0304 [ 005247E3057BC5D5C3F8C6F886FFC10C ] C:\Windows\System32\wbem\WMIADAP.exe
17:17:08.0193 0304 C:\Windows\System32\wbem\WMIADAP.exe - ok
17:17:08.0208 0304 [ 9FE3ED67345F0FF829A4A53B90E09672 ] C:\Windows\System32\loadperf.dll
17:17:08.0208 0304 C:\Windows\System32\loadperf.dll - ok
17:17:08.0208 0304 [ 64D757051B5B273E55C93E4503EA4F3E ] C:\Windows\System32\wbem\WmiPrvSE.exe
17:17:08.0208 0304 C:\Windows\System32\wbem\WmiPrvSE.exe - ok
17:17:08.0208 0304 [ 031C6782F2D50336FC2C72F8D14A4C13 ] C:\Windows\System32\wbem\wmiprov.dll
17:17:08.0208 0304 C:\Windows\System32\wbem\wmiprov.dll - ok
17:17:08.0224 0304 ============================================================
17:17:08.0224 0304 Scan finished
17:17:08.0224 0304 ============================================================
17:17:08.0239 1056 Detected object count: 4
17:17:08.0239 1056 Actual detected object count: 4
17:17:39.0517 1056 HP Health Check Service ( UnsignedFile.Multi.Generic ) - skipped by user
17:17:39.0517 1056 HP Health Check Service ( UnsignedFile.Multi.Generic ) - User select action: Skip
17:17:39.0517 1056 HPWMISVC ( UnsignedFile.Multi.Generic ) - skipped by user
17:17:39.0517 1056 HPWMISVC ( UnsignedFile.Multi.Generic ) - User select action: Skip
17:17:39.0517 1056 NovacomD ( UnsignedFile.Multi.Generic ) - skipped by user
17:17:39.0517 1056 NovacomD ( UnsignedFile.Multi.Generic ) - User select action: Skip
17:17:39.0533 1056 \Device\Harddisk0\DR0 ( TDSS File System ) - skipped by user
17:17:39.0533 1056 \Device\Harddisk0\DR0 ( TDSS File System ) - User select action: Skip
17:18:13.0042 3044 Deinitialize success
  • 0

#51
gg101

gg101

    Member

  • Topic Starter
  • Member
  • PipPip
  • 41 posts
Here is the last one with everything checked off...

17:18:33.0306 2640 TDSS rootkit removing tool 2.8.15.0 Oct 31 2012 21:47:35
17:18:33.0603 2640 ============================================================
17:18:33.0603 2640 Current date / time: 2012/11/09 17:18:33.0603
17:18:33.0603 2640 SystemInfo:
17:18:33.0603 2640
17:18:33.0603 2640 OS Version: 6.1.7600 ServicePack: 0.0
17:18:33.0603 2640 Product type: Workstation
17:18:33.0603 2640 ComputerName: GLORY-PC
17:18:33.0603 2640 UserName: Glory
17:18:33.0603 2640 Windows directory: C:\Windows
17:18:33.0603 2640 System windows directory: C:\Windows
17:18:33.0603 2640 Running under WOW64
17:18:33.0603 2640 Processor architecture: Intel x64
17:18:33.0603 2640 Number of processors: 2
17:18:33.0603 2640 Page size: 0x1000
17:18:33.0603 2640 Boot type: Safe boot with network
17:18:33.0603 2640 ============================================================
17:18:33.0634 2640 BG loaded
17:18:33.0962 2640 Drive \Device\Harddisk0\DR0 - Size: 0x4A85D56000 (298.09 Gb), SectorSize: 0x200, Cylinders: 0x9801, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
17:18:33.0962 2640 ============================================================
17:18:33.0962 2640 \Device\Harddisk0\DR0:
17:18:33.0962 2640 MBR partitions:
17:18:33.0962 2640 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x63800
17:18:33.0962 2640 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x64000, BlocksNum 0x236FA000
17:18:33.0962 2640 \Device\Harddisk0\DR0\Partition3: MBR, Type 0x7, StartLBA 0x2375E000, BlocksNum 0x1C9C800
17:18:33.0962 2640 \Device\Harddisk0\DR0\Partition4: MBR, Type 0xC, StartLBA 0x253FA800, BlocksNum 0x33AB0
17:18:33.0962 2640 ============================================================
17:18:34.0008 2640 C: <-> \Device\Harddisk0\DR0\Partition2
17:18:34.0040 2640 D: <-> \Device\Harddisk0\DR0\Partition3
17:18:34.0055 2640 E: <-> \Device\Harddisk0\DR0\Partition4
17:18:34.0055 2640 ============================================================
17:18:34.0055 2640 Initialize success
17:18:34.0055 2640 ============================================================
17:18:45.0942 2648 Deinitialize success
  • 0

#52
maliprog

maliprog

    Trusted Helper

  • Malware Removal
  • 6,172 posts
I tool some time to do research and let's try different tool. Run all this scans in Normal mode

Step 1

Please run TDSSKiller again and for this founding

\Device\Harddisk0\DR0 ( TDSS File System )

choose Delete option and post log here for me.

Step 2

  • Download & SAVE to your Desktop RogueKiller or from here
  • Quit all programs that you may have started.
  • Please disconnect any USB or external drives from the computer before you run this scan!
  • For Vista or Windows 7, right-click and select "Run as Administrator to start"
  • For Windows XP, double-click to start.
  • Wait until Prescan has finished ...
  • Then Click on "Scan" button
  • Wait until the Status box shows "Scan Finished"
  • click on "delete"
  • Wait until the Status box shows "Deleting Finished"
  • Click on "Report" and copy/paste the content of the Notepad into your next reply.
  • The log should be found in RKreport[1].txt on your Desktop
  • Exit/Close RogueKiller+

Step 3

Please don't forget to include these items in your reply:

  • TDSSKiller log
  • RogueKiller log
It would be helpful if you could post each log in separate post using "Add Reply" button
  • 0

#53
gg101

gg101

    Member

  • Topic Starter
  • Member
  • PipPip
  • 41 posts
Hi Maliprog, I want to let you know that I ran the malwarbyte scan and it came up with one trojan then after I restarted the laptop and ran another scan it was gone. I just ran one more now that and its not there. Its gone, so do you still want me to try what you posted last?
  • 0

#54
maliprog

maliprog

    Trusted Helper

  • Malware Removal
  • 6,172 posts
I must admit that that is strange because infection was still there. In that case I will change my steps. Let's do this to see what is going on.

Step 1

Please run TDSSKiller again and for this founding

\Device\Harddisk0\DR0 ( TDSS File System )


choose Delete option and post log here for me.

Step 2

  • Run OTL.
  • Double click on the icon to run it. Make sure all other windows are closed and to let it run uninterrupted.
  • Click the Quick Scan button. Do not change any settings unless otherwise told to do so. The scan wont take long.
  • When the scan completes, it will open notepad window. OTL.Txt. These are saved in the same location as OTL.
  • Please copy (Edit->Select All, Edit->Copy) the contents of this file, and post it with your next reply.

Step 3

Please don't forget to include these items in your reply:

  • OTL log
  • TDSSKiller log
It would be helpful if you could post each log in separate post using "Add Reply" button
  • 0

#55
gg101

gg101

    Member

  • Topic Starter
  • Member
  • PipPip
  • 41 posts
hi, so this is my normal scan and on the next reply will be the scan with all the options checked off in the parameter.

18:47:16.0967 3408 TDSS rootkit removing tool 2.8.15.0 Oct 31 2012 21:47:35
18:47:17.0435 3408 ============================================================
18:47:17.0435 3408 Current date / time: 2012/11/12 18:47:17.0435
18:47:17.0435 3408 SystemInfo:
18:47:17.0435 3408
18:47:17.0435 3408 OS Version: 6.1.7600 ServicePack: 0.0
18:47:17.0435 3408 Product type: Workstation
18:47:17.0435 3408 ComputerName: GLORY-PC
18:47:17.0435 3408 UserName: Glory
18:47:17.0435 3408 Windows directory: C:\Windows
18:47:17.0435 3408 System windows directory: C:\Windows
18:47:17.0435 3408 Running under WOW64
18:47:17.0435 3408 Processor architecture: Intel x64
18:47:17.0435 3408 Number of processors: 2
18:47:17.0435 3408 Page size: 0x1000
18:47:17.0435 3408 Boot type: Normal boot
18:47:17.0435 3408 ============================================================
18:47:35.0044 3408 BG loaded
18:47:36.0229 3408 Drive \Device\Harddisk0\DR0 - Size: 0x4A85D56000 (298.09 Gb), SectorSize: 0x200, Cylinders: 0x9801, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
18:47:36.0417 3408 ============================================================
18:47:36.0417 3408 \Device\Harddisk0\DR0:
18:47:36.0604 3408 MBR partitions:
18:47:36.0604 3408 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x63800
18:47:36.0604 3408 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x64000, BlocksNum 0x236FA000
18:47:36.0604 3408 \Device\Harddisk0\DR0\Partition3: MBR, Type 0x7, StartLBA 0x2375E000, BlocksNum 0x1C9C800
18:47:36.0604 3408 \Device\Harddisk0\DR0\Partition4: MBR, Type 0xC, StartLBA 0x253FA800, BlocksNum 0x33AB0
18:47:36.0604 3408 ============================================================
18:47:37.0041 3408 C: <-> \Device\Harddisk0\DR0\Partition2
18:47:41.0175 3408 D: <-> \Device\Harddisk0\DR0\Partition3
18:47:42.0220 3408 E: <-> \Device\Harddisk0\DR0\Partition4
18:47:42.0220 3408 ============================================================
18:47:42.0220 3408 Initialize success
18:47:42.0220 3408 ============================================================
18:48:01.0112 4968 ============================================================
18:48:01.0112 4968 Scan started
18:48:01.0112 4968 Mode: Manual; SigCheck; TDLFS;
18:48:01.0112 4968 ============================================================
18:48:09.0068 4968 ================ Scan system memory ========================
18:48:09.0068 4968 System memory - ok
18:48:09.0068 4968 ================ Scan services =============================
18:48:14.0808 4968 [ 1B00662092F9F9568B995902F0CC40D5 ] 1394ohci C:\Windows\system32\DRIVERS\1394ohci.sys
18:48:15.0261 4968 1394ohci - ok
18:48:15.0526 4968 [ 6F11E88748CDEFD2F76AA215F97DDFE5 ] ACPI C:\Windows\system32\DRIVERS\ACPI.sys
18:48:15.0573 4968 ACPI - ok
18:48:15.0729 4968 [ 63B05A0420CE4BF0E4AF6DCC7CADA254 ] AcpiPmi C:\Windows\system32\DRIVERS\acpipmi.sys
18:48:15.0994 4968 AcpiPmi - ok
18:48:16.0400 4968 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
18:48:16.0509 4968 adp94xx - ok
18:48:16.0649 4968 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
18:48:16.0727 4968 adpahci - ok
18:48:16.0821 4968 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
18:48:17.0351 4968 adpu320 - ok
18:48:17.0523 4968 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
18:48:17.0850 4968 AeLookupSvc - ok
18:48:18.0303 4968 [ D1E343BC00136CE03C4D403194D06A80 ] AERTFilters C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe
18:48:18.0318 4968 AERTFilters - ok
18:48:18.0443 4968 [ DB9D6C6B2CD95A9CA414D045B627422E ] AFD C:\Windows\system32\drivers\afd.sys
18:48:18.0490 4968 AFD - ok
18:48:18.0552 4968 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\Windows\system32\DRIVERS\agp440.sys
18:48:18.0584 4968 agp440 - ok
18:48:18.0630 4968 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\Windows\System32\alg.exe
18:48:18.0755 4968 ALG - ok
18:48:18.0864 4968 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\Windows\system32\DRIVERS\aliide.sys
18:48:18.0942 4968 aliide - ok
18:48:18.0989 4968 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\Windows\system32\DRIVERS\amdide.sys
18:48:19.0020 4968 amdide - ok
18:48:19.0052 4968 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
18:48:19.0145 4968 AmdK8 - ok
18:48:19.0176 4968 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
18:48:19.0223 4968 AmdPPM - ok
18:48:19.0317 4968 [ EC7EBAB00A4D8448BAB68D1E49B4BEB9 ] amdsata C:\Windows\system32\drivers\amdsata.sys
18:48:19.0364 4968 amdsata - ok
18:48:19.0426 4968 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
18:48:19.0488 4968 amdsbs - ok
18:48:19.0582 4968 [ DB27766102C7BF7E95140A2AA81D042E ] amdxata C:\Windows\system32\drivers\amdxata.sys
18:48:19.0660 4968 amdxata - ok
18:48:19.0894 4968 [ 42FD751B27FA0E9C69BB39F39E409594 ] AppID C:\Windows\system32\drivers\appid.sys
18:48:20.0112 4968 AppID - ok
18:48:20.0175 4968 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\Windows\System32\appidsvc.dll
18:48:20.0409 4968 AppIDSvc - ok
18:48:20.0534 4968 [ D065BE66822847B7F127D1F90158376E ] Appinfo C:\Windows\System32\appinfo.dll
18:48:20.0565 4968 Appinfo - ok
18:48:20.0939 4968 [ 44F0479ACDBC24D20C62B63E23720B4A ] Application Sendori C:\Program Files (x86)\Sendori\SendoriSvc.exe
18:48:20.0955 4968 Application Sendori - ok
18:48:21.0095 4968 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\Windows\system32\DRIVERS\arc.sys
18:48:21.0142 4968 arc - ok
18:48:21.0204 4968 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
18:48:21.0267 4968 arcsas - ok
18:48:21.0516 4968 [ 9217D874131AE6FF8F642F124F00A555 ] aspnet_state C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
18:48:21.0563 4968 aspnet_state - ok
18:48:21.0626 4968 [ 4FCAEF0C5BE7629AEB878998E0FE959B ] aswFsBlk C:\Windows\system32\drivers\aswFsBlk.sys
18:48:21.0657 4968 aswFsBlk - ok
18:48:21.0735 4968 [ B50CDD87772D6A11CB90924AAD399DF8 ] aswMonFlt C:\Windows\system32\drivers\aswMonFlt.sys
18:48:21.0766 4968 aswMonFlt - ok
18:48:21.0844 4968 [ 57768C7DB4681F2510F247F82EF31D4F ] aswRdr C:\Windows\System32\Drivers\aswrdr2.sys
18:48:21.0860 4968 aswRdr - ok
18:48:21.0922 4968 [ E71D826A1F3CE9C9DE3E77F2D02AFFBF ] aswSnx C:\Windows\system32\drivers\aswSnx.sys
18:48:21.0953 4968 aswSnx - ok
18:48:22.0031 4968 [ 538A32E2C99BF073D4CA76C30BEDAA60 ] aswSP C:\Windows\system32\drivers\aswSP.sys
18:48:22.0047 4968 aswSP - ok
18:48:22.0125 4968 [ 6EDC79D73745FD44C41B55B2D13D0B70 ] aswTdi C:\Windows\system32\drivers\aswTdi.sys
18:48:22.0140 4968 aswTdi - ok
18:48:22.0172 4968 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
18:48:22.0234 4968 AsyncMac - ok
18:48:22.0281 4968 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\Windows\system32\DRIVERS\atapi.sys
18:48:22.0343 4968 atapi - ok
18:48:22.0390 4968 [ 07721A77180EDD4D39CCB865BF63C7FD ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
18:48:22.0468 4968 AudioEndpointBuilder - ok
18:48:22.0484 4968 [ 07721A77180EDD4D39CCB865BF63C7FD ] AudioSrv C:\Windows\System32\Audiosrv.dll
18:48:22.0530 4968 AudioSrv - ok
18:48:22.0702 4968 [ 8FA553E9AE69808D99C164733A0F9590 ] avast! Antivirus C:\Program Files\AVAST Software\Avast\AvastSvc.exe
18:48:22.0718 4968 avast! Antivirus - ok
18:48:22.0764 4968 [ 371428CF0F71934CB0F2344823ADFA32 ] avgtp C:\Windows\system32\drivers\avgtpx64.sys
18:48:22.0780 4968 avgtp - ok
18:48:22.0842 4968 [ B20B5FA5CA050E9926E4D1DB81501B32 ] AxInstSV C:\Windows\System32\AxInstSV.dll
18:48:22.0889 4968 AxInstSV - ok
18:48:22.0998 4968 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\Windows\system32\DRIVERS\bxvbda.sys
18:48:23.0061 4968 b06bdrv - ok
18:48:23.0092 4968 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
18:48:23.0186 4968 b57nd60a - ok
18:48:23.0232 4968 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\Windows\System32\bdesvc.dll
18:48:23.0279 4968 BDESVC - ok
18:48:23.0310 4968 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\Windows\system32\drivers\Beep.sys
18:48:23.0420 4968 Beep - ok
18:48:23.0560 4968 [ 4992C609A6315671463E30F6512BC022 ] BFE C:\Windows\System32\bfe.dll
18:48:23.0638 4968 BFE - ok
18:48:23.0732 4968 [ 7F0C323FE3DA28AA4AA1BDA3F575707F ] BITS C:\Windows\system32\qmgr.dll
18:48:23.0794 4968 BITS - ok
18:48:23.0856 4968 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
18:48:23.0888 4968 blbdrive - ok
18:48:23.0950 4968 [ 19D20159708E152267E53B66677A4995 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
18:48:23.0997 4968 bowser - ok
18:48:24.0044 4968 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
18:48:24.0122 4968 BrFiltLo - ok
18:48:24.0153 4968 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
18:48:24.0200 4968 BrFiltUp - ok
18:48:24.0278 4968 [ 5C2F352A4E961D72518261257AAE204B ] BridgeMP C:\Windows\system32\DRIVERS\bridge.sys
18:48:24.0324 4968 BridgeMP - ok
18:48:24.0371 4968 [ 6B054C67AAA87843504E8E3C09102009 ] Browser C:\Windows\System32\browser.dll
18:48:24.0496 4968 Browser - ok
18:48:25.0198 4968 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\Windows\System32\Drivers\Brserid.sys
18:48:25.0245 4968 Brserid - ok
18:48:25.0276 4968 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
18:48:25.0338 4968 BrSerWdm - ok
18:48:25.0401 4968 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
18:48:25.0463 4968 BrUsbMdm - ok
18:48:25.0494 4968 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
18:48:25.0541 4968 BrUsbSer - ok
18:48:25.0604 4968 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
18:48:25.0635 4968 BTHMODEM - ok
18:48:25.0682 4968 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\Windows\system32\bthserv.dll
18:48:25.0744 4968 bthserv - ok
18:48:25.0760 4968 catchme - ok
18:48:25.0806 4968 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
18:48:25.0869 4968 cdfs - ok
18:48:25.0900 4968 [ 83D2D75E1EFB81B3450C18131443F7DB ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
18:48:25.0931 4968 cdrom - ok
18:48:25.0978 4968 [ 312E2F82AF11E79906898AC3E3D58A1F ] CertPropSvc C:\Windows\System32\certprop.dll
18:48:26.0025 4968 CertPropSvc - ok
18:48:26.0072 4968 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\Windows\system32\DRIVERS\circlass.sys
18:48:26.0118 4968 circlass - ok
18:48:26.0150 4968 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\Windows\system32\CLFS.sys
18:48:26.0181 4968 CLFS - ok
18:48:26.0290 4968 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
18:48:26.0321 4968 clr_optimization_v2.0.50727_32 - ok
18:48:26.0352 4968 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
18:48:26.0368 4968 clr_optimization_v2.0.50727_64 - ok
18:48:26.0462 4968 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
18:48:26.0664 4968 clr_optimization_v4.0.30319_32 - ok
18:48:26.0680 4968 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
18:48:26.0727 4968 clr_optimization_v4.0.30319_64 - ok
18:48:26.0758 4968 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
18:48:26.0805 4968 CmBatt - ok
18:48:26.0836 4968 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\Windows\system32\DRIVERS\cmdide.sys
18:48:26.0867 4968 cmdide - ok
18:48:26.0914 4968 [ CA7720B73446FDDEC5C69519C1174C98 ] CNG C:\Windows\system32\Drivers\cng.sys
18:48:26.0961 4968 CNG - ok
18:48:26.0992 4968 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
18:48:27.0008 4968 Compbatt - ok
18:48:27.0054 4968 [ F26B3A86F6FA87CA360B879581AB4123 ] CompositeBus C:\Windows\system32\DRIVERS\CompositeBus.sys
18:48:27.0086 4968 CompositeBus - ok
18:48:27.0101 4968 COMSysApp - ok
18:48:27.0132 4968 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
18:48:27.0164 4968 crcdisk - ok
18:48:27.0226 4968 [ BAF19B633933A9FB4883D27D66C39E9A ] CryptSvc C:\Windows\system32\cryptsvc.dll
18:48:27.0257 4968 CryptSvc - ok
18:48:27.0304 4968 [ 7266972E86890E2B30C0C322E906B027 ] DcomLaunch C:\Windows\system32\rpcss.dll
18:48:27.0366 4968 DcomLaunch - ok
18:48:27.0429 4968 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\Windows\System32\defragsvc.dll
18:48:27.0522 4968 defragsvc - ok
18:48:27.0554 4968 [ 9C253CE7311CA60FC11C774692A13208 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
18:48:27.0600 4968 DfsC - ok
18:48:27.0647 4968 [ CE3B9562D997F69B330D181A8875960F ] Dhcp C:\Windows\system32\dhcpcore.dll
18:48:27.0710 4968 Dhcp - ok
18:48:27.0741 4968 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\Windows\system32\drivers\discache.sys
18:48:27.0803 4968 discache - ok
18:48:27.0850 4968 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\Windows\system32\DRIVERS\disk.sys
18:48:27.0866 4968 Disk - ok
18:48:27.0912 4968 [ 85CF424C74A1D5EC33533E1DBFF9920A ] Dnscache C:\Windows\System32\dnsrslvr.dll
18:48:27.0959 4968 Dnscache - ok
18:48:28.0006 4968 [ 14452ACDB09B70964C8C21BF80A13ACB ] dot3svc C:\Windows\System32\dot3svc.dll
18:48:28.0053 4968 dot3svc - ok
18:48:28.0084 4968 [ 8C2BA6BEA949EE6E68385F5692BAFB94 ] DPS C:\Windows\system32\dps.dll
18:48:28.0131 4968 DPS - ok
18:48:28.0162 4968 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
18:48:28.0209 4968 drmkaud - ok
18:48:28.0271 4968 [ 46571ED73AE84469DCA53081D33CF3C8 ] dtsoftbus01 C:\Windows\system32\DRIVERS\dtsoftbus01.sys
18:48:28.0287 4968 dtsoftbus01 - ok
18:48:28.0349 4968 [ 1633B9ABF52784A1331476397A48CBEF ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
18:48:28.0412 4968 DXGKrnl - ok
18:48:28.0458 4968 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\Windows\System32\eapsvc.dll
18:48:28.0552 4968 EapHost - ok
18:48:28.0661 4968 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\Windows\system32\DRIVERS\evbda.sys
18:48:28.0802 4968 ebdrv - ok
18:48:28.0848 4968 [ 156F6159457D0AA7E59B62681B56EB90 ] EFS C:\Windows\System32\lsass.exe
18:48:28.0880 4968 EFS - ok
18:48:28.0942 4968 [ 47C071994C3F649F23D9CD075AC9304A ] ehRecvr C:\Windows\ehome\ehRecvr.exe
18:48:28.0973 4968 ehRecvr - ok
18:48:29.0004 4968 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\Windows\ehome\ehsched.exe
18:48:29.0036 4968 ehSched - ok
18:48:29.0082 4968 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys
18:48:29.0114 4968 elxstor - ok
18:48:29.0129 4968 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\Windows\system32\DRIVERS\errdev.sys
18:48:29.0176 4968 ErrDev - ok
18:48:29.0254 4968 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\Windows\system32\es.dll
18:48:29.0332 4968 EventSystem - ok
18:48:29.0394 4968 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\Windows\system32\drivers\exfat.sys
18:48:29.0457 4968 exfat - ok
18:48:29.0504 4968 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\Windows\system32\drivers\fastfat.sys
18:48:29.0550 4968 fastfat - ok
18:48:29.0597 4968 [ D607B2F1BEE3992AA6C2C92C0A2F0855 ] Fax C:\Windows\system32\fxssvc.exe
18:48:29.0628 4968 Fax - ok
18:48:29.0675 4968 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\Windows\system32\DRIVERS\fdc.sys
18:48:29.0706 4968 fdc - ok
18:48:29.0722 4968 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\Windows\system32\fdPHost.dll
18:48:29.0800 4968 fdPHost - ok
18:48:29.0831 4968 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\Windows\system32\fdrespub.dll
18:48:29.0894 4968 FDResPub - ok
18:48:29.0909 4968 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
18:48:29.0940 4968 FileInfo - ok
18:48:29.0956 4968 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
18:48:30.0003 4968 Filetrace - ok
18:48:30.0096 4968 [ BB0667B0171B632B97EA759515476F07 ] FLEXnet Licensing Service C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
18:48:30.0112 4968 FLEXnet Licensing Service - ok
18:48:30.0143 4968 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
18:48:30.0174 4968 flpydisk - ok
18:48:30.0206 4968 [ F7866AF72ABBAF84B1FA5AA195378C59 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
18:48:30.0252 4968 FltMgr - ok
18:48:30.0299 4968 [ CB5E4B9C319E3C6BB363EB7E58A4A051 ] FontCache C:\Windows\system32\FntCache.dll
18:48:30.0362 4968 FontCache - ok
18:48:30.0424 4968 [ 8D89E3131C27FDD6932189CB785E1B7A ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
18:48:30.0440 4968 FontCache3.0.0.0 - ok
18:48:30.0471 4968 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
18:48:30.0502 4968 FsDepends - ok
18:48:30.0533 4968 [ D3E3F93D67821A2DB2B3D9FAC2DC2064 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
18:48:30.0564 4968 Fs_Rec - ok
18:48:30.0611 4968 [ AE87BA80D0EC3B57126ED2CDC15B24ED ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
18:48:30.0658 4968 fvevol - ok
18:48:30.0689 4968 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys
18:48:30.0720 4968 gagp30kx - ok
18:48:30.0783 4968 [ E53EE18A21C025DEABCFE0F72FC481BB ] GameConsoleService C:\Program Files (x86)\HP Games\HP Game Console\GameConsoleService.exe
18:48:30.0814 4968 GameConsoleService - ok
18:48:30.0861 4968 [ FE5AB4525BC2EC68B9119A6E5D40128B ] gpsvc C:\Windows\System32\gpsvc.dll
18:48:30.0939 4968 gpsvc - ok
18:48:31.0032 4968 [ 506708142BC63DABA64F2D3AD1DCD5BF ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
18:48:31.0064 4968 gupdate - ok
18:48:31.0064 4968 [ 506708142BC63DABA64F2D3AD1DCD5BF ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
18:48:31.0095 4968 gupdatem - ok
18:48:31.0126 4968 [ 5D4BC124FAAE6730AC002CDB67BF1A1C ] gusvc C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
18:48:31.0142 4968 gusvc - ok
18:48:31.0173 4968 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
18:48:31.0204 4968 hcw85cir - ok
18:48:31.0235 4968 [ 6410F6F415B2A5A9037224C41DA8BF12 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
18:48:31.0282 4968 HdAudAddService - ok
18:48:31.0313 4968 [ 0A49913402747A0B67DE940FB42CBDBB ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys
18:48:31.0360 4968 HDAudBus - ok
18:48:31.0391 4968 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys
18:48:31.0407 4968 HidBatt - ok
18:48:31.0422 4968 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
18:48:31.0469 4968 HidBth - ok
18:48:31.0485 4968 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
18:48:31.0516 4968 HidIr - ok
18:48:31.0547 4968 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\Windows\System32\hidserv.dll
18:48:31.0610 4968 hidserv - ok
18:48:31.0656 4968 [ B3BF6B5B50006DEF50B66306D99FCF6F ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
18:48:31.0672 4968 HidUsb - ok
18:48:31.0703 4968 [ EFA58EDE58DD74388FFD04CB32681518 ] hkmsvc C:\Windows\system32\kmsvc.dll
18:48:31.0750 4968 hkmsvc - ok
18:48:31.0781 4968 [ 046B2673767CA626E2CFB7FDF735E9E8 ] HomeGroupListener C:\Windows\system32\ListSvc.dll
18:48:31.0812 4968 HomeGroupListener - ok
18:48:31.0844 4968 [ 06A7422224D9865A5613710A089987DF ] HomeGroupProvider C:\Windows\system32\provsvc.dll
18:48:31.0875 4968 HomeGroupProvider - ok
18:48:31.0953 4968 [ 58C91CCA61A948DC6E789C93C05A1D6F ] HP Health Check Service C:\Program Files (x86)\Hewlett-Packard\HP Health Check\hphc_service.exe
18:48:31.0968 4968 HP Health Check Service ( UnsignedFile.Multi.Generic ) - warning
18:48:31.0968 4968 HP Health Check Service - detected UnsignedFile.Multi.Generic (1)
18:48:32.0000 4968 [ EF3EA06057132138B4E5895A61601DBE ] hpqwmiex C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe
18:48:32.0031 4968 hpqwmiex - ok
18:48:32.0078 4968 [ 0886D440058F203EBA0E1825E4355914 ] HpSAMD C:\Windows\system32\DRIVERS\HpSAMD.sys
18:48:32.0124 4968 HpSAMD - ok
18:48:32.0202 4968 [ B6492D01712A22FF3FEA25A999DBD321 ] HPWMISVC C:\Program Files\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe
18:48:32.0234 4968 HPWMISVC ( UnsignedFile.Multi.Generic ) - warning
18:48:32.0234 4968 HPWMISVC - detected UnsignedFile.Multi.Generic (1)
18:48:32.0296 4968 [ CEE049CAC4EFA7F4E1E4AD014414A5D4 ] HTTP C:\Windows\system32\drivers\HTTP.sys
18:48:32.0405 4968 HTTP - ok
18:48:32.0421 4968 [ F17766A19145F111856378DF337A5D79 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
18:48:32.0436 4968 hwpolicy - ok
18:48:32.0468 4968 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\Windows\system32\DRIVERS\i8042prt.sys
18:48:32.0483 4968 i8042prt - ok
18:48:32.0530 4968 [ BE7D72FCF442C26975942007E0831241 ] iaStor C:\Windows\system32\DRIVERS\iaStor.sys
18:48:32.0546 4968 iaStor - ok
18:48:32.0592 4968 [ B75E45C564E944A2657167D197AB29DA ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
18:48:32.0624 4968 iaStorV - ok
18:48:32.0686 4968 [ 2F2BE70D3E02B6FA877921AB9516D43C ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
18:48:32.0748 4968 idsvc - ok
18:48:32.0998 4968 [ 677AA5991026A65ADA128C4B59CF2BAD ] igfx C:\Windows\system32\DRIVERS\igdkmd64.sys
18:48:33.0170 4968 igfx - ok
18:48:33.0216 4968 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys
18:48:33.0232 4968 iirsp - ok
18:48:33.0263 4968 [ C5B4683680DF085B57BC53E5EF34861F ] IKEEXT C:\Windows\System32\ikeext.dll
18:48:33.0341 4968 IKEEXT - ok
18:48:33.0435 4968 [ A3BCBD0F710580A07D1B929D787D36CE ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
18:48:33.0482 4968 IntcAzAudAddService - ok
18:48:33.0544 4968 [ CFC68CA36A63637E8CA69669EE3693DA ] IntcHdmiAddService C:\Windows\system32\drivers\IntcHdmi.sys
18:48:33.0575 4968 IntcHdmiAddService - ok
18:48:33.0653 4968 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\Windows\system32\DRIVERS\intelide.sys
18:48:33.0684 4968 intelide - ok
18:48:33.0716 4968 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
18:48:33.0762 4968 intelppm - ok
18:48:33.0809 4968 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\Windows\system32\ipbusenum.dll
18:48:33.0856 4968 IPBusEnum - ok
18:48:33.0872 4968 [ 722DD294DF62483CECAAE6E094B4D695 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
18:48:33.0965 4968 IpFilterDriver - ok
18:48:33.0981 4968 [ E2B4A4494DB7CB9B89B55CA268C337C5 ] IPMIDRV C:\Windows\system32\DRIVERS\IPMIDrv.sys
18:48:34.0090 4968 IPMIDRV - ok
18:48:34.0168 4968 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
18:48:34.0262 4968 IPNAT - ok
18:48:34.0386 4968 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
18:48:34.0449 4968 IRENUM - ok
18:48:34.0558 4968 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\Windows\system32\DRIVERS\isapnp.sys
18:48:34.0574 4968 isapnp - ok
18:48:34.0683 4968 [ FA4D2557DE56D45B0A346F93564BE6E1 ] iScsiPrt C:\Windows\system32\DRIVERS\msiscsi.sys
18:48:34.0714 4968 iScsiPrt - ok
18:48:34.0745 4968 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
18:48:34.0761 4968 kbdclass - ok
18:48:34.0823 4968 [ 6DEF98F8541E1B5DCEB2C822A11F7323 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
18:48:34.0886 4968 kbdhid - ok
18:48:34.0932 4968 [ 156F6159457D0AA7E59B62681B56EB90 ] KeyIso C:\Windows\system32\lsass.exe
18:48:34.0979 4968 KeyIso - ok
18:48:35.0073 4968 [ 4F4B5FDE429416877DE7143044582EB5 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
18:48:35.0104 4968 KSecDD - ok
18:48:35.0135 4968 [ 6F40465A44ECDC1731BEFAFEC5BDD03C ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
18:48:35.0198 4968 KSecPkg - ok
18:48:35.0229 4968 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
18:48:35.0276 4968 ksthunk - ok
18:48:35.0369 4968 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\Windows\system32\msdtckrm.dll
18:48:35.0478 4968 KtmRm - ok
18:48:35.0541 4968 [ 81F1D04D4D0E433099365127375FD501 ] LanmanServer C:\Windows\System32\srvsvc.dll
18:48:35.0619 4968 LanmanServer - ok
18:48:35.0697 4968 [ 27026EAC8818E8A6C00A1CAD2F11D29A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
18:48:35.0759 4968 LanmanWorkstation - ok
18:48:35.0837 4968 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
18:48:35.0900 4968 lltdio - ok
18:48:35.0962 4968 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\Windows\System32\lltdsvc.dll
18:48:36.0040 4968 lltdsvc - ok
18:48:36.0056 4968 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\Windows\System32\lmhsvc.dll
18:48:36.0102 4968 lmhosts - ok
18:48:36.0165 4968 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys
18:48:36.0180 4968 LSI_FC - ok
18:48:36.0212 4968 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys
18:48:36.0227 4968 LSI_SAS - ok
18:48:36.0258 4968 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys
18:48:36.0321 4968 LSI_SAS2 - ok
18:48:36.0399 4968 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys
18:48:36.0461 4968 LSI_SCSI - ok
18:48:36.0508 4968 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\Windows\system32\drivers\luafv.sys
18:48:36.0602 4968 luafv - ok
18:48:36.0742 4968 [ F84C8F1000BC11E3B7B23CBD3BAFF111 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
18:48:36.0789 4968 Mcx2Svc - ok
18:48:36.0851 4968 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\Windows\system32\DRIVERS\megasas.sys
18:48:36.0898 4968 megasas - ok
18:48:36.0976 4968 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys
18:48:37.0007 4968 MegaSR - ok
18:48:37.0241 4968 Microsoft SharePoint Workspace Audit Service - ok
18:48:37.0304 4968 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\Windows\system32\mmcss.dll
18:48:37.0444 4968 MMCSS - ok
18:48:37.0460 4968 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\Windows\system32\drivers\modem.sys
18:48:37.0506 4968 Modem - ok
18:48:37.0538 4968 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\Windows\system32\DRIVERS\monitor.sys
18:48:37.0569 4968 monitor - ok
18:48:37.0694 4968 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
18:48:37.0725 4968 mouclass - ok
18:48:37.0834 4968 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
18:48:37.0896 4968 mouhid - ok
18:48:37.0928 4968 [ 791AF66C4D0E7C90A3646066386FB571 ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
18:48:38.0006 4968 mountmgr - ok
18:48:38.0208 4968 [ 05BF204EC0E82CC4A054DB189C8A3D84 ] MpFilter C:\Windows\system32\DRIVERS\MpFilter.sys
18:48:38.0240 4968 MpFilter - ok
18:48:38.0271 4968 [ 609D1D87649ECC19796F4D76D4C15CEA ] mpio C:\Windows\system32\DRIVERS\mpio.sys
18:48:38.0302 4968 mpio - ok
18:48:38.0333 4968 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
18:48:38.0380 4968 mpsdrv - ok
18:48:38.0489 4968 [ 30524261BB51D96D6FCBAC20C810183C ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
18:48:38.0630 4968 MRxDAV - ok
18:48:38.0676 4968 [ 040D62A9D8AD28922632137ACDD984F2 ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
18:48:38.0723 4968 mrxsmb - ok
18:48:38.0770 4968 [ F0067552F8F9B33D7C59403AB808A3CB ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
18:48:38.0817 4968 mrxsmb10 - ok
18:48:38.0832 4968 [ 3C142D31DE9F2F193218A53FE2632051 ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
18:48:38.0879 4968 mrxsmb20 - ok
18:48:38.0895 4968 [ 5C37497276E3B3A5488B23A326A754B7 ] msahci C:\Windows\system32\DRIVERS\msahci.sys
18:48:38.0926 4968 msahci - ok
18:48:38.0973 4968 [ 8D27B597229AED79430FB9DB3BCBFBD0 ] msdsm C:\Windows\system32\DRIVERS\msdsm.sys
18:48:39.0004 4968 msdsm - ok
18:48:39.0051 4968 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\Windows\System32\msdtc.exe
18:48:39.0098 4968 MSDTC - ok
18:48:39.0129 4968 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\Windows\system32\drivers\Msfs.sys
18:48:39.0176 4968 Msfs - ok
18:48:39.0191 4968 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
18:48:39.0254 4968 mshidkmdf - ok
18:48:39.0285 4968 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\Windows\system32\DRIVERS\msisadrv.sys
18:48:39.0300 4968 msisadrv - ok
18:48:39.0410 4968 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
18:48:39.0488 4968 MSiSCSI - ok
18:48:39.0503 4968 msiserver - ok
18:48:39.0566 4968 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
18:48:39.0628 4968 MSKSSRV - ok
18:48:39.0753 4968 [ CC8E4F72F21340A4D3A3D4DB50313EF5 ] MsMpSvc c:\Program Files\Microsoft Security Client\MsMpEng.exe
18:48:39.0768 4968 MsMpSvc - ok
18:48:39.0784 4968 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
18:48:39.0878 4968 MSPCLOCK - ok
18:48:39.0893 4968 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
18:48:39.0971 4968 MSPQM - ok
18:48:40.0002 4968 [ 89CB141AA8616D8C6A4610FA26C60964 ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
18:48:40.0065 4968 MsRPC - ok
18:48:40.0112 4968 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\Windows\system32\DRIVERS\mssmbios.sys
18:48:40.0127 4968 mssmbios - ok
18:48:40.0158 4968 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
18:48:40.0252 4968 MSTEE - ok
18:48:40.0268 4968 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys
18:48:40.0330 4968 MTConfig - ok
18:48:40.0377 4968 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\Windows\system32\Drivers\mup.sys
18:48:40.0439 4968 Mup - ok
18:48:40.0642 4968 [ 4987E079A4530FA737A128BE54B63B12 ] napagent C:\Windows\system32\qagentRT.dll
18:48:40.0845 4968 napagent - ok
18:48:40.0923 4968 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
18:48:40.0970 4968 NativeWifiP - ok
18:48:41.0016 4968 [ CAD515DBD07D082BB317D9928CE8962C ] NDIS C:\Windows\system32\drivers\ndis.sys
18:48:41.0048 4968 NDIS - ok
18:48:41.0063 4968 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
18:48:41.0126 4968 NdisCap - ok
18:48:41.0157 4968 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
18:48:41.0204 4968 NdisTapi - ok
18:48:41.0235 4968 [ F105BA1E22BF1F2EE8F005D4305E4BEC ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
18:48:41.0297 4968 Ndisuio - ok
18:48:41.0313 4968 [ 557DFAB9CA1FCB036AC77564C010DAD3 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
18:48:41.0360 4968 NdisWan - ok
18:48:41.0375 4968 [ 659B74FB74B86228D6338D643CD3E3CF ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
18:48:41.0438 4968 NDProxy - ok
18:48:41.0469 4968 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
18:48:41.0531 4968 NetBIOS - ok
18:48:41.0547 4968 [ 9162B273A44AB9DCE5B44362731D062A ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
18:48:41.0609 4968 NetBT - ok
18:48:41.0625 4968 [ 156F6159457D0AA7E59B62681B56EB90 ] Netlogon C:\Windows\system32\lsass.exe
18:48:41.0640 4968 Netlogon - ok
18:48:41.0687 4968 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\Windows\System32\netman.dll
18:48:41.0750 4968 Netman - ok
18:48:41.0781 4968 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
18:48:41.0812 4968 NetMsmqActivator - ok
18:48:41.0828 4968 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
18:48:41.0843 4968 NetPipeActivator - ok
18:48:41.0874 4968 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\Windows\System32\netprofm.dll
18:48:41.0937 4968 netprofm - ok
18:48:41.0937 4968 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
18:48:41.0952 4968 NetTcpActivator - ok
18:48:41.0952 4968 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
18:48:41.0968 4968 NetTcpPortSharing - ok
18:48:42.0093 4968 [ 64428DFDAF6E88366CB51F45A79C5F69 ] netw5v64 C:\Windows\system32\DRIVERS\netw5v64.sys
18:48:42.0264 4968 netw5v64 - ok
18:48:42.0311 4968 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys
18:48:42.0327 4968 nfrd960 - ok
18:48:42.0389 4968 [ 5FF89F20317309D28AC1EDEB0CD1BA72 ] NisDrv C:\Windows\system32\DRIVERS\NisDrvWFP.sys
18:48:42.0436 4968 NisDrv - ok
18:48:42.0467 4968 [ 79E80B10FE8F6662E0C9162A68C43444 ] NisSrv c:\Program Files\Microsoft Security Client\NisSrv.exe
18:48:42.0498 4968 NisSrv - ok
18:48:42.0576 4968 [ D9A0CE66046D6EFA0C61BAA885CBA0A8 ] NlaSvc C:\Windows\System32\nlasvc.dll
18:48:42.0654 4968 NlaSvc - ok
18:48:42.0717 4968 [ 1E8281A0BC4358CF816754E0A195D329 ] NovacomD C:\Program Files\Palm, Inc\novacomd\amd64\novacomd.exe
18:48:42.0732 4968 NovacomD ( UnsignedFile.Multi.Generic ) - warning
18:48:42.0732 4968 NovacomD - detected UnsignedFile.Multi.Generic (1)
18:48:42.0748 4968 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\Windows\system32\drivers\Npfs.sys
18:48:42.0842 4968 Npfs - ok
18:48:42.0873 4968 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\Windows\system32\nsisvc.dll
18:48:42.0951 4968 nsi - ok
18:48:42.0966 4968 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
18:48:43.0013 4968 nsiproxy - ok
18:48:43.0091 4968 [ 184C189D4FC416978550FC599BB4EDDA ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
18:48:43.0169 4968 Ntfs - ok
18:48:43.0200 4968 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\Windows\system32\drivers\Null.sys
18:48:43.0247 4968 Null - ok
18:48:43.0278 4968 [ A4D9C9A608A97F59307C2F2600EDC6A4 ] nvraid C:\Windows\system32\drivers\nvraid.sys
18:48:43.0294 4968 nvraid - ok
18:48:43.0341 4968 [ 6C1D5F70E7A6A3FD1C90D840EDC048B9 ] nvstor C:\Windows\system32\drivers\nvstor.sys
18:48:43.0356 4968 nvstor - ok
18:48:43.0388 4968 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\Windows\system32\DRIVERS\nv_agp.sys
18:48:43.0403 4968 nv_agp - ok
18:48:43.0419 4968 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\Windows\system32\DRIVERS\ohci1394.sys
18:48:43.0466 4968 ohci1394 - ok
18:48:43.0559 4968 [ 4965B005492CBA7719E82B71E3245495 ] ose64 C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
18:48:43.0575 4968 ose64 - ok
18:48:43.0746 4968 [ 61BFFB5F57AD12F83AB64B7181829B34 ] osppsvc C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
18:48:43.0934 4968 osppsvc - ok
18:48:43.0965 4968 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
18:48:44.0012 4968 p2pimsvc - ok
18:48:44.0043 4968 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\Windows\system32\p2psvc.dll
18:48:44.0058 4968 p2psvc - ok
18:48:44.0090 4968 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\Windows\system32\DRIVERS\parport.sys
18:48:44.0105 4968 Parport - ok
18:48:44.0136 4968 [ 90061B1ACFE8CCAA5345750FFE08D8B8 ] partmgr C:\Windows\system32\drivers\partmgr.sys
18:48:44.0152 4968 partmgr - ok
18:48:44.0168 4968 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll
18:48:44.0199 4968 PcaSvc - ok
18:48:44.0230 4968 [ F36F6504009F2FB0DFD1B17A116AD74B ] pci C:\Windows\system32\DRIVERS\pci.sys
18:48:44.0246 4968 pci - ok
18:48:44.0261 4968 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\Windows\system32\DRIVERS\pciide.sys
18:48:44.0277 4968 pciide - ok
18:48:44.0308 4968 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
18:48:44.0324 4968 pcmcia - ok
18:48:44.0339 4968 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\Windows\system32\drivers\pcw.sys
18:48:44.0355 4968 pcw - ok
18:48:44.0386 4968 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\Windows\system32\drivers\peauth.sys
18:48:44.0448 4968 PEAUTH - ok
18:48:44.0511 4968 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\Windows\SysWow64\perfhost.exe
18:48:44.0558 4968 PerfHost - ok
18:48:44.0636 4968 [ 557E9A86F65F0DE18C9B6751DFE9D3F1 ] pla C:\Windows\system32\pla.dll
18:48:44.0729 4968 pla - ok
18:48:44.0792 4968 [ 98B1721B8718164293B9701B98C52D77 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
18:48:44.0838 4968 PlugPlay - ok
18:48:44.0885 4968 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
18:48:44.0916 4968 PNRPAutoReg - ok
18:48:44.0948 4968 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
18:48:44.0979 4968 PNRPsvc - ok
18:48:45.0026 4968 [ 166EB40D1F5B47E615DE3D0FFFE5F243 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
18:48:45.0104 4968 PolicyAgent - ok
18:48:45.0135 4968 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\Windows\system32\umpo.dll
18:48:45.0197 4968 Power - ok
18:48:45.0244 4968 [ 27CC19E81BA5E3403C48302127BDA717 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
18:48:45.0306 4968 PptpMiniport - ok
18:48:45.0322 4968 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\Windows\system32\DRIVERS\processr.sys
18:48:45.0353 4968 Processor - ok
18:48:45.0384 4968 [ 97293447431311C06703368AD0F6C4BE ] ProfSvc C:\Windows\system32\profsvc.dll
18:48:45.0400 4968 ProfSvc - ok
18:48:45.0431 4968 [ 156F6159457D0AA7E59B62681B56EB90 ] ProtectedStorage C:\Windows\system32\lsass.exe
18:48:45.0447 4968 ProtectedStorage - ok
18:48:45.0462 4968 [ EE992183BD8EAEFD9973F352E587A299 ] Psched C:\Windows\system32\DRIVERS\pacer.sys
18:48:45.0509 4968 Psched - ok
18:48:45.0556 4968 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys
18:48:45.0603 4968 ql2300 - ok
18:48:45.0634 4968 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys
18:48:45.0650 4968 ql40xx - ok
18:48:45.0681 4968 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\Windows\system32\qwave.dll
18:48:45.0712 4968 QWAVE - ok
18:48:45.0759 4968 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
18:48:45.0837 4968 QWAVEdrv - ok
18:48:45.0946 4968 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
18:48:46.0118 4968 RasAcd - ok
18:48:46.0336 4968 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
18:48:46.0398 4968 RasAgileVpn - ok
18:48:46.0508 4968 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\Windows\System32\rasauto.dll
18:48:46.0695 4968 RasAuto - ok
18:48:46.0710 4968 [ 87A6E852A22991580D6D39ADC4790463 ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
18:48:46.0757 4968 Rasl2tp - ok
18:48:46.0804 4968 [ 47394ED3D16D053F5906EFE5AB51CC83 ] RasMan C:\Windows\System32\rasmans.dll
18:48:46.0882 4968 RasMan - ok
18:48:46.0898 4968 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
18:48:46.0960 4968 RasPppoe - ok
18:48:46.0991 4968 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
18:48:47.0054 4968 RasSstp - ok
18:48:47.0116 4968 [ 3BAC8142102C15D59A87757C1D41DCE5 ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
18:48:47.0178 4968 rdbss - ok
18:48:47.0210 4968 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
18:48:47.0288 4968 rdpbus - ok
18:48:47.0334 4968 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
18:48:47.0412 4968 RDPCDD - ok
18:48:47.0444 4968 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
18:48:47.0490 4968 RDPENCDD - ok
18:48:47.0522 4968 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
18:48:47.0553 4968 RDPREFMP - ok
18:48:47.0631 4968 [ 447DE7E3DEA39D422C1504F245B668B1 ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
18:48:47.0678 4968 RDPWD - ok
18:48:47.0787 4968 [ 634B9A2181D98F15941236886164EC8B ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
18:48:47.0834 4968 rdyboost - ok
18:48:47.0912 4968 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\Windows\System32\mprdim.dll
18:48:48.0021 4968 RemoteAccess - ok
18:48:48.0099 4968 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll
18:48:48.0192 4968 RemoteRegistry - ok
18:48:48.0676 4968 [ 498EB62A160674E793FA40FD65390625 ] RichVideo C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe
18:48:48.0754 4968 RichVideo - ok
18:48:48.0816 4968 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
18:48:48.0972 4968 RpcEptMapper - ok
18:48:49.0035 4968 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\Windows\system32\locator.exe
18:48:49.0113 4968 RpcLocator - ok
18:48:49.0238 4968 [ 7266972E86890E2B30C0C322E906B027 ] RpcSs C:\Windows\System32\rpcss.dll
18:48:49.0316 4968 RpcSs - ok
18:48:49.0394 4968 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
18:48:49.0456 4968 rspndr - ok
18:48:49.0659 4968 [ 483DF0B58CA532E5240E59DC41F30AA2 ] RSUSBSTOR C:\Windows\system32\Drivers\RtsUStor.sys
18:48:49.0784 4968 RSUSBSTOR - ok
18:48:49.0877 4968 [ 777FC2C418465404E3D8A290DC247D24 ] RTL8167 C:\Windows\system32\DRIVERS\Rt64win7.sys
18:48:49.0970 4968 RTL8167 - ok
18:48:51.0159 4968 [ 03E0627C26943916A7276AC5306206C7 ] rtl8192se C:\Windows\system32\DRIVERS\rtl8192se.sys
18:48:51.0215 4968 rtl8192se - ok
18:48:51.0253 4968 [ 156F6159457D0AA7E59B62681B56EB90 ] SamSs C:\Windows\system32\lsass.exe
18:48:51.0301 4968 SamSs - ok
18:48:51.0338 4968 [ E3BBB89983DAF5622C1D50CF49F28227 ] sbp2port C:\Windows\system32\DRIVERS\sbp2port.sys
18:48:51.0433 4968 sbp2port - ok
18:48:51.0581 4968 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\Windows\System32\SCardSvr.dll
18:48:51.0676 4968 SCardSvr - ok
18:48:51.0753 4968 [ C94DA20C7E3BA1DCA269BC8460D98387 ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
18:48:51.0945 4968 scfilter - ok
18:48:52.0121 4968 [ 624D0F5FF99428BB90A5B8A4123E918E ] Schedule C:\Windows\system32\schedsvc.dll
18:48:52.0207 4968 Schedule - ok
18:48:52.0302 4968 [ 312E2F82AF11E79906898AC3E3D58A1F ] SCPolicySvc C:\Windows\System32\certprop.dll
18:48:52.0376 4968 SCPolicySvc - ok
18:48:52.0472 4968 [ 54E47AD086782D3AE9417C155CDCEB9B ] sdbus C:\Windows\system32\DRIVERS\sdbus.sys
18:48:52.0559 4968 sdbus - ok
18:48:52.0734 4968 [ 765A27C3279CE11D14CB9E4F5869FCA5 ] SDRSVC C:\Windows\System32\SDRSVC.dll
18:48:52.0800 4968 SDRSVC - ok
18:48:52.0889 4968 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys
18:48:53.0081 4968 secdrv - ok
18:48:53.0151 4968 [ 463B386EBC70F98DA5DFF85F7E654346 ] seclogon C:\Windows\system32\seclogon.dll
18:48:53.0710 4968 seclogon - ok
18:48:53.0867 4968 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\Windows\system32\sens.dll
18:48:53.0918 4968 SENS - ok
18:48:53.0979 4968 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\Windows\system32\sensrsvc.dll
18:48:54.0142 4968 SensrSvc - ok
18:48:54.0257 4968 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
18:48:54.0529 4968 Serenum - ok
18:48:54.0559 4968 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\Windows\system32\DRIVERS\serial.sys
18:48:54.0626 4968 Serial - ok
18:48:54.0867 4968 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys
18:48:55.0476 4968 sermouse - ok
18:48:56.0114 4968 [ 7B51D631CACD0EEEAA7ED20EDB1A7AFA ] Service Sendori C:\Program Files (x86)\Sendori\Sendori.Service.exe
18:48:56.0127 4968 Service Sendori - ok
18:48:56.0371 4968 [ C3BC61CE47FF6F4E88AB8A3B429A36AF ] SessionEnv C:\Windows\system32\sessenv.dll
18:48:56.0440 4968 SessionEnv - ok
18:48:56.0521 4968 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\Windows\system32\DRIVERS\sffdisk.sys
18:48:56.0679 4968 sffdisk - ok
18:48:56.0708 4968 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\Windows\system32\DRIVERS\sffp_mmc.sys
18:48:56.0792 4968 sffp_mmc - ok
18:48:56.0865 4968 [ 5588B8C6193EB1522490C122EB94DFFA ] sffp_sd C:\Windows\system32\DRIVERS\sffp_sd.sys
18:48:56.0929 4968 sffp_sd - ok
18:48:57.0110 4968 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
18:48:57.0183 4968 sfloppy - ok
18:48:58.0148 4968 [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess C:\Windows\System32\ipnathlp.dll
18:48:58.0555 4968 SharedAccess - ok
18:48:58.0994 4968 [ 0298AC45D0EFFFB2DB4BAA7DD186E7BF ] ShellHWDetection C:\Windows\System32\shsvcs.dll
18:48:59.0066 4968 ShellHWDetection - ok
18:48:59.0127 4968 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys
18:48:59.0232 4968 SiSRaid2 - ok
18:48:59.0297 4968 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys
18:48:59.0420 4968 SiSRaid4 - ok
18:48:59.0703 4968 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\Windows\system32\DRIVERS\smb.sys
18:48:59.0834 4968 Smb - ok
18:49:01.0223 4968 [ 4E9E7C7D857EA1C83BE6160DAE25B4DA ] sndappv2 C:\Program Files (x86)\Sendori\sndappv2.exe
18:49:01.0302 4968 sndappv2 - ok
18:49:02.0556 4968 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\Windows\System32\snmptrap.exe
18:49:02.0821 4968 SNMPTRAP - ok
18:49:02.0899 4968 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\Windows\system32\drivers\spldr.sys
18:49:02.0962 4968 spldr - ok
18:49:03.0180 4968 [ 567977DC43CC13C4C35ED7084C0B84D5 ] Spooler C:\Windows\System32\spoolsv.exe
18:49:03.0274 4968 Spooler - ok
18:49:04.0179 4968 [ 913D843498553A1BC8F8DBAD6358E49F ] sppsvc C:\Windows\system32\sppsvc.exe
18:49:04.0257 4968 sppsvc - ok
18:49:04.0335 4968 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\Windows\system32\sppuinotify.dll
18:49:04.0506 4968 sppuinotify - ok
18:49:04.0693 4968 [ 2408C0366D96BCDF63E8F1C78E4A29C5 ] srv C:\Windows\system32\DRIVERS\srv.sys
18:49:04.0725 4968 srv - ok
18:49:04.0912 4968 [ 76548F7B818881B47D8D1AE1BE9C11F8 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
18:49:04.0990 4968 srv2 - ok
18:49:05.0130 4968 [ 0C4540311E11664B245A263E1154CEF8 ] SrvHsfHDA C:\Windows\system32\DRIVERS\VSTAZL6.SYS
18:49:05.0271 4968 SrvHsfHDA - ok
18:49:05.0489 4968 [ 02071D207A9858FBE3A48CBFD59C4A04 ] SrvHsfV92 C:\Windows\system32\DRIVERS\VSTDPV6.SYS
18:49:05.0614 4968 SrvHsfV92 - ok
18:49:05.0926 4968 [ 18E40C245DBFAF36FD0134A7EF2DF396 ] SrvHsfWinac C:\Windows\system32\DRIVERS\VSTCNXT6.SYS
18:49:05.0988 4968 SrvHsfWinac - ok
18:49:06.0144 4968 [ 0AF6E19D39C70844C5CAA8FB0183C36E ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
18:49:06.0207 4968 srvnet - ok
18:49:06.0285 4968 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
18:49:06.0363 4968 SSDPSRV - ok
18:49:06.0394 4968 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\Windows\system32\sstpsvc.dll
18:49:06.0456 4968 SstpSvc - ok
18:49:06.0503 4968 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys
18:49:06.0519 4968 stexstor - ok
18:49:06.0753 4968 [ 52D0E33B681BD0F33FDC08812FEE4F7D ] stisvc C:\Windows\System32\wiaservc.dll
18:49:07.0080 4968 stisvc - ok
18:49:07.0111 4968 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\Windows\system32\DRIVERS\swenum.sys
18:49:07.0189 4968 swenum - ok
18:49:07.0423 4968 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\Windows\System32\swprv.dll
18:49:07.0595 4968 swprv - ok
18:49:07.0657 4968 [ 91853F78B68F9F036670291F5EDD4EAE ] SynTP C:\Windows\system32\DRIVERS\SynTP.sys
18:49:07.0720 4968 SynTP - ok
18:49:07.0782 4968 [ 3C1284516A62078FB68F768DE4F1A7BE ] SysMain C:\Windows\system32\sysmain.dll
18:49:07.0954 4968 SysMain - ok
18:49:08.0001 4968 [ 238935C3CF2854886DC7CBB2A0E2CC66 ] TabletInputService C:\Windows\System32\TabSvc.dll
18:49:08.0047 4968 TabletInputService - ok
18:49:08.0063 4968 [ 884264AC597B690C5707C89723BB8E7B ] TapiSrv C:\Windows\System32\tapisrv.dll
18:49:08.0157 4968 TapiSrv - ok
18:49:08.0188 4968 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\Windows\System32\tbssvc.dll
18:49:08.0235 4968 TBS - ok
18:49:08.0328 4968 [ 624C5B3AA4C99B3184BB922D9ECE3FF0 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
18:49:08.0422 4968 Tcpip - ok
18:49:08.0469 4968 [ 624C5B3AA4C99B3184BB922D9ECE3FF0 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
18:49:08.0515 4968 TCPIP6 - ok
18:49:08.0562 4968 [ 76D078AF6F587B162D50210F761EB9ED ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
18:49:08.0625 4968 tcpipreg - ok
18:49:08.0656 4968 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
18:49:08.0687 4968 TDPIPE - ok
18:49:08.0718 4968 [ 7518F7BCFD4B308ABC9192BACAF6C970 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
18:49:08.0765 4968 TDTCP - ok
18:49:08.0796 4968 [ 079125C4B17B01FCAEEBCE0BCB290C0F ] tdx C:\Windows\system32\DRIVERS\tdx.sys
18:49:08.0890 4968 tdx - ok
18:49:08.0905 4968 [ C448651339196C0E869A355171875522 ] TermDD C:\Windows\system32\DRIVERS\termdd.sys
18:49:08.0921 4968 TermDD - ok
18:49:08.0952 4968 [ 0F05EC2887BFE197AD82A13287D2F404 ] TermService C:\Windows\System32\termsrv.dll
18:49:09.0030 4968 TermService - ok
18:49:09.0046 4968 [ F0344071948D1A1FA732231785A0664C ] Themes C:\Windows\system32\themeservice.dll
18:49:09.0077 4968 Themes - ok
18:49:09.0124 4968 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\Windows\system32\mmcss.dll
18:49:09.0155 4968 THREADORDER - ok
18:49:09.0186 4968 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\Windows\System32\trkwks.dll
18:49:09.0233 4968 TrkWks - ok
18:49:09.0295 4968 [ 840F7FB849F5887A49BA18C13B2DA920 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
18:49:09.0342 4968 TrustedInstaller - ok
18:49:09.0373 4968 [ 61B96C26131E37B24E93327A0BD1FB95 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
18:49:09.0420 4968 tssecsrv - ok
18:49:09.0467 4968 [ 3836171A2CDF3AF8EF10856DB9835A70 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
18:49:09.0561 4968 tunnel - ok
18:49:09.0592 4968 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys
18:49:09.0607 4968 uagp35 - ok
18:49:09.0654 4968 [ C06E6F4679CEB8F430B90A51D76D8D3C ] udfs C:\Windows\system32\DRIVERS\udfs.sys
18:49:09.0670 4968 udfs - ok
18:49:09.0701 4968 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\Windows\system32\UI0Detect.exe
18:49:09.0732 4968 UI0Detect - ok
18:49:09.0779 4968 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\Windows\system32\DRIVERS\uliagpkx.sys
18:49:09.0795 4968 uliagpkx - ok
18:49:09.0826 4968 [ EAB6C35E62B1B0DB0D1B48B671D3A117 ] umbus C:\Windows\system32\DRIVERS\umbus.sys
18:49:09.0857 4968 umbus - ok
18:49:09.0904 4968 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\Windows\system32\DRIVERS\umpass.sys
18:49:09.0919 4968 UmPass - ok
18:49:09.0951 4968 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\Windows\System32\upnphost.dll
18:49:10.0029 4968 upnphost - ok
18:49:10.0091 4968 [ 77B01BC848298223A95D4EC23E1785A1 ] usbaudio C:\Windows\system32\drivers\usbaudio.sys
18:49:10.0138 4968 usbaudio - ok
18:49:10.0169 4968 [ 537A4E03D7103C12D42DFD8FFDB5BDC9 ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
18:49:10.0216 4968 usbccgp - ok
18:49:10.0263 4968 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\Windows\system32\DRIVERS\usbcir.sys
18:49:10.0309 4968 usbcir - ok
18:49:10.0372 4968 [ FBB21EBE49F6D560DB37AC25FBC68E66 ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
18:49:10.0403 4968 usbehci - ok
18:49:10.0434 4968 [ 6B7A8A99C4A459E73C286A6763EA24CC ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
18:49:10.0465 4968 usbhub - ok
18:49:10.0497 4968 [ 8C88AA7617B4CBC2E4BED61D26B33A27 ] usbohci C:\Windows\system32\drivers\usbohci.sys
18:49:10.0528 4968 usbohci - ok
18:49:10.0559 4968 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
18:49:10.0575 4968 usbprint - ok
18:49:10.0606 4968 [ AAA2513C8AED8B54B189FD0C6B1634C0 ] usbscan C:\Windows\system32\DRIVERS\usbscan.sys
18:49:10.0637 4968 usbscan - ok
18:49:10.0668 4968 [ F39983647BC1F3E6100778DDFE9DCE29 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
18:49:10.0715 4968 USBSTOR - ok
18:49:10.0762 4968 [ 0B5B3B2DF3FD1709618ACFA50B8392B0 ] usbuhci C:\Windows\system32\DRIVERS\usbuhci.sys
18:49:10.0777 4968 usbuhci - ok
18:49:10.0809 4968 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\Windows\System32\uxsms.dll
18:49:10.0887 4968 UxSms - ok
18:49:10.0887 4968 [ 156F6159457D0AA7E59B62681B56EB90 ] VaultSvc C:\Windows\system32\lsass.exe
18:49:10.0918 4968 VaultSvc - ok
18:49:10.0949 4968 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\Windows\system32\DRIVERS\vdrvroot.sys
18:49:10.0965 4968 vdrvroot - ok
18:49:10.0980 4968 [ 44D73E0BBC1D3C8981304BA15135C2F2 ] vds C:\Windows\System32\vds.exe
18:49:11.0027 4968 vds - ok
18:49:11.0058 4968 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
18:49:11.0074 4968 vga - ok
18:49:11.0089 4968 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\Windows\System32\drivers\vga.sys
18:49:11.0136 4968 VgaSave - ok
18:49:11.0167 4968 [ C82E748660F62A242B2DFAC1442F22A4 ] vhdmp C:\Windows\system32\DRIVERS\vhdmp.sys
18:49:11.0183 4968 vhdmp - ok
18:49:11.0214 4968 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\Windows\system32\DRIVERS\viaide.sys
18:49:11.0230 4968 viaide - ok
18:49:11.0261 4968 [ 2B1A3DAE2B4E70DBBA822B7A03FBD4A3 ] volmgr C:\Windows\system32\DRIVERS\volmgr.sys
18:49:11.0277 4968 volmgr - ok
18:49:11.0292 4968 [ 99B0CBB569CA79ACAED8C91461D765FB ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
18:49:11.0323 4968 volmgrx - ok
18:49:11.0386 4968 [ 58F82EED8CA24B461441F9C3E4F0BF5C ] volsnap C:\Windows\system32\DRIVERS\volsnap.sys
18:49:11.0448 4968 volsnap - ok
18:49:11.0542 4968 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys
18:49:11.0604 4968 vsmraid - ok
18:49:11.0901 4968 [ 787898BF9FB6D7BD87A36E2D95C899BA ] VSS C:\Windows\system32\vssvc.exe
18:49:11.0994 4968 VSS - ok
18:49:12.0415 4968 [ 7D110D645030C05A06C3CD08D1E47D0A ] vToolbarUpdater13.2.0 C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\13.2.0\ToolbarUpdater.exe
18:49:12.0462 4968 vToolbarUpdater13.2.0 - ok
18:49:12.0493 4968 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\Windows\system32\DRIVERS\vwifibus.sys
18:49:12.0540 4968 vwifibus - ok
18:49:12.0603 4968 [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys
18:49:12.0665 4968 vwififlt - ok
18:49:12.0712 4968 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\Windows\system32\w32time.dll
18:49:13.0211 4968 W32Time - ok
18:49:13.0258 4968 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys
18:49:13.0305 4968 WacomPen - ok
18:49:13.0336 4968 [ 47CA49400643EFFD3F1C9A27E1D69324 ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
18:49:13.0429 4968 WANARP - ok
18:49:13.0429 4968 [ 47CA49400643EFFD3F1C9A27E1D69324 ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
18:49:13.0476 4968 Wanarpv6 - ok
18:49:13.0851 4968 [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe
18:49:13.0897 4968 WatAdminSvc - ok
18:49:14.0131 4968 [ 5AB1BB85BD8B5089CC5D64200DEDAE68 ] wbengine C:\Windows\system32\wbengine.exe
18:49:14.0256 4968 wbengine - ok
18:49:14.0272 4968 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
18:49:14.0334 4968 WbioSrvc - ok
18:49:14.0428 4968 [ DD1BAE8EBFC653824D29CCF8C9054D68 ] wcncsvc C:\Windows\System32\wcncsvc.dll
18:49:14.0506 4968 wcncsvc - ok
18:49:14.0553 4968 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
18:49:14.0615 4968 WcsPlugInService - ok
18:49:14.0677 4968 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\Windows\system32\DRIVERS\wd.sys
18:49:14.0709 4968 Wd - ok
18:49:14.0989 4968 [ 441BD2D7B4F98134C3A4F9FA570FD250 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
18:49:15.0036 4968 Wdf01000 - ok
18:49:15.0083 4968 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\Windows\system32\wdi.dll
18:49:15.0145 4968 WdiServiceHost - ok
18:49:15.0161 4968 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\Windows\system32\wdi.dll
18:49:15.0208 4968 WdiSystemHost - ok
18:49:15.0239 4968 [ 733006127F235BE7C35354EBEE7B9A7B ] WebClient C:\Windows\System32\webclnt.dll
18:49:15.0286 4968 WebClient - ok
18:49:15.0333 4968 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\Windows\system32\wecsvc.dll
18:49:15.0457 4968 Wecsvc - ok
18:49:15.0473 4968 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\Windows\System32\wercplsupport.dll
18:49:15.0551 4968 wercplsupport - ok
18:49:15.0582 4968 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\Windows\System32\WerSvc.dll
18:49:15.0629 4968 WerSvc - ok
18:49:15.0645 4968 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
18:49:15.0691 4968 WfpLwf - ok
18:49:15.0707 4968 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\Windows\system32\drivers\wimmount.sys
18:49:15.0723 4968 WIMMount - ok
18:49:15.0738 4968 WinDefend - ok
18:49:15.0754 4968 WinHttpAutoProxySvc - ok
18:49:15.0816 4968 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
18:49:15.0879 4968 Winmgmt - ok
18:49:15.0957 4968 [ 41FBB751936B387F9179E7F03A74FE29 ] WinRM C:\Windows\system32\WsmSvc.dll
18:49:16.0066 4968 WinRM - ok
18:49:16.0144 4968 [ 817EAFF5D38674EDD7713B9DFB8E9791 ] WinUSB C:\Windows\system32\DRIVERS\WinUSB.sys
18:49:16.0191 4968 WinUSB - ok
18:49:16.0237 4968 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\Windows\System32\wlansvc.dll
18:49:16.0300 4968 Wlansvc - ok
18:49:16.0315 4968 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\Windows\system32\DRIVERS\wmiacpi.sys
18:49:16.0347 4968 WmiAcpi - ok
18:49:16.0378 4968 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
18:49:16.0440 4968 wmiApSrv - ok
18:49:16.0471 4968 WMPNetworkSvc - ok
18:49:16.0503 4968 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\Windows\System32\wpcsvc.dll
18:49:16.0549 4968 WPCSvc - ok
18:49:16.0581 4968 [ 2E57DDF2880A7E52E76F41C7E96D327B ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
18:49:16.0627 4968 WPDBusEnum - ok
18:49:16.0659 4968 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
18:49:16.0721 4968 ws2ifsl - ok
18:49:16.0783 4968 [ 8F9F3969933C02DA96EB0F84576DB43E ] wscsvc C:\Windows\system32\wscsvc.dll
18:49:16.0830 4968 wscsvc - ok
18:49:16.0846 4968 WSearch - ok
18:49:16.0924 4968 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv C:\Windows\system32\wuaueng.dll
18:49:16.0986 4968 wuauserv - ok
18:49:17.0002 4968 [ 7CADC74271DD6461C452C271B30BD378 ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
18:49:17.0064 4968 WudfPf - ok
18:49:17.0095 4968 [ 3B197AF0FFF08AA66B6B2241CA538D64 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
18:49:17.0142 4968 WUDFRd - ok
18:49:17.0158 4968 [ B551D6637AA0E132C18AC6E504F7B79B ] wudfsvc C:\Windows\System32\WUDFSvc.dll
18:49:17.0220 4968 wudfsvc - ok
18:49:17.0236 4968 [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc C:\Windows\System32\wwansvc.dll
18:49:17.0283 4968 WwanSvc - ok
18:49:17.0329 4968 [ B3EEACF62445E24FBB2CD4B0FB4DB026 ] yukonw7 C:\Windows\system32\DRIVERS\yk62x64.sys
18:49:17.0376 4968 yukonw7 - ok
18:49:17.0392 4968 ================ Scan global ===============================
18:49:17.0423 4968 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
18:49:17.0470 4968 [ 79CDA06F75AD5373DD447F57575C4400 ] C:\Windows\system32\winsrv.dll
18:49:17.0517 4968 [ 79CDA06F75AD5373DD447F57575C4400 ] C:\Windows\system32\winsrv.dll
18:49:17.0563 4968 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
18:49:17.0595 4968 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
18:49:17.0610 4968 [Global] - ok
18:49:17.0610 4968 ================ Scan MBR ==================================
18:49:17.0610 4968 [ 53686036AA8CEA3923D0EAD2C16B7C54 ] \Device\Harddisk0\DR0
18:49:17.0829 4968 \Device\Harddisk0\DR0 ( TDSS File System ) - warning
18:49:17.0829 4968 \Device\Harddisk0\DR0 - detected TDSS File System (1)
18:49:17.0829 4968 ================ Scan VBR ==================================
18:49:17.0829 4968 [ AE27C7FF620F69E154378A89A34E8331 ] \Device\Harddisk0\DR0\Partition1
18:49:17.0829 4968 \Device\Harddisk0\DR0\Partition1 - ok
18:49:17.0875 4968 [ ADB9AA13B939BE3875CBB850EF658F50 ] \Device\Harddisk0\DR0\Partition2
18:49:17.0875 4968 \Device\Harddisk0\DR0\Partition2 - ok
18:49:17.0907 4968 [ D467E9AF3AE10846995719E0759E99EE ] \Device\Harddisk0\DR0\Partition3
18:49:17.0907 4968 \Device\Harddisk0\DR0\Partition3 - ok
18:49:17.0922 4968 [ BD4D5BC3B7505D5D08829212A657A3C5 ] \Device\Harddisk0\DR0\Partition4
18:49:17.0922 4968 \Device\Harddisk0\DR0\Partition4 - ok
18:49:17.0922 4968 ================ Scan active images ========================
18:49:17.0938 4968 [ 3E588B60EC061686BA05D33574A344C6 ] C:\Windows\System32\drivers\crashdmp.sys
18:49:17.0938 4968 C:\Windows\System32\drivers\crashdmp.sys - ok
18:49:17.0938 4968 [ 814DB88F2641691575A455CF25354098 ] C:\Windows\System32\drivers\dumpfve.sys
18:49:17.0938 4968 C:\Windows\System32\drivers\dumpfve.sys - ok
18:49:17.0953 4968 [ BE7D72FCF442C26975942007E0831241 ] C:\Windows\System32\drivers\iaStor.sys
18:49:17.0953 4968 C:\Windows\System32\drivers\iaStor.sys - ok
18:49:17.0953 4968 [ 46571ED73AE84469DCA53081D33CF3C8 ] C:\Windows\System32\drivers\dtsoftbus01.sys
18:49:17.0953 4968 C:\Windows\System32\drivers\dtsoftbus01.sys - ok
18:49:17.0969 4968 [ 83D2D75E1EFB81B3450C18131443F7DB ] C:\Windows\System32\drivers\cdrom.sys
18:49:17.0969 4968 C:\Windows\System32\drivers\cdrom.sys - ok
18:49:17.0985 4968 [ E71D826A1F3CE9C9DE3E77F2D02AFFBF ] C:\Windows\System32\drivers\aswSnx.sys
18:49:17.0985 4968 C:\Windows\System32\drivers\aswSnx.sys - ok
18:49:17.0985 4968 [ 371428CF0F71934CB0F2344823ADFA32 ] C:\Windows\System32\drivers\avgtpx64.sys
18:49:17.0985 4968 C:\Windows\System32\drivers\avgtpx64.sys - ok
18:49:18.0000 4968 [ 16A47CE2DECC9B099349A5F840654746 ] C:\Windows\System32\drivers\beep.sys
18:49:18.0000 4968 C:\Windows\System32\drivers\beep.sys - ok
18:49:18.0016 4968 [ 9899284589F75FA8724FF3D16AED75C1 ] C:\Windows\System32\drivers\null.sys
18:49:18.0016 4968 C:\Windows\System32\drivers\null.sys - ok
18:49:18.0016 4968 [ 53E92A310193CB3C03BEA963DE7D9CFC ] C:\Windows\System32\drivers\vga.sys
18:49:18.0016 4968 C:\Windows\System32\drivers\vga.sys - ok
18:49:18.0031 4968 [ E7353D59C9842BC7299FAEB7E7E09340 ] C:\Windows\System32\drivers\videoprt.sys
18:49:18.0031 4968 C:\Windows\System32\drivers\videoprt.sys - ok
18:49:18.0031 4968 [ FC438D1430B28618E2D0C7C332A710AD ] C:\Windows\System32\drivers\watchdog.sys
18:49:18.0031 4968 C:\Windows\System32\drivers\watchdog.sys - ok
18:49:18.0047 4968 [ CEA6CC257FC9B7715F1C2B4849286D24 ] C:\Windows\System32\drivers\RDPCDD.sys
18:49:18.0047 4968 C:\Windows\System32\drivers\RDPCDD.sys - ok
18:49:18.0063 4968 [ BB5971A4F00659529A5C44831AF22365 ] C:\Windows\System32\drivers\RDPENCDD.sys
18:49:18.0063 4968 C:\Windows\System32\drivers\RDPENCDD.sys - ok
18:49:18.0063 4968 [ 216F3FA57533D98E1F74DED70113177A ] C:\Windows\System32\drivers\RDPREFMP.sys
18:49:18.0063 4968 C:\Windows\System32\drivers\RDPREFMP.sys - ok
18:49:18.0078 4968 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] C:\Windows\System32\drivers\msfs.sys
18:49:18.0078 4968 C:\Windows\System32\drivers\msfs.sys - ok
18:49:18.0078 4968 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] C:\Windows\System32\drivers\npfs.sys
18:49:18.0078 4968 C:\Windows\System32\drivers\npfs.sys - ok
18:49:18.0094 4968 [ 0CA6FE26ACC7FFEE1BD0463F40835F32 ] C:\Windows\System32\drivers\tdi.sys
18:49:18.0094 4968 C:\Windows\System32\drivers\tdi.sys - ok
18:49:18.0109 4968 [ 079125C4B17B01FCAEEBCE0BCB290C0F ] C:\Windows\System32\drivers\tdx.sys
18:49:18.0109 4968 C:\Windows\System32\drivers\tdx.sys - ok
18:49:18.0109 4968 [ 6EDC79D73745FD44C41B55B2D13D0B70 ] C:\Windows\System32\drivers\aswTdi.sys
18:49:18.0109 4968 C:\Windows\System32\drivers\aswTdi.sys - ok
18:49:18.0125 4968 [ DB9D6C6B2CD95A9CA414D045B627422E ] C:\Windows\System32\drivers\afd.sys
18:49:18.0125 4968 C:\Windows\System32\drivers\afd.sys - ok
18:49:18.0125 4968 [ 57768C7DB4681F2510F247F82EF31D4F ] C:\Windows\System32\drivers\aswRdr2.sys
18:49:18.0125 4968 C:\Windows\System32\drivers\aswRdr2.sys - ok
18:49:18.0141 4968 [ 9162B273A44AB9DCE5B44362731D062A ] C:\Windows\System32\drivers\netbt.sys
18:49:18.0141 4968 C:\Windows\System32\drivers\netbt.sys - ok
18:49:18.0141 4968 [ 6BCC1D7D2FD2453957C5479A32364E52 ] C:\Windows\System32\drivers\ws2ifsl.sys
18:49:18.0141 4968 C:\Windows\System32\drivers\ws2ifsl.sys - ok
18:49:18.0156 4968 [ 86743D9F5D2B1048062B14B1D84501C4 ] C:\Windows\System32\drivers\netbios.sys
18:49:18.0156 4968 C:\Windows\System32\drivers\netbios.sys - ok
18:49:18.0172 4968 [ EE992183BD8EAEFD9973F352E587A299 ] C:\Windows\System32\drivers\pacer.sys
18:49:18.0172 4968 C:\Windows\System32\drivers\pacer.sys - ok
18:49:18.0172 4968 [ 6A3D66263414FF0D6FA754C646612F3F ] C:\Windows\System32\drivers\vwififlt.sys
18:49:18.0172 4968 C:\Windows\System32\drivers\vwififlt.sys - ok
18:49:18.0187 4968 [ 47CA49400643EFFD3F1C9A27E1D69324 ] C:\Windows\System32\drivers\wanarp.sys
18:49:18.0187 4968 C:\Windows\System32\drivers\wanarp.sys - ok
18:49:18.0187 4968 [ 611B23304BF067451A9FDEE01FBDD725 ] C:\Windows\System32\drivers\wfplwf.sys
18:49:18.0187 4968 C:\Windows\System32\drivers\wfplwf.sys - ok
18:49:18.0203 4968 [ 13096B05847EC78F0977F2C0F79E9AB3 ] C:\Windows\System32\drivers\discache.sys
18:49:18.0203 4968 C:\Windows\System32\drivers\discache.sys - ok
18:49:18.0219 4968 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] C:\Windows\System32\drivers\mssmbios.sys
18:49:18.0219 4968 C:\Windows\System32\drivers\mssmbios.sys - ok
18:49:18.0219 4968 [ E7F5AE18AF4168178A642A9247C63001 ] C:\Windows\System32\drivers\nsiproxy.sys
18:49:18.0219 4968 C:\Windows\System32\drivers\nsiproxy.sys - ok
18:49:18.0234 4968 [ 3BAC8142102C15D59A87757C1D41DCE5 ] C:\Windows\System32\drivers\rdbss.sys
18:49:18.0234 4968 C:\Windows\System32\drivers\rdbss.sys - ok
18:49:18.0250 4968 [ C448651339196C0E869A355171875522 ] C:\Windows\System32\drivers\termdd.sys
18:49:18.0250 4968 C:\Windows\System32\drivers\termdd.sys - ok
18:49:18.0250 4968 [ 61583EE3C3A17003C4ACD0475646B4D3 ] C:\Windows\System32\drivers\blbdrive.sys
18:49:18.0250 4968 C:\Windows\System32\drivers\blbdrive.sys - ok
18:49:18.0265 4968 [ 9C253CE7311CA60FC11C774692A13208 ] C:\Windows\System32\drivers\dfsc.sys
18:49:18.0265 4968 C:\Windows\System32\drivers\dfsc.sys - ok
18:49:18.0265 4968 [ 538A32E2C99BF073D4CA76C30BEDAA60 ] C:\Windows\System32\drivers\aswSP.sys
18:49:18.0265 4968 C:\Windows\System32\drivers\aswSP.sys - ok
18:49:18.0281 4968 [ 3836171A2CDF3AF8EF10856DB9835A70 ] C:\Windows\System32\drivers\tunnel.sys
18:49:18.0281 4968 C:\Windows\System32\drivers\tunnel.sys - ok
18:49:18.0281 4968 [ 0840155D0BDDF1190F84A663C284BD33 ] C:\Windows\System32\drivers\CmBatt.sys
18:49:18.0281 4968 C:\Windows\System32\drivers\CmBatt.sys - ok
18:49:18.0281 4968 [ ADA036632C664CAA754079041CF1F8C1 ] C:\Windows\System32\drivers\intelppm.sys
18:49:18.0281 4968 C:\Windows\System32\drivers\intelppm.sys - ok
18:49:18.0297 4968 [ 68DB778AC4FD7896CE2F153353BA15C8 ] C:\Windows\System32\ntdll.dll
18:49:18.0297 4968 C:\Windows\System32\ntdll.dll - ok
18:49:18.0297 4968 [ 1911A3356FA3F77CCC825CCBAC038C2A ] C:\Windows\System32\smss.exe
18:49:18.0297 4968 C:\Windows\System32\smss.exe - ok
18:49:18.0312 4968 [ 3AE12EC776AB9830462E8197FB5C88CF ] C:\Windows\System32\autochk.exe
18:49:18.0312 4968 C:\Windows\System32\autochk.exe - ok
18:49:18.0312 4968 [ 677AA5991026A65ADA128C4B59CF2BAD ] C:\Windows\System32\drivers\igdkmd64.sys
18:49:18.0312 4968 C:\Windows\System32\drivers\igdkmd64.sys - ok
18:49:18.0328 4968 [ 1633B9ABF52784A1331476397A48CBEF ] C:\Windows\System32\drivers\dxgkrnl.sys
18:49:18.0328 4968 C:\Windows\System32\drivers\dxgkrnl.sys - ok
18:49:18.0328 4968 [ 3238B9078E0766AB5E62DC737A809ADB ] C:\Windows\System32\drivers\dxgmms1.sys
18:49:18.0328 4968 C:\Windows\System32\drivers\dxgmms1.sys - ok
18:49:18.0328 4968 [ FBB21EBE49F6D560DB37AC25FBC68E66 ] C:\Windows\System32\drivers\usbehci.sys
18:49:18.0328 4968 C:\Windows\System32\drivers\usbehci.sys - ok
18:49:18.0343 4968 [ B37C3BF3FFC97177B1A9C016B7C8CDD6 ] C:\Windows\System32\drivers\usbport.sys
18:49:18.0343 4968 C:\Windows\System32\drivers\usbport.sys - ok
18:49:18.0343 4968 [ 0B5B3B2DF3FD1709618ACFA50B8392B0 ] C:\Windows\System32\drivers\usbuhci.sys
18:49:18.0343 4968 C:\Windows\System32\drivers\usbuhci.sys - ok
18:49:18.0359 4968 [ 0A49913402747A0B67DE940FB42CBDBB ] C:\Windows\System32\drivers\hdaudbus.sys
18:49:18.0359 4968 C:\Windows\System32\drivers\hdaudbus.sys - ok
18:49:18.0359 4968 [ 03E0627C26943916A7276AC5306206C7 ] C:\Windows\System32\drivers\rtl8192se.sys
18:49:18.0359 4968 C:\Windows\System32\drivers\rtl8192se.sys - ok
18:49:18.0375 4968 [ 0ADC83218B66A6DB380C330836F3E36D ] C:\Windows\System32\drivers\fastfat.sys
18:49:18.0375 4968 C:\Windows\System32\drivers\fastfat.sys - ok
18:49:18.0375 4968 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] C:\Windows\System32\drivers\i8042prt.sys
18:49:18.0375 4968 C:\Windows\System32\drivers\i8042prt.sys - ok
18:49:18.0390 4968 [ 777FC2C418465404E3D8A290DC247D24 ] C:\Windows\System32\drivers\Rt64win7.sys
18:49:18.0390 4968 C:\Windows\System32\drivers\Rt64win7.sys - ok
18:49:18.0390 4968 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] C:\Windows\System32\drivers\vwifibus.sys
18:49:18.0390 4968 C:\Windows\System32\drivers\vwifibus.sys - ok
18:49:18.0406 4968 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] C:\Windows\System32\drivers\kbdclass.sys
18:49:18.0406 4968 C:\Windows\System32\drivers\kbdclass.sys - ok
18:49:18.0406 4968 [ 91853F78B68F9F036670291F5EDD4EAE ] C:\Windows\System32\drivers\SynTP.sys
18:49:18.0406 4968 C:\Windows\System32\drivers\SynTP.sys - ok
18:49:18.0421 4968 [ F96F7835C8818895C47F6213E3A01F5D ] C:\Windows\System32\drivers\usbd.sys
18:49:18.0421 4968 C:\Windows\System32\drivers\usbd.sys - ok
18:49:18.0421 4968 [ 7D27EA49F3C1F687D357E77A470AEA99 ] C:\Windows\System32\drivers\mouclass.sys
18:49:18.0421 4968 C:\Windows\System32\drivers\mouclass.sys - ok
18:49:18.0437 4968 [ F6FF8944478594D0E414D3F048F0D778 ] C:\Windows\System32\drivers\wmiacpi.sys
18:49:18.0437 4968 C:\Windows\System32\drivers\wmiacpi.sys - ok
18:49:18.0437 4968 [ F26B3A86F6FA87CA360B879581AB4123 ] C:\Windows\System32\drivers\CompositeBus.sys
18:49:18.0437 4968 C:\Windows\System32\drivers\CompositeBus.sys - ok
18:49:18.0437 4968 [ 7ECFF9B22276B73F43A99A15A6094E90 ] C:\Windows\System32\drivers\agilevpn.sys
18:49:18.0453 4968 C:\Windows\System32\drivers\agilevpn.sys - ok
18:49:18.0453 4968 [ 87A6E852A22991580D6D39ADC4790463 ] C:\Windows\System32\drivers\rasl2tp.sys
18:49:18.0453 4968 C:\Windows\System32\drivers\rasl2tp.sys - ok
18:49:18.0453 4968 [ 30639C932D9FEF22B31268FE25A1B6E5 ] C:\Windows\System32\drivers\ndistapi.sys
18:49:18.0453 4968 C:\Windows\System32\drivers\ndistapi.sys - ok
18:49:18.0468 4968 [ 557DFAB9CA1FCB036AC77564C010DAD3 ] C:\Windows\System32\drivers\ndiswan.sys
18:49:18.0468 4968 C:\Windows\System32\drivers\ndiswan.sys - ok
18:49:18.0468 4968 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] C:\Windows\System32\drivers\raspppoe.sys
18:49:18.0468 4968 C:\Windows\System32\drivers\raspppoe.sys - ok
18:49:18.0484 4968 [ 27CC19E81BA5E3403C48302127BDA717 ] C:\Windows\System32\drivers\raspptp.sys
18:49:18.0484 4968 C:\Windows\System32\drivers\raspptp.sys - ok
18:49:18.0484 4968 [ E8B1E447B008D07FF47D016C2B0EEECB ] C:\Windows\System32\drivers\rassstp.sys
18:49:18.0484 4968 C:\Windows\System32\drivers\rassstp.sys - ok
18:49:18.0499 4968 [ 5C7AF4A20F5BF67042B2E613D123D111 ] C:\Windows\System32\drivers\ks.sys
18:49:18.0499 4968 C:\Windows\System32\drivers\ks.sys - ok
18:49:18.0499 4968 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] C:\Windows\System32\drivers\swenum.sys
18:49:18.0499 4968 C:\Windows\System32\drivers\swenum.sys - ok
18:49:18.0515 4968 [ EAB6C35E62B1B0DB0D1B48B671D3A117 ] C:\Windows\System32\drivers\umbus.sys
18:49:18.0515 4968 C:\Windows\System32\drivers\umbus.sys - ok
18:49:18.0515 4968 [ D202223587518B13D72D68937B7E3F70 ] C:\Windows\System32\lpk.dll
18:49:18.0515 4968 C:\Windows\System32\lpk.dll - ok
18:49:18.0515 4968 [ AC8F79017C5C1FB316930EDEAD0AF517 ] C:\Windows\System32\ole32.dll
18:49:18.0531 4968 C:\Windows\System32\ole32.dll - ok
18:49:18.0531 4968 [ E1B1255D3A4B3367FE4E9C71E62E3B5A ] C:\Windows\System32\gdi32.dll
18:49:18.0531 4968 C:\Windows\System32\gdi32.dll - ok
18:49:18.0531 4968 [ AA2C08CE85653B1A0D2E4AB407FA176C ] C:\Windows\System32\imm32.dll
18:49:18.0531 4968 C:\Windows\System32\imm32.dll - ok
18:49:18.0546 4968 [ E5CBF5F8623BBD1DB7B8148A66F6EBA4 ] C:\Windows\System32\Wldap32.dll
18:49:18.0546 4968 C:\Windows\System32\Wldap32.dll - ok
18:49:18.0546 4968 [ 6B7A8A99C4A459E73C286A6763EA24CC ] C:\Windows\System32\drivers\usbhub.sys
18:49:18.0546 4968 C:\Windows\System32\drivers\usbhub.sys - ok
18:49:18.0562 4968 [ 28C0B5024F5C5A438E78B188CFC81B7F ] C:\Windows\System32\normaliz.dll
18:49:18.0562 4968 C:\Windows\System32\normaliz.dll - ok
18:49:18.0562 4968 [ D841F7629505EE542E26E5F0A4D20101 ] C:\Windows\System32\iertutil.dll
18:49:18.0562 4968 C:\Windows\System32\iertutil.dll - ok
18:49:18.0577 4968 [ 3D165C53E40236A68B7102D1A622D4E0 ] C:\Windows\System32\wininet.dll
18:49:18.0577 4968 C:\Windows\System32\wininet.dll - ok
18:49:18.0577 4968 [ F94B8644F3AFE040EC6E1B6FBC9EFAA9 ] C:\Windows\System32\comdlg32.dll
18:49:18.0577 4968 C:\Windows\System32\comdlg32.dll - ok
18:49:18.0593 4968 [ 25983DE69B57142039AC8D95E71CD9C9 ] C:\Windows\System32\clbcatq.dll
18:49:18.0593 4968 C:\Windows\System32\clbcatq.dll - ok
18:49:18.0593 4968 [ 2885A3C3148F725CDA0B4C593BA8F7CE ] C:\Windows\System32\urlmon.dll
18:49:18.0593 4968 C:\Windows\System32\urlmon.dll - ok
18:49:18.0609 4968 [ 48CC125A6AB6C72A13E3D3E9C39AD9D9 ] C:\Windows\System32\shell32.dll
18:49:18.0609 4968 C:\Windows\System32\shell32.dll - ok
18:49:18.0609 4968 [ 044FE45FFD6AD40E3BBBE60B7F41BABE ] C:\Windows\System32\nsi.dll
18:49:18.0609 4968 C:\Windows\System32\nsi.dll - ok
18:49:18.0624 4968 [ D87E1E59C73C1F98D5DED5B3850C40F5 ] C:\Windows\System32\psapi.dll
18:49:18.0624 4968 C:\Windows\System32\psapi.dll - ok
18:49:18.0624 4968 [ 659B74FB74B86228D6338D643CD3E3CF ] C:\Windows\System32\drivers\ndproxy.sys
18:49:18.0624 4968 C:\Windows\System32\drivers\ndproxy.sys - ok
18:49:18.0624 4968 [ 21D26064AEDB4988F785BB4A3A2C051E ] C:\Windows\System32\drivers\drmk.sys
18:49:18.0624 4968 C:\Windows\System32\drivers\drmk.sys - ok
18:49:18.0640 4968 [ 32E11315B5126921FFD9074840EF13D3 ] C:\Windows\System32\drivers\portcls.sys
18:49:18.0640 4968 C:\Windows\System32\drivers\portcls.sys - ok
18:49:18.0640 4968 [ A3BCBD0F710580A07D1B929D787D36CE ] C:\Windows\System32\drivers\RTKVHD64.sys
18:49:18.0640 4968 C:\Windows\System32\drivers\RTKVHD64.sys - ok
18:49:18.0655 4968 [ CFC68CA36A63637E8CA69669EE3693DA ] C:\Windows\System32\drivers\IntcHdmi.sys
18:49:18.0655 4968 C:\Windows\System32\drivers\IntcHdmi.sys - ok
18:49:18.0655 4968 [ 6869281E78CB31A43E969F06B57347C4 ] C:\Windows\System32\drivers\ksthunk.sys
18:49:18.0655 4968 C:\Windows\System32\drivers\ksthunk.sys - ok
18:49:18.0655 4968 [ 579F6AFC6A6561951FA2202EFC3FE485 ] C:\Windows\System32\msvcrt.dll
18:49:18.0655 4968 C:\Windows\System32\msvcrt.dll - ok
18:49:18.0671 4968 [ 48C903068B6BDAB5EF650B9CBEE85295 ] C:\Windows\System32\rpcrt4.dll
18:49:18.0671 4968 C:\Windows\System32\rpcrt4.dll - ok
18:49:18.0671 4968 [ F7CE0C81C545364020ED8203CF0A633E ] C:\Windows\System32\difxapi.dll
18:49:18.0671 4968 C:\Windows\System32\difxapi.dll - ok
18:49:18.0687 4968 [ C431EAF5CAA1C82CAC2534A2EAB348A3 ] C:\Windows\System32\msctf.dll
18:49:18.0687 4968 C:\Windows\System32\msctf.dll - ok
18:49:18.0687 4968 [ 7083F463788CB34FCC42F565D56F89E8 ] C:\Windows\System32\ws2_32.dll
18:49:18.0687 4968 C:\Windows\System32\ws2_32.dll - ok
18:49:18.0702 4968 [ 5F2BDCA5FA0F20A6F452CF0EE2A2B18C ] C:\Windows\System32\usp10.dll
18:49:18.0702 4968 C:\Windows\System32\usp10.dll - ok
18:49:18.0702 4968 [ 15BDC173EB5FA4F92B67D9FFB269A6EA ] C:\Windows\System32\shlwapi.dll
18:49:18.0702 4968 C:\Windows\System32\shlwapi.dll - ok
18:49:18.0702 4968 [ 8E7F88A62E1AA28F15C0D6784E4C78B6 ] C:\Windows\System32\kernel32.dll
18:49:18.0702 4968 C:\Windows\System32\kernel32.dll - ok
18:49:18.0718 4968 [ 72D7B3EA16946E8F0CF7458150031CC6 ] C:\Windows\System32\user32.dll
18:49:18.0718 4968 C:\Windows\System32\user32.dll - ok
18:49:18.0718 4968 [ 2A46451EE42BCD2C842D8AA4923FAC16 ] C:\Windows\System32\oleaut32.dll
18:49:18.0718 4968 C:\Windows\System32\oleaut32.dll - ok
18:49:18.0733 4968 [ 6A4EA4C29FBF78112AE20013FB71E9C1 ] C:\Windows\System32\setupapi.dll
18:49:18.0733 4968 C:\Windows\System32\setupapi.dll - ok
18:49:18.0733 4968 [ 15A54626213EBF003F7D4C9D8380A656 ] C:\Windows\System32\imagehlp.dll
18:49:18.0733 4968 C:\Windows\System32\imagehlp.dll - ok
18:49:18.0749 4968 [ 6DF46D2BD74E3DA1B45F08F10D172732 ] C:\Windows\System32\advapi32.dll
18:49:18.0749 4968 C:\Windows\System32\advapi32.dll - ok
18:49:18.0749 4968 [ D05E03C1B2824236531F5E37334B6A8A ] C:\Windows\System32\cfgmgr32.dll
18:49:18.0749 4968 C:\Windows\System32\cfgmgr32.dll - ok
18:49:18.0765 4968 [ 83404DCBCE4925B6A5A77C5170F46D86 ] C:\Windows\System32\sechost.dll
18:49:18.0765 4968 C:\Windows\System32\sechost.dll - ok
18:49:18.0765 4968 [ BC052EFAD10ACA1AD69545B629F50D99 ] C:\Windows\System32\comctl32.dll
18:49:18.0765 4968 C:\Windows\System32\comctl32.dll - ok
18:49:18.0765 4968 [ 140A25BE1A1D2F6B17A019B305611A02 ] C:\Windows\System32\KernelBase.dll
18:49:18.0765 4968 C:\Windows\System32\KernelBase.dll - ok
18:49:18.0780 4968 [ 06FEC9E8117103BB1141A560E98077DA ] C:\Windows\System32\devobj.dll
18:49:18.0780 4968 C:\Windows\System32\devobj.dll - ok
18:49:18.0780 4968 [ D256EB74BF77026FC9A3D7193861C7AD ] C:\Windows\System32\crypt32.dll
18:49:18.0780 4968 C:\Windows\System32\crypt32.dll - ok
18:49:18.0796 4968 [ 987508ED06FC097E754A91BA8A8AAD0E ] C:\Windows\System32\wintrust.dll
18:49:18.0796 4968 C:\Windows\System32\wintrust.dll - ok
18:49:18.0796 4968 [ 98FB7DD3B28A92E3C0E5B4BD9D63EF01 ] C:\Windows\System32\msasn1.dll
18:49:18.0796 4968 C:\Windows\System32\msasn1.dll - ok
18:49:18.0811 4968 [ 9C278785347BCC991F8EA2999D90F58D ] C:\Windows\SysWOW64\normaliz.dll
18:49:18.0811 4968 C:\Windows\SysWOW64\normaliz.dll - ok
18:49:18.0811 4968 [ BF24D6F2ED97FE830BFD52B246F98E67 ] C:\Windows\System32\drivers\dxapi.sys
18:49:18.0811 4968 C:\Windows\System32\drivers\dxapi.sys - ok
18:49:18.0827 4968 [ E37C71EA972AD883E7841D07BC6D5F1C ] C:\Windows\System32\win32k.sys
18:49:18.0827 4968 C:\Windows\System32\win32k.sys - ok
18:49:18.0827 4968 [ E730EADB8F176DB06A378435BEB2E823 ] C:\Windows\System32\csrsrv.dll
18:49:18.0827 4968 C:\Windows\System32\csrsrv.dll - ok
18:49:18.0843 4968 [ 60C2862B4BF0FD9F582EF344C2B1EC72 ] C:\Windows\System32\csrss.exe
18:49:18.0843 4968 C:\Windows\System32\csrss.exe - ok
18:49:18.0843 4968 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\System32\basesrv.dll
18:49:18.0843 4968 C:\Windows\System32\basesrv.dll - ok
18:49:18.0843 4968 [ 79CDA06F75AD5373DD447F57575C4400 ] C:\Windows\System32\winsrv.dll
18:49:18.0843 4968 C:\Windows\System32\winsrv.dll - ok
18:49:18.0858 4968 [ B03D591DC7DA45ECE20B3B467E6AADAA ] C:\Windows\System32\drivers\monitor.sys
18:49:18.0858 4968 C:\Windows\System32\drivers\monitor.sys - ok
18:49:18.0858 4968 [ F29FE765E1448EF371CFE05BFAC74ADB ] C:\Windows\System32\tsddd.dll
18:49:18.0858 4968 C:\Windows\System32\tsddd.dll - ok
18:49:18.0874 4968 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\System32\sxssrv.dll
18:49:18.0874 4968 C:\Windows\System32\sxssrv.dll - ok
18:49:18.0874 4968 [ 94355C28C1970635A31B3FE52EB7CEBA ] C:\Windows\System32\wininit.exe
18:49:18.0874 4968 C:\Windows\System32\wininit.exe - ok
18:49:18.0889 4968 [ 100BDF2F89D6056CEE900BB6156DA737 ] C:\Windows\System32\cdd.dll
18:49:18.0889 4968 C:\Windows\System32\cdd.dll - ok
18:49:18.0889 4968 [ B9A047D231D32FDF5AF2F281E4326A9D ] C:\Windows\System32\KBDUS.DLL
18:49:18.0889 4968 C:\Windows\System32\KBDUS.DLL - ok
18:49:18.0889 4968 [ 2C942733A5983DD4502219FF37C7EBC7 ] C:\Windows\System32\profapi.dll
18:49:18.0889 4968 C:\Windows\System32\profapi.dll - ok
18:49:18.0905 4968 [ F4389DA7DBDA2E7D292D360CF8E400C7 ] C:\Windows\System32\RpcRtRemote.dll
18:49:18.0905 4968 C:\Windows\System32\RpcRtRemote.dll - ok
18:49:18.0905 4968 [ 456C92A9D8DB51B9938A6234BBC65FC9 ] C:\Windows\System32\sxs.dll
18:49:18.0905 4968 C:\Windows\System32\sxs.dll - ok
18:49:18.0921 4968 [ B26B1801356760841C3BC69F9F91537F ] C:\Windows\System32\WlS0WndH.dll
18:49:18.0921 4968 C:\Windows\System32\WlS0WndH.dll - ok
18:49:18.0921 4968 [ 784FA3DF338E2E8F5F0389D6FAC428AF ] C:\Windows\System32\cryptbase.dll
18:49:18.0921 4968 C:\Windows\System32\cryptbase.dll - ok
18:49:18.0921 4968 [ 01A465AC251BCCF6037DF2EF28AA4292 ] C:\Windows\System32\apphelp.dll
18:49:18.0921 4968 C:\Windows\System32\apphelp.dll - ok
18:49:18.0936 4968 [ DA3E2A6FA9660CC75B471530CE88453A ] C:\Windows\System32\winlogon.exe
18:49:18.0936 4968 C:\Windows\System32\winlogon.exe - ok
18:49:18.0936 4968 [ 156F6159457D0AA7E59B62681B56EB90 ] C:\Windows\System32\lsass.exe
18:49:18.0936 4968 C:\Windows\System32\lsass.exe - ok
18:49:18.0952 4968 [ 04FCA22B77A2E37332CC8226187AF87B ] C:\Windows\System32\lsm.exe
18:49:18.0952 4968 C:\Windows\System32\lsm.exe - ok
18:49:18.0952 4968 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\System32\services.exe
18:49:18.0952 4968 C:\Windows\System32\services.exe - ok
18:49:18.0967 4968 [ 1F582C6C84D5243692F9C3E04D0A663F ] C:\Windows\System32\sspicli.dll
18:49:18.0967 4968 C:\Windows\System32\sspicli.dll - ok
18:49:18.0967 4968 [ 68EA2513CA68AD8F741FF4F5B8D8590C ] C:\Windows\System32\sspisrv.dll
18:49:18.0967 4968 C:\Windows\System32\sspisrv.dll - ok
18:49:18.0983 4968 [ BFA69408620587AFDEC2E8C12CA60492 ] C:\Windows\System32\lsasrv.dll
18:49:18.0983 4968 C:\Windows\System32\lsasrv.dll - ok
18:49:18.0983 4968 [ 941AF3C8B0DE1B359BE22DD3288A8C8E ] C:\Windows\System32\scesrv.dll
18:49:18.0983 4968 C:\Windows\System32\scesrv.dll - ok
18:49:18.0983 4968 [ E914A50A151DFFE63D3935226DB5E2C1 ] C:\Windows\System32\scext.dll
18:49:18.0983 4968 C:\Windows\System32\scext.dll - ok
18:49:18.0999 4968 [ 74A0871810BF0F2AA3EB6681E9BECDD3 ] C:\Windows\System32\secur32.dll
18:49:18.0999 4968 C:\Windows\System32\secur32.dll - ok
18:49:18.0999 4968 [ D8C88512BA9544AE1CC2034F50ECFA12 ] C:\Windows\System32\winsta.dll
18:49:18.0999 4968 C:\Windows\System32\winsta.dll - ok
18:49:19.0014 4968 [ B160ADAEFC76031D92C4FBAC0918B033 ] C:\Windows\System32\samsrv.dll
18:49:19.0014 4968 C:\Windows\System32\samsrv.dll - ok
18:49:19.0014 4968 [ 68083118797CAF30FB2EA3E71494D67E ] C:\Windows\System32\sysntfy.dll
18:49:19.0014 4968 C:\Windows\System32\sysntfy.dll - ok
18:49:19.0030 4968 [ DEE7267C5D232A3B816866872CE199E6 ] C:\Windows\System32\wmsgapi.dll
18:49:19.0030 4968 C:\Windows\System32\wmsgapi.dll - ok
18:49:19.0030 4968 [ D23371AB9607651937C7641A38CD52BC ] C:\Windows\System32\srvcli.dll
18:49:19.0030 4968 C:\Windows\System32\srvcli.dll - ok
18:49:19.0045 4968 [ 3A061472B38233BAFF9CFEFF2E49C46B ] C:\Windows\System32\cryptdll.dll
18:49:19.0045 4968 C:\Windows\System32\cryptdll.dll - ok
18:49:19.0045 4968 [ 3C073B0C596A0AF84933E7406766B040 ] C:\Windows\System32\wevtapi.dll
18:49:19.0045 4968 C:\Windows\System32\wevtapi.dll - ok
18:49:19.0045 4968 [ 7FBEBD2229EA5FD48D41B199EC2D541C ] C:\Windows\System32\authz.dll
18:49:19.0045 4968 C:\Windows\System32\authz.dll - ok
18:49:19.0061 4968 [ 86FE1B1F8FD42CD0DB641AB1CDB13093 ] C:\Windows\System32\cngaudit.dll
18:49:19.0061 4968 C:\Windows\System32\cngaudit.dll - ok
18:49:19.0061 4968 [ E08926B4E52F92FF8852BECC0E2F358A ] C:\Windows\System32\ncrypt.dll
18:49:19.0061 4968 C:\Windows\System32\ncrypt.dll - ok
18:49:19.0077 4968 [ B9A95365E52F421A20E1501935FADDA5 ] C:\Windows\System32\bcrypt.dll
18:49:19.0077 4968 C:\Windows\System32\bcrypt.dll - ok
18:49:19.0077 4968 [ 02B64609F865A39365FF88580DF11738 ] C:\Windows\System32\msprivs.dll
18:49:19.0077 4968 C:\Windows\System32\msprivs.dll - ok
18:49:19.0092 4968 [ B561B451320B0B40908A8BFD81705262 ] C:\Windows\System32\netjoin.dll
18:49:19.0092 4968 C:\Windows\System32\netjoin.dll - ok
18:49:19.0092 4968 [ 50532FCD7ECF02DD169CE5C485F02534 ] C:\Windows\System32\negoexts.dll
18:49:19.0092 4968 C:\Windows\System32\negoexts.dll - ok
18:49:19.0092 4968 [ 00B40A10E3DB79E4D3E127B9C2233A6B ] C:\Windows\System32\kerberos.dll
18:49:19.0092 4968 C:\Windows\System32\kerberos.dll - ok
18:49:19.0108 4968 [ EFC5353E4F513DEF55ED7B7872363957 ] C:\Windows\System32\atmfd.dll
18:49:19.0108 4968 C:\Windows\System32\atmfd.dll - ok
18:49:19.0108 4968 [ D0C2FBB6D97416B0166478FC7AE2B212 ] C:\Windows\System32\cryptsp.dll
18:49:19.0108 4968 C:\Windows\System32\cryptsp.dll - ok
18:49:19.0123 4968 [ FC76FE3C1E1FDB761244D4F74EF560FD ] C:\Windows\System32\mswsock.dll
18:49:19.0123 4968 C:\Windows\System32\mswsock.dll - ok
18:49:19.0123 4968 [ FA4DB05923DDDEDE3196ABD09AE0F1E9 ] C:\Windows\System32\msv1_0.dll
18:49:19.0123 4968 C:\Windows\System32\msv1_0.dll - ok
18:49:19.0139 4968 [ EC7CBFF96B05ECF3D366355B3C64ADCF ] C:\Windows\System32\wship6.dll
18:49:19.0139 4968 C:\Windows\System32\wship6.dll - ok
18:49:19.0139 4968 [ 956D030D375F207B22FB111E06EF9C35 ] C:\Windows\System32\netlogon.dll
18:49:19.0139 4968 C:\Windows\System32\netlogon.dll - ok
18:49:19.0155 4968 [ E247E7DEB20C0CF0801A8AC39E9CE1DF ] C:\Windows\System32\dnsapi.dll
18:49:19.0155 4968 C:\Windows\System32\dnsapi.dll - ok
18:49:19.0155 4968 [ 8CE22E63F08613036DF8C7B00FBDF36B ] C:\Windows\System32\logoncli.dll
18:49:19.0155 4968 C:\Windows\System32\logoncli.dll - ok
18:49:19.0155 4968 [ 90B780886BD813882CB382FF3E90E092 ] C:\Windows\System32\schannel.dll
18:49:19.0155 4968 C:\Windows\System32\schannel.dll - ok
18:49:19.0170 4968 [ 95FB6CA4374E343DDD653FCC43F9D26B ] C:\Windows\System32\wdigest.dll
18:49:19.0170 4968 C:\Windows\System32\wdigest.dll - ok
18:49:19.0170 4968 [ 5D8874A8C11DDDDE29E12DE0E2013493 ] C:\Windows\System32\rsaenh.dll
18:49:19.0170 4968 C:\Windows\System32\rsaenh.dll - ok
18:49:19.0186 4968 [ 0DEFD5FBF801DD8F83BC0ED09861A8EC ] C:\Windows\System32\TSpkg.dll
18:49:19.0186 4968 C:\Windows\System32\TSpkg.dll - ok
18:49:19.0186 4968 [ E08088A97F95345E181C3DFCE2C615EF ] C:\Windows\System32\pku2u.dll
18:49:19.0186 4968 C:\Windows\System32\pku2u.dll - ok
18:49:19.0201 4968 [ DA090E97E57DCB48888015B5D3C749CD ] C:\Windows\System32\bcryptprimitives.dll
18:49:19.0201 4968 C:\Windows\System32\bcryptprimitives.dll - ok
18:49:19.0201 4968 [ 9301B8810B2DA4EB6AD55DB75FC1E339 ] C:\Windows\System32\credssp.dll
18:49:19.0201 4968 C:\Windows\System32\credssp.dll - ok
18:49:19.0201 4968 [ 90BDEFC5DF334E5100EAA781D798DE1A ] C:\Windows\System32\efslsaext.dll
18:49:19.0201 4968 C:\Windows\System32\efslsaext.dll - ok
18:49:19.0217 4968 [ 398712DDDAEFB85EDF61DF6A07B65C79 ] C:\Windows\System32\scecli.dll
18:49:19.0217 4968 C:\Windows\System32\scecli.dll - ok
18:49:19.0217 4968 [ 7CC7DF5B654DA579613F811D8C637E29 ] C:\Windows\System32\ubpm.dll
18:49:19.0217 4968 C:\Windows\System32\ubpm.dll - ok
18:49:19.0233 4968 [ C78655BC80301D76ED4FEF1C1EA40A7D ] C:\Windows\System32\svchost.exe
18:49:19.0233 4968 C:\Windows\System32\svchost.exe - ok
18:49:19.0233 4968 [ 98B1721B8718164293B9701B98C52D77 ] C:\Windows\System32\umpnpmgr.dll
18:49:19.0233 4968 C:\Windows\System32\umpnpmgr.dll - ok
18:49:19.0248 4968 [ CD1B5AD07E5F7FEF30E055DCC9E96180 ] C:\Windows\System32\devrtl.dll
18:49:19.0248 4968 C:\Windows\System32\devrtl.dll - ok
18:49:19.0248 4968 [ E6EB44ABAAF1F330119F854856C53EBE ] C:\Windows\System32\SPInf.dll
18:49:19.0248 4968 C:\Windows\System32\SPInf.dll - ok
18:49:19.0248 4968 [ 0776CF79590BDEF0A2728B0B9A813B96 ] C:\Windows\System32\userenv.dll
18:49:19.0248 4968 C:\Windows\System32\userenv.dll - ok
18:49:19.0264 4968 [ 9C9307C95671AC962F3D6EB3A4A89BAE ] C:\Windows\System32\gpapi.dll
18:49:19.0264 4968 C:\Windows\System32\gpapi.dll - ok
18:49:19.0264 4968 [ F6C011B46FAEEF33536B2E80F48B5CBE ] C:\Windows\System32\pcwum.dll
18:49:19.0264 4968 C:\Windows\System32\pcwum.dll - ok
18:49:19.0279 4968 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] C:\Windows\System32\umpo.dll
18:49:19.0279 4968 C:\Windows\System32\umpo.dll - ok
18:49:19.0279 4968 [ 716175021BDA290504CE434273F666BC ] C:\Windows\System32\powrprof.dll
18:49:19.0279 4968 C:\Windows\System32\powrprof.dll - ok
18:49:19.0295 4968 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] C:\Windows\System32\drivers\luafv.sys
18:49:19.0295 4968 C:\Windows\System32\drivers\luafv.sys - ok
18:49:19.0295 4968 [ B50CDD87772D6A11CB90924AAD399DF8 ] C:\Windows\System32\drivers\aswMonFlt.sys
18:49:19.0295 4968 C:\Windows\System32\drivers\aswMonFlt.sys - ok
18:49:19.0311 4968 [ 4FCAEF0C5BE7629AEB878998E0FE959B ] C:\Windows\System32\drivers\aswFsBlk.sys
18:49:19.0311 4968 C:\Windows\System32\drivers\aswFsBlk.sys - ok
18:49:19.0311 4968 [ 7CADC74271DD6461C452C271B30BD378 ] C:\Windows\System32\drivers\WUDFPf.sys
18:49:19.0311 4968 C:\Windows\System32\drivers\WUDFPf.sys - ok
18:49:19.0311 4968 [ 7266972E86890E2B30C0C322E906B027 ] C:\Windows\System32\rpcss.dll
18:49:19.0311 4968 C:\Windows\System32\rpcss.dll - ok
18:49:19.0326 4968 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] C:\Windows\System32\RpcEpMap.dll
18:49:19.0326 4968 C:\Windows\System32\RpcEpMap.dll - ok
18:49:19.0326 4968 [ 16E964ABF6D1E0F0CC7822FCA9BA754D ] C:\Windows\System32\wshqos.dll
18:49:19.0326 4968 C:\Windows\System32\wshqos.dll - ok
18:49:19.0342 4968 [ 31559F3244C6BC00A52030CAA83B6B91 ] C:\Windows\System32\WSHTCPIP.DLL
18:49:19.0342 4968 C:\Windows\System32\WSHTCPIP.DLL - ok
18:49:19.0342 4968 [ CC8E4F72F21340A4D3A3D4DB50313EF5 ] C:\Program Files\Microsoft Security Client\MsMpEng.exe
18:49:19.0342 4968 C:\Program Files\Microsoft Security Client\MsMpEng.exe - ok
18:49:19.0357 4968 [ BCF8F2758AA5C451F8E366C66A98BBFE ] C:\Program Files\Microsoft Security Client\MpSvc.dll
18:49:19.0357 4968 C:\Program Files\Microsoft Security Client\MpSvc.dll - ok
18:49:19.0357 4968 [ 9AD9E06F8656F296D91FAE8EE5B95A27 ] C:\Windows\System32\FirewallAPI.dll
18:49:19.0357 4968 C:\Windows\System32\FirewallAPI.dll - ok
18:49:19.0373 4968 [ 1F4492FE41767CDB8B89D17655847CDD ] C:\Windows\System32\ntmarta.dll
18:49:19.0373 4968 C:\Windows\System32\ntmarta.dll - ok
18:49:19.0373 4968 [ 93E6A39B1DB898F7C949FA5567E774CF ] C:\Windows\System32\LogonUI.exe
18:49:19.0373 4968 C:\Windows\System32\LogonUI.exe - ok
18:49:19.0389 4968 [ BCF0A980D21711E47D0803BDB0E99CAD ] C:\Windows\System32\authui.dll
18:49:19.0389 4968 C:\Windows\System32\authui.dll - ok
18:49:19.0389 4968 [ 94E026870A55AAEAFF7853C1754091E9 ] C:\Windows\System32\version.dll
18:49:19.0389 4968 C:\Windows\System32\version.dll - ok
18:49:19.0389 4968 [ DBA90306A721FB922FDACED9E9728C28 ] C:\Windows\System32\cryptui.dll
18:49:19.0389 4968 C:\Windows\System32\cryptui.dll - ok
18:49:19.0404 4968 [ BD3674BE7FC9D8D3732C83E8499576ED ] C:\Windows\System32\wtsapi32.dll
18:49:19.0404 4968 C:\Windows\System32\wtsapi32.dll - ok
18:49:19.0404 4968 [ 2F67DEE6452EBC9F4A6C97A1CCC232FE ] C:\Program Files\Microsoft Security Client\MpClient.dll
18:49:19.0404 4968 C:\Program Files\Microsoft Security Client\MpClient.dll - ok
18:49:19.0420 4968 [ 113921FC4A80A3DDF646852998B836D0 ] C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7\comctl32.dll
18:49:19.0420 4968 C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7\comctl32.dll - ok
18:49:19.0420 4968 [ 5B3EBFC3DA142324B388DDCC4465E1FF ] C:\Windows\System32\samlib.dll
18:49:19.0420 4968 C:\Windows\System32\samlib.dll - ok
18:49:19.0435 4968 [ 84F8C8B9FB1F12532999D25F5DD7E77C ] C:\Windows\System32\shacct.dll
18:49:19.0435 4968 C:\Windows\System32\shacct.dll - ok
18:49:19.0435 4968 [ B27EA141A7E748B607600A8551A44D5A ] C:\Windows\System32\propsys.dll
18:49:19.0435 4968 C:\Windows\System32\propsys.dll - ok
18:49:19.0435 4968 [ D29E998E8277666982B4F0303BF4E7AF ] C:\Windows\System32\uxtheme.dll
18:49:19.0435 4968 C:\Windows\System32\uxtheme.dll - ok
18:49:19.0451 4968 [ 5F10310A5A9273475AA04930DFE16742 ] C:\Program Files\Microsoft Security Client\EppManifest.dll
18:49:19.0451 4968 C:\Program Files\Microsoft Security Client\EppManifest.dll - ok
18:49:19.0451 4968 [ DD0701DE0AAA010E6EBD0F53B672DCEE ] C:\Windows\winsxs\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7600.17007_none_2b47185a719d6182\GdiPlus.dll
18:49:19.0451 4968 C:\Windows\winsxs\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7600.17007_none_2b47185a719d6182\GdiPlus.dll - ok
18:49:19.0467 4968 [ 3CB6A7286422C72C34DAB54A5DFF1A34 ] C:\Windows\System32\dui70.dll
18:49:19.0467 4968 C:\Windows\System32\dui70.dll - ok
18:49:19.0467 4968 [ BF62F3BC1BE0700804EC394BB77F02C4 ] C:\Program Files\Microsoft Security Client\MpRTP.dll
18:49:19.0467 4968 C:\Program Files\Microsoft Security Client\MpRTP.dll - ok
18:49:19.0482 4968 [ F3D202F53A222D5F6944D459B73CF967 ] C:\Windows\System32\fltLib.dll
18:49:19.0482 4968 C:\Windows\System32\fltLib.dll - ok
18:49:19.0482 4968 [ FF7E814CBFEC3C27922C13BB94667416 ] C:\Program Files\Microsoft Security Client\MsMpLics.dll
18:49:19.0482 4968 C:\Program Files\Microsoft Security Client\MsMpLics.dll - ok
18:49:19.0498 4968 [ 05BF204EC0E82CC4A054DB189C8A3D84 ] C:\Windows\System32\drivers\MpFilter.sys
18:49:19.0498 4968 C:\Windows\System32\drivers\MpFilter.sys - ok
18:49:19.0498 4968 [ 8CCDE014A4CDF84564E03ACE064CA753 ] C:\Windows\System32\duser.dll
18:49:19.0498 4968 C:\Windows\System32\duser.dll - ok
18:49:19.0498 4968 [ 99ABDA9C92EC76CBAF52F00239D909C9 ] C:\Windows\System32\wevtsvc.dll
18:49:19.0498 4968 C:\Windows\System32\wevtsvc.dll - ok
18:49:19.0513 4968 [ B2E3D4BB3389817FB5E4CD9378BC8791 ] C:\Windows\System32\SndVolSSO.dll
18:49:19.0513 4968 C:\Windows\System32\SndVolSSO.dll - ok
18:49:19.0529 4968 [ 896F15A6434D93EDB42519D5E18E6B50 ] C:\Windows\System32\hid.dll
18:49:19.0529 4968 C:\Windows\System32\hid.dll - ok
18:49:19.0529 4968 [ 227E2C382A1E02F8D4965E664D3BBE43 ] C:\Windows\System32\MMDevAPI.dll
18:49:19.0529 4968 C:\Windows\System32\MMDevAPI.dll - ok
18:49:19.0545 4968 [ DA1B7075260F3872585BFCDD668C648B ] C:\Windows\System32\dwmapi.dll
18:49:19.0545 4968 C:\Windows\System32\dwmapi.dll - ok
18:49:19.0545 4968 [ 39F91A948E6017B732C4A0B3086A8E32 ] C:\Windows\System32\xmllite.dll
18:49:19.0545 4968 C:\Windows\System32\xmllite.dll - ok
18:49:19.0560 4968 [ EA99F234843BBDDA1ABD2767111ADE25 ] C:\Windows\System32\WindowsCodecs.dll
18:49:19.0560 4968 C:\Windows\System32\WindowsCodecs.dll - ok
18:49:19.0560 4968 [ 12FD09889C8A6141C8D10F7AE48BBAC8 ] C:\Program Files\Microsoft Security Client\NisIpsPlugin.dll
18:49:19.0560 4968 C:\Program Files\Microsoft Security Client\NisIpsPlugin.dll - ok
18:49:19.0576 4968 [ C2762A57DF0EE85E63CE4893C5215313 ] C:\Windows\System32\VaultCredProvider.dll
18:49:19.0576 4968 C:\Windows\System32\VaultCredProvider.dll - ok
18:49:19.0576 4968 [ 9F2BACD5E1776A4BB7CC0EC3C3A4F96D ] C:\Windows\System32\winbrand.dll
18:49:19.0576 4968 C:\Windows\System32\winbrand.dll - ok
18:49:19.0591 4968 [ 2A381A9740165D7A1405148B6DFB3E38 ] C:\Windows\System32\SmartcardCredentialProvider.dll
18:49:19.0591 4968 C:\Windows\System32\SmartcardCredentialProvider.dll - ok
18:49:19.0591 4968 [ BF352E73615F5461AA6884472435A544 ] C:\Windows\System32\BioCredProv.dll
18:49:19.0591 4968 C:\Windows\System32\BioCredProv.dll - ok
18:49:19.0607 4968 [ 97D38371502AA797DB14EB1FA5FCE4CD ] C:\Windows\System32\credui.dll
18:49:19.0607 4968 C:\Windows\System32\credui.dll - ok
18:49:19.0607 4968 [ 796B8123A7859AFD3A4AE10514DBAEB5 ] C:\Windows\System32\winbio.dll
18:49:19.0607 4968 C:\Windows\System32\winbio.dll - ok
18:49:19.0623 4968 [ 07721A77180EDD4D39CCB865BF63C7FD ] C:\Windows\System32\audiosrv.dll
18:49:19.0623 4968 C:\Windows\System32\audiosrv.dll - ok
18:49:19.0623 4968 [ 78A1E65207484B7F8D3217507745F47C ] C:\Windows\System32\avrt.dll
18:49:19.0623 4968 C:\Windows\System32\avrt.dll - ok
18:49:19.0638 4968 [ E40E80D0304A73E8D269F7141D77250B ] C:\Windows\System32\mmcss.dll
18:49:19.0638 4968 C:\Windows\System32\mmcss.dll - ok
18:49:19.0638 4968 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] C:\Windows\System32\netprofm.dll
18:49:19.0638 4968 C:\Windows\System32\netprofm.dll - ok
18:49:19.0654 4968 [ 3C27B50BC43D5FED43081A784DD17190 ] C:\Windows\System32\netapi32.dll
18:49:19.0654 4968 C:\Windows\System32\netapi32.dll - ok
18:49:19.0654 4968 [ 44B9C66177651F3F53C87B665D58D17A ] C:\Windows\System32\vaultcli.dll
18:49:19.0654 4968 C:\Windows\System32\vaultcli.dll - ok
18:49:19.0654 4968 [ 4C8C2F987FC397DCE98874D6C9C0736A ] C:\Windows\System32\netutils.dll
18:49:19.0654 4968 C:\Windows\System32\netutils.dll - ok
18:49:19.0669 4968 [ B33CBD1A8C2A33121321D0FEBD7DD870 ] C:\Windows\System32\wkscli.dll
18:49:19.0669 4968 C:\Windows\System32\wkscli.dll - ok
18:49:19.0669 4968 [ A87205FE194B239D8D96E4972B779CC1 ] C:\Windows\System32\samcli.dll
18:49:19.0669 4968 C:\Windows\System32\samcli.dll - ok
18:49:19.0685 4968 [ E5AC79743E58A973CB0A140CDD1B3DC0 ] C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{288D7F56-C921-4826-AB06-D704EA6A29BB}\mpengine.dll
18:49:19.0685 4968 C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{288D7F56-C921-4826-AB06-D704EA6A29BB}\mpengine.dll - ok
18:49:19.0685 4968 [ 972C3301DB3DA91AE06A95F6B4160B1B ] C:\Windows\System32\certCredProvider.dll
18:49:19.0685 4968 C:\Windows\System32\certCredProvider.dll - ok
18:49:19.0701 4968 [ 87FA0C48C3B2E9FEE518818FE26B15B5 ] C:\Windows\System32\rasplap.dll
18:49:19.0701 4968 C:\Windows\System32\rasplap.dll - ok
18:49:19.0701 4968 [ D152EBC32A23069F8AA1D1F24B15E3F9 ] C:\Windows\System32\audiodg.exe
18:49:19.0701 4968 C:\Windows\System32\audiodg.exe - ok
18:49:19.0701 4968 [ 588CD0C78A7FAAE4186B5EEA0AF3ED67 ] C:\Windows\System32\adtschema.dll
18:49:19.0701 4968 C:\Windows\System32\adtschema.dll - ok
18:49:19.0716 4968 [ 019CD868461B646E09BDF04474C19341 ] C:\Windows\System32\rasapi32.dll
18:49:19.0716 4968 C:\Windows\System32\rasapi32.dll - ok
18:49:19.0716 4968 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] C:\Windows\System32\wlansvc.dll
18:49:19.0716 4968 C:\Windows\System32\wlansvc.dll - ok
18:49:19.0732 4968 [ FE5AB4525BC2EC68B9119A6E5D40128B ] C:\Windows\System32\gpsvc.dll
18:49:19.0732 4968 C:\Windows\System32\gpsvc.dll - ok
18:49:19.0732 4968 [ 86E3822A34D454032D8E88C72AE8CF2D ] C:\Windows\System32\nlaapi.dll
18:49:19.0732 4968 C:\Windows\System32\nlaapi.dll - ok
18:49:19.0747 4968 [ F0344071948D1A1FA732231785A0664C ] C:\Windows\System32\themeservice.dll
18:49:19.0747 4968 C:\Windows\System32\themeservice.dll - ok
18:49:19.0747 4968 [ B28DEEC597C8DEB70C744C7CF9210E3E ] C:\Windows\System32\rasman.dll
18:49:19.0747 4968 C:\Windows\System32\rasman.dll - ok
18:49:19.0747 4968 [ F5A61F0A0030C80DF319B0C14A4C8885 ] C:\Windows\System32\rtutils.dll
18:49:19.0747 4968 C:\Windows\System32\rtutils.dll - ok
18:49:19.0763 4968 [ EF2AE43BCD46ABB13FC3E5B2B1935C73 ] C:\Windows\System32\winmm.dll
18:49:19.0763 4968 C:\Windows\System32\winmm.dll - ok
18:49:19.0763 4968 [ 30F9BACA07F8251D7DD1805A9E919CE0 ] C:\Windows\System32\wdmaud.drv
18:49:19.0763 4968 C:\Windows\System32\wdmaud.drv - ok
18:49:19.0779 4968 [ 8560FFFC8EB3A806DCD4F82252CFC8C6 ] C:\Windows\System32\ksuser.dll
18:49:19.0779 4968 C:\Windows\System32\ksuser.dll - ok
18:49:19.0779 4968 [ 50544D04AD845C43130B70212EC05CCD ] C:\Windows\System32\microsoft-windows-kernel-power-events.dll
18:49:19.0779 4968 C:\Windows\System32\microsoft-windows-kernel-power-events.dll - ok
18:49:19.0794 4968 [ F7866AF72ABBAF84B1FA5AA195378C59 ] C:\Windows\System32\drivers\fltMgr.sys
18:49:19.0794 4968 C:\Windows\System32\drivers\fltMgr.sys - ok
18:49:19.0794 4968 [ A3DB3C17EE6CAE65D53602B4E80BCCBC ] C:\Windows\System32\PSHED.DLL
18:49:19.0794 4968 C:\Windows\System32\PSHED.DLL - ok
18:49:19.0810 4968 [ B0945E538CF906BBDDC5A11C8EE868CC ] C:\Windows\System32\microsoft-windows-kernel-processor-power-events.dll
18:49:19.0810 4968 C:\Windows\System32\microsoft-windows-kernel-processor-power-events.dll - ok
18:49:19.0810 4968 [ 5B8580B819BE32EEC18CE1FEC52A4BCE ] C:\Program Files\Microsoft Security Client\MpCmdRun.exe
18:49:19.0810 4968 C:\Program Files\Microsoft Security Client\MpCmdRun.exe - ok
18:49:19.0825 4968 [ 0E7045E24F78351E021D3C01566DBBA3 ] C:\Program Files\Microsoft Security Client\MpAsDesc.dll
18:49:19.0825 4968 C:\Program Files\Microsoft Security Client\MpAsDesc.dll - ok
18:49:19.0825 4968 [ 85409DCE247D97E4D6958B7C5916BE4A ] C:\Windows\System32\wscapi.dll
18:49:19.0825 4968 C:\Windows\System32\wscapi.dll - ok
18:49:19.0825 4968 [ 22FF251AE6A780960B02A6DEADFEA7FB ] C:\Windows\System32\conhost.exe
18:49:19.0825 4968 C:\Windows\System32\conhost.exe - ok
18:49:19.0841 4968 [ 64E6A44177ACF348D68255A37F4723DA ] C:\Windows\System32\cabinet.dll
18:49:19.0841 4968 C:\Windows\System32\cabinet.dll - ok
18:49:19.0841 4968 [ 97293447431311C06703368AD0F6C4BE ] C:\Windows\System32\profsvc.dll
18:49:19.0841 4968 C:\Windows\System32\profsvc.dll - ok
18:49:19.0857 4968 [ 58775492FFD419248B08325E583C527F ] C:\Windows\System32\atl.dll
18:49:19.0857 4968 C:\Windows\System32\atl.dll - ok
18:49:19.0857 4968 [ A77BE7CB3222B4FB0AC6C71D1C2698D4 ] C:\Windows\System32\dsrole.dll
18:49:19.0857 4968 C:\Windows\System32\dsrole.dll - ok
18:49:19.0872 4968 [ BE097F5BB10F9079FCEB2DC4E7E20F02 ] C:\Windows\System32\slc.dll
18:49:19.0872 4968 C:\Windows\System32\slc.dll - ok
18:49:19.0872 4968 [ 81D64E8D70E5FBF9F7ABF2D41154F54D ] C:\Windows\System32\AudioSes.dll
18:49:19.0872 4968 C:\Windows\System32\AudioSes.dll - ok
18:49:19.0872 4968 [ AF28348ED585539C4A33A4341FF23696 ] C:\Windows\System32\oleacc.dll
18:49:19.0872 4968 C:\Windows\System32\oleacc.dll - ok
18:49:19.0888 4968 [ 019BDD35DE269CB98B22DE8923C2AA3B ] C:\Windows\System32\UIAutomationCore.dll
18:49:19.0888 4968 C:\Windows\System32\UIAutomationCore.dll - ok
18:49:19.0888 4968 [ 10AC5CE9F78DC281A1BBD9B8CC587B8A ] C:\Windows\System32\msacm32.dll
18:49:19.0888 4968 C:\Windows\System32\msacm32.dll - ok
18:49:19.0903 4968 [ 1B7C3A37362C7B2890168C5FC61C8D9B ] C:\Windows\System32\msacm32.drv
18:49:19.0903 4968 C:\Windows\System32\msacm32.drv - ok
18:49:19.0903 4968 [ CA2A0750ED830678997695FF61B04C30 ] C:\Windows\System32\midimap.dll
18:49:19.0903 4968 C:\Windows\System32\midimap.dll - ok
18:49:19.0919 4968 [ 9BC8610C32C96A2983A65DC21CAFA921 ] C:\Windows\System32\UXInit.dll
18:49:19.0919 4968 C:\Windows\System32\UXInit.dll - ok
18:49:19.0919 4968 [ 5EDBB34736DD7AC1A73CF8792A835E10 ] C:\Windows\System32\AudioEng.dll
18:49:19.0919 4968 C:\Windows\System32\AudioEng.dll - ok
18:49:19.0935 4968 [ C1395286B822E306B4FE1568A8A77813 ] C:\Windows\System32\AUDIOKSE.dll
18:49:19.0935 4968 C:\Windows\System32\AUDIOKSE.dll - ok
18:49:19.0935 4968 [ 28B90B154EAB06C22788B04C760AA8B3 ] C:\Windows\System32\RtkAPO64.dll
18:49:19.0935 4968 C:\Windows\System32\RtkAPO64.dll - ok
18:49:19.0950 4968 [ 973ADB6AD47AC047F900C0D760AB6BE2 ] C:\Windows\System32\AERTAR64.dll
18:49:19.0950 4968 C:\Windows\System32\AERTAR64.dll - ok
18:49:19.0950 4968 [ 6F3C559B82F2912354BE5B098744CC8C ] C:\Windows\System32\WMALFXGFXDSP.dll
18:49:19.0950 4968 C:\Windows\System32\WMALFXGFXDSP.dll - ok
18:49:19.0950 4968 [ 5AA945234E9D4CCE4F715276B9AA712C ] C:\Windows\System32\imageres.dll
18:49:19.0950 4968 C:\Windows\System32\imageres.dll - ok
18:49:19.0966 4968 [ ADF3E771F429940E762AC097F5A54EAF ] C:\Program Files\Windows Defender\MpClient.dll
18:49:19.0966 4968 C:\Program Files\Windows Defender\MpClient.dll - ok
18:49:19.0966 4968 [ 4166F82BE4D24938977DD1746BE9B8A0 ] C:\Windows\System32\es.dll
18:49:19.0966 4968 C:\Windows\System32\es.dll - ok
18:49:19.0981 4968 [ 1A47D52E303B7543E4E6026595B95422 ] C:\Windows\System32\comres.dll
18:49:19.0981 4968 C:\Windows\System32\comres.dll - ok
18:49:19.0981 4968 [ C32AB8FA018EF34C0F113BD501436D21 ] C:\Windows\System32\Sens.dll
18:49:19.0981 4968 C:\Windows\System32\Sens.dll - ok
18:49:19.0981 4968 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] C:\Windows\System32\uxsms.dll
18:49:19.0981 4968 C:\Windows\System32\uxsms.dll - ok
18:49:19.0997 4968 [ 37B68E458C0BC255DF2FB7454D0798D3 ] C:\Windows\System32\WUDFPlatform.dll
18:49:19.0997 4968 C:\Windows\System32\WUDFPlatform.dll - ok
18:49:19.0997 4968 [ B551D6637AA0E132C18AC6E504F7B79B ] C:\Windows\System32\WUDFSvc.dll
18:49:19.0997 4968 C:\Windows\System32\WUDFSvc.dll - ok
18:49:20.0013 4968 [ 1538831CF8AD2979A04C423779465827 ] C:\Windows\System32\drivers\lltdio.sys
18:49:20.0013 4968 C:\Windows\System32\drivers\lltdio.sys - ok
18:49:20.0013 4968 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] C:\Windows\System32\drivers\nwifi.sys
18:49:20.0013 4968 C:\Windows\System32\drivers\nwifi.sys - ok
18:49:20.0028 4968 [ F105BA1E22BF1F2EE8F005D4305E4BEC ] C:\Windows\System32\drivers\ndisuio.sys
18:49:20.0028 4968 C:\Windows\System32\drivers\ndisuio.sys - ok
18:49:20.0028 4968 [ DDC86E4F8E7456261E637E3552E804FF ] C:\Windows\System32\drivers\rspndr.sys
18:49:20.0028 4968 C:\Windows\System32\drivers\rspndr.sys - ok
18:49:20.0044 4968 [ CE3B9562D997F69B330D181A8875960F ] C:\Windows\System32\dhcpcore.dll
18:49:20.0044 4968 C:\Windows\System32\dhcpcore.dll - ok
18:49:20.0044 4968 [ 57FE2CFC2F25C200499D5D934EA24EB5 ] C:\Windows\System32\IPHLPAPI.DLL
18:49:20.0044 4968 C:\Windows\System32\IPHLPAPI.DLL - ok
18:49:20.0044 4968 [ F993A32249B66C9D622EA5592A8B76B8 ] C:\Windows\System32\lmhsvc.dll
18:49:20.0044 4968 C:\Windows\System32\lmhsvc.dll - ok
18:49:20.0059 4968 [ FD5BA198F7190DFE9BE1947EB8710396 ] C:\Windows\System32\nrpsrv.dll
18:49:20.0059 4968 C:\Windows\System32\nrpsrv.dll - ok
18:49:20.0059 4968 [ D54BFDF3E0C953F823B3D0BFE4732528 ] C:\Windows\System32\nsisvc.dll
18:49:20.0059 4968 C:\Windows\System32\nsisvc.dll - ok
18:49:20.0075 4968 [ 4C9210E8F4E052F6A4EB87716DA0C24C ] C:\Windows\System32\winnsi.dll
18:49:20.0075 4968 C:\Windows\System32\winnsi.dll - ok
18:49:20.0075 4968 [ 71C7B65B6557B75B99907E76956AE4B8 ] C:\Windows\System32\dhcpcore6.dll
18:49:20.0075 4968 C:\Windows\System32\dhcpcore6.dll - ok
18:49:20.0091 4968 [ 85CF424C74A1D5EC33533E1DBFF9920A ] C:\Windows\System32\dnsrslvr.dll
18:49:20.0091 4968 C:\Windows\System32\dnsrslvr.dll - ok
18:49:20.0091 4968 [ 982F5395AD181179320083A4FA7E7CA8 ] C:\Windows\System32\eapphost.dll
18:49:20.0091 4968 C:\Windows\System32\eapphost.dll - ok
18:49:20.0091 4968 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] C:\Windows\System32\eapsvc.dll
18:49:20.0091 4968 C:\Windows\System32\eapsvc.dll - ok
18:49:20.0106 4968 [ F9EC845C5EECF20E9A67F9F805F2EF1F ] C:\Windows\System32\keyiso.dll
18:49:20.0106 4968 C:\Windows\System32\keyiso.dll - ok
18:49:20.0106 4968 [ 0040C486584A8E582C861CFB57AB5387 ] C:\Windows\System32\FWPUCLNT.DLL
18:49:20.0106 4968 C:\Windows\System32\FWPUCLNT.DLL - ok
18:49:20.0122 4968 [ 885D0942E0F28DB90919BE3129ECF279 ] C:\Windows\System32\dnsext.dll
18:49:20.0122 4968 C:\Windows\System32\dnsext.dll - ok
18:49:20.0122 4968 [ F568F7C08458D69E4FCD8675BBB107E4 ] C:\Windows\System32\dhcpcsvc.dll
18:49:20.0122 4968 C:\Windows\System32\dhcpcsvc.dll - ok
18:49:20.0137 4968 [ 4CBCC37856EA2039C27A2FB661DDA0E5 ] C:\Windows\System32\dhcpcsvc6.dll
18:49:20.0137 4968 C:\Windows\System32\dhcpcsvc6.dll - ok
18:49:20.0137 4968 [ 54B5DCD55B223BC5DF50B82E1E9E86B1 ] C:\Windows\System32\mfplat.dll
18:49:20.0137 4968 C:\Windows\System32\mfplat.dll - ok
18:49:20.0153 4968 [ 92E0508D924512F63FFEEFE498CBD11F ] C:\Windows\System32\p2pcollab.dll
18:49:20.0153 4968 C:\Windows\System32\p2pcollab.dll - ok
18:49:20.0153 4968 [ 4987E079A4530FA737A128BE54B63B12 ] C:\Windows\System32\QAGENTRT.DLL
18:49:20.0153 4968 C:\Windows\System32\QAGENTRT.DLL - ok
18:49:20.0153 4968 [ 506A83A3BEEE9FCA09F0170DE9FC7D1B ] C:\Windows\System32\fveui.dll
18:49:20.0153 4968 C:\Windows\System32\fveui.dll - ok
18:49:20.0169 4968 [ CA9E3BD4752FA2C084F5CD35FD8D0025 ] C:\Program Files\Microsoft Security Client\MsseWat.dll
18:49:20.0169 4968 C:\Program Files\Microsoft Security Client\MsseWat.dll - ok
18:49:20.0169 4968 [ B7213E92B270761B88B313B62BA0E13B ] C:\Windows\System32\slwga.dll
18:49:20.0169 4968 C:\Windows\System32\slwga.dll - ok
18:49:20.0184 4968 [ 64856DFE10FC7B429E6999380BC3BB62 ] C:\Windows\System32\sppc.dll
18:49:20.0184 4968 C:\Windows\System32\sppc.dll - ok
18:49:20.0184 4968 [ 2017BFE87CAB3D7EF632CFD2AA08D3F0 ] C:\Windows\System32\umb.dll
18:49:20.0184 4968 C:\Windows\System32\umb.dll - ok
18:49:20.0200 4968 [ 48A31B7CF046702059A86836DC21D786 ] C:\Windows\System32\wlanmsm.dll
18:49:20.0215 4968 C:\Windows\System32\wlanmsm.dll - ok
18:49:20.0215 4968 [ 06A1386B6E3A0CBC368665C1840906F4 ] C:\Windows\System32\wlansec.dll
18:49:20.0231 4968 C:\Windows\System32\wlansec.dll - ok
18:49:20.0231 4968 [ D2B0D1C2BE5ECA80387F7CB8626DCAFE ] C:\Windows\System32\onex.dll
18:49:20.0231 4968 C:\Windows\System32\onex.dll - ok
18:49:20.0231 4968 [ 0D753307D274F3688BD21C377B616700 ] C:\Windows\System32\eappcfg.dll
18:49:20.0231 4968 C:\Windows\System32\eappcfg.dll - ok
18:49:20.0247 4968 [ 65522E77A1360DBC8D199DA3BF5EFFE4 ] C:\Windows\System32\eappprxy.dll
18:49:20.0247 4968 C:\Windows\System32\eappprxy.dll - ok
18:49:20.0247 4968 [ 97E43F324BE1503CB2FFB058534688DA ] C:\Windows\System32\l2gpstore.dll
18:49:20.0247 4968 C:\Windows\System32\l2gpstore.dll - ok
18:49:20.0247 4968 [ 22E7431E7DAE8463AF94A79A054276E5 ] C:\Windows\System32\WinSCard.dll
18:49:20.0247 4968 C:\Windows\System32\WinSCard.dll - ok
18:49:20.0262 4968 [ 7F1B4C6FF3B85F9ADF74055187B8A22C ] C:\Windows\System32\wlanutil.dll
18:49:20.0262 4968 C:\Windows\System32\wlanutil.dll - ok
18:49:20.0262 4968 [ 730BF204A595D5B6D7DC57A247CC741C ] C:\Windows\System32\wlgpclnt.dll
18:49:20.0262 4968 C:\Windows\System32\wlgpclnt.dll - ok
18:49:20.0278 4968 [ 72D3D64526765C34DBFC7D895B4FBDF6 ] C:\Windows\System32\msxml6.dll
18:49:20.0278 4968 C:\Windows\System32\msxml6.dll - ok
18:49:20.0278 4968 [ 8FA553E9AE69808D99C164733A0F9590 ] C:\Program Files\AVAST Software\Avast\AvastSvc.exe
18:49:20.0278 4968 C:\Program Files\AVAST Software\Avast\AvastSvc.exe - ok
18:49:20.0293 4968 [ DB6DD54A93522CA3572D04B56C5DB890 ] C:\Windows\SysWOW64\ntdll.dll
18:49:20.0293 4968 C:\Windows\SysWOW64\ntdll.dll - ok
18:49:20.0293 4968 [ C823A6F302D12FFE5DA305041F5213C7 ] C:\Windows\System32\wow64.dll
18:49:20.0293 4968 C:\Windows\System32\wow64.dll - ok
18:49:20.0309 4968 [ 8F6D9A20F1FB06F0602A7D5A82840DBF ] C:\Windows\System32\netcfgx.dll
18:49:20.0309 4968 C:\Windows\System32\netcfgx.dll - ok
18:49:20.0309 4968 [ CA6CEE750AFE37BF90044774B7FE8DAD ] C:\Windows\System32\wow64win.dll
18:49:20.0309 4968 C:\Windows\System32\wow64win.dll - ok
18:49:20.0309 4968 [ 4E89D6A7571545F09F1234E7F6618099 ] C:\Windows\System32\wow64cpu.dll
18:49:20.0309 4968 C:\Windows\System32\wow64cpu.dll - ok
18:49:20.0325 4968 [ 33616DACC75C9E105DAE944120DB4274 ] C:\Windows\SysWOW64\kernel32.dll
18:49:20.0325 4968 C:\Windows\SysWOW64\kernel32.dll - ok
18:49:20.0325 4968 [ 0223642C49CF1B7BBF0B2CCC6FEA707C ] C:\Windows\SysWOW64\KernelBase.dll
18:49:20.0325 4968 C:\Windows\SysWOW64\KernelBase.dll - ok
18:49:20.0340 4968 [ DAAE8A9B8C0ACC7F858454132553C30D ] C:\Windows\SysWOW64\ws2_32.dll
18:49:20.0340 4968 C:\Windows\SysWOW64\ws2_32.dll - ok
18:49:20.0340 4968 [ F8A61B2E713309B4616D107919BDAB6E ] C:\Windows\SysWOW64\msvcrt.dll
18:49:20.0340 4968 C:\Windows\SysWOW64\msvcrt.dll - ok
18:49:20.0356 4968 [ 90385551B6B3793E949DF310A11D64E7 ] C:\Windows\SysWOW64\rpcrt4.dll
18:49:20.0356 4968 C:\Windows\SysWOW64\rpcrt4.dll - ok
18:49:20.0356 4968 [ 351F62085F1D007533B4BB159C9EFDE3 ] C:\Windows\SysWOW64\sspicli.dll
18:49:20.0356 4968 C:\Windows\SysWOW64\sspicli.dll - ok
18:49:20.0371 4968 [ EB398DED91CFF2F425610EAA2CCF2A23 ] C:\Program Files\AVAST Software\Avast\aswCmnBS.dll
18:49:20.0371 4968 C:\Program Files\AVAST Software\Avast\aswCmnBS.dll - ok
18:49:20.0371 4968 [ F08F6FCD09F9BE94C37ACC1B344685FF ] C:\Windows\SysWOW64\cryptbase.dll
18:49:20.0371 4968 C:\Windows\SysWOW64\cryptbase.dll - ok
18:49:20.0387 4968 [ 6377051C63D5552A311935C67E9FDFDC ] C:\Windows\SysWOW64\nsi.dll
18:49:20.0387 4968 C:\Windows\SysWOW64\nsi.dll - ok
18:49:20.0387 4968 [ CFC97F07904067A1E5FAE195D534DA3A ] C:\Windows\SysWOW64\sechost.dll
18:49:20.0387 4968 C:\Windows\SysWOW64\sechost.dll - ok
18:49:20.0387 4968 [ BABE99A18A382A5E2F99B48E0BC3E0D4 ] C:\Program Files\AVAST Software\Avast\aswCmnIS.dll
18:49:20.0387 4968 C:\Program Files\AVAST Software\Avast\aswCmnIS.dll - ok
18:49:20.0403 4968 [ 178B51198B7B46CD3C5E744474459A63 ] C:\Program Files\AVAST Software\Avast\aswCmnOS.dll
18:49:20.0403 4968 C:\Program Files\AVAST Software\Avast\aswCmnOS.dll - ok
18:49:20.0403 4968 [ CDBE9690CF2B8409FACAD94FAC9479C9 ] C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcr90.dll
18:49:20.0403 4968 C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcr90.dll - ok
18:49:20.0418 4968 [ E8B0FFC209E504CB7E79FC24E6C085F0 ] C:\Windows\SysWOW64\user32.dll
18:49:20.0418 4968 C:\Windows\SysWOW64\user32.dll - ok
18:49:20.0418 4968 [ FBE1E0B9EF53B5BB7C36763AA6A685CF ] C:\Windows\SysWOW64\gdi32.dll
18:49:20.0418 4968 C:\Windows\SysWOW64\gdi32.dll - ok
18:49:20.0434 4968 [ 384721EF4024890092625E20CADFAF85 ] C:\Windows\SysWOW64\lpk.dll
18:49:20.0434 4968 C:\Windows\SysWOW64\lpk.dll - ok
18:49:20.0434 4968 [ 0BA19F3198C40AC4E8CC66EE02EDA6C6 ] C:\Windows\SysWOW64\usp10.dll
18:49:20.0434 4968 C:\Windows\SysWOW64\usp10.dll - ok
18:49:20.0434 4968 [ 0C65FA8214D6F8378D1D3BA1CA46AF0A ] C:\Windows\SysWOW64\advapi32.dll
18:49:20.0434 4968 C:\Windows\SysWOW64\advapi32.dll - ok
18:49:20.0449 4968 [ 4C39358EBDD2FFCD9132A30E1EC31E16 ] C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcp90.dll
18:49:20.0449 4968 C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcp90.dll - ok
18:49:20.0449 4968 [ 55AFA63F5F2A6CED0C09E2AFE57ECA8D ] C:\Program Files\AVAST Software\Avast\ashBase.dll
18:49:20.0449 4968 C:\Program Files\AVAST Software\Avast\ashBase.dll - ok
18:49:20.0465 4968 [ C515CAEC6B3C6970007954C0250A124C ] C:\Program Files\AVAST Software\Avast\aswEngLdr.dll
18:49:20.0465 4968 C:\Program Files\AVAST Software\Avast\aswEngLdr.dll - ok
18:49:20.0465 4968 [ 702254574E7E52052DE39408457B7149 ] C:\Windows\SysWOW64\version.dll
18:49:20.0465 4968 C:\Windows\SysWOW64\version.dll - ok
18:49:20.0481 4968 [ DF13A51A5C591887D2EC6AE64CEED0FA ] C:\Windows\SysWOW64\wsock32.dll
18:49:20.0481 4968 C:\Windows\SysWOW64\wsock32.dll - ok
18:49:20.0481 4968 [ A543AC1F7138376D778D630A35FCBC4C ] C:\Windows\SysWOW64\psapi.dll
18:49:20.0481 4968 C:\Windows\SysWOW64\psapi.dll - ok
18:49:20.0496 4968 [ 5553611E2F9EA6F613079177F1233068 ] C:\Windows\SysWOW64\wininet.dll
18:49:20.0496 4968 C:\Windows\SysWOW64\wininet.dll - ok
18:49:20.0496 4968 [ F037DB14CF6165C62F4A64D12A25B07C ] C:\Windows\SysWOW64\shlwapi.dll
18:49:20.0496 4968 C:\Windows\SysWOW64\shlwapi.dll - ok
18:49:20.0496 4968 [ EB8A00E8E9931A7EC04F920B09D880D8 ] C:\Windows\SysWOW64\iertutil.dll
18:49:20.0496 4968 C:\Windows\SysWOW64\iertutil.dll - ok
18:49:20.0512 4968 [ 9FAC0F6D5F3D922DB294E30CD3F62369 ] C:\Windows\SysWOW64\urlmon.dll
18:49:20.0512 4968 C:\Windows\SysWOW64\urlmon.dll - ok
18:49:20.0512 4968 [ E2C2D8C982316C8ABF800C6CE3F28FAB ] C:\Windows\SysWOW64\ole32.dll
18:49:20.0512 4968 C:\Windows\SysWOW64\ole32.dll - ok
18:49:20.0527 4968 [ 705C210EFC5564BE49EB026BD7AFF27A ] C:\Windows\SysWOW64\oleaut32.dll
18:49:20.0527 4968 C:\Windows\SysWOW64\oleaut32.dll - ok
18:49:20.0527 4968 [ 0DE3069D6E09BA262856EF31C941BEFE ] C:\Windows\SysWOW64\imm32.dll
18:49:20.0527 4968 C:\Windows\SysWOW64\imm32.dll - ok
18:49:20.0527 4968 [ C9618BC9B2B0FD7C1138D8774795A79B ] C:\Windows\SysWOW64\msctf.dll
18:49:20.0527 4968 C:\Windows\SysWOW64\msctf.dll - ok
18:49:20.0543 4968 [ 79C7CFAEA6879A8C1A1E8B5FFE8983AA ] C:\Windows\SysWOW64\dbghelp.dll
18:49:20.0543 4968 C:\Windows\SysWOW64\dbghelp.dll - ok
18:49:20.0543 4968 [ B316906B4A04DD39985350D29DE31068 ] C:\Program Files\AVAST Software\Avast\1033\Base.dll
18:49:20.0543 4968 C:\Program Files\AVAST Software\Avast\1033\Base.dll - ok
18:49:20.0559 4968 [ 5DE691884C240227B733CC18BBFCA3D8 ] C:\Windows\SysWOW64\netapi32.dll
18:49:20.0559 4968 C:\Windows\SysWOW64\netapi32.dll - ok
18:49:20.0559 4968 [ C6BB27D9A8AC13D4A44486F528B5C884 ] C:\Windows\SysWOW64\netutils.dll
18:49:20.0559 4968 C:\Windows\SysWOW64\netutils.dll - ok
18:49:20.0574 4968 [ 89D840773C9C4358A5031DCC860449EC ] C:\Windows\SysWOW64\srvcli.dll
18:49:20.0574 4968 C:\Windows\SysWOW64\srvcli.dll - ok
18:49:20.0574 4968 [ 977C54291BFA6FEE7FF865630E51757B ] C:\Program Files\AVAST Software\Avast\ashServ.dll
18:49:20.0574 4968 C:\Program Files\AVAST Software\Avast\ashServ.dll - ok
18:49:20.0590 4968 [ ADD9D33D685DFADDFAD5AFB42CF31A70 ] C:\Windows\SysWOW64\cscapi.dll
18:49:20.0590 4968 C:\Windows\SysWOW64\cscapi.dll - ok
18:49:20.0590 4968 [ 7AD12703039056D2A0815F85960E1FA1 ] C:\Windows\SysWOW64\wkscli.dll
18:49:20.0590 4968 C:\Windows\SysWOW64\wkscli.dll - ok
18:49:20.0605 4968 [ 045EE3DC56B12B404DC07848D8597C66 ] C:\Program Files\AVAST Software\Avast\aswAux.dll
18:49:20.0605 4968 C:\Program Files\AVAST Software\Avast\aswAux.dll - ok
18:49:20.0605 4968 [ 0298AC45D0EFFFB2DB4BAA7DD186E7BF ] C:\Windows\System32\shsvcs.dll
18:49:20.0605 4968 C:\Windows\System32\shsvcs.dll - ok
18:49:20.0621 4968 [ 16CE3ED063923253905341C9AF850FE7 ] C:\Program Files\AVAST Software\Avast\ashTask.dll
18:49:20.0621 4968 C:\Program Files\AVAST Software\Avast\ashTask.dll - ok
18:49:20.0621 4968 [ 4FF19AC422B7709D786DE58B385C9647 ] C:\Program Files\AVAST Software\Avast\ashTaskEx.dll
18:49:20.0621 4968 C:\Program Files\AVAST Software\Avast\ashTaskEx.dll - ok
18:49:20.0637 4968 [ FCA9CC8611654B790DD6242BF862B7F5 ] C:\Program Files\AVAST Software\Avast\aswLog.dll
18:49:20.0637 4968 C:\Program Files\AVAST Software\Avast\aswLog.dll - ok
18:49:20.0637 4968 [ F186897E0A3B9D0784041221D0265069 ] C:\Program Files\AVAST Software\Avast\aswSqLt.dll
18:49:20.0637 4968 C:\Program Files\AVAST Software\Avast\aswSqLt.dll - ok
18:49:20.0652 4968 [ 12B9869E74F9E698F550F04F8989C591 ] C:\Program Files\AVAST Software\Avast\aswProperty.dll
18:49:20.0652 4968 C:\Program Files\AVAST Software\Avast\aswProperty.dll - ok
18:49:20.0652 4968 [ 6F367A9B88CFDD46F42C1D11E5CB7964 ] C:\Program Files\AVAST Software\Avast\Aavm4h.dll
18:49:20.0652 4968 C:\Program Files\AVAST Software\Avast\Aavm4h.dll - ok
18:49:20.0652 4968 [ C2434DEA392826C1687D9BD7FA4845BC ] C:\Program Files\AVAST Software\Avast\AavmRpch.dll
18:49:20.0652 4968 C:\Program Files\AVAST Software\Avast\AavmRpch.dll - ok
18:49:20.0668 4968 [ 264B5D8F4C70A26749FF2CEDDE06BA30 ] C:\Program Files\AVAST Software\Avast\aswDld.dll
18:49:20.0668 4968 C:\Program Files\AVAST Software\Avast\aswDld.dll - ok
18:49:20.0668 4968 [ 902F670F58193A2BC30AA342B11B2C7B ] C:\Program Files\AVAST Software\Avast\aswIdle.dll
18:49:20.0668 4968 C:\Program Files\AVAST Software\Avast\aswIdle.dll - ok
18:49:20.0683 4968 [ 273FD83FC8C4E12F8C55381674F92A44 ] C:\Program Files\AVAST Software\Avast\aswStrm.dll
18:49:20.0683 4968 C:\Program Files\AVAST Software\Avast\aswStrm.dll - ok
18:49:20.0683 4968 [ E702ED19C332C1F12C1403D100E2F4F3 ] C:\Windows\SysWOW64\cfgmgr32.dll
18:49:20.0683 4968 C:\Windows\SysWOW64\cfgmgr32.dll - ok
18:49:20.0699 4968 [ E30E5BB0DBA49EFE5BBBAFEA440CFBD9 ] C:\Windows\SysWOW64\wtsapi32.dll
18:49:20.0699 4968 C:\Windows\SysWOW64\wtsapi32.dll - ok
18:49:20.0699 4968 [ 624D0F5FF99428BB90A5B8A4123E918E ] C:\Windows\System32\schedsvc.dll
18:49:20.0699 4968 C:\Windows\System32\schedsvc.dll - ok
18:49:20.0715 4968 [ 6C0BD9D59C7E97DEE2FB3407D17BF697 ] C:\Windows\SysWOW64\RpcRtRemote.dll
18:49:20.0715 4968 C:\Windows\SysWOW64\RpcRtRemote.dll - ok
18:49:20.0715 4968 [ 374B26395852A9092BDE2E4C8D4D0C8D ] C:\Windows\SysWOW64\wscapi.dll
18:49:20.0715 4968 C:\Windows\SysWOW64\wscapi.dll - ok
18:49:20.0715 4968 [ 8258362DDB18B644A82D8B5061AD9426 ] C:\Windows\SysWOW64\wscisvif.dll
18:49:20.0715 4968 C:\Windows\SysWOW64\wscisvif.dll - ok
18:49:20.0730 4968 [ BC414631876B2F28B8DAB08E849C12C5 ] C:\Windows\System32\ktmw32.dll
18:49:20.0730 4968 C:\Windows\System32\ktmw32.dll - ok
18:49:20.0730 4968 [ 1B38A0F123FCF1546FACEAF1EFAFAA00 ] C:\Windows\System32\fveapi.dll
18:49:20.0730 4968 C:\Windows\System32\fveapi.dll - ok
18:49:20.0746 4968 [ 891ECFD08E2C538B7948CBC45106D697 ] C:\Windows\System32\fvecerts.dll
18:49:20.0746 4968 C:\Windows\System32\fvecerts.dll - ok
18:49:20.0746 4968 [ 694865362F0965779F92BCFE97712323 ] C:\Windows\System32\tbs.dll
18:49:20.0746 4968 C:\Windows\System32\tbs.dll - ok
18:49:20.0761 4968 [ 1B547066D0A6CD40EB3BAAC6A9C7E7A9 ] C:\Windows\System32\taskcomp.dll
18:49:20.0761 4968 C:\Windows\System32\taskcomp.dll - ok
18:49:20.0761 4968 [ 8269210DAF3B12BC8300631B28A2A442 ] C:\Windows\System32\wiarpc.dll
18:49:20.0761 4968 C:\Windows\System32\wiarpc.dll - ok
18:49:20.0761 4968 [ CEE049CAC4EFA7F4E1E4AD014414A5D4 ] C:\Windows\System32\drivers\http.sys
18:49:20.0761 4968 C:\Windows\System32\drivers\http.sys - ok
18:49:20.0777 4968 [ 567977DC43CC13C4C35ED7084C0B84D5 ] C:\Windows\System32\spoolsv.exe
18:49:20.0777 4968 C:\Windows\System32\spoolsv.exe - ok
18:49:20.0777 4968 [ 4992C609A6315671463E30F6512BC022 ] C:\Windows\System32\BFE.DLL
18:49:20.0777 4968 C:\Windows\System32\BFE.DLL - ok
18:49:20.0793 4968 [ 0AF6E19D39C70844C5CAA8FB0183C36E ] C:\Windows\System32\drivers\srvnet.sys
18:49:20.0793 4968 C:\Windows\System32\drivers\srvnet.sys - ok
18:49:20.0793 4968 [ 19D20159708E152267E53B66677A4995 ] C:\Windows\System32\drivers\bowser.sys
18:49:20.0793 4968 C:\Windows\System32\drivers\bowser.sys - ok
18:49:20.0808 4968 [ 040D62A9D8AD28922632137ACDD984F2 ] C:\Windows\System32\drivers\mrxsmb.sys
18:49:20.0808 4968 C:\Windows\System32\drivers\mrxsmb.sys - ok
18:49:20.0808 4968 [ F0067552F8F9B33D7C59403AB808A3CB ] C:\Windows\System32\drivers\mrxsmb10.sys
18:49:20.0808 4968 C:\Windows\System32\drivers\mrxsmb10.sys - ok
18:49:20.0824 4968 [ 3C142D31DE9F2F193218A53FE2632051 ] C:\Windows\System32\drivers\mrxsmb20.sys
18:49:20.0824 4968 C:\Windows\System32\drivers\mrxsmb20.sys - ok
18:49:20.0824 4968 [ 76548F7B818881B47D8D1AE1BE9C11F8 ] C:\Windows\System32\drivers\srv2.sys
18:49:20.0824 4968 C:\Windows\System32\drivers\srv2.sys - ok
18:49:20.0824 4968 [ 2408C0366D96BCDF63E8F1C78E4A29C5 ] C:\Windows\System32\drivers\srv.sys
18:49:20.0824 4968 C:\Windows\System32\drivers\srv.sys - ok
18:49:20.0839 4968 [ 27026EAC8818E8A6C00A1CAD2F11D29A ] C:\Windows\System32\wkssvc.dll
18:49:20.0839 4968 C:\Windows\System32\wkssvc.dll - ok
18:49:20.0839 4968 [ 6B054C67AAA87843504E8E3C09102009 ] C:\Windows\System32\browser.dll
18:49:20.0839 4968 C:\Windows\System32\browser.dll - ok
18:49:20.0855 4968 [ 81F1D04D4D0E433099365127375FD501 ] C:\Windows\System32\srvsvc.dll
18:49:20.0855 4968 C:\Windows\System32\srvsvc.dll - ok
18:49:20.0855 4968 [ CFEFA40DDE34659BE5211966EAD86437 ] C:\Windows\System32\netmsg.dll
18:49:20.0855 4968 C:\Windows\System32\netmsg.dll - ok
18:49:20.0871 4968 [ 836892094209E5D9CF403B4CF2829B5C ] C:\Windows\System32\sscore.dll
18:49:20.0871 4968 C:\Windows\System32\sscore.dll - ok
18:49:20.0871 4968 [ 4EAE37133B78A26A84EA1649D9B21A1E ] C:\Windows\System32\clusapi.dll
18:49:20.0871 4968 C:\Windows\System32\clusapi.dll - ok
18:49:20.0871 4968 [ 344FCC9850C3A8A3B4D3C65151AF8E4C ] C:\Windows\System32\resutils.dll
18:49:20.0871 4968 C:\Windows\System32\resutils.dll - ok
18:49:20.0886 4968 [ 88351B29B622B30962D2FEB6CA8D860B ] C:\Windows\System32\rasadhlp.dll
18:49:20.0886 4968 C:\Windows\System32\rasadhlp.dll - ok
18:49:20.0886 4968 [ CB5E4B9C319E3C6BB363EB7E58A4A051 ] C:\Windows\System32\FntCache.dll
18:49:20.0886 4968 C:\Windows\System32\FntCache.dll - ok
18:49:20.0902 4968 [ D1E343BC00136CE03C4D403194D06A80 ] C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe
18:49:20.0902 4968 C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe - ok
18:49:20.0902 4968 [ 8C2BA6BEA949EE6E68385F5692BAFB94 ] C:\Windows\System32\dps.dll
18:49:20.0902 4968 C:\Windows\System32\dps.dll - ok
18:49:20.0917 4968 [ 0438CAB2E03F4FB61455A7956026FE86 ] C:\Windows\System32\fdPHost.dll
18:49:20.0917 4968 C:\Windows\System32\fdPHost.dll - ok
18:49:20.0917 4968 [ 802496CB59A30349F9A6DD22D6947644 ] C:\Windows\System32\FDResPub.dll
18:49:20.0917 4968 C:\Windows\System32\FDResPub.dll - ok
18:49:20.0933 4968 [ 171D7DB433314A868507C4326E8209DC ] C:\Windows\System32\fdWSD.dll
18:49:20.0933 4968 C:\Windows\System32\fdWSD.dll - ok
18:49:20.0933 4968 [ 05FE4A30177E858B51F5E1E970FE9925 ] C:\Windows\System32\WSDApi.dll
18:49:20.0933 4968 C:\Windows\System32\WSDApi.dll - ok
18:49:20.0949 4968 [ BAF19B633933A9FB4883D27D66C39E9A ] C:\Windows\System32\cryptsvc.dll
18:49:20.0949 4968 C:\Windows\System32\cryptsvc.dll - ok
18:49:20.0949 4968 [ 8494E126F0B10180F3293AF861CE1F7A ] C:\Windows\System32\mlang.dll
18:49:20.0949 4968 C:\Windows\System32\mlang.dll - ok
18:49:20.0949 4968 [ DC57BAF15064ECB79F6D2CCF352E1D88 ] C:\Windows\System32\taskschd.dll
18:49:20.0949 4968 C:\Windows\System32\taskschd.dll - ok
18:49:20.0964 4968 [ 4FAC55936209B4F3EB78532181C9ED5E ] C:\Windows\System32\cryptnet.dll
18:49:20.0964 4968 C:\Windows\System32\cryptnet.dll - ok
18:49:20.0964 4968 [ A261AD1FDC6D6A658A82B81AF81B215F ] C:\Windows\System32\vssapi.dll
18:49:20.0964 4968 C:\Windows\System32\vssapi.dll - ok
18:49:20.0980 4968 [ B6492D01712A22FF3FEA25A999DBD321 ] C:\Program Files\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe
18:49:20.0980 4968 C:\Program Files\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe - ok
18:49:20.0980 4968 [ D233C7FEAE3FAA25F93A9E6B46815ADC ] C:\Windows\winsxs\amd64_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_08e61857a83bc251\msvcr90.dll
18:49:20.0980 4968 C:\Windows\winsxs\amd64_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_08e61857a83bc251\msvcr90.dll - ok
18:49:20.0995 4968 [ A3EA403D2B74C5F71B7E8B3DAE92DE1E ] C:\Windows\System32\webservices.dll
18:49:20.0995 4968 C:\Windows\System32\webservices.dll - ok
18:49:20.0995 4968 [ B5055B51BAA0FD0A736A88653DA3C1C0 ] C:\Windows\System32\fundisc.dll
18:49:20.0995 4968 C:\Windows\System32\fundisc.dll - ok
18:49:20.0995 4968 [ C5B4683680DF085B57BC53E5EF34861F ] C:\Windows\System32\IKEEXT.DLL
18:49:21.0011 4968 C:\Windows\System32\IKEEXT.DLL - ok
18:49:21.0011 4968 [ 847D3AE376C0817161A14A82C8922A9E ] C:\Windows\System32\netman.dll
18:49:21.0011 4968 C:\Windows\System32\netman.dll - ok
18:49:21.0011 4968 [ 0BF0C2A72F2CB0BA4382C392D3E331AF ] C:\Windows\System32\winhttp.dll
18:49:21.0011 4968 C:\Windows\System32\winhttp.dll - ok
18:49:21.0027 4968 [ 2196CDBFA4B99BEEDAE300FA21DFE718 ] C:\Windows\System32\webio.dll
18:49:21.0027 4968 C:\Windows\System32\webio.dll - ok
18:49:21.0027 4968 [ A2E5B2D20954210DCE1A75A1FC8CC36D ] C:\Windows\System32\fdSSDP.dll
18:49:21.0027 4968 C:\Windows\System32\fdSSDP.dll - ok
18:49:21.0042 4968 [ 2BBF3FDB70B8965DFA0258CBAB41ECCE ] C:\Windows\System32\ssdpapi.dll
18:49:21.0042 4968 C:\Windows\System32\ssdpapi.dll - ok
18:49:21.0042 4968 [ 4509387963DF66A6401752A0C631F6E8 ] C:\Windows\System32\httpapi.dll
18:49:21.0042 4968 C:\Windows\System32\httpapi.dll - ok
18:49:21.0042 4968 [ 287923557447D7E4BDD7E65B1F0F5428 ] C:\Windows\System32\vsstrace.dll
18:49:21.0042 4968 C:\Windows\System32\vsstrace.dll - ok
18:49:21.0058 4968 [ 107F279517E2A04DB4AC1B1FAF1D573B ] C:\Windows\System32\ncsi.dll
18:49:21.0058 4968 C:\Windows\System32\ncsi.dll - ok
18:49:21.0058 4968 [ D9A0CE66046D6EFA0C61BAA885CBA0A8 ] C:\Windows\System32\nlasvc.dll
18:49:21.0058 4968 C:\Windows\System32\nlasvc.dll - ok
18:49:21.0073 4968 [ 1E8281A0BC4358CF816754E0A195D329 ] C:\Program Files\Palm, Inc\novacomd\amd64\novacomd.exe
18:49:21.0073 4968 C:\Program Files\Palm, Inc\novacomd\amd64\novacomd.exe - ok
18:49:21.0073 4968 [ 5D0F03EEF3205F66ECFBE72A7CBBAD1F ] C:\Windows\System32\winusb.dll
18:49:21.0073 4968 C:\Windows\System32\winusb.dll - ok
18:49:21.0089 4968 [ 7B8F7848D3C65DD9589A4898CFF3757D ] C:\Windows\winsxs\amd64_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.4927_none_88dce9872fb18caf\msvcr80.dll
18:49:21.0089 4968 C:\Windows\winsxs\amd64_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.4927_none_88dce9872fb18caf\msvcr80.dll - ok
18:49:21.0089 4968 [ 4AEEDE58A81D3FF2571F5CE5A95F3AAF ] C:\Program Files\AVAST Software\Avast\defs\12111201\aswEngin.dll
18:49:21.0089 4968 C:\Program Files\AVAST Software\Avast\defs\12111201\aswEngin.dll - ok
18:49:21.0105 4968 [ 3AEAA8B561E63452C655DC0584922257 ] C:\Windows\System32\pcasvc.dll
18:49:21.0105 4968 C:\Windows\System32\pcasvc.dll - ok
18:49:21.0105 4968 [ 1727B2A2F379A32B864C096FA794AADC ] C:\Windows\System32\aepic.dll
18:49:21.0105 4968 C:\Windows\System32\aepic.dll - ok
18:49:21.0105 4968 [ 68769C3356B3BE5D1C732C97B9A80D6E ] C:\Windows\System32\drivers\PEAuth.sys
18:49:21.0105 4968 C:\Windows\System32\drivers\PEAuth.sys - ok
18:49:21.0120 4968 [ 166EB40D1F5B47E615DE3D0FFFE5F243 ] C:\Windows\System32\IPSECSVC.DLL
18:49:21.0120 4968 C:\Windows\System32\IPSECSVC.DLL - ok
18:49:21.0120 4968 [ 498EB62A160674E793FA40FD65390625 ] C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe
18:49:21.0120 4968 C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe - ok
18:49:21.0136 4968 [ C6DCD1D11ED6827F05C00773C3E7053C ] C:\Windows\System32\sfc.dll
18:49:21.0136 4968 C:\Windows\System32\sfc.dll - ok
18:49:21.0136 4968 [ 895C9AB0A855547445C4181195230757 ] C:\Windows\System32\sfc_os.dll
18:49:21.0136 4968 C:\Windows\System32\sfc_os.dll - ok
18:49:21.0151 4968 [ 2CBC35E872BA9B46474890135B56DD66 ] C:\Windows\SysWOW64\shell32.dll
18:49:21.0151 4968 C:\Windows\SysWOW64\shell32.dll - ok
18:49:21.0151 4968 [ 9BC93C9ACFA34DB5A41B89357B31E4ED ] C:\Windows\System32\FwRemoteSvr.dll
18:49:21.0151 4968 C:\Windows\System32\FwRemoteSvr.dll - ok
18:49:21.0167 4968 [ AE5FF948400A51B040F999BF04290373 ] C:\Windows\SysWOW64\winsta.dll
18:49:21.0167 4968 C:\Windows\SysWOW64\winsta.dll - ok
18:49:21.0167 4968 [ A94AF354E4EA9C835DCF3E60EC75911C ] C:\Program Files\AVAST Software\Avast\defs\12111201\aswCmnOS.dll
18:49:21.0167 4968 C:\Program Files\AVAST Software\Avast\defs\12111201\aswCmnOS.dll - ok
18:49:21.0183 4968 [ F8AC522C1DAEED05BDA7C0E4E394BCD7 ] C:\Program Files\AVAST Software\Avast\defs\12111201\aswCmnIS.dll
18:49:21.0183 4968 C:\Program Files\AVAST Software\Avast\defs\12111201\aswCmnIS.dll - ok
18:49:21.0183 4968 [ C0BAA16A618EBCFB86ED0FDED886506D ] C:\Program Files\AVAST Software\Avast\defs\12111201\aswCmnBS.dll
18:49:21.0183 4968 C:\Program Files\AVAST Software\Avast\defs\12111201\aswCmnBS.dll - ok
18:49:21.0183 4968 [ 9041584401F262A43D6F55534BFC2E26 ] C:\Program Files\AVAST Software\Avast\defs\12111201\aswScan.dll
18:49:21.0183 4968 C:\Program Files\AVAST Software\Avast\defs\12111201\aswScan.dll - ok
18:49:21.0198 4968 [ B18B7E8D7898C6814EA5C6E765C4DECC ] C:\Program Files\AVAST Software\Avast\defs\12111201\aswRep.dll
18:49:21.0198 4968 C:\Program Files\AVAST Software\Avast\defs\12111201\aswRep.dll - ok
18:49:21.0198 4968 [ 630BD4B02AD2B51EA281BF3B35746FD8 ] C:\Program Files\AVAST Software\Avast\defs\12111201\aswFiDb.dll
18:49:21.0198 4968 C:\Program Files\AVAST Software\Avast\defs\12111201\aswFiDb.dll - ok
18:49:21.0214 4968 [ 210FCACAF902B2CD47CF9FD17D846146 ] C:\Windows\System32\aeevts.dll
18:49:21.0214 4968 C:\Windows\System32\aeevts.dll - ok
18:49:21.0214 4968 [ 3EA8A16169C26AFBEB544E0E48421186 ] C:\Windows\System32\drivers\secdrv.sys
18:49:21.0214 4968 C:\Windows\System32\drivers\secdrv.sys - ok
18:49:21.0229 4968 [ 463B386EBC70F98DA5DFF85F7E654346 ] C:\Windows\System32\seclogon.dll
18:49:21.0229 4968 C:\Windows\System32\seclogon.dll - ok
18:49:21.0229 4968 [ FF5688D309347F2720911D8796912834 ] C:\Windows\SysWOW64\clbcatq.dll
18:49:21.0229 4968 C:\Windows\SysWOW64\clbcatq.dll - ok
18:49:21.0245 4968 [ 7321F18D1F820612ED0E9F2D4B578A7E ] C:\Windows\SysWOW64\cryptsp.dll
18:49:21.0245 4968 C:\Windows\SysWOW64\cryptsp.dll - ok
18:49:21.0245 4968 [ ED8EC63F7522DF4852147C84EC62C36A ] C:\Windows\SysWOW64\rsaenh.dll
18:49:21.0245 4968 C:\Windows\SysWOW64\rsaenh.dll - ok
18:49:21.0245 4968 [ 4E9E7C7D857EA1C83BE6160DAE25B4DA ] C:\Program Files (x86)\Sendori\sndappv2.exe
18:49:21.0245 4968 C:\Program Files (x86)\Sendori\sndappv2.exe - ok
18:49:21.0261 4968 [ 1020725F50F6B91F2009605482F53EE0 ] C:\Program Files\AVAST Software\Avast\defs\12111201\algo.dll
18:49:21.0261 4968 C:\Program Files\AVAST Software\Avast\defs\12111201\algo.dll - ok
18:49:21.0261 4968 [ 6CC10D9FD128069DBFE476222F097616 ] C:\Windows\SysWOW64\secur32.dll
18:49:21.0261 4968 C:\Windows\SysWOW64\secur32.dll - ok
18:49:21.0276 4968 [ 1EBE9524683C7C4EED8B8BC93FB6FBCC ] C:\Windows\SysWOW64\fltLib.dll
18:49:21.0276 4968 C:\Windows\SysWOW64\fltLib.dll - ok
18:49:21.0276 4968 [ D025E95247353BA8ADB53CFF3A4E5BBB ] C:\Program Files\AVAST Software\Avast\Setup\setiface.dll
18:49:21.0276 4968 C:\Program Files\AVAST Software\Avast\Setup\setiface.dll - ok
18:49:21.0292 4968 [ 9C09AF87AC7351985AB5FFBA3FC52575 ] C:\Program Files\AVAST Software\Avast\AhResBhv.dll
18:49:21.0292 4968 C:\Program Files\AVAST Software\Avast\AhResBhv.dll - ok
18:49:21.0292 4968 [ E844C96552989FA1ECA95778583A904C ] C:\Program Files\AVAST Software\Avast\AhResJs.dll
18:49:21.0292 4968 C:\Program Files\AVAST Software\Avast\AhResJs.dll - ok
18:49:21.0292 4968 [ 17F5861A03516864A5F4CC04C7324278 ] C:\Program Files\AVAST Software\Avast\AhResMai.dll
18:49:21.0292 4968 C:\Program Files\AVAST Software\Avast\AhResMai.dll - ok
18:49:21.0307 4968 [ 8BEC10C53E927CD5E442FE332804F1AC ] C:\Program Files\AVAST Software\Avast\AhResMes.dll
18:49:21.0307 4968 C:\Program Files\AVAST Software\Avast\AhResMes.dll - ok
18:49:21.0307 4968 [ 9B2F20ECF609EDF54FEC43E792028261 ] C:\Program Files\AVAST Software\Avast\AhResNS.dll
18:49:21.0307 4968 C:\Program Files\AVAST Software\Avast\AhResNS.dll - ok
18:49:21.0323 4968 [ 857661F2E5A677CFB6D3B2CF6E428227 ] C:\Program Files\AVAST Software\Avast\AhResP2P.dll
18:49:21.0323 4968 C:\Program Files\AVAST Software\Avast\AhResP2P.dll - ok
18:49:21.0323 4968 [ 2466ED58B8EFB3320BCA73ACF8179D24 ] C:\Program Files\AVAST Software\Avast\AhResStd.dll
18:49:21.0323 4968 C:\Program Files\AVAST Software\Avast\AhResStd.dll - ok
18:49:21.0339 4968 [ 5D9550E02D981B92B133E5F8F7BDF8D2 ] C:\Program Files\AVAST Software\Avast\AhResWS.dll
18:49:21.0339 4968 C:\Program Files\AVAST Software\Avast\AhResWS.dll - ok
18:49:21.0339 4968 [ 72A7C1EC4D3BF38CB115395AD721AE3C ] C:\Program Files\AVAST Software\Avast\defs\12111201\ArPot.dll
18:49:21.0339 4968 C:\Program Files\AVAST Software\Avast\defs\12111201\ArPot.dll - ok
18:49:21.0354 4968 [ 1ABFFB6ABE8B70EDA4206F0F3D3D72F4 ] C:\Program Files\AVAST Software\Avast\ashMaiSv.dll
18:49:21.0354 4968 C:\Program Files\AVAST Software\Avast\ashMaiSv.dll - ok
18:49:21.0354 4968 [ 11A41F17527ED75D6B758FDD7F4FD00D ] C:\Windows\SysWOW64\mswsock.dll
18:49:21.0354 4968 C:\Windows\SysWOW64\mswsock.dll - ok
18:49:21.0370 4968 [ 7DA089C75B1E92032D0CBE4ADE7C32BC ] C:\Windows\SysWOW64\crypt32.dll
18:49:21.0370 4968 C:\Windows\SysWOW64\crypt32.dll - ok
18:49:21.0370 4968 [ 045DB4EAB4FBD23210E85ECC3F464A2E ] C:\Windows\SysWOW64\nlaapi.dll
18:49:21.0370 4968 C:\Windows\SysWOW64\nlaapi.dll - ok
18:49:21.0370 4968 [ EE5C8E27C37B79CB54A2FCEEED2DC262 ] C:\Windows\SysWOW64\WSHTCPIP.DLL
18:49:21.0370 4968 C:\Windows\SysWOW64\WSHTCPIP.DLL - ok
18:49:21.0385 4968 [ 62390F4ACE9E2B63E3CA26B7F7497897 ] C:\Windows\SysWOW64\dnsapi.dll
18:49:21.0385 4968 C:\Windows\SysWOW64\dnsapi.dll - ok
18:49:21.0385 4968 [ 6095266CAAF5E75F394CFD4844CC4C25 ] C:\Windows\SysWOW64\IPHLPAPI.DLL
18:49:21.0385 4968 C:\Windows\SysWOW64\IPHLPAPI.DLL - ok
18:49:21.0401 4968 [ 0B7E85364CB878E2AD531DB7B601A9E5 ] C:\Windows\SysWOW64\NapiNSP.dll
18:49:21.0401 4968 C:\Windows\SysWOW64\NapiNSP.dll - ok
18:49:21.0401 4968 [ 5CF640EDDB1E40A5AB1BB743BCDEC610 ] C:\Windows\SysWOW64\pnrpnsp.dll
18:49:21.0401 4968 C:\Windows\SysWOW64\pnrpnsp.dll - ok
18:49:21.0417 4968 [ CFF35B879D1618D42C86644C717BA947 ] C:\Windows\SysWOW64\winnsi.dll
18:49:21.0417 4968 C:\Windows\SysWOW64\winnsi.dll - ok
18:49:21.0417 4968 [ 5DF5D8CFD9B9573FA3B2C89D9061A240 ] C:\Windows\SysWOW64\winrnr.dll
18:49:21.0417 4968 C:\Windows\SysWOW64\winrnr.dll - ok
18:49:21.0432 4968 [ 4C04900AA8C323F5D4C316A89E976849 ] C:\Windows\SysWOW64\msasn1.dll
18:49:21.0432 4968 C:\Windows\SysWOW64\msasn1.dll - ok
18:49:21.0432 4968 [ 3FD15B4611D9BDA3F8013548C0ECAECA ] C:\Windows\SysWOW64\ntmarta.dll
18:49:21.0432 4968 C:\Windows\SysWOW64\ntmarta.dll - ok
18:49:21.0448 4968 [ BFA70A99AD1434263F2DFBBA103BDEF8 ] C:\Windows\SysWOW64\Wldap32.dll
18:49:21.0448 4968 C:\Windows\SysWOW64\Wldap32.dll - ok
18:49:21.0448 4968 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] C:\Windows\System32\ssdpsrv.dll
18:49:21.0448 4968 C:\Windows\System32\ssdpsrv.dll - ok
18:49:21.0463 4968 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] C:\Windows\System32\sstpsvc.dll
18:49:21.0463 4968 C:\Windows\System32\sstpsvc.dll - ok
18:49:21.0463 4968 [ 9392C25DEEDA9A79FDBF6559D47EAB1F ] C:\Program Files\AVAST Software\Avast\snxhk64.dll
18:49:21.0463 4968 C:\Program Files\AVAST Software\Avast\snxhk64.dll - ok
18:49:21.0463 4968 [ 76D078AF6F587B162D50210F761EB9ED ] C:\Windows\System32\drivers\tcpipreg.sys
18:49:21.0463 4968 C:\Windows\System32\drivers\tcpipreg.sys - ok
18:49:21.0479 4968 [ 3C1284516A62078FB68F768DE4F1A7BE ] C:\Windows\System32\sysmain.dll
18:49:21.0479 4968 C:\Windows\System32\sysmain.dll - ok
18:49:21.0479 4968 [ 884264AC597B690C5707C89723BB8E7B ] C:\Windows\System32\tapisrv.dll
18:49:21.0479 4968 C:\Windows\System32\tapisrv.dll - ok
18:49:21.0495 4968 [ 52D0E33B681BD0F33FDC08812FEE4F7D ] C:\Windows\System32\wiaservc.dll
18:49:21.0495 4968 C:\Windows\System32\wiaservc.dll - ok
18:49:21.0495 4968 [ 0F05EC2887BFE197AD82A13287D2F404 ] C:\Windows\System32\termsrv.dll
18:49:21.0495 4968 C:\Windows\System32\termsrv.dll - ok
18:49:21.0510 4968 [ 7E236CC26FF0C2513819FA453E2C5371 ] C:\Windows\System32\icaapi.dll
18:49:21.0510 4968 C:\Windows\System32\icaapi.dll - ok
18:49:21.0510 4968 [ 9034BE60F614DEC3268CA55CC1E8C019 ] C:\Windows\System32\lsmproxy.dll
18:49:21.0510 4968 C:\Windows\System32\lsmproxy.dll - ok
18:49:21.0510 4968 [ 5189EE8A58D6CEC92993CB5572CDA844 ] C:\Windows\System32\regapi.dll
18:49:21.0510 4968 C:\Windows\System32\regapi.dll - ok
18:49:21.0526 4968 [ B77EC1107F9A191F58A0BF0741EC9683 ] C:\Windows\System32\tlscsp.dll
18:49:21.0526 4968 C:\Windows\System32\tlscsp.dll - ok
18:49:21.0526 4968 [ 0364256B4A2A93A8C8CDA6B3B5A0EFF5 ] C:\Windows\System32\wiatrace.dll
18:49:21.0526 4968 C:\Windows\System32\wiatrace.dll - ok
18:49:21.0541 4968 [ 7F61ED98AD2D06402FD5DE9CF2DF4972 ] C:\Windows\System32\rdpwsx.dll
18:49:21.0541 4968 C:\Windows\System32\rdpwsx.dll - ok
18:49:21.0541 4968 [ 871729545BE131CD049D34D461F25154 ] C:\Windows\System32\rdpcorekmts.dll
18:49:21.0541 4968 C:\Windows\System32\rdpcorekmts.dll - ok
18:49:21.0557 4968 [ 7E7AFD841694F6AC397E99D75CEAD49D ] C:\Windows\System32\trkwks.dll
18:49:21.0557 4968 C:\Windows\System32\trkwks.dll - ok
18:49:21.0557 4968 [ 447DE7E3DEA39D422C1504F245B668B1 ] C:\Windows\System32\drivers\rdpwd.sys
18:49:21.0557 4968 C:\Windows\System32\drivers\rdpwd.sys - ok
18:49:21.0557 4968 [ 7518F7BCFD4B308ABC9192BACAF6C970 ] C:\Windows\System32\drivers\tdtcp.sys
18:49:21.0557 4968 C:\Windows\System32\drivers\tdtcp.sys - ok
18:49:21.0573 4968 [ 61B96C26131E37B24E93327A0BD1FB95 ] C:\Windows\System32\drivers\tssecsrv.sys
18:49:21.0573 4968 C:\Windows\System32\drivers\tssecsrv.sys - ok
18:49:21.0573 4968 [ 7D110D645030C05A06C3CD08D1E47D0A ] C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\13.2.0\ToolbarUpdater.exe
18:49:21.0573 4968 C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\13.2.0\ToolbarUpdater.exe - ok
18:49:21.0588 4968 [ D79D3EABD4730970770EFA530D094E0F ] C:\Program Files\AVAST Software\Avast\snxhk.dll
18:49:21.0588 4968 C:\Program Files\AVAST Software\Avast\snxhk.dll - ok
18:49:21.0588 4968 [ 334A663962618F7A136FA1F80F773C5F ] C:\Windows\SysWOW64\wintrust.dll
18:49:21.0588 4968 C:\Windows\SysWOW64\wintrust.dll - ok
18:49:21.0604 4968 [ 098A91C54546A3B878DAD6A7E90A455B ] C:\Windows\System32\IPBusEnum.dll
18:49:21.0604 4968 C:\Windows\System32\IPBusEnum.dll - ok
18:49:21.0604 4968 [ 19B07E7E8915D701225DA41CB3877306 ] C:\Windows\System32\wbem\WMIsvc.dll
18:49:21.0604 4968 C:\Windows\System32\wbem\WMIsvc.dll - ok
18:49:21.0619 4968 [ F84C8F1000BC11E3B7B23CBD3BAFF111 ] C:\Windows\System32\Mcx2Svc.dll
18:49:21.0619 4968 C:\Windows\System32\Mcx2Svc.dll - ok
18:49:21.0619 4968 [ 76DC9F4FE66BC3867615F142766B4C50 ] C:\Windows\System32\wmi.dll
18:49:21.0619 4968 C:\Windows\System32\wmi.dll - ok
18:49:21.0635 4968 [ 4D842C5081F06E61BFF461CF87D13525 ] C:\Windows\ehome\ehtrace.dll
18:49:21.0635 4968 C:\Windows\ehome\ehtrace.dll - ok
18:49:21.0635 4968 [ 4581716B4BF76ACFD8E167EB0B26D82A ] C:\Windows\System32\fdPnp.dll
18:49:21.0635 4968 C:\Windows\System32\fdPnp.dll - ok
18:49:21.0651 4968 [ DB8BF64BE3932ADC407505D21C4F2C2C ] C:\Windows\System32\fdProxy.dll
18:49:21.0651 4968 C:\Windows\System32\fdProxy.dll - ok
18:49:21.0651 4968 [ FAF9BA81FB0543CB4B7EFFD24CFA815F ] C:\Windows\System32\wbemcomn.dll
18:49:21.0651 4968 C:\Windows\System32\wbemcomn.dll - ok
18:49:21.0666 4968 [ 47394ED3D16D053F5906EFE5AB51CC83 ] C:\Windows\System32\rasmans.dll
18:49:21.0666 4968 C:\Windows\System32\rasmans.dll - ok
18:49:21.0666 4968 [ 44C96B48112EB24AE7764EBF1C527000 ] C:\Windows\System32\rastapi.dll
18:49:21.0666 4968 C:\Windows\System32\rastapi.dll - ok
18:49:21.0682 4968 [ FAFAE01E889DC9C05A6CA2138CFC220B ] C:\Windows\System32\tapi32.dll
18:49:21.0682 4968 C:\Windows\System32\tapi32.dll - ok
18:49:21.0682 4968 [ A3F5E8EC1316C3E2562B82694A251C9E ] C:\Windows\System32\wbem\fastprox.dll
18:49:21.0682 4968 C:\Windows\System32\wbem\fastprox.dll - ok
18:49:21.0682 4968 [ A7582A70802D5B9F28ED3940F6A3E9ED ] C:\Windows\System32\wbem\WmiDcPrv.dll
18:49:21.0682 4968 C:\Windows\System32\wbem\WmiDcPrv.dll - ok
18:49:21.0697 4968 [ C733D233B623B7FFCE5031E4B756EE26 ] C:\Windows\SysWOW64\profapi.dll
18:49:21.0697 4968 C:\Windows\SysWOW64\profapi.dll - ok
18:49:21.0697 4968 [ 0255C22D99602534F15CBB8D9B6F152F ] C:\Windows\System32\wbem\WinMgmtR.dll
18:49:21.0697 4968 C:\Windows\System32\wbem\WinMgmtR.dll - ok
18:49:21.0713 4968 [ EE26D130808D16C0E417BBBED0451B34 ] C:\Windows\System32\ntdsapi.dll
18:49:21.0713 4968 C:\Windows\System32\ntdsapi.dll - ok
18:49:21.0713 4968 [ EE25B470C39126B08055A7CB71A67A58 ] C:\Windows\System32\unimdm.tsp
18:49:21.0713 4968 C:\Windows\System32\unimdm.tsp - ok
18:49:21.0729 4968 [ 666A60F6F5E719856FF6254E0966EFF7 ] C:\Windows\System32\wbem\wbemprox.dll
18:49:21.0729 4968 C:\Windows\System32\wbem\wbemprox.dll - ok
18:49:21.0729 4968 [ 94B7DF336815B47236724019FAB24B7C ] C:\Windows\System32\uniplat.dll
18:49:21.0729 4968 C:\Windows\System32\uniplat.dll - ok
18:49:21.0744 4968 [ 7C1BAE7D23D4874FEE256A2B9C00E019 ] C:\Windows\System32\hidphone.tsp
18:49:21.0744 4968 C:\Windows\System32\hidphone.tsp - ok
18:49:21.0744 4968 [ 41326DD08ACC0CDC5F8177AF96C066E8 ] C:\Windows\System32\kmddsp.tsp
18:49:21.0744 4968 C:\Windows\System32\kmddsp.tsp - ok
18:49:21.0744 4968 [ 1D6BC2769DA66C1145F4DA5A65F52E61 ] C:\Windows\System32\ndptsp.tsp
18:49:21.0744 4968 C:\Windows\System32\ndptsp.tsp - ok
18:49:21.0760 4968 [ DF627325D25191236BABA895D5A51EF6 ] C:\Windows\System32\rasppp.dll
18:49:21.0760 4968 C:\Windows\System32\rasppp.dll - ok
18:49:21.0760 4968 [ E3DA135D4DD0D34512D4FEBCB6ED760E ] C:\Windows\System32\vpnike.dll
18:49:21.0760 4968 C:\Windows\System32\vpnike.dll - ok
18:49:21.0775 4968 [ 1482CC99F7E2DA2FECF59C6A774FED0A ] C:\Windows\System32\raschap.dll
18:49:21.0775 4968 C:\Windows\System32\raschap.dll - ok
18:49:21.0775 4968 [ 44F0479ACDBC24D20C62B63E23720B4A ] C:\Program Files (x86)\Sendori\SendoriSvc.exe
18:49:21.0775 4968 C:\Program Files (x86)\Sendori\SendoriSvc.exe - ok
18:49:21.0791 4968 [ 158117F3CF278F01C6F24E89E2141E81 ] C:\Windows\SysWOW64\FWPUCLNT.DLL
18:49:21.0791 4968 C:\Windows\SysWOW64\FWPUCLNT.DLL - ok
18:49:21.0791 4968 [ 8EE69DB5EE31D9062DA15B14D986A9FD ] C:\Program Files (x86)\Sendori\DynLib.dll
18:49:21.0791 4968 C:\Program Files (x86)\Sendori\DynLib.dll - ok
18:49:21.0791 4968 [ A86A1C5DF1C662D1C75815BF4794F16D ] C:\Windows\SysWOW64\webio.dll
18:49:21.0791 4968 C:\Windows\SysWOW64\webio.dll - ok
18:49:21.0807 4968 [ CC9BBCFC715FBEDF7AE476106FE653E9 ] C:\Windows\SysWOW64\winhttp.dll
18:49:21.0807 4968 C:\Windows\SysWOW64\winhttp.dll - ok
18:49:21.0807 4968 [ 26A634B2E0FD87F23541AD13A503CA72 ] C:\Windows\SysWOW64\winmm.dll
18:49:21.0807 4968 C:\Windows\SysWOW64\winmm.dll - ok
18:49:21.0822 4968 [ 9C0DC1DAAD14D443DD5A0D1EE78D775E ] C:\Windows\SysWOW64\userenv.dll
18:49:21.0822 4968 C:\Windows\SysWOW64\userenv.dll - ok
18:49:21.0822 4968 [ C5B0324DB461559ADD070E632A6919FA ] C:\Windows\SysWOW64\wbem\wbemprox.dll
18:49:21.0822 4968 C:\Windows\SysWOW64\wbem\wbemprox.dll - ok
18:49:21.0838 4968 [ 7B51D631CACD0EEEAA7ED20EDB1A7AFA ] C:\Program Files (x86)\Sendori\Sendori.Service.exe
18:49:21.0838 4968 C:\Program Files (x86)\Sendori\Sendori.Service.exe - ok
18:49:21.0838 4968 [ 128DD9AF8640DBCC711940903C8B554F ] C:\Windows\SysWOW64\mscoree.dll
18:49:21.0838 4968 C:\Windows\SysWOW64\mscoree.dll - ok
18:49:21.0838 4968 [ F5DF6846F30E9F54EA60CCAEB3FB2055 ] C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscoreei.dll
18:49:21.0838 4968 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscoreei.dll - ok
18:49:21.0853 4968 [ EBC9F71C62296108B60A35B3A54F04FE ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorwks.dll
18:49:21.0853 4968 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorwks.dll - ok
18:49:21.0853 4968 [ C9564CF4976E7E96B4052737AA2492B4 ] C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcr80.dll
18:49:21.0853 4968 C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcr80.dll - ok
18:49:21.0869 4968 [ 19CCF6D39E15B13D00106F9795721136 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\mscorlib\5858678a79aae31262b0214424245d06\mscorlib.ni.dll
18:49:21.0869 4968 C:\Windows\assembly\NativeImages_v2.0.50727_32\mscorlib\5858678a79aae31262b0214424245d06\mscorlib.ni.dll - ok
18:49:21.0869 4968 [ 6E9E439517D89EDC9A6CB1E94489620A ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsec.dll
18:49:21.0869 4968 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsec.dll - ok
18:49:21.0885 4968 [ CFB3EEDF620E7F32464A3091BA76D5E8 ] C:\Program Files\AVAST Software\Avast\defs\12111201\exts.dll
18:49:21.0885 4968 C:\Program Files\AVAST Software\Avast\defs\12111201\exts.dll - ok
18:49:21.0885 4968 [ ED6EE83D61EBC683C2CD8E899EA6FEBE ] C:\Windows\SysWOW64\rasadhlp.dll
18:49:21.0885 4968 C:\Windows\SysWOW64\rasadhlp.dll - ok
18:49:21.0900 4968 [ 39EADCAA61372C038BCFED96DF5323DA ] C:\Program Files\AVAST Software\Avast\ashWebSv.dll
18:49:21.0900 4968 C:\Program Files\AVAST Software\Avast\ashWebSv.dll - ok
18:49:21.0900 4968 [ 73E8667A19FEEDD856DF2695E9E511D4 ] C:\Windows\SysWOW64\wship6.dll
18:49:21.0900 4968 C:\Windows\SysWOW64\wship6.dll - ok
18:49:21.0916 4968 [ 87F664BF0B8728382D03B2126127DC98 ] C:\Program Files\AVAST Software\Avast\defs\12111201\aswAR.dll
18:49:21.0916 4968 C:\Program Files\AVAST Software\Avast\defs\12111201\aswAR.dll - ok
18:49:21.0916 4968 [ 0D0FA4434A9434641AB0A6332AC5560A ] C:\Program Files\AVAST Software\Avast\defs\12111201\aswRawFS.dll
18:49:21.0916 4968 C:\Program Files\AVAST Software\Avast\defs\12111201\aswRawFS.dll - ok
18:49:21.0931 4968 [ D3EAD1CF16BA729A7F7C9A5D94AA7C05 ] C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7600.16661_none_ebfb56996c72aefc\comctl32.dll
18:49:21.0931 4968 C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7600.16661_none_ebfb56996c72aefc\comctl32.dll - ok
18:49:21.0931 4968 [ 6EC594AB7EFA45EACDE65FD4040F53D9 ] C:\Windows\SysWOW64\riched20.dll
18:49:21.0931 4968 C:\Windows\SysWOW64\riched20.dll - ok
18:49:21.0931 4968 [ 97CCB4D737B426B200E5EF90C877DF32 ] C:\Windows\SysWOW64\imagehlp.dll
18:49:21.0931 4968 C:\Windows\SysWOW64\imagehlp.dll - ok
18:49:21.0947 4968 [ 96F3F676B4D0DF4DA9C4081358C4662F ] C:\Windows\SysWOW64\wbemcomn.dll
18:49:21.0947 4968 C:\Windows\SysWOW64\wbemcomn.dll - ok
18:49:21.0947 4968 [ 3B9665D4B8C587A6014B9B8DFF5974A0 ] C:\Windows\System32\wbem\wbemcore.dll
18:49:21.0947 4968 C:\Windows\System32\wbem\wbemcore.dll - ok
18:49:21.0963 4968 [ 4F6E72B34ED3DC53DCC5E8708E60B61F ] C:\Windows\SysWOW64\security.dll
18:49:21.0963 4968 C:\Windows\SysWOW64\security.dll - ok
18:49:21.0978 4968 [ 96386E75BCFED6F339BE01359D6CBFAF ] C:\Program Files\AVAST Software\Avast\ashWsFtr.dll
18:49:21.0978 4968 C:\Program Files\AVAST Software\Avast\ashWsFtr.dll - ok
18:49:21.0978 4968 [ CE71B9119A258EDD0A05B37D7B0F92E3 ] C:\Windows\SysWOW64\bcrypt.dll
18:49:21.0978 4968 C:\Windows\SysWOW64\bcrypt.dll - ok
18:49:21.0978 4968 [ E8449FE262D7406BCB2AC2A45C53EC5F ] C:\Windows\SysWOW64\bcryptprimitives.dll
18:49:21.0978 4968 C:\Windows\SysWOW64\bcryptprimitives.dll - ok
18:49:21.0994 4968 [ 3989BB6998C32753FDD5493879C1835A ] C:\Windows\SysWOW64\ncrypt.dll
18:49:21.0994 4968 C:\Windows\SysWOW64\ncrypt.dll - ok
18:49:21.0994 4968 [ 1097F3035BAF46CED8B332B3564C5108 ] C:\Windows\SysWOW64\gpapi.dll
18:49:21.0994 4968 C:\Windows\SysWOW64\gpapi.dll - ok
18:49:22.0009 4968 [ 1F778C34C751E1B585E4FC66659BA904 ] C:\Windows\SysWOW64\cryptnet.dll
18:49:22.0009 4968 C:\Windows\SysWOW64\cryptnet.dll - ok
18:49:22.0009 4968 [ 087D8668C71634A3A3761135ABF16EEE ] C:\Windows\System32\wbem\esscli.dll
18:49:22.0009 4968 C:\Windows\System32\wbem\esscli.dll - ok
18:49:22.0025 4968 [ 718B6F51AB7F6FE2988A36868F9AD3AB ] C:\Windows\System32\wbem\wbemsvc.dll
18:49:22.0025 4968 C:\Windows\System32\wbem\wbemsvc.dll - ok
18:49:22.0025 4968 [ 0143DB80DACFB7C2B5B7009ED9063353 ] C:\Windows\System32\wbem\wmiutils.dll
18:49:22.0025 4968 C:\Windows\System32\wbem\wmiutils.dll - ok
18:49:22.0041 4968 [ 6F8E3B7B70E1BBA871212940C1FBDF60 ] C:\Windows\SysWOW64\SensApi.dll
18:49:22.0041 4968 C:\Windows\SysWOW64\SensApi.dll - ok
18:49:22.0041 4968 [ 0AB34456654C283DAA13B8D2BA21439B ] C:\Windows\System32\wbem\repdrvfs.dll
18:49:22.0041 4968 C:\Windows\System32\wbem\repdrvfs.dll - ok
18:49:22.0041 4968 [ BF591B5C2CC38314518467E883AE37C5 ] C:\Windows\SysWOW64\credssp.dll
18:49:22.0041 4968 C:\Windows\SysWOW64\credssp.dll - ok
18:49:22.0056 4968 [ 9A85ABCE0FDD1AF8E79E731EB0B679F3 ] C:\Windows\SysWOW64\dhcpcsvc.dll
18:49:22.0056 4968 C:\Windows\SysWOW64\dhcpcsvc.dll - ok
18:49:22.0056 4968 [ 29CA5974FAB0E8AE4AA7814FE05CF832 ] C:\Windows\SysWOW64\dhcpcsvc6.dll
18:49:22.0056 4968 C:\Windows\SysWOW64\dhcpcsvc6.dll - ok
18:49:22.0072 4968 [ 4B8DD8541C0E26602005DD0137333615 ] C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_420fe3fa2b8113bd\comctl32.dll
18:49:22.0072 4968 C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_420fe3fa2b8113bd\comctl32.dll - ok
18:49:22.0072 4968 [ C02E3CE20E7776C922B5C8938350B5F1 ] C:\Windows\SysWOW64\apphelp.dll
18:49:22.0072 4968 C:\Windows\SysWOW64\apphelp.dll - ok
18:49:22.0087 4968 [ 893F8E81D1117C48CB9D6E9E5F64BAB1 ] C:\Program Files\AVAST Software\Avast\Setup\avast.setup
18:49:22.0087 4968 C:\Program Files\AVAST Software\Avast\Setup\avast.setup - ok
18:49:22.0087 4968 [ 41323AB614A2B66AD77B1121D24AC895 ] C:\Windows\SysWOW64\setupapi.dll
18:49:22.0087 4968 C:\Windows\SysWOW64\setupapi.dll - ok
18:49:22.0087 4968 [ 1CEDFE91F527858CACA1B08B04666BC0 ] C:\Windows\SysWOW64\wbem\fastprox.dll
18:49:22.0087 4968 C:\Windows\SysWOW64\wbem\fastprox.dll - ok
18:49:22.0103 4968 [ 776AE0564F8B1C282E331FD95A1BDC5F ] C:\Windows\SysWOW64\wbem\wbemsvc.dll
18:49:22.0103 4968 C:\Windows\SysWOW64\wbem\wbemsvc.dll - ok
18:49:22.0103 4968 [ E3E811471DE781900FF21C1FD84E941E ] C:\Windows\SysWOW64\ntdsapi.dll
18:49:22.0103 4968 C:\Windows\SysWOW64\ntdsapi.dll - ok
18:49:22.0119 4968 [ A223CF703E28CBD7E9E7982141FA403C ] C:\Windows\SysWOW64\comdlg32.dll
18:49:22.0119 4968 C:\Windows\SysWOW64\comdlg32.dll - ok
18:49:22.0119 4968 [ 6C9C05D5344B9AB80E9180FC859BC45A ] C:\Windows\SysWOW64\devobj.dll
18:49:22.0119 4968 C:\Windows\SysWOW64\devobj.dll - ok
18:49:22.0134 4968 [ 61E02CC3184B63FAFE0B83EAC8B3B8EF ] C:\Windows\SysWOW64\winspool.drv
18:49:22.0134 4968 C:\Windows\SysWOW64\winspool.drv - ok
18:49:22.0134 4968 [ 08DFDBD2FD4EA951DC46B1C7661ED35A ] C:\Windows\SysWOW64\powrprof.dll
18:49:22.0134 4968 C:\Windows\SysWOW64\powrprof.dll - ok
18:49:22.0150 4968 [ 18AB2E5A40064ED5F7791AC5946A90F3 ] C:\Windows\SysWOW64\msimg32.dll
18:49:22.0150 4968 C:\Windows\SysWOW64\msimg32.dll - ok
18:49:22.0150 4968 [ 936F728E04ACCF3F38801CFFCF1E3F40 ] C:\Windows\SysWOW64\oledlg.dll
18:49:22.0150 4968 C:\Windows\SysWOW64\oledlg.dll - ok
18:49:22.0150 4968 [ 079FC5AAA9963057548DF29F069EC406 ] C:\Windows\AppPatch\AcGenral.dll
18:49:22.0150 4968 C:\Windows\AppPatch\AcGenral.dll - ok
18:49:22.0165 4968 [ 43964FA89CCF97BA6BE34D69455AC65F ] C:\Windows\SysWOW64\uxtheme.dll
18:49:22.0165 4968 C:\Windows\SysWOW64\uxtheme.dll - ok
18:49:22.0165 4968 [ 39C5F32747B3414D1BB216FDB1DEFC58 ] C:\Windows\SysWOW64\dwmapi.dll
18:49:22.0165 4968 C:\Windows\SysWOW64\dwmapi.dll - ok
18:49:22.0181 4968 [ B9A8CBCFCD3EC9D2EA4740AF347BF108 ] C:\Windows\SysWOW64\mpr.dll
18:49:22.0181 4968 C:\Windows\SysWOW64\mpr.dll - ok
18:49:22.0181 4968 [ 85683DF1F917E4D7F6BE1A04986BF1C8 ] C:\Windows\SysWOW64\msacm32.dll
18:49:22.0181 4968 C:\Windows\SysWOW64\msacm32.dll - ok
18:49:22.0197 4968 [ 742AA02BD9FA3492C9E525BBD427D87D ] C:\Windows\SysWOW64\samcli.dll
18:49:22.0197 4968 C:\Windows\SysWOW64\samcli.dll - ok
18:49:22.0197 4968 [ 40CAEEE0EAF1B8569F7C8DF6420F2CB9 ] C:\Windows\SysWOW64\sfc.dll
18:49:22.0197 4968 C:\Windows\SysWOW64\sfc.dll - ok
18:49:22.0197 4968 [ 84799328D87B3091A3BDD251E1AD31F9 ] C:\Windows\SysWOW64\sfc_os.dll
18:49:22.0197 4968 C:\Windows\SysWOW64\sfc_os.dll - ok
18:49:22.0212 4968 [ 82BC97E5793DEF69691AAD5AB953A200 ] C:\Windows\System32\wbem\WmiPrvSD.dll
18:49:22.0212 4968 C:\Windows\System32\wbem\WmiPrvSD.dll - ok
18:49:22.0212 4968 [ D41FEBD098234F02485A4EA98D4730A4 ] C:\Windows\System32\ncobjapi.dll
18:49:22.0212 4968 C:\Windows\System32\ncobjapi.dll - ok
18:49:22.0228 4968 [ 6F40D6FB05E0C1E5402812B426971AF0 ] C:\Windows\System32\wbem\wbemess.dll
18:49:22.0228 4968 C:\Windows\System32\wbem\wbemess.dll - ok
18:49:22.0228 4968 [ 839F96DBAAFD3353E0B248A5E0BD2A51 ] C:\Windows\SysWOW64\rasapi32.dll
18:49:22.0228 4968 C:\Windows\SysWOW64\rasapi32.dll - ok
18:49:22.0243 4968 [ FFA7172354B9256DBB2CDD75F16F33FE ] C:\Windows\SysWOW64\rasman.dll
18:49:22.0243 4968 C:\Windows\SysWOW64\rasman.dll - ok
18:49:22.0243 4968 [ 406F7B9C71B99872670EE9A8D52E2FE5 ] C:\Windows\SysWOW64\rtutils.dll
18:49:22.0243 4968 C:\Windows\SysWOW64\rtutils.dll - ok
18:49:22.0259 4968 [ 2C64AF297F12582BD95D7D94C18E464C ] C:\Windows\System32\esent.dll
18:49:22.0259 4968 C:\Windows\System32\esent.dll - ok
18:49:22.0259 4968 [ 64D757051B5B273E55C93E4503EA4F3E ] C:\Windows\System32\wbem\WmiPrvSE.exe
18:49:22.0259 4968 C:\Windows\System32\wbem\WmiPrvSE.exe - ok
18:49:22.0259 4968 [ EE24C42561D40F7AD7C2A7A460287090 ] C:\Windows\System32\wbem\cimwin32.dll
18:49:22.0259 4968 C:\Windows\System32\wbem\cimwin32.dll - ok
18:49:22.0275 4968 [ 5D89D063A4CB036C258685C8E057E768 ] C:\Windows\System32\framedynos.dll
18:49:22.0275 4968 C:\Windows\System32\framedynos.dll - ok
18:49:22.0275 4968 [ D146C378AEC2D1570A4E4F81E2B621B3 ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorjit.dll
18:49:22.0275 4968 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorjit.dll - ok
18:49:22.0290 4968 [ 0D893F8D145D3B125B0226727C243A69 ] C:\Windows\System32\security.dll
18:49:22.0290 4968 C:\Windows\System32\security.dll - ok
18:49:22.0290 4968 [ F11A57E91FDAECFB41A5CB21EB1EBC8E ] C:\Windows\System32\dssenh.dll
18:49:22.0290 4968 C:\Windows\System32\dssenh.dll - ok
18:49:22.0306 4968 [ 14C6A59904D397C6D85DADA9ACBB6FAB ] C:\Windows\System32\browcli.dll
18:49:22.0306 4968 C:\Windows\System32\browcli.dll - ok
18:49:22.0306 4968 [ BFEBE1E4B301F44CEA7C1B4021BD0264 ] C:\Windows\System32\cscapi.dll
18:49:22.0306 4968 C:\Windows\System32\cscapi.dll - ok
18:49:22.0321 4968 [ 28142AAF1565736CE0E5D7EFCE3CC0F8 ] C:\Windows\System32\schedcli.dll
18:49:22.0321 4968 C:\Windows\System32\schedcli.dll - ok
18:49:22.0321 4968 [ D84222A740EE7A135FC68AEB11121523 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System\2ebb3c259eab50af565e3a8dba6ad20e\System.ni.dll
18:49:22.0321 4968 C:\Windows\assembly\NativeImages_v2.0.50727_32\System\2ebb3c259eab50af565e3a8dba6ad20e\System.ni.dll - ok
18:49:22.0337 4968 [ 521202AA6F2B74FCCC6BC7E162109D71 ] C:\Windows\System32\wbem\unsecapp.exe
18:49:22.0337 4968 C:\Windows\System32\wbem\unsecapp.exe - ok
18:49:22.0337 4968 [ 220159496484D34009DE71CA1A68E0D4 ] C:\Windows\System32\wbem\NCProv.dll
18:49:22.0337 4968 C:\Windows\System32\wbem\NCProv.dll - ok
18:49:22.0337 4968 [ BD549873895E371D4597FE7FA5D063EA ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System.ServiceProce#\8b7a7f9c607e09bfa03c07b5ff3a8ae3\System.ServiceProcess.ni.dll
18:49:22.0337 4968 C:\Windows\assembly\NativeImages_v2.0.50727_32\System.ServiceProce#\8b7a7f9c607e09bfa03c07b5ff3a8ae3\System.ServiceProcess.ni.dll - ok
18:49:22.0353 4968 [ B95F6501A2F8B2E78C697FEC401970CE ] C:\Windows\System32\ipnathlp.dll
18:49:22.0353 4968 C:\Windows\System32\ipnathlp.dll - ok
18:49:22.0353 4968 [ 114429A77D935053E13A9BF98A8B8CA1 ] C:\Windows\System32\mprapi.dll
18:49:22.0353 4968 C:\Windows\System32\mprapi.dll - ok
18:49:22.0368 4968 [ 66920354B984D4A3848A84B4E66745EA ] C:\Windows\System32\netshell.dll
18:49:22.0368 4968 C:\Windows\System32\netshell.dll - ok
18:49:22.0368 4968 [ 3B367397320C26DBA890B260F80D1B1B ] C:\Windows\System32\hnetcfg.dll
18:49:22.0368 4968 C:\Windows\System32\hnetcfg.dll - ok
18:49:22.0384 4968 [ 96AFF48F504E86CE35D880CB9DA1EB3F ] C:\Program Files (x86)\Sendori\SendoriUp.exe
18:49:22.0384 4968 C:\Program Files (x86)\Sendori\SendoriUp.exe - ok
18:49:22.0384 4968 [ B9274CDEAD3DDB17B5C3D0D5A6EA46F1 ] C:\Windows\System32\wbem\WMIPIPRT.dll
18:49:22.0384 4968 C:\Windows\System32\wbem\WMIPIPRT.dll - ok
18:49:22.0384 4968 [ 5AAF10198FFBD79E7F022625FEDB79B7 ] C:\Windows\System32\provthrd.dll
18:49:22.0384 4968 C:\Windows\System32\provthrd.dll - ok
18:49:22.0399 4968 [ 2986F2B8E85AF015B9B85756EADDCEAD ] C:\Windows\System32\msvcirt.dll
18:49:22.0399 4968 C:\Windows\System32\msvcirt.dll - ok
18:49:22.0399 4968 [ E36112A8A6C7F840169A7E92C12F4203 ] C:\Windows\System32\wsock32.dll
18:49:22.0399 4968 C:\Windows\System32\wsock32.dll - ok
18:49:22.0415 4968 [ 5B575CE99AA28C0D011918127E94EC88 ] C:\Windows\SysWOW64\asycfilt.dll
18:49:22.0415 4968 C:\Windows\SysWOW64\asycfilt.dll - ok
18:49:22.0415 4968 [ C556CE4A03DCC7B1315E1570DA6E7BAE ] C:\Program Files (x86)\Sendori\Sendori.Library.dll
18:49:22.0415 4968 C:\Program Files (x86)\Sendori\Sendori.Library.dll - ok
18:49:22.0431 4968 [ 93C1B8183B7A14C05FBC4FC6EAFB57D1 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Configuration\cb079eab134fd1a752ad91db13274110\System.Configuration.ni.dll
18:49:22.0431 4968 C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Configuration\cb079eab134fd1a752ad91db13274110\System.Configuration.ni.dll - ok
18:49:22.0431 4968 [ 6F5146363FD295BAF70A1F04C591EDD2 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Xml\5c85c9c42e1b8a8760de82ecb4c7d582\System.Xml.ni.dll
18:49:22.0431 4968 C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Xml\5c85c9c42e1b8a8760de82ecb4c7d582\System.Xml.ni.dll - ok
18:49:22.0446 4968 [ A0617B5753E31126AD29C03154F4F329 ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\Culture.dll
18:49:22.0446 4968 C:\Windows\Microsoft.NET\Framework\v2.0.50727\Culture.dll - ok
18:49:22.0446 4968 [ 3D7D2E825C63FF501E896CF008C70D75 ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\csc.exe
18:49:22.0446 4968 C:\Windows\Microsoft.NET\Framework\v2.0.50727\csc.exe - ok
18:49:22.0462 4968 [ 567B2B4082911211BCC37BF0944F4C60 ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\cscomp.dll
18:49:22.0462 4968 C:\Windows\Microsoft.NET\Framework\v2.0.50727\cscomp.dll - ok
18:49:22.0462 4968 [ C8671C904A016F5A4802B6C3F1FB7931 ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\alink.dll
18:49:22.0462 4968 C:\Windows\Microsoft.NET\Framework\v2.0.50727\alink.dll - ok
18:49:22.0462 4968 [ 6B42915AC7F560D78C5EE9EE88295A06 ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorpe.dll
18:49:22.0462 4968 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorpe.dll - ok
18:49:22.0477 4968 [ BDC16E98EA13B1EBEBCF49385394F05B ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\cvtres.exe
18:49:22.0477 4968 C:\Windows\Microsoft.NET\Framework\v2.0.50727\cvtres.exe - ok
18:49:22.0477 4968 [ A8EDB86FC2A4D6D1285E4C70384AC35A ] C:\Windows\System32\dllhost.exe
18:49:22.0477 4968 C:\Windows\System32\dllhost.exe - ok
18:49:22.0493 4968 [ BC052EFAD10ACA1AD69545B629F50D99 ] C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7600.16661_none_a44e1fc257f685f6\comctl32.dll
18:49:22.0493 4968 C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7600.16661_none_a44e1fc257f685f6\comctl32.dll - ok
18:49:22.0509 4968 [ A0A2C1D812C231C9BFE119FDC68E341B ] C:\Windows\System32\IDStore.dll
18:49:22.0509 4968 C:\Windows\System32\IDStore.dll - ok
18:49:22.0509 4968 [ 6CEF7856A3EFAC59470F6208F0F585CE ] C:\Windows\System32\mpr.dll
18:49:22.0509 4968 C:\Windows\System32\mpr.dll - ok
18:49:22.0509 4968 [ 60CAE1FA4888ED41B41AEE91C774E4A2 ] C:\Windows\System32\taskeng.exe
18:49:22.0509 4968 C:\Windows\System32\taskeng.exe - ok
18:49:22.0524 4968 [ 6F8F1376A13114CC10C0E69274F5A4DE ] C:\Windows\System32\userinit.exe
18:49:22.0524 4968 C:\Windows\System32\userinit.exe - ok
18:49:22.0524 4968 [ 3EEFB971D61EF9638FD21F14C703CA11 ] C:\Windows\System32\taskhost.exe
18:49:22.0524 4968 C:\Windows\System32\taskhost.exe - ok
18:49:22.0540 4968 [ F162D5F5E845B9DC352DD1BAD8CEF1BC ] C:\Windows\System32\dwm.exe
18:49:22.0540 4968 C:\Windows\System32\dwm.exe - ok
18:49:22.0540 4968 [ 94EEAC26F57811BD1AEFC164412F7FCE ] C:\Windows\System32\PlaySndSrv.dll
18:49:22.0540 4968 C:\Windows\System32\PlaySndSrv.dll - ok
18:49:22.0555 4968 [ 1F1CA9E99DD5BF918BE0BF30B5A42FDA ] C:\Windows\System32\MsCtfMonitor.dll
18:49:22.0555 4968 C:\Windows\System32\MsCtfMonitor.dll - ok
18:49:22.0555 4968 [ F09A9A1AD21FE618C4C8B0A0D830C886 ] C:\Windows\System32\msutb.dll
18:49:22.0555 4968 C:\Windows\System32\msutb.dll - ok
18:49:22.0555 4968 [ 8CFACC72081C21519676BF4AAA1A88A9 ] C:\Windows\System32\localspl.dll
18:49:22.0555 4968 C:\Windows\System32\localspl.dll - ok
18:49:22.0571 4968 [ 805A52C5AE26C28E88FDD9BCCFE6F312 ] C:\Windows\System32\TSChannel.dll
18:49:22.0571 4968 C:\Windows\System32\TSChannel.dll - ok
18:49:22.0571 4968 [ 3285481F5C12305CA104A6C493CA5A0B ] C:\Windows\System32\spoolss.dll
18:49:22.0571 4968 C:\Windows\System32\spoolss.dll - ok
18:49:22.0587 4968 [ 506708142BC63DABA64F2D3AD1DCD5BF ] C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
18:49:22.0587 4968 C:\Program Files (x86)\Google\Update\GoogleUpdate.exe - ok
18:49:22.0587 4968 [ EF184066A851E7838D5BF8C8FAE66CC4 ] C:\Windows\System32\dwmredir.dll
18:49:22.0587 4968 C:\Windows\System32\dwmredir.dll - ok
18:49:22.0602 4968 [ 9D8AB964CE511AF81207DF0E1205184C ] C:\Windows\System32\dwmcore.dll
18:49:22.0602 4968 C:\Windows\System32\dwmcore.dll - ok
18:49:22.0602 4968 [ 02CDEB5D8B3DD5F6770DEFFBBC0CFAD0 ] C:\Windows\System32\winspool.drv
18:49:22.0602 4968 C:\Windows\System32\winspool.drv - ok
18:49:22.0618 4968 [ 33CC7FFA41F6157592E1578BD253F30E ] C:\Windows\System32\PrintIsolationProxy.dll
18:49:22.0618 4968 C:\Windows\System32\PrintIsolationProxy.dll - ok
18:49:22.0618 4968 [ 9FF47CD8A3787C8FD3CDFE40441C722E ] C:\Program Files (x86)\Google\Update\1.3.21.123\goopdate.dll
18:49:22.0618 4968 C:\Program Files (x86)\Google\Update\1.3.21.123\goopdate.dll - ok
18:49:22.0633 4968 [ 7F37322A489E285CFBCC02F6A53B3F1B ] C:\Windows\System32\HotStartUserAgent.dll
18:49:22.0633 4968 C:\Windows\System32\HotStartUserAgent.dll - ok
18:49:22.0633 4968 [ 20BEB8C403C6E28C9B13644787F5177D ] C:\Windows\System32\FXSMON.dll
18:49:22.0633 4968 C:\Windows\System32\FXSMON.dll - ok
18:49:22.0649 4968 [ 58A0C212ED2ABE462B3A9626F5B96261 ] C:\Windows\System32\d3d10_1.dll
18:49:22.0649 4968 C:\Windows\System32\d3d10_1.dll - ok
18:49:22.0649 4968 [ AFBBC34687FA48A4928B99AF097C1EC0 ] C:\Windows\System32\d3d10_1core.dll
18:49:22.0649 4968 C:\Windows\System32\d3d10_1core.dll - ok
18:49:22.0665 4968 [ D95DB5C915C001F78709C17285109BDC ] C:\Windows\System32\dxgi.dll
18:49:22.0665 4968 C:\Windows\System32\dxgi.dll - ok
18:49:22.0665 4968 [ 0862495E0C825893DB75EF44FAEA8E93 ] C:\Windows\explorer.exe
18:49:22.0665 4968 C:\Windows\explorer.exe - ok
18:49:22.0680 4968 [ 1C27E145EC99F20BC1B13FD98165A83F ] C:\Windows\System32\ExplorerFrame.dll
18:49:22.0680 4968 C:\Windows\System32\ExplorerFrame.dll - ok
18:49:22.0680 4968 [ D8F0E941B1E35DEEE3EDF6DF45517607 ] C:\Windows\System32\igd10umd64.dll
18:49:22.0680 4968 C:\Windows\System32\igd10umd64.dll - ok
18:49:22.0696 4968 [ 53D8BBB236513133915E8206CC8E419F ] C:\Windows\System32\HPZ3LLHN.DLL
18:49:22.0696 4968 C:\Windows\System32\HPZ3LLHN.DLL - ok
18:49:22.0696 4968 [ 32A3C8600AF124CBAAD845F13CFAE3CB ] C:\Windows\System32\tcpmon.dll
18:49:22.0696 4968 C:\Windows\System32\tcpmon.dll - ok
18:49:22.0711 4968 [ F1317678AC2FBA9F640279290B2E2988 ] C:\Windows\SysWOW64\msi.dll
18:49:22.0711 4968 C:\Windows\SysWOW64\msi.dll - ok
18:49:22.0711 4968 [ AE5A69F44C1F97EDC83237FC0B29B6FB ] C:\Program Files (x86)\Google\Update\1.3.21.123\GoogleCrashHandler.exe
18:49:22.0711 4968 C:\Program Files (x86)\Google\Update\1.3.21.123\GoogleCrashHandler.exe - ok
18:49:22.0711 4968 [ 41938F2C1642459CBBA691B5DBD6395A ] C:\Program Files (x86)\Google\Update\1.3.21.123\GoogleCrashHandler64.exe
18:49:22.0711 4968 C:\Program Files (x86)\Google\Update\1.3.21.123\GoogleCrashHandler64.exe - ok
18:49:22.0727 4968 [ 0089563F324FA784DA849D6A636141E0 ] C:\Windows\SysWOW64\mstask.dll
18:49:22.0727 4968 C:\Windows\SysWOW64\mstask.dll - ok
18:49:22.0727 4968 [ 228786AFBD47B78F237938F04D34AA8F ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Web\84fbf353f91385690a3e4e982aa6930e\System.Web.ni.dll
18:49:22.0727 4968 C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Web\84fbf353f91385690a3e4e982aa6930e\System.Web.ni.dll - ok
18:49:22.0743 4968 [ 93518C6EDE0B61BCBD02BDB02BD05FEE ] C:\Windows\System32\snmpapi.dll
18:49:22.0743 4968 C:\Windows\System32\snmpapi.dll - ok
18:49:22.0743 4968 [ AD7C70077D4C81558E909D34EF6B995E ] C:\Windows\System32\wsnmp32.dll
18:49:22.0743 4968 C:\Windows\System32\wsnmp32.dll - ok
18:49:22.0758 4968 [ 49E5753D923F1AC63B22D3DCB0B47E00 ] C:\Windows\System32\uDWM.dll
18:49:22.0758 4968 C:\Windows\System32\uDWM.dll - ok
18:49:22.0758 4968 [ A74316B5C28D94AF0825267D8715549F ] C:\Windows\System32\dbghelp.dll
18:49:22.0758 4968 C:\Windows\System32\dbghelp.dll - ok
18:49:22.0774 4968 [ DF72A9936D0C3F517083119648814B09 ] C:\Windows\System32\usbmon.dll
18:49:22.0774 4968 C:\Windows\System32\usbmon.dll - ok
18:49:22.0774 4968 [ A1D7E3ADCDB07DDB6F423862DCB1A52B ] C:\Windows\System32\WSDMon.dll
18:49:22.0774 4968 C:\Windows\System32\WSDMon.dll - ok
18:49:22.0774 4968 [ 7EDB2BF840ECB14D6E6B11C035708719 ] C:\Windows\System32\spool\prtprocs\x64\winprint.dll
18:49:22.0774 4968 C:\Windows\System32\spool\prtprocs\x64\winprint.dll - ok
18:49:22.0789 4968 [ 867C93CE4B4CCFCDE65CE48A769CD227 ] C:\Program Files\AVAST Software\Avast\ashShA64.dll
18:49:22.0789 4968 C:\Program Files\AVAST Software\Avast\ashShA64.dll - ok
18:49:22.0789 4968 [ 599EBE6C7EA52B5FF9603F203E8EC080 ] C:\Windows\System32\msi.dll
18:49:22.0789 4968 C:\Windows\System32\msi.dll - ok
18:49:22.0805 4968 [ C30A50449EA4B611484A5F1F1F016774 ] C:\Windows\System32\spool\prtprocs\x64\HPZPPLHN.DLL
18:49:22.0805 4968 C:\Windows\System32\spool\prtprocs\x64\HPZPPLHN.DLL - ok
18:49:22.0805 4968 [ 2332BACC2AB09119A14637DE0CB30147 ] C:\Windows\System32\win32spl.dll
18:49:22.0805 4968 C:\Windows\System32\win32spl.dll - ok
18:49:22.0821 4968 [ D4C6C002D6376717622D2CA913C47AB6 ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\webengine.dll
18:49:22.0821 4968 C:\Windows\Microsoft.NET\Framework\v2.0.50727\webengine.dll - ok
18:49:22.0821 4968 [ 17EAB1AEA937EFFCD107EFBA94FEDB34 ] C:\Windows\System32\inetpp.dll
18:49:22.0821 4968 C:\Windows\System32\inetpp.dll - ok
18:49:22.0836 4968 [ 024352FEEC9042260BB4CFB4D79A206B ] C:\Windows\System32\EhStorShell.dll
18:49:22.0836 4968 C:\Windows\System32\EhStorShell.dll - ok
18:49:22.0836 4968 [ 68D8AC3F047D3E105C1674FD4EF08913 ] C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL
18:49:22.0836 4968 C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL - ok
18:49:22.0852 4968 [ 5B7371ABA0392A26D5662543DA1CE318 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Management\3f9dee1ce0ccb42145293a5bfcbe7205\System.Management.ni.dll
18:49:22.0852 4968 C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Management\3f9dee1ce0ccb42145293a5bfcbe7205\System.Management.ni.dll - ok
18:49:22.0852 4968 [ 3F44FEAF98FCC8D8745A8611EF17E36B ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\WMINet_Utils.dll
18:49:22.0852 4968 C:\Windows\Microsoft.NET\Framework\v2.0.50727\WMINet_Utils.dll - ok
18:49:22.0852 4968 [ 5610B0425518D185331CB8E968D060E6 ] C:\Windows\SysWOW64\wbem\wmiutils.dll
18:49:22.0852 4968 C:\Windows\SysWOW64\wbem\wmiutils.dll - ok
18:49:22.0867 4968 [ 241AF87821FDA0F5792037B779F49BE0 ] C:\Windows\winsxs\amd64_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_08e61857a83bc251\msvcp90.dll
18:49:22.0867 4968 C:\Windows\winsxs\amd64_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_08e61857a83bc251\msvcp90.dll - ok
18:49:22.0867 4968 [ 57AC86AC664CC774C861DAB2B1D1E978 ] C:\Windows\winsxs\amd64_microsoft.vc90.atl_1fc8b3b9a1e18e3b_9.0.30729.6161_none_0a1fd3a3a768b895\ATL90.dll
18:49:22.0867 4968 C:\Windows\winsxs\amd64_microsoft.vc90.atl_1fc8b3b9a1e18e3b_9.0.30729.6161_none_0a1fd3a3a768b895\ATL90.dll - ok
18:49:22.0883 4968 [ 5ABAEB53E6ECF7878A5C4C4ABED92050 ] C:\PROGRA~1\COMMON~1\MICROS~1\OFFICE14\Cultures\OFFICE.ODF
18:49:22.0883 4968 C:\PROGRA~1\COMMON~1\MICROS~1\OFFICE14\Cultures\OFFICE.ODF - ok
18:49:22.0883 4968 [ 346E6AE68E92C802CCE2D08381DF6703 ] C:\Program Files (x86)\Sendori\Interop.PCProxyLib.dll
18:49:22.0883 4968 C:\Program Files (x86)\Sendori\Interop.PCProxyLib.dll - ok
18:49:22.0899 4968 [ ACCBA604D34842844133A731F8045B32 ] C:\Windows\SysWOW64\sxs.dll
18:49:22.0899 4968 C:\Windows\SysWOW64\sxs.dll - ok
18:49:22.0899 4968 [ D06A0B6260D9B6E5C5F6C800E2574267 ] C:\Windows\System32\ntprint.dll
18:49:22.0899 4968 C:\Windows\System32\ntprint.dll - ok
18:49:22.0899 4968 [ 66E3C667D853DF349E310568F60B9B6A ] C:\PROGRA~1\MICROS~2\Office14\1033\GrooveIntlResource.dll
18:49:22.0914 4968 C:\PROGRA~1\MICROS~2\Office14\1033\GrooveIntlResource.dll - ok
18:49:22.0914 4968 [ 5F917AEEEA363B8A5DC8624795CB1D60 ] C:\Windows\System32\ntshrui.dll
18:49:22.0914 4968 C:\Windows\System32\ntshrui.dll - ok
18:49:22.0914 4968 [ 1D63F4366288B8A7595397E27010FD44 ] C:\Windows\System32\IconCodecService.dll
18:49:22.0914 4968 C:\Windows\System32\IconCodecService.dll - ok
18:49:22.0930 4968 [ BF1FC3F79B863C914687A737C2F3D681 ] C:\Windows\System32\wdi.dll
18:49:22.0930 4968 C:\Windows\System32\wdi.dll - ok
18:49:22.0930 4968 [ D065BE66822847B7F127D1F90158376E ] C:\Windows\System32\appinfo.dll
18:49:22.0930 4968 C:\Windows\System32\appinfo.dll - ok
18:49:22.0945 4968 [ 312E2F82AF11E79906898AC3E3D58A1F ] C:\Windows\System32\certprop.dll
18:49:22.0945 4968 C:\Windows\System32\certprop.dll - ok
18:49:22.0945 4968 [ 58A0CDABEA255616827B1C22C9994466 ] C:\Windows\System32\NapiNSP.dll
18:49:22.0945 4968 C:\Windows\System32\NapiNSP.dll - ok
18:49:22.0961 4968 [ 2E2072EB48238FCA8FBB7A9F5FABAC45 ] C:\Windows\System32\winrnr.dll
18:49:22.0961 4968 C:\Windows\System32\winrnr.dll - ok
18:49:22.0961 4968 [ D891293880F2F00AB7BA959910300EF7 ] C:\Windows\System32\diagperf.dll
18:49:22.0961 4968 C:\Windows\System32\diagperf.dll - ok
18:49:22.0961 4968 [ 613C8CE10A5FDE582BA5FA64C4D56AAA ] C:\Windows\System32\pnrpnsp.dll
18:49:22.0961 4968 C:\Windows\System32\pnrpnsp.dll - ok
18:49:22.0977 4968 [ C3BC61CE47FF6F4E88AB8A3B429A36AF ] C:\Windows\System32\SessEnv.dll
18:49:22.0977 4968 C:\Windows\System32\SessEnv.dll - ok
18:49:22.0977 4968 [ BF4AC709BE5BF64F331F5D67773A0C82 ] C:\Windows\System32\perftrack.dll
18:49:22.0977 4968 C:\Windows\System32\perftrack.dll - ok
18:49:22.0992 4968 [ E629F1A051C82795DDFFD3E8D4855811 ] C:\Windows\System32\dimsjob.dll
18:49:22.0992 4968 C:\Windows\System32\dimsjob.dll - ok
18:49:22.0992 4968 [ 2E57DDF2880A7E52E76F41C7E96D327B ] C:\Windows\System32\wpdbusenum.dll
18:49:22.0992 4968 C:\Windows\System32\wpdbusenum.dll - ok
18:49:23.0008 4968 [ 5DA7D8934F7AB0884A6A8FC02E8B2AA7 ] C:\Windows\System32\PortableDeviceApi.dll
18:49:23.0008 4968 C:\Windows\System32\PortableDeviceApi.dll - ok
18:49:23.0008 4968 [ AFA79C343F9D1555F7E5D5FA70BB2A14 ] C:\Windows\System32\PortableDeviceConnectApi.dll
18:49:23.0008 4968 C:\Windows\System32\PortableDeviceConnectApi.dll - ok
18:49:23.0023 4968 [ 6AB6D4DF10EC784CF4A66CBFAF417A11 ] C:\Windows\System32\runonce.exe
18:49:23.0023 4968 C:\Windows\System32\runonce.exe - ok
18:49:23.0023 4968 [ 9689A9C7F7C2A1A423CDA2C3B43FFF65 ] C:\Windows\System32\wer.dll
18:49:23.0023 4968 C:\Windows\System32\wer.dll - ok
18:49:23.0039 4968 [ E1B22739C933BE33F53DB58C5393ADD3 ] C:\Windows\System32\Apphlpdm.dll
18:49:23.0039 4968 C:\Windows\System32\Apphlpdm.dll - ok
18:49:23.0039 4968 [ 9719E3D834F5C8C43F56A93DFA497023 ] C:\Windows\System32\pnpts.dll
18:49:23.0039 4968 C:\Windows\System32\pnpts.dll - ok
18:49:23.0039 4968 [ 65AF044B5570D355124DCD1E099AA98F ] C:\Windows\System32\wdiasqmmodule.dll
18:49:23.0039 4968 C:\Windows\System32\wdiasqmmodule.dll - ok
18:49:23.0055 4968 [ 46863C4CC5B68EB09EA2D5EEF0F1193A ] C:\Windows\System32\radardt.dll
18:49:23.0055 4968 C:\Windows\System32\radardt.dll - ok
18:49:23.0055 4968 [ F7073C962C4FB7C415565DDE109DE49F ] C:\Windows\System32\npmproxy.dll
18:49:23.0055 4968 C:\Windows\System32\npmproxy.dll - ok
18:49:23.0070 4968 [ 169F916EFEAA44487E65305B7D2D754B ] C:\Windows\SysWOW64\runonce.exe
18:49:23.0070 4968 C:\Windows\SysWOW64\runonce.exe - ok
18:49:23.0070 4968 [ 35CB97CBC3EDC463418ED4997AAB29B6 ] C:\Windows\System32\pautoenr.dll
18:49:23.0070 4968 C:\Windows\System32\pautoenr.dll - ok
18:49:23.0086 4968 [ AAA6D0DF7356BBA706BD67385A103AAB ] C:\Windows\System32\certcli.dll
18:49:23.0086 4968 C:\Windows\System32\certcli.dll - ok
18:49:23.0086 4968 [ 522BD073F617060AFCB9CC5707778DB1 ] C:\Windows\System32\CertEnroll.dll
18:49:23.0086 4968 C:\Windows\System32\CertEnroll.dll - ok
18:49:23.0086 4968 [ 4B78B431F225FD8624C5655CB1DE7B61 ] C:\Windows\System32\aelupsvc.dll
18:49:23.0086 4968 C:\Windows\System32\aelupsvc.dll - ok
18:49:23.0101 4968 [ 26EAEE08CAF82AA7F03C5020F51DA541 ] C:\Windows\SysWOW64\propsys.dll
18:49:23.0101 4968 C:\Windows\SysWOW64\propsys.dll - ok
18:49:23.0101 4968 [ FB8C6A46EAF7585D2CA8583C4C9A8EDF ] C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL
18:49:23.0101 4968 C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL - ok
18:49:23.0117 4968 [ 58A14C45A5CD2528F10A889E7B0C3FC2 ] C:\Windows\winsxs\x86_microsoft.vc90.atl_1fc8b3b9a1e18e3b_9.0.30729.6161_none_51cd0a7abbe4e19b\ATL90.dll
18:49:23.0117 4968 C:\Windows\winsxs\x86_microsoft.vc90.atl_1fc8b3b9a1e18e3b_9.0.30729.6161_none_51cd0a7abbe4e19b\ATL90.dll - ok
18:49:23.0117 4968 [ E9901A7E569C4156FDA69F5C9356B8ED ] C:\Program Files (x86)\Common Files\microsoft shared\OFFICE14\Cultures\OFFICE.ODF
18:49:23.0117 4968 C:\Program Files (x86)\Common Files\microsoft shared\OFFICE14\Cultures\OFFICE.ODF - ok
18:49:23.0133 4968 [ 32553C1C3A70A1E66D03595DD2DC58ED ] C:\Program Files (x86)\Sendori\SendoriControl.exe
18:49:23.0133 4968 C:\Program Files (x86)\Sendori\SendoriControl.exe - ok
18:49:23.0133 4968 [ 11CDF138552BFEC115B60ED6DC3ACEB6 ] C:\Windows\SysWOW64\devrtl.dll
18:49:23.0133 4968 C:\Windows\SysWOW64\devrtl.dll - ok
18:49:23.0148 4968 [ 8AE6DD9A6D246004DA047F704F0CC487 ] C:\Windows\SysWOW64\cmd.exe
18:49:23.0148 4968 C:\Windows\SysWOW64\cmd.exe - ok
18:49:23.0148 4968 [ 326C7F76A29897A892AA7726E91C1C67 ] C:\Windows\SysWOW64\winbrand.dll
18:49:23.0148 4968 C:\Windows\SysWOW64\winbrand.dll - ok
18:49:23.0148 4968 [ 0BA3F31E2B4D8D99DF8DD19E81155374 ] C:\Windows\SysWOW64\ieframe.dll
18:49:23.0148 4968 C:\Windows\SysWOW64\ieframe.dll - ok
18:49:23.0164 4968 [ 4D59A5B6EF0AF6F9FDF3D157534380AF ] C:\Windows\SysWOW64\oleacc.dll
18:49:23.0164 4968 C:\Windows\SysWOW64\oleacc.dll - ok
18:49:23.0164 4968 [ E07B77C3BDC82A024E294FB67ABFEDA0 ] C:\Windows\SysWOW64\shdocvw.dll
18:49:23.0164 4968 C:\Windows\SysWOW64\shdocvw.dll - ok
18:49:23.0179 4968 [ EBC984F0CE40E0DAF0454D806EC2A7EC ] C:\Users\Glory\AppData\Local\Temp\07E05573-416A-4574-854C-0FC1A83C544C.exe
18:49:23.0179 4968 C:\Users\Glory\AppData\Local\Temp\07E05573-416A-4574-854C-0FC1A83C544C.exe - ok
18:49:23.0179 4968 [ 691C8DFB208227F0CBB5C0897C742ACE ] C:\Windows\SysWOW64\WindowsCodecs.dll
18:49:23.0179 4968 C:\Windows\SysWOW64\WindowsCodecs.dll - ok
18:49:23.0195 4968 [ 846D0E4DB261CFAF363902E41498E961 ] C:\Windows\SysWOW64\EhStorShell.dll
18:49:23.0195 4968 C:\Windows\SysWOW64\EhStorShell.dll - ok
18:49:23.0195 4968 [ 676CCC08D9E9A3F4CA39CB04E97048DF ] C:\PROGRA~2\MICROS~3\Office14\1033\GrooveIntlResource.dll
18:49:23.0195 4968 C:\PROGRA~2\MICROS~3\Office14\1033\GrooveIntlResource.dll - ok
18:49:23.0195 4968 [ 9141FE8D904CE682A3BDCFAE96BB04EF ] C:\Windows\SysWOW64\ntshrui.dll
18:49:23.0195 4968 C:\Windows\SysWOW64\ntshrui.dll - ok
18:49:23.0211 4968 [ 8B74CEC6980D4816B0037AE9A27E538F ] C:\Windows\SysWOW64\slc.dll
18:49:23.0211 4968 C:\Windows\SysWOW64\slc.dll - ok
18:49:23.0211 4968 [ 827CB0D6C3F8057EA037FF271F8E9795 ] C:\Windows\SysWOW64\imageres.dll
18:49:23.0211 4968 C:\Windows\SysWOW64\imageres.dll - ok
18:49:23.0226 4968 [ B519848DFA30AE2B306576B51321D102 ] C:\Windows\System32\ie4uinit.exe
18:49:23.0226 4968 C:\Windows\System32\ie4uinit.exe - ok
18:49:23.0226 4968 [ C3E98C42EDF7EF237A4BAB91FEAC7426 ] C:\Windows\System32\iedkcs32.dll
18:49:23.0226 4968 C:\Windows\System32\iedkcs32.dll - ok
18:49:23.0242 4968 [ 18245DC72B65D488A8B2D75A8FE088EA ] C:\Windows\System32\timedate.cpl
18:49:23.0242 4968 C:\Windows\System32\timedate.cpl - ok
18:49:23.0242 4968 [ 1E4BDDBD5A63059A97063339B4F8986F ] C:\Windows\System32\actxprxy.dll
18:49:23.0242 4968 C:\Windows\System32\actxprxy.dll - ok
18:49:23.0257 4968 [ FBE8EBF528DC49B3DEB186CA9545D97E ] C:\Windows\System32\shdocvw.dll
18:49:23.0257 4968 C:\Windows\System32\shdocvw.dll - ok
18:49:23.0257 4968 [ A0A65D306A5490D2EB8E7DE66898ECFD ] C:\Windows\System32\linkinfo.dll
18:49:23.0257 4968 C:\Windows\System32\linkinfo.dll - ok
18:49:23.0273 4968 [ 14F5C0DB4B2C47874D6C937A5A1B367C ] C:\Windows\System32\gameux.dll
18:49:23.0273 4968 C:\Windows\System32\gameux.dll - ok
18:49:23.0273 4968 [ 46EDD0A6B42BA5D2044FA0909BE4BE95 ] C:\Windows\System32\msftedit.dll
18:49:23.0273 4968 C:\Windows\System32\msftedit.dll - ok
18:49:23.0289 4968 [ 7FCAB194F01E3403C300EB034E480B36 ] C:\Windows\System32\msls31.dll
18:49:23.0289 4968 C:\Windows\System32\msls31.dll - ok
18:49:23.0289 4968 [ DD76912E8D165C68659D9875256710A3 ] C:\Windows\System32\DeviceCenter.dll
18:49:23.0289 4968 C:\Windows\System32\DeviceCenter.dll - ok
18:49:23.0289 4968 [ 4ECE12D296ED94CA2C7DD6C383A5AB66 ] C:\Windows\System32\ieframe.dll
18:49:23.0289 4968 C:\Windows\System32\ieframe.dll - ok
18:49:23.0304 4968 [ 60C314E63AF5D35F31A17C0D5038C2CD ] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
18:49:23.0304 4968 C:\Program Files\Synaptics\SynTP\SynTPEnh.exe - ok
18:49:23.0304 4968 [ 69754747274B76E7FAF287239333D7E6 ] C:\Windows\System32\msiltcfg.dll
18:49:23.0304 4968 C:\Windows\System32\msiltcfg.dll - ok
18:49:23.0320 4968 [ FA495814A54ACCA342AAC450C6A894A0 ] C:\Windows\System32\SynCOM.dll
18:49:23.0320 4968 C:\Windows\System32\SynCOM.dll - ok
18:49:23.0320 4968 [ 8BC7AE7E16458355508ECF5EC3A04E72 ] C:\Windows\System32\networkexplorer.dll
18:49:23.0320 4968 C:\Windows\System32\networkexplorer.dll - ok
18:49:23.0335 4968 [ 0B8652B5FC27947012EAF5316F0F69FF ] C:\Windows\System32\SynTPAPI.dll
18:49:23.0335 4968 C:\Windows\System32\SynTPAPI.dll - ok
18:49:23.0335 4968 [ 3EC11F261F25F9BAB0C5484D49E9F6F5 ] C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
18:49:23.0335 4968 C:\Program Files\Synaptics\SynTP\SynTPHelper.exe - ok
18:49:23.0351 4968 [ 47AF01BA603E51BB239D55F25B52461D ] C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
18:49:23.0351 4968 C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe - ok
18:49:23.0351 4968 [ D32EE82DA63D39D337D5AEEA2928B1DE ] C:\Windows\System32\consent.exe
18:49:23.0351 4968 C:\Windows\System32\consent.exe - ok
18:49:23.0351 4968 [ F468C806267D46B68DB7EB32FBF0A103 ] C:\Windows\System32\thumbcache.dll
18:49:23.0351 4968 C:\Windows\System32\thumbcache.dll - ok
18:49:23.0367 4968 [ 585FED4CDB8034B8B58AEB8008255817 ] C:\Windows\System32\opengl32.dll
18:49:23.0367 4968 C:\Windows\System32\opengl32.dll - ok
18:49:23.0367 4968 [ 60CC15392FF14DCB9C29C69B3233741B ] C:\Windows\System32\stobject.dll
18:49:23.0367 4968 C:\Windows\System32\stobject.dll - ok
18:49:23.0382 4968 [ E424B3EF666B184CEE0B6871AAA8C9F6 ] C:\Windows\System32\msimg32.dll
18:49:23.0382 4968 C:\Windows\System32\msimg32.dll - ok
18:49:23.0382 4968 [ 86B6AC0FD2881B3D20B80F51C7152AE0 ] C:\Windows\System32\batmeter.dll
18:49:23.0382 4968 C:\Windows\System32\batmeter.dll - ok
18:49:23.0398 4968 [ F2967C0A97C0EA67D79D7F557213950D ] C:\Windows\System32\glu32.dll
18:49:23.0398 4968 C:\Windows\System32\glu32.dll - ok
18:49:23.0398 4968 [ A6C09924C6730DE8DEED9890A12AA691 ] C:\Windows\System32\ddraw.dll
18:49:23.0398 4968 C:\Windows\System32\ddraw.dll - ok
18:49:23.0413 4968 [ B837D1528CE2E3CB79F09496BC08DDC6 ] C:\Windows\System32\SensApi.dll
18:49:23.0413 4968 C:\Windows\System32\SensApi.dll - ok
18:49:23.0413 4968 [ 651F169718CC46C8A9264880C538D5FF ] C:\Windows\System32\prnfldr.dll
18:49:23.0413 4968 C:\Windows\System32\prnfldr.dll - ok
18:49:23.0413 4968 [ 29C22748937F45C26590909E9F8E7137 ] C:\Windows\System32\dciman32.dll
18:49:23.0413 4968 C:\Windows\System32\dciman32.dll - ok
18:49:23.0429 4968 [ 9110FFAD124283F37D38771BB60556AF ] C:\Windows\System32\dsound.dll
18:49:23.0429 4968 C:\Windows\System32\dsound.dll - ok
18:49:23.0429 4968 [ 0087BBDD20A9C24CC58E8DA367B83B8C ] C:\Program Files (x86)\Realtek\Audio\OSD\RtVOsd64.exe
18:49:23.0429 4968 C:\Program Files (x86)\Realtek\Audio\OSD\RtVOsd64.exe - ok
18:49:23.0445 4968 [ 263E9A047D17CD50BAA9D3C02910D18D ] C:\Windows\System32\oledlg.dll
18:49:23.0445 4968 C:\Windows\System32\oledlg.dll - ok
18:49:23.0445 4968 [ B38841D728E1A2802EE1624E15C2DE4C ] C:\Program Files\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe
18:49:23.0445 4968 C:\Program Files\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe - ok
18:49:23.0460 4968 [ 913C2E4A03201644FC986EDEB5F8A390 ] C:\Windows\System32\DXP.dll
18:49:23.0460 4968 C:\Windows\System32\DXP.dll - ok
18:49:23.0460 4968 [ DD515FF57CCE77FD6A13ECA7F2A98B1A ] C:\Windows\System32\RtkCfg64.dll
18:49:23.0460 4968 C:\Windows\System32\RtkCfg64.dll - ok
18:49:23.0460 4968 [ 42135F2323AE6F0566A79DC44ECCF363 ] C:\Program Files\Hewlett-Packard\HP Quick Launch\HPKBDCTL.dll
18:49:23.0460 4968 C:\Program Files\Hewlett-Packard\HP Quick Launch\HPKBDCTL.dll - ok
18:49:23.0476 4968 [ 2BC7C9FD0A9F2C9AFC373F3AD1EE3891 ] C:\Windows\System32\Syncreg.dll
18:49:23.0476 4968 C:\Windows\System32\Syncreg.dll - ok
18:49:23.0476 4968 [ C836175870E00ACC546066632E15BD10 ] C:\Windows\ehome\ehSSO.dll
18:49:23.0476 4968 C:\Windows\ehome\ehSSO.dll - ok
18:49:23.0491 4968 [ AB01C36BCC34CCFE5B0BB5FFB2605135 ] C:\Windows\System32\WPDShServiceObj.dll
18:49:23.0491 4968 C:\Windows\System32\WPDShServiceObj.dll - ok
18:49:23.0491 4968 [ 4F3CD1C59EA71401E155C432BCECE180 ] C:\Windows\System32\PortableDeviceTypes.dll
18:49:23.0491 4968 C:\Windows\System32\PortableDeviceTypes.dll - ok
18:49:23.0507 4968 [ 52A3DF9E3C34B1AD9E68141B52B5C2F0 ] C:\Program Files\Java\jre6\bin\jusched.exe
18:49:23.0507 4968 C:\Program Files\Java\jre6\bin\jusched.exe - ok
18:49:23.0507 4968 [ 031C6782F2D50336FC2C72F8D14A4C13 ] C:\Windows\System32\wbem\wmiprov.dll
18:49:23.0507 4968 C:\Windows\System32\wbem\wmiprov.dll - ok
18:49:23.0523 4968 [ 2C5B8A680A90E96B1EC0D6DA0505E685 ] C:\Windows\System32\srchadmin.dll
18:49:23.0523 4968 C:\Windows\System32\srchadmin.dll - ok
18:49:23.0523 4968 [ 8CD2A697B18069A62A035E756E51E934 ] C:\Windows\System32\SearchIndexer.exe
18:49:23.0523 4968 C:\Windows\System32\SearchIndexer.exe - ok
18:49:23.0523 4968 [ E7368F0A8D19445EAF5C5D0DBB8B8DAB ] C:\Windows\System32\AltTab.dll
18:49:23.0523 4968 C:\Windows\System32\AltTab.dll - ok
18:49:23.0538 4968 [ FD4F95ABDE5603478C929B6CB0BDCFFF ] C:\Windows\System32\pnidui.dll
18:49:23.0538 4968 C:\Windows\System32\pnidui.dll - ok
18:49:23.0538 4968 [ 0BBFE08ECCE8A209D07C3B68D63FC293 ] C:\Windows\System32\igfxtray.exe
18:49:23.0538 4968 C:\Windows\System32\igfxtray.exe - ok
18:49:23.0554 4968 [ F8F532C7509C3238C9827BAE861A48D7 ] C:\Windows\System32\tquery.dll
18:49:23.0554 4968 C:\Windows\System32\tquery.dll - ok
18:49:23.0554 4968 [ 05EA520BFB1D3085CB12A4355598081D ] C:\Windows\System32\hccutils.dll
18:49:23.0554 4968 C:\Windows\System32\hccutils.dll - ok
18:49:23.0569 4968 [ BD03C64C4B1F34D1F330BF6C4AC8113D ] C:\Windows\System32\QUTIL.DLL
18:49:23.0569 4968 C:\Windows\System32\QUTIL.DLL - ok
18:49:23.0569 4968 [ 92AAF75C3EB344A098DC026BC9DDF42A ] C:\Windows\System32\bthprops.cpl
18:49:23.0569 4968 C:\Windows\System32\bthprops.cpl - ok
18:49:23.0585 4968 [ D890EDDD0528E04049C9D524FBA1C506 ] C:\Windows\System32\igfxsrvc.exe
18:49:23.0585 4968 C:\Windows\System32\igfxsrvc.exe - ok
18:49:23.0585 4968 [ D2155709E336C3BC15729EB87FEC6064 ] C:\Windows\System32\rasdlg.dll
18:49:23.0585 4968 C:\Windows\System32\rasdlg.dll - ok
18:49:23.0601 4968 [ 2F16207A65B62001FC73E6798D0B8F2A ] C:\Windows\System32\hkcmd.exe
18:49:23.0601 4968 C:\Windows\System32\hkcmd.exe - ok
18:49:23.0601 4968 [ BA4A19DE93FBDFE6DB5F0EBC99732A06 ] C:\Windows\System32\mssrch.dll
18:49:23.0601 4968 C:\Windows\System32\mssrch.dll - ok
18:49:23.0601 4968 [ C746F3BF98E92FB137B5BD2B8B5925BD ] C:\Windows\System32\FXSST.dll
18:49:23.0601 4968 C:\Windows\System32\FXSST.dll - ok
18:49:23.0616 4968 [ 31A6D4B8803CCBA44271F05E08C4955A ] C:\Windows\System32\igfxsrvc.dll
18:49:23.0616 4968 C:\Windows\System32\igfxsrvc.dll - ok
18:49:23.0616 4968 [ B69A01794D44C769C2575AE75E2EB31F ] C:\Windows\System32\igfxpers.exe
18:49:23.0616 4968 C:\Windows\System32\igfxpers.exe - ok
18:49:23.0632 4968 [ BB68579E181956E37EB11F9083C01CF3 ] C:\Windows\System32\dot3api.dll
18:49:23.0632 4968 C:\Windows\System32\dot3api.dll - ok
18:49:23.0632 4968 [ E4FCA0F99A41E460C84016DEFD31E6EF ] C:\Windows\System32\wlanhlp.dll
18:49:23.0632 4968 C:\Windows\System32\wlanhlp.dll - ok
18:49:23.0647 4968 [ 357BE883C5236BFC7341CB9E82308908 ] C:\Windows\System32\wlanapi.dll
18:49:23.0647 4968 C:\Windows\System32\wlanapi.dll - ok
18:49:23.0647 4968 [ F51059EE3C543CB364A069CAFB252031 ] C:\Windows\System32\igfxdev.dll
18:49:23.0647 4968 C:\Windows\System32\igfxdev.dll - ok
18:49:23.0663 4968 [ 352C7C2470C03AFD41889236D849D75C ] C:\Windows\System32\igfxrenu.lrc
18:49:23.0663 4968 C:\Windows\System32\igfxrenu.lrc - ok
18:49:23.0663 4968 [ 34E6D8C67E7FD7C917BECFECA326B168 ] C:\Windows\System32\FXSAPI.dll
18:49:23.0663 4968 C:\Windows\System32\FXSAPI.dll - ok
18:49:23.0679 4968 [ C8E8B8239FCF17BEA10E751BE5854631 ] C:\Windows\System32\FXSRESM.dll
18:49:23.0679 4968 C:\Windows\System32\FXSRESM.dll - ok
18:49:23.0679 4968 [ 3121A79D13A61562BE9CC902CD46B542 ] C:\Windows\System32\msidle.dll
18:49:23.0679 4968 C:\Windows\System32\msidle.dll - ok
18:49:23.0694 4968 [ C7F22545C0C424265E57AA1D220090C6 ] C:\Windows\System32\igfxress.dll
18:49:23.0694 4968 C:\Windows\System32\igfxress.dll - ok
18:49:23.0694 4968 [ ACE1BB07E0377E37A2C514CD2EC119B1 ] C:\Windows\System32\mssprxy.dll
18:49:23.0694 4968 C:\Windows\System32\mssprxy.dll - ok
18:49:23.0710 4968 [ D607B2F1BEE3992AA6C2C92C0A2F0855 ] C:\Windows\System32\FXSSVC.exe
18:49:23.0710 4968 C:\Windows\System32\FXSSVC.exe - ok
18:49:23.0710 4968 [ 0DC6669BC2B552C0ECC905B6B761F508 ] C:\Program Files\Microsoft Security Client\msseces.exe
18:49:23.0710 4968 C:\Program Files\Microsoft Security Client\msseces.exe - ok
18:49:23.0710 4968 [ 1FAD6ACA65366E1AFF10EC6B02F47A84 ] C:\Program Files\Microsoft Office\Office14\BCSSync.exe
18:49:23.0710 4968 C:\Program Files\Microsoft Office\Office14\BCSSync.exe - ok
18:49:23.0725 4968 [ 75838AB28CC1318345DA62B6C339068C ] C:\Windows\System32\GfxUI.exe
18:49:23.0725 4968 C:\Windows\System32\GfxUI.exe - ok
18:49:23.0725 4968 [ F36C84F16B1089C0FFBFE8DFF754AB6B ] C:\Program Files (x86)\Hewlett-Packard\HP Advisor\Dock\HPAdvisorDock.exe
18:49:23.0725 4968 C:\Program Files (x86)\Hewlett-Packard\HP Advisor\Dock\HPAdvisorDock.exe - ok
18:49:23.0741 4968 [ 6699A112A3BDC9B52338512894EBA9D6 ] C:\Program Files\Windows Media Player\wmpnscfg.exe
18:49:23.0741 4968 C:\Program Files\Windows Media Player\wmpnscfg.exe - ok
18:49:23.0741 4968 [ 5DA219F57A9076FB6FBD3C9C3713A672 ] C:\Windows\System32\WWanAPI.dll
18:49:23.0741 4968 C:\Windows\System32\WWanAPI.dll - ok
18:49:23.0757 4968 [ 72AB6633E9B39EC7FEBEDF083A9061E5 ] C:\Windows\System32\mscoree.dll
18:49:23.0757 4968 C:\Windows\System32\mscoree.dll - ok
18:49:23.0757 4968 [ C7494C67A6BF6FE914808E42F8265FEF ] C:\Program Files\Windows Media Player\wmpnssci.dll
18:49:23.0757 4968 C:\Program Files\Windows Media Player\wmpnssci.dll - ok
18:49:23.0772 4968 [ BF340031913D5BAFAEAE626A02C6E597 ] C:\Users\Glory\AppData\Roaming\mjusbsp\cdloader2.exe
18:49:23.0772 4968 C:\Users\Glory\AppData\Roaming\mjusbsp\cdloader2.exe - ok
18:49:23.0772 4968 [ 62C7AACC746C9723468A8F2169ED3E85 ] C:\Windows\System32\wwapi.dll
18:49:23.0772 4968 C:\Windows\System32\wwapi.dll - ok
18:49:23.0772 4968 [ AA794B099F776B37ACCDEAD00E0FBFC9 ] C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscoreei.dll
18:49:23.0788 4968 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscoreei.dll - ok
18:49:23.0788 4968 [ 0B9F7D42D745038437FAE70D97F9AD5A ] C:\Windows\System32\QAGENT.DLL
18:49:23.0788 4968 C:\Windows\System32\QAGENT.DLL - ok
18:49:23.0788 4968 [ 9BF014C20F91D97055532F2F5496E7BD ] C:\Program Files\Windows Media Player\wmpnetwk.exe
18:49:23.0788 4968 C:\Program Files\Windows Media Player\wmpnetwk.exe - ok
18:49:23.0803 4968 [ C9FB9038B15036CA28CF0B4BE2BED9BD ] C:\Windows\System32\en-US\tquery.dll.mui
18:49:23.0803 4968 C:\Windows\System32\en-US\tquery.dll.mui - ok
18:49:23.0803 4968 [ F146E2BA475893DD77B2370DC1211FC6 ] C:\Windows\System32\drivers\82707366.sys
18:49:23.0803 4968 C:\Windows\System32\drivers\82707366.sys - ok
18:49:23.0819 4968 [ E09EFDAE4A93765ECEA0D5A31FC242E3 ] C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe
18:49:23.0819 4968 C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe - ok
18:49:23.0819 4968 [ 5D61BE7DB55B026A5D61A3EED09D0EAD ] C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
18:49:23.0819 4968 C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe - ok
18:49:23.0835 4968 [ 7FA5CA36B613A000F3A37E6B5170A195 ] C:\Windows\System32\d2d1.dll
18:49:23.0835 4968 C:\Windows\System32\d2d1.dll - ok
18:49:23.0835 4968 [ AA89A847B99A8DAB8802DE367935238B ] C:\Program Files (x86)\Symantec\Norton Online Backup\Activation\NobuActivation.exe
18:49:23.0835 4968 C:\Program Files (x86)\Symantec\Norton Online Backup\Activation\NobuActivation.exe - ok
18:49:23.0850 4968 [ B8E421C0890356CD4A793D8A346D9096 ] C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
18:49:23.0850 4968 C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe - ok
18:49:23.0850 4968 [ C98FF6C440E8967251F59C7919B505A1 ] C:\Program Files (x86)\Adobe\Reader 9.0\Reader\reader_sl.exe
18:49:23.0850 4968 C:\Program Files (x86)\Adobe\Reader 9.0\Reader\reader_sl.exe - ok
18:49:23.0866 4968 [ 13E7CFE8E269ED15E7FC9C3EBBCB7E2B ] C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
18:49:23.0866 4968 C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe - ok
18:49:23.0866 4968 [ 0B3595A4FF0B36D68E5FC67FD7D70FDC ] C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcp80.dll
18:49:23.0866 4968 C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcp80.dll - ok
18:49:23.0881 4968 [ 5516C26A6AF8EB4E2CAB48EC98A74398 ] C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe
18:49:23.0881 4968 C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe - ok
18:49:23.0881 4968 [ DA4ED31DD43ABB0AF99888E236FFDB91 ] C:\Program Files (x86)\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe
18:49:23.0881 4968 C:\Program Files (x86)\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe - ok
18:49:23.0897 4968 [ D7E8EBDE5DB201216B755418E2F0A7CE ] C:\Program Files (x86)\Google\GoogleToolbarNotifier\5.7.7725.1624\gtn.dll
18:49:23.0897 4968 C:\Program Files (x86)\Google\GoogleToolbarNotifier\5.7.7725.1624\gtn.dll - ok
18:49:23.0897 4968 [ 302B93586DFA480545C320EBA5BA6572 ] C:\Windows\System32\wmdrmdev.dll
18:49:23.0897 4968 C:\Windows\System32\wmdrmdev.dll - ok
18:49:23.0913 4968 [ 7F0C323FE3DA28AA4AA1BDA3F575707F ] C:\Windows\System32\qmgr.dll
18:49:23.0913 4968 C:\Windows\System32\qmgr.dll - ok
18:49:23.0913 4968 [ E9FD4DA5188391ECD30E6C29213EABF0 ] C:\Windows\System32\DWrite.dll
18:49:23.0913 4968 C:\Windows\System32\DWrite.dll - ok
18:49:23.0913 4968 [ F514F8AA46D633CA6AE4912FFE09E2F5 ] C:\Program Files (x86)\Google\GoogleToolbarNotifier\5.7.7725.1624\swg.dll
18:49:23.0913 4968 C:\Program Files (x86)\Google\GoogleToolbarNotifier\5.7.7725.1624\swg.dll - ok
18:49:23.0928 4968 [ A5FCE2EC7895B826762FE35EC65DE704 ] C:\Program Files (x86)\PictureMover\Bin\PictureMover.exe
18:49:23.0928 4968 C:\Program Files (x86)\PictureMover\Bin\PictureMover.exe - ok
18:49:23.0928 4968 [ 3DEBA83ECDAF6ED2E72430D238803117 ] C:\Windows\System32\wmp.dll
18:49:23.0928 4968 C:\Windows\System32\wmp.dll - ok
18:49:23.0944 4968 [ 4E75477E8BFA55C6F1F2688FB553F0C5 ] C:\Windows\System32\bitsperf.dll
18:49:23.0944 4968 C:\Windows\System32\bitsperf.dll - ok
18:49:23.0944 4968 [ 2C1055E2C6D42753241FB2A129136994 ] C:\Windows\System32\drmv2clt.dll
18:49:23.0944 4968 C:\Windows\System32\drmv2clt.dll - ok
18:49:23.0944 4968 [ D9431DCF90B0253773F51FDEFE7FD42F ] C:\Windows\System32\bitsigd.dll
18:49:23.0944 4968 C:\Windows\System32\bitsigd.dll - ok
18:49:23.0959 4968 [ 8A4E324E2C857D7B762B62A684E03E9C ] C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
18:49:23.0959 4968 C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe - ok
18:49:23.0959 4968 [ 22CC6CDBA678790046693654C3B212E4 ] C:\Program Files (x86)\Internet Explorer\iexplore.exe
18:49:23.0959 4968 C:\Program Files (x86)\Internet Explorer\iexplore.exe - ok
18:49:23.0975 4968 [ 3CA4ADDA47D97DDF412893F1D03EA6F6 ] C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorwks.dll
18:49:23.0975 4968 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorwks.dll - ok
18:49:23.0975 4968 [ 9E29BC11A70165635CC10D42E64CFEE1 ] C:\Windows\System32\upnp.dll
18:49:23.0975 4968 C:\Windows\System32\upnp.dll - ok
18:49:23.0991 4968 [ 0C56FB00C2B108F031F191943EE42C90 ] C:\Program Files (x86)\Ask.com\Updater\Updater.exe
18:49:23.0991 4968 C:\Program Files (x86)\Ask.com\Updater\Updater.exe - ok
18:49:23.0991 4968 [ C5A75EB48E2344ABDC162BDA79E16841 ] C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
18:49:23.0991 4968 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe - ok
18:49:24.0006 4968 [ FACE86ABDF4CE94989A9DA4849498EC7 ] C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbam.exe
18:49:24.0006 4968 C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbam.exe - ok
18:49:24.0006 4968 [ 00D1F89836927C0F2E37321E6B441FCE ] C:\Windows\SysWOW64\msxml3.dll
18:49:24.0006 4968 C:\Windows\SysWOW64\msxml3.dll - ok
18:49:24.0022 4968 [ CE07AF86AA72F4AE964239DE0DABE738 ] C:\Windows\System32\msxml3.dll
18:49:24.0022 4968 C:\Windows\System32\msxml3.dll - ok
18:49:24.0022 4968 [ DC5B5D3A1BF59A74ECA9C2EBB34574BE ] C:\Program Files\Microsoft Security Client\MsMpRes.dll
18:49:24.0022 4968 C:\Program Files\Microsoft Security Client\MsMpRes.dll - ok
18:49:24.0022 4968 [ 0CCA9F023E7DC078D7CFBF024655AB7F ] C:\Windows\System32\d3d10warp.dll
18:49:24.0022 4968 C:\Windows\System32\d3d10warp.dll - ok
18:49:24.0037 4968 [ 07221658D3EBC288C29B8156C43B6320 ] C:\Program Files (x86)\PictureMover\Bin\Core.dll
18:49:24.0037 4968 C:\Program Files (x86)\PictureMover\Bin\Core.dll - ok
18:49:24.0037 4968 [ 3819AD4329303EAC88480CA16A650735 ] C:\Windows\System32\UIAnimation.dll
18:49:24.0037 4968 C:\Windows\System32\UIAnimation.dll - ok
18:49:24.0053 4968 [ E5F7C30EDF0892667933BE879F067D67 ] C:\Windows\SysWOW64\msvcr100_clr0400.dll
18:49:24.0053 4968 C:\Windows\SysWOW64\msvcr100_clr0400.dll - ok
18:49:24.0053 4968 [ 1511A4E8FFACFF9CEBBB02E20E5054F1 ] C:\Program Files (x86)\DAEMON Tools Lite\DTCommonRes.dll
18:49:24.0053 4968 C:\Program Files (x86)\DAEMON Tools Lite\DTCommonRes.dll - ok
18:49:24.0069 4968 [ D3C8C6B6DB123B0E51ECFFF0F6DF145E ] C:\Windows\assembly\NativeImages_v2.0.50727_64\mscorlib\9a7b48ad2929bc93362ec42cd4573f87\mscorlib.ni.dll
18:49:24.0069 4968 C:\Windows\assembly\NativeImages_v2.0.50727_64\mscorlib\9a7b48ad2929bc93362ec42cd4573f87\mscorlib.ni.dll - ok
18:49:24.0069 4968 [ 550BF4ACD6FC3F41DC5A83EF31B9F9B4 ] C:\Windows\System32\wmploc.DLL
18:49:24.0069 4968 C:\Windows\System32\wmploc.DLL - ok
18:49:24.0084 4968 [ 8898C95862D03D16B2A06DB4DB6BB6B2 ] C:\Windows\SysWOW64\ExplorerFrame.dll
18:49:24.0084 4968 C:\Windows\SysWOW64\ExplorerFrame.dll - ok
18:49:24.0084 4968 [ 0A94DE4AA9864D312E60D747FD249ABE ] C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsec.dll
18:49:24.0084 4968 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsec.dll - ok
18:49:24.0100 4968 [ AC5DF873913B00E554D8F553459BC431 ] C:\Windows\System32\qmgrprxy.dll
18:49:24.0100 4968 C:\Windows\System32\qmgrprxy.dll - ok
18:49:24.0100 4968 [ 85B45B4B285B159ACDB355FC8C1E8925 ] C:\Windows\SysWOW64\qmgrprxy.dll
18:49:24.0100 4968 C:\Windows\SysWOW64\qmgrprxy.dll - ok
18:49:24.0100 4968 [ 6E1F8165C365D35C8E3C045AF0CDD481 ] C:\Windows\SysWOW64\duser.dll
18:49:24.0100 4968 C:\Windows\SysWOW64\duser.dll - ok
18:49:24.0115 4968 [ 4FB1F2F9B02FA1138CACD2DEA3F5AEC8 ] C:\Windows\System32\riched20.dll
18:49:24.0115 4968 C:\Windows\System32\riched20.dll - ok
18:49:24.0115 4968 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
18:49:24.0115 4968 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe - ok
18:49:24.0131 4968 [ 93812FDC01AA864195816CD814445F95 ] C:\Program Files\Microsoft Security Client\sqmapi.dll
18:49:24.0131 4968 C:\Program Files\Microsoft Security Client\sqmapi.dll - ok
18:49:24.0131 4968 [ EE06B85BC69F18826302348A2AD089E0 ] C:\Windows\SysWOW64\dui70.dll
18:49:24.0131 4968 C:\Windows\SysWOW64\dui70.dll - ok
18:49:24.0147 4968 [ 0470997A5ADC2FCDDCB3461D92073FAA ] C:\Windows\winsxs\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7600.17007_none_72f44f3186198a88\GdiPlus.dll
18:49:24.0147 4968 C:\Windows\winsxs\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7600.17007_none_72f44f3186198a88\GdiPlus.dll - ok
18:49:24.0147 4968 [ CB21CD39637AC13F3455454B2F648257 ] C:\Windows\System32\msvcr100_clr0400.dll
18:49:24.0147 4968 C:\Windows\System32\msvcr100_clr0400.dll - ok
18:49:24.0162 4968 [ 3A2F5C8666F08B31C61DBAE9C297551C ] C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorjit.dll
18:49:24.0162 4968 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorjit.dll - ok
18:49:24.0162 4968 [ D7CEAEDD5F75D2C8A2E80887D7C114CE ] C:\Windows\System32\webcheck.dll
18:49:24.0162 4968 C:\Windows\System32\webcheck.dll - ok
18:49:24.0162 4968 [ E6F66F31422C44EDC00D9C9329E7DF60 ] C:\Windows\System32\SyncCenter.dll
18:49:24.0162 4968 C:\Windows\System32\SyncCenter.dll - ok
18:49:24.0178 4968 [ 4F20D081F9C9B91730EE5CB84E9AC8C4 ] C:\Windows\System32\blackbox.dll
18:49:24.0178 4968 C:\Windows\System32\blackbox.dll - ok
18:49:24.0178 4968 [ BE33E6A340B7C740226C28B177857948 ] C:\Windows\Microsoft.NET\Framework64\v2.0.50727\diasymreader.dll
18:49:24.0178 4968 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\diasymreader.dll - ok
18:49:24.0193 4968 [ E4024CCF225A936207294DE50925D4F6 ] C:\Program Files (x86)\Google\Update\1.3.21.123\goopdateres_en.dll
18:49:24.0193 4968 C:\Program Files (x86)\Google\Update\1.3.21.123\goopdateres_en.dll - ok
18:49:24.0193 4968 [ 07221658D3EBC288C29B8156C43B6320 ] C:\Users\Glory\AppData\Roaming\PictureMover\Bin\Core.dll
18:49:24.0193 4968 C:\Users\Glory\AppData\Roaming\PictureMover\Bin\Core.dll - ok
18:49:24.0209 4968 [ 58C91CCA61A948DC6E789C93C05A1D6F ] C:\Program Files (x86)\Hewlett-Packard\HP Health Check\HPHC_Service.exe
18:49:24.0209 4968 C:\Program Files (x86)\Hewlett-Packard\HP Health Check\HPHC_Service.exe - ok
18:49:24.0209 4968 [ 8B886A0AC14EAA8599142887991A5A2E ] C:\Windows\System32\imapi2.dll
18:49:24.0209 4968 C:\Windows\System32\imapi2.dll - ok
18:49:24.0225 4968 [ C8FE465986FE1E242C92B6B76CDFEC6F ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System\6ec488b702c100ad5d3e712db0e88554\System.ni.dll
18:49:24.0225 4968 C:\Windows\assembly\NativeImages_v2.0.50727_64\System\6ec488b702c100ad5d3e712db0e88554\System.ni.dll - ok
18:49:24.0225 4968 [ F0AAB2A76A7AF04C70A818E96BAF3E64 ] C:\Windows\System32\hgcpl.dll
18:49:24.0225 4968 C:\Windows\System32\hgcpl.dll - ok
18:49:24.0240 4968 [ 2E40E4502A92A02B31D3BBBB8F5FB773 ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.ServiceProce#\993018172a83c2431adeb6a309aa27cf\System.ServiceProcess.ni.dll
18:49:24.0240 4968 C:\Windows\assembly\NativeImages_v2.0.50727_64\System.ServiceProce#\993018172a83c2431adeb6a309aa27cf\System.ServiceProcess.ni.dll - ok
18:49:24.0240 4968 [ 4F73C6528397A014D5620AED041533CF ] C:\Program Files (x86)\DAEMON Tools Lite\Engine.dll
18:49:24.0240 4968 C:\Program Files (x86)\DAEMON Tools Lite\Engine.dll - ok
18:49:24.0256 4968 [ 06A7422224D9865A5613710A089987DF ] C:\Windows\System32\provsvc.dll
18:49:24.0256 4968 C:\Windows\System32\provsvc.dll - ok
18:49:24.0256 4968 [ BFEB59D2C6A56F0C13BFA40CDF4B8668 ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Runtime.Remo#\17bf0932e5c6cb8ba59046456f13328d\System.Runtime.Remoting.ni.dll
18:49:24.0256 4968 C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Runtime.Remo#\17bf0932e5c6cb8ba59046456f13328d\System.Runtime.Remoting.ni.dll - ok
18:49:24.0256 4968 [ B6411CED931AFD059E48C52DBFBA95B4 ] C:\Windows\System32\P2P.dll
18:49:24.0256 4968 C:\Windows\System32\P2P.dll - ok
18:49:24.0271 4968 [ 046B2673767CA626E2CFB7FDF735E9E8 ] C:\Windows\System32\ListSvc.dll
18:49:24.0271 4968 C:\Windows\System32\ListSvc.dll - ok
18:49:24.0271 4968 [ EFEA483CB72A27915FA97AF700FDA05C ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Drawing\6ea40f2da0e2321428a7bdd387e475fd\System.Drawing.ni.dll
18:49:24.0271 4968 C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Drawing\6ea40f2da0e2321428a7bdd387e475fd\System.Drawing.ni.dll - ok
18:49:24.0287 4968 [ DD6C73502C5CE772ACA11BF1FE9389DB ] C:\Windows\assembly\NativeImages_v2.0.50727_64\WindowsBase\7cdb4f5d0ff25c672e52a333ee394bb8\WindowsBase.ni.dll
18:49:24.0287 4968 C:\Windows\assembly\NativeImages_v2.0.50727_64\WindowsBase\7cdb4f5d0ff25c672e52a333ee394bb8\WindowsBase.ni.dll - ok
18:49:24.0287 4968 [ DF605F8960EE10B50801B1BF34CAC3AE ] C:\Program Files (x86)\Common Files\System\Ole DB\oledb32.dll
18:49:24.0287 4968 C:\Program Files (x86)\Common Files\System\Ole DB\oledb32.dll - ok
18:49:24.0303 4968 [ A99C4D1B5E7E794EC5779CF14F431932 ] C:\Windows\SysWOW64\msdart.dll
18:49:24.0303 4968 C:\Windows\SysWOW64\msdart.dll - ok
18:49:24.0303 4968 [ 8859C0357D3C1499BEF65C7D5BBF7A40 ] C:\Program Files (x86)\Common Files\System\Ole DB\oledb32r.dll
18:49:24.0303 4968 C:\Program Files (x86)\Common Files\System\Ole DB\oledb32r.dll - ok
18:49:24.0318 4968 [ A0C69A8661CCEB20DB60A4FA35A2FBE4 ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Xml\c40cbbdf7af03daedb16f4d9ef1b6f5f\System.Xml.ni.dll
18:49:24.0318 4968 C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Xml\c40cbbdf7af03daedb16f4d9ef1b6f5f\System.Xml.ni.dll - ok
18:49:24.0318 4968 [ ED12110CD5BFE686F645E145A7DD28C5 ] C:\Windows\SysWOW64\comsvcs.dll
18:49:24.0318 4968 C:\Windows\SysWOW64\comsvcs.dll - ok
18:49:24.0318 4968 [ 3EAC4455472CC2C97107B5291E0DCAFE ] C:\Windows\System32\pnrpsvc.dll
18:49:24.0318 4968 C:\Windows\System32\pnrpsvc.dll - ok
18:49:24.0334 4968 [ F10E5311E5093FA3C00FF88C54C32FCA ] C:\Windows\SysWOW64\atl.dll
18:49:24.0334 4968 C:\Windows\SysWOW64\atl.dll - ok
18:49:24.0334 4968 [ 5A72F87F75A5EA7B46DC3AD87302FE00 ] C:\Windows\SysWOW64\msjetoledb40.dll
18:49:24.0334 4968 C:\Windows\SysWOW64\msjetoledb40.dll - ok
18:49:24.0349 4968 [ C9380B96A0D51B8109D19D13467ADA0B ] C:\Windows\SysWOW64\msjet40.dll
18:49:24.0349 4968 C:\Windows\SysWOW64\msjet40.dll - ok
18:49:24.0349 4968 [ 5F1F35F2F995FA8615438AB922B0BA7B ] C:\Program Files\Internet Explorer\ieproxy.dll
18:49:24.0349 4968 C:\Program Files\Internet Explorer\ieproxy.dll - ok
18:49:24.0365 4968 [ 48A6CA43A5C921C465F70D9B42B3EF1A ] C:\Windows\System32\sqmapi.dll
18:49:24.0365 4968 C:\Windows\System32\sqmapi.dll - ok
18:49:24.0365 4968 [ 2D444C361F758D6CC4B2F51655ECF528 ] C:\Windows\System32\wmpps.dll
18:49:24.0365 4968 C:\Windows\System32\wmpps.dll - ok
18:49:24.0381 4968 [ 044CB0374E0DA180A29278901EB259E1 ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Windows.Forms\ced1d3b0790804426463ad06a61f180e\System.Windows.Forms.ni.dll
18:49:24.0381 4968 C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Windows.Forms\ced1d3b0790804426463ad06a61f180e\System.Windows.Forms.ni.dll - ok
18:49:24.0381 4968 [ DD37622A478EDFE1D43DF561A19C02DD ] C:\Windows\System32\wmpmde.dll
18:49:24.0381 4968 C:\Windows\System32\wmpmde.dll - ok
18:49:24.0396 4968 [ CDAD3376DFF3D9AC7FDCBE2B94B0D3C8 ] C:\Windows\System32\shfolder.dll
18:49:24.0396 4968 C:\Windows\System32\shfolder.dll - ok
18:49:24.0396 4968 [ 1F55C7C1E338047DC5E329011A781FB3 ] C:\Windows\SysWOW64\mswstr10.dll
18:49:24.0396 4968 C:\Windows\SysWOW64\mswstr10.dll - ok
18:49:24.0396 4968 [ 870285A6C2429CFC47FF95DA49313664 ] C:\Windows\SysWOW64\msjter40.dll
18:49:24.0396 4968 C:\Windows\SysWOW64\msjter40.dll - ok
18:49:24.0412 4968 [ 0219B6F2329F4C1BC24580C83D0F3645 ] C:\Windows\SysWOW64\msjint40.dll
18:49:24.0412 4968 C:\Windows\SysWOW64\msjint40.dll - ok
18:49:24.0412 4968 [ D5EB3F151B8F28F0A5C8BBB7E13ECD6A ] C:\Windows\assembly\NativeImages_v2.0.50727_64\PresentationCore\ea90a194614680a484a25b6ccc4df754\PresentationCore.ni.dll
18:49:24.0412 4968 C:\Windows\assembly\NativeImages_v2.0.50727_64\PresentationCore\ea90a194614680a484a25b6ccc4df754\PresentationCore.ni.dll - ok
18:49:24.0427 4968 [ EC7EB038EA11E0D04214D143E0CB6002 ] C:\Windows\System32\WinSATAPI.dll
18:49:24.0427 4968 C:\Windows\System32\WinSATAPI.dll - ok
18:49:24.0427 4968 [ 927463ECB02179F88E4B9A17568C63C3 ] C:\Windows\System32\p2psvc.dll
18:49:24.0427 4968 C:\Windows\System32\p2psvc.dll - ok
18:49:24.0443 4968 [ 3AEE02CEDAA3ACD14F9D7E038E44D6D1 ] C:\Windows\System32\P2PGraph.dll
18:49:24.0443 4968 C:\Windows\System32\P2PGraph.dll - ok
18:49:24.0443 4968 [ D64D99EC088B54FFE8EE67A480386C20 ] C:\Windows\Microsoft.NET\Framework64\v2.0.50727\Culture.dll
18:49:24.0443 4968 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\Culture.dll - ok
18:49:24.0459 4968 [ F774DB03213C2014363DE8D22DD6BBEF ] C:\Windows\SysWOW64\msjtes40.dll
18:49:24.0459 4968 C:\Windows\SysWOW64\msjtes40.dll - ok
18:49:24.0459 4968 [ 73D1680C94C1B57F6D8E49B2AE8122ED ] C:\Windows\SysWOW64\vbajet32.dll
18:49:24.0459 4968 C:\Windows\SysWOW64\vbajet32.dll - ok
18:49:24.0459 4968 ============================================================
18:49:24.0459 4968 Scan finished
18:49:24.0459 4968 ============================================================
18:49:24.0474 4960 Detected object count: 4
18:49:24.0474 4960 Actual detected object count: 4
18:53:28.0380 4960 C:\Program Files (x86)\Hewlett-Packard\HP Health Check\hphc_service.exe - copied to quarantine
18:53:28.0471 4960 HKLM\SYSTEM\ControlSet001\services\HP Health Check Service - will be deleted on reboot
18:53:28.0506 4960 HKLM\SYSTEM\ControlSet002\services\HP Health Check Service - will be deleted on reboot
18:53:28.0720 4960 C:\Program Files (x86)\Hewlett-Packard\HP Health Check\hphc_service.exe - will be deleted on reboot
18:53:28.0720 4960 HP Health Check Service ( UnsignedFile.Multi.Generic ) - User select action: Delete
18:53:28.0816 4960 C:\Program Files\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe - copied to quarantine
18:53:28.0866 4960 HKLM\SYSTEM\ControlSet001\services\HPWMISVC - will be deleted on reboot
18:53:28.0897 4960 HKLM\SYSTEM\ControlSet002\services\HPWMISVC - will be deleted on reboot
18:53:28.0903 4960 C:\Program Files\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe - will be deleted on reboot
18:53:28.0903 4960 HPWMISVC ( UnsignedFile.Multi.Generic ) - User select action: Delete
18:53:28.0986 4960 C:\Program Files\Palm, Inc\novacomd\amd64\novacomd.exe - copied to quarantine
18:53:29.0033 4960 HKLM\SYSTEM\ControlSet001\services\NovacomD - will be deleted on reboot
18:53:29.0034 4960 HKLM\SYSTEM\ControlSet002\services\NovacomD - will be deleted on reboot
18:53:29.0040 4960 C:\Program Files\Palm, Inc\novacomd\amd64\novacomd.exe - will be deleted on reboot
18:53:29.0040 4960 NovacomD ( UnsignedFile.Multi.Generic ) - User select action: Delete
18:53:29.0234 4960 \Device\Harddisk0\DR0\TDLFS\cmd.dll - copied to quarantine
18:53:29.0529 4960 \Device\Harddisk0\DR0\TDLFS\cmd64.dll - copied to quarantine
18:53:29.0690 4960 \Device\Harddisk0\DR0\TDLFS\drv32 - copied to quarantine
18:53:41.0440 4960 \Device\Harddisk0\DR0\TDLFS\drv64 - copied to quarantine
18:53:41.0677 4960 \Device\Harddisk0\DR0\TDLFS\servers.dat - copied to quarantine
18:53:41.0740 4960 \Device\Harddisk0\DR0\TDLFS\config.ini - copied to quarantine
18:53:41.0766 4960 \Device\Harddisk0\DR0\TDLFS\ldr16 - copied to quarantine
18:53:42.0029 4960 \Device\Harddisk0\DR0\TDLFS\ldr32 - copied to quarantine
18:53:46.0684 4960 \Device\Harddisk0\DR0\TDLFS\ldr64 - copied to quarantine
18:53:46.0810 4960 \Device\Harddisk0\DR0\TDLFS\s - copied to quarantine
18:53:46.0824 4960 \Device\Harddisk0\DR0\TDLFS\ldrm - copied to quarantine
18:53:46.0832 4960 \Device\Harddisk0\DR0\TDLFS\u - copied to quarantine
18:53:46.0839 4960 \Device\Harddisk0\DR0\TDLFS - deleted
18:53:46.0839 4960 \Device\Harddisk0\DR0 ( TDSS File System ) - User select action: Delete
18:54:08.0424 3976 Deinitialize success
  • 0

Advertisements


#56
gg101

gg101

    Member

  • Topic Starter
  • Member
  • PipPip
  • 41 posts
here is the second one....

18:57:10.0587 1060 TDSS rootkit removing tool 2.8.15.0 Oct 31 2012 21:47:35
18:57:11.0445 1060 ============================================================
18:57:11.0445 1060 Current date / time: 2012/11/12 18:57:11.0445
18:57:11.0445 1060 SystemInfo:
18:57:11.0445 1060
18:57:11.0445 1060 OS Version: 6.1.7600 ServicePack: 0.0
18:57:11.0445 1060 Product type: Workstation
18:57:11.0445 1060 ComputerName: GLORY-PC
18:57:11.0445 1060 UserName: Glory
18:57:11.0445 1060 Windows directory: C:\Windows
18:57:11.0445 1060 System windows directory: C:\Windows
18:57:11.0445 1060 Running under WOW64
18:57:11.0445 1060 Processor architecture: Intel x64
18:57:11.0445 1060 Number of processors: 2
18:57:11.0445 1060 Page size: 0x1000
18:57:11.0445 1060 Boot type: Normal boot
18:57:11.0445 1060 ============================================================
18:57:16.0983 1060 BG loaded
18:57:18.0231 1060 Drive \Device\Harddisk0\DR0 - Size: 0x4A85D56000 (298.09 Gb), SectorSize: 0x200, Cylinders: 0x9801, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
18:57:18.0309 1060 ============================================================
18:57:18.0309 1060 \Device\Harddisk0\DR0:
18:57:18.0372 1060 MBR partitions:
18:57:18.0372 1060 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x63800
18:57:18.0372 1060 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x64000, BlocksNum 0x236FA000
18:57:18.0372 1060 \Device\Harddisk0\DR0\Partition3: MBR, Type 0x7, StartLBA 0x2375E000, BlocksNum 0x1C9C800
18:57:18.0372 1060 \Device\Harddisk0\DR0\Partition4: MBR, Type 0xC, StartLBA 0x253FA800, BlocksNum 0x33AB0
18:57:18.0372 1060 ============================================================
18:57:18.0528 1060 C: <-> \Device\Harddisk0\DR0\Partition2
18:57:20.0883 1060 D: <-> \Device\Harddisk0\DR0\Partition3
18:57:21.0944 1060 E: <-> \Device\Harddisk0\DR0\Partition4
18:57:21.0944 1060 ============================================================
18:57:21.0944 1060 Initialize success
18:57:21.0944 1060 ============================================================
  • 0

#57
gg101

gg101

    Member

  • Topic Starter
  • Member
  • PipPip
  • 41 posts
ok, here is my OTL log for you...


OTL logfile created on: 11/12/2012 7:10:05 PM - Run 3
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Glory\Desktop
64bit- Home Premium Edition (Version = 6.1.7600) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

2.93 Gb Total Physical Memory | 1.71 Gb Available Physical Memory | 58.24% Memory free
5.86 Gb Paging File | 4.42 Gb Available in Paging File | 75.30% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 283.49 Gb Total Space | 192.44 Gb Free Space | 67.88% Space Free | Partition Type: NTFS
Drive D: | 14.31 Gb Total Space | 2.36 Gb Free Space | 16.50% Space Free | Partition Type: NTFS
Drive E: | 99.34 Mb Total Space | 92.66 Mb Free Space | 93.28% Space Free | Partition Type: FAT32
Drive G: | 1.37 Gb Total Space | 0.00 Gb Free Space | 0.00% Space Free | Partition Type: UDF
Drive H: | 1.37 Gb Total Space | 0.00 Gb Free Space | 0.00% Space Free | Partition Type: UDF

Computer Name: GLORY-PC | User Name: Glory | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Quick Scan | Include 64bit Scans
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2012/11/09 12:33:02 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\Glory\Desktop\OTL.exe
PRC - [2012/11/09 12:25:56 | 000,997,320 | ---- | M] () -- C:\Program Files (x86)\AVG Secure Search\vprot.exe
PRC - [2012/11/09 12:25:56 | 000,711,112 | ---- | M] () -- C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\13.2.0\ToolbarUpdater.exe
PRC - [2012/10/30 16:50:59 | 004,297,136 | ---- | M] (AVAST Software) -- C:\Program Files\AVAST Software\Avast\AvastUI.exe
PRC - [2012/10/30 16:50:59 | 000,044,808 | ---- | M] (AVAST Software) -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe
PRC - [2012/09/26 11:00:00 | 003,569,512 | ---- | M] (Sendori) -- C:\Program Files (x86)\Sendori\sndappv2.exe
PRC - [2012/09/26 11:00:00 | 000,195,944 | ---- | M] (Sendori, Inc.) -- C:\Program Files (x86)\Sendori\SendoriUp.exe
PRC - [2012/09/26 11:00:00 | 000,118,632 | ---- | M] (Sendori, Inc.) -- C:\Program Files (x86)\Sendori\SendoriSvc.exe
PRC - [2012/09/26 11:00:00 | 000,082,792 | ---- | M] (Sendori, Inc.) -- C:\Program Files (x86)\Sendori\SendoriTray.exe
PRC - [2012/09/26 11:00:00 | 000,015,208 | ---- | M] (sendori) -- C:\Program Files (x86)\Sendori\Sendori.Service.exe
PRC - [2012/08/28 07:52:56 | 003,671,904 | ---- | M] (DT Soft Ltd) -- C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe
PRC - [2011/07/26 18:23:20 | 000,397,992 | ---- | M] (Ask) -- C:\Program Files (x86)\Ask.com\Updater\Updater.exe
PRC - [2009/05/24 21:26:22 | 000,430,080 | ---- | M] (Hewlett-Packard Company) -- C:\Program Files (x86)\PictureMover\Bin\PictureMover.exe


========== Modules (No Company Name) ==========

MOD - [2012/11/09 12:26:01 | 000,134,600 | ---- | M] () -- C:\Program Files (x86)\Common Files\AVG Secure Search\SiteSafetyInstaller\13.2.0\SiteSafety.dll
MOD - [2012/11/09 12:25:57 | 000,566,728 | ---- | M] () -- C:\Program Files (x86)\Common Files\AVG Secure Search\DNTInstaller\13.2.0\avgdttbx.dll
MOD - [2012/11/09 12:25:56 | 000,997,320 | ---- | M] () -- C:\Program Files (x86)\AVG Secure Search\vprot.exe
MOD - [2009/07/13 19:15:45 | 000,364,544 | ---- | M] () -- C:\Windows\SysWOW64\msjetoledb40.dll
MOD - [2009/05/24 21:34:02 | 001,703,936 | ---- | M] () -- C:\Users\Glory\AppData\Roaming\PictureMover\EN-US\Presentation.dll
MOD - [2009/05/24 21:25:22 | 003,760,128 | ---- | M] () -- C:\Users\Glory\AppData\Roaming\PictureMover\Bin\Core.dll


========== Services (SafeList) ==========

SRV:64bit: - [2012/10/30 16:50:59 | 000,044,808 | ---- | M] (AVAST Software) [Auto | Running] -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe -- (avast! Antivirus)
SRV:64bit: - [2012/09/12 20:21:48 | 000,368,896 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- c:\Program Files\Microsoft Security Client\NisSrv.exe -- (NisSrv)
SRV:64bit: - [2012/09/12 20:21:48 | 000,022,072 | ---- | M] (Microsoft Corporation) [Auto | Running] -- c:\Program Files\Microsoft Security Client\MsMpEng.exe -- (MsMpSvc)
SRV:64bit: - [2009/11/17 20:14:26 | 000,098,208 | ---- | M] (Andrea Electronics Corporation) [Auto | Running] -- C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe -- (AERTFilters)
SRV:64bit: - [2009/07/13 19:41:27 | 001,011,712 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV - [2012/11/09 12:25:56 | 000,711,112 | ---- | M] () [Auto | Running] -- C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\13.2.0\ToolbarUpdater.exe -- (vToolbarUpdater13.2.0)
SRV - [2012/09/26 11:00:00 | 003,569,512 | ---- | M] (Sendori) [Auto | Running] -- C:\Program Files (x86)\Sendori\sndappv2.exe -- (sndappv2)
SRV - [2012/09/26 11:00:00 | 000,118,632 | ---- | M] (Sendori, Inc.) [Auto | Running] -- C:\Program Files (x86)\Sendori\SendoriSvc.exe -- (Application Sendori)
SRV - [2012/09/26 11:00:00 | 000,015,208 | ---- | M] (sendori) [Auto | Running] -- C:\Program Files (x86)\Sendori\Sendori.Service.exe -- (Service Sendori)
SRV - [2011/07/04 12:26:05 | 000,655,624 | ---- | M] (Acresso Software Inc.) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe -- (FLEXnet Licensing Service)
SRV - [2010/03/18 13:16:28 | 000,130,384 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_32)
SRV - [2010/01/04 12:03:42 | 000,238,328 | ---- | M] (WildTangent, Inc.) [On_Demand | Stopped] -- C:\Program Files (x86)\HP Games\HP Game Console\GameConsoleService.exe -- (GameConsoleService)
SRV - [2009/06/10 15:23:09 | 000,066,384 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32)


========== Driver Services (SafeList) ==========

DRV:64bit: - [2012/11/09 12:26:01 | 000,030,568 | ---- | M] (AVG Technologies) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\avgtpx64.sys -- (avgtp)
DRV:64bit: - [2012/10/30 16:51:56 | 000,059,728 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\aswTdi.sys -- (aswTdi)
DRV:64bit: - [2012/10/30 16:51:55 | 000,984,144 | ---- | M] (AVAST Software) [File_System | System | Running] -- C:\Windows\SysNative\drivers\aswSnx.sys -- (aswSnx)
DRV:64bit: - [2012/10/30 16:51:55 | 000,370,288 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\aswSP.sys -- (aswSP)
DRV:64bit: - [2012/10/30 16:51:55 | 000,071,600 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\Windows\SysNative\drivers\aswMonFlt.sys -- (aswMonFlt)
DRV:64bit: - [2012/10/30 16:51:53 | 000,025,232 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\Windows\SysNative\drivers\aswFsBlk.sys -- (aswFsBlk)
DRV:64bit: - [2012/10/15 09:59:28 | 000,054,072 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\aswRdr2.sys -- (aswRdr)
DRV:64bit: - [2012/09/16 22:46:10 | 000,283,200 | ---- | M] (DT Soft Ltd) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\dtsoftbus01.sys -- (dtsoftbus01)
DRV:64bit: - [2012/08/30 21:03:48 | 000,128,456 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\NisDrvWFP.sys -- (NisDrv)
DRV:64bit: - [2012/03/01 00:54:38 | 000,022,896 | ---- | M] (Microsoft Corporation) [Recognizer | Boot | Unknown] -- C:\Windows\SysNative\drivers\fs_rec.sys -- (Fs_Rec)
DRV:64bit: - [2011/03/11 00:22:41 | 000,107,904 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsata.sys -- (amdsata)
DRV:64bit: - [2011/03/11 00:22:40 | 000,027,008 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amdxata.sys -- (amdxata)
DRV:64bit: - [2010/08/25 19:36:04 | 010,611,552 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\igdkmd64.sys -- (igfx)
DRV:64bit: - [2010/03/05 13:57:18 | 000,144,896 | ---- | M] (Intel® Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\IntcHdmi.sys -- (IntcHdmiAddService)
DRV:64bit: - [2010/02/05 18:49:04 | 000,316,464 | ---- | M] (Synaptics Incorporated) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\SynTP.sys -- (SynTP)
DRV:64bit: - [2010/01/19 19:55:34 | 001,088,544 | ---- | M] (Realtek Semiconductor Corporation ) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\rtl8192se.sys -- (rtl8192se)
DRV:64bit: - [2009/11/27 19:45:00 | 000,295,424 | ---- | M] (Realtek ) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\Rt64win7.sys -- (RTL8167)
DRV:64bit: - [2009/10/13 12:16:40 | 000,409,624 | ---- | M] (Intel Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\iaStor.sys -- (iaStor)
DRV:64bit: - [2009/09/22 19:39:00 | 000,225,280 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\RtsUStor.sys -- (RSUSBSTOR)
DRV:64bit: - [2009/07/13 19:52:20 | 000,194,128 | ---- | M] (AMD Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsbs.sys -- (amdsbs)
DRV:64bit: - [2009/07/13 19:48:04 | 000,065,600 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas2.sys -- (LSI_SAS2)
DRV:64bit: - [2009/07/13 19:47:48 | 000,077,888 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\HpSAMD.sys -- (HpSAMD)
DRV:64bit: - [2009/07/13 19:45:55 | 000,024,656 | ---- | M] (Promise Technology) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\stexstor.sys -- (stexstor)
DRV:64bit: - [2009/07/13 17:31:10 | 000,109,056 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\sdbus.sys -- (sdbus)
DRV:64bit: - [2009/06/10 15:01:11 | 001,485,312 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\VSTDPV6.SYS -- (SrvHsfV92)
DRV:64bit: - [2009/06/10 15:01:11 | 000,740,864 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\VSTCNXT6.SYS -- (SrvHsfWinac)
DRV:64bit: - [2009/06/10 15:01:11 | 000,292,864 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\VSTAZL6.SYS -- (SrvHsfHDA)
DRV:64bit: - [2009/06/10 14:35:33 | 000,389,120 | ---- | M] (Marvell) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\yk62x64.sys -- (yukonw7)
DRV:64bit: - [2009/06/10 14:35:28 | 005,434,368 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\netw5v64.sys -- (netw5v64)
DRV:64bit: - [2009/06/10 14:34:33 | 003,286,016 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\evbda.sys -- (ebdrv)
DRV:64bit: - [2009/06/10 14:34:28 | 000,468,480 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv)
DRV:64bit: - [2009/06/10 14:34:23 | 000,270,848 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\b57nd60a.sys -- (b57nd60a)
DRV:64bit: - [2009/06/10 14:31:59 | 000,031,232 | ---- | M] (Hauppauge Computer Works, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hcw85cir.sys -- (hcw85cir)
DRV - [2009/09/22 19:39:00 | 000,225,280 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysWOW64\drivers\RtsUStor.sys -- (RSUSBSTOR)
DRV - [2009/07/13 19:19:10 | 000,019,008 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysWOW64\drivers\wimmount.sys -- (WIMMount)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://g.msn.com/HPNOT/1
IE:64bit: - HKLM\..\SearchScopes,DefaultScope = {6A1806CD-94D4-4689-BA73-E35EA1EA9990}
IE:64bit: - HKLM\..\SearchScopes\{27535942-7BB1-4158-AD53-939206F65BE2}: "URL" = http://www.bing.com/...rc=IE-SearchBox
IE:64bit: - HKLM\..\SearchScopes\{53B8828B-3F14-4D12-83C6-86518CDE7E37}: "URL" = http://www.ask.com/w...}&l=dis&o=ushpl
IE:64bit: - HKLM\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = http://www.google.co...g}&sourceid=ie7
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://g.msn.com/HPNOT/1
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://search.gboxapp.com/
IE - HKLM\..\SearchScopes,DefaultScope = {6A1806CD-94D4-4689-BA73-E35EA1EA9990}
IE - HKLM\..\SearchScopes\{27535942-7BB1-4158-AD53-939206F65BE2}: "URL" = http://www.bing.com/...rc=IE-SearchBox
IE - HKLM\..\SearchScopes\{53B8828B-3F14-4D12-83C6-86518CDE7E37}: "URL" = http://www.ask.com/w...}&l=dis&o=ushpl
IE - HKLM\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = http://www.google.co...g}&sourceid=ie7
IE - HKLM\..\SearchScopes\{BB74DE59-BC4C-4172-9AC4-73315F71CFFE}: "URL" = http://search.gboxap...q={searchTerms}

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,bProtector Start Page = http://www.msn.com/?...CID=msnHomepage
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,BrowserMngr Start Page = http://www.msn.com/?...CID=msnHomepage
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.msn.com/?...CID=msnHomepage
IE - HKCU\..\SearchScopes,bProtectorDefaultScope = {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}
IE - HKCU\..\SearchScopes,BrowserMngrDefaultScope = {819E66B8-F9CC-4F4F-B852-84B88C1D4408}
IE - HKCU\..\SearchScopes,DefaultScope = {95B7759C-8C7F-4BF1-B163-73684A933233}
IE - HKCU\..\SearchScopes\{27535942-7BB1-4158-AD53-939206F65BE2}: "URL" = http://www.bing.com/...rc=IE-SearchBox
IE - HKCU\..\SearchScopes\{53B8828B-3F14-4D12-83C6-86518CDE7E37}: "URL" = http://www.ask.com/w...}&l=dis&o=ushpl
IE - HKCU\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = http://www.google.co...g}&sourceid=ie7
IE - HKCU\..\SearchScopes\{819E66B8-F9CC-4F4F-B852-84B88C1D4408}: "URL" = http://www.google.co...1I7GZBN_enUS501
IE - HKCU\..\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233}: "URL" = https://isearch.avg....sa&d=2012-09-16 23:49:23&v=12.2.5.34&sap=dsp&q={searchTerms}
IE - HKCU\..\SearchScopes\{BB74DE59-BC4C-4172-9AC4-73315F71CFFE}: "URL" = http://search.gboxap...q={searchTerms}
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0


========== FireFox ==========

FF:64bit: - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF:64bit: - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0: C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: C:\Windows\SysWOW64\Adobe\Director\np32dsw.dll (Adobe Systems, Inc.)
FF - HKLM\Software\MozillaPlugins\@avg.com/AVG SiteSafety plugin,version=11.0.0.1,application/x-avg-sitesafety-plugin: C:\Program Files (x86)\Common Files\AVG Secure Search\SiteSafetyInstaller\13.2.0\\npsitesafety.dll ()
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files (x86)\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files (x86)\Microsoft Silverlight\4.1.10329.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0: C:\PROGRA~2\MICROS~3\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/SharePoint,version=14.0: C:\PROGRA~2\MICROS~3\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=14.0.8081.0709: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files (x86)\Google\Update\1.3.21.123\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files (x86)\Google\Update\1.3.21.123\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)

FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\[email protected]: C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3 [2010/05/14 23:56:14 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\[email protected]: C:\ProgramData\AVG Secure Search\FireFoxExt\13.2.0.5 [2012/11/09 12:28:17 | 000,000,000 | ---D | M]
FF - HKEY_CURRENT_USER\software\mozilla\Firefox\Extensions\\{b64982b1-d112-42b5-b1e4-d3867c4533f8}: C:\ProgramData\Browser Manager\2.3.787.43\{16cdff19-861d-48e3-a751-d99a27784753}\FirefoxExtension [2012/10/11 05:38:17 | 000,000,000 | ---D | M]

[2012/09/06 19:49:32 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\Mozilla Firefox\extensions

========== Chrome ==========

CHR - homepage: http://www.google.com
CHR - default_search_provider: Google (Enabled)
CHR - default_search_provider: search_url = {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:acceptedSuggestion}{google:originalQueryForSuggestion}{google:assistedQueryStats}{google:searchFieldtrialParameter}sourceid=chrome&ie={inputEncoding}
CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client=chrome&hl={language}&q={searchTerms}&sugkey={google:suggestAPIKeyParameter}
CHR - homepage: http://www.google.com
CHR - plugin: Shockwave Flash (Enabled) = C:\Program Files (x86)\Google\Chrome\Application\23.0.1271.64\PepperFlash\pepflashplayer.dll
CHR - plugin: Chrome Remote Desktop Viewer (Enabled) = internal-remoting-viewer
CHR - plugin: Native Client (Enabled) = C:\Program Files (x86)\Google\Chrome\Application\23.0.1271.64\ppGoogleNaClPluginChrome.dll
CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Program Files (x86)\Google\Chrome\Application\23.0.1271.64\pdf.dll
CHR - plugin: Application Manager (Enabled) = C:\Users\Glory\AppData\Local\Google\Chrome\User Data\Default\Extensions\pgafcinpmmpklohkojmllohdhomoefph\1.0_0\spext.dll
CHR - plugin: Adobe Acrobat (Enabled) = C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Browser\nppdf32.dll
CHR - plugin: Java Deployment Toolkit 6.0.260.3 (Enabled) = C:\Program Files (x86)\Java\jre6\bin\new_plugin\npdeployJava1.dll
CHR - plugin: Java™ Platform SE 6 U26 (Enabled) = C:\Program Files (x86)\Java\jre6\bin\new_plugin\npjp2.dll
CHR - plugin: Microsoft Office 2010 (Enabled) = C:\PROGRA~2\MICROS~3\Office14\NPAUTHZ.DLL
CHR - plugin: Microsoft Office 2010 (Enabled) = C:\PROGRA~2\MICROS~3\Office14\NPSPWRAP.DLL
CHR - plugin: AVG SiteSafety plugin (Enabled) = C:\Program Files (x86)\Common Files\AVG Secure Search\SiteSafetyInstaller\12.2.6\\npsitesafety.dll
CHR - plugin: Google Update (Enabled) = C:\Program Files (x86)\Google\Update\1.3.21.123\npGoogleUpdate3.dll
CHR - plugin: Windows Live\u00AE Photo Gallery (Enabled) = C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
CHR - plugin: Shockwave for Director (Enabled) = C:\Windows\SysWOW64\Adobe\Director\np32dsw.dll
CHR - plugin: Silverlight Plug-In (Enabled) = c:\Program Files (x86)\Microsoft Silverlight\4.1.10329.0\npctrl.dll
CHR - Extension: YouTube = C:\Users\Glory\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_1\
CHR - Extension: Google Search = C:\Users\Glory\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_1\
CHR - Extension: avast! WebRep = C:\Users\Glory\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\7.0.1474_0\
CHR - Extension: AVG Secure Search = C:\Users\Glory\AppData\Local\Google\Chrome\User Data\Default\Extensions\ndibdjnfmopecpmkdieinmbadjfpblof\13.2.0.5_0\
CHR - Extension: AVG Secure Search = C:\Users\Glory\AppData\Local\Google\Chrome\User Data\Default\Extensions\ndibdjnfmopecpmkdieinmbadjfpblof\13.2.0.5_0\.bak
CHR - Extension: Settings Protector = C:\Users\Glory\AppData\Local\Google\Chrome\User Data\Default\Extensions\pgafcinpmmpklohkojmllohdhomoefph\1.0_0\
CHR - Extension: Gmail = C:\Users\Glory\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_1\

O1 HOSTS File: ([2012/11/09 09:18:30 | 000,000,027 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2:64bit: - BHO: (avast! WebRep) - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
O2:64bit: - BHO: (Google Toolbar Helper) - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - No CLSID value found.
O2 - BHO: (avast! WebRep) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
O2 - BHO: (AVG Security Toolbar) - {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files (x86)\AVG Secure Search\13.2.0.5\AVG Secure Search_toolbar.dll ()
O2 - BHO: (Microsoft Live Search Toolbar Helper) - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - c:\Program Files (x86)\MSN\Toolbar\3.0.0566.0\msneshellx.dll (Microsoft Corp.)
O3:64bit: - HKLM\..\Toolbar: (Google Toolbar) - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
O3:64bit: - HKLM\..\Toolbar: (avast! WebRep) - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
O3 - HKLM\..\Toolbar: (Microsoft Live Search Toolbar) - {1E61ED7C-7CB8-49d6-B9E9-AB4C880C8414} - c:\Program Files (x86)\MSN\Toolbar\3.0.0566.0\msneshellx.dll (Microsoft Corp.)
O3 - HKLM\..\Toolbar: (avast! WebRep) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
O3 - HKLM\..\Toolbar: (AVG Security Toolbar) - {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files (x86)\AVG Secure Search\13.2.0.5\AVG Secure Search_toolbar.dll ()
O3:64bit: - HKCU\..\Toolbar\WebBrowser: (Google Toolbar) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
O4:64bit: - HKLM..\Run: [HotKeysCmds] C:\Windows\SysNative\hkcmd.exe (Intel Corporation)
O4:64bit: - HKLM..\Run: [HP Quick Launch] C:\Program Files\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe (Hewlett-Packard Company)
O4:64bit: - HKLM..\Run: [IgfxTray] C:\Windows\SysNative\igfxtray.exe (Intel Corporation)
O4:64bit: - HKLM..\Run: [MSC] c:\Program Files\Microsoft Security Client\msseces.exe (Microsoft Corporation)
O4:64bit: - HKLM..\Run: [Persistence] C:\Windows\SysNative\igfxpers.exe (Intel Corporation)
O4:64bit: - HKLM..\Run: [RTHDVCPL] C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe (Realtek Semiconductor)
O4:64bit: - HKLM..\Run: [RtkOSD] C:\Program Files (x86)\Realtek\Audio\OSD\RtVOsd64.exe (Realtek Semiconductor Corp.)
O4 - HKLM..\Run: [] File not found
O4 - HKLM..\Run: [ApnUpdater] C:\Program Files (x86)\Ask.com\Updater\Updater.exe (Ask)
O4 - HKLM..\Run: [avast] C:\Program Files\AVAST Software\Avast\avastUI.exe (AVAST Software)
O4 - HKLM..\Run: [Malwarebytes Anti-Malware (reboot)] C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbam.exe (Malwarebytes Corporation)
O4 - HKLM..\Run: [NortonOnlineBackupReminder] C:\Program Files (x86)\Symantec\Norton Online Backup\Activation\NobuActivation.exe (Symantec Corporation)
O4 - HKLM..\Run: [ROC_ROC_NT] C:\Program Files (x86)\AVG Secure Search\ROC_ROC_NT.exe ()
O4 - HKLM..\Run: [Sendori Tray] C:\Program Files (x86)\Sendori\SendoriTray.exe (Sendori, Inc.)
O4 - HKLM..\Run: [vProt] C:\Program Files (x86)\AVG Secure Search\vprot.exe ()
O4 - HKCU..\Run: [cdloader] C:\Users\Glory\AppData\Roaming\mjusbsp\cdloader2.exe (magicJack L.P.)
O4 - HKCU..\Run: [DAEMON Tools Lite] C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe (DT Soft Ltd)
O4 - HKCU..\Run: [HPAdvisorDock] C:\Program Files (x86)\Hewlett-Packard\HP Advisor\Dock\HPAdvisorDock.exe ()
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O13 - gopher Prefix: missing
O16:64bit: - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_17)
O16:64bit: - DPF: {CAFEEFAC-0016-0000-0017-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_17)
O16:64bit: - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_17)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_26)
O16 - DPF: {BEA7310D-06C4-4339-A784-DC3804819809} http://www.cvsphoto....veX_Control.cab (Photo Upload Plugin Class)
O16 - DPF: {CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_26)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_26)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{A1686139-EB42-487E-A713-9E9197F3AFC2}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{A1686139-EB42-487E-A713-9E9197F3AFC2}: NameServer = 216.146.35.240,216.146.36.240,192.168.1.1
O18:64bit: - Protocol\Handler\livecall - No CLSID value found
O18:64bit: - Protocol\Handler\msnim - No CLSID value found
O18:64bit: - Protocol\Handler\viprotocol - No CLSID value found
O18:64bit: - Protocol\Handler\wlmailhtml - No CLSID value found
O18 - Protocol\Handler\ms-help - No CLSID value found
O18 - Protocol\Handler\viprotocol {B658800C-F66E-4EF3-AB85-6C0C227862A9} - C:\Program Files (x86)\Common Files\AVG Secure Search\ViProtocolInstaller\13.2.0\ViProtocol.dll ()
O20:64bit: - HKLM Winlogon: Shell - (Explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysWOW64\userinit.exe (Microsoft Corporation)
O20:64bit: - Winlogon\Notify\igfxcui: DllName - (igfxdev.dll) - C:\Windows\SysNative\igfxdev.dll (Intel Corporation)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2011/05/03 23:43:58 | 000,000,175 | R--- | M] () - G:\autorun.inf -- [ UDF ]
O32 - AutoRun File - [2011/05/03 23:43:58 | 000,000,175 | R--- | M] () - H:\autorun.inf -- [ UDF ]
O34 - HKLM BootExecute: (autocheck autochk *)
O35:64bit: - HKLM\..comfile [open] -- "%1" %*
O35:64bit: - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:64bit: - HKLM\...com [@ = ComFile] -- "%1" %*
O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = ComFile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)

========== Files/Folders - Created Within 30 Days ==========

[2012/11/09 17:09:25 | 000,000,000 | ---D | C] -- C:\TDSSKiller_Quarantine
[2012/11/09 17:06:47 | 002,213,976 | ---- | C] (Kaspersky Lab ZAO) -- C:\Users\Glory\Desktop\tdsskiller.exe
[2012/11/09 12:33:02 | 000,602,112 | ---- | C] (OldTimer Tools) -- C:\Users\Glory\Desktop\OTL.exe
[2012/11/09 12:15:52 | 000,000,000 | -HSD | C] -- C:\$RECYCLE.BIN
[2012/11/09 09:21:39 | 000,000,000 | ---D | C] -- C:\Windows\temp
[2012/11/09 08:35:48 | 004,998,937 | R--- | C] (Swearware) -- C:\Users\Glory\Desktop\ComboFix.exe
[2012/11/04 15:47:10 | 000,000,000 | ---D | C] -- C:\FRST
[2012/11/03 15:14:38 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
[2012/11/03 15:08:06 | 000,370,288 | ---- | C] (AVAST Software) -- C:\Windows\SysNative\drivers\aswSP.sys
[2012/11/03 15:08:06 | 000,025,232 | ---- | C] (AVAST Software) -- C:\Windows\SysNative\drivers\aswFsBlk.sys
[2012/11/03 15:08:06 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\avast! Free Antivirus
[2012/11/03 15:07:58 | 000,054,072 | ---- | C] (AVAST Software) -- C:\Windows\SysNative\drivers\aswRdr2.sys
[2012/11/03 15:07:55 | 000,984,144 | ---- | C] (AVAST Software) -- C:\Windows\SysNative\drivers\aswSnx.sys
[2012/11/03 15:07:55 | 000,071,600 | ---- | C] (AVAST Software) -- C:\Windows\SysNative\drivers\aswMonFlt.sys
[2012/11/03 15:07:55 | 000,059,728 | ---- | C] (AVAST Software) -- C:\Windows\SysNative\drivers\aswTdi.sys
[2012/11/03 15:07:54 | 000,285,328 | ---- | C] (AVAST Software) -- C:\Windows\SysNative\aswBoot.exe
[2012/11/03 15:07:42 | 000,227,648 | ---- | C] (AVAST Software) -- C:\Windows\SysWow64\aswBoot.exe
[2012/11/03 15:07:42 | 000,041,224 | ---- | C] (AVAST Software) -- C:\Windows\avastSS.scr
[2012/11/03 15:07:29 | 000,000,000 | ---D | C] -- C:\ProgramData\AVAST Software
[2012/11/03 15:07:29 | 000,000,000 | ---D | C] -- C:\Program Files\AVAST Software
[2012/10/29 11:44:54 | 000,000,000 | ---D | C] -- C:\ProgramData\Kaspersky Lab
[2012/10/29 01:31:44 | 000,518,144 | ---- | C] (SteelWerX) -- C:\Windows\SWREG.exe
[2012/10/29 01:31:44 | 000,406,528 | ---- | C] (SteelWerX) -- C:\Windows\SWSC.exe
[2012/10/29 01:31:44 | 000,060,416 | ---- | C] (NirSoft) -- C:\Windows\NIRCMD.exe
[2012/10/29 01:30:25 | 000,000,000 | ---D | C] -- C:\Qoobox
[2012/10/29 00:46:17 | 000,000,000 | ---D | C] -- C:\Windows\erdnt
[2012/10/27 22:21:24 | 000,000,000 | ---D | C] -- C:\found.000
[2012/10/26 21:08:24 | 000,000,000 | ---D | C] -- C:\Windows\Sun

========== Files - Modified Within 30 Days ==========

[2012/11/12 19:04:05 | 000,000,896 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2012/11/12 19:03:40 | 000,023,248 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2012/11/12 19:03:40 | 000,023,248 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2012/11/12 19:00:40 | 000,791,694 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI
[2012/11/12 19:00:40 | 000,668,830 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat
[2012/11/12 19:00:40 | 000,125,330 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat
[2012/11/12 18:56:21 | 000,000,892 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2012/11/12 18:54:58 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2012/11/12 18:54:47 | 2361,593,856 | -HS- | M] () -- C:\hiberfil.sys
[2012/11/09 22:47:53 | 000,002,374 | ---- | M] () -- C:\Users\Public\Desktop\Google Chrome.lnk
[2012/11/09 17:07:23 | 002,213,976 | ---- | M] (Kaspersky Lab ZAO) -- C:\Users\Glory\Desktop\tdsskiller.exe
[2012/11/09 12:33:02 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\Glory\Desktop\OTL.exe
[2012/11/09 12:26:01 | 000,030,568 | ---- | M] (AVG Technologies) -- C:\Windows\SysNative\drivers\avgtpx64.sys
[2012/11/09 09:18:30 | 000,000,027 | ---- | M] () -- C:\Windows\SysNative\drivers\etc\hosts
[2012/11/09 08:41:15 | 004,998,937 | R--- | M] (Swearware) -- C:\Users\Glory\Desktop\ComboFix.exe
[2012/11/07 15:43:40 | 000,000,512 | ---- | M] () -- C:\Users\Glory\Desktop\MBR.dat
[2012/11/03 15:26:10 | 000,002,111 | ---- | M] () -- C:\Users\Public\Desktop\avast! Free Antivirus.lnk
[2012/11/03 15:14:38 | 000,002,273 | ---- | M] () -- C:\Users\Glory\Application Data\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk
[2012/11/03 15:07:56 | 000,000,350 | -H-- | M] () -- C:\Windows\tasks\avast! Emergency Update.job
[2012/11/03 15:07:55 | 000,000,000 | ---- | M] () -- C:\Windows\SysWow64\config.nt
[2012/11/03 08:33:08 | 000,061,440 | ---- | M] () -- C:\Windows\SysWow64\drivers\pmehele.sys
[2012/11/03 08:20:45 | 000,061,440 | ---- | M] () -- C:\Windows\SysWow64\drivers\hlpbggxt.sys
[2012/11/02 10:32:18 | 000,061,440 | ---- | M] () -- C:\Windows\SysWow64\drivers\nrolf.sys
[2012/11/02 09:46:11 | 000,061,440 | ---- | M] () -- C:\Windows\SysWow64\drivers\dkauii.sys
[2012/11/02 09:29:58 | 000,724,952 | ---- | M] () -- C:\Users\Glory\Desktop\avenger.zip
[2012/10/30 16:51:56 | 000,059,728 | ---- | M] (AVAST Software) -- C:\Windows\SysNative\drivers\aswTdi.sys
[2012/10/30 16:51:55 | 000,984,144 | ---- | M] (AVAST Software) -- C:\Windows\SysNative\drivers\aswSnx.sys
[2012/10/30 16:51:55 | 000,370,288 | ---- | M] (AVAST Software) -- C:\Windows\SysNative\drivers\aswSP.sys
[2012/10/30 16:51:55 | 000,071,600 | ---- | M] (AVAST Software) -- C:\Windows\SysNative\drivers\aswMonFlt.sys
[2012/10/30 16:51:53 | 000,025,232 | ---- | M] (AVAST Software) -- C:\Windows\SysNative\drivers\aswFsBlk.sys
[2012/10/30 16:51:07 | 000,041,224 | ---- | M] (AVAST Software) -- C:\Windows\avastSS.scr
[2012/10/30 16:50:59 | 000,227,648 | ---- | M] (AVAST Software) -- C:\Windows\SysWow64\aswBoot.exe
[2012/10/30 16:50:30 | 000,285,328 | ---- | M] (AVAST Software) -- C:\Windows\SysNative\aswBoot.exe
[2012/10/27 22:22:30 | 000,003,352 | ---- | M] () -- C:\bootsqm.dat
[2012/10/26 23:35:43 | 000,001,109 | ---- | M] () -- C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
[2012/10/15 09:59:28 | 000,054,072 | ---- | M] (AVAST Software) -- C:\Windows\SysNative\drivers\aswRdr2.sys

========== Files Created - No Company Name ==========

[2012/11/07 15:43:39 | 000,000,512 | ---- | C] () -- C:\Users\Glory\Desktop\MBR.dat
[2012/11/03 15:14:38 | 000,002,374 | ---- | C] () -- C:\Users\Public\Desktop\Google Chrome.lnk
[2012/11/03 15:14:38 | 000,002,273 | ---- | C] () -- C:\Users\Glory\Application Data\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk
[2012/11/03 15:08:06 | 000,002,111 | ---- | C] () -- C:\Users\Public\Desktop\avast! Free Antivirus.lnk
[2012/11/03 15:07:56 | 000,000,350 | -H-- | C] () -- C:\Windows\tasks\avast! Emergency Update.job
[2012/11/03 15:07:55 | 000,000,000 | ---- | C] () -- C:\Windows\SysWow64\config.nt
[2012/11/03 08:33:08 | 000,061,440 | ---- | C] () -- C:\Windows\SysWow64\drivers\pmehele.sys
[2012/11/03 08:20:45 | 000,061,440 | ---- | C] () -- C:\Windows\SysWow64\drivers\hlpbggxt.sys
[2012/11/02 10:32:18 | 000,061,440 | ---- | C] () -- C:\Windows\SysWow64\drivers\nrolf.sys
[2012/11/02 10:30:26 | 000,731,136 | ---- | C] () -- C:\Users\Glory\Desktop\avenger.exe
[2012/11/02 09:46:11 | 000,061,440 | ---- | C] () -- C:\Windows\SysWow64\drivers\dkauii.sys
[2012/11/02 09:29:58 | 000,724,952 | ---- | C] () -- C:\Users\Glory\Desktop\avenger.zip
[2012/10/29 01:31:44 | 000,256,000 | ---- | C] () -- C:\Windows\PEV.exe
[2012/10/29 01:31:44 | 000,208,896 | ---- | C] () -- C:\Windows\MBR.exe
[2012/10/29 01:31:44 | 000,098,816 | ---- | C] () -- C:\Windows\sed.exe
[2012/10/29 01:31:44 | 000,080,412 | ---- | C] () -- C:\Windows\grep.exe
[2012/10/29 01:31:44 | 000,068,096 | ---- | C] () -- C:\Windows\zip.exe
[2012/10/27 22:22:30 | 000,003,352 | ---- | C] () -- C:\bootsqm.dat
[2011/12/04 22:17:12 | 000,000,258 | RHS- | C] () -- C:\ProgramData\ntuser.pol
[2010/11/26 15:02:45 | 000,790,236 | ---- | C] () -- C:\Windows\SysWow64\PerfStringBackup.INI

========== ZeroAccess Check ==========

[2009/07/13 22:55:00 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini

[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64

[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]

[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] /64

[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
"" = C:\Windows\SysNative\shell32.dll -- [2012/06/08 23:30:56 | 014,165,504 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shell32.dll -- [2012/06/08 22:46:56 | 012,868,608 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\fastprox.dll -- [2009/07/13 19:40:51 | 000,909,312 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2009/07/13 19:15:20 | 000,605,696 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\wbemess.dll -- [2009/07/13 19:41:56 | 000,505,856 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]

========== LOP Check ==========

[2012/09/17 00:49:36 | 000,000,000 | ---D | M] -- C:\Users\Glory\AppData\Roaming\DAEMON Tools Lite
[2011/07/04 12:40:08 | 000,000,000 | ---D | M] -- C:\Users\Glory\AppData\Roaming\DAEMON Tools Pro
[2011/05/14 15:10:00 | 000,000,000 | ---D | M] -- C:\Users\Glory\AppData\Roaming\funkitron
[2010/11/26 15:16:33 | 000,000,000 | ---D | M] -- C:\Users\Glory\AppData\Roaming\mjusbsp
[2012/09/16 22:45:58 | 000,000,000 | ---D | M] -- C:\Users\Glory\AppData\Roaming\OpenCandy
[2010/11/26 06:11:21 | 000,000,000 | ---D | M] -- C:\Users\Glory\AppData\Roaming\PictureMover
[2012/09/17 00:45:34 | 000,000,000 | ---D | M] -- C:\Users\Glory\AppData\Roaming\SoftGrid Client
[2010/11/26 15:03:26 | 000,000,000 | ---D | M] -- C:\Users\Glory\AppData\Roaming\TP
[2012/10/26 21:01:01 | 000,000,000 | ---D | M] -- C:\Users\Glory\AppData\Roaming\uTorrent
[2011/01/31 17:49:31 | 000,000,000 | ---D | M] -- C:\Users\Glory\AppData\Roaming\WildTangent
[2012/09/06 19:58:06 | 000,000,000 | ---D | M] -- C:\Users\Glory\AppData\Roaming\YourFileDownloader

========== Purity Check ==========



========== Custom Scans ==========

< \Device\Harddisk0\DR0 ( TDSS File System ) >
[2009/07/13 23:08:49 | 000,000,006 | -H-- | C] () -- C:\Windows\Tasks\SA.DAT
[2009/07/13 23:08:49 | 000,032,630 | ---- | C] () -- C:\Windows\Tasks\SCHEDLGU.TXT
[2012/09/16 12:21:45 | 000,000,892 | ---- | C] () -- C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
[2012/09/16 12:21:45 | 000,000,896 | ---- | C] () -- C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
[2012/11/03 15:07:56 | 000,000,350 | -H-- | C] () -- C:\Windows\Tasks\avast! Emergency Update.job

< End of report >
  • 0

#58
maliprog

maliprog

    Trusted Helper

  • Malware Removal
  • 6,172 posts
Hi gg101,

Your logs are looking good. How is your system now? Any problems?
  • 0

#59
gg101

gg101

    Member

  • Topic Starter
  • Member
  • PipPip
  • 41 posts
Everything seems to be running fine now, it just seems a bit slow when I start up my laptop. Thank you for your help. I really appreciate it. One more thing, do I delete all the files I downloaded and the txt and logs from my desktop?
  • 0

#60
maliprog

maliprog

    Trusted Helper

  • Malware Removal
  • 6,172 posts
Hi gg101,

Your logs and system are clean now. I'm glad we fix up your computer.

Step 1

Please close all running programs and Run OTL
  • Under the Custom Scans/Fixes box at the bottom, paste in the following

    :OTL

    :Commands
    [purity]
    [emptytemp]
    [resethosts]
    [clearallrestorepoints]
    [Reboot]

  • Then click the Run Fix button at the top
  • Let the program run unhindered, reboot the PC when it is done
Step 2

We need to clean up your PC from programs we used.

Please start OTL one more time and click CleanUp button. OTL will restart your system at the end.

In case that any of the software we used in this fix still remains on your system please delete it manually (Right click on it and select Delete).

General recommendations

Here are some recommendations you should follow to minimize infection risk in the future:

1. Something to read

To learn more about how to protect yourself while on the internet read our little guide How did I get infected in the first place ?

2. Make Backups of Important Files

Please read this article Home Computer Data Backup.

3. Regularly update your software

To eliminate design flaws and security vulnerabilities, all software needs to be updated to the latest version or the vendor’s patch installed.

You should download Update Checker from here. The program will automaticly check for newer version of software installed on your system.
  • 0






Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP