Jump to content

Welcome to Geeks to Go - Register now for FREE

Geeks To Go is a helpful hub, where thousands of volunteer geeks quickly serve friendly answers and support. Check out the forums and get free advice from the experts. Register now to gain access to all of our features, it's FREE and only takes one minute. Once registered and logged in, you will be able to create topics, post replies to existing threads, give reputation to your fellow members, get your own private messenger, post status updates, manage your profile and so much more.

Create Account How it Works
Photo

Win32:Sirefef-ZT [trj] [Closed]


  • This topic is locked This topic is locked

#1
modeltrainsfreak

modeltrainsfreak

    New Member

  • Member
  • Pip
  • 9 posts
Avast keeps popping up notifying me something similar to the following

Trojan Horse Blocked
Object "C:/Windows/Installer/.../[email protected]" or ".../[email protected]" or ".../[email protected]" or ".../[email protected]" ect
Infection "Win32:ZAccess-PB [trj]" or "Win32:Malware-gen"
Action
Process "C:/windows/system32/services.exe"

I think it happened when I ran an exe in a zip file using WinRar (I have used WinRar meany times before).

I tried Avast, full scan and boot, Spybot, and Malwarebytes Anti-Malware

here is the OTL
OTL logfile created on: 4/15/2013 12:11:14 AM - Run 1
OTL by OldTimer - Version 3.2.69.0     Folder = E:\Google Chrome Downloads
64bit- Ultimate Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.10.9200.16540)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy
 
4.00 Gb Total Physical Memory | 2.00 Gb Available Physical Memory | 49.92% Memory free
8.00 Gb Paging File | 5.51 Gb Available in Paging File | 68.91% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
 
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 148.95 Gb Total Space | 111.47 Gb Free Space | 74.84% Space Free | Partition Type: NTFS
Drive D: | 1489.75 Gb Total Space | 1473.35 Gb Free Space | 98.90% Space Free | Partition Type: FAT32
Drive E: | 1862.56 Gb Total Space | 1126.27 Gb Free Space | 60.47% Space Free | Partition Type: FAT32
Drive M: | 3.82 Gb Total Space | 3.82 Gb Free Space | 99.87% Space Free | Partition Type: FAT32
 
Computer Name: USERNAME-PC | User Name: USERNAME | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Quick Scan | Include 64bit Scans
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days
 
[color=#E56717]========== Processes (SafeList) ==========[/color]
 
PRC - [2013/04/15 00:10:36 | 000,602,112 | ---- | M] (OldTimer Tools) -- E:\Google Chrome Downloads\OTL.exe
PRC - [2013/03/25 18:26:56 | 000,079,384 | ---- | M] (Google) -- C:\Users\USERNAME\AppData\Local\Google\Google Talk Plugin\googletalkplugin.exe
PRC - [2013/03/19 22:26:44 | 003,289,208 | ---- | M] (Skype Technologies S.A.) -- C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe
PRC - [2013/03/06 15:32:44 | 004,767,304 | ---- | M] (AVAST Software) -- C:\Program Files\AVAST Software\Avast\AvastUI.exe
PRC - [2013/03/06 15:32:44 | 000,045,248 | ---- | M] (AVAST Software) -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe
PRC - [2013/03/06 08:30:43 | 010,220,896 | ---- | M] (TeamViewer GmbH) -- C:\Program Files (x86)\TeamViewer\Version8\TeamViewer.exe
PRC - [2013/03/06 08:30:43 | 003,560,288 | ---- | M] (TeamViewer GmbH) -- C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe
PRC - [2013/03/06 08:22:26 | 000,185,696 | ---- | M] (TeamViewer GmbH) -- C:\Program Files (x86)\TeamViewer\Version8\tv_w32.exe
PRC - [2013/02/12 19:37:16 | 001,263,952 | ---- | M] () -- C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe
PRC - [2012/12/18 12:08:28 | 000,065,192 | ---- | M] (Adobe Systems Incorporated) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
PRC - [2012/11/13 18:11:02 | 001,242,728 | ---- | M] (Google Inc.) -- E:\Programs\installed programs\Google\Chrome\Application\chrome.exe
PRC - [2012/09/20 14:23:58 | 002,564,096 | ---- | M] () -- E:\Programs\installed programs\xampp\xampp-control.exe
PRC - [2012/08/18 02:38:26 | 000,022,016 | ---- | M] (Apache Software Foundation) -- E:\Programs\installed programs\xampp\apache\bin\httpd.exe
PRC - [2012/07/20 10:08:04 | 008,186,368 | ---- | M] () -- E:\Programs\installed programs\xampp\mysql\bin\mysqld.exe
PRC - [2012/03/19 16:54:44 | 000,453,248 | ---- | M] (Magic Control Technology Corporation) -- C:\Program Files (x86)\Common Files\DesktopUtil\MCTDUtil.exe
PRC - [2011/11/15 10:20:26 | 000,095,608 | ---- | M] (Dyn, Inc.) -- C:\Program Files (x86)\Dyn Updater\DynUpSvc.exe
PRC - [2011/11/15 10:20:26 | 000,078,192 | ---- | M] (Dyn, Inc.) -- C:\Program Files (x86)\Dyn Updater\DynTray.exe
PRC - [2011/05/03 18:13:18 | 000,199,296 | ---- | M] () -- C:\Program Files (x86)\Common Files\DesktopUtil\MCTDesktopSvr.exe
PRC - [2010/11/20 05:17:55 | 000,257,536 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
PRC - [2010/09/24 12:38:14 | 000,308,600 | ---- | M] (Magic Control Technology Corporation) -- C:\Program Files (x86)\Common Files\DesktopUtil\FDispPos.exe
PRC - [2010/04/03 14:05:46 | 000,380,928 | ---- | M] () -- E:\Programs\installed programs\Launchy\Launchy.exe
PRC - [2009/02/23 19:43:12 | 000,576,000 | ---- | M] (MagicISO, Inc.) -- C:\Program Files (x86)\MagicDisc\MagicDisc.exe
 
 
[color=#E56717]========== Modules (No Company Name) ==========[/color]
 
MOD - [2013/02/14 02:28:03 | 012,638,576 | ---- | M] () -- C:\Users\USERNAME\AppData\Local\Google\Chrome\User Data\PepperFlash\11.6.602.167\pepflashplayer.dll
MOD - [2013/02/12 19:38:06 | 000,100,688 | ---- | M] () -- C:\Program Files (x86)\DivX\DivX Update\DivXUpdateCheck.dll
MOD - [2013/02/12 19:37:16 | 001,263,952 | ---- | M] () -- C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe
MOD - [2012/12/12 21:30:10 | 000,070,536 | ---- | M] () -- C:\Program Files\TortoiseSVN\bin\libsasl32.dll
MOD - [2012/11/28 15:13:52 | 000,087,952 | ---- | M] () -- C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll
MOD - [2012/11/28 15:13:30 | 001,242,512 | ---- | M] () -- C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll
MOD - [2012/11/13 18:11:00 | 000,460,904 | ---- | M] () -- E:\Programs\installed programs\Google\Chrome\Application\23.0.1271.91\ppgooglenaclpluginchrome.dll
MOD - [2012/11/13 18:10:58 | 004,008,040 | ---- | M] () -- E:\Programs\installed programs\Google\Chrome\Application\23.0.1271.91\pdf.dll
MOD - [2012/11/13 18:10:14 | 000,587,880 | ---- | M] () -- E:\Programs\installed programs\Google\Chrome\Application\23.0.1271.91\libglesv2.dll
MOD - [2012/11/13 18:10:12 | 000,124,520 | ---- | M] () -- E:\Programs\installed programs\Google\Chrome\Application\23.0.1271.91\libegl.dll
MOD - [2012/11/13 18:10:06 | 000,157,304 | ---- | M] () -- E:\Programs\installed programs\Google\Chrome\Application\23.0.1271.91\avutil-51.dll
MOD - [2012/11/13 18:10:04 | 002,168,952 | ---- | M] () -- E:\Programs\installed programs\Google\Chrome\Application\23.0.1271.91\avcodec-54.dll
MOD - [2012/11/13 18:10:04 | 000,275,576 | ---- | M] () -- E:\Programs\installed programs\Google\Chrome\Application\23.0.1271.91\avformat-54.dll
MOD - [2012/09/20 14:23:58 | 002,564,096 | ---- | M] () -- E:\Programs\installed programs\xampp\xampp-control.exe
MOD - [2010/11/20 05:19:56 | 000,232,448 | ---- | M] () -- \\?\globalroot\systemroot\syswow64\mswsock.DLL
MOD - [2010/11/20 05:19:56 | 000,232,448 | ---- | M] () -- \\.\globalroot\systemroot\syswow64\mswsock.dll
MOD - [2010/04/03 14:06:20 | 000,081,920 | ---- | M] () -- E:\Programs\installed programs\Launchy\plugins\calcy.dll
MOD - [2010/04/03 14:06:08 | 000,024,064 | ---- | M] () -- E:\Programs\installed programs\Launchy\plugins\gcalc.dll
MOD - [2010/04/03 14:06:02 | 000,094,208 | ---- | M] () -- E:\Programs\installed programs\Launchy\plugins\runner.dll
MOD - [2010/04/03 14:05:54 | 000,122,880 | ---- | M] () -- E:\Programs\installed programs\Launchy\plugins\weby.dll
MOD - [2010/04/03 14:05:46 | 000,380,928 | ---- | M] () -- E:\Programs\installed programs\Launchy\Launchy.exe
MOD - [2010/04/03 14:05:32 | 000,057,344 | ---- | M] () -- E:\Programs\installed programs\Launchy\plugins\verby.dll
MOD - [2010/04/03 14:05:22 | 000,090,112 | ---- | M] () -- E:\Programs\installed programs\Launchy\plugins\controly.dll
MOD - [2009/12/17 01:18:48 | 000,233,472 | ---- | M] () -- E:\Programs\installed programs\Launchy\imageformats\qmng4.dll
MOD - [2009/12/16 23:13:02 | 008,314,880 | ---- | M] () -- E:\Programs\installed programs\Launchy\QtGui4.dll
MOD - [2009/12/16 22:56:22 | 000,712,704 | ---- | M] () -- E:\Programs\installed programs\Launchy\QtNetwork4.dll
MOD - [2009/12/16 22:54:46 | 002,236,416 | ---- | M] () -- E:\Programs\installed programs\Launchy\QtCore4.dll
 
 
[color=#E56717]========== Services (SafeList) ==========[/color]
 
SRV:[b]64bit:[/b] - [2013/03/06 15:32:44 | 000,045,248 | ---- | M] (AVAST Software) [Auto | Running] -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe -- (avast! Antivirus)
SRV:[b]64bit:[/b] - [2012/03/13 19:31:52 | 000,311,160 | ---- | M] () [Auto | Running] -- C:\Windows\SysNative\GManager.exe -- (GManager)
SRV:[b]64bit:[/b] - [2011/05/25 00:03:38 | 000,204,288 | ---- | M] (AMD) [Auto | Running] -- C:\Windows\SysNative\atiesrxx.exe -- (AMD External Events Utility)
SRV:[b]64bit:[/b] - [2009/12/21 11:44:06 | 000,535,552 | ---- | M] (CSR, plc) [Auto | Running] -- C:\Windows\SysNative\HFGService.dll -- (HFGService)
SRV:[b]64bit:[/b] - [2009/07/13 18:40:01 | 000,193,536 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\appmgmts.dll -- (AppMgmt)
SRV - [2013/04/07 21:25:18 | 000,253,656 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc)
SRV - [2013/03/29 12:53:56 | 000,543,656 | ---- | M] (Valve Corporation) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Steam\SteamService.exe -- (Steam Client Service)
SRV - [2013/03/19 22:26:44 | 003,289,208 | ---- | M] (Skype Technologies S.A.) [Auto | Running] -- C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe -- (Skype C2C Service)
SRV - [2013/03/06 08:30:43 | 003,560,288 | ---- | M] (TeamViewer GmbH) [Auto | Running] -- C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe -- (TeamViewer8)
SRV - [2013/02/28 18:45:16 | 000,161,384 | R--- | M] (Skype Technologies) [Auto | Stopped] -- C:\Program Files (x86)\Skype\Updater\Updater.exe -- (SkypeUpdate)
SRV - [2012/12/18 12:08:28 | 000,065,192 | ---- | M] (Adobe Systems Incorporated) [Auto | Running] -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe -- (AdobeARMservice)
SRV - [2012/08/18 02:38:26 | 000,022,016 | ---- | M] (Apache Software Foundation) [Auto | Running] -- E:\Programs\installed programs\xampp\apache\bin\httpd.exe -- (Apache2.4)
SRV - [2012/07/20 10:08:04 | 008,186,368 | ---- | M] () [Auto | Running] -- E:\Programs\installed programs\xampp\mysql\bin\mysqld.exe -- (mysql)
SRV - [2011/11/15 10:20:26 | 000,095,608 | ---- | M] (Dyn, Inc.) [Auto | Running] -- C:\Program Files (x86)\Dyn Updater\DynUpSvc.exe -- (Dyn Updater)
SRV - [2011/05/03 18:13:18 | 000,199,296 | ---- | M] () [Auto | Running] -- C:\Program Files (x86)\Common Files\DesktopUtil\MCTDesktopSvr.exe -- (MCTDesktopSvr)
SRV - [2010/03/18 14:16:28 | 000,130,384 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_32)
SRV - [2009/06/10 14:23:09 | 000,066,384 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32)
 
 
[color=#E56717]========== Driver Services (SafeList) ==========[/color]
 
DRV:[b]64bit:[/b] - [2013/03/06 15:33:21 | 001,025,808 | ---- | M] (AVAST Software) [File_System | System | Running] -- C:\Windows\SysNative\drivers\aswSnx.sys -- (aswSnx)
DRV:[b]64bit:[/b] - [2013/03/06 15:33:21 | 000,377,920 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\aswSP.sys -- (aswSP)
DRV:[b]64bit:[/b] - [2013/03/06 15:33:21 | 000,178,624 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\aswVmm.sys -- (aswVmm)
DRV:[b]64bit:[/b] - [2013/03/06 15:33:21 | 000,070,992 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\aswRdr2.sys -- (aswRdr)
DRV:[b]64bit:[/b] - [2013/03/06 15:33:21 | 000,068,920 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\aswTdi.sys -- (aswTdi)
DRV:[b]64bit:[/b] - [2013/03/06 15:33:21 | 000,065,336 | ---- | M] () [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\aswRvrt.sys -- (aswRvrt)
DRV:[b]64bit:[/b] - [2013/03/06 15:33:20 | 000,080,816 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\Windows\SysNative\drivers\aswMonFlt.sys -- (aswMonFlt)
DRV:[b]64bit:[/b] - [2013/03/06 15:33:20 | 000,033,400 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\Windows\SysNative\drivers\aswFsBlk.sys -- (aswFsBlk)
DRV:[b]64bit:[/b] - [2012/12/13 14:50:36 | 000,054,784 | ---- | M] (Apple, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\usbaapl64.sys -- (USBAAPL64)
DRV:[b]64bit:[/b] - [2012/08/23 07:10:20 | 000,019,456 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\rdpvideominiport.sys -- (RdpVideoMiniport)
DRV:[b]64bit:[/b] - [2012/08/23 07:07:35 | 000,057,856 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbFlt.sys -- (TsUsbFlt)
DRV:[b]64bit:[/b] - [2012/08/21 14:01:20 | 000,033,240 | ---- | M] (GEAR Software Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\GEARAspiWDM.sys -- (GEARAspiWDM)
DRV:[b]64bit:[/b] - [2012/04/13 11:05:16 | 000,075,016 | ---- | M] (FTDI Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ftdibus.sys -- (FTDIBUS)
DRV:[b]64bit:[/b] - [2012/04/13 11:05:02 | 000,085,384 | ---- | M] (FTDI Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ftser2k.sys -- (FTSER2K)
DRV:[b]64bit:[/b] - [2012/04/11 11:32:26 | 000,135,296 | ---- | M] (Magic Control Technology Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\mctkmd64.sys -- (mctkmd)
DRV:[b]64bit:[/b] - [2012/02/29 23:46:16 | 000,023,408 | ---- | M] (Microsoft Corporation) [Recognizer | Boot | Unknown] -- C:\Windows\SysNative\drivers\fs_rec.sys -- (Fs_Rec)
DRV:[b]64bit:[/b] - [2011/08/04 16:21:14 | 000,172,544 | ---- | M] (Magic Control Technology Corp.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\t1pusb64.sys -- (t1pusb64)
DRV:[b]64bit:[/b] - [2011/05/28 11:25:00 | 000,044,480 | ---- | M] (http://libusb-win32.sourceforge.net) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\libusb0.sys -- (libusb0)
DRV:[b]64bit:[/b] - [2011/05/25 01:26:56 | 009,359,872 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\atikmdag.sys -- (amdkmdag)
DRV:[b]64bit:[/b] - [2011/05/24 23:25:42 | 000,309,760 | ---- | M] (Advanced Micro Devices, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\atikmpag.sys -- (amdkmdap)
DRV:[b]64bit:[/b] - [2011/04/08 16:38:58 | 000,019,584 | ---- | M] (Magic Control Technology Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\mctKmdldr64.sys -- (mctkmdldr)
DRV:[b]64bit:[/b] - [2011/03/30 15:46:44 | 000,114,704 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\AtihdW76.sys -- (AtiHDAudioService)
DRV:[b]64bit:[/b] - [2011/03/10 23:41:12 | 000,107,904 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsata.sys -- (amdsata)
DRV:[b]64bit:[/b] - [2011/03/10 23:41:12 | 000,027,008 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amdxata.sys -- (amdxata)
DRV:[b]64bit:[/b] - [2010/11/20 06:33:35 | 000,078,720 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\HpSAMD.sys -- (HpSAMD)
DRV:[b]64bit:[/b] - [2010/11/20 03:43:57 | 000,032,768 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\usbser.sys -- (usbser)
DRV:[b]64bit:[/b] - [2009/12/21 11:43:36 | 000,052,224 | ---- | M] (CSR, plc) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\BthAudioHF.sys -- (BthAudioHF)
DRV:[b]64bit:[/b] - [2009/12/21 11:43:00 | 000,078,848 | ---- | M] (CSR, plc) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\bthav.sys -- (csr_a2dp)
DRV:[b]64bit:[/b] - [2009/08/13 09:38:24 | 000,029,184 | ---- | M] (CSR, plc) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\BthAvrcp.sys -- (BthAvrcp)
DRV:[b]64bit:[/b] - [2009/07/13 18:52:20 | 000,194,128 | ---- | M] (AMD Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsbs.sys -- (amdsbs)
DRV:[b]64bit:[/b] - [2009/07/13 18:48:04 | 000,065,600 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas2.sys -- (LSI_SAS2)
DRV:[b]64bit:[/b] - [2009/07/13 18:45:55 | 000,024,656 | ---- | M] (Promise Technology) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\stexstor.sys -- (stexstor)
DRV:[b]64bit:[/b] - [2009/06/10 13:34:33 | 003,286,016 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\evbda.sys -- (ebdrv)
DRV:[b]64bit:[/b] - [2009/06/10 13:34:28 | 000,468,480 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv)
DRV:[b]64bit:[/b] - [2009/06/10 13:34:23 | 000,270,848 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\b57nd60a.sys -- (b57nd60a)
DRV:[b]64bit:[/b] - [2009/06/10 13:31:59 | 000,031,232 | ---- | M] (Hauppauge Computer Works, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hcw85cir.sys -- (hcw85cir)
DRV:[b]64bit:[/b] - [2009/04/08 10:07:46 | 000,068,608 | ---- | M] (Silicon Laboratories) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\silabser.sys -- (silabser)
DRV:[b]64bit:[/b] - [2009/04/08 10:07:46 | 000,023,040 | ---- | M] (Silicon Laboratories, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\silabenm.sys -- (silabenm)
DRV:[b]64bit:[/b] - [2009/03/02 00:05:32 | 000,187,392 | ---- | M] (Realtek Corporation                                            ) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\Rt64win7.sys -- (RTL8167)
DRV:[b]64bit:[/b] - [2009/02/24 18:35:44 | 000,255,552 | ---- | M] (MagicISO, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\mcdbus.sys -- (mcdbus)
DRV - [2009/07/13 18:19:10 | 000,019,008 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysWOW64\drivers\wimmount.sys -- (WIMMount)
DRV - [2009/02/24 18:35:44 | 000,255,552 | ---- | M] (MagicISO, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysWOW64\drivers\mcdbus.sys -- (mcdbus)
 
 
[color=#E56717]========== Standard Registry (SafeList) ==========[/color]
 
 
[color=#E56717]========== Internet Explorer ==========[/color]
 
IE:[b]64bit:[/b] - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE:[b]64bit:[/b] - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
IE - HKLM\..\URLSearchHook: {7473b6bd-4691-4744-a82b-7854eb3d70b6} - C:\Program Files (x86)\uTorrentControl_v2\prxtbuTor.dll (Conduit Ltd.)
IE - HKLM\..\SearchScopes,DefaultScope = {afdbddaa-5d3f-42ee-b79c-185a7020515b}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
IE - HKLM\..\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b}: "URL" = http://search.conduit.com/ResultsExt.aspx?q={searchTerms}&SearchSource=4&ctid=CT3220468
 
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default Download Directory = E:\Google Chrome Downloads
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com/
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://www.msn.com/?ocid=iehp
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = en-us
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = AE 34 66 3B 11 CD CD 01  [binary data]
IE - HKCU\..\URLSearchHook: {7473b6bd-4691-4744-a82b-7854eb3d70b6} - C:\Program Files (x86)\uTorrentControl_v2\prxtbuTor.dll (Conduit Ltd.)
IE - HKCU\..\SearchScopes,DefaultScope = {afdbddaa-5d3f-42ee-b79c-185a7020515b}
IE - HKCU\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE10SR
IE - HKCU\..\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b}: "URL" = http://search.conduit.com/ResultsExt.aspx?q={searchTerms}&SearchSource=4&ctid=CT3220468
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyServer" = 149.3.141.76:443
 
 
[color=#E56717]========== FireFox ==========[/color]
 
FF:[b]64bit:[/b] - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF64_11_6_602_180.dll File not found
FF:[b]64bit:[/b] - HKLM\Software\MozillaPlugins\@divx.com/DivX VOD Helper,version=1.0.0: C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
FF:[b]64bit:[/b] - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.10.2: C:\Windows\system32\npDeployJava1.dll (Oracle Corporation)
FF:[b]64bit:[/b] - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.10.2: C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF:[b]64bit:[/b] - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF:[b]64bit:[/b] - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files\Microsoft Silverlight\5.1.20125.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_6_602_180.dll ()
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=:  File not found
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=1.0: E:\Programs\installed programs\iTunes\Mozilla Plugins\npitunes.dll ()
FF - HKLM\Software\MozillaPlugins\@divx.com/DivX Browser Plugin,version=1.0.0: C:\Program Files (x86)\DivX\DivX Plus Web Player\npdivx32.dll (DivX, LLC)
FF - HKLM\Software\MozillaPlugins\@divx.com/DivX VOD Helper,version=1.0.0: C:\Program Files (x86)\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.17.2: C:\Windows\SysWOW64\npDeployJava1.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.17.2: C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files (x86)\Microsoft Silverlight\5.1.20125.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF - HKCU\Software\MozillaPlugins\@talk.google.com/GoogleTalkPlugin: C:\Users\USERNAME\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll (Google)
FF - HKCU\Software\MozillaPlugins\@talk.google.com/O1DPlugin: C:\Users\USERNAME\AppData\Roaming\Mozilla\plugins\npo1d.dll (Google)
FF - HKCU\Software\MozillaPlugins\@talk.google.com/O3DPlugin: C:\Users\USERNAME\AppData\Roaming\Mozilla\plugins\npgtpo3dautoplugin.dll ()
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Users\USERNAME\AppData\Local\Google\Update\1.3.21.135\npGoogleUpdate3.dll (Google Inc.)
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Users\USERNAME\AppData\Local\Google\Update\1.3.21.135\npGoogleUpdate3.dll (Google Inc.)
 
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{23fcfd51-4958-4f00-80a3-ae97e717ed8b}: C:\Program Files (x86)\DivX\DivX Plus Web Player\firefox\DivXHTML5 [2013/03/19 14:29:09 | 000,000,000 | ---D | M]
 
[2012/12/04 15:15:29 | 000,000,000 | ---D | M] (No name found) -- C:\Users\USERNAME\AppData\Roaming\Mozilla\Firefox\extensions
[2012/12/04 15:15:33 | 000,000,000 | ---D | M] (uTorrentControl_v2) -- C:\Users\USERNAME\AppData\Roaming\Mozilla\Firefox\extensions\{7473b6bd-4691-4744-a82b-7854eb3d70b6}
 
[color=#E56717]========== Chrome  ==========[/color]
 
CHR - homepage: http://www.google.com/
CHR - default_search_provider: Google (Enabled)
CHR - default_search_provider: search_url = {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:acceptedSuggestion}{google:originalQueryForSuggestion}{google:assistedQueryStats}{google:searchFieldtrialParameter}{google:searchClient}{google:sourceId}{google:instantExtendedEnabledParameter}ie={inputEncoding}
CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client=chrome&q={searchTerms}&{google:cursorPosition}sugkey={google:suggestAPIKeyParameter},
CHR - homepage: http://www.google.com/
CHR - plugin: Shockwave Flash (Enabled) = E:\Programs\installed programs\Google\Chrome\Application\23.0.1271.91\PepperFlash\pepflashplayer.dll
CHR - plugin: Chrome Remote Desktop Viewer (Enabled) = internal-remoting-viewer
CHR - plugin: Native Client (Enabled) = E:\Programs\installed programs\Google\Chrome\Application\23.0.1271.91\ppGoogleNaClPluginChrome.dll
CHR - plugin: Chrome PDF Viewer (Enabled) = E:\Programs\installed programs\Google\Chrome\Application\23.0.1271.91\pdf.dll
CHR - Extension: Atari - Lunar Lander = C:\Users\USERNAME\AppData\Local\Google\Chrome\User Data\Default\Extensions\aheampccjiggeiflpcjolbabpohbpclg\1.0_0\
CHR - Extension: Angry Birds = C:\Users\USERNAME\AppData\Local\Google\Chrome\User Data\Default\Extensions\aknpkdffaafgjchaibgeefbgmgeghloj\1.5.0.7_0\
CHR - Extension: Google Drive = C:\Users\USERNAME\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0\
CHR - Extension: Atari - Crystal Castles = C:\Users\USERNAME\AppData\Local\Google\Chrome\User Data\Default\Extensions\banaddnhdpncehndeoafnlibnkffodab\1.0_0\
CHR - Extension: Session Manager = C:\Users\USERNAME\AppData\Local\Google\Chrome\User Data\Default\Extensions\bbcnbpafconjjigibnhbfmmgdbbkcjfi\0.4_0\
CHR - Extension: Atari - Haunted House = C:\Users\USERNAME\AppData\Local\Google\Chrome\User Data\Default\Extensions\befllnbglkekdmilmjehkplpgeikeibh\1.0_0\
CHR - Extension: Audiotool = C:\Users\USERNAME\AppData\Local\Google\Chrome\User Data\Default\Extensions\bkgoccjhfjgjedhkiefaclppgbmoobnk\1.1_0\
CHR - Extension: YouTube = C:\Users\USERNAME\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0\
CHR - Extension: Atari - Asteroids Deluxe = C:\Users\USERNAME\AppData\Local\Google\Chrome\User Data\Default\Extensions\bnhbcgedhcjfieakjabjgakokofbaahb\1.0_0\
CHR - Extension: Atari - Gravitar = C:\Users\USERNAME\AppData\Local\Google\Chrome\User Data\Default\Extensions\cmkcpnfkgflkmlogppbieeffepodmkkd\1.0_0\
CHR - Extension: Google Search = C:\Users\USERNAME\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0\
CHR - Extension: Atari - Millipede = C:\Users\USERNAME\AppData\Local\Google\Chrome\User Data\Default\Extensions\dkbollfhmapfgngdahcjdbicedcbkkge\1.0_0\
CHR - Extension: Atari - Centipede = C:\Users\USERNAME\AppData\Local\Google\Chrome\User Data\Default\Extensions\gakkiekmjcipgjlnenigjfgemakojanh\1.0_0\
CHR - Extension: Create Link = C:\Users\USERNAME\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcmghdmnkfdbncmnmlkkglmnnhagajbm\0.1.4_0\
CHR - Extension: Privacy manager = C:\Users\USERNAME\AppData\Local\Google\Chrome\User Data\Default\Extensions\giccehglhacakcfemddmfhdkahamfcmd\2.6_0\
CHR - Extension: AdBlock = C:\Users\USERNAME\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.5.61_0\
CHR - Extension: Atari - Yars' Revenge = C:\Users\USERNAME\AppData\Local\Google\Chrome\User Data\Default\Extensions\hcdhhgcmlpojjmclpjbbhelmligedpgk\1.0_0\
CHR - Extension: Atari - Asteroids = C:\Users\USERNAME\AppData\Local\Google\Chrome\User Data\Default\Extensions\hlkamaohjodmnhiehbogggcllkndklok\1.3_0\
CHR - Extension: Atari - Tempest = C:\Users\USERNAME\AppData\Local\Google\Chrome\User Data\Default\Extensions\kflkdjocancddgfnbhedkaefjdomdcaf\1.0_0\
CHR - Extension: Totoro Rainy Day = C:\Users\USERNAME\AppData\Local\Google\Chrome\User Data\Default\Extensions\lmiagjknjjfockcklibjlfdojojaffff\1.15_0\
CHR - Extension: Google Mail Checker = C:\Users\USERNAME\AppData\Local\Google\Chrome\User Data\Default\Extensions\mihcahmgecmbnbcchbopgniflfhgnkff\4.4.0_0\
CHR - Extension: DivX Plus Web Player HTML5 \u003Cvideo\u003E = C:\Users\USERNAME\AppData\Local\Google\Chrome\User Data\Default\Extensions\nneajnkjbffgblleaoojgaacokifdkhm\2.1.2.172_0\
CHR - Extension: Google Quick Scroll = C:\Users\USERNAME\AppData\Local\Google\Chrome\User Data\Default\Extensions\okanipcmceoeemlbjnmnbdibhgpbllgc\2_0\
CHR - Extension: Atari - Missile Command = C:\Users\USERNAME\AppData\Local\Google\Chrome\User Data\Default\Extensions\oobnopfjjndfekinfcddimnjbhjdgmbg\1.0_0\
CHR - Extension: Gmail = C:\Users\USERNAME\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\
 
O1 HOSTS File: ([2013/03/31 17:40:12 | 000,446,334 | R--- | M]) - C:\Windows\SysNative\drivers\etc\hosts
O1 - Hosts: 127.0.0.1	www.007guard.com
O1 - Hosts: 127.0.0.1	007guard.com
O1 - Hosts: 127.0.0.1	008i.com
O1 - Hosts: 127.0.0.1	www.008k.com
O1 - Hosts: 127.0.0.1	008k.com
O1 - Hosts: 127.0.0.1	www.00hq.com
O1 - Hosts: 127.0.0.1	00hq.com
O1 - Hosts: 127.0.0.1	010402.com
O1 - Hosts: 127.0.0.1	www.032439.com
O1 - Hosts: 127.0.0.1	032439.com
O1 - Hosts: 127.0.0.1	www.0scan.com
O1 - Hosts: 127.0.0.1	0scan.com
O1 - Hosts: 127.0.0.1	www.1000gratisproben.com
O1 - Hosts: 127.0.0.1	1000gratisproben.com
O1 - Hosts: 127.0.0.1	1001namen.com
O1 - Hosts: 127.0.0.1	www.1001namen.com
O1 - Hosts: 127.0.0.1	100888290cs.com
O1 - Hosts: 127.0.0.1	www.100888290cs.com
O1 - Hosts: 127.0.0.1	www.100sexlinks.com
O1 - Hosts: 127.0.0.1	100sexlinks.com
O1 - Hosts: 127.0.0.1	www.10sek.com
O1 - Hosts: 127.0.0.1	10sek.com
O1 - Hosts: 127.0.0.1	www.1-2005-search.com
O1 - Hosts: 127.0.0.1	1-2005-search.com
O1 - Hosts: 127.0.0.1	www.123fporn.info
O1 - Hosts: 15324 more lines...
O2:[b]64bit:[/b] - BHO: (avast! WebRep) - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
O2:[b]64bit:[/b] - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
O2:[b]64bit:[/b] - BHO: (Skype add-on for Internet Explorer) - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (Skype Technologies S.A.)
O2:[b]64bit:[/b] - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
O2 - BHO: (DivX Plus Web Player HTML5 <video>) - {326E768D-4182-46FD-9C16-1449A49795F4} - C:\Program Files (x86)\DivX\DivX Plus Web Player\ie\DivXHTML5\DivXHTML5.dll (DivX, LLC)
O2 - BHO: (Spybot-S&D IE Protection) - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files (x86)\Spybot - Search & Destroy\SDHelper.dll (Safer Networking Limited)
O2 - BHO: (uTorrentControl_v2 Toolbar) - {7473b6bd-4691-4744-a82b-7854eb3d70b6} - C:\Program Files (x86)\uTorrentControl_v2\prxtbuTor.dll (Conduit Ltd.)
O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
O2 - BHO: (avast! WebRep) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
O2 - BHO: (Skype Browser Helper) - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
O3:[b]64bit:[/b] - HKLM\..\Toolbar: (avast! WebRep) - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
O3 - HKLM\..\Toolbar: (uTorrentControl_v2 Toolbar) - {7473b6bd-4691-4744-a82b-7854eb3d70b6} - C:\Program Files (x86)\uTorrentControl_v2\prxtbuTor.dll (Conduit Ltd.)
O3 - HKLM\..\Toolbar: (avast! WebRep) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
O3 - HKCU\..\Toolbar\WebBrowser: (uTorrentControl_v2 Toolbar) - {7473B6BD-4691-4744-A82B-7854EB3D70B6} - C:\Program Files (x86)\uTorrentControl_v2\prxtbuTor.dll (Conduit Ltd.)
O4:[b]64bit:[/b] - HKLM..\Run: [FDispPos] C:\Program Files (x86)\Common Files\DesktopUtil\Util-Desktop.exe ()
O4:[b]64bit:[/b] - HKLM..\Run: [MCTDUtil] C:\Program Files (x86)\Common Files\DesktopUtil\Util-Desktop.exe ()
O4:[b]64bit:[/b] - HKLM..\Run: [Skytel] C:\Program Files\Realtek\Audio\HDA\SkyTel.exe (Realtek Semiconductor Corp.)
O4 - HKLM..\Run: [APSDaemon] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe (Apple Inc.)
O4 - HKLM..\Run: [avast] C:\Program Files\AVAST Software\Avast\avastUI.exe (AVAST Software)
O4 - HKLM..\Run: [DivXMediaServer] C:\Program Files (x86)\DivX\DivX Media Server\DivXMediaServer.exe (DivX, LLC)
O4 - HKLM..\Run: [DivXUpdate] C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe ()
O4 - HKLM..\Run: [StartCCC] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe (Advanced Micro Devices, Inc.)
O4 - Startup: C:\Users\USERNAME\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dyn Updater Tray Icon.lnk = C:\Program Files (x86)\Dyn Updater\DynTray.exe (Dyn, Inc.)
O4 - Startup: C:\Users\USERNAME\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Launchy.lnk = E:\Programs\installed programs\Launchy\Launchy.exe ()
O4 - Startup: C:\Users\USERNAME\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\MagicDisc.lnk = C:\Program Files (x86)\MagicDisc\MagicDisc.exe (MagicISO, Inc.)
O4 - Startup: C:\Users\USERNAME\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\XAMPP Control Panel.lnk = E:\Programs\installed programs\xampp\xampp-control.exe ()
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O9:[b]64bit:[/b] - Extra Button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (Skype Technologies S.A.)
O9 - Extra Button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O9 - Extra 'Tools' menuitem : Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files (x86)\Spybot - Search & Destroy\SDHelper.dll (Safer Networking Limited)
O10:[b]64bit:[/b] - NameSpace_Catalog5\Catalog_Entries64\000000000005 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O10:[b]64bit:[/b] - Protocol_Catalog9\Catalog_Entries64\000000000001 - mmswsock.dll File not found
O10:[b]64bit:[/b] - Protocol_Catalog9\Catalog_Entries64\000000000002 - mmswsock.dll File not found
O10:[b]64bit:[/b] - Protocol_Catalog9\Catalog_Entries64\000000000003 - mmswsock.dll File not found
O10:[b]64bit:[/b] - Protocol_Catalog9\Catalog_Entries64\000000000004 - mmswsock.dll File not found
O10:[b]64bit:[/b] - Protocol_Catalog9\Catalog_Entries64\000000000005 - mmswsock.dll File not found
O10:[b]64bit:[/b] - Protocol_Catalog9\Catalog_Entries64\000000000006 - mmswsock.dll File not found
O10:[b]64bit:[/b] - Protocol_Catalog9\Catalog_Entries64\000000000007 - mmswsock.dll File not found
O10:[b]64bit:[/b] - Protocol_Catalog9\Catalog_Entries64\000000000008 - mmswsock.dll File not found
O10:[b]64bit:[/b] - Protocol_Catalog9\Catalog_Entries64\000000000009 - mmswsock.dll File not found
O10:[b]64bit:[/b] - Protocol_Catalog9\Catalog_Entries64\000000000010 - mmswsock.dll File not found
O10:[b]64bit:[/b] - Protocol_Catalog9\Catalog_Entries64\000000000011 - mmswsock.dll File not found
O10 - NameSpace_Catalog5\Catalog_Entries\000000000005 [] - C:\Program Files (x86)\Bonjour\mdnsNSP.dll (Apple Inc.)
O10 - Protocol_Catalog9\Catalog_Entries\000000000001 - %SystemRoot%\system32\wshbth.dll File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000002 - %SystemRoot%\system32\wshbth.dll File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000003 - %SystemRoot%\system32\wshbth.dll File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000004 - %SystemRoot%\system32\wshbth.dll File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000005 - %SystemRoot%\system32\wshbth.dll File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000006 - %SystemRoot%\system32\wshbth.dll File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000007 - %SystemRoot%\system32\wshbth.dll File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000008 - %SystemRoot%\system32\wshbth.dll File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000009 - %SystemRoot%\system32\wshbth.dll File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000010 - %SystemRoot%\system32\wshbth.dll File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000011 - %SystemRoot%\system32\wshbth.dll File not found
O13[b]64bit:[/b] - gopher Prefix: missing
O13 - gopher Prefix: missing
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.254
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{F99C30A0-B71A-4082-98D3-882FC6DCF5DF}: DhcpNameServer = 192.168.1.254
O18:[b]64bit:[/b] - Protocol\Handler\skype4com - No CLSID value found
O18:[b]64bit:[/b] - Protocol\Handler\skype-ie-addon-data {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (Skype Technologies S.A.)
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O18 - Protocol\Handler\skype-ie-addon-data {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O20:[b]64bit:[/b] - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20:[b]64bit:[/b] - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (userinit.exe) - C:\Windows\SysWow64\userinit.exe (Microsoft Corporation)
O21:[b]64bit:[/b] - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O32 - HKLM CDRom: AutoRun - 1
O33 - MountPoints2\{c646aac9-3943-11e2-9a72-806e6f6e6963}\Shell - "" = AutoRun
O33 - MountPoints2\{c646aac9-3943-11e2-9a72-806e6f6e6963}\Shell\AutoRun\command - "" = F:\Autorun.exe
O34 - HKLM BootExecute: (autocheck autochk *)
O35:[b]64bit:[/b] - HKLM\..comfile [open] -- "%1" %*
O35:[b]64bit:[/b] - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:[b]64bit:[/b] - HKLM\...com [@ = comfile] -- "%1" %*
O37:[b]64bit:[/b] - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)
 
[color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color]
 
[2013/04/14 23:04:46 | 000,027,256 | ---- | C] (Symantec Corporation) -- C:\Windows\SysNative\drivers\FixZeroAccess.sys
[2013/04/14 19:16:32 | 000,000,000 | ---D | C] -- C:\Users\USERNAME\Documents\My Cheat Tables
[2013/04/14 19:16:27 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Cheat Engine 6.2
[2013/04/14 18:29:03 | 000,000,000 | ---D | C] -- C:\Users\USERNAME\AppData\Roaming\ImgBurn
[2013/04/14 18:25:30 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ImgBurn
[2013/04/14 18:25:29 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\ImgBurn
[2013/04/14 18:23:42 | 000,000,000 | ---D | C] -- C:\Users\USERNAME\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MagicDisc
[2013/04/14 18:23:42 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MagicDisc
[2013/04/14 18:22:52 | 000,255,552 | ---- | C] (MagicISO, Inc.) -- C:\Windows\SysWow64\drivers\mcdbus.sys
[2013/04/14 18:22:52 | 000,255,552 | ---- | C] (MagicISO, Inc.) -- C:\Windows\SysNative\drivers\mcdbus.sys
[2013/04/14 18:22:48 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\MagicDisc
[2013/04/14 15:52:04 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Atari
[2013/04/14 14:59:39 | 000,000,000 | ---D | C] -- C:\Users\USERNAME\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games
[2013/04/14 14:59:26 | 000,000,000 | ---D | C] -- C:\Users\USERNAME\AppData\Roaming\Leadertech
[2013/04/12 03:32:55 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Skype
[2013/04/07 20:59:16 | 000,000,000 | ---D | C] -- C:\Users\USERNAME\AppData\Roaming\BBCiPlayerDesktop.61DB7A798358575D6A969CCD73DDBBD723A6DA9D.1
[2013/04/07 20:59:05 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\BBC iPlayer Desktop
[2013/04/07 20:58:50 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Adobe AIR
[2013/03/31 17:43:17 | 000,000,000 | ---D | C] -- C:\Users\USERNAME\AppData\Local\Programs
[2013/03/31 17:40:32 | 000,000,000 | ---D | C] -- C:\Users\USERNAME\AppData\Roaming\Malwarebytes
[2013/03/30 21:08:22 | 000,720,896 | ---- | C] (Indigo Rose Corporation) -- C:\Windows\iun6002.exe
[2013/03/30 21:08:22 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Charger
[2013/03/30 21:08:17 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Charger
[2013/03/30 21:03:56 | 000,000,000 | ---D | C] -- C:\Program Files\SiLabs
[2013/03/23 13:23:21 | 000,138,880 | ---- | C] (Magic Control Technology Corporation) -- C:\Windows\SysWow64\MCTU.dll
[2013/03/23 13:23:12 | 000,917,120 | ---- | C] (Magic Control Technology Corporation) -- C:\Windows\SysNative\SilentUtility.exe
[2013/03/23 13:23:11 | 001,113,728 | ---- | C] (Magic Control Technology Corporation) -- C:\Windows\SysNative\MTri1+64.exe
[2013/03/23 13:23:11 | 000,914,808 | ---- | C] (Magic Control Technology Corporation) -- C:\Windows\SysNative\MTrigger2.exe
[2013/03/23 13:23:11 | 000,440,320 | ---- | C] (Magic Control Technology Corporation) -- C:\Windows\SysNative\SU-T2.exe
[2013/03/23 13:23:11 | 000,272,760 | ---- | C] (MCT) -- C:\Windows\SysNative\MCTHOOKKEY.DLL
[2013/03/23 13:23:10 | 000,336,248 | ---- | C] (Magic Control Technology Corporation) -- C:\Windows\SysNative\mctsetup64.dll
[2013/03/23 13:23:10 | 000,274,048 | ---- | C] (MCT) -- C:\Windows\SysNative\MHK2.DLL
[2013/03/23 13:23:06 | 000,174,720 | ---- | C] (Magic Control Technology Corporation) -- C:\Windows\SysNative\mctux.dll
[2013/03/23 13:23:06 | 000,135,296 | ---- | C] (Magic Control Technology Corporation) -- C:\Windows\SysNative\drivers\mctkmd64.sys
[2013/03/23 13:23:06 | 000,019,584 | ---- | C] (Magic Control Technology Corporation) -- C:\Windows\SysNative\drivers\mctKmdldr64.sys
[2013/03/23 13:23:05 | 000,085,120 | ---- | C] (Magic Control Technology Corporation) -- C:\Windows\SysNative\mctumd64.dll
[2013/03/23 13:23:02 | 000,315,392 | ---- | C] (TODO: <Company name>) -- C:\Windows\SysWow64\mctudll.exe
[2013/03/23 13:23:02 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\MCTWDDM
[2013/03/23 13:22:56 | 000,172,544 | ---- | C] (Magic Control Technology Corp.) -- C:\Windows\SysNative\drivers\t1pusb64.sys
[2013/03/23 13:22:53 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\DesktopUtil
[2013/03/23 13:21:56 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\MCT Corp
[2013/03/23 13:21:43 | 000,000,000 | ---D | C] -- C:\Users\USERNAME\AppData\Roaming\InstallShield
[2013/03/23 12:23:46 | 000,000,000 | ---D | C] -- C:\Users\USERNAME\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Flying Model Simulator
[2013/03/23 12:22:01 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Flying Model Simulator
[2013/03/22 13:39:54 | 000,000,000 | ---D | C] -- C:\ProgramData\Sun
[2013/03/22 13:39:52 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Java
[2013/03/22 13:38:21 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Java
[2013/03/22 13:37:14 | 000,000,000 | ---D | C] -- C:\ProgramData\McAfee
[2013/03/19 14:28:53 | 000,000,000 | ---D | C] -- C:\Users\USERNAME\AppData\Roaming\DivX
[2013/03/19 14:28:20 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DivX Plus
[2013/03/19 14:28:15 | 000,000,000 | ---D | C] -- C:\Program Files\DivX
[2013/03/19 14:28:10 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\DivX Shared
[2013/03/19 14:25:51 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\DivX
[2013/03/19 14:25:10 | 000,000,000 | ---D | C] -- C:\ProgramData\DivX
 
[color=#E56717]========== Files - Modified Within 30 Days ==========[/color]
 
[2013/04/15 00:06:34 | 000,726,142 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI
[2013/04/15 00:06:34 | 000,623,940 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat
[2013/04/15 00:06:34 | 000,106,316 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat
[2013/04/15 00:01:53 | 000,002,752 | ---- | M] () -- C:\Windows\SysNative\GManager.ini
[2013/04/15 00:01:29 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2013/04/15 00:01:15 | 3220,037,632 | -HS- | M] () -- C:\hiberfil.sys
[2013/04/14 23:05:12 | 000,010,128 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2013/04/14 23:05:12 | 000,010,128 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2013/04/14 23:04:46 | 000,027,256 | ---- | M] (Symantec Corporation) -- C:\Windows\SysNative\drivers\FixZeroAccess.sys
[2013/04/14 23:00:00 | 000,000,830 | ---- | M] () -- C:\Windows\tasks\Adobe Flash Player Updater.job
[2013/04/14 21:46:00 | 000,000,804 | ---- | M] () -- C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
[2013/04/14 21:25:26 | 000,000,912 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-243996504-1975041638-16044808-1000UA.job
[2013/04/14 19:17:47 | 000,000,693 | ---- | M] () -- C:\Users\Public\Desktop\Locomotion.lnk
[2013/04/14 19:16:28 | 000,000,784 | ---- | M] () -- C:\Users\USERNAME\Desktop\Cheat Engine.lnk
[2013/04/14 18:32:56 | 000,043,520 | ---- | M] () -- C:\Windows\SysWow64\CmdLineExt03.dll
[2013/04/14 18:25:30 | 000,001,861 | ---- | M] () -- C:\Users\Public\Desktop\ImgBurn.lnk
[2013/04/14 18:23:42 | 000,000,985 | ---- | M] () -- C:\Users\USERNAME\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\MagicDisc.lnk
[2013/04/14 18:23:42 | 000,000,949 | ---- | M] () -- C:\Users\USERNAME\Desktop\MagicDisc.lnk
[2013/04/14 17:25:00 | 000,000,860 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-243996504-1975041638-16044808-1000Core.job
[2013/04/12 03:23:04 | 000,295,136 | ---- | M] () -- C:\Windows\SysNative\FNTCACHE.DAT
[2013/04/07 20:59:06 | 000,000,981 | ---- | M] () -- C:\Users\Public\Desktop\BBC iPlayer Desktop.lnk
[2013/04/04 14:50:32 | 000,025,928 | ---- | M] (Malwarebytes Corporation) -- C:\Windows\SysNative\drivers\mbam.sys
[2013/03/31 17:59:23 | 000,000,000 | ---- | M] () -- C:\Windows\SysWow64\config.nt
[2013/03/31 17:40:12 | 000,446,334 | R--- | M] () -- C:\Windows\SysNative\drivers\etc\hosts
[2013/03/30 21:07:33 | 000,720,896 | ---- | M] (Indigo Rose Corporation) -- C:\Windows\iun6002.exe
[2013/03/23 12:23:46 | 000,000,678 | ---- | M] () -- C:\Users\USERNAME\Desktop\FMS.lnk
[2013/03/22 03:05:30 | 000,025,185 | ---- | M] () -- C:\Windows\SysWow64\ieuinit.inf
[2013/03/22 03:05:30 | 000,025,185 | ---- | M] () -- C:\Windows\SysNative\ieuinit.inf
 
[color=#E56717]========== Files Created - No Company Name ==========[/color]
 
[2013/04/14 19:16:28 | 000,000,784 | ---- | C] () -- C:\Users\USERNAME\Desktop\Cheat Engine.lnk
[2013/04/14 18:25:30 | 000,001,873 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ImgBurn.lnk
[2013/04/14 18:25:30 | 000,001,861 | ---- | C] () -- C:\Users\Public\Desktop\ImgBurn.lnk
[2013/04/14 18:23:42 | 000,000,985 | ---- | C] () -- C:\Users\USERNAME\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\MagicDisc.lnk
[2013/04/14 18:23:42 | 000,000,949 | ---- | C] () -- C:\Users\USERNAME\Desktop\MagicDisc.lnk
[2013/04/14 15:57:11 | 000,000,693 | ---- | C] () -- C:\Users\Public\Desktop\Locomotion.lnk
[2013/04/14 14:59:48 | 000,043,520 | ---- | C] () -- C:\Windows\SysWow64\CmdLineExt03.dll
[2013/04/07 20:59:06 | 000,000,993 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\BBC iPlayer Desktop.lnk
[2013/04/07 20:59:06 | 000,000,981 | ---- | C] () -- C:\Users\Public\Desktop\BBC iPlayer Desktop.lnk
[2013/03/31 17:59:25 | 000,178,624 | ---- | C] () -- C:\Windows\SysNative\drivers\aswVmm.sys
[2013/03/31 17:59:24 | 000,065,336 | ---- | C] () -- C:\Windows\SysNative\drivers\aswRvrt.sys
[2013/03/23 13:23:19 | 000,002,752 | ---- | C] () -- C:\Windows\SysNative\GManager.ini
[2013/03/23 13:23:12 | 000,272,512 | ---- | C] () -- C:\Windows\SysNative\U2VSvr.exe
[2013/03/23 13:23:12 | 000,195,200 | ---- | C] () -- C:\Windows\SysNative\Util.exe
[2013/03/23 13:23:11 | 000,048,170 | ---- | C] () -- C:\Windows\SysNative\MTri1+.ini
[2013/03/23 13:23:10 | 000,272,512 | ---- | C] () -- C:\Windows\SysNative\U2VT2Svr.exe
[2013/03/23 13:23:10 | 000,261,760 | ---- | C] () -- C:\Windows\SysNative\Util-MTrigger2.exe
[2013/03/23 13:23:10 | 000,048,178 | ---- | C] () -- C:\Windows\SysNative\Mtrigger2.ini
[2013/03/23 13:23:06 | 000,013,440 | ---- | C] () -- C:\Windows\SysNative\drivers\u3hpatch64.sys
[2013/03/23 13:23:05 | 000,311,160 | ---- | C] () -- C:\Windows\SysNative\GManager.exe
[2013/03/23 13:23:02 | 000,430,080 | ---- | C] () -- C:\Windows\SysWow64\UDLL.dll
[2013/03/23 13:23:02 | 000,045,056 | ---- | C] () -- C:\Windows\SysWow64\mctudll.dll
[2013/03/23 12:22:01 | 000,000,678 | ---- | C] () -- C:\Users\USERNAME\Desktop\FMS.lnk
[2013/03/22 03:05:30 | 000,025,185 | ---- | C] () -- C:\Windows\SysWow64\ieuinit.inf
[2013/03/22 03:05:30 | 000,025,185 | ---- | C] () -- C:\Windows\SysNative\ieuinit.inf
[2012/11/27 21:11:53 | 000,000,010 | ---- | C] () -- C:\Windows\GSetup.ini
[2012/11/27 20:35:21 | 000,000,000 | ---- | C] () -- C:\Windows\ativpsrm.bin
[2012/11/27 20:23:29 | 000,003,929 | ---- | C] () -- C:\Windows\SysWow64\atipblag.dat
[2011/05/25 00:44:26 | 000,059,904 | ---- | C] () -- C:\Windows\SysWow64\OVDecode.dll
 
[color=#E56717]========== ZeroAccess Check ==========[/color]
 
[2011/11/16 23:41:18 | 000,002,048 | -HS- | M] () -- C:\Windows\Installer\{6cc74025-0e13-8c10-d24c-6fdb4de0f5f0}\@
[2011/11/16 23:41:18 | 000,000,000 | -HSD | M] -- C:\Windows\Installer\{6cc74025-0e13-8c10-d24c-6fdb4de0f5f0}\L
[2013/04/15 00:14:42 | 000,000,000 | -HSD | M] -- C:\Windows\Installer\{6cc74025-0e13-8c10-d24c-6fdb4de0f5f0}\U
[2013/04/14 22:50:58 | 000,002,048 | ---- | M] () -- C:\Windows\Installer\{6cc74025-0e13-8c10-d24c-6fdb4de0f5f0}\U\[email protected]
[2013/04/15 00:06:04 | 000,232,960 | ---- | M] () -- C:\Windows\Installer\{6cc74025-0e13-8c10-d24c-6fdb4de0f5f0}\U\[email protected]
[2013/04/14 22:50:58 | 000,015,360 | ---- | M] () -- C:\Windows\Installer\{6cc74025-0e13-8c10-d24c-6fdb4de0f5f0}\U\[email protected]
[2009/07/13 21:55:00 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini
[2013/04/15 00:01:29 | 000,004,608 | -HS- | M] () -- C:\Windows\assembly\GAC_32\Desktop.ini
[2013/04/15 00:01:29 | 000,006,144 | -HS- | M] () -- C:\Windows\assembly\GAC_64\Desktop.ini
 
[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
 
[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
 
[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] /64
 
[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]
 
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
"" = C:\Windows\SysNative\shell32.dll -- [2012/06/08 22:43:10 | 014,172,672 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment
 
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shell32.dll -- [2012/06/08 21:41:00 | 012,873,728 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment
 
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\fastprox.dll -- [2009/07/13 18:40:51 | 000,909,312 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free
 
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2010/11/20 05:19:02 | 000,606,208 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free
 
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\wbemess.dll -- [2009/07/13 18:41:56 | 000,505,856 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both
 
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]
 
[color=#E56717]========== LOP Check ==========[/color]
 
[2013/01/22 22:16:08 | 000,000,000 | ---D | M] -- C:\Users\USERNAME\AppData\Roaming\Arduino
[2013/01/22 23:03:23 | 000,000,000 | ---D | M] -- C:\Users\USERNAME\AppData\Roaming\Audacity
[2013/04/07 20:59:16 | 000,000,000 | ---D | M] -- C:\Users\USERNAME\AppData\Roaming\BBCiPlayerDesktop.61DB7A798358575D6A969CCD73DDBBD723A6DA9D.1
[2013/01/23 16:16:57 | 000,000,000 | ---D | M] -- C:\Users\USERNAME\AppData\Roaming\CadSoft
[2012/12/01 07:38:06 | 000,000,000 | ---D | M] -- C:\Users\USERNAME\AppData\Roaming\Celemony Software GmbH
[2013/03/31 21:28:14 | 000,000,000 | ---D | M] -- C:\Users\USERNAME\AppData\Roaming\HandBrake
[2013/04/14 18:31:33 | 000,000,000 | ---D | M] -- C:\Users\USERNAME\AppData\Roaming\ImgBurn
[2012/12/01 07:11:11 | 000,000,000 | ---D | M] -- C:\Users\USERNAME\AppData\Roaming\KeePass
[2012/11/27 21:25:39 | 000,000,000 | ---D | M] -- C:\Users\USERNAME\AppData\Roaming\Launchy
[2013/04/14 14:59:26 | 000,000,000 | ---D | M] -- C:\Users\USERNAME\AppData\Roaming\Leadertech
[2013/03/07 21:17:18 | 000,000,000 | ---D | M] -- C:\Users\USERNAME\AppData\Roaming\Notepad++
[2013/01/23 15:30:00 | 000,000,000 | ---D | M] -- C:\Users\USERNAME\AppData\Roaming\OpenOffice.org
[2013/01/14 12:52:05 | 000,000,000 | ---D | M] -- C:\Users\USERNAME\AppData\Roaming\Subversion
[2013/01/02 23:24:41 | 000,000,000 | ---D | M] -- C:\Users\USERNAME\AppData\Roaming\TeamViewer
[2012/11/27 21:01:43 | 000,000,000 | ---D | M] -- C:\Users\USERNAME\AppData\Roaming\TeraCopy
[2013/03/23 14:10:35 | 000,000,000 | ---D | M] -- C:\Users\USERNAME\AppData\Roaming\uTorrent
 
[color=#E56717]========== Purity Check ==========[/color]
 
 

< End of report >

Please help me!

Edited by modeltrainsfreak, 15 April 2013 - 01:44 AM.

  • 0

Advertisements


#2
gringo_pr

gringo_pr

    Trusted Helper

  • Malware Removal
  • 7,268 posts
Hello modeltrainsfreak

I would like to welcome you to the Malware Removal section of the forum.

Around here they call me Gringo and I will be glad to help you with your malware problems.


Very Important --> Please read this post completely, I have spent my time to put together somethings for you to keep in mind while I am helping you to make things go easier, faster and smoother for both of us!


  • Please do not run any tools unless instructed to do so.
    • We ask you to run different tools in a specific order to ensure the malware is completely removed from your machine, and running any additional tools may detect false positives, interfere with our tools, or cause unforeseen damage or system instability.
  • Please do not attach logs or use code boxes, just copy and paste the text.
    • Due to the high volume of logs we receive it helps to receive everything in the same format, and code boxes make the logs very difficult to read. Also, attachments require us to download and open the reports when it is easier to just read the reports in your post.
  • Please read every post completely before doing anything.
    • Pay special attention to the NOTE: lines, these entries identify an individual issue or important step in the cleanup process.
  • Please provide feedback about your experience as we go.
    • A short statement describing how the computer is working helps us understand where to go next, for example: I am still getting redirected, the computer is running normally, etc. Please do not describe the computer as "the same", this requires the extra step of looking back at your previous post.
NOTE: At the top of your post, click on the "Follow This Topic" Button, make sure that the "Receive notification" box is checked and that it is set to "Instantly" - This will send you an e-mail as soon as I reply to your topic, allowing us to resolve the issue faster.

NOTE: Backup any files that cannot be replaced. Removing malware can be unpredictable and this step can save a lot of heartaches if things don't go as planed. You can put them on a CD/DVD, external drive or a pen drive, anywhere except on the computer.

NOTE: It is good practice to copy and paste the instructions into notepad and print them in case it is necessary for you to go offline during the cleanup process. To open notepad, navigate to Start Menu > All Programs > Accessories > Notepad. Please remember to copy the entire post so you do not miss any instructions.




These are the programs I would like you to run next, if you have any problems with these just skip it and run the next one.

-Security Check-

  • Download Security Check by screen317 from here.
  • Save it to your Desktop.
  • Double click SecurityCheck.exe and follow the onscreen instructions inside of the black box.
  • A Notepad document should open automatically called checkup.txt; please post the contents of that document.

-AdwCleaner-

  • Please download AdwCleaner by Xplode onto your desktop.
  • Close all open programs and internet browsers.
  • Double click on AdwCleaner.exe to run the tool.
  • Click on Delete.
  • Confirm each time with Ok.
  • Your computer will be rebooted automatically. A text file will open after the restart.
  • Please post the content of that logfile with your next answer.
  • You can find the logfile at C:\AdwCleaner[S1].txt as well.


--RogueKiller--

  • Download & SAVE to your Desktop RogueKiller for 32bit or Roguekiller for 64bit
  • Quit all programs that you may have started.
  • Please disconnect any USB or external drives from the computer before you run this scan!
  • For Vista or Windows 7, right-click and select "Run as Administrator to start"
  • For Windows XP, double-click to start.
  • Wait until Prescan has finished ...
  • Then Click on "Scan" button
  • Wait until the Status box shows "Scan Finished"
  • click on "delete"
  • Wait until the Status box shows "Deleting Finished"
  • Click on "Report" and copy/paste the content of the Notepad into your next reply.
  • The log should be found in RKreport[1].txt on your Desktop
  • Exit/Close RogueKiller+

Gringo
  • 0

#3
modeltrainsfreak

modeltrainsfreak

    New Member

  • Topic Starter
  • Member
  • Pip
  • 9 posts
Thanks for the help on my last reboot I haven't had avast popup yet

here are the logs
---------------------
----------------------
-AdwCleaner[S1].txt-
-----------------------
# AdwCleaner v2.200 - Logfile created 04/15/2013 at 18:30:01
# Updated 02/04/2013 by Xplode
# Operating system : Windows 7 Ultimate Service Pack 1 (64 bits)
# User : USERNAME - USERNAME-PC
# Boot Mode : Normal
# Running from : C:\Users\USERNAME\Desktop\adwcleaner.exe
# Option [Delete]


***** [Services] *****


***** [Files / Folders] *****

Folder Deleted : C:\Program Files (x86)\Conduit
Folder Deleted : C:\Program Files (x86)\uTorrentControl_v2
Folder Deleted : C:\Users\USERNAME\AppData\Local\Conduit
Folder Deleted : C:\Users\USERNAME\AppData\LocalLow\Conduit
Folder Deleted : C:\Users\USERNAME\AppData\LocalLow\PriceGong
Folder Deleted : C:\Users\USERNAME\AppData\LocalLow\uTorrentControl_v2

***** [Registry] *****

Key Deleted : HKCU\Software\APN PIP
Key Deleted : HKCU\Software\AppDataLow\Software\Conduit
Key Deleted : HKCU\Software\AppDataLow\Software\ConduitSearchScopes
Key Deleted : HKCU\Software\AppDataLow\Software\PriceGong
Key Deleted : HKCU\Software\AppDataLow\Software\SmartBar
Key Deleted : HKCU\Software\AppDataLow\Software\uTorrentControl_v2
Key Deleted : HKCU\Software\AppDataLow\Toolbar
Key Deleted : HKCU\Software\Conduit
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{7473B6BD-4691-4744-A82B-7854EB3D70B6}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{537F4F0B-3542-4C7D-A3E5-CF121482696C}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{7473B6BD-4691-4744-A82B-7854EB3D70B6}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{AFDBDDAA-5D3F-42EE-B79C-185A7020515B}
Key Deleted : HKLM\SOFTWARE\Classes\Toolbar.CT3220468
Key Deleted : HKLM\Software\Conduit
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{537F4F0B-3542-4C7D-A3E5-CF121482696C}
Key Deleted : HKLM\Software\PIP
Key Deleted : HKLM\Software\uTorrentControl_v2
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{3C471948-F874-49F5-B338-4F214A2EE0B1}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{537F4F0B-3542-4C7D-A3E5-CF121482696C}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{7473B6BD-4691-4744-A82B-7854EB3D70B6}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{71B9FF29-053A-4225-9382-CA14F979062E}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{80107600-CE77-4A60-ABE9-BA00BF151B42}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{AFDBDDAA-5D3F-42EE-B79C-185A7020515B}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{7473B6BD-4691-4744-A82B-7854EB3D70B6}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\uTorrentControl_v2 Toolbar
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{7473B6BD-4691-4744-A82B-7854EB3D70B6}]
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks [{7473B6BD-4691-4744-A82B-7854EB3D70B6}]
Value Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks [{7473B6BD-4691-4744-A82B-7854EB3D70B6}]
Value Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar [{7473B6BD-4691-4744-A82B-7854EB3D70B6}]

***** [Internet Browsers] *****

-\\ Internet Explorer v10.0.9200.16537

[OK] Registry is clean.

-\\ Google Chrome v [Unable to get version]

File : C:\Users\USERNAME\AppData\Local\Google\Chrome\User Data\Default\Preferences

[OK] File is clean.

*************************

AdwCleaner[S1].txt - [3592 octets] - [15/04/2013 18:30:01]

########## EOF - C:\AdwCleaner[S1].txt - [3652 octets] ##########
----------------
-----------------
-checkup.txt-
-----------------
Results of screen317's Security Check version 0.99.62
Windows 7 Service Pack 1 x64 (UAC is enabled)
Internet Explorer 9
``````````````Antivirus/Firewall Check:``````````````
Windows Security Center service is not running! This report may not be accurate!
avast! Antivirus
Antivirus up to date!
`````````Anti-malware/Other Utilities Check:`````````
MVPS Hosts File
Spybot - Search & Destroy
Malwarebytes Anti-Malware version 1.75.0.1300
Java 7 Update 17
Adobe Flash Player 11.6.602.180
Adobe Reader XI
````````Process Check: objlist.exe by Laurent````````
AVAST Software Avast AvastSvc.exe
AVAST Software Avast AvastUI.exe
`````````````````System Health check`````````````````
Total Fragmentation on Drive C: 2%
````````````````````End of Log``````````````````````

-----------------
-----------------
-RKreport[1]_S_04152013_02d1840.txt-
------------------
RogueKiller V8.5.4 _x64_ [Mar 18 2013] by Tigzy
mail : tigzyRK<at>gmail<dot>com
Feedback : http://www.geekstogo...13-roguekiller/
Website : http://tigzy.geeksto...roguekiller.php
Blog : http://tigzyrk.blogspot.com/

Operating System : Windows 7 (6.1.7601 Service Pack 1) 64 bits version
Started in : Normal mode
User : USERNAME [Admin rights]
Mode : Scan -- Date : 04/15/2013 18:40:25
| ARK || FAK || MBR |

¤¤¤ Bad processes : 0 ¤¤¤

¤¤¤ Registry Entries : 3 ¤¤¤
[PROXY IE] HKCU\[...]\Internet Settings : ProxyServer (149.3.141.76:443) -> FOUND
[HJ DESK] HKLM\[...]\NewStartPanel : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1) -> FOUND
[HJ DESK] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> FOUND

¤¤¤ Particular Files / Folders: ¤¤¤
[ZeroAccess][FILE] @ : C:\Windows\Installer\{6cc74025-0e13-8c10-d24c-6fdb4de0f5f0}\@ [-] --> FOUND
[ZeroAccess][FOLDER] U : C:\Windows\Installer\{6cc74025-0e13-8c10-d24c-6fdb4de0f5f0}\U --> FOUND
[ZeroAccess][FOLDER] L : C:\Windows\Installer\{6cc74025-0e13-8c10-d24c-6fdb4de0f5f0}\L --> FOUND
[ZeroAccess][FILE] Desktop.ini : C:\Windows\Assembly\GAC_32\Desktop.ini [-] --> FOUND
[ZeroAccess][FILE] Desktop.ini : C:\Windows\Assembly\GAC_64\Desktop.ini [-] --> FOUND
[Susp.ASLR][FILE] services.exe : C:\Windows\system32\services.exe [-] --> FOUND

¤¤¤ Driver : [NOT LOADED] ¤¤¤

¤¤¤ Infection : ZeroAccess ¤¤¤

¤¤¤ HOSTS File: ¤¤¤
--> C:\Windows\system32\drivers\etc\hosts

127.0.0.1 www.007guard.com
127.0.0.1 007guard.com
127.0.0.1 008i.com
127.0.0.1 www.008k.com
127.0.0.1 008k.com
127.0.0.1 www.00hq.com
127.0.0.1 00hq.com
127.0.0.1 010402.com
127.0.0.1 www.032439.com
127.0.0.1 032439.com
127.0.0.1 www.0scan.com
127.0.0.1 0scan.com
127.0.0.1 www.1000gratisproben.com
127.0.0.1 1000gratisproben.com
127.0.0.1 1001namen.com
127.0.0.1 www.1001namen.com
127.0.0.1 100888290cs.com
127.0.0.1 www.100888290cs.com
127.0.0.1 www.100sexlinks.com
127.0.0.1 100sexlinks.com
[...]


¤¤¤ MBR Check: ¤¤¤

+++++ PhysicalDrive0: WDC WD20EADS-00S2B0 ATA Device +++++
--- User ---
[MBR] 141349ed552ecf521abcf03ee591e662
[BSP] 5f4f03aa2639d673a8774acf90a71519 : Empty MBR Code
Partition table:
0 - [XXXXXX] FAT32 (0x0b) [VISIBLE] Offset (sectors): 63 | Size: 1525878 Mo
1 - [XXXXXX] UNKNOWN (0xaf) [VISIBLE] Offset (sectors): 3125000088 | Size: 381850 Mo
User = LL1 ... OK!
User = LL2 ... OK!

+++++ PhysicalDrive1: Maxtor 6B200M0 ATA Device +++++
--- User ---
[MBR] 310f214af468ef5487c53c458e4590f7
[BSP] 2a8e78dd25b363168c466d8d63e95c92 : MBR Code unknown
Partition table:
0 - [XXXXXX] UNKNOWN (0xee) [VISIBLE] Offset (sectors): 1 | Size: 190782 Mo
User = LL1 ... OK!
User = LL2 ... OK!

+++++ PhysicalDrive2: WDC WD1600BB-00GUC0 ATA Device +++++
--- User ---
[MBR] 575e06d138df09d8834158c78452b1e2
[BSP] 179f701c7bdfcca517ba95a44bb8b99e : Windows 7/8 MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 2048 | Size: 100 Mo
1 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 206848 | Size: 152525 Mo
User = LL1 ... OK!
User = LL2 ... OK!

+++++ PhysicalDrive3: WDC WD20EARX-32PASB0 ATA Device +++++
--- User ---
[MBR] 45042da47ecc7d00d0776203bc3cc466
[BSP] 5f305ccc28987db04f4b04a06a5a3f82 : Empty MBR Code
Partition table:
0 - [XXXXXX] FAT32 (0x0b) [VISIBLE] Offset (sectors): 63 | Size: 1907729 Mo
User = LL1 ... OK!
User = LL2 ... OK!

Finished : << RKreport[1]_S_04152013_02d1840.txt >>
RKreport[1]_S_04152013_02d1840.txt
  • 0

#4
gringo_pr

gringo_pr

    Trusted Helper

  • Malware Removal
  • 7,268 posts
Hello modeltrainsfreak

I Would like you to do the following.

Please print out or make a copy in notepad of any instructions given, as sometimes it is necessary to go offline and you will lose access to them.

Run Combofix:

You may be asked to install or update the Recovery Console (Win XP Only) if this happens please allow it to do so (you will need to be connected to the internet for this)

Before you run Combofix I will need you to turn off any security software you have running, If you do not know how to do this you can find out >here< or >here<

Combofix may need to reboot your computer more than once to do its job this is normal.

You can download Combofix from one of these links. I want you to save it to the desktop and run it from there.
Link 1
Link 2
Link 3
1. Close any open browsers or any other programs that are open.
2. Close/disable all anti virus and anti malware programs so they do not interfere with the running of ComboFix.

Double click on combofix.exe & follow the prompts.
When finished, it will produce a report for you.

Note 1: Do not mouseclick combofix's window while it's running. That may cause it to stall

Note 2: If you receive an error "Illegal operation attempted on a registry key that has been marked for deletion." Please restart the computer

"information and logs"

  • In your next post I need the following
  • Log from Combofix
  • let me know of any problems you may have had
  • How is the computer doing now?

Gringo
  • 0

#5
modeltrainsfreak

modeltrainsfreak

    New Member

  • Topic Starter
  • Member
  • Pip
  • 9 posts
here is the log from ComboFix

----------
-log.txt-
----------
ComboFix 13-04-15.01 - USERNAME 04/15/2013 20:29:32.1.2 - x64
Microsoft Windows 7 Ultimate 6.1.7601.1.1252.1.1033.18.4094.2610 [GMT -7:00]
Running from: c:\users\USERNAME\Desktop\ComboFix.exe
AV: avast! Antivirus *Enabled/Updated* {2B2D1395-420B-D5C9-657E-930FE358FC3C}
SP: avast! Antivirus *Enabled/Updated* {904CF271-6431-DA47-5FCE-A87D98DFB681}
SP: Windows Defender *Disabled/Outdated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\windows\assembly\GAC_32\Desktop.ini
c:\windows\assembly\GAC_64\Desktop.ini
c:\windows\Installer\{6cc74025-0e13-8c10-d24c-6fdb4de0f5f0}\U\[email protected]
c:\windows\Installer\{6cc74025-0e13-8c10-d24c-6fdb4de0f5f0}\U\[email protected]
c:\windows\Installer\{6cc74025-0e13-8c10-d24c-6fdb4de0f5f0}\U\[email protected]
c:\windows\Installer\{6cc74025-0e13-8c10-d24c-6fdb4de0f5f0}\U\[email protected]
c:\windows\Installer\{6cc74025-0e13-8c10-d24c-6fdb4de0f5f0}\U\[email protected]
c:\windows\Installer\{6cc74025-0e13-8c10-d24c-6fdb4de0f5f0}\U\[email protected]
c:\windows\Installer\{6cc74025-0e13-8c10-d24c-6fdb4de0f5f0}\U\trz2E07.tmp
c:\windows\Installer\{6cc74025-0e13-8c10-d24c-6fdb4de0f5f0}\U\trz55E4.tmp
c:\windows\iun6002.exe
.
.
((((((((((((((((((((((((( Files Created from 2013-03-16 to 2013-04-16 )))))))))))))))))))))))))))))))
.
.
2013-04-16 03:33 . 2013-04-16 03:33 -------- d-----w- c:\users\Default\AppData\Local\temp
2013-04-16 01:52 . 2009-07-14 01:39 328704 ----a-w- c:\windows\system32\services.exe
2013-04-15 06:04 . 2013-04-15 06:04 27256 ----a-w- c:\windows\system32\drivers\FixZeroAccess.sys
2013-04-15 01:29 . 2013-04-15 01:31 -------- d-----w- c:\users\USERNAME\AppData\Roaming\ImgBurn
2013-04-15 01:25 . 2013-04-15 01:25 -------- d-----w- c:\program files (x86)\ImgBurn
2013-04-15 01:22 . 2009-02-25 01:35 255552 ----a-w- c:\windows\SysWow64\drivers\mcdbus.sys
2013-04-15 01:22 . 2009-02-25 01:35 255552 ----a-w- c:\windows\system32\drivers\mcdbus.sys
2013-04-15 01:22 . 2013-04-15 01:24 -------- d-----w- c:\program files (x86)\MagicDisc
2013-04-14 22:48 . 2003-02-27 23:12 696320 ----a-w- c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\0701\Intel32\iKernel.dll
2013-04-14 22:48 . 2002-12-05 21:10 155648 ----a-w- c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\0701\Intel32\iuser.dll
2013-04-14 22:48 . 2002-12-02 22:22 5632 ----a-w- c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\0701\Intel32\DotNetInstaller.exe
2013-04-14 22:48 . 2002-12-02 20:33 57344 ----a-w- c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\0701\Intel32\ctor.dll
2013-04-14 22:48 . 2002-12-02 20:33 237568 ----a-w- c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\0701\Intel32\iscript.dll
2013-04-14 22:48 . 2013-04-14 22:48 282756 ----a-w- c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\0701\Intel32\setup.dll
2013-04-14 22:48 . 2013-04-14 22:48 163972 ----a-w- c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\0701\Intel32\iGdi.dll
2013-04-14 21:59 . 2013-04-15 01:32 43520 ----a-w- c:\windows\SysWow64\CmdLineExt03.dll
2013-04-14 21:59 . 2013-04-14 21:59 -------- d-----w- c:\users\USERNAME\AppData\Roaming\Leadertech
2013-04-13 14:28 . 2013-04-13 14:28 76232 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{F60D8955-CC60-4859-98A5-16893FF0C5F8}\offreg.dll
2013-04-12 10:32 . 2013-04-12 10:32 -------- d-----w- c:\program files (x86)\Common Files\Skype
2013-04-11 22:29 . 2013-03-01 03:36 3153408 ----a-w- c:\windows\system32\win32k.sys
2013-04-11 22:29 . 2013-03-19 06:04 5550424 ----a-w- c:\windows\system32\ntoskrnl.exe
2013-04-11 22:29 . 2013-03-19 05:04 3913560 ----a-w- c:\windows\SysWow64\ntoskrnl.exe
2013-04-11 22:29 . 2013-03-19 05:04 3968856 ----a-w- c:\windows\SysWow64\ntkrnlpa.exe
2013-04-11 22:29 . 2013-03-19 03:06 112640 ----a-w- c:\windows\system32\smss.exe
2013-04-11 22:29 . 2013-03-19 05:46 43520 ----a-w- c:\windows\system32\csrsrv.dll
2013-04-11 22:29 . 2013-03-19 04:47 6656 ----a-w- c:\windows\SysWow64\apisetschema.dll
2013-04-08 03:59 . 2013-04-08 03:59 -------- d-----w- c:\users\USERNAME\AppData\Roaming\BBCiPlayerDesktop.61DB7A798358575D6A969CCD73DDBBD723A6DA9D.1
2013-04-08 03:59 . 2013-04-08 03:59 -------- d-----w- c:\program files (x86)\BBC iPlayer Desktop
2013-04-08 03:58 . 2013-04-08 03:58 -------- d-----w- c:\program files (x86)\Common Files\Adobe AIR
2013-04-01 00:59 . 2013-03-06 22:33 178624 ----a-w- c:\windows\system32\drivers\aswVmm.sys
2013-04-01 00:59 . 2013-03-06 22:33 65336 ----a-w- c:\windows\system32\drivers\aswRvrt.sys
2013-04-01 00:43 . 2013-04-01 00:43 -------- d-----w- c:\users\USERNAME\AppData\Local\Programs
2013-04-01 00:40 . 2013-04-01 00:40 -------- d-----w- c:\users\USERNAME\AppData\Roaming\Malwarebytes
2013-03-31 04:08 . 2013-03-31 04:08 -------- d-----w- c:\program files (x86)\Charger
2013-03-31 04:03 . 2013-03-31 04:03 -------- d-----w- c:\program files\SiLabs
2013-03-23 20:22 . 2011-08-04 23:21 172544 ----a-w- c:\windows\system32\drivers\t1pusb64.sys
2013-03-23 20:22 . 2013-03-23 20:23 -------- d-----w- c:\program files (x86)\Common Files\DesktopUtil
2013-03-23 20:21 . 2013-03-23 20:21 -------- d-----w- c:\program files (x86)\MCT Corp
2013-03-23 20:21 . 2013-03-23 20:21 -------- d-----w- c:\users\USERNAME\AppData\Roaming\InstallShield
2013-03-22 20:39 . 2013-03-22 20:39 -------- d-----w- c:\program files (x86)\Common Files\Java
2013-03-22 20:39 . 2013-03-22 20:38 782240 ----a-w- c:\windows\SysWow64\deployJava1.dll
2013-03-22 20:39 . 2013-03-22 20:38 861088 ----a-w- c:\windows\SysWow64\npDeployJava1.dll
2013-03-22 20:39 . 2013-03-22 20:38 95648 ----a-w- c:\windows\SysWow64\WindowsAccessBridge-32.dll
2013-03-22 20:38 . 2013-03-22 20:38 -------- d-----w- c:\program files (x86)\Java
2013-03-22 20:37 . 2013-03-22 20:37 -------- d-----w- c:\programdata\McAfee
2013-03-22 10:03 . 2013-03-22 10:03 9728 ---ha-w- c:\windows\SysWow64\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2013-03-20 20:20 . 2013-02-12 04:12 19968 ----a-w- c:\windows\system32\drivers\usb8023.sys
2013-03-19 21:28 . 2013-03-19 21:28 -------- d-----w- c:\users\USERNAME\AppData\Roaming\DivX
2013-03-19 21:28 . 2013-03-19 21:28 -------- d-----w- c:\program files\DivX
2013-03-19 21:28 . 2013-03-19 21:28 -------- d-----w- c:\program files (x86)\Common Files\DivX Shared
2013-03-19 21:25 . 2013-03-19 21:29 -------- d-----w- c:\program files (x86)\DivX
2013-03-19 21:25 . 2013-03-19 21:29 -------- d-----w- c:\programdata\DivX
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2013-04-12 10:02 . 2012-12-14 04:13 72702784 ----a-w- c:\windows\system32\MRT.exe
2013-04-08 04:25 . 2012-12-01 11:35 73432 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2013-04-08 04:25 . 2012-12-01 11:35 693976 ----a-w- c:\windows\SysWow64\FlashPlayerApp.exe
2013-04-04 21:50 . 2012-11-28 04:01 25928 ----a-w- c:\windows\system32\drivers\mbam.sys
2013-03-06 22:33 . 2012-11-28 04:05 377920 ----a-w- c:\windows\system32\drivers\aswSP.sys
2013-03-06 22:33 . 2012-11-28 04:05 70992 ----a-w- c:\windows\system32\drivers\aswRdr2.sys
2013-03-06 22:33 . 2012-11-28 04:05 68920 ----a-w- c:\windows\system32\drivers\aswTdi.sys
2013-03-06 22:33 . 2012-11-28 04:05 1025808 ----a-w- c:\windows\system32\drivers\aswSnx.sys
2013-03-06 22:33 . 2012-11-28 04:05 33400 ----a-w- c:\windows\system32\drivers\aswFsBlk.sys
2013-03-06 22:33 . 2012-11-28 04:05 80816 ----a-w- c:\windows\system32\drivers\aswMonFlt.sys
2013-03-06 22:32 . 2012-11-28 04:05 41664 ----a-w- c:\windows\avastSS.scr
2013-03-06 22:32 . 2012-11-28 04:05 287840 ----a-w- c:\windows\system32\aswBoot.exe
.
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\1TortoiseNormal]
@="{C5994560-53D9-4125-87C9-F193FC689CB2}"
[HKEY_CLASSES_ROOT\CLSID\{C5994560-53D9-4125-87C9-F193FC689CB2}]
2011-06-13 18:20 64792 ----a-w- c:\program files (x86)\Common Files\TortoiseOverlays\TortoiseOverlays.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\2TortoiseModified]
@="{C5994561-53D9-4125-87C9-F193FC689CB2}"
[HKEY_CLASSES_ROOT\CLSID\{C5994561-53D9-4125-87C9-F193FC689CB2}]
2011-06-13 18:20 64792 ----a-w- c:\program files (x86)\Common Files\TortoiseOverlays\TortoiseOverlays.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\3TortoiseConflict]
@="{C5994562-53D9-4125-87C9-F193FC689CB2}"
[HKEY_CLASSES_ROOT\CLSID\{C5994562-53D9-4125-87C9-F193FC689CB2}]
2011-06-13 18:20 64792 ----a-w- c:\program files (x86)\Common Files\TortoiseOverlays\TortoiseOverlays.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\4TortoiseLocked]
@="{C5994563-53D9-4125-87C9-F193FC689CB2}"
[HKEY_CLASSES_ROOT\CLSID\{C5994563-53D9-4125-87C9-F193FC689CB2}]
2011-06-13 18:20 64792 ----a-w- c:\program files (x86)\Common Files\TortoiseOverlays\TortoiseOverlays.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\5TortoiseReadOnly]
@="{C5994564-53D9-4125-87C9-F193FC689CB2}"
[HKEY_CLASSES_ROOT\CLSID\{C5994564-53D9-4125-87C9-F193FC689CB2}]
2011-06-13 18:20 64792 ----a-w- c:\program files (x86)\Common Files\TortoiseOverlays\TortoiseOverlays.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\6TortoiseDeleted]
@="{C5994565-53D9-4125-87C9-F193FC689CB2}"
[HKEY_CLASSES_ROOT\CLSID\{C5994565-53D9-4125-87C9-F193FC689CB2}]
2011-06-13 18:20 64792 ----a-w- c:\program files (x86)\Common Files\TortoiseOverlays\TortoiseOverlays.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\7TortoiseAdded]
@="{C5994566-53D9-4125-87C9-F193FC689CB2}"
[HKEY_CLASSES_ROOT\CLSID\{C5994566-53D9-4125-87C9-F193FC689CB2}]
2011-06-13 18:20 64792 ----a-w- c:\program files (x86)\Common Files\TortoiseOverlays\TortoiseOverlays.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\8TortoiseIgnored]
@="{C5994567-53D9-4125-87C9-F193FC689CB2}"
[HKEY_CLASSES_ROOT\CLSID\{C5994567-53D9-4125-87C9-F193FC689CB2}]
2011-06-13 18:20 64792 ----a-w- c:\program files (x86)\Common Files\TortoiseOverlays\TortoiseOverlays.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\9TortoiseUnversioned]
@="{C5994568-53D9-4125-87C9-F193FC689CB2}"
[HKEY_CLASSES_ROOT\CLSID\{C5994568-53D9-4125-87C9-F193FC689CB2}]
2011-06-13 18:20 64792 ----a-w- c:\program files (x86)\Common Files\TortoiseOverlays\TortoiseOverlays.dll
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="c:\program files\Windows Sidebar\sidebar.exe" [2010-11-20 1475584]
"Skype"="c:\program files (x86)\Skype\Phone\Skype.exe" [2013-03-01 18642024]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"StartCCC"="c:\program files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2011-05-25 336384]
"avast"="c:\program files\AVAST Software\Avast\avastUI.exe" [2013-03-06 4767304]
"APSDaemon"="c:\program files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe" [2013-01-28 59720]
"Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2012-12-18 946352]
"iTunesHelper"="e:\programs\installed programs\iTunes\iTunesHelper.exe" [2013-02-20 152392]
"DivXMediaServer"="c:\program files (x86)\DivX\DivX Media Server\DivXMediaServer.exe" [2013-01-30 450560]
"DivXUpdate"="c:\program files (x86)\DivX\DivX Update\DivXUpdate.exe" [2013-02-13 1263952]
"SunJavaUpdateSched"="c:\program files (x86)\Common Files\Java\Java Update\jusched.exe" [2012-07-03 252848]
.
c:\users\USERNAME\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
Dyn Updater Tray Icon.lnk - c:\program files (x86)\Dyn Updater\DynTray.exe [2011-11-15 78192]
Launchy.lnk - e:\programs\installed programs\Launchy\Launchy.exe [2012-11-28 380928]
MagicDisc.lnk - c:\program files (x86)\MagicDisc\MagicDisc.exe [2013-4-14 576000]
XAMPP Control Panel.lnk - e:\programs\installed programs\xampp\xampp-control.exe [2012-9-20 2564096]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
.
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
R2 SkypeUpdate;Skype Updater;c:\program files (x86)\Skype\Updater\Updater.exe [2013-03-01 161384]
R3 aswVmm;aswVmm; [x]
R3 libusb0;libusb-win32 - Kernel Driver 04/08/2011 1.2.4.0;c:\windows\system32\DRIVERS\libusb0.sys [2011-05-28 44480]
R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys [2012-08-23 19456]
R3 silabenm;Silicon Labs CP210x USB to UART Bridge Serial Port Enumerator Driver;c:\windows\system32\DRIVERS\silabenm.sys [2009-04-08 23040]
R3 silabser;Silicon Labs CP210x USB to UART Bridge Driver;c:\windows\system32\DRIVERS\silabser.sys [2009-04-08 68608]
R3 Synth3dVsc;Synth3dVsc;c:\windows\system32\drivers\synth3dvsc.sys [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [2012-08-23 57856]
R3 tsusbhub;tsusbhub;c:\windows\system32\drivers\tsusbhub.sys [x]
R3 USBAAPL64;Apple Mobile USB Driver;c:\windows\system32\Drivers\usbaapl64.sys [2012-12-13 54784]
R3 VGPU;VGPU;c:\windows\system32\drivers\rdvgkmd.sys [x]
R3 WatAdminSvc;Windows Activation Technologies Service;c:\windows\system32\Wat\WatAdminSvc.exe [2012-12-14 1255736]
S0 aswRvrt;aswRvrt; [x]
S0 mctkmdldr;mctkmdldr;c:\windows\system32\drivers\mctkmdldr64.sys [2011-04-08 19584]
S1 aswSnx;aswSnx; [x]
S1 aswSP;aswSP; [x]
S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe [2011-05-25 204288]
S2 Apache2.4;Apache2.4;e:\programs\installed programs\xampp\apache\bin\httpd.exe [2012-08-18 22016]
S2 aswFsBlk;aswFsBlk; [x]
S2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys [2013-03-06 80816]
S2 Dyn Updater;Dyn Updater;c:\program files (x86)\Dyn Updater\DynUpSvc.exe [2011-11-15 95608]
S2 GManager;GManager;c:\windows\system32\GManager.exe [2012-03-14 311160]
S2 HFGService;Handsfree Headset Service;c:\windows\system32\svchost.exe [2009-07-14 27136]
S2 MCTDesktopSvr;MCTDesktopSvr;c:\program files (x86)\Common Files\DesktopUtil\MCTDesktopSvr.exe [2011-05-04 199296]
S2 SBSDWSCService;SBSD Security Center Service;c:\program files (x86)\Spybot - Search & Destroy\SDWinSec.exe [2009-01-26 1153368]
S2 Skype C2C Service;Skype C2C Service;c:\programdata\Skype\Toolbars\Skype C2C Service\c2c_service.exe [2013-03-20 3289208]
S2 TeamViewer8;TeamViewer 8;c:\program files (x86)\TeamViewer\Version8\TeamViewer_Service.exe [2013-03-06 3560288]
S3 AtiHDAudioService;ATI Function Driver for HD Audio Service;c:\windows\system32\drivers\AtihdW76.sys [2011-03-30 114704]
S3 BthAudioHF;BthAudioHF Service;c:\windows\system32\DRIVERS\BthAudioHF.sys [2009-12-21 52224]
S3 BthAvrcp;Bluetooth AVRCP Profile;c:\windows\system32\DRIVERS\BthAvrcp.sys [2009-08-13 29184]
S3 csr_a2dp;Bluetooth AV Profile;c:\windows\system32\drivers\bthav.sys [2009-12-21 78848]
S3 mctkmd;mctkmd;c:\windows\system32\drivers\mctkmd64.sys [2012-04-11 135296]
S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys [2009-03-02 187392]
S3 t1pusb64;Trigger 1+ Graphics Card;c:\windows\system32\drivers\t1pusb64.sys [2011-08-04 172544]
.
.
--- Other Services/Drivers In Memory ---
.
*NewlyCreated* - WS2IFSL
.
Contents of the 'Scheduled Tasks' folder
.
2013-04-16 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-12-01 04:25]
.
2013-04-15 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-243996504-1975041638-16044808-1000Core.job
- c:\users\USERNAME\AppData\Local\Google\Update\GoogleUpdate.exe [2013-03-04 01:20]
.
2013-04-16 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-243996504-1975041638-16044808-1000UA.job
- c:\users\USERNAME\AppData\Local\Google\Update\GoogleUpdate.exe [2013-03-04 01:20]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast]
@="{472083B0-C522-11CF-8763-00608CC02F24}"
[HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}]
2013-03-06 22:32 133840 ----a-w- c:\program files\AVAST Software\Avast\ashShA64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\1TortoiseNormal]
@="{C5994560-53D9-4125-87C9-F193FC689CB2}"
[HKEY_CLASSES_ROOT\CLSID\{C5994560-53D9-4125-87C9-F193FC689CB2}]
2011-06-13 18:20 75544 ----a-w- c:\program files\Common Files\TortoiseOverlays\TortoiseOverlays.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\2TortoiseModified]
@="{C5994561-53D9-4125-87C9-F193FC689CB2}"
[HKEY_CLASSES_ROOT\CLSID\{C5994561-53D9-4125-87C9-F193FC689CB2}]
2011-06-13 18:20 75544 ----a-w- c:\program files\Common Files\TortoiseOverlays\TortoiseOverlays.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\3TortoiseConflict]
@="{C5994562-53D9-4125-87C9-F193FC689CB2}"
[HKEY_CLASSES_ROOT\CLSID\{C5994562-53D9-4125-87C9-F193FC689CB2}]
2011-06-13 18:20 75544 ----a-w- c:\program files\Common Files\TortoiseOverlays\TortoiseOverlays.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\4TortoiseLocked]
@="{C5994563-53D9-4125-87C9-F193FC689CB2}"
[HKEY_CLASSES_ROOT\CLSID\{C5994563-53D9-4125-87C9-F193FC689CB2}]
2011-06-13 18:20 75544 ----a-w- c:\program files\Common Files\TortoiseOverlays\TortoiseOverlays.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\5TortoiseReadOnly]
@="{C5994564-53D9-4125-87C9-F193FC689CB2}"
[HKEY_CLASSES_ROOT\CLSID\{C5994564-53D9-4125-87C9-F193FC689CB2}]
2011-06-13 18:20 75544 ----a-w- c:\program files\Common Files\TortoiseOverlays\TortoiseOverlays.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\6TortoiseDeleted]
@="{C5994565-53D9-4125-87C9-F193FC689CB2}"
[HKEY_CLASSES_ROOT\CLSID\{C5994565-53D9-4125-87C9-F193FC689CB2}]
2011-06-13 18:20 75544 ----a-w- c:\program files\Common Files\TortoiseOverlays\TortoiseOverlays.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\7TortoiseAdded]
@="{C5994566-53D9-4125-87C9-F193FC689CB2}"
[HKEY_CLASSES_ROOT\CLSID\{C5994566-53D9-4125-87C9-F193FC689CB2}]
2011-06-13 18:20 75544 ----a-w- c:\program files\Common Files\TortoiseOverlays\TortoiseOverlays.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\8TortoiseIgnored]
@="{C5994567-53D9-4125-87C9-F193FC689CB2}"
[HKEY_CLASSES_ROOT\CLSID\{C5994567-53D9-4125-87C9-F193FC689CB2}]
2011-06-13 18:20 75544 ----a-w- c:\program files\Common Files\TortoiseOverlays\TortoiseOverlays.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\9TortoiseUnversioned]
@="{C5994568-53D9-4125-87C9-F193FC689CB2}"
[HKEY_CLASSES_ROOT\CLSID\{C5994568-53D9-4125-87C9-F193FC689CB2}]
2011-06-13 18:20 75544 ----a-w- c:\program files\Common Files\TortoiseOverlays\TortoiseOverlays.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Skytel"="c:\program files\Realtek\Audio\HDA\Skytel.exe" [2009-06-25 1833504]
"MCTDUtil"="c:\program files (x86)\Common Files\DesktopUtil\Util-Desktop.exe" [2011-05-04 195200]
"FDispPos"="c:\program files (x86)\Common Files\DesktopUtil\Util-Desktop.exe" [2011-05-04 195200]
.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost - LocalService
FontCache
.
------- Supplementary Scan -------
.
uLocal Page = c:\windows\system32\blank.htm
uStart Page = hxxp://www.google.com/
mLocal Page = c:\windows\SysWOW64\blank.htm
uInternet Settings,ProxyOverride = *.local
uInternet Settings,ProxyServer = 149.3.141.76:443
TCP: DhcpNameServer = 192.168.1.254
.
- - - - ORPHANS REMOVED - - - -
.
HKLM_Wow6432Node-ActiveSetup-{2D46B6DC-2207-486B-B523-A557E6D54B47} - start
AddRemove-Charger_1.0 - c:\windows\iun6002.exe
AddRemove-Half-Life Dedicated Server Update Tool - e:\programs\INSTAL~1\GMOD13\UNWISE.EXE
AddRemove-SLABCOMM&10C4&EA60 - c:\windows\system32\Silabs\DriverUninstaller.exe VCP CP210x Cardinal\SLABCOMM&10C4&EA60
.
.
.
--------------------- LOCKED REGISTRY KEYS ---------------------
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_6_602_180_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_6_602_180_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_6_602_180_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_6_602_180_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_6_602_180.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.11"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_6_602_180.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_6_602_180.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_6_602_180.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
------------------------ Other Running Processes ------------------------
.
c:\program files\AVAST Software\Avast\AvastSvc.exe
c:\program files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
c:\program files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
e:\programs\installed programs\xampp\mysql\bin\mysqld.exe
.
**************************************************************************
.
Completion time: 2013-04-15 20:40:50 - machine was rebooted
ComboFix-quarantined-files.txt 2013-04-16 03:40
.
Pre-Run: 119,066,787,840 bytes free
Post-Run: 119,024,492,544 bytes free
.
- - End Of File - - CCA8A46D06B1C71815A02B360CE1E637
  • 0

#6
modeltrainsfreak

modeltrainsfreak

    New Member

  • Topic Starter
  • Member
  • Pip
  • 9 posts
It's running normal now avast hasn't poped up about anything yet
  • 0

#7
gringo_pr

gringo_pr

    Trusted Helper

  • Malware Removal
  • 7,268 posts
Hello modeltrainsfreak


I want to double check it make sure all of it has been removed, I would like you to try and run these next.

TDSSKiller

Please download the latest version of TDSSKiller from here and save it to your Desktop.
  • Doubleclick on TDSSKiller.exe to run the application, then click on Change parameters.
  • Put a checkmark beside loaded modules.
  • A reboot will be needed to apply the changes. Do it.
  • TDSSKiller will launch automatically after the reboot. Also your computer may seem very slow and unusable. This is normal. Give it enough time to load your background programs.
  • Then click on Change parameters in TDSSKiller.
  • Check all boxes then click OK.
  • Click the Start Scan button.
  • The scan should take no longer than 2 minutes.
  • If a suspicious object is detected, the default action will be Skip, click on Continue.
  • If malicious objects are found, they will show in the Scan results
  • Ensure Cure (default) is selected, then click Continue > Reboot now to finish the cleaning process.
    Note: If Cure is not available, please choose Skip instead, do not choose Delete unless instructed.
  • A report will be created in your root directory, (usually C:\ folder) in the form of "TDSSKiller.[Version]_[Date]_[Time]_log.txt". Please copy and paste the contents of that file here.

    Note** this report can be very long - so if the website gives you an error saying it is to long you may attache it

    If the forum still complains about it being to long send me everything that is at the end of the report after where it says

    ==================
    Scan finished
    ==================

and I will see if I want to see the whole report

Malwarebytes Anti-Rootkit

1.Download Malwarebytes Anti-Rootkit
2.Unzip the contents to a folder in a convenient location.
3.Open the folder where the contents were unzipped and run mbar.exe
4.Follow the instructions in the wizard to update and allow the program to scan your computer for threats.
5.Click on the Cleanup button to remove any threats and reboot if prompted to do so.
6.Wait while the system shuts down and the cleanup process is performed.
7.Perform another scan with Malwarebytes Anti-Rootkit to verify that no threats remain. If they do, then click Cleanup once more and repeat the process.
8.If no additional threats were found, verify that your system is now running normally, making sure that the following items are functional:
•Internet access
•Windows Update
•Windows Firewall9.If there are additional problems with your system, such as any of those listed above or other system issues, then run the 'fixdamage' tool included with Malwarebytes Anti-Rootkit and reboot.
10.Verify that your system is now functioning normally.

If you have any problems running either one come back and let me know

please reply with the reports from TDSSKiller and MBAR

Gringo
  • 0

#8
modeltrainsfreak

modeltrainsfreak

    New Member

  • Topic Starter
  • Member
  • Pip
  • 9 posts
--TDSSKiller.2.8.16.0_16.04.2013_04.57.32_log.txt--
---------------------------------------------------
---------------------------------------------------
04:57:32.0725 4940 TDSS rootkit removing tool 2.8.16.0 Feb 11 2013 18:50:42
04:57:33.0427 4940 ============================================================
04:57:33.0427 4940 Current date / time: 2013/04/16 04:57:33.0427
04:57:33.0427 4940 SystemInfo:
04:57:33.0427 4940
04:57:33.0427 4940 OS Version: 6.1.7601 ServicePack: 1.0
04:57:33.0427 4940 Product type: Workstation
04:57:33.0427 4940 ComputerName: USERNAME-PC
04:57:33.0427 4940 UserName: USERNAME
04:57:33.0427 4940 Windows directory: C:\Windows
04:57:33.0427 4940 System windows directory: C:\Windows
04:57:33.0427 4940 Running under WOW64
04:57:33.0427 4940 Processor architecture: Intel x64
04:57:33.0427 4940 Number of processors: 2
04:57:33.0427 4940 Page size: 0x1000
04:57:33.0427 4940 Boot type: Normal boot
04:57:33.0427 4940 ============================================================
04:57:34.0269 4940 BG loaded
04:57:35.0096 4940 Drive \Device\Harddisk2\DR2 - Size: 0x25433D6000 (149.05 Gb), SectorSize: 0x200, Cylinders: 0x50C1, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xF0, Type 'K0', Flags 0x00000040
04:57:35.0111 4940 Drive \Device\Harddisk3\DR3 - Size: 0x1D1C1116000 (1863.02 Gb), SectorSize: 0x200, Cylinders: 0x3B601, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
04:57:35.0174 4940 Drive \Device\Harddisk0\DR0 - Size: 0x1D1C1116000 (1863.02 Gb), SectorSize: 0x200, Cylinders: 0x3B601, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
04:57:35.0189 4940 Drive \Device\Harddisk1\DR1 - Size: 0x2E93E36000 (186.31 Gb), SectorSize: 0x200, Cylinders: 0x5F01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
04:57:35.0392 4940 Drive \Device\Harddisk8\DR8 - Size: 0xF5000000 (3.83 Gb), SectorSize: 0x200, Cylinders: 0x1F3, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
04:57:35.0392 4940 ============================================================
04:57:35.0392 4940 \Device\Harddisk2\DR2:
04:57:35.0408 4940 MBR partitions:
04:57:35.0408 4940 \Device\Harddisk2\DR2\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000
04:57:35.0408 4940 \Device\Harddisk2\DR2\Partition2: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0x129E6800
04:57:35.0408 4940 \Device\Harddisk3\DR3:
04:57:35.0408 4940 MBR partitions:
04:57:35.0408 4940 \Device\Harddisk3\DR3\Partition1: MBR, Type 0xB, StartLBA 0x3F, BlocksNum 0xE8E08871
04:57:35.0408 4940 \Device\Harddisk0\DR0:
04:57:35.0408 4940 MBR partitions:
04:57:35.0408 4940 \Device\Harddisk0\DR0\Partition1: MBR, Type 0xB, StartLBA 0x3F, BlocksNum 0xBA43B740
04:57:35.0408 4940 \Device\Harddisk1\DR1:
04:57:35.0408 4940 GPT partitions:
04:57:35.0423 4940 \Device\Harddisk1\DR1\Partition1: GPT, TypeGUID: {C12A7328-F81F-11D2-BA4B-00A0C93EC93B}, UniqueGUID: {E8370653-3DFC-45EE-967D-E1F88ABACB0C}, Name: EFI System Partition, StartLBA 0x28, BlocksNum 0x64000
04:57:35.0423 4940 \Device\Harddisk1\DR1\Partition2: GPT, TypeGUID: {48465300-0000-11AA-AA11-00306543ECAC}, UniqueGUID: {D911805C-7262-439C-8AE7-093A0D6A49C0}, Name: USERNAME Hackintosh, StartLBA 0x64028, BlocksNum 0x173FB160
04:57:35.0423 4940 MBR partitions:
04:57:35.0423 4940 \Device\Harddisk8\DR8:
04:57:35.0423 4940 MBR partitions:
04:57:35.0423 4940 \Device\Harddisk8\DR8\Partition1: MBR, Type 0xB, StartLBA 0x3F, BlocksNum 0x7A7FBA
04:57:35.0423 4940 ============================================================
04:57:35.0439 4940 C: <-> \Device\Harddisk2\DR2\Partition2
04:57:35.0439 4940 D: <-> \Device\Harddisk0\DR0\Partition1
04:57:35.0439 4940 E: <-> \Device\Harddisk3\DR3\Partition1
04:57:35.0439 4940 ============================================================
04:57:35.0439 4940 Initialize success
04:57:35.0439 4940 ============================================================
05:04:52.0660 2704 ============================================================
05:04:52.0660 2704 Scan started
05:04:52.0660 2704 Mode: Manual; SigCheck; TDLFS;
05:04:52.0660 2704 ============================================================
05:04:53.0939 2704 ================ Scan system memory ========================
05:04:53.0939 2704 System memory - ok
05:04:53.0939 2704 ================ Scan services =============================
05:04:54.0173 2704 [ A87D604AEA360176311474C87A63BB88 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
05:04:54.0267 2704 1394ohci - ok
05:04:54.0298 2704 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI C:\Windows\system32\drivers\ACPI.sys
05:04:54.0314 2704 ACPI - ok
05:04:54.0345 2704 [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
05:04:54.0392 2704 AcpiPmi - ok
05:04:54.0501 2704 [ 3927397AC60D943DAF8808AFFED582B7 ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
05:04:54.0501 2704 AdobeARMservice - ok
05:04:55.0000 2704 [ EA856F4A46320389D1899B2CAA7BF40F ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
05:04:55.0016 2704 AdobeFlashPlayerUpdateSvc - ok
05:04:55.0296 2704 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
05:04:55.0328 2704 adp94xx - ok
05:04:55.0374 2704 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
05:04:55.0390 2704 adpahci - ok
05:04:55.0437 2704 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
05:04:55.0452 2704 adpu320 - ok
05:04:55.0515 2704 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
05:04:55.0562 2704 AeLookupSvc - ok
05:04:55.0624 2704 [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD C:\Windows\system32\drivers\afd.sys
05:04:55.0671 2704 AFD - ok
05:04:55.0733 2704 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\Windows\system32\drivers\agp440.sys
05:04:55.0733 2704 agp440 - ok
05:04:55.0764 2704 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\Windows\System32\alg.exe
05:04:55.0811 2704 ALG - ok
05:04:55.0858 2704 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\Windows\system32\drivers\aliide.sys
05:04:55.0874 2704 aliide - ok
05:04:55.0905 2704 [ 514089CB4A7DF38DC4DD936ADE4114D3 ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe
05:04:55.0952 2704 AMD External Events Utility - ok
05:04:55.0998 2704 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\Windows\system32\drivers\amdide.sys
05:04:56.0014 2704 amdide - ok
05:04:56.0170 2704 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
05:04:56.0232 2704 AmdK8 - ok
05:04:57.0465 2704 [ 9A4B92150A5E259A7159D914CC3A60D7 ] amdkmdag C:\Windows\system32\DRIVERS\atikmdag.sys
05:04:57.0590 2704 amdkmdag - ok
05:04:57.0668 2704 [ 9DEB889D152F9C9DBA98BE8986084535 ] amdkmdap C:\Windows\system32\DRIVERS\atikmpag.sys
05:04:57.0699 2704 amdkmdap - ok
05:04:57.0714 2704 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
05:04:57.0824 2704 AmdPPM - ok
05:04:57.0964 2704 [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata C:\Windows\system32\drivers\amdsata.sys
05:04:57.0980 2704 amdsata - ok
05:04:58.0042 2704 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
05:04:58.0089 2704 amdsbs - ok
05:04:58.0120 2704 [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata C:\Windows\system32\drivers\amdxata.sys
05:04:58.0136 2704 amdxata - ok
05:04:58.0260 2704 [ 2467E63FC4F5831898A57FA3482EAFD5 ] Apache2.4 E:\programs\installed programs\xampp\apache\bin\httpd.exe
05:04:58.0417 2704 Apache2.4 ( UnsignedFile.Multi.Generic ) - warning
05:04:58.0417 2704 Apache2.4 - detected UnsignedFile.Multi.Generic (1)
05:04:58.0463 2704 [ 89A69C3F2F319B43379399547526D952 ] AppID C:\Windows\system32\drivers\appid.sys
05:04:58.0510 2704 AppID - ok
05:04:58.0541 2704 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\Windows\System32\appidsvc.dll
05:04:58.0588 2704 AppIDSvc - ok
05:04:58.0651 2704 [ 3977D4A871CA0D4F2ED1E7DB46829731 ] Appinfo C:\Windows\System32\appinfo.dll
05:04:58.0697 2704 Appinfo - ok
05:04:58.0791 2704 [ 4FE5C6D40664AE07BE5105874357D2ED ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
05:04:58.0807 2704 Apple Mobile Device - ok
05:04:58.0916 2704 [ 4ABA3E75A76195A3E38ED2766C962899 ] AppMgmt C:\Windows\System32\appmgmts.dll
05:04:59.0134 2704 AppMgmt - ok
05:04:59.0197 2704 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\Windows\system32\DRIVERS\arc.sys
05:04:59.0212 2704 arc - ok
05:04:59.0228 2704 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
05:04:59.0243 2704 arcsas - ok
05:04:59.0275 2704 [ B217378ED9A964E15346A67FEF609A17 ] aswFsBlk C:\Windows\system32\drivers\aswFsBlk.sys
05:04:59.0290 2704 aswFsBlk - ok
05:04:59.0306 2704 [ E92635BB235B03ED03B17CBB59F77FA4 ] aswMonFlt C:\Windows\system32\drivers\aswMonFlt.sys
05:04:59.0321 2704 aswMonFlt - ok
05:04:59.0337 2704 [ 8F90459AFB7FD4557D935CE639EF6110 ] aswRdr C:\Windows\System32\Drivers\aswrdr2.sys
05:04:59.0353 2704 aswRdr - ok
05:04:59.0399 2704 [ DE6759B8D8E62BF0FFF2B05F05AFCEE6 ] aswRvrt C:\Windows\system32\drivers\aswRvrt.sys
05:04:59.0399 2704 aswRvrt - ok
05:04:59.0696 2704 [ AB8B4D3136D18A20777036E0F0CFC5E1 ] aswSnx C:\Windows\system32\drivers\aswSnx.sys
05:04:59.0711 2704 aswSnx - ok
05:04:59.0852 2704 [ 97D4D725BD32C965119E6C8E252F8C64 ] aswSP C:\Windows\system32\drivers\aswSP.sys
05:04:59.0852 2704 aswSP - ok
05:04:59.0899 2704 [ D62C10D1829C65115111C160EA956260 ] aswTdi C:\Windows\system32\drivers\aswTdi.sys
05:04:59.0899 2704 aswTdi - ok
05:04:59.0945 2704 [ 7E44C2684A6CA779B9D07CB4BD3F649D ] aswVmm C:\Windows\system32\drivers\aswVmm.sys
05:04:59.0977 2704 aswVmm - ok
05:05:00.0023 2704 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
05:05:00.0070 2704 AsyncMac - ok
05:05:00.0117 2704 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\Windows\system32\drivers\atapi.sys
05:05:00.0133 2704 atapi - ok
05:05:00.0179 2704 [ CBD14F698DEF12EE3557604B726CB8EB ] AtiHDAudioService C:\Windows\system32\drivers\AtihdW76.sys
05:05:00.0179 2704 AtiHDAudioService - ok
05:05:00.0367 2704 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
05:05:00.0429 2704 AudioEndpointBuilder - ok
05:05:00.0647 2704 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv C:\Windows\System32\Audiosrv.dll
05:05:00.0679 2704 AudioSrv - ok
05:05:00.0913 2704 [ 41735B82DB57E4EBE9504EC400FD120E ] avast! Antivirus C:\Program Files\AVAST Software\Avast\AvastSvc.exe
05:05:00.0928 2704 avast! Antivirus - ok
05:05:00.0991 2704 [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV C:\Windows\System32\AxInstSV.dll
05:05:01.0022 2704 AxInstSV - ok
05:05:01.0131 2704 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\Windows\system32\DRIVERS\bxvbda.sys
05:05:01.0193 2704 b06bdrv - ok
05:05:01.0225 2704 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
05:05:01.0271 2704 b57nd60a - ok
05:05:01.0334 2704 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\Windows\System32\bdesvc.dll
05:05:01.0459 2704 BDESVC - ok
05:05:01.0490 2704 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\Windows\system32\drivers\Beep.sys
05:05:01.0537 2704 Beep - ok
05:05:01.0739 2704 [ 82974D6A2FD19445CC5171FC378668A4 ] BFE C:\Windows\System32\bfe.dll
05:05:01.0802 2704 BFE - ok
05:05:01.0895 2704 [ 1EA7969E3271CBC59E1730697DC74682 ] BITS C:\Windows\system32\qmgr.dll
05:05:01.0973 2704 BITS - ok
05:05:02.0020 2704 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
05:05:02.0051 2704 blbdrive - ok
05:05:02.0410 2704 [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
05:05:02.0426 2704 Bonjour Service - ok
05:05:02.0504 2704 [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
05:05:02.0535 2704 bowser - ok
05:05:02.0566 2704 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
05:05:02.0613 2704 BrFiltLo - ok
05:05:02.0644 2704 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
05:05:02.0660 2704 BrFiltUp - ok
05:05:02.0675 2704 [ 5C2F352A4E961D72518261257AAE204B ] BridgeMP C:\Windows\system32\DRIVERS\bridge.sys
05:05:02.0707 2704 BridgeMP - ok
05:05:02.0800 2704 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser C:\Windows\System32\browser.dll
05:05:02.0831 2704 Browser - ok
05:05:02.0894 2704 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\Windows\System32\Drivers\Brserid.sys
05:05:02.0987 2704 Brserid - ok
05:05:03.0019 2704 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
05:05:03.0050 2704 BrSerWdm - ok
05:05:03.0081 2704 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
05:05:03.0143 2704 BrUsbMdm - ok
05:05:03.0190 2704 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
05:05:03.0221 2704 BrUsbSer - ok
05:05:03.0284 2704 [ 07DCB3C254D584E3949FE2C0EE3963F2 ] BthAudioHF C:\Windows\system32\DRIVERS\BthAudioHF.sys
05:05:03.0315 2704 BthAudioHF - ok
05:05:03.0346 2704 [ 832B121E4532919CC49F2438F1DCAA21 ] BthAvrcp C:\Windows\system32\DRIVERS\BthAvrcp.sys
05:05:03.0377 2704 BthAvrcp - ok
05:05:03.0440 2704 [ CF98190A94F62E405C8CB255018B2315 ] BthEnum C:\Windows\system32\DRIVERS\BthEnum.sys
05:05:03.0471 2704 BthEnum - ok
05:05:03.0487 2704 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
05:05:03.0533 2704 BTHMODEM - ok
05:05:03.0565 2704 [ 02DD601B708DD0667E1331FA8518E9FF ] BthPan C:\Windows\system32\DRIVERS\bthpan.sys
05:05:03.0611 2704 BthPan - ok
05:05:03.0736 2704 [ 738D0E9272F59EB7A1449C3EC118E6C4 ] BTHPORT C:\Windows\system32\Drivers\BTHport.sys
05:05:03.0799 2704 BTHPORT - ok
05:05:03.0830 2704 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\Windows\system32\bthserv.dll
05:05:03.0877 2704 bthserv - ok
05:05:03.0939 2704 [ F188B7394D81010767B6DF3178519A37 ] BTHUSB C:\Windows\system32\Drivers\BTHUSB.sys
05:05:03.0970 2704 BTHUSB - ok
05:05:03.0970 2704 catchme - ok
05:05:04.0017 2704 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
05:05:04.0064 2704 cdfs - ok
05:05:04.0142 2704 [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
05:05:04.0173 2704 cdrom - ok
05:05:04.0220 2704 [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc C:\Windows\System32\certprop.dll
05:05:04.0282 2704 CertPropSvc - ok
05:05:04.0376 2704 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\Windows\system32\DRIVERS\circlass.sys
05:05:04.0407 2704 circlass - ok
05:05:04.0610 2704 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\Windows\system32\CLFS.sys
05:05:04.0657 2704 CLFS - ok
05:05:05.0343 2704 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
05:05:05.0405 2704 clr_optimization_v2.0.50727_32 - ok
05:05:05.0655 2704 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
05:05:05.0671 2704 clr_optimization_v2.0.50727_64 - ok
05:05:05.0717 2704 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
05:05:05.0733 2704 clr_optimization_v4.0.30319_32 - ok
05:05:05.0858 2704 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
05:05:05.0873 2704 clr_optimization_v4.0.30319_64 - ok
05:05:06.0045 2704 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
05:05:06.0092 2704 CmBatt - ok
05:05:06.0139 2704 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\Windows\system32\drivers\cmdide.sys
05:05:06.0170 2704 cmdide - ok
05:05:06.0217 2704 [ AAFCB52FE0037207FB6FBEA070D25EFE ] CNG C:\Windows\system32\Drivers\cng.sys
05:05:06.0295 2704 CNG - ok
05:05:06.0341 2704 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
05:05:06.0373 2704 Compbatt - ok
05:05:06.0419 2704 [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus C:\Windows\system32\drivers\CompositeBus.sys
05:05:06.0435 2704 CompositeBus - ok
05:05:06.0466 2704 COMSysApp - ok
05:05:06.0466 2704 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
05:05:06.0482 2704 crcdisk - ok
05:05:06.0575 2704 [ 9C01375BE382E834CC26D1B7EAF2C4FE ] CryptSvc C:\Windows\system32\cryptsvc.dll
05:05:06.0638 2704 CryptSvc - ok
05:05:06.0731 2704 [ 54DA3DFD29ED9F1619B6F53F3CE55E49 ] CSC C:\Windows\system32\drivers\csc.sys
05:05:06.0778 2704 CSC - ok
05:05:06.0965 2704 [ 3AB183AB4D2C79DCF459CD2C1266B043 ] CscService C:\Windows\System32\cscsvc.dll
05:05:06.0997 2704 CscService - ok
05:05:07.0043 2704 [ DF07C6D98BA7F81D0571E366B1CD6672 ] csr_a2dp C:\Windows\system32\drivers\bthav.sys
05:05:07.0090 2704 csr_a2dp - ok
05:05:07.0168 2704 [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch C:\Windows\system32\rpcss.dll
05:05:07.0231 2704 DcomLaunch - ok
05:05:07.0277 2704 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\Windows\System32\defragsvc.dll
05:05:07.0324 2704 defragsvc - ok
05:05:07.0371 2704 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
05:05:07.0418 2704 DfsC - ok
05:05:07.0558 2704 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp C:\Windows\system32\dhcpcore.dll
05:05:07.0589 2704 Dhcp - ok
05:05:07.0621 2704 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\Windows\system32\drivers\discache.sys
05:05:07.0683 2704 discache - ok
05:05:07.0777 2704 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\Windows\system32\DRIVERS\disk.sys
05:05:07.0808 2704 Disk - ok
05:05:07.0886 2704 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache C:\Windows\System32\dnsrslvr.dll
05:05:07.0917 2704 Dnscache - ok
05:05:08.0182 2704 [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc C:\Windows\System32\dot3svc.dll
05:05:08.0276 2704 dot3svc - ok
05:05:08.0338 2704 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS C:\Windows\system32\dps.dll
05:05:08.0401 2704 DPS - ok
05:05:08.0432 2704 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
05:05:08.0463 2704 drmkaud - ok
05:05:08.0588 2704 [ F5BEE30450E18E6B83A5012C100616FD ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
05:05:08.0603 2704 DXGKrnl - ok
05:05:08.0713 2704 [ C3CDC19B715514200F5CEC8BE5B9C9A8 ] Dyn Updater C:\Program Files (x86)\Dyn Updater\DynUpSvc.exe
05:05:08.0728 2704 Dyn Updater - ok
05:05:08.0759 2704 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\Windows\System32\eapsvc.dll
05:05:08.0806 2704 EapHost - ok
05:05:09.0337 2704 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\Windows\system32\DRIVERS\evbda.sys
05:05:09.0586 2704 ebdrv - ok
05:05:09.0633 2704 [ C118A82CD78818C29AB228366EBF81C3 ] EFS C:\Windows\System32\lsass.exe
05:05:09.0695 2704 EFS - ok
05:05:09.0820 2704 [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
05:05:09.0883 2704 ehRecvr - ok
05:05:10.0054 2704 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\Windows\ehome\ehsched.exe
05:05:10.0085 2704 ehSched - ok
05:05:10.0163 2704 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys
05:05:10.0195 2704 elxstor - ok
05:05:10.0257 2704 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\Windows\system32\drivers\errdev.sys
05:05:10.0319 2704 ErrDev - ok
05:05:10.0397 2704 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\Windows\system32\es.dll
05:05:10.0491 2704 EventSystem - ok
05:05:10.0569 2704 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\Windows\system32\drivers\exfat.sys
05:05:10.0616 2704 exfat - ok
05:05:10.0663 2704 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\Windows\system32\drivers\fastfat.sys
05:05:10.0709 2704 fastfat - ok
05:05:10.0959 2704 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax C:\Windows\system32\fxssvc.exe
05:05:10.0975 2704 Fax - ok
05:05:11.0053 2704 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\Windows\system32\DRIVERS\fdc.sys
05:05:11.0115 2704 fdc - ok
05:05:11.0131 2704 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\Windows\system32\fdPHost.dll
05:05:11.0162 2704 fdPHost - ok
05:05:11.0177 2704 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\Windows\system32\fdrespub.dll
05:05:11.0224 2704 FDResPub - ok
05:05:11.0255 2704 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
05:05:11.0271 2704 FileInfo - ok
05:05:11.0287 2704 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
05:05:11.0318 2704 Filetrace - ok
05:05:11.0349 2704 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
05:05:11.0349 2704 flpydisk - ok
05:05:11.0443 2704 [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
05:05:11.0458 2704 FltMgr - ok
05:05:11.0645 2704 [ C4C183E6551084039EC862DA1C945E3D ] FontCache C:\Windows\system32\FntCache.dll
05:05:11.0677 2704 FontCache - ok
05:05:11.0739 2704 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
05:05:11.0755 2704 FontCache3.0.0.0 - ok
05:05:11.0786 2704 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
05:05:11.0801 2704 FsDepends - ok
05:05:11.0911 2704 [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
05:05:11.0926 2704 Fs_Rec - ok
05:05:12.0004 2704 [ 35FD2BB5131714E657B7AB3A78642854 ] FTDIBUS C:\Windows\system32\drivers\ftdibus.sys
05:05:12.0113 2704 FTDIBUS - ok
05:05:12.0176 2704 [ 196C9BDDBEF9B6D0973F398BEF5B2EEE ] FTSER2K C:\Windows\system32\drivers\ftser2k.sys
05:05:12.0207 2704 FTSER2K - ok
05:05:12.0301 2704 [ 1F7B25B858FA27015169FE95E54108ED ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
05:05:12.0347 2704 fvevol - ok
05:05:12.0394 2704 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys
05:05:12.0410 2704 gagp30kx - ok
05:05:12.0410 2704 gdrv - ok
05:05:12.0441 2704 [ 8E98D21EE06192492A5671A6144D092F ] GEARAspiWDM C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
05:05:12.0441 2704 GEARAspiWDM - ok
05:05:12.0488 2704 [ CE87068806FF90AC53C5ED1E13889B3B ] GManager C:\Windows\system32\GManager.exe
05:05:12.0503 2704 GManager - ok
05:05:12.0691 2704 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc C:\Windows\System32\gpsvc.dll
05:05:12.0753 2704 gpsvc - ok
05:05:12.0784 2704 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
05:05:12.0815 2704 hcw85cir - ok
05:05:12.0940 2704 [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
05:05:12.0987 2704 HdAudAddService - ok
05:05:13.0018 2704 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus C:\Windows\system32\drivers\HDAudBus.sys
05:05:13.0049 2704 HDAudBus - ok
05:05:13.0112 2704 [ EE8C05F926521A0E24EDAF40F45D01E6 ] HFGService C:\Windows\System32\HFGService.dll
05:05:13.0143 2704 HFGService - ok
05:05:13.0174 2704 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys
05:05:13.0190 2704 HidBatt - ok
05:05:13.0221 2704 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
05:05:13.0299 2704 HidBth - ok
05:05:13.0330 2704 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
05:05:13.0377 2704 HidIr - ok
05:05:13.0439 2704 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\Windows\System32\hidserv.dll
05:05:13.0486 2704 hidserv - ok
05:05:13.0533 2704 [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
05:05:13.0549 2704 HidUsb - ok
05:05:13.0642 2704 [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc C:\Windows\system32\kmsvc.dll
05:05:13.0736 2704 hkmsvc - ok
05:05:13.0767 2704 [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll
05:05:13.0829 2704 HomeGroupListener - ok
05:05:13.0907 2704 [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
05:05:13.0939 2704 HomeGroupProvider - ok
05:05:14.0110 2704 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
05:05:14.0173 2704 HpSAMD - ok
05:05:14.0469 2704 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP C:\Windows\system32\drivers\HTTP.sys
05:05:14.0547 2704 HTTP - ok
05:05:14.0594 2704 [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
05:05:14.0594 2704 hwpolicy - ok
05:05:14.0687 2704 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\Windows\system32\drivers\i8042prt.sys
05:05:14.0703 2704 i8042prt - ok
05:05:14.0781 2704 [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
05:05:14.0797 2704 iaStorV - ok
05:05:14.0875 2704 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
05:05:14.0921 2704 idsvc - ok
05:05:14.0968 2704 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys
05:05:14.0984 2704 iirsp - ok
05:05:15.0389 2704 [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT C:\Windows\System32\ikeext.dll
05:05:15.0421 2704 IKEEXT - ok
05:05:15.0686 2704 [ 135856AC71116CCFF05ED8481745241B ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
05:05:15.0733 2704 IntcAzAudAddService - ok
05:05:15.0764 2704 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\Windows\system32\drivers\intelide.sys
05:05:15.0779 2704 intelide - ok
05:05:15.0889 2704 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
05:05:15.0920 2704 intelppm - ok
05:05:16.0107 2704 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\Windows\system32\ipbusenum.dll
05:05:16.0154 2704 IPBusEnum - ok
05:05:16.0247 2704 [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
05:05:16.0310 2704 IpFilterDriver - ok
05:05:16.0513 2704 [ 08C2957BB30058E663720C5606885653 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
05:05:16.0575 2704 iphlpsvc - ok
05:05:16.0606 2704 [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
05:05:16.0653 2704 IPMIDRV - ok
05:05:16.0684 2704 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
05:05:16.0731 2704 IPNAT - ok
05:05:16.0825 2704 [ 4EFFC8FF6D349E971E94B1C670C0C66A ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
05:05:16.0840 2704 iPod Service - ok
05:05:16.0903 2704 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
05:05:16.0918 2704 IRENUM - ok
05:05:16.0965 2704 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\Windows\system32\drivers\isapnp.sys
05:05:16.0965 2704 isapnp - ok
05:05:17.0074 2704 [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
05:05:17.0121 2704 iScsiPrt - ok
05:05:17.0199 2704 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\Windows\system32\drivers\kbdclass.sys
05:05:17.0215 2704 kbdclass - ok
05:05:17.0324 2704 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid C:\Windows\system32\drivers\kbdhid.sys
05:05:17.0355 2704 kbdhid - ok
05:05:17.0386 2704 [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso C:\Windows\system32\lsass.exe
05:05:17.0402 2704 KeyIso - ok
05:05:17.0433 2704 [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
05:05:17.0495 2704 KSecDD - ok
05:05:17.0542 2704 [ 7EFB9333E4ECCE6AE4AE9D777D9E553E ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
05:05:17.0589 2704 KSecPkg - ok
05:05:17.0620 2704 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
05:05:17.0667 2704 ksthunk - ok
05:05:17.0714 2704 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\Windows\system32\msdtckrm.dll
05:05:17.0761 2704 KtmRm - ok
05:05:17.0823 2704 [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer C:\Windows\System32\srvsvc.dll
05:05:17.0885 2704 LanmanServer - ok
05:05:17.0948 2704 [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
05:05:18.0010 2704 LanmanWorkstation - ok
05:05:18.0057 2704 [ 02538E602280C07438C94489DCBE77D5 ] libusb0 C:\Windows\system32\DRIVERS\libusb0.sys
05:05:18.0073 2704 libusb0 - ok
05:05:18.0166 2704 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
05:05:18.0229 2704 lltdio - ok
05:05:18.0369 2704 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\Windows\System32\lltdsvc.dll
05:05:18.0431 2704 lltdsvc - ok
05:05:18.0463 2704 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\Windows\System32\lmhsvc.dll
05:05:18.0478 2704 lmhosts - ok
05:05:18.0556 2704 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys
05:05:18.0572 2704 LSI_FC - ok
05:05:18.0587 2704 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys
05:05:18.0603 2704 LSI_SAS - ok
05:05:18.0634 2704 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys
05:05:18.0634 2704 LSI_SAS2 - ok
05:05:18.0650 2704 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys
05:05:18.0665 2704 LSI_SCSI - ok
05:05:18.0681 2704 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\Windows\system32\drivers\luafv.sys
05:05:18.0728 2704 luafv - ok
05:05:18.0775 2704 [ 79D51E7F5926E8CE1B3EBECEBAE28CFF ] mcdbus C:\Windows\system32\DRIVERS\mcdbus.sys
05:05:18.0790 2704 mcdbus - ok
05:05:18.0899 2704 [ 3E23A0792D5EE0A072961E9E9F347368 ] MCTDesktopSvr C:\Program Files (x86)\Common Files\DesktopUtil\MCTDesktopSvr.exe
05:05:18.0915 2704 MCTDesktopSvr - ok
05:05:18.0962 2704 [ DC2EF6FF1143537D10FCCD933C991DC2 ] mctkmd C:\Windows\system32\drivers\mctkmd64.sys
05:05:18.0977 2704 mctkmd - ok
05:05:19.0040 2704 [ 7E622C16CA2798B352C0B31DBB208CBD ] mctkmdldr C:\Windows\system32\drivers\mctkmdldr64.sys
05:05:19.0055 2704 mctkmdldr - ok
05:05:19.0118 2704 [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
05:05:19.0165 2704 Mcx2Svc - ok
05:05:19.0211 2704 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\Windows\system32\DRIVERS\megasas.sys
05:05:19.0336 2704 megasas - ok
05:05:19.0477 2704 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys
05:05:19.0555 2704 MegaSR - ok
05:05:19.0586 2704 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\Windows\system32\mmcss.dll
05:05:19.0648 2704 MMCSS - ok
05:05:19.0664 2704 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\Windows\system32\drivers\modem.sys
05:05:19.0742 2704 Modem - ok
05:05:19.0773 2704 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\Windows\system32\DRIVERS\monitor.sys
05:05:19.0804 2704 monitor - ok
05:05:19.0820 2704 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
05:05:19.0835 2704 mouclass - ok
05:05:19.0882 2704 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
05:05:19.0913 2704 mouhid - ok
05:05:19.0945 2704 [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
05:05:19.0991 2704 mountmgr - ok
05:05:20.0007 2704 [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio C:\Windows\system32\drivers\mpio.sys
05:05:20.0023 2704 mpio - ok
05:05:20.0054 2704 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
05:05:20.0085 2704 mpsdrv - ok
05:05:20.0428 2704 [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc C:\Windows\system32\mpssvc.dll
05:05:20.0506 2704 MpsSvc - ok
05:05:20.0600 2704 [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
05:05:20.0631 2704 MRxDAV - ok
05:05:20.0662 2704 [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
05:05:20.0709 2704 mrxsmb - ok
05:05:20.0725 2704 [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
05:05:20.0756 2704 mrxsmb10 - ok
05:05:20.0787 2704 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
05:05:20.0803 2704 mrxsmb20 - ok
05:05:20.0818 2704 [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci C:\Windows\system32\drivers\msahci.sys
05:05:20.0834 2704 msahci - ok
05:05:20.0865 2704 [ DB801A638D011B9633829EB6F663C900 ] msdsm C:\Windows\system32\drivers\msdsm.sys
05:05:20.0881 2704 msdsm - ok
05:05:21.0021 2704 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\Windows\System32\msdtc.exe
05:05:21.0083 2704 MSDTC - ok
05:05:21.0146 2704 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\Windows\system32\drivers\Msfs.sys
05:05:21.0177 2704 Msfs - ok
05:05:21.0255 2704 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
05:05:21.0317 2704 mshidkmdf - ok
05:05:21.0380 2704 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
05:05:21.0427 2704 msisadrv - ok
05:05:21.0473 2704 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
05:05:21.0551 2704 MSiSCSI - ok
05:05:21.0551 2704 msiserver - ok
05:05:21.0614 2704 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
05:05:21.0661 2704 MSKSSRV - ok
05:05:21.0676 2704 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
05:05:21.0754 2704 MSPCLOCK - ok
05:05:21.0801 2704 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
05:05:21.0848 2704 MSPQM - ok
05:05:21.0988 2704 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
05:05:22.0019 2704 MsRPC - ok
05:05:22.0066 2704 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\Windows\system32\drivers\mssmbios.sys
05:05:22.0066 2704 mssmbios - ok
05:05:22.0160 2704 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
05:05:22.0222 2704 MSTEE - ok
05:05:22.0238 2704 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys
05:05:22.0269 2704 MTConfig - ok
05:05:22.0300 2704 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\Windows\system32\Drivers\mup.sys
05:05:22.0316 2704 Mup - ok
05:05:22.0597 2704 [ F7F7BFE985414A8B2D9B015741D21CFB ] mysql E:\programs\installed programs\xampp\mysql\bin\mysqld.exe
05:05:22.0690 2704 mysql ( UnsignedFile.Multi.Generic ) - warning
05:05:22.0690 2704 mysql - detected UnsignedFile.Multi.Generic (1)
05:05:22.0753 2704 [ 582AC6D9873E31DFA28A4547270862DD ] napagent C:\Windows\system32\qagentRT.dll
05:05:22.0815 2704 napagent - ok
05:05:22.0924 2704 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
05:05:22.0955 2704 NativeWifiP - ok
05:05:23.0314 2704 [ 760E38053BF56E501D562B70AD796B88 ] NDIS C:\Windows\system32\drivers\ndis.sys
05:05:23.0377 2704 NDIS - ok
05:05:23.0392 2704 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
05:05:23.0423 2704 NdisCap - ok
05:05:23.0455 2704 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
05:05:23.0501 2704 NdisTapi - ok
05:05:23.0517 2704 [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
05:05:23.0564 2704 Ndisuio - ok
05:05:23.0626 2704 [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
05:05:23.0673 2704 NdisWan - ok
05:05:23.0704 2704 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
05:05:23.0735 2704 NDProxy - ok
05:05:23.0798 2704 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
05:05:23.0860 2704 NetBIOS - ok
05:05:24.0063 2704 [ 09594D1089C523423B32A4229263F068 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
05:05:24.0125 2704 NetBT - ok
05:05:24.0157 2704 [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon C:\Windows\system32\lsass.exe
05:05:24.0172 2704 Netlogon - ok
05:05:24.0203 2704 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\Windows\System32\netman.dll
05:05:24.0250 2704 Netman - ok
05:05:24.0281 2704 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\Windows\System32\netprofm.dll
05:05:24.0328 2704 netprofm - ok
05:05:24.0344 2704 [ 3E5A36127E201DDF663176B66828FAFE ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
05:05:24.0375 2704 NetTcpPortSharing - ok
05:05:24.0406 2704 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys
05:05:24.0406 2704 nfrd960 - ok
05:05:24.0453 2704 [ 8AD77806D336673F270DB31645267293 ] NlaSvc C:\Windows\System32\nlasvc.dll
05:05:24.0484 2704 NlaSvc - ok
05:05:24.0515 2704 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\Windows\system32\drivers\Npfs.sys
05:05:24.0547 2704 Npfs - ok
05:05:24.0578 2704 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\Windows\system32\nsisvc.dll
05:05:24.0609 2704 nsi - ok
05:05:24.0625 2704 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
05:05:24.0671 2704 nsiproxy - ok
05:05:24.0937 2704 [ E453ACF4E7D44E5530B5D5F2B9CA8563 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
05:05:25.0030 2704 Ntfs - ok
05:05:25.0093 2704 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\Windows\system32\drivers\Null.sys
05:05:25.0139 2704 Null - ok
05:05:25.0186 2704 [ 0A92CB65770442ED0DC44834632F66AD ] nvraid C:\Windows\system32\drivers\nvraid.sys
05:05:25.0202 2704 nvraid - ok
05:05:25.0264 2704 [ DAB0E87525C10052BF65F06152F37E4A ] nvstor C:\Windows\system32\drivers\nvstor.sys
05:05:25.0280 2704 nvstor - ok
05:05:25.0342 2704 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
05:05:25.0358 2704 nv_agp - ok
05:05:25.0389 2704 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
05:05:25.0420 2704 ohci1394 - ok
05:05:25.0467 2704 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
05:05:25.0498 2704 p2pimsvc - ok
05:05:25.0545 2704 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\Windows\system32\p2psvc.dll
05:05:25.0576 2704 p2psvc - ok
05:05:25.0607 2704 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\Windows\system32\DRIVERS\parport.sys
05:05:25.0623 2704 Parport - ok
05:05:25.0670 2704 [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr C:\Windows\system32\drivers\partmgr.sys
05:05:25.0685 2704 partmgr - ok
05:05:25.0732 2704 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll
05:05:25.0748 2704 PcaSvc - ok
05:05:25.0810 2704 [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci C:\Windows\system32\drivers\pci.sys
05:05:25.0826 2704 pci - ok
05:05:25.0841 2704 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\Windows\system32\drivers\pciide.sys
05:05:25.0873 2704 pciide - ok
05:05:25.0935 2704 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
05:05:25.0982 2704 pcmcia - ok
05:05:25.0997 2704 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\Windows\system32\drivers\pcw.sys
05:05:25.0997 2704 pcw - ok
05:05:26.0091 2704 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\Windows\system32\drivers\peauth.sys
05:05:26.0169 2704 PEAUTH - ok
05:05:26.0465 2704 [ B9B0A4299DD2D76A4243F75FD54DC680 ] PeerDistSvc C:\Windows\system32\peerdistsvc.dll
05:05:26.0559 2704 PeerDistSvc - ok
05:05:26.0777 2704 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\Windows\SysWow64\perfhost.exe
05:05:26.0793 2704 PerfHost - ok
05:05:27.0277 2704 [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla C:\Windows\system32\pla.dll
05:05:27.0401 2704 pla - ok
05:05:27.0495 2704 [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
05:05:27.0511 2704 PlugPlay - ok
05:05:27.0542 2704 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
05:05:27.0589 2704 PNRPAutoReg - ok
05:05:27.0729 2704 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
05:05:27.0745 2704 PNRPsvc - ok
05:05:27.0869 2704 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
05:05:27.0947 2704 PolicyAgent - ok
05:05:28.0010 2704 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\Windows\system32\umpo.dll
05:05:28.0057 2704 Power - ok
05:05:28.0103 2704 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
05:05:28.0150 2704 PptpMiniport - ok
05:05:28.0166 2704 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\Windows\system32\DRIVERS\processr.sys
05:05:28.0197 2704 Processor - ok
05:05:28.0228 2704 [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc C:\Windows\system32\profsvc.dll
05:05:28.0244 2704 ProfSvc - ok
05:05:28.0259 2704 [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe
05:05:28.0275 2704 ProtectedStorage - ok
05:05:28.0337 2704 [ 0557CF5A2556BD58E26384169D72438D ] Psched C:\Windows\system32\DRIVERS\pacer.sys
05:05:28.0384 2704 Psched - ok
05:05:28.0525 2704 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys
05:05:28.0634 2704 ql2300 - ok
05:05:28.0649 2704 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys
05:05:28.0665 2704 ql40xx - ok
05:05:28.0696 2704 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\Windows\system32\qwave.dll
05:05:28.0727 2704 QWAVE - ok
05:05:28.0743 2704 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
05:05:28.0868 2704 QWAVEdrv - ok
05:05:28.0930 2704 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
05:05:28.0993 2704 RasAcd - ok
05:05:29.0039 2704 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
05:05:29.0071 2704 RasAgileVpn - ok
05:05:29.0117 2704 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\Windows\System32\rasauto.dll
05:05:29.0180 2704 RasAuto - ok
05:05:29.0227 2704 [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
05:05:29.0273 2704 Rasl2tp - ok
05:05:29.0383 2704 [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan C:\Windows\System32\rasmans.dll
05:05:29.0429 2704 RasMan - ok
05:05:29.0476 2704 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
05:05:29.0523 2704 RasPppoe - ok
05:05:29.0554 2704 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
05:05:29.0601 2704 RasSstp - ok
05:05:29.0663 2704 [ 77F665941019A1594D887A74F301FA2F ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
05:05:29.0726 2704 rdbss - ok
05:05:29.0757 2704 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
05:05:29.0788 2704 rdpbus - ok
05:05:29.0851 2704 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
05:05:29.0882 2704 RDPCDD - ok
05:05:30.0038 2704 [ 1B6163C503398B23FF8B939C67747683 ] RDPDR C:\Windows\system32\drivers\rdpdr.sys
05:05:30.0116 2704 RDPDR - ok
05:05:30.0131 2704 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
05:05:30.0178 2704 RDPENCDD - ok
05:05:30.0209 2704 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
05:05:30.0241 2704 RDPREFMP - ok
05:05:30.0319 2704 [ 313F68E1A3E6345A4F47A36B07062F34 ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys
05:05:30.0365 2704 RdpVideoMiniport - ok
05:05:30.0412 2704 [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
05:05:30.0443 2704 RDPWD - ok
05:05:30.0506 2704 [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
05:05:30.0537 2704 rdyboost - ok
05:05:30.0631 2704 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\Windows\System32\mprdim.dll
05:05:30.0677 2704 RemoteAccess - ok
05:05:30.0740 2704 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll
05:05:30.0802 2704 RemoteRegistry - ok
05:05:30.0927 2704 [ 3DD798846E2C28102B922C56E71B7932 ] RFCOMM C:\Windows\system32\DRIVERS\rfcomm.sys
05:05:30.0943 2704 RFCOMM - ok
05:05:31.0021 2704 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
05:05:31.0114 2704 RpcEptMapper - ok
05:05:31.0161 2704 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\Windows\system32\locator.exe
05:05:31.0192 2704 RpcLocator - ok
05:05:31.0270 2704 [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs C:\Windows\System32\rpcss.dll
05:05:31.0301 2704 RpcSs - ok
05:05:31.0364 2704 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
05:05:31.0379 2704 rspndr - ok
05:05:31.0426 2704 [ ABCB5A38A0D85BDF69B7877E1AD1EED5 ] RTL8167 C:\Windows\system32\DRIVERS\Rt64win7.sys
05:05:31.0442 2704 RTL8167 - ok
05:05:31.0489 2704 [ E60C0A09F997826C7627B244195AB581 ] s3cap C:\Windows\system32\drivers\vms3cap.sys
05:05:31.0520 2704 s3cap - ok
05:05:31.0551 2704 [ C118A82CD78818C29AB228366EBF81C3 ] SamSs C:\Windows\system32\lsass.exe
05:05:31.0567 2704 SamSs - ok
05:05:31.0613 2704 [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
05:05:31.0645 2704 sbp2port - ok
05:05:31.0863 2704 [ 794D4B48DFB6E999537C7C3947863463 ] SBSDWSCService C:\Program Files (x86)\Spybot - Search & Destroy\SDWinSec.exe
05:05:31.0879 2704 SBSDWSCService - ok
05:05:31.0972 2704 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\Windows\System32\SCardSvr.dll
05:05:32.0019 2704 SCardSvr - ok
05:05:32.0050 2704 [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
05:05:32.0097 2704 scfilter - ok
05:05:32.0159 2704 [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule C:\Windows\system32\schedsvc.dll
05:05:32.0237 2704 Schedule - ok
05:05:32.0300 2704 [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc C:\Windows\System32\certprop.dll
05:05:32.0315 2704 SCPolicySvc - ok
05:05:32.0378 2704 [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC C:\Windows\System32\SDRSVC.dll
05:05:32.0440 2704 SDRSVC - ok
05:05:32.0503 2704 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys
05:05:32.0534 2704 secdrv - ok
05:05:32.0581 2704 [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon C:\Windows\system32\seclogon.dll
05:05:32.0659 2704 seclogon - ok
05:05:32.0690 2704 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\Windows\system32\sens.dll
05:05:32.0737 2704 SENS - ok
05:05:32.0752 2704 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\Windows\system32\sensrsvc.dll
05:05:32.0768 2704 SensrSvc - ok
05:05:32.0799 2704 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
05:05:32.0830 2704 Serenum - ok
05:05:32.0846 2704 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\Windows\system32\DRIVERS\serial.sys
05:05:32.0861 2704 Serial - ok
05:05:32.0908 2704 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys
05:05:32.0971 2704 sermouse - ok
05:05:33.0002 2704 [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv C:\Windows\system32\sessenv.dll
05:05:33.0049 2704 SessionEnv - ok
05:05:33.0095 2704 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
05:05:33.0142 2704 sffdisk - ok
05:05:33.0158 2704 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
05:05:33.0189 2704 sffp_mmc - ok
05:05:33.0189 2704 [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
05:05:33.0220 2704 sffp_sd - ok
05:05:33.0236 2704 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
05:05:33.0251 2704 sfloppy - ok
05:05:33.0314 2704 [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess C:\Windows\System32\ipnathlp.dll
05:05:33.0361 2704 SharedAccess - ok
05:05:33.0439 2704 [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
05:05:33.0485 2704 ShellHWDetection - ok
05:05:33.0517 2704 [ 720088AAD691FF1D90BE8EC28727F6CA ] silabenm C:\Windows\system32\DRIVERS\silabenm.sys
05:05:33.0532 2704 silabenm - ok
05:05:33.0548 2704 [ 77D4F56682AB668DD7D4BD4F1178D3C9 ] silabser C:\Windows\system32\DRIVERS\silabser.sys
05:05:33.0595 2704 silabser - ok
05:05:33.0688 2704 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys
05:05:33.0705 2704 SiSRaid2 - ok
05:05:33.0736 2704 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys
05:05:33.0752 2704 SiSRaid4 - ok
05:05:34.0485 2704 [ E42D201B0B53A94BD8E5B032EC83D843 ] Skype C2C Service C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe
05:05:34.0532 2704 Skype C2C Service - ok
05:05:34.0641 2704 [ 7C15061CD0372487903B07B9BB03AFAD ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe
05:05:34.0656 2704 SkypeUpdate - ok
05:05:34.0688 2704 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\Windows\system32\DRIVERS\smb.sys
05:05:34.0750 2704 Smb - ok
05:05:34.0797 2704 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\Windows\System32\snmptrap.exe
05:05:34.0828 2704 SNMPTRAP - ok
05:05:34.0844 2704 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\Windows\system32\drivers\spldr.sys
05:05:34.0859 2704 spldr - ok
05:05:34.0984 2704 [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler C:\Windows\System32\spoolsv.exe
05:05:35.0046 2704 Spooler - ok
05:05:35.0468 2704 [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc C:\Windows\system32\sppsvc.exe
05:05:35.0530 2704 sppsvc - ok
05:05:35.0577 2704 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\Windows\system32\sppuinotify.dll
05:05:35.0624 2704 sppuinotify - ok
05:05:35.0670 2704 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv C:\Windows\system32\DRIVERS\srv.sys
05:05:35.0717 2704 srv - ok
05:05:35.0748 2704 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
05:05:35.0795 2704 srv2 - ok
05:05:35.0873 2704 [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
05:05:35.0889 2704 srvnet - ok
05:05:36.0060 2704 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
05:05:36.0154 2704 SSDPSRV - ok
05:05:36.0232 2704 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\Windows\system32\sstpsvc.dll
05:05:36.0263 2704 SstpSvc - ok
05:05:36.0310 2704 Steam Client Service - ok
05:05:36.0341 2704 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys
05:05:36.0357 2704 stexstor - ok
05:05:36.0419 2704 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc C:\Windows\System32\wiaservc.dll
05:05:36.0466 2704 stisvc - ok
05:05:36.0497 2704 [ 7785DC213270D2FC066538DAF94087E7 ] storflt C:\Windows\system32\drivers\vmstorfl.sys
05:05:36.0513 2704 storflt - ok
05:05:36.0528 2704 [ D34E4943D5AC096C8EDEEBFD80D76E23 ] storvsc C:\Windows\system32\drivers\storvsc.sys
05:05:36.0575 2704 storvsc - ok
05:05:36.0591 2704 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\Windows\system32\drivers\swenum.sys
05:05:36.0606 2704 swenum - ok
05:05:36.0653 2704 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\Windows\System32\swprv.dll
05:05:36.0762 2704 swprv - ok
05:05:36.0825 2704 Synth3dVsc - ok
05:05:37.0230 2704 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain C:\Windows\system32\sysmain.dll
05:05:37.0277 2704 SysMain - ok
05:05:37.0355 2704 [ 6820E296D9F517B7BC7387E93B1FF8BE ] t1pusb64 C:\Windows\system32\drivers\t1pusb64.sys
05:05:37.0355 2704 t1pusb64 - ok
05:05:37.0418 2704 [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
05:05:37.0464 2704 TabletInputService - ok
05:05:37.0527 2704 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv C:\Windows\System32\tapisrv.dll
05:05:37.0589 2704 TapiSrv - ok
05:05:37.0636 2704 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\Windows\System32\tbssvc.dll
05:05:37.0667 2704 TBS - ok
05:05:37.0776 2704 [ B62A953F2BF3922C8764A29C34A22899 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
05:05:37.0854 2704 Tcpip - ok
05:05:38.0354 2704 [ B62A953F2BF3922C8764A29C34A22899 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
05:05:38.0385 2704 TCPIP6 - ok
05:05:38.0432 2704 [ 1B16D0BD9841794A6E0CDE0CEF744ABC ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
05:05:38.0463 2704 tcpipreg - ok
05:05:38.0525 2704 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
05:05:38.0572 2704 TDPIPE - ok
05:05:38.0603 2704 [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
05:05:38.0619 2704 TDTCP - ok
05:05:38.0666 2704 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
05:05:38.0697 2704 tdx - ok
05:05:39.0586 2704 [ 6B1B2F8D62D606B200C2072564090104 ] TeamViewer8 C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe
05:05:39.0633 2704 TeamViewer8 - ok
05:05:39.0664 2704 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD C:\Windows\system32\drivers\termdd.sys
05:05:39.0680 2704 TermDD - ok
05:05:39.0742 2704 [ 2E648163254233755035B46DD7B89123 ] TermService C:\Windows\System32\termsrv.dll
05:05:39.0804 2704 TermService - ok
05:05:39.0836 2704 [ F0344071948D1A1FA732231785A0664C ] Themes C:\Windows\system32\themeservice.dll
05:05:39.0882 2704 Themes - ok
05:05:39.0914 2704 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\Windows\system32\mmcss.dll
05:05:39.0945 2704 THREADORDER - ok
05:05:40.0007 2704 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\Windows\System32\trkwks.dll
05:05:40.0038 2704 TrkWks - ok
05:05:40.0319 2704 [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
05:05:40.0382 2704 TrustedInstaller - ok
05:05:40.0428 2704 [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
05:05:40.0460 2704 tssecsrv - ok
05:05:40.0506 2704 [ 17C6B51CBCCDED95B3CC14E22791F85E ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
05:05:40.0553 2704 TsUsbFlt - ok
05:05:40.0553 2704 tsusbhub - ok
05:05:40.0600 2704 [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
05:05:40.0647 2704 tunnel - ok
05:05:40.0678 2704 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys
05:05:40.0709 2704 uagp35 - ok
05:05:40.0803 2704 [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
05:05:40.0881 2704 udfs - ok
05:05:40.0928 2704 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\Windows\system32\UI0Detect.exe
05:05:40.0959 2704 UI0Detect - ok
05:05:40.0990 2704 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
05:05:41.0006 2704 uliagpkx - ok
05:05:41.0052 2704 [ DC54A574663A895C8763AF0FA1FF7561 ] umbus C:\Windows\system32\drivers\umbus.sys
05:05:41.0068 2704 umbus - ok
05:05:41.0084 2704 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\Windows\system32\DRIVERS\umpass.sys
05:05:41.0115 2704 UmPass - ok
05:05:41.0146 2704 [ A293DCD756D04D8492A750D03B9A297C ] UmRdpService C:\Windows\System32\umrdp.dll
05:05:41.0224 2704 UmRdpService - ok
05:05:41.0286 2704 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\Windows\System32\upnphost.dll
05:05:41.0333 2704 upnphost - ok
05:05:41.0489 2704 [ C9E9D59C0099A9FF51697E9306A44240 ] USBAAPL64 C:\Windows\system32\Drivers\usbaapl64.sys
05:05:41.0520 2704 USBAAPL64 - ok
05:05:41.0583 2704 [ 82E8F44688E6FAC57B5B7C6FC7ADBC2A ] usbaudio C:\Windows\system32\drivers\usbaudio.sys
05:05:41.0614 2704 usbaudio - ok
05:05:41.0692 2704 [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
05:05:41.0754 2704 usbccgp - ok
05:05:41.0801 2704 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\Windows\system32\drivers\usbcir.sys
05:05:41.0817 2704 usbcir - ok
05:05:41.0848 2704 [ C025055FE7B87701EB042095DF1A2D7B ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
05:05:41.0879 2704 usbehci - ok
05:05:41.0926 2704 [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
05:05:41.0957 2704 usbhub - ok
05:05:42.0004 2704 [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci C:\Windows\system32\drivers\usbohci.sys
05:05:42.0035 2704 usbohci - ok
05:05:42.0066 2704 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
05:05:42.0082 2704 usbprint - ok
05:05:42.0129 2704 [ AAA2513C8AED8B54B189FD0C6B1634C0 ] usbscan C:\Windows\system32\DRIVERS\usbscan.sys
05:05:42.0160 2704 usbscan - ok
05:05:42.0207 2704 [ 4ACEE387FA8FD39F83564FCD2FC234F2 ] usbser C:\Windows\system32\DRIVERS\usbser.sys
05:05:42.0238 2704 usbser - ok
05:05:42.0254 2704 [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
05:05:42.0316 2704 USBSTOR - ok
05:05:42.0441 2704 [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci C:\Windows\system32\DRIVERS\usbuhci.sys
05:05:42.0456 2704 usbuhci - ok
05:05:42.0519 2704 [ 454800C2BC7F3927CE030141EE4F4C50 ] usbvideo C:\Windows\system32\Drivers\usbvideo.sys
05:05:42.0534 2704 usbvideo - ok
05:05:42.0581 2704 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\Windows\System32\uxsms.dll
05:05:42.0659 2704 UxSms - ok
05:05:42.0706 2704 [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc C:\Windows\system32\lsass.exe
05:05:42.0706 2704 VaultSvc - ok
05:05:42.0753 2704 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
05:05:42.0784 2704 vdrvroot - ok
05:05:42.0956 2704 [ 8D6B481601D01A456E75C3210F1830BE ] vds C:\Windows\System32\vds.exe
05:05:43.0065 2704 vds - ok
05:05:43.0112 2704 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
05:05:43.0127 2704 vga - ok
05:05:43.0143 2704 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\Windows\System32\drivers\vga.sys
05:05:43.0174 2704 VgaSave - ok
05:05:43.0190 2704 VGPU - ok
05:05:43.0236 2704 [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
05:05:43.0268 2704 vhdmp - ok
05:05:43.0314 2704 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\Windows\system32\drivers\viaide.sys
05:05:43.0314 2704 viaide - ok
05:05:43.0361 2704 [ 86EA3E79AE350FEA5331A1303054005F ] vmbus C:\Windows\system32\drivers\vmbus.sys
05:05:43.0377 2704 vmbus - ok
05:05:43.0424 2704 [ 7DE90B48F210D29649380545DB45A187 ] VMBusHID C:\Windows\system32\drivers\VMBusHID.sys
05:05:43.0455 2704 VMBusHID - ok
05:05:43.0486 2704 [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr C:\Windows\system32\drivers\volmgr.sys
05:05:43.0502 2704 volmgr - ok
05:05:43.0689 2704 [ A255814907C89BE58B79EF2F189B843B ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
05:05:43.0720 2704 volmgrx - ok
05:05:43.0751 2704 [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap C:\Windows\system32\drivers\volsnap.sys
05:05:43.0876 2704 volsnap - ok
05:05:43.0923 2704 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys
05:05:43.0938 2704 vsmraid - ok
05:05:44.0250 2704 [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS C:\Windows\system32\vssvc.exe
05:05:44.0375 2704 VSS - ok
05:05:44.0391 2704 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\Windows\System32\drivers\vwifibus.sys
05:05:44.0438 2704 vwifibus - ok
05:05:44.0562 2704 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\Windows\system32\w32time.dll
05:05:44.0594 2704 W32Time - ok
05:05:44.0672 2704 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys
05:05:44.0765 2704 WacomPen - ok
05:05:44.0828 2704 [ 356AFD78A6ED4457169241AC3965230C ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
05:05:44.0859 2704 WANARP - ok
05:05:44.0874 2704 [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
05:05:44.0890 2704 Wanarpv6 - ok
05:05:45.0218 2704 [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe
05:05:45.0311 2704 WatAdminSvc - ok
05:05:45.0405 2704 [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine C:\Windows\system32\wbengine.exe
05:05:45.0483 2704 wbengine - ok
05:05:45.0545 2704 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
05:05:45.0561 2704 WbioSrvc - ok
05:05:45.0717 2704 [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc C:\Windows\System32\wcncsvc.dll
05:05:45.0732 2704 wcncsvc - ok
05:05:45.0810 2704 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
05:05:45.0858 2704 WcsPlugInService - ok
05:05:45.0905 2704 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\Windows\system32\DRIVERS\wd.sys
05:05:45.0921 2704 Wd - ok
05:05:46.0077 2704 [ 442783E2CB0DA19873B7A63833FF4CB4 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
05:05:46.0155 2704 Wdf01000 - ok
05:05:46.0201 2704 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\Windows\system32\wdi.dll
05:05:46.0233 2704 WdiServiceHost - ok
05:05:46.0233 2704 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\Windows\system32\wdi.dll
05:05:46.0248 2704 WdiSystemHost - ok
05:05:46.0326 2704 [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient C:\Windows\System32\webclnt.dll
05:05:46.0373 2704 WebClient - ok
05:05:46.0420 2704 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\Windows\system32\wecsvc.dll
05:05:46.0482 2704 Wecsvc - ok
05:05:46.0529 2704 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\Windows\System32\wercplsupport.dll
05:05:46.0576 2704 wercplsupport - ok
05:05:46.0623 2704 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\Windows\System32\WerSvc.dll
05:05:46.0654 2704 WerSvc - ok
05:05:46.0685 2704 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
05:05:46.0716 2704 WfpLwf - ok
05:05:46.0747 2704 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\Windows\system32\drivers\wimmount.sys
05:05:46.0763 2704 WIMMount - ok
05:05:46.0779 2704 WinDefend - ok
05:05:46.0794 2704 WinHttpAutoProxySvc - ok
05:05:46.0872 2704 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
05:05:46.0919 2704 Winmgmt - ok
05:05:47.0153 2704 [ BCB1310604AA415C4508708975B3931E ] WinRM C:\Windows\system32\WsmSvc.dll
05:05:47.0278 2704 WinRM - ok
05:05:47.0371 2704 [ FE88B288356E7B47B74B13372ADD906D ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys
05:05:47.0387 2704 WinUsb - ok
05:05:47.0543 2704 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\Windows\System32\wlansvc.dll
05:05:47.0668 2704 Wlansvc - ok
05:05:47.0683 2704 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
05:05:47.0715 2704 WmiAcpi - ok
05:05:47.0761 2704 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
05:05:47.0824 2704 wmiApSrv - ok
05:05:47.0871 2704 WMPNetworkSvc - ok
05:05:47.0933 2704 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\Windows\System32\wpcsvc.dll
05:05:47.0964 2704 WPCSvc - ok
05:05:48.0011 2704 [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
05:05:48.0027 2704 WPDBusEnum - ok
05:05:48.0058 2704 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
05:05:48.0105 2704 ws2ifsl - ok
05:05:48.0261 2704 [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc C:\Windows\system32\wscsvc.dll
05:05:48.0292 2704 wscsvc - ok
05:05:48.0307 2704 WSearch - ok
05:05:48.0916 2704 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv C:\Windows\system32\wuaueng.dll
05:05:48.0947 2704 wuauserv - ok
05:05:49.0041 2704 [ AB886378EEB55C6C75B4F2D14B6C869F ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
05:05:49.0087 2704 WudfPf - ok
05:05:49.0150 2704 [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
05:05:49.0165 2704 WUDFRd - ok
05:05:49.0243 2704 [ B20F051B03A966392364C83F009F7D17 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
05:05:49.0337 2704 wudfsvc - ok
05:05:49.0384 2704 [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc C:\Windows\System32\wwansvc.dll
05:05:49.0431 2704 WwanSvc - ok
05:05:49.0524 2704 ================ Scan global ===============================
05:05:49.0602 2704 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
05:05:49.0711 2704 [ 0C27239FEA4DB8A2AAC9E502186B7264 ] C:\Windows\system32\winsrv.dll
05:05:49.0789 2704 [ 0C27239FEA4DB8A2AAC9E502186B7264 ] C:\Windows\system32\winsrv.dll
05:05:49.0914 2704 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
05:05:50.0070 2704 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
05:05:50.0070 2704 [Global] - ok
05:05:50.0070 2704 ================ Scan MBR ==================================
05:05:50.0117 2704 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk2\DR2
05:05:51.0240 2704 \Device\Harddisk2\DR2 - ok
05:05:51.0256 2704 [ 5FB38429D5D77768867C76DCBDB35194 ] \Device\Harddisk3\DR3
05:05:51.0334 2704 \Device\Harddisk3\DR3 - ok
05:05:51.0334 2704 [ 5FB38429D5D77768867C76DCBDB35194 ] \Device\Harddisk0\DR0
05:05:51.0786 2704 \Device\Harddisk0\DR0 - ok
05:05:51.0817 2704 [ 593B7F253AE59C96C9FF0E5C88669A49 ] \Device\Harddisk1\DR1
05:05:51.0942 2704 \Device\Harddisk1\DR1 - ok
05:05:51.0942 2704 [ 5FB38429D5D77768867C76DCBDB35194 ] \Device\Harddisk8\DR8
05:05:52.0067 2704 \Device\Harddisk8\DR8 - ok
05:05:52.0067 2704 ================ Scan VBR ==================================
05:05:52.0114 2704 [ D4A8A7FE36EE86A4834279172D037C6D ] \Device\Harddisk2\DR2\Partition1
05:05:52.0129 2704 \Device\Harddisk2\DR2\Partition1 - ok
05:05:52.0161 2704 [ 6EAFFE6AFFF7B22F506385A942401427 ] \Device\Harddisk2\DR2\Partition2
05:05:52.0161 2704 \Device\Harddisk2\DR2\Partition2 - ok
05:05:52.0161 2704 [ C07FB926E838EFB0958FA843F6309516 ] \Device\Harddisk3\DR3\Partition1
05:05:52.0161 2704 \Device\Harddisk3\DR3\Partition1 - ok
05:05:52.0176 2704 [ 83027E3B318BD812B5B2D745651814B1 ] \Device\Harddisk0\DR0\Partition1
05:05:52.0176 2704 \Device\Harddisk0\DR0\Partition1 - ok
05:05:52.0176 2704 [ 392C14D9FE5B6E3DDDC4F09975F97E18 ] \Device\Harddisk1\DR1\Partition1
05:05:52.0176 2704 \Device\Harddisk1\DR1\Partition1 - ok
05:05:52.0176 2704 [ FE8F215AD828A543B0A6863684A6285C ] \Device\Harddisk1\DR1\Partition2
05:05:52.0176 2704 \Device\Harddisk1\DR1\Partition2 - ok
05:05:52.0192 2704 [ 696EDF6C6D3E8AF423584B38C23A8CE0 ] \Device\Harddisk8\DR8\Partition1
05:05:52.0192 2704 \Device\Harddisk8\DR8\Partition1 - ok
05:05:52.0192 2704 ================ Scan active images ========================
05:05:52.0192 2704 [ 3E588B60EC061686BA05D33574A344C6 ] C:\Windows\System32\drivers\crashdmp.sys
05:05:52.0192 2704 C:\Windows\System32\drivers\crashdmp.sys - ok
05:05:52.0192 2704 [ 839B5FE3D48E9F35B22C21A3D5103F6C ] C:\Windows\System32\drivers\Dumpata.sys
05:05:52.0192 2704 C:\Windows\System32\drivers\Dumpata.sys - ok
05:05:52.0207 2704 [ 02062C0B390B7729EDC9E69C680A6F3C ] C:\Windows\System32\drivers\atapi.sys
05:05:52.0207 2704 C:\Windows\System32\drivers\atapi.sys - ok
05:05:52.0207 2704 [ 814DB88F2641691575A455CF25354098 ] C:\Windows\System32\drivers\dumpfve.sys
05:05:52.0207 2704 C:\Windows\System32\drivers\dumpfve.sys - ok
05:05:52.0207 2704 [ F036CE71586E93D94DAB220D7BDF4416 ] C:\Windows\System32\drivers\cdrom.sys
05:05:52.0207 2704 C:\Windows\System32\drivers\cdrom.sys - ok
05:05:52.0223 2704 [ AB8B4D3136D18A20777036E0F0CFC5E1 ] C:\Windows\System32\drivers\aswSnx.sys
05:05:52.0223 2704 C:\Windows\System32\drivers\aswSnx.sys - ok
05:05:52.0223 2704 [ 16A47CE2DECC9B099349A5F840654746 ] C:\Windows\System32\drivers\beep.sys
05:05:52.0223 2704 C:\Windows\System32\drivers\beep.sys - ok
05:05:52.0223 2704 [ 9899284589F75FA8724FF3D16AED75C1 ] C:\Windows\System32\drivers\null.sys
05:05:52.0223 2704 C:\Windows\System32\drivers\null.sys - ok
05:05:52.0239 2704 [ 53E92A310193CB3C03BEA963DE7D9CFC ] C:\Windows\System32\drivers\vga.sys
05:05:52.0239 2704 C:\Windows\System32\drivers\vga.sys - ok
05:05:52.0239 2704 [ E7353D59C9842BC7299FAEB7E7E09340 ] C:\Windows\System32\drivers\videoprt.sys
05:05:52.0239 2704 C:\Windows\System32\drivers\videoprt.sys - ok
05:05:52.0239 2704 [ FC438D1430B28618E2D0C7C332A710AD ] C:\Windows\System32\drivers\watchdog.sys
05:05:52.0239 2704 C:\Windows\System32\drivers\watchdog.sys - ok
05:05:52.0254 2704 [ CEA6CC257FC9B7715F1C2B4849286D24 ] C:\Windows\System32\drivers\RDPCDD.sys
05:05:52.0254 2704 C:\Windows\System32\drivers\RDPCDD.sys - ok
05:05:52.0254 2704 [ BB5971A4F00659529A5C44831AF22365 ] C:\Windows\System32\drivers\RDPENCDD.sys
05:05:52.0254 2704 C:\Windows\System32\drivers\RDPENCDD.sys - ok
05:05:52.0254 2704 [ 216F3FA57533D98E1F74DED70113177A ] C:\Windows\System32\drivers\RDPREFMP.sys
05:05:52.0254 2704 C:\Windows\System32\drivers\RDPREFMP.sys - ok
05:05:52.0270 2704 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] C:\Windows\System32\drivers\msfs.sys
05:05:52.0270 2704 C:\Windows\System32\drivers\msfs.sys - ok
05:05:52.0270 2704 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] C:\Windows\System32\drivers\npfs.sys
05:05:52.0270 2704 C:\Windows\System32\drivers\npfs.sys - ok
05:05:52.0270 2704 [ D62C10D1829C65115111C160EA956260 ] C:\Windows\System32\drivers\aswTdi.sys
05:05:52.0270 2704 C:\Windows\System32\drivers\aswTdi.sys - ok
05:05:52.0285 2704 [ 6F020A220388ECA0AB6062DC27BD16B6 ] C:\Windows\System32\drivers\tdi.sys
05:05:52.0285 2704 C:\Windows\System32\drivers\tdi.sys - ok
05:05:52.0285 2704 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] C:\Windows\System32\drivers\tdx.sys
05:05:52.0285 2704 C:\Windows\System32\drivers\tdx.sys - ok
05:05:52.0285 2704 [ 1C7857B62DE5994A75B054A9FD4C3825 ] C:\Windows\System32\drivers\afd.sys
05:05:52.0285 2704 C:\Windows\System32\drivers\afd.sys - ok
05:05:52.0285 2704 [ 8F90459AFB7FD4557D935CE639EF6110 ] C:\Windows\System32\drivers\aswRdr2.sys
05:05:52.0285 2704 C:\Windows\System32\drivers\aswRdr2.sys - ok
05:05:52.0301 2704 [ 09594D1089C523423B32A4229263F068 ] C:\Windows\System32\drivers\netbt.sys
05:05:52.0301 2704 C:\Windows\System32\drivers\netbt.sys - ok
05:05:52.0301 2704 [ 6BCC1D7D2FD2453957C5479A32364E52 ] C:\Windows\System32\drivers\ws2ifsl.sys
05:05:52.0301 2704 C:\Windows\System32\drivers\ws2ifsl.sys - ok
05:05:52.0301 2704 [ 611B23304BF067451A9FDEE01FBDD725 ] C:\Windows\System32\drivers\wfplwf.sys
05:05:52.0301 2704 C:\Windows\System32\drivers\wfplwf.sys - ok
05:05:52.0317 2704 [ 0557CF5A2556BD58E26384169D72438D ] C:\Windows\System32\drivers\pacer.sys
05:05:52.0317 2704 C:\Windows\System32\drivers\pacer.sys - ok
05:05:52.0317 2704 [ 86743D9F5D2B1048062B14B1D84501C4 ] C:\Windows\System32\drivers\netbios.sys
05:05:52.0317 2704 C:\Windows\System32\drivers\netbios.sys - ok
05:05:52.0317 2704 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] C:\Windows\System32\drivers\serial.sys
05:05:52.0317 2704 C:\Windows\System32\drivers\serial.sys - ok
05:05:52.0332 2704 [ 356AFD78A6ED4457169241AC3965230C ] C:\Windows\System32\drivers\wanarp.sys
05:05:52.0332 2704 C:\Windows\System32\drivers\wanarp.sys - ok
05:05:52.0332 2704 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] C:\Windows\System32\drivers\termdd.sys
05:05:52.0332 2704 C:\Windows\System32\drivers\termdd.sys - ok
05:05:52.0332 2704 [ 13096B05847EC78F0977F2C0F79E9AB3 ] C:\Windows\System32\drivers\discache.sys
05:05:52.0332 2704 C:\Windows\System32\drivers\discache.sys - ok
05:05:52.0348 2704 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] C:\Windows\System32\drivers\mssmbios.sys
05:05:52.0348 2704 C:\Windows\System32\drivers\mssmbios.sys - ok
05:05:52.0348 2704 [ E7F5AE18AF4168178A642A9247C63001 ] C:\Windows\System32\drivers\nsiproxy.sys
05:05:52.0348 2704 C:\Windows\System32\drivers\nsiproxy.sys - ok
05:05:52.0348 2704 [ 77F665941019A1594D887A74F301FA2F ] C:\Windows\System32\drivers\rdbss.sys
05:05:52.0348 2704 C:\Windows\System32\drivers\rdbss.sys - ok
05:05:52.0348 2704 [ 54DA3DFD29ED9F1619B6F53F3CE55E49 ] C:\Windows\System32\drivers\csc.sys
05:05:52.0348 2704 C:\Windows\System32\drivers\csc.sys - ok
05:05:52.0363 2704 [ 61583EE3C3A17003C4ACD0475646B4D3 ] C:\Windows\System32\drivers\blbdrive.sys
05:05:52.0363 2704 C:\Windows\System32\drivers\blbdrive.sys - ok
05:05:52.0363 2704 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] C:\Windows\System32\drivers\dfsc.sys
05:05:52.0363 2704 C:\Windows\System32\drivers\dfsc.sys - ok
05:05:52.0363 2704 [ 97D4D725BD32C965119E6C8E252F8C64 ] C:\Windows\System32\drivers\aswSP.sys
05:05:52.0363 2704 C:\Windows\System32\drivers\aswSP.sys - ok
05:05:52.0363 2704 [ 3566A8DAAFA27AF944F5D705EAA64894 ] C:\Windows\System32\drivers\tunnel.sys
05:05:52.0363 2704 C:\Windows\System32\drivers\tunnel.sys - ok
05:05:52.0379 2704 [ ADA036632C664CAA754079041CF1F8C1 ] C:\Windows\System32\drivers\intelppm.sys
05:05:52.0379 2704 C:\Windows\System32\drivers\intelppm.sys - ok
05:05:52.0379 2704 [ 9DEB889D152F9C9DBA98BE8986084535 ] C:\Windows\System32\drivers\atikmpag.sys
05:05:52.0379 2704 C:\Windows\System32\drivers\atikmpag.sys - ok
05:05:52.0379 2704 [ F0371DE302FFFF8F086661611BE60848 ] C:\Windows\System32\smss.exe
05:05:52.0379 2704 C:\Windows\System32\smss.exe - ok
05:05:52.0379 2704 [ CF95B85FF8D128385ABD411C8CA74DED ] C:\Windows\System32\ntdll.dll
05:05:52.0379 2704 C:\Windows\System32\ntdll.dll - ok
05:05:52.0395 2704 [ 3B536A8BEC3B4F23FFDFD78B11A2AB93 ] C:\Windows\System32\autochk.exe
05:05:52.0395 2704 C:\Windows\System32\autochk.exe - ok
05:05:52.0395 2704 [ 9A4B92150A5E259A7159D914CC3A60D7 ] C:\Windows\System32\drivers\atikmdag.sys
05:05:52.0395 2704 C:\Windows\System32\drivers\atikmdag.sys - ok
05:05:52.0395 2704 [ 0ADC83218B66A6DB380C330836F3E36D ] C:\Windows\System32\drivers\fastfat.sys
05:05:52.0395 2704 C:\Windows\System32\drivers\fastfat.sys - ok
05:05:52.0410 2704 [ DC2EF6FF1143537D10FCCD933C991DC2 ] C:\Windows\System32\drivers\mctkmd64.sys
05:05:52.0410 2704 C:\Windows\System32\drivers\mctkmd64.sys - ok
05:05:52.0410 2704 [ F5BEE30450E18E6B83A5012C100616FD ] C:\Windows\System32\drivers\dxgkrnl.sys
05:05:52.0410 2704 C:\Windows\System32\drivers\dxgkrnl.sys - ok
05:05:52.0410 2704 [ 9CD68BDDF322535C02ADC8331013D13D ] C:\Windows\System32\drivers\dxgmms1.sys
05:05:52.0410 2704 C:\Windows\System32\drivers\dxgmms1.sys - ok
05:05:52.0410 2704 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] C:\Windows\System32\drivers\hdaudbus.sys
05:05:52.0410 2704 C:\Windows\System32\drivers\hdaudbus.sys - ok
05:05:52.0426 2704 [ ABCB5A38A0D85BDF69B7877E1AD1EED5 ] C:\Windows\System32\drivers\Rt64win7.sys
05:05:52.0426 2704 C:\Windows\System32\drivers\Rt64win7.sys - ok
05:05:52.0426 2704 [ AE259C75F9A0B057B6BF9E9695632B09 ] C:\Windows\System32\drivers\usbport.sys
05:05:52.0426 2704 C:\Windows\System32\drivers\usbport.sys - ok
05:05:52.0426 2704 [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] C:\Windows\System32\drivers\usbuhci.sys
05:05:52.0426 2704 C:\Windows\System32\drivers\usbuhci.sys - ok
05:05:52.0426 2704 [ D765D19CD8EF61F650C384F62FAC00AB ] C:\Windows\System32\drivers\fdc.sys
05:05:52.0426 2704 C:\Windows\System32\drivers\fdc.sys - ok
05:05:52.0441 2704 [ C025055FE7B87701EB042095DF1A2D7B ] C:\Windows\System32\drivers\usbehci.sys
05:05:52.0441 2704 C:\Windows\System32\drivers\usbehci.sys - ok
05:05:52.0441 2704 [ 0086431C29C35BE1DBC43F52CC273887 ] C:\Windows\System32\drivers\parport.sys
05:05:52.0441 2704 C:\Windows\System32\drivers\parport.sys - ok
05:05:52.0441 2704 [ CB624C0035412AF0DEBEC78C41F5CA1B ] C:\Windows\System32\drivers\serenum.sys
05:05:52.0441 2704 C:\Windows\System32\drivers\serenum.sys - ok
05:05:52.0441 2704 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] C:\Windows\System32\drivers\i8042prt.sys
05:05:52.0441 2704 C:\Windows\System32\drivers\i8042prt.sys - ok
05:05:52.0457 2704 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] C:\Windows\System32\drivers\kbdclass.sys
05:05:52.0457 2704 C:\Windows\System32\drivers\kbdclass.sys - ok
05:05:52.0457 2704 [ 7ECFF9B22276B73F43A99A15A6094E90 ] C:\Windows\System32\drivers\agilevpn.sys
05:05:52.0457 2704 C:\Windows\System32\drivers\agilevpn.sys - ok
05:05:52.0457 2704 [ 03EDB043586CCEBA243D689BDDA370A8 ] C:\Windows\System32\drivers\CompositeBus.sys
05:05:52.0457 2704 C:\Windows\System32\drivers\CompositeBus.sys - ok
05:05:52.0473 2704 [ 8E98D21EE06192492A5671A6144D092F ] C:\Windows\System32\drivers\GEARAspiWDM.sys
05:05:52.0473 2704 C:\Windows\System32\drivers\GEARAspiWDM.sys - ok
05:05:52.0473 2704 [ 30639C932D9FEF22B31268FE25A1B6E5 ] C:\Windows\System32\drivers\ndistapi.sys
05:05:52.0473 2704 C:\Windows\System32\drivers\ndistapi.sys - ok
05:05:52.0473 2704 [ 471815800AE33E6F1C32FB1B97C490CA ] C:\Windows\System32\drivers\rasl2tp.sys
05:05:52.0473 2704 C:\Windows\System32\drivers\rasl2tp.sys - ok
05:05:52.0473 2704 [ 53F7305169863F0A2BDDC49E116C2E11 ] C:\Windows\System32\drivers\ndiswan.sys
05:05:52.0473 2704 C:\Windows\System32\drivers\ndiswan.sys - ok
05:05:52.0488 2704 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] C:\Windows\System32\drivers\raspppoe.sys
05:05:52.0488 2704 C:\Windows\System32\drivers\raspppoe.sys - ok
05:05:52.0488 2704 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] C:\Windows\System32\drivers\raspptp.sys
05:05:52.0488 2704 C:\Windows\System32\drivers\raspptp.sys - ok
05:05:52.0488 2704 [ E8B1E447B008D07FF47D016C2B0EEECB ] C:\Windows\System32\drivers\rassstp.sys
05:05:52.0488 2704 C:\Windows\System32\drivers\rassstp.sys - ok
05:05:52.0488 2704 [ 7D27EA49F3C1F687D357E77A470AEA99 ] C:\Windows\System32\drivers\mouclass.sys
05:05:52.0488 2704 C:\Windows\System32\drivers\mouclass.sys - ok
05:05:52.0504 2704 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] C:\Windows\System32\drivers\rdpbus.sys
05:05:52.0504 2704 C:\Windows\System32\drivers\rdpbus.sys - ok
05:05:52.0504 2704 [ 79D51E7F5926E8CE1B3EBECEBAE28CFF ] C:\Windows\System32\drivers\mcdbus.sys
05:05:52.0504 2704 C:\Windows\System32\drivers\mcdbus.sys - ok
05:05:52.0504 2704 [ 1B1E264203D4EF9D3DA1987AD70355AB ] C:\Windows\System32\drivers\scsiport.sys
05:05:52.0504 2704 C:\Windows\System32\drivers\scsiport.sys - ok
05:05:52.0504 2704 [ 24FBF5CC5C04150073C315A7C83521EE ] C:\Windows\System32\drivers\ks.sys
05:05:52.0504 2704 C:\Windows\System32\drivers\ks.sys - ok
05:05:52.0519 2704 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] C:\Windows\System32\drivers\swenum.sys
05:05:52.0519 2704 C:\Windows\System32\drivers\swenum.sys - ok
05:05:52.0519 2704 [ DC54A574663A895C8763AF0FA1FF7561 ] C:\Windows\System32\drivers\umbus.sys
05:05:52.0519 2704 C:\Windows\System32\drivers\umbus.sys - ok
05:05:52.0519 2704 [ 287C6C9410B111B68B52CA298F7B8C24 ] C:\Windows\System32\drivers\usbhub.sys
05:05:52.0519 2704 C:\Windows\System32\drivers\usbhub.sys - ok
05:05:52.0535 2704 [ C172A0F53008EAEB8EA33FE10E177AF5 ] C:\Windows\System32\drivers\flpydisk.sys
05:05:52.0535 2704 C:\Windows\System32\drivers\flpydisk.sys - ok
05:05:52.0535 2704 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] C:\Windows\System32\drivers\ndproxy.sys
05:05:52.0535 2704 C:\Windows\System32\drivers\ndproxy.sys - ok
05:05:52.0535 2704 [ 21D26064AEDB4988F785BB4A3A2C051E ] C:\Windows\System32\drivers\drmk.sys
05:05:52.0535 2704 C:\Windows\System32\drivers\drmk.sys - ok
05:05:52.0535 2704 [ CBD14F698DEF12EE3557604B726CB8EB ] C:\Windows\System32\drivers\AtihdW76.sys
05:05:52.0535 2704 C:\Windows\System32\drivers\AtihdW76.sys - ok
05:05:52.0551 2704 [ 6869281E78CB31A43E969F06B57347C4 ] C:\Windows\System32\drivers\ksthunk.sys
05:05:52.0551 2704 C:\Windows\System32\drivers\ksthunk.sys - ok
05:05:52.0551 2704 [ 32E11315B5126921FFD9074840EF13D3 ] C:\Windows\System32\drivers\portcls.sys
05:05:52.0551 2704 C:\Windows\System32\drivers\portcls.sys - ok
05:05:52.0551 2704 [ 135856AC71116CCFF05ED8481745241B ] C:\Windows\System32\drivers\RTKVHD64.sys
05:05:52.0551 2704 C:\Windows\System32\drivers\RTKVHD64.sys - ok
05:05:52.0566 2704 [ CCA2AB1752A61F29C3C941CD79D78CEA ] C:\Windows\System32\drivers\usbd.sys
05:05:52.0566 2704 C:\Windows\System32\drivers\usbd.sys - ok
05:05:52.0566 2704 [ FED648B01349A3C8395A5169DB5FB7D6 ] C:\Windows\System32\drivers\USBSTOR.SYS
05:05:52.0566 2704 C:\Windows\System32\drivers\USBSTOR.SYS - ok
05:05:52.0566 2704 [ 753C0848AE7872A3F59663078A517293 ] C:\Windows\System32\wininet.dll
05:05:52.0566 2704 C:\Windows\System32\wininet.dll - ok
05:05:52.0566 2704 [ 6C60B5ACA7442EFB794082CDACFC001C ] C:\Windows\System32\ole32.dll
05:05:52.0566 2704 C:\Windows\System32\ole32.dll - ok
05:05:52.0582 2704 [ FE70103391A64039A921DBFFF9C7AB1B ] C:\Windows\System32\user32.dll
05:05:52.0582 2704 C:\Windows\System32\user32.dll - ok
05:05:52.0582 2704 [ 49EE2E52E6CD03947DAD72F65367BE06 ] C:\Windows\System32\drivers\hidparse.sys
05:05:52.0582 2704 C:\Windows\System32\drivers\hidparse.sys - ok
05:05:52.0582 2704 [ 6F1A3157A1C89435352CEB543CDB359C ] C:\Windows\System32\drivers\usbccgp.sys
05:05:52.0582 2704 C:\Windows\System32\drivers\usbccgp.sys - ok
05:05:52.0582 2704 [ 8B0E40E7E8BBF5ACF390465609D89FF1 ] C:\Windows\System32\drivers\hidclass.sys
05:05:52.0582 2704 C:\Windows\System32\drivers\hidclass.sys - ok
05:05:52.0597 2704 [ 9592090A7E2B61CD582B612B6DF70536 ] C:\Windows\System32\drivers\hidusb.sys
05:05:52.0597 2704 C:\Windows\System32\drivers\hidusb.sys - ok
05:05:52.0597 2704 [ 6820E296D9F517B7BC7387E93B1FF8BE ] C:\Windows\System32\drivers\t1pusb64.sys
05:05:52.0597 2704 C:\Windows\System32\drivers\t1pusb64.sys - ok
05:05:52.0597 2704 [ 82E8F44688E6FAC57B5B7C6FC7ADBC2A ] C:\Windows\System32\drivers\USBAUDIO.sys
05:05:52.0597 2704 C:\Windows\System32\drivers\USBAUDIO.sys - ok
05:05:52.0597 2704 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] C:\Windows\System32\drivers\mouhid.sys
05:05:52.0597 2704 C:\Windows\System32\drivers\mouhid.sys - ok
05:05:52.0613 2704 [ 454800C2BC7F3927CE030141EE4F4C50 ] C:\Windows\System32\drivers\usbvideo.sys
05:05:52.0613 2704 C:\Windows\System32\drivers\usbvideo.sys - ok
05:05:52.0613 2704 [ 738D0E9272F59EB7A1449C3EC118E6C4 ] C:\Windows\System32\drivers\bthport.sys
05:05:52.0613 2704 C:\Windows\System32\drivers\bthport.sys - ok
05:05:52.0613 2704 [ F188B7394D81010767B6DF3178519A37 ] C:\Windows\System32\drivers\BTHUSB.SYS
05:05:52.0613 2704 C:\Windows\System32\drivers\BTHUSB.SYS - ok
05:05:52.0629 2704 [ 07DCB3C254D584E3949FE2C0EE3963F2 ] C:\Windows\System32\drivers\BthAudioHF.sys
05:05:52.0629 2704 C:\Windows\System32\drivers\BthAudioHF.sys - ok
05:05:52.0629 2704 [ DF07C6D98BA7F81D0571E366B1CD6672 ] C:\Windows\System32\drivers\bthav.sys
05:05:52.0629 2704 C:\Windows\System32\drivers\bthav.sys - ok
05:05:52.0629 2704 [ 832B121E4532919CC49F2438F1DCAA21 ] C:\Windows\System32\drivers\BthAvrcp.sys
05:05:52.0629 2704 C:\Windows\System32\drivers\BthAvrcp.sys - ok
05:05:52.0629 2704 [ CF98190A94F62E405C8CB255018B2315 ] C:\Windows\System32\drivers\bthenum.sys
05:05:52.0629 2704 C:\Windows\System32\drivers\bthenum.sys - ok
05:05:52.0644 2704 [ 02DD601B708DD0667E1331FA8518E9FF ] C:\Windows\System32\drivers\bthpan.sys
05:05:52.0644 2704 C:\Windows\System32\drivers\bthpan.sys - ok
05:05:52.0644 2704 [ 3DD798846E2C28102B922C56E71B7932 ] C:\Windows\System32\drivers\rfcomm.sys
05:05:52.0644 2704 C:\Windows\System32\drivers\rfcomm.sys - ok
05:05:52.0644 2704 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] C:\Windows\System32\drivers\kbdhid.sys
05:05:52.0644 2704 C:\Windows\System32\drivers\kbdhid.sys - ok
05:05:52.0644 2704 [ 4E4FFB09D895AA000DD56D1404F69A7E ] C:\Windows\System32\Wldap32.dll
05:05:52.0644 2704 C:\Windows\System32\Wldap32.dll - ok
05:05:52.0660 2704 [ B8BD2BB284668C84865658C77574381A ] C:\Windows\System32\drivers\cdfs.sys
05:05:52.0660 2704 C:\Windows\System32\drivers\cdfs.sys - ok
05:05:52.0660 2704 [ C6689007B3A749C49A5438DCF36E0CE4 ] C:\Windows\System32\shell32.dll
05:05:52.0660 2704 C:\Windows\System32\shell32.dll - ok
05:05:52.0660 2704 [ 1084AA52CCC324EA54C7121FA24C2221 ] C:\Windows\System32\gdi32.dll
05:05:52.0660 2704 C:\Windows\System32\gdi32.dll - ok
05:05:52.0660 2704 [ D202223587518B13D72D68937B7E3F70 ] C:\Windows\System32\lpk.dll
05:05:52.0660 2704 C:\Windows\System32\lpk.dll - ok
05:05:52.0675 2704 [ 28C0B5024F5C5A438E78B188CFC81B7F ] C:\Windows\System32\normaliz.dll
05:05:52.0675 2704 C:\Windows\System32\normaliz.dll - ok
05:05:52.0675 2704 [ 83404DCBCE4925B6A5A77C5170F46D86 ] C:\Windows\System32\sechost.dll
05:05:52.0675 2704 C:\Windows\System32\sechost.dll - ok
05:05:52.0675 2704 [ A1BE6A720D02E37F72E9CD89AE9CB3CF ] C:\Windows\System32\imagehlp.dll
05:05:52.0675 2704 C:\Windows\System32\imagehlp.dll - ok
05:05:52.0675 2704 [ C391FC68282A000CDF953F8B6B55D2EF ] C:\Windows\System32\msvcrt.dll
05:05:52.0675 2704 C:\Windows\System32\msvcrt.dll - ok
05:05:52.0691 2704 [ 6DF46D2BD74E3DA1B45F08F10D172732 ] C:\Windows\System32\advapi32.dll
05:05:52.0691 2704 C:\Windows\System32\advapi32.dll - ok
05:05:52.0691 2704 [ 85F1FE2D5EDBFD26066F5ABB9504A69C ] C:\Windows\System32\iertutil.dll
05:05:52.0691 2704 C:\Windows\System32\iertutil.dll - ok
05:05:52.0691 2704 [ 9835E63E09F824D22B689D2BB789BAB9 ] C:\Windows\System32\comdlg32.dll
05:05:52.0691 2704 C:\Windows\System32\comdlg32.dll - ok
05:05:52.0691 2704 [ 25983DE69B57142039AC8D95E71CD9C9 ] C:\Windows\System32\clbcatq.dll
05:05:52.0691 2704 C:\Windows\System32\clbcatq.dll - ok
05:05:52.0707 2704 [ F7CE0C81C545364020ED8203CF0A633E ] C:\Windows\System32\difxapi.dll
05:05:52.0707 2704 C:\Windows\System32\difxapi.dll - ok
05:05:52.0707 2704 [ AA2C08CE85653B1A0D2E4AB407FA176C ] C:\Windows\System32\imm32.dll
05:05:52.0707 2704 C:\Windows\System32\imm32.dll - ok
05:05:52.0707 2704 [ 044FE45FFD6AD40E3BBBE60B7F41BABE ] C:\Windows\System32\nsi.dll
05:05:52.0707 2704 C:\Windows\System32\nsi.dll - ok
05:05:52.0707 2704 [ D87E1E59C73C1F98D5DED5B3850C40F5 ] C:\Windows\System32\psapi.dll
05:05:52.0707 2704 C:\Windows\System32\psapi.dll - ok
05:05:52.0722 2704 [ 5D8E6C95156ED1F79A63D1EADE6F9ED5 ] C:\Windows\System32\setupapi.dll
05:05:52.0722 2704 C:\Windows\System32\setupapi.dll - ok
05:05:52.0722 2704 [ 65C113214F7B05820F6D8A65B1485196 ] C:\Windows\System32\kernel32.dll
05:05:52.0722 2704 C:\Windows\System32\kernel32.dll - ok
05:05:52.0722 2704 [ C06B32165E23A72A898B7A89679AD754 ] C:\Windows\System32\oleaut32.dll
05:05:52.0722 2704 C:\Windows\System32\oleaut32.dll - ok
05:05:52.0738 2704 [ DBF99FD9CAF75CA66D042BD8D050FF71 ] C:\Windows\System32\usp10.dll
05:05:52.0738 2704 C:\Windows\System32\usp10.dll - ok
05:05:52.0738 2704 [ 0611473C1AD9E2D991CD9482068417F7 ] C:\Windows\System32\rpcrt4.dll
05:05:52.0738 2704 C:\Windows\System32\rpcrt4.dll - ok
05:05:52.0738 2704 [ 29812E9971077BE3F8B9DC225CF9D454 ] C:\Windows\System32\urlmon.dll
05:05:52.0738 2704 C:\Windows\System32\urlmon.dll - ok
05:05:52.0738 2704 [ C431EAF5CAA1C82CAC2534A2EAB348A3 ] C:\Windows\System32\msctf.dll
05:05:52.0738 2704 C:\Windows\System32\msctf.dll - ok
05:05:52.0753 2704 [ EAF32CB8C1F810E4715B4DFBE785C7FF ] C:\Windows\System32\shlwapi.dll
05:05:52.0753 2704 C:\Windows\System32\shlwapi.dll - ok
05:05:52.0753 2704 [ 9094039A00485F71C4DE64BF51F64C46 ] C:\Windows\System32\api-ms-win-downlevel-version-l1-1-0.dll
05:05:52.0753 2704 C:\Windows\System32\api-ms-win-downlevel-version-l1-1-0.dll - ok
05:05:52.0753 2704 [ AA06902362B1422D7A7DA7061E07C624 ] C:\Windows\System32\wintrust.dll
05:05:52.0753 2704 C:\Windows\System32\wintrust.dll - ok
05:05:52.0753 2704 [ 4BBFA57F594F7E8A8EDC8F377184C3F0 ] C:\Windows\System32\ws2_32.dll
05:05:52.0753 2704 C:\Windows\System32\ws2_32.dll - ok
05:05:52.0769 2704 [ 64A4AB126E24FD3F58EBE64852773DB5 ] C:\Windows\System32\api-ms-win-downlevel-normaliz-l1-1-0.dll
05:05:52.0769 2704 C:\Windows\System32\api-ms-win-downlevel-normaliz-l1-1-0.dll - ok
05:05:52.0769 2704 [ 0E6FBF19D9DFBB77316C23DF91F8A101 ] C:\Windows\System32\api-ms-win-downlevel-ole32-l1-1-0.dll
05:05:52.0769 2704 C:\Windows\System32\api-ms-win-downlevel-ole32-l1-1-0.dll - ok
05:05:52.0769 2704 [ 2477A28081BDAEE622CF045ACF8EE124 ] C:\Windows\System32\cfgmgr32.dll
05:05:52.0769 2704 C:\Windows\System32\cfgmgr32.dll - ok
05:05:52.0769 2704 [ 14DFDEAF4E589ED3F1FF187A86B9408C ] C:\Windows\System32\comctl32.dll
05:05:52.0769 2704 C:\Windows\System32\comctl32.dll - ok
05:05:52.0785 2704 [ 06FEC9E8117103BB1141A560E98077DA ] C:\Windows\System32\devobj.dll
05:05:52.0785 2704 C:\Windows\System32\devobj.dll - ok
05:05:52.0785 2704 [ F49E92B50CED5C9F1725D3C0329FD933 ] C:\Windows\System32\api-ms-win-downlevel-advapi32-l1-1-0.dll
05:05:52.0785 2704 C:\Windows\System32\api-ms-win-downlevel-advapi32-l1-1-0.dll - ok
05:05:52.0785 2704 [ AFC3DB5C6EB8CA8017DDB81D6C0AD02A ] C:\Windows\System32\api-ms-win-downlevel-shlwapi-l1-1-0.dll
05:05:52.0785 2704 C:\Windows\System32\api-ms-win-downlevel-shlwapi-l1-1-0.dll - ok
05:05:52.0785 2704 [ 72723D3E4781BADC62C3180C137E7B23 ] C:\Windows\System32\api-ms-win-downlevel-user32-l1-1-0.dll
05:05:52.0785 2704 C:\Windows\System32\api-ms-win-downlevel-user32-l1-1-0.dll - ok
05:05:52.0800 2704 [ 12EE6FE9268CEE6D90FDCCBF89236C65 ] C:\Windows\System32\crypt32.dll
05:05:52.0800 2704 C:\Windows\System32\crypt32.dll - ok
05:05:52.0800 2704 [ 1F56F209585F350A5666E3CC7931FD67 ] C:\Windows\System32\KernelBase.dll
05:05:52.0800 2704 C:\Windows\System32\KernelBase.dll - ok
05:05:52.0800 2704 [ 884415BD4269C02EAF8E2613BF85500D ] C:\Windows\System32\msasn1.dll
05:05:52.0800 2704 C:\Windows\System32\msasn1.dll - ok
05:05:52.0816 2704 [ 9C278785347BCC991F8EA2999D90F58D ] C:\Windows\SysWOW64\normaliz.dll
05:05:52.0816 2704 C:\Windows\SysWOW64\normaliz.dll - ok
05:05:52.0816 2704 [ BF24D6F2ED97FE830BFD52B246F98E67 ] C:\Windows\System32\drivers\dxapi.sys
05:05:52.0816 2704 C:\Windows\System32\drivers\dxapi.sys - ok
05:05:52.0816 2704 [ 86F96630D28523F1C402C783F046DEF1 ] C:\Windows\System32\win32k.sys
05:05:52.0816 2704 C:\Windows\System32\win32k.sys - ok
05:05:52.0816 2704 [ CEC1EDF4022DC4DCA40384DCEC672B0E ] C:\Windows\System32\csrsrv.dll
05:05:52.0816 2704 C:\Windows\System32\csrsrv.dll - ok
05:05:52.0816 2704 [ 60C2862B4BF0FD9F582EF344C2B1EC72 ] C:\Windows\System32\csrss.exe
05:05:52.0816 2704 C:\Windows\System32\csrss.exe - ok
05:05:52.0831 2704 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\System32\basesrv.dll
05:05:52.0831 2704 C:\Windows\System32\basesrv.dll - ok
05:05:52.0831 2704 [ 0C27239FEA4DB8A2AAC9E502186B7264 ] C:\Windows\System32\winsrv.dll
05:05:52.0831 2704 C:\Windows\System32\winsrv.dll - ok
05:05:52.0831 2704 [ B03D591DC7DA45ECE20B3B467E6AADAA ] C:\Windows\System32\drivers\monitor.sys
05:05:52.0831 2704 C:\Windows\System32\drivers\monitor.sys - ok
05:05:52.0847 2704 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\System32\sxssrv.dll
05:05:52.0847 2704 C:\Windows\System32\sxssrv.dll - ok
05:05:52.0847 2704 [ F29FE765E1448EF371CFE05BFAC74ADB ] C:\Windows\System32\tsddd.dll
05:05:52.0847 2704 C:\Windows\System32\tsddd.dll - ok
05:05:52.0847 2704 [ 94355C28C1970635A31B3FE52EB7CEBA ] C:\Windows\System32\wininit.exe
05:05:52.0847 2704 C:\Windows\System32\wininit.exe - ok
05:05:52.0847 2704 [ 2C942733A5983DD4502219FF37C7EBC7 ] C:\Windows\System32\profapi.dll
05:05:52.0847 2704 C:\Windows\System32\profapi.dll - ok
05:05:52.0863 2704 [ 78523A26F5604C0568FE9D1CE86E36F4 ] C:\Windows\System32\KBDUS.DLL
05:05:52.0863 2704 C:\Windows\System32\KBDUS.DLL - ok
05:05:52.0863 2704 [ C2A8CB1275ECB85D246A9ECC02A728E3 ] C:\Windows\System32\RpcRtRemote.dll
05:05:52.0863 2704 C:\Windows\System32\RpcRtRemote.dll - ok
05:05:52.0863 2704 [ 05569A79BF4693670B709144382D02D4 ] C:\Windows\System32\cdd.dll
05:05:52.0863 2704 C:\Windows\System32\cdd.dll - ok
05:05:52.0863 2704 [ 9CEAD32E79A62150FE9F8557E58E008B ] C:\Windows\System32\sxs.dll
05:05:52.0863 2704 C:\Windows\System32\sxs.dll - ok
05:05:52.0878 2704 [ B26B1801356760841C3BC69F9F91537F ] C:\Windows\System32\WlS0WndH.dll
05:05:52.0878 2704 C:\Windows\System32\WlS0WndH.dll - ok
05:05:52.0878 2704 [ 784FA3DF338E2E8F5F0389D6FAC428AF ] C:\Windows\System32\cryptbase.dll
05:05:52.0878 2704 C:\Windows\System32\cryptbase.dll - ok
05:05:52.0878 2704 [ 90499F3163A9F815CF196A205EA3CD5D ] C:\Windows\System32\apphelp.dll
05:05:52.0878 2704 C:\Windows\System32\apphelp.dll - ok
05:05:52.0878 2704 [ 685527DA09EBFB681E98C515978BDEE2 ] C:\Windows\System32\lsasrv.dll
05:05:52.0878 2704 C:\Windows\System32\lsasrv.dll - ok
05:05:52.0894 2704 [ C118A82CD78818C29AB228366EBF81C3 ] C:\Windows\System32\lsass.exe
05:05:52.0894 2704 C:\Windows\System32\lsass.exe - ok
05:05:52.0894 2704 [ 9662EE182644511439F1C53745DC1C88 ] C:\Windows\System32\lsm.exe
05:05:52.0894 2704 C:\Windows\System32\lsm.exe - ok
05:05:52.0894 2704 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\System32\services.exe
05:05:52.0894 2704 C:\Windows\System32\services.exe - ok
05:05:52.0894 2704 [ B66BC8B20B7F33975865B1DF99783FD8 ] C:\Windows\System32\sspicli.dll
05:05:52.0894 2704 C:\Windows\System32\sspicli.dll - ok
05:05:52.0909 2704 [ 3A0CE5FE781708CD6ABD55313607EC8B ] C:\Windows\System32\sspisrv.dll
05:05:52.0909 2704 C:\Windows\System32\sspisrv.dll - ok
05:05:52.0909 2704 [ E914A50A151DFFE63D3935226DB5E2C1 ] C:\Windows\System32\scext.dll
05:05:52.0909 2704 C:\Windows\System32\scext.dll - ok
05:05:52.0909 2704 [ 0144D8D75A0B12938AEEE859E3310A46 ] C:\Windows\System32\secur32.dll
05:05:52.0909 2704 C:\Windows\System32\secur32.dll - ok
05:05:52.0909 2704 [ BBCDF350817BA86416C0F06B6981BE8D ] C:\Windows\System32\scesrv.dll
05:05:52.0909 2704 C:\Windows\System32\scesrv.dll - ok
05:05:52.0925 2704 [ A744BA6E04C8AA4592818178DBF89521 ] C:\Windows\System32\samsrv.dll
05:05:52.0925 2704 C:\Windows\System32\samsrv.dll - ok
05:05:52.0925 2704 [ 3A9C9BAF610B0DD4967086040B3B62A9 ] C:\Windows\System32\srvcli.dll
05:05:52.0925 2704 C:\Windows\System32\srvcli.dll - ok
05:05:52.0925 2704 [ 68083118797CAF30FB2EA3E71494D67E ] C:\Windows\System32\sysntfy.dll
05:05:52.0925 2704 C:\Windows\System32\sysntfy.dll - ok
05:05:52.0941 2704 [ DEE7267C5D232A3B816866872CE199E6 ] C:\Windows\System32\wmsgapi.dll
05:05:52.0941 2704 C:\Windows\System32\wmsgapi.dll - ok
05:05:52.0941 2704 [ 3A061472B38233BAFF9CFEFF2E49C46B ] C:\Windows\System32\cryptdll.dll
05:05:52.0941 2704 C:\Windows\System32\cryptdll.dll - ok
05:05:52.0941 2704 [ 3C073B0C596A0AF84933E7406766B040 ] C:\Windows\System32\wevtapi.dll
05:05:52.0941 2704 C:\Windows\System32\wevtapi.dll - ok
05:05:52.0941 2704 [ 7FBEBD2229EA5FD48D41B199EC2D541C ] C:\Windows\System32\authz.dll
05:05:52.0941 2704 C:\Windows\System32\authz.dll - ok
05:05:52.0956 2704 [ 86FE1B1F8FD42CD0DB641AB1CDB13093 ] C:\Windows\System32\cngaudit.dll
05:05:52.0956 2704 C:\Windows\System32\cngaudit.dll - ok
05:05:52.0956 2704 [ 5F3307352216618221A17CFEF273EEE2 ] C:\Windows\System32\ncrypt.dll
05:05:52.0956 2704 C:\Windows\System32\ncrypt.dll - ok
05:05:52.0956 2704 [ B9A95365E52F421A20E1501935FADDA5 ] C:\Windows\System32\bcrypt.dll
05:05:52.0956 2704 C:\Windows\System32\bcrypt.dll - ok
05:05:52.0956 2704 [ 02B64609F865A39365FF88580DF11738 ] C:\Windows\System32\msprivs.dll
05:05:52.0956 2704 C:\Windows\System32\msprivs.dll - ok
05:05:52.0972 2704 [ C6505DE3561537BA1004D638C2F93F2F ] C:\Windows\System32\netjoin.dll
05:05:52.0972 2704 C:\Windows\System32\netjoin.dll - ok
05:05:52.0972 2704 [ CB2ABB2DA1E9C977302A78D86D4AE3B0 ] C:\Windows\System32\atmfd.dll
05:05:52.0972 2704 C:\Windows\System32\atmfd.dll - ok
05:05:52.0972 2704 [ 44E1A196DFCB53B01FE4B855C3B56A15 ] C:\Windows\System32\kerberos.dll
05:05:52.0972 2704 C:\Windows\System32\kerberos.dll - ok
05:05:52.0987 2704 [ 50532FCD7ECF02DD169CE5C485F02534 ] C:\Windows\System32\negoexts.dll
05:05:52.0987 2704 C:\Windows\System32\negoexts.dll - ok
05:05:52.0987 2704 [ D0C2FBB6D97416B0166478FC7AE2B212 ] C:\Windows\System32\cryptsp.dll
05:05:52.0987 2704 C:\Windows\System32\cryptsp.dll - ok
05:05:52.0987 2704 [ 1151B1BAA6F350B1DB6598E0FEA7C457 ] C:\Windows\System32\winlogon.exe
05:05:52.0987 2704 C:\Windows\System32\winlogon.exe - ok
05:05:52.0987 2704 [ 1D5185A4C7E6695431AE4B55C3D7D333 ] C:\Windows\System32\mswsock.dll
05:05:52.0987 2704 C:\Windows\System32\mswsock.dll - ok
05:05:53.0003 2704 [ 0D9764D58C5EFD672B7184854B152E5E ] C:\Windows\System32\winsta.dll
05:05:53.0003 2704 C:\Windows\System32\winsta.dll - ok
05:05:53.0003 2704 [ EF12B8385AA2849999008A977918F96B ] C:\Windows\System32\msv1_0.dll
05:05:53.0003 2704 C:\Windows\System32\msv1_0.dll - ok
05:05:53.0003 2704 [ EC7CBFF96B05ECF3D366355B3C64ADCF ] C:\Windows\System32\wship6.dll
05:05:53.0003 2704 C:\Windows\System32\wship6.dll - ok
05:05:53.0003 2704 [ AA339DD8BB128EF66660DFBBB59043D3 ] C:\Windows\System32\netlogon.dll
05:05:53.0003 2704 C:\Windows\System32\netlogon.dll - ok
05:05:53.0019 2704 [ 492D07D79E7024CA310867B526D9636D ] C:\Windows\System32\dnsapi.dll
05:05:53.0019 2704 C:\Windows\System32\dnsapi.dll - ok
05:05:53.0019 2704 [ 8FFE297B8449386E7B6851458B6E474E ] C:\Windows\System32\logoncli.dll
05:05:53.0019 2704 C:\Windows\System32\logoncli.dll - ok
05:05:53.0034 2704 [ B7D42CB36C08FA017E73FF2433CD7287 ] C:\Windows\System32\schannel.dll
05:05:53.0034 2704 C:\Windows\System32\schannel.dll - ok
05:05:53.0034 2704 [ 95FB6CA4374E343DDD653FCC43F9D26B ] C:\Windows\System32\wdigest.dll
05:05:53.0034 2704 C:\Windows\System32\wdigest.dll - ok
05:05:53.0034 2704 [ 5D8874A8C11DDDDE29E12DE0E2013493 ] C:\Windows\System32\rsaenh.dll
05:05:53.0034 2704 C:\Windows\System32\rsaenh.dll - ok
05:05:53.0050 2704 [ D6C7780A364C6BBACFA796BAB9F1B374 ] C:\Windows\System32\bcryptprimitives.dll
05:05:53.0050 2704 C:\Windows\System32\bcryptprimitives.dll - ok
05:05:53.0050 2704 [ E08088A97F95345E181C3DFCE2C615EF ] C:\Windows\System32\pku2u.dll
05:05:53.0050 2704 C:\Windows\System32\pku2u.dll - ok
05:05:53.0050 2704 [ 8A25506B6948EFBD5A7F37E53CCD36D9 ] C:\Windows\System32\TSpkg.dll
05:05:53.0050 2704 C:\Windows\System32\TSpkg.dll - ok
05:05:53.0050 2704 [ 52D3D5E3586988D4D9E34ACAAC33105C ] C:\Windows\System32\credssp.dll
05:05:53.0050 2704 C:\Windows\System32\credssp.dll - ok
05:05:53.0065 2704 [ 90BDEFC5DF334E5100EAA781D798DE1A ] C:\Windows\System32\efslsaext.dll
05:05:53.0065 2704 C:\Windows\System32\efslsaext.dll - ok
05:05:53.0065 2704 [ ED78427259134C63ED69804D2132B86C ] C:\Windows\System32\scecli.dll
05:05:53.0065 2704 C:\Windows\System32\scecli.dll - ok
05:05:53.0065 2704 [ 7CC7DF5B654DA579613F811D8C637E29 ] C:\Windows\System32\ubpm.dll
05:05:53.0065 2704 C:\Windows\System32\ubpm.dll - ok
05:05:53.0065 2704 [ E6EB44ABAAF1F330119F854856C53EBE ] C:\Windows\System32\SPInf.dll
05:05:53.0065 2704 C:\Windows\System32\SPInf.dll - ok
05:05:53.0081 2704 [ C78655BC80301D76ED4FEF1C1EA40A7D ] C:\Windows\System32\svchost.exe
05:05:53.0081 2704 C:\Windows\System32\svchost.exe - ok
05:05:53.0081 2704 [ 25FBDEF06C4D92815B353F6E792C8129 ] C:\Windows\System32\umpnpmgr.dll
05:05:53.0081 2704 C:\Windows\System32\umpnpmgr.dll - ok
05:05:53.0081 2704 [ CD1B5AD07E5F7FEF30E055DCC9E96180 ] C:\Windows\System32\devrtl.dll
05:05:53.0081 2704 C:\Windows\System32\devrtl.dll - ok
05:05:53.0081 2704 [ 9C9307C95671AC962F3D6EB3A4A89BAE ] C:\Windows\System32\gpapi.dll
05:05:53.0081 2704 C:\Windows\System32\gpapi.dll - ok
05:05:53.0097 2704 [ 7A17485DC7D8A7AC81321A42CD034519 ] C:\Windows\System32\userenv.dll
05:05:53.0097 2704 C:\Windows\System32\userenv.dll - ok
05:05:53.0097 2704 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] C:\Windows\System32\umpo.dll
05:05:53.0097 2704 C:\Windows\System32\umpo.dll - ok
05:05:53.0097 2704 [ F6C011B46FAEEF33536B2E80F48B5CBE ] C:\Windows\System32\pcwum.dll
05:05:53.0097 2704 C:\Windows\System32\pcwum.dll - ok
05:05:53.0112 2704 [ 716175021BDA290504CE434273F666BC ] C:\Windows\System32\powrprof.dll
05:05:53.0112 2704 C:\Windows\System32\powrprof.dll - ok
05:05:53.0112 2704 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] C:\Windows\System32\drivers\luafv.sys
05:05:53.0112 2704 C:\Windows\System32\drivers\luafv.sys - ok
05:05:53.0112 2704 [ B217378ED9A964E15346A67FEF609A17 ] C:\Windows\System32\drivers\aswFsBlk.sys
05:05:53.0112 2704 C:\Windows\System32\drivers\aswFsBlk.sys - ok
05:05:53.0112 2704 [ E92635BB235B03ED03B17CBB59F77FA4 ] C:\Windows\System32\drivers\aswMonFlt.sys
05:05:53.0112 2704 C:\Windows\System32\drivers\aswMonFlt.sys - ok
05:05:53.0128 2704 [ 5C627D1B1138676C0A7AB2C2C190D123 ] C:\Windows\System32\rpcss.dll
05:05:53.0128 2704 C:\Windows\System32\rpcss.dll - ok
05:05:53.0128 2704 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] C:\Windows\System32\RpcEpMap.dll
05:05:53.0128 2704 C:\Windows\System32\RpcEpMap.dll - ok
05:05:53.0128 2704 [ 16E964ABF6D1E0F0CC7822FCA9BA754D ] C:\Windows\System32\wshqos.dll
05:05:53.0128 2704 C:\Windows\System32\wshqos.dll - ok
05:05:53.0128 2704 [ 31559F3244C6BC00A52030CAA83B6B91 ] C:\Windows\System32\WSHTCPIP.DLL
05:05:53.0128 2704 C:\Windows\System32\WSHTCPIP.DLL - ok
05:05:53.0143 2704 [ 514089CB4A7DF38DC4DD936ADE4114D3 ] C:\Windows\System32\atiesrxx.exe
05:05:53.0143 2704 C:\Windows\System32\atiesrxx.exe - ok
05:05:53.0143 2704 [ 9AD9E06F8656F296D91FAE8EE5B95A27 ] C:\Windows\System32\FirewallAPI.dll
05:05:53.0143 2704 C:\Windows\System32\FirewallAPI.dll - ok
05:05:53.0143 2704 [ 715F03B4C7223349768013EA95D9E5B7 ] C:\Windows\System32\LogonUI.exe
05:05:53.0143 2704 C:\Windows\System32\LogonUI.exe - ok
05:05:53.0143 2704 [ BD3674BE7FC9D8D3732C83E8499576ED ] C:\Windows\System32\wtsapi32.dll
05:05:53.0143 2704 C:\Windows\System32\wtsapi32.dll - ok
05:05:53.0159 2704 [ 0BEE002C68E28CE6DA161DCF1376D7D7 ] C:\Windows\System32\authui.dll
05:05:53.0159 2704 C:\Windows\System32\authui.dll - ok
05:05:53.0159 2704 [ 94E026870A55AAEAFF7853C1754091E9 ] C:\Windows\System32\version.dll
05:05:53.0159 2704 C:\Windows\System32\version.dll - ok
05:05:53.0159 2704 [ 6011714C8C5C55CBFFAD24D61E879FBD ] C:\Windows\System32\wevtsvc.dll
05:05:53.0159 2704 C:\Windows\System32\wevtsvc.dll - ok
05:05:53.0159 2704 [ B3BFBD758506ECB50C5804AAA76318F9 ] C:\Windows\System32\cryptui.dll
05:05:53.0159 2704 C:\Windows\System32\cryptui.dll - ok
05:05:53.0175 2704 [ 588CD0C78A7FAAE4186B5EEA0AF3ED67 ] C:\Windows\System32\adtschema.dll
05:05:53.0175 2704 C:\Windows\System32\adtschema.dll - ok
05:05:53.0175 2704 [ F23FEF6D569FCE88671949894A8BECF1 ] C:\Windows\System32\audiosrv.dll
05:05:53.0175 2704 C:\Windows\System32\audiosrv.dll - ok
05:05:53.0175 2704 [ 7FA8FDC2C2A27817FD0F624E78D3B50C ] C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac\comctl32.dll
05:05:53.0175 2704 C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac\comctl32.dll - ok
05:05:53.0190 2704 [ C4C183E6551084039EC862DA1C945E3D ] C:\Windows\System32\FntCache.dll
05:05:53.0190 2704 C:\Windows\System32\FntCache.dll - ok
05:05:53.0190 2704 [ 78A1E65207484B7F8D3217507745F47C ] C:\Windows\System32\avrt.dll
05:05:53.0190 2704 C:\Windows\System32\avrt.dll - ok
05:05:53.0190 2704 [ E40E80D0304A73E8D269F7141D77250B ] C:\Windows\System32\mmcss.dll
05:05:53.0190 2704 C:\Windows\System32\mmcss.dll - ok
05:05:53.0190 2704 [ 227E2C382A1E02F8D4965E664D3BBE43 ] C:\Windows\System32\MMDevAPI.dll
05:05:53.0190 2704 C:\Windows\System32\MMDevAPI.dll - ok
05:05:53.0206 2704 [ F06BB4E336EA57511FDBAFAFCC47DE62 ] C:\Windows\System32\propsys.dll
05:05:53.0206 2704 C:\Windows\System32\propsys.dll - ok
05:05:53.0206 2704 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] C:\Windows\System32\netprofm.dll
05:05:53.0206 2704 C:\Windows\System32\netprofm.dll - ok
05:05:53.0206 2704 [ 5B3EBFC3DA142324B388DDCC4465E1FF ] C:\Windows\System32\samlib.dll
05:05:53.0206 2704 C:\Windows\System32\samlib.dll - ok
05:05:53.0206 2704 [ 4E9C2DB10F7E6AE91BF761139D4B745B ] C:\Windows\System32\shacct.dll
05:05:53.0206 2704 C:\Windows\System32\shacct.dll - ok
05:05:53.0221 2704 [ D29E998E8277666982B4F0303BF4E7AF ] C:\Windows\System32\uxtheme.dll
05:05:53.0221 2704 C:\Windows\System32\uxtheme.dll - ok
05:05:53.0221 2704 [ 179E8401224D557ECFF3695F2016EA5B ] C:\Windows\winsxs\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.17825_none_2b253c8271ec7765\GdiPlus.dll
05:05:53.0221 2704 C:\Windows\winsxs\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.17825_none_2b253c8271ec7765\GdiPlus.dll - ok
05:05:53.0221 2704 [ 3CB6A7286422C72C34DAB54A5DFF1A34 ] C:\Windows\System32\dui70.dll
05:05:53.0221 2704 C:\Windows\System32\dui70.dll - ok
05:05:53.0237 2704 [ 8CCDE014A4CDF84564E03ACE064CA753 ] C:\Windows\System32\duser.dll
05:05:53.0237 2704 C:\Windows\System32\duser.dll - ok
05:05:53.0237 2704 [ D7F1EF374A90709B31591823B002F918 ] C:\Windows\System32\SndVolSSO.dll
05:05:53.0237 2704 C:\Windows\System32\SndVolSSO.dll - ok
05:05:53.0237 2704 [ DA1B7075260F3872585BFCDD668C648B ] C:\Windows\System32\dwmapi.dll
05:05:53.0237 2704 C:\Windows\System32\dwmapi.dll - ok
05:05:53.0237 2704 [ 896F15A6434D93EDB42519D5E18E6B50 ] C:\Windows\System32\hid.dll
05:05:53.0237 2704 C:\Windows\System32\hid.dll - ok
05:05:53.0253 2704 [ 6F8B48F3D343E4B186AB6A9E302B7E16 ] C:\Windows\System32\xmllite.dll
05:05:53.0253 2704 C:\Windows\System32\xmllite.dll - ok
05:05:53.0253 2704 [ BDDF242A49E7B7DC5CCEC291BCE53ACB ] C:\Windows\System32\WindowsCodecs.dll
05:05:53.0253 2704 C:\Windows\System32\WindowsCodecs.dll - ok
05:05:53.0253 2704 [ FE05D03B73000CFF476E1D29109F3A84 ] C:\Program Files\Windows Defender\MpEvMsg.dll
05:05:53.0253 2704 C:\Program Files\Windows Defender\MpEvMsg.dll - ok
05:05:53.0268 2704 [ C2762A57DF0EE85E63CE4893C5215313 ] C:\Windows\System32\VaultCredProvider.dll
05:05:53.0268 2704 C:\Windows\System32\VaultCredProvider.dll - ok
05:05:53.0268 2704 [ 9F2BACD5E1776A4BB7CC0EC3C3A4F96D ] C:\Windows\System32\winbrand.dll
05:05:53.0268 2704 C:\Windows\System32\winbrand.dll - ok
05:05:53.0268 2704 [ D5CCA1453B98A5801E6D5FF0FF89DC6C ] C:\Windows\System32\audiodg.exe
05:05:53.0268 2704 C:\Windows\System32\audiodg.exe - ok
05:05:53.0268 2704 [ 1F4492FE41767CDB8B89D17655847CDD ] C:\Windows\System32\ntmarta.dll
05:05:53.0268 2704 C:\Windows\System32\ntmarta.dll - ok
05:05:53.0284 2704 [ CA2985996BB49924B677113DF95CFEA7 ] C:\Windows\System32\SmartcardCredentialProvider.dll
05:05:53.0284 2704 C:\Windows\System32\SmartcardCredentialProvider.dll - ok
05:05:53.0284 2704 [ 53E83F1F6CF9D62F32801CF66D8352A8 ] C:\Windows\System32\profsvc.dll
05:05:53.0284 2704 C:\Windows\System32\profsvc.dll - ok
05:05:53.0284 2704 [ BF352E73615F5461AA6884472435A544 ] C:\Windows\System32\BioCredProv.dll
05:05:53.0284 2704 C:\Windows\System32\BioCredProv.dll - ok
05:05:53.0284 2704 [ 3AB183AB4D2C79DCF459CD2C1266B043 ] C:\Windows\System32\cscsvc.dll
05:05:53.0284 2704 C:\Windows\System32\cscsvc.dll - ok
05:05:53.0299 2704 [ 58775492FFD419248B08325E583C527F ] C:\Windows\System32\atl.dll
05:05:53.0299 2704 C:\Windows\System32\atl.dll - ok
05:05:53.0299 2704 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] C:\Windows\System32\gpsvc.dll
05:05:53.0299 2704 C:\Windows\System32\gpsvc.dll - ok
05:05:53.0299 2704 [ 796B8123A7859AFD3A4AE10514DBAEB5 ] C:\Windows\System32\winbio.dll
05:05:53.0299 2704 C:\Windows\System32\winbio.dll - ok
05:05:53.0299 2704 [ F0344071948D1A1FA732231785A0664C ] C:\Windows\System32\themeservice.dll
05:05:53.0299 2704 C:\Windows\System32\themeservice.dll - ok
05:05:53.0315 2704 [ CC0AB40F02D2C2A12209715A3C1B07B8 ] C:\Windows\System32\credui.dll
05:05:53.0315 2704 C:\Windows\System32\credui.dll - ok
05:05:53.0315 2704 [ 4166F82BE4D24938977DD1746BE9B8A0 ] C:\Windows\System32\es.dll
05:05:53.0315 2704 C:\Windows\System32\es.dll - ok
05:05:53.0315 2704 [ DA6B67270FD9DB3697B20FCE94950741 ] C:\Windows\System32\drivers\fltMgr.sys
05:05:53.0315 2704 C:\Windows\System32\drivers\fltMgr.sys - ok
05:05:53.0331 2704 [ EEEA40F0EDB0A6E5359E539E15D0BC77 ] C:\Windows\System32\netapi32.dll
05:05:53.0331 2704 C:\Windows\System32\netapi32.dll - ok
05:05:53.0331 2704 [ 6CECA4C6A489C9B2E6073AFDAAE3F607 ] C:\Windows\System32\netutils.dll
05:05:53.0331 2704 C:\Windows\System32\netutils.dll - ok
05:05:53.0331 2704 [ 44B9C66177651F3F53C87B665D58D17A ] C:\Windows\System32\vaultcli.dll
05:05:53.0331 2704 C:\Windows\System32\vaultcli.dll - ok
05:05:53.0331 2704 [ 3C91392D448F6E5D525A85B7550D8BA9 ] C:\Windows\System32\wkscli.dll
05:05:53.0331 2704 C:\Windows\System32\wkscli.dll - ok
05:05:53.0346 2704 [ 1A47D52E303B7543E4E6026595B95422 ] C:\Windows\System32\comres.dll
05:05:53.0346 2704 C:\Windows\System32\comres.dll - ok
05:05:53.0346 2704 [ C32AB8FA018EF34C0F113BD501436D21 ] C:\Windows\System32\Sens.dll
05:05:53.0346 2704 C:\Windows\System32\Sens.dll - ok
05:05:53.0346 2704 [ FC51229C7D4AFA0D6F186133728B95AB ] C:\Windows\System32\samcli.dll
05:05:53.0346 2704 C:\Windows\System32\samcli.dll - ok
05:05:53.0346 2704 [ 972C3301DB3DA91AE06A95F6B4160B1B ] C:\Windows\System32\certCredProvider.dll
05:05:53.0346 2704 C:\Windows\System32\certCredProvider.dll - ok
05:05:53.0362 2704 [ 46BB91A169B9B31FF44EB04C48EC1D41 ] C:\Windows\System32\nlaapi.dll
05:05:53.0362 2704 C:\Windows\System32\nlaapi.dll - ok
05:05:53.0362 2704 [ A77BE7CB3222B4FB0AC6C71D1C2698D4 ] C:\Windows\System32\dsrole.dll
05:05:53.0362 2704 C:\Windows\System32\dsrole.dll - ok
05:05:53.0362 2704 [ 29910D50542B1AA0F162EF3339C61B6D ] C:\Windows\System32\PeerDist.dll
05:05:53.0362 2704 C:\Windows\System32\PeerDist.dll - ok
05:05:53.0362 2704 [ BE097F5BB10F9079FCEB2DC4E7E20F02 ] C:\Windows\System32\slc.dll
05:05:53.0362 2704 C:\Windows\System32\slc.dll - ok
05:05:53.0377 2704 [ 87FA0C48C3B2E9FEE518818FE26B15B5 ] C:\Windows\System32\rasplap.dll
05:05:53.0377 2704 C:\Windows\System32\rasplap.dll - ok
05:05:53.0377 2704 [ 019CD868461B646E09BDF04474C19341 ] C:\Windows\System32\rasapi32.dll
05:05:53.0377 2704 C:\Windows\System32\rasapi32.dll - ok
05:05:53.0377 2704 [ B28DEEC597C8DEB70C744C7CF9210E3E ] C:\Windows\System32\rasman.dll
05:05:53.0377 2704 C:\Windows\System32\rasman.dll - ok
05:05:53.0377 2704 [ A3DB3C17EE6CAE65D53602B4E80BCCBC ] C:\Windows\System32\PSHED.DLL
05:05:53.0377 2704 C:\Windows\System32\PSHED.DLL - ok
05:05:53.0393 2704 [ B53C4B69B695EDA1B7E41D35CA4244E2 ] C:\Windows\System32\rtutils.dll
05:05:53.0393 2704 C:\Windows\System32\rtutils.dll - ok
05:05:53.0393 2704 [ 9BC8610C32C96A2983A65DC21CAFA921 ] C:\Windows\System32\UXInit.dll
05:05:53.0393 2704 C:\Windows\System32\UXInit.dll - ok
05:05:53.0393 2704 [ 15AB7C82C9B5D276815CBD3BC25C5648 ] C:\Windows\System32\atieclxx.exe
05:05:53.0393 2704 C:\Windows\System32\atieclxx.exe - ok
05:05:53.0393 2704 [ 54FFC9C8898113ACE189D4AA7199D2C1 ] C:\Windows\System32\MPSSVC.dll
05:05:53.0393 2704 C:\Windows\System32\MPSSVC.dll - ok
05:05:53.0409 2704 [ 8750E8927A4189B3E619798EE5A1043E ] C:\Windows\System32\atiadlxx.dll
05:05:53.0409 2704 C:\Windows\System32\atiadlxx.dll - ok
05:05:53.0409 2704 [ 5AA945234E9D4CCE4F715276B9AA712C ] C:\Windows\System32\imageres.dll
05:05:53.0409 2704 C:\Windows\System32\imageres.dll - ok
05:05:53.0409 2704 [ B0945E538CF906BBDDC5A11C8EE868CC ] C:\Windows\System32\microsoft-windows-kernel-processor-power-events.dll
05:05:53.0409 2704 C:\Windows\System32\microsoft-windows-kernel-processor-power-events.dll - ok
05:05:53.0424 2704 [ 908ACB1F594274965A53926B10C81E89 ] C:\Windows\System32\provsvc.dll
05:05:53.0424 2704 C:\Windows\System32\provsvc.dll - ok
05:05:53.0424 2704 [ 2B81776DA02017A37FE26C662827470E ] C:\Windows\System32\IPHLPAPI.DLL
05:05:53.0424 2704 C:\Windows\System32\IPHLPAPI.DLL - ok
05:05:53.0424 2704 [ 4C9210E8F4E052F6A4EB87716DA0C24C ] C:\Windows\System32\winnsi.dll
05:05:53.0424 2704 C:\Windows\System32\winnsi.dll - ok
05:05:53.0424 2704 [ BAAFAF9CEAEC0B73C2A3550A01F6CECB ] C:\Windows\System32\taskschd.dll
05:05:53.0424 2704 C:\Windows\System32\taskschd.dll - ok
05:05:53.0440 2704 [ 862596399AAFD2A21DB2AF9270CD4F70 ] C:\Windows\System32\mstask.dll
05:05:53.0440 2704 C:\Windows\System32\mstask.dll - ok
05:05:53.0440 2704 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] C:\Windows\System32\uxsms.dll
05:05:53.0440 2704 C:\Windows\System32\uxsms.dll - ok
05:05:53.0440 2704 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] C:\Windows\System32\dhcpcore.dll
05:05:53.0440 2704 C:\Windows\System32\dhcpcore.dll - ok
05:05:53.0440 2704 [ 1538831CF8AD2979A04C423779465827 ] C:\Windows\System32\drivers\lltdio.sys
05:05:53.0440 2704 C:\Windows\System32\drivers\lltdio.sys - ok
05:05:53.0455 2704 [ DDC86E4F8E7456261E637E3552E804FF ] C:\Windows\System32\drivers\rspndr.sys
05:05:53.0455 2704 C:\Windows\System32\drivers\rspndr.sys - ok
05:05:53.0455 2704 [ F993A32249B66C9D622EA5592A8B76B8 ] C:\Windows\System32\lmhsvc.dll
05:05:53.0455 2704 C:\Windows\System32\lmhsvc.dll - ok
05:05:53.0455 2704 [ B73A6E4B319AFFE64582AC5C1801BB3F ] C:\Windows\System32\nrpsrv.dll
05:05:53.0455 2704 C:\Windows\System32\nrpsrv.dll - ok
05:05:53.0455 2704 [ D54BFDF3E0C953F823B3D0BFE4732528 ] C:\Windows\System32\nsisvc.dll
05:05:53.0455 2704 C:\Windows\System32\nsisvc.dll - ok
05:05:53.0471 2704 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] C:\Windows\System32\dnsrslvr.dll
05:05:53.0471 2704 C:\Windows\System32\dnsrslvr.dll - ok
05:05:53.0471 2704 [ 3CC16A849E6092E43909F48EF0E60306 ] C:\Windows\System32\dhcpcore6.dll
05:05:53.0471 2704 C:\Windows\System32\dhcpcore6.dll - ok
05:05:53.0471 2704 [ 0040C486584A8E582C861CFB57AB5387 ] C:\Windows\System32\FWPUCLNT.DLL
05:05:53.0471 2704 C:\Windows\System32\FWPUCLNT.DLL - ok
05:05:53.0471 2704 [ F568F7C08458D69E4FCD8675BBB107E4 ] C:\Windows\System32\dhcpcsvc.dll
05:05:53.0471 2704 C:\Windows\System32\dhcpcsvc.dll - ok
05:05:53.0487 2704 [ 3C06D5A929B798D0B13F6481242A0FD2 ] C:\Windows\System32\dhcpcsvc6.dll
05:05:53.0487 2704 C:\Windows\System32\dhcpcsvc6.dll - ok
05:05:53.0487 2704 [ 885D0942E0F28DB90919BE3129ECF279 ] C:\Windows\System32\dnsext.dll
05:05:53.0487 2704 C:\Windows\System32\dnsext.dll - ok
05:05:53.0487 2704 [ 41735B82DB57E4EBE9504EC400FD120E ] C:\Program Files\AVAST Software\Avast\AvastSvc.exe
05:05:53.0487 2704 C:\Program Files\AVAST Software\Avast\AvastSvc.exe - ok
05:05:53.0502 2704 [ E73B0F1819602CB6EF176FB78D76A47B ] C:\Windows\SysWOW64\ntdll.dll
05:05:53.0502 2704 C:\Windows\SysWOW64\ntdll.dll - ok
05:05:53.0502 2704 [ 259EB5F7D95A29842B476C5B3EB6E186 ] C:\Windows\System32\wow64.dll
05:05:53.0502 2704 C:\Windows\System32\wow64.dll - ok
05:05:53.0502 2704 [ 3EE3AA76D8AB6D5644C4C8F34471CEB3 ] C:\Windows\System32\wow64cpu.dll
05:05:53.0502 2704 C:\Windows\System32\wow64cpu.dll - ok
05:05:53.0502 2704 [ 5674E21E82CFBEA36DDAD5DB285D6DBC ] C:\Windows\System32\wow64win.dll
05:05:53.0502 2704 C:\Windows\System32\wow64win.dll - ok
05:05:53.0518 2704 [ AC0B6F41882FC6ED186962D770EBF1D2 ] C:\Windows\SysWOW64\kernel32.dll
05:05:53.0518 2704 C:\Windows\SysWOW64\kernel32.dll - ok
05:05:53.0518 2704 [ E954A79D6A754A5475582CACED1565E6 ] C:\Windows\SysWOW64\KernelBase.dll
05:05:53.0518 2704 C:\Windows\SysWOW64\KernelBase.dll - ok
05:05:53.0518 2704 [ 7FF15A4F092CD4A96055BA69F903E3E9 ] C:\Windows\SysWOW64\ws2_32.dll
05:05:53.0518 2704 C:\Windows\SysWOW64\ws2_32.dll - ok
05:05:53.0518 2704 [ 9DC80A8AAAAAC397BDAB3C67165A824E ] C:\Windows\SysWOW64\msvcrt.dll
05:05:53.0518 2704 C:\Windows\SysWOW64\msvcrt.dll - ok
05:05:53.0533 2704 [ C5AD8083CF94201F1F8084ECC696A8B7 ] C:\Windows\SysWOW64\rpcrt4.dll
05:05:53.0533 2704 C:\Windows\SysWOW64\rpcrt4.dll - ok
05:05:53.0533 2704 [ A8EDB86FC2A4D6D1285E4C70384AC35A ] C:\Windows\System32\dllhost.exe
05:05:53.0533 2704 C:\Windows\System32\dllhost.exe - ok
05:05:53.0533 2704 [ 81BC2B7B6C5C46EB31DEDAC66548053E ] C:\Program Files\AVAST Software\Avast\aswCmnBS.dll
05:05:53.0533 2704 C:\Program Files\AVAST Software\Avast\aswCmnBS.dll - ok
05:05:53.0549 2704 [ F08F6FCD09F9BE94C37ACC1B344685FF ] C:\Windows\SysWOW64\cryptbase.dll
05:05:53.0549 2704 C:\Windows\SysWOW64\cryptbase.dll - ok
05:05:53.0549 2704 [ 6377051C63D5552A311935C67E9FDFDC ] C:\Windows\SysWOW64\nsi.dll
05:05:53.0549 2704 C:\Windows\SysWOW64\nsi.dll - ok
05:05:53.0549 2704 [ CFC97F07904067A1E5FAE195D534DA3A ] C:\Windows\SysWOW64\sechost.dll
05:05:53.0549 2704 C:\Windows\SysWOW64\sechost.dll - ok
05:05:53.0549 2704 [ BFB26890612FB8AE8B0463EBEBE84B7E ] C:\Windows\SysWOW64\sspicli.dll
05:05:53.0549 2704 C:\Windows\SysWOW64\sspicli.dll - ok
05:05:53.0565 2704 [ 35868C1F8B1BFF5CA1F957E3548A96FC ] C:\Program Files\AVAST Software\Avast\aswCmnIS.dll
05:05:53.0565 2704 C:\Program Files\AVAST Software\Avast\aswCmnIS.dll - ok
05:05:53.0565 2704 [ 4021AEBD765FBFD22E5E7B21FB0E9549 ] C:\Program Files\AVAST Software\Avast\aswCmnOS.dll
05:05:53.0565 2704 C:\Program Files\AVAST Software\Avast\aswCmnOS.dll - ok
05:05:53.0565 2704 [ CDBE9690CF2B8409FACAD94FAC9479C9 ] C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcr90.dll
05:05:53.0565 2704 C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcr90.dll - ok
05:05:53.0580 2704 [ 5E0DB2D8B2750543CD2EBB9EA8E6CDD3 ] C:\Windows\SysWOW64\user32.dll
05:05:53.0580 2704 C:\Windows\SysWOW64\user32.dll - ok
05:05:53.0580 2704 [ D6D3AD7BF1D6F6CE9547613ED5E170A2 ] C:\Windows\SysWOW64\gdi32.dll
05:05:53.0580 2704 C:\Windows\SysWOW64\gdi32.dll - ok
05:05:53.0580 2704 [ 384721EF4024890092625E20CADFAF85 ] C:\Windows\SysWOW64\lpk.dll
05:05:53.0580 2704 C:\Windows\SysWOW64\lpk.dll - ok
05:05:53.0580 2704 [ B7230010D97787AF3D25E4C82F2B06B9 ] C:\Windows\SysWOW64\usp10.dll
05:05:53.0580 2704 C:\Windows\SysWOW64\usp10.dll - ok
05:05:53.0596 2704 [ 95E2376B3323F062EB562B8586D0F14A ] C:\Windows\SysWOW64\advapi32.dll
05:05:53.0596 2704 C:\Windows\SysWOW64\advapi32.dll - ok
05:05:53.0596 2704 [ 4C39358EBDD2FFCD9132A30E1EC31E16 ] C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcp90.dll
05:05:53.0596 2704 C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcp90.dll - ok
05:05:53.0596 2704 [ 14DFDEAF4E589ED3F1FF187A86B9408C ] C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.17514_none_a4d6a923711520a9\comctl32.dll
05:05:53.0596 2704 C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.17514_none_a4d6a923711520a9\comctl32.dll - ok
05:05:53.0596 2704 [ A0A2C1D812C231C9BFE119FDC68E341B ] C:\Windows\System32\IDStore.dll
05:05:53.0596 2704 C:\Windows\System32\IDStore.dll - ok
05:05:53.0611 2704 [ E9CE9F8CD76B81B1CE5C9F3F58D0591A ] C:\Program Files\AVAST Software\Avast\ashBase.dll
05:05:53.0611 2704 C:\Program Files\AVAST Software\Avast\ashBase.dll - ok
05:05:53.0611 2704 [ DF13A51A5C591887D2EC6AE64CEED0FA ] C:\Windows\SysWOW64\wsock32.dll
05:05:53.0611 2704 C:\Windows\SysWOW64\wsock32.dll - ok
05:05:53.0611 2704 [ FFF65CA2746E1FA5673D2BF2CC706955 ] C:\Program Files\AVAST Software\Avast\aswEngLdr.dll
05:05:53.0611 2704 C:\Program Files\AVAST Software\Avast\aswEngLdr.dll - ok
05:05:53.0611 2704 [ 60D21799A4AF4EDCE65FB98830E4B0C8 ] C:\Windows\SysWOW64\crypt32.dll
05:05:53.0611 2704 C:\Windows\SysWOW64\crypt32.dll - ok
05:05:53.0627 2704 [ A543AC1F7138376D778D630A35FCBC4C ] C:\Windows\SysWOW64\psapi.dll
05:05:53.0627 2704 C:\Windows\SysWOW64\psapi.dll - ok
05:05:53.0627 2704 [ 702254574E7E52052DE39408457B7149 ] C:\Windows\SysWOW64\version.dll
05:05:53.0627 2704 C:\Windows\SysWOW64\version.dll - ok
05:05:53.0627 2704 [ 938F39B50BAFE13D6F58C7790682C010 ] C:\Windows\SysWOW64\msasn1.dll
05:05:53.0627 2704 C:\Windows\SysWOW64\msasn1.dll - ok
05:05:53.0627 2704 [ CFE0CEE587F9CEA4C29DEEC6D85FC91C ] C:\Windows\SysWOW64\wininet.dll
05:05:53.0627 2704 C:\Windows\SysWOW64\wininet.dll - ok
05:05:53.0643 2704 [ 6A13B4F3B3F575F1E24B877B9359AABA ] C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l1-1-0.dll
05:05:53.0643 2704 C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l1-1-0.dll - ok
05:05:53.0643 2704 [ 6951562DC4625EEFC6EACD52AD165866 ] C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l1-1-0.dll
05:05:53.0643 2704 C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l1-1-0.dll - ok
05:05:53.0643 2704 [ 589CBC4989F750E1DA35625AB481CF43 ] C:\Windows\SysWOW64\api-ms-win-downlevel-user32-l1-1-0.dll
05:05:53.0643 2704 C:\Windows\SysWOW64\api-ms-win-downlevel-user32-l1-1-0.dll - ok
05:05:53.0658 2704 [ 2E33DFD10F28F86C3FC40EE123CC3904 ] C:\Windows\SysWOW64\api-ms-win-downlevel-normaliz-l1-1-0.dll
05:05:53.0658 2704 C:\Windows\SysWOW64\api-ms-win-downlevel-normaliz-l1-1-0.dll - ok
05:05:53.0658 2704 [ 3BE0D923AA45A4DBE091C2D84F0B4FE7 ] C:\Windows\SysWOW64\api-ms-win-downlevel-version-l1-1-0.dll
05:05:53.0658 2704 C:\Windows\SysWOW64\api-ms-win-downlevel-version-l1-1-0.dll - ok
05:05:53.0658 2704 [ B5DEC0D4CBBC333CA99FE10B06D4747E ] C:\Windows\SysWOW64\iertutil.dll
05:05:53.0658 2704 C:\Windows\SysWOW64\iertutil.dll - ok
05:05:53.0658 2704 [ 8CC3C111D653E96F3EA1590891491D71 ] C:\Windows\SysWOW64\shlwapi.dll
05:05:53.0658 2704 C:\Windows\SysWOW64\shlwapi.dll - ok
05:05:53.0674 2704 [ A6F09E5669D9A19035F6D942CAA15882 ] C:\Windows\SysWOW64\imm32.dll
05:05:53.0674 2704 C:\Windows\SysWOW64\imm32.dll - ok
05:05:53.0674 2704 [ C9618BC9B2B0FD7C1138D8774795A79B ] C:\Windows\SysWOW64\msctf.dll
05:05:53.0674 2704 C:\Windows\SysWOW64\msctf.dll - ok
05:05:53.0674 2704 [ 47742160BBC1B66D0CB09AA45F907540 ] C:\Program Files\AVAST Software\Avast\avBugReport.exe
05:05:53.0674 2704 C:\Program Files\AVAST Software\Avast\avBugReport.exe - ok
05:05:53.0674 2704 [ 863F793D15B4026B1A5FDECA873D4D84 ] C:\Windows\SysWOW64\apphelp.dll
05:05:53.0674 2704 C:\Windows\SysWOW64\apphelp.dll - ok
05:05:53.0689 2704 [ 53223B673A3FA2F9A4D1C31C8D3F6CD8 ] C:\Windows\SysWOW64\dbghelp.dll
05:05:53.0689 2704 C:\Windows\SysWOW64\dbghelp.dll - ok
05:05:53.0689 2704 [ 1BCDB508143B517F21BBDAC10F5777BF ] C:\Windows\System32\conhost.exe
05:05:53.0689 2704 C:\Windows\System32\conhost.exe - ok
05:05:53.0689 2704 [ 0127F0E5C76C1C02842952DD7B38157A ] C:\Program Files\AVAST Software\Avast\1033\Base.dll
05:05:53.0689 2704 C:\Program Files\AVAST Software\Avast\1033\Base.dll - ok
05:05:53.0689 2704 [ 1BE8D8DCCEBD1174BCC22D0BC575C237 ] C:\Program Files\AVAST Software\Avast\ashServ.dll
05:05:53.0689 2704 C:\Program Files\AVAST Software\Avast\ashServ.dll - ok
05:05:53.0705 2704 [ AAF932B4011D14052955D4B212A4DA8D ] C:\Windows\System32\shsvcs.dll
05:05:53.0705 2704 C:\Windows\System32\shsvcs.dll - ok
05:05:53.0705 2704 [ FD639FEEE160F399DB58A3FDB2E0DF4D ] C:\Program Files\AVAST Software\Avast\aswAux.dll
05:05:53.0705 2704 C:\Program Files\AVAST Software\Avast\aswAux.dll - ok
05:05:53.0705 2704 [ 3B8707AC8BB05CD0D4D96333D4411EE7 ] C:\Program Files\AVAST Software\Avast\ashTask.dll
05:05:53.0705 2704 C:\Program Files\AVAST Software\Avast\ashTask.dll - ok
05:05:53.0721 2704 [ 8588D68F3A51C147EA8019E496F805EB ] C:\Program Files\AVAST Software\Avast\ashTaskEx.dll
05:05:53.0721 2704 C:\Program Files\AVAST Software\Avast\ashTaskEx.dll - ok
05:05:53.0721 2704 [ 720B5083FC3037150801504F9ECA1591 ] C:\Program Files\AVAST Software\Avast\aswLog.dll
05:05:53.0721 2704 C:\Program Files\AVAST Software\Avast\aswLog.dll - ok
05:05:53.0721 2704 [ F5FEDB7D35E030A2DACD40FB3245C765 ] C:\Program Files\AVAST Software\Avast\aswSqLt.dll
05:05:53.0721 2704 C:\Program Files\AVAST Software\Avast\aswSqLt.dll - ok
05:05:53.0721 2704 [ 31472162FB12CFE31226343FDEE94318 ] C:\Program Files\AVAST Software\Avast\AavmRpch.dll
05:05:53.0721 2704 C:\Program Files\AVAST Software\Avast\AavmRpch.dll - ok
05:05:53.0736 2704 [ 129D3C6FF2E0C60FBD757C63C72F15B8 ] C:\Program Files\AVAST Software\Avast\aswProperty.dll
05:05:53.0736 2704 C:\Program Files\AVAST Software\Avast\aswProperty.dll - ok
05:05:53.0736 2704 [ 928CF7268086631F54C3D8E17238C6DD ] C:\Windows\SysWOW64\ole32.dll
05:05:53.0736 2704 C:\Windows\SysWOW64\ole32.dll - ok
05:05:53.0736 2704 [ 482310DD75538EB321210FF1E2538C72 ] C:\Program Files\AVAST Software\Avast\Aavm4h.dll
05:05:53.0736 2704 C:\Program Files\AVAST Software\Avast\Aavm4h.dll - ok
05:05:53.0736 2704 [ 1650A06EB48C18969057761AFCCBF001 ] C:\Program Files\AVAST Software\Avast\avastIP.dll
05:05:53.0736 2704 C:\Program Files\AVAST Software\Avast\avastIP.dll - ok
05:05:53.0752 2704 [ A90DC9ABD65DB1A8902F361103029952 ] C:\Windows\SysWOW64\IPHLPAPI.DLL
05:05:53.0752 2704 C:\Windows\SysWOW64\IPHLPAPI.DLL - ok
05:05:53.0752 2704 [ CA9F7888B524D8100B977C81F44C3234 ] C:\Windows\SysWOW64\winhttp.dll
05:05:53.0752 2704 C:\Windows\SysWOW64\winhttp.dll - ok
05:05:53.0752 2704 [ CFF35B879D1618D42C86644C717BA947 ] C:\Windows\SysWOW64\winnsi.dll
05:05:53.0752 2704 C:\Windows\SysWOW64\winnsi.dll - ok
05:05:53.0752 2704 [ FB19FC5951A88F3C523E35C2C98D23C0 ] C:\Windows\SysWOW64\webio.dll
05:05:53.0752 2704 C:\Windows\SysWOW64\webio.dll - ok
05:05:53.0767 2704 [ EB6613261E287A8B9783C9C8B7F118F8 ] C:\Program Files\AVAST Software\Avast\aswDld.dll
05:05:53.0767 2704 C:\Program Files\AVAST Software\Avast\aswDld.dll - ok
05:05:53.0767 2704 [ 682F67B86B4F586D813BACA7A0AA06A7 ] C:\Program Files\AVAST Software\Avast\aswIdle.dll
05:05:53.0767 2704 C:\Program Files\AVAST Software\Avast\aswIdle.dll - ok
05:05:53.0767 2704 [ 20EEC2605DC89048E9989FE8D73E26BD ] C:\Program Files\AVAST Software\Avast\aswStrm.dll
05:05:53.0767 2704 C:\Program Files\AVAST Software\Avast\aswStrm.dll - ok
05:05:53.0783 2704 [ F436E847FA799ECD75AD8C313673F450 ] C:\Windows\SysWOW64\cfgmgr32.dll
05:05:53.0783 2704 C:\Windows\SysWOW64\cfgmgr32.dll - ok
05:05:53.0783 2704 [ 262F6592C3299C005FD6BEC90FC4463A ] C:\Windows\System32\schedsvc.dll
05:05:53.0783 2704 C:\Windows\System32\schedsvc.dll - ok
05:05:53.0783 2704 [ BC414631876B2F28B8DAB08E849C12C5 ] C:\Windows\System32\ktmw32.dll
05:05:53.0783 2704 C:\Windows\System32\ktmw32.dll - ok
05:05:53.0783 2704 [ 5997D769CDB108390DCFAEBF442BF816 ] C:\Windows\SysWOW64\RpcRtRemote.dll
05:05:53.0783 2704 C:\Windows\SysWOW64\RpcRtRemote.dll - ok
05:05:53.0799 2704 [ 6C765E82B57F2E66CE9C54AC238471D9 ] C:\Windows\SysWOW64\oleaut32.dll
05:05:53.0799 2704 C:\Windows\SysWOW64\oleaut32.dll - ok
05:05:53.0799 2704 [ 8258362DDB18B644A82D8B5061AD9426 ] C:\Windows\SysWOW64\wscisvif.dll
05:05:53.0799 2704 C:\Windows\SysWOW64\wscisvif.dll - ok
05:05:53.0799 2704 [ A8CDF3768604FF95B54669E20053D569 ] C:\Windows\SysWOW64\wscapi.dll
05:05:53.0799 2704 C:\Windows\SysWOW64\wscapi.dll - ok
05:05:53.0799 2704 [ 4E5FE39C1076D115EC8BFCFE14D75B80 ] C:\Windows\SysWOW64\credssp.dll
05:05:53.0799 2704 C:\Windows\SysWOW64\credssp.dll - ok
05:05:53.0814 2704 [ 7321F18D1F820612ED0E9F2D4B578A7E ] C:\Windows\SysWOW64\cryptsp.dll
05:05:53.0814 2704 C:\Windows\SysWOW64\cryptsp.dll - ok
05:05:53.0814 2704 [ 8999B8631C7FD9F7F9EC3CAFD953BA24 ] C:\Windows\SysWOW64\mswsock.dll
05:05:53.0814 2704 C:\Windows\SysWOW64\mswsock.dll - ok
05:05:53.0814 2704 [ 73E8667A19FEEDD856DF2695E9E511D4 ] C:\Windows\SysWOW64\wship6.dll
05:05:53.0814 2704 C:\Windows\SysWOW64\wship6.dll - ok
05:05:53.0814 2704 [ EE5C8E27C37B79CB54A2FCEEED2DC262 ] C:\Windows\SysWOW64\WSHTCPIP.DLL
05:05:53.0814 2704 C:\Windows\SysWOW64\WSHTCPIP.DLL - ok
05:05:53.0830 2704 [ 72DBAC074BB440FC6A8966361B70F12E ] C:\Program Files\AVAST Software\Avast\defs\13041501\aswEngin.dll
05:05:53.0830 2704 C:\Program Files\AVAST Software\Avast\defs\13041501\aswEngin.dll - ok
05:05:53.0830 2704 [ 64790077F7574E0EB97F3CD2C7B46796 ] C:\Program Files\AVAST Software\Avast\defs\13041501\aswCmnIS.dll
05:05:53.0830 2704 C:\Program Files\AVAST Software\Avast\defs\13041501\aswCmnIS.dll - ok
05:05:53.0830 2704 [ 09C5CB1DEEFFB23C29FDF135C70E506E ] C:\Program Files\AVAST Software\Avast\defs\13041501\aswCmnOS.dll
05:05:53.0830 2704 C:\Program Files\AVAST Software\Avast\defs\13041501\aswCmnOS.dll - ok
05:05:53.0845 2704 [ 290CBB44BB23E8851273701C100E933E ] C:\Program Files\AVAST Software\Avast\defs\13041501\aswCmnBS.dll
05:05:53.0845 2704 C:\Program Files\AVAST Software\Avast\defs\13041501\aswCmnBS.dll - ok
05:05:53.0845 2704 [ F4B53E84EBD4EDC4938E9B40B583D6FE ] C:\Program Files\AVAST Software\Avast\defs\13041501\aswScan.dll
05:05:53.0845 2704 C:\Program Files\AVAST Software\Avast\defs\13041501\aswScan.dll - ok
05:05:53.0845 2704 [ 631EAABB9F82ACEDF8DE3DD20FD5ACC6 ] C:\Program Files\AVAST Software\Avast\defs\13041501\aswRep.dll
05:05:53.0845 2704 C:\Program Files\AVAST Software\Avast\defs\13041501\aswRep.dll - ok
05:05:53.0845 2704 [ 2399F8068E969D9C25A05B6F779A790A ] C:\Program Files\AVAST Software\Avast\defs\13041501\aswFiDb.dll
05:05:53.0845 2704 C:\Program Files\AVAST Software\Avast\defs\13041501\aswFiDb.dll - ok
05:05:53.0861 2704 [ 70A2936112553A6B5BEC196D896E21B8 ] C:\Program Files\AVAST Software\Avast\defs\13041501\algo.dll
05:05:53.0861 2704 C:\Program Files\AVAST Software\Avast\defs\13041501\algo.dll - ok
05:05:53.0861 2704 [ 6DC4A7242F565C9E9C9CCC7BB0FA75C7 ] C:\Windows\System32\taskcomp.dll
05:05:53.0861 2704 C:\Windows\System32\taskcomp.dll - ok
05:05:53.0861 2704 [ 945E54F23C72D37B8CD1987AF0DB63BF ] C:\Windows\System32\fveapi.dll
05:05:53.0861 2704 C:\Windows\System32\fveapi.dll - ok
05:05:53.0861 2704 [ 891ECFD08E2C538B7948CBC45106D697 ] C:\Windows\System32\fvecerts.dll
05:05:53.0861 2704 C:\Windows\System32\fvecerts.dll - ok
05:05:53.0877 2704 [ 694865362F0965779F92BCFE97712323 ] C:\Windows\System32\tbs.dll
05:05:53.0877 2704 C:\Windows\System32\tbs.dll - ok
05:05:53.0877 2704 [ 639774C9ACD063F028F6084ABF5593AD ] C:\Windows\System32\taskhost.exe
05:05:53.0877 2704 C:\Windows\System32\taskhost.exe - ok
05:05:53.0877 2704 [ 94EEAC26F57811BD1AEFC164412F7FCE ] C:\Windows\System32\PlaySndSrv.dll
05:05:53.0877 2704 C:\Windows\System32\PlaySndSrv.dll - ok
05:05:53.0877 2704 [ 1F1CA9E99DD5BF918BE0BF30B5A42FDA ] C:\Windows\System32\MsCtfMonitor.dll
05:05:53.0877 2704 C:\Windows\System32\MsCtfMonitor.dll - ok
05:05:53.0892 2704 [ F09A9A1AD21FE618C4C8B0A0D830C886 ] C:\Windows\System32\msutb.dll
05:05:53.0892 2704 C:\Windows\System32\msutb.dll - ok
05:05:53.0892 2704 [ F5CEF064C7E6D95DA86B9D064A56A969 ] C:\Windows\System32\api-ms-win-downlevel-advapi32-l2-1-0.dll
05:05:53.0892 2704 C:\Windows\System32\api-ms-win-downlevel-advapi32-l2-1-0.dll - ok
05:05:53.0892 2704 [ 903FF9BA73E379237C0EDDDA8F17168C ] C:\Program Files\AVAST Software\Avast\Setup\setiface.dll
05:05:53.0892 2704 C:\Program Files\AVAST Software\Avast\Setup\setiface.dll - ok
05:05:53.0892 2704 [ 29E9794708DF51DB5DC89FB2E903A0F6 ] C:\Windows\SysWOW64\shell32.dll
05:05:53.0892 2704 C:\Windows\SysWOW64\shell32.dll - ok
05:05:53.0908 2704 [ C5CE5CE799387E82B7698A0EE5544A6D ] C:\Windows\System32\slui.exe
05:05:53.0908 2704 C:\Windows\System32\slui.exe - ok
05:05:53.0908 2704 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] C:\Windows\System32\drivers\http.sys
05:05:53.0908 2704 C:\Windows\System32\drivers\http.sys - ok
05:05:53.0908 2704 [ 85DAA09A98C9286D4EA2BA8D0E644377 ] C:\Windows\System32\spoolsv.exe
05:05:53.0908 2704 C:\Windows\System32\spoolsv.exe - ok
05:05:53.0923 2704 [ 27E461F0BE5BFF5FC737328F749538C3 ] C:\Windows\System32\drivers\srvnet.sys
05:05:53.0923 2704 C:\Windows\System32\drivers\srvnet.sys - ok
05:05:53.0923 2704 [ 82974D6A2FD19445CC5171FC378668A4 ] C:\Windows\System32\BFE.DLL
05:05:53.0923 2704 C:\Windows\System32\BFE.DLL - ok
05:05:53.0923 2704 [ 6C02A83164F5CC0A262F4199F0871CF5 ] C:\Windows\System32\drivers\bowser.sys
05:05:53.0923 2704 C:\Windows\System32\drivers\bowser.sys - ok
05:05:53.0923 2704 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] C:\Windows\System32\drivers\mpsdrv.sys
05:05:53.0923 2704 C:\Windows\System32\drivers\mpsdrv.sys - ok
05:05:53.0939 2704 [ A5D9106A73DC88564C825D317CAC68AC ] C:\Windows\System32\drivers\mrxsmb.sys
05:05:53.0939 2704 C:\Windows\System32\drivers\mrxsmb.sys - ok
05:05:53.0939 2704 [ D711B3C1D5F42C0C2415687BE09FC163 ] C:\Windows\System32\drivers\mrxsmb10.sys
05:05:53.0939 2704 C:\Windows\System32\drivers\mrxsmb10.sys - ok
05:05:53.0955 2704 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] C:\Windows\System32\drivers\mrxsmb20.sys
05:05:53.0955 2704 C:\Windows\System32\drivers\mrxsmb20.sys - ok
05:05:53.0955 2704 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] C:\Windows\System32\drivers\srv2.sys
05:05:53.0955 2704 C:\Windows\System32\drivers\srv2.sys - ok
05:05:53.0955 2704 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] C:\Windows\System32\drivers\srv.sys
05:05:53.0955 2704 C:\Windows\System32\drivers\srv.sys - ok
05:05:53.0970 2704 [ 851A1382EED3E3A7476DB004F4EE3E1A ] C:\Windows\System32\wkssvc.dll
05:05:53.0970 2704 C:\Windows\System32\wkssvc.dll - ok
05:05:53.0970 2704 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] C:\Windows\System32\browser.dll
05:05:53.0970 2704 C:\Windows\System32\browser.dll - ok
05:05:53.0970 2704 [ 81749E073AC5857B044A686B406E5244 ] C:\Windows\System32\clusapi.dll
05:05:53.0970 2704 C:\Windows\System32\clusapi.dll - ok
05:05:53.0986 2704 [ CFEFA40DDE34659BE5211966EAD86437 ] C:\Windows\System32\netmsg.dll
05:05:53.0986 2704 C:\Windows\System32\netmsg.dll - ok
05:05:53.0986 2704 [ D9F42719019740BAA6D1C6D536CBDAA6 ] C:\Windows\System32\srvsvc.dll
05:05:53.0986 2704 C:\Windows\System32\srvsvc.dll - ok
05:05:53.0986 2704 [ FF80CAD87555E8E4D2CFD7B9058343F8 ] C:\Windows\System32\sscore.dll
05:05:53.0986 2704 C:\Windows\System32\sscore.dll - ok
05:05:53.0986 2704 [ C67F8A962B2534224D5908D16D2AD3CE ] C:\Windows\System32\wfapigp.dll
05:05:53.0986 2704 C:\Windows\System32\wfapigp.dll - ok
05:05:54.0001 2704 [ 344FCC9850C3A8A3B4D3C65151AF8E4C ] C:\Windows\System32\resutils.dll
05:05:54.0001 2704 C:\Windows\System32\resutils.dll - ok
05:05:54.0001 2704 [ 1834B31C749B86DAC233BBBA1C03BC48 ] C:\Windows\System32\mscms.dll
05:05:54.0001 2704 C:\Windows\System32\mscms.dll - ok
05:05:54.0001 2704 [ F9D908DE6B166DAC9B89BF62FA291CE8 ] C:\Program Files\Bonjour\mdnsNSP.dll
05:05:54.0001 2704 C:\Program Files\Bonjour\mdnsNSP.dll - ok
05:05:54.0017 2704 [ 88351B29B622B30962D2FEB6CA8D860B ] C:\Windows\System32\rasadhlp.dll
05:05:54.0017 2704 C:\Windows\System32\rasadhlp.dll - ok
05:05:54.0017 2704 [ 8269210DAF3B12BC8300631B28A2A442 ] C:\Windows\System32\wiarpc.dll
05:05:54.0017 2704 C:\Windows\System32\wiarpc.dll - ok
05:05:54.0017 2704 [ 2CA49731C5CCB033288B78A2592DE27F ] C:\Windows\System32\sppcommdlg.dll
05:05:54.0017 2704 C:\Windows\System32\sppcommdlg.dll - ok
05:05:54.0033 2704 [ DB76DB15EFC6E4D1153A6C5BC895948D ] C:\Windows\System32\sppc.dll
05:05:54.0033 2704 C:\Windows\System32\sppc.dll - ok
05:05:54.0033 2704 [ 6F5BE3F67D7F66FFA861ABBFC6A8C973 ] C:\Windows\System32\sppcext.dll
05:05:54.0033 2704 C:\Windows\System32\sppcext.dll - ok
05:05:54.0048 2704 [ 067FA52BFB59A56110A12312EF9AF243 ] C:\Windows\System32\sppcomapi.dll
05:05:54.0048 2704 C:\Windows\System32\sppcomapi.dll - ok
05:05:54.0048 2704 [ 7D5645EE0EA77D539828433D9B95F5EB ] C:\Windows\System32\WinSCard.dll
05:05:54.0048 2704 C:\Windows\System32\WinSCard.dll - ok
05:05:54.0048 2704 [ 58F4493BF748A3A89689997B7BD00E95 ] C:\Windows\System32\winhttp.dll
05:05:54.0048 2704 C:\Windows\System32\winhttp.dll - ok
05:05:54.0048 2704 [ 603EBD34E216C5654A2D774EAC98D278 ] C:\Windows\System32\webio.dll
05:05:54.0048 2704 C:\Windows\System32\webio.dll - ok
05:05:54.0064 2704 [ 5EB6E9C8BE1ACC5830780E0F9A846255 ] C:\Windows\System32\msi.dll
05:05:54.0064 2704 C:\Windows\System32\msi.dll - ok
05:05:54.0064 2704 [ FAFAE01E889DC9C05A6CA2138CFC220B ] C:\Windows\System32\tapi32.dll
05:05:54.0064 2704 C:\Windows\System32\tapi32.dll - ok
05:05:54.0064 2704 [ B6D6886149573278CBA6ABD44C4317F5 ] C:\Windows\System32\slwga.dll
05:05:54.0064 2704 C:\Windows\System32\slwga.dll - ok
05:05:54.0064 2704 [ 522B0466ED967A0762E9AF5B37D8F40A ] C:\Windows\System32\esent.dll
05:05:54.0064 2704 C:\Windows\System32\esent.dll - ok
05:05:54.0079 2704 [ 3927397AC60D943DAF8808AFFED582B7 ] C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
05:05:54.0079 2704 C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe - ok
05:05:54.0079 2704 [ 3AEAA8B561E63452C655DC0584922257 ] C:\Windows\System32\pcasvc.dll
05:05:54.0079 2704 C:\Windows\System32\pcasvc.dll - ok
05:05:54.0079 2704 [ 6313F223E817CC09AA41811DAA7F541D ] C:\Windows\System32\snmptrap.exe
05:05:54.0079 2704 C:\Windows\System32\snmptrap.exe - ok
05:05:54.0095 2704 [ 91A8E32B00BF7899EDAB6783287DDDA6 ] C:\Windows\System32\PeerDistSh.dll
05:05:54.0095 2704 C:\Windows\System32\PeerDistSh.dll - ok
05:05:54.0095 2704 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] C:\Windows\System32\sstpsvc.dll
05:05:54.0095 2704 C:\Windows\System32\sstpsvc.dll - ok
05:05:54.0095 2704 [ 17448AF0BBA9E7AB5EC955AF93F271BD ] C:\Windows\SysWOW64\wintrust.dll
05:05:54.0095 2704 C:\Windows\SysWOW64\wintrust.dll - ok
05:05:54.0111 2704 [ A113AFEED3159A1ED52D78CB0226006D ] C:\Windows\SysWOW64\secur32.dll
05:05:54.0111 2704 C:\Windows\SysWOW64\secur32.dll - ok
05:05:54.0111 2704 [ 2467E63FC4F5831898A57FA3482EAFD5 ] E:\Programs\installed programs\xampp\apache\bin\httpd.exe
05:05:54.0111 2704 E:\Programs\installed programs\xampp\apache\bin\httpd.exe - ok
05:05:54.0111 2704 [ 1EBE9524683C7C4EED8B8BC93FB6FBCC ] C:\Windows\SysWOW64\fltLib.dll
05:05:54.0111 2704 C:\Windows\SysWOW64\fltLib.dll - ok
05:05:54.0111 2704 [ 2FCA0D2C59A855C54BAFA22AA329DF0F ] C:\Windows\SysWOW64\netapi32.dll
05:05:54.0111 2704 C:\Windows\SysWOW64\netapi32.dll - ok
05:05:54.0126 2704 [ 20B3934DB73EABA2B49B7177873CB81F ] C:\Windows\SysWOW64\netutils.dll
05:05:54.0126 2704 C:\Windows\SysWOW64\netutils.dll - ok
05:05:54.0126 2704 [ 418E881201583A3039D81F43E39E6C78 ] C:\Windows\SysWOW64\winsta.dll
05:05:54.0126 2704 C:\Windows\SysWOW64\winsta.dll - ok
05:05:54.0126 2704 [ 6A6B2EE4565A178035BE2A4FF6F2C968 ] C:\Windows\SysWOW64\wtsapi32.dll
05:05:54.0126 2704 C:\Windows\SysWOW64\wtsapi32.dll - ok
05:05:54.0126 2704 [ 4AE04D9608F272F3F468B34F2F1329E5 ] C:\Program Files\AVAST Software\Avast\AhResBhv.dll
05:05:54.0126 2704 C:\Program Files\AVAST Software\Avast\AhResBhv.dll - ok
05:05:54.0142 2704 [ 94868FC1295C8B76B8D45C1F44D9F653 ] C:\Program Files\AVAST Software\Avast\AhResJs.dll
05:05:54.0142 2704 C:\Program Files\AVAST Software\Avast\AhResJs.dll - ok
05:05:54.0142 2704 [ DEA9DFD3E83F48D7005E066011D340F7 ] C:\Program Files\AVAST Software\Avast\AhResMai.dll
05:05:54.0142 2704 C:\Program Files\AVAST Software\Avast\AhResMai.dll - ok
05:05:54.0142 2704 [ C03EC02F6C9F492293D78F850E2E48FC ] C:\Program Files\AVAST Software\Avast\AhResMes.dll
05:05:54.0142 2704 C:\Program Files\AVAST Software\Avast\AhResMes.dll - ok
05:05:54.0142 2704 [ 5CCDCD40E732D54E0F7451AC66AC1C87 ] C:\Windows\SysWOW64\srvcli.dll
05:05:54.0142 2704 C:\Windows\SysWOW64\srvcli.dll - ok
05:05:54.0157 2704 [ E5A4A1326A02F8E7B59E6C3270CE7202 ] C:\Windows\SysWOW64\wkscli.dll
05:05:54.0157 2704 C:\Windows\SysWOW64\wkscli.dll - ok
05:05:54.0157 2704 [ 15D7A4070D2B52D2EEA8D99E551E9E53 ] C:\Program Files\AVAST Software\Avast\AhResNS.dll
05:05:54.0157 2704 C:\Program Files\AVAST Software\Avast\AhResNS.dll - ok
05:05:54.0157 2704 [ 69CB1A65B835EE6ADF9E16ED6D443072 ] C:\Windows\SysWOW64\urlmon.dll
05:05:54.0157 2704 C:\Windows\SysWOW64\urlmon.dll - ok
05:05:54.0157 2704 [ A46789AD5F3A85470F898B15D5C056BD ] C:\Program Files\AVAST Software\Avast\AhResP2P.dll
05:05:54.0157 2704 C:\Program Files\AVAST Software\Avast\AhResP2P.dll - ok
05:05:54.0173 2704 [ 1C60E09CA1C3A045BC4D367F67C915B7 ] C:\Windows\SysWOW64\api-ms-win-downlevel-ole32-l1-1-0.dll
05:05:54.0173 2704 C:\Windows\SysWOW64\api-ms-win-downlevel-ole32-l1-1-0.dll - ok
05:05:54.0173 2704 [ B2D91A72C78D27D9A25FFF8BAF6EB2F4 ] C:\Program Files\AVAST Software\Avast\AhResStd.dll
05:05:54.0173 2704 C:\Program Files\AVAST Software\Avast\AhResStd.dll - ok
05:05:54.0173 2704 [ 39F39B23969512842F6A6D259E68FF11 ] C:\Program Files\AVAST Software\Avast\AhResWS.dll
05:05:54.0173 2704 C:\Program Files\AVAST Software\Avast\AhResWS.dll - ok
05:05:54.0173 2704 [ 2C8F7A0B6D023C6DD817E999528F2F98 ] C:\Program Files\AVAST Software\Avast\ashMaiSv.dll
05:05:54.0173 2704 C:\Program Files\AVAST Software\Avast\ashMaiSv.dll - ok
05:05:54.0189 2704 [ 5ACC0C31F770378C3D351FB3F9F06DD9 ] C:\Program Files\AVAST Software\Avast\defs\13041501\ArPot.dll
05:05:54.0189 2704 C:\Program Files\AVAST Software\Avast\defs\13041501\ArPot.dll - ok
05:05:54.0189 2704 [ EF2AE43BCD46ABB13FC3E5B2B1935C73 ] C:\Windows\System32\winmm.dll
05:05:54.0189 2704 C:\Windows\System32\winmm.dll - ok
05:05:54.0189 2704 [ 9C70887708A7C88D20DD215AC5AA757F ] C:\Program Files\AVAST Software\Avast\libeay32.dll
05:05:54.0189 2704 C:\Program Files\AVAST Software\Avast\libeay32.dll - ok
05:05:54.0204 2704 [ AF718FFE60D958E590AF49C4FC3BD6A6 ] C:\Program Files\AVAST Software\Avast\ssleay32.dll
05:05:54.0204 2704 C:\Program Files\AVAST Software\Avast\ssleay32.dll - ok
05:05:54.0204 2704 [ C733D233B623B7FFCE5031E4B756EE26 ] C:\Windows\SysWOW64\profapi.dll
05:05:54.0204 2704 C:\Windows\SysWOW64\profapi.dll - ok
05:05:54.0204 2704 [ D15618A0FF8DBC2C5BF3726BACC75A0B ] C:\Windows\SysWOW64\userenv.dll
05:05:54.0204 2704 C:\Windows\SysWOW64\userenv.dll - ok
05:05:54.0204 2704 [ ED8EC63F7522DF4852147C84EC62C36A ] C:\Windows\SysWOW64\rsaenh.dll
05:05:54.0204 2704 C:\Windows\SysWOW64\rsaenh.dll - ok
05:05:54.0220 2704 [ B6D90C99A72044AEF85A2B7D78FEBEF4 ] C:\Program Files\AVAST Software\Avast\defs\13041501\exts.dll
05:05:54.0220 2704 C:\Program Files\AVAST Software\Avast\defs\13041501\exts.dll - ok
05:05:54.0220 2704 [ B40420876B9288E0A1C8CCA8A84E5DC9 ] C:\Windows\SysWOW64\dnsapi.dll
05:05:54.0220 2704 C:\Windows\SysWOW64\dnsapi.dll - ok
05:05:54.0220 2704 [ 40947436A70E0034E41123DF5A0A7702 ] C:\Program Files (x86)\Bonjour\mdnsNSP.dll
05:05:54.0220 2704 C:\Program Files (x86)\Bonjour\mdnsNSP.dll - ok
05:05:54.0220 2704 [ 0B7E85364CB878E2AD531DB7B601A9E5 ] C:\Windows\SysWOW64\NapiNSP.dll
05:05:54.0220 2704 C:\Windows\SysWOW64\NapiNSP.dll - ok
05:05:54.0235 2704 [ 5CF640EDDB1E40A5AB1BB743BCDEC610 ] C:\Windows\SysWOW64\pnrpnsp.dll
05:05:54.0235 2704 C:\Windows\SysWOW64\pnrpnsp.dll - ok
05:05:54.0235 2704 [ 9A85ABCE0FDD1AF8E79E731EB0B679F3 ] C:\Windows\SysWOW64\dhcpcsvc.dll
05:05:54.0235 2704 C:\Windows\SysWOW64\dhcpcsvc.dll - ok
05:05:54.0235 2704 [ 81F6C1AE23B1C493D9E996C3103915D7 ] C:\Windows\SysWOW64\dhcpcsvc6.dll
05:05:54.0235 2704 C:\Windows\SysWOW64\dhcpcsvc6.dll - ok
05:05:54.0235 2704 [ 5DF5D8CFD9B9573FA3B2C89D9061A240 ] C:\Windows\SysWOW64\winrnr.dll
05:05:54.0235 2704 C:\Windows\SysWOW64\winrnr.dll - ok
05:05:54.0251 2704 [ AC122407B29378FF9646F03404AC7C54 ] C:\Windows\SysWOW64\wshbth.dll
05:05:54.0251 2704 C:\Windows\SysWOW64\wshbth.dll - ok
05:05:54.0251 2704 [ C339473B25526F866DBB21425F3D8F3A ] C:\Program Files\AVAST Software\Avast\ashWebSv.dll
05:05:54.0251 2704 C:\Program Files\AVAST Software\Avast\ashWebSv.dll - ok
05:05:54.0251 2704 [ 9BB99503D6A4DD62569EDE9E5E2672A5 ] C:\Windows\System32\HotStartUserAgent.dll
05:05:54.0251 2704 C:\Windows\System32\HotStartUserAgent.dll - ok
05:05:54.0267 2704 [ ED6EE83D61EBC683C2CD8E899EA6FEBE ] C:\Windows\SysWOW64\rasadhlp.dll
05:05:54.0267 2704 C:\Windows\SysWOW64\rasadhlp.dll - ok
05:05:54.0267 2704 [ DF7A5058504EE982914A3C24676F4485 ] C:\Program Files\AVAST Software\Avast\ashWsFtr.dll
05:05:54.0267 2704 C:\Program Files\AVAST Software\Avast\ashWsFtr.dll - ok
05:05:54.0267 2704 [ 4F6E72B34ED3DC53DCC5E8708E60B61F ] C:\Windows\SysWOW64\security.dll
05:05:54.0267 2704 C:\Windows\SysWOW64\security.dll - ok
05:05:54.0267 2704 [ 49ACA548B2423F1C67898E6AC719A9A6 ] C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l2-1-0.dll
05:05:54.0267 2704 C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l2-1-0.dll - ok
05:05:54.0282 2704 [ 352B3DC62A0D259A82A052238425C872 ] C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2\comctl32.dll
05:05:54.0282 2704 C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2\comctl32.dll - ok
05:05:54.0282 2704 [ 03A03A453F1AAAE0C73AAAF895321C7A ] C:\Windows\SysWOW64\FWPUCLNT.DLL
05:05:54.0282 2704 C:\Windows\SysWOW64\FWPUCLNT.DLL - ok
05:05:54.0282 2704 [ 899C7993A7DE3061C74623F5523BC21D ] C:\Program Files\AVAST Software\Avast\Setup\avast.setup
05:05:54.0282 2704 C:\Program Files\AVAST Software\Avast\Setup\avast.setup - ok
05:05:54.0282 2704 [ 9D2680936DA1CB440E34482C6CAD9098 ] C:\Program Files\AVAST Software\Avast\aswPatchMgt.dll
05:05:54.0282 2704 C:\Program Files\AVAST Software\Avast\aswPatchMgt.dll - ok
05:05:54.0298 2704 [ B010CF886420EE29C2C276646721D255 ] C:\Windows\SysWOW64\wlanapi.dll
05:05:54.0298 2704 C:\Windows\SysWOW64\wlanapi.dll - ok
05:05:54.0298 2704 [ 1D6A771D1D702AE07919DB52C889A249 ] C:\Windows\SysWOW64\wlanutil.dll
05:05:54.0298 2704 C:\Windows\SysWOW64\wlanutil.dll - ok
05:05:54.0298 2704 [ 5775948A68E9D5D5064E8AF3DA9D2C16 ] C:\Program Files\AVAST Software\Avast\defs\13041501\swhealthex.dll
05:05:54.0298 2704 C:\Program Files\AVAST Software\Avast\defs\13041501\swhealthex.dll - ok
05:05:54.0313 2704 [ FF5688D309347F2720911D8796912834 ] C:\Windows\SysWOW64\clbcatq.dll
05:05:54.0313 2704 C:\Windows\SysWOW64\clbcatq.dll - ok
05:05:54.0313 2704 [ BDAC1AA64495D0F7E1FF810EBBF1F018 ] C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.17514_none_ec83dffa859149af\comctl32.dll
05:05:54.0313 2704 C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.17514_none_ec83dffa859149af\comctl32.dll - ok
05:05:54.0313 2704 [ 10FB16B50AFFDA6D44588F3C445DC273 ] C:\Windows\SysWOW64\setupapi.dll
05:05:54.0313 2704 C:\Windows\SysWOW64\setupapi.dll - ok
05:05:54.0313 2704 [ A07DF42447A80826DD605E3DAF98A705 ] C:\Program Files\AVAST Software\Avast\defs\13041501\aswAR.dll
05:05:54.0313 2704 C:\Program Files\AVAST Software\Avast\defs\13041501\aswAR.dll - ok
05:05:54.0329 2704 [ 9EC1D983086E5FA14FFB3518B7E3B596 ] C:\Program Files\AVAST Software\Avast\defs\13041501\aswRawFS.dll
05:05:54.0329 2704 C:\Program Files\AVAST Software\Avast\defs\13041501\aswRawFS.dll - ok
05:05:54.0329 2704 [ 2EEFF4502F5E13B1BED4A04CCAD64C08 ] C:\Windows\SysWOW64\devobj.dll
05:05:54.0329 2704 C:\Windows\SysWOW64\devobj.dll - ok
05:05:54.0329 2704 [ 8E01332CC4B68BC6B5B7EFFE374442AA ] C:\Windows\SysWOW64\oleacc.dll
05:05:54.0329 2704 C:\Windows\SysWOW64\oleacc.dll - ok
05:05:54.0329 2704 [ 08DFDBD2FD4EA951DC46B1C7661ED35A ] C:\Windows\SysWOW64\powrprof.dll
05:05:54.0329 2704 C:\Windows\SysWOW64\powrprof.dll - ok
05:05:54.0345 2704 [ 9E4B0E7472B4CEBA9E17F440B8CB0AB8 ] C:\Windows\SysWOW64\winspool.drv
05:05:54.0345 2704 C:\Windows\SysWOW64\winspool.drv - ok
05:05:54.0345 2704 [ D1DE1EAFDE97BE41CF6585027FF3E732 ] C:\Windows\SysWOW64\comdlg32.dll
05:05:54.0345 2704 C:\Windows\SysWOW64\comdlg32.dll - ok
05:05:54.0345 2704 [ 18AB2E5A40064ED5F7791AC5946A90F3 ] C:\Windows\SysWOW64\msimg32.dll
05:05:54.0345 2704 C:\Windows\SysWOW64\msimg32.dll - ok
05:05:54.0345 2704 [ 936F728E04ACCF3F38801CFFCF1E3F40 ] C:\Windows\SysWOW64\oledlg.dll
05:05:54.0345 2704 C:\Windows\SysWOW64\oledlg.dll - ok
05:05:54.0360 2704 [ D5AEFAD57C08349A4393D987DF7C715D ] C:\Windows\SysWOW64\winmm.dll
05:05:54.0360 2704 C:\Windows\SysWOW64\winmm.dll - ok
05:05:54.0360 2704 [ 9C17DCD6DDFEB1A012544FAF4F2789F6 ] C:\Windows\AppPatch\AcGenral.dll
05:05:54.0360 2704 C:\Windows\AppPatch\AcGenral.dll - ok
05:05:54.0360 2704 [ 39C5F32747B3414D1BB216FDB1DEFC58 ] C:\Windows\SysWOW64\dwmapi.dll
05:05:54.0360 2704 C:\Windows\SysWOW64\dwmapi.dll - ok
05:05:54.0360 2704 [ B9A8CBCFCD3EC9D2EA4740AF347BF108 ] C:\Windows\SysWOW64\mpr.dll
05:05:54.0360 2704 C:\Windows\SysWOW64\mpr.dll - ok
05:05:54.0376 2704 [ 85683DF1F917E4D7F6BE1A04986BF1C8 ] C:\Windows\SysWOW64\msacm32.dll
05:05:54.0376 2704 C:\Windows\SysWOW64\msacm32.dll - ok
05:05:54.0376 2704 [ 68ECCA523ED760AAFC03C5D587569859 ] C:\Windows\SysWOW64\samcli.dll
05:05:54.0376 2704 C:\Windows\SysWOW64\samcli.dll - ok
05:05:54.0376 2704 [ 40CAEEE0EAF1B8569F7C8DF6420F2CB9 ] C:\Windows\SysWOW64\sfc.dll
05:05:54.0376 2704 C:\Windows\SysWOW64\sfc.dll - ok
05:05:54.0376 2704 [ 84799328D87B3091A3BDD251E1AD31F9 ] C:\Windows\SysWOW64\sfc_os.dll
05:05:54.0376 2704 C:\Windows\SysWOW64\sfc_os.dll - ok
05:05:54.0391 2704 [ 43964FA89CCF97BA6BE34D69455AC65F ] C:\Windows\SysWOW64\uxtheme.dll
05:05:54.0391 2704 C:\Windows\SysWOW64\uxtheme.dll - ok
05:05:54.0391 2704 [ 5C5E3AFD499E5146FEF1DA5EF8A23205 ] C:\Program Files\AVAST Software\Avast\dbghelp.dll
05:05:54.0391 2704 C:\Program Files\AVAST Software\Avast\dbghelp.dll - ok
05:05:54.0391 2704 [ 3FD15B4611D9BDA3F8013548C0ECAECA ] C:\Windows\SysWOW64\ntmarta.dll
05:05:54.0391 2704 C:\Windows\SysWOW64\ntmarta.dll - ok
05:05:54.0407 2704 [ A8BB45F9ECAD993461E0FEF8E2A99152 ] C:\Windows\SysWOW64\Wldap32.dll
05:05:54.0407 2704 C:\Windows\SysWOW64\Wldap32.dll - ok
05:05:54.0407 2704 [ 8C338238C16777A802D6A9211EB2BA50 ] C:\Windows\SysWOW64\netprofm.dll
05:05:54.0407 2704 C:\Windows\SysWOW64\netprofm.dll - ok
05:05:54.0407 2704 [ 0BA65122FFA7E37564EE86422DBF7AE8 ] C:\Windows\SysWOW64\nlaapi.dll
05:05:54.0407 2704 C:\Windows\SysWOW64\nlaapi.dll - ok
05:05:54.0407 2704 [ AB66158E6A12E324F80904085BBC5A03 ] E:\Programs\installed programs\xampp\apache\bin\LIBAPR-1.DLL
05:05:54.0407 2704 E:\Programs\installed programs\xampp\apache\bin\LIBAPR-1.DLL - ok
05:05:54.0423 2704 [ BF38660A9125935658CFA3E53FDC7D65 ] E:\Programs\installed programs\xampp\apache\bin\MSVCR100.DLL
05:05:54.0423 2704 E:\Programs\installed programs\xampp\apache\bin\MSVCR100.DLL - ok
05:05:54.0423 2704 [ 3964D4EA85B4881F6BC763AEF5D93323 ] E:\Programs\installed programs\xampp\apache\bin\libaprutil-1.dll
05:05:54.0423 2704 E:\Programs\installed programs\xampp\apache\bin\libaprutil-1.dll - ok
05:05:54.0423 2704 [ 3F8D7A5F3EBBBEB4F5F1CC65D3D01EC9 ] E:\Programs\installed programs\xampp\apache\bin\libapriconv-1.dll
05:05:54.0423 2704 E:\Programs\installed programs\xampp\apache\bin\libapriconv-1.dll - ok
05:05:54.0423 2704 [ 8B7512E6661E039D51F44F1EF5A56C48 ] E:\Programs\installed programs\xampp\apache\bin\LIBHTTPD.DLL
05:05:54.0423 2704 E:\Programs\installed programs\xampp\apache\bin\LIBHTTPD.DLL - ok
05:05:54.0438 2704 [ 74A1F323C84BAAF6C982768C86FE1FA1 ] E:\Programs\installed programs\xampp\apache\bin\PCRE.DLL
05:05:54.0438 2704 E:\Programs\installed programs\xampp\apache\bin\PCRE.DLL - ok
05:05:54.0438 2704 [ 4FE5C6D40664AE07BE5105874357D2ED ] C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
05:05:54.0438 2704 C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe - ok
05:05:54.0438 2704 [ 44B1C057B30890C55FB6F4C1582E8522 ] C:\Program Files\AVAST Software\Avast\snxhk.dll
05:05:54.0438 2704 C:\Program Files\AVAST Software\Avast\snxhk.dll - ok
05:05:54.0454 2704 [ 0B3595A4FF0B36D68E5FC67FD7D70FDC ] C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcp80.dll
05:05:54.0454 2704 C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcp80.dll - ok
05:05:54.0454 2704 [ 17AEED2E043A3F6F326097263C3D38C2 ] E:\Programs\installed programs\xampp\apache\MODULES\mod_access_compat.so
05:05:54.0454 2704 E:\Programs\installed programs\xampp\apache\MODULES\mod_access_compat.so - ok
05:05:54.0454 2704 [ C9564CF4976E7E96B4052737AA2492B4 ] C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcr80.dll
05:05:54.0454 2704 C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcr80.dll - ok
05:05:54.0454 2704 [ A58973F0BF00A691BC06B340786C8933 ] E:\Programs\installed programs\xampp\apache\MODULES\mod_actions.so
05:05:54.0454 2704 E:\Programs\installed programs\xampp\apache\MODULES\mod_actions.so - ok
05:05:54.0469 2704 [ 80942B137077DA7D2375B3041DA9127F ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\AppleVersions.dll
05:05:54.0469 2704 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\AppleVersions.dll - ok
05:05:54.0469 2704 [ 64894527838C86454E2F378FF39FA336 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\YSCrashDump.dll
05:05:54.0469 2704 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\YSCrashDump.dll - ok
05:05:54.0469 2704 [ EF8CD3C64EE9C08980D6D06CCCE46C68 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\CoreFoundation.dll
05:05:54.0469 2704 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\CoreFoundation.dll - ok
05:05:54.0485 2704 [ 575A9FFCE0C0D612158F3138DEF42932 ] E:\Programs\installed programs\xampp\apache\MODULES\mod_alias.so
05:05:54.0485 2704 E:\Programs\installed programs\xampp\apache\MODULES\mod_alias.so - ok
05:05:54.0485 2704 [ 54152706627F5F33952340D90ADA50EE ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\pthreadVC2.dll
05:05:54.0485 2704 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\pthreadVC2.dll - ok
05:05:54.0485 2704 [ 4422D067469B486CC7CBA6CD635BBDE5 ] E:\Programs\installed programs\xampp\apache\MODULES\mod_allowmethods.so
05:05:54.0485 2704 E:\Programs\installed programs\xampp\apache\MODULES\mod_allowmethods.so - ok
05:05:54.0485 2704 [ 78865ABC5F5D13190F8B35BD9044714A ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\objc.dll
05:05:54.0485 2704 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\objc.dll - ok
05:05:54.0501 2704 [ AB82D68CBD3C8D488A2C3152BDF48F2E ] E:\Programs\installed programs\xampp\apache\MODULES\MOD_ASIS.SO
05:05:54.0501 2704 E:\Programs\installed programs\xampp\apache\MODULES\MOD_ASIS.SO - ok
05:05:54.0501 2704 [ FF9831030678C7B6D70BAC00F68F8976 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libdispatch.dll
05:05:54.0501 2704 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libdispatch.dll - ok
05:05:54.0501 2704 [ E5B6D88B36BDDAD5039764FBF80284DD ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libicuin.dll
05:05:54.0501 2704 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libicuin.dll - ok
05:05:54.0501 2704 [ 5302CBE3F5BBB2ED863EEC23E0126592 ] E:\Programs\installed programs\xampp\apache\MODULES\mod_auth_basic.so
05:05:54.0501 2704 E:\Programs\installed programs\xampp\apache\MODULES\mod_auth_basic.so - ok
05:05:54.0516 2704 [ 615983FEBA5F2BE8A596C9F6B7FC72D4 ] E:\Programs\installed programs\xampp\apache\MODULES\mod_authn_core.so
05:05:54.0516 2704 E:\Programs\installed programs\xampp\apache\MODULES\mod_authn_core.so - ok
05:05:54.0516 2704 [ 265898ED439F85182E0CF7F8648C7DB5 ] E:\Programs\installed programs\xampp\apache\MODULES\mod_authn_file.so
05:05:54.0516 2704 E:\Programs\installed programs\xampp\apache\MODULES\mod_authn_file.so - ok
05:05:54.0516 2704 [ 1D75BC73585969F41BA7EF0C882DFF2B ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libicuuc.dll
05:05:54.0516 2704 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libicuuc.dll - ok
05:05:54.0532 2704 [ 684A7AFCDCEB460C4165B128EA953DAE ] E:\Programs\installed programs\xampp\apache\MODULES\mod_authz_core.so
05:05:54.0532 2704 E:\Programs\installed programs\xampp\apache\MODULES\mod_authz_core.so - ok
05:05:54.0532 2704 [ 87A32AAC0199F2B529E81339FB78D046 ] E:\Programs\installed programs\xampp\apache\MODULES\mod_authz_groupfile.so
05:05:54.0532 2704 E:\Programs\installed programs\xampp\apache\MODULES\mod_authz_groupfile.so - ok
05:05:54.0532 2704 [ BEC94C1B43E32258DB4EF0975767B1DC ] E:\Programs\installed programs\xampp\apache\MODULES\mod_authz_host.so
05:05:54.0532 2704 E:\Programs\installed programs\xampp\apache\MODULES\mod_authz_host.so - ok
05:05:54.0532 2704 [ ABFA200C100A992E09B4087D3CC84A44 ] E:\Programs\installed programs\xampp\apache\MODULES\mod_authz_user.so
05:05:54.0532 2704 E:\Programs\installed programs\xampp\apache\MODULES\mod_authz_user.so - ok
05:05:54.0547 2704 [ 640B91D321940568939DDD71C6E7B93A ] C:\Program Files\AVAST Software\Avast\snxhk64.dll
05:05:54.0547 2704 C:\Program Files\AVAST Software\Avast\snxhk64.dll - ok
05:05:54.0547 2704 [ A9C7A14C984893D134103F8F6BD5B8C4 ] E:\Programs\installed programs\xampp\apache\MODULES\mod_autoindex.so
05:05:54.0547 2704 E:\Programs\installed programs\xampp\apache\MODULES\mod_autoindex.so - ok
05:05:54.0547 2704 [ FC7A868DECC3AB027F29178EC8A7F252 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\icudt46.dll
05:05:54.0547 2704 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\icudt46.dll - ok
05:05:54.0563 2704 [ F6FA6A80CC16D43142AB61D4412F7CCE ] E:\Programs\installed programs\xampp\apache\MODULES\MOD_CGI.SO
05:05:54.0563 2704 E:\Programs\installed programs\xampp\apache\MODULES\MOD_CGI.SO - ok
05:05:54.0563 2704 [ C40EB9FFB4CF98FBEAFBBADA09302ACC ] E:\Programs\installed programs\xampp\apache\MODULES\mod_dav_lock.so
05:05:54.0563 2704 E:\Programs\installed programs\xampp\apache\MODULES\mod_dav_lock.so - ok
05:05:54.0563 2704 [ CE901AD2C7C80F7EC17C01CF9D7FEE46 ] E:\Programs\installed programs\xampp\apache\MODULES\MOD_DAV.SO
05:05:54.0563 2704 E:\Programs\installed programs\xampp\apache\MODULES\MOD_DAV.SO - ok
05:05:54.0579 2704 [ DBC7D34A686A21507A06F52FC7A77E97 ] E:\Programs\installed programs\xampp\apache\MODULES\MOD_DIR.SO
05:05:54.0579 2704 E:\Programs\installed programs\xampp\apache\MODULES\MOD_DIR.SO - ok
05:05:54.0579 2704 [ FB4A25A3BC3F7CC3CDADE576686E3D12 ] E:\Programs\installed programs\xampp\apache\MODULES\MOD_ENV.SO
05:05:54.0579 2704 E:\Programs\installed programs\xampp\apache\MODULES\MOD_ENV.SO - ok
05:05:54.0579 2704 [ 9949F38633C9A39076291263A23DEDF1 ] E:\Programs\installed programs\xampp\apache\MODULES\mod_headers.so
05:05:54.0579 2704 E:\Programs\installed programs\xampp\apache\MODULES\mod_headers.so - ok
05:05:54.0594 2704 [ B1BC3D319D03A9DAC3D61D3DBBF9C327 ] E:\Programs\installed programs\xampp\apache\MODULES\mod_include.so
05:05:54.0594 2704 E:\Programs\installed programs\xampp\apache\MODULES\mod_include.so - ok
05:05:54.0594 2704 [ D5952A247340CBCC193D6E0430EE24F5 ] E:\Programs\installed programs\xampp\apache\MODULES\MOD_INFO.SO
05:05:54.0594 2704 E:\Programs\installed programs\xampp\apache\MODULES\MOD_INFO.SO - ok
05:05:54.0594 2704 [ 8352A8F54B32ED7F17CC7E3327B862B0 ] E:\Programs\installed programs\xampp\apache\MODULES\mod_isapi.so
05:05:54.0594 2704 E:\Programs\installed programs\xampp\apache\MODULES\mod_isapi.so - ok
05:05:54.0594 2704 [ DB219BB7F9773265183C70678ACF2E14 ] E:\Programs\installed programs\xampp\apache\MODULES\mod_log_config.so
05:05:54.0594 2704 E:\Programs\installed programs\xampp\apache\MODULES\mod_log_config.so - ok
05:05:54.0610 2704 [ FE77532CFC66BE70F9D0BADCB67EBDD4 ] E:\Programs\installed programs\xampp\apache\MODULES\mod_cache_disk.so
05:05:54.0610 2704 E:\Programs\installed programs\xampp\apache\MODULES\mod_cache_disk.so - ok
05:05:54.0610 2704 [ 7A5FD1AEA4DDAE8A41CBBCBC9BEAFA4A ] E:\Programs\installed programs\xampp\apache\MODULES\mod_cache.so
05:05:54.0610 2704 E:\Programs\installed programs\xampp\apache\MODULES\mod_cache.so - ok
05:05:54.0610 2704 [ C6430A0D7F803DC482B81CA4B9023A69 ] E:\Programs\installed programs\xampp\apache\MODULES\MOD_MIME.SO
05:05:54.0610 2704 E:\Programs\installed programs\xampp\apache\MODULES\MOD_MIME.SO - ok
05:05:54.0610 2704 [ D6C46AB75B55D8FFC20DD4A23E5B9691 ] E:\Programs\installed programs\xampp\apache\MODULES\mod_negotiation.so
05:05:54.0610 2704 E:\Programs\installed programs\xampp\apache\MODULES\mod_negotiation.so - ok
05:05:54.0625 2704 [ B59880BFFCC7B3FA2FDD98CA64FE3112 ] E:\Programs\installed programs\xampp\apache\MODULES\mod_proxy.so
05:05:54.0625 2704 E:\Programs\installed programs\xampp\apache\MODULES\mod_proxy.so - ok
05:05:54.0625 2704 [ 2063E93EEF8E63EA9010F99DF6AC8A92 ] E:\Programs\installed programs\xampp\apache\MODULES\mod_proxy_ajp.so
05:05:54.0625 2704 E:\Programs\installed programs\xampp\apache\MODULES\mod_proxy_ajp.so - ok
05:05:54.0625 2704 [ B0A4AF6195F0B57DFF66F3678CF7DB82 ] E:\Programs\installed programs\xampp\apache\MODULES\mod_rewrite.so
05:05:54.0625 2704 E:\Programs\installed programs\xampp\apache\MODULES\mod_rewrite.so - ok
05:05:54.0641 2704 [ 1C1A5C07B5A99B9F31D2BDEEFD5CCE0A ] E:\Programs\installed programs\xampp\apache\MODULES\mod_setenvif.so
05:05:54.0641 2704 E:\Programs\installed programs\xampp\apache\MODULES\mod_setenvif.so - ok
05:05:54.0641 2704 [ 84F592306DF5DD0612BFD3D75E683C49 ] E:\Programs\installed programs\xampp\apache\MODULES\MOD_SSL.SO
05:05:54.0641 2704 E:\Programs\installed programs\xampp\apache\MODULES\MOD_SSL.SO - ok
05:05:54.0641 2704 [ BCA0AD072D60B5C4257B0B63016D90DC ] E:\Programs\installed programs\xampp\apache\bin\LIBEAY32.DLL
05:05:54.0641 2704 E:\Programs\installed programs\xampp\apache\bin\LIBEAY32.DLL - ok
05:05:54.0641 2704 [ 746FA48D177C7020F9CAA92149DA8CE3 ] E:\Programs\installed programs\xampp\apache\bin\SSLEAY32.DLL
05:05:54.0641 2704 E:\Programs\installed programs\xampp\apache\bin\SSLEAY32.DLL - ok
05:05:54.0657 2704 [ 9774B70E1400BD47B58FF9BE447D9615 ] E:\Programs\installed programs\xampp\apache\MODULES\mod_status.so
05:05:54.0657 2704 E:\Programs\installed programs\xampp\apache\MODULES\mod_status.so - ok
05:05:54.0657 2704 [ F6FD367C9EAAEDF90CD7A7952AE0B336 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\ASL.dll
05:05:54.0657 2704 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\ASL.dll - ok
05:05:54.0657 2704 [ 4327CF9A9D0864CA0FFC97FCDA97315A ] C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService_main.dll
05:05:54.0657 2704 C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService_main.dll - ok
05:05:54.0657 2704 [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD ] C:\Program Files\Bonjour\mDNSResponder.exe
05:05:54.0657 2704 C:\Program Files\Bonjour\mDNSResponder.exe - ok
05:05:54.0672 2704 [ 062373995EAE5F0EAC9EAA9192136BFB ] C:\Windows\SysWOW64\dnssd.dll
05:05:54.0672 2704 C:\Windows\SysWOW64\dnssd.dll - ok
05:05:54.0672 2704 [ 24665B221424FFD7B71F0D2C398F2F4F ] C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\MobileDevice.dll
05:05:54.0672 2704 C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\MobileDevice.dll - ok
05:05:54.0672 2704 [ 73A961A34EB5AB376E1F422BA8ED0ABB ] E:\Programs\installed programs\xampp\PHP\PHP5TS.DLL
05:05:54.0672 2704 E:\Programs\installed programs\xampp\PHP\PHP5TS.DLL - ok
05:05:54.0672 2704 [ 7D34AF98A706230CC2DEDFE0CABF87AB ] C:\Windows\SysWOW64\odbc32.dll
05:05:54.0672 2704 C:\Windows\SysWOW64\odbc32.dll - ok
05:05:54.0688 2704 [ A84509C6AB1C764C592F192AA89DA830 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll
05:05:54.0688 2704 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll - ok
05:05:54.0688 2704 [ 95F9C2976059462CBBF227F7AAB10DE9 ] C:\Windows\System32\bthserv.dll
05:05:54.0688 2704 C:\Windows\System32\bthserv.dll - ok
05:05:54.0688 2704 [ 9C01375BE382E834CC26D1B7EAF2C4FE ] C:\Windows\System32\cryptsvc.dll
05:05:54.0688 2704 C:\Windows\System32\cryptsvc.dll - ok
05:05:54.0703 2704 [ CDAD3376DFF3D9AC7FDCBE2B94B0D3C8 ] C:\Windows\System32\shfolder.dll
05:05:54.0703 2704 C:\Windows\System32\shfolder.dll - ok
05:05:54.0703 2704 [ CF3126A2FF45AA224FC541BC543C2D9C ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\CFNetwork.dll
05:05:54.0703 2704 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\CFNetwork.dll - ok
05:05:54.0703 2704 [ 8792BAB371B4B1589E015B6FD1ED3B15 ] C:\Windows\System32\cryptnet.dll
05:05:54.0703 2704 C:\Windows\System32\cryptnet.dll - ok
05:05:54.0703 2704 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] C:\Windows\System32\dps.dll
05:05:54.0703 2704 C:\Windows\System32\dps.dll - ok
05:05:54.0719 2704 [ 7F8E83B9466A0A002D4AB15C104062A7 ] C:\Windows\System32\efscore.dll
05:05:54.0719 2704 C:\Windows\System32\efscore.dll - ok
05:05:54.0719 2704 [ 0C043B0ABBB5E14E68906AB80365395B ] C:\Windows\System32\efssvc.dll
05:05:54.0719 2704 C:\Windows\System32\efssvc.dll - ok
05:05:54.0719 2704 [ 0E2F58F6E698EDCB9E58FAD0CBCD0567 ] C:\Windows\System32\vssapi.dll
05:05:54.0719 2704 C:\Windows\System32\vssapi.dll - ok
05:05:54.0719 2704 [ ABA457BFC7EC0B5E130B2F1E0F549DFF ] C:\Windows\SysWOW64\odbcint.dll
05:05:54.0719 2704 C:\Windows\SysWOW64\odbcint.dll - ok
05:05:54.0735 2704 [ 58283053C781AD3A579C95D7765C1FA0 ] C:\Windows\System32\efsutil.dll
05:05:54.0735 2704 C:\Windows\System32\efsutil.dll - ok
05:05:54.0735 2704 [ 802496CB59A30349F9A6DD22D6947644 ] C:\Windows\System32\FDResPub.dll
05:05:54.0735 2704 C:\Windows\System32\FDResPub.dll - ok
05:05:54.0735 2704 [ F1B205F932F62F94506A5F332C895DAF ] C:\Windows\System32\WSDApi.dll
05:05:54.0735 2704 C:\Windows\System32\WSDApi.dll - ok
05:05:54.0735 2704 [ C55516D98DD5D8F0153C2A9B4227DA86 ] C:\Windows\System32\webservices.dll
05:05:54.0735 2704 C:\Windows\System32\webservices.dll - ok
05:05:54.0750 2704 [ CE87068806FF90AC53C5ED1E13889B3B ] C:\Windows\System32\GManager.exe
05:05:54.0750 2704 C:\Windows\System32\GManager.exe - ok
05:05:54.0750 2704 [ 0015ACFBBDD164A8A730009908868CA7 ] C:\Windows\System32\winspool.drv
05:05:54.0750 2704 C:\Windows\System32\winspool.drv - ok
05:05:54.0750 2704 [ 20DA839AA80F4C0A5E9BBDB5F466FAF4 ] E:\Programs\installed programs\xampp\PHP\php5apache2_4.dll
05:05:54.0750 2704 E:\Programs\installed programs\xampp\PHP\php5apache2_4.dll - ok
05:05:54.0766 2704 [ FCD84C381E0140AF901E58D48882D26B ] C:\Windows\System32\IKEEXT.DLL
05:05:54.0766 2704 C:\Windows\System32\IKEEXT.DLL - ok
05:05:54.0766 2704 [ 3E23A0792D5EE0A072961E9E9F347368 ] C:\Program Files (x86)\Common Files\DesktopUtil\MCTDesktopSvr.exe
05:05:54.0766 2704 C:\Program Files (x86)\Common Files\DesktopUtil\MCTDesktopSvr.exe - ok
05:05:54.0766 2704 [ B5055B51BAA0FD0A736A88653DA3C1C0 ] C:\Windows\System32\fundisc.dll
05:05:54.0766 2704 C:\Windows\System32\fundisc.dll - ok
05:05:54.0766 2704 [ F7A256EC899C72B4ECDD2C02CB592EFD ] C:\Windows\System32\bthprops.cpl
05:05:54.0766 2704 C:\Windows\System32\bthprops.cpl - ok
05:05:54.0781 2704 [ EE8C05F926521A0E24EDAF40F45D01E6 ] C:\Windows\System32\HFGService.dll
05:05:54.0781 2704 C:\Windows\System32\HFGService.dll - ok
05:05:54.0781 2704 [ BCEA9AB347E53BC03B2E36BE0B8BA0EF ] C:\Windows\System32\httpapi.dll
05:05:54.0781 2704 C:\Windows\System32\httpapi.dll - ok
05:05:54.0781 2704 [ F7F7BFE985414A8B2D9B015741D21CFB ] E:\Programs\installed programs\xampp\MYSQL\BIN\mysqld.exe
05:05:54.0781 2704 E:\Programs\installed programs\xampp\MYSQL\BIN\mysqld.exe - ok
05:05:54.0781 2704 [ 287923557447D7E4BDD7E65B1F0F5428 ] C:\Windows\System32\vsstrace.dll
05:05:54.0781 2704 C:\Windows\System32\vsstrace.dll - ok
05:05:54.0797 2704 [ 99B91C5D2FCEF218CAD3600ECB62A799 ] C:\Windows\System32\msxml6.dll
05:05:54.0797 2704 C:\Windows\System32\msxml6.dll - ok
05:05:54.0797 2704 [ 0A855F27A1E48991D14C593CB930D2B2 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\SQLite3.dll
05:05:54.0797 2704 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\SQLite3.dll - ok
05:05:54.0797 2704 [ 011285619951BC4C92FE322E08ABF050 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll
05:05:54.0797 2704 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll - ok
05:05:54.0813 2704 [ 77B5035BC6EDF4D1B6265391AECEE4C0 ] C:\Windows\System32\vpnikeapi.dll
05:05:54.0813 2704 C:\Windows\System32\vpnikeapi.dll - ok
05:05:54.0813 2704 [ 748849C42DEA24C723048E24BCA1BD55 ] C:\Windows\System32\wshbth.dll
05:05:54.0813 2704 C:\Windows\System32\wshbth.dll - ok
05:05:54.0813 2704 [ D4FAC263861BAE06971C7F7D0A8EBF15 ] C:\Windows\System32\ncsi.dll
05:05:54.0813 2704 C:\Windows\System32\ncsi.dll - ok
05:05:54.0813 2704 [ 8AD77806D336673F270DB31645267293 ] C:\Windows\System32\nlasvc.dll
05:05:54.0813 2704 C:\Windows\System32\nlasvc.dll - ok
05:05:54.0828 2704 [ 68769C3356B3BE5D1C732C97B9A80D6E ] C:\Windows\System32\drivers\PEAuth.sys
05:05:54.0828 2704 C:\Windows\System32\drivers\PEAuth.sys - ok
05:05:54.0828 2704 [ 847D3AE376C0817161A14A82C8922A9E ] C:\Windows\System32\netman.dll
05:05:54.0828 2704 C:\Windows\System32\netman.dll - ok
05:05:54.0828 2704 [ 2BBF3FDB70B8965DFA0258CBAB41ECCE ] C:\Windows\System32\ssdpapi.dll
05:05:54.0828 2704 C:\Windows\System32\ssdpapi.dll - ok
05:05:54.0828 2704 [ 1727B2A2F379A32B864C096FA794AADC ] C:\Windows\System32\aepic.dll
05:05:54.0828 2704 C:\Windows\System32\aepic.dll - ok
05:05:54.0844 2704 [ 3EA8A16169C26AFBEB544E0E48421186 ] C:\Windows\System32\drivers\secdrv.sys
05:05:54.0844 2704 C:\Windows\System32\drivers\secdrv.sys - ok
05:05:54.0844 2704 [ C6DCD1D11ED6827F05C00773C3E7053C ] C:\Windows\System32\sfc.dll
05:05:54.0844 2704 C:\Windows\System32\sfc.dll - ok
05:05:54.0844 2704 [ 895C9AB0A855547445C4181195230757 ] C:\Windows\System32\sfc_os.dll
05:05:54.0844 2704 C:\Windows\System32\sfc_os.dll - ok
05:05:54.0844 2704 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] C:\Windows\System32\IPSECSVC.DLL
05:05:54.0844 2704 C:\Windows\System32\IPSECSVC.DLL - ok
05:05:54.0859 2704 [ BC617A4E1B4FA8DF523A061739A0BD87 ] C:\Windows\System32\seclogon.dll
05:05:54.0859 2704 C:\Windows\System32\seclogon.dll - ok
05:05:54.0859 2704 [ E42D201B0B53A94BD8E5B032EC83D843 ] C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe
05:05:54.0859 2704 C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe - ok
05:05:54.0859 2704 [ 9BC93C9ACFA34DB5A41B89357B31E4ED ] C:\Windows\System32\FwRemoteSvr.dll
05:05:54.0859 2704 C:\Windows\System32\FwRemoteSvr.dll - ok
05:05:54.0859 2704 [ 7C15061CD0372487903B07B9BB03AFAD ] C:\Program Files (x86)\Skype\Updater\Updater.exe
05:05:54.0859 2704 C:\Program Files (x86)\Skype\Updater\Updater.exe - ok
05:05:54.0875 2704 [ 210FCACAF902B2CD47CF9FD17D846146 ] C:\Windows\System32\aeevts.dll
05:05:54.0875 2704 C:\Windows\System32\aeevts.dll - ok
05:05:54.0875 2704 [ 601B1D39D25D2D421E206097862BF967 ] E:\Programs\installed programs\xampp\PHP\EXT\PHP_BZ2.DLL
05:05:54.0875 2704 E:\Programs\installed programs\xampp\PHP\EXT\PHP_BZ2.DLL - ok
05:05:54.0875 2704 [ 119C20B9DB6B0903831A463774D82141 ] E:\Programs\installed programs\xampp\PHP\EXT\PHP_CURL.DLL
05:05:54.0875 2704 E:\Programs\installed programs\xampp\PHP\EXT\PHP_CURL.DLL - ok
05:05:54.0875 2704 [ 433CFD7E6A6D67CE661C8FB75678DF41 ] E:\Programs\installed programs\xampp\PHP\EXT\php_mbstring.dll
05:05:54.0875 2704 E:\Programs\installed programs\xampp\PHP\EXT\php_mbstring.dll - ok
05:05:54.0891 2704 [ 6CFB73AA6B17023067C8CD2DAC8B7967 ] E:\Programs\installed programs\xampp\PHP\EXT\PHP_EXIF.DLL
05:05:54.0891 2704 E:\Programs\installed programs\xampp\PHP\EXT\PHP_EXIF.DLL - ok
05:05:54.0891 2704 [ E4DD7F8A7FB81641F2908CECA94EFC0F ] E:\Programs\installed programs\xampp\PHP\EXT\PHP_GD2.DLL
05:05:54.0891 2704 E:\Programs\installed programs\xampp\PHP\EXT\PHP_GD2.DLL - ok
05:05:54.0891 2704 [ 8EC5E6EFA67284032C321E27A5D37D13 ] E:\Programs\installed programs\xampp\PHP\EXT\php_gettext.dll
05:05:54.0891 2704 E:\Programs\installed programs\xampp\PHP\EXT\php_gettext.dll - ok
05:05:54.0906 2704 [ 1349F1A01E7465B4C4C071C1290DABC9 ] E:\Programs\installed programs\xampp\PHP\EXT\php_mysql.dll
05:05:54.0906 2704 E:\Programs\installed programs\xampp\PHP\EXT\php_mysql.dll - ok
05:05:54.0906 2704 [ FE4FB3FD14B9B76218DDBF79623A3FBC ] E:\Programs\installed programs\xampp\PHP\EXT\php_mysqli.dll
05:05:54.0906 2704 E:\Programs\installed programs\xampp\PHP\EXT\php_mysqli.dll - ok
05:05:54.0906 2704 [ 4033C133D793A7E7942CB1F54AF13B5D ] E:\Programs\installed programs\xampp\PHP\EXT\php_pdo_mysql.dll
05:05:54.0906 2704 E:\Programs\installed programs\xampp\PHP\EXT\php_pdo_mysql.dll - ok
05:05:54.0906 2704 [ 14074D86F9FEB9102CD2187770F4D041 ] E:\Programs\installed programs\xampp\PHP\EXT\php_pdo_sqlite.dll
05:05:54.0906 2704 E:\Programs\installed programs\xampp\PHP\EXT\php_pdo_sqlite.dll - ok
05:05:54.0922 2704 [ A6962BCA6BC3205FC6BFB592F58D5F6C ] E:\Programs\installed programs\xampp\PHP\EXT\PHP_SOAP.DLL
05:05:54.0922 2704 E:\Programs\installed programs\xampp\PHP\EXT\PHP_SOAP.DLL - ok
05:05:54.0922 2704 [ 5C976BB4D632CF8C4644DCA1CC652192 ] E:\Programs\installed programs\xampp\PHP\EXT\php_sockets.dll
05:05:54.0922 2704 E:\Programs\installed programs\xampp\PHP\EXT\php_sockets.dll - ok
05:05:54.0922 2704 [ 0F1AFA32F99BF9CAA73EF5CB6F31D4A9 ] E:\Programs\installed programs\xampp\PHP\EXT\php_sqlite3.dll
05:05:54.0922 2704 E:\Programs\installed programs\xampp\PHP\EXT\php_sqlite3.dll - ok
05:05:54.0937 2704 [ 6B60B05F97F02487A97E7068C53B992F ] E:\Programs\installed programs\xampp\PHP\EXT\php_xmlrpc.dll
05:05:54.0937 2704 E:\Programs\installed programs\xampp\PHP\EXT\php_xmlrpc.dll - ok
05:05:54.0937 2704 [ 0B82294945469A83AA5102984693FA5B ] E:\Programs\installed programs\xampp\PHP\EXT\PHP_XSL.DLL
05:05:54.0937 2704 E:\Programs\installed programs\xampp\PHP\EXT\PHP_XSL.DLL - ok
05:05:54.0937 2704 [ 1B16D0BD9841794A6E0CDE0CEF744ABC ] C:\Windows\System32\drivers\tcpipreg.sys
05:05:54.0937 2704 C:\Windows\System32\drivers\tcpipreg.sys - ok
05:05:54.0937 2704 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] C:\Windows\System32\tapisrv.dll
05:05:54.0937 2704 C:\Windows\System32\tapisrv.dll - ok
05:05:54.0937 2704 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] C:\Windows\System32\wiaservc.dll
05:05:54.0937 2704 C:\Windows\System32\wiaservc.dll - ok
05:05:54.0953 2704 [ 0364256B4A2A93A8C8CDA6B3B5A0EFF5 ] C:\Windows\System32\wiatrace.dll
05:05:54.0953 2704 C:\Windows\System32\wiatrace.dll - ok
05:05:54.0953 2704 [ 81F08948A0F1475894C99D4D19A158A8 ] C:\Windows\SysWOW64\wshqos.dll
05:05:54.0953 2704 C:\Windows\SysWOW64\wshqos.dll - ok
05:05:54.0953 2704 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] C:\Windows\System32\sysmain.dll
05:05:54.0953 2704 C:\Windows\System32\sysmain.dll - ok
05:05:54.0969 2704 [ 6B1B2F8D62D606B200C2072564090104 ] C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe
05:05:54.0969 2704 C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe - ok
05:05:54.0969 2704 [ 6F8E3B7B70E1BBA871212940C1FBDF60 ] C:\Windows\SysWOW64\SensApi.dll
05:05:54.0969 2704 C:\Windows\SysWOW64\SensApi.dll - ok
05:05:54.0969 2704 [ B2DB6ABA2E292235749B80A9C3DFA867 ] C:\Windows\SysWOW64\imagehlp.dll
05:05:54.0969 2704 C:\Windows\SysWOW64\imagehlp.dll - ok
05:05:54.0984 2704 [ 7E7AFD841694F6AC397E99D75CEAD49D ] C:\Windows\System32\trkwks.dll
05:05:54.0984 2704 C:\Windows\System32\trkwks.dll - ok
05:05:54.0984 2704 [ 7ACDFB4CC67F4993DF0E0731576309B2 ] C:\Windows\SysWOW64\d3d11.dll
05:05:54.0984 2704 C:\Windows\SysWOW64\d3d11.dll - ok
05:05:54.0984 2704 [ 19B07E7E8915D701225DA41CB3877306 ] C:\Windows\System32\wbem\WMIsvc.dll
05:05:54.0984 2704 C:\Windows\System32\wbem\WMIsvc.dll - ok
05:05:55.0000 2704 [ CF318F60A84F15AF352439465A8D05F4 ] C:\Program Files\Windows Defender\MpSvc.dll
05:05:55.0000 2704 C:\Program Files\Windows Defender\MpSvc.dll - ok
05:05:55.0000 2704 [ 7DB5AA22A8A8E5C2D335F44853C1F6DE ] C:\Windows\System32\wbemcomn.dll
05:05:55.0000 2704 C:\Windows\System32\wbemcomn.dll - ok
05:05:55.0000 2704 [ EE867A0870FC9E4972BA9EAAD35651E2 ] C:\Windows\System32\rasmans.dll
05:05:55.0000 2704 C:\Windows\System32\rasmans.dll - ok
05:05:55.0015 2704 [ 65522E77A1360DBC8D199DA3BF5EFFE4 ] C:\Windows\System32\eappprxy.dll
05:05:55.0015 2704 C:\Windows\System32\eappprxy.dll - ok
05:05:55.0015 2704 [ D4F264FE23F8953D840904418220C15E ] C:\Windows\SysWOW64\dxgi.dll
05:05:55.0015 2704 C:\Windows\SysWOW64\dxgi.dll - ok
05:05:55.0031 2704 [ 0C52762C606BCF6A377D5E4688191A6B ] C:\Windows\System32\wbem\WmiDcPrv.dll
05:05:55.0031 2704 C:\Windows\System32\wbem\WmiDcPrv.dll - ok
05:05:55.0031 2704 [ A3F5E8EC1316C3E2562B82694A251C9E ] C:\Windows\System32\wbem\fastprox.dll
05:05:55.0031 2704 C:\Windows\System32\wbem\fastprox.dll - ok
05:05:55.0031 2704 [ 44C96B48112EB24AE7764EBF1C527000 ] C:\Windows\System32\rastapi.dll
05:05:55.0031 2704 C:\Windows\System32\rastapi.dll - ok
05:05:55.0047 2704 [ 0255C22D99602534F15CBB8D9B6F152F ] C:\Windows\System32\wbem\WinMgmtR.dll
05:05:55.0047 2704 C:\Windows\System32\wbem\WinMgmtR.dll - ok
05:05:55.0047 2704 [ D2A0FFA75AB181B19B5EB93BB29C7686 ] C:\Windows\System32\unimdm.tsp
05:05:55.0047 2704 C:\Windows\System32\unimdm.tsp - ok
05:05:55.0047 2704 [ 198552AEFECA69D646867EC8D792DE95 ] C:\Windows\SysWOW64\ddraw.dll
05:05:55.0047 2704 C:\Windows\SysWOW64\ddraw.dll - ok
05:05:55.0062 2704 [ ADF3E771F429940E762AC097F5A54EAF ] C:\Program Files\Windows Defender\MpClient.dll
05:05:55.0062 2704 C:\Program Files\Windows Defender\MpClient.dll - ok
05:05:55.0062 2704 [ C3CDC19B715514200F5CEC8BE5B9C9A8 ] C:\Program Files (x86)\Dyn Updater\DynUpSvc.exe
05:05:55.0062 2704 C:\Program Files (x86)\Dyn Updater\DynUpSvc.exe - ok
05:05:55.0062 2704 [ 1B950F9936DCD0A29C1D911460B8935E ] C:\Program Files (x86)\Dyn Updater\DynLib.dll
05:05:55.0062 2704 C:\Program Files (x86)\Dyn Updater\DynLib.dll - ok
05:05:55.0062 2704 [ 94B7DF336815B47236724019FAB24B7C ] C:\Windows\System32\uniplat.dll
05:05:55.0062 2704 C:\Windows\System32\uniplat.dll - ok
05:05:55.0078 2704 [ 55E5B32AE8D1F51A63C82919656FD275 ] C:\Windows\SysWOW64\dciman32.dll
05:05:55.0078 2704 C:\Windows\SysWOW64\dciman32.dll - ok
05:05:55.0078 2704 [ C5B0324DB461559ADD070E632A6919FA ] C:\Windows\SysWOW64\wbem\wbemprox.dll
05:05:55.0078 2704 C:\Windows\SysWOW64\wbem\wbemprox.dll - ok
05:05:55.0078 2704 [ 7717F84F483002815490033BF069DABD ] C:\Windows\winsxs\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.17825_none_72d273598668a06b\GdiPlus.dll
05:05:55.0078 2704 C:\Windows\winsxs\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.17825_none_72d273598668a06b\GdiPlus.dll - ok
05:05:55.0078 2704 [ 08C2957BB30058E663720C5606885653 ] C:\Windows\System32\iphlpsvc.dll
05:05:55.0078 2704 C:\Windows\System32\iphlpsvc.dll - ok
05:05:55.0093 2704 [ E8B1FE6669397D1772D8196DF0E57A9E ] C:\Windows\System32\wscsvc.dll
05:05:55.0093 2704 C:\Windows\System32\wscsvc.dll - ok
05:05:55.0093 2704 [ A7A8CA53D9C9FD90C07AB0EB38E5316B ] C:\Windows\System32\dbghelp.dll
05:05:55.0093 2704 C:\Windows\System32\dbghelp.dll - ok
05:05:55.0093 2704 [ 27B9E163740A226B65E4B9E186117911 ] C:\Windows\System32\sqmapi.dll
05:05:55.0093 2704 C:\Windows\System32\sqmapi.dll - ok
05:05:55.0109 2704 [ 7B38D7916A7CD058C16A0A6CA5077901 ] C:\Windows\System32\wdscore.dll
05:05:55.0109 2704 C:\Windows\System32\wdscore.dll - ok
05:05:55.0109 2704 [ F3F571288CDE445881102E385BF3471F ] C:\Windows\SysWOW64\Magnification.dll
05:05:55.0109 2704 C:\Windows\SysWOW64\Magnification.dll - ok
05:05:55.0109 2704 [ 6EF5F3F18413C367195F06E503AB86A6 ] C:\Windows\SysWOW64\d3d9.dll
05:05:55.0109 2704 C:\Windows\SysWOW64\d3d9.dll - ok
05:05:55.0109 2704 [ 03706015DB44368375AEBE6339490E66 ] C:\Windows\System32\netcfgx.dll
05:05:55.0109 2704 C:\Windows\System32\netcfgx.dll - ok
05:05:55.0125 2704 [ 666A60F6F5E719856FF6254E0966EFF7 ] C:\Windows\System32\wbem\wbemprox.dll
05:05:55.0125 2704 C:\Windows\System32\wbem\wbemprox.dll - ok
05:05:55.0125 2704 [ 3B367397320C26DBA890B260F80D1B1B ] C:\Windows\System32\hnetcfg.dll
05:05:55.0125 2704 C:\Windows\System32\hnetcfg.dll - ok
05:05:55.0125 2704 [ 794D4B48DFB6E999537C7C3947863463 ] C:\Program Files (x86)\Spybot - Search & Destroy\SDWinSec.exe
05:05:55.0125 2704 C:\Program Files (x86)\Spybot - Search & Destroy\SDWinSec.exe - ok
05:05:55.0125 2704 [ 77B1471A490B53B24EFE136F09F76550 ] C:\Windows\SysWOW64\d3d8thk.dll
05:05:55.0125 2704 C:\Windows\SysWOW64\d3d8thk.dll - ok
05:05:55.0140 2704 [ 590D5C506044FE02FF7643E32FF9BDAC ] C:\Windows\SysWOW64\wer.dll
05:05:55.0140 2704 C:\Windows\SysWOW64\wer.dll - ok
05:05:55.0140 2704 [ 7DF186D86CF8C571A12AAB788C777F84 ] C:\Windows\SysWOW64\wscproxystub.dll
05:05:55.0140 2704 C:\Windows\SysWOW64\wscproxystub.dll - ok
05:05:55.0140 2704 [ 1E8D06AAE74FED674C1156B3FEA911C2 ] C:\Windows\SysWOW64\Faultrep.dll
05:05:55.0140 2704 C:\Windows\SysWOW64\Faultrep.dll - ok
05:05:55.0140 2704 [ 12C45E3CB6D65F73209549E2D02ECA7A ] C:\Windows\SysWOW64\propsys.dll
05:05:55.0140 2704 C:\Windows\SysWOW64\propsys.dll - ok
05:05:55.0156 2704 [ EE26D130808D16C0E417BBBED0451B34 ] C:\Windows\System32\ntdsapi.dll
05:05:55.0156 2704 C:\Windows\System32\ntdsapi.dll - ok
05:05:55.0156 2704 [ 41326DD08ACC0CDC5F8177AF96C066E8 ] C:\Windows\System32\kmddsp.tsp
05:05:55.0156 2704 C:\Windows\System32\kmddsp.tsp - ok
05:05:55.0156 2704 [ 704314FD398C81D5F342CAA5DF7B7F21 ] C:\Windows\SysWOW64\wbemcomn.dll
05:05:55.0156 2704 C:\Windows\SysWOW64\wbemcomn.dll - ok
05:05:55.0156 2704 [ FEB91B4DA0D540865260A33838654FA3 ] C:\Windows\System32\nci.dll
05:05:55.0156 2704 C:\Windows\System32\nci.dll - ok
05:05:55.0171 2704 [ 1D6BC2769DA66C1145F4DA5A65F52E61 ] C:\Windows\System32\ndptsp.tsp
05:05:55.0171 2704 C:\Windows\System32\ndptsp.tsp - ok
05:05:55.0171 2704 [ 7C1BAE7D23D4874FEE256A2B9C00E019 ] C:\Windows\System32\hidphone.tsp
05:05:55.0171 2704 C:\Windows\System32\hidphone.tsp - ok
05:05:55.0171 2704 [ 5EB55F661DEBF156E126160BCD4D89F8 ] C:\Windows\System32\wbem\wbemcore.dll
05:05:55.0171 2704 C:\Windows\System32\wbem\wbemcore.dll - ok
05:05:55.0187 2704 [ BF6D6ED5FADCEEE885BD0144ECF1BA27 ] C:\Windows\SysWOW64\ncrypt.dll
05:05:55.0187 2704 C:\Windows\SysWOW64\ncrypt.dll - ok
05:05:55.0187 2704 [ 6B44700917F45B19B96B46B345B6F0E7 ] C:\Program Files (x86)\Spybot - Search & Destroy\SDMain.exe
05:05:55.0187 2704 C:\Program Files (x86)\Spybot - Search & Destroy\SDMain.exe - ok
05:05:55.0187 2704 [ CE71B9119A258EDD0A05B37D7B0F92E3 ] C:\Windows\SysWOW64\bcrypt.dll
05:05:55.0187 2704 C:\Windows\SysWOW64\bcrypt.dll - ok
05:05:55.0187 2704 [ E8449FE262D7406BCB2AC2A45C53EC5F ] C:\Windows\SysWOW64\bcryptprimitives.dll
05:05:55.0187 2704 C:\Windows\SysWOW64\bcryptprimitives.dll - ok
05:05:55.0203 2704 [ 919001D2BB17DF06CA3F8AC16AD039F6 ] C:\Windows\SysWOW64\sxs.dll
05:05:55.0203 2704 C:\Windows\SysWOW64\sxs.dll - ok
05:05:55.0203 2704 [ 1097F3035BAF46CED8B332B3564C5108 ] C:\Windows\SysWOW64\gpapi.dll
05:05:55.0203 2704 C:\Windows\SysWOW64\gpapi.dll - ok
05:05:55.0203 2704 [ 244C6722289F4869068992FD7D8A8832 ] C:\Windows\SysWOW64\wbem\wbemdisp.dll
05:05:55.0203 2704 C:\Windows\SysWOW64\wbem\wbemdisp.dll - ok
05:05:55.0203 2704 [ 087D8668C71634A3A3761135ABF16EEE ] C:\Windows\System32\wbem\esscli.dll
05:05:55.0203 2704 C:\Windows\System32\wbem\esscli.dll - ok
05:05:55.0218 2704 [ 5610B0425518D185331CB8E968D060E6 ] C:\Windows\SysWOW64\wbem\wmiutils.dll
05:05:55.0218 2704 C:\Windows\SysWOW64\wbem\wmiutils.dll - ok
05:05:55.0218 2704 [ 718B6F51AB7F6FE2988A36868F9AD3AB ] C:\Windows\System32\wbem\wbemsvc.dll
05:05:55.0218 2704 C:\Windows\System32\wbem\wbemsvc.dll - ok
05:05:55.0218 2704 [ 0143DB80DACFB7C2B5B7009ED9063353 ] C:\Windows\System32\wbem\wmiutils.dll
05:05:55.0218 2704 C:\Windows\System32\wbem\wmiutils.dll - ok
05:05:55.0218 2704 [ 776AE0564F8B1C282E331FD95A1BDC5F ] C:\Windows\SysWOW64\wbem\wbemsvc.dll
05:05:55.0218 2704 C:\Windows\SysWOW64\wbem\wbemsvc.dll - ok
05:05:55.0234 2704 [ CFC7D8289D2B5F3CF8D16E2DB7F93D4A ] C:\Windows\SysWOW64\wbem\fastprox.dll
05:05:55.0234 2704 C:\Windows\SysWOW64\wbem\fastprox.dll - ok
05:05:55.0234 2704 [ A717A35120DBAB5AB707AB40662AF9DD ] C:\Windows\System32\rasppp.dll
05:05:55.0234 2704 C:\Windows\System32\rasppp.dll - ok
05:05:55.0234 2704 [ E3E811471DE781900FF21C1FD84E941E ] C:\Windows\SysWOW64\ntdsapi.dll
05:05:55.0234 2704 C:\Windows\SysWOW64\ntdsapi.dll - ok
05:05:55.0234 2704 [ 0D753307D274F3688BD21C377B616700 ] C:\Windows\System32\eappcfg.dll
05:05:55.0234 2704 C:\Windows\System32\eappcfg.dll - ok
05:05:55.0249 2704 [ 0FE5CD5F9C9248F42D1EF56E495B182E ] C:\Windows\System32\vpnike.dll
05:05:55.0249 2704 C:\Windows\System32\vpnike.dll - ok
05:05:55.0249 2704 [ 0AB34456654C283DAA13B8D2BA21439B ] C:\Windows\System32\wbem\repdrvfs.dll
05:05:55.0249 2704 C:\Windows\System32\wbem\repdrvfs.dll - ok
05:05:55.0249 2704 [ 6A84E68B538B8B04608BF2F0D426CE6F ] C:\Windows\System32\raschap.dll
05:05:55.0249 2704 C:\Windows\System32\raschap.dll - ok
05:05:55.0249 2704 [ 4FDFA3F219692D17011BF1B428857C1E ] C:\Program Files\Windows Defender\MpRTP.dll
05:05:55.0249 2704 C:\Program Files\Windows Defender\MpRTP.dll - ok
05:05:55.0265 2704 [ FBD879D17B26D49DD7A48FF58062FAE6 ] C:\Windows\System32\tdh.dll
05:05:55.0265 2704 C:\Windows\System32\tdh.dll - ok
05:05:55.0265 2704 [ D527EF4364D2D00443470940B177EAD4 ] C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{F60D8955-CC60-4859-98A5-16893FF0C5F8}\mpengine.dll
05:05:55.0265 2704 C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{F60D8955-CC60-4859-98A5-16893FF0C5F8}\mpengine.dll - ok
05:05:55.0265 2704 [ B144A2223EF11ED42310124A7839258E ] C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{F60D8955-CC60-4859-98A5-16893FF0C5F8}\mpasbase.vdm
05:05:55.0265 2704 C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{F60D8955-CC60-4859-98A5-16893FF0C5F8}\mpasbase.vdm - ok
05:05:55.0281 2704 [ 167B79B958DBB8A2903514C0E58ADE6B ] C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{F60D8955-CC60-4859-98A5-16893FF0C5F8}\mpasdlta.vdm
05:05:55.0281 2704 C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{F60D8955-CC60-4859-98A5-16893FF0C5F8}\mpasdlta.vdm - ok
05:05:55.0281 2704 [ 93BB66044FA76734E882C6F3E8EE1900 ] C:\Program Files\Windows Defender\MsMpLics.dll
05:05:55.0281 2704 C:\Program Files\Windows Defender\MsMpLics.dll - ok
05:05:55.0281 2704 [ 218A400108F280428FA22282D3268BBC ] C:\Windows\System32\wscapi.dll
05:05:55.0281 2704 C:\Windows\System32\wscapi.dll - ok
05:05:55.0281 2704 [ B84E2D174DC84916A536572BB8F691A8 ] C:\Windows\System32\wscisvif.dll
05:05:55.0281 2704 C:\Windows\System32\wscisvif.dll - ok
05:05:55.0296 2704 [ 6C1E3C43B35268C17833244C8ED96430 ] C:\Windows\System32\wscproxystub.dll
05:05:55.0296 2704 C:\Windows\System32\wscproxystub.dll - ok
05:05:55.0296 2704 [ DDD0357A92FA843EFF8915ED17253D6C ] C:\Windows\System32\wbem\WmiPrvSD.dll
05:05:55.0296 2704 C:\Windows\System32\wbem\WmiPrvSD.dll - ok
05:05:55.0296 2704 [ D41FEBD098234F02485A4EA98D4730A4 ] C:\Windows\System32\ncobjapi.dll
05:05:55.0296 2704 C:\Windows\System32\ncobjapi.dll - ok
05:05:55.0296 2704 [ 6F40D6FB05E0C1E5402812B426971AF0 ] C:\Windows\System32\wbem\wbemess.dll
05:05:55.0296 2704 C:\Windows\System32\wbem\wbemess.dll - ok
05:05:55.0312 2704 [ 619A67C9F617B7E69315BB28ECD5E1DF ] C:\Windows\System32\wbem\WmiPrvSE.exe
05:05:55.0312 2704 C:\Windows\System32\wbem\WmiPrvSE.exe - ok
05:05:55.0312 2704 [ 220159496484D34009DE71CA1A68E0D4 ] C:\Windows\System32\wbem\NCProv.dll
05:05:55.0312 2704 C:\Windows\System32\wbem\NCProv.dll - ok
05:05:55.0312 2704 [ B95F6501A2F8B2E78C697FEC401970CE ] C:\Windows\System32\ipnathlp.dll
05:05:55.0312 2704 C:\Windows\System32\ipnathlp.dll - ok
05:05:55.0327 2704 [ 92E0508D924512F63FFEEFE498CBD11F ] C:\Windows\System32\p2pcollab.dll
05:05:55.0327 2704 C:\Windows\System32\p2pcollab.dll - ok
05:05:55.0327 2704 [ 2DF29664ED261F0FC448E58F338F0671 ] C:\Windows\System32\mprapi.dll
05:05:55.0327 2704 C:\Windows\System32\mprapi.dll - ok
05:05:55.0327 2704 [ A42F2C1EB3B66C54FB3C7B79D30C1A6D ] C:\Windows\System32\netshell.dll
05:05:55.0327 2704 C:\Windows\System32\netshell.dll - ok
05:05:55.0327 2704 [ 582AC6D9873E31DFA28A4547270862DD ] C:\Windows\System32\QAGENTRT.DLL
05:05:55.0327 2704 C:\Windows\System32\QAGENTRT.DLL - ok
05:05:55.0343 2704 [ 506A83A3BEEE9FCA09F0170DE9FC7D1B ] C:\Windows\System32\fveui.dll
05:05:55.0343 2704 C:\Windows\System32\fveui.dll - ok
05:05:55.0343 2704 [ 6607C2182C6A53ED983813AFE2F85768 ] C:\Windows\System32\wbem\cimwin32.dll
05:05:55.0343 2704 C:\Windows\System32\wbem\cimwin32.dll - ok
05:05:55.0343 2704 [ C47F35CC6FA4F1BDBEF8F87AC1A46537 ] C:\Windows\System32\wuapi.dll
05:05:55.0343 2704 C:\Windows\System32\wuapi.dll - ok
05:05:55.0343 2704 [ FA43D418BC945D27D0625B697B8442B5 ] C:\Windows\System32\cabinet.dll
05:05:55.0343 2704 C:\Windows\System32\cabinet.dll - ok
05:05:55.0359 2704 [ E746ED90132C6B6313CE9179F56BD31D ] C:\Windows\System32\wups.dll
05:05:55.0359 2704 C:\Windows\System32\wups.dll - ok
05:05:55.0359 2704 [ F7073C962C4FB7C415565DDE109DE49F ] C:\Windows\System32\npmproxy.dll
05:05:55.0359 2704 C:\Windows\System32\npmproxy.dll - ok
05:05:55.0359 2704 [ 1EA7969E3271CBC59E1730697DC74682 ] C:\Windows\System32\qmgr.dll
05:05:55.0359 2704 C:\Windows\System32\qmgr.dll - ok
05:05:55.0359 2704 [ 1484B9EBF567346582DE571B0E164AE0 ] C:\Windows\System32\framedynos.dll
05:05:55.0359 2704 C:\Windows\System32\framedynos.dll - ok
05:05:55.0374 2704 [ 29409ED7400CA5BCCC30C0EE5147A60D ] C:\Windows\System32\bitsperf.dll
05:05:55.0374 2704 C:\Windows\System32\bitsperf.dll - ok
05:05:55.0374 2704 [ D9431DCF90B0253773F51FDEFE7FD42F ] C:\Windows\System32\bitsigd.dll
05:05:55.0374 2704 C:\Windows\System32\bitsigd.dll - ok
05:05:55.0374 2704 [ 0D893F8D145D3B125B0226727C243A69 ] C:\Windows\System32\security.dll
05:05:55.0374 2704 C:\Windows\System32\security.dll - ok
05:05:55.0374 2704 [ F11A57E91FDAECFB41A5CB21EB1EBC8E ] C:\Windows\System32\dssenh.dll
05:05:55.0374 2704 C:\Windows\System32\dssenh.dll - ok
05:05:55.0390 2704 [ 96DB78C9C50CEED9DA5050EFFEE272A2 ] C:\Windows\System32\upnp.dll
05:05:55.0390 2704 C:\Windows\System32\upnp.dll - ok
05:05:55.0390 2704 [ 012787CEB35505EB78DF82E0A0072888 ] C:\Windows\System32\browcli.dll
05:05:55.0390 2704 C:\Windows\System32\browcli.dll - ok
05:05:55.0390 2704 [ C4BFE4B61086416B0529212F92BCE081 ] C:\Windows\System32\schedcli.dll
05:05:55.0390 2704 C:\Windows\System32\schedcli.dll - ok
05:05:55.0390 2704 [ 1BF0CB861A48FEB1638228760750F3CB ] C:\Windows\System32\cscapi.dll
05:05:55.0390 2704 C:\Windows\System32\cscapi.dll - ok
05:05:55.0405 2704 [ 521202AA6F2B74FCCC6BC7E162109D71 ] C:\Windows\System32\wbem\unsecapp.exe
05:05:55.0405 2704 C:\Windows\System32\wbem\unsecapp.exe - ok
05:05:55.0405 2704 [ C00DB14550E4BD49737F311C644E45FF ] C:\Windows\System32\wmi.dll
05:05:55.0405 2704 C:\Windows\System32\wmi.dll - ok
05:05:55.0405 2704 [ D6692338B985D4A0CA52B828314D897D ] C:\Windows\SysWOW64\drprov.dll
05:05:55.0405 2704 C:\Windows\SysWOW64\drprov.dll - ok
05:05:55.0421 2704 [ 58C27029A6BD35FD26B5949080FC8708 ] C:\Program Files (x86)\TeamViewer\Version8\TeamViewer.exe
05:05:55.0421 2704 C:\Program Files (x86)\TeamViewer\Version8\TeamViewer.exe - ok
05:05:55.0421 2704 [ 284B59D7B56FC76C80E622AB856B1FAB ] C:\Windows\SysWOW64\davclnt.dll
05:05:55.0421 2704 C:\Windows\SysWOW64\davclnt.dll - ok
05:05:55.0421 2704 [ 179BECE8D1A4C488DDB7191FF9BE3FB0 ] C:\Windows\SysWOW64\davhlpr.dll
05:05:55.0421 2704 C:\Windows\SysWOW64\davhlpr.dll - ok
05:05:55.0421 2704 [ D7B7159BC8374E87D8C45A30377A3440 ] C:\Windows\SysWOW64\ntlanman.dll
05:05:55.0421 2704 C:\Windows\SysWOW64\ntlanman.dll - ok
05:05:55.0437 2704 [ E24FE90E9DE8D8AE70E59F7B01675DEF ] C:\Windows\SysWOW64\avicap32.dll
05:05:55.0437 2704 C:\Windows\SysWOW64\avicap32.dll - ok
05:05:55.0437 2704 [ C335EC1182AC10B188705554E0BC1186 ] C:\Windows\SysWOW64\msvfw32.dll
05:05:55.0437 2704 C:\Windows\SysWOW64\msvfw32.dll - ok
05:05:55.0437 2704 [ 72910F1DEB838E6E08A9017BFB7D4F0B ] C:\Windows\SysWOW64\browcli.dll
05:05:55.0437 2704 C:\Windows\SysWOW64\browcli.dll - ok
05:05:55.0437 2704 [ 465BEA35F7ED4A4A57686DEA7EA10F47 ] C:\Windows\SysWOW64\cscapi.dll
05:05:55.0437 2704 C:\Windows\SysWOW64\cscapi.dll - ok
05:05:55.0452 2704 [ 15E298B5EC5B89C5994A59863969D9FF ] C:\Windows\SysWOW64\npmproxy.dll
05:05:55.0452 2704 C:\Windows\SysWOW64\npmproxy.dll - ok
05:05:55.0452 2704 [ 102CF6879887BBE846A00C459E6D4ABC ] C:\Windows\SysWOW64\riched20.dll
05:05:55.0452 2704 C:\Windows\SysWOW64\riched20.dll - ok
05:05:55.0452 2704 [ 9FCA3A84338ADEF2AFF67CDA46EF8539 ] C:\Windows\System32\umb.dll
05:05:55.0452 2704 C:\Windows\System32\umb.dll - ok
05:05:55.0468 2704 [ F07BE58E907254E368DE111D1B466CFF ] C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Resource_en.dll
05:05:55.0468 2704 C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Resource_en.dll - ok
05:05:55.0468 2704 [ 09731EB7FCE3861B7EC8EB4F59908EF2 ] C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Resource_de.dll
05:05:55.0468 2704 C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Resource_de.dll - ok
05:05:55.0468 2704 [ 79AFFC7FEEA9CD2FEFEA5EF3B631A02C ] C:\Windows\System32\ndiscapCfg.dll
05:05:55.0468 2704 C:\Windows\System32\ndiscapCfg.dll - ok
05:05:55.0468 2704 [ 3D6AF45673C4B31CDECD7F80AF09D443 ] C:\Windows\System32\rascfg.dll
05:05:55.0468 2704 C:\Windows\System32\rascfg.dll - ok
05:05:55.0483 2704 [ 1CF21800E337F4039AAD4C94B4280EE4 ] C:\Windows\System32\mprmsg.dll
05:05:55.0483 2704 C:\Windows\System32\mprmsg.dll - ok
05:05:55.0483 2704 [ FF055B0E10FFA30E3B0B69603A07B111 ] C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_StaticRes.dll
05:05:55.0483 2704 C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_StaticRes.dll - ok
05:05:55.0483 2704 [ 55DE45B116711881C852D2841E4C84DD ] C:\Windows\System32\tcpipcfg.dll
05:05:55.0483 2704 C:\Windows\System32\tcpipcfg.dll - ok
05:05:55.0483 2704 [ DD81D91FF3B0763C392422865C9AC12E ] C:\Windows\System32\rundll32.exe
05:05:55.0483 2704 C:\Windows\System32\rundll32.exe - ok
05:05:55.0499 2704 [ E17E0188BB90FAE42D83E98707EFA59C ] C:\Windows\System32\sppsvc.exe
05:05:55.0499 2704 C:\Windows\System32\sppsvc.exe - ok
05:05:55.0499 2704 [ E6F0F82788E8BD0F7A616350EFA0761C ] C:\Windows\System32\actxprxy.dll
05:05:55.0499 2704 C:\Windows\System32\actxprxy.dll - ok
05:05:55.0499 2704 [ 45CFBFA8EDC3DF4E2B7FB0D0260FE051 ] C:\Windows\System32\localspl.dll
05:05:55.0499 2704 C:\Windows\System32\localspl.dll - ok
05:05:55.0499 2704 [ 3285481F5C12305CA104A6C493CA5A0B ] C:\Windows\System32\spoolss.dll
05:05:55.0499 2704 C:\Windows\System32\spoolss.dll - ok
05:05:55.0515 2704 [ 19E41CCCEE697CC9465396B370929792 ] C:\Windows\System32\FXSMON.dll
05:05:55.0515 2704 C:\Windows\System32\FXSMON.dll - ok
05:05:55.0515 2704 [ 62A0ED06E9FF55EEF51B27EC4839EE0B ] C:\Windows\System32\hpz3lw71.dll
05:05:55.0515 2704 C:\Windows\System32\hpz3lw71.dll - ok
05:05:55.0515 2704 [ C5AC93CF3BA30D367FB49148A2B673B9 ] C:\Windows\System32\PrintIsolationProxy.dll
05:05:55.0515 2704 C:\Windows\System32\PrintIsolationProxy.dll - ok
05:05:55.0530 2704 [ 32A3C8600AF124CBAAD845F13CFAE3CB ] C:\Windows\System32\tcpmon.dll
05:05:55.0530 2704 C:\Windows\System32\tcpmon.dll - ok
05:05:55.0530 2704 [ 93518C6EDE0B61BCBD02BDB02BD05FEE ] C:\Windows\System32\snmpapi.dll
05:05:55.0530 2704 C:\Windows\System32\snmpapi.dll - ok
05:05:55.0530 2704 [ FFF9D00CF16397C64317F213484F94BD ] C:\Windows\System32\wsnmp32.dll
05:05:55.0530 2704 C:\Windows\System32\wsnmp32.dll - ok
05:05:55.0530 2704 [ DF72A9936D0C3F517083119648814B09 ] C:\Windows\System32\usbmon.dll
05:05:55.0530 2704 C:\Windows\System32\usbmon.dll - ok
05:05:55.0546 2704 [ A1D7E3ADCDB07DDB6F423862DCB1A52B ] C:\Windows\System32\WSDMon.dll
05:05:55.0546 2704 C:\Windows\System32\WSDMon.dll - ok
05:05:55.0546 2704 [ 4581716B4BF76ACFD8E167EB0B26D82A ] C:\Windows\System32\fdPnp.dll
05:05:55.0546 2704 C:\Windows\System32\fdPnp.dll - ok
05:05:55.0546 2704 [ 6FB9BE56891EA4E85B4C9BDD4E9AFA69 ] C:\Windows\System32\spool\prtprocs\x64\hpzppw71.dll
05:05:55.0546 2704 C:\Windows\System32\spool\prtprocs\x64\hpzppw71.dll - ok
05:05:55.0546 2704 [ 1D626FE2E13C1CE49CA0136CFF214E93 ] C:\Windows\System32\spool\prtprocs\x64\winprint.dll
05:05:55.0546 2704 C:\Windows\System32\spool\prtprocs\x64\winprint.dll - ok
05:05:55.0561 2704 [ 0353B239C28B0E9EBC7FA3D1F6181661 ] C:\Windows\System32\win32spl.dll
05:05:55.0561 2704 C:\Windows\System32\win32spl.dll - ok
05:05:55.0561 2704 [ 507D5567A0A4EE86C4B0CE2CE1777025 ] C:\Windows\System32\inetpp.dll
05:05:55.0561 2704 C:\Windows\System32\inetpp.dll - ok
05:05:55.0561 2704 [ 8BC9DB92C4B2F3BE89185BEAB2AFC1F6 ] C:\Windows\SysWOW64\mapi32.dll
05:05:55.0561 2704 C:\Windows\SysWOW64\mapi32.dll - ok
05:05:55.0561 2704 [ 5FFA5EFFFB59A61D18FED2D32C0151AD ] C:\Program Files (x86)\TeamViewer\Version8\tv_w32.dll
05:05:55.0577 2704 C:\Program Files (x86)\TeamViewer\Version8\tv_w32.dll - ok
05:05:55.0577 2704 [ FCC8F25A5F5A4D6BD57D917DB7A00D78 ] C:\Windows\SysWOW64\crtdll.dll
05:05:55.0577 2704 C:\Windows\SysWOW64\crtdll.dll - ok
05:05:55.0577 2704 [ 3346201D0BA2E631C6D6D43ED8CB7E08 ] C:\Program Files (x86)\TeamViewer\Version8\tv_w32.exe
05:05:55.0577 2704 C:\Program Files (x86)\TeamViewer\Version8\tv_w32.exe - ok
05:05:55.0577 2704 [ A6154A954F08E99D27CEA4D3B9563172 ] C:\Windows\SysWOW64\newdev.dll
05:05:55.0577 2704 C:\Windows\SysWOW64\newdev.dll - ok
05:05:55.0593 2704 [ 6CC12C3B0FC34DA5A7832F858706B039 ] C:\Program Files (x86)\TeamViewer\Version8\tv_x64.exe
05:05:55.0593 2704 C:\Program Files (x86)\TeamViewer\Version8\tv_x64.exe - ok
05:05:55.0593 2704 [ BB7E865599FA258C70DF8B1F70109F6F ] C:\Windows\System32\newdev.dll
05:05:55.0593 2704 C:\Windows\System32\newdev.dll - ok
05:05:55.0593 2704 [ 162D247E995EAEBF3EF4289069E1111C ] C:\Windows\SysWOW64\devrtl.dll
05:05:55.0593 2704 C:\Windows\SysWOW64\devrtl.dll - ok
05:05:55.0593 2704 [ 9DF9B31EAC1669F244C02B61F10D123A ] C:\Windows\SysWOW64\printui.dll
05:05:55.0608 2704 C:\Windows\SysWOW64\printui.dll - ok
05:05:55.0608 2704 [ 6EEEB6C90D19918A927CF0028BB5C535 ] C:\Windows\SysWOW64\puiapi.dll
05:05:55.0608 2704 C:\Windows\SysWOW64\puiapi.dll - ok
05:05:55.0608 2704 [ BA0F80C7878558C28B1B298E94D259FF ] C:\Windows\System32\printui.dll
05:05:55.0608 2704 C:\Windows\System32\printui.dll - ok
05:05:55.0608 2704 [ 927E0723FF793440B001289C4296FA98 ] C:\Windows\System32\puiapi.dll
05:05:55.0608 2704 C:\Windows\System32\puiapi.dll - ok
05:05:55.0624 2704 [ 53FA60601C64F167457A20B1B8E5647C ] C:\Program Files (x86)\TeamViewer\Version8\tv_x64.dll
05:05:55.0624 2704 C:\Program Files (x86)\TeamViewer\Version8\tv_x64.dll - ok
05:05:55.0624 2704 [ BD9EB3958F213F96B97B1D897DEE006D ] C:\Windows\System32\hidserv.dll
05:05:55.0624 2704 C:\Windows\System32\hidserv.dll - ok
05:05:55.0624 2704 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] C:\Windows\System32\ssdpsrv.dll
05:05:55.0624 2704 C:\Windows\System32\ssdpsrv.dll - ok
05:05:55.0624 2704 [ BF1FC3F79B863C914687A737C2F3D681 ] C:\Windows\System32\wdi.dll
05:05:55.0624 2704 C:\Windows\System32\wdi.dll - ok
05:05:55.0639 2704 [ 93221146D4EBBF314C29B23CD6CC391D ] C:\Windows\System32\wpdbusenum.dll
05:05:55.0639 2704 C:\Windows\System32\wpdbusenum.dll - ok
05:05:55.0639 2704 [ 4449D23E8F197862F1B16F1E6C89C36C ] C:\Windows\System32\diagperf.dll
05:05:55.0639 2704 C:\Windows\System32\diagperf.dll - ok
05:05:55.0639 2704 [ BF4AC709BE5BF64F331F5D67773A0C82 ] C:\Windows\System32\perftrack.dll
05:05:55.0639 2704 C:\Windows\System32\perftrack.dll - ok
05:05:55.0639 2704 [ E64D9EC8018C55873B40FDEE9DBEF5B3 ] C:\Windows\System32\PortableDeviceApi.dll
05:05:55.0639 2704 C:\Windows\System32\PortableDeviceApi.dll - ok
05:05:55.0655 2704 [ 9689A9C7F7C2A1A423CDA2C3B43FFF65 ] C:\Windows\System32\wer.dll
05:05:55.0655 2704 C:\Windows\System32\wer.dll - ok
05:05:55.0655 2704 [ 58A0CDABEA255616827B1C22C9994466 ] C:\Windows\System32\NapiNSP.dll
05:05:55.0655 2704 C:\Windows\System32\NapiNSP.dll - ok
05:05:55.0655 2704 [ 9719E3D834F5C8C43F56A93DFA497023 ] C:\Windows\System32\pnpts.dll
05:05:55.0655 2704 C:\Windows\System32\pnpts.dll - ok
05:05:55.0655 2704 [ 46863C4CC5B68EB09EA2D5EEF0F1193A ] C:\Windows\System32\radardt.dll
05:05:55.0655 2704 C:\Windows\System32\radardt.dll - ok
05:05:55.0671 2704 [ E811F8510B133E70CF6E509FB809824F ] C:\Windows\System32\wdiasqmmodule.dll
05:05:55.0671 2704 C:\Windows\System32\wdiasqmmodule.dll - ok
05:05:55.0671 2704 [ 613C8CE10A5FDE582BA5FA64C4D56AAA ] C:\Windows\System32\pnrpnsp.dll
05:05:55.0671 2704 C:\Windows\System32\pnrpnsp.dll - ok
05:05:55.0671 2704 [ 2E2072EB48238FCA8FBB7A9F5FABAC45 ] C:\Windows\System32\winrnr.dll
05:05:55.0671 2704 C:\Windows\System32\winrnr.dll - ok
05:05:55.0671 2704 [ AC5DF873913B00E554D8F553459BC431 ] C:\Windows\System32\qmgrprxy.dll
05:05:55.0671 2704 C:\Windows\System32\qmgrprxy.dll - ok
05:05:55.0686 2704 [ 85B45B4B285B159ACDB355FC8C1E8925 ] C:\Windows\SysWOW64\qmgrprxy.dll
05:05:55.0686 2704 C:\Windows\SysWOW64\qmgrprxy.dll - ok
05:05:55.0686 2704 [ E4F6125ED5185F8FA37CC4F449B85526 ] C:\Program Files (x86)\Internet Explorer\iexplore.exe
05:05:55.0686 2704 C:\Program Files (x86)\Internet Explorer\iexplore.exe - ok
05:05:55.0686 2704 [ 12DBA51A6D1126E88F78D79AE0F7600F ] C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AcroRd32.exe
05:05:55.0686 2704 C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AcroRd32.exe - ok
05:05:55.0702 2704 [ 04F4D7D7B97C616C33DC3EFFD48875E0 ] C:\Program Files (x86)\Java\jre7\bin\java.exe
05:05:55.0702 2704 C:\Program Files (x86)\Java\jre7\bin\java.exe - ok
05:05:55.0702 2704 [ AAF7C6AD7D7AB54018A514B6C2F8CC8A ] C:\Program Files\Java\jre7\bin\java.exe
05:05:55.0702 2704 C:\Program Files\Java\jre7\bin\java.exe - ok
05:05:55.0702 2704 [ CB3D4DEF4F67346246A2E5F791BCD4B0 ] C:\Program Files (x86)\Common Files\Adobe AIR\Versions\1.0\Adobe AIR.dll
05:05:55.0702 2704 C:\Program Files (x86)\Common Files\Adobe AIR\Versions\1.0\Adobe AIR.dll - ok
05:05:55.0702 2704 [ 5BB8C06EB5EA4BA22EE8A678F2D79B25 ] C:\Windows\SysWOW64\devenum.dll
05:05:55.0702 2704 C:\Windows\SysWOW64\devenum.dll - ok
05:05:55.0717 2704 [ 243974EC02F7AE49E4179C54624143AB ] C:\Windows\SysWOW64\MMDevAPI.dll
05:05:55.0717 2704 C:\Windows\SysWOW64\MMDevAPI.dll - ok
05:05:55.0717 2704 [ 7069AAB8536F29ED7323140973A2894B ] C:\Windows\SysWOW64\msdmo.dll
05:05:55.0717 2704 C:\Windows\SysWOW64\msdmo.dll - ok
05:05:55.0717 2704 [ 24498D084FAA7A459C91066EC241E1CE ] C:\Windows\SysWOW64\vfwwdm32.dll
05:05:55.0717 2704 C:\Windows\SysWOW64\vfwwdm32.dll - ok
05:05:55.0717 2704 [ D205C24A9D069049FE2DF2A1B38726A7 ] C:\Windows\SysWOW64\wdmaud.drv
05:05:55.0717 2704 C:\Windows\SysWOW64\wdmaud.drv - ok
05:05:55.0733 2704 [ 9C67F6BBDA3881CFD02095160CF91576 ] C:\Windows\SysWOW64\ksuser.dll
05:05:55.0733 2704 C:\Windows\SysWOW64\ksuser.dll - ok
05:05:55.0733 2704 [ C940F2F5C60B3727C5F18840735B229C ] C:\Windows\SysWOW64\AudioSes.dll
05:05:55.0733 2704 C:\Windows\SysWOW64\AudioSes.dll - ok
05:05:55.0733 2704 [ 139D3AB6AA920C34C50CBFFB9EB7D222 ] C:\Windows\SysWOW64\avrt.dll
05:05:55.0733 2704 C:\Windows\SysWOW64\avrt.dll - ok
05:05:55.0733 2704 [ 07393A09C46083588E751B63B03C8301 ] C:\Windows\SysWOW64\msacm32.drv
05:05:55.0733 2704 C:\Windows\SysWOW64\msacm32.drv - ok
05:05:55.0749 2704 [ 5A12C364AD1D4FCC0AD0E56DBBC34462 ] C:\Windows\SysWOW64\midimap.dll
05:05:55.0749 2704 C:\Windows\SysWOW64\midimap.dll - ok
05:05:55.0749 2704 [ FFF95479C7AB1550F0750A5D01744211 ] C:\Windows\System32\drivers\spsys.sys
05:05:55.0749 2704 C:\Windows\System32\drivers\spsys.sys - ok
05:05:55.0749 2704 [ F6F22291024906E43D135A4B1705FEAC ] C:\Windows\System32\sppwinob.dll
05:05:55.0749 2704 C:\Windows\System32\sppwinob.dll - ok
05:05:55.0749 2704 [ 2B373B5F7E36B5ED5DA176D4400EF091 ] C:\Windows\System32\sppobjs.dll
05:05:55.0749 2704 C:\Windows\System32\sppobjs.dll - ok
05:05:55.0764 2704 [ 854563425495A29FB4B198A6ABEBE06D ] E:\Programs\installed programs\iTunes\iTunes.exe
05:05:55.0764 2704 E:\Programs\installed programs\iTunes\iTunes.exe - ok
05:05:55.0764 2704 [ F2535330561CD9AF971EBC6B1DB32D27 ] E:\Programs\installed programs\uTorrent\uTorrent.exe
05:05:55.0764 2704 E:\Programs\installed programs\uTorrent\uTorrent.exe - ok
05:05:55.0764 2704 [ E1B22739C933BE33F53DB58C5393ADD3 ] C:\Windows\System32\Apphlpdm.dll
05:05:55.0764 2704 C:\Windows\System32\Apphlpdm.dll - ok
05:05:55.0764 2704 [ AFA79C343F9D1555F7E5D5FA70BB2A14 ] C:\Windows\System32\PortableDeviceConnectApi.dll
05:05:55.0764 2704 C:\Windows\System32\PortableDeviceConnectApi.dll - ok
05:05:55.0780 2704 [ DDA4CAF29D8C0A297F886BFE561E6659 ] C:\Windows\System32\drivers\WUDFRd.sys
05:05:55.0780 2704 C:\Windows\System32\drivers\WUDFRd.sys - ok
05:05:55.0780 2704 [ E629F1A051C82795DDFFD3E8D4855811 ] C:\Windows\System32\dimsjob.dll
05:05:55.0780 2704 C:\Windows\System32\dimsjob.dll - ok
05:05:55.0780 2704 [ 35CB97CBC3EDC463418ED4997AAB29B6 ] C:\Windows\System32\pautoenr.dll
05:05:55.0780 2704 C:\Windows\System32\pautoenr.dll - ok
05:05:55.0795 2704 [ 94DFBB481BF51158B216E23C5C1C9D6E ] C:\Windows\System32\certcli.dll
05:05:55.0795 2704 C:\Windows\System32\certcli.dll - ok
05:05:55.0795 2704 [ 263B26106606A010CF877472B535E4BB ] C:\Windows\System32\CertEnroll.dll
05:05:55.0795 2704 C:\Windows\System32\CertEnroll.dll - ok
05:05:55.0795 2704 [ CF636C92B762B26F0B39B38E92380A09 ] C:\Windows\System32\oleacc.dll
05:05:55.0795 2704 C:\Windows\System32\oleacc.dll - ok
05:05:55.0795 2704 [ AB886378EEB55C6C75B4F2D14B6C869F ] C:\Windows\System32\drivers\WUDFPf.sys
05:05:55.0795 2704 C:\Windows\System32\drivers\WUDFPf.sys - ok
05:05:55.0811 2704 [ B1DF2D87DC8BF6072699AC8301B37796 ] C:\Windows\System32\WUDFPlatform.dll
05:05:55.0811 2704 C:\Windows\System32\WUDFPlatform.dll - ok
05:05:55.0811 2704 [ B20F051B03A966392364C83F009F7D17 ] C:\Windows\System32\WUDFSvc.dll
05:05:55.0811 2704 C:\Windows\System32\WUDFSvc.dll - ok
05:05:55.0811 2704 [ 8ABFE00F213F2571498F1B8FD7939A98 ] C:\Windows\System32\WUDFHost.exe
05:05:55.0811 2704 C:\Windows\System32\WUDFHost.exe - ok
05:05:55.0811 2704 [ 25AE683DCB4AE7E6F1B193A0CB9DB35F ] C:\Windows\System32\WUDFx.dll
05:05:55.0811 2704 C:\Windows\System32\WUDFx.dll - ok
05:05:55.0827 2704 [ 91D6F0AB79AA36FFB932157865206F35 ] C:\Windows\System32\drivers\UMDF\WpdFs.dll
05:05:55.0827 2704 C:\Windows\System32\drivers\UMDF\WpdFs.dll - ok
05:05:55.0827 2704 [ 9864D52F15AD32094A636C6B5281D9E7 ] C:\Windows\System32\WMVCORE.DLL
05:05:55.0827 2704 C:\Windows\System32\WMVCORE.DLL - ok
05:05:55.0827 2704 [ AACC48FE239F0DF126DA2F28930A5B83 ] C:\Windows\System32\WMASF.DLL
05:05:55.0827 2704 C:\Windows\System32\WMASF.DLL - ok
05:05:55.0827 2704 [ 389CA818132C1D7DCF0C791E8D9035DE ] C:\Windows\System32\PortableDeviceClassExtension.dll
05:05:55.0827 2704 C:\Windows\System32\PortableDeviceClassExtension.dll - ok
05:05:55.0842 2704 [ 4F3CD1C59EA71401E155C432BCECE180 ] C:\Windows\System32\PortableDeviceTypes.dll
05:05:55.0842 2704 C:\Windows\System32\PortableDeviceTypes.dll - ok
05:05:55.0842 2704 [ 6CEF7856A3EFAC59470F6208F0F585CE ] C:\Windows\System32\mpr.dll
05:05:55.0842 2704 C:\Windows\System32\mpr.dll - ok
05:05:55.0842 2704 [ BAFE84E637BF7388C96EF48D4D3FDD53 ] C:\Windows\System32\userinit.exe
05:05:55.0842 2704 C:\Windows\System32\userinit.exe - ok
05:05:55.0842 2704 [ F162D5F5E845B9DC352DD1BAD8CEF1BC ] C:\Windows\System32\dwm.exe
05:05:55.0842 2704 C:\Windows\System32\dwm.exe - ok
05:05:55.0858 2704 [ FCFCD1101C5DA23B4B95F93D02B2C169 ] C:\Windows\System32\dwmredir.dll
05:05:55.0858 2704 C:\Windows\System32\dwmredir.dll - ok
05:05:55.0858 2704 [ 4BA77A5EF71C14C764B0ED4701683E3E ] C:\Windows\System32\dwmcore.dll
05:05:55.0858 2704 C:\Windows\System32\dwmcore.dll - ok
05:05:55.0858 2704 [ 9AE80F6A66B30E3ED8CDF858CF28B11B ] C:\Windows\System32\d3d10_1.dll
05:05:55.0858 2704 C:\Windows\System32\d3d10_1.dll - ok
05:05:55.0873 2704 [ 63F72417CA38D8FC8F53709649B589E3 ] C:\Windows\System32\d3d10_1core.dll
05:05:55.0873 2704 C:\Windows\System32\d3d10_1core.dll - ok
05:05:55.0873 2704 [ 8DFB5752FCE145A6B295093C0A8BE131 ] C:\Windows\System32\dxgi.dll
05:05:55.0873 2704 C:\Windows\System32\dxgi.dll - ok
05:05:55.0873 2704 [ 448B02AD260EC3E1E892FCE6DFDDEEBD ] C:\Windows\System32\d3d11.dll
05:05:55.0873 2704 C:\Windows\System32\d3d11.dll - ok
05:05:55.0873 2704 [ 332FEAB1435662FC6C672E25BEB37BE3 ] C:\Windows\explorer.exe
05:05:55.0873 2704 C:\Windows\explorer.exe - ok
05:05:55.0889 2704 [ 057DE6D95298767A2696611378AF0E36 ] C:\Windows\System32\mctux.dll
05:05:55.0889 2704 C:\Windows\System32\mctux.dll - ok
05:05:55.0889 2704 [ CF37D1CD2EB081F2F911703803FE945B ] C:\Windows\System32\aticfx64.dll
05:05:55.0889 2704 C:\Windows\System32\aticfx64.dll - ok
05:05:55.0889 2704 [ C1E94BEA34C3D6C9B62009645066B6EF ] C:\Windows\System32\atiuxp64.dll
05:05:55.0889 2704 C:\Windows\System32\atiuxp64.dll - ok
05:05:55.0889 2704 [ AEB002ED3BB70999FF9CC52FD9C06DA9 ] C:\Windows\System32\atidxx64.dll
05:05:55.0889 2704 C:\Windows\System32\atidxx64.dll - ok
05:05:55.0905 2704 [ 49E5753D923F1AC63B22D3DCB0B47E00 ] C:\Windows\System32\uDWM.dll
05:05:55.0905 2704 C:\Windows\System32\uDWM.dll - ok
05:05:55.0905 2704 [ EED05D42D91835064703E2318552ED25 ] C:\Windows\System32\ExplorerFrame.dll
05:05:55.0905 2704 C:\Windows\System32\ExplorerFrame.dll - ok
05:05:55.0905 2704 [ BE54A53EC2C4C74B41909B7B9F9BF978 ] C:\Program Files\AVAST Software\Avast\ashShA64.dll
05:05:55.0905 2704 C:\Program Files\AVAST Software\Avast\ashShA64.dll - ok
05:05:55.0905 2704 [ 7B18A5CE7FE9FC43FDCC55161996262D ] C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll
05:05:55.0905 2704 C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll - ok
05:05:55.0920 2704 [ 3404B984AD34B46C515E4BF7944014B5 ] C:\Program Files\TortoiseSVN\bin\TortoiseStub.dll
05:05:55.0920 2704 C:\Program Files\TortoiseSVN\bin\TortoiseStub.dll - ok
05:05:55.0920 2704 [ 542935B2FAC56033765EB6F5A8A4C15E ] C:\Program Files\TortoiseSVN\bin\TortoiseSVN.dll
05:05:55.0920 2704 C:\Program Files\TortoiseSVN\bin\TortoiseSVN.dll - ok
05:05:55.0920 2704 [ 50A25833ED8F31D675F113D32F4E45D1 ] C:\Program Files\TortoiseSVN\bin\libsvn_tsvn.dll
05:05:55.0920 2704 C:\Program Files\TortoiseSVN\bin\libsvn_tsvn.dll - ok
05:05:55.0936 2704 [ AB16FC6436F1CAF5E8984C2D06450520 ] C:\Program Files\TortoiseSVN\bin\libapr_tsvn.dll
05:05:55.0936 2704 C:\Program Files\TortoiseSVN\bin\libapr_tsvn.dll - ok
05:05:55.0936 2704 [ 366FD6F3A451351B5DF2D7C4ECF4C73A ] C:\Windows\System32\msvcr100.dll
05:05:55.0936 2704 C:\Windows\System32\msvcr100.dll - ok
05:05:55.0936 2704 [ B8D2A348E35A32B5E850755A87D2D33D ] C:\Program Files\TortoiseSVN\bin\libaprutil_tsvn.dll
05:05:55.0936 2704 C:\Program Files\TortoiseSVN\bin\libaprutil_tsvn.dll - ok
05:05:55.0936 2704 [ FDE31B871E9A9E87C2EFF3C37CD12AC1 ] C:\Program Files\TortoiseSVN\bin\intl3_tsvn.dll
05:05:55.0936 2704 C:\Program Files\TortoiseSVN\bin\intl3_tsvn.dll - ok
05:05:55.0951 2704 [ 458F186273970418F7A67316E19A69D7 ] C:\Program Files\TortoiseSVN\bin\libsasl.dll
05:05:55.0951 2704 C:\Program Files\TortoiseSVN\bin\libsasl.dll - ok
05:05:55.0951 2704 [ D029339C0F59CF662094EDDF8C42B2B5 ] C:\Windows\System32\msvcp100.dll
05:05:55.0951 2704 C:\Windows\System32\msvcp100.dll - ok
05:05:55.0951 2704 [ 024352FEEC9042260BB4CFB4D79A206B ] C:\Windows\System32\EhStorShell.dll
05:05:55.0951 2704 C:\Windows\System32\EhStorShell.dll - ok
05:05:55.0967 2704 [ 32802C0F6FC7C8F561B9D91F52A46421 ] C:\Windows\System32\cscui.dll
05:05:55.0967 2704 C:\Windows\System32\cscui.dll - ok
05:05:55.0967 2704 [ 7EE5F17A21D9A9101207DF4BC37B085D ] C:\Windows\System32\cscdll.dll
05:05:55.0967 2704 C:\Windows\System32\cscdll.dll - ok
05:05:55.0967 2704 [ 1D63F4366288B8A7595397E27010FD44 ] C:\Windows\System32\IconCodecService.dll
05:05:55.0967 2704 C:\Windows\System32\IconCodecService.dll - ok
05:05:55.0967 2704 [ 3977D4A871CA0D4F2ED1E7DB46829731 ] C:\Windows\System32\appinfo.dll
05:05:55.0967 2704 C:\Windows\System32\appinfo.dll - ok
05:05:55.0983 2704 [ 025E7DBDB98866ED3CB2D4DDA70B364D ] C:\Windows\System32\runonce.exe
05:05:55.0983 2704 C:\Windows\System32\runonce.exe - ok
05:05:55.0983 2704 [ D44741F65A1D71F65814A12CF6E2400A ] C:\Windows\SysWOW64\runonce.exe
05:05:55.0983 2704 C:\Windows\SysWOW64\runonce.exe - ok
05:05:55.0983 2704 [ AD7B9C14083B52BC532FBA5948342B98 ] C:\Windows\SysWOW64\cmd.exe
05:05:55.0983 2704 C:\Windows\SysWOW64\cmd.exe - ok
05:05:55.0998 2704 [ 326C7F76A29897A892AA7726E91C1C67 ] C:\Windows\SysWOW64\winbrand.dll
05:05:55.0998 2704 C:\Windows\SysWOW64\winbrand.dll - ok
05:05:55.0998 2704 [ 0B6118058942961D504AAEA04FECB116 ] C:\Windows\SysWOW64\ieframe.dll
05:05:55.0998 2704 C:\Windows\SysWOW64\ieframe.dll - ok
05:05:55.0998 2704 [ 60F4AEFA103D421EA4A40E31409B4756 ] C:\Windows\SysWOW64\api-ms-win-downlevel-shell32-l1-1-0.dll
05:05:55.0998 2704 C:\Windows\SysWOW64\api-ms-win-downlevel-shell32-l1-1-0.dll - ok
05:05:55.0998 2704 [ 007863E45F25AA47A4C30D0930BBFD85 ] C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l2-1-0.dll
05:05:55.0998 2704 C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l2-1-0.dll - ok
05:05:56.0014 2704 [ BE247AE996A9FDE007A27B51413A6C79 ] C:\Windows\SysWOW64\shdocvw.dll
05:05:56.0014 2704 C:\Windows\SysWOW64\shdocvw.dll - ok
05:05:56.0014 2704 [ 4B78B431F225FD8624C5655CB1DE7B61 ] C:\Windows\System32\aelupsvc.dll
05:05:56.0014 2704 C:\Windows\System32\aelupsvc.dll - ok
05:05:56.0014 2704 [ 178A34E5554DCE485E1262DDF027960C ] C:\Users\USERNAME\AppData\Local\Temp\F545CA3C-F9B2-4F2C-80DE-8A6AB46BCA95.exe
05:05:56.0014 2704 C:\Users\USERNAME\AppData\Local\Temp\F545CA3C-F9B2-4F2C-80DE-8A6AB46BCA95.exe - ok
05:05:56.0029 2704 [ FB10715E4099AF9FA389C71873245226 ] C:\Windows\System32\timedate.cpl
05:05:56.0029 2704 C:\Windows\System32\timedate.cpl - ok
05:05:56.0029 2704 [ C4F40F6CACD796A8E16671D0E9A2F319 ] C:\Windows\System32\shdocvw.dll
05:05:56.0029 2704 C:\Windows\System32\shdocvw.dll - ok
05:05:56.0029 2704 [ A0A65D306A5490D2EB8E7DE66898ECFD ] C:\Windows\System32\linkinfo.dll
05:05:56.0029 2704 C:\Windows\System32\linkinfo.dll - ok
05:05:56.0045 2704 [ 1EAC1A8CA6874BF5B15E2EFB9A9A7B86 ] C:\Windows\System32\msftedit.dll
05:05:56.0045 2704 C:\Windows\System32\msftedit.dll - ok
05:05:56.0045 2704 [ 2BCBA6052374959A30BD7948444DBB79 ] C:\Windows\System32\gameux.dll
05:05:56.0045 2704 C:\Windows\System32\gameux.dll - ok
05:05:56.0045 2704 [ F146E2BA475893DD77B2370DC1211FC6 ] C:\Windows\System32\drivers\90851819.sys
05:05:56.0045 2704 C:\Windows\System32\drivers\90851819.sys - ok
05:05:56.0061 2704 [ 112183DF91C9BAECB498E4A86ECDE598 ] C:\Windows\System32\msls31.dll
05:05:56.0061 2704 C:\Windows\System32\msls31.dll - ok
05:05:56.0061 2704 [ 7DBA84667DC18877AEF693E3543DFAD7 ] C:\Program Files\Common Files\Microsoft Shared\ink\tiptsf.dll
05:05:56.0061 2704 C:\Program Files\Common Files\Microsoft Shared\ink\tiptsf.dll - ok
05:05:56.0061 2704 [ 69754747274B76E7FAF287239333D7E6 ] C:\Windows\System32\msiltcfg.dll
05:05:56.0061 2704 C:\Windows\System32\msiltcfg.dll - ok
05:05:56.0076 2704 [ 4C2C4640BF23AAFCF90519E0F34436CE ] C:\Windows\System32\DeviceCenter.dll
05:05:56.0076 2704 C:\Windows\System32\DeviceCenter.dll - ok
05:05:56.0076 2704 [ A6C29DB53ECA94FA8591C5388D604B82 ] C:\Windows\SysWOW64\msi.dll
05:05:56.0076 2704 C:\Windows\SysWOW64\msi.dll - ok
05:05:56.0076 2704 [ B0F69B9DE0AEBFD7E4CEADE6758DF627 ] C:\Windows\System32\SearchFolder.dll
05:05:56.0076 2704 C:\Windows\System32\SearchFolder.dll - ok
05:05:56.0076 2704 [ D744D5B8145C2303B19A288AF695E9AD ] C:\Windows\System32\ieframe.dll
05:05:56.0076 2704 C:\Windows\System32\ieframe.dll - ok
05:05:56.0092 2704 [ 9108540E866F75C7AF2B91DD921A8091 ] C:\Windows\System32\api-ms-win-downlevel-shell32-l1-1-0.dll
05:05:56.0092 2704 C:\Windows\System32\api-ms-win-downlevel-shell32-l1-1-0.dll - ok
05:05:56.0092 2704 [ FB4045578F5180BDB1963AB352B78548 ] C:\Windows\System32\api-ms-win-downlevel-shlwapi-l2-1-0.dll
05:05:56.0092 2704 C:\Windows\System32\api-ms-win-downlevel-shlwapi-l2-1-0.dll - ok
05:05:56.0092 2704 [ E2A17BCC08D92F42E08AF6BA2F93ABA7 ] C:\Windows\SysWOW64\ExplorerFrame.dll
05:05:56.0092 2704 C:\Windows\SysWOW64\ExplorerFrame.dll - ok
05:05:56.0107 2704 [ 405F4D32D2185F1F1BD753D8EEAFFB3A ] C:\Windows\System32\networkexplorer.dll
05:05:56.0107 2704 C:\Windows\System32\networkexplorer.dll - ok
05:05:56.0107 2704 [ 24F4B480F335A6C724AF352253C5D98B ] C:\Windows\System32\thumbcache.dll
05:05:56.0107 2704 C:\Windows\System32\thumbcache.dll - ok
05:05:56.0107 2704 [ 6E1F8165C365D35C8E3C045AF0CDD481 ] C:\Windows\SysWOW64\duser.dll
05:05:56.0107 2704 C:\Windows\SysWOW64\duser.dll - ok
05:05:56.0107 2704 [ EE06B85BC69F18826302348A2AD089E0 ] C:\Windows\SysWOW64\dui70.dll
05:05:56.0107 2704 C:\Windows\SysWOW64\dui70.dll - ok
05:05:56.0123 2704 [ 037A719DAD50603202C978CD802623E4 ] C:\Windows\System32\ntshrui.dll
05:05:56.0123 2704 C:\Windows\System32\ntshrui.dll - ok
05:05:56.0123 2704 [ 44CF359BC455A6A5CC3C3421CABEB3A6 ] C:\Program Files\TortoiseSVN\bin\TSVNCache.exe
05:05:56.0123 2704 C:\Program Files\TortoiseSVN\bin\TSVNCache.exe - ok
05:05:56.0123 2704 [ 1473768973453DE50DC738C2955FC4DD ] C:\Windows\System32\wdmaud.drv
05:05:56.0123 2704 C:\Windows\System32\wdmaud.drv - ok
05:05:56.0123 2704 [ 8560FFFC8EB3A806DCD4F82252CFC8C6 ] C:\Windows\System32\ksuser.dll
05:05:56.0123 2704 C:\Windows\System32\ksuser.dll - ok
05:05:56.0139 2704 [ DC220AE6F64819099F7EBD6F137E32E7 ] C:\Windows\System32\AudioSes.dll
05:05:56.0139 2704 C:\Windows\System32\AudioSes.dll - ok
05:05:56.0139 2704 [ 10AC5CE9F78DC281A1BBD9B8CC587B8A ] C:\Windows\System32\msacm32.dll
05:05:56.0139 2704 C:\Windows\System32\msacm32.dll - ok
05:05:56.0139 2704 [ 1B7C3A37362C7B2890168C5FC61C8D9B ] C:\Windows\System32\msacm32.drv
05:05:56.0139 2704 C:\Windows\System32\msacm32.drv - ok
05:05:56.0154 2704 [ CA2A0750ED830678997695FF61B04C30 ] C:\Windows\System32\midimap.dll
05:05:56.0154 2704 C:\Windows\System32\midimap.dll - ok
05:05:56.0154 2704 [ 5EDBB34736DD7AC1A73CF8792A835E10 ] C:\Windows\System32\AudioEng.dll
05:05:56.0154 2704 C:\Windows\System32\AudioEng.dll - ok
05:05:56.0154 2704 [ 2B0789B3ECDBFC2A9A76F2308AF43ABF ] C:\Program Files\Realtek\Audio\HDA\SkyTel.exe
05:05:56.0154 2704 C:\Program Files\Realtek\Audio\HDA\SkyTel.exe - ok
05:05:56.0154 2704 [ 0E85C11F8850D524B02181C6E02BA9AE ] C:\Windows\SysWOW64\dsound.dll
05:05:56.0154 2704 C:\Windows\SysWOW64\dsound.dll - ok
05:05:56.0170 2704 [ C1395286B822E306B4FE1568A8A77813 ] C:\Windows\System32\AUDIOKSE.dll
05:05:56.0170 2704 C:\Windows\System32\AUDIOKSE.dll - ok
05:05:56.0170 2704 [ D2F6175D5993DE9443791E33C28693FA ] C:\Program Files (x86)\Common Files\DesktopUtil\Util-Desktop.exe
05:05:56.0170 2704 C:\Program Files (x86)\Common Files\DesktopUtil\Util-Desktop.exe - ok
05:05:56.0170 2704 [ E3BF29CED96790CDAAFA981FFDDF53A3 ] C:\Program Files\Windows Sidebar\sidebar.exe
05:05:56.0170 2704 C:\Program Files\Windows Sidebar\sidebar.exe - ok
05:05:56.0170 2704 [ 7E4AD8220AF0B281274F9785DD53E25C ] C:\Program Files (x86)\Skype\Phone\Skype.exe
05:05:56.0170 2704 C:\Program Files (x86)\Skype\Phone\Skype.exe - ok
05:05:56.0185 2704 [ 658369A232CE0F8D234123C4565966E3 ] C:\Program Files (x86)\Dyn Updater\DynTray.exe
05:05:56.0185 2704 C:\Program Files (x86)\Dyn Updater\DynTray.exe - ok
05:05:56.0185 2704 [ CB6475E10007238C589DEC7A19376239 ] C:\Program Files (x86)\Common Files\DesktopUtil\MCTDUtil.exe
05:05:56.0185 2704 C:\Program Files (x86)\Common Files\DesktopUtil\MCTDUtil.exe - ok
05:05:56.0185 2704 [ 416B8CCF26243169B947028EBBCE2315 ] E:\Programs\installed programs\Launchy\Launchy.exe
05:05:56.0185 2704 E:\Programs\installed programs\Launchy\Launchy.exe - ok
05:05:56.0201 2704 [ B0AC7437AA313760BA8DB61E31B3E565 ] C:\Program Files (x86)\Common Files\DesktopUtil\FDispPos.exe
05:05:56.0201 2704 C:\Program Files (x86)\Common Files\DesktopUtil\FDispPos.exe - ok
05:05:56.0201 2704 [ C4252B09DE47BACEDFB5E849D74DFDF1 ] C:\Windows\System32\RtkAPO64.dll
05:05:56.0201 2704 C:\Windows\System32\RtkAPO64.dll - ok
05:05:56.0201 2704 [ A16852B04C0A5654B0B8DFD5E1A25718 ] C:\Program Files (x86)\MagicDisc\MagicDisc.exe
05:05:56.0201 2704 C:\Program Files (x86)\MagicDisc\MagicDisc.exe - ok
05:05:56.0201 2704 [ 371948BC5911ABA06168FAC91ED25F06 ] C:\Windows\System32\msxml3.dll
05:05:56.0201 2704 C:\Windows\System32\msxml3.dll - ok
05:05:56.0217 2704 [ BF783889FFD30DCD089565750E00ACF4 ] E:\Programs\installed programs\Launchy\QtGui4.dll
05:05:56.0217 2704 E:\Programs\installed programs\Launchy\QtGui4.dll - ok
05:05:56.0217 2704 [ 68F07453F8AABFD28DB1E1B22DFCDC5D ] E:\Programs\installed programs\Launchy\QtCore4.dll
05:05:56.0217 2704 E:\Programs\installed programs\Launchy\QtCore4.dll - ok
05:05:56.0217 2704 [ 394ECD933CD66BADF97EA85A183B9E1E ] C:\Windows\System32\mshtml.dll
05:05:56.0217 2704 C:\Windows\System32\mshtml.dll - ok
05:05:56.0217 2704 [ AF1C46567D56F0ADB68BCA6B17276ADA ] E:\Programs\installed programs\xampp\xampp-control.exe
05:05:56.0217 2704 E:\Programs\installed programs\xampp\xampp-control.exe - ok
05:05:56.0232 2704 [ 6F3C559B82F2912354BE5B098744CC8C ] C:\Windows\System32\WMALFXGFXDSP.dll
05:05:56.0232 2704 C:\Windows\System32\WMALFXGFXDSP.dll - ok
05:05:56.0232 2704 [ 0B453BEC20FCC92C022EE1919EEC4E3B ] E:\Programs\installed programs\Launchy\QtNetwork4.dll
05:05:56.0232 2704 E:\Programs\installed programs\Launchy\QtNetwork4.dll - ok
05:05:56.0232 2704 [ 2B2CAA9D9C8967FF92B12FEE8A24BCE1 ] C:\Program Files (x86)\Common Files\DesktopUtil\MCTHOOKKEY.DLL
05:05:56.0232 2704 C:\Program Files (x86)\Common Files\DesktopUtil\MCTHOOKKEY.DLL - ok
05:05:56.0232 2704 [ 96C70BD48D49B87475F4572DEDC62EB9 ] C:\Windows\AppPatch\AcLayers.dll
05:05:56.0232 2704 C:\Windows\AppPatch\AcLayers.dll - ok
05:05:56.0248 2704 [ 7C3218CE118044136BF3FFD00755A70C ] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe
05:05:56.0248 2704 C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe - ok
05:05:56.0248 2704 [ 058DDC41A20CC9F698464D17FB378689 ] E:\Programs\installed programs\Launchy\imageformats\qmng4.dll
05:05:56.0248 2704 E:\Programs\installed programs\Launchy\imageformats\qmng4.dll - ok
05:05:56.0248 2704 [ 7031B48F54BC9D1BB1582B9F7AB91EE2 ] C:\Windows\SysWOW64\atiadlxy.dll
05:05:56.0248 2704 C:\Windows\SysWOW64\atiadlxy.dll - ok
05:05:56.0263 2704 [ 148C545849C1379A3D4448F5DE768E86 ] C:\Program Files\AVAST Software\Avast\AvastUI.exe
05:05:56.0263 2704 C:\Program Files\AVAST Software\Avast\AvastUI.exe - ok
05:05:56.0263 2704 [ 54B5DCD55B223BC5DF50B82E1E9E86B1 ] C:\Windows\System32\mfplat.dll
05:05:56.0263 2704 C:\Windows\System32\mfplat.dll - ok
05:05:56.0263 2704 [ 24BFB85BF6164FB7F77F695CBABB43C6 ] E:\Programs\installed programs\Launchy\plugins\calcy.dll
05:05:56.0263 2704 E:\Programs\installed programs\Launchy\plugins\calcy.dll - ok
05:05:56.0263 2704 [ C861851A0BBD9903E324487011AA3705 ] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
05:05:56.0263 2704 C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe - ok
05:05:56.0279 2704 [ B2D4A37B12F04736362268FFC5B6F5BF ] C:\Program Files\AVAST Software\Avast\aswUtil.dll
05:05:56.0279 2704 C:\Program Files\AVAST Software\Avast\aswUtil.dll - ok
05:05:56.0279 2704 [ A08C010D859F8EB42BDD7E1D55B8CA27 ] C:\Windows\System32\mscoree.dll
05:05:56.0279 2704 C:\Windows\System32\mscoree.dll - ok
05:05:56.0279 2704 [ 3E6C518F7EBC29648FDDC87D61A7DE2C ] E:\Programs\installed programs\Launchy\plugins\controly.dll
05:05:56.0279 2704 E:\Programs\installed programs\Launchy\plugins\controly.dll - ok
05:05:56.0279 2704 [ 28CA821606669BB9215CE010767720FA ] C:\Windows\SysWOW64\cryptui.dll
05:05:56.0279 2704 C:\Windows\SysWOW64\cryptui.dll - ok
05:05:56.0295 2704 [ 3EEA2BD61C7F9216E4B7AEEF42EF3D17 ] E:\Programs\installed programs\Launchy\plugins\gcalc.dll
05:05:56.0295 2704 E:\Programs\installed programs\Launchy\plugins\gcalc.dll - ok
05:05:56.0295 2704 [ 46DA8E7484AC7A52CE1D6E428398724B ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe
05:05:56.0295 2704 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe - ok
05:05:56.0295 2704 [ 628AABA00237CD02065597F3096B01B5 ] E:\Programs\installed programs\Launchy\plugins\runner.dll
05:05:56.0295 2704 E:\Programs\installed programs\Launchy\plugins\runner.dll - ok
05:05:56.0295 2704 [ 69B9204E94BC4B71294C8E4BE578391E ] E:\Programs\installed programs\Launchy\plugins\verby.dll
05:05:56.0295 2704 E:\Programs\installed programs\Launchy\plugins\verby.dll - ok
05:05:56.0310 2704 [ 9A4AF61F1A2351FD5AE0C883E8EE5E24 ] E:\Programs\installed programs\Launchy\plugins\weby.dll
05:05:56.0310 2704 E:\Programs\installed programs\Launchy\plugins\weby.dll - ok
05:05:56.0310 2704 [ 3CB07566302BCEEB898DE270A0BEC175 ] C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
05:05:56.0310 2704 C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe - ok
05:05:56.0310 2704 [ AA794B099F776B37ACCDEAD00E0FBFC9 ] C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscoreei.dll
05:05:56.0310 2704 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscoreei.dll - ok
05:05:56.0326 2704 [ 8E2A7F1F62467A7DCB8AB2C0642F47CA ] E:\Programs\installed programs\iTunes\iTunesHelper.exe
05:05:56.0326 2704 E:\Programs\installed programs\iTunes\iTunesHelper.exe - ok
05:05:56.0326 2704 [ 3F533D75631178A880AEFFDF117213BE ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon_main.dll
05:05:56.0326 2704 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon_main.dll - ok
05:05:56.0326 2704 [ C3761661C17C2248A9379A8FB89E3DE1 ] C:\Windows\System32\stobject.dll
05:05:56.0326 2704 C:\Windows\System32\stobject.dll - ok
05:05:56.0326 2704 [ 487F44B08EFEAF5AD087878357B9403D ] C:\Windows\SysWOW64\pdh.dll
05:05:56.0326 2704 C:\Windows\SysWOW64\pdh.dll - ok
05:05:56.0341 2704 [ 539C49CEBB3C50957AC8A09D95ECD880 ] C:\Windows\SysWOW64\shfolder.dll
05:05:56.0341 2704 C:\Windows\SysWOW64\shfolder.dll - ok
05:05:56.0341 2704 [ 5082BC510FAD849630D09DA626BB7CDA ] E:\Programs\installed programs\iTunes\iTunesHelper.dll
05:05:56.0341 2704 E:\Programs\installed programs\iTunes\iTunesHelper.dll - ok
05:05:56.0341 2704 [ F832EEEA97CDDA1AF577E721F652A0D1 ] C:\Windows\System32\batmeter.dll
05:05:56.0341 2704 C:\Windows\System32\batmeter.dll - ok
05:05:56.0341 2704 [ AFEEAFD7CF8ED6958A81ACC304C17B7D ] E:\Programs\installed programs\iTunes\iTunesHelper.Resources\iTunesHelper.dll
05:05:56.0341 2704 E:\Programs\installed programs\iTunes\iTunesHelper.Resources\iTunesHelper.dll - ok
05:05:56.0357 2704 [ BE643CD44DD06DA283634A3E51DC22BC ] E:\Programs\installed programs\iTunes\iTunesHelper.Resources\en.lproj\iTunesHelperLocalized.dll
05:05:56.0357 2704 E:\Programs\installed programs\iTunes\iTunesHelper.Resources\en.lproj\iTunesHelperLocalized.dll - ok
05:05:56.0357 2704 [ 02CD5B2C3B017122CAC00BDB520CD7AC ] C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorwks.dll
05:05:56.0357 2704 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorwks.dll - ok
05:05:56.0357 2704 [ 703FFD301AB900B047337C5D40FD6F96 ] C:\Windows\SysWOW64\olepro32.dll
05:05:56.0357 2704 C:\Windows\SysWOW64\olepro32.dll - ok
05:05:56.0373 2704 [ 054C3D63885B2360EC834B9C3497867E ] C:\Program Files (x86)\DivX\DivX Media Server\DivXMediaServer.exe
05:05:56.0373 2704 C:\Program Files (x86)\DivX\DivX Media Server\DivXMediaServer.exe - ok
05:05:56.0373 2704 [ 48E0B5627E19A3AF49921D41E9C25794 ] C:\Program Files (x86)\DivX\DivX Media Server\DivXMediaServer.dll
05:05:56.0373 2704 C:\Program Files (x86)\DivX\DivX Media Server\DivXMediaServer.dll - ok
05:05:56.0373 2704 [ 81800928E0F713DF31F3393CC26F4013 ] C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe
05:05:56.0373 2704 C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe - ok
05:05:56.0373 2704 [ 2D2A6EC8EAD30EC3ACE2FD6FB1B3E122 ] C:\Windows\System32\prnfldr.dll
05:05:56.0373 2704 C:\Windows\System32\prnfldr.dll - ok
05:05:56.0388 2704 [ 7A6986DD659B96398A11AF5173892715 ] C:\Windows\SysWOW64\cabinet.dll
05:05:56.0388 2704 C:\Windows\SysWOW64\cabinet.dll - ok
05:05:56.0388 2704 [ 12916E0642E92561C98B18A2A2D01B14 ] C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
05:05:56.0388 2704 C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe - ok
05:05:56.0388 2704 [ F70A554333BCFAF67D20F1EC4D6A44B6 ] C:\Program Files (x86)\DivX\DivX Update\DivXUpdateCheck.dll
05:05:56.0388 2704 C:\Program Files (x86)\DivX\DivX Update\DivXUpdateCheck.dll - ok
05:05:56.0388 2704 [ 5298ED7C7C56A683EDCC2A8AA1A4C475 ] C:\Program Files (x86)\Common Files\DivX Shared\Qt4.5\QtCore4.dll
05:05:56.0388 2704 C:\Program Files (x86)\Common Files\DivX Shared\Qt4.5\QtCore4.dll - ok
05:05:56.0404 2704 [ 37CF3324F46CEB3A4F2686C617CBB35C ] C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\iTunesMobileDevice.dll
05:05:56.0404 2704 C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\iTunesMobileDevice.dll - ok
05:05:56.0404 2704 [ 42A9CB6906D9A8BEDC83B57163E62924 ] C:\Windows\System32\DXP.dll
05:05:56.0404 2704 C:\Windows\System32\DXP.dll - ok
05:05:56.0404 2704 [ 33975A7AF1AF19E24E773948A7257407 ] C:\Program Files\Internet Explorer\sqmapi.dll
05:05:56.0404 2704 C:\Program Files\Internet Explorer\sqmapi.dll - ok
05:05:56.0419 2704 [ 2BC7C9FD0A9F2C9AFC373F3AD1EE3891 ] C:\Windows\System32\Syncreg.dll
05:05:56.0419 2704 C:\Windows\System32\Syncreg.dll - ok
05:05:56.0419 2704 [ C836175870E00ACC546066632E15BD10 ] C:\Windows\ehome\ehSSO.dll
05:05:56.0419 2704 C:\Windows\ehome\ehSSO.dll - ok
05:05:56.0419 2704 [ E7368F0A8D19445EAF5C5D0DBB8B8DAB ] C:\Windows\System32\AltTab.dll
05:05:56.0419 2704 C:\Windows\System32\AltTab.dll - ok
05:05:56.0419 2704 [ 58B8702C20DE211D1FCB248D2FDD71D1 ] C:\Program Files (x86)\Adobe\Reader 11.0\Reader\reader_sl.exe
05:05:56.0419 2704 C:\Program Files (x86)\Adobe\Reader 11.0\Reader\reader_sl.exe - ok
05:05:56.0435 2704 [ C8FDF0FA9E97E2FAAF3F814716AAA881 ] C:\Windows\System32\WPDShServiceObj.dll
05:05:56.0435 2704 C:\Windows\System32\WPDShServiceObj.dll - ok
05:05:56.0435 2704 [ E0B340996A41C9A75DFA3B99BBA9C500 ] C:\Windows\System32\SearchIndexer.exe
05:05:56.0435 2704 C:\Windows\System32\SearchIndexer.exe - ok
05:05:56.0435 2704 [ 10F815BE90A66AAFC6C713D1BD626064 ] C:\Windows\System32\pnidui.dll
05:05:56.0435 2704 C:\Windows\System32\pnidui.dll - ok
05:05:56.0435 2704 [ BC83108B18756547013ED443B8CDB31B ] C:\Windows\SysWOW64\msvcp100.dll
05:05:56.0435 2704 C:\Windows\SysWOW64\msvcp100.dll - ok
05:05:56.0451 2704 [ B3CE0951E3C1EA3C733573C472EE85F9 ] C:\Windows\System32\msimtf.dll
05:05:56.0451 2704 C:\Windows\System32\msimtf.dll - ok
05:05:56.0451 2704 [ DE3C3B1B4FA5FBF1F17BCD3B3AE1ED15 ] C:\Windows\System32\jscript9.dll
05:05:56.0451 2704 C:\Windows\System32\jscript9.dll - ok
05:05:56.0451 2704 [ 0E37FBFA79D349D672456923EC5FBBE3 ] C:\Windows\SysWOW64\msvcr100.dll
05:05:56.0451 2704 C:\Windows\SysWOW64\msvcr100.dll - ok
05:05:56.0451 2704 [ 589DF683A6C81424A6CECE52ABF98A50 ] C:\Windows\System32\tquery.dll
05:05:56.0451 2704 C:\Windows\System32\tquery.dll - ok
05:05:56.0466 2704 [ 778D6ADBA6D49578EA45F600DAF4687B ] C:\Program Files (x86)\Common Files\DivX Shared\Qt4.5\QtGui4.dll
05:05:56.0466 2704 C:\Program Files (x86)\Common Files\DivX Shared\Qt4.5\QtGui4.dll - ok
05:05:56.0466 2704 [ 9D18C01DB929E266BEF674BAF05327F7 ] C:\Program Files (x86)\Common Files\DivX Shared\Qt4.5\QtNetwork4.dll
05:05:56.0466 2704 C:\Program Files (x86)\Common Files\DivX Shared\Qt4.5\QtNetwork4.dll - ok
05:05:56.0466 2704 [ B9F0A4020AA98B7A20287BF7FE99A1FD ] C:\Windows\System32\QUTIL.DLL
05:05:56.0466 2704 C:\Windows\System32\QUTIL.DLL - ok
05:05:56.0482 2704 [ 759459C1F63DB26A697F2FAFFB6E53FA ] C:\Program Files (x86)\DivX\DivX Media Server\mc_net_tools.dll
05:05:56.0482 2704 C:\Program Files (x86)\DivX\DivX Media Server\mc_net_tools.dll - ok
05:05:56.0482 2704 [ C746F3BF98E92FB137B5BD2B8B5925BD ] C:\Windows\System32\FXSST.dll
05:05:56.0482 2704 C:\Windows\System32\FXSST.dll - ok
05:05:56.0482 2704 [ 02822A800B7DCA94FD93E7830AB17C1F ] C:\Program Files (x86)\DivX\DivX Media Server\mc_upnp_dlna_stack.dll
05:05:56.0482 2704 C:\Program Files (x86)\DivX\DivX Media Server\mc_upnp_dlna_stack.dll - ok
05:05:56.0482 2704 [ CBF6635C8B571CCFEDB587A6AA54B1FD ] C:\Program Files (x86)\DivX\DivX Media Server\mc_demux_mp4.dll
05:05:56.0482 2704 C:\Program Files (x86)\DivX\DivX Media Server\mc_demux_mp4.dll - ok
05:05:56.0497 2704 [ E9783CC39A9D56867CDBFA1BD57F1431 ] C:\Program Files\AVAST Software\Avast\aswJsFlt64.dll
05:05:56.0497 2704 C:\Program Files\AVAST Software\Avast\aswJsFlt64.dll - ok
05:05:56.0497 2704 [ 650CAEA856943E29F25A25D31E004B18 ] C:\Windows\System32\FXSAPI.dll
05:05:56.0497 2704 C:\Windows\System32\FXSAPI.dll - ok
05:05:56.0497 2704 [ 06B8DE3F7E13164A76DA82BBB717EE7C ] C:\PROGRA~1\AVASTS~1\Avast\AavmRpch64.dll
05:05:56.0497 2704 C:\PROGRA~1\AVASTS~1\Avast\AavmRpch64.dll - ok
05:05:56.0513 2704 [ 05226CE1D6D86E5D5D184F01F70A1904 ] C:\Program Files (x86)\DivX\DivX Media Server\mc_dec_avc.dll
05:05:56.0513 2704 C:\Program Files (x86)\DivX\DivX Media Server\mc_dec_avc.dll - ok
05:05:56.0513 2704 [ 7568CC720ACE4D03B84AF97817E745EF ] C:\Windows\System32\mssrch.dll
05:05:56.0513 2704 C:\Windows\System32\mssrch.dll - ok
05:05:56.0513 2704 [ F35A2836A9983FEDA37E0C762747D51E ] C:\Program Files (x86)\DivX\DivX Media Server\mc_dec_aac.dll
05:05:56.0513 2704 C:\Program Files (x86)\DivX\DivX Media Server\mc_dec_aac.dll - ok
05:05:56.0513 2704 [ C8E8B8239FCF17BEA10E751BE5854631 ] C:\Windows\System32\FXSRESM.dll
05:05:56.0513 2704 C:\Windows\System32\FXSRESM.dll - ok
05:05:56.0529 2704 [ 7E8A672B7B06A6EB11960C22E0360C59 ] C:\Windows\System32\d2d1.dll
05:05:56.0529 2704 C:\Windows\System32\d2d1.dll - ok
05:05:56.0529 2704 [ B302DB9A2DA1EC355246CC3A15E27F2F ] C:\Program Files (x86)\DivX\DivX Media Server\mc_mux_mp2.dll
05:05:56.0529 2704 C:\Program Files (x86)\DivX\DivX Media Server\mc_mux_mp2.dll - ok
05:05:56.0529 2704 [ E17B989C1FDB9BD2AE51A7DEEE048B2D ] C:\Program Files (x86)\DivX\DivX Media Server\mc_enc_mp2v.dll
05:05:56.0529 2704 C:\Program Files (x86)\DivX\DivX Media Server\mc_enc_mp2v.dll - ok
05:05:56.0529 2704 [ E809484D8E8D63AAD1AACD3BF9D3DE72 ] C:\Program Files (x86)\DivX\DivX Media Server\mc_enc_mpa.dll
05:05:56.0529 2704 C:\Program Files (x86)\DivX\DivX Media Server\mc_enc_mpa.dll - ok
05:05:56.0544 2704 [ 234AFA322624B3203A2E720F08292B03 ] C:\Windows\System32\cscobj.dll
05:05:56.0544 2704 C:\Windows\System32\cscobj.dll - ok
05:05:56.0544 2704 [ 8569E35D00F45972E506502EEE622BA4 ] C:\Windows\System32\srchadmin.dll
05:05:56.0544 2704 C:\Windows\System32\srchadmin.dll - ok
05:05:56.0544 2704 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] C:\Windows\System32\FXSSVC.exe
05:05:56.0544 2704 C:\Windows\System32\FXSSVC.exe - ok
05:05:56.0560 2704 [ CA6ADE4F7761BB15B3325356DC3B82BB ] C:\Windows\winsxs\x86_microsoft.vc90.mfc_1fc8b3b9a1e18e3b_9.0.30729.6161_none_4bf7e3e2bf9ada4c\mfc90u.dll
05:05:56.0560 2704 C:\Windows\winsxs\x86_microsoft.vc90.mfc_1fc8b3b9a1e18e3b_9.0.30729.6161_none_4bf7e3e2bf9ada4c\mfc90u.dll - ok
05:05:56.0560 2704 [ 06A754FE28A06F780A099703CFCAAA22 ] C:\Windows\winsxs\amd64_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.4940_none_88df89932faf0bf6\msvcr80.dll
05:05:56.0560 2704 C:\Windows\winsxs\amd64_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.4940_none_88df89932faf0bf6\msvcr80.dll - ok
05:05:56.0560 2704 [ 63BB89DED1E9104E68D33E54DE4D340D ] C:\Windows\System32\DWrite.dll
05:05:56.0560 2704 C:\Windows\System32\DWrite.dll - ok
05:05:56.0560 2704 [ FBFCA1A574D47EE575448B719CBBF2E4 ] C:\Windows\winsxs\x86_microsoft.vc90.mfcloc_1fc8b3b9a1e18e3b_9.0.30729.6161_none_49768ef57548175e\MFC90ENU.DLL
05:05:56.0560 2704 C:\Windows\winsxs\x86_microsoft.vc90.mfcloc_1fc8b3b9a1e18e3b_9.0.30729.6161_none_49768ef57548175e\MFC90ENU.DLL - ok
05:05:56.0575 2704 [ 7EA351E5AB744DC2C22D98E23485A262 ] C:\Program Files\AVAST Software\Avast\aswAra.dll
05:05:56.0575 2704 C:\Program Files\AVAST Software\Avast\aswAra.dll - ok
05:05:56.0575 2704 [ 520C1168F1D8447EFDE7C101CA5E75EC ] C:\Program Files\AVAST Software\Avast\aswData.dll
05:05:56.0575 2704 C:\Program Files\AVAST Software\Avast\aswData.dll - ok
05:05:56.0575 2704 [ 9F0E7FBD08442DDCF856E933D26A296C ] C:\Program Files\AVAST Software\Avast\1033\uiLangRes.dll
05:05:56.0575 2704 C:\Program Files\AVAST Software\Avast\1033\uiLangRes.dll - ok
05:05:56.0575 2704 [ AB3C4A3667AEAD147F175721D8719B78 ] C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe
05:05:56.0575 2704 C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe - ok
05:05:56.0591 2704 [ ED13869C11FD522B80EDF712D77251F1 ] C:\Program Files\AVAST Software\Avast\CommonRes.dll
05:05:56.0591 2704 C:\Program Files\AVAST Software\Avast\CommonRes.dll - ok
05:05:56.0591 2704 [ C498EF41B93986BCBD483597573EB96D ] C:\Windows\System32\d3d10warp.dll
05:05:56.0591 2704 C:\Windows\System32\d3d10warp.dll - ok
05:05:56.0591 2704 [ 544EFF88AC6C85DF5A4D6F18DFE08CFC ] C:\Windows\SysWOW64\taskschd.dll
05:05:56.0591 2704 C:\Windows\SysWOW64\taskschd.dll - ok
05:05:56.0591 2704 [ 2C1BB3AD51826AA96C9802CBC123814F ] C:\Windows\assembly\NativeImages_v2.0.50727_64\mscorlib\51a23687fdafc32b697f5a719e364651\mscorlib.ni.dll
05:05:56.0591 2704 C:\Windows\assembly\NativeImages_v2.0.50727_64\mscorlib\51a23687fdafc32b697f5a719e364651\mscorlib.ni.dll - ok
05:05:56.0607 2704 [ 1B1431D9520C7578AD5633ED2A70625F ] C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorjit.dll
05:05:56.0607 2704 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorjit.dll - ok
05:05:56.0607 2704 [ EDF2A5E96BEC469DA3F64E9BDD386111 ] C:\Windows\SysWOW64\xmllite.dll
05:05:56.0607 2704 C:\Windows\SysWOW64\xmllite.dll - ok
05:05:56.0607 2704 [ 38A0BE38EB53510AB425E33EA0847AD6 ] C:\Windows\SysWOW64\Macromed\Flash\Flash32_11_6_602_180.ocx
05:05:56.0607 2704 C:\Windows\SysWOW64\Macromed\Flash\Flash32_11_6_602_180.ocx - ok
05:05:56.0622 2704 [ 3D2D108E14AD21889A2621B94C80A3DD ] C:\Windows\System32\tzres.dll
05:05:56.0622 2704 C:\Windows\System32\tzres.dll - ok
05:05:56.0622 2704 [ A6C09924C6730DE8DEED9890A12AA691 ] C:\Windows\System32\ddraw.dll
05:05:56.0622 2704 C:\Windows\System32\ddraw.dll - ok
05:05:56.0622 2704 [ 29C22748937F45C26590909E9F8E7137 ] C:\Windows\System32\dciman32.dll
05:05:56.0622 2704 C:\Windows\System32\dciman32.dll - ok
05:05:56.0622 2704 [ 6B98C97F5321350D0BD00B1E3DA8BEBD ] C:\Windows\System32\atiu9p64.dll
05:05:56.0622 2704 C:\Windows\System32\atiu9p64.dll - ok
05:05:56.0638 2704 [ 9682D5B9D9309377C1A7E08C3E6B7B3D ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System\6be6efa1e2ffc9d46e99839edac5c5a8\System.ni.dll
05:05:56.0638 2704 C:\Windows\assembly\NativeImages_v2.0.50727_64\System\6be6efa1e2ffc9d46e99839edac5c5a8\System.ni.dll - ok
05:05:56.0638 2704 [ 678C1A5ED857DF592948ACD82789995B ] C:\Windows\System32\atiumd64.dll
05:05:56.0638 2704 C:\Windows\System32\atiumd64.dll - ok
05:05:56.0638 2704 [ 28638660E651578C354BF43CD646EF6D ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Drawing\672fc9526d8954656bcb46e42082e09c\System.Drawing.ni.dll
05:05:56.0638 2704 C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Drawing\672fc9526d8954656bcb46e42082e09c\System.Drawing.ni.dll - ok
05:05:56.0653 2704 [ C5413BC4F10CEB4C3070BBF04D324117 ] C:\Windows\SysWOW64\msisip.dll
05:05:56.0653 2704 C:\Windows\SysWOW64\msisip.dll - ok
05:05:56.0653 2704 [ 24D1C3688428B71C35810A49B0EC94F3 ] C:\Windows\System32\atiumd6a.dll
05:05:56.0653 2704 C:\Windows\System32\atiumd6a.dll - ok
05:05:56.0653 2704 [ B78E390C802B8F0D2BAF4F8B181318A0 ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Windows.Forms\e644aa1f8f3898d38876168757db0d9b\System.Windows.Forms.ni.dll
05:05:56.0653 2704 C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Windows.Forms\e644aa1f8f3898d38876168757db0d9b\System.Windows.Forms.ni.dll - ok
05:05:56.0653 2704 [ 8965A4CAA8E006F5F32D084CABD3679E ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Runtime.Remo#\ad25afb3a0820b92f311d6897df82e5f\System.Runtime.Remoting.ni.dll
05:05:56.0653 2704 C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Runtime.Remo#\ad25afb3a0820b92f311d6897df82e5f\System.Runtime.Remoting.ni.dll - ok
05:05:56.0669 2704 [ D28C5A1411BB0B47E05E0D6AAF896690 ] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
05:05:56.0669 2704 C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe - ok
05:05:56.0669 2704 [ 7F8678C59F188528D60104E697C2361E ] C:\Windows\SysWOW64\mscms.dll
05:05:56.0669 2704 C:\Windows\SysWOW64\mscms.dll - ok
05:05:56.0669 2704 [ 81C0FA250EF6DC1C6B3FA2BCE81D6C2E ] C:\Windows\SysWOW64\WinSATAPI.dll
05:05:56.0669 2704 C:\Windows\SysWOW64\WinSATAPI.dll - ok
05:05:56.0669 2704 [ EAADD6E47ED2A7003ACE1793B98CF63F ] C:\Windows\SysWOW64\msxml6.dll
05:05:56.0669 2704 C:\Windows\SysWOW64\msxml6.dll - ok
05:05:56.0685 2704 [ 032576807935CB5425E7E9AB04738DE5 ] C:\Windows\SysWOW64\MCTU.dll
05:05:56.0685 2704 C:\Windows\SysWOW64\MCTU.dll - ok
05:05:56.0685 2704 [ CEEBE0075F874BF9E36F62E050FE6D42 ] C:\Windows\SysWOW64\aticfx32.dll
05:05:56.0685 2704 C:\Windows\SysWOW64\aticfx32.dll - ok
05:05:56.0685 2704 [ BC6B44346B899E5EF5ED40FE2712E4C3 ] C:\Windows\SysWOW64\atiu9pag.dll
05:05:56.0685 2704 C:\Windows\SysWOW64\atiu9pag.dll - ok
05:05:56.0700 2704 [ CEDA19379B28893D717AF2E6516568E5 ] C:\Windows\SysWOW64\atiumdag.dll
05:05:56.0700 2704 C:\Windows\SysWOW64\atiumdag.dll - ok
05:05:56.0700 2704 [ 050E000D89D4FB750B124380020674E9 ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Web\09a751d0d4d6e7af82c1d2844eefd34a\System.Web.ni.dll
05:05:56.0700 2704 C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Web\09a751d0d4d6e7af82c1d2844eefd34a\System.Web.ni.dll - ok
05:05:56.0700 2704 [ 5AAA847845A6B3A547177325F4E1CCAA ] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MMLoadDrv.exe
05:05:56.0700 2704 C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MMLoadDrv.exe - ok
05:05:56.0700 2704 [ 67EC459E42D3081DD8FD34356F7CAFC1 ] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\msvcr100.dll
05:05:56.0700 2704 C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\msvcr100.dll - ok
05:05:56.0716 2704 [ 0AE0C4955E1DE29CCDC9DA1B816FE5EE ] C:\Windows\SysWOW64\quartz.dll
05:05:56.0716 2704 C:\Windows\SysWOW64\quartz.dll - ok
05:05:56.0716 2704 [ 5CCD5B62076D4432D4728BB6CB3DEBFD ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Xml\7a560781987776298120763de1df8f77\System.Xml.ni.dll
05:05:56.0716 2704 C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Xml\7a560781987776298120763de1df8f77\System.Xml.ni.dll - ok
05:05:56.0716 2704 [ A68344C47CFF2B5CF147C2BEC656BE3E ] C:\Windows\SysWOW64\atiumdva.dll
05:05:56.0716 2704 C:\Windows\SysWOW64\atiumdva.dll - ok
05:05:56.0716 2704 [ 1F27643C4C626457FCE8F047AE1CD7E1 ] C:\Windows\SysWOW64\dxva2.dll
05:05:56.0716 2704 C:\Windows\SysWOW64\dxva2.dll - ok
05:05:56.0731 2704 [ 4BDBBE5E4208022DD794F7EEEB0F7366 ] C:\Windows\SysWOW64\SPInf.dll
05:05:56.0731 2704 C:\Windows\SysWOW64\SPInf.dll - ok
05:05:56.0731 2704 [ 8323B32A6FC3FCD7E5C8BA94B36CE162 ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Configuration\3762e80651ff8d0bbcdb0ccebfb3b3f7\System.Configuration.ni.dll
05:05:56.0731 2704 C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Configuration\3762e80651ff8d0bbcdb0ccebfb3b3f7\System.Configuration.ni.dll - ok
05:05:56.0731 2704 [ 2F61339B93FC546E1F7EC317FC83F629 ] C:\Windows\System32\atipdl64.dll
05:05:56.0731 2704 C:\Windows\System32\atipdl64.dll - ok
05:05:56.0747 2704 [ 89344657836F91640F3DDB235D0E7F73 ] C:\Windows\assembly\NativeImages_v2.0.50727_64\WindowsBase\5f684be17ae6b826f6f9eaa170b41b05\WindowsBase.ni.dll
05:05:56.0747 2704 C:\Windows\assembly\NativeImages_v2.0.50727_64\WindowsBase\5f684be17ae6b826f6f9eaa170b41b05\WindowsBase.ni.dll - ok
05:05:56.0747 2704 [ 571968A0D6E54451F6F3626B5C89FCFD ] C:\Program Files\AVAST Software\Avast\defs\13041501\uiext.dll
05:05:56.0747 2704 C:\Program Files\AVAST Software\Avast\defs\13041501\uiext.dll - ok
05:05:56.0747 2704 [ CA79539D3D4C0BA66F0F051A5EE5E923 ] C:\Windows\SysWOW64\cryptnet.dll
05:05:56.0747 2704 C:\Windows\SysWOW64\cryptnet.dll - ok
05:05:56.0747 2704 [ 3121A79D13A61562BE9CC902CD46B542 ] C:\Windows\System32\msidle.dll
05:05:56.0747 2704 C:\Windows\System32\msidle.dll - ok
05:05:56.0763 2704 [ 6D137963730144698CBD10F202E9F251 ] C:\Windows\System32\wersvc.dll
05:05:56.0763 2704 C:\Windows\System32\wersvc.dll - ok
05:05:56.0763 2704 [ D2155709E336C3BC15729EB87FEC6064 ] C:\Windows\System32\rasdlg.dll
05:05:56.0763 2704 C:\Windows\System32\rasdlg.dll - ok
05:05:56.0763 2704 [ 4EFFC8FF6D349E971E94B1C670C0C66A ] C:\Program Files\iPod\bin\iPodService.exe
05:05:56.0763 2704 C:\Program Files\iPod\bin\iPodService.exe - ok
05:05:56.0763 2704 [ ACE1BB07E0377E37A2C514CD2EC119B1 ] C:\Windows\System32\mssprxy.dll
05:05:56.0763 2704 C:\Windows\System32\mssprxy.dll - ok
05:05:56.0778 2704 [ 1CBF15FDB0310345A68972EB5C5B948F ] C:\Windows\SysWOW64\mssprxy.dll
05:05:56.0778 2704 C:\Windows\SysWOW64\mssprxy.dll - ok
05:05:56.0778 2704 [ C9FB9038B15036CA28CF0B4BE2BED9BD ] C:\Windows\System32\en-US\tquery.dll.mui
05:05:56.0778 2704 C:\Windows\System32\en-US\tquery.dll.mui - ok
05:05:56.0778 2704 [ F9AFD12BB4B1CFA5FCC0A5B37C604FD2 ] C:\Windows\System32\dot3api.dll
05:05:56.0778 2704 C:\Windows\System32\dot3api.dll - ok
05:05:56.0778 2704 [ B4E69051E313551F894C74B12042485D ] C:\Program Files\iPod\bin\iPodService.Resources\iPodService.dll
05:05:56.0778 2704 C:\Program Files\iPod\bin\iPodService.Resources\iPodService.dll - ok
05:05:56.0794 2704 [ 1105A14047A0D99C2770601EB61FBF5C ] C:\Program Files\iPod\bin\iPodService.Resources\en.lproj\iPodServiceLocalized.dll
05:05:56.0794 2704 C:\Program Files\iPod\bin\iPodService.Resources\en.lproj\iPodServiceLocalized.dll - ok
05:05:56.0794 2704 [ E4FCA0F99A41E460C84016DEFD31E6EF ] C:\Windows\System32\wlanhlp.dll
05:05:56.0794 2704 C:\Windows\System32\wlanhlp.dll - ok
05:05:56.0794 2704 [ 357BE883C5236BFC7341CB9E82308908 ] C:\Windows\System32\wlanapi.dll
05:05:56.0794 2704 C:\Windows\System32\wlanapi.dll - ok
05:05:56.0794 2704 [ 7F1B4C6FF3B85F9ADF74055187B8A22C ] C:\Windows\System32\wlanutil.dll
05:05:56.0794 2704 C:\Windows\System32\wlanutil.dll - ok
05:05:56.0809 2704 [ 73FCB7919DEE80EE556F2E498594EBAE ] C:\Windows\System32\onex.dll
05:05:56.0809 2704 C:\Windows\System32\onex.dll - ok
05:05:56.0809 2704 [ 40F32985B19F18CCD47044078B744805 ] C:\Program Files\Common Files\ATI Technologies\Multimedia\atixcode64.dll
05:05:56.0809 2704 C:\Program Files\Common Files\ATI Technologies\Multimedia\atixcode64.dll - ok
05:05:56.0809 2704 [ 7AE92C896AF9ABFBDB18C1D055B6EBA7 ] C:\Windows\winsxs\amd64_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.4940_none_88df89932faf0bf6\msvcp80.dll
05:05:56.0809 2704 C:\Windows\winsxs\amd64_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.4940_none_88df89932faf0bf6\msvcp80.dll - ok
05:05:56.0825 2704 [ 6699A112A3BDC9B52338512894EBA9D6 ] C:\Program Files\Windows Media Player\wmpnscfg.exe
05:05:56.0825 2704 C:\Program Files\Windows Media Player\wmpnscfg.exe - ok
05:05:56.0825 2704 [ 5DA219F57A9076FB6FBD3C9C3713A672 ] C:\Windows\System32\WWanAPI.dll
05:05:56.0825 2704 C:\Windows\System32\WWanAPI.dll - ok
05:05:56.0825 2704 [ C7494C67A6BF6FE914808E42F8265FEF ] C:\Program Files\Windows Media Player\wmpnssci.dll
05:05:56.0825 2704 C:\Program Files\Windows Media Player\wmpnssci.dll - ok
05:05:56.0825 2704 [ 62C7AACC746C9723468A8F2169ED3E85 ] C:\Windows\System32\wwapi.dll
05:05:56.0825 2704 C:\Windows\System32\wwapi.dll - ok
05:05:56.0841 2704 [ 6B851E682A36453E1B1EE297FFB6E2AB ] C:\Windows\System32\QAGENT.DLL
05:05:56.0841 2704 C:\Windows\System32\QAGENT.DLL - ok
05:05:56.0841 2704 [ A9F3BFC9345F49614D5859EC95B9E994 ] C:\Program Files\Windows Media Player\wmpnetwk.exe
05:05:56.0841 2704 C:\Program Files\Windows Media Player\wmpnetwk.exe - ok
05:05:56.0841 2704 [ 68EA236ACD9BE9224ECBAF7002C16814 ] C:\Program Files\Common Files\ATI Technologies\Multimedia\atimpenc64.dll
05:05:56.0841 2704 C:\Program Files\Common Files\ATI Technologies\Multimedia\atimpenc64.dll - ok
05:05:56.0841 2704 [ 4C3DAEE652B005B483F16B8E9131C99D ] C:\Windows\System32\d3d9.dll
05:05:56.0841 2704 C:\Windows\System32\d3d9.dll - ok
05:05:56.0856 2704 [ E36112A8A6C7F840169A7E92C12F4203 ] C:\Windows\System32\wsock32.dll
05:05:56.0856 2704 C:\Windows\System32\wsock32.dll - ok
05:05:56.0856 2704 [ 2C1055E2C6D42753241FB2A129136994 ] C:\Windows\System32\drmv2clt.dll
05:05:56.0856 2704 C:\Windows\System32\drmv2clt.dll - ok
05:05:56.0856 2704 [ 423982DD851406A52B6399DDB196C606 ] C:\Windows\System32\wmdrmdev.dll
05:05:56.0856 2704 C:\Windows\System32\wmdrmdev.dll - ok
05:05:56.0856 2704 [ 3AE2251D8F01FA00E650B38E6E29291D ] C:\ProgramData\Microsoft\Windows\DRM\Cache\Indiv_SID_S-1-5-20\Indiv01_64.key
05:05:56.0856 2704 C:\ProgramData\Microsoft\Windows\DRM\Cache\Indiv_SID_S-1-5-20\Indiv01_64.key - ok
05:05:56.0872 2704 [ 3044D07ABDF4BBEA27E2EE7B1E0C0C65 ] C:\Windows\System32\d3d8thk.dll
05:05:56.0872 2704 C:\Windows\System32\d3d8thk.dll - ok
05:05:56.0872 2704 [ 1EB82516F21F27EED1833B4F9FD9614E ] C:\Windows\System32\wmp.dll
05:05:56.0872 2704 C:\Windows\System32\wmp.dll - ok
05:05:56.0872 2704 [ 65EA57712340C09B1B0C427B4848AE05 ] C:\Windows\System32\taskeng.exe
05:05:56.0872 2704 C:\Windows\System32\taskeng.exe - ok
05:05:56.0887 2704 [ 805A52C5AE26C28E88FDD9BCCFE6F312 ] C:\Windows\System32\TSChannel.dll
05:05:56.0887 2704 C:\Windows\System32\TSChannel.dll - ok
05:05:56.0887 2704 [ E19AD0D49BFF5938B3E374873AC174DE ] C:\Windows\System32\wmploc.DLL
05:05:56.0887 2704 C:\Windows\System32\wmploc.DLL - ok
05:05:56.0887 2704 [ 7BB710183AAD6C420A8FAF7C4ABC6384 ] C:\Windows\assembly\NativeImages_v2.0.50727_64\PresentationCore\68f908f70841f6159b1124f89029ef77\PresentationCore.ni.dll
05:05:56.0887 2704 C:\Windows\assembly\NativeImages_v2.0.50727_64\PresentationCore\68f908f70841f6159b1124f89029ef77\PresentationCore.ni.dll - ok
05:05:56.0887 2704 [ 41446E7545BB7B4167DE8A274CC924E3 ] C:\Program Files\Internet Explorer\ieproxy.dll
05:05:56.0887 2704 C:\Program Files\Internet Explorer\ieproxy.dll - ok
05:05:56.0903 2704 [ 355A138ABDFD43FBABCAE3A1B06AB93D ] C:\Windows\System32\wmpps.dll
05:05:56.0903 2704 C:\Windows\System32\wmpps.dll - ok
05:05:56.0903 2704 [ 0017163E0D5985168792BEE5CF70D5DF ] C:\Windows\Microsoft.NET\Framework64\v2.0.50727\diasymreader.dll
05:05:56.0903 2704 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\diasymreader.dll - ok
05:05:56.0903 2704 [ D64D99EC088B54FFE8EE67A480386C20 ] C:\Windows\Microsoft.NET\Framework64\v2.0.50727\Culture.dll
05:05:56.0903 2704 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\Culture.dll - ok
05:05:56.0903 2704 [ 1D5A06280E3E6C07950FAAA4D153269B ] C:\Windows\assembly\NativeImages_v2.0.50727_64\PresentationFramewo#\f30de4ac82d4a89c959a7f525ba05aed\PresentationFramework.ni.dll
05:05:56.0903 2704 C:\Windows\assembly\NativeImages_v2.0.50727_64\PresentationFramewo#\f30de4ac82d4a89c959a7f525ba05aed\PresentationFramework.ni.dll - ok
05:05:56.0919 2704 [ C264145F107437CBD3B30303733AEE4F ] C:\Windows\assembly\GAC_64\PresentationCore\3.0.0.0__31bf3856ad364e35\PresentationCore.dll
05:05:56.0919 2704 C:\Windows\assembly\GAC_64\PresentationCore\3.0.0.0__31bf3856ad364e35\PresentationCore.dll - ok
05:05:56.0919 2704 [ B837D1528CE2E3CB79F09496BC08DDC6 ] C:\Windows\System32\SensApi.dll
05:05:56.0919 2704 C:\Windows\System32\SensApi.dll - ok
05:05:56.0919 2704 [ C8541AECCCA9260DE93C85F214110FA8 ] C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\wpfgfx_v0300.dll
05:05:56.0919 2704 C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\wpfgfx_v0300.dll - ok
05:05:56.0934 2704 [ 0BF4362E18DFC52382F418278DCC52C4 ] C:\Windows\System32\rdpdd.dll
05:05:56.0934 2704 C:\Windows\System32\rdpdd.dll - ok
05:05:56.0934 2704 [ FF6148B1C150DA05D35C68D143AD6DEA ] C:\Windows\System32\RDPENCDD.dll
05:05:56.0934 2704 C:\Windows\System32\RDPENCDD.dll - ok
05:05:56.0934 2704 [ A23A9301EE7152FB6776052E52BDE9D9 ] C:\Windows\System32\RDPREFDD.dll
05:05:56.0934 2704 C:\Windows\System32\RDPREFDD.dll - ok
05:05:56.0934 2704 [ C5A75EB48E2344ABDC162BDA79E16841 ] C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
05:05:56.0934 2704 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe - ok
05:05:56.0950 2704 [ E5F7C30EDF0892667933BE879F067D67 ] C:\Windows\SysWOW64\msvcr100_clr0400.dll
05:05:56.0950 2704 C:\Windows\SysWOW64\msvcr100_clr0400.dll - ok
05:05:56.0950 2704 [ D83947A58613E9091B4C9CC0F1546A8D ] C:\Windows\SysWOW64\mscoree.dll
05:05:56.0950 2704 C:\Windows\SysWOW64\mscoree.dll - ok
05:05:56.0950 2704 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
05:05:56.0950 2704 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe - ok
05:05:56.0965 2704 [ CB21CD39637AC13F3455454B2F648257 ] C:\Windows\System32\msvcr100_clr0400.dll
05:05:56.0965 2704 C:\Windows\System32\msvcr100_clr0400.dll - ok
05:05:56.0965 2704 [ ADE059F2599D02D8A627357D410BF713 ] C:\Windows\System32\networkitemfactory.dll
05:05:56.0965 2704 C:\Windows\System32\networkitemfactory.dll - ok
05:05:56.0965 2704 [ BBDF608C1D964C6C4B8E8CF71059F09E ] C:\Windows\System32\dtsh.dll
05:05:56.0965 2704 C:\Windows\System32\dtsh.dll - ok
05:05:56.0981 2704 [ 5F639198C4137075DA50E61C23963C11 ] C:\Windows\System32\drprov.dll
05:05:56.0981 2704 C:\Windows\System32\drprov.dll - ok
05:05:56.0981 2704 [ BC566D17914B07ABAAB3A5A385CC3300 ] C:\Windows\System32\ntlanman.dll
05:05:56.0981 2704 C:\Windows\System32\ntlanman.dll - ok
05:05:56.0981 2704 [ B3A33600DCDFB84D7FBE09ADEB1C9B8A ] C:\Windows\System32\davclnt.dll
05:05:56.0981 2704 C:\Windows\System32\davclnt.dll - ok
05:05:56.0997 2704 [ 45B24A357C801CE62052FE0CDC8BD4D2 ] C:\Windows\System32\davhlpr.dll
05:05:56.0997 2704 C:\Windows\System32\davhlpr.dll - ok
05:05:56.0997 2704 [ 4E81439902079C348B61D7FF027FE147 ] C:\Windows\System32\StructuredQuery.dll
05:05:56.0997 2704 C:\Windows\System32\StructuredQuery.dll - ok
05:05:56.0997 2704 [ 4715F8F8CDBFFF2728BA38B789A1D7C7 ] C:\Windows\System32\wpdshext.dll
05:05:56.0997 2704 C:\Windows\System32\wpdshext.dll - ok
05:05:56.0997 2704 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] C:\Windows\System32\wuaueng.dll
05:05:56.0997 2704 C:\Windows\System32\wuaueng.dll - ok
05:05:57.0012 2704 [ 0438CAB2E03F4FB61455A7956026FE86 ] C:\Windows\System32\fdPHost.dll
05:05:57.0012 2704 C:\Windows\System32\fdPHost.dll - ok
05:05:57.0012 2704 [ BC0D4AFBE94D8E1F81C8926D805C3366 ] C:\Windows\System32\webcheck.dll
05:05:57.0012 2704 C:\Windows\System32\webcheck.dll - ok
05:05:57.0012 2704 [ 171D7DB433314A868507C4326E8209DC ] C:\Windows\System32\fdWSD.dll
05:05:57.0012 2704 C:\Windows\System32\fdWSD.dll - ok
05:05:57.0012 2704 [ 8494E126F0B10180F3293AF861CE1F7A ] C:\Windows\System32\mlang.dll
05:05:57.0012 2704 C:\Windows\System32\mlang.dll - ok
05:05:57.0028 2704 [ 101797BA603D227946B4B5109867EB19 ] C:\Windows\System32\SyncCenter.dll
05:05:57.0028 2704 C:\Windows\System32\SyncCenter.dll - ok
05:05:57.0028 2704 [ A2E5B2D20954210DCE1A75A1FC8CC36D ] C:\Windows\System32\fdSSDP.dll
05:05:57.0028 2704 C:\Windows\System32\fdSSDP.dll - ok
05:05:57.0028 2704 [ 2A436796758BF2555A26C770FE8A6FEE ] C:\Windows\System32\fdProxy.dll
05:05:57.0028 2704 C:\Windows\System32\fdProxy.dll - ok
05:05:57.0043 2704 [ 8130391F82D52D36C0441F714136957F ] C:\Windows\System32\imapi2.dll
05:05:57.0043 2704 C:\Windows\System32\imapi2.dll - ok
05:05:57.0043 2704 [ E8F451D61B2CBE5922A873B340C1A522 ] C:\Windows\System32\fdWCN.dll
05:05:57.0043 2704 C:\Windows\System32\fdWCN.dll - ok
05:05:57.0043 2704 [ 51EE70CA4B0F0FF8FEF5002DE2C40782 ] C:\Windows\System32\WcnApi.dll
05:05:57.0043 2704 C:\Windows\System32\WcnApi.dll - ok
05:05:57.0059 2704 [ 03AB2A2E426C2AD400AC8315226347F8 ] C:\Windows\System32\EhStorAPI.dll
05:05:57.0059 2704 C:\Windows\System32\EhStorAPI.dll - ok
05:05:57.0059 2704 [ 7368A2AFD46E5A4481D1DE9D14848EDD ] C:\Windows\System32\wcncsvc.dll
05:05:57.0059 2704 C:\Windows\System32\wcncsvc.dll - ok
05:05:57.0059 2704 [ 67C5556E2A9F0F9FFB5FC40A8761FABB ] C:\Windows\System32\msieftp.dll
05:05:57.0059 2704 C:\Windows\System32\msieftp.dll - ok
05:05:57.0059 2704 [ 9AA9732CDC2887D5CCD8CB338DC66742 ] C:\Windows\System32\fdWNet.dll
05:05:57.0059 2704 C:\Windows\System32\fdWNet.dll - ok
05:05:57.0059 2704 [ 1369DF1AA12A11876B41627099923EDB ] C:\Windows\System32\dfscli.dll
05:05:57.0059 2704 C:\Windows\System32\dfscli.dll - ok
05:05:57.0075 2704 [ 6A5C1A8AC0B572679361026D0E900420 ] C:\Windows\System32\hgcpl.dll
05:05:57.0075 2704 C:\Windows\System32\hgcpl.dll - ok
05:05:57.0075 2704 [ 617F6EC0AC677C685479C1D0D1E76C6F ] C:\Windows\System32\mspatcha.dll
05:05:57.0075 2704 C:\Windows\System32\mspatcha.dll - ok
05:05:57.0075 2704 [ 5046E55184021406C27E8D48A1B2C9D2 ] C:\Windows\System32\l3codeca.acm
05:05:57.0075 2704 C:\Windows\System32\l3codeca.acm - ok
05:05:57.0090 2704 [ D017BF8D92938EEB9B3A1D1C53FDA152 ] C:\Windows\SysWOW64\mshtml.dll
05:05:57.0090 2704 C:\Windows\SysWOW64\mshtml.dll - ok
05:05:57.0090 2704 [ 64E211E0FDFCE4D186DF58BB7D0503BC ] C:\Windows\SysWOW64\gameux.dll
05:05:57.0090 2704 C:\Windows\SysWOW64\gameux.dll - ok
05:05:57.0090 2704 [ 5987EA8A82C53359BCD2C29D6588583E ] C:\Windows\SysWOW64\linkinfo.dll
05:05:57.0090 2704 C:\Windows\SysWOW64\linkinfo.dll - ok
05:05:57.0106 2704 [ 03F3B770DFBED6131653CEDA8CA780F0 ] C:\Windows\SysWOW64\ntshrui.dll
05:05:57.0106 2704 C:\Windows\SysWOW64\ntshrui.dll - ok
05:05:57.0106 2704 [ 8B74CEC6980D4816B0037AE9A27E538F ] C:\Windows\SysWOW64\slc.dll
05:05:57.0106 2704 C:\Windows\SysWOW64\slc.dll - ok
05:05:57.0121 2704 [ 3BCECD87AB4E6743BFB45B352AD1A529 ] C:\Windows\SysWOW64\WindowsCodecs.dll
05:05:57.0121 2704 C:\Windows\SysWOW64\WindowsCodecs.dll - ok
05:05:57.0121 2704 [ 3C4C6BE926A2EF0293315BBC014E477F ] C:\Program Files (x86)\Common Files\TortoiseOverlays\TortoiseOverlays.dll
05:05:57.0121 2704 C:\Program Files (x86)\Common Files\TortoiseOverlays\TortoiseOverlays.dll - ok
05:05:57.0121 2704 [ 74472F7132F7893CB1455567784EC98A ] C:\Program Files\TortoiseSVN\bin\TortoiseStub32.dll
05:05:57.0121 2704 C:\Program Files\TortoiseSVN\bin\TortoiseStub32.dll - ok
05:05:57.0137 2704 [ 4022DECF539BD116F2443FDC84BB6453 ] C:\Program Files\TortoiseSVN\bin\TortoiseSVN32.dll
05:05:57.0137 2704 C:\Program Files\TortoiseSVN\bin\TortoiseSVN32.dll - ok
05:05:57.0137 2704 [ 40988DC6C64342907B36AF217BE8E050 ] C:\Program Files\TortoiseSVN\bin\libsvn_tsvn32.dll
05:05:57.0137 2704 C:\Program Files\TortoiseSVN\bin\libsvn_tsvn32.dll - ok
05:05:57.0137 2704 [ 09E1F71EA550C6B369D924F9A200FA94 ] C:\Program Files\TortoiseSVN\bin\libapr_tsvn32.dll
05:05:57.0137 2704 C:\Program Files\TortoiseSVN\bin\libapr_tsvn32.dll - ok
05:05:57.0153 2704 [ 773642D27C4B47DB6DF112CDA3D39DCD ] E:\Programs\installed programs\Notepad++\notepad++.exe
05:05:57.0153 2704 E:\Programs\installed programs\Notepad++\notepad++.exe - ok
05:05:57.0153 2704 [ EC261231BCCAD646091748E36CABA631 ] C:\Program Files\TortoiseSVN\bin\libaprutil_tsvn32.dll
05:05:57.0153 2704 C:\Program Files\TortoiseSVN\bin\libaprutil_tsvn32.dll - ok
05:05:57.0153 2704 [ B899B581AC7093954845B3B45C261C5B ] C:\Program Files\TortoiseSVN\bin\intl3_tsvn32.dll
05:05:57.0153 2704 C:\Program Files\TortoiseSVN\bin\intl3_tsvn32.dll - ok
05:05:57.0153 2704 [ 31E0167DABD7619A1F093CB14A9E3F88 ] C:\Program Files\TortoiseSVN\bin\libsasl32.dll
05:05:57.0153 2704 C:\Program Files\TortoiseSVN\bin\libsasl32.dll - ok
05:05:57.0168 2704 [ E5840A20CAB43276A2F58CA6F541D5DF ] C:\Windows\assembly\NativeImages_v2.0.50727_64\PresentationFramewo#\a50f3d1b7985318568ecec58ba24e409\PresentationFramework.Aero.ni.dll
05:05:57.0168 2704 C:\Windows\assembly\NativeImages_v2.0.50727_64\PresentationFramewo#\a50f3d1b7985318568ecec58ba24e409\PresentationFramework.Aero.ni.dll - ok
05:05:57.0168 2704 [ 752F8E96BAB993517838315508FB82CB ] C:\Windows\SysWOW64\perfproc.dll
05:05:57.0168 2704 C:\Windows\SysWOW64\perfproc.dll - ok
05:05:57.0168 2704 [ B92E9318F7E4AEF633B8EC3A873565AF ] C:\Windows\SysWOW64\perfdisk.dll
05:05:57.0168 2704 C:\Windows\SysWOW64\perfdisk.dll - ok
05:05:57.0184 2704 [ 846D0E4DB261CFAF363902E41498E961 ] C:\Windows\SysWOW64\EhStorShell.dll
05:05:57.0184 2704 C:\Windows\SysWOW64\EhStorShell.dll - ok
05:05:57.0184 2704 [ 7FE0D0C8F53735EA17C9AE93EFE7AD5A ] C:\Windows\System32\wups2.dll
05:05:57.0184 2704 C:\Windows\System32\wups2.dll - ok
05:05:57.0184 2704 [ 827CB0D6C3F8057EA037FF271F8E9795 ] C:\Windows\SysWOW64\imageres.dll
05:05:57.0184 2704 C:\Windows\SysWOW64\imageres.dll - ok
05:05:57.0184 2704 [ 305AB3619272B783F15935C009347440 ] E:\Programs\installed programs\Notepad++\SciLexer.dll
05:05:57.0184 2704 E:\Programs\installed programs\Notepad++\SciLexer.dll - ok
05:05:57.0199 2704 [ 93EA4F670261331B47AB5BA7FFB8B9A4 ] E:\Programs\installed programs\Notepad++\PLUGINS\SpellChecker.dll
05:05:57.0199 2704 E:\Programs\installed programs\Notepad++\PLUGINS\SpellChecker.dll - ok
05:05:57.0199 2704 [ F4E85E9C35DEEAB1556CF1B9EE97F9FD ] E:\Programs\installed programs\Notepad++\PLUGINS\NppFTP.dll
05:05:57.0199 2704 E:\Programs\installed programs\Notepad++\PLUGINS\NppFTP.dll - ok
05:05:57.0199 2704 [ AD32F0F59E70823DE864387F65DEBCEA ] E:\Programs\installed programs\Notepad++\PLUGINS\NppExport.dll
05:05:57.0199 2704 E:\Programs\installed programs\Notepad++\PLUGINS\NppExport.dll - ok
05:05:57.0199 2704 [ F2F9CA2BFF780585C22B9E012CAAB2D4 ] E:\Programs\installed programs\Notepad++\PLUGINS\PluginManager.dll
05:05:57.0199 2704 E:\Programs\installed programs\Notepad++\PLUGINS\PluginManager.dll - ok
05:05:57.0215 2704 [ F33DA98BA7ED91975B3118E27A288FCC ] E:\Programs\installed programs\Notepad++\PLUGINS\NppConverter.dll
05:05:57.0215 2704 E:\Programs\installed programs\Notepad++\PLUGINS\NppConverter.dll - ok
05:05:57.0215 2704 [ C68A9ED2B7269F91A75BCE10894186EB ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Core\7e75cd0b412dd2ac432f0ffbfaa7e55e\System.Core.ni.dll
05:05:57.0215 2704 C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Core\7e75cd0b412dd2ac432f0ffbfaa7e55e\System.Core.ni.dll - ok
05:05:57.0215 2704 [ 68E1D09FC5F2214F712FBB0340998A34 ] C:\Windows\assembly\NativeImages_v2.0.50727_64\WindowsFormsIntegra#\d965d516c924bc92b801f2b316444ffd\WindowsFormsIntegration.ni.dll
05:05:57.0215 2704 C:\Windows\assembly\NativeImages_v2.0.50727_64\WindowsFormsIntegra#\d965d516c924bc92b801f2b316444ffd\WindowsFormsIntegration.ni.dll - ok
05:05:57.0231 2704 [ 6FA41E0C86EF049A12C05CA4BBA8F9AF ] C:\Windows\SysWOW64\perfos.dll
05:05:57.0231 2704 C:\Windows\SysWOW64\perfos.dll - ok
05:05:57.0231 2704 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
05:05:57.0231 2704 C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe - ok
05:05:57.0231 2704 [ E3D5E244807AD655787FCD25477CC1BC ] C:\Windows\SysWOW64\bthprops.cpl
05:05:57.0231 2704 C:\Windows\SysWOW64\bthprops.cpl - ok
05:05:57.0231 2704 [ 2F20C651000663AC668B3F7BBF102C70 ] C:\Program Files\AVAST Software\Avast\AhAScr.dll
05:05:57.0231 2704 C:\Program Files\AVAST Software\Avast\AhAScr.dll - ok
05:05:57.0246 2704 [ D36AE1B392FAA88FBEF39DE1142DF051 ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.ServiceProce#\f5ec8051a7f0dc49a56aa2563039702e\System.ServiceProcess.ni.dll
05:05:57.0246 2704 C:\Windows\assembly\NativeImages_v2.0.50727_64\System.ServiceProce#\f5ec8051a7f0dc49a56aa2563039702e\System.ServiceProcess.ni.dll - ok
05:05:57.0246 2704 [ 6EF6B6EACCA13DD6131624E0DD5C14A3 ] C:\Windows\SysWOW64\jscript.dll
05:05:57.0246 2704 C:\Windows\SysWOW64\jscript.dll - ok
05:05:57.0246 2704 [ 9063208B657236EC20F10018ABB44E72 ] C:\Program Files\AVAST Software\Avast\aswJsFlt.dll
05:05:57.0246 2704 C:\Program Files\AVAST Software\Avast\aswJsFlt.dll - ok
05:05:57.0246 2704 [ CCD0214A064CA26B6663E8AAA14EBF93 ] C:\Windows\System32\PresentationNative_v0300.dll
05:05:57.0246 2704 C:\Windows\System32\PresentationNative_v0300.dll - ok
05:05:57.0262 2704 [ 2EFE164449F1C62CEA167B10850CD9F1 ] C:\Windows\System32\msctfui.dll
05:05:57.0262 2704 C:\Windows\System32\msctfui.dll - ok
05:05:57.0262 2704 [ 1D1EAA16D193C6A2D45981ED3914D22A ] C:\Windows\SysWOW64\msimtf.dll
05:05:57.0262 2704 C:\Windows\SysWOW64\msimtf.dll - ok
05:05:57.0262 2704 [ 9B59687619B27CDA24638CDC3AF079FB ] C:\Windows\SysWOW64\jscript9.dll
05:05:57.0262 2704 C:\Windows\SysWOW64\jscript9.dll - ok
05:05:57.0262 2704 [ DDBE67056D715668EBFE1949451BBA4D ] C:\Windows\assembly\NativeImages_v2.0.50727_64\UIAutomationProvider\95330dba19ee6b0916e186da885c4667\UIAutomationProvider.ni.dll
05:05:57.0277 2704 C:\Windows\assembly\NativeImages_v2.0.50727_64\UIAutomationProvider\95330dba19ee6b0916e186da885c4667\UIAutomationProvider.ni.dll - ok
05:05:57.0277 2704 [ 21D3A18769EC2C4E56756D04E989A221 ] C:\Windows\SysWOW64\msxml3.dll
05:05:57.0277 2704 C:\Windows\SysWOW64\msxml3.dll - ok
05:05:57.0277 2704 [ 9FF8F684BACF326082E5562F7C104A79 ] C:\Windows\SysWOW64\d2d1.dll
05:05:57.0277 2704 C:\Windows\SysWOW64\d2d1.dll - ok
05:05:57.0277 2704 [ 4277F5164DE9B7C665BB928B9145BEE0 ] C:\Windows\SysWOW64\DWrite.dll
05:05:57.0277 2704 C:\Windows\SysWOW64\DWrite.dll - ok
05:05:57.0293 2704 [ B3170CCC779B682C3341873EA60CF084 ] C:\Windows\SysWOW64\d3d10warp.dll
05:05:57.0293 2704 C:\Windows\SysWOW64\d3d10warp.dll - ok
05:05:57.0293 2704 [ AF78F66116814FDD6677CEBD73035CDD ] C:\Windows\SysWOW64\schannel.dll
05:05:57.0293 2704 C:\Windows\SysWOW64\schannel.dll - ok
05:05:57.0293 2704 [ C225E5307D8D4982A1687F2702C37C78 ] C:\Windows\SysWOW64\msls31.dll
05:05:57.0293 2704 C:\Windows\SysWOW64\msls31.dll - ok
05:05:57.0293 2704 [ 8EE6BDE1D572677AA35707C52C585F75 ] C:\Windows\SysWOW64\mlang.dll
05:05:57.0293 2704 C:\Windows\SysWOW64\mlang.dll - ok
05:05:57.0309 2704 [ D9E21CBF9E6A87847AFFD39EA3FA28EE ] C:\Windows\System32\SearchProtocolHost.exe
05:05:57.0309 2704 C:\Windows\System32\SearchProtocolHost.exe - ok
05:05:57.0309 2704 [ D2A5B2B09F2AF5ED13BF494508B09788 ] C:\Windows\System32\msshooks.dll
05:05:57.0309 2704 C:\Windows\System32\msshooks.dll - ok
05:05:57.0309 2704 [ 49A3AD5CE578CD77F445F3D244AEAB2D ] C:\Windows\System32\SearchFilterHost.exe
05:05:57.0309 2704 C:\Windows\System32\SearchFilterHost.exe - ok
05:05:57.0309 2704 [ 48041BAEB60CE5F34F13CC2A1361E49C ] C:\Windows\System32\mssph.dll
05:05:57.0309 2704 C:\Windows\System32\mssph.dll - ok
05:05:57.0324 2704 [ 8F4BB0CFECED925D440ABC2481278360 ] C:\Windows\System32\mapi32.dll
05:05:57.0324 2704 C:\Windows\System32\mapi32.dll - ok
05:05:57.0324 2704 [ FF2B106909EED48C536DA04742C0324A ] C:\Windows\System32\Query.dll
05:05:57.0324 2704 C:\Windows\System32\Query.dll - ok
05:05:57.0324 2704 [ 01E2855FB06C422E721D890AF201C2D7 ] C:\Windows\System32\NaturalLanguage6.dll
05:05:57.0324 2704 C:\Windows\System32\NaturalLanguage6.dll - ok
05:05:57.0324 2704 [ 701D9F5F3F21580936638D5C5F86B460 ] C:\Windows\System32\NlsData0009.dll
05:05:57.0324 2704 C:\Windows\System32\NlsData0009.dll - ok
05:05:57.0340 2704 [ 148A733B93A2AC104280495DA09D3CC2 ] C:\Windows\System32\NlsLexicons0009.dll
05:05:57.0340 2704 C:\Windows\System32\NlsLexicons0009.dll - ok
05:05:57.0340 2704 [ 76D86E65FF7D10292886A1F2DB93A911 ] C:\Windows\System32\ELSCore.dll
05:05:57.0340 2704 C:\Windows\System32\ELSCore.dll - ok
05:05:57.0340 2704 [ 12929BDE96189F4E968AD035573424F0 ] C:\Windows\System32\elsTrans.dll
05:05:57.0340 2704 C:\Windows\System32\elsTrans.dll - ok
05:05:57.0340 2704 [ AEE087CF7423BA44CC2DE03CC565E399 ] C:\Windows\System32\elslad.dll
05:05:57.0340 2704 C:\Windows\System32\elslad.dll - ok
05:05:57.0355 2704 [ 11542EC1F1C53EDB3CCF5AADF4C9972F ] C:\Windows\System32\NlsData0000.dll
05:05:57.0355 2704 C:\Windows\System32\NlsData0000.dll - ok
05:05:57.0355 2704 [ EA856F4A46320389D1899B2CAA7BF40F ] C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
05:05:57.0355 2704 C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe - ok
05:05:57.0355 2704 [ 51272A935F4F482A70F2A7D1C3A67AEE ] C:\Windows\System32\NlsData000c.dll
05:05:57.0355 2704 C:\Windows\System32\NlsData000c.dll - ok
05:05:57.0371 2704 [ C2142407A2BE3462247500849B3FF8C7 ] C:\Windows\System32\NlsLexicons000c.dll
05:05:57.0371 2704 C:\Windows\System32\NlsLexicons000c.dll - ok
05:05:57.0371 2704 [ A094DF70FC58677D79B1E8F045AC2883 ] C:\Windows\System32\NlsData0416.dll
05:05:57.0371 2704 C:\Windows\System32\NlsData0416.dll - ok
05:05:57.0371 2704 [ 371821A1C47A2B80275A23483FA36BB2 ] C:\Windows\System32\NlsLexicons0416.dll
05:05:57.0371 2704 C:\Windows\System32\NlsLexicons0416.dll - ok
05:05:57.0371 2704 [ 9EDB0A8337529D69F96DD1B2E70FA2F7 ] C:\Windows\System32\VAN.dll
05:05:57.0371 2704 C:\Windows\System32\VAN.dll - ok
05:05:57.0387 2704 [ 5D68F68E12B8BCD35ADE5A7B4FE5F456 ] C:\Windows\System32\wwanmm.dll
05:05:57.0387 2704 C:\Windows\System32\wwanmm.dll - ok
05:05:57.0387 2704 [ 18C27789FCFDDDB8D45C1EC4BC77CC8C ] C:\Windows\System32\RASMM.dll
05:05:57.0387 2704 C:\Windows\System32\RASMM.dll - ok
05:05:57.0387 2704 [ 448DE6CDB7976373B35CA03B6BF9BE48 ] C:\Windows\System32\WlanMM.dll
05:05:57.0387 2704 C:\Windows\System32\WlanMM.dll - ok
05:05:57.0387 2704 [ 2F3ADE3D7094478F185DB4D58EFBC519 ] C:\Windows\System32\NlsData0027.dll
05:05:57.0387 2704 C:\Windows\System32\NlsData0027.dll - ok
05:05:57.0402 2704 [ 5841765E95A74F6C8B808327B7054E2C ] C:\Windows\System32\NlsLexicons0027.dll
05:05:57.0402 2704 C:\Windows\System32\NlsLexicons0027.dll - ok
05:05:57.0402 2704 [ 164647BBD819458CE5AA8A8C097B83AC ] C:\Windows\System32\NlsData0007.dll
05:05:57.0402 2704 C:\Windows\System32\NlsData0007.dll - ok
05:05:57.0402 2704 [ 37A2FBCBD0AF846BEF609CBEB61EEA68 ] C:\Windows\System32\NlsLexicons0007.dll
05:05:57.0402 2704 C:\Windows\System32\NlsLexicons0007.dll - ok
05:05:57.0402 2704 [ 5EA9A0950F322BFA382AF277801C0307 ] C:\Windows\System32\wbem\wmipcima.dll
05:05:57.0402 2704 C:\Windows\System32\wbem\wmipcima.dll - ok
05:05:57.0418 2704 [ 2B0605ABC47532155FFBFDC1693317D8 ] C:\Windows\System32\NlsData0010.dll
05:05:57.0418 2704 C:\Windows\System32\NlsData0010.dll - ok
05:05:57.0418 2704 [ 362ACF8F7476637A5F76BE5953F4F258 ] C:\Windows\System32\NlsLexicons0010.dll
05:05:57.0418 2704 C:\Windows\System32\NlsLexicons0010.dll - ok
05:05:57.0418 2704 [ 916DB4FEB392BC58239D1C5825E33EA3 ] C:\Windows\System32\NlsData001b.dll
05:05:57.0418 2704 C:\Windows\System32\NlsData001b.dll - ok
05:05:57.0433 2704 [ EE44FD66D54E14694E7DD21C4E1E6599 ] C:\Windows\System32\NlsLexicons001b.dll
05:05:57.0433 2704 C:\Windows\System32\NlsLexicons001b.dll - ok
05:05:57.0433 2704 [ 28943370E3AF1D34D77D22911F891213 ] C:\Windows\System32\NlsData0003.dll
05:05:57.0433 2704 C:\Windows\System32\NlsData0003.dll - ok
05:05:57.0433 2704 [ 4F0429B763D05E721C0DD50693B7EFBE ] C:\Windows\System32\NlsLexicons0003.dll
05:05:57.0433 2704 C:\Windows\System32\NlsLexicons0003.dll - ok
05:05:57.0433 2704 [ 005247E3057BC5D5C3F8C6F886FFC10C ] C:\Windows\System32\wbem\WMIADAP.exe
05:05:57.0433 2704 C:\Windows\System32\wbem\WMIADAP.exe - ok
05:05:57.0449 2704 [ 9FE3ED67345F0FF829A4A53B90E09672 ] C:\Windows\System32\loadperf.dll
05:05:57.0449 2704 C:\Windows\System32\loadperf.dll - ok
05:05:57.0449 2704 [ 3E876771ACA0358E6CC5D0D813A4085D ] C:\Windows\System32\NlsData0026.dll
05:05:57.0449 2704 C:\Windows\System32\NlsData0026.dll - ok
05:05:57.0449 2704 [ 925E7FF3C0A2C6BD98892E968F6CB142 ] C:\Windows\System32\NlsLexicons0026.dll
05:05:57.0449 2704 C:\Windows\System32\NlsLexicons0026.dll - ok
05:05:57.0449 2704 [ A9263F43A5F55F8920DEFA5DB13915D3 ] C:\Windows\System32\NlsData001a.dll
05:05:57.0449 2704 C:\Windows\System32\NlsData001a.dll - ok
05:05:57.0465 2704 [ 916A505D363C3864B5B1CF52A43276A2 ] C:\Windows\System32\NlsLexicons001a.dll
05:05:57.0465 2704 C:\Windows\System32\NlsLexicons001a.dll - ok
05:05:57.0465 2704 [ 3211DAAA9D7D6D723EC5ADC07E739DB8 ] C:\Windows\System32\NlsData001d.dll
05:05:57.0465 2704 C:\Windows\System32\NlsData001d.dll - ok
05:05:57.0465 2704 [ 8CF3DE426173F4C820C9AF0932E6CF58 ] C:\Windows\System32\NlsLexicons001d.dll
05:05:57.0465 2704 C:\Windows\System32\NlsLexicons001d.dll - ok
05:05:57.0480 2704 [ 9BDB62D5C4B3AE8807CB61F7503784E7 ] C:\Windows\System32\NlsData0018.dll
05:05:57.0480 2704 C:\Windows\System32\NlsData0018.dll - ok
05:05:57.0480 2704 [ 3A84190D1D472A3BB9CC4AF141326F13 ] C:\Windows\System32\NlsLexicons0018.dll
05:05:57.0480 2704 C:\Windows\System32\NlsLexicons0018.dll - ok
05:05:57.0480 2704 [ 4A7D7024A99B111417C26B5F48E7C5A1 ] C:\Windows\System32\NlsData003e.dll
05:05:57.0480 2704 C:\Windows\System32\NlsData003e.dll - ok
05:05:57.0480 2704 [ B3854FE99BC75FD6D9DD2D313B94277D ] C:\Windows\System32\NlsLexicons003e.dll
05:05:57.0480 2704 C:\Windows\System32\NlsLexicons003e.dll - ok
05:05:57.0496 2704 [ F76074CE653E49AC6BDFE19289691AA6 ] C:\Windows\System32\NlsData0013.dll
05:05:57.0496 2704 C:\Windows\System32\NlsData0013.dll - ok
05:05:57.0496 2704 [ AE9300B1F0D6095597F64F03E1C38BB4 ] C:\Windows\System32\NlsLexicons0013.dll
05:05:57.0496 2704 C:\Windows\System32\NlsLexicons0013.dll - ok
05:05:57.0496 2704 [ 061A78FEFA0457FD64F62DF791939466 ] C:\Windows\System32\NlsData000a.dll
05:05:57.0496 2704 C:\Windows\System32\NlsData000a.dll - ok
05:05:57.0496 2704 [ CDDF26D22DF0C095BC3DF44BBCDC426C ] C:\Windows\System32\NlsLexicons000a.dll
05:05:57.0496 2704 C:\Windows\System32\NlsLexicons000a.dll - ok
05:05:57.0511 2704 ============================================================
05:05:57.0511 2704 Scan finished
05:05:57.0511 2704 ============================================================
05:05:57.0511 5404 Detected object count: 2
05:05:57.0511 5404 Actual detected object count: 2
05:07:49.0247 5404 Apache2.4 ( UnsignedFile.Multi.Generic ) - skipped by user
05:07:49.0247 5404 Apache2.4 ( UnsignedFile.Multi.Generic ) - User select action: Skip
05:07:49.0247 5404 mysql ( UnsignedFile.Multi.Generic ) - skipped by user
05:07:49.0247 5404 mysql ( UnsignedFile.Multi.Generic ) - User select action: Skip
-----------------------
--system-log.txt is attached--
--------------------
--------------------
I am worried about some text I read in system-log.txt
"Infected: c:\Windows\Installer\{6cc74025-0e13-8c10-d24c-6fdb4de0f5f0}\U --> [Backdoor.0Access]"

Should I be concerned about this? Should I be concerned about anything I have typed since this infection? Should I be worried about my password keyring file for keypass that's on a separate Hard Drive but accessible from the same OS?

Attached Files


  • 0

#9
modeltrainsfreak

modeltrainsfreak

    New Member

  • Topic Starter
  • Member
  • Pip
  • 9 posts
I am getting to following error when I try to run Team Fortress 2

It says "Preparing to Launch Team Fortress 2"
then
"SteamStartup() failed: SteamStartup(0x0041DF8C) failed with error 1:
The registry is in use by another process, timeout expired"
  • 0

#10
modeltrainsfreak

modeltrainsfreak

    New Member

  • Topic Starter
  • Member
  • Pip
  • 9 posts
fixed it just had to verify game cache, a few files weren't intact.
  • 0

Advertisements


#11
gringo_pr

gringo_pr

    Trusted Helper

  • Malware Removal
  • 7,268 posts
Hello



this virus has backdoor capabilities built into it but is not used for that - the job of this virus was to cause redirects
  • 0

#12
gringo_pr

gringo_pr

    Trusted Helper

  • Malware Removal
  • 7,268 posts
Hello modeltrainsfreak

At this time I would like you to run this script for me and it is a good time to check out the computer to see if there is anything else that needs to be addressed.

:Run CFScript:

Please start by opening Notepad and copy/paste the text in the box into the window:

ClearJavaCache::



Save it to your desktop as CFScript.txt

Referring to the picture above, drag CFScript.txt into ComboFix.exe
Posted Image
This will let ComboFix run again.
Restart if you have to.
Save the produced logfile to your desktop.

Note: Do not mouseclick combofix's window whilst it's running. That may cause it to stall

Note 2: If you receive an error "Illegal operation attempted on a registry key that has been marked for deletion." Please restart the computer

"information and logs"

  • In your next post I need the following

  • report from Combofix
  • let me know of any problems you may have had
  • How is the computer doing now after running the script?

Gringo

  • 0

#13
gringo_pr

gringo_pr

    Trusted Helper

  • Malware Removal
  • 7,268 posts
Greetings


I have not heard from you in a couple of days so I am coming by to check on you to see if you are having problems or you just need some more time.

Also to remind you that it is very important that we finish the process completely so as to not get reinfected. I will let you know when we are complete and I will ask to remove our tools




Gringo
  • 0

#14
modeltrainsfreak

modeltrainsfreak

    New Member

  • Topic Starter
  • Member
  • Pip
  • 9 posts
I've been really busy I will post the ComboFix report soon.
  • 0

#15
gringo_pr

gringo_pr

    Trusted Helper

  • Malware Removal
  • 7,268 posts
no problem and thanks for replying back
  • 0






Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP