Javascript Disabled Detected

You currently have javascript disabled. Several functions may not work. Please re-enable javascript to access full functionality.

viruses, spyware and malware removal [Closed]

Started by Sherry0004008 , Nov 06 2013 05:47 AM

This topic is locked

#1
Sherry0004008

Posted 06 November 2013 - 05:47 AM

New Member

Member
4 posts

I ran OTL and the txt file looks as if I have a lot of issues. Pls help?? thanks

I didn't copy and paste the OTL log properly before.

OTL logfile created on: 11/6/2013 5:46:23 AM - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Documents and Settings\Me\My Documents\Downloads
Windows XP Home Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

894.04 Mb Total Physical Memory | 166.39 Mb Available Physical Memory | 18.61% Memory free
2.12 Gb Paging File | 1.32 Gb Available in Paging File | 62.28% Paging File free
Paging file location(s): c:\pagefile.sys 1344 2688 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 111.78 Gb Total Space | 91.97 Gb Free Space | 82.27% Space Free | Partition Type: NTFS

Computer Name: LAPTOP | User Name: Me | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2013/11/06 05:43:02 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Me\My Documents\Downloads\OTL.exe
PRC - [2013/10/12 00:35:01 | 000,274,840 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\firefox.exe
PRC - [2013/08/12 09:12:38 | 000,022,208 | ---- | M] (Microsoft Corporation) -- c:\Program Files\Microsoft Security Client\MsMpEng.exe
PRC - [2013/08/12 09:11:20 | 000,995,176 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft Security Client\msseces.exe
PRC - [2011/02/01 08:54:42 | 000,206,120 | ---- | M] (SupportSoft, Inc.) -- C:\Program Files\VERIZONDM\bin\sprtsvc.exe
PRC - [2010/12/13 14:37:46 | 000,135,536 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft LifeCam\MSCamS32.exe
PRC - [2008/04/14 04:42:20 | 001,033,728 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
PRC - [2006/11/03 18:20:12 | 000,866,584 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Windows Defender\MSASCui.exe
PRC - [2006/11/03 18:19:58 | 000,013,592 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Windows Defender\MsMpEng.exe
PRC - [2005/12/27 09:20:14 | 000,413,696 | ---- | M] (SigmaTel, Inc.) -- C:\WINDOWS\stsystra.exe

========== Modules (No Company Name) ==========

MOD - [2013/10/12 00:34:20 | 003,279,768 | ---- | M] () -- C:\Program Files\Mozilla Firefox\mozjs.dll
MOD - [2013/10/11 23:18:10 | 016,233,864 | ---- | M] () -- C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_9_900_117.dll
MOD - [2008/04/14 04:42:00 | 000,014,336 | ---- | M] () -- C:\WINDOWS\system32\msdmo.dll
MOD - [2008/04/14 04:41:52 | 000,059,904 | ---- | M] () -- C:\WINDOWS\system32\devenum.dll
MOD - [2005/11/11 23:40:48 | 000,757,760 | ---- | M] () -- C:\WINDOWS\system32\bcm1xsup.dll

========== Services (SafeList) ==========

SRV - File not found [Disabled | Stopped] -- C:\Program Files\Wajam\Updater\WajamUpdater.exe -- (WajamUpdater)
SRV - File not found [On_Demand | Stopped] -- %SystemRoot%\System32\appmgmts.dll -- (AppMgmt)
SRV - [2013/10/12 00:34:59 | 000,118,680 | ---- | M] (Mozilla Foundation) [On_Demand | Stopped] -- C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance)
SRV - [2013/10/11 23:18:17 | 000,257,416 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc)
SRV - [2013/08/12 09:12:38 | 000,022,208 | ---- | M] (Microsoft Corporation) [Auto | Running] -- c:\Program Files\Microsoft Security Client\MsMpEng.exe -- (MsMpSvc)
SRV - [2013/06/21 08:53:36 | 000,162,408 | R--- | M] (Skype Technologies) [Auto | Stopped] -- C:\Program Files\Skype\Updater\Updater.exe -- (SkypeUpdate)
SRV - [2012/10/01 02:22:06 | 000,295,224 | ---- | M] (Logitech, Inc.) [On_Demand | Stopped] -- C:\Program Files\Common Files\logishrd\Bluetooth\LBTServ.exe -- (LBTServ)
SRV - [2012/03/07 17:28:55 | 000,065,536 | ---- | M] (New Boundary Technologies, Inc.) [Disabled | Stopped] -- C:\Program Files\Common Files\New Boundary\PrismXL\PRISMXL.SYS -- (PrismXL)
SRV - [2011/02/01 08:54:46 | 000,185,640 | ---- | M] (SupportSoft, Inc.) [Disabled | Stopped] -- C:\Program Files\VERIZONDM\bin\tgsrvc.exe -- (tgsrvc_verizondm)
SRV - [2011/02/01 08:54:42 | 000,206,120 | ---- | M] (SupportSoft, Inc.) [Auto | Running] -- C:\Program Files\VERIZONDM\bin\sprtsvc.exe -- (sprtsvc_verizondm)
SRV - [2010/12/13 14:37:46 | 000,135,536 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Microsoft LifeCam\MSCamS32.exe -- (MSCamSvc)
SRV - [2006/11/03 18:19:58 | 000,013,592 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Windows Defender\MsMpEng.exe -- (WinDefend)

========== Driver Services (SafeList) ==========

DRV - File not found [Kernel | On_Demand | Stopped] -- -- (WDICA)
DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDRFRAME)
DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDRELI)
DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDFRAME)
DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDCOMP)
DRV - File not found [Kernel | System | Stopped] -- -- (PCIDump)
DRV - File not found [Kernel | System | Stopped] -- -- (lbrtfdc)
DRV - File not found [Kernel | System | Stopped] -- -- (i2omgmt)
DRV - File not found [Kernel | System | Stopped] -- -- (Changer)
DRV - [2013/11/06 04:54:13 | 000,040,392 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- c:\Documents and Settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{897BA194-1DE4-427E-B9E6-277BB775D66A}\MpKslc268bb0e.sys -- (MpKslc268bb0e)
DRV - [2013/02/11 19:32:23 | 000,012,928 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\usb8023.sys -- (USB_RNDIS_XP)
DRV - [2012/10/10 22:08:10 | 000,034,432 | ---- | M] (ManyCam LLC) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\mcvidrv.sys -- (ManyCam)
DRV - [2012/10/10 22:08:08 | 000,025,088 | ---- | M] (ManyCam LLC) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\mcaudrv.sys -- (mcaudrv_simple)
DRV - [2012/09/18 04:33:00 | 000,043,960 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\LHidFilt.Sys -- (LHidFilt)
DRV - [2012/09/18 04:33:00 | 000,039,608 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\LMouFilt.Sys -- (LMouFilt)
DRV - [2012/09/18 04:32:56 | 000,043,704 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\LEqdUsb.sys -- (LEqdUsb)
DRV - [2012/09/18 04:32:56 | 000,012,216 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\LHidEqd.sys -- (LHidEqd)
DRV - [2012/09/18 04:32:56 | 000,012,216 | ---- | M] (Logitech, Inc.) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\LBeepKE.sys -- (LBeepKE)
DRV - [2010/12/13 14:37:46 | 000,030,576 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\nx6000.sys -- (MSHUSBVideo)
DRV - [2007/12/14 12:21:56 | 000,290,816 | ---- | M] (Texas Instruments) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\tifm21.sys -- (tifm21)
DRV - [2007/12/06 12:51:00 | 000,285,952 | ---- | M] (Marvell) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\yk51x86.sys -- (yukonwxp)
DRV - [2007/02/03 13:32:36 | 000,041,504 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\LVUSBSta.sys -- (LVUSBSta)
DRV - [2007/02/03 13:25:56 | 001,075,360 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\Camdrl.sys -- (CamDrL)
DRV - [2006/09/27 21:26:00 | 000,893,952 | ---- | M] (Motorola Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\smserial.sys -- (smserial)
DRV - [2006/09/27 21:23:00 | 001,536,000 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ati2mtag.sys -- (ati2mtag)
DRV - [2006/06/19 02:37:34 | 000,036,864 | ---- | M] (Advanced Micro Devices) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\AmdK8.sys -- (AmdK8)
DRV - [2006/06/15 14:28:04 | 001,179,784 | ---- | M] (SigmaTel, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\sthda.sys -- (STHDA)
DRV - [2005/11/02 16:24:24 | 000,424,320 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\BCMWL5.SYS -- (BCM43XX)

========== Standard Registry (SafeList) ==========

========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Secondary Start Pages = Reg Error: Value error.
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Search_URL =
IE - HKLM\..\SearchScopes,DefaultScope = {602A79AF-B8CA-45DE-AE38-DEBAAE1E9A6F}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://search.live.c...ferrer:source?}
IE - HKLM\..\SearchScopes\{1D45153A-8B9C-4169-88E3-88BAC22A7247}: "URL" = http://www.google.co...g}&sourceid=ie7
IE - HKLM\..\SearchScopes\{ef80d754-fb77-4a7f-be75-489beebb20c9}: "URL" = http://search.mywebs...r={searchTerms}

IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-21-1409082233-746137067-725345543-1004\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.yahoo.com/?fr=fp-yie8
IE - HKU\S-1-5-21-1409082233-746137067-725345543-1004\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page =
IE - HKU\S-1-5-21-1409082233-746137067-725345543-1004\SOFTWARE\Microsoft\Internet Explorer\Main,SearchDefaultBranded = 1
IE - HKU\S-1-5-21-1409082233-746137067-725345543-1004\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com/
IE - HKU\S-1-5-21-1409082233-746137067-725345543-1004\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant =
IE - HKU\S-1-5-21-1409082233-746137067-725345543-1004\..\SearchScopes,DefaultScope = {252FF44D-3EC2-4AE7-8F11-21535156B391}
IE - HKU\S-1-5-21-1409082233-746137067-725345543-1004\..\SearchScopes\{1D45153A-8B9C-4169-88E3-88BAC22A7247}: "URL" = http://www.google.co...1I7RLTB_enUS532
IE - HKU\S-1-5-21-1409082233-746137067-725345543-1004\..\SearchScopes\{252FF44D-3EC2-4AE7-8F11-21535156B391}: "URL" = http://search.yahoo....f-8&fr=chr-yie8
IE - HKU\S-1-5-21-1409082233-746137067-725345543-1004\..\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233}: "URL" = https://isearch.avg....sa&d=2012-07-28 17:20:34&v=12.1.0.21&sap=dsp&q={searchTerms}
IE - HKU\S-1-5-21-1409082233-746137067-725345543-1004\..\SearchScopes\{ef80d754-fb77-4a7f-be75-489beebb20c9}: "URL" = http://search.mywebs...r={searchTerms}
IE - HKU\S-1-5-21-1409082233-746137067-725345543-1004\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

========== FireFox ==========

FF - prefs.js..browser.search.defaultthis.engineName: "MixiDJ V34 Customized Web Search"
FF - prefs.js..browser.search.defaulturl: "http://search.condui...={searchTerms}"
FF - prefs.js..browser.search.selectedEngine: "MixiDJ V34 Customized Web Search"
FF - prefs.js..browser.startup.homepage: "www.google.com"
FF - prefs.js..extensions.enabledAddons: support%40superhideip.com:1.0
FF - prefs.js..extensions.enabledAddons: %7B972ce4c6-7e08-4474-a285-3208198ce6fd%7D:24.0
FF - prefs.js..network.proxy.gopher: ""
FF - prefs.js..network.proxy.gopher_port: 0
FF - prefs.js..network.proxy.share_proxy_settings: true
FF - prefs.js..network.proxy.type: 0
FF - user.js - File not found

FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_9_900_117.dll ()
FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: C:\WINDOWS\system32\Adobe\Director\np32dsw_1202122.dll (Adobe Systems, Inc.)
FF - HKLM\Software\MozillaPlugins\@Google.com/GoogleEarthPlugin: C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files\Java\jre6\bin\plugin2\npjp2.dll (Sun Microsystems, Inc.)
FF - HKLM\Software\MozillaPlugins\@messenger.yahoo.com/YahooMessengerStatePlugin;version=1.0.0.6: C:\Program Files\Yahoo!\Shared\npYState.dll (Yahoo! Inc.)
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/DownloadManager,version=1.1: C:\WINDOWS\ [2013/11/06 05:09:40 | 000,000,000 | ---D | M]
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files\Microsoft Silverlight\5.1.10411.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=14.0.8117.0416: C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)

FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\[email protected]: C:\Program Files\Mozilla Firefox\extensions\[email protected]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 24.0\extensions\\Components: C:\Program Files\Mozilla Firefox\components
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 24.0\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins
FF - HKEY_CURRENT_USER\software\mozilla\Firefox\Extensions\\[email protected]: C:\Program Files\Unfriend Checker\FF\

[2012/07/28 15:49:03 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Me\Application Data\Mozilla\Extensions
[2013/11/06 05:05:26 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Me\Application Data\Mozilla\Firefox\Profiles\2wnxhfl0.default\extensions
[2013/05/16 12:52:52 | 000,004,544 | ---- | M] () (No name found) -- C:\Documents and Settings\Me\Application Data\Mozilla\Firefox\Profiles\2wnxhfl0.default\extensions\[email protected]
[2013/10/12 00:33:37 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\browser\extensions
[2013/10/12 00:35:02 | 000,000,000 | ---D | M] (Default) -- C:\Program Files\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
[2013/11/06 05:39:40 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\updated\browser\extensions
[2013/11/06 05:41:17 | 000,000,000 | ---D | M] (Default) -- C:\Program Files\Mozilla Firefox\updated\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
[2012/03/28 01:15:45 | 000,003,768 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\avg-secure-search.xml

O1 HOSTS File: ([2012/06/09 23:31:24 | 000,442,793 | R--- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O1 - Hosts: 127.0.0.1 www.007guard.com
O1 - Hosts: 127.0.0.1 007guard.com
O1 - Hosts: 127.0.0.1 008i.com
O1 - Hosts: 127.0.0.1 www.008k.com
O1 - Hosts: 127.0.0.1 008k.com
O1 - Hosts: 127.0.0.1 www.00hq.com
O1 - Hosts: 127.0.0.1 00hq.com
O1 - Hosts: 127.0.0.1 010402.com
O1 - Hosts: 127.0.0.1 www.032439.com
O1 - Hosts: 127.0.0.1 032439.com
O1 - Hosts: 127.0.0.1 www.0scan.com
O1 - Hosts: 127.0.0.1 0scan.com
O1 - Hosts: 127.0.0.1 www.1000gratisproben.com
O1 - Hosts: 127.0.0.1 1000gratisproben.com
O1 - Hosts: 127.0.0.1 1001namen.com
O1 - Hosts: 127.0.0.1 www.1001namen.com
O1 - Hosts: 127.0.0.1 100888290cs.com
O1 - Hosts: 127.0.0.1 www.100888290cs.com
O1 - Hosts: 127.0.0.1 www.100sexlinks.com
O1 - Hosts: 127.0.0.1 100sexlinks.com
O1 - Hosts: 127.0.0.1 www.10sek.com
O1 - Hosts: 127.0.0.1 10sek.com
O1 - Hosts: 127.0.0.1 www.1-2005-search.com
O1 - Hosts: 127.0.0.1 1-2005-search.com
O1 - Hosts: 15215 more lines...
O2 - BHO: (Java™ Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll (Sun Microsystems, Inc.)
O2 - BHO: (Help the General-Search Project) - {CA4520F3-AE13-4FB1-A513-58E23991C86D} - C:\Documents and Settings\Me\Application Data\Media Finder\Extensions\gencrawler_gc.dll ()
O3 - HKU\S-1-5-21-1409082233-746137067-725345543-1004\..\Toolbar\WebBrowser: (no name) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No CLSID value found.
O3 - HKU\S-1-5-21-1409082233-746137067-725345543-1004\..\Toolbar\WebBrowser: (no name) - {4D594333-0076-A76A-76A7-7A786E7484D7} - No CLSID value found.
O3 - HKU\S-1-5-21-1409082233-746137067-725345543-1004\..\Toolbar\WebBrowser: (no name) - {D4027C7F-154A-4066-A1AD-4243D8127440} - No CLSID value found.
O3 - HKU\S-1-5-21-1409082233-746137067-725345543-1004\..\Toolbar\WebBrowser: (no name) - {E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39} - No CLSID value found.
O4 - HKLM..\Run: [MSC] c:\Program Files\Microsoft Security Client\msseces.exe (Microsoft Corporation)
O4 - HKLM..\Run: [SigmatelSysTrayApp] C:\WINDOWS\stsystra.exe (SigmaTel, Inc.)
O4 - HKU\.DEFAULT..\RunOnce: [tscuninstall] C:\WINDOWS\system32\tscupgrd.exe (Microsoft Corporation)
O4 - HKU\.DEFAULT..\RunOnce: [WUAppSetup] C:\Program Files\Common Files\logishrd\WUApp32.exe -v 0x046d -p 0x08b2 -f video -m logitech -d 10.5.1.2023 File not found
O4 - HKU\S-1-5-18..\RunOnce: [tscuninstall] C:\WINDOWS\system32\tscupgrd.exe (Microsoft Corporation)
O4 - HKU\S-1-5-18..\RunOnce: [WUAppSetup] C:\Program Files\Common Files\logishrd\WUApp32.exe -v 0x046d -p 0x08b2 -f video -m logitech -d 10.5.1.2023 File not found
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Activities present
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-21-1409082233-746137067-725345543-1004\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O8 - Extra context menu item: &Search - http://tbedits.retro...2012092720&cv=1 File not found
O8 - Extra context menu item: Download with &Media Finder - C:\Program Files\Media Finder\hook.html File not found
O9 - Extra Button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe File not found
O9 - Extra 'Tools' menuitem : Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000001 - mswsock.dll File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000002 - mswsock.dll File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000003 - mswsock.dll File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000004 - mswsock.dll File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000005 - mswsock.dll File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000006 - mswsock.dll File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000007 - mswsock.dll File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000008 - mswsock.dll File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000009 - mswsock.dll File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000010 - mswsock.dll File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000011 - mswsock.dll File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000012 - mswsock.dll File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000013 - mswsock.dll File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000014 - mswsock.dll File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000015 - mswsock.dll File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000016 - mswsock.dll File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000017 - mswsock.dll File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000018 - mswsock.dll File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000019 - mswsock.dll File not found
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} http://go.microsoft....k/?linkid=39204 (Windows Genuine Advantage Validation Tool)
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} http://www.update.mi...b?1339205605437 (WUWebControl Class)
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} http://www.update.mi...b?1339205593640 (MUWebControl Class)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_31)
O16 - DPF: {B479199A-1242-4E3C-AD81-7F0DF801B4AE} http://download.micr...loadManager.cab (Microsoft Download Manager ActiveX control)
O16 - DPF: {CAFEEFAC-0016-0000-0031-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_31)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_31)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 172.16.0.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{F322294C-A108-444F-8746-49463DDE9EB2}: DhcpNameServer = 172.16.0.1
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\WINDOWS\system32\userinit.exe) - C:\WINDOWS\system32\userinit.exe (Microsoft Corporation)
O20 - Winlogon\Notify\AtiExtEvent: DllName - (Ati2evxx.dll) - C:\WINDOWS\System32\ati2evxx.dll (ATI Technologies Inc.)
O20 - Winlogon\Notify\LBTWlgn: DllName - (c:\program files\common files\logishrd\bluetooth\LBTWlgn.dll) - c:\Program Files\Common Files\logishrd\Bluetooth\LBTWLgn.dll (Logitech, Inc.)
O28 - HKLM ShellExecuteHooks: {091EB208-39DD-417D-A5DD-7E2C2D8FB9CB} - C:\Program Files\Windows Defender\MpShHook.dll (Microsoft Corporation)
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2012/03/07 16:39:16 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)

========== Files/Folders - Created Within 30 Days ==========

[2013/11/06 05:11:25 | 000,527,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\XAudio2_7.dll
[2013/11/06 05:11:25 | 000,074,072 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\XAPOFX1_5.dll
[2013/11/06 05:11:23 | 000,239,960 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xactengine3_7.dll
[2013/11/06 05:11:22 | 002,106,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\D3DCompiler_43.dll
[2013/11/06 05:11:21 | 001,868,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dcsx_43.dll
[2013/11/06 05:11:19 | 000,248,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx11_43.dll
[2013/11/06 05:11:18 | 000,470,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx10_43.dll
[2013/11/06 05:11:16 | 001,998,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\D3DX9_43.dll
[2013/11/06 05:11:13 | 000,528,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\XAudio2_6.dll
[2013/11/06 05:11:13 | 000,074,072 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\XAPOFX1_4.dll
[2013/11/06 05:11:10 | 000,238,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xactengine3_6.dll
[2013/11/06 05:11:10 | 000,022,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\X3DAudio1_7.dll
[2013/11/06 05:11:08 | 000,515,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\XAudio2_5.dll
[2013/11/06 05:11:06 | 000,238,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xactengine3_5.dll
[2013/11/06 05:11:04 | 005,501,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dcsx_42.dll
[2013/11/06 05:11:01 | 000,235,344 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx11_42.dll
[2013/11/06 05:11:00 | 000,453,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx10_42.dll
[2013/11/06 05:10:56 | 001,846,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\D3DCompiler_41.dll
[2013/11/06 05:10:56 | 000,453,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx10_41.dll
[2013/11/06 05:10:54 | 004,178,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\D3DX9_41.dll
[2013/11/06 05:10:53 | 000,517,448 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\XAudio2_4.dll
[2013/11/06 05:10:53 | 000,069,464 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\XAPOFX1_3.dll
[2013/11/06 05:10:51 | 000,235,352 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xactengine3_4.dll
[2013/11/06 05:10:49 | 000,022,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\X3DAudio1_6.dll
[2013/11/06 05:10:46 | 002,036,576 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\D3DCompiler_40.dll
[2013/11/06 05:10:46 | 000,452,440 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx10_40.dll
[2013/11/06 05:10:45 | 004,379,984 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\D3DX9_40.dll
[2013/11/06 05:10:43 | 000,514,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\XAudio2_3.dll
[2013/11/06 05:10:43 | 000,070,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\XAPOFX1_2.dll
[2013/11/06 05:10:40 | 000,235,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xactengine3_3.dll
[2013/11/06 05:10:38 | 000,023,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\X3DAudio1_5.dll
[2013/11/06 05:10:37 | 000,068,616 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\XAPOFX1_1.dll
[2013/11/06 05:10:36 | 000,509,448 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\XAudio2_2.dll
[2013/11/06 05:10:35 | 000,238,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xactengine3_2.dll
[2013/11/06 05:10:33 | 001,493,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\D3DCompiler_39.dll
[2013/11/06 05:10:33 | 000,467,984 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx10_39.dll
[2013/11/06 05:10:31 | 003,851,784 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\D3DX9_39.dll
[2013/11/06 05:10:28 | 000,507,400 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\XAudio2_1.dll
[2013/11/06 05:10:28 | 000,065,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\XAPOFX1_0.dll
[2013/11/06 05:10:26 | 000,238,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xactengine3_1.dll
[2013/11/06 05:10:25 | 000,025,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\X3DAudio1_4.dll
[2013/11/06 05:10:23 | 001,491,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\D3DCompiler_38.dll
[2013/11/06 05:10:23 | 000,467,984 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx10_38.dll
[2013/11/06 05:10:17 | 003,850,760 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\D3DX9_38.dll
[2013/11/06 05:10:16 | 000,479,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\XAudio2_0.dll
[2013/11/06 05:10:14 | 000,238,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xactengine3_0.dll
[2013/11/06 05:10:13 | 000,025,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\X3DAudio1_3.dll
[2013/11/06 05:10:11 | 001,420,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\D3DCompiler_37.dll
[2013/11/06 05:10:11 | 000,462,864 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx10_37.dll
[2013/11/06 05:10:09 | 003,786,760 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\D3DX9_37.dll
[2013/11/06 05:10:07 | 000,267,272 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xactengine2_10.dll
[2013/11/06 05:10:05 | 001,374,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\D3DCompiler_36.dll
[2013/11/06 05:10:05 | 000,444,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx10_36.dll
[2013/11/06 05:10:03 | 003,734,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx9_36.dll
[2013/11/06 05:10:01 | 000,267,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xactengine2_9.dll
[2013/11/06 05:09:59 | 001,358,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\D3DCompiler_35.dll
[2013/11/06 05:09:59 | 000,444,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx10_35.dll
[2013/11/06 05:09:58 | 003,727,720 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx9_35.dll
[2013/11/06 05:09:56 | 000,266,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xactengine2_8.dll
[2013/11/06 05:09:56 | 000,017,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\X3DAudio1_2.dll
[2013/11/06 05:09:53 | 001,124,720 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\D3DCompiler_34.dll
[2013/11/06 05:09:53 | 000,443,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx10_34.dll
[2013/11/06 05:09:52 | 003,497,832 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx9_34.dll
[2013/11/06 05:09:49 | 000,081,768 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xinput1_3.dll
[2013/11/06 05:09:44 | 000,261,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xactengine2_7.dll
[2013/11/06 05:09:37 | 001,123,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\D3DCompiler_33.dll
[2013/11/06 05:09:37 | 000,443,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx10_33.dll
[2013/11/06 05:09:24 | 003,495,784 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx9_33.dll
[2013/11/06 05:09:22 | 000,255,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xactengine2_6.dll
[2013/11/06 05:09:19 | 000,251,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xactengine2_5.dll
[2013/11/06 05:09:17 | 000,237,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xactengine2_4.dll
[2013/11/06 05:09:17 | 000,015,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\x3daudio1_1.dll
[2013/11/06 05:09:16 | 002,414,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx9_31.dll
[2013/11/06 05:09:14 | 000,236,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xactengine2_3.dll
[2013/11/06 05:09:11 | 000,062,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xinput1_2.dll
[2013/11/06 05:09:09 | 000,230,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xactengine2_2.dll
[2013/11/06 05:09:06 | 000,062,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xinput1_1.dll
[2013/11/06 05:09:04 | 000,229,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xactengine2_1.dll
[2013/11/06 05:08:56 | 002,388,176 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx9_30.dll
[2013/11/06 05:08:50 | 000,230,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xactengine2_0.dll
[2013/11/06 05:08:50 | 000,014,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\x3daudio1_0.dll
[2013/11/06 05:08:32 | 002,332,368 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx9_29.dll
[2013/11/06 05:08:30 | 002,323,664 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx9_28.dll
[2013/11/06 05:08:28 | 000,061,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xinput9_1_0.dll
[2013/11/06 05:08:26 | 002,319,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx9_27.dll
[2013/11/06 05:08:25 | 002,297,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx9_26.dll
[2013/11/06 05:08:24 | 002,337,488 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx9_25.dll
[2013/11/06 05:08:14 | 002,222,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx9_24.dll
[2013/11/06 04:57:09 | 000,000,000 | ---D | C] -- C:\WINDOWS\LastGood
[2013/10/12 00:33:36 | 000,000,000 | ---D | C] -- C:\Program Files\Mozilla Firefox
[2013/10/11 21:52:36 | 000,000,000 | ---D | C] -- C:\ec6f17cbe15f251dc4223fe216
[2013/10/11 21:14:37 | 000,025,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hidparse.sys
[2013/10/11 21:14:37 | 000,014,976 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\usbscan.sys
[2013/10/11 21:06:34 | 000,032,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\usbccgp.sys
[2013/10/11 21:06:34 | 000,030,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\usbehci.sys
[2013/10/11 21:06:34 | 000,005,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\usbd.sys
[2013/10/11 21:06:33 | 000,144,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\usbport.sys
[2012/11/22 00:46:44 | 019,380,192 | ---- | C] (Mozilla) -- C:\Program Files\Firefox Setup 17.0.exe
[2012/11/08 00:26:25 | 000,373,432 | ---- | C] (Softonic) -- C:\Program Files\SoftonicDownloader_for_google-earth.exe
[2012/11/07 23:40:50 | 000,889,416 | ---- | C] (Microsoft Corporation) -- C:\Program Files\dotNetFx40_Full_setup.exe
[2012/03/08 19:27:32 | 015,792,320 | ---- | C] (Mozilla) -- C:\Program Files\Firefox Setup 10.0.2.exe
[2012/03/07 22:16:06 | 000,887,896 | ---- | C] (Microsoft Corporation) -- C:\Program Files\dotNetFx40_Client_setup.exe
[2012/03/07 21:58:37 | 000,424,072 | ---- | C] (Yahoo! Inc.) -- C:\Program Files\msgr11us.exe
[2012/03/07 21:42:31 | 016,883,056 | ---- | C] (Microsoft Corporation) -- C:\Program Files\IE8-WindowsXP-x86-ENU.exe
[2012/03/07 20:24:50 | 008,068,864 | ---- | C] (Microsoft Corporation) -- C:\Program Files\mseinstall.exe
[2012/03/07 20:01:39 | 331,805,736 | ---- | C] (Microsoft Corporation) -- C:\Program Files\WindowsXP-KB936929-SP3-x86-ENU.exe
[7 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]

========== Files - Modified Within 30 Days ==========

[2013/11/06 05:15:15 | 000,000,830 | ---- | M] () -- C:\WINDOWS\tasks\Adobe Flash Player Updater.job
[2013/11/06 05:04:46 | 000,000,330 | -H-- | M] () -- C:\WINDOWS\tasks\MP Scheduled Scan.job
[2013/11/06 04:54:43 | 000,012,598 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2013/11/06 04:47:59 | 000,000,384 | -H-- | M] () -- C:\WINDOWS\tasks\Microsoft Antimalware Scheduled Scan.job
[2013/11/06 04:42:33 | 000,623,328 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
[2013/11/06 04:42:33 | 000,153,590 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
[2013/11/06 04:37:44 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2013/11/06 04:21:28 | 000,000,224 | -HS- | M] () -- C:\boot.ini
[2013/10/25 23:18:48 | 000,001,945 | ---- | M] () -- C:\WINDOWS\epplauncher.mif
[2013/10/25 20:41:27 | 000,095,072 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2013/10/12 00:58:01 | 000,001,393 | ---- | M] () -- C:\WINDOWS\imsins.BAK
[2013/10/11 23:18:15 | 000,692,616 | ---- | M] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\FlashPlayerApp.exe
[2013/10/11 23:18:15 | 000,071,048 | ---- | M] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\FlashPlayerCPLApp.cpl
[7 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]

========== Files Created - No Company Name ==========

[2013/11/06 05:04:45 | 000,000,330 | -H-- | C] () -- C:\WINDOWS\tasks\MP Scheduled Scan.job
[2013/10/30 17:46:22 | 000,000,384 | -H-- | C] () -- C:\WINDOWS\tasks\Microsoft Antimalware Scheduled Scan.job
[2013/10/25 23:19:45 | 000,062,304 | ---- | C] () -- C:\Documents and Settings\LocalService\Local Settings\Application Data\FontCache3.0.0.0.dat
[2013/01/25 21:44:02 | 000,008,192 | ---- | C] () -- C:\Documents and Settings\Me\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2012/11/08 00:07:58 | 013,943,672 | ---- | C] () -- C:\Program Files\GoogleEarthWin_5.2.1.1588.exe
[2012/11/07 23:42:50 | 000,901,984 | ---- | C] () -- C:\Program Files\windows xp service pack 3 setup.exe
[2012/06/30 03:14:01 | 000,000,754 | ---- | C] () -- C:\WINDOWS\WORDPAD.INI
[2012/06/09 23:28:17 | 000,000,082 | ---- | C] () -- C:\WINDOWS\wininit.ini
[2012/03/28 02:18:07 | 000,000,042 | ---- | C] () -- C:\WINDOWS\FFS20ChtReg.ini
[2012/03/08 17:02:57 | 000,001,324 | ---- | C] () -- C:\WINDOWS\System32\d3d9caps.dat
[2012/03/07 22:42:07 | 000,003,072 | ---- | C] () -- C:\WINDOWS\System32\iacenc.dll
[2012/03/07 21:51:42 | 000,113,864 | ---- | C] () -- C:\Program Files\VidCap_II.exe
[2012/03/07 16:41:51 | 000,002,048 | --S- | C] () -- C:\WINDOWS\bootstat.dat
[2012/03/07 16:36:02 | 000,022,720 | ---- | C] () -- C:\WINDOWS\System32\emptyregdb.dat
[2012/03/07 08:21:20 | 000,004,161 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI
[2012/03/07 08:20:01 | 000,095,072 | ---- | C] () -- C:\WINDOWS\System32\FNTCACHE.DAT

========== ZeroAccess Check ==========

[2012/10/11 23:49:14 | 000,000,000 | -HSD | M] -- C:\RECYCLER\S-1-5-18\$e4de3b2e3377a553cfcf7535f9642542\L
[2012/10/12 22:08:18 | 000,000,000 | -HSD | M] -- C:\RECYCLER\S-1-5-18\$e4de3b2e3377a553cfcf7535f9642542\U
[2012/10/12 00:18:15 | 000,000,804 | ---- | M] () -- C:\RECYCLER\S-1-5-18\$e4de3b2e3377a553cfcf7535f9642542\L\00000004.@
[2012/03/08 18:59:23 | 000,000,227 | RHS- | M] () -- C:\WINDOWS\assembly\Desktop.ini

[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]

[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shdocvw.dll -- [2008/04/14 04:42:06 | 001,499,136 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = C:\WINDOWS\system32\wbem\fastprox.dll -- [2009/02/09 07:10:48 | 000,473,600 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]
"" = C:\WINDOWS\system32\wbem\wbemess.dll -- [2008/04/14 04:42:10 | 000,273,920 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both

========== LOP Check ==========

[2013/05/29 14:40:16 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\APN
[2013/01/17 12:47:34 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Ask
[2012/10/14 00:35:59 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Babylon
[2012/06/09 23:40:21 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\blekko toolbars
[2012/03/08 20:46:18 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Application Data\Common Files
[2012/09/27 19:58:01 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\GameTap Web Player
[2013/05/29 14:32:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\ManyCam
[2013/05/16 12:52:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\SuperHideIP
[2012/03/07 18:13:16 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\SupportSoft
[2012/07/27 22:32:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Tarma Installer
[2013/05/29 14:32:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Temp
[2012/10/14 00:35:58 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Me\Application Data\Babylon
[2012/06/09 20:45:58 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Me\Application Data\blekkotb_019
[2012/03/28 01:19:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Me\Application Data\escreen
[2013/11/06 05:06:44 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Me\Application Data\GlarySoft
[2013/01/06 04:46:19 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Me\Application Data\Leadertech
[2013/05/29 14:32:16 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Me\Application Data\ManyCam
[2012/07/28 16:28:31 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Me\Application Data\Media Finder
[2012/04/24 01:29:09 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Me\Application Data\MSNInstaller
[2013/05/14 13:10:17 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Me\Application Data\player
[2013/05/14 13:07:33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Me\Application Data\PriceGong
[2013/05/16 12:52:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Me\Application Data\SuperHideIP

========== Purity Check ==========

========== Alternate Data Streams ==========

@Alternate Data Stream - 88 bytes -> C:\WINDOWS\System32\ctfmon.exe:SummaryInformation

< End of report >

Attached Files

OTL.Txt 84.49KB 90 downloads

Edited by Sherry0004008, 06 November 2013 - 06:39 AM.

#2
maliprog

Posted 06 November 2013 - 07:41 AM

Trusted Helper

Malware Removal
6,172 posts

Hello Sherry0004008 and welcome to my office here at G2G!

My nick is maliprog and I'll be your technical support on this issue. Before we start please read my notes carefully:

NOTES:

Malware removal is NOT instantaneous, most infections require several courses of action to completely eradicate.
Absence of symptoms does not always mean the computer is clean
Kindly follow my instructions in the order posted. Order is crucial in cleaning process.
Please DO NOT run any scans or fix on your own without my direction.
Please read all of my response through at least once before attempting to follow the procedures described.
If there's anything you don't understand or isn't totally clear, please come back to me for clarification.
Please do not attach any log files to your replies unless I specifically ask you. Instead please copy and paste it to include the log in your reply.
You must reply within 3 days or your topic will be closed

Step 1

Download the latest version of TDSSKiller from here and save it to your Desktop.

Doubleclick on TDSSKiller.exe to run the application, then click on Change parameters.
Check the boxes beside:
- Loaded modules
A reboot will be needed to apply the changes. Do it.
TDSSKiller will launch automatically after the reboot. Also your computer may seem very slow and unusable. This is normal. Give it enough time to load your background programs.
Then click on Change parameters in TDSSKiller.
Make sure to check:
- Services and drivers
- Boot sectors
- Loaded modules
- Verify Driver Digital Signature
- Detect TDLFS file system
then click OK.
Click the Start Scan button to start the scan.
If a suspicious object is detected, the default action will be Skip
If malicious objects are found, they will show in the Scan results and offer three (3) options.
Ensure Cure is selected for malicious objects
Click Continue then Reboot now to finish the cleaning process.
Note: If Cure is not available, please choose Skip instead, do not choose Delete unless instructed.

A report will be created in your root directory, (usually C:\\ folder) in the form of \"TDSSKiller.[Version]_[Date]_[Time]_log.txt\". Please copy and paste its contents on your next reply.

Step 2

Download and Install Combofix

Download ComboFix from one of the following locations:

Link 1
Link 2

VERY IMPORTANT !!! Save ComboFix.exe to your Desktop *

IMPORTANT - Disable your AntiVirus and AntiSpyware applications, usually via a right click on the System Tray icon. They may otherwise interfere with our tools. If you have difficulty properly disabling your protective programs, refer to this link here

Double click on ComboFix.exe & follow the prompts.
Accept the disclaimer and allow to update if it asks
When finished, it shall produce a log for you.
Please include the C:\ComboFix.txt in your next reply.

Notes:
1. Do not mouse-click Combofix's window while it is running. That may cause it to stall.
2. Do not "re-run" Combofix. If you have a problem, reply back for further instructions.
3. If after the reboot you get errors about programmes being marked for deletion just reboot your system once, that will cure it.

Please make sure you include the combo fix log in your next reply

Step 3

Please don't forget to include these items in your reply:

TDSSKiller log
Combofix log

It would be helpful if you could post each log in separate post using "Add Reply" button

#3
Sherry0004008

Posted 06 November 2013 - 08:28 AM

New Member

Topic Starter
Member
4 posts

09:02:53.0593 0x0634 TDSS rootkit removing tool 3.0.0.16 Nov 1 2013 15:53:38
09:02:55.0593 0x0634 ============================================================
09:02:55.0593 0x0634 Current date / time: 2013/11/06 09:02:55.0593
09:02:55.0593 0x0634 SystemInfo:
09:02:55.0593 0x0634
09:02:55.0593 0x0634 OS Version: 5.1.2600 ServicePack: 3.0
09:02:55.0593 0x0634...
08:58:03.0942 3780 TDSS rootkit removing tool 2.8.16.0 Feb 11 2013 18:50:42
08:58:12.0098 3780 Perform update action was selected
08:58:12.0098 3764 Deinitialize success
09:02:53.0593 0x0634 TDSS rootkit removing tool 3.0.0.16 Nov 1 2013 15:53:38
09:02:55.0593 0x0634 ============================================================
09:02:55.0593 0x0634 Current date / time: 2013/11/06 09:02:55.0593
09:02:55.0593 0x0634 SystemInfo:
09:02:55.0593 0x0634
09:02:55.0593 0x0634 OS Version: 5.1.2600 ServicePack: 3.0
09:02:55.0593 0x0634 Product type: Workstation
09:02:55.0593 0x0634 ComputerName: LAPTOP
09:02:55.0593 0x0634 UserName: Me
09:02:55.0593 0x0634 Windows directory: C:\WINDOWS
09:02:55.0593 0x0634 System windows directory: C:\WINDOWS
09:02:55.0593 0x0634 Processor architecture: Intel x86
09:02:55.0593 0x0634 Number of processors: 2
09:02:55.0593 0x0634 Page size: 0x1000
09:02:55.0593 0x0634 Boot type: Normal boot
09:02:55.0593 0x0634 ============================================================
09:02:55.0593 0x0634 BG loaded
09:02:57.0187 0x0634 System UUID: {B1D1672D-DC30-3C7E-5DDB-F7B67289F004}
09:02:58.0921 0x0634 Drive \Device\Harddisk0\DR0 - Size: 0x1BF2976000 (111.79 Gb), SectorSize: 0x200, Cylinders: 0x3901, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000054
09:02:58.0968 0x0634 ============================================================
09:02:58.0968 0x0634 \Device\Harddisk0\DR0:
09:02:58.0968 0x0634 MBR partitions:
09:02:58.0968 0x0634 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0xDF8F8C1
09:02:58.0968 0x0634 ============================================================
09:02:59.0046 0x0634 C: <-> \Device\Harddisk0\DR0\Partition1
09:02:59.0046 0x0634 ============================================================
09:02:59.0046 0x0634 Initialize success
09:02:59.0046 0x0634 ============================================================
09:06:54.0453 0x053c ============================================================
09:06:54.0453 0x053c Scan started
09:06:54.0453 0x053c Mode: Manual; SigCheck; TDLFS;
09:06:54.0453 0x053c ============================================================
09:06:54.0453 0x053c KSN ping started
09:06:57.0156 0x053c KSN ping finished: true
09:06:58.0703 0x053c ================ Scan services =============================
09:06:58.0984 0x053c Abiosdsk - ok
09:06:59.0000 0x053c abp480n5 - ok
09:06:59.0078 0x053c [ 8FD99680A539792A30E97944FDAECF17, 594F8E0C3695400B0C09A797AF6BDFAC6F750ECD67D0EE803914C572B1DCC43C ] ACPI C:\WINDOWS\system32\DRIVERS\ACPI.sys
09:07:00.0609 0x053c ACPI - ok
09:07:00.0671 0x053c [ 9859C0F6936E723E4892D7141B1327D5, 5E8F6A2FC4DF2E5E92A1D66ECC2810E08B42B64E9CD0DF4AD3F78EA8558B90AF ] ACPIEC C:\WINDOWS\system32\DRIVERS\ACPIEC.sys
09:07:00.0859 0x053c ACPIEC - ok
09:07:01.0031 0x053c [ A283108E14F3970432C21AF4C0CB1BCE, 1D3219EF916D54232838870EDE557296AACB714B456ED0AAE0DE3CE3822F4643 ] AdobeFlashPlayerUpdateSvc C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
09:07:01.0062 0x053c AdobeFlashPlayerUpdateSvc - ok
09:07:01.0062 0x053c adpu160m - ok
09:07:01.0109 0x053c [ 8BED39E3C35D6A489438B8141717A557, 1B5796E56B0927360CE0759641B1151828BC0A9E45620D2B2D880491F5CE33D0 ] aec C:\WINDOWS\system32\drivers\aec.sys
09:07:01.0281 0x053c aec - ok
09:07:01.0328 0x053c [ 1E44BC1E83D8FD2305F8D452DB109CF9, CF5EC07E0B589FA2A4701C6CFD69E893FC3ABF274AD57AE3C13FFE49063B02C8 ] AFD C:\WINDOWS\System32\drivers\afd.sys
09:07:01.0453 0x053c AFD - ok
09:07:01.0468 0x053c Aha154x - ok
09:07:01.0468 0x053c aic78u2 - ok
09:07:01.0484 0x053c aic78xx - ok
09:07:01.0531 0x053c [ A9A3DAA780CA6C9671A19D52456705B4, 67C959144B57AE0BBF1D82DBED197F32CDB06FECD883A80C441A0202FE83FAB4 ] Alerter C:\WINDOWS\system32\alrsvc.dll
09:07:01.0718 0x053c Alerter - ok
09:07:01.0750 0x053c [ 8C515081584A38AA007909CD02020B3D, A5E13CA10F702928E0DE84C74D0EA8ACCB117FD76FBABC55220C75C4FFD596DC ] ALG C:\WINDOWS\System32\alg.exe
09:07:01.0921 0x053c ALG - ok
09:07:01.0921 0x053c AliIde - ok
09:07:01.0968 0x053c [ 0A4D13B388C814560BD69C3A496ECFA8, 71ADD4C4A5C6465EA27F572DE608C348896C4C557D136718CCDD9919144F7986 ] AmdK8 C:\WINDOWS\system32\DRIVERS\AmdK8.sys
09:07:02.0031 0x053c AmdK8 - ok
09:07:02.0046 0x053c amsint - ok
09:07:02.0046 0x053c AppMgmt - ok
09:07:02.0062 0x053c [ B5B8A80875C1DEDEDA8B02765642C32F, AD0C71D73B1B8225351FBF4FFB43001A32B4DAE69504C59970CD2428BB33D4EF ] Arp1394 C:\WINDOWS\system32\DRIVERS\arp1394.sys
09:07:02.0218 0x053c Arp1394 - ok
09:07:02.0234 0x053c asc - ok
09:07:02.0234 0x053c asc3350p - ok
09:07:02.0250 0x053c asc3550 - ok
09:07:02.0359 0x053c [ 776ACEFA0CA9DF0FAA51A5FB2F435705, 72DF7ED6B085BC468994F5B3189506FD726A9A17A9C42ACA1E420D787691361D ] aspnet_state C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe
09:07:02.0390 0x053c aspnet_state - ok
09:07:02.0406 0x053c [ B153AFFAC761E7F5FCFA822B9C4E97BC, 7E60F572A6B3C6219E3C86225AA37243AFFD74337DB7F108B04778042E5CC959 ] AsyncMac C:\WINDOWS\system32\DRIVERS\asyncmac.sys
09:07:02.0562 0x053c AsyncMac - ok
09:07:02.0687 0x053c [ 9F3A2F5AA6875C72BF062C712CFA2674, B4DF1D2C56A593C6B54DE57395E3B51D288F547842893B32B0F59228A0CF70B9 ] atapi C:\WINDOWS\system32\DRIVERS\atapi.sys
09:07:02.0875 0x053c atapi - ok
09:07:02.0875 0x053c Atdisk - ok
09:07:03.0015 0x053c [ 5784A06FDC2AC7954225A1A79E1A8F00, B03EFCE2C9565C9532C17E030887B7AE9E6CAB897C54018504254F3B4BDA4831 ] Ati HotKey Poller C:\WINDOWS\system32\Ati2evxx.exe
09:07:03.0171 0x053c Ati HotKey Poller - ok
09:07:03.0312 0x053c [ DD222CE49E79F15D2312A5E1F42E716E, E7EE8EEF8B5FED441CAE9D8ABD38FD619667C3C19F6F33429112F4F19CF5DF00 ] ati2mtag C:\WINDOWS\system32\DRIVERS\ati2mtag.sys
09:07:03.0468 0x053c ati2mtag - ok
09:07:03.0500 0x053c [ 9916C1225104BA14794209CFA8012159, 5D6F05F715C52A16D05CAE15C3DFE77A139A7F27F7AE710EC9A10F9EE05115A1 ] Atmarpc C:\WINDOWS\system32\DRIVERS\atmarpc.sys
09:07:03.0671 0x053c Atmarpc - ok
09:07:03.0781 0x053c [ DEF7A7882BEC100FE0B2CE2549188F9D, 462C95B63D0A1058291A2DC8CBFCB13D7D74CCD1CA43B613A7EB43D49E3276F8 ] AudioSrv C:\WINDOWS\System32\audiosrv.dll
09:07:03.0937 0x053c AudioSrv - ok
09:07:03.0984 0x053c [ D9F724AA26C010A217C97606B160ED68, 329B5118F2409731D06FDAE85B6ADD64A048292801BCB3546651CEB303111695 ] audstub C:\WINDOWS\system32\DRIVERS\audstub.sys
09:07:04.0171 0x053c audstub - ok
09:07:04.0265 0x053c [ 30D20FC98BCFD52E1DA778CF19B223D4, 4B035071CEF9BBD32EEA16E6A14F9908DCB89687632E8CB8420FA8EE0DB075C4 ] BCM43XX C:\WINDOWS\system32\DRIVERS\bcmwl5.sys
09:07:04.0343 0x053c BCM43XX - ok
09:07:04.0390 0x053c [ DA1F27D85E0D1525F6621372E7B685E9, 5A81A46A3BDD19DAFC6C87D277267A5D44F3A1B5302F2CC1111D84B7BAD5610D ] Beep C:\WINDOWS\system32\drivers\Beep.sys
09:07:04.0562 0x053c Beep - ok
09:07:04.0687 0x053c [ 574738F61FCA2935F5265DC4E5691314, 3C7CCF064397186C3A3863DD2370AB6414A61B330097DCA4F299CA7BBAA3D1B4 ] BITS C:\WINDOWS\system32\qmgr.dll
09:07:04.0937 0x053c BITS - ok
09:07:05.0078 0x053c [ CFD4E51402DA9838B5A04AE680AF54A0, 5378F42B195B5832B00A05AD64E00473A45FFB86AC25C57241F26EA82B149FE1 ] Browser C:\WINDOWS\System32\browser.dll
09:07:05.0187 0x053c Browser - ok
09:07:05.0328 0x053c [ 0F5CA31BB3FDB5C1E63C170CFBECC93B, 29D76F880515855AC962C23025D7BDAAD501BCD5BCCF73BE368CCA352FAA47C9 ] CamDrL C:\WINDOWS\system32\DRIVERS\Camdrl.sys
09:07:05.0562 0x053c CamDrL - ok
09:07:05.0593 0x053c [ 90A673FC8E12A79AFBED2576F6A7AAF9, BDE7858A3457DB979FEDD8577FA6321BF72848E4A7BF9F173C78A6A10CBB3EBE ] cbidf2k C:\WINDOWS\system32\drivers\cbidf2k.sys
09:07:05.0796 0x053c cbidf2k - ok
09:07:05.0843 0x053c [ 0BE5AEF125BE881C4F854C554F2B025C, 1770DD70B3F115A0EF460907DEDC1E4B7241C08615A98F194D61A49C3E2BAA54 ] CCDECODE C:\WINDOWS\system32\DRIVERS\CCDECODE.sys
09:07:06.0015 0x053c CCDECODE - ok
09:07:06.0015 0x053c cd20xrnt - ok
09:07:06.0062 0x053c [ C1B486A7658353D33A10CC15211A873B, AA4DD9E7AAE5AAB1146B360B17001F975D2F29A1281CF7B13E7136480410F347 ] Cdaudio C:\WINDOWS\system32\drivers\Cdaudio.sys
09:07:06.0234 0x053c Cdaudio - ok
09:07:06.0265 0x053c [ C885B02847F5D2FD45A24E219ED93B32, B26B2F8E3A831E2B65EB0C5195B0645CD50E22615CE79C9B0B391CD563B121DB ] Cdfs C:\WINDOWS\system32\drivers\Cdfs.sys
09:07:06.0453 0x053c Cdfs - ok
09:07:06.0546 0x053c [ 1F4260CC5B42272D71F79E570A27A4FE, B51C2A3ED3C309953D0EA45869C8E464C10F2533DADE9E0286AF674979098D1D ] Cdrom C:\WINDOWS\system32\DRIVERS\cdrom.sys
09:07:06.0703 0x053c Cdrom - ok
09:07:06.0734 0x053c [ 84853B3FD012251690570E9E7E43343F, 65CACFA643E52A0C0E6B2D901228A8A0AD4993CAFA3C287E65395F4B7C521089 ] cercsr6 C:\WINDOWS\system32\drivers\cercsr6.sys
09:07:06.0781 0x053c cercsr6 - detected UnsignedFile.Multi.Generic ( 1 )
09:07:06.0968 0x053c cercsr6 ( UnsignedFile.Multi.Generic ) - warning
09:07:09.0562 0x053c Changer - ok
09:07:09.0609 0x053c [ 1CFE720EB8D93A7158A4EBC3AB178BDE, 65D2A9D9A88F38D4AF323134C151BA0F4B3CD0F6A134AF86E7AC9D07319F1726 ] CiSvc C:\WINDOWS\system32\cisvc.exe
09:07:09.0890 0x053c CiSvc - ok
09:07:09.0937 0x053c [ 34CBE729F38138217F9C80212A2A0C82, A9FD7A758D12E0818A11BEEF1CE772FEFA8373E92EF6C0DA8628CD4572CC9A43 ] ClipSrv C:\WINDOWS\system32\clipsrv.exe
09:07:10.0109 0x053c ClipSrv - ok
09:07:10.0187 0x053c [ D87ACAED61E417BBA546CED5E7E36D9C, 14AC6034A5BC0FB2A1AFDAD42BEF4DE641556E54AD30D0C46765660A4BE55462 ] clr_optimization_v2.0.50727_32 c:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
09:07:10.0203 0x053c clr_optimization_v2.0.50727_32 - ok
09:07:10.0250 0x053c [ C5A75EB48E2344ABDC162BDA79E16841, 6070A8AAFD38FBC6A68A2B10C20117612354DF21B4492D90CA522BFB6870D726 ] clr_optimization_v4.0.30319_32 C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
09:07:10.0406 0x053c clr_optimization_v4.0.30319_32 - ok
09:07:10.0437 0x053c [ 0F6C187D38D98F8DF904589A5F94D411, DB987093446216CEE913AC27503BF7E23E5A62DF169B355730285DAB64F6ED28 ] CmBatt C:\WINDOWS\system32\DRIVERS\CmBatt.sys
09:07:10.0609 0x053c CmBatt - ok
09:07:10.0625 0x053c CmdIde - ok
09:07:10.0656 0x053c [ 6E4C9F21F0FAE8940661144F41B13203, 731202A0DD021FCF9287FEA631212603AAAC23F9E7F76B2882F913B18A971F1C ] Compbatt C:\WINDOWS\system32\DRIVERS\compbatt.sys
09:07:10.0828 0x053c Compbatt - ok
09:07:10.0843 0x053c COMSysApp - ok
09:07:10.0843 0x053c Cpqarray - ok
09:07:10.0953 0x053c [ 3D4E199942E29207970E04315D02AD3B, 0825960894CF9C86CC8775BDD2A262948A09CA495AA7FE9F210FAF49E7086383 ] CryptSvc C:\WINDOWS\System32\cryptsvc.dll
09:07:11.0125 0x053c CryptSvc - ok
09:07:11.0140 0x053c dac2w2k - ok
09:07:11.0140 0x053c dac960nt - ok
09:07:11.0281 0x053c [ 6B27A5C03DFB94B4245739065431322C, 6AEAC16AB4E0DFD25123AAF4D4181FEE1B919B7B2793117006CE8CF30E826CFD ] DcomLaunch C:\WINDOWS\system32\rpcss.dll
09:07:11.0390 0x053c DcomLaunch - ok
09:07:11.0437 0x053c [ 5E38D7684A49CACFB752B046357E0589, F192AD4190BCFB6939A5CBC91648FE63168AF79A5E227A111DEAD6A92E42AB8D ] Dhcp C:\WINDOWS\System32\dhcpcsvc.dll
09:07:11.0609 0x053c Dhcp - ok
09:07:11.0625 0x053c [ 044452051F3E02E7963599FC8F4F3E25, 584BDDB074618BE76454CF90E74829CFF588B5B5FAEB793E2F7AAD26352DD689 ] Disk C:\WINDOWS\system32\DRIVERS\disk.sys
09:07:11.0828 0x053c Disk - ok
09:07:11.0843 0x053c dmadmin - ok
09:07:11.0906 0x053c [ D992FE1274BDE0F84AD826ACAE022A41, C82BD6561A14F2932A761F5883A787B99031250EE5E9B7B5714AA045545C9B99 ] dmboot C:\WINDOWS\system32\drivers\dmboot.sys
09:07:12.0140 0x053c dmboot - ok
09:07:12.0250 0x053c [ 7C824CF7BBDE77D95C08005717A95F6F, A73CB323B7A6410C3D3F258BF204E716ADF8C84C9E4F6562C57AB73DAED8CCDE ] dmio C:\WINDOWS\system32\drivers\dmio.sys
09:07:12.0453 0x053c dmio - ok
09:07:12.0546 0x053c [ E9317282A63CA4D188C0DF5E09C6AC5F, D41E002F555FE9015EF620975255F58BB79198CA1FF0E09EC950CB450FF77CF7 ] dmload C:\WINDOWS\system32\drivers\dmload.sys
09:07:12.0734 0x053c dmload - ok
09:07:12.0843 0x053c [ 57EDEC2E5F59F0335E92F35184BC8631, 61F6F0DC2D1A6C61D5EF0D5CC4BE0FFC217F1E61FDA3EA9F704709293656600F ] dmserver C:\WINDOWS\System32\dmserver.dll
09:07:13.0031 0x053c dmserver - ok
09:07:13.0125 0x053c [ 8A208DFCF89792A484E76C40E5F50B45, 4E40E2EB38C6254E7CAA488200E89EE7DEBBBA773890BC6A84313CC68178D54F ] DMusic C:\WINDOWS\system32\drivers\DMusic.sys
09:07:13.0296 0x053c DMusic - ok
09:07:13.0328 0x053c [ 5F7E24FA9EAB896051FFB87F840730D2, 356EEFDCD54DECAD0170B34B993E4BF80DD039E2B2922D7A8D09B84031E9FC7A ] Dnscache C:\WINDOWS\System32\dnsrslvr.dll
09:07:13.0453 0x053c Dnscache - ok
09:07:13.0484 0x053c [ 0F0F6E687E5E15579EF4DA8DD6945814, 5C32D88119EB1465B2D719BEE2E05888D1A73454B5E33F2D4928DA710F8BFBA3 ] Dot3svc C:\WINDOWS\System32\dot3svc.dll
09:07:13.0656 0x053c Dot3svc - ok
09:07:13.0656 0x053c dpti2o - ok
09:07:13.0750 0x053c [ 8F5FCFF8E8848AFAC920905FBD9D33C8, C8C6FB97AB0871C8C88A2201525A5CF10D5131CB6980D32692ED7A8F58399AD5 ] drmkaud C:\WINDOWS\system32\drivers\drmkaud.sys
09:07:13.0937 0x053c drmkaud - ok
09:07:14.0031 0x053c [ 2187855A7703ADEF0CEF9EE4285182CC, 8233CC11F637866C0074043835A785EA2B616739B6B1181B143A253CF2508CFD ] EapHost C:\WINDOWS\System32\eapsvc.dll
09:07:14.0203 0x053c EapHost - ok
09:07:14.0234 0x053c [ BC93B4A066477954555966D77FEC9ECB, 27F5B780175EF46DA102EE33F7F33559C8B40C077EEA4405D579D9507F4B1C23 ] ERSvc C:\WINDOWS\System32\ersvc.dll
09:07:14.0406 0x053c ERSvc - ok
09:07:14.0437 0x053c [ 65DF52F5B8B6E9BBD183505225C37315, 59C606977DB40A3443DFF0BE2A4C761824881B22C9FDB3D23F6486DB580E92A4 ] Eventlog C:\WINDOWS\system32\services.exe
09:07:14.0531 0x053c Eventlog - ok
09:07:14.0546 0x053c [ D4991D98F2DB73C60D042F1AEF79EFAE, 58AF949EAEBF4FF3E3314DFB66CE4198BF65F0836B68CD27A6ED319742CCCCD2 ] EventSystem C:\WINDOWS\system32\es.dll
09:07:14.0640 0x053c EventSystem - ok
09:07:14.0671 0x053c [ 38D332A6D56AF32635675F132548343E, E6909DB836AF679B4F4D62C7396D6C82769CC7ABB8C919C2AABFE934FCE268F6 ] Fastfat C:\WINDOWS\system32\drivers\Fastfat.sys
09:07:14.0843 0x053c Fastfat - ok
09:07:14.0953 0x053c [ 99BC0B50F511924348BE19C7C7313BBF, A1006C687BD352F700B140DC741515A0CDD9E1352C0FBD1EE410D404E344444B ] FastUserSwitchingCompatibility C:\WINDOWS\System32\shsvcs.dll
09:07:15.0078 0x053c FastUserSwitchingCompatibility - ok
09:07:15.0140 0x053c [ 92CDD60B6730B9F50F6A1A0C1F8CDC81, 8307A532AB4D05CBBCE206DC2759497708BF5AAA880BD00F0E4F281D8578A1F5 ] Fdc C:\WINDOWS\system32\drivers\Fdc.sys
09:07:15.0343 0x053c Fdc - ok
09:07:15.0421 0x053c [ D45926117EB9FA946A6AF572FBE1CAA3, 4C94EF009D778BE0BDF8F812F026B96F91F641BE30AA2531427A5E63DBD280DA ] Fips C:\WINDOWS\system32\drivers\Fips.sys
09:07:15.0609 0x053c Fips - ok
09:07:15.0609 0x053c [ 9D27E7B80BFCDF1CDD9B555862D5E7F0, 69C271AD5BCEBFD8AE5A769BDD7EC51256DA3A8ADAD5D12E5C0D13F4E82D8805 ] Flpydisk C:\WINDOWS\system32\drivers\Flpydisk.sys
09:07:15.0781 0x053c Flpydisk - ok
09:07:15.0812 0x053c [ B2CF4B0786F8212CB92ED2B50C6DB6B0, 280F5CF8A90F7BEDE73ADD0DD0F8952088133A7CA9A3D3B7041957E33B36845D ] FltMgr C:\WINDOWS\system32\drivers\fltmgr.sys
09:07:16.0000 0x053c FltMgr - ok
09:07:16.0093 0x053c [ 8BA7C024070F2B7FDD98ED8A4BA41789, 47585006F86B2C6016EC54250A416794792D1E4024FF229C120BC25B684AF66A ] FontCache3.0.0.0 c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
09:07:16.0109 0x053c FontCache3.0.0.0 - ok
09:07:16.0140 0x053c [ 3E1E2BD4F39B0E2B7DC4F4D2BCC2779A, EC635E071201A766845D48973772CBE0958942B4162F3F5F70660D114CC877E0 ] Fs_Rec C:\WINDOWS\system32\drivers\Fs_Rec.sys
09:07:16.0312 0x053c Fs_Rec - ok
09:07:16.0328 0x053c [ 6AC26732762483366C3969C9E4D2259D, FF2C9A23CC17F380093F0BEA955B1925794271C2FEA16B9B7639668E6999BAE3 ] Ftdisk C:\WINDOWS\system32\DRIVERS\ftdisk.sys
09:07:16.0484 0x053c Ftdisk - ok
09:07:16.0515 0x053c [ 0A02C63C8B144BD8C86B103DEE7C86A2, 7A3235DD3E1995DD72B212FAEB3ECA2A974434DE9BF6D269EA11BA65A80E7E50 ] Gpc C:\WINDOWS\system32\DRIVERS\msgpc.sys
09:07:16.0703 0x053c Gpc - ok
09:07:16.0750 0x053c [ 573C7D0A32852B48F3058CFD8026F511, BC384BBA394AFDCDA1A9ABC858C692AA84A1F0A31AF3DDF7F38D120C027927FB ] HDAudBus C:\WINDOWS\system32\DRIVERS\HDAudBus.sys
09:07:16.0937 0x053c HDAudBus - ok
09:07:17.0046 0x053c [ 4FCCA060DFE0C51A09DD5C3843888BCD, D82417706B517F2610DDF7C86BE03A72EFA9A2A389DF5C8F8ADEAB8144E2C80A ] helpsvc C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll
09:07:17.0250 0x053c helpsvc - ok
09:07:17.0281 0x053c [ DEB04DA35CC871B6D309B77E1443C796, F66A15C9528D661940F1F4CA453B3E95036D68C74C3B8AB53644211DBD3D2F32 ] HidServ C:\WINDOWS\System32\hidserv.dll
09:07:17.0453 0x053c HidServ - ok
09:07:17.0500 0x053c [ CCF82C5EC8A7326C3066DE870C06DAF1, 93395FA4C26B2E82DC8B7025ED3BCF583885E5D8C5F60CD6EEAA6335D6A126EC ] HidUsb C:\WINDOWS\system32\DRIVERS\hidusb.sys
09:07:17.0687 0x053c HidUsb - ok
09:07:17.0718 0x053c [ 8878BD685E490239777BFE51320B88E9, C5C3ECF6B049B6736E35B39518A8F830B45C45A88FFE8E3A6B7922AD946597E2 ] hkmsvc C:\WINDOWS\System32\kmsvc.dll
09:07:17.0890 0x053c hkmsvc - ok
09:07:17.0906 0x053c hpn - ok
09:07:17.0968 0x053c [ F80A415EF82CD06FFAF0D971528EAD38, 524D9E9201572929522F6805011783711B7C0F76308B924C89CF75F4B7A1FDF3 ] HTTP C:\WINDOWS\system32\Drivers\HTTP.sys
09:07:18.0046 0x053c HTTP - ok
09:07:18.0078 0x053c [ 6100A808600F44D999CEBDEF8841C7A3, 61A75118C327812C60622010985A2E80E79B6FD9030A5732390EE5426E4AF6C9 ] HTTPFilter C:\WINDOWS\System32\w3ssl.dll
09:07:18.0281 0x053c HTTPFilter - ok
09:07:18.0281 0x053c i2omgmt - ok
09:07:18.0296 0x053c i2omp - ok
09:07:18.0328 0x053c [ 4A0B06AA8943C1E332520F7440C0AA30, DB2452390CCFE67E0C5FEB4FD42CA24ABE2DDD40D0B22DD5F5B8F70416863918 ] i8042prt C:\WINDOWS\system32\DRIVERS\i8042prt.sys
09:07:18.0484 0x053c i8042prt - ok
09:07:18.0578 0x053c [ C01AC32DC5C03076CFB852CB5DA5229C, A4D7749220B5BC965D96A267F1E02FE8284A230BA249109207BD4B9EA8DFAC96 ] idsvc c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
09:07:18.0656 0x053c idsvc - ok
09:07:18.0703 0x053c [ 083A052659F5310DD8B6A6CB05EDCF8E, 48D39B03FFB6FAA1529B774443BA12618AE3982D9F65A7B9D18F2269F78B31F4 ] Imapi C:\WINDOWS\system32\DRIVERS\imapi.sys
09:07:18.0890 0x053c Imapi - ok
09:07:18.0953 0x053c [ 30DEAF54A9755BB8546168CFE8A6B5E1, 3936228CD3125C763ABFCB93E86E4B43838202BCC0913A28E84AC0263B43EE0D ] ImapiService C:\WINDOWS\system32\imapi.exe
09:07:19.0125 0x053c ImapiService - ok
09:07:19.0125 0x053c ini910u - ok
09:07:19.0140 0x053c IntelIde - ok
09:07:19.0234 0x053c [ 3BB22519A194418D5FEC05D800A19AD0, F6662F440950596DC1382DD1DB5D7891CCEA30A6062BEA942C18445B5F0D8B16 ] Ip6Fw C:\WINDOWS\system32\drivers\ip6fw.sys
09:07:19.0406 0x053c Ip6Fw - ok
09:07:19.0531 0x053c [ 731F22BA402EE4B62748ADAF6363C182, 5C3BEBD008A5BE4DC2F92076FF41A10DDC01E10EC7E6552213CFA11970811848 ] IpFilterDriver C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
09:07:19.0703 0x053c IpFilterDriver - ok
09:07:19.0828 0x053c [ B87AB476DCF76E72010632B5550955F5, E6E74D3A86A7917A8BAED44F8E97CCD2EB171E4E4B27E9907F60D1523FAF319A ] IpInIp C:\WINDOWS\system32\DRIVERS\ipinip.sys
09:07:20.0000 0x053c IpInIp - ok
09:07:20.0109 0x053c [ CC748EA12C6EFFDE940EE98098BF96BB, AF523E21C25D9A1715EFEA573E4F52AF5D4FC9F28A2D613F5DB629C186C439E0 ] IpNat C:\WINDOWS\system32\DRIVERS\ipnat.sys
09:07:20.0281 0x053c IpNat - ok
09:07:20.0312 0x053c [ 23C74D75E36E7158768DD63D92789A91, 394D296F38E7D8EFD91A6EEC301D9CE6AF910E35EB9819F1A9E3363863AEDFDC ] IPSec C:\WINDOWS\system32\DRIVERS\ipsec.sys
09:07:20.0500 0x053c IPSec - ok
09:07:20.0531 0x053c [ C93C9FF7B04D772627A3646D89F7BF89, 805FA48E7A46D4F10240BF880A2468F53DEA36E83004399228AB70DB7D20544A ] IRENUM C:\WINDOWS\system32\DRIVERS\irenum.sys
09:07:20.0671 0x053c IRENUM - ok
09:07:20.0703 0x053c [ 05A299EC56E52649B1CF2FC52D20F2D7, 2654619DB3E6D6C385B63AB02F87D4241C4F0250CC31383D1B3586917166C2DC ] isapnp C:\WINDOWS\system32\DRIVERS\isapnp.sys
09:07:20.0890 0x053c isapnp - ok
09:07:21.0046 0x053c [ 0A5709543986843D37A92290B7838340, 8945A09816A1A1450202BA621C9DA1F9F922594CCE9DE0995FE863F78C584686 ] JavaQuickStarterService C:\Program Files\Java\jre6\bin\jqs.exe
09:07:21.0078 0x053c JavaQuickStarterService - ok
09:07:21.0093 0x053c [ 463C1EC80CD17420A542B7F36A36F128, E3B11BA26AFEAFB50B0FC168EA07F6049DA6B88BCDDEEE20310602D7FC27A3A7 ] Kbdclass C:\WINDOWS\system32\DRIVERS\kbdclass.sys
09:07:21.0281 0x053c Kbdclass - ok
09:07:21.0312 0x053c [ 9EF487A186DEA361AA06913A75B3FA99, B94EBA4EC6D85E11C81AF9927E9EF0AF2E6FE134CFF1FDB0535B7C5A794B4261 ] kbdhid C:\WINDOWS\system32\DRIVERS\kbdhid.sys
09:07:21.0531 0x053c kbdhid - ok
09:07:21.0609 0x053c [ 692BCF44383D056AED41B045A323D378, 1A99DEE83FFAF64E73067FC049C0A4CE07D94E4AE31EFA17B38CEFA9E41D67DC ] kmixer C:\WINDOWS\system32\drivers\kmixer.sys
09:07:21.0796 0x053c kmixer - ok
09:07:21.0937 0x053c [ B467646C54CC746128904E1654C750C1, 3BD71BE3663EA23463D236D8A2A2E42DFA10C502BDB4B6E131FAF0FBA748219E ] KSecDD C:\WINDOWS\system32\drivers\KSecDD.sys
09:07:22.0078 0x053c KSecDD - ok
09:07:22.0140 0x053c [ 3A7C3CBE5D96B8AE96CE81F0B22FB527, 0044F03132596A494448CCE5F3D6ECC12617BB4CF6BAE348F79D4DC40ACD6EE0 ] lanmanserver C:\WINDOWS\System32\srvsvc.dll
09:07:22.0203 0x053c lanmanserver - ok
09:07:22.0250 0x053c [ A8888A5327621856C0CEC4E385F69309, B08B63300D824E35E31EEEA2C4C086DFA2C2A964CEDAE512E74D3D88AADAA2C1 ] lanmanworkstation C:\WINDOWS\System32\wkssvc.dll
09:07:22.0359 0x053c lanmanworkstation - ok
09:07:22.0375 0x053c [ 12E54181D584F72296FD6EC72309BD94, B22BD7AF84BF78F6A69C782F0E07EBE885857B0412C43C8021EFC63C9D06A5EB ] LBeepKE C:\WINDOWS\system32\Drivers\LBeepKE.sys
09:07:22.0390 0x053c LBeepKE - ok
09:07:22.0406 0x053c lbrtfdc - ok
09:07:22.0468 0x053c [ 54581F1B8A4B517040AD316E5C430A2C, D6D0792D77B6C6EC83A723C24FCAFD65B1DB335381F815C7F70C4A8B50C7491C ] LBTServ C:\Program Files\Common Files\LogiShrd\Bluetooth\lbtserv.exe
09:07:22.0500 0x053c LBTServ - ok
09:07:22.0531 0x053c [ 2A727534372EDE8C0A4EDB1F037A44BF, 49E949FF459290C42FB50308FB7342DB7FF75E5F039E7BAF08D848C8DD2B6390 ] LEqdUsb C:\WINDOWS\system32\Drivers\LEqdUsb.Sys
09:07:22.0562 0x053c LEqdUsb - ok
09:07:22.0593 0x053c [ 9C694DFC271AC043E4FA8DDF8BB4C57E, 34B697174C3E1FD98FDA37EB80DE845554D03BA4412140E7BFD2A831329F8ED9 ] LHidEqd C:\WINDOWS\system32\Drivers\LHidEqd.Sys
09:07:22.0609 0x053c LHidEqd - ok
09:07:22.0625 0x053c [ 5001C2B3557B53DED02ABED3BCC6FD2D, 47971B3D8C2D8023BFADAD949FA0F069B32959C42EC2AD6B8344508F7F6C9FDD ] LHidFilt C:\WINDOWS\system32\DRIVERS\LHidFilt.Sys
09:07:22.0656 0x053c LHidFilt - ok
09:07:22.0687 0x053c [ A7DB739AE99A796D91580147E919CC59, EDF4E039BA277B0E6D66FEB0B28096E67D682C09DFC18ECECF062D9DCFB75ACF ] LmHosts C:\WINDOWS\System32\lmhsvc.dll
09:07:22.0875 0x053c LmHosts - ok
09:07:22.0906 0x053c [ 3AD9369E5D17014971A11728F198994C, 0EE59562C011A29C253193A8D202F591C1B4C0FD25C2C2E33ED1288EF4B09578 ] LMouFilt C:\WINDOWS\system32\DRIVERS\LMouFilt.Sys
09:07:22.0921 0x053c LMouFilt - ok
09:07:22.0968 0x053c [ 64BC29C3A0388BFC580BB8B1346F7659, 4BB25AEAEF4F4DB9A318858A365402429D23FEB281FAB4C96583402961F0E544 ] LVUSBSta C:\WINDOWS\system32\drivers\LVUSBSta.sys
09:07:22.0984 0x053c LVUSBSta - ok
09:07:23.0015 0x053c [ D8C0B2EB928D57C928522EFF500C4BA8, B7261AB2DD262140489087C1A8F1A1DA5EE6373D453E5BC8A3F7B93A5540CE6C ] ManyCam C:\WINDOWS\system32\DRIVERS\mcvidrv.sys
09:07:23.0171 0x053c ManyCam - ok
09:07:23.0171 0x053c [ 964BD01FD77026F93F15040027F6F579, 7812F242A06F638094F63A1A254E1F1693EBFE2883C85E02C08301512A5585A2 ] mcaudrv_simple C:\WINDOWS\system32\drivers\mcaudrv.sys
09:07:23.0296 0x053c mcaudrv_simple - ok
09:07:23.0343 0x053c [ 986B1FF5814366D71E0AC5755C88F2D3, E6AF051174531C24B38E73987755D366ABEC595476C6D17793E8DCCC73F55340 ] Messenger C:\WINDOWS\System32\msgsvc.dll
09:07:23.0562 0x053c Messenger - ok
09:07:23.0609 0x053c [ 4AE068242760A1FB6E1A44BF4E16AFA6, 1FB771162B96AAF787AC24867B818DF8511F0780BB094FA9A38C11D8DBFE68BC ] mnmdd C:\WINDOWS\system32\drivers\mnmdd.sys
09:07:23.0781 0x053c mnmdd - ok
09:07:23.0843 0x053c [ D18F1F0C101D06A1C1ADF26EED16FCDD, BA0837C7780BD8262E143E2935AFA63BE59C3C39EF56CB8608EED0F50AF070D4 ] mnmsrvc C:\WINDOWS\system32\mnmsrvc.exe
09:07:24.0031 0x053c mnmsrvc - ok
09:07:24.0109 0x053c [ DFCBAD3CEC1C5F964962AE10E0BCC8E1, B342CC9EC3729AB1AB4B5E2E99F890C1E0CA649162DE91F6768AB857B719E97B ] Modem C:\WINDOWS\system32\drivers\Modem.sys
09:07:24.0265 0x053c Modem - ok
09:07:24.0281 0x053c [ 35C9E97194C8CFB8430125F8DBC34D04, 0C0FCE6B0A23FB0ECB92E1663E1C72D2DD5B177D82E04782957690B69530DB39 ] Mouclass C:\WINDOWS\system32\DRIVERS\mouclass.sys
09:07:24.0437 0x053c Mouclass - ok
09:07:24.0484 0x053c [ B1C303E17FB9D46E87A98E4BA6769685, 161A45488522055D0F0474ABEDA04DDD0B5DAC2411AF9154B15190BBD66E7153 ] mouhid C:\WINDOWS\system32\DRIVERS\mouhid.sys
09:07:24.0671 0x053c mouhid - ok
09:07:24.0687 0x053c [ A80B9A0BAD1B73637DBCBBA7DF72D3FD, 2A5E15ED2C24C6C65EF2F7E1FD93374774076C9D8D451E4422561F4D269C012F ] MountMgr C:\WINDOWS\system32\drivers\MountMgr.sys
09:07:24.0859 0x053c MountMgr - ok
09:07:24.0953 0x053c [ 5D494509432897338AFC19DB78A76DCB, 873F61F45D4A96096E17F9E266B1A20CCD65E4678DDB21DDE3DB98E831E524D3 ] MozillaMaintenance C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
09:07:24.0968 0x053c MozillaMaintenance - ok
09:07:25.0031 0x053c [ 24406D75B40F0F6B3C1AC7031D734565, B58AA80E9C3738CFD826D7C8129D5467166A4397CCFEEEF7F14542DEBB659A51 ] MpFilter C:\WINDOWS\system32\DRIVERS\MpFilter.sys
09:07:25.0062 0x053c MpFilter - ok
09:07:25.0078 0x053c mraid35x - ok
09:07:25.0109 0x053c [ 11D42BB6206F33FBB3BA0288D3EF81BD, 76ABCFB62C5AC549F58C231F72A99882CDEB74928104B77FE52554765C2B1A22 ] MRxDAV C:\WINDOWS\system32\DRIVERS\mrxdav.sys
09:07:25.0265 0x053c MRxDAV - ok
09:07:25.0328 0x053c [ 7D304A5EB4344EBEEAB53A2FE3FFB9F0, DB9B186F7076D7B94F45041AF7B77C1AD2CAB504D683B459C6CB1C22840ED170 ] MRxSmb C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
09:07:25.0500 0x053c MRxSmb - ok
09:07:25.0593 0x053c [ B03E3F64B70F8031E65EB26DA23DE91A, 73184B4A75C1EA5D10B9D78A9E705432551DE15231F10C5A31021896D0938D80 ] MSCamSvc C:\Program Files\Microsoft LifeCam\MSCamS32.exe
09:07:25.0609 0x053c MSCamSvc - ok
09:07:25.0656 0x053c [ A137F1470499A205ABBB9AAFB3B6F2B1, FB4951727543030D9E6ED74149C3FAACE2CA9DA8C1B5F616301B30B858C724E8 ] MSDTC C:\WINDOWS\system32\msdtc.exe
09:07:25.0843 0x053c MSDTC - ok
09:07:25.0859 0x053c [ C941EA2454BA8350021D774DAF0F1027, C940E978C7B66A713A0FDAB54B5F995DF59D089AFCD96221DD3222948CD49BBD ] Msfs C:\WINDOWS\system32\drivers\Msfs.sys
09:07:26.0031 0x053c Msfs - ok
09:07:26.0125 0x053c [ 7A0F9CBDBDB135113B9A3C138E20C85D, 2AEC135A2108ED1708368ADD496FD373862C00532CB495A9A68D6C54A82975EE ] MSHUSBVideo C:\WINDOWS\system32\Drivers\nx6000.sys
09:07:26.0140 0x053c MSHUSBVideo - ok
09:07:26.0156 0x053c MSIServer - ok
09:07:26.0187 0x053c [ D1575E71568F4D9E14CA56B7B0453BF1, 4ABE0E24786C0D39FA2B885447E56204CA6942FB175E534DCE675D7BCF0B176A ] MSKSSRV C:\WINDOWS\system32\drivers\MSKSSRV.sys
09:07:26.0343 0x053c MSKSSRV - ok
09:07:26.0390 0x053c [ 0A7F86657755ADA92C57E597BF5151F7, E226DFF12C4930DF1D0F1D2E7CE7BFFDF62F6DC402200EEFE196D14172A59B63 ] MsMpSvc c:\Program Files\Microsoft Security Client\MsMpEng.exe
09:07:26.0421 0x053c MsMpSvc - ok
09:07:26.0437 0x053c [ 325BB26842FC7CCC1FCCE2C457317F3E, C07BE560513B1FB91D756494F0BA4AEEB2E1998DE0E1C21EE83DB1183B0CEE91 ] MSPCLOCK C:\WINDOWS\system32\drivers\MSPCLOCK.sys
09:07:26.0609 0x053c MSPCLOCK - ok
09:07:26.0609 0x053c [ BAD59648BA099DA4A17680B39730CB3D, 9AD4C7C94C186C8815D0BC75DCAFB962158DA6935A244BA243EDDDEB33F9816C ] MSPQM C:\WINDOWS\system32\drivers\MSPQM.sys
09:07:26.0843 0x053c MSPQM - ok
09:07:26.0890 0x053c [ AF5F4F3F14A8EA2C26DE30F7A1E17136, AC93A1E4ABB0D038B772E429015567E44CC2EDB66C54DBE23A5F98176FAC1520 ] mssmbios C:\WINDOWS\system32\DRIVERS\mssmbios.sys
09:07:27.0078 0x053c mssmbios - ok
09:07:27.0093 0x053c [ E53736A9E30C45FA9E7B5EAC55056D1D, 38602F280BF69EBA3706AD175AFC1AEB561A8302B4B61E3FECB3C27D7A9BDB41 ] MSTEE C:\WINDOWS\system32\drivers\MSTEE.sys
09:07:27.0250 0x053c MSTEE - ok
09:07:27.0296 0x053c [ DE6A75F5C270E756C5508D94B6CF68F5, FCC972DDC36C2C44D836913F10004C2C33B11C54DEFFF0C63E0FDF901D2F9261 ] Mup C:\WINDOWS\system32\drivers\Mup.sys
09:07:27.0468 0x053c Mup - ok
09:07:27.0484 0x053c [ 5B50F1B2A2ED47D560577B221DA734DB, C16A554B6E1A7F5F98C94DFA88163E0F7426506BF2F51FD351B1A05FC0DB3BC5 ] NABTSFEC C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys
09:07:27.0656 0x053c NABTSFEC - ok
09:07:27.0734 0x053c [ 0102140028FAD045756796E1C685D695, 5335B8278418CA200E2772124F0602C3E15A5CAF2D5CC59F6785DFAABF339B09 ] napagent C:\WINDOWS\System32\qagentrt.dll
09:07:27.0921 0x053c napagent - ok
09:07:28.0000 0x053c [ 1DF7F42665C94B825322FAE71721130D, FE0DCB728471465B39A42A7511F4133021FBA5DF88F88BCB5FE2FF34CFD713F9 ] NDIS C:\WINDOWS\system32\drivers\NDIS.sys
09:07:28.0171 0x053c NDIS - ok
09:07:28.0234 0x053c [ 7FF1F1FD8609C149AA432F95A8163D97, 18CD1FF5AC1EF8A38D1EC53014F2BADD28D9CDF4ECE2EBC2313D08903776F323 ] NdisIP C:\WINDOWS\system32\DRIVERS\NdisIP.sys
09:07:28.0406 0x053c NdisIP - ok
09:07:28.0531 0x053c [ 0109C4F3850DFBAB279542515386AE22, 4F6DB1E499AC853FD36FD603FBB6D3AC9BDCEB298C7FE1FB59A9236CB46729B2 ] NdisTapi C:\WINDOWS\system32\DRIVERS\ndistapi.sys
09:07:28.0656 0x053c NdisTapi - ok
09:07:28.0703 0x053c [ F927A4434C5028758A842943EF1A3849, B1AA3AF150C05307461774925901789456B0CCCD03A5E71ADA4AB58455962BEE ] Ndisuio C:\WINDOWS\system32\DRIVERS\ndisuio.sys
09:07:28.0875 0x053c Ndisuio - ok
09:07:28.0890 0x053c [ EDC1531A49C80614B2CFDA43CA8659AB, 494042F790F33721328B4451E79842E21919681CC421A4F9633EC4D383E06097 ] NdisWan C:\WINDOWS\system32\DRIVERS\ndiswan.sys
09:07:29.0078 0x053c NdisWan - ok
09:07:29.0109 0x053c [ 9282BD12DFB069D3889EB3FCC1000A9B, 09A46F1712BD9165068D8E153585FE3E6E5CBF4F1DDEC142115555D3A91AEC09 ] NDProxy C:\WINDOWS\system32\drivers\NDProxy.sys
09:07:29.0296 0x053c NDProxy - ok
09:07:29.0328 0x053c [ 5D81CF9A2F1A3A756B66CF684911CDF0, 7989C36607CAEA17AFA2C1C9904145CA0714A54B9F712D9D4C1AB140D0B2CC0C ] NetBIOS C:\WINDOWS\system32\DRIVERS\netbios.sys
09:07:29.0500 0x053c NetBIOS - ok
09:07:29.0593 0x053c [ 74B2B2F5BEA5E9A3DC021D685551BD3D, 7932B71F98B4122BE88F576BF6D745A757AE378A48924B7F4358837B75640A82 ] NetBT C:\WINDOWS\system32\DRIVERS\netbt.sys
09:07:29.0765 0x053c NetBT - ok
09:07:29.0812 0x053c [ B857BA82860D7FF85AE29B095645563B, 86FF0E4CDD9C394E8BABD93A4D57E73FF9A779261717DEC6E9CDE99F1C6B0F4C ] NetDDE C:\WINDOWS\system32\netdde.exe
09:07:29.0984 0x053c NetDDE - ok
09:07:29.0984 0x053c [ B857BA82860D7FF85AE29B095645563B, 86FF0E4CDD9C394E8BABD93A4D57E73FF9A779261717DEC6E9CDE99F1C6B0F4C ] NetDDEdsdm C:\WINDOWS\system32\netdde.exe
09:07:30.0140 0x053c NetDDEdsdm - ok
09:07:30.0187 0x053c [ BF2466B3E18E970D8A976FB95FC1CA85, F7794B5D12DC5D820A162850F4388E2AA80426AD07CB221799CF941C682AB501 ] Netlogon C:\WINDOWS\system32\lsass.exe
09:07:30.0359 0x053c Netlogon - ok
09:07:30.0390 0x053c [ 13E67B55B3ABD7BF3FE7AAE5A0F9A9DE, 4E0A67B3CC897E80D4B342FFE8B7B4CC4F6CA2EF2D34C136027A098B2E1C6166 ] Netman C:\WINDOWS\System32\netman.dll
09:07:30.0546 0x053c Netman - ok
09:07:30.0609 0x053c [ D22CD77D4F0D63D1169BB35911BFF12D, 85B1FDFA02E1B8EA4FCB9B7EEB687C5C448697FC7EC9D178C5A2F64D2C9CFEE8 ] NetTcpPortSharing c:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
09:07:30.0687 0x053c NetTcpPortSharing - ok
09:07:30.0718 0x053c [ E9E47CFB2D461FA0FC75B7A74C6383EA, 544136F5BFD4DC23D45E90F12FA48B82FD9EAEA9EAF3E0F5F0BD27E23D672C3E ] NIC1394 C:\WINDOWS\system32\DRIVERS\nic1394.sys
09:07:30.0890 0x053c NIC1394 - ok
09:07:30.0984 0x053c [ 943337D786A56729263071623BBB9DE5, B631B47C869FE4ACF46E4AA272435D9A9CA536E3349E3FFBB8602636FEE7AFD4 ] Nla C:\WINDOWS\System32\mswsock.dll
09:07:31.0031 0x053c Nla - ok
09:07:31.0062 0x053c [ 3182D64AE053D6FB034F44B6DEF8034A, 4ADFC76965BA2A5F488E71789A4E4EA702A74AF42725F72130D1CA919406CF19 ] Npfs C:\WINDOWS\system32\drivers\Npfs.sys
09:07:31.0234 0x053c Npfs - ok
09:07:31.0343 0x053c [ 78A08DD6A8D65E697C18E1DB01C5CDCA, E0E6F3ED05068E32F1D5C2D2B38CDEF4536B8656DB6756C66CF6B40B60C8F3DA ] Ntfs C:\WINDOWS\system32\drivers\Ntfs.sys
09:07:31.0562 0x053c Ntfs - ok
09:07:31.0593 0x053c [ BF2466B3E18E970D8A976FB95FC1CA85, F7794B5D12DC5D820A162850F4388E2AA80426AD07CB221799CF941C682AB501 ] NtLmSsp C:\WINDOWS\system32\lsass.exe
09:07:31.0750 0x053c NtLmSsp - ok
09:07:31.0812 0x053c [ 156F64A3345BD23C600655FB4D10BC08, 9611BE411586E068D9297D77102DB3BE48AA67F1BAD6F61A84F83FC3043FA9CD ] NtmsSvc C:\WINDOWS\system32\ntmssvc.dll
09:07:32.0000 0x053c NtmsSvc - ok
09:07:32.0078 0x053c [ 73C1E1F395918BC2C6DD67AF7591A3AD, B21133A75253EC15E2DFF66D3B480AB1A7E1A2360476C810E7AA55D0F0EB08D4 ] Null C:\WINDOWS\system32\drivers\Null.sys
09:07:32.0250 0x053c Null - ok
09:07:32.0281 0x053c [ B305F3FAD35083837EF46A0BBCE2FC57, 9D0E0E666D652D0FC9EAB97280A5D67AAF61D6B21929DF7CF8ED72A367720464 ] NwlnkFlt C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
09:07:32.0453 0x053c NwlnkFlt - ok
09:07:32.0484 0x053c [ C99B3415198D1AAB7227F2C88FD664B9, DD8DA4B5E804F134AB9233859544C025062902DFC3E8FB8A09A67337A4E73F55 ] NwlnkFwd C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
09:07:32.0640 0x053c NwlnkFwd - ok
09:07:32.0671 0x053c [ CA33832DF41AFB202EE7AEB05145922F, 9DD0089C2E13C7F81214C3B5A4A61276292052F9BBFEA7FCD0F6AA27815D5F95 ] ohci1394 C:\WINDOWS\system32\DRIVERS\ohci1394.sys
09:07:32.0875 0x053c ohci1394 - ok
09:07:33.0015 0x053c [ 5575FAF8F97CE5E713D108C2A58D7C7C, 96D4595D19A78CCBE8B325A08780AC077AE5CC99642ACD72FB47AEAE8D344D3B ] Parport C:\WINDOWS\system32\drivers\Parport.sys
09:07:33.0171 0x053c Parport - ok
09:07:33.0171 0x053c [ BEB3BA25197665D82EC7065B724171C6, 7E71C13BA30CD95CEE8A9CC85E6F48A01F30EDEAADEE69D80AE828BF97E5A5CA ] PartMgr C:\WINDOWS\system32\drivers\PartMgr.sys
09:07:33.0375 0x053c PartMgr - ok
09:07:33.0484 0x053c [ 70E98B3FD8E963A6A46A2E6247E0BEA1, 6771313EC41B3B5BFD398F60706E40BE71617046880CC352DD110B001AFC22A1 ] ParVdm C:\WINDOWS\system32\drivers\ParVdm.sys
09:07:33.0671 0x053c ParVdm - ok
09:07:33.0687 0x053c [ A219903CCF74233761D92BEF471A07B1, D4E6C360A1D2FCA4D17C991B834D68BF20F5111DD06B1FAB8B22984804CEC269 ] PCI C:\WINDOWS\system32\DRIVERS\pci.sys
09:07:33.0843 0x053c PCI - ok
09:07:33.0859 0x053c PCIDump - ok
09:07:33.0875 0x053c [ CCF5F451BB1A5A2A522A76E670000FF0, D63F7E5A39653EC9CCE94B7D84B2D3EBD4F54533BD65701020198724042C9257 ] PCIIde C:\WINDOWS\system32\DRIVERS\pciide.sys
09:07:34.0015 0x053c PCIIde - ok
09:07:34.0046 0x053c [ 9E89EF60E9EE05E3F2EEF2DA7397F1C1, 0BA3DB21DC7C641C181E2635B5C9B73965FDCDCD3EBBBE48FCFEC1C8C987F617 ] Pcmcia C:\WINDOWS\system32\DRIVERS\pcmcia.sys
09:07:34.0218 0x053c Pcmcia - ok
09:07:34.0218 0x053c PDCOMP - ok
09:07:34.0218 0x053c PDFRAME - ok
09:07:34.0234 0x053c PDRELI - ok
09:07:34.0234 0x053c PDRFRAME - ok
09:07:34.0234 0x053c perc2 - ok
09:07:34.0250 0x053c perc2hib - ok
09:07:34.0296 0x053c [ 65DF52F5B8B6E9BBD183505225C37315, 59C606977DB40A3443DFF0BE2A4C761824881B22C9FDB3D23F6486DB580E92A4 ] PlugPlay C:\WINDOWS\system32\services.exe
09:07:34.0343 0x053c PlugPlay - ok
09:07:34.0343 0x053c [ BF2466B3E18E970D8A976FB95FC1CA85, F7794B5D12DC5D820A162850F4388E2AA80426AD07CB221799CF941C682AB501 ] PolicyAgent C:\WINDOWS\system32\lsass.exe
09:07:34.0515 0x053c PolicyAgent - ok
09:07:34.0578 0x053c [ EFEEC01B1D3CF84F16DDD24D9D9D8F99, C5F0C8C66A3AF7E7BB04CEDE4AC5306F8387AB384A2107DC5BE413AAE968EFF1 ] PptpMiniport C:\WINDOWS\system32\DRIVERS\raspptp.sys
09:07:34.0734 0x053c PptpMiniport - ok
09:07:34.0796 0x053c [ 6135B976E16F80C1B1363BE882344785, 57905ED033C9D1ADD439B9708EFE6E25C9F5B5EC9F85FF083A7FAE2E0DE99FE5 ] PrismXL C:\Program Files\Common Files\New Boundary\PrismXL\PRISMXL.SYS
09:07:34.0875 0x053c PrismXL - detected UnsignedFile.Multi.Generic ( 1 )
09:07:34.0875 0x053c PrismXL ( UnsignedFile.Multi.Generic ) - warning
09:07:37.0421 0x053c [ A32BEBAF723557681BFC6BD93E98BD26, 35039BA72A29F87B2CA37DCDE4EFDAABBDEAD8CE3EB8652ACC665994118145A6 ] Processor C:\WINDOWS\system32\DRIVERS\processr.sys
09:07:37.0687 0x053c Processor - ok
09:07:37.0703 0x053c [ BF2466B3E18E970D8A976FB95FC1CA85, F7794B5D12DC5D820A162850F4388E2AA80426AD07CB221799CF941C682AB501 ] ProtectedStorage C:\WINDOWS\system32\lsass.exe
09:07:37.0859 0x053c ProtectedStorage - ok
09:07:37.0890 0x053c [ 09298EC810B07E5D582CB3A3F9255424, 35473A1BE25AC289474090EB0806AC6B3035DC33D1F3DF97A14BF1E361AC6AC3 ] PSched C:\WINDOWS\system32\DRIVERS\psched.sys
09:07:38.0093 0x053c PSched - ok
09:07:38.0093 0x053c [ 80D317BD1C3DBC5D4FE7B1678C60CADD, DA76804B55D0CAB3DDD01EFC06673764AE4860693375C658B6063FB14AF7F12C ] Ptilink C:\WINDOWS\system32\DRIVERS\ptilink.sys
09:07:38.0328 0x053c Ptilink - ok
09:07:38.0343 0x053c ql1080 - ok
09:07:38.0343 0x053c Ql10wnt - ok
09:07:38.0343 0x053c ql12160 - ok
09:07:38.0359 0x053c ql1240 - ok
09:07:38.0359 0x053c ql1280 - ok
09:07:38.0468 0x053c [ FE0D99D6F31E4FAD8159F690D68DED9C, 998685622ABE631984B7E4DBF91AB3594B1F574378D75EB9F6265F4650470692 ] RasAcd C:\WINDOWS\system32\DRIVERS\rasacd.sys
09:07:38.0609 0x053c RasAcd - ok
09:07:38.0640 0x053c [ AD188BE7BDF94E8DF4CA0A55C00A5073, C7D76CB579FAEBCCC2873499441BACDD6BD6668ACF5ED7F31862656E96E2B20C ] RasAuto C:\WINDOWS\System32\rasauto.dll
09:07:38.0796 0x053c RasAuto - ok
09:07:38.0859 0x053c [ 11B4A627BC9614B885C4969BFA5FF8A6, EAE0A412A2B0F68919C32A96B3A08CC1A06585E4998819F5C9051745F63FF5AD ] Rasl2tp C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
09:07:39.0031 0x053c Rasl2tp - ok
09:07:39.0093 0x053c [ 76A9A3CBEADD68CC57CDA5E1D7448235, 4AFD048C5D2306AB8DE46F3AA60AC0213333DDA3B09A9E91F7585DB6EB978EC8 ] RasMan C:\WINDOWS\System32\rasmans.dll
09:07:39.0250 0x053c RasMan - ok
09:07:39.0265 0x053c [ 5BC962F2654137C9909C3D4603587DEE, A5CE5653D0105240F5E86CFAAB89E7917D42D939E2F27A5A7D6979289CA651B8 ] RasPppoe C:\WINDOWS\system32\DRIVERS\raspppoe.sys
09:07:39.0437 0x053c RasPppoe - ok
09:07:39.0484 0x053c [ FDBB1D60066FCFBB7452FD8F9829B242, 10A2DACF944BD000032EBA8C095CB3D879CC55B28C377ADF6E52E508E47444DB ] Raspti C:\WINDOWS\system32\DRIVERS\raspti.sys
09:07:39.0656 0x053c Raspti - ok
09:07:39.0765 0x053c [ 7AD224AD1A1437FE28D89CF22B17780A, 6645235CA27D671954E3557FA37082881C3D7D47492C71264CD8CB8D108EC801 ] Rdbss C:\WINDOWS\system32\DRIVERS\rdbss.sys
09:07:39.0953 0x053c Rdbss - ok
09:07:39.0984 0x053c [ 4912D5B403614CE99C28420F75353332, 975341ECD660209987B5E5171B8315E032439E408CBE8A5986E67AF767F373BB ] RDPCDD C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
09:07:40.0156 0x053c RDPCDD - ok
09:07:40.0281 0x053c [ 43AF5212BD8FB5BA6EED9754358BD8F7, AF330F61CECA4AFA359CEABC5EB3227E6B56A9A2DCE50701381D665122D7356D ] RDPWD C:\WINDOWS\system32\drivers\RDPWD.sys
09:07:40.0359 0x053c RDPWD - ok
09:07:40.0421 0x053c [ 3C37BF86641BDA977C3BF8A840F3B7FA, AB9A6E54DBA3F4561CD4837372BECCE0D73943D02E3288F944333039375AC08C ] RDSessMgr C:\WINDOWS\system32\sessmgr.exe
09:07:40.0562 0x053c RDSessMgr - ok
09:07:40.0593 0x053c [ F828DD7E1419B6653894A8F97A0094C5, E6150E1F598BA4CFEDB8FF075BC0D576518C331B864388F1CAE8812EFF106ECF ] redbook C:\WINDOWS\system32\DRIVERS\redbook.sys
09:07:40.0765 0x053c redbook - ok
09:07:40.0796 0x053c [ 7E699FF5F59B5D9DE5390E3C34C67CF5, 3FCF0442D80AB181FED4303E570378736AA1F8718C0B8B70F689A1E45200FFE4 ] RemoteAccess C:\WINDOWS\System32\mprdim.dll
09:07:40.0953 0x053c RemoteAccess - ok
09:07:40.0968 0x053c [ AAED593F84AFA419BBAE8572AF87CF6A, CC0FFC5A69394C8830DC66320DA01A820BBF41AD7E57D0FC343561DC5EF9A360 ] RpcLocator C:\WINDOWS\system32\locator.exe
09:07:41.0156 0x053c RpcLocator - ok
09:07:41.0203 0x053c [ 6B27A5C03DFB94B4245739065431322C, 6AEAC16AB4E0DFD25123AAF4D4181FEE1B919B7B2793117006CE8CF30E826CFD ] RpcSs C:\WINDOWS\system32\rpcss.dll
09:07:41.0265 0x053c RpcSs - ok
09:07:41.0296 0x053c [ 471B3F9741D762ABE75E9DEEA4787E47, D9ADE42965EC22AEB4B2AD21D429C3C8232A60AA9853DEFDA7AED86A13FE8623 ] RSVP C:\WINDOWS\system32\rsvp.exe
09:07:41.0468 0x053c RSVP - ok
09:07:41.0484 0x053c [ BF2466B3E18E970D8A976FB95FC1CA85, F7794B5D12DC5D820A162850F4388E2AA80426AD07CB221799CF941C682AB501 ] SamSs C:\WINDOWS\system32\lsass.exe
09:07:41.0656 0x053c SamSs - ok
09:07:41.0687 0x053c [ 86D007E7A654B9A71D1D7D856B104353, 7B1DE53D637A5FC9619D5D07C48927AFEC89D959207F6F2E2F45DD054EEA04C7 ] SCardSvr C:\WINDOWS\System32\SCardSvr.exe
09:07:41.0859 0x053c SCardSvr - ok
09:07:41.0906 0x053c [ 0A9A7365A1CA4319AA7C1D6CD8E4EAFA, 0B582F47BD70732BAC48B8B86E5D06CE7F299A20E8177F3F2E6F28217C3FB605 ] Schedule C:\WINDOWS\system32\schedsvc.dll
09:07:42.0093 0x053c Schedule - ok
09:07:42.0125 0x053c [ 90A3935D05B494A5A39D37E71F09A677, F72733A69BC6E1A2BB91D7632FF3463C12563F60FDCC00A2CDD67FF20D479952 ] Secdrv C:\WINDOWS\system32\DRIVERS\secdrv.sys
09:07:42.0250 0x053c Secdrv - ok
09:07:42.0281 0x053c [ CBE612E2BB6A10E3563336191EDA1250, C331797DC3569F0E715766561DE2562F60B924378842246C35D2B1CF867E9D96 ] seclogon C:\WINDOWS\System32\seclogon.dll
09:07:42.0453 0x053c seclogon - ok
09:07:42.0453 0x053c [ 7FDD5D0684ECA8C1F68B4D99D124DCD0, 7105B026F966A992430F86C3698ABE15EC73E4772F1A3E362E29FD5247A5DCA6 ] SENS C:\WINDOWS\system32\sens.dll
09:07:42.0625 0x053c SENS - ok
09:07:42.0671 0x053c [ CCA207A8896D4C6A0C9CE29A4AE411A7, 5999B39242283CD803319AADCA171CCCC6E2A40FB2FAFA51B1D29F3FF2DD8D6C ] Serial C:\WINDOWS\system32\drivers\Serial.sys
09:07:42.0828 0x053c Serial - ok
09:07:42.0859 0x053c [ 8E6B8C671615D126FDC553D1E2DE5562, CEEC0067514555D5CA489F50E3D7562FCA8DB8E952C3C878604C9277FC77959F ] Sfloppy C:\WINDOWS\system32\drivers\Sfloppy.sys
09:07:43.0031 0x053c Sfloppy - ok
09:07:43.0093 0x053c [ 83F41D0D89645D7235C051AB1D9523AC, B681F33EEAA511D6A2DCB9FBAA407B739184C9FF6067C6B7E51F1FC37E9D4DD7 ] SharedAccess C:\WINDOWS\System32\ipnathlp.dll
09:07:43.0312 0x053c SharedAccess - ok
09:07:43.0343 0x053c [ 99BC0B50F511924348BE19C7C7313BBF, A1006C687BD352F700B140DC741515A0CDD9E1352C0FBD1EE410D404E344444B ] ShellHWDetection C:\WINDOWS\System32\shsvcs.dll
09:07:43.0375 0x053c ShellHWDetection - ok
09:07:43.0375 0x053c Simbad - ok
09:07:43.0437 0x053c [ 3E587DBBDFF938DDE5D4CE4047BE9041, CA13B2C50FB09365362077AEC4B25120CF09F8C35702F645922D618FE57B5E05 ] SkypeUpdate C:\Program Files\Skype\Updater\Updater.exe
09:07:43.0468 0x053c SkypeUpdate - ok
09:07:43.0515 0x053c [ 866D538EBE33709A5C9F5C62B73B7D14, BC94BEB7C17B4FCAC8B5D0D5006A203BC209E0504EECE149651D8691935696CD ] SLIP C:\WINDOWS\system32\DRIVERS\SLIP.sys
09:07:43.0703 0x053c SLIP - ok
09:07:43.0796 0x053c [ 78DA3038965DE2B3834303DFB0578326, 1899884F17112C13F10C741EA2D821E36A91EA1217F51D03439E506EC3AD7BD9 ] smserial C:\WINDOWS\system32\DRIVERS\smserial.sys
09:07:43.0953 0x053c smserial - ok
09:07:43.0953 0x053c Sparrow - ok
09:07:43.0984 0x053c [ AB8B92451ECB048A4D1DE7C3FFCB4A9F, DD17733CBB370FCA08F0296704D7CBEACA3C8F76D0ABE4761C3B1FFDF7481D9E ] splitter C:\WINDOWS\system32\drivers\splitter.sys
09:07:44.0171 0x053c splitter - ok
09:07:44.0218 0x053c [ 60784F891563FB1B767F70117FC2428F, E0B07F08E60FFBAD36C2E58180F4B2A16DCA47716044CBE0213DF7B74D742F1F ] Spooler C:\WINDOWS\system32\spoolsv.exe
09:07:45.0296 0x053c Spooler - ok
09:07:45.0343 0x053c sprtsvc_verizondm - ok
09:07:45.0375 0x053c [ 76BB022C2FB6902FD5BDD4F78FC13A5D, 6031CB2344D7277FC703480EB43CF856A0F8F818EA98FF26A2CA532336CD2DFA ] sr C:\WINDOWS\system32\DRIVERS\sr.sys
09:07:45.0515 0x053c sr - ok
09:07:45.0562 0x053c [ 3805DF0AC4296A34BA4BF93B346CC378, B57A14F1B7B0997E619DDD62B73157AA2399A9852166FB58139CBB358A88F6F3 ] srservice C:\WINDOWS\system32\srsvc.dll
09:07:45.0703 0x053c srservice - ok
09:07:45.0750 0x053c [ 47DDFC2F003F7F9F0592C6874962A2E7, 17C643BD4EB09B5666FE41817DC785BE04A6E491CE79E8E5A702CDBD98E1BDD7 ] Srv C:\WINDOWS\system32\DRIVERS\srv.sys
09:07:45.0843 0x053c Srv - ok
09:07:45.0875 0x053c [ 0A5679B3714EDAB99E357057EE88FCA6, 01E1A101FFF48402C77E385A78FEF27876E04533B60EB1C18558A737E57E5FA8 ] SSDPSRV C:\WINDOWS\System32\ssdpsrv.dll
09:07:46.0015 0x053c SSDPSRV - ok
09:07:46.0140 0x053c [ 3B24ADA55D3BDFDC0E6679D15FA668D8, 127F4233B48145BBCA9B8B718202D104AFCE117AC68F3CDEF32D61A391A6808F ] STHDA C:\WINDOWS\system32\drivers\sthda.sys
09:07:46.0281 0x053c STHDA - ok
09:07:46.0359 0x053c [ 8BAD69CBAC032D4BBACFCE0306174C30, 2AA0DA710FCBFF38FE8DA91EE02E7A4503269347E61F8D3246FCA3384BBA2305 ] stisvc C:\WINDOWS\system32\wiaservc.dll
09:07:46.0562 0x053c stisvc - ok
09:07:46.0609 0x053c [ 77813007BA6265C4B6098187E6ED79D2, 93939120E803C46FBFD577C8FC2E6C7E71C0460E01D25CB29579490640AB50C7 ] streamip C:\WINDOWS\system32\DRIVERS\StreamIP.sys
09:07:46.0796 0x053c streamip - ok
09:07:46.0828 0x053c [ 3941D127AEF12E93ADDF6FE6EE027E0F, EA1F0E32E1C5E90FA4AAC421DEBBE086512340758D3217A6334E886BCE638B51 ] swenum C:\WINDOWS\system32\DRIVERS\swenum.sys
09:07:47.0000 0x053c swenum - ok
09:07:47.0046 0x053c [ 8CE882BCC6CF8A62F2B2323D95CB3D01, B408550A581F3DA222355964AFA4E976AD8471F0AA37573C42C4948AE5A23A3B ] swmidi C:\WINDOWS\system32\drivers\swmidi.sys
09:07:47.0218 0x053c swmidi - ok
09:07:47.0234 0x053c SwPrv - ok
09:07:47.0234 0x053c symc810 - ok
09:07:47.0250 0x053c symc8xx - ok
09:07:47.0250 0x053c sym_hi - ok
09:07:47.0250 0x053c sym_u3 - ok
09:07:47.0281 0x053c [ 8B83F3ED0F1688B4958F77CD6D2BF290, 546D3602183702B4F53E84413CFA2C933D64C8540378E54A8DCD148F3F36A2DA ] sysaudio C:\WINDOWS\system32\drivers\sysaudio.sys
09:07:47.0453 0x053c sysaudio - ok
09:07:47.0500 0x053c [ C7ABBC59B43274B1109DF6B24D617051, 4384CA0AA6CE9B603CF7DB775A3C721E46715D5B120B94FB57DEADAADE18535B ] SysmonLog C:\WINDOWS\system32\smlogsvc.exe
09:07:47.0671 0x053c SysmonLog - ok
09:07:47.0718 0x053c [ 3CB78C17BB664637787C9A1C98F79C38, F35C31F6B7F366CB949D1044B357C76DEC9170441C5E559802794F62B72FD255 ] TapiSrv C:\WINDOWS\System32\tapisrv.dll
09:07:47.0906 0x053c TapiSrv - ok
09:07:47.0968 0x053c [ 9AEFA14BD6B182D61E3119FA5F436D3D, EA29E49434585409272E7901AF89771FE9D6E911A7DC44AB3C7020CFF8A44552 ] Tcpip C:\WINDOWS\system32\DRIVERS\tcpip.sys
09:07:48.0093 0x053c Tcpip - ok
09:07:48.0140 0x053c [ 6471A66807F5E104E4885F5B67349397, F35CBFFB8BB235CCE30EF94A5273333900DD49FD506BF9D55D99A320B8A53A5A ] TDPIPE C:\WINDOWS\system32\drivers\TDPIPE.sys
09:07:48.0343 0x053c TDPIPE - ok
09:07:48.0359 0x053c [ C56B6D0402371CF3700EB322EF3AAF61, 7743FA4C734BCE38EFB1CA69BC17364D8421E2CD172F856F7E38E7AE1EE93F2F ] TDTCP C:\WINDOWS\system32\drivers\TDTCP.sys
09:07:48.0531 0x053c TDTCP - ok
09:07:48.0562 0x053c [ 88155247177638048422893737429D9E, B6D4E8691917946332C2208D01F8C8281978C1AD1E9951C5D99DF0D49AC34B3B ] TermDD C:\WINDOWS\system32\DRIVERS\termdd.sys
09:07:48.0718 0x053c TermDD - ok
09:07:48.0796 0x053c [ FF3477C03BE7201C294C35F684B3479F, D6246521539BA4ACD022D26983182F5E323D2EF1EA7C54265A248C43A1CE5202 ] TermService C:\WINDOWS\System32\termsrv.dll
09:07:49.0000 0x053c TermService - ok
09:07:49.0000 0x053c tgsrvc_verizondm - ok
09:07:49.0031 0x053c [ 99BC0B50F511924348BE19C7C7313BBF, A1006C687BD352F700B140DC741515A0CDD9E1352C0FBD1EE410D404E344444B ] Themes C:\WINDOWS\System32\shsvcs.dll
09:07:49.0062 0x053c Themes - ok
09:07:49.0125 0x053c [ C424F991494E5674F2E9B3CF9F5F55D1, CC799C9154431763D052AB8B41EFAE71A039EDD6EAC5E6D892E22C8BEF1D2BB5 ] tifm21 C:\WINDOWS\system32\drivers\tifm21.sys
09:07:49.0171 0x053c tifm21 - ok
09:07:49.0171 0x053c TosIde - ok
09:07:49.0203 0x053c [ 55BCA12F7F523D35CA3CB833C725F54E, 849FB1AE31B143B14B298BBC0D91230693D41DEB95F46516878F53A7F4186C38 ] TrkWks C:\WINDOWS\system32\trkwks.dll
09:07:49.0406 0x053c TrkWks - ok
09:07:49.0437 0x053c [ 5787B80C2E3C5E2F56C2A233D91FA2C9, 3774905CF77954DFCECDA5BCC7CDE3D0ED72712BFAAD85ADAE5246306447E46C ] Udfs C:\WINDOWS\system32\drivers\Udfs.sys
09:07:49.0625 0x053c Udfs - ok
09:07:49.0625 0x053c ultra - ok
09:07:49.0703 0x053c [ 402DDC88356B1BAC0EE3DD1580C76A31, 32A686595710336A6BFD54C03F552AE39439611662F84EF5D24193AE5665C6F3 ] Update C:\WINDOWS\system32\DRIVERS\update.sys
09:07:49.0890 0x053c Update - ok
09:07:49.0937 0x053c [ 1EBAFEB9A3FBDC41B8D9C7F0F687AD91, 7746916DB48E3F5B243B63C066596AD9037A494BF1AD935946DD04AC85D983DF ] upnphost C:\WINDOWS\System32\upnphost.dll
09:07:50.0062 0x053c upnphost - ok
09:07:50.0093 0x053c [ 05365FB38FCA1E98F7A566AAAF5D1815, 16843048CEEC3DAA3B953A12FF1EE339E86783A08F2A56DA7F94AD9F9717D77D ] UPS C:\WINDOWS\System32\ups.exe
09:07:50.0296 0x053c UPS - ok
09:07:50.0328 0x053c [ 65898A183FBF1D1F7759D5CCB364DCD4, 85E823123FDB4CA5F8255064E22A444627999055EC3419DFD001371893F36AB9 ] usbaudio C:\WINDOWS\system32\drivers\usbaudio.sys
09:07:50.0468 0x053c usbaudio - ok
09:07:50.0500 0x053c [ 1B611611C28D2DF25BC057D79C6F13FC, B0D86F63E44B40413BBAE6402CC088046CFAE082D41BBC2ED5A916293356B846 ] usbccgp C:\WINDOWS\system32\DRIVERS\usbccgp.sys
09:07:50.0593 0x053c usbccgp - ok
09:07:50.0609 0x053c [ 4BAC8DF07F1D8434FC640E677A62204E, 76C1351AF6752224BF59DEEE0F8665FE699F3DFD679F5BCD01C7D9383E6402A4 ] usbehci C:\WINDOWS\system32\DRIVERS\usbehci.sys
09:07:50.0671 0x053c usbehci - ok
09:07:50.0703 0x053c [ 1AB3CDDE553B6E064D2E754EFE20285C, A99C4528C4227B1E96847614745AAFACD3C5F1BDFE435214DBF78740FFB300FE ] usbhub C:\WINDOWS\system32\DRIVERS\usbhub.sys
09:07:50.0859 0x053c usbhub - ok
09:07:50.0890 0x053c [ 0DAECCE65366EA32B162F85F07C6753B, 3C33AC2FC95E876933F2016CF0CDA2745491679728684DA8DF95A515CE4804BD ] usbohci C:\WINDOWS\system32\DRIVERS\usbohci.sys
09:07:51.0046 0x053c usbohci - ok
09:07:51.0093 0x053c [ F8EDE2B6928970DCE3D5614C27D9E7F6, 6E5EBBC8B70C1D593634DAF0C190DEADFDA18C3CBC8F552A76F156F3869EF05B ] usbscan C:\WINDOWS\system32\DRIVERS\usbscan.sys
09:07:51.0156 0x053c usbscan - ok
09:07:51.0171 0x053c [ A32426D9B14A089EAA1D922E0C5801A9, ED1DC52EE45F8EAD3AEC4B1F817BB25634141CF48295494C5947DCE6CF7A9817 ] USBSTOR C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
09:07:51.0343 0x053c USBSTOR - ok
09:07:51.0390 0x053c [ 813236B1183CFCF289E367BD5DE6E29E, 167FE18A96F330AEEC1A4C419770C15EFEB536D43838285E51E7A62E95DF4674 ] usbvideo C:\WINDOWS\system32\Drivers\usbvideo.sys
09:07:51.0453 0x053c usbvideo - ok
09:07:51.0500 0x053c [ 2A7A8AD9D39A2FAF9D9293B5DAFF3A4B, 38C6F6A440B718C75F7A1361297ACE671FC258B75BDCE9E0C27D497E3DF03C61 ] USB_RNDIS_XP C:\WINDOWS\system32\DRIVERS\usb8023.sys
09:07:51.0593 0x053c USB_RNDIS_XP - ok
09:07:51.0609 0x053c [ 0D3A8FAFCEACD8B7625CD549757A7DF1, B9CFDEFCD66AA139F3DC2F967B184669532922563AD5A71769BABDC4370D065E ] VgaSave C:\WINDOWS\System32\drivers\vga.sys
09:07:51.0796 0x053c VgaSave - ok
09:07:51.0796 0x053c ViaIde - ok
09:07:51.0843 0x053c [ 4C8FCB5CC53AAB716D810740FE59D025, 010EAC43DBED700B73E4FC908FAAF9F6A0168EBBD5D86751E49BC33AAA18BFA4 ] VolSnap C:\WINDOWS\system32\drivers\VolSnap.sys
09:07:52.0031 0x053c VolSnap - ok
09:07:52.0093 0x053c [ 7A9DB3A67C333BF0BD42E42B8596854B, D31A9A3B1AAAB373EDD73B674102395212FCB616F829E938B7B2B7BE7D4752C5 ] VSS C:\WINDOWS\System32\vssvc.exe
09:07:52.0234 0x053c VSS - ok
09:07:52.0281 0x053c [ 54AF4B1D5459500EF0937F6D33B1914F, FA1876888BCB9C72A92369DBED4FF1A8666784523FB41E618FA0919490FCDDB9 ] W32Time C:\WINDOWS\system32\w32time.dll
09:07:52.0453 0x053c W32Time - ok
09:07:52.0453 0x053c WajamUpdater - ok
09:07:52.0484 0x053c [ E20B95BAEDB550F32DD489265C1DA1F6, 5589B2067E6C9FBA290D8C5EADDC198EBAF39C50C3CD7D2BC5CDA7CBFBC445E5 ] Wanarp C:\WINDOWS\system32\DRIVERS\wanarp.sys
09:07:52.0671 0x053c Wanarp - ok
09:07:52.0734 0x053c [ D918617B46457B9AC28027722E30F647, 407284D3055DC11944D4EE7E4357E7CF9CAF8CA40CA50633AB6FD4A82CB7EEA6 ] Wdf01000 C:\WINDOWS\system32\Drivers\wdf01000.sys
09:07:52.0781 0x053c Wdf01000 - ok
09:07:52.0781 0x053c WDICA - ok
09:07:52.0843 0x053c [ 6768ACF64B18196494413695F0C3A00F, 3A8F8586F1D997D19A8478345338D2AECD785AEABDB61531DD3F92003D3230A5 ] wdmaud C:\WINDOWS\system32\drivers\wdmaud.sys
09:07:53.0015 0x053c wdmaud - ok
09:07:53.0062 0x053c [ 77A354E28153AD2D5E120A5A8687BC06, 8B2D37A4443501C0A8E70BC2079BE27F0A36FD07B561E6F68B40A72EABBC2DFE ] WebClient C:\WINDOWS\System32\webclnt.dll
09:07:53.0234 0x053c WebClient - ok
09:07:53.0328 0x053c [ F45DD1E1365D857DD08BC23563370D0E, D95AEBB2095579D716C62152C8B805E119812FD2E40F14F9A5BA2EFDE133303B ] WinDefend C:\Program Files\Windows Defender\MsMpEng.exe
09:07:53.0343 0x053c WinDefend - ok
09:07:53.0453 0x053c [ 2D0E4ED081963804CCC196A0929275B5, E1D75C7D7233D81DFDE13160B0C80138DF8B35230D04FB79B367A52FACF69BF8 ] winmgmt C:\WINDOWS\system32\wbem\WMIsvc.dll
09:07:53.0609 0x053c winmgmt - ok
09:07:53.0625 0x053c wltrysvc - ok
09:07:53.0656 0x053c [ C7E39EA41233E9F5B86C8DA3A9F1E4A8, 98C21DEEB7124426D749FACDAD06EBD7F500AE5C465A98D558919C2A51C08554 ] WmdmPmSN C:\WINDOWS\system32\mspmsnsv.dll
09:07:53.0843 0x053c WmdmPmSN - ok
09:07:53.0875 0x053c [ E0673F1106E62A68D2257E376079F821, 12992F18C9653050B10DC61D12988067933FCFDF02123D3A7EF5DE607A785DDC ] WmiApSrv C:\WINDOWS\system32\wbem\wmiapsrv.exe
09:07:54.0031 0x053c WmiApSrv - ok
09:07:54.0171 0x053c [ 15673BD0B86150CB8E27766059C72A9B, 56C23289A8BFF4945EE532CF6D62D3EC81B827CA15A359F30A327789F9FE9CAF ] WPFFontCache_v0400 C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
09:07:54.0234 0x053c WPFFontCache_v0400 - ok
09:07:54.0296 0x053c [ 7C278E6408D1DCE642230C0585A854D5, DA46079A04F6E8E3441E4AE454AEAC02B3E935DE29CE7F6D4476F57867FCC12A ] wscsvc C:\WINDOWS\system32\wscsvc.dll
09:07:54.0500 0x053c wscsvc - ok
09:07:54.0515 0x053c [ C98B39829C2BBD34E454150633C62C78, 71B60EA3AD0E2637917D528C6A9E7ECF2949E3E5E91036AA5BBADA95BD725511 ] WSTCODEC C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS
09:07:54.0687 0x053c WSTCODEC - ok
09:07:54.0687 0x053c [ 35321FB577CDC98CE3EB3A3EB9E4610A, C9A6F5CF282D8FCB3CDFCC4B306013480E78E1B664E1A60A4E27B161F9FFD4CD ] wuauserv C:\WINDOWS\system32\wuauserv.dll
09:07:54.0859 0x053c wuauserv - ok
09:07:54.0937 0x053c [ 81DC3F549F44B1C1FFF022DEC9ECF30B, 3D14BFEA539F9CEB16555BD56C5E3C7C8F6692FC62C2789F8AAEA1C042E63940 ] WZCSVC C:\WINDOWS\System32\wzcsvc.dll
09:07:55.0218 0x053c WZCSVC - ok
09:07:55.0250 0x053c [ 295D21F14C335B53CB8154E5B1F892B9, 9418477C2E3EA93E93D931A4EDD4500DA568FAD6040204B5201D1080203B0BBC ] xmlprov C:\WINDOWS\System32\xmlprov.dll
09:07:55.0468 0x053c xmlprov - ok
09:07:55.0500 0x053c [ 4322C32CED8C4772E039616DCBF01D3F, F878A0AC7A128BE114D52FD62538A37A3B7C3E15309BF37B87036005ED06C7A0 ] yukonwxp C:\WINDOWS\system32\DRIVERS\yk51x86.sys
09:07:55.0609 0x053c yukonwxp - ok
09:07:55.0609 0x053c ================ Scan global ===============================
09:07:55.0656 0x053c [ 42F1F4C0AFB08410E5F02D4B13EBB623, 924C30587C51C0D1E1F47991969AF492A644552E15F2480EA991DCB74A3E68D5 ] C:\WINDOWS\system32\basesrv.dll
09:07:55.0718 0x053c [ 69AE2B2E6968C316536E5B10B9702E63, D9C5DA7A20DDE69D91E72400C3F06F3CB099DEF42EA6C53FCE076258A0C22391 ] C:\WINDOWS\system32\winsrv.dll
09:07:55.0796 0x053c [ 69AE2B2E6968C316536E5B10B9702E63, D9C5DA7A20DDE69D91E72400C3F06F3CB099DEF42EA6C53FCE076258A0C22391 ] C:\WINDOWS\system32\winsrv.dll
09:07:55.0843 0x053c [ 65DF52F5B8B6E9BBD183505225C37315, 59C606977DB40A3443DFF0BE2A4C761824881B22C9FDB3D23F6486DB580E92A4 ] C:\WINDOWS\system32\services.exe
09:07:55.0843 0x053c [ Global ] - ok
09:07:55.0843 0x053c ================ Scan MBR ==================================
09:07:55.0875 0x053c [ 8F558EB6672622401DA993E1E865C861 ] \Device\Harddisk0\DR0
09:07:56.0171 0x053c \Device\Harddisk0\DR0 - ok
09:07:56.0171 0x053c ================ Scan VBR ==================================
09:07:56.0171 0x053c [ 6DCB727615C9DD8044F488888F7846B2 ] \Device\Harddisk0\DR0\Partition1
09:07:56.0187 0x053c \Device\Harddisk0\DR0\Partition1 - ok
09:07:56.0187 0x053c ================ Scan active images ========================
09:07:56.0187 0x053c [ E9E47CFB2D461FA0FC75B7A74C6383EA, 544136F5BFD4DC23D45E90F12FA48B82FD9EAEA9EAF3E0F5F0BD27E23D672C3E ] C:\WINDOWS\system32\drivers\nic1394.sys
09:07:56.0187 0x053c C:\WINDOWS\system32\drivers\nic1394.sys - ok
09:07:56.0187 0x053c [ 0A4D13B388C814560BD69C3A496ECFA8, 71ADD4C4A5C6465EA27F572DE608C348896C4C557D136718CCDD9919144F7986 ] C:\WINDOWS\system32\drivers\AmdK8.sys
09:07:56.0187 0x053c C:\WINDOWS\system32\drivers\AmdK8.sys - ok
09:07:56.0187 0x053c [ E28726B72C46821A28830E077D39A55B, 66BE8A1055544C8CEBB7125726C1C306A026F3A1764589FCDDF3792076AF891F ] C:\WINDOWS\system32\drivers\videoprt.sys
09:07:56.0187 0x053c C:\WINDOWS\system32\drivers\videoprt.sys - ok
09:07:56.0203 0x053c [ DD222CE49E79F15D2312A5E1F42E716E, E7EE8EEF8B5FED441CAE9D8ABD38FD619667C3C19F6F33429112F4F19CF5DF00 ] C:\WINDOWS\system32\drivers\ati2mtag.sys
09:07:56.0203 0x053c C:\WINDOWS\system32\drivers\ati2mtag.sys - ok
09:07:56.0203 0x053c [ 30D20FC98BCFD52E1DA778CF19B223D4, 4B035071CEF9BBD32EEA16E6A14F9908DCB89687632E8CB8420FA8EE0DB075C4 ] C:\WINDOWS\system32\drivers\BCMWL5.SYS
09:07:56.0203 0x053c C:\WINDOWS\system32\drivers\BCMWL5.SYS - ok
09:07:56.0203 0x053c [ 6DF35CA139C3BC15CC74390ABB114EFE, 5401724E49243625C43B3F9032E592EF43605C2510E809C1D318A7792AB9FBBA ] C:\WINDOWS\system32\drivers\usbport.sys
09:07:56.0203 0x053c C:\WINDOWS\system32\drivers\usbport.sys - ok
09:07:56.0218 0x053c [ 0DAECCE65366EA32B162F85F07C6753B, 3C33AC2FC95E876933F2016CF0CDA2745491679728684DA8DF95A515CE4804BD ] C:\WINDOWS\system32\drivers\usbohci.sys
09:07:56.0218 0x053c C:\WINDOWS\system32\drivers\usbohci.sys - ok
09:07:56.0218 0x053c [ 4BAC8DF07F1D8434FC640E677A62204E, 76C1351AF6752224BF59DEEE0F8665FE699F3DFD679F5BCD01C7D9383E6402A4 ] C:\WINDOWS\system32\drivers\usbehci.sys
09:07:56.0218 0x053c C:\WINDOWS\system32\drivers\usbehci.sys - ok
09:07:56.0218 0x053c [ 083A052659F5310DD8B6A6CB05EDCF8E, 48D39B03FFB6FAA1529B774443BA12618AE3982D9F65A7B9D18F2269F78B31F4 ] C:\WINDOWS\system32\drivers\imapi.sys
09:07:56.0218 0x053c C:\WINDOWS\system32\drivers\imapi.sys - ok
09:07:56.0218 0x053c [ 1F4260CC5B42272D71F79E570A27A4FE, B51C2A3ED3C309953D0EA45869C8E464C10F2533DADE9E0286AF674979098D1D ] C:\WINDOWS\system32\drivers\cdrom.sys
09:07:56.0218 0x053c C:\WINDOWS\system32\drivers\cdrom.sys - ok
09:07:56.0234 0x053c [ 0753515F78DF7F271A5E61C20BCD36A1, A8D600CD0C592DFB875DE2D4F1AEDB207B80A43CF724051B6552BB6E539E9AFC ] C:\WINDOWS\system32\drivers\ks.sys
09:07:56.0234 0x053c C:\WINDOWS\system32\drivers\ks.sys - ok
09:07:56.0234 0x053c [ 573C7D0A32852B48F3058CFD8026F511, BC384BBA394AFDCDA1A9ABC858C692AA84A1F0A31AF3DDF7F38D120C027927FB ] C:\WINDOWS\system32\drivers\hdaudbus.sys
09:07:56.0234 0x053c C:\WINDOWS\system32\drivers\hdaudbus.sys - ok
09:07:56.0234 0x053c [ F828DD7E1419B6653894A8F97A0094C5, E6150E1F598BA4CFEDB8FF075BC0D576518C331B864388F1CAE8812EFF106ECF ] C:\WINDOWS\system32\drivers\redbook.sys
09:07:56.0234 0x053c C:\WINDOWS\system32\drivers\redbook.sys - ok
09:07:56.0234 0x053c [ 4A0B06AA8943C1E332520F7440C0AA30, DB2452390CCFE67E0C5FEB4FD42CA24ABE2DDD40D0B22DD5F5B8F70416863918 ] C:\WINDOWS\system32\drivers\i8042prt.sys
09:07:56.0234 0x053c C:\WINDOWS\system32\drivers\i8042prt.sys - ok
09:07:56.0250 0x053c [ 463C1EC80CD17420A542B7F36A36F128, E3B11BA26AFEAFB50B0FC168EA07F6049DA6B88BCDDEEE20310602D7FC27A3A7 ] C:\WINDOWS\system32\drivers\kbdclass.sys
09:07:56.0250 0x053c C:\WINDOWS\system32\drivers\kbdclass.sys - ok
09:07:56.0250 0x053c [ 35C9E97194C8CFB8430125F8DBC34D04, 0C0FCE6B0A23FB0ECB92E1663E1C72D2DD5B177D82E04782957690B69530DB39 ] C:\WINDOWS\system32\drivers\mouclass.sys
09:07:56.0250 0x053c C:\WINDOWS\system32\drivers\mouclass.sys - ok
09:07:56.0250 0x053c [ C424F991494E5674F2E9B3CF9F5F55D1, CC799C9154431763D052AB8B41EFAE71A039EDD6EAC5E6D892E22C8BEF1D2BB5 ] C:\WINDOWS\system32\drivers\tifm21.sys
09:07:56.0250 0x053c C:\WINDOWS\system32\drivers\tifm21.sys - ok
09:07:56.0265 0x053c [ 0F6C187D38D98F8DF904589A5F94D411, DB987093446216CEE913AC27503BF7E23E5A62DF169B355730285DAB64F6ED28 ] C:\WINDOWS\system32\drivers\cmbatt.sys
09:07:56.0265 0x053c C:\WINDOWS\system32\drivers\cmbatt.sys - ok
09:07:56.0265 0x053c [ 04FE5EF6ED4818EC4839EA5C611A6310, 666479AF6789FC5DF2EA8D4B6216FDA9A4998D252F95BD003619D9376B1DC9E7 ] C:\WINDOWS\system32\drivers\usbd.sys
09:07:56.0265 0x053c C:\WINDOWS\system32\drivers\usbd.sys - ok
09:07:56.0265 0x053c [ 64BC29C3A0388BFC580BB8B1346F7659, 4BB25AEAEF4F4DB9A318858A365402429D23FEB281FAB4C96583402961F0E544 ] C:\WINDOWS\system32\drivers\LVUSBSta.sys
09:07:56.0265 0x053c C:\WINDOWS\system32\drivers\LVUSBSta.sys - ok
09:07:56.0265 0x053c [ 3E5D89099DED9E86E5639F411693218F, 4A4AAC7C57BF523880959A39BAA8B9BDE92C5575D15BE5E4931EADBA5E4F1661 ] C:\WINDOWS\system32\drivers\stream.sys
09:07:56.0265 0x053c C:\WINDOWS\system32\drivers\stream.sys - ok
09:07:56.0281 0x053c [ D8C0B2EB928D57C928522EFF500C4BA8, B7261AB2DD262140489087C1A8F1A1DA5EE6373D453E5BC8A3F7B93A5540CE6C ] C:\WINDOWS\system32\drivers\mcvidrv.sys
09:07:56.0281 0x053c C:\WINDOWS\system32\drivers\mcvidrv.sys - ok
09:07:56.0296 0x053c [ 6CB08593487F5701D2D2254E693EAFCE, 0518A1FC540C036E6864DA8C01CADE043D4F897D7FCF8C61352865131DEB7414 ] C:\WINDOWS\system32\drivers\drmk.sys
09:07:56.0296 0x053c C:\WINDOWS\system32\drivers\drmk.sys - ok
09:07:56.0312 0x053c [ E82A496C3961EFC6828B508C310CE98F, E142A0809525B34A376B3063B07B8822930056BBCB886B7CF1D7585BCEC371A0 ] C:\WINDOWS\system32\drivers\portcls.sys
09:07:56.0312 0x053c C:\WINDOWS\system32\drivers\portcls.sys - ok
09:07:56.0328 0x053c [ 964BD01FD77026F93F15040027F6F579, 7812F242A06F638094F63A1A254E1F1693EBFE2883C85E02C08301512A5585A2 ] C:\WINDOWS\system32\drivers\mcaudrv.sys
09:07:56.0328 0x053c C:\WINDOWS\system32\drivers\mcaudrv.sys - ok
09:07:56.0328 0x053c [ D9F724AA26C010A217C97606B160ED68, 329B5118F2409731D06FDAE85B6ADD64A048292801BCB3546651CEB303111695 ] C:\WINDOWS\system32\drivers\audstub.sys
09:07:56.0328 0x053c C:\WINDOWS\system32\drivers\audstub.sys - ok
09:07:56.0343 0x053c [ 11B4A627BC9614B885C4969BFA5FF8A6, EAE0A412A2B0F68919C32A96B3A08CC1A06585E4998819F5C9051745F63FF5AD ] C:\WINDOWS\system32\drivers\rasl2tp.sys
09:07:56.0343 0x053c C:\WINDOWS\system32\drivers\rasl2tp.sys - ok
09:07:56.0375 0x053c [ 0109C4F3850DFBAB279542515386AE22, 4F6DB1E499AC853FD36FD603FBB6D3AC9BDCEB298C7FE1FB59A9236CB46729B2 ] C:\WINDOWS\system32\drivers\ndistapi.sys
09:07:56.0375 0x053c C:\WINDOWS\system32\drivers\ndistapi.sys - ok
09:07:56.0375 0x053c [ EDC1531A49C80614B2CFDA43CA8659AB, 494042F790F33721328B4451E79842E21919681CC421A4F9633EC4D383E06097 ] C:\WINDOWS\system32\drivers\ndiswan.sys
09:07:56.0375 0x053c C:\WINDOWS\system32\drivers\ndiswan.sys - ok
09:07:56.0390 0x053c [ 5BC962F2654137C9909C3D4603587DEE, A5CE5653D0105240F5E86CFAAB89E7917D42D939E2F27A5A7D6979289CA651B8 ] C:\WINDOWS\system32\drivers\raspppoe.sys
09:07:56.0390 0x053c C:\WINDOWS\system32\drivers\raspppoe.sys - ok
09:07:56.0390 0x053c [ 0539D5E53587F82D1B4FD74C5BE205CF, 9C578FC46AC3B8260258B83C89A33C3D7990B365D7708AEF2296CD235C7D301A ] C:\WINDOWS\system32\drivers\tdi.sys
09:07:56.0390 0x053c C:\WINDOWS\system32\drivers\tdi.sys - ok
09:07:56.0406 0x053c [ 0A02C63C8B144BD8C86B103DEE7C86A2, 7A3235DD3E1995DD72B212FAEB3ECA2A974434DE9BF6D269EA11BA65A80E7E50 ] C:\WINDOWS\system32\drivers\msgpc.sys
09:07:56.0406 0x053c C:\WINDOWS\system32\drivers\msgpc.sys - ok
09:07:56.0406 0x053c [ 09298EC810B07E5D582CB3A3F9255424, 35473A1BE25AC289474090EB0806AC6B3035DC33D1F3DF97A14BF1E361AC6AC3 ] C:\WINDOWS\system32\drivers\psched.sys
09:07:56.0406 0x053c C:\WINDOWS\system32\drivers\psched.sys - ok
09:07:56.0406 0x053c [ EFEEC01B1D3CF84F16DDD24D9D9D8F99, C5F0C8C66A3AF7E7BB04CEDE4AC5306F8387AB384A2107DC5BE413AAE968EFF1 ] C:\WINDOWS\system32\drivers\raspptp.sys
09:07:56.0406 0x053c C:\WINDOWS\system32\drivers\raspptp.sys - ok
09:07:56.0421 0x053c [ 80D317BD1C3DBC5D4FE7B1678C60CADD, DA76804B55D0CAB3DDD01EFC06673764AE4860693375C658B6063FB14AF7F12C ] C:\WINDOWS\system32\drivers\ptilink.sys
09:07:56.0421 0x053c C:\WINDOWS\system32\drivers\ptilink.sys - ok
09:07:56.0421 0x053c [ FDBB1D60066FCFBB7452FD8F9829B242, 10A2DACF944BD000032EBA8C095CB3D879CC55B28C377ADF6E52E508E47444DB ] C:\WINDOWS\system32\drivers\raspti.sys
09:07:56.0421 0x053c C:\WINDOWS\system32\drivers\raspti.sys - ok
09:07:56.0421 0x053c [ 88155247177638048422893737429D9E, B6D4E8691917946332C2208D01F8C8281978C1AD1E9951C5D99DF0D49AC34B3B ] C:\WINDOWS\system32\drivers\termdd.sys
09:07:56.0421 0x053c C:\WINDOWS\system32\drivers\termdd.sys - ok
09:07:56.0421 0x053c [ 3941D127AEF12E93ADDF6FE6EE027E0F, EA1F0E32E1C5E90FA4AAC421DEBBE086512340758D3217A6334E886BCE638B51 ] C:\WINDOWS\system32\drivers\swenum.sys
09:07:56.0421 0x053c C:\WINDOWS\system32\drivers\swenum.sys - ok
09:07:56.0437 0x053c [ 402DDC88356B1BAC0EE3DD1580C76A31, 32A686595710336A6BFD54C03F552AE39439611662F84EF5D24193AE5665C6F3 ] C:\WINDOWS\system32\drivers\update.sys
09:07:56.0437 0x053c C:\WINDOWS\system32\drivers\update.sys - ok
09:07:56.0437 0x053c [ AF5F4F3F14A8EA2C26DE30F7A1E17136, AC93A1E4ABB0D038B772E429015567E44CC2EDB66C54DBE23A5F98176FAC1520 ] C:\WINDOWS\system32\drivers\mssmbios.sys
09:07:56.0437 0x053c C:\WINDOWS\system32\drivers\mssmbios.sys - ok
09:07:56.0437 0x053c [ 9282BD12DFB069D3889EB3FCC1000A9B, 09A46F1712BD9165068D8E153585FE3E6E5CBF4F1DDEC142115555D3A91AEC09 ] C:\WINDOWS\system32\drivers\ndproxy.sys
09:07:56.0437 0x053c C:\WINDOWS\system32\drivers\ndproxy.sys - ok
09:07:56.0453 0x053c [ 1AB3CDDE553B6E064D2E754EFE20285C, A99C4528C4227B1E96847614745AAFACD3C5F1BDFE435214DBF78740FFB300FE ] C:\WINDOWS\system32\drivers\usbhub.sys
09:07:56.0453 0x053c C:\WINDOWS\system32\drivers\usbhub.sys - ok
09:07:56.0453 0x053c [ 3B24ADA55D3BDFDC0E6679D15FA668D8, 127F4233B48145BBCA9B8B718202D104AFCE117AC68F3CDEF32D61A391A6808F ] C:\WINDOWS\system32\drivers\sthda.sys
09:07:56.0453 0x053c C:\WINDOWS\system32\drivers\sthda.sys - ok
09:07:56.0453 0x053c [ 78DA3038965DE2B3834303DFB0578326, 1899884F17112C13F10C741EA2D821E36A91EA1217F51D03439E506EC3AD7BD9 ] C:\WINDOWS\system32\drivers\smserial.sys
09:07:56.0453 0x053c C:\WINDOWS\system32\drivers\smserial.sys - ok
09:07:56.0453 0x053c [ DFCBAD3CEC1C5F964962AE10E0BCC8E1, B342CC9EC3729AB1AB4B5E2E99F890C1E0CA649162DE91F6768AB857B719E97B ] C:\WINDOWS\system32\drivers\modem.sys
09:07:56.0453 0x053c C:\WINDOWS\system32\drivers\modem.sys - ok
09:07:56.0468 0x053c [ 92CDD60B6730B9F50F6A1A0C1F8CDC81, 8307A532AB4D05CBBCE206DC2759497708BF5AAA880BD00F0E4F281D8578A1F5 ] C:\WINDOWS\system32\drivers\fdc.sys
09:07:56.0468 0x053c C:\WINDOWS\system32\drivers\fdc.sys - ok
09:07:56.0468 0x053c [ 9D27E7B80BFCDF1CDD9B555862D5E7F0, 69C271AD5BCEBFD8AE5A769BDD7EC51256DA3A8ADAD5D12E5C0D13F4E82D8805 ] C:\WINDOWS\system32\drivers\flpydisk.sys
09:07:56.0468 0x053c C:\WINDOWS\system32\drivers\flpydisk.sys - ok
09:07:56.0468 0x053c [ C1B486A7658353D33A10CC15211A873B, AA4DD9E7AAE5AAB1146B360B17001F975D2F29A1281CF7B13E7136480410F347 ] C:\WINDOWS\system32\drivers\cdaudio.sys
09:07:56.0468 0x053c C:\WINDOWS\system32\drivers\cdaudio.sys - ok
09:07:56.0484 0x053c [ 8E6B8C671615D126FDC553D1E2DE5562, CEEC0067514555D5CA489F50E3D7562FCA8DB8E952C3C878604C9277FC77959F ] C:\WINDOWS\system32\drivers\sfloppy.sys
09:07:56.0484 0x053c C:\WINDOWS\system32\drivers\sfloppy.sys - ok
09:07:56.0484 0x053c [ DA1F27D85E0D1525F6621372E7B685E9, 5A81A46A3BDD19DAFC6C87D277267A5D44F3A1B5302F2CC1111D84B7BAD5610D ] C:\WINDOWS\system32\drivers\beep.sys
09:07:56.0484 0x053c C:\WINDOWS\system32\drivers\beep.sys - ok
09:07:56.0484 0x053c [ 3E1E2BD4F39B0E2B7DC4F4D2BCC2779A, EC635E071201A766845D48973772CBE0958942B4162F3F5F70660D114CC877E0 ] C:\WINDOWS\system32\drivers\fs_rec.sys
09:07:56.0484 0x053c C:\WINDOWS\system32\drivers\fs_rec.sys - ok
09:07:56.0484 0x053c [ C569EF030B11F896E123A30AC92678DB, F851E99B968BBAB82E3B0D1D2F985AEE1EAD10C3BBACDD02BAB2ACEE57CB048A ] C:\WINDOWS\system32\drivers\hidparse.sys
09:07:56.0484 0x053c C:\WINDOWS\system32\drivers\hidparse.sys - ok
09:07:56.0500 0x053c [ 73C1E1F395918BC2C6DD67AF7591A3AD, B21133A75253EC15E2DFF66D3B480AB1A7E1A2360476C810E7AA55D0F0EB08D4 ] C:\WINDOWS\system32\drivers\null.sys
09:07:56.0500 0x053c C:\WINDOWS\system32\drivers\null.sys - ok
09:07:56.0500 0x053c [ 9EF487A186DEA361AA06913A75B3FA99, B94EBA4EC6D85E11C81AF9927E9EF0AF2E6FE134CFF1FDB0535B7C5A794B4261 ] C:\WINDOWS\system32\drivers\kbdhid.sys
09:07:56.0500 0x053c C:\WINDOWS\system32\drivers\kbdhid.sys - ok
09:07:56.0500 0x053c [ 0D3A8FAFCEACD8B7625CD549757A7DF1, B9CFDEFCD66AA139F3DC2F967B184669532922563AD5A71769BABDC4370D065E ] C:\WINDOWS\system32\drivers\vga.sys
09:07:56.0500 0x053c C:\WINDOWS\system32\drivers\vga.sys - ok
09:07:56.0515 0x053c [ 4AE068242760A1FB6E1A44BF4E16AFA6, 1FB771162B96AAF787AC24867B818DF8511F0780BB094FA9A38C11D8DBFE68BC ] C:\WINDOWS\system32\drivers\mnmdd.sys
09:07:56.0515 0x053c C:\WINDOWS\system32\drivers\mnmdd.sys - ok
09:07:56.0515 0x053c [ 4912D5B403614CE99C28420F75353332, 975341ECD660209987B5E5171B8315E032439E408CBE8A5986E67AF767F373BB ] C:\WINDOWS\system32\drivers\rdpcdd.sys
09:07:56.0515 0x053c C:\WINDOWS\system32\drivers\rdpcdd.sys - ok
09:07:56.0515 0x053c [ C941EA2454BA8350021D774DAF0F1027, C940E978C7B66A713A0FDAB54B5F995DF59D089AFCD96221DD3222948CD49BBD ] C:\WINDOWS\system32\drivers\msfs.sys
09:07:56.0515 0x053c C:\WINDOWS\system32\drivers\msfs.sys - ok
09:07:56.0515 0x053c [ 23C74D75E36E7158768DD63D92789A91, 394D296F38E7D8EFD91A6EEC301D9CE6AF910E35EB9819F1A9E3363863AEDFDC ] C:\WINDOWS\system32\drivers\ipsec.sys
09:07:56.0515 0x053c C:\WINDOWS\system32\drivers\ipsec.sys - ok
09:07:56.0531 0x053c [ 3182D64AE053D6FB034F44B6DEF8034A, 4ADFC76965BA2A5F488E71789A4E4EA702A74AF42725F72130D1CA919406CF19 ] C:\WINDOWS\system32\drivers\npfs.sys
09:07:56.0531 0x053c C:\WINDOWS\system32\drivers\npfs.sys - ok
09:07:56.0531 0x053c [ FE0D99D6F31E4FAD8159F690D68DED9C, 998685622ABE631984B7E4DBF91AB3594B1F574378D75EB9F6265F4650470692 ] C:\WINDOWS\system32\drivers\rasacd.sys
09:07:56.0531 0x053c C:\WINDOWS\system32\drivers\rasacd.sys - ok
09:07:56.0531 0x053c [ 9AEFA14BD6B182D61E3119FA5F436D3D, EA29E49434585409272E7901AF89771FE9D6E911A7DC44AB3C7020CFF8A44552 ] C:\WINDOWS\system32\drivers\tcpip.sys
09:07:56.0531 0x053c C:\WINDOWS\system32\drivers\tcpip.sys - ok
09:07:56.0546 0x053c [ CC748EA12C6EFFDE940EE98098BF96BB, AF523E21C25D9A1715EFEA573E4F52AF5D4FC9F28A2D613F5DB629C186C439E0 ] C:\WINDOWS\system32\drivers\ipnat.sys
09:07:56.0546 0x053c C:\WINDOWS\system32\drivers\ipnat.sys - ok
09:07:56.0546 0x053c [ 74B2B2F5BEA5E9A3DC021D685551BD3D, 7932B71F98B4122BE88F576BF6D745A757AE378A48924B7F4358837B75640A82 ] C:\WINDOWS\system32\drivers\netbt.sys
09:07:56.0546 0x053c C:\WINDOWS\system32\drivers\netbt.sys - ok
09:07:56.0546 0x053c [ 1E44BC1E83D8FD2305F8D452DB109CF9, CF5EC07E0B589FA2A4701C6CFD69E893FC3ABF274AD57AE3C13FFE49063B02C8 ] C:\WINDOWS\system32\drivers\afd.sys
09:07:56.0546 0x053c C:\WINDOWS\system32\drivers\afd.sys - ok
09:07:56.0562 0x053c [ E20B95BAEDB550F32DD489265C1DA1F6, 5589B2067E6C9FBA290D8C5EADDC198EBAF39C50C3CD7D2BC5CDA7CBFBC445E5 ] C:\WINDOWS\system32\drivers\wanarp.sys
09:07:56.0562 0x053c C:\WINDOWS\system32\drivers\wanarp.sys - ok
09:07:56.0562 0x053c [ B5B8A80875C1DEDEDA8B02765642C32F, AD0C71D73B1B8225351FBF4FFB43001A32B4DAE69504C59970CD2428BB33D4EF ] C:\WINDOWS\system32\drivers\arp1394.sys
09:07:56.0562 0x053c C:\WINDOWS\system32\drivers\arp1394.sys - ok
09:07:56.0562 0x053c [ 5D81CF9A2F1A3A756B66CF684911CDF0, 7989C36607CAEA17AFA2C1C9904145CA0714A54B9F712D9D4C1AB140D0B2CC0C ] C:\WINDOWS\system32\drivers\netbios.sys
09:07:56.0562 0x053c C:\WINDOWS\system32\drivers\netbios.sys - ok
09:07:56.0562 0x053c [ A32BEBAF723557681BFC6BD93E98BD26, 35039BA72A29F87B2CA37DCDE4EFDAABBDEAD8CE3EB8652ACC665994118145A6 ] C:\WINDOWS\system32\drivers\processr.sys
09:07:56.0562 0x053c C:\WINDOWS\system32\drivers\processr.sys - ok
09:07:56.0578 0x053c [ 7D304A5EB4344EBEEAB53A2FE3FFB9F0, DB9B186F7076D7B94F45041AF7B77C1AD2CAB504D683B459C6CB1C22840ED170 ] C:\WINDOWS\system32\drivers\mrxsmb.sys
09:07:56.0578 0x053c C:\WINDOWS\system32\drivers\mrxsmb.sys - ok
09:07:56.0578 0x053c [ 7AD224AD1A1437FE28D89CF22B17780A, 6645235CA27D671954E3557FA37082881C3D7D47492C71264CD8CB8D108EC801 ] C:\WINDOWS\system32\drivers\rdbss.sys
09:07:56.0578 0x053c C:\WINDOWS\system32\drivers\rdbss.sys - ok
09:07:56.0578 0x053c [ D45926117EB9FA946A6AF572FBE1CAA3, 4C94EF009D778BE0BDF8F812F026B96F91F641BE30AA2531427A5E63DBD280DA ] C:\WINDOWS\system32\drivers\fips.sys
09:07:56.0578 0x053c C:\WINDOWS\system32\drivers\fips.sys - ok
09:07:56.0593 0x053c [ 5F816C1F539266D2D4C78694239DA0B5, 10BFCCF4EFFC3813A563D528DC5464827BEF10AE21D6B9C1138930228E7047D1 ] C:\WINDOWS\system32\smss.exe
09:07:56.0593 0x053c C:\WINDOWS\system32\smss.exe - ok
09:07:56.0593 0x053c [ F8F0D25CA553E39DDE485D8FC7FCCE89, 54DF909101AAEC63234A5C33B51D6689FEF58B943942BFFA9606864F43EC1085 ] C:\WINDOWS\system32\ntdll.dll
09:07:56.0593 0x053c C:\WINDOWS\system32\ntdll.dll - ok
09:07:56.0593 0x053c [ 23043C91A0F9DFB4B9E9F87B680863B4, 318A6F6DB4A1EDE7D3758E324350EA852449ABD2A7BB77004FBC403CF9FFB08B ] C:\WINDOWS\system32\autochk.exe
09:07:56.0593 0x053c C:\WINDOWS\system32\autochk.exe - ok
09:07:56.0593 0x053c [ 9DD07AF82244867CA36681EA2D29CE79, 84926A50CB38C322D1CDFD4C0D5F8FFE3B2EF3080B3401F5D5AE8CBD0A719685 ] C:\WINDOWS\system32\sfcfiles.dll
09:07:56.0593 0x053c C:\WINDOWS\system32\sfcfiles.dll - ok
09:07:56.0609 0x053c [ C885B02847F5D2FD45A24E219ED93B32, B26B2F8E3A831E2B65EB0C5195B0645CD50E22615CE79C9B0B391CD563B121DB ] C:\WINDOWS\system32\drivers\cdfs.sys
09:07:56.0609 0x053c C:\WINDOWS\system32\drivers\cdfs.sys - ok
09:07:56.0609 0x053c [ 2F31B7F954BED437F2C75026C65CAF7B, 1F8D6CBB01AD403BC89D1E987012E2F63CDFD9C49F402F358B64B31C13E4DD14 ] C:\WINDOWS\system32\drivers\wmilib.sys
09:07:56.0609 0x053c C:\WINDOWS\system32\drivers\wmilib.sys - ok
09:07:56.0609 0x053c [ 9F3A2F5AA6875C72BF062C712CFA2674, B4DF1D2C56A593C6B54DE57395E3B51D288F547842893B32B0F59228A0CF70B9 ] C:\WINDOWS\system32\drivers\atapi.sys
09:07:56.0609 0x053c C:\WINDOWS\system32\drivers\atapi.sys - ok
09:07:56.0625 0x053c [ FE97D0343ACFDEBDD578FC67CC91FA87, FE26FBA13079189EF96A1C994036EA472A4BF34FA14C163C693AD481BF31E676 ] C:\WINDOWS\system32\drivers\dxapi.sys
09:07:56.0625 0x053c C:\WINDOWS\system32\drivers\dxapi.sys - ok
09:07:56.0625 0x053c [ 9A10AACBFDC4922715375FB4065EC930, E407953587C04F75DDB163420A5121FF520D31F74753D452E316042C42D360CF ] C:\WINDOWS\system32\watchdog.sys
09:07:56.0625 0x053c C:\WINDOWS\system32\watchdog.sys - ok
09:07:56.0625 0x053c [ B9FE0B45F3D4A281B56CC84713824E0C, B37D569D09801FB9CF1306FF1295CE6EE4B6AAD11DCA7EBCBC155D186FD895CD ] C:\WINDOWS\system32\win32k.sys
09:07:56.0625 0x053c C:\WINDOWS\system32\win32k.sys - ok
09:07:56.0625 0x053c [ DD40363ABAD230A84C5E2178B11EFA88, E4B406C0B10686CF245EC0053A03424CE1FB8AC7FB3545525F13BB3BC5086FF1 ] C:\WINDOWS\system32\csrsrv.dll
09:07:56.0625 0x053c C:\WINDOWS\system32\csrsrv.dll - ok
09:07:56.0640 0x053c [ 44F275C64738EA2056E3D9580C23B60F, 5D4B7306E71A44440E7F0B32A373AEC120C01B69F87756589E39EB85C40CD742 ] C:\WINDOWS\system32\csrss.exe
09:07:56.0640 0x053c C:\WINDOWS\system32\csrss.exe - ok
09:07:56.0640 0x053c [ 42F1F4C0AFB08410E5F02D4B13EBB623, 924C30587C51C0D1E1F47991969AF492A644552E15F2480EA991DCB74A3E68D5 ] C:\WINDOWS\system32\basesrv.dll
09:07:56.0640 0x053c C:\WINDOWS\system32\basesrv.dll - ok
09:07:56.0640 0x053c [ 69AE2B2E6968C316536E5B10B9702E63, D9C5DA7A20DDE69D91E72400C3F06F3CB099DEF42EA6C53FCE076258A0C22391 ] C:\WINDOWS\system32\winsrv.dll
09:07:56.0640 0x053c C:\WINDOWS\system32\winsrv.dll - ok
09:07:56.0656 0x053c [ 8B1F3320AEBB536E021A5014409862DE, AF87414100C16882B5CB6852C94205EC646A42B2616C5EC8AD5010611427FAF1 ] C:\WINDOWS\system32\gdi32.dll
09:07:56.0656 0x053c C:\WINDOWS\system32\gdi32.dll - ok
09:07:56.0656 0x053c [ 6FE42512AB1B89F32A7407F261B1D2D0, 30DCC1044BCC7108087462E173707DC8D947C4F37281686A79D3D40273901878 ] C:\WINDOWS\system32\kernel32.dll
09:07:56.0656 0x053c C:\WINDOWS\system32\kernel32.dll - ok
09:07:56.0656 0x053c [ B26B135FF1B9F60C9388B4A7D16F600B, ACD0AE7B4D5F871E148276C6CC4AE3A216E33F67FC78D827C16986E1F945438C ] C:\WINDOWS\system32\user32.dll
09:07:56.0656 0x053c C:\WINDOWS\system32\user32.dll - ok
09:07:56.0671 0x053c [ AC7280566A7BB85CB3291F04DDC1198E, 7640BC4C28B5D5167A10C4B0DA0FC8C7A255334D4BA11FD3E28A697A5B58583C ] C:\WINDOWS\system32\drivers\dxg.sys
09:07:56.0671 0x053c C:\WINDOWS\system32\drivers\dxg.sys - ok
09:07:56.0671 0x053c [ A73F5D6705B1D820C19B18782E176EFD, C36486504C3A596FDCA487143F6D3B43C0BEE01321F6F1F3071976556533C419 ] C:\WINDOWS\system32\drivers\dxgthk.sys
09:07:56.0671 0x053c C:\WINDOWS\system32\drivers\dxgthk.sys - ok
09:07:56.0671 0x053c [ EE9770D8C737C656E7D7672189AFD47F, 975D25226C6D9B8B6302D4383C4A15D6C4CE48D6D865A448F99FDB3ED9E0CF9D ] C:\WINDOWS\system32\ati2dvag.dll
09:07:56.0671 0x053c C:\WINDOWS\system32\ati2dvag.dll - ok
09:07:56.0671 0x053c [ 224FAD395E57B0FA853EE4A32B481F8F, E4EC23B95630E50C082020391B5AFB13196DAD11BFEDB8BFA5746168FF4AEBBD ] C:\WINDOWS\system32\ati2cqag.dll
09:07:56.0671 0x053c C:\WINDOWS\system32\ati2cqag.dll - ok
09:07:56.0687 0x053c [ 2F1483D281B77F1939E5312C4A8B56A6, 69DF4C095B8F66949068A638D62A189DCC339A57EB786CE73CA0D10167FDC7BB ] C:\WINDOWS\system32\atikvmag.dll
09:07:56.0687 0x053c C:\WINDOWS\system32\atikvmag.dll - ok
09:07:56.0687 0x053c [ ECB7591870F8BFB1A4C17B718AD5A4AA, 67E8D218F107F78F9C62999F560E47AEC799E4B4DC4AB3EBC0DC61670BFE3E3D ] C:\WINDOWS\system32\vga.dll
09:07:56.0687 0x053c C:\WINDOWS\system32\vga.dll - ok
09:07:56.0687 0x053c [ 9860E1110257BDC1E77677958E35A1B3, 9FA6B95068F593789762F764DAEB2F97F5B90F232059E7AF8D0D7A7F0D99489B ] C:\WINDOWS\system32\ati3duag.dll
09:07:56.0687 0x053c C:\WINDOWS\system32\ati3duag.dll - ok
09:07:56.0703 0x053c [ FF4B72E0F2B24C1C02EF7156C45FB951, 65DC7584AECFAEEAFE463239DB61B474E651B973098D8EA9F1D3795E09E64DDF ] C:\WINDOWS\system32\ativvaxx.dll
09:07:56.0703 0x053c C:\WINDOWS\system32\ativvaxx.dll - ok
09:07:56.0703 0x053c [ ED0EF0A136DEC83DF69F04118870003E, 45377CB8E9F0120F836FC8261C711F7DBF7199117AFB3652EBF100D5F0429B1E ] C:\WINDOWS\system32\winlogon.exe
09:07:56.0703 0x053c C:\WINDOWS\system32\winlogon.exe - ok
09:07:56.0703 0x053c [ E76F8807070ED04E7408A86D6D3A6137, BFCF5361B7335760A7AE4B6958DE516A27AC60AA09135A46F0B49F588FAFE3A0 ] C:\WINDOWS\system32\advapi32.dll
09:07:56.0703 0x053c C:\WINDOWS\system32\advapi32.dll - ok
09:07:56.0703 0x053c [ B0E27554F0B16BAEF4D51D7260E62CFB, 3DE9F4817965F1DBB93CAAE541EB8EC19396ACE7CB74D69C52D1D7DF15FB14CF ] C:\WINDOWS\system32\rpcrt4.dll
09:07:56.0703 0x053c C:\WINDOWS\system32\rpcrt4.dll - ok
09:07:56.0718 0x053c [ 5357826C8A8DD6A07F17C48BB45BE46E, E081B04F8C8A31951A0ADEC889E6CA4DEED5FF738446D5A5614B11B113000BCA ] C:\WINDOWS\system32\secur32.dll
09:07:56.0718 0x053c C:\WINDOWS\system32\secur32.dll - ok
09:07:56.0718 0x053c [ 714705F29A917993536A6AB2DEDB0B7F, 5C3EA97044A7AF8027000DFA40901C0097EC935A7149C0A46AA2C6A2F9FD6CC1 ] C:\WINDOWS\system32\authz.dll
09:07:56.0718 0x053c C:\WINDOWS\system32\authz.dll - ok
09:07:56.0718 0x053c [ 355EDBB4D412B01F1740C17E3F50FA00, 8619D345C864CD8EA704EFAA0A391F5F31AA56BB6D30F62FC60F465873CC1BF9 ] C:\WINDOWS\system32\msvcrt.dll
09:07:56.0718 0x053c C:\WINDOWS\system32\msvcrt.dll - ok
09:07:56.0718 0x053c [ 6BEE5D4EFF0A0341BCC4A462D81CCFC1, EA90CA8DC82F2273B4CD8F8C3B7C5AB9856AE0E8B5AC0CA2604776CDC9FE40B2 ] C:\WINDOWS\system32\crypt32.dll
09:07:56.0718 0x053c C:\WINDOWS\system32\crypt32.dll - ok
09:07:56.0734 0x053c [ 04D898830DF96A17A20FD35D7590F87E, 09C75D1D434FF6BBE9B3F5E0A8E63944ACB34E364C4A89676DED2204DBD1AEF5 ] C:\WINDOWS\system32\msasn1.dll
09:07:56.0734 0x053c C:\WINDOWS\system32\msasn1.dll - ok
09:07:56.0734 0x053c [ 013C1148C1EC025596896E093F60F608, E19D20E0852372ED7DA66939E995F8F7ECC52ED5B650E8B833944788C0A34F61 ] C:\WINDOWS\system32\nddeapi.dll
09:07:56.0734 0x053c C:\WINDOWS\system32\nddeapi.dll - ok
09:07:56.0734 0x053c [ FCFA1C55971CC229D353B3A15ACCD995, 6C21D6EAD676AF8C100666261CE7AA5AA86671883B78092AD61008234C96BBBA ] C:\WINDOWS\system32\profmap.dll
09:07:56.0734 0x053c C:\WINDOWS\system32\profmap.dll - ok
09:07:56.0750 0x053c [ CAC752BF84DB4666ED3CE0948E6EA937, C84F9D57C076DE6ACC1720B66147D0CA963C65714593FAFD7FB1FE1F01CC464B ] C:\WINDOWS\system32\netapi32.dll
09:07:56.0750 0x053c C:\WINDOWS\system32\netapi32.dll - ok
09:07:56.0750 0x053c [ 43D13C80EBEC0135A3611E0F616F179B, 9C5409ECBD2C3B89C80F0A59B96220178E790A7D78967C6281D56EB1965E9ECD ] C:\WINDOWS\system32\userenv.dll
09:07:56.0750 0x053c C:\WINDOWS\system32\userenv.dll - ok
09:07:56.0750 0x053c [ 9CFCB3CA3D83B4EAA133F0644A2C6F31, CC0A76B55B38183B8C6141C290D1858A9D118333C804784AB305FE76A0FCE775 ] C:\WINDOWS\system32\psapi.dll
09:07:56.0750 0x053c C:\WINDOWS\system32\psapi.dll - ok
09:07:56.0750 0x053c [ AF11C591F2F4AFF4A6CF699D376F618B, B61C0D1944D5D8F536AB5422017C99773BD89EA59784969E4F8F269BF9EF57C3 ] C:\WINDOWS\system32\regapi.dll
09:07:56.0750 0x053c C:\WINDOWS\system32\regapi.dll - ok
09:07:56.0765 0x053c [ 24192246760E0E64435522E246B1D6C2, B1C5A16A73250DEA900FF6ECE71F604E2411B4FDFD497564BEB7D867A75640BF ] C:\WINDOWS\system32\setupapi.dll
09:07:56.0765 0x053c C:\WINDOWS\system32\setupapi.dll - ok
09:07:56.0765 0x053c [ C7CE131408739B0B3A318BE2D0032719, CAEEED45F6BAB22F611B2200DC91E68426F169F5646247893CF3AC7EFDDD07B8 ] C:\WINDOWS\system32\version.dll
09:07:56.0765 0x053c C:\WINDOWS\system32\version.dll - ok
09:07:56.0765 0x053c [ 430CEB794F6E6EF8AC86958C242366D6, 48066566EDC18654095EAD7F4449CD42B44AD758465A6B36A42B489F32C7E64B ] C:\WINDOWS\system32\winsta.dll
09:07:56.0765 0x053c C:\WINDOWS\system32\winsta.dll - ok
09:07:56.0781 0x053c [ D458B738B4C2CE33174CFB2CE12412DB, C8FCA4B1BE8358B1F14BB25F39899A18804133544701DFCF40E8782C2487C912 ] C:\WINDOWS\system32\wintrust.dll
09:07:56.0781 0x053c C:\WINDOWS\system32\wintrust.dll - ok
09:07:56.0781 0x053c [ FFC01A72D1C25CCB39F61B202CE60819, 31A5C01E30B064BDBD378AF691DB99F6AA33A639C086ADC6C8408C3CB171C990 ] C:\WINDOWS\system32\imagehlp.dll
09:07:56.0781 0x053c C:\WINDOWS\system32\imagehlp.dll - ok
09:07:56.0781 0x053c [ 0DA85218E92526972A821587E6A8BF8F, 9377F61D4B10974D5962E03F54BB89C8F804883245D61C670E51228AFE4559EB ] C:\WINDOWS\system32\imm32.dll
09:07:56.0781 0x053c C:\WINDOWS\system32\imm32.dll - ok
09:07:56.0796 0x053c [ 9789E95E1D88EEB4B922BF3EA7779C28, 2D17FD78E71BDB5D51B69DE6B36D7481A7AA3C61EA7636CD71638AF501883A91 ] C:\WINDOWS\system32\ws2help.dll
09:07:56.0796 0x053c C:\WINDOWS\system32\ws2help.dll - ok
09:07:56.0796 0x053c [ 2CCC474EB85CEAA3E1FA1726580A3E5A, 6E99D2FB4997E54E8B1B7D769CF2C0FAE296A6441DC39984850EA26BFEB7E500 ] C:\WINDOWS\system32\ws2_32.dll
09:07:56.0796 0x053c C:\WINDOWS\system32\ws2_32.dll - ok
09:07:56.0796 0x053c [ 56C5B179FE3308B655EB6208C3256FEC, C70BCE54E5DF47D37C835804EAAEC7C06C1A226EFA2003226BE290D1D552126F ] C:\WINDOWS\system32\kbdus.dll
09:07:56.0796 0x053c C:\WINDOWS\system32\kbdus.dll - ok
09:07:56.0796 0x053c [ D7B7A57C0E57C836F18CF12A4C62A1CA, 651B16027B4F4B0ED2F827E32B7E66188CDB023DB8C7B1A9A1A44063FB35B9DE ] C:\WINDOWS\system32\msgina.dll
09:07:56.0796 0x053c C:\WINDOWS\system32\msgina.dll - ok
09:07:56.0812 0x053c [ 93AFB83FBC1F9443CAC722FCA63D73BF, 853C4A03A153F232E5CAF219F7FD732CB82CB62171F077DE737B32169F7832AB ] C:\WINDOWS\system32\comctl32.dll
09:07:56.0812 0x053c C:\WINDOWS\system32\comctl32.dll - ok
09:07:56.0812 0x053c [ 40B0F98BAD16AD5DEF894E88C3EF8014, 916B7BFC23BB5A3F757160BCF2013A8260D9382EFDE6AADAFC4D297828C71003 ] C:\WINDOWS\system32\odbc32.dll
09:07:56.0812 0x053c C:\WINDOWS\system32\odbc32.dll - ok
09:07:56.0812 0x053c [ 86987A5000DFA3EBE2275C0456BCF2FE, 31B699E8FD11DD59ADBAE56650C1B7AE80484091B3B6D9015A95F590E2C3EB05 ] C:\WINDOWS\system32\comdlg32.dll
09:07:56.0812 0x053c C:\WINDOWS\system32\comdlg32.dll - ok
09:07:56.0828 0x053c [ 6843D54BC4A40CC8C5741AF750233D10, D998B54B7D23A986DD14D8BC56169A10EE43267F4F1914FBDD55B6B028993FAC ] C:\WINDOWS\system32\shell32.dll
09:07:56.0828 0x053c C:\WINDOWS\system32\shell32.dll - ok
09:07:56.0828 0x053c [ C448A248B743F5FB935C787A5D97268B, 26E88FF449F938B218FAED6D8F3F095577216A29D656D17ACEA7F6C16E638BED ] C:\WINDOWS\system32\shlwapi.dll
09:07:56.0828 0x053c C:\WINDOWS\system32\shlwapi.dll - ok
09:07:56.0828 0x053c [ 694503348B586E99D56C0E30AB5B3EF8, 53A0C2604574058F1520D8F0805F1247B15BB0E00A5B5BAFE027C702D55E5076 ] C:\WINDOWS\system32\sxs.dll
09:07:56.0828 0x053c C:\WINDOWS\system32\sxs.dll - ok
09:07:56.0828 0x053c [ 736B12B725AEB2B07F0241A9F680CB10, 9EF1406CAEE256117DA8C8904BCB20FB8F9421F02F812B4DC2CE1F16D2B315F2 ] C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.6028_x-ww_61e65202\comctl32.dll
09:07:56.0828 0x053c C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.6028_x-ww_61e65202\comctl32.dll - ok
09:07:56.0843 0x053c [ 6B7C6B32F8E84D56C6260D684019FEA2, A10B4D413452D95B6B4087838F2FCE0B9F42D8C0CBE7A91DC080AE1163FB6D1A ] C:\WINDOWS\system32\odbcint.dll
09:07:56.0843 0x053c C:\WINDOWS\system32\odbcint.dll - ok
09:07:56.0843 0x053c [ 96E1C926F22EE1BFBAE82901A35F6BF3, 95568F138216FFADCFC4BAE8A12825FFE53F2EA04C5CAC2AD10F65FC0C4E3CDB ] C:\WINDOWS\system32\sfc.dll
09:07:56.0843 0x053c C:\WINDOWS\system32\sfc.dll - ok
09:07:56.0843 0x053c [ 6B5DB6789177A4FD0DEBC248041D0739, 3E3239C3613CCBB9EE2539D78BC745ED19134E1D3BED88C3D5273796FA2507DA ] C:\WINDOWS\system32\sfc_os.dll
09:07:56.0843 0x053c C:\WINDOWS\system32\sfc_os.dll - ok
09:07:56.0859 0x053c [ 99BC0B50F511924348BE19C7C7313BBF, A1006C687BD352F700B140DC741515A0CDD9E1352C0FBD1EE410D404E344444B ] C:\WINDOWS\system32\shsvcs.dll
09:07:56.0859 0x053c C:\WINDOWS\system32\shsvcs.dll - ok
09:07:56.0859 0x053c [ 59B408E5B8489B0B36A0D783D150EDCC, CB234B25502B0CE0C1E6CFA883FDDF64DAB7A6E50A6AD36CAB3B30A7C872B403 ] C:\WINDOWS\system32\ole32.dll
09:07:56.0859 0x053c C:\WINDOWS\system32\ole32.dll - ok
09:07:56.0859 0x053c [ CF492D7E9AF1C628B3536D20EF6F5CC7, 3D7A5A5D6B804C0A3F3E7256B3AC19397567700271CABCD7C4C8B51565958BC8 ] C:\WINDOWS\system32\apphelp.dll
09:07:56.0859 0x053c C:\WINDOWS\system32\apphelp.dll - ok
09:07:56.0859 0x053c [ BF2466B3E18E970D8A976FB95FC1CA85, F7794B5D12DC5D820A162850F4388E2AA80426AD07CB221799CF941C682AB501 ] C:\WINDOWS\system32\lsass.exe
09:07:56.0859 0x053c C:\WINDOWS\system32\lsass.exe - ok
09:07:56.0875 0x053c [ 65DF52F5B8B6E9BBD183505225C37315, 59C606977DB40A3443DFF0BE2A4C761824881B22C9FDB3D23F6486DB580E92A4 ] C:\WINDOWS\system32\services.exe
09:07:56.0875 0x053c C:\WINDOWS\system32\services.exe - ok
09:07:56.0875 0x053c [ BD31DC6DBE9333C4FBD4BDF0899F2160, 545D83178CCD74C68B72C607201EF9E1C8A5FC26A08288F8D3A77106964D1034 ] C:\WINDOWS\system32\lsasrv.dll
09:07:56.0875 0x053c C:\WINDOWS\system32\lsasrv.dll - ok
09:07:56.0875 0x053c [ EC29A79F1E76DC509E24D401F29D0678, 2CECCD7CE806152F6DD1A6812C7DAEC46FB197E63D14414808D713C829EE4260 ] C:\WINDOWS\system32\ncobjapi.dll
09:07:56.0875 0x053c C:\WINDOWS\system32\ncobjapi.dll - ok
09:07:56.0890 0x053c [ F404830F3CD9BF8F2515E489C0CDA297, 4FFFBBDD04B82623983B8B51E52E113EBF0E32E8328BFD3754B7A299E5673569 ] C:\WINDOWS\system32\msvcp60.dll
09:07:56.0890 0x053c C:\WINDOWS\system32\msvcp60.dll - ok
09:07:56.0890 0x053c [ DD7BD97FB8BD800963789158A5E4B41D, 4C265CB9AC1B8C398E625C1775A5AADD8A030D158B557E24F90CA57C0253FF0D ] C:\WINDOWS\system32\mpr.dll
09:07:56.0890 0x053c C:\WINDOWS\system32\mpr.dll - ok
09:07:56.0890 0x053c [ B24A42A413E694AD73FDFB7FBD492C31, 52411B5C714ED7FCFF3A120980EB75BF5A64E022303D3E717048E0E44F604AC0 ] C:\WINDOWS\system32\scesrv.dll
09:07:56.0890 0x053c C:\WINDOWS\system32\scesrv.dll - ok
09:07:56.0906 0x053c [ EC4C0D9BFD9F7E33F8B395AD54E13063, 18E60FF334376604F213F3323FAB81F392493496C6CA809FAD66BB8B0EEB3396 ] C:\WINDOWS\system32\ntdsapi.dll
09:07:56.0906 0x053c C:\WINDOWS\system32\ntdsapi.dll - ok
09:07:56.0906 0x053c [ 2EDFC2A8893435723AD80481803C6D5C, CD547E4749EE6466FD4F50CF2EAD37AD993C6BC89068BD51726869D5ADB2AF8E ] C:\WINDOWS\system32\umpnpmgr.dll
09:07:56.0906 0x053c C:\WINDOWS\system32\umpnpmgr.dll - ok
09:07:56.0906 0x053c [ 389496118B3B03C2328024AF320132AC, 11F85CA49596CE12B1F80B5BC059B6F5549FC09A43E2C47841A688F2ACEBB8B8 ] C:\WINDOWS\system32\dnsapi.dll
09:07:56.0906 0x053c C:\WINDOWS\system32\dnsapi.dll - ok
09:07:56.0906 0x053c [ 1F03103598BD817B1078DAB1326DDE11, 0F0D19E67E25E9D2113920166B7326B46BACD22BA08476EC91D9C564AFC1FAF3 ] C:\WINDOWS\system32\shimeng.dll
09:07:56.0906 0x053c C:\WINDOWS\system32\shimeng.dll - ok
09:07:56.0921 0x053c [ 0492CF5870F0E616B0C71695A433D162, 47C9FB64A4CF3DF54F664B2B31A834ACF75B504650007E6201546C2D0E44D9C2 ] C:\WINDOWS\system32\wldap32.dll
09:07:56.0921 0x053c C:\WINDOWS\system32\wldap32.dll - ok
09:07:56.0921 0x053c [ EA9EE60B408878E5F2012F9C783836DB, 354A6660705759C0E767BCD7FB6F1B4371B74784A986431A626DF3793D0421EC ] C:\WINDOWS\AppPatch\acadproc.dll
09:07:56.0921 0x053c C:\WINDOWS\AppPatch\acadproc.dll - ok
09:07:56.0921 0x053c [ 8329A39D5A402A75A74301D6A62ECDA1, 1947B2B19F2D0C690EC880B5A92F88903D78C6BB6EE47261B3D744B5A863D562 ] C:\WINDOWS\system32\samlib.dll
09:07:56.0921 0x053c C:\WINDOWS\system32\samlib.dll - ok
09:07:56.0937 0x053c [ F05B8CDB7FE0E55DCCFB1D946CE80064, E59BC2F25EBFF5F0CF459C9B8DEE882ADE227323F4768EBACFCC6784861BF260 ] C:\WINDOWS\system32\samsrv.dll
09:07:56.0937 0x053c C:\WINDOWS\system32\samsrv.dll - ok
09:07:56.0937 0x053c [ 310C15FD8358B2C4CD7A5B98A112883F, CA656F066373B164A138032F5BF7EF68603EBDB0D49BD4663C99061F47F29085 ] C:\WINDOWS\AppPatch\acgenral.dll
09:07:56.0937 0x053c C:\WINDOWS\AppPatch\acgenral.dll - ok
09:07:56.0937 0x053c [ 17A1D675C12BBF80CAAC54A4855C41D0, F6185E42180218E932ADFFD63EF78EE8324B816BD57EA217322A46D1D2F47928 ] C:\WINDOWS\system32\cryptdll.dll
09:07:56.0937 0x053c C:\WINDOWS\system32\cryptdll.dll - ok
09:07:56.0937 0x053c [ 4A953F13942867BA8FB41F141EC1B80C, BAE05A8CEDA4411324E38DB8A2153A988C6A3FAC8AD7CB27EE14E18FE7C47569 ] C:\WINDOWS\system32\winmm.dll
09:07:56.0937 0x053c C:\WINDOWS\system32\winmm.dll - ok
09:07:56.0953 0x053c [ EFF03460E542EEA6B0ABDEC6BF19C897, C2A0DDE6E8B49B152C295E97CFC35557391DEEE5A3A0B1BB4E445C405C716C55 ] C:\WINDOWS\system32\oleaut32.dll
09:07:56.0953 0x053c C:\WINDOWS\system32\oleaut32.dll - ok
09:07:56.0953 0x053c [ 2098AB52BD5316E59AA36F3437B13BE6, C4C9F2CFCAFF91B4A6F68E28EFE12EED216B41F081F8D577597C0634ECE57018 ] C:\WINDOWS\system32\msacm32.dll
09:07:56.0953 0x053c C:\WINDOWS\system32\msacm32.dll - ok
09:07:56.0953 0x053c [ 7A2CC3719B255E6B5D74396183B7715B, 2C4A2D5B42CFFE42BE72A652D1B0EED43D7EECF7CA3416660A3E0C539AA2AC34 ] C:\WINDOWS\system32\uxtheme.dll
09:07:56.0953 0x053c C:\WINDOWS\system32\uxtheme.dll - ok
09:07:56.0968 0x053c [ F24B12786D60A17008319E3F2AEE7799, BF916F65D770C61612678171CC184A0BF259992CEC0BF607D26834CE2A234FB3 ] C:\WINDOWS\system32\msapsspc.dll
09:07:56.0968 0x053c C:\WINDOWS\system32\msapsspc.dll - ok
09:07:56.0968 0x053c [ 7A660EDC0757849DF5F8706FB6E9F740, CA3820507A92EE9AB4EE8E804736FE1795224AE02D396AADB5BFD53223D9B7E2 ] C:\WINDOWS\system32\msvcrt40.dll
09:07:56.0968 0x053c C:\WINDOWS\system32\msvcrt40.dll - ok
09:07:56.0968 0x053c [ 0F64207B49390C8063C36AE7CBF9C2DB, 52C4A7A38EE11CA247001EB0A3C67BFEB1A09E9AC406486132D5AC38BE3A6A6F ] C:\WINDOWS\system32\schannel.dll
09:07:56.0968 0x053c C:\WINDOWS\system32\schannel.dll - ok
09:07:56.0968 0x053c [ 3D76DD0CBC536E0F8C45D23ED230BEB2, F74F94525AB7CE1E269452C9E1DD08411A668CFDD94F069C90FC2EE33CB35A12 ] C:\WINDOWS\system32\digest.dll
09:07:56.0968 0x053c C:\WINDOWS\system32\digest.dll - ok
09:07:56.0984 0x053c [ A4388DF80E52695AE92EE5F3F61F1619, A4B7C6E10B92B5022CA6E8FD9094098614FD63178EA86A7B035EB89B373BF033 ] C:\WINDOWS\system32\msnsspc.dll
09:07:56.0984 0x053c C:\WINDOWS\system32\msnsspc.dll - ok
09:07:56.0984 0x053c [ A525C96C51D55111FDF3BEA9FFFFC7AE, AA5B080E01573B96A37E67F871F97AE975E1E9519EDB16476472AA3FA2144643 ] C:\WINDOWS\system32\kerberos.dll
09:07:56.0984 0x053c C:\WINDOWS\system32\kerberos.dll - ok
09:07:56.0984 0x053c [ 5733177BCF16EE78B99543C9B0AB81EA, 6504D3D665AC8AB27A44F863F9C1A23FF3B68EAC0512F418712CC0D56F739E24 ] C:\WINDOWS\system32\msctfime.ime
09:07:56.0984 0x053c C:\WINDOWS\system32\msctfime.ime - ok
09:07:57.0000 0x053c [ C6BB1D1500DB4A0E224CB65E6C7E8A80, 32099A486457D1DC3B1269DE9570EE922F118C3BD443FE78ED051DD764EF4DE3 ] C:\WINDOWS\system32\msprivs.dll
09:07:57.0000 0x053c C:\WINDOWS\system32\msprivs.dll - ok
09:07:57.0000 0x053c [ 318FAA70D9B0FB8DD168D4ED628E27B2, 2C407FFDA4A02D4A1CB9592C6FA4293BA31BE8852670436F1187A8107572ED41 ] C:\WINDOWS\system32\atmfd.dll
09:07:57.0000 0x053c C:\WINDOWS\system32\atmfd.dll - ok
09:07:57.0000 0x053c [ 517561A1113B04E51D936CD018DE1C1F, A5F572C3557705F28F7A465970F0432F55B616EFD208BA0CBDFFBF7A41F07C04 ] C:\WINDOWS\system32\msv1_0.dll
09:07:57.0000 0x053c C:\WINDOWS\system32\msv1_0.dll - ok
09:07:57.0015 0x053c [ AF07DC9B7CC455629E732340C7B15F3A, 4403503F24FB76AB55D347273319B98BC0955AB3E537FA5ADA498B9AED76484A ] C:\WINDOWS\system32\iphlpapi.dll
09:07:57.0015 0x053c C:\WINDOWS\system32\iphlpapi.dll - ok
09:07:57.0015 0x053c [ 1B7F071C51B77C272875C3A23E1E4550, 9D6EA6DF4F4A531E35B843CE11AB6BDBEF0C2716773C14660E98038C1F68B7C4 ] C:\WINDOWS\system32\netlogon.dll
09:07:57.0015 0x053c C:\WINDOWS\system32\netlogon.dll - ok
09:07:57.0015 0x053c [ 54AF4B1D5459500EF0937F6D33B1914F, FA1876888BCB9C72A92369DBED4FF1A8666784523FB41E618FA0919490FCDDB9 ] C:\WINDOWS\system32\w32time.dll
09:07:57.0015 0x053c C:\WINDOWS\system32\w32time.dll - ok
09:07:57.0015 0x053c [ 3AAF9B35939FF9E58CCD18D41655C2FC, AF7358AB0A507D77569A8D38D2392C224BFBEFD1264C069BBC6C677BC20C6B8B ] C:\WINDOWS\system32\wdigest.dll
09:07:57.0015 0x053c C:\WINDOWS\system32\wdigest.dll - ok
09:07:57.0031 0x053c [ 54DAE3EA34802B4ED9AE1C6B1209FA56, EEB1FA90DB44C821B371D5F7C323B4F88E843107BBA16DA2ACB124D6A848B257 ] C:\WINDOWS\system32\rsaenh.dll
09:07:57.0031 0x053c C:\WINDOWS\system32\rsaenh.dll - ok
09:07:57.0031 0x053c [ 02988B904C386B500CD08639C4C20EEA, 66E96045957AABD7F5C364D64DE23A09D4C292C844FA00C45626A8D1EC21F206 ] C:\WINDOWS\system32\winscard.dll
09:07:57.0031 0x053c C:\WINDOWS\system32\winscard.dll - ok
09:07:57.0031 0x053c [ 0E2735281FBB9A764D5584C2A5DCBA59, B1EFF5D7BFDDFEC3A3E5B2F17A6A0F3F47C344A64AB57E6918B4DEC094FC9444 ] C:\WINDOWS\system32\wtsapi32.dll
09:07:57.0031 0x053c C:\WINDOWS\system32\wtsapi32.dll - ok
09:07:57.0046 0x053c [ A86BB5E61BF3E39B62AB4C7E7085A084, B88446E007153BB58C5AE867AC3FB4C46618BBAA5A152687201E0E81F881465A ] C:\WINDOWS\system32\scecli.dll
09:07:57.0046 0x053c C:\WINDOWS\system32\scecli.dll - ok
09:07:57.0046 0x053c [ 27C6D03BCDB8CFEB96B716F3D8BE3E18, 2910EBC692D833D949BFD56059E8106D324A276D5F165F874F3FB1B6C613CDD5 ] C:\WINDOWS\system32\svchost.exe
09:07:57.0046 0x053c C:\WINDOWS\system32\svchost.exe - ok
09:07:57.0046 0x053c [ 549290DBC280C887681D7652978DBBE0, CA2CA8561F11CDD5FD5D23D9D88A96A7FFE4AF6DFE8CE783B0969B6ED3C4CBF8 ] C:\WINDOWS\system32\ntmarta.dll
09:07:57.0046 0x053c C:\WINDOWS\system32\ntmarta.dll - ok
09:07:57.0046 0x053c [ 6B27A5C03DFB94B4245739065431322C, 6AEAC16AB4E0DFD25123AAF4D4181FEE1B919B7B2793117006CE8CF30E826CFD ] C:\WINDOWS\system32\rpcss.dll
09:07:57.0046 0x053c C:\WINDOWS\system32\rpcss.dll - ok
09:07:57.0062 0x053c [ 16403217AB6FC5C30C14C6B12098AD4B, DEA7C556BA9C91E056E6035E77A793A77E428D493518D1C6F796B003D4F07305 ] C:\WINDOWS\system32\xpsp2res.dll
09:07:57.0062 0x053c C:\WINDOWS\system32\xpsp2res.dll - ok
09:07:57.0062 0x053c [ 6D4FEB43EE538FC5428CC7F0565AA656, 4091D82537198562F0CA1D032B2D4BEC75101342B7BCA7778FDA2D515300BC36 ] C:\WINDOWS\system32\eventlog.dll
09:07:57.0062 0x053c C:\WINDOWS\system32\eventlog.dll - ok
09:07:57.0062 0x053c [ 943337D786A56729263071623BBB9DE5, B631B47C869FE4ACF46E4AA272435D9A9CA536E3349E3FFBB8602636FEE7AFD4 ] C:\WINDOWS\system32\mswsock.dll
09:07:57.0062 0x053c C:\WINDOWS\system32\mswsock.dll - ok
09:07:57.0078 0x053c [ 3CB32D3B8CBE79899D63280BB7A83CD9, F34DB3B3DD65F0135F1F7005703B824D2C9B17F7A43062F1FFBEC53B3B26EFC3 ] C:\WINDOWS\system32\hnetcfg.dll
09:07:57.0078 0x053c C:\WINDOWS\system32\hnetcfg.dll - ok
09:07:57.0078 0x053c [ 6F9BEF24C578D5D6740E080BEDD6A448, 72426D49BC31488261D226C7D0C98AD11192019E71654F53D1D17183C328CC7C ] C:\WINDOWS\system32\rasadhlp.dll
09:07:57.0078 0x053c C:\WINDOWS\system32\rasadhlp.dll - ok
09:07:57.0078 0x053c [ D72B9EC3337B247A666F098F3D6B43DE, 4BC52AD1116078B0B313AB6555024302225D6CC03CA428151F78B7C48821489F ] C:\WINDOWS\system32\winrnr.dll
09:07:57.0078 0x053c C:\WINDOWS\system32\winrnr.dll - ok
09:07:57.0078 0x053c [ 4E3D06D6E68EEDB52565080F55B460D3, A503BFC29D3936045488EDC1771914EC84BE80E422F772F53D7961F526D707E6 ] C:\WINDOWS\system32\wshtcpip.dll
09:07:57.0078 0x053c C:\WINDOWS\system32\wshtcpip.dll - ok
09:07:57.0093 0x053c [ 0A7F86657755ADA92C57E597BF5151F7, E226DFF12C4930DF1D0F1D2E7CE7BFFDF62F6DC402200EEFE196D14172A59B63 ] C:\Program Files\Microsoft Security Client\MsMpEng.exe
09:07:57.0093 0x053c C:\Program Files\Microsoft Security Client\MsMpEng.exe - ok
09:07:57.0093 0x053c [ BA652D3DFC457ECA6FE6F7F12DA944E8, 5DCAC0B5B825F79806E8CB1438E083A18E5B6077699C8355B5CC26E54782192C ] C:\Program Files\Microsoft Security Client\MpSvc.dll
09:07:57.0093 0x053c C:\Program Files\Microsoft Security Client\MpSvc.dll - ok
09:07:57.0093 0x053c [ 3D9EC121E18C1120E8C8617787290D89, 84091074BDBB93854ECAE24E75DD6ECA7D4758EDCAF779AD25B399077EF3DF80 ] C:\Program Files\Microsoft Security Client\MpClient.dll
09:07:57.0093 0x053c C:\Program Files\Microsoft Security Client\MpClient.dll - ok
09:07:57.0109 0x053c [ F45DD1E1365D857DD08BC23563370D0E, D95AEBB2095579D716C62152C8B805E119812FD2E40F14F9A5BA2EFDE133303B ] C:\Program Files\Windows Defender\MsMpEng.exe
09:07:57.0109 0x053c C:\Program Files\Windows Defender\MsMpEng.exe - ok
09:07:57.0109 0x053c [ C9564CF4976E7E96B4052737AA2492B4, C3AC989C8489A23BB96400B1856F5325FFC67E844F04651EA5D61BC20A991C6D ] C:\WINDOWS\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.6195_x-ww_44262b86\msvcr80.dll
09:07:57.0109 0x053c C:\WINDOWS\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.6195_x-ww_44262b86\msvcr80.dll - ok
09:07:57.0109 0x053c [ 64898BEA32C12BADDA4218BE88DBD595, CF8885B00BF3DF2F7EFE8D5F105A0DC4AEDB88CE9C217E4CC9B1369D3A3DB197 ] C:\Program Files\Windows Defender\MpSvc.dll
09:07:57.0109 0x053c C:\Program Files\Windows Defender\MpSvc.dll - ok
09:07:57.0125 0x053c [ 0B3595A4FF0B36D68E5FC67FD7D70FDC, 372AF797353F9335915CD06D4076BAB8410775DCAF2DAC0593197D7C41BBFFB2 ] C:\WINDOWS\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.6195_x-ww_44262b86\msvcp80.dll
09:07:57.0125 0x053c C:\WINDOWS\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.6195_x-ww_44262b86\msvcp80.dll - ok
09:07:57.0125 0x053c [ 2081A5B5E4ABA206A0A8A1A97DF0FB23, 032B6D1F541F180A2FE619664EF180D3FD748AEF7E311BA925FCED74E7ED4713 ] C:\WINDOWS\system32\logonui.exe
09:07:57.0125 0x053c C:\WINDOWS\system32\logonui.exe - ok
09:07:57.0125 0x053c [ 6F44DD636C791B70ADE78FE974BE0A1D, 47DD6786655BF9EDCA9045FD672C7611FBFFDA9DD02BA9C292343A0B543AECFA ] C:\Program Files\Windows Defender\MpClient.dll
09:07:57.0125 0x053c C:\Program Files\Windows Defender\MpClient.dll - ok
09:07:57.0125 0x053c [ 3D41A9326F0376FC73AF961DD23B1FB1, 1242F3B57599675D1E0E26615E206CE3DB15FA6A23BC5D21EB630EE9858EBC7B ] C:\WINDOWS\system32\duser.dll
09:07:57.0125 0x053c C:\WINDOWS\system32\duser.dll - ok
09:07:57.0140 0x053c [ 3576D9EB6E8ABC14DDB62F42ED9C9920, 0BEEE25C0EFFA617199C2903199721F18F3DCBD306C6E6E286AB625175508195 ] C:\Program Files\Microsoft Security Client\MpRTP.dll
09:07:57.0140 0x053c C:\Program Files\Microsoft Security Client\MpRTP.dll - ok
09:07:57.0140 0x053c [ AFFC87E2501FCE8F09D4C10BA6421CCF, E63837B281C4AE90A7CBA8E072E07A9A5A2FDD5B15E7FB5C2D7562FE72BE5408 ] C:\WINDOWS\system32\msimg32.dll
09:07:57.0140 0x053c C:\WINDOWS\system32\msimg32.dll - ok
09:07:57.0140 0x053c [ 5D43C9A33F18C707BA169AFDA88BDF30, 6796891360B4731B4F165300BD9FAC9A2A4C54E8CFF86DEC8036D3765AE4D9A3 ] C:\WINDOWS\system32\fltlib.dll
09:07:57.0140 0x053c C:\WINDOWS\system32\fltlib.dll - ok
09:07:57.0156 0x053c [ 20200EE3CFE10E9F0C028D8653BE11C6, 3ACF2110D72509CBA3BF780C5D6D662BAFEEA6CA423BE8B0F97288B953127035 ] C:\WINDOWS\system32\oleacc.dll
09:07:57.0156 0x053c C:\WINDOWS\system32\oleacc.dll - ok
09:07:57.0156 0x053c [ 8F762C29D21DEDD8BCAF8FFF2CE66562, 47DFCA4EC9895AF7441846885B1430CA6B57ED2107912964E19DE46676414321 ] C:\Documents and Settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{897BA194-1DE4-427E-B9E6-277BB775D66A}\mpengine.dll
09:07:57.0156 0x053c C:\Documents and Settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{897BA194-1DE4-427E-B9E6-277BB775D66A}\mpengine.dll - ok
09:07:57.0156 0x053c [ F137A0CA70003DB20448D540651FA003, 4D3095FD8431D0839B6EE785A979D005A1035368A152CDC705804E85B7673198 ] C:\WINDOWS\system32\clbcatq.dll
09:07:57.0156 0x053c C:\WINDOWS\system32\clbcatq.dll - ok
09:07:57.0156 0x053c [ F927A4434C5028758A842943EF1A3849, B1AA3AF150C05307461774925901789456B0CCCD03A5E71ADA4AB58455962BEE ] C:\WINDOWS\system32\drivers\ndisuio.sys
09:07:57.0156 0x053c C:\WINDOWS\system32\drivers\ndisuio.sys - ok
09:07:57.0171 0x053c [ 7D763F0228AFCBFB6868AEC7249FE40E, 62F1AEC9ED1120AEEB5F27743BDBBCDD1715E3EFCC692DFF3E6EED74B8F50900 ] C:\WINDOWS\system32\ati2evxx.dll
09:07:57.0171 0x053c C:\WINDOWS\system32\ati2evxx.dll - ok
09:07:57.0171 0x053c [ 515A7FAE2070C2B0242B2353443E2F11, 6121C5613784831F584B50E8DC91BBD7AC58BDB602FE4CDB4B237670B6BB4537 ] C:\WINDOWS\system32\cscdll.dll
09:07:57.0171 0x053c C:\WINDOWS\system32\cscdll.dll - ok
09:07:57.0171 0x053c [ 5E38D7684A49CACFB752B046357E0589, F192AD4190BCFB6939A5CBC91648FE63168AF79A5E227A111DEAD6A92E42AB8D ] C:\WINDOWS\system32\dhcpcsvc.dll
09:07:57.0171 0x053c C:\WINDOWS\system32\dhcpcsvc.dll - ok
09:07:57.0187 0x053c [ 5F7E24FA9EAB896051FFB87F840730D2, 356EEFDCD54DECAD0170B34B993E4BF80DD039E2B2922D7A8D09B84031E9FC7A ] C:\WINDOWS\system32\dnsrslvr.dll
09:07:57.0187 0x053c C:\WINDOWS\system32\dnsrslvr.dll - ok
09:07:57.0187 0x053c [ E2092F0A1D7ABC243F9C2362483D150D, 50028400D6BA1C5B27BFC9AAC9D41539383F3EC723977CA937715E14094D846A ] C:\WINDOWS\system32\dimsntfy.dll
09:07:57.0187 0x053c C:\WINDOWS\system32\dimsntfy.dll - ok
09:07:57.0187 0x053c [ 1CA7F914E504B34FB4DB1C3B60D29658, 1A2B4C24DCE36C4B00BE69891A33565A8FD137789808667E34E233483FD09D73 ] C:\Program Files\Common Files\logishrd\Bluetooth\LBTWLgn.dll
09:07:57.0187 0x053c C:\Program Files\Common Files\logishrd\Bluetooth\LBTWLgn.dll - ok
09:07:57.0203 0x053c [ 1280A158C722FA95A80FB7AEBE78FA7D, 9B6E8158E581500C5C417F6453A6414901020123D34FDBC04289750E8B072538 ] C:\WINDOWS\system32\comres.dll
09:07:57.0203 0x053c C:\WINDOWS\system32\comres.dll - ok
09:07:57.0203 0x053c [ 2CC34E8BB667EEF78899546E12649196, 5BA2604041BF7C1D580D4D2AEDC7708F9E9B0AF6E0928663E3D9C7297296D721 ] C:\WINDOWS\system32\wlnotify.dll
09:07:57.0203 0x053c C:\WINDOWS\system32\wlnotify.dll - ok
09:07:57.0203 0x053c [ BD83ABA61E8ACCC8D9FFB869F29418CE, 45ED22E825047A1BE07B017F95FBF965A90602C59E6B110D0C604FBE07DE1562 ] C:\WINDOWS\system32\winspool.drv
09:07:57.0203 0x053c C:\WINDOWS\system32\winspool.drv - ok
09:07:57.0203 0x053c [ E5EDBD51476DB5001ABF5C82AE5C3DD1, 5C97ABF5802A7F886781788FE6107F9F06962F9D704A2A43A03062C9405F56C3 ] C:\WINDOWS\system32\shgina.dll
09:07:57.0203 0x053c C:\WINDOWS\system32\shgina.dll - ok
09:07:57.0218 0x053c [ A7DB739AE99A796D91580147E919CC59, EDF4E039BA277B0E6D66FEB0B28096E67D682C09DFC18ECECF062D9DCFB75ACF ] C:\WINDOWS\system32\lmhsvc.dll
09:07:57.0218 0x053c C:\WINDOWS\system32\lmhsvc.dll - ok
09:07:57.0218 0x053c [ 81DC3F549F44B1C1FFF022DEC9ECF30B, 3D14BFEA539F9CEB16555BD56C5E3C7C8F6692FC62C2789F8AAEA1C042E63940 ] C:\WINDOWS\system32\wzcsvc.dll
09:07:57.0218 0x053c C:\WINDOWS\system32\wzcsvc.dll - ok
09:07:57.0218 0x053c [ F0BDB62E1A737145141F49F1938054F6, 5F540906F6424C95F3CBBFCE9AF8A534C17A2E3639D10D65C991C4C4E5B02E09 ] C:\WINDOWS\system32\BCMLogon.dll
09:07:57.0218 0x053c C:\WINDOWS\system32\BCMLogon.dll - ok
09:07:57.0218 0x053c [ 876CCF164E08D6B903CD14398E056DD2, 9AC7887F992F20E10EB3ED9B3AEF47B5C840172FA7895531F4EF86D6EA642D0F ] C:\WINDOWS\system32\rtutils.dll
09:07:57.0218 0x053c C:\WINDOWS\system32\rtutils.dll - ok
09:07:57.0234 0x053c [ 7B0770526801F05D58C51A3DFB87B4BD, 7A2858DD3AE8C26DE88F8CC71E8DC9A8A50C363BA4FB34EE6EE2D81C18845A96 ] C:\WINDOWS\system32\wmi.dll
09:07:57.0234 0x053c C:\WINDOWS\system32\wmi.dll - ok
09:07:57.0234 0x053c [ F35A584E947A5B401FEB0FE01DB4A0D7, 4DA5EFDC46D126B45DAEEE8BC69C0BA2AA243589046B7DFD12A7E21B9BEE6A32 ] C:\WINDOWS\system32\MFC71.DLL
09:07:57.0234 0x053c C:\WINDOWS\system32\MFC71.DLL - ok
09:07:57.0234 0x053c [ E6EF7BC927D9F8F9BA1584BFC39E0C6F, EC80729BDD250C161B29DA853D45C703CB4844DE185C5665DB0627D9568995AB ] C:\WINDOWS\system32\eapolqec.dll
09:07:57.0234 0x053c C:\WINDOWS\system32\eapolqec.dll - ok
09:07:57.0250 0x053c [ 224FB925C641DA16CEB6D60F40CA4C75, 2DDB3B019D2A22B359C5974DC366EC9B95F4382DB1BF7F1958CFF0EC277895C7 ] C:\WINDOWS\system32\atl.dll
09:07:57.0250 0x053c C:\WINDOWS\system32\atl.dll - ok
09:07:57.0250 0x053c [ 8AE93AACC648921BAACB8602991AC4B3, 78292B1BAEE64C997C50B6D907FE623C2EDF937A62D3C3690FA24342180B7AB2 ] C:\WINDOWS\system32\qutil.dll
09:07:57.0250 0x053c C:\WINDOWS\system32\qutil.dll - ok
09:07:57.0250 0x053c [ 8E2CC37BA87D8F681066E0E9C8A19F73, 90536FD502D92AE4FECE0C250373742D2E8AC9E9BE314070BB28C4A2BEA15508 ] C:\WINDOWS\system32\dot3api.dll
09:07:57.0250 0x053c C:\WINDOWS\system32\dot3api.dll - ok
09:07:57.0250 0x053c [ F5B754CDEA20BBB3A31E16A776EDE6D6, C5D682FA9B86810C6E3D741E507EDA024C4554BEB5B6A1686F70E109EE9CD746 ] C:\WINDOWS\system32\esent.dll
09:07:57.0250 0x053c C:\WINDOWS\system32\esent.dll - ok
09:07:57.0265 0x053c [ 86F1895AE8C5E8B17D99ECE768A70732, 8094AF5EE310714CAEBCCAEEE7769FFB08048503BA478B879EDFEF5F1A24FEFE ] C:\WINDOWS\system32\MSVCR71.DLL
09:07:57.0265 0x053c C:\WINDOWS\system32\MSVCR71.DLL - ok
09:07:57.0265 0x053c [ 561FA2ABB31DFA8FAB762145F81667C2, DF96156F6A548FD6FE5672918DE5AE4509D3C810A57BFFD2A91DE45A3ED5B23B ] C:\WINDOWS\system32\MSVCP71.DLL
09:07:57.0265 0x053c C:\WINDOWS\system32\MSVCP71.DLL - ok
09:07:57.0265 0x053c [ A39BE37C9237DB5F1990D61B268EA555, ABAB9D73DF10D2AC78F00A6C5E5318C4DE166CDF70683408D83D218CB39B7449 ] C:\WINDOWS\system32\rastls.dll
09:07:57.0265 0x053c C:\WINDOWS\system32\rastls.dll - ok
09:07:57.0281 0x053c [ 6E4BE11D50F8A8DE2BAD644C9C9DE8D3, 9085384DD71F983E7FD8B6C8F54A3097412DA3C802C813C8AAB1F30558C416D6 ] C:\WINDOWS\system32\cryptui.dll
09:07:57.0281 0x053c C:\WINDOWS\system32\cryptui.dll - ok
09:07:57.0281 0x053c [ D73F1BE00684E675571015B3A5880F5B, 4F34349E98F2EE611C403C63CC0841CFD92347741C003E5A67AF230B909DB58B ] C:\WINDOWS\system32\wininet.dll
09:07:57.0281 0x053c C:\WINDOWS\system32\wininet.dll - ok
09:07:57.0281 0x053c [ 10753A3ADC3E39A3B10CC3F08E98E6B4, 99C7B1B04CD593139917ED3D68BEC36C63BCE76663505CB5D026B62AF39BB383 ] C:\WINDOWS\system32\normaliz.dll
09:07:57.0281 0x053c C:\WINDOWS\system32\normaliz.dll - ok
09:07:57.0281 0x053c [ E463A1590ACA094DC5CC8366E5EA15FF, 89B66CBC7290B8BBA1236B7DA29F85523754A04AAD068AE952C37BA805836AD7 ] C:\WINDOWS\system32\urlmon.dll
09:07:57.0281 0x053c C:\WINDOWS\system32\urlmon.dll - ok
09:07:57.0296 0x053c [ ECAE1B2A7374FA898F038E13F22180D4, 85A1021B369794A365D101545855EC36C63B6A48E11D7CA4289404FEFE81E4B2 ] C:\WINDOWS\system32\iertutil.dll
09:07:57.0296 0x053c C:\WINDOWS\system32\iertutil.dll - ok
09:07:57.0296 0x053c [ EA5B8BECA3F279C757578CD7F1E95855, 6FA42A9C8A114208BCB1D0A799C43CD07FB0F986495191D58C1BBD150B7B3A90 ] C:\WINDOWS\system32\mprapi.dll
09:07:57.0296 0x053c C:\WINDOWS\system32\mprapi.dll - ok
09:07:57.0296 0x053c [ 2CDAE321B8E878A278BA2D2FA013060B, 51A382D665EB4A8BD66A3EF9B518DC02D3637318768758AB6F1017E50826CC56 ] C:\WINDOWS\system32\activeds.dll
09:07:57.0296 0x053c C:\WINDOWS\system32\activeds.dll - ok
09:07:57.0312 0x053c [ 0D84657DBF93DB98673DEFDF2B29E25A, 22105E297D663790BFA1EAE5AC670B283E69FDF2428DEBC596F3EB920E53AFF9 ] C:\WINDOWS\system32\adsldpc.dll
09:07:57.0312 0x053c C:\WINDOWS\system32\adsldpc.dll - ok
09:07:57.0312 0x053c [ 92C4F48B62B0B876194584C3FF09CCB6, B24FF5E8D4F09B8200395B68A20A083E7ED9A29B9E9FB85F42E1A6BBB911D1C4 ] C:\WINDOWS\system32\rasapi32.dll
09:07:57.0312 0x053c C:\WINDOWS\system32\rasapi32.dll - ok
09:07:57.0312 0x053c [ 4DEF926F6A0545AE486A03C84F2EE482, 2D209061632634D7338C0BBEEE8056E8085BE22FA6974A2CC6BAEDC14CF6F6B1 ] C:\WINDOWS\system32\rasman.dll
09:07:57.0312 0x053c C:\WINDOWS\system32\rasman.dll - ok
09:07:57.0328 0x053c [ 00AABF131B4823785818DB99A075A313, FF0F24D35325EC246C758C7CF51FDDEF13757DFD7BE5F6F5D51E0DD7C6673686 ] C:\WINDOWS\system32\tapi32.dll
09:07:57.0328 0x053c C:\WINDOWS\system32\tapi32.dll - ok
09:07:57.0328 0x053c [ C1FAEA15E41F62D7BFA7FBC395C24BA6, 5DAA7F6E1EEA128AEDEDCAF04EB83AED4BCF856BC123BC134E9FA634DC569C0B ] C:\WINDOWS\system32\riched20.dll
09:07:57.0328 0x053c C:\WINDOWS\system32\riched20.dll - ok
09:07:57.0328 0x053c [ A7E06854EA2A20AEE8EC32BD8C754298, C23ACA5939C29C59B0BD6DF247650F0B640E675A759D6C6484D9710BC923515A ] C:\WINDOWS\system32\mpnotify.exe
09:07:57.0328 0x053c C:\WINDOWS\system32\mpnotify.exe - ok
09:07:57.0328 0x053c [ 56CE97FF94B7662A300D359CD6F4D601, D67A792E176AE3394CEB8FEF16F9E56DC614D7D4F58F6B9202E49EFD42BAE9E4 ] C:\WINDOWS\system32\raschap.dll
09:07:57.0328 0x053c C:\WINDOWS\system32\raschap.dll - ok
09:07:57.0343 0x053c [ 0A9A7365A1CA4319AA7C1D6CD8E4EAFA, 0B582F47BD70732BAC48B8B86E5D06CE7F299A20E8177F3F2E6F28217C3FB605 ] C:\WINDOWS\system32\schedsvc.dll
09:07:57.0343 0x053c C:\WINDOWS\system32\schedsvc.dll - ok
09:07:57.0343 0x053c [ E47E364C96467FD54FA44D59F927C3AB, D48C377A7ACF805C413D4618A099A50BE6724E8996C151B00DEAFD27CA935183 ] C:\WINDOWS\system32\msidle.dll
09:07:57.0343 0x053c C:\WINDOWS\system32\msidle.dll - ok
09:07:57.0343 0x053c [ 60784F891563FB1B767F70117FC2428F, E0B07F08E60FFBAD36C2E58180F4B2A16DCA47716044CBE0213DF7B74D742F1F ] C:\WINDOWS\system32\spoolsv.exe
09:07:57.0343 0x053c C:\WINDOWS\system32\spoolsv.exe - ok
09:07:57.0359 0x053c [ B714735C12A70171DE28657948FD91F1, DF7BF2D1BEBB016A8CB739EEE2670CF9F44A5CC2319A532E5C3DE0F5AA3AA144 ] C:\WINDOWS\system32\mlang.dll
09:07:57.0359 0x053c C:\WINDOWS\system32\mlang.dll - ok
09:07:57.0359 0x053c [ 085ED2E391A871C7BAE87E0228B546BA, 15C050965A7377CDE1178A0C28C3E05B16838A1D7DEB1DD190E3C5D58511F5AC ] C:\WINDOWS\system32\cscui.dll
09:07:57.0359 0x053c C:\WINDOWS\system32\cscui.dll - ok
09:07:57.0359 0x053c [ 566382CA5F2C41FEAEEEFAC908F1EB92, FF25ACB5CC757F6D7FE8724EDAC16A36332406AF39745C45858AB24CAF24AC48 ] C:\WINDOWS\system32\xmlprovi.dll
09:07:57.0359 0x053c C:\WINDOWS\system32\xmlprovi.dll - ok
09:07:57.0359 0x053c [ 767FF54A552732CE772C2302025FA82F, 7761546C33B0E55B0A8214798FD035C2499D31D690CE03E25B0068C81EDECF3F ] C:\WINDOWS\system32\wzcsapi.dll
09:07:57.0359 0x053c C:\WINDOWS\system32\wzcsapi.dll - ok
09:07:57.0375 0x053c [ DEF7A7882BEC100FE0B2CE2549188F9D, 462C95B63D0A1058291A2DC8CBFCB13D7D74CCD1CA43B613A7EB43D49E3276F8 ] C:\WINDOWS\system32\audiosrv.dll
09:07:57.0375 0x053c C:\WINDOWS\system32\audiosrv.dll - ok
09:07:57.0375 0x053c [ 50A166237A0FA771261275A405646CC0, CFA9B2C8CDCDB56C27B89593A106AAE211E24D8EA433129A6E9BD2FBF39AB5BB ] C:\WINDOWS\system32\powrprof.dll
09:07:57.0375 0x053c C:\WINDOWS\system32\powrprof.dll - ok
09:07:57.0375 0x053c [ 3E2F3E2F4A82B7FAE23BAB864FB0F837, 78FEB881B5F1C90AD13DD69BB8C95CDF60C84E127871916D1EE8A938849E6282 ] C:\WINDOWS\system32\dpcdll.dll
09:07:57.0375 0x053c C:\WINDOWS\system32\dpcdll.dll - ok
09:07:57.0390 0x053c [ A8888A5327621856C0CEC4E385F69309, B08B63300D824E35E31EEEA2C4C086DFA2C2A964CEDAE512E74D3D88AADAA2C1 ] C:\WINDOWS\system32\wkssvc.dll
09:07:57.0390 0x053c C:\WINDOWS\system32\wkssvc.dll - ok
09:07:57.0390 0x053c [ 5784A06FDC2AC7954225A1A79E1A8F00, B03EFCE2C9565C9532C17E030887B7AE9E6CAB897C54018504254F3B4BDA4831 ] C:\WINDOWS\system32\ati2evxx.exe
09:07:57.0390 0x053c C:\WINDOWS\system32\ati2evxx.exe - ok
09:07:57.0390 0x053c [ A93AEE1928A9D7CE3E16D24EC7380F89, 944CD2135E171AF338352568AA7FE1B8004733A4281395AD6723E0CF43D5F53F ] C:\WINDOWS\system32\userinit.exe
09:07:57.0390 0x053c C:\WINDOWS\system32\userinit.exe - ok
09:07:57.0390 0x053c [ 11D42BB6206F33FBB3BA0288D3EF81BD, 76ABCFB62C5AC549F58C231F72A99882CDEB74928104B77FE52554765C2B1A22 ] C:\WINDOWS\system32\drivers\mrxdav.sys
09:07:57.0390 0x053c C:\WINDOWS\system32\drivers\mrxdav.sys - ok
09:07:57.0406 0x053c [ 77A354E28153AD2D5E120A5A8687BC06, 8B2D37A4443501C0A8E70BC2079BE27F0A36FD07B561E6F68B40A72EABBC2DFE ] C:\WINDOWS\system32\webclnt.dll
09:07:57.0406 0x053c C:\WINDOWS\system32\webclnt.dll - ok
09:07:57.0406 0x053c [ 12896823FB95BFB3DC9B46BCAEDC9923, 1E675CB7DF214172F7EB0497F7275556038A0D09C6E5A3E6862C5E26885EF455 ] C:\WINDOWS\explorer.exe
09:07:57.0406 0x053c C:\WINDOWS\explorer.exe - ok
09:07:57.0406 0x053c [ 5575FAF8F97CE5E713D108C2A58D7C7C, 96D4595D19A78CCBE8B325A08780AC077AE5CC99642ACD72FB47AEAE8D344D3B ] C:\WINDOWS\system32\drivers\parport.sys
09:07:57.0406 0x053c C:\WINDOWS\system32\drivers\parport.sys - ok
09:07:57.0421 0x053c [ E392E172687BE172F8600C5F41AB03D9, 5E928035FA9DB71FDCEB74D6D4859E43169A0B202A87653A2CE5F88865D13D2E ] C:\WINDOWS\system32\browseui.dll
09:07:57.0421 0x053c C:\WINDOWS\system32\browseui.dll - ok
09:07:57.0421 0x053c [ CCA207A8896D4C6A0C9CE29A4AE411A7, 5999B39242283CD803319AADCA171CCCC6E2A40FB2FAFA51B1D29F3FF2DD8D6C ] C:\WINDOWS\system32\drivers\serial.sys
09:07:57.0421 0x053c C:\WINDOWS\system32\drivers\serial.sys - ok
09:07:57.0421 0x053c [ 574738F61FCA2935F5265DC4E5691314, 3C7CCF064397186C3A3863DD2370AB6414A61B330097DCA4F299CA7BBAA3D1B4 ] C:\WINDOWS\system32\qmgr.dll
09:07:57.0421 0x053c C:\WINDOWS\system32\qmgr.dll - ok
09:07:57.0437 0x053c [ 680B56A8B62D1BCF4A0B2AAAD03D88E4, C095D8A3A1CEAD1D78B0EE17B982718CDF4B3FE1F86D9D273875B8C1893C981B ] C:\WINDOWS\system32\wdmaud.drv
09:07:57.0437 0x053c C:\WINDOWS\system32\wdmaud.drv - ok
09:07:57.0437 0x053c [ C5A75EB48E2344ABDC162BDA79E16841, 6070A8AAFD38FBC6A68A2B10C20117612354DF21B4492D90CA522BFB6870D726 ] C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
09:07:57.0437 0x053c C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe - ok
09:07:57.0437 0x053c [ 6768ACF64B18196494413695F0C3A00F, 3A8F8586F1D997D19A8478345338D2AECD785AEABDB61531DD3F92003D3230A5 ] C:\WINDOWS\system32\drivers\wdmaud.sys
09:07:57.0437 0x053c C:\WINDOWS\system32\drivers\wdmaud.sys - ok
09:07:57.0437 0x053c [ 8B83F3ED0F1688B4958F77CD6D2BF290, 546D3602183702B4F53E84413CFA2C933D64C8540378E54A8DCD148F3F36A2DA ] C:\WINDOWS\system32\drivers\sysaudio.sys
09:07:57.0437 0x053c C:\WINDOWS\system32\drivers\sysaudio.sys - ok
09:07:57.0453 0x053c [ AB8B92451ECB048A4D1DE7C3FFCB4A9F, DD17733CBB370FCA08F0296704D7CBEACA3C8F76D0ABE4761C3B1FFDF7481D9E ] C:\WINDOWS\system32\drivers\splitter.sys
09:07:57.0453 0x053c C:\WINDOWS\system32\drivers\splitter.sys - ok
09:07:57.0453 0x053c [ C14AA05881A35B6D6BB8D55B117EE22D, F30873FA983CE21734BE1A357CDF855EF33511990C14B454EBAA3D6059CD823D ] C:\WINDOWS\system32\shfolder.dll
09:07:57.0453 0x053c C:\WINDOWS\system32\shfolder.dll - ok
09:07:57.0453 0x053c [ 8BED39E3C35D6A489438B8141717A557, 1B5796E56B0927360CE0759641B1151828BC0A9E45620D2B2D880491F5CE33D0 ] C:\WINDOWS\system32\drivers\aec.sys
09:07:57.0453 0x053c C:\WINDOWS\system32\drivers\aec.sys - ok
09:07:57.0468 0x053c [ 8CE882BCC6CF8A62F2B2323D95CB3D01, B408550A581F3DA222355964AFA4E976AD8471F0AA37573C42C4948AE5A23A3B ] C:\WINDOWS\system32\drivers\swmidi.sys
09:07:57.0468 0x053c C:\WINDOWS\system32\drivers\swmidi.sys - ok
09:07:57.0468 0x053c [ E5F7C30EDF0892667933BE879F067D67, E4BA45F4C6C74A0CDE9B12A00C91E2F5EF83536C89C9053DEC507CBB4F130A12 ] C:\WINDOWS\system32\msvcr100_clr0400.dll
09:07:57.0468 0x053c C:\WINDOWS\system32\msvcr100_clr0400.dll - ok
09:07:57.0468 0x053c [ 26CB10FA893F940AB09713FF46DCDADE, B113E03877FF2073ABAC1A7DF53A575F15915438C5EB10401FFEF7CAAEA902BC ] C:\WINDOWS\system32\shdocvw.dll
09:07:57.0468 0x053c C:\WINDOWS\system32\shdocvw.dll - ok
09:07:57.0468 0x053c [ 684559A03CBC1D05BA120A18B0D8BA5D, 7425F27C8EF8CEF26B071D7FD5FED538C74EF524AEF73E427B1781F3A3C16C42 ] C:\WINDOWS\system32\winhttp.dll
09:07:57.0468 0x053c C:\WINDOWS\system32\winhttp.dll - ok
09:07:57.0484 0x053c [ 8A208DFCF89792A484E76C40E5F50B45, 4E40E2EB38C6254E7CAA488200E89EE7DEBBBA773890BC6A84313CC68178D54F ] C:\WINDOWS\system32\drivers\dmusic.sys
09:07:57.0484 0x053c C:\WINDOWS\system32\drivers\dmusic.sys - ok
09:07:57.0484 0x053c [ 692BCF44383D056AED41B045A323D378, 1A99DEE83FFAF64E73067FC049C0A4CE07D94E4AE31EFA17B38CEFA9E41D67DC ] C:\WINDOWS\system32\drivers\kmixer.sys
09:07:57.0484 0x053c C:\WINDOWS\system32\drivers\kmixer.sys - ok
09:07:57.0484 0x053c [ 8F5FCFF8E8848AFAC920905FBD9D33C8, C8C6FB97AB0871C8C88A2201525A5CF10D5131CB6980D32692ED7A8F58399AD5 ] C:\WINDOWS\system32\drivers\drmkaud.sys
09:07:57.0484 0x053c C:\WINDOWS\system32\drivers\drmkaud.sys - ok
09:07:57.0484 0x053c [ 13E67B55B3ABD7BF3FE7AAE5A0F9A9DE, 4E0A67B3CC897E80D4B342FFE8B7B4CC4F6CA2EF2D34C136027A098B2E1C6166 ] C:\WINDOWS\system32\netman.dll
09:07:57.0484 0x053c C:\WINDOWS\system32\netman.dll - ok
09:07:57.0500 0x053c [ 062F837C1FBDB6A0A75F82EFC2EE8E74, 3C0BFA381CBC2C55B58A8942A7148A6C27E244D26313EFB4708DD5858C689E02 ] C:\WINDOWS\system32\netshell.dll
09:07:57.0500 0x053c C:\WINDOWS\system32\netshell.dll - ok
09:07:57.0500 0x053c [ 9A3BD5F55AADFF859539142F6328A66E, B8165F650F0E24D380601D54BC81A84C06D886A6CF995EA6CA63EABCFA75554A ] C:\WINDOWS\system32\msacm32.drv
09:07:57.0500 0x053c C:\WINDOWS\system32\msacm32.drv - ok
09:07:57.0500 0x053c [ 5C12660A97822F6E61576943B49AAAD6, 621BE8E009DC95A8901F701F529ED98BD8E6D62D272AE0E1FAF69889A4D5633B ] C:\WINDOWS\system32\midimap.dll
09:07:57.0500 0x053c C:\WINDOWS\system32\midimap.dll - ok
09:07:57.0515 0x053c [ B04DB1F0B2652FCBCCC5FD0C46579F0F, 24D1919B63ED444F5C6629626C239EC78A5BB7A3F29B154FEEA03A6FB8F26148 ] C:\WINDOWS\system32\mscoree.dll
09:07:57.0515 0x053c C:\WINDOWS\system32\mscoree.dll - ok
09:07:57.0515 0x053c [ AB690CD34CF4B4E3DDF78FD4FBCF88C3, ACC1C82EEC52C97288FE734E3275FEAA09EC93EB8E2C30DC9D9A6C66B21E66FF ] C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscorsvc.dll
09:07:57.0515 0x053c C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscorsvc.dll - ok
09:07:57.0515 0x053c [ 6C69EA6A0C308A0FB81992CAC9F39C59, 164BEB9C5CCBEEFF98210881ECCA6FD5BC7FE241F716F93D7FC69431F34240CD ] C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\fusion.dll
09:07:57.0515 0x053c C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\fusion.dll - ok
09:07:57.0531 0x053c [ 235892E493845D64D890163CFEF90E97, 48FC98DD1E5F8F05DE6954FE26C0A448AA9838D7DC716518C715F35E3CFA227D ] C:\WINDOWS\system32\credui.dll
09:07:57.0531 0x053c C:\WINDOWS\system32\credui.dll - ok
09:07:57.0531 0x053c [ 4E8F3230BAC8C1CAADF01A8C728E1C5C, 62E73A7D4C58F2E30670F6A72E734B618AF45F60A8CB2177A4D504283F829BE5 ] C:\WINDOWS\system32\dot3dlg.dll
09:07:57.0531 0x053c C:\WINDOWS\system32\dot3dlg.dll - ok
09:07:57.0531 0x053c [ B03E3F64B70F8031E65EB26DA23DE91A, 73184B4A75C1EA5D10B9D78A9E705432551DE15231F10C5A31021896D0938D80 ] C:\Program Files\Microsoft LifeCam\MSCamS32.exe
09:07:57.0531 0x053c C:\Program Files\Microsoft LifeCam\MSCamS32.exe - ok
09:07:57.0531 0x053c [ 12E54181D584F72296FD6EC72309BD94, B22BD7AF84BF78F6A69C782F0E07EBE885857B0412C43C8021EFC63C9D06A5EB ] C:\WINDOWS\system32\drivers\LBeepKE.sys
09:07:57.0531 0x053c C:\WINDOWS\system32\drivers\LBeepKE.sys - ok
09:07:57.0546 0x053c [ 5DB625E7D095604010CF84DE2D8ACFA6, DEED8055CD1F2E2D898C5C77283B56078414CC7D9FCA6FCF58BA0B66B565E826 ] C:\WINDOWS\system32\eappcfg.dll
09:07:57.0546 0x053c C:\WINDOWS\system32\eappcfg.dll - ok
09:07:57.0546 0x053c [ CA04959077AFE36369D37B3504740C87, CBB90BC35A74EC03DC04CD60DAC966A9FA98DC9EEFB926089DBE7A47D3B710B1 ] C:\WINDOWS\system32\onex.dll
09:07:57.0546 0x053c C:\WINDOWS\system32\onex.dll - ok
09:07:57.0546 0x053c [ ABC4206543450C0666D152F4B65833B8, D78D5E719E7744805DF6DD1D9567E67E11223F4E3B13170E35F27D46FCB6C244 ] C:\WINDOWS\system32\eappprxy.dll
09:07:57.0546 0x053c C:\WINDOWS\system32\eappprxy.dll - ok
09:07:57.0562 0x053c [ 4C39358EBDD2FFCD9132A30E1EC31E16, 06918CF99AD26CD6CF106881C0D5BDB212DC0BAC4549805C9F5906E3D03D152C ] C:\WINDOWS\WinSxS\x86_Microsoft.VC90.CRT_1fc8b3b9a1e18e3b_9.0.30729.6161_x-ww_31a54e43\msvcp90.dll
09:07:57.0562 0x053c C:\WINDOWS\WinSxS\x86_Microsoft.VC90.CRT_1fc8b3b9a1e18e3b_9.0.30729.6161_x-ww_31a54e43\msvcp90.dll - ok
09:07:57.0562 0x053c [ CDBE9690CF2B8409FACAD94FAC9479C9, 8E7FE1A1F3550C479FFD86A77BC9D10686D47F8727025BB891D8F4F0259354C8 ] C:\WINDOWS\WinSxS\x86_Microsoft.VC90.CRT_1fc8b3b9a1e18e3b_9.0.30729.6161_x-ww_31a54e43\msvcr90.dll
09:07:57.0562 0x053c C:\WINDOWS\WinSxS\x86_Microsoft.VC90.CRT_1fc8b3b9a1e18e3b_9.0.30729.6161_x-ww_31a54e43\msvcr90.dll - ok
09:07:57.0562 0x053c [ 332760FBA1655FCFD35BD6F4FD871300, 6C539FD14B9CF9423E305EAF60CB5C12CA0F7AEF571FB09BAF64E83F108B7F2D ] C:\WINDOWS\system32\ipsecsvc.dll
09:07:57.0562 0x053c C:\WINDOWS\system32\ipsecsvc.dll - ok
09:07:57.0562 0x053c [ D4991D98F2DB73C60D042F1AEF79EFAE, 58AF949EAEBF4FF3E3314DFB66CE4198BF65F0836B68CD27A6ED319742CCCCD2 ] C:\WINDOWS\system32\es.dll
09:07:57.0562 0x053c C:\WINDOWS\system32\es.dll - ok
09:07:57.0578 0x053c [ 4FCCA060DFE0C51A09DD5C3843888BCD, D82417706B517F2610DDF7C86BE03A72EFA9A2A389DF5C8F8ADEAB8144E2C80A ] C:\WINDOWS\pchealth\helpctr\binaries\pchsvc.dll
09:07:57.0578 0x053c C:\WINDOWS\pchealth\helpctr\binaries\pchsvc.dll - ok
09:07:57.0578 0x053c [ BBD57331ADFD9FD722C3BF4D6947554A, 759EA777BF0D7AD44124528AD70B613323246E34F53846B93B8E95AEC96C7197 ] C:\Program Files\Microsoft LifeCam\CAL2.dll
09:07:57.0578 0x053c C:\Program Files\Microsoft LifeCam\CAL2.dll - ok
09:07:57.0578 0x053c [ 3E587DBBDFF938DDE5D4CE4047BE9041, CA13B2C50FB09365362077AEC4B25120CF09F8C35702F645922D618FE57B5E05 ] C:\Program Files\Skype\Updater\Updater.exe
09:07:57.0578 0x053c C:\Program Files\Skype\Updater\Updater.exe - ok
09:07:57.0593 0x053c [ BC93B4A066477954555966D77FEC9ECB, 27F5B780175EF46DA102EE33F7F33559C8B40C077EEA4405D579D9507F4B1C23 ] C:\WINDOWS\system32\ersvc.dll
09:07:57.0593 0x053c C:\WINDOWS\system32\ersvc.dll - ok
09:07:57.0593 0x053c [ C5FF8682EADA5B3B27A865F1C3EF9270, 7D316AA7CFD6416C172F7A6A55476110F507BD3017DB37EC1624AFB11B3F3C3E ] C:\WINDOWS\system32\oakley.dll
09:07:57.0593 0x053c C:\WINDOWS\system32\oakley.dll - ok
09:07:57.0593 0x053c [ 8973122796E3B5D6B5900FC186E55FEA, 350120A20F8591C27E68A5903E3175DD3F4F85BA2FF1F8B6E1D3B3758B5B509D ] C:\WINDOWS\system32\hid.dll
09:07:57.0593 0x053c C:\WINDOWS\system32\hid.dll - ok
09:07:57.0593 0x053c [ 853D0D0C6F02D7BFDF1CF99DD7553732, AC761B4CA518B787CB2C18101606E5F64245049D140C72B6B1112556DEC86B2E ] C:\WINDOWS\system32\pstorsvc.dll
09:07:57.0593 0x053c C:\WINDOWS\system32\pstorsvc.dll - ok
09:07:57.0609 0x053c [ 248712EA6BA17B9FF0C542A3828375DD, 03EFDE351860C4C49F42D6129C6A6F2B3FC859C20F14FE0652F9C4FBD81244B4 ] C:\WINDOWS\system32\winipsec.dll
09:07:57.0609 0x053c C:\WINDOWS\system32\winipsec.dll - ok
09:07:57.0609 0x053c [ 3D4E199942E29207970E04315D02AD3B, 0825960894CF9C86CC8775BDD2A262948A09CA495AA7FE9F210FAF49E7086383 ] C:\WINDOWS\system32\cryptsvc.dll
09:07:57.0609 0x053c C:\WINDOWS\system32\cryptsvc.dll - ok
09:07:57.0609 0x053c [ AA5E22854F56C68148EB3345DBD62970, 441818E5E9F568C4AC7174BCF625ACB63D8837658559949DF468B61125900B96 ] C:\WINDOWS\system32\devenum.dll
09:07:57.0609 0x053c C:\WINDOWS\system32\devenum.dll - ok
09:07:57.0625 0x053c [ DEB04DA35CC871B6D309B77E1443C796, F66A15C9528D661940F1F4CA453B3E95036D68C74C3B8AB53644211DBD3D2F32 ] C:\WINDOWS\system32\hidserv.dll
09:07:57.0625 0x053c C:\WINDOWS\system32\hidserv.dll - ok
09:07:57.0625 0x053c [ 22D89D84E8E081CDA529DBF8C0255A38, 26863A2D27BE257D99EF28A612FC1B514558B27002EF10B0F682BC15C6D1CD74 ] C:\WINDOWS\system32\psbase.dll
09:07:57.0625 0x053c C:\WINDOWS\system32\psbase.dll - ok
09:07:57.0625 0x053c [ FEDE68BF80052BAD393AFD5C2E60DCB0, 6A40D89524317C554C5C33A35FB659147A3118F4C646AB36653A19A8811627CB ] C:\WINDOWS\system32\dssenh.dll
09:07:57.0625 0x053c C:\WINDOWS\system32\dssenh.dll - ok
09:07:57.0640 0x053c [ 00709952D444EAE14DBBD30D36FBAE0F, A65B57C68F9119940133F6680AF3644866EEBDA5378F9B6AED441FB999B50526 ] C:\WINDOWS\system32\certcli.dll
09:07:57.0640 0x053c C:\WINDOWS\system32\certcli.dll - ok
09:07:57.0640 0x053c [ 9BE42E99BBD5461F1F94FE39FEE2E6F5, 0688BF6E39A28EBAD339A1B0FE5C2E44BAB23CAAE1D9E8A05E9629D9B37D6027 ] C:\Program Files\VERIZONDM\bin\sprtsvc.exe
09:07:57.0640 0x053c C:\Program Files\VERIZONDM\bin\sprtsvc.exe - ok
09:07:57.0640 0x053c [ D25C03D04159D462D69F294BA7142BDB, 397B0FE2BB56FFBBF1BD89273802348B3AA102A5725E2CB3670FA89526E6C5EC ] C:\WINDOWS\system32\msdmo.dll
09:07:57.0640 0x053c C:\WINDOWS\system32\msdmo.dll - ok
09:07:57.0640 0x053c [ 01CFA88F8DEE91EC9F8E0988F49D106E, 24681D0B28CF3544F9C36876069296AE9E4DF3043BF72A1A55D248160067DF9A ] C:\WINDOWS\system32\avicap32.dll
09:07:57.0640 0x053c C:\WINDOWS\system32\avicap32.dll - ok
09:07:57.0656 0x053c [ 235B2311786AC007AD644B12A2DA8AC7, DB676642F9C0467DBC313D0B475250B247EABB281FD359896398A0E7C725F0F8 ] C:\WINDOWS\system32\msvfw32.dll
09:07:57.0656 0x053c C:\WINDOWS\system32\msvfw32.dll - ok
09:07:57.0656 0x053c [ 3A7C3CBE5D96B8AE96CE81F0B22FB527, 0044F03132596A494448CCE5F3D6ECC12617BB4CF6BAE348F79D4DC40ACD6EE0 ] C:\WINDOWS\system32\srvsvc.dll
09:07:57.0656 0x053c C:\WINDOWS\system32\srvsvc.dll - ok
09:07:57.0656 0x053c [ CBE612E2BB6A10E3563336191EDA1250, C331797DC3569F0E715766561DE2562F60B924378842246C35D2B1CF867E9D96 ] C:\WINDOWS\system32\seclogon.dll
09:07:57.0656 0x053c C:\WINDOWS\system32\seclogon.dll - ok
09:07:57.0671 0x053c [ 20FD44370267CCD0A64A1B31861C21D2, D98194A17D1C63434EC6449742C10033F1B94D80826B20464519B1DD4DE1DB5F ] C:\WINDOWS\system32\netmsg.dll
09:07:57.0671 0x053c C:\WINDOWS\system32\netmsg.dll - ok
09:07:57.0671 0x053c [ 3805DF0AC4296A34BA4BF93B346CC378, B57A14F1B7B0997E619DDD62B73157AA2399A9852166FB58139CBB358A88F6F3 ] C:\WINDOWS\system32\srsvc.dll
09:07:57.0671 0x053c C:\WINDOWS\system32\srsvc.dll - ok
09:07:57.0671 0x053c [ B4ED498E3BFEE64E952BC44FC6057DB8, 1FB5ABAE69103BF477F704189D75B0395F587234BFE94F9F79961D8FE2CE55AC ] C:\WINDOWS\system32\desk.cpl
09:07:57.0671 0x053c C:\WINDOWS\system32\desk.cpl - ok
09:07:57.0671 0x053c [ 47DDFC2F003F7F9F0592C6874962A2E7, 17C643BD4EB09B5666FE41817DC785BE04A6E491CE79E8E5A702CDBD98E1BDD7 ] C:\WINDOWS\system32\drivers\srv.sys
09:07:57.0671 0x053c C:\WINDOWS\system32\drivers\srv.sys - ok
09:07:57.0687 0x053c [ 92982BC49FA1E45EBD64A4605AE57790, EFE8C2DD3767ECF874049560C9EF15B472B6290228499C61444982DE0C931107 ] C:\Program Files\VERIZONDM\bin\sprtsched.dll
09:07:57.0687 0x053c C:\Program Files\VERIZONDM\bin\sprtsched.dll - ok
09:07:57.0687 0x053c [ 55BCA12F7F523D35CA3CB833C725F54E, 849FB1AE31B143B14B298BBC0D91230693D41DEB95F46516878F53A7F4186C38 ] C:\WINDOWS\system32\trkwks.dll
09:07:57.0687 0x053c C:\WINDOWS\system32\trkwks.dll - ok
09:07:57.0687 0x053c [ 8BAD69CBAC032D4BBACFCE0306174C30, 2AA0DA710FCBFF38FE8DA91EE02E7A4503269347E61F8D3246FCA3384BBA2305 ] C:\WINDOWS\system32\wiaservc.dll
09:07:57.0687 0x053c C:\WINDOWS\system32\wiaservc.dll - ok
09:07:57.0703 0x053c [ 2D0E4ED081963804CCC196A0929275B5, E1D75C7D7233D81DFDE13160B0C80138DF8B35230D04FB79B367A52FACF69BF8 ] C:\WINDOWS\system32\wbem\wmisvc.dll
09:07:57.0703 0x053c C:\WINDOWS\system32\wbem\wmisvc.dll - ok
09:07:57.0703 0x053c [ EE9710428FFB95FD3845D41E7148AC31, 5CFBE4B7BCCB136B958E21EACB965E09F7D6CC0CB29DEA9022047809582B1065 ] C:\WINDOWS\system32\themeui.dll
09:07:57.0703 0x053c C:\WINDOWS\system32\themeui.dll - ok
09:07:57.0703 0x053c [ ACACB8B14E66109B8ACD6644B5574B9A, 2373E67EB51F8045E7CD346F75B4BAD093E29CC609955BBC4C9FEF7A97A5FD86 ] C:\WINDOWS\system32\vssapi.dll
09:07:57.0703 0x053c C:\WINDOWS\system32\vssapi.dll - ok
09:07:57.0703 0x053c [ 5F0CE62E0831CF972EC6949FD3E37DA7, DFDD251D3FC6CDBD971F52EF0AECEC0344B57214615AA486AA9234D30A40AF60 ] C:\WINDOWS\system32\cfgmgr32.dll
09:07:57.0703 0x053c C:\WINDOWS\system32\cfgmgr32.dll - ok
09:07:57.0718 0x053c [ 4AC2FA4A6F0DF2511BAC13393C06EFF1, 502B9D43EB6305508E8CDF034528C3F1DDF4525727C1B7663EA835BE2307FF20 ] C:\WINDOWS\system32\mscms.dll
09:07:57.0718 0x053c C:\WINDOWS\system32\mscms.dll - ok
09:07:57.0718 0x053c [ 61E71BC3CD3530444000A9B68F7EE931, 4B4DF7ED75A922238390D08B743CD9E2732042A787F9C57A05565207E3CB529B ] C:\WINDOWS\system32\WLTRYSVC.EXE
09:07:57.0718 0x053c C:\WINDOWS\system32\WLTRYSVC.EXE - ok
09:07:57.0718 0x053c [ 251E22A5D9BAAC9E1153707EEF2EF62E, 84101016302BEDBCF9FA857723D4606366680DB6DF726EBE005CDB03DFD9DD67 ] C:\Program Files\VERIZONDM\bin\sprtfod.dll
09:07:57.0718 0x053c C:\Program Files\VERIZONDM\bin\sprtfod.dll - ok
09:07:57.0734 0x053c [ 912B67BB8249925A5C972FC5839EAE09, 11F9F26C2D5EADD683F9FA4FDC8C25A1FB7EE9D6E3F4419C9DAB8C4E434F1857 ] C:\WINDOWS\system32\actxprxy.dll
09:07:57.0734 0x053c C:\WINDOWS\system32\actxprxy.dll - ok
09:07:57.0734 0x053c [ FC3EC24FCE372C89423E015A2AC1A31E, 8D028182CF83667D3E4D148979972D208FA6D9B8540EE47A0A7831B770ECD257 ] C:\WINDOWS\system32\wuaueng.dll
09:07:57.0734 0x053c C:\WINDOWS\system32\wuaueng.dll - ok
09:07:57.0734 0x053c [ 35321FB577CDC98CE3EB3A3EB9E4610A, C9A6F5CF282D8FCB3CDFCC4B306013480E78E1B664E1A60A4E27B161F9FFD4CD ] C:\WINDOWS\system32\wuauserv.dll
09:07:57.0734 0x053c C:\WINDOWS\system32\wuauserv.dll - ok
09:07:57.0734 0x053c [ 67156D5A9AC356DC99D7BCCB388E3316, 449A140065197779C0F8588E5C53014BBF54A9C74818D5CFDCB88CC7B36F44CF ] C:\WINDOWS\system32\wsock32.dll
09:07:57.0734 0x053c C:\WINDOWS\system32\wsock32.dll - ok
09:07:57.0750 0x053c [ 9EFBB3055B3EECE5B0FC7BAED07A6EE9, 8CF9C8882C1DF59E51E2D65425C595E1C37005E6F94C47EBCDEBFF991788C162 ] C:\WINDOWS\system32\msxml6.dll
09:07:57.0750 0x053c C:\WINDOWS\system32\msxml6.dll - ok
09:07:57.0750 0x053c [ 5C5209B04B1942A534259C2AB7BB1EEA, 1A4C6B92E6D6F90B2E2552CA2B780A5A4A99CA4DD6E07F1ABCE9357E4CCBA78B ] C:\Program Files\VERIZONDM\bin\libeay32.dll
09:07:57.0750 0x053c C:\Program Files\VERIZONDM\bin\libeay32.dll - ok
09:07:57.0750 0x053c [ 9A0CE1DB25F1CDD3ED11236884800538, 549F5B549512F9E7E4C2C9509678EA7654FDA3211DD398D350D915787963E50E ] C:\WINDOWS\system32\BCMWLTRY.EXE
09:07:57.0750 0x053c C:\WINDOWS\system32\BCMWLTRY.EXE - ok
09:07:57.0765 0x053c [ A95FD607292F05218FEB8D580FB4CC8E, DAB81C573BD34356E7833B4239D16C63A917A41D0148D6B0C0650CB6C4D1653B ] C:\Program Files\VERIZONDM\bin\sprtsync.dll
09:07:57.0765 0x053c C:\Program Files\VERIZONDM\bin\sprtsync.dll - ok
09:07:57.0765 0x053c [ F9D3C78CFE15271D80790677C893CE45, 885425736648DF7B315E92680ED3BD058ACE97A86D388FEA80EB0C039ADF25D7 ] C:\WINDOWS\system32\cabinet.dll
09:07:57.0765 0x053c C:\WINDOWS\system32\cabinet.dll - ok
09:07:57.0765 0x053c [ B85E95679B5ADC12311BCD3F5385D623, 378D304CF408AE1928EF6290A5A9F2388920B55FD69382759B356B6A3FF94F3A ] C:\WINDOWS\system32\mspatcha.dll
09:07:57.0765 0x053c C:\WINDOWS\system32\mspatcha.dll - ok
09:07:57.0765 0x053c [ 7C278E6408D1DCE642230C0585A854D5, DA46079A04F6E8E3441E4AE454AEAC02B3E935DE29CE7F6D4476F57867FCC12A ] C:\WINDOWS\system32\wscsvc.dll
09:07:57.0765 0x053c C:\WINDOWS\system32\wscsvc.dll - ok
09:07:57.0781 0x053c [ 2F7959C5FAA11E0F53FA3D321C9074D0, D02BAD365B275B475823AC33D9AC6A88CF92F7F8731D72569849500ADBE53E7E ] C:\Program Files\VERIZONDM\bin\sprtupdate.dll
09:07:57.0781 0x053c C:\Program Files\VERIZONDM\bin\sprtupdate.dll - ok
09:07:57.0781 0x053c [ DFFE021DD998826C9BC400954A62F368, 8F55008386DE1717B54FE4E049D89017A9288E5EA2C1D45489423BBA21628989 ] C:\WINDOWS\system32\bcm1xsup.dll
09:07:57.0781 0x053c C:\WINDOWS\system32\bcm1xsup.dll - ok
09:07:57.0781 0x053c [ 8C22083ED515DC94D575438662F0BE6A, 67DC2A393AE31764C090BE2AEFAD3E20220538152157BAEBF366112166FEAB23 ] C:\WINDOWS\system32\msi.dll
09:07:57.0781 0x053c C:\WINDOWS\system32\msi.dll - ok
09:07:57.0796 0x053c [ 4DF537A09034434EA9481B88AB1D3C25, 0628922DDA8E170E013F66D7D1EC03EAED2AF366BF4CFCDDDC6A5B8552784A36 ] C:\WINDOWS\system32\bcmwlpkt.dll
09:07:57.0796 0x053c C:\WINDOWS\system32\bcmwlpkt.dll - ok
09:07:57.0796 0x053c [ 8F2097E8B174F38178570C611464935F, 3F25E7B097B65EAF82A6D5B58646DFF38CA19347664F40C2B8A409B9D6939457 ] C:\WINDOWS\system32\ATL71.DLL
09:07:57.0796 0x053c C:\WINDOWS\system32\ATL71.DLL - ok
09:07:57.0796 0x053c [ 83F41D0D89645D7235C051AB1D9523AC, B681F33EEAA511D6A2DCB9FBAA407B739184C9FF6067C6B7E51F1FC37E9D4DD7 ] C:\WINDOWS\system32\ipnathlp.dll
09:07:57.0796 0x053c C:\WINDOWS\system32\ipnathlp.dll - ok
09:07:57.0812 0x053c [ 205ADD80FF8099B1A8101EB490B933D1, 6B4D94F1683B1D30A1BB0019E2E3E0AE1AA85561D416708198EC2BDAB649E178 ] C:\WINDOWS\system32\wbem\wbemprox.dll
09:07:57.0812 0x053c C:\WINDOWS\system32\wbem\wbemprox.dll - ok
09:07:57.0812 0x053c [ D95C71052E5EF63B55997FB31483D02F, 829A559050680C039CA7AFCFE3246745D465ED11722A603AA32253FD413894C3 ] C:\WINDOWS\system32\wbem\wbemcomn.dll
09:07:57.0812 0x053c C:\WINDOWS\system32\wbem\wbemcomn.dll - ok
09:07:57.0812 0x053c [ F0BF811622F2DD6C8E26EE4600D83731, 81CFC1118551E84F5BBD2A863419529AA32DA92E5834C71DA77D13854F6CF048 ] C:\WINDOWS\system32\wbem\wbemcore.dll
09:07:57.0812 0x053c C:\WINDOWS\system32\wbem\wbemcore.dll - ok
09:07:57.0812 0x053c [ 89366C2AFF401C512C66709F58C81BA2, B1C4E1981C844591A9127BE6A49B7A5A544E6A0D907418F50EE08138F350845B ] C:\WINDOWS\system32\wltrynt.dll
09:07:57.0812 0x053c C:\WINDOWS\system32\wltrynt.dll - ok
09:07:57.0828 0x053c [ F9D82B82F1B7C0B2D2606A987073F58C, 78DB49D7B905C32C5CA7A8E73AAFE75D2F3ACDD9D5E65B0D196B532F2881E80A ] C:\PROGRA~1\WIFD1F~1\MpShHook.dll
09:07:57.0828 0x053c C:\PROGRA~1\WIFD1F~1\MpShHook.dll - ok
09:07:57.0828 0x053c [ E4616430709F440CF1809D88DC2366EA, C2CBC0A21A892FD8341E5A29E7164172340E07A75A5D54493036156D907AEAE7 ] C:\WINDOWS\system32\wbem\esscli.dll
09:07:57.0828 0x053c C:\WINDOWS\system32\wbem\esscli.dll - ok
09:07:57.0828 0x053c [ 378A0AEFB11D8B0DC8C27B9F7604B88D, D0D6863FCE412B75B9B5FC38EA923759201E7193ED40CFBAA674630E2DE56FD3 ] C:\WINDOWS\system32\wbem\fastprox.dll
09:07:57.0828 0x053c C:\WINDOWS\system32\wbem\fastprox.dll - ok
09:07:57.0843 0x053c [ F1DAC7969C1337AF790BD1D981AA780C, C544785173AD8F2F28B414938D8D81C679157F7CE60EE7688DCB0A8FF9CE4D69 ] C:\WINDOWS\system32\qmgrprxy.dll
09:07:57.0843 0x053c C:\WINDOWS\system32\qmgrprxy.dll - ok
09:07:57.0843 0x053c [ CFD4E51402DA9838B5A04AE680AF54A0, 5378F42B195B5832B00A05AD64E00473A45FFB86AC25C57241F26EA82B149FE1 ] C:\WINDOWS\system32\browser.dll
09:07:57.0843 0x053c C:\WINDOWS\system32\browser.dll - ok
09:07:57.0843 0x053c [ 7FDD5D0684ECA8C1F68B4D99D124DCD0, 7105B026F966A992430F86C3698ABE15EC73E4772F1A3E362E29FD5247A5DCA6 ] C:\WINDOWS\system32\sens.dll
09:07:57.0843 0x053c C:\WINDOWS\system32\sens.dll - ok
09:07:57.0843 0x053c [ 010472D0AE758227C6F6E6933549C219, 4082365231756E2889BD9A19EEFA27665B9902F8C8BC376C70DC3AA80AEA541B ] C:\WINDOWS\system32\wbem\wbemsvc.dll
09:07:57.0843 0x053c C:\WINDOWS\system32\wbem\wbemsvc.dll - ok
09:07:57.0859 0x053c [ 058710B720282CA82B909912D3EF28DB, 97535E75CA6A77E6BCB81216B0FB383024709539727FD656DF6AFD33A50CAD04 ] C:\WINDOWS\regedit.exe
09:07:57.0859 0x053c C:\WINDOWS\regedit.exe - ok
09:07:57.0859 0x053c [ ED0C0DF222209E43AD9AFBF3FE87DDE0, 927329F9244DA9F0074FA0D4C101EE793AFCF433155E58714C33444C5EF35014 ] C:\WINDOWS\system32\comsvcs.dll
09:07:57.0859 0x053c C:\WINDOWS\system32\comsvcs.dll - ok
09:07:57.0859 0x053c [ 96A0066AB9872D3575575A463C53FF6C, 939C2C4D5043B4A9A4D531B072F4344F0B84FA1D7840B810344B2773EB420CAE ] C:\WINDOWS\system32\aclui.dll
09:07:57.0859 0x053c C:\WINDOWS\system32\aclui.dll - ok
09:07:57.0875 0x053c [ 751068D5D0ECD64A4810379729A1F0BC, 55D2F6F32513349C3BCA5E06B719B03A56577A23CB30CC1BC5E848DE2D456FD7 ] C:\WINDOWS\system32\ulib.dll
09:07:57.0875 0x053c C:\WINDOWS\system32\ulib.dll - ok
09:07:57.0875 0x053c [ 690D97864735E8ECD87F55777E266690, 2098D2AADEF82C3EDD82FD6182C14568CDE1EF02205ED1EA4CB19252B74BB807 ] C:\WINDOWS\system32\colbact.dll
09:07:57.0875 0x053c C:\WINDOWS\system32\colbact.dll - ok
09:07:57.0875 0x053c [ 37461F2C3F212CF508A20FDC729ABDE5, 258FAC009860CBD148787B7C771E79DA45463704F4167A78796EFF84106CDFDA ] C:\WINDOWS\system32\clb.dll
09:07:57.0875 0x053c C:\WINDOWS\system32\clb.dll - ok
09:07:57.0875 0x053c [ DF82E222578DBE59FCBBD69A02E4C806, 0F0CD9DC739500536F252475F84F8EF378428CAC7DD9CFCDEC676862A20A0C46 ] C:\WINDOWS\system32\clusapi.dll
09:07:57.0875 0x053c C:\WINDOWS\system32\clusapi.dll - ok
09:07:57.0890 0x053c [ 36795A645EAA47FE31D2A8F136A2C69B, D681D7DFC4A2A2F10658D76A93F009BDBFC6117E245E0883C509A286DC952EAD ] C:\WINDOWS\system32\mtxclu.dll
09:07:57.0890 0x053c C:\WINDOWS\system32\mtxclu.dll - ok
09:07:57.0890 0x053c [ F51EBB6FC536A6B2D588FD668D3A8249, 6C22B5FBE3F721025879447B006EC5A343D482A87E23674B5A3BB43983AB328E ] C:\WINDOWS\system32\resutils.dll
09:07:57.0890 0x053c C:\WINDOWS\system32\resutils.dll - ok
09:07:57.0890 0x053c [ 3458EDA96E30FBD0477A2800D3FB1909, BDF84362E4D8A102E7FB5F352D950B84D1A8E1E7928521B68E7671D4176803C5 ] C:\WINDOWS\system32\wups.dll
09:07:57.0890 0x053c C:\WINDOWS\system32\wups.dll - ok
09:07:57.0906 0x053c [ 3273D1565BF30225C115B480A3BB2C9D, DF802F845EFEE506A0D3CA1EA9AEE1EDE73BCC02F2B64EDFACE0BBEFCF965455 ] C:\WINDOWS\system32\wbem\wmiutils.dll
09:07:57.0906 0x053c C:\WINDOWS\system32\wbem\wmiutils.dll - ok
09:07:57.0906 0x053c [ BDC0C99E472176C8C2C853A68ADC5073, 9A0A0CEE321C9BAF5545D6CB0BE3E725228B694F331FFACCEB770350AAF2C8C3 ] C:\WINDOWS\system32\wups2.dll
09:07:57.0906 0x053c C:\WINDOWS\system32\wups2.dll - ok
09:07:57.0906 0x053c [ 942A17D2901A31EA68627CBFFCD268CC, C75E1C03929E16EDDBACFC37BD6C40E941F9D99E3E40ED3A07238343342685BD ] C:\WINDOWS\system32\wbem\repdrvfs.dll
09:07:57.0906 0x053c C:\WINDOWS\system32\wbem\repdrvfs.dll - ok
09:07:57.0906 0x053c [ 071143F687B4F887E21461CA6CC7EB29, 92C849517F985F19926E6425CD99E21029E1CA14FC92C9E40091DC79D4A723F2 ] C:\WINDOWS\system32\wbem\wmiprvsd.dll
09:07:57.0906 0x053c C:\WINDOWS\system32\wbem\wmiprvsd.dll - ok
09:07:57.0921 0x053c [ 2E0B0A051FFAA86E358465BB0880D453, 493CF6150DE95B269727631D50FE21405A41E449C4FF43E94F93D27559EA5624 ] C:\WINDOWS\system32\wuauclt.exe
09:07:57.0921 0x053c C:\WINDOWS\system32\wuauclt.exe - ok
09:07:57.0921 0x053c [ 26D881D27CBE51D3614E68D7313EA026, BC84CFD5F382F6D844815065118793950E922B8FB52944E337DAA62874C103A3 ] C:\WINDOWS\system32\wbem\wbemess.dll
09:07:57.0921 0x053c C:\WINDOWS\system32\wbem\wbemess.dll - ok
09:07:57.0921 0x053c [ 1A617835452EEE5060976C9B9F5FE635, DCCAAB049681BE876B73F0880EA32196CDA7EC954D452768A48D366096C5BD53 ] C:\WINDOWS\system32\wuapi.dll
09:07:57.0921 0x053c C:\WINDOWS\system32\wuapi.dll - ok
09:07:57.0937 0x053c [ D26451B540720A7313A9BCBE794DAF62, 255B3594876F9D9222760A53D1119E73D3BA4E4766C9DFAD63DCB180C5F33846 ] C:\WINDOWS\system32\wbem\ncprov.dll
09:07:57.0937 0x053c C:\WINDOWS\system32\wbem\ncprov.dll - ok
09:07:57.0937 0x053c [ 6D778E0F95447E6546553EEEA709D03C, 62ABED7D45040381BBCED97EA7B6C697B418448FD3322FD4BFB2BBFDB6155EB4 ] C:\WINDOWS\system32\cmd.exe
09:07:57.0937 0x053c C:\WINDOWS\system32\cmd.exe - ok
09:07:57.0937 0x053c [ 450168B0C88526D18A2D7480F8929816, 7684B11B15CA6969821B125A763645C8388BDA347C7D50F54CD232757C77F2EB ] C:\WINDOWS\system32\ieframe.dll
09:07:57.0937 0x053c C:\WINDOWS\system32\ieframe.dll - ok
09:07:57.0953 0x053c [ 6B47CAB302139AA94503187C11F71A9B, 5CCF7B00FD7D0F80B26A7267E33BD4F54E324699BFBC54CF5D10BA5B3F435954 ] C:\Program Files\Common Files\SupportSoft\bin\bcont_nm.exe
09:07:57.0953 0x053c C:\Program Files\Common Files\SupportSoft\bin\bcont_nm.exe - ok
09:07:57.0953 0x053c [ 79E3A8C328E7E569C32B0998377D9742, F5854956E452AD663004679BBDF8B006695B69C8962534CD243193F04F294DF3 ] C:\WINDOWS\system32\spoolss.dll
09:07:57.0953 0x053c C:\WINDOWS\system32\spoolss.dll - ok
09:07:57.0953 0x053c [ 6404807ABC7AF52FA3792697AE638B50, 75FB44348CCC53A4EA2C3677F42098A12CE882F3E015E3D847A07972C1E4AEF5 ] C:\WINDOWS\system32\wbem\wbemcons.dll
09:07:57.0953 0x053c C:\WINDOWS\system32\wbem\wbemcons.dll - ok
09:07:57.0953 0x053c [ 5677DFE438EC1F009273FC84FEED6B10, 44B62CC4D138E13C22FC29E9751CB7ED0B0C6C8897A8E6469172F8642B0527BE ] C:\WINDOWS\system32\localspl.dll
09:07:57.0953 0x053c C:\WINDOWS\system32\localspl.dll - ok
09:07:57.0968 0x053c [ 5D3D1AB0EF4EA55B731863050482C111, 8713DAA48DBC5FDF95BE993863BEE669BBB4026347DC575D72F520F423EE21BA ] C:\WINDOWS\system32\cnbjmon.dll
09:07:57.0968 0x053c C:\WINDOWS\system32\cnbjmon.dll - ok
09:07:57.0968 0x053c [ 222DE7F5EDB9DDBE628384A1A8BE59CE, 063AF8C6C251961ABC93A8E8A07DB9B9582CD1812CA3BB297FAFDF0AD3E5B4CC ] C:\WINDOWS\system32\pjlmon.dll
09:07:57.0968 0x053c C:\WINDOWS\system32\pjlmon.dll - ok
09:07:57.0968 0x053c [ AE0382AD9C73D343D85E1A50C80B7C20, 7477A5A33C0ACF80BE73F0169893A7D53AF8ABC514FCE190A6ACC677092E5A55 ] C:\WINDOWS\system32\tcpmon.dll
09:07:57.0968 0x053c C:\WINDOWS\system32\tcpmon.dll - ok
09:07:57.0968 0x053c [ F26385E8BA4549B5186B774EC0E45D86, 0BA8CA4C06918690EA68678CA5887F1B7E2B0976C99BDFAF99CC1C99F3E300A0 ] C:\WINDOWS\system32\usbmon.dll
09:07:57.0968 0x053c C:\WINDOWS\system32\usbmon.dll - ok
09:07:57.0984 0x053c [ EEE7F12D9FF46F68FBC0DA059A359E9E, 1D0D5AC87ACDF3F041D9C31A92BFE7B1B81CBAD81F8F7CE8183FC3F61CAFF8CC ] C:\WINDOWS\system32\spool\prtprocs\w32x86\filterpipelineprintproc.dll
09:07:57.0984 0x053c C:\WINDOWS\system32\spool\prtprocs\w32x86\filterpipelineprintproc.dll - ok
09:07:57.0984 0x053c [ 291778DFEBAA278B451D457B03C10AC1, 19649A327CC5EC74FB84D1FC347912E21D120C8470CB361DA1E8D4E49968F21E ] C:\WINDOWS\system32\win32spl.dll
09:07:57.0984 0x053c C:\WINDOWS\system32\win32spl.dll - ok
09:07:57.0984 0x053c [ B41D53899E37CC43DA85DA19998BEE81, CA92B8313338F0F8B1B630A0057B9C114E8D8BC10F09825C9008A5A824B91FDC ] C:\WINDOWS\system32\netrap.dll
09:07:57.0984 0x053c C:\WINDOWS\system32\netrap.dll - ok
09:07:58.0000 0x053c [ EE4C651A217B01D636B5364AC77DA892, E40C7DD39234673A3BA8FD87C189653C391E326ECB3E8011B5020BB9D78F56D0 ] C:\WINDOWS\system32\inetpp.dll
09:07:58.0000 0x053c C:\WINDOWS\system32\inetpp.dll - ok
09:07:58.0000 0x053c [ 1BB66A40744622E60E802B39F013DC64, 67A23F1E9E6123A3D7248213384D51D6166D146CACD679E244CE0F891A344B97 ] C:\DOCUME~1\Me\LOCALS~1\Temp\{AE2D4A60-D639-4A08-AE09-19C8FB6F41E2}.exe
09:07:58.0000 0x053c C:\DOCUME~1\Me\LOCALS~1\Temp\{AE2D4A60-D639-4A08-AE09-19C8FB6F41E2}.exe - ok
09:07:58.0000 0x053c [ 17AA58A54C00F1746B8654C050491F43, AADA0D527FB96852998073E58F93710C4B3A25D7D1414BA9F23A28DA3D06B4CD ] C:\WINDOWS\system32\msutb.dll
09:07:58.0000 0x053c C:\WINDOWS\system32\msutb.dll - ok
09:07:58.0000 0x053c [ E40FCF943127DDC8FD60554B722D762B, 2E7A7C08B56E07D69CB32F335D93F6D2C748EFA2CF4C41102A18C7761A4E9CF0 ] C:\WINDOWS\system32\msctf.dll
09:07:58.0000 0x053c C:\WINDOWS\system32\msctf.dll - ok
09:07:58.0015 0x053c [ 2DC5A8019E2387987905F77C664E4BE2, 32FD8D0D3146A599CFB536955F9E93AA50467B2176A70E481133B61D4BD29AD9 ] C:\WINDOWS\system32\linkinfo.dll
09:07:58.0015 0x053c C:\WINDOWS\system32\linkinfo.dll - ok
09:07:58.0015 0x053c [ A70A2D85AD143D6BB823C246CEB699A5, D8ED98DC2964A2DAF448893718E6381FBABAB53DD7497266851E0F4221F1B01F ] C:\WINDOWS\system32\ntshrui.dll
09:07:58.0015 0x053c C:\WINDOWS\system32\ntshrui.dll - ok
09:07:58.0015 0x053c [ 91790D6749EBED90E2C40479C0A91879, 3C267950F13CCE412474C5228FC0E3D8D7F912E82464BD2CE6312A0326F84A80 ] C:\WINDOWS\system32\verclsid.exe
09:07:58.0015 0x053c C:\WINDOWS\system32\verclsid.exe - ok
09:07:58.0031 0x053c [ 93C088C2AEB2F23E720BDA7E32BD5117, 7ECFCAF8E057986501B42181E049E48063D940A34A3F3E425FF82D2183008E90 ] C:\WINDOWS\system32\upnp.dll
09:07:58.0031 0x053c C:\WINDOWS\system32\upnp.dll - ok
09:07:58.0031 0x053c [ 9CEFA27B0C4AC2D47938780CDA7A5286, 204EFFD43AF15B2F340EB4680345A111CDECE056981ACE1A7262E24A0F14DA64 ] C:\Program Files\Microsoft Security Client\msseces.exe
09:07:58.0031 0x053c C:\Program Files\Microsoft Security Client\msseces.exe - ok
09:07:58.0031 0x053c [ 3D075865DCC26931972F6476AD0497BE, E1FB17787F54D9A4E2A04DD699FA770C9CE100A427E6EFBF4E0CF24EAAD3A9BA ] C:\WINDOWS\system32\ssdpapi.dll
09:07:58.0031 0x053c C:\WINDOWS\system32\ssdpapi.dll - ok
09:07:58.0046 0x053c [ 35643C90B523A7E5602B9A3BDB1D2F60, CC5DDB27DCFACA74DAC7F2657935C34AC7E7BF6AA9C0A552DC95575E513EFDB5 ] C:\WINDOWS\stsystra.exe
09:07:58.0046 0x053c C:\WINDOWS\stsystra.exe - ok
09:07:58.0046 0x053c [ 37A62C6092AADD2EFDE0468DD8818E99, 2D01A2EEE0BE81B3252E1A3EAD21D3D91EA6DE826A1783B14948A0E0B475BAB1 ] C:\WINDOWS\system32\netcfgx.dll
09:07:58.0046 0x053c C:\WINDOWS\system32\netcfgx.dll - ok
09:07:58.0046 0x053c [ 5F1D5F88303D4A4DBC8E5F97BA967CC3, 5FB24FC7916A6E6B3BE7D84CB1684215B266CD1495575C2E5672B8447932E5B1 ] C:\WINDOWS\system32\ctfmon.exe
09:07:58.0046 0x053c C:\WINDOWS\system32\ctfmon.exe - ok
09:07:58.0046 0x053c [ 29ECDA17BA5E6D98430F698587569ACC, 9C37D92CCBED1F9ED4E585F98E7FB17C6AD083712B078ABCB40476310BCDB7F8 ] C:\WINDOWS\WinSxS\x86_Microsoft.Windows.GdiPlus_6595b64144ccf1df_1.0.6002.23084_x-ww_f3f35550\GdiPlus.dll
09:07:58.0046 0x053c C:\WINDOWS\WinSxS\x86_Microsoft.Windows.GdiPlus_6595b64144ccf1df_1.0.6002.23084_x-ww_f3f35550\GdiPlus.dll - ok
09:07:58.0062 0x053c [ F6FAEC07446A78A9C5AF4558FF5BD118, 9291106F6666913DB6D18943D255D60F77CCDB5A46BD4C100A5E80D40D6927D9 ] C:\WINDOWS\ime\sptip.dll
09:07:58.0062 0x053c C:\WINDOWS\ime\sptip.dll - ok
09:07:58.0062 0x053c [ 2E311FFAE5E295044A2889CBDFB53A52, 18517AFC4070E32627985083644B518C5FE48C50B756D5834AC2D229B91B63D5 ] C:\WINDOWS\system32\stlang.dll
09:07:58.0062 0x053c C:\WINDOWS\system32\stlang.dll - ok
09:07:58.0062 0x053c [ 76A9A3CBEADD68CC57CDA5E1D7448235, 4AFD048C5D2306AB8DE46F3AA60AC0213333DDA3B09A9E91F7585DB6EB978EC8 ] C:\WINDOWS\system32\rasmans.dll
09:07:58.0062 0x053c C:\WINDOWS\system32\rasmans.dll - ok
09:07:58.0078 0x053c [ F6F2BFC17069EB335ACCEEF7595F9302, 7434C4353DD2B2E5C8F3690CEF2E1F7E234C2402E6E3BFCBF29DCB1494125F8A ] C:\WINDOWS\system32\mfc42u.dll
09:07:58.0078 0x053c C:\WINDOWS\system32\mfc42u.dll - ok
09:07:58.0078 0x053c [ FE542E0AE02E0A1C95F403FDAB0D9C86, 57CABB168787E2CB8532ADFD6B5E41EF207BEDE14BCC277C07582DAA5A739DD1 ] C:\Program Files\Microsoft Security Client\EppManifest.dll
09:07:58.0078 0x053c C:\Program Files\Microsoft Security Client\EppManifest.dll - ok
09:07:58.0078 0x053c [ A0191A60C2B1DED48D4AC4CACB537B2E, C3AEB570405E2FA820B04BF044E3CB3056746E20FC7CD67C02476FBFA5E9DB8C ] C:\WINDOWS\system32\stacapi.dll
09:07:58.0078 0x053c C:\WINDOWS\system32\stacapi.dll - ok
09:07:58.0078 0x053c [ ACFEE2392503DD5E457363A0510B8BCB, 60CFB4C077409ABA90F7C0B0D5B1A0F0D10DFA2DA3338AAA174C051724039517 ] C:\WINDOWS\system32\msxml3.dll
09:07:58.0078 0x053c C:\WINDOWS\system32\msxml3.dll - ok
09:07:58.0093 0x053c [ 855F6333E3A4DFC6F3C8B0520C261FCD, AF3F5D77FE8AF0BE09E2DD3AFDE1B1167D851D437078025E5CF82D8D0C315B34 ] C:\WINDOWS\system32\msftedit.dll
09:07:58.0093 0x053c C:\WINDOWS\system32\msftedit.dll - ok
09:07:58.0093 0x053c [ D475BBD6FEF8DB2DDE0DA7CCFD2C9042, 8E9D77A216D8DD2BE2B304E60EDF85CE825309E67262FCFF1891AEDE63909599 ] C:\Program Files\Microsoft Security Client\SqmApi.dll
09:07:58.0093 0x053c C:\Program Files\Microsoft Security Client\SqmApi.dll - ok
09:07:58.0093 0x053c [ 3CBA2210FA39C6ED7895634842E930DD, 9AFC6A7E1F936ED3636F89FD49B5C944594F88A5BFB597348AF2FB83DA2E4E40 ] C:\WINDOWS\system32\sensapi.dll
09:07:58.0093 0x053c C:\WINDOWS\system32\sensapi.dll - ok
09:07:58.0109 0x053c [ CC8915DB4E33E8FB29CA0D2DBF75306E, 6319C0580FFDA989A2726814667C330F6A5C864D34B8C87645DD5A98E7A2C7FB ] C:\WINDOWS\system32\webcheck.dll
09:07:58.0109 0x053c C:\WINDOWS\system32\webcheck.dll - ok
09:07:58.0109 0x053c [ 50512FC9B7878E3C2C147BC17326A7DB, 670006280CA98213C3A23B442615FD729C83953795619360F9D2988E56A602D7 ] C:\WINDOWS\system32\stobject.dll
09:07:58.0109 0x053c C:\WINDOWS\system32\stobject.dll - ok
09:07:58.0109 0x053c [ 231A0B0E3BA7ABFE469A8262FAA1FD71, 76F8AE2680438B279081EDFC2728E3785736E82A5C6396AA705BFFFF5C361294 ] C:\WINDOWS\system32\batmeter.dll
09:07:58.0109 0x053c C:\WINDOWS\system32\batmeter.dll - ok
09:07:58.0125 0x053c [ 9DD06F00898AA5CA7E24186EFC8E5E25, 51141D0D07DBC955B63281351D3F17163ACE9A5B08628EA1C82F33FD2913970E ] C:\DOCUME~1\Me\LOCALS~1\Temp\{ABAEEEBB-A711-41A6-B429-38C17930016B}\{14150B11-790A-437C-8645-99E981F02A31}.tmp
09:07:58.0125 0x053c C:\DOCUME~1\Me\LOCALS~1\Temp\{ABAEEEBB-A711-41A6-B429-38C17930016B}\{14150B11-790A-437C-8645-99E981F02A31}.tmp - ok
09:07:58.0125 0x053c [ 91A7771934C0D9D2DA7699D25BB5B348, 154A6EB866AF22B38AEE8DB5A864653FEB15DED69DE26E5B602B7C5056CDDF72 ] C:\DOCUME~1\Me\LOCALS~1\Temp\{ABAEEEBB-A711-41A6-B429-38C17930016B}\{C8127985-A6EB-40A6-8C25-6FC580D22C7E}.tmp
09:07:58.0125 0x053c C:\DOCUME~1\Me\LOCALS~1\Temp\{ABAEEEBB-A711-41A6-B429-38C17930016B}\{C8127985-A6EB-40A6-8C25-6FC580D22C7E}.tmp - ok
09:07:58.0125 0x053c [ 55C11301579A42639736EA3B17A3A588, CBEBDD7C883EF47DB86060AF0F09FD2218161D5FEB0CECEB4A068B9CC63499F8 ] C:\DOCUME~1\Me\LOCALS~1\Temp\{ABAEEEBB-A711-41A6-B429-38C17930016B}\{F71B2ACA-5CA0-41A8-AF78-6E004D5A6692}.tmp
09:07:58.0125 0x053c C:\DOCUME~1\Me\LOCALS~1\Temp\{ABAEEEBB-A711-41A6-B429-38C17930016B}\{F71B2ACA-5CA0-41A8-AF78-6E004D5A6692}.tmp - ok
09:07:58.0125 0x053c [ 798A9E6828997EEF4517ADA8A2259831, 64389FAD94D54E2D43A7292AD3C57CB16F90F2C80EA44099E02D11E19E390A5B ] C:\WINDOWS\system32\wbem\wmiprvse.exe
09:07:58.0125 0x053c C:\WINDOWS\system32\wbem\wmiprvse.exe - ok
09:07:58.0140 0x053c [ E837FDBB92E9873E538395B623F45462, E00D9F1471D9BDE7E53A5F8359B6F3B1606A432D4E94AB6B2A6898AB48E6751B ] C:\WINDOWS\system32\wbem\cimwin32.dll
09:07:58.0140 0x053c C:\WINDOWS\system32\wbem\cimwin32.dll - ok
09:07:58.0140 0x053c [ 4306FA2F1099D7C606139255FDB62B19, 75A0A99B9D8B0E2B39A8093F72DC283D5F2D56FB731C2BA193579DCE916030A0 ] C:\WINDOWS\system32\wbem\framedyn.dll
09:07:58.0140 0x053c C:\WINDOWS\system32\wbem\framedyn.dll - ok
09:07:58.0140 0x053c [ DF471F11CC78BE02FE6BA15F2D94F65B, 9AC230DE58CE40E78AE6872BCF4778B69EEBF17E0E41B1301FF364ABD4737A78 ] C:\DOCUME~1\Me\LOCALS~1\Temp\{ABAEEEBB-A711-41A6-B429-38C17930016B}\{6102A488-5BB3-4814-9E74-50B6E5452E0D}.tmp
09:07:58.0140 0x053c C:\DOCUME~1\Me\LOCALS~1\Temp\{ABAEEEBB-A711-41A6-B429-38C17930016B}\{6102A488-5BB3-4814-9E74-50B6E5452E0D}.tmp - ok
09:07:58.0156 0x053c [ 0FD19BDDD2513874FF6903F717367795, DFAF9C33F993BA26FC84EF66ABC7C483E62762F7E1FC763605A75ACC2E8AA4EE ] C:\DOCUME~1\Me\LOCALS~1\Temp\{ABAEEEBB-A711-41A6-B429-38C17930016B}\{FC25AE7D-19E6-4DC7-8277-198722599D46}.tmp
09:07:58.0156 0x053c C:\DOCUME~1\Me\LOCALS~1\Temp\{ABAEEEBB-A711-41A6-B429-38C17930016B}\{FC25AE7D-19E6-4DC7-8277-198722599D46}.tmp - ok
09:07:58.0156 0x053c [ DD88BBF87A43331A4E99E37F7BF59FDB, 872190F559FA0DD1F711E9FA101BA1AB6E6DE5ED0CCCE1AB7AFE45BC3B78A0F1 ] C:\DOCUME~1\Me\LOCALS~1\Temp\{ABAEEEBB-A711-41A6-B429-38C17930016B}\{E0030888-46BC-4BF7-A3F7-D312DCA07CB2}.tmp
09:07:58.0156 0x053c C:\DOCUME~1\Me\LOCALS~1\Temp\{ABAEEEBB-A711-41A6-B429-38C17930016B}\{E0030888-46BC-4BF7-A3F7-D312DCA07CB2}.tmp - ok
09:07:58.0156 0x053c [ 4261449C1CADA6B007E5C27522946D2B, 11E79D1C529E816CCCAC9266089C77A4DB44676CAEEE25C66D6DB420B18D3ACB ] C:\DOCUME~1\Me\LOCALS~1\Temp\{ABAEEEBB-A711-41A6-B429-38C17930016B}\{B4BA709F-A55C-4708-9A4A-231C6102DA20}.tmp
09:07:58.0156 0x053c C:\DOCUME~1\Me\LOCALS~1\Temp\{ABAEEEBB-A711-41A6-B429-38C17930016B}\{B4BA709F-A55C-4708-9A4A-231C6102DA20}.tmp - ok
09:07:58.0156 0x053c [ 6627AA675A5C1B0330487A02E23F0560, 256AE9BA4273D4247FFAD6099D5A4FC8E98EDB27293AC8CAF7A571EB3890FAA7 ] C:\DOCUME~1\Me\LOCALS~1\Temp\{ABAEEEBB-A711-41A6-B429-38C17930016B}\{94BE86BD-DB17-4D05-B88C-A7C0E3EE558A}.tmp
09:07:58.0156 0x053c C:\DOCUME~1\Me\LOCALS~1\Temp\{ABAEEEBB-A711-41A6-B429-38C17930016B}\{94BE86BD-DB17-4D05-B88C-A7C0E3EE558A}.tmp - ok
09:07:58.0171 0x053c [ 723B834A07F7DF7DE4CEB637D57ACEA3, B42867045DD3FB7682CDBD133970421010F0F14125E4992C73657CABA4659250 ] C:\DOCUME~1\Me\LOCALS~1\Temp\{ABAEEEBB-A711-41A6-B429-38C17930016B}\{111E33A3-7822-4491-9C43-0F76DC5CDF12}.tmp
09:07:58.0171 0x053c C:\DOCUME~1\Me\LOCALS~1\Temp\{ABAEEEBB-A711-41A6-B429-38C17930016B}\{111E33A3-7822-4491-9C43-0F76DC5CDF12}.tmp - ok
09:07:58.0171 0x053c [ C1DE893FAF6D7F6CFB479A1F61835482, AD5FA3CE73777704C67C933691F1F068E1A7FF545F728B97574F9C33AC4BBC01 ] C:\DOCUME~1\Me\LOCALS~1\Temp\{ABAEEEBB-A711-41A6-B429-38C17930016B}\{9B41B9D2-ED06-4AB1-9017-EEBBE2EFE0C6}.tmp
09:07:58.0171 0x053c C:\DOCUME~1\Me\LOCALS~1\Temp\{ABAEEEBB-A711-41A6-B429-38C17930016B}\{9B41B9D2-ED06-4AB1-9017-EEBBE2EFE0C6}.tmp - ok
09:07:58.0171 0x053c [ 317C54DCAB9EE29CD4B9F55D197A90D1, 050B753DD504324CA6F36DD825B588F8DBD586440FCDA438C49BFD11D6F176EA ] C:\WINDOWS\system32\msisip.dll
09:07:58.0171 0x053c C:\WINDOWS\system32\msisip.dll - ok
09:07:58.0187 0x053c [ 559D9CBFC29DEE2773B28D38851683BA, 91E104EA78222F8968FC887A4BBA1D68B8BE1A9447AE59CE635CB9E62774D67A ] C:\Program Files\Microsoft Silverlight\xapauthenticodesip.dll
09:07:58.0187 0x053c C:\Program Files\Microsoft Silverlight\xapauthenticodesip.dll - ok
09:07:58.0187 0x053c [ 3A6D465F379E5C815F4AD565391E654C, EE40580ED71282B1D5D95752DD843DCC30689196B22051AF8CDF6127B985411E ] C:\WINDOWS\system32\wshext.dll
09:07:58.0187 0x053c C:\WINDOWS\system32\wshext.dll - ok
09:07:58.0187 0x053c [ EF01D104449CC654FDCF423C92BD8846, 019B733AA058D043D45FE0A8C4B3E457EB204BFCF6844683AA544095D77C2142 ] C:\Program Files\Mozilla Firefox\firefox.exe
09:07:58.0187 0x053c C:\Program Files\Mozilla Firefox\firefox.exe - ok
09:07:58.0203 0x053c [ 67EC459E42D3081DD8FD34356F7CAFC1, 1221A09484964A6F38AF5E34EE292B9AFEFCCB3DC6E55435FD3AAF7C235D9067 ] C:\Program Files\Mozilla Firefox\msvcr100.dll
09:07:58.0203 0x053c C:\Program Files\Mozilla Firefox\msvcr100.dll - ok
09:07:58.0203 0x053c [ 03E9314004F504A14A61C3D364B62F66, A3BA6421991241BEA9C8334B62C3088F8F131AB906C3CC52113945D05016A35F ] C:\Program Files\Mozilla Firefox\msvcp100.dll
09:07:58.0203 0x053c C:\Program Files\Mozilla Firefox\msvcp100.dll - ok
09:07:58.0203 0x053c [ 36722E8B5329EE4089F412B248122372, F98574A3070D0BBA808904B6EEC37A96027A1B19AB11124C96CFF09D2A87C3C5 ] C:\Program Files\Mozilla Firefox\mozglue.dll
09:07:58.0203 0x053c C:\Program Files\Mozilla Firefox\mozglue.dll - ok
09:07:58.0203 0x053c [ B15FB835D69B469B7465C03D1D830B19, ADF22813F0569B71BD623E672CE6DBF522822EADC781CE68EA594EFA4383599B ] C:\Program Files\Mozilla Firefox\nss3.dll
09:07:58.0203 0x053c C:\Program Files\Mozilla Firefox\nss3.dll - ok
09:07:58.0218 0x053c [ D585CB527E22B8A7F301725F9DB80F10, 6C82D157A1725DB4FA9D214445FE026F1032279989647AF36D598F4D5583BC3E ] C:\Program Files\Mozilla Firefox\mozjs.dll
09:07:58.0218 0x053c C:\Program Files\Mozilla Firefox\mozjs.dll - ok
09:07:58.0218 0x053c [ 3AD07CAA265C69A747A1AF7B6FC15C49, 7CE1A9FFEBBB3EE843A85469B6F57497B67C438B8780249BF7A7868E406DEAB9 ] C:\Program Files\Mozilla Firefox\mozalloc.dll
09:07:58.0218 0x053c C:\Program Files\Mozilla Firefox\mozalloc.dll - ok
09:07:58.0218 0x053c [ 98DED4AE26279452B33B44DC921B25F5, 61E2A0057218D2891C0A95DFD2D593B1F136A548C0DF57EA6090025ACFD9A4D1 ] C:\Program Files\Mozilla Firefox\gkmedias.dll
09:07:58.0218 0x053c C:\Program Files\Mozilla Firefox\gkmedias.dll - ok
09:07:58.0218 0x053c [ 1D845821F5ADB076831DE4C2818F858B, 5F1F18042E6B16BC149F2B0F22ECE3D3668E846C843F016D33C9E6C60E2D64C6 ] C:\WINDOWS\system32\usp10.dll
09:07:58.0218 0x053c C:\WINDOWS\system32\usp10.dll - ok
09:07:58.0234 0x053c [ 1CBF73FF9492A3DE6FC501901932AD7A, 65FF206751115A93CE2F208D3EB80D6B4391024E16C92A338B42995BB5BC6647 ] C:\Program Files\Mozilla Firefox\xul.dll
09:07:58.0234 0x053c C:\Program Files\Mozilla Firefox\xul.dll - ok
09:07:58.0234 0x053c [ B6E6F3F5B63053D5DC1F4EE32992492F, 089F9C92B677A138BABA4817624E8CA49B7E507B7D6FA0B1A3B4302B354B5C7E ] C:\WINDOWS\system32\dbghelp.dll
09:07:58.0234 0x053c C:\WINDOWS\system32\dbghelp.dll - ok
09:07:58.0234 0x053c [ 5572F661A900084D519C97B229C500B6, 7D699BC1CACBECE18365EC84D543DA39EBFA74CCDCAB6F20A00EEC93481B480C ] C:\Program Files\Mozilla Firefox\browser\components\browsercomps.dll
09:07:58.0234 0x053c C:\Program Files\Mozilla Firefox\browser\components\browsercomps.dll - ok
09:07:58.0250 0x053c [ 776F9A769B6CAF69522FCA64A8B04D25, 0FC88E7AE936D959CEAD2E06483ED85C5177D1F5E749E5D151ACD9E31F983AD3 ] C:\Program Files\Mozilla Firefox\softokn3.dll
09:07:58.0250 0x053c C:\Program Files\Mozilla Firefox\softokn3.dll - ok
09:07:58.0250 0x053c [ DF73580DD14B472C8512CC19AFE6A2F6, E1D5A8D50D0DD1B7FB455384C11694B596B6255FA6F225B66276686360ED46BC ] C:\Program Files\Mozilla Firefox\nssdbm3.dll
09:07:58.0250 0x053c C:\Program Files\Mozilla Firefox\nssdbm3.dll - ok
09:07:58.0250 0x053c [ BEC21DB9CB33109E95F28E6CBEA7C493, B3054FA538850945A01DD8EDFDAAA64BC1699C5C4CEC1338517DA6F70714D050 ] C:\Program Files\Mozilla Firefox\freebl3.dll
09:07:58.0250 0x053c C:\Program Files\Mozilla Firefox\freebl3.dll - ok
09:07:58.0265 0x053c [ C271A6D9DC09229FACCB66F899C49F9B, 2FF1BF3136EBF430B564F6F6C4AB695BC0B95FA6401BF56BF7CB1BEB643279AB ] C:\Program Files\Mozilla Firefox\nssckbi.dll
09:07:58.0265 0x053c C:\Program Files\Mozilla Firefox\nssckbi.dll - ok
09:07:58.0265 0x053c [ C14350FC0D47D806699C4F907FC6785B, A8862B47A74F5FB03C9916A42B986D9B352549ED486AD2B9DAD405A98B5564B3 ] C:\WINDOWS\system32\cryptnet.dll
09:07:58.0265 0x053c C:\WINDOWS\system32\cryptnet.dll - ok
09:07:58.0265 0x053c [ B60DDDD2D63CE41CB8C487FCFBB6419E, B18A0D4BEBA606BF30F5010BA3C72ABAFAC80D5F303A8BFFB24D7F7B78B786E6 ] C:\Program Files\Internet Explorer\iexplore.exe
09:07:58.0265 0x053c C:\Program Files\Internet Explorer\iexplore.exe - ok
09:07:58.0265 0x053c [ AF8841FEF8DE40D36E77C6662843EDAE, E7FAE0E448B7123CE4BBD20D5EBFCD8690F6902D7007C39733658EAD65A0A1DE ] C:\WINDOWS\AppPatch\aclayers.dll
09:07:58.0265 0x053c C:\WINDOWS\AppPatch\aclayers.dll - ok
09:07:58.0281 0x053c [ 2DE1190196EE9555DB548A57622022EB, 89DBC777BE06D008AABEDAC61AFC11B4FF7ABCA86C205109ED9D34D21C0B5146 ] C:\WINDOWS\system32\drprov.dll
09:07:58.0281 0x053c C:\WINDOWS\system32\drprov.dll - ok
09:07:58.0281 0x053c [ AC5DF42FE314C1446B1DAD237BFCFFE0, FD53D9BCC619ED7AE4B7C29B7D457A2F61D6D340841A4E030329D7032C306AB6 ] C:\WINDOWS\system32\netui0.dll
09:07:58.0281 0x053c C:\WINDOWS\system32\netui0.dll - ok
09:07:58.0281 0x053c [ 36468087E22C57A83DF758B3F90DF73F, F6898D07CEE4F528A9F17A231CCB5E38F826A0C1926EFBF35ECCA06E0E8EE565 ] C:\WINDOWS\system32\ntlanman.dll
09:07:58.0281 0x053c C:\WINDOWS\system32\ntlanman.dll - ok
09:07:58.0296 0x053c [ ED5A816D8E11E03F1937AC3C56826EE4, D01525B5BD9F9DDF149B78706C6C2F5AE26F5337F897C1B8763DBC67AB64F875 ] C:\WINDOWS\system32\netui1.dll
09:07:58.0296 0x053c C:\WINDOWS\system32\netui1.dll - ok
09:07:58.0296 0x053c [ FB8F8EEC8D9C2157789472DD61CDC78B, D5306081621FFEFF585FAD292E60207E1BCB4EA67367E12872AF73C464110C68 ] C:\WINDOWS\system32\davclnt.dll
09:07:58.0296 0x053c C:\WINDOWS\system32\davclnt.dll - ok
09:07:58.0296 0x053c [ FF3477C03BE7201C294C35F684B3479F, D6246521539BA4ACD022D26983182F5E323D2EF1EA7C54265A248C43A1CE5202 ] C:\WINDOWS\system32\termsrv.dll
09:07:58.0296 0x053c C:\WINDOWS\system32\termsrv.dll - ok
09:07:58.0296 0x053c [ DF6551E4C4C46655A0C76194F1FCEA5D, F3895AE4B36BC85C458EDC85FBD1F5AB5C33913CD91C60A65083DC0BDD037BF5 ] C:\WINDOWS\system32\icaapi.dll
09:07:58.0296 0x053c C:\WINDOWS\system32\icaapi.dll - ok
09:07:58.0312 0x053c [ 2D65D56C2F8B6CC5EBFF8E7200C30304, 10CD5FF00D110D1AE2313DBCBDB17C2B9DFF930F5DAD65C35C08FCF9C152C053 ] C:\WINDOWS\system32\mstlsapi.dll
09:07:58.0312 0x053c C:\WINDOWS\system32\mstlsapi.dll - ok
09:07:58.0312 0x053c [ 83BA5E873164A3711B44052F58C8FE9F, 7271ADE7A615E6F33375D23DACC32A8A652AF18CAAF8439F018E32E32E222F5A ] C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscoreei.dll
09:07:58.0312 0x053c C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscoreei.dll - ok
09:07:58.0312 0x053c [ 3CB78C17BB664637787C9A1C98F79C38, F35C31F6B7F366CB949D1044B357C76DEC9170441C5E559802794F62B72FD255 ] C:\WINDOWS\system32\tapisrv.dll
09:07:58.0312 0x053c C:\WINDOWS\system32\tapisrv.dll - ok
09:07:58.0328 0x053c [ F80A415EF82CD06FFAF0D971528EAD38, 524D9E9201572929522F6805011783711B7C0F76308B924C89CF75F4B7A1FDF3 ] C:\WINDOWS\system32\drivers\http.sys
09:07:58.0328 0x053c C:\WINDOWS\system32\drivers\http.sys - ok
09:07:58.0328 0x053c [ F92E1076C42FCD6DB3D72D8CFE9816D5, 94135ACF2D9426BB78E4522429120B03D94B541422C277B9ACA31410874A464C ] C:\WINDOWS\system32\wscntfy.exe
09:07:58.0328 0x053c C:\WINDOWS\system32\wscntfy.exe - ok
09:07:58.0328 0x053c [ 0A5679B3714EDAB99E357057EE88FCA6, 01E1A101FFF48402C77E385A78FEF27876E04533B60EB1C18558A737E57E5FA8 ] C:\WINDOWS\system32\ssdpsrv.dll
09:07:58.0328 0x053c C:\WINDOWS\system32\ssdpsrv.dll - ok
09:07:58.0328 0x053c [ 30DEAF54A9755BB8546168CFE8A6B5E1, 3936228CD3125C763ABFCB93E86E4B43838202BCC0913A28E84AC0263B43EE0D ] C:\WINDOWS\system32\imapi.exe
09:07:58.0328 0x053c C:\WINDOWS\system32\imapi.exe - ok
09:07:58.0343 0x053c [ 5F7692CEC90E2E9AA32CD58321E234B8, 0F76BD005B6FC51EE8B2D167C5E792947F8A8FF1A4FBC7F9CB3572BEAFC12639 ] C:\WINDOWS\system32\rastapi.dll
09:07:58.0343 0x053c C:\WINDOWS\system32\rastapi.dll - ok
09:07:58.0343 0x053c [ 8BCD11D38FCE43A519246A91CC40DE6A, 981EE4B29FDE6DB58FAA17BCCA66DB8143D693D91A00B7519F01ABBAE11AA580 ] C:\WINDOWS\system32\security.dll
09:07:58.0343 0x053c C:\WINDOWS\system32\security.dll - ok
09:07:58.0343 0x053c [ AACE07FE34FADDDF973CE068A6424957, A14DC612762F56EE3CF9FBDF58E9476400F2CD9513319AD90E3818B2DB9F4580 ] C:\WINDOWS\system32\unimdm.tsp
09:07:58.0343 0x053c C:\WINDOWS\system32\unimdm.tsp - ok
09:07:58.0359 0x053c [ 995252FCC4692B5B97EE17D596C9386E, E0EC754ADC0976BCF88C4777E788A67844428DF0B828D8EE7B8A039C763DFFDD ] C:\WINDOWS\system32\uniplat.dll
09:07:58.0359 0x053c C:\WINDOWS\system32\uniplat.dll - ok
09:07:58.0359 0x053c [ 8C515081584A38AA007909CD02020B3D, A5E13CA10F702928E0DE84C74D0EA8ACCB117FD76FBABC55220C75C4FFD596DC ] C:\WINDOWS\system32\alg.exe
09:07:58.0359 0x053c C:\WINDOWS\system32\alg.exe - ok
09:07:58.0359 0x053c [ 19AE6CBA05B9005698A6DEDCC88F202E, 047016D4989FB1460BE11C0C22E10858E3D6598EBA31C98B8489413C1A350A9C ] C:\WINDOWS\system32\unimdmat.dll
09:07:58.0359 0x053c C:\WINDOWS\system32\unimdmat.dll - ok
09:07:58.0375 0x053c [ FE4A73CDBC882A19D070F1C01586E81A, EAF450BA7E168EA41EAA7556E14CBDFCF1B96D7E57A17EC20C3BECFDA9FDFD9A ] C:\WINDOWS\system32\modemui.dll
09:07:58.0375 0x053c C:\WINDOWS\system32\modemui.dll - ok
09:07:58.0375 0x053c [ 76EC97C5068D3D9FAA7774B0F659D31A, 4E2EF0DC0B05187A6154D4D672B7530E14103D7D1EDF1BDE960F9B988B5EC41F ] C:\WINDOWS\system32\kmddsp.tsp
09:07:58.0375 0x053c C:\WINDOWS\system32\kmddsp.tsp - ok
09:07:58.0375 0x053c [ C730F70351D950DDA7388C9A9763CF54, 7A9D265E4D2F76EF131D01C2EE1CDC19A8E5FDCAF97649CC562E8114B92D411F ] C:\WINDOWS\system32\wbem\wmipcima.dll
09:07:58.0375 0x053c C:\WINDOWS\system32\wbem\wmipcima.dll - ok
09:07:58.0375 0x053c [ 4589963D84F2984FA5949A72162BA4F4, BC927EC7D0EBDBD2B4780D892D41739840DD31B0FF8C79013014925F52860808 ] C:\WINDOWS\system32\ndptsp.tsp
09:07:58.0375 0x053c C:\WINDOWS\system32\ndptsp.tsp - ok
09:07:58.0390 0x053c [ 8B8A45DF7CEF36D93C7BD3E4C84003B8, 7E3A0204FCDD5DFFB3B352451232DD86F8298F83918533D874C122A2EF29081B ] C:\WINDOWS\system32\ipconf.tsp
09:07:58.0390 0x053c C:\WINDOWS\system32\ipconf.tsp - ok
09:07:58.0390 0x053c [ 8BC2B02DC11C98D14CEE43B8E8393FF3, 1314C33E2E5F11B361CF1E88884B2A9862F8BAB1C498F48DC4C49ACDB28D4732 ] C:\WINDOWS\system32\h323.tsp
09:07:58.0390 0x053c C:\WINDOWS\system32\h323.tsp - ok
09:07:58.0390 0x053c [ 6B552ED3BEE5AA3C4560478FF779BA98, 1778F0B7200F93EB255E1F215BB5FBEAA0DBF63BC60B286D76120F8A787995C4 ] C:\WINDOWS\system32\hidphone.tsp
09:07:58.0390 0x053c C:\WINDOWS\system32\hidphone.tsp - ok
09:07:58.0406 0x053c [ D0545A010ED2259A740C8414899A938F, 5E6FD116C6F65241A075E4469C5AD1967B8D66DE11E223F7A3F00139FB0160C3 ] C:\WINDOWS\system32\rasppp.dll
09:07:58.0406 0x053c C:\WINDOWS\system32\rasppp.dll - ok
09:07:58.0406 0x053c [ B464BD425D5D09ABE4192234D1577B22, DF7333CAF299A18DEA43ACEF0A6D8C3F79918D1B3FCE437FDED6B54F95C106B9 ] C:\WINDOWS\system32\ntlsapi.dll
09:07:58.0406 0x053c C:\WINDOWS\system32\ntlsapi.dll - ok
09:07:58.0406 0x053c [ A655C88AA555BB8EF8957BD29408827F, 6CD48D32D1DFF68FEED5CC20D0DE12729101381EB8A6774408566C14E0B18FFB ] C:\WINDOWS\system32\rasqec.dll
09:07:58.0406 0x053c C:\WINDOWS\system32\rasqec.dll - ok
09:07:58.0406 0x053c [ 401A8C0BE0BAA7D7A470F0942244152D, EC21ED13E526617697CD8E6D79FC706CBDA0AF36C02C05B39E8603B217E406BC ] C:\WINDOWS\system32\rasdlg.dll
09:07:58.0406 0x053c C:\WINDOWS\system32\rasdlg.dll - ok
09:07:58.0421 0x053c [ 5EB87BA0B93CA7E894FC8002E3CE4C2A, 3736FA95578D4833CDC2BDEE10CBBEAC6B4D4A8E3D89E50E8723BBA312FFE4F5 ] C:\Program Files\Internet Explorer\sqmapi.dll
09:07:58.0421 0x053c C:\Program Files\Internet Explorer\sqmapi.dll - ok
09:07:58.0421 0x053c [ 1E4E7EA0CC0171FC322F87BA46945224, 9D5027D1587630C381233A0F5E517329E026F97DB2053A7D123CCB9574D04B36 ] C:\Program Files\Internet Explorer\xpshims.dll
09:07:58.0421 0x053c C:\Program Files\Internet Explorer\xpshims.dll - ok
09:07:58.0421 0x053c [ 11734790410900D2CD6B7839020E4DD9, D457755F13909BC06B9A62CCC41AE369D97870663E77E149B49CF50DF025390C ] C:\WINDOWS\system32\ieui.dll
09:07:58.0421 0x053c C:\WINDOWS\system32\ieui.dll - ok
09:07:58.0437 0x053c [ 4F47A5B11107C52E7E70E3DA6DCF1EF7, AA35F215ABF048FDA38759C08132015080D2C0AE52321EE2D814DBE45CEEBA43 ] C:\Program Files\Internet Explorer\ieproxy.dll
09:07:58.0437 0x053c C:\Program Files\Internet Explorer\ieproxy.dll - ok
09:07:58.0437 0x053c [ E11457C66FDD966EE415FBBC6D9BE643, 9CAF889C740D79F56F1CE817DA7C8F2BAEE740212B578DAC509EA2C8BA2D790E ] C:\WINDOWS\system32\msimtf.dll
09:07:58.0437 0x053c C:\WINDOWS\system32\msimtf.dll - ok
09:07:58.0437 0x053c [ BEA4AEE74FEF171EB61DE1BAD8FAF427, 80B525C319D24CCA669D147D1010D66B9516347DFB062612374EFF7C368C2414 ] C:\WINDOWS\system32\xmllite.dll
09:07:58.0437 0x053c C:\WINDOWS\system32\xmllite.dll - ok
09:07:58.0437 0x053c [ C88C65DF1ED4DFD34CFBD11CDFE519A3, 1CD0B01D00F515F7866CDDBCDD3B68C5F71DA8EA7EC468BB4CF2D7709965F593 ] C:\WINDOWS\system32\wucltui.dll
09:07:58.0437 0x053c C:\WINDOWS\system32\wucltui.dll - ok
09:07:58.0453 0x053c [ C31DD4CEC06D2908AE5F212A0B13805B, 5CCBA4EECAE6E90E1DBF3AA558F64329C6E698C303D882CFEB8620D0816BC9A6 ] C:\WINDOWS\system32\wuaucpl.cpl
09:07:58.0453 0x053c C:\WINDOWS\system32\wuaucpl.cpl - ok
09:07:58.0453 0x053c [ BBDFDBEAD1B7A1CFD44BFFFD177FB627, F2BD23BE0A349E0A9FFC7C43949186D27C31C5B44008ED461073B80046DC7C55 ] C:\WINDOWS\system32\mucltui.dll
09:07:58.0453 0x053c C:\WINDOWS\system32\mucltui.dll - ok
09:07:58.0453 0x053c [ 579017CF9C919429188190DAE79BB8FC, F42DE38F770FA2FBD8DFC9F2486B8E311FE9372D06A4F24270A168517CAC752D ] C:\WINDOWS\system32\mshtml.dll
09:07:58.0453 0x053c C:\WINDOWS\system32\mshtml.dll - ok
09:07:58.0468 0x053c [ 2ACCD352451EC0F99AF2AD9DB6DB4439, 7EFFA9D4561674633B2FFB35F629947B061AFE5DA756DA6D02E0584FCE221445 ] C:\WINDOWS\system32\msls31.dll
09:07:58.0468 0x053c C:\WINDOWS\system32\msls31.dll - ok
09:07:58.0468 0x053c [ 0689622E6484934EB6E5F4D3A96311F9, A7D417556512F0FB129939F70835529F3EAC3D5ACBECE5B960A97C2605AF0833 ] C:\WINDOWS\system32\jscript.dll
09:07:58.0468 0x053c C:\WINDOWS\system32\jscript.dll - ok
09:07:58.0468 0x053c [ 79BBA6F61E70793CFC4058832ABBDC94, 3DCBCD62467464678CB373DA5CEA473CEC9BFDA2E1D71979ABBDBCDA0C013618 ] C:\WINDOWS\system32\iepeers.dll
09:07:58.0468 0x053c C:\WINDOWS\system32\iepeers.dll - ok
09:07:58.0468 0x053c [ 42B928FC8518D793BF7A5EAFC57B1D8B, 22C194288DB7FE6902E4BE183856A07456B764D3B123C346A63F49AE55B4EF88 ] C:\WINDOWS\system32\imgutil.dll
09:07:58.0468 0x053c C:\WINDOWS\system32\imgutil.dll - ok
09:07:58.0484 0x053c [ E5FA1B044DAC5F6F600A1742D73F6936, 8B9FC6C6388316854F101B99F0C15597DAC20CE43A4B9B151748F98070E9DF8A ] C:\WINDOWS\system32\pngfilt.dll
09:07:58.0484 0x053c C:\WINDOWS\system32\pngfilt.dll - ok
09:07:58.0484 0x053c [ 5E1A0476E009A1930A524DFF4CA13982, 02635287787412C2075F48A1BBA60B2705C13F5E0D82F82C8C048ED9D8AB5F26 ] C:\WINDOWS\system32\dxtrans.dll
09:07:58.0484 0x053c C:\WINDOWS\system32\dxtrans.dll - ok
09:07:58.0484 0x053c [ A340CD71EB535A3DD751B5F28723E50C, AC19738C9255B6B48D20DDCF384BDDAEE0B3EF50F2297512E1750901DA9CC72A ] C:\WINDOWS\system32\ddraw.dll
09:07:58.0484 0x053c C:\WINDOWS\system32\ddraw.dll - ok
09:07:58.0500 0x053c [ A47F6A13202AA54541CA46D6CED79F5F, D1FA5CDA2256F3B10E9306673A0E29EE7693548E29D5665BBEA2D42927D061F0 ] C:\WINDOWS\system32\ddrawex.dll
09:07:58.0500 0x053c C:\WINDOWS\system32\ddrawex.dll - ok
09:07:58.0500 0x053c [ D8B91D94ECB123862B390FDE3250D3BB, DB2959E80684627ADD72CD895F8B4CBA56CFEBF60BFD60719E400181DD2CE979 ] C:\WINDOWS\system32\dciman32.dll
09:07:58.0500 0x053c C:\WINDOWS\system32\dciman32.dll - ok
09:07:58.0500 0x053c [ 057D53F1490598D41D9D4DEE9A92B0B1, 3B085C27A91BF708B475250630545ECF0D57C454F8C4B21FDD40C81C0B9621B6 ] C:\WINDOWS\system32\dxtmsft.dll
09:07:58.0500 0x053c C:\WINDOWS\system32\dxtmsft.dll - ok
09:07:58.0500 0x053c [ B48E7B4C95CCE0C6C0C3F7B1A97FBC8F, E3B0CEBA4408D1F4DC26ED63F746C330A6D42D057EB6AF12E1C88C956C37412A ] C:\WINDOWS\system32\wzcdlg.dll
09:07:58.0500 0x053c C:\WINDOWS\system32\wzcdlg.dll - ok
09:07:58.0515 0x053c [ 01D09C1B51B74590FBFAC5ED908E5E95, 387E93C3EAC26256FE908A7C21C63592CD68CF5FEAD2888EF6403DA95FF016C4 ] C:\WINDOWS\system32\Macromed\Flash\Flash32_11_9_900_117.ocx
09:07:58.0515 0x053c C:\WINDOWS\system32\Macromed\Flash\Flash32_11_9_900_117.ocx - ok
09:07:58.0515 0x053c [ 4D83ED8BDDEC431FC8AD907B47CFB6E3, 4687B8DD40CA9B83AA5CE1268F62476EBA886C10CC8B7B5AB716E4C56AF1EEAF ] C:\WINDOWS\system32\dsound.dll
09:07:58.0515 0x053c C:\WINDOWS\system32\dsound.dll - ok
09:07:58.0515 0x053c [ AA0507F0516A4DFF1B1279AB4A2ABB37, 8EBC13ED4D96F208C5DF940EE51A4D06B64DD789425301B466C9FCD1EF78C64D ] C:\WINDOWS\system32\dinput8.dll
09:07:58.0515 0x053c C:\WINDOWS\system32\dinput8.dll - ok
09:07:58.0531 0x053c [ 56ADB11F7D4D0816C0BE1E701C1B5E52, 8986E38F7CB4DEED83B0614A8BA37B20C3C30B7A3EFD1A17A9D0B3EBFF58AE8B ] C:\WINDOWS\system32\d3dim700.dll
09:07:58.0531 0x053c C:\WINDOWS\system32\d3dim700.dll - ok
09:07:58.0531 0x053c [ F5CF984927625B23757C83B0E3AACFA9, ADDAB91A54EE724F832EE564FC7547B1A2FD80A250CA695C490B97E9012B7E38 ] C:\WINDOWS\system32\wbem\wmiadap.exe
09:07:58.0531 0x053c C:\WINDOWS\system32\wbem\wmiadap.exe - ok
09:07:58.0531 0x053c [ 6358C181BF021970A897C1FAB0ECF5D2, E85170DA25D32659AB321F6CB2D8707D0B08503FF481F0BF714AD79969223F46 ] C:\WINDOWS\system32\loadperf.dll
09:07:58.0531 0x053c C:\WINDOWS\system32\loadperf.dll - ok
09:07:58.0546 0x053c [ 960F6D3CD9A1BA6435D7AADD102B297F, 5360EA5288B3B5A9FC5B728A7D049299C6F93CD050A84CAE0946B0152F2D1348 ] C:\WINDOWS\system32\wbem\wmiprov.dll
09:07:58.0546 0x053c C:\WINDOWS\system32\wbem\wmiprov.dll - ok
09:07:58.0671 0x053c AV detected via SS1: Microsoft Security Essentials, 4.3.0219.0, enabled, updated
09:07:58.0671 0x053c Win FW state via NFM: enabled
09:08:01.0187 0x053c ============================================================
09:08:01.0187 0x053c Scan finished
09:08:01.0187 0x053c ============================================================
09:08:01.0203 0x0478 Detected object count: 2
09:08:01.0203 0x0478 Actual detected object count: 2
09:09:04.0156 0x0478 cercsr6 ( UnsignedFile.Multi.Generic ) - skipped by user
09:09:04.0156 0x0478 cercsr6 ( UnsignedFile.Multi.Generic ) - User select action: Skip
09:09:04.0156 0x0478 PrismXL ( UnsignedFile.Multi.Generic ) - skipped by user
09:09:04.0156 0x0478 PrismXL ( UnsignedFile.Multi.Generic ) - User select action: Skip

#4
Sherry0004008

Posted 06 November 2013 - 09:16 AM

New Member

Topic Starter
Member
4 posts

08:58:03.0942 3780 TDSS rootkit removing tool 2.8.16.0 Feb 11 2013 18:50:42
08:58:12.0098 3780 Perform update action was selected
08:58:12.0098 3764 Deinitialize success
08:59:37.0303 0x0bb0 TDSS rootkit removing tool 3.0.0.16 Nov 1 2013 15:53:38
08:59:44.0444 0x0bb0 ============================================================
08:59:44.0444 0x0bb0 Current date / time: 2013/11/06 08:59:44.0444
08:59:44.0444 0x0bb0 SystemInfo:
08:59:44.0444 0x0bb0
08:59:44.0444 0x0bb0 OS Version: 5.1.2600 ServicePack: 3.0
08:59:44.0444 0x0bb0 Product type: Workstation
08:59:44.0444 0x0bb0 ComputerName: LAPTOP
08:59:44.0444 0x0bb0 UserName: Me
08:59:44.0444 0x0bb0 Windows directory: C:\WINDOWS
08:59:44.0444 0x0bb0 System windows directory: C:\WINDOWS
08:59:44.0444 0x0bb0 Processor architecture: Intel x86
08:59:44.0444 0x0bb0 Number of processors: 2
08:59:44.0444 0x0bb0 Page size: 0x1000
08:59:44.0444 0x0bb0 Boot type: Normal boot
08:59:44.0444 0x0bb0 ============================================================
08:59:50.0100 0x0bb0 System UUID: {B1D1672D-DC30-3C7E-5DDB-F7B67289F004}
08:59:52.0100 0x0bb0 Drive \Device\Harddisk0\DR0 - Size: 0x1BF2976000 (111.79 Gb), SectorSize: 0x200, Cylinders: 0x3901, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000054
08:59:52.0131 0x0bb0 ============================================================
08:59:52.0131 0x0bb0 \Device\Harddisk0\DR0:
08:59:52.0131 0x0bb0 MBR partitions:
08:59:52.0131 0x0bb0 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0xDF8F8C1
08:59:52.0131 0x0bb0 ============================================================
08:59:52.0178 0x0bb0 C: <-> \Device\Harddisk0\DR0\Partition1
08:59:52.0178 0x0bb0 ============================================================
08:59:52.0178 0x0bb0 Initialize success
08:59:52.0178 0x0bb0 ============================================================
09:00:49.0758 0x0db0 Deinitialize success
09:02:53.0593 0x0634 TDSS rootkit removing tool 3.0.0.16 Nov 1 2013 15:53:38
09:02:55.0593 0x0634 ============================================================
09:02:55.0593 0x0634 Current date / time: 2013/11/06 09:02:55.0593
09:02:55.0593 0x0634 SystemInfo:
09:02:55.0593 0x0634
09:02:55.0593 0x0634 OS Version: 5.1.2600 ServicePack: 3.0
09:02:55.0593 0x0634 Product type: Workstation
09:02:55.0593 0x0634 ComputerName: LAPTOP
09:02:55.0593 0x0634 UserName: Me
09:02:55.0593 0x0634 Windows directory: C:\WINDOWS
09:02:55.0593 0x0634 System windows directory: C:\WINDOWS
09:02:55.0593 0x0634 Processor architecture: Intel x86
09:02:55.0593 0x0634 Number of processors: 2
09:02:55.0593 0x0634 Page size: 0x1000
09:02:55.0593 0x0634 Boot type: Normal boot
09:02:55.0593 0x0634 ============================================================
09:02:55.0593 0x0634 BG loaded
09:02:57.0187 0x0634 System UUID: {B1D1672D-DC30-3C7E-5DDB-F7B67289F004}
09:02:58.0921 0x0634 Drive \Device\Harddisk0\DR0 - Size: 0x1BF2976000 (111.79 Gb), SectorSize: 0x200, Cylinders: 0x3901, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000054
09:02:58.0968 0x0634 ============================================================
09:02:58.0968 0x0634 \Device\Harddisk0\DR0:
09:02:58.0968 0x0634 MBR partitions:
09:02:58.0968 0x0634 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0xDF8F8C1
09:02:58.0968 0x0634 ============================================================
09:02:59.0046 0x0634 C: <-> \Device\Harddisk0\DR0\Partition1
09:02:59.0046 0x0634 ============================================================
09:02:59.0046 0x0634 Initialize success
09:02:59.0046 0x0634 ============================================================
09:06:54.0453 0x053c ============================================================
09:06:54.0453 0x053c Scan started
09:06:54.0453 0x053c Mode: Manual; SigCheck; TDLFS;
09:06:54.0453 0x053c ============================================================
09:06:54.0453 0x053c KSN ping started
09:06:57.0156 0x053c KSN ping finished: true
09:06:58.0703 0x053c ================ Scan services =============================
09:06:58.0984 0x053c Abiosdsk - ok
09:06:59.0000 0x053c abp480n5 - ok
09:06:59.0078 0x053c [ 8FD99680A539792A30E97944FDAECF17, 594F8E0C3695400B0C09A797AF6BDFAC6F750ECD67D0EE803914C572B1DCC43C ] ACPI C:\WINDOWS\system32\DRIVERS\ACPI.sys
09:07:00.0609 0x053c ACPI - ok
09:07:00.0671 0x053c [ 9859C0F6936E723E4892D7141B1327D5, 5E8F6A2FC4DF2E5E92A1D66ECC2810E08B42B64E9CD0DF4AD3F78EA8558B90AF ] ACPIEC C:\WINDOWS\system32\DRIVERS\ACPIEC.sys
09:07:00.0859 0x053c ACPIEC - ok
09:07:01.0031 0x053c [ A283108E14F3970432C21AF4C0CB1BCE, 1D3219EF916D54232838870EDE557296AACB714B456ED0AAE0DE3CE3822F4643 ] AdobeFlashPlayerUpdateSvc C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
09:07:01.0062 0x053c AdobeFlashPlayerUpdateSvc - ok
09:07:01.0062 0x053c adpu160m - ok
09:07:01.0109 0x053c [ 8BED39E3C35D6A489438B8141717A557, 1B5796E56B0927360CE0759641B1151828BC0A9E45620D2B2D880491F5CE33D0 ] aec C:\WINDOWS\system32\drivers\aec.sys
09:07:01.0281 0x053c aec - ok
09:07:01.0328 0x053c [ 1E44BC1E83D8FD2305F8D452DB109CF9, CF5EC07E0B589FA2A4701C6CFD69E893FC3ABF274AD57AE3C13FFE49063B02C8 ] AFD C:\WINDOWS\System32\drivers\afd.sys
09:07:01.0453 0x053c AFD - ok
09:07:01.0468 0x053c Aha154x - ok
09:07:01.0468 0x053c aic78u2 - ok
09:07:01.0484 0x053c aic78xx - ok
09:07:01.0531 0x053c [ A9A3DAA780CA6C9671A19D52456705B4, 67C959144B57AE0BBF1D82DBED197F32CDB06FECD883A80C441A0202FE83FAB4 ] Alerter C:\WINDOWS\system32\alrsvc.dll
09:07:01.0718 0x053c Alerter - ok
09:07:01.0750 0x053c [ 8C515081584A38AA007909CD02020B3D, A5E13CA10F702928E0DE84C74D0EA8ACCB117FD76FBABC55220C75C4FFD596DC ] ALG C:\WINDOWS\System32\alg.exe
09:07:01.0921 0x053c ALG - ok
09:07:01.0921 0x053c AliIde - ok
09:07:01.0968 0x053c [ 0A4D13B388C814560BD69C3A496ECFA8, 71ADD4C4A5C6465EA27F572DE608C348896C4C557D136718CCDD9919144F7986 ] AmdK8 C:\WINDOWS\system32\DRIVERS\AmdK8.sys
09:07:02.0031 0x053c AmdK8 - ok
09:07:02.0046 0x053c amsint - ok
09:07:02.0046 0x053c AppMgmt - ok
09:07:02.0062 0x053c [ B5B8A80875C1DEDEDA8B02765642C32F, AD0C71D73B1B8225351FBF4FFB43001A32B4DAE69504C59970CD2428BB33D4EF ] Arp1394 C:\WINDOWS\system32\DRIVERS\arp1394.sys
09:07:02.0218 0x053c Arp1394 - ok
09:07:02.0234 0x053c asc - ok
09:07:02.0234 0x053c asc3350p - ok
09:07:02.0250 0x053c asc3550 - ok
09:07:02.0359 0x053c [ 776ACEFA0CA9DF0FAA51A5FB2F435705, 72DF7ED6B085BC468994F5B3189506FD726A9A17A9C42ACA1E420D787691361D ] aspnet_state C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe
09:07:02.0390 0x053c aspnet_state - ok
09:07:02.0406 0x053c [ B153AFFAC761E7F5FCFA822B9C4E97BC, 7E60F572A6B3C6219E3C86225AA37243AFFD74337DB7F108B04778042E5CC959 ] AsyncMac C:\WINDOWS\system32\DRIVERS\asyncmac.sys
09:07:02.0562 0x053c AsyncMac - ok
09:07:02.0687 0x053c [ 9F3A2F5AA6875C72BF062C712CFA2674, B4DF1D2C56A593C6B54DE57395E3B51D288F547842893B32B0F59228A0CF70B9 ] atapi C:\WINDOWS\system32\DRIVERS\atapi.sys
09:07:02.0875 0x053c atapi - ok
09:07:02.0875 0x053c Atdisk - ok
09:07:03.0015 0x053c [ 5784A06FDC2AC7954225A1A79E1A8F00, B03EFCE2C9565C9532C17E030887B7AE9E6CAB897C54018504254F3B4BDA4831 ] Ati HotKey Poller C:\WINDOWS\system32\Ati2evxx.exe
09:07:03.0171 0x053c Ati HotKey Poller - ok
09:07:03.0312 0x053c [ DD222CE49E79F15D2312A5E1F42E716E, E7EE8EEF8B5FED441CAE9D8ABD38FD619667C3C19F6F33429112F4F19CF5DF00 ] ati2mtag C:\WINDOWS\system32\DRIVERS\ati2mtag.sys
09:07:03.0468 0x053c ati2mtag - ok
09:07:03.0500 0x053c [ 9916C1225104BA14794209CFA8012159, 5D6F05F715C52A16D05CAE15C3DFE77A139A7F27F7AE710EC9A10F9EE05115A1 ] Atmarpc C:\WINDOWS\system32\DRIVERS\atmarpc.sys
09:07:03.0671 0x053c Atmarpc - ok
09:07:03.0781 0x053c [ DEF7A7882BEC100FE0B2CE2549188F9D, 462C95B63D0A1058291A2DC8CBFCB13D7D74CCD1CA43B613A7EB43D49E3276F8 ] AudioSrv C:\WINDOWS\System32\audiosrv.dll
09:07:03.0937 0x053c AudioSrv - ok
09:07:03.0984 0x053c [ D9F724AA26C010A217C97606B160ED68, 329B5118F2409731D06FDAE85B6ADD64A048292801BCB3546651CEB303111695 ] audstub C:\WINDOWS\system32\DRIVERS\audstub.sys
09:07:04.0171 0x053c audstub - ok
09:07:04.0265 0x053c [ 30D20FC98BCFD52E1DA778CF19B223D4, 4B035071CEF9BBD32EEA16E6A14F9908DCB89687632E8CB8420FA8EE0DB075C4 ] BCM43XX C:\WINDOWS\system32\DRIVERS\bcmwl5.sys
09:07:04.0343 0x053c BCM43XX - ok
09:07:04.0390 0x053c [ DA1F27D85E0D1525F6621372E7B685E9, 5A81A46A3BDD19DAFC6C87D277267A5D44F3A1B5302F2CC1111D84B7BAD5610D ] Beep C:\WINDOWS\system32\drivers\Beep.sys
09:07:04.0562 0x053c Beep - ok
09:07:04.0687 0x053c [ 574738F61FCA2935F5265DC4E5691314, 3C7CCF064397186C3A3863DD2370AB6414A61B330097DCA4F299CA7BBAA3D1B4 ] BITS C:\WINDOWS\system32\qmgr.dll
09:07:04.0937 0x053c BITS - ok
09:07:05.0078 0x053c [ CFD4E51402DA9838B5A04AE680AF54A0, 5378F42B195B5832B00A05AD64E00473A45FFB86AC25C57241F26EA82B149FE1 ] Browser C:\WINDOWS\System32\browser.dll
09:07:05.0187 0x053c Browser - ok
09:07:05.0328 0x053c [ 0F5CA31BB3FDB5C1E63C170CFBECC93B, 29D76F880515855AC962C23025D7BDAAD501BCD5BCCF73BE368CCA352FAA47C9 ] CamDrL C:\WINDOWS\system32\DRIVERS\Camdrl.sys
09:07:05.0562 0x053c CamDrL - ok
09:07:05.0593 0x053c [ 90A673FC8E12A79AFBED2576F6A7AAF9, BDE7858A3457DB979FEDD8577FA6321BF72848E4A7BF9F173C78A6A10CBB3EBE ] cbidf2k C:\WINDOWS\system32\drivers\cbidf2k.sys
09:07:05.0796 0x053c cbidf2k - ok
09:07:05.0843 0x053c [ 0BE5AEF125BE881C4F854C554F2B025C, 1770DD70B3F115A0EF460907DEDC1E4B7241C08615A98F194D61A49C3E2BAA54 ] CCDECODE C:\WINDOWS\system32\DRIVERS\CCDECODE.sys
09:07:06.0015 0x053c CCDECODE - ok
09:07:06.0015 0x053c cd20xrnt - ok
09:07:06.0062 0x053c [ C1B486A7658353D33A10CC15211A873B, AA4DD9E7AAE5AAB1146B360B17001F975D2F29A1281CF7B13E7136480410F347 ] Cdaudio C:\WINDOWS\system32\drivers\Cdaudio.sys
09:07:06.0234 0x053c Cdaudio - ok
09:07:06.0265 0x053c [ C885B02847F5D2FD45A24E219ED93B32, B26B2F8E3A831E2B65EB0C5195B0645CD50E22615CE79C9B0B391CD563B121DB ] Cdfs C:\WINDOWS\system32\drivers\Cdfs.sys
09:07:06.0453 0x053c Cdfs - ok
09:07:06.0546 0x053c [ 1F4260CC5B42272D71F79E570A27A4FE, B51C2A3ED3C309953D0EA45869C8E464C10F2533DADE9E0286AF674979098D1D ] Cdrom C:\WINDOWS\system32\DRIVERS\cdrom.sys
09:07:06.0703 0x053c Cdrom - ok
09:07:06.0734 0x053c [ 84853B3FD012251690570E9E7E43343F, 65CACFA643E52A0C0E6B2D901228A8A0AD4993CAFA3C287E65395F4B7C521089 ] cercsr6 C:\WINDOWS\system32\drivers\cercsr6.sys
09:07:06.0781 0x053c cercsr6 - detected UnsignedFile.Multi.Generic ( 1 )
09:07:06.0968 0x053c cercsr6 ( UnsignedFile.Multi.Generic ) - warning
09:07:09.0562 0x053c Changer - ok
09:07:09.0609 0x053c [ 1CFE720EB8D93A7158A4EBC3AB178BDE, 65D2A9D9A88F38D4AF323134C151BA0F4B3CD0F6A134AF86E7AC9D07319F1726 ] CiSvc C:\WINDOWS\system32\cisvc.exe
09:07:09.0890 0x053c CiSvc - ok
09:07:09.0937 0x053c [ 34CBE729F38138217F9C80212A2A0C82, A9FD7A758D12E0818A11BEEF1CE772FEFA8373E92EF6C0DA8628CD4572CC9A43 ] ClipSrv C:\WINDOWS\system32\clipsrv.exe
09:07:10.0109 0x053c ClipSrv - ok
09:07:10.0187 0x053c [ D87ACAED61E417BBA546CED5E7E36D9C, 14AC6034A5BC0FB2A1AFDAD42BEF4DE641556E54AD30D0C46765660A4BE55462 ] clr_optimization_v2.0.50727_32 c:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
09:07:10.0203 0x053c clr_optimization_v2.0.50727_32 - ok
09:07:10.0250 0x053c [ C5A75EB48E2344ABDC162BDA79E16841, 6070A8AAFD38FBC6A68A2B10C20117612354DF21B4492D90CA522BFB6870D726 ] clr_optimization_v4.0.30319_32 C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
09:07:10.0406 0x053c clr_optimization_v4.0.30319_32 - ok
09:07:10.0437 0x053c [ 0F6C187D38D98F8DF904589A5F94D411, DB987093446216CEE913AC27503BF7E23E5A62DF169B355730285DAB64F6ED28 ] CmBatt C:\WINDOWS\system32\DRIVERS\CmBatt.sys
09:07:10.0609 0x053c CmBatt - ok
09:07:10.0625 0x053c CmdIde - ok
09:07:10.0656 0x053c [ 6E4C9F21F0FAE8940661144F41B13203, 731202A0DD021FCF9287FEA631212603AAAC23F9E7F76B2882F913B18A971F1C ] Compbatt C:\WINDOWS\system32\DRIVERS\compbatt.sys
09:07:10.0828 0x053c Compbatt - ok
09:07:10.0843 0x053c COMSysApp - ok
09:07:10.0843 0x053c Cpqarray - ok
09:07:10.0953 0x053c [ 3D4E199942E29207970E04315D02AD3B, 0825960894CF9C86CC8775BDD2A262948A09CA495AA7FE9F210FAF49E7086383 ] CryptSvc C:\WINDOWS\System32\cryptsvc.dll
09:07:11.0125 0x053c CryptSvc - ok
09:07:11.0140 0x053c dac2w2k - ok
09:07:11.0140 0x053c dac960nt - ok
09:07:11.0281 0x053c [ 6B27A5C03DFB94B4245739065431322C, 6AEAC16AB4E0DFD25123AAF4D4181FEE1B919B7B2793117006CE8CF30E826CFD ] DcomLaunch C:\WINDOWS\system32\rpcss.dll
09:07:11.0390 0x053c DcomLaunch - ok
09:07:11.0437 0x053c [ 5E38D7684A49CACFB752B046357E0589, F192AD4190BCFB6939A5CBC91648FE63168AF79A5E227A111DEAD6A92E42AB8D ] Dhcp C:\WINDOWS\System32\dhcpcsvc.dll
09:07:11.0609 0x053c Dhcp - ok
09:07:11.0625 0x053c [ 044452051F3E02E7963599FC8F4F3E25, 584BDDB074618BE76454CF90E74829CFF588B5B5FAEB793E2F7AAD26352DD689 ] Disk C:\WINDOWS\system32\DRIVERS\disk.sys
09:07:11.0828 0x053c Disk - ok
09:07:11.0843 0x053c dmadmin - ok
09:07:11.0906 0x053c [ D992FE1274BDE0F84AD826ACAE022A41, C82BD6561A14F2932A761F5883A787B99031250EE5E9B7B5714AA045545C9B99 ] dmboot C:\WINDOWS\system32\drivers\dmboot.sys
09:07:12.0140 0x053c dmboot - ok
09:07:12.0250 0x053c [ 7C824CF7BBDE77D95C08005717A95F6F, A73CB323B7A6410C3D3F258BF204E716ADF8C84C9E4F6562C57AB73DAED8CCDE ] dmio C:\WINDOWS\system32\drivers\dmio.sys
09:07:12.0453 0x053c dmio - ok
09:07:12.0546 0x053c [ E9317282A63CA4D188C0DF5E09C6AC5F, D41E002F555FE9015EF620975255F58BB79198CA1FF0E09EC950CB450FF77CF7 ] dmload C:\WINDOWS\system32\drivers\dmload.sys
09:07:12.0734 0x053c dmload - ok
09:07:12.0843 0x053c [ 57EDEC2E5F59F0335E92F35184BC8631, 61F6F0DC2D1A6C61D5EF0D5CC4BE0FFC217F1E61FDA3EA9F704709293656600F ] dmserver C:\WINDOWS\System32\dmserver.dll
09:07:13.0031 0x053c dmserver - ok
09:07:13.0125 0x053c [ 8A208DFCF89792A484E76C40E5F50B45, 4E40E2EB38C6254E7CAA488200E89EE7DEBBBA773890BC6A84313CC68178D54F ] DMusic C:\WINDOWS\system32\drivers\DMusic.sys
09:07:13.0296 0x053c DMusic - ok
09:07:13.0328 0x053c [ 5F7E24FA9EAB896051FFB87F840730D2, 356EEFDCD54DECAD0170B34B993E4BF80DD039E2B2922D7A8D09B84031E9FC7A ] Dnscache C:\WINDOWS\System32\dnsrslvr.dll
09:07:13.0453 0x053c Dnscache - ok
09:07:13.0484 0x053c [ 0F0F6E687E5E15579EF4DA8DD6945814, 5C32D88119EB1465B2D719BEE2E05888D1A73454B5E33F2D4928DA710F8BFBA3 ] Dot3svc C:\WINDOWS\System32\dot3svc.dll
09:07:13.0656 0x053c Dot3svc - ok
09:07:13.0656 0x053c dpti2o - ok
09:07:13.0750 0x053c [ 8F5FCFF8E8848AFAC920905FBD9D33C8, C8C6FB97AB0871C8C88A2201525A5CF10D5131CB6980D32692ED7A8F58399AD5 ] drmkaud C:\WINDOWS\system32\drivers\drmkaud.sys
09:07:13.0937 0x053c drmkaud - ok
09:07:14.0031 0x053c [ 2187855A7703ADEF0CEF9EE4285182CC, 8233CC11F637866C0074043835A785EA2B616739B6B1181B143A253CF2508CFD ] EapHost C:\WINDOWS\System32\eapsvc.dll
09:07:14.0203 0x053c EapHost - ok
09:07:14.0234 0x053c [ BC93B4A066477954555966D77FEC9ECB, 27F5B780175EF46DA102EE33F7F33559C8B40C077EEA4405D579D9507F4B1C23 ] ERSvc C:\WINDOWS\System32\ersvc.dll
09:07:14.0406 0x053c ERSvc - ok
09:07:14.0437 0x053c [ 65DF52F5B8B6E9BBD183505225C37315, 59C606977DB40A3443DFF0BE2A4C761824881B22C9FDB3D23F6486DB580E92A4 ] Eventlog C:\WINDOWS\system32\services.exe
09:07:14.0531 0x053c Eventlog - ok
09:07:14.0546 0x053c [ D4991D98F2DB73C60D042F1AEF79EFAE, 58AF949EAEBF4FF3E3314DFB66CE4198BF65F0836B68CD27A6ED319742CCCCD2 ] EventSystem C:\WINDOWS\system32\es.dll
09:07:14.0640 0x053c EventSystem - ok
09:07:14.0671 0x053c [ 38D332A6D56AF32635675F132548343E, E6909DB836AF679B4F4D62C7396D6C82769CC7ABB8C919C2AABFE934FCE268F6 ] Fastfat C:\WINDOWS\system32\drivers\Fastfat.sys
09:07:14.0843 0x053c Fastfat - ok
09:07:14.0953 0x053c [ 99BC0B50F511924348BE19C7C7313BBF, A1006C687BD352F700B140DC741515A0CDD9E1352C0FBD1EE410D404E344444B ] FastUserSwitchingCompatibility C:\WINDOWS\System32\shsvcs.dll
09:07:15.0078 0x053c FastUserSwitchingCompatibility - ok
09:07:15.0140 0x053c [ 92CDD60B6730B9F50F6A1A0C1F8CDC81, 8307A532AB4D05CBBCE206DC2759497708BF5AAA880BD00F0E4F281D8578A1F5 ] Fdc C:\WINDOWS\system32\drivers\Fdc.sys
09:07:15.0343 0x053c Fdc - ok
09:07:15.0421 0x053c [ D45926117EB9FA946A6AF572FBE1CAA3, 4C94EF009D778BE0BDF8F812F026B96F91F641BE30AA2531427A5E63DBD280DA ] Fips C:\WINDOWS\system32\drivers\Fips.sys
09:07:15.0609 0x053c Fips - ok
09:07:15.0609 0x053c [ 9D27E7B80BFCDF1CDD9B555862D5E7F0, 69C271AD5BCEBFD8AE5A769BDD7EC51256DA3A8ADAD5D12E5C0D13F4E82D8805 ] Flpydisk C:\WINDOWS\system32\drivers\Flpydisk.sys
09:07:15.0781 0x053c Flpydisk - ok
09:07:15.0812 0x053c [ B2CF4B0786F8212CB92ED2B50C6DB6B0, 280F5CF8A90F7BEDE73ADD0DD0F8952088133A7CA9A3D3B7041957E33B36845D ] FltMgr C:\WINDOWS\system32\drivers\fltmgr.sys
09:07:16.0000 0x053c FltMgr - ok
09:07:16.0093 0x053c [ 8BA7C024070F2B7FDD98ED8A4BA41789, 47585006F86B2C6016EC54250A416794792D1E4024FF229C120BC25B684AF66A ] FontCache3.0.0.0 c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
09:07:16.0109 0x053c FontCache3.0.0.0 - ok
09:07:16.0140 0x053c [ 3E1E2BD4F39B0E2B7DC4F4D2BCC2779A, EC635E071201A766845D48973772CBE0958942B4162F3F5F70660D114CC877E0 ] Fs_Rec C:\WINDOWS\system32\drivers\Fs_Rec.sys
09:07:16.0312 0x053c Fs_Rec - ok
09:07:16.0328 0x053c [ 6AC26732762483366C3969C9E4D2259D, FF2C9A23CC17F380093F0BEA955B1925794271C2FEA16B9B7639668E6999BAE3 ] Ftdisk C:\WINDOWS\system32\DRIVERS\ftdisk.sys
09:07:16.0484 0x053c Ftdisk - ok
09:07:16.0515 0x053c [ 0A02C63C8B144BD8C86B103DEE7C86A2, 7A3235DD3E1995DD72B212FAEB3ECA2A974434DE9BF6D269EA11BA65A80E7E50 ] Gpc C:\WINDOWS\system32\DRIVERS\msgpc.sys
09:07:16.0703 0x053c Gpc - ok
09:07:16.0750 0x053c [ 573C7D0A32852B48F3058CFD8026F511, BC384BBA394AFDCDA1A9ABC858C692AA84A1F0A31AF3DDF7F38D120C027927FB ] HDAudBus C:\WINDOWS\system32\DRIVERS\HDAudBus.sys
09:07:16.0937 0x053c HDAudBus - ok
09:07:17.0046 0x053c [ 4FCCA060DFE0C51A09DD5C3843888BCD, D82417706B517F2610DDF7C86BE03A72EFA9A2A389DF5C8F8ADEAB8144E2C80A ] helpsvc C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll
09:07:17.0250 0x053c helpsvc - ok
09:07:17.0281 0x053c [ DEB04DA35CC871B6D309B77E1443C796, F66A15C9528D661940F1F4CA453B3E95036D68C74C3B8AB53644211DBD3D2F32 ] HidServ C:\WINDOWS\System32\hidserv.dll
09:07:17.0453 0x053c HidServ - ok
09:07:17.0500 0x053c [ CCF82C5EC8A7326C3066DE870C06DAF1, 93395FA4C26B2E82DC8B7025ED3BCF583885E5D8C5F60CD6EEAA6335D6A126EC ] HidUsb C:\WINDOWS\system32\DRIVERS\hidusb.sys
09:07:17.0687 0x053c HidUsb - ok
09:07:17.0718 0x053c [ 8878BD685E490239777BFE51320B88E9, C5C3ECF6B049B6736E35B39518A8F830B45C45A88FFE8E3A6B7922AD946597E2 ] hkmsvc C:\WINDOWS\System32\kmsvc.dll
09:07:17.0890 0x053c hkmsvc - ok
09:07:17.0906 0x053c hpn - ok
09:07:17.0968 0x053c [ F80A415EF82CD06FFAF0D971528EAD38, 524D9E9201572929522F6805011783711B7C0F76308B924C89CF75F4B7A1FDF3 ] HTTP C:\WINDOWS\system32\Drivers\HTTP.sys
09:07:18.0046 0x053c HTTP - ok
09:07:18.0078 0x053c [ 6100A808600F44D999CEBDEF8841C7A3, 61A75118C327812C60622010985A2E80E79B6FD9030A5732390EE5426E4AF6C9 ] HTTPFilter C:\WINDOWS\System32\w3ssl.dll
09:07:18.0281 0x053c HTTPFilter - ok
09:07:18.0281 0x053c i2omgmt - ok
09:07:18.0296 0x053c i2omp - ok
09:07:18.0328 0x053c [ 4A0B06AA8943C1E332520F7440C0AA30, DB2452390CCFE67E0C5FEB4FD42CA24ABE2DDD40D0B22DD5F5B8F70416863918 ] i8042prt C:\WINDOWS\system32\DRIVERS\i8042prt.sys
09:07:18.0484 0x053c i8042prt - ok
09:07:18.0578 0x053c [ C01AC32DC5C03076CFB852CB5DA5229C, A4D7749220B5BC965D96A267F1E02FE8284A230BA249109207BD4B9EA8DFAC96 ] idsvc c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
09:07:18.0656 0x053c idsvc - ok
09:07:18.0703 0x053c [ 083A052659F5310DD8B6A6CB05EDCF8E, 48D39B03FFB6FAA1529B774443BA12618AE3982D9F65A7B9D18F2269F78B31F4 ] Imapi C:\WINDOWS\system32\DRIVERS\imapi.sys
09:07:18.0890 0x053c Imapi - ok
09:07:18.0953 0x053c [ 30DEAF54A9755BB8546168CFE8A6B5E1, 3936228CD3125C763ABFCB93E86E4B43838202BCC0913A28E84AC0263B43EE0D ] ImapiService C:\WINDOWS\system32\imapi.exe
09:07:19.0125 0x053c ImapiService - ok
09:07:19.0125 0x053c ini910u - ok
09:07:19.0140 0x053c IntelIde - ok
09:07:19.0234 0x053c [ 3BB22519A194418D5FEC05D800A19AD0, F6662F440950596DC1382DD1DB5D7891CCEA30A6062BEA942C18445B5F0D8B16 ] Ip6Fw C:\WINDOWS\system32\drivers\ip6fw.sys
09:07:19.0406 0x053c Ip6Fw - ok
09:07:19.0531 0x053c [ 731F22BA402EE4B62748ADAF6363C182, 5C3BEBD008A5BE4DC2F92076FF41A10DDC01E10EC7E6552213CFA11970811848 ] IpFilterDriver C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
09:07:19.0703 0x053c IpFilterDriver - ok
09:07:19.0828 0x053c [ B87AB476DCF76E72010632B5550955F5, E6E74D3A86A7917A8BAED44F8E97CCD2EB171E4E4B27E9907F60D1523FAF319A ] IpInIp C:\WINDOWS\system32\DRIVERS\ipinip.sys
09:07:20.0000 0x053c IpInIp - ok
09:07:20.0109 0x053c [ CC748EA12C6EFFDE940EE98098BF96BB, AF523E21C25D9A1715EFEA573E4F52AF5D4FC9F28A2D613F5DB629C186C439E0 ] IpNat C:\WINDOWS\system32\DRIVERS\ipnat.sys
09:07:20.0281 0x053c IpNat - ok
09:07:20.0312 0x053c [ 23C74D75E36E7158768DD63D92789A91, 394D296F38E7D8EFD91A6EEC301D9CE6AF910E35EB9819F1A9E3363863AEDFDC ] IPSec C:\WINDOWS\system32\DRIVERS\ipsec.sys
09:07:20.0500 0x053c IPSec - ok
09:07:20.0531 0x053c [ C93C9FF7B04D772627A3646D89F7BF89, 805FA48E7A46D4F10240BF880A2468F53DEA36E83004399228AB70DB7D20544A ] IRENUM C:\WINDOWS\system32\DRIVERS\irenum.sys
09:07:20.0671 0x053c IRENUM - ok
09:07:20.0703 0x053c [ 05A299EC56E52649B1CF2FC52D20F2D7, 2654619DB3E6D6C385B63AB02F87D4241C4F0250CC31383D1B3586917166C2DC ] isapnp C:\WINDOWS\system32\DRIVERS\isapnp.sys
09:07:20.0890 0x053c isapnp - ok
09:07:21.0046 0x053c [ 0A5709543986843D37A92290B7838340, 8945A09816A1A1450202BA621C9DA1F9F922594CCE9DE0995FE863F78C584686 ] JavaQuickStarterService C:\Program Files\Java\jre6\bin\jqs.exe
09:07:21.0078 0x053c JavaQuickStarterService - ok
09:07:21.0093 0x053c [ 463C1EC80CD17420A542B7F36A36F128, E3B11BA26AFEAFB50B0FC168EA07F6049DA6B88BCDDEEE20310602D7FC27A3A7 ] Kbdclass C:\WINDOWS\system32\DRIVERS\kbdclass.sys
09:07:21.0281 0x053c Kbdclass - ok
09:07:21.0312 0x053c [ 9EF487A186DEA361AA06913A75B3FA99, B94EBA4EC6D85E11C81AF9927E9EF0AF2E6FE134CFF1FDB0535B7C5A794B4261 ] kbdhid C:\WINDOWS\system32\DRIVERS\kbdhid.sys
09:07:21.0531 0x053c kbdhid - ok
09:07:21.0609 0x053c [ 692BCF44383D056AED41B045A323D378, 1A99DEE83FFAF64E73067FC049C0A4CE07D94E4AE31EFA17B38CEFA9E41D67DC ] kmixer C:\WINDOWS\system32\drivers\kmixer.sys
09:07:21.0796 0x053c kmixer - ok
09:07:21.0937 0x053c [ B467646C54CC746128904E1654C750C1, 3BD71BE3663EA23463D236D8A2A2E42DFA10C502BDB4B6E131FAF0FBA748219E ] KSecDD C:\WINDOWS\system32\drivers\KSecDD.sys
09:07:22.0078 0x053c KSecDD - ok
09:07:22.0140 0x053c [ 3A7C3CBE5D96B8AE96CE81F0B22FB527, 0044F03132596A494448CCE5F3D6ECC12617BB4CF6BAE348F79D4DC40ACD6EE0 ] lanmanserver C:\WINDOWS\System32\srvsvc.dll
09:07:22.0203 0x053c lanmanserver - ok
09:07:22.0250 0x053c [ A8888A5327621856C0CEC4E385F69309, B08B63300D824E35E31EEEA2C4C086DFA2C2A964CEDAE512E74D3D88AADAA2C1 ] lanmanworkstation C:\WINDOWS\System32\wkssvc.dll
09:07:22.0359 0x053c lanmanworkstation - ok
09:07:22.0375 0x053c [ 12E54181D584F72296FD6EC72309BD94, B22BD7AF84BF78F6A69C782F0E07EBE885857B0412C43C8021EFC63C9D06A5EB ] LBeepKE C:\WINDOWS\system32\Drivers\LBeepKE.sys
09:07:22.0390 0x053c LBeepKE - ok
09:07:22.0406 0x053c lbrtfdc - ok
09:07:22.0468 0x053c [ 54581F1B8A4B517040AD316E5C430A2C, D6D0792D77B6C6EC83A723C24FCAFD65B1DB335381F815C7F70C4A8B50C7491C ] LBTServ C:\Program Files\Common Files\LogiShrd\Bluetooth\lbtserv.exe
09:07:22.0500 0x053c LBTServ - ok
09:07:22.0531 0x053c [ 2A727534372EDE8C0A4EDB1F037A44BF, 49E949FF459290C42FB50308FB7342DB7FF75E5F039E7BAF08D848C8DD2B6390 ] LEqdUsb C:\WINDOWS\system32\Drivers\LEqdUsb.Sys
09:07:22.0562 0x053c LEqdUsb - ok
09:07:22.0593 0x053c [ 9C694DFC271AC043E4FA8DDF8BB4C57E, 34B697174C3E1FD98FDA37EB80DE845554D03BA4412140E7BFD2A831329F8ED9 ] LHidEqd C:\WINDOWS\system32\Drivers\LHidEqd.Sys
09:07:22.0609 0x053c LHidEqd - ok
09:07:22.0625 0x053c [ 5001C2B3557B53DED02ABED3BCC6FD2D, 47971B3D8C2D8023BFADAD949FA0F069B32959C42EC2AD6B8344508F7F6C9FDD ] LHidFilt C:\WINDOWS\system32\DRIVERS\LHidFilt.Sys
09:07:22.0656 0x053c LHidFilt - ok
09:07:22.0687 0x053c [ A7DB739AE99A796D91580147E919CC59, EDF4E039BA277B0E6D66FEB0B28096E67D682C09DFC18ECECF062D9DCFB75ACF ] LmHosts C:\WINDOWS\System32\lmhsvc.dll
09:07:22.0875 0x053c LmHosts - ok
09:07:22.0906 0x053c [ 3AD9369E5D17014971A11728F198994C, 0EE59562C011A29C253193A8D202F591C1B4C0FD25C2C2E33ED1288EF4B09578 ] LMouFilt C:\WINDOWS\system32\DRIVERS\LMouFilt.Sys
09:07:22.0921 0x053c LMouFilt - ok
09:07:22.0968 0x053c [ 64BC29C3A0388BFC580BB8B1346F7659, 4BB25AEAEF4F4DB9A318858A365402429D23FEB281FAB4C96583402961F0E544 ] LVUSBSta C:\WINDOWS\system32\drivers\LVUSBSta.sys
09:07:22.0984 0x053c LVUSBSta - ok
09:07:23.0015 0x053c [ D8C0B2EB928D57C928522EFF500C4BA8, B7261AB2DD262140489087C1A8F1A1DA5EE6373D453E5BC8A3F7B93A5540CE6C ] ManyCam C:\WINDOWS\system32\DRIVERS\mcvidrv.sys
09:07:23.0171 0x053c ManyCam - ok
09:07:23.0171 0x053c [ 964BD01FD77026F93F15040027F6F579, 7812F242A06F638094F63A1A254E1F1693EBFE2883C85E02C08301512A5585A2 ] mcaudrv_simple C:\WINDOWS\system32\drivers\mcaudrv.sys
09:07:23.0296 0x053c mcaudrv_simple - ok
09:07:23.0343 0x053c [ 986B1FF5814366D71E0AC5755C88F2D3, E6AF051174531C24B38E73987755D366ABEC595476C6D17793E8DCCC73F55340 ] Messenger C:\WINDOWS\System32\msgsvc.dll
09:07:23.0562 0x053c Messenger - ok
09:07:23.0609 0x053c [ 4AE068242760A1FB6E1A44BF4E16AFA6, 1FB771162B96AAF787AC24867B818DF8511F0780BB094FA9A38C11D8DBFE68BC ] mnmdd C:\WINDOWS\system32\drivers\mnmdd.sys
09:07:23.0781 0x053c mnmdd - ok
09:07:23.0843 0x053c [ D18F1F0C101D06A1C1ADF26EED16FCDD, BA0837C7780BD8262E143E2935AFA63BE59C3C39EF56CB8608EED0F50AF070D4 ] mnmsrvc C:\WINDOWS\system32\mnmsrvc.exe
09:07:24.0031 0x053c mnmsrvc - ok
09:07:24.0109 0x053c [ DFCBAD3CEC1C5F964962AE10E0BCC8E1, B342CC9EC3729AB1AB4B5E2E99F890C1E0CA649162DE91F6768AB857B719E97B ] Modem C:\WINDOWS\system32\drivers\Modem.sys
09:07:24.0265 0x053c Modem - ok
09:07:24.0281 0x053c [ 35C9E97194C8CFB8430125F8DBC34D04, 0C0FCE6B0A23FB0ECB92E1663E1C72D2DD5B177D82E04782957690B69530DB39 ] Mouclass C:\WINDOWS\system32\DRIVERS\mouclass.sys
09:07:24.0437 0x053c Mouclass - ok
09:07:24.0484 0x053c [ B1C303E17FB9D46E87A98E4BA6769685, 161A45488522055D0F0474ABEDA04DDD0B5DAC2411AF9154B15190BBD66E7153 ] mouhid C:\WINDOWS\system32\DRIVERS\mouhid.sys
09:07:24.0671 0x053c mouhid - ok
09:07:24.0687 0x053c [ A80B9A0BAD1B73637DBCBBA7DF72D3FD, 2A5E15ED2C24C6C65EF2F7E1FD93374774076C9D8D451E4422561F4D269C012F ] MountMgr C:\WINDOWS\system32\drivers\MountMgr.sys
09:07:24.0859 0x053c MountMgr - ok
09:07:24.0953 0x053c [ 5D494509432897338AFC19DB78A76DCB, 873F61F45D4A96096E17F9E266B1A20CCD65E4678DDB21DDE3DB98E831E524D3 ] MozillaMaintenance C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
09:07:24.0968 0x053c MozillaMaintenance - ok
09:07:25.0031 0x053c [ 24406D75B40F0F6B3C1AC7031D734565, B58AA80E9C3738CFD826D7C8129D5467166A4397CCFEEEF7F14542DEBB659A51 ] MpFilter C:\WINDOWS\system32\DRIVERS\MpFilter.sys
09:07:25.0062 0x053c MpFilter - ok
09:07:25.0078 0x053c mraid35x - ok
09:07:25.0109 0x053c [ 11D42BB6206F33FBB3BA0288D3EF81BD, 76ABCFB62C5AC549F58C231F72A99882CDEB74928104B77FE52554765C2B1A22 ] MRxDAV C:\WINDOWS\system32\DRIVERS\mrxdav.sys
09:07:25.0265 0x053c MRxDAV - ok
09:07:25.0328 0x053c [ 7D304A5EB4344EBEEAB53A2FE3FFB9F0, DB9B186F7076D7B94F45041AF7B77C1AD2CAB504D683B459C6CB1C22840ED170 ] MRxSmb C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
09:07:25.0500 0x053c MRxSmb - ok
09:07:25.0593 0x053c [ B03E3F64B70F8031E65EB26DA23DE91A, 73184B4A75C1EA5D10B9D78A9E705432551DE15231F10C5A31021896D0938D80 ] MSCamSvc C:\Program Files\Microsoft LifeCam\MSCamS32.exe
09:07:25.0609 0x053c MSCamSvc - ok
09:07:25.0656 0x053c [ A137F1470499A205ABBB9AAFB3B6F2B1, FB4951727543030D9E6ED74149C3FAACE2CA9DA8C1B5F616301B30B858C724E8 ] MSDTC C:\WINDOWS\system32\msdtc.exe
09:07:25.0843 0x053c MSDTC - ok
09:07:25.0859 0x053c [ C941EA2454BA8350021D774DAF0F1027, C940E978C7B66A713A0FDAB54B5F995DF59D089AFCD96221DD3222948CD49BBD ] Msfs C:\WINDOWS\system32\drivers\Msfs.sys
09:07:26.0031 0x053c Msfs - ok
09:07:26.0125 0x053c [ 7A0F9CBDBDB135113B9A3C138E20C85D, 2AEC135A2108ED1708368ADD496FD373862C00532CB495A9A68D6C54A82975EE ] MSHUSBVideo C:\WINDOWS\system32\Drivers\nx6000.sys
09:07:26.0140 0x053c MSHUSBVideo - ok
09:07:26.0156 0x053c MSIServer - ok
09:07:26.0187 0x053c [ D1575E71568F4D9E14CA56B7B0453BF1, 4ABE0E24786C0D39FA2B885447E56204CA6942FB175E534DCE675D7BCF0B176A ] MSKSSRV C:\WINDOWS\system32\drivers\MSKSSRV.sys
09:07:26.0343 0x053c MSKSSRV - ok
09:07:26.0390 0x053c [ 0A7F86657755ADA92C57E597BF5151F7, E226DFF12C4930DF1D0F1D2E7CE7BFFDF62F6DC402200EEFE196D14172A59B63 ] MsMpSvc c:\Program Files\Microsoft Security Client\MsMpEng.exe
09:07:26.0421 0x053c MsMpSvc - ok
09:07:26.0437 0x053c [ 325BB26842FC7CCC1FCCE2C457317F3E, C07BE560513B1FB91D756494F0BA4AEEB2E1998DE0E1C21EE83DB1183B0CEE91 ] MSPCLOCK C:\WINDOWS\system32\drivers\MSPCLOCK.sys
09:07:26.0609 0x053c MSPCLOCK - ok
09:07:26.0609 0x053c [ BAD59648BA099DA4A17680B39730CB3D, 9AD4C7C94C186C8815D0BC75DCAFB962158DA6935A244BA243EDDDEB33F9816C ] MSPQM C:\WINDOWS\system32\drivers\MSPQM.sys
09:07:26.0843 0x053c MSPQM - ok
09:07:26.0890 0x053c [ AF5F4F3F14A8EA2C26DE30F7A1E17136, AC93A1E4ABB0D038B772E429015567E44CC2EDB66C54DBE23A5F98176FAC1520 ] mssmbios C:\WINDOWS\system32\DRIVERS\mssmbios.sys
09:07:27.0078 0x053c mssmbios - ok
09:07:27.0093 0x053c [ E53736A9E30C45FA9E7B5EAC55056D1D, 38602F280BF69EBA3706AD175AFC1AEB561A8302B4B61E3FECB3C27D7A9BDB41 ] MSTEE C:\WINDOWS\system32\drivers\MSTEE.sys
09:07:27.0250 0x053c MSTEE - ok
09:07:27.0296 0x053c [ DE6A75F5C270E756C5508D94B6CF68F5, FCC972DDC36C2C44D836913F10004C2C33B11C54DEFFF0C63E0FDF901D2F9261 ] Mup C:\WINDOWS\system32\drivers\Mup.sys
09:07:27.0468 0x053c Mup - ok
09:07:27.0484 0x053c [ 5B50F1B2A2ED47D560577B221DA734DB, C16A554B6E1A7F5F98C94DFA88163E0F7426506BF2F51FD351B1A05FC0DB3BC5 ] NABTSFEC C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys
09:07:27.0656 0x053c NABTSFEC - ok
09:07:27.0734 0x053c [ 0102140028FAD045756796E1C685D695, 5335B8278418CA200E2772124F0602C3E15A5CAF2D5CC59F6785DFAABF339B09 ] napagent C:\WINDOWS\System32\qagentrt.dll
09:07:27.0921 0x053c napagent - ok
09:07:28.0000 0x053c [ 1DF7F42665C94B825322FAE71721130D, FE0DCB728471465B39A42A7511F4133021FBA5DF88F88BCB5FE2FF34CFD713F9 ] NDIS C:\WINDOWS\system32\drivers\NDIS.sys
09:07:28.0171 0x053c NDIS - ok
09:07:28.0234 0x053c [ 7FF1F1FD8609C149AA432F95A8163D97, 18CD1FF5AC1EF8A38D1EC53014F2BADD28D9CDF4ECE2EBC2313D08903776F323 ] NdisIP C:\WINDOWS\system32\DRIVERS\NdisIP.sys
09:07:28.0406 0x053c NdisIP - ok
09:07:28.0531 0x053c [ 0109C4F3850DFBAB279542515386AE22, 4F6DB1E499AC853FD36FD603FBB6D3AC9BDCEB298C7FE1FB59A9236CB46729B2 ] NdisTapi C:\WINDOWS\system32\DRIVERS\ndistapi.sys
09:07:28.0656 0x053c NdisTapi - ok
09:07:28.0703 0x053c [ F927A4434C5028758A842943EF1A3849, B1AA3AF150C05307461774925901789456B0CCCD03A5E71ADA4AB58455962BEE ] Ndisuio C:\WINDOWS\system32\DRIVERS\ndisuio.sys
09:07:28.0875 0x053c Ndisuio - ok
09:07:28.0890 0x053c [ EDC1531A49C80614B2CFDA43CA8659AB, 494042F790F33721328B4451E79842E21919681CC421A4F9633EC4D383E06097 ] NdisWan C:\WINDOWS\system32\DRIVERS\ndiswan.sys
09:07:29.0078 0x053c NdisWan - ok
09:07:29.0109 0x053c [ 9282BD12DFB069D3889EB3FCC1000A9B, 09A46F1712BD9165068D8E153585FE3E6E5CBF4F1DDEC142115555D3A91AEC09 ] NDProxy C:\WINDOWS\system32\drivers\NDProxy.sys
09:07:29.0296 0x053c NDProxy - ok
09:07:29.0328 0x053c [ 5D81CF9A2F1A3A756B66CF684911CDF0, 7989C36607CAEA17AFA2C1C9904145CA0714A54B9F712D9D4C1AB140D0B2CC0C ] NetBIOS C:\WINDOWS\system32\DRIVERS\netbios.sys
09:07:29.0500 0x053c NetBIOS - ok
09:07:29.0593 0x053c [ 74B2B2F5BEA5E9A3DC021D685551BD3D, 7932B71F98B4122BE88F576BF6D745A757AE378A48924B7F4358837B75640A82 ] NetBT C:\WINDOWS\system32\DRIVERS\netbt.sys
09:07:29.0765 0x053c NetBT - ok
09:07:29.0812 0x053c [ B857BA82860D7FF85AE29B095645563B, 86FF0E4CDD9C394E8BABD93A4D57E73FF9A779261717DEC6E9CDE99F1C6B0F4C ] NetDDE C:\WINDOWS\system32\netdde.exe
09:07:29.0984 0x053c NetDDE - ok
09:07:29.0984 0x053c [ B857BA82860D7FF85AE29B095645563B, 86FF0E4CDD9C394E8BABD93A4D57E73FF9A779261717DEC6E9CDE99F1C6B0F4C ] NetDDEdsdm C:\WINDOWS\system32\netdde.exe
09:07:30.0140 0x053c NetDDEdsdm - ok
09:07:30.0187 0x053c [ BF2466B3E18E970D8A976FB95FC1CA85, F7794B5D12DC5D820A162850F4388E2AA80426AD07CB221799CF941C682AB501 ] Netlogon C:\WINDOWS\system32\lsass.exe
09:07:30.0359 0x053c Netlogon - ok
09:07:30.0390 0x053c [ 13E67B55B3ABD7BF3FE7AAE5A0F9A9DE, 4E0A67B3CC897E80D4B342FFE8B7B4CC4F6CA2EF2D34C136027A098B2E1C6166 ] Netman C:\WINDOWS\System32\netman.dll
09:07:30.0546 0x053c Netman - ok
09:07:30.0609 0x053c [ D22CD77D4F0D63D1169BB35911BFF12D, 85B1FDFA02E1B8EA4FCB9B7EEB687C5C448697FC7EC9D178C5A2F64D2C9CFEE8 ] NetTcpPortSharing c:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
09:07:30.0687 0x053c NetTcpPortSharing - ok
09:07:30.0718 0x053c [ E9E47CFB2D461FA0FC75B7A74C6383EA, 544136F5BFD4DC23D45E90F12FA48B82FD9EAEA9EAF3E0F5F0BD27E23D672C3E ] NIC1394 C:\WINDOWS\system32\DRIVERS\nic1394.sys
09:07:30.0890 0x053c NIC1394 - ok
09:07:30.0984 0x053c [ 943337D786A56729263071623BBB9DE5, B631B47C869FE4ACF46E4AA272435D9A9CA536E3349E3FFBB8602636FEE7AFD4 ] Nla C:\WINDOWS\System32\mswsock.dll
09:07:31.0031 0x053c Nla - ok
09:07:31.0062 0x053c [ 3182D64AE053D6FB034F44B6DEF8034A, 4ADFC76965BA2A5F488E71789A4E4EA702A74AF42725F72130D1CA919406CF19 ] Npfs C:\WINDOWS\system32\drivers\Npfs.sys
09:07:31.0234 0x053c Npfs - ok
09:07:31.0343 0x053c [ 78A08DD6A8D65E697C18E1DB01C5CDCA, E0E6F3ED05068E32F1D5C2D2B38CDEF4536B8656DB6756C66CF6B40B60C8F3DA ] Ntfs C:\WINDOWS\system32\drivers\Ntfs.sys
09:07:31.0562 0x053c Ntfs - ok
09:07:31.0593 0x053c [ BF2466B3E18E970D8A976FB95FC1CA85, F7794B5D12DC5D820A162850F4388E2AA80426AD07CB221799CF941C682AB501 ] NtLmSsp C:\WINDOWS\system32\lsass.exe
09:07:31.0750 0x053c NtLmSsp - ok
09:07:31.0812 0x053c [ 156F64A3345BD23C600655FB4D10BC08, 9611BE411586E068D9297D77102DB3BE48AA67F1BAD6F61A84F83FC3043FA9CD ] NtmsSvc C:\WINDOWS\system32\ntmssvc.dll
09:07:32.0000 0x053c NtmsSvc - ok
09:07:32.0078 0x053c [ 73C1E1F395918BC2C6DD67AF7591A3AD, B21133A75253EC15E2DFF66D3B480AB1A7E1A2360476C810E7AA55D0F0EB08D4 ] Null C:\WINDOWS\system32\drivers\Null.sys
09:07:32.0250 0x053c Null - ok
09:07:32.0281 0x053c [ B305F3FAD35083837EF46A0BBCE2FC57, 9D0E0E666D652D0FC9EAB97280A5D67AAF61D6B21929DF7CF8ED72A367720464 ] NwlnkFlt C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
09:07:32.0453 0x053c NwlnkFlt - ok
09:07:32.0484 0x053c [ C99B3415198D1AAB7227F2C88FD664B9, DD8DA4B5E804F134AB9233859544C025062902DFC3E8FB8A09A67337A4E73F55 ] NwlnkFwd C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
09:07:32.0640 0x053c NwlnkFwd - ok
09:07:32.0671 0x053c [ CA33832DF41AFB202EE7AEB05145922F, 9DD0089C2E13C7F81214C3B5A4A61276292052F9BBFEA7FCD0F6AA27815D5F95 ] ohci1394 C:\WINDOWS\system32\DRIVERS\ohci1394.sys
09:07:32.0875 0x053c ohci1394 - ok
09:07:33.0015 0x053c [ 5575FAF8F97CE5E713D108C2A58D7C7C, 96D4595D19A78CCBE8B325A08780AC077AE5CC99642ACD72FB47AEAE8D344D3B ] Parport C:\WINDOWS\system32\drivers\Parport.sys
09:07:33.0171 0x053c Parport - ok
09:07:33.0171 0x053c [ BEB3BA25197665D82EC7065B724171C6, 7E71C13BA30CD95CEE8A9CC85E6F48A01F30EDEAADEE69D80AE828BF97E5A5CA ] PartMgr C:\WINDOWS\system32\drivers\PartMgr.sys
09:07:33.0375 0x053c PartMgr - ok
09:07:33.0484 0x053c [ 70E98B3FD8E963A6A46A2E6247E0BEA1, 6771313EC41B3B5BFD398F60706E40BE71617046880CC352DD110B001AFC22A1 ] ParVdm C:\WINDOWS\system32\drivers\ParVdm.sys
09:07:33.0671 0x053c ParVdm - ok
09:07:33.0687 0x053c [ A219903CCF74233761D92BEF471A07B1, D4E6C360A1D2FCA4D17C991B834D68BF20F5111DD06B1FAB8B22984804CEC269 ] PCI C:\WINDOWS\system32\DRIVERS\pci.sys
09:07:33.0843 0x053c PCI - ok
09:07:33.0859 0x053c PCIDump - ok
09:07:33.0875 0x053c [ CCF5F451BB1A5A2A522A76E670000FF0, D63F7E5A39653EC9CCE94B7D84B2D3EBD4F54533BD65701020198724042C9257 ] PCIIde C:\WINDOWS\system32\DRIVERS\pciide.sys
09:07:34.0015 0x053c PCIIde - ok
09:07:34.0046 0x053c [ 9E89EF60E9EE05E3F2EEF2DA7397F1C1, 0BA3DB21DC7C641C181E2635B5C9B73965FDCDCD3EBBBE48FCFEC1C8C987F617 ] Pcmcia C:\WINDOWS\system32\DRIVERS\pcmcia.sys
09:07:34.0218 0x053c Pcmcia - ok
09:07:34.0218 0x053c PDCOMP - ok
09:07:34.0218 0x053c PDFRAME - ok
09:07:34.0234 0x053c PDRELI - ok
09:07:34.0234 0x053c PDRFRAME - ok
09:07:34.0234 0x053c perc2 - ok
09:07:34.0250 0x053c perc2hib - ok
09:07:34.0296 0x053c [ 65DF52F5B8B6E9BBD183505225C37315, 59C606977DB40A3443DFF0BE2A4C761824881B22C9FDB3D23F6486DB580E92A4 ] PlugPlay C:\WINDOWS\system32\services.exe
09:07:34.0343 0x053c PlugPlay - ok
09:07:34.0343 0x053c [ BF2466B3E18E970D8A976FB95FC1CA85, F7794B5D12DC5D820A162850F4388E2AA80426AD07CB221799CF941C682AB501 ] PolicyAgent C:\WINDOWS\system32\lsass.exe
09:07:34.0515 0x053c PolicyAgent - ok
09:07:34.0578 0x053c [ EFEEC01B1D3CF84F16DDD24D9D9D8F99, C5F0C8C66A3AF7E7BB04CEDE4AC5306F8387AB384A2107DC5BE413AAE968EFF1 ] PptpMiniport C:\WINDOWS\system32\DRIVERS\raspptp.sys
09:07:34.0734 0x053c PptpMiniport - ok
09:07:34.0796 0x053c [ 6135B976E16F80C1B1363BE882344785, 57905ED033C9D1ADD439B9708EFE6E25C9F5B5EC9F85FF083A7FAE2E0DE99FE5 ] PrismXL C:\Program Files\Common Files\New Boundary\PrismXL\PRISMXL.SYS
09:07:34.0875 0x053c PrismXL - detected UnsignedFile.Multi.Generic ( 1 )
09:07:34.0875 0x053c PrismXL ( UnsignedFile.Multi.Generic ) - warning
09:07:37.0421 0x053c [ A32BEBAF723557681BFC6BD93E98BD26, 35039BA72A29F87B2CA37DCDE4EFDAABBDEAD8CE3EB8652ACC665994118145A6 ] Processor C:\WINDOWS\system32\DRIVERS\processr.sys
09:07:37.0687 0x053c Processor - ok
09:07:37.0703 0x053c [ BF2466B3E18E970D8A976FB95FC1CA85, F7794B5D12DC5D820A162850F4388E2AA80426AD07CB221799CF941C682AB501 ] ProtectedStorage C:\WINDOWS\system32\lsass.exe
09:07:37.0859 0x053c ProtectedStorage - ok
09:07:37.0890 0x053c [ 09298EC810B07E5D582CB3A3F9255424, 35473A1BE25AC289474090EB0806AC6B3035DC33D1F3DF97A14BF1E361AC6AC3 ] PSched C:\WINDOWS\system32\DRIVERS\psched.sys
09:07:38.0093 0x053c PSched - ok
09:07:38.0093 0x053c [ 80D317BD1C3DBC5D4FE7B1678C60CADD, DA76804B55D0CAB3DDD01EFC06673764AE4860693375C658B6063FB14AF7F12C ] Ptilink C:\WINDOWS\system32\DRIVERS\ptilink.sys
09:07:38.0328 0x053c Ptilink - ok
09:07:38.0343 0x053c ql1080 - ok
09:07:38.0343 0x053c Ql10wnt - ok
09:07:38.0343 0x053c ql12160 - ok
09:07:38.0359 0x053c ql1240 - ok
09:07:38.0359 0x053c ql1280 - ok
09:07:38.0468 0x053c [ FE0D99D6F31E4FAD8159F690D68DED9C, 998685622ABE631984B7E4DBF91AB3594B1F574378D75EB9F6265F4650470692 ] RasAcd C:\WINDOWS\system32\DRIVERS\rasacd.sys
09:07:38.0609 0x053c RasAcd - ok
09:07:38.0640 0x053c [ AD188BE7BDF94E8DF4CA0A55C00A5073, C7D76CB579FAEBCCC2873499441BACDD6BD6668ACF5ED7F31862656E96E2B20C ] RasAuto C:\WINDOWS\System32\rasauto.dll
09:07:38.0796 0x053c RasAuto - ok
09:07:38.0859 0x053c [ 11B4A627BC9614B885C4969BFA5FF8A6, EAE0A412A2B0F68919C32A96B3A08CC1A06585E4998819F5C9051745F63FF5AD ] Rasl2tp C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
09:07:39.0031 0x053c Rasl2tp - ok
09:07:39.0093 0x053c [ 76A9A3CBEADD68CC57CDA5E1D7448235, 4AFD048C5D2306AB8DE46F3AA60AC0213333DDA3B09A9E91F7585DB6EB978EC8 ] RasMan C:\WINDOWS\System32\rasmans.dll
09:07:39.0250 0x053c RasMan - ok
09:07:39.0265 0x053c [ 5BC962F2654137C9909C3D4603587DEE, A5CE5653D0105240F5E86CFAAB89E7917D42D939E2F27A5A7D6979289CA651B8 ] RasPppoe C:\WINDOWS\system32\DRIVERS\raspppoe.sys
09:07:39.0437 0x053c RasPppoe - ok
09:07:39.0484 0x053c [ FDBB1D60066FCFBB7452FD8F9829B242, 10A2DACF944BD000032EBA8C095CB3D879CC55B28C377ADF6E52E508E47444DB ] Raspti C:\WINDOWS\system32\DRIVERS\raspti.sys
09:07:39.0656 0x053c Raspti - ok
09:07:39.0765 0x053c [ 7AD224AD1A1437FE28D89CF22B17780A, 6645235CA27D671954E3557FA37082881C3D7D47492C71264CD8CB8D108EC801 ] Rdbss C:\WINDOWS\system32\DRIVERS\rdbss.sys
09:07:39.0953 0x053c Rdbss - ok
09:07:39.0984 0x053c [ 4912D5B403614CE99C28420F75353332, 975341ECD660209987B5E5171B8315E032439E408CBE8A5986E67AF767F373BB ] RDPCDD C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
09:07:40.0156 0x053c RDPCDD - ok
09:07:40.0281 0x053c [ 43AF5212BD8FB5BA6EED9754358BD8F7, AF330F61CECA4AFA359CEABC5EB3227E6B56A9A2DCE50701381D665122D7356D ] RDPWD C:\WINDOWS\system32\drivers\RDPWD.sys
09:07:40.0359 0x053c RDPWD - ok
09:07:40.0421 0x053c [ 3C37BF86641BDA977C3BF8A840F3B7FA, AB9A6E54DBA3F4561CD4837372BECCE0D73943D02E3288F944333039375AC08C ] RDSessMgr C:\WINDOWS\system32\sessmgr.exe
09:07:40.0562 0x053c RDSessMgr - ok
09:07:40.0593 0x053c [ F828DD7E1419B6653894A8F97A0094C5, E6150E1F598BA4CFEDB8FF075BC0D576518C331B864388F1CAE8812EFF106ECF ] redbook C:\WINDOWS\system32\DRIVERS\redbook.sys
09:07:40.0765 0x053c redbook - ok
09:07:40.0796 0x053c [ 7E699FF5F59B5D9DE5390E3C34C67CF5, 3FCF0442D80AB181FED4303E570378736AA1F8718C0B8B70F689A1E45200FFE4 ] RemoteAccess C:\WINDOWS\System32\mprdim.dll
09:07:40.0953 0x053c RemoteAccess - ok
09:07:40.0968 0x053c [ AAED593F84AFA419BBAE8572AF87CF6A, CC0FFC5A69394C8830DC66320DA01A820BBF41AD7E57D0FC343561DC5EF9A360 ] RpcLocator C:\WINDOWS\system32\locator.exe
09:07:41.0156 0x053c RpcLocator - ok
09:07:41.0203 0x053c [ 6B27A5C03DFB94B4245739065431322C, 6AEAC16AB4E0DFD25123AAF4D4181FEE1B919B7B2793117006CE8CF30E826CFD ] RpcSs C:\WINDOWS\system32\rpcss.dll
09:07:41.0265 0x053c RpcSs - ok
09:07:41.0296 0x053c [ 471B3F9741D762ABE75E9DEEA4787E47, D9ADE42965EC22AEB4B2AD21D429C3C8232A60AA9853DEFDA7AED86A13FE8623 ] RSVP C:\WINDOWS\system32\rsvp.exe
09:07:41.0468 0x053c RSVP - ok
09:07:41.0484 0x053c [ BF2466B3E18E970D8A976FB95FC1CA85, F7794B5D12DC5D820A162850F4388E2AA80426AD07CB221799CF941C682AB501 ] SamSs C:\WINDOWS\system32\lsass.exe
09:07:41.0656 0x053c SamSs - ok
09:07:41.0687 0x053c [ 86D007E7A654B9A71D1D7D856B104353, 7B1DE53D637A5FC9619D5D07C48927AFEC89D959207F6F2E2F45DD054EEA04C7 ] SCardSvr C:\WINDOWS\System32\SCardSvr.exe
09:07:41.0859 0x053c SCardSvr - ok
09:07:41.0906 0x053c [ 0A9A7365A1CA4319AA7C1D6CD8E4EAFA, 0B582F47BD70732BAC48B8B86E5D06CE7F299A20E8177F3F2E6F28217C3FB605 ] Schedule C:\WINDOWS\system32\schedsvc.dll
09:07:42.0093 0x053c Schedule - ok
09:07:42.0125 0x053c [ 90A3935D05B494A5A39D37E71F09A677, F72733A69BC6E1A2BB91D7632FF3463C12563F60FDCC00A2CDD67FF20D479952 ] Secdrv C:\WINDOWS\system32\DRIVERS\secdrv.sys
09:07:42.0250 0x053c Secdrv - ok
09:07:42.0281 0x053c [ CBE612E2BB6A10E3563336191EDA1250, C331797DC3569F0E715766561DE2562F60B924378842246C35D2B1CF867E9D96 ] seclogon C:\WINDOWS\System32\seclogon.dll
09:07:42.0453 0x053c seclogon - ok
09:07:42.0453 0x053c [ 7FDD5D0684ECA8C1F68B4D99D124DCD0, 7105B026F966A992430F86C3698ABE15EC73E4772F1A3E362E29FD5247A5DCA6 ] SENS C:\WINDOWS\system32\sens.dll
09:07:42.0625 0x053c SENS - ok
09:07:42.0671 0x053c [ CCA207A8896D4C6A0C9CE29A4AE411A7, 5999B39242283CD803319AADCA171CCCC6E2A40FB2FAFA51B1D29F3FF2DD8D6C ] Serial C:\WINDOWS\system32\drivers\Serial.sys
09:07:42.0828 0x053c Serial - ok
09:07:42.0859 0x053c [ 8E6B8C671615D126FDC553D1E2DE5562, CEEC0067514555D5CA489F50E3D7562FCA8DB8E952C3C878604C9277FC77959F ] Sfloppy C:\WINDOWS\system32\drivers\Sfloppy.sys
09:07:43.0031 0x053c Sfloppy - ok
09:07:43.0093 0x053c [ 83F41D0D89645D7235C051AB1D9523AC, B681F33EEAA511D6A2DCB9FBAA407B739184C9FF6067C6B7E51F1FC37E9D4DD7 ] SharedAccess C:\WINDOWS\System32\ipnathlp.dll
09:07:43.0312 0x053c SharedAccess - ok
09:07:43.0343 0x053c [ 99BC0B50F511924348BE19C7C7313BBF, A1006C687BD352F700B140DC741515A0CDD9E1352C0FBD1EE410D404E344444B ] ShellHWDetection C:\WINDOWS\System32\shsvcs.dll
09:07:43.0375 0x053c ShellHWDetection - ok
09:07:43.0375 0x053c Simbad - ok
09:07:43.0437 0x053c [ 3E587DBBDFF938DDE5D4CE4047BE9041, CA13B2C50FB09365362077AEC4B25120CF09F8C35702F645922D618FE57B5E05 ] SkypeUpdate C:\Program Files\Skype\Updater\Updater.exe
09:07:43.0468 0x053c SkypeUpdate - ok
09:07:43.0515 0x053c [ 866D538EBE33709A5C9F5C62B73B7D14, BC94BEB7C17B4FCAC8B5D0D5006A203BC209E0504EECE149651D8691935696CD ] SLIP C:\WINDOWS\system32\DRIVERS\SLIP.sys
09:07:43.0703 0x053c SLIP - ok
09:07:43.0796 0x053c [ 78DA3038965DE2B3834303DFB0578326, 1899884F17112C13F10C741EA2D821E36A91EA1217F51D03439E506EC3AD7BD9 ] smserial C:\WINDOWS\system32\DRIVERS\smserial.sys
09:07:43.0953 0x053c smserial - ok
09:07:43.0953 0x053c Sparrow - ok
09:07:43.0984 0x053c [ AB8B92451ECB048A4D1DE7C3FFCB4A9F, DD17733CBB370FCA08F0296704D7CBEACA3C8F76D0ABE4761C3B1FFDF7481D9E ] splitter C:\WINDOWS\system32\drivers\splitter.sys
09:07:44.0171 0x053c splitter - ok
09:07:44.0218 0x053c [ 60784F891563FB1B767F70117FC2428F, E0B07F08E60FFBAD36C2E58180F4B2A16DCA47716044CBE0213DF7B74D742F1F ] Spooler C:\WINDOWS\system32\spoolsv.exe
09:07:45.0296 0x053c Spooler - ok
09:07:45.0343 0x053c sprtsvc_verizondm - ok
09:07:45.0375 0x053c [ 76BB022C2FB6902FD5BDD4F78FC13A5D, 6031CB2344D7277FC703480EB43CF856A0F8F818EA98FF26A2CA532336CD2DFA ] sr C:\WINDOWS\system32\DRIVERS\sr.sys
09:07:45.0515 0x053c sr - ok
09:07:45.0562 0x053c [ 3805DF0AC4296A34BA4BF93B346CC378, B57A14F1B7B0997E619DDD62B73157AA2399A9852166FB58139CBB358A88F6F3 ] srservice C:\WINDOWS\system32\srsvc.dll
09:07:45.0703 0x053c srservice - ok
09:07:45.0750 0x053c [ 47DDFC2F003F7F9F0592C6874962A2E7, 17C643BD4EB09B5666FE41817DC785BE04A6E491CE79E8E5A702CDBD98E1BDD7 ] Srv C:\WINDOWS\system32\DRIVERS\srv.sys
09:07:45.0843 0x053c Srv - ok
09:07:45.0875 0x053c [ 0A5679B3714EDAB99E357057EE88FCA6, 01E1A101FFF48402C77E385A78FEF27876E04533B60EB1C18558A737E57E5FA8 ] SSDPSRV C:\WINDOWS\System32\ssdpsrv.dll
09:07:46.0015 0x053c SSDPSRV - ok
09:07:46.0140 0x053c [ 3B24ADA55D3BDFDC0E6679D15FA668D8, 127F4233B48145BBCA9B8B718202D104AFCE117AC68F3CDEF32D61A391A6808F ] STHDA C:\WINDOWS\system32\drivers\sthda.sys
09:07:46.0281 0x053c STHDA - ok
09:07:46.0359 0x053c [ 8BAD69CBAC032D4BBACFCE0306174C30, 2AA0DA710FCBFF38FE8DA91EE02E7A4503269347E61F8D3246FCA3384BBA2305 ] stisvc C:\WINDOWS\system32\wiaservc.dll
09:07:46.0562 0x053c stisvc - ok
09:07:46.0609 0x053c [ 77813007BA6265C4B6098187E6ED79D2, 93939120E803C46FBFD577C8FC2E6C7E71C0460E01D25CB29579490640AB50C7 ] streamip C:\WINDOWS\system32\DRIVERS\StreamIP.sys
09:07:46.0796 0x053c streamip - ok
09:07:46.0828 0x053c [ 3941D127AEF12E93ADDF6FE6EE027E0F, EA1F0E32E1C5E90FA4AAC421DEBBE086512340758D3217A6334E886BCE638B51 ] swenum C:\WINDOWS\system32\DRIVERS\swenum.sys
09:07:47.0000 0x053c swenum - ok
09:07:47.0046 0x053c [ 8CE882BCC6CF8A62F2B2323D95CB3D01, B408550A581F3DA222355964AFA4E976AD8471F0AA37573C42C4948AE5A23A3B ] swmidi C:\WINDOWS\system32\drivers\swmidi.sys
09:07:47.0218 0x053c swmidi - ok
09:07:47.0234 0x053c SwPrv - ok
09:07:47.0234 0x053c symc810 - ok
09:07:47.0250 0x053c symc8xx - ok
09:07:47.0250 0x053c sym_hi - ok
09:07:47.0250 0x053c sym_u3 - ok
09:07:47.0281 0x053c [ 8B83F3ED0F1688B4958F77CD6D2BF290, 546D3602183702B4F53E84413CFA2C933D64C8540378E54A8DCD148F3F36A2DA ] sysaudio C:\WINDOWS\system32\drivers\sysaudio.sys
09:07:47.0453 0x053c sysaudio - ok
09:07:47.0500 0x053c [ C7ABBC59B43274B1109DF6B24D617051, 4384CA0AA6CE9B603CF7DB775A3C721E46715D5B120B94FB57DEADAADE18535B ] SysmonLog C:\WINDOWS\system32\smlogsvc.exe
09:07:47.0671 0x053c SysmonLog - ok
09:07:47.0718 0x053c [ 3CB78C17BB664637787C9A1C98F79C38, F35C31F6B7F366CB949D1044B357C76DEC9170441C5E559802794F62B72FD255 ] TapiSrv C:\WINDOWS\System32\tapisrv.dll
09:07:47.0906 0x053c TapiSrv - ok
09:07:47.0968 0x053c [ 9AEFA14BD6B182D61E3119FA5F436D3D, EA29E49434585409272E7901AF89771FE9D6E911A7DC44AB3C7020CFF8A44552 ] Tcpip C:\WINDOWS\system32\DRIVERS\tcpip.sys
09:07:48.0093 0x053c Tcpip - ok
09:07:48.0140 0x053c [ 6471A66807F5E104E4885F5B67349397, F35CBFFB8BB235CCE30EF94A5273333900DD49FD506BF9D55D99A320B8A53A5A ] TDPIPE C:\WINDOWS\system32\drivers\TDPIPE.sys
09:07:48.0343 0x053c TDPIPE - ok
09:07:48.0359 0x053c [ C56B6D0402371CF3700EB322EF3AAF61, 7743FA4C734BCE38EFB1CA69BC17364D8421E2CD172F856F7E38E7AE1EE93F2F ] TDTCP C:\WINDOWS\system32\drivers\TDTCP.sys
09:07:48.0531 0x053c TDTCP - ok
09:07:48.0562 0x053c [ 88155247177638048422893737429D9E, B6D4E8691917946332C2208D01F8C8281978C1AD1E9951C5D99DF0D49AC34B3B ] TermDD C:\WINDOWS\system32\DRIVERS\termdd.sys
09:07:48.0718 0x053c TermDD - ok
09:07:48.0796 0x053c [ FF3477C03BE7201C294C35F684B3479F, D6246521539BA4ACD022D26983182F5E323D2EF1EA7C54265A248C43A1CE5202 ] TermService C:\WINDOWS\System32\termsrv.dll
09:07:49.0000 0x053c TermService - ok
09:07:49.0000 0x053c tgsrvc_verizondm - ok
09:07:49.0031 0x053c [ 99BC0B50F511924348BE19C7C7313BBF, A1006C687BD352F700B140DC741515A0CDD9E1352C0FBD1EE410D404E344444B ] Themes C:\WINDOWS\System32\shsvcs.dll
09:07:49.0062 0x053c Themes - ok
09:07:49.0125 0x053c [ C424F991494E5674F2E9B3CF9F5F55D1, CC799C9154431763D052AB8B41EFAE71A039EDD6EAC5E6D892E22C8BEF1D2BB5 ] tifm21 C:\WINDOWS\system32\drivers\tifm21.sys
09:07:49.0171 0x053c tifm21 - ok
09:07:49.0171 0x053c TosIde - ok
09:07:49.0203 0x053c [ 55BCA12F7F523D35CA3CB833C725F54E, 849FB1AE31B143B14B298BBC0D91230693D41DEB95F46516878F53A7F4186C38 ] TrkWks C:\WINDOWS\system32\trkwks.dll
09:07:49.0406 0x053c TrkWks - ok
09:07:49.0437 0x053c [ 5787B80C2E3C5E2F56C2A233D91FA2C9, 3774905CF77954DFCECDA5BCC7CDE3D0ED72712BFAAD85ADAE5246306447E46C ] Udfs C:\WINDOWS\system32\drivers\Udfs.sys
09:07:49.0625 0x053c Udfs - ok
09:07:49.0625 0x053c ultra - ok
09:07:49.0703 0x053c [ 402DDC88356B1BAC0EE3DD1580C76A31, 32A686595710336A6BFD54C03F552AE39439611662F84EF5D24193AE5665C6F3 ] Update C:\WINDOWS\system32\DRIVERS\update.sys
09:07:49.0890 0x053c Update - ok
09:07:49.0937 0x053c [ 1EBAFEB9A3FBDC41B8D9C7F0F687AD91, 7746916DB48E3F5B243B63C066596AD9037A494BF1AD935946DD04AC85D983DF ] upnphost C:\WINDOWS\System32\upnphost.dll
09:07:50.0062 0x053c upnphost - ok
09:07:50.0093 0x053c [ 05365FB38FCA1E98F7A566AAAF5D1815, 16843048CEEC3DAA3B953A12FF1EE339E86783A08F2A56DA7F94AD9F9717D77D ] UPS C:\WINDOWS\System32\ups.exe
09:07:50.0296 0x053c UPS - ok
09:07:50.0328 0x053c [ 65898A183FBF1D1F7759D5CCB364DCD4, 85E823123FDB4CA5F8255064E22A444627999055EC3419DFD001371893F36AB9 ] usbaudio C:\WINDOWS\system32\drivers\usbaudio.sys
09:07:50.0468 0x053c usbaudio - ok
09:07:50.0500 0x053c [ 1B611611C28D2DF25BC057D79C6F13FC, B0D86F63E44B40413BBAE6402CC088046CFAE082D41BBC2ED5A916293356B846 ] usbccgp C:\WINDOWS\system32\DRIVERS\usbccgp.sys
09:07:50.0593 0x053c usbccgp - ok
09:07:50.0609 0x053c [ 4BAC8DF07F1D8434FC640E677A62204E, 76C1351AF6752224BF59DEEE0F8665FE699F3DFD679F5BCD01C7D9383E6402A4 ] usbehci C:\WINDOWS\system32\DRIVERS\usbehci.sys
09:07:50.0671 0x053c usbehci - ok
09:07:50.0703 0x053c [ 1AB3CDDE553B6E064D2E754EFE20285C, A99C4528C4227B1E96847614745AAFACD3C5F1BDFE435214DBF78740FFB300FE ] usbhub C:\WINDOWS\system32\DRIVERS\usbhub.sys
09:07:50.0859 0x053c usbhub - ok
09:07:50.0890 0x053c [ 0DAECCE65366EA32B162F85F07C6753B, 3C33AC2FC95E876933F2016CF0CDA2745491679728684DA8DF95A515CE4804BD ] usbohci C:\WINDOWS\system32\DRIVERS\usbohci.sys
09:07:51.0046 0x053c usbohci - ok
09:07:51.0093 0x053c [ F8EDE2B6928970DCE3D5614C27D9E7F6, 6E5EBBC8B70C1D593634DAF0C190DEADFDA18C3CBC8F552A76F156F3869EF05B ] usbscan C:\WINDOWS\system32\DRIVERS\usbscan.sys
09:07:51.0156 0x053c usbscan - ok
09:07:51.0171 0x053c [ A32426D9B14A089EAA1D922E0C5801A9, ED1DC52EE45F8EAD3AEC4B1F817BB25634141CF48295494C5947DCE6CF7A9817 ] USBSTOR C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
09:07:51.0343 0x053c USBSTOR - ok
09:07:51.0390 0x053c [ 813236B1183CFCF289E367BD5DE6E29E, 167FE18A96F330AEEC1A4C419770C15EFEB536D43838285E51E7A62E95DF4674 ] usbvideo C:\WINDOWS\system32\Drivers\usbvideo.sys
09:07:51.0453 0x053c usbvideo - ok
09:07:51.0500 0x053c [ 2A7A8AD9D39A2FAF9D9293B5DAFF3A4B, 38C6F6A440B718C75F7A1361297ACE671FC258B75BDCE9E0C27D497E3DF03C61 ] USB_RNDIS_XP C:\WINDOWS\system32\DRIVERS\usb8023.sys
09:07:51.0593 0x053c USB_RNDIS_XP - ok
09:07:51.0609 0x053c [ 0D3A8FAFCEACD8B7625CD549757A7DF1, B9CFDEFCD66AA139F3DC2F967B184669532922563AD5A71769BABDC4370D065E ] VgaSave C:\WINDOWS\System32\drivers\vga.sys
09:07:51.0796 0x053c VgaSave - ok
09:07:51.0796 0x053c ViaIde - ok
09:07:51.0843 0x053c [ 4C8FCB5CC53AAB716D810740FE59D025, 010EAC43DBED700B73E4FC908FAAF9F6A0168EBBD5D86751E49BC33AAA18BFA4 ] VolSnap C:\WINDOWS\system32\drivers\VolSnap.sys
09:07:52.0031 0x053c VolSnap - ok
09:07:52.0093 0x053c [ 7A9DB3A67C333BF0BD42E42B8596854B, D31A9A3B1AAAB373EDD73B674102395212FCB616F829E938B7B2B7BE7D4752C5 ] VSS C:\WINDOWS\System32\vssvc.exe
09:07:52.0234 0x053c VSS - ok
09:07:52.0281 0x053c [ 54AF4B1D5459500EF0937F6D33B1914F, FA1876888BCB9C72A92369DBED4FF1A8666784523FB41E618FA0919490FCDDB9 ] W32Time C:\WINDOWS\system32\w32time.dll
09:07:52.0453 0x053c W32Time - ok
09:07:52.0453 0x053c WajamUpdater - ok
09:07:52.0484 0x053c [ E20B95BAEDB550F32DD489265C1DA1F6, 5589B2067E6C9FBA290D8C5EADDC198EBAF39C50C3CD7D2BC5CDA7CBFBC445E5 ] Wanarp C:\WINDOWS\system32\DRIVERS\wanarp.sys
09:07:52.0671 0x053c Wanarp - ok
09:07:52.0734 0x053c [ D918617B46457B9AC28027722E30F647, 407284D3055DC11944D4EE7E4357E7CF9CAF8CA40CA50633AB6FD4A82CB7EEA6 ] Wdf01000 C:\WINDOWS\system32\Drivers\wdf01000.sys
09:07:52.0781 0x053c Wdf01000 - ok
09:07:52.0781 0x053c WDICA - ok
09:07:52.0843 0x053c [ 6768ACF64B18196494413695F0C3A00F, 3A8F8586F1D997D19A8478345338D2AECD785AEABDB61531DD3F92003D3230A5 ] wdmaud C:\WINDOWS\system32\drivers\wdmaud.sys
09:07:53.0015 0x053c wdmaud - ok
09:07:53.0062 0x053c [ 77A354E28153AD2D5E120A5A8687BC06, 8B2D37A4443501C0A8E70BC2079BE27F0A36FD07B561E6F68B40A72EABBC2DFE ] WebClient C:\WINDOWS\System32\webclnt.dll
09:07:53.0234 0x053c WebClient - ok
09:07:53.0328 0x053c [ F45DD1E1365D857DD08BC23563370D0E, D95AEBB2095579D716C62152C8B805E119812FD2E40F14F9A5BA2EFDE133303B ] WinDefend C:\Program Files\Windows Defender\MsMpEng.exe
09:07:53.0343 0x053c WinDefend - ok
09:07:53.0453 0x053c [ 2D0E4ED081963804CCC196A0929275B5, E1D75C7D7233D81DFDE13160B0C80138DF8B35230D04FB79B367A52FACF69BF8 ] winmgmt C:\WINDOWS\system32\wbem\WMIsvc.dll
09:07:53.0609 0x053c winmgmt - ok
09:07:53.0625 0x053c wltrysvc - ok
09:07:53.0656 0x053c [ C7E39EA41233E9F5B86C8DA3A9F1E4A8, 98C21DEEB7124426D749FACDAD06EBD7F500AE5C465A98D558919C2A51C08554 ] WmdmPmSN C:\WINDOWS\system32\mspmsnsv.dll
09:07:53.0843 0x053c WmdmPmSN - ok
09:07:53.0875 0x053c [ E0673F1106E62A68D2257E376079F821, 12992F18C9653050B10DC61D12988067933FCFDF02123D3A7EF5DE607A785DDC ] WmiApSrv C:\WINDOWS\system32\wbem\wmiapsrv.exe
09:07:54.0031 0x053c WmiApSrv - ok
09:07:54.0171 0x053c [ 15673BD0B86150CB8E27766059C72A9B, 56C23289A8BFF4945EE532CF6D62D3EC81B827CA15A359F30A327789F9FE9CAF ] WPFFontCache_v0400 C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
09:07:54.0234 0x053c WPFFontCache_v0400 - ok
09:07:54.0296 0x053c [ 7C278E6408D1DCE642230C0585A854D5, DA46079A04F6E8E3441E4AE454AEAC02B3E935DE29CE7F6D4476F57867FCC12A ] wscsvc C:\WINDOWS\system32\wscsvc.dll
09:07:54.0500 0x053c wscsvc - ok
09:07:54.0515 0x053c [ C98B39829C2BBD34E454150633C62C78, 71B60EA3AD0E2637917D528C6A9E7ECF2949E3E5E91036AA5BBADA95BD725511 ] WSTCODEC C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS
09:07:54.0687 0x053c WSTCODEC - ok
09:07:54.0687 0x053c [ 35321FB577CDC98CE3EB3A3EB9E4610A, C9A6F5CF282D8FCB3CDFCC4B306013480E78E1B664E1A60A4E27B161F9FFD4CD ] wuauserv C:\WINDOWS\system32\wuauserv.dll
09:07:54.0859 0x053c wuauserv - ok
09:07:54.0937 0x053c [ 81DC3F549F44B1C1FFF022DEC9ECF30B, 3D14BFEA539F9CEB16555BD56C5E3C7C8F6692FC62C2789F8AAEA1C042E63940 ] WZCSVC C:\WINDOWS\System32\wzcsvc.dll
09:07:55.0218 0x053c WZCSVC - ok
09:07:55.0250 0x053c [ 295D21F14C335B53CB8154E5B1F892B9, 9418477C2E3EA93E93D931A4EDD4500DA568FAD6040204B5201D1080203B0BBC ] xmlprov C:\WINDOWS\System32\xmlprov.dll
09:07:55.0468 0x053c xmlprov - ok
09:07:55.0500 0x053c [ 4322C32CED8C4772E039616DCBF01D3F, F878A0AC7A128BE114D52FD62538A37A3B7C3E15309BF37B87036005ED06C7A0 ] yukonwxp C:\WINDOWS\system32\DRIVERS\yk51x86.sys
09:07:55.0609 0x053c yukonwxp - ok
09:07:55.0609 0x053c ================ Scan global ===============================
09:07:55.0656 0x053c [ 42F1F4C0AFB08410E5F02D4B13EBB623, 924C30587C51C0D1E1F47991969AF492A644552E15F2480EA991DCB74A3E68D5 ] C:\WINDOWS\system32\basesrv.dll
09:07:55.0718 0x053c [ 69AE2B2E6968C316536E5B10B9702E63, D9C5DA7A20DDE69D91E72400C3F06F3CB099DEF42EA6C53FCE076258A0C22391 ] C:\WINDOWS\system32\winsrv.dll
09:07:55.0796 0x053c [ 69AE2B2E6968C316536E5B10B9702E63, D9C5DA7A20DDE69D91E72400C3F06F3CB099DEF42EA6C53FCE076258A0C22391 ] C:\WINDOWS\system32\winsrv.dll
09:07:55.0843 0x053c [ 65DF52F5B8B6E9BBD183505225C37315, 59C606977DB40A3443DFF0BE2A4C761824881B22C9FDB3D23F6486DB580E92A4 ] C:\WINDOWS\system32\services.exe
09:07:55.0843 0x053c [ Global ] - ok
09:07:55.0843 0x053c ================ Scan MBR ==================================
09:07:55.0875 0x053c [ 8F558EB6672622401DA993E1E865C861 ] \Device\Harddisk0\DR0
09:07:56.0171 0x053c \Device\Harddisk0\DR0 - ok
09:07:56.0171 0x053c ================ Scan VBR ==================================
09:07:56.0171 0x053c [ 6DCB727615C9DD8044F488888F7846B2 ] \Device\Harddisk0\DR0\Partition1
09:07:56.0187 0x053c \Device\Harddisk0\DR0\Partition1 - ok
09:07:56.0187 0x053c ================ Scan active images ========================
09:07:56.0187 0x053c [ E9E47CFB2D461FA0FC75B7A74C6383EA, 544136F5BFD4DC23D45E90F12FA48B82FD9EAEA9EAF3E0F5F0BD27E23D672C3E ] C:\WINDOWS\system32\drivers\nic1394.sys
09:07:56.0187 0x053c C:\WINDOWS\system32\drivers\nic1394.sys - ok
09:07:56.0187 0x053c [ 0A4D13B388C814560BD69C3A496ECFA8, 71ADD4C4A5C6465EA27F572DE608C348896C4C557D136718CCDD9919144F7986 ] C:\WINDOWS\system32\drivers\AmdK8.sys
09:07:56.0187 0x053c C:\WINDOWS\system32\drivers\AmdK8.sys - ok
09:07:56.0187 0x053c [ E28726B72C46821A28830E077D39A55B, 66BE8A1055544C8CEBB7125726C1C306A026F3A1764589FCDDF3792076AF891F ] C:\WINDOWS\system32\drivers\videoprt.sys
09:07:56.0187 0x053c C:\WINDOWS\system32\drivers\videoprt.sys - ok
09:07:56.0203 0x053c [ DD222CE49E79F15D2312A5E1F42E716E, E7EE8EEF8B5FED441CAE9D8ABD38FD619667C3C19F6F33429112F4F19CF5DF00 ] C:\WINDOWS\system32\drivers\ati2mtag.sys
09:07:56.0203 0x053c C:\WINDOWS\system32\drivers\ati2mtag.sys - ok
09:07:56.0203 0x053c [ 30D20FC98BCFD52E1DA778CF19B223D4, 4B035071CEF9BBD32EEA16E6A14F9908DCB89687632E8CB8420FA8EE0DB075C4 ] C:\WINDOWS\system32\drivers\BCMWL5.SYS
09:07:56.0203 0x053c C:\WINDOWS\system32\drivers\BCMWL5.SYS - ok
09:07:56.0203 0x053c [ 6DF35CA139C3BC15CC74390ABB114EFE, 5401724E49243625C43B3F9032E592EF43605C2510E809C1D318A7792AB9FBBA ] C:\WINDOWS\system32\drivers\usbport.sys
09:07:56.0203 0x053c C:\WINDOWS\system32\drivers\usbport.sys - ok
09:07:56.0218 0x053c [ 0DAECCE65366EA32B162F85F07C6753B, 3C33AC2FC95E876933F2016CF0CDA2745491679728684DA8DF95A515CE4804BD ] C:\WINDOWS\system32\drivers\usbohci.sys
09:07:56.0218 0x053c C:\WINDOWS\system32\drivers\usbohci.sys - ok
09:07:56.0218 0x053c [ 4BAC8DF07F1D8434FC640E677A62204E, 76C1351AF6752224BF59DEEE0F8665FE699F3DFD679F5BCD01C7D9383E6402A4 ] C:\WINDOWS\system32\drivers\usbehci.sys
09:07:56.0218 0x053c C:\WINDOWS\system32\drivers\usbehci.sys - ok
09:07:56.0218 0x053c [ 083A052659F5310DD8B6A6CB05EDCF8E, 48D39B03FFB6FAA1529B774443BA12618AE3982D9F65A7B9D18F2269F78B31F4 ] C:\WINDOWS\system32\drivers\imapi.sys
09:07:56.0218 0x053c C:\WINDOWS\system32\drivers\imapi.sys - ok
09:07:56.0218 0x053c [ 1F4260CC5B42272D71F79E570A27A4FE, B51C2A3ED3C309953D0EA45869C8E464C10F2533DADE9E0286AF674979098D1D ] C:\WINDOWS\system32\drivers\cdrom.sys
09:07:56.0218 0x053c C:\WINDOWS\system32\drivers\cdrom.sys - ok
09:07:56.0234 0x053c [ 0753515F78DF7F271A5E61C20BCD36A1, A8D600CD0C592DFB875DE2D4F1AEDB207B80A43CF724051B6552BB6E539E9AFC ] C:\WINDOWS\system32\drivers\ks.sys
09:07:56.0234 0x053c C:\WINDOWS\system32\drivers\ks.sys - ok
09:07:56.0234 0x053c [ 573C7D0A32852B48F3058CFD8026F511, BC384BBA394AFDCDA1A9ABC858C692AA84A1F0A31AF3DDF7F38D120C027927FB ] C:\WINDOWS\system32\drivers\hdaudbus.sys
09:07:56.0234 0x053c C:\WINDOWS\system32\drivers\hdaudbus.sys - ok
09:07:56.0234 0x053c [ F828DD7E1419B6653894A8F97A0094C5, E6150E1F598BA4CFEDB8FF075BC0D576518C331B864388F1CAE8812EFF106ECF ] C:\WINDOWS\system32\drivers\redbook.sys
09:07:56.0234 0x053c C:\WINDOWS\system32\drivers\redbook.sys - ok
09:07:56.0234 0x053c [ 4A0B06AA8943C1E332520F7440C0AA30, DB2452390CCFE67E0C5FEB4FD42CA24ABE2DDD40D0B22DD5F5B8F70416863918 ] C:\WINDOWS\system32\drivers\i8042prt.sys
09:07:56.0234 0x053c C:\WINDOWS\system32\drivers\i8042prt.sys - ok
09:07:56.0250 0x053c [ 463C1EC80CD17420A542B7F36A36F128, E3B11BA26AFEAFB50B0FC168EA07F6049DA6B88BCDDEEE20310602D7FC27A3A7 ] C:\WINDOWS\system32\drivers\kbdclass.sys
09:07:56.0250 0x053c C:\WINDOWS\system32\drivers\kbdclass.sys - ok
09:07:56.0250 0x053c [ 35C9E97194C8CFB8430125F8DBC34D04, 0C0FCE6B0A23FB0ECB92E1663E1C72D2DD5B177D82E04782957690B69530DB39 ] C:\WINDOWS\system32\drivers\mouclass.sys
09:07:56.0250 0x053c C:\WINDOWS\system32\drivers\mouclass.sys - ok
09:07:56.0250 0x053c [ C424F991494E5674F2E9B3CF9F5F55D1, CC799C9154431763D052AB8B41EFAE71A039EDD6EAC5E6D892E22C8BEF1D2BB5 ] C:\WINDOWS\system32\drivers\tifm21.sys
09:07:56.0250 0x053c C:\WINDOWS\system32\drivers\tifm21.sys - ok
09:07:56.0265 0x053c [ 0F6C187D38D98F8DF904589A5F94D411, DB987093446216CEE913AC27503BF7E23E5A62DF169B355730285DAB64F6ED28 ] C:\WINDOWS\system32\drivers\cmbatt.sys
09:07:56.0265 0x053c C:\WINDOWS\system32\drivers\cmbatt.sys - ok
09:07:56.0265 0x053c [ 04FE5EF6ED4818EC4839EA5C611A6310, 666479AF6789FC5DF2EA8D4B6216FDA9A4998D252F95BD003619D9376B1DC9E7 ] C:\WINDOWS\system32\drivers\usbd.sys
09:07:56.0265 0x053c C:\WINDOWS\system32\drivers\usbd.sys - ok
09:07:56.0265 0x053c [ 64BC29C3A0388BFC580BB8B1346F7659, 4BB25AEAEF4F4DB9A318858A365402429D23FEB281FAB4C96583402961F0E544 ] C:\WINDOWS\system32\drivers\LVUSBSta.sys
09:07:56.0265 0x053c C:\WINDOWS\system32\drivers\LVUSBSta.sys - ok
09:07:56.0265 0x053c [ 3E5D89099DED9E86E5639F411693218F, 4A4AAC7C57BF523880959A39BAA8B9BDE92C5575D15BE5E4931EADBA5E4F1661 ] C:\WINDOWS\system32\drivers\stream.sys
09:07:56.0265 0x053c C:\WINDOWS\system32\drivers\stream.sys - ok
09:07:56.0281 0x053c [ D8C0B2EB928D57C928522EFF500C4BA8, B7261AB2DD262140489087C1A8F1A1DA5EE6373D453E5BC8A3F7B93A5540CE6C ] C:\WINDOWS\system32\drivers\mcvidrv.sys
09:07:56.0281 0x053c C:\WINDOWS\system32\drivers\mcvidrv.sys - ok
09:07:56.0296 0x053c [ 6CB08593487F5701D2D2254E693EAFCE, 0518A1FC540C036E6864DA8C01CADE043D4F897D7FCF8C61352865131DEB7414 ] C:\WINDOWS\system32\drivers\drmk.sys
09:07:56.0296 0x053c C:\WINDOWS\system32\drivers\drmk.sys - ok
09:07:56.0312 0x053c [ E82A496C3961EFC6828B508C310CE98F, E142A0809525B34A376B3063B07B8822930056BBCB886B7CF1D7585BCEC371A0 ] C:\WINDOWS\system32\drivers\portcls.sys
09:07:56.0312 0x053c C:\WINDOWS\system32\drivers\portcls.sys - ok
09:07:56.0328 0x053c [ 964BD01FD77026F93F15040027F6F579, 7812F242A06F638094F63A1A254E1F1693EBFE2883C85E02C08301512A5585A2 ] C:\WINDOWS\system32\drivers\mcaudrv.sys
09:07:56.0328 0x053c C:\WINDOWS\system32\drivers\mcaudrv.sys - ok
09:07:56.0328 0x053c [ D9F724AA26C010A217C97606B160ED68, 329B5118F2409731D06FDAE85B6ADD64A048292801BCB3546651CEB303111695 ] C:\WINDOWS\system32\drivers\audstub.sys
09:07:56.0328 0x053c C:\WINDOWS\system32\drivers\audstub.sys - ok
09:07:56.0343 0x053c [ 11B4A627BC9614B885C4969BFA5FF8A6, EAE0A412A2B0F68919C32A96B3A08CC1A06585E4998819F5C9051745F63FF5AD ] C:\WINDOWS\system32\drivers\rasl2tp.sys
09:07:56.0343 0x053c C:\WINDOWS\system32\drivers\rasl2tp.sys - ok
09:07:56.0375 0x053c [ 0109C4F3850DFBAB279542515386AE22, 4F6DB1E499AC853FD36FD603FBB6D3AC9BDCEB298C7FE1FB59A9236CB46729B2 ] C:\WINDOWS\system32\drivers\ndistapi.sys
09:07:56.0375 0x053c C:\WINDOWS\system32\drivers\ndistapi.sys - ok
09:07:56.0375 0x053c [ EDC1531A49C80614B2CFDA43CA8659AB, 494042F790F33721328B4451E79842E21919681CC421A4F9633EC4D383E06097 ] C:\WINDOWS\system32\drivers\ndiswan.sys
09:07:56.0375 0x053c C:\WINDOWS\system32\drivers\ndiswan.sys - ok
09:07:56.0390 0x053c [ 5BC962F2654137C9909C3D4603587DEE, A5CE5653D0105240F5E86CFAAB89E7917D42D939E2F27A5A7D6979289CA651B8 ] C:\WINDOWS\system32\drivers\raspppoe.sys
09:07:56.0390 0x053c C:\WINDOWS\system32\drivers\raspppoe.sys - ok
09:07:56.0390 0x053c [ 0539D5E53587F82D1B4FD74C5BE205CF, 9C578FC46AC3B8260258B83C89A33C3D7990B365D7708AEF2296CD235C7D301A ] C:\WINDOWS\system32\drivers\tdi.sys
09:07:56.0390 0x053c C:\WINDOWS\system32\drivers\tdi.sys - ok
09:07:56.0406 0x053c [ 0A02C63C8B144BD8C86B103DEE7C86A2, 7A3235DD3E1995DD72B212FAEB3ECA2A974434DE9BF6D269EA11BA65A80E7E50 ] C:\WINDOWS\system32\drivers\msgpc.sys
09:07:56.0406 0x053c C:\WINDOWS\system32\drivers\msgpc.sys - ok
09:07:56.0406 0x053c [ 09298EC810B07E5D582CB3A3F9255424, 35473A1BE25AC289474090EB0806AC6B3035DC33D1F3DF97A14BF1E361AC6AC3 ] C:\WINDOWS\system32\drivers\psched.sys
09:07:56.0406 0x053c C:\WINDOWS\system32\drivers\psched.sys - ok
09:07:56.0406 0x053c [ EFEEC01B1D3CF84F16DDD24D9D9D8F99, C5F0C8C66A3AF7E7BB04CEDE4AC5306F8387AB384A2107DC5BE413AAE968EFF1 ] C:\WINDOWS\system32\drivers\raspptp.sys
09:07:56.0406 0x053c C:\WINDOWS\system32\drivers\raspptp.sys - ok
09:07:56.0421 0x053c [ 80D317BD1C3DBC5D4FE7B1678C60CADD, DA76804B55D0CAB3DDD01EFC06673764AE4860693375C658B6063FB14AF7F12C ] C:\WINDOWS\system32\drivers\ptilink.sys
09:07:56.0421 0x053c C:\WINDOWS\system32\drivers\ptilink.sys - ok
09:07:56.0421 0x053c [ FDBB1D60066FCFBB7452FD8F9829B242, 10A2DACF944BD000032EBA8C095CB3D879CC55B28C377ADF6E52E508E47444DB ] C:\WINDOWS\system32\drivers\raspti.sys
09:07:56.0421 0x053c C:\WINDOWS\system32\drivers\raspti.sys - ok
09:07:56.0421 0x053c [ 88155247177638048422893737429D9E, B6D4E8691917946332C2208D01F8C8281978C1AD1E9951C5D99DF0D49AC34B3B ] C:\WINDOWS\system32\drivers\termdd.sys
09:07:56.0421 0x053c C:\WINDOWS\system32\drivers\termdd.sys - ok
09:07:56.0421 0x053c [ 3941D127AEF12E93ADDF6FE6EE027E0F, EA1F0E32E1C5E90FA4AAC421DEBBE086512340758D3217A6334E886BCE638B51 ] C:\WINDOWS\system32\drivers\swenum.sys
09:07:56.0421 0x053c C:\WINDOWS\system32\drivers\swenum.sys - ok
09:07:56.0437 0x053c [ 402DDC88356B1BAC0EE3DD1580C76A31, 32A686595710336A6BFD54C03F552AE39439611662F84EF5D24193AE5665C6F3 ] C:\WINDOWS\system32\drivers\update.sys
09:07:56.0437 0x053c C:\WINDOWS\system32\drivers\update.sys - ok
09:07:56.0437 0x053c [ AF5F4F3F14A8EA2C26DE30F7A1E17136, AC93A1E4ABB0D038B772E429015567E44CC2EDB66C54DBE23A5F98176FAC1520 ] C:\WINDOWS\system32\drivers\mssmbios.sys
09:07:56.0437 0x053c C:\WINDOWS\system32\drivers\mssmbios.sys - ok
09:07:56.0437 0x053c [ 9282BD12DFB069D3889EB3FCC1000A9B, 09A46F1712BD9165068D8E153585FE3E6E5CBF4F1DDEC142115555D3A91AEC09 ] C:\WINDOWS\system32\drivers\ndproxy.sys
09:07:56.0437 0x053c C:\WINDOWS\system32\drivers\ndproxy.sys - ok
09:07:56.0453 0x053c [ 1AB3CDDE553B6E064D2E754EFE20285C, A99C4528C4227B1E96847614745AAFACD3C5F1BDFE435214DBF78740FFB300FE ] C:\WINDOWS\system32\drivers\usbhub.sys
09:07:56.0453 0x053c C:\WINDOWS\system32\drivers\usbhub.sys - ok
09:07:56.0453 0x053c [ 3B24ADA55D3BDFDC0E6679D15FA668D8, 127F4233B48145BBCA9B8B718202D104AFCE117AC68F3CDEF32D61A391A6808F ] C:\WINDOWS\system32\drivers\sthda.sys
09:07:56.0453 0x053c C:\WINDOWS\system32\drivers\sthda.sys - ok
09:07:56.0453 0x053c [ 78DA3038965DE2B3834303DFB0578326, 1899884F17112C13F10C741EA2D821E36A91EA1217F51D03439E506EC3AD7BD9 ] C:\WINDOWS\system32\drivers\smserial.sys
09:07:56.0453 0x053c C:\WINDOWS\system32\drivers\smserial.sys - ok
09:07:56.0453 0x053c [ DFCBAD3CEC1C5F964962AE10E0BCC8E1, B342CC9EC3729AB1AB4B5E2E99F890C1E0CA649162DE91F6768AB857B719E97B ] C:\WINDOWS\system32\drivers\modem.sys
09:07:56.0453 0x053c C:\WINDOWS\system32\drivers\modem.sys - ok
09:07:56.0468 0x053c [ 92CDD60B6730B9F50F6A1A0C1F8CDC81, 8307A532AB4D05CBBCE206DC2759497708BF5AAA880BD00F0E4F281D8578A1F5 ] C:\WINDOWS\system32\drivers\fdc.sys
09:07:56.0468 0x053c C:\WINDOWS\system32\drivers\fdc.sys - ok
09:07:56.0468 0x053c [ 9D27E7B80BFCDF1CDD9B555862D5E7F0, 69C271AD5BCEBFD8AE5A769BDD7EC51256DA3A8ADAD5D12E5C0D13F4E82D8805 ] C:\WINDOWS\system32\drivers\flpydisk.sys
09:07:56.0468 0x053c C:\WINDOWS\system32\drivers\flpydisk.sys - ok
09:07:56.0468 0x053c [ C1B486A7658353D33A10CC15211A873B, AA4DD9E7AAE5AAB1146B360B17001F975D2F29A1281CF7B13E7136480410F347 ] C:\WINDOWS\system32\drivers\cdaudio.sys
09:07:56.0468 0x053c C:\WINDOWS\system32\drivers\cdaudio.sys - ok
09:07:56.0484 0x053c [ 8E6B8C671615D126FDC553D1E2DE5562, CEEC0067514555D5CA489F50E3D7562FCA8DB8E952C3C878604C9277FC77959F ] C:\WINDOWS\system32\drivers\sfloppy.sys
09:07:56.0484 0x053c C:\WINDOWS\system32\drivers\sfloppy.sys - ok
09:07:56.0484 0x053c [ DA1F27D85E0D1525F6621372E7B685E9, 5A81A46A3BDD19DAFC6C87D277267A5D44F3A1B5302F2CC1111D84B7BAD5610D ] C:\WINDOWS\system32\drivers\beep.sys
09:07:56.0484 0x053c C:\WINDOWS\system32\drivers\beep.sys - ok
09:07:56.0484 0x053c [ 3E1E2BD4F39B0E2B7DC4F4D2BCC2779A, EC635E071201A766845D48973772CBE0958942B4162F3F5F70660D114CC877E0 ] C:\WINDOWS\system32\drivers\fs_rec.sys
09:07:56.0484 0x053c C:\WINDOWS\system32\drivers\fs_rec.sys - ok
09:07:56.0484 0x053c [ C569EF030B11F896E123A30AC92678DB, F851E99B968BBAB82E3B0D1D2F985AEE1EAD10C3BBACDD02BAB2ACEE57CB048A ] C:\WINDOWS\system32\drivers\hidparse.sys
09:07:56.0484 0x053c C:\WINDOWS\system32\drivers\hidparse.sys - ok
09:07:56.0500 0x053c [ 73C1E1F395918BC2C6DD67AF7591A3AD, B21133A75253EC15E2DFF66D3B480AB1A7E1A2360476C810E7AA55D0F0EB08D4 ] C:\WINDOWS\system32\drivers\null.sys
09:07:56.0500 0x053c C:\WINDOWS\system32\drivers\null.sys - ok
09:07:56.0500 0x053c [ 9EF487A186DEA361AA06913A75B3FA99, B94EBA4EC6D85E11C81AF9927E9EF0AF2E6FE134CFF1FDB0535B7C5A794B4261 ] C:\WINDOWS\system32\drivers\kbdhid.sys
09:07:56.0500 0x053c C:\WINDOWS\system32\drivers\kbdhid.sys - ok
09:07:56.0500 0x053c [ 0D3A8FAFCEACD8B7625CD549757A7DF1, B9CFDEFCD66AA139F3DC2F967B184669532922563AD5A71769BABDC4370D065E ] C:\WINDOWS\system32\drivers\vga.sys
09:07:56.0500 0x053c C:\WINDOWS\system32\drivers\vga.sys - ok
09:07:56.0515 0x053c [ 4AE068242760A1FB6E1A44BF4E16AFA6, 1FB771162B96AAF787AC24867B818DF8511F0780BB094FA9A38C11D8DBFE68BC ] C:\WINDOWS\system32\drivers\mnmdd.sys
09:07:56.0515 0x053c C:\WINDOWS\system32\drivers\mnmdd.sys - ok
09:07:56.0515 0x053c [ 4912D5B403614CE99C28420F75353332, 975341ECD660209987B5E5171B8315E032439E408CBE8A5986E67AF767F373BB ] C:\WINDOWS\system32\drivers\rdpcdd.sys
09:07:56.0515 0x053c C:\WINDOWS\system32\drivers\rdpcdd.sys - ok
09:07:56.0515 0x053c [ C941EA2454BA8350021D774DAF0F1027, C940E978C7B66A713A0FDAB54B5F995DF59D089AFCD96221DD3222948CD49BBD ] C:\WINDOWS\system32\drivers\msfs.sys
09:07:56.0515 0x053c C:\WINDOWS\system32\drivers\msfs.sys - ok
09:07:56.0515 0x053c [ 23C74D75E36E7158768DD63D92789A91, 394D296F38E7D8EFD91A6EEC301D9CE6AF910E35EB9819F1A9E3363863AEDFDC ] C:\WINDOWS\system32\drivers\ipsec.sys
09:07:56.0515 0x053c C:\WINDOWS\system32\drivers\ipsec.sys - ok
09:07:56.0531 0x053c [ 3182D64AE053D6FB034F44B6DEF8034A, 4ADFC76965BA2A5F488E71789A4E4EA702A74AF42725F72130D1CA919406CF19 ] C:\WINDOWS\system32\drivers\npfs.sys
09:07:56.0531 0x053c C:\WINDOWS\system32\drivers\npfs.sys - ok
09:07:56.0531 0x053c [ FE0D99D6F31E4FAD8159F690D68DED9C, 998685622ABE631984B7E4DBF91AB3594B1F574378D75EB9F6265F4650470692 ] C:\WINDOWS\system32\drivers\rasacd.sys
09:07:56.0531 0x053c C:\WINDOWS\system32\drivers\rasacd.sys - ok
09:07:56.0531 0x053c [ 9AEFA14BD6B182D61E3119FA5F436D3D, EA29E49434585409272E7901AF89771FE9D6E911A7DC44AB3C7020CFF8A44552 ] C:\WINDOWS\system32\drivers\tcpip.sys
09:07:56.0531 0x053c C:\WINDOWS\system32\drivers\tcpip.sys - ok
09:07:56.0546 0x053c [ CC748EA12C6EFFDE940EE98098BF96BB, AF523E21C25D9A1715EFEA573E4F52AF5D4FC9F28A2D613F5DB629C186C439E0 ] C:\WINDOWS\system32\drivers\ipnat.sys
09:07:56.0546 0x053c C:\WINDOWS\system32\drivers\ipnat.sys - ok
09:07:56.0546 0x053c [ 74B2B2F5BEA5E9A3DC021D685551BD3D, 7932B71F98B4122BE88F576BF6D745A757AE378A48924B7F4358837B75640A82 ] C:\WINDOWS\system32\drivers\netbt.sys
09:07:56.0546 0x053c C:\WINDOWS\system32\drivers\netbt.sys - ok
09:07:56.0546 0x053c [ 1E44BC1E83D8FD2305F8D452DB109CF9, CF5EC07E0B589FA2A4701C6CFD69E893FC3ABF274AD57AE3C13FFE49063B02C8 ] C:\WINDOWS\system32\drivers\afd.sys
09:07:56.0546 0x053c C:\WINDOWS\system32\drivers\afd.sys - ok
09:07:56.0562 0x053c [ E20B95BAEDB550F32DD489265C1DA1F6, 5589B2067E6C9FBA290D8C5EADDC198EBAF39C50C3CD7D2BC5CDA7CBFBC445E5 ] C:\WINDOWS\system32\drivers\wanarp.sys
09:07:56.0562 0x053c C:\WINDOWS\system32\drivers\wanarp.sys - ok
09:07:56.0562 0x053c [ B5B8A80875C1DEDEDA8B02765642C32F, AD0C71D73B1B8225351FBF4FFB43001A32B4DAE69504C59970CD2428BB33D4EF ] C:\WINDOWS\system32\drivers\arp1394.sys
09:07:56.0562 0x053c C:\WINDOWS\system32\drivers\arp1394.sys - ok
09:07:56.0562 0x053c [ 5D81CF9A2F1A3A756B66CF684911CDF0, 7989C36607CAEA17AFA2C1C9904145CA0714A54B9F712D9D4C1AB140D0B2CC0C ] C:\WINDOWS\system32\drivers\netbios.sys
09:07:56.0562 0x053c C:\WINDOWS\system32\drivers\netbios.sys - ok
09:07:56.0562 0x053c [ A32BEBAF723557681BFC6BD93E98BD26, 35039BA72A29F87B2CA37DCDE4EFDAABBDEAD8CE3EB8652ACC665994118145A6 ] C:\WINDOWS\system32\drivers\processr.sys
09:07:56.0562 0x053c C:\WINDOWS\system32\drivers\processr.sys - ok
09:07:56.0578 0x053c [ 7D304A5EB4344EBEEAB53A2FE3FFB9F0, DB9B186F7076D7B94F45041AF7B77C1AD2CAB504D683B459C6CB1C22840ED170 ] C:\WINDOWS\system32\drivers\mrxsmb.sys
09:07:56.0578 0x053c C:\WINDOWS\system32\drivers\mrxsmb.sys - ok
09:07:56.0578 0x053c [ 7AD224AD1A1437FE28D89CF22B17780A, 6645235CA27D671954E3557FA37082881C3D7D47492C71264CD8CB8D108EC801 ] C:\WINDOWS\system32\drivers\rdbss.sys
09:07:56.0578 0x053c C:\WINDOWS\system32\drivers\rdbss.sys - ok
09:07:56.0578 0x053c [ D45926117EB9FA946A6AF572FBE1CAA3, 4C94EF009D778BE0BDF8F812F026B96F91F641BE30AA2531427A5E63DBD280DA ] C:\WINDOWS\system32\drivers\fips.sys
09:07:56.0578 0x053c C:\WINDOWS\system32\drivers\fips.sys - ok
09:07:56.0593 0x053c [ 5F816C1F539266D2D4C78694239DA0B5, 10BFCCF4EFFC3813A563D528DC5464827BEF10AE21D6B9C1138930228E7047D1 ] C:\WINDOWS\system32\smss.exe
09:07:56.0593 0x053c C:\WINDOWS\system32\smss.exe - ok
09:07:56.0593 0x053c [ F8F0D25CA553E39DDE485D8FC7FCCE89, 54DF909101AAEC63234A5C33B51D6689FEF58B943942BFFA9606864F43EC1085 ] C:\WINDOWS\system32\ntdll.dll
09:07:56.0593 0x053c C:\WINDOWS\system32\ntdll.dll - ok
09:07:56.0593 0x053c [ 23043C91A0F9DFB4B9E9F87B680863B4, 318A6F6DB4A1EDE7D3758E324350EA852449ABD2A7BB77004FBC403CF9FFB08B ] C:\WINDOWS\system32\autochk.exe
09:07:56.0593 0x053c C:\WINDOWS\system32\autochk.exe - ok
09:07:56.0593 0x053c [ 9DD07AF82244867CA36681EA2D29CE79, 84926A50CB38C322D1CDFD4C0D5F8FFE3B2EF3080B3401F5D5AE8CBD0A719685 ] C:\WINDOWS\system32\sfcfiles.dll
09:07:56.0593 0x053c C:\WINDOWS\system32\sfcfiles.dll - ok
09:07:56.0609 0x053c [ C885B02847F5D2FD45A24E219ED93B32, B26B2F8E3A831E2B65EB0C5195B0645CD50E22615CE79C9B0B391CD563B121DB ] C:\WINDOWS\system32\drivers\cdfs.sys
09:07:56.0609 0x053c C:\WINDOWS\system32\drivers\cdfs.sys - ok
09:07:56.0609 0x053c [ 2F31B7F954BED437F2C75026C65CAF7B, 1F8D6CBB01AD403BC89D1E987012E2F63CDFD9C49F402F358B64B31C13E4DD14 ] C:\WINDOWS\system32\drivers\wmilib.sys
09:07:56.0609 0x053c C:\WINDOWS\system32\drivers\wmilib.sys - ok
09:07:56.0609 0x053c [ 9F3A2F5AA6875C72BF062C712CFA2674, B4DF1D2C56A593C6B54DE57395E3B51D288F547842893B32B0F59228A0CF70B9 ] C:\WINDOWS\system32\drivers\atapi.sys
09:07:56.0609 0x053c C:\WINDOWS\system32\drivers\atapi.sys - ok
09:07:56.0625 0x053c [ FE97D0343ACFDEBDD578FC67CC91FA87, FE26FBA13079189EF96A1C994036EA472A4BF34FA14C163C693AD481BF31E676 ] C:\WINDOWS\system32\drivers\dxapi.sys
09:07:56.0625 0x053c C:\WINDOWS\system32\drivers\dxapi.sys - ok
09:07:56.0625 0x053c [ 9A10AACBFDC4922715375FB4065EC930, E407953587C04F75DDB163420A5121FF520D31F74753D452E316042C42D360CF ] C:\WINDOWS\system32\watchdog.sys
09:07:56.0625 0x053c C:\WINDOWS\system32\watchdog.sys - ok
09:07:56.0625 0x053c [ B9FE0B45F3D4A281B56CC84713824E0C, B37D569D09801FB9CF1306FF1295CE6EE4B6AAD11DCA7EBCBC155D186FD895CD ] C:\WINDOWS\system32\win32k.sys
09:07:56.0625 0x053c C:\WINDOWS\system32\win32k.sys - ok
09:07:56.0625 0x053c [ DD40363ABAD230A84C5E2178B11EFA88, E4B406C0B10686CF245EC0053A03424CE1FB8AC7FB3545525F13BB3BC5086FF1 ] C:\WINDOWS\system32\csrsrv.dll
09:07:56.0625 0x053c C:\WINDOWS\system32\csrsrv.dll - ok
09:07:56.0640 0x053c [ 44F275C64738EA2056E3D9580C23B60F, 5D4B7306E71A44440E7F0B32A373AEC120C01B69F87756589E39EB85C40CD742 ] C:\WINDOWS\system32\csrss.exe
09:07:56.0640 0x053c C:\WINDOWS\system32\csrss.exe - ok
09:07:56.0640 0x053c [ 42F1F4C0AFB08410E5F02D4B13EBB623, 924C30587C51C0D1E1F47991969AF492A644552E15F2480EA991DCB74A3E68D5 ] C:\WINDOWS\system32\basesrv.dll
09:07:56.0640 0x053c C:\WINDOWS\system32\basesrv.dll - ok
09:07:56.0640 0x053c [ 69AE2B2E6968C316536E5B10B9702E63, D9C5DA7A20DDE69D91E72400C3F06F3CB099DEF42EA6C53FCE076258A0C22391 ] C:\WINDOWS\system32\winsrv.dll
09:07:56.0640 0x053c C:\WINDOWS\system32\winsrv.dll - ok
09:07:56.0656 0x053c [ 8B1F3320AEBB536E021A5014409862DE, AF87414100C16882B5CB6852C94205EC646A42B2616C5EC8AD5010611427FAF1 ] C:\WINDOWS\system32\gdi32.dll
09:07:56.0656 0x053c C:\WINDOWS\system32\gdi32.dll - ok
09:07:56.0656 0x053c [ 6FE42512AB1B89F32A7407F261B1D2D0, 30DCC1044BCC7108087462E173707DC8D947C4F37281686A79D3D40273901878 ] C:\WINDOWS\system32\kernel32.dll
09:07:56.0656 0x053c C:\WINDOWS\system32\kernel32.dll - ok
09:07:56.0656 0x053c [ B26B135FF1B9F60C9388B4A7D16F600B, ACD0AE7B4D5F871E148276C6CC4AE3A216E33F67FC78D827C16986E1F945438C ] C:\WINDOWS\system32\user32.dll
09:07:56.0656 0x053c C:\WINDOWS\system32\user32.dll - ok
09:07:56.0671 0x053c [ AC7280566A7BB85CB3291F04DDC1198E, 7640BC4C28B5D5167A10C4B0DA0FC8C7A255334D4BA11FD3E28A697A5B58583C ] C:\WINDOWS\system32\drivers\dxg.sys
09:07:56.0671 0x053c C:\WINDOWS\system32\drivers\dxg.sys - ok
09:07:56.0671 0x053c [ A73F5D6705B1D820C19B18782E176EFD, C36486504C3A596FDCA487143F6D3B43C0BEE01321F6F1F3071976556533C419 ] C:\WINDOWS\system32\drivers\dxgthk.sys
09:07:56.0671 0x053c C:\WINDOWS\system32\drivers\dxgthk.sys - ok
09:07:56.0671 0x053c [ EE9770D8C737C656E7D7672189AFD47F, 975D25226C6D9B8B6302D4383C4A15D6C4CE48D6D865A448F99FDB3ED9E0CF9D ] C:\WINDOWS\system32\ati2dvag.dll
09:07:56.0671 0x053c C:\WINDOWS\system32\ati2dvag.dll - ok
09:07:56.0671 0x053c [ 224FAD395E57B0FA853EE4A32B481F8F, E4EC23B95630E50C082020391B5AFB13196DAD11BFEDB8BFA5746168FF4AEBBD ] C:\WINDOWS\system32\ati2cqag.dll
09:07:56.0671 0x053c C:\WINDOWS\system32\ati2cqag.dll - ok
09:07:56.0687 0x053c [ 2F1483D281B77F1939E5312C4A8B56A6, 69DF4C095B8F66949068A638D62A189DCC339A57EB786CE73CA0D10167FDC7BB ] C:\WINDOWS\system32\atikvmag.dll
09:07:56.0687 0x053c C:\WINDOWS\system32\atikvmag.dll - ok
09:07:56.0687 0x053c [ ECB7591870F8BFB1A4C17B718AD5A4AA, 67E8D218F107F78F9C62999F560E47AEC799E4B4DC4AB3EBC0DC61670BFE3E3D ] C:\WINDOWS\system32\vga.dll
09:07:56.0687 0x053c C:\WINDOWS\system32\vga.dll - ok
09:07:56.0687 0x053c [ 9860E1110257BDC1E77677958E35A1B3, 9FA6B95068F593789762F764DAEB2F97F5B90F232059E7AF8D0D7A7F0D99489B ] C:\WINDOWS\system32\ati3duag.dll
09:07:56.0687 0x053c C:\WINDOWS\system32\ati3duag.dll - ok
09:07:56.0703 0x053c [ FF4B72E0F2B24C1C02EF7156C45FB951, 65DC7584AECFAEEAFE463239DB61B474E651B973098D8EA9F1D3795E09E64DDF ] C:\WINDOWS\system32\ativvaxx.dll
09:07:56.0703 0x053c C:\WINDOWS\system32\ativvaxx.dll - ok
09:07:56.0703 0x053c [ ED0EF0A136DEC83DF69F04118870003E, 45377CB8E9F0120F836FC8261C711F7DBF7199117AFB3652EBF100D5F0429B1E ] C:\WINDOWS\system32\winlogon.exe
09:07:56.0703 0x053c C:\WINDOWS\system32\winlogon.exe - ok
09:07:56.0703 0x053c [ E76F8807070ED04E7408A86D6D3A6137, BFCF5361B7335760A7AE4B6958DE516A27AC60AA09135A46F0B49F588FAFE3A0 ] C:\WINDOWS\system32\advapi32.dll
09:07:56.0703 0x053c C:\WINDOWS\system32\advapi32.dll - ok
09:07:56.0703 0x053c [ B0E27554F0B16BAEF4D51D7260E62CFB, 3DE9F4817965F1DBB93CAAE541EB8EC19396ACE7CB74D69C52D1D7DF15FB14CF ] C:\WINDOWS\system32\rpcrt4.dll
09:07:56.0703 0x053c C:\WINDOWS\system32\rpcrt4.dll - ok
09:07:56.0718 0x053c [ 5357826C8A8DD6A07F17C48BB45BE46E, E081B04F8C8A31951A0ADEC889E6CA4DEED5FF738446D5A5614B11B113000BCA ] C:\WINDOWS\system32\secur32.dll
09:07:56.0718 0x053c C:\WINDOWS\system32\secur32.dll - ok
09:07:56.0718 0x053c [ 714705F29A917993536A6AB2DEDB0B7F, 5C3EA97044A7AF8027000DFA40901C0097EC935A7149C0A46AA2C6A2F9FD6CC1 ] C:\WINDOWS\system32\authz.dll
09:07:56.0718 0x053c C:\WINDOWS\system32\authz.dll - ok
09:07:56.0718 0x053c [ 355EDBB4D412B01F1740C17E3F50FA00, 8619D345C864CD8EA704EFAA0A391F5F31AA56BB6D30F62FC60F465873CC1BF9 ] C:\WINDOWS\system32\msvcrt.dll
09:07:56.0718 0x053c C:\WINDOWS\system32\msvcrt.dll - ok
09:07:56.0718 0x053c [ 6BEE5D4EFF0A0341BCC4A462D81CCFC1, EA90CA8DC82F2273B4CD8F8C3B7C5AB9856AE0E8B5AC0CA2604776CDC9FE40B2 ] C:\WINDOWS\system32\crypt32.dll
09:07:56.0718 0x053c C:\WINDOWS\system32\crypt32.dll - ok
09:07:56.0734 0x053c [ 04D898830DF96A17A20FD35D7590F87E, 09C75D1D434FF6BBE9B3F5E0A8E63944ACB34E364C4A89676DED2204DBD1AEF5 ] C:\WINDOWS\system32\msasn1.dll
09:07:56.0734 0x053c C:\WINDOWS\system32\msasn1.dll - ok
09:07:56.0734 0x053c [ 013C1148C1EC025596896E093F60F608, E19D20E0852372ED7DA66939E995F8F7ECC52ED5B650E8B833944788C0A34F61 ] C:\WINDOWS\system32\nddeapi.dll
09:07:56.0734 0x053c C:\WINDOWS\system32\nddeapi.dll - ok
09:07:56.0734 0x053c [ FCFA1C55971CC229D353B3A15ACCD995, 6C21D6EAD676AF8C100666261CE7AA5AA86671883B78092AD61008234C96BBBA ] C:\WINDOWS\system32\profmap.dll
09:07:56.0734 0x053c C:\WINDOWS\system32\profmap.dll - ok
09:07:56.0750 0x053c [ CAC752BF84DB4666ED3CE0948E6EA937, C84F9D57C076DE6ACC1720B66147D0CA963C65714593FAFD7FB1FE1F01CC464B ] C:\WINDOWS\system32\netapi32.dll
09:07:56.0750 0x053c C:\WINDOWS\system32\netapi32.dll - ok
09:07:56.0750 0x053c [ 43D13C80EBEC0135A3611E0F616F179B, 9C5409ECBD2C3B89C80F0A59B96220178E790A7D78967C6281D56EB1965E9ECD ] C:\WINDOWS\system32\userenv.dll
09:07:56.0750 0x053c C:\WINDOWS\system32\userenv.dll - ok
09:07:56.0750 0x053c [ 9CFCB3CA3D83B4EAA133F0644A2C6F31, CC0A76B55B38183B8C6141C290D1858A9D118333C804784AB305FE76A0FCE775 ] C:\WINDOWS\system32\psapi.dll
09:07:56.0750 0x053c C:\WINDOWS\system32\psapi.dll - ok
09:07:56.0750 0x053c [ AF11C591F2F4AFF4A6CF699D376F618B, B61C0D1944D5D8F536AB5422017C99773BD89EA59784969E4F8F269BF9EF57C3 ] C:\WINDOWS\system32\regapi.dll
09:07:56.0750 0x053c C:\WINDOWS\system32\regapi.dll - ok
09:07:56.0765 0x053c [ 24192246760E0E64435522E246B1D6C2, B1C5A16A73250DEA900FF6ECE71F604E2411B4FDFD497564BEB7D867A75640BF ] C:\WINDOWS\system32\setupapi.dll
09:07:56.0765 0x053c C:\WINDOWS\system32\setupapi.dll - ok
09:07:56.0765 0x053c [ C7CE131408739B0B3A318BE2D0032719, CAEEED45F6BAB22F611B2200DC91E68426F169F5646247893CF3AC7EFDDD07B8 ] C:\WINDOWS\system32\version.dll
09:07:56.0765 0x053c C:\WINDOWS\system32\version.dll - ok
09:07:56.0765 0x053c [ 430CEB794F6E6EF8AC86958C242366D6, 48066566EDC18654095EAD7F4449CD42B44AD758465A6B36A42B489F32C7E64B ] C:\WINDOWS\system32\winsta.dll
09:07:56.0765 0x053c C:\WINDOWS\system32\winsta.dll - ok
09:07:56.0781 0x053c [ D458B738B4C2CE33174CFB2CE12412DB, C8FCA4B1BE8358B1F14BB25F39899A18804133544701DFCF40E8782C2487C912 ] C:\WINDOWS\system32\wintrust.dll
09:07:56.0781 0x053c C:\WINDOWS\system32\wintrust.dll - ok
09:07:56.0781 0x053c [ FFC01A72D1C25CCB39F61B202CE60819, 31A5C01E30B064BDBD378AF691DB99F6AA33A639C086ADC6C8408C3CB171C990 ] C:\WINDOWS\system32\imagehlp.dll
09:07:56.0781 0x053c C:\WINDOWS\system32\imagehlp.dll - ok
09:07:56.0781 0x053c [ 0DA85218E92526972A821587E6A8BF8F, 9377F61D4B10974D5962E03F54BB89C8F804883245D61C670E51228AFE4559EB ] C:\WINDOWS\system32\imm32.dll
09:07:56.0781 0x053c C:\WINDOWS\system32\imm32.dll - ok
09:07:56.0796 0x053c [ 9789E95E1D88EEB4B922BF3EA7779C28, 2D17FD78E71BDB5D51B69DE6B36D7481A7AA3C61EA7636CD71638AF501883A91 ] C:\WINDOWS\system32\ws2help.dll
09:07:56.0796 0x053c C:\WINDOWS\system32\ws2help.dll - ok
09:07:56.0796 0x053c [ 2CCC474EB85CEAA3E1FA1726580A3E5A, 6E99D2FB4997E54E8B1B7D769CF2C0FAE296A6441DC39984850EA26BFEB7E500 ] C:\WINDOWS\system32\ws2_32.dll
09:07:56.0796 0x053c C:\WINDOWS\system32\ws2_32.dll - ok
09:07:56.0796 0x053c [ 56C5B179FE3308B655EB6208C3256FEC, C70BCE54E5DF47D37C835804EAAEC7C06C1A226EFA2003226BE290D1D552126F ] C:\WINDOWS\system32\kbdus.dll
09:07:56.0796 0x053c C:\WINDOWS\system32\kbdus.dll - ok
09:07:56.0796 0x053c [ D7B7A57C0E57C836F18CF12A4C62A1CA, 651B16027B4F4B0ED2F827E32B7E66188CDB023DB8C7B1A9A1A44063FB35B9DE ] C:\WINDOWS\system32\msgina.dll
09:07:56.0796 0x053c C:\WINDOWS\system32\msgina.dll - ok
09:07:56.0812 0x053c [ 93AFB83FBC1F9443CAC722FCA63D73BF, 853C4A03A153F232E5CAF219F7FD732CB82CB62171F077DE737B32169F7832AB ] C:\WINDOWS\system32\comctl32.dll
09:07:56.0812 0x053c C:\WINDOWS\system32\comctl32.dll - ok
09:07:56.0812 0x053c [ 40B0F98BAD16AD5DEF894E88C3EF8014, 916B7BFC23BB5A3F757160BCF2013A8260D9382EFDE6AADAFC4D297828C71003 ] C:\WINDOWS\system32\odbc32.dll
09:07:56.0812 0x053c C:\WINDOWS\system32\odbc32.dll - ok
09:07:56.0812 0x053c [ 86987A5000DFA3EBE2275C0456BCF2FE, 31B699E8FD11DD59ADBAE56650C1B7AE80484091B3B6D9015A95F590E2C3EB05 ] C:\WINDOWS\system32\comdlg32.dll
09:07:56.0812 0x053c C:\WINDOWS\system32\comdlg32.dll - ok
09:07:56.0828 0x053c [ 6843D54BC4A40CC8C5741AF750233D10, D998B54B7D23A986DD14D8BC56169A10EE43267F4F1914FBDD55B6B028993FAC ] C:\WINDOWS\system32\shell32.dll
09:07:56.0828 0x053c C:\WINDOWS\system32\shell32.dll - ok
09:07:56.0828 0x053c [ C448A248B743F5FB935C787A5D97268B, 26E88FF449F938B218FAED6D8F3F095577216A29D656D17ACEA7F6C16E638BED ] C:\WINDOWS\system32\shlwapi.dll
09:07:56.0828 0x053c C:\WINDOWS\system32\shlwapi.dll - ok
09:07:56.0828 0x053c [ 694503348B586E99D56C0E30AB5B3EF8, 53A0C2604574058F1520D8F0805F1247B15BB0E00A5B5BAFE027C702D55E5076 ] C:\WINDOWS\system32\sxs.dll
09:07:56.0828 0x053c C:\WINDOWS\system32\sxs.dll - ok
09:07:56.0828 0x053c [ 736B12B725AEB2B07F0241A9F680CB10, 9EF1406CAEE256117DA8C8904BCB20FB8F9421F02F812B4DC2CE1F16D2B315F2 ] C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.6028_x-ww_61e65202\comctl32.dll
09:07:56.0828 0x053c C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.6028_x-ww_61e65202\comctl32.dll - ok
09:07:56.0843 0x053c [ 6B7C6B32F8E84D56C6260D684019FEA2, A10B4D413452D95B6B4087838F2FCE0B9F42D8C0CBE7A91DC080AE1163FB6D1A ] C:\WINDOWS\system32\odbcint.dll
09:07:56.0843 0x053c C:\WINDOWS\system32\odbcint.dll - ok
09:07:56.0843 0x053c [ 96E1C926F22EE1BFBAE82901A35F6BF3, 95568F138216FFADCFC4BAE8A12825FFE53F2EA04C5CAC2AD10F65FC0C4E3CDB ] C:\WINDOWS\system32\sfc.dll
09:07:56.0843 0x053c C:\WINDOWS\system32\sfc.dll - ok
09:07:56.0843 0x053c [ 6B5DB6789177A4FD0DEBC248041D0739, 3E3239C3613CCBB9EE2539D78BC745ED19134E1D3BED88C3D5273796FA2507DA ] C:\WINDOWS\system32\sfc_os.dll
09:07:56.0843 0x053c C:\WINDOWS\system32\sfc_os.dll - ok
09:07:56.0859 0x053c [ 99BC0B50F511924348BE19C7C7313BBF, A1006C687BD352F700B140DC741515A0CDD9E1352C0FBD1EE410D404E344444B ] C:\WINDOWS\system32\shsvcs.dll
09:07:56.0859 0x053c C:\WINDOWS\system32\shsvcs.dll - ok
09:07:56.0859 0x053c [ 59B408E5B8489B0B36A0D783D150EDCC, CB234B25502B0CE0C1E6CFA883FDDF64DAB7A6E50A6AD36CAB3B30A7C872B403 ] C:\WINDOWS\system32\ole32.dll
09:07:56.0859 0x053c C:\WINDOWS\system32\ole32.dll - ok
09:07:56.0859 0x053c [ CF492D7E9AF1C628B3536D20EF6F5CC7, 3D7A5A5D6B804C0A3F3E7256B3AC19397567700271CABCD7C4C8B51565958BC8 ] C:\WINDOWS\system32\apphelp.dll
09:07:56.0859 0x053c C:\WINDOWS\system32\apphelp.dll - ok
09:07:56.0859 0x053c [ BF2466B3E18E970D8A976FB95FC1CA85, F7794B5D12DC5D820A162850F4388E2AA80426AD07CB221799CF941C682AB501 ] C:\WINDOWS\system32\lsass.exe
09:07:56.0859 0x053c C:\WINDOWS\system32\lsass.exe - ok
09:07:56.0875 0x053c [ 65DF52F5B8B6E9BBD183505225C37315, 59C606977DB40A3443DFF0BE2A4C761824881B22C9FDB3D23F6486DB580E92A4 ] C:\WINDOWS\system32\services.exe
09:07:56.0875 0x053c C:\WINDOWS\system32\services.exe - ok
09:07:56.0875 0x053c [ BD31DC6DBE9333C4FBD4BDF0899F2160, 545D83178CCD74C68B72C607201EF9E1C8A5FC26A08288F8D3A77106964D1034 ] C:\WINDOWS\system32\lsasrv.dll
09:07:56.0875 0x053c C:\WINDOWS\system32\lsasrv.dll - ok
09:07:56.0875 0x053c [ EC29A79F1E76DC509E24D401F29D0678, 2CECCD7CE806152F6DD1A6812C7DAEC46FB197E63D14414808D713C829EE4260 ] C:\WINDOWS\system32\ncobjapi.dll
09:07:56.0875 0x053c C:\WINDOWS\system32\ncobjapi.dll - ok
09:07:56.0890 0x053c [ F404830F3CD9BF8F2515E489C0CDA297, 4FFFBBDD04B82623983B8B51E52E113EBF0E32E8328BFD3754B7A299E5673569 ] C:\WINDOWS\system32\msvcp60.dll
09:07:56.0890 0x053c C:\WINDOWS\system32\msvcp60.dll - ok
09:07:56.0890 0x053c [ DD7BD97FB8BD800963789158A5E4B41D, 4C265CB9AC1B8C398E625C1775A5AADD8A030D158B557E24F90CA57C0253FF0D ] C:\WINDOWS\system32\mpr.dll
09:07:56.0890 0x053c C:\WINDOWS\system32\mpr.dll - ok
09:07:56.0890 0x053c [ B24A42A413E694AD73FDFB7FBD492C31, 52411B5C714ED7FCFF3A120980EB75BF5A64E022303D3E717048E0E44F604AC0 ] C:\WINDOWS\system32\scesrv.dll
09:07:56.0890 0x053c C:\WINDOWS\system32\scesrv.dll - ok
09:07:56.0906 0x053c [ EC4C0D9BFD9F7E33F8B395AD54E13063, 18E60FF334376604F213F3323FAB81F392493496C6CA809FAD66BB8B0EEB3396 ] C:\WINDOWS\system32\ntdsapi.dll
09:07:56.0906 0x053c C:\WINDOWS\system32\ntdsapi.dll - ok
09:07:56.0906 0x053c [ 2EDFC2A8893435723AD80481803C6D5C, CD547E4749EE6466FD4F50CF2EAD37AD993C6BC89068BD51726869D5ADB2AF8E ] C:\WINDOWS\system32\umpnpmgr.dll
09:07:56.0906 0x053c C:\WINDOWS\system32\umpnpmgr.dll - ok
09:07:56.0906 0x053c [ 389496118B3B03C2328024AF320132AC, 11F85CA49596CE12B1F80B5BC059B6F5549FC09A43E2C47841A688F2ACEBB8B8 ] C:\WINDOWS\system32\dnsapi.dll
09:07:56.0906 0x053c C:\WINDOWS\system32\dnsapi.dll - ok
09:07:56.0906 0x053c [ 1F03103598BD817B1078DAB1326DDE11, 0F0D19E67E25E9D2113920166B7326B46BACD22BA08476EC91D9C564AFC1FAF3 ] C:\WINDOWS\system32\shimeng.dll
09:07:56.0906 0x053c C:\WINDOWS\system32\shimeng.dll - ok
09:07:56.0921 0x053c [ 0492CF5870F0E616B0C71695A433D162, 47C9FB64A4CF3DF54F664B2B31A834ACF75B504650007E6201546C2D0E44D9C2 ] C:\WINDOWS\system32\wldap32.dll
09:07:56.0921 0x053c C:\WINDOWS\system32\wldap32.dll - ok
09:07:56.0921 0x053c [ EA9EE60B408878E5F2012F9C783836DB, 354A6660705759C0E767BCD7FB6F1B4371B74784A986431A626DF3793D0421EC ] C:\WINDOWS\AppPatch\acadproc.dll
09:07:56.0921 0x053c C:\WINDOWS\AppPatch\acadproc.dll - ok
09:07:56.0921 0x053c [ 8329A39D5A402A75A74301D6A62ECDA1, 1947B2B19F2D0C690EC880B5A92F88903D78C6BB6EE47261B3D744B5A863D562 ] C:\WINDOWS\system32\samlib.dll
09:07:56.0921 0x053c C:\WINDOWS\system32\samlib.dll - ok
09:07:56.0937 0x053c [ F05B8CDB7FE0E55DCCFB1D946CE80064, E59BC2F25EBFF5F0CF459C9B8DEE882ADE227323F4768EBACFCC6784861BF260 ] C:\WINDOWS\system32\samsrv.dll
09:07:56.0937 0x053c C:\WINDOWS\system32\samsrv.dll - ok
09:07:56.0937 0x053c [ 310C15FD8358B2C4CD7A5B98A112883F, CA656F066373B164A138032F5BF7EF68603EBDB0D49BD4663C99061F47F29085 ] C:\WINDOWS\AppPatch\acgenral.dll
09:07:56.0937 0x053c C:\WINDOWS\AppPatch\acgenral.dll - ok
09:07:56.0937 0x053c [ 17A1D675C12BBF80CAAC54A4855C41D0, F6185E42180218E932ADFFD63EF78EE8324B816BD57EA217322A46D1D2F47928 ] C:\WINDOWS\system32\cryptdll.dll
09:07:56.0937 0x053c C:\WINDOWS\system32\cryptdll.dll - ok
09:07:56.0937 0x053c [ 4A953F13942867BA8FB41F141EC1B80C, BAE05A8CEDA4411324E38DB8A2153A988C6A3FAC8AD7CB27EE14E18FE7C47569 ] C:\WINDOWS\system32\winmm.dll
09:07:56.0937 0x053c C:\WINDOWS\system32\winmm.dll - ok
09:07:56.0953 0x053c [ EFF03460E542EEA6B0ABDEC6BF19C897, C2A0DDE6E8B49B152C295E97CFC35557391DEEE5A3A0B1BB4E445C405C716C55 ] C:\WINDOWS\system32\oleaut32.dll
09:07:56.0953 0x053c C:\WINDOWS\system32\oleaut32.dll - ok
09:07:56.0953 0x053c [ 2098AB52BD5316E59AA36F3437B13BE6, C4C9F2CFCAFF91B4A6F68E28EFE12EED216B41F081F8D577597C0634ECE57018 ] C:\WINDOWS\system32\msacm32.dll
09:07:56.0953 0x053c C:\WINDOWS\system32\msacm32.dll - ok
09:07:56.0953 0x053c [ 7A2CC3719B255E6B5D74396183B7715B, 2C4A2D5B42CFFE42BE72A652D1B0EED43D7EECF7CA3416660A3E0C539AA2AC34 ] C:\WINDOWS\system32\uxtheme.dll
09:07:56.0953 0x053c C:\WINDOWS\system32\uxtheme.dll - ok
09:07:56.0968 0x053c [ F24B12786D60A17008319E3F2AEE7799, BF916F65D770C61612678171CC184A0BF259992CEC0BF607D26834CE2A234FB3 ] C:\WINDOWS\system32\msapsspc.dll
09:07:56.0968 0x053c C:\WINDOWS\system32\msapsspc.dll - ok
09:07:56.0968 0x053c [ 7A660EDC0757849DF5F8706FB6E9F740, CA3820507A92EE9AB4EE8E804736FE1795224AE02D396AADB5BFD53223D9B7E2 ] C:\WINDOWS\system32\msvcrt40.dll
09:07:56.0968 0x053c C:\WINDOWS\system32\msvcrt40.dll - ok
09:07:56.0968 0x053c [ 0F64207B49390C8063C36AE7CBF9C2DB, 52C4A7A38EE11CA247001EB0A3C67BFEB1A09E9AC406486132D5AC38BE3A6A6F ] C:\WINDOWS\system32\schannel.dll
09:07:56.0968 0x053c C:\WINDOWS\system32\schannel.dll - ok
09:07:56.0968 0x053c [ 3D76DD0CBC536E0F8C45D23ED230BEB2, F74F94525AB7CE1E269452C9E1DD08411A668CFDD94F069C90FC2EE33CB35A12 ] C:\WINDOWS\system32\digest.dll
09:07:56.0968 0x053c C:\WINDOWS\system32\digest.dll - ok
09:07:56.0984 0x053c [ A4388DF80E52695AE92EE5F3F61F1619, A4B7C6E10B92B5022CA6E8FD9094098614FD63178EA86A7B035EB89B373BF033 ] C:\WINDOWS\system32\msnsspc.dll
09:07:56.0984 0x053c C:\WINDOWS\system32\msnsspc.dll - ok
09:07:56.0984 0x053c [ A525C96C51D55111FDF3BEA9FFFFC7AE, AA5B080E01573B96A37E67F871F97AE975E1E9519EDB16476472AA3FA2144643 ] C:\WINDOWS\system32\kerberos.dll
09:07:56.0984 0x053c C:\WINDOWS\system32\kerberos.dll - ok
09:07:56.0984 0x053c [ 5733177BCF16EE78B99543C9B0AB81EA, 6504D3D665AC8AB27A44F863F9C1A23FF3B68EAC0512F418712CC0D56F739E24 ] C:\WINDOWS\system32\msctfime.ime
09:07:56.0984 0x053c C:\WINDOWS\system32\msctfime.ime - ok
09:07:57.0000 0x053c [ C6BB1D1500DB4A0E224CB65E6C7E8A80, 32099A486457D1DC3B1269DE9570EE922F118C3BD443FE78ED051DD764EF4DE3 ] C:\WINDOWS\system32\msprivs.dll
09:07:57.0000 0x053c C:\WINDOWS\system32\msprivs.dll - ok
09:07:57.0000 0x053c [ 318FAA70D9B0FB8DD168D4ED628E27B2, 2C407FFDA4A02D4A1CB9592C6FA4293BA31BE8852670436F1187A8107572ED41 ] C:\WINDOWS\system32\atmfd.dll
09:07:57.0000 0x053c C:\WINDOWS\system32\atmfd.dll - ok
09:07:57.0000 0x053c [ 517561A1113B04E51D936CD018DE1C1F, A5F572C3557705F28F7A465970F0432F55B616EFD208BA0CBDFFBF7A41F07C04 ] C:\WINDOWS\system32\msv1_0.dll
09:07:57.0000 0x053c C:\WINDOWS\system32\msv1_0.dll - ok
09:07:57.0015 0x053c [ AF07DC9B7CC455629E732340C7B15F3A, 4403503F24FB76AB55D347273319B98BC0955AB3E537FA5ADA498B9AED76484A ] C:\WINDOWS\system32\iphlpapi.dll
09:07:57.0015 0x053c C:\WINDOWS\system32\iphlpapi.dll - ok
09:07:57.0015 0x053c [ 1B7F071C51B77C272875C3A23E1E4550, 9D6EA6DF4F4A531E35B843CE11AB6BDBEF0C2716773C14660E98038C1F68B7C4 ] C:\WINDOWS\system32\netlogon.dll
09:07:57.0015 0x053c C:\WINDOWS\system32\netlogon.dll - ok
09:07:57.0015 0x053c [ 54AF4B1D5459500EF0937F6D33B1914F, FA1876888BCB9C72A92369DBED4FF1A8666784523FB41E618FA0919490FCDDB9 ] C:\WINDOWS\system32\w32time.dll
09:07:57.0015 0x053c C:\WINDOWS\system32\w32time.dll - ok
09:07:57.0015 0x053c [ 3AAF9B35939FF9E58CCD18D41655C2FC, AF7358AB0A507D77569A8D38D2392C224BFBEFD1264C069BBC6C677BC20C6B8B ] C:\WINDOWS\system32\wdigest.dll
09:07:57.0015 0x053c C:\WINDOWS\system32\wdigest.dll - ok
09:07:57.0031 0x053c [ 54DAE3EA34802B4ED9AE1C6B1209FA56, EEB1FA90DB44C821B371D5F7C323B4F88E843107BBA16DA2ACB124D6A848B257 ] C:\WINDOWS\system32\rsaenh.dll
09:07:57.0031 0x053c C:\WINDOWS\system32\rsaenh.dll - ok
09:07:57.0031 0x053c [ 02988B904C386B500CD08639C4C20EEA, 66E96045957AABD7F5C364D64DE23A09D4C292C844FA00C45626A8D1EC21F206 ] C:\WINDOWS\system32\winscard.dll
09:07:57.0031 0x053c C:\WINDOWS\system32\winscard.dll - ok
09:07:57.0031 0x053c [ 0E2735281FBB9A764D5584C2A5DCBA59, B1EFF5D7BFDDFEC3A3E5B2F17A6A0F3F47C344A64AB57E6918B4DEC094FC9444 ] C:\WINDOWS\system32\wtsapi32.dll
09:07:57.0031 0x053c C:\WINDOWS\system32\wtsapi32.dll - ok
09:07:57.0046 0x053c [ A86BB5E61BF3E39B62AB4C7E7085A084, B88446E007153BB58C5AE867AC3FB4C46618BBAA5A152687201E0E81F881465A ] C:\WINDOWS\system32\scecli.dll
09:07:57.0046 0x053c C:\WINDOWS\system32\scecli.dll - ok
09:07:57.0046 0x053c [ 27C6D03BCDB8CFEB96B716F3D8BE3E18, 2910EBC692D833D949BFD56059E8106D324A276D5F165F874F3FB1B6C613CDD5 ] C:\WINDOWS\system32\svchost.exe
09:07:57.0046 0x053c C:\WINDOWS\system32\svchost.exe - ok
09:07:57.0046 0x053c [ 549290DBC280C887681D7652978DBBE0, CA2CA8561F11CDD5FD5D23D9D88A96A7FFE4AF6DFE8CE783B0969B6ED3C4CBF8 ] C:\WINDOWS\system32\ntmarta.dll
09:07:57.0046 0x053c C:\WINDOWS\system32\ntmarta.dll - ok
09:07:57.0046 0x053c [ 6B27A5C03DFB94B4245739065431322C, 6AEAC16AB4E0DFD25123AAF4D4181FEE1B919B7B2793117006CE8CF30E826CFD ] C:\WINDOWS\system32\rpcss.dll
09:07:57.0046 0x053c C:\WINDOWS\system32\rpcss.dll - ok
09:07:57.0062 0x053c [ 16403217AB6FC5C30C14C6B12098AD4B, DEA7C556BA9C91E056E6035E77A793A77E428D493518D1C6F796B003D4F07305 ] C:\WINDOWS\system32\xpsp2res.dll
09:07:57.0062 0x053c C:\WINDOWS\system32\xpsp2res.dll - ok
09:07:57.0062 0x053c [ 6D4FEB43EE538FC5428CC7F0565AA656, 4091D82537198562F0CA1D032B2D4BEC75101342B7BCA7778FDA2D515300BC36 ] C:\WINDOWS\system32\eventlog.dll
09:07:57.0062 0x053c C:\WINDOWS\system32\eventlog.dll - ok
09:07:57.0062 0x053c [ 943337D786A56729263071623BBB9DE5, B631B47C869FE4ACF46E4AA272435D9A9CA536E3349E3FFBB8602636FEE7AFD4 ] C:\WINDOWS\system32\mswsock.dll
09:07:57.0062 0x053c C:\WINDOWS\system32\mswsock.dll - ok
09:07:57.0078 0x053c [ 3CB32D3B8CBE79899D63280BB7A83CD9, F34DB3B3DD65F0135F1F7005703B824D2C9B17F7A43062F1FFBEC53B3B26EFC3 ] C:\WINDOWS\system32\hnetcfg.dll
09:07:57.0078 0x053c C:\WINDOWS\system32\hnetcfg.dll - ok
09:07:57.0078 0x053c [ 6F9BEF24C578D5D6740E080BEDD6A448, 72426D49BC31488261D226C7D0C98AD11192019E71654F53D1D17183C328CC7C ] C:\WINDOWS\system32\rasadhlp.dll
09:07:57.0078 0x053c C:\WINDOWS\system32\rasadhlp.dll - ok
09:07:57.0078 0x053c [ D72B9EC3337B247A666F098F3D6B43DE, 4BC52AD1116078B0B313AB6555024302225D6CC03CA428151F78B7C48821489F ] C:\WINDOWS\system32\winrnr.dll
09:07:57.0078 0x053c C:\WINDOWS\system32\winrnr.dll - ok
09:07:57.0078 0x053c [ 4E3D06D6E68EEDB52565080F55B460D3, A503BFC29D3936045488EDC1771914EC84BE80E422F772F53D7961F526D707E6 ] C:\WINDOWS\system32\wshtcpip.dll
09:07:57.0078 0x053c C:\WINDOWS\system32\wshtcpip.dll - ok
09:07:57.0093 0x053c [ 0A7F86657755ADA92C57E597BF5151F7, E226DFF12C4930DF1D0F1D2E7CE7BFFDF62F6DC402200EEFE196D14172A59B63 ] C:\Program Files\Microsoft Security Client\MsMpEng.exe
09:07:57.0093 0x053c C:\Program Files\Microsoft Security Client\MsMpEng.exe - ok
09:07:57.0093 0x053c [ BA652D3DFC457ECA6FE6F7F12DA944E8, 5DCAC0B5B825F79806E8CB1438E083A18E5B6077699C8355B5CC26E54782192C ] C:\Program Files\Microsoft Security Client\MpSvc.dll
09:07:57.0093 0x053c C:\Program Files\Microsoft Security Client\MpSvc.dll - ok
09:07:57.0093 0x053c [ 3D9EC121E18C1120E8C8617787290D89, 84091074BDBB93854ECAE24E75DD6ECA7D4758EDCAF779AD25B399077EF3DF80 ] C:\Program Files\Microsoft Security Client\MpClient.dll
09:07:57.0093 0x053c C:\Program Files\Microsoft Security Client\MpClient.dll - ok
09:07:57.0109 0x053c [ F45DD1E1365D857DD08BC23563370D0E, D95AEBB2095579D716C62152C8B805E119812FD2E40F14F9A5BA2EFDE133303B ] C:\Program Files\Windows Defender\MsMpEng.exe
09:07:57.0109 0x053c C:\Program Files\Windows Defender\MsMpEng.exe - ok
09:07:57.0109 0x053c [ C9564CF4976E7E96B4052737AA2492B4, C3AC989C8489A23BB96400B1856F5325FFC67E844F04651EA5D61BC20A991C6D ] C:\WINDOWS\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.6195_x-ww_44262b86\msvcr80.dll
09:07:57.0109 0x053c C:\WINDOWS\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.6195_x-ww_44262b86\msvcr80.dll - ok
09:07:57.0109 0x053c [ 64898BEA32C12BADDA4218BE88DBD595, CF8885B00BF3DF2F7EFE8D5F105A0DC4AEDB88CE9C217E4CC9B1369D3A3DB197 ] C:\Program Files\Windows Defender\MpSvc.dll
09:07:57.0109 0x053c C:\Program Files\Windows Defender\MpSvc.dll - ok
09:07:57.0125 0x053c [ 0B3595A4FF0B36D68E5FC67FD7D70FDC, 372AF797353F9335915CD06D4076BAB8410775DCAF2DAC0593197D7C41BBFFB2 ] C:\WINDOWS\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.6195_x-ww_44262b86\msvcp80.dll
09:07:57.0125 0x053c C:\WINDOWS\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.6195_x-ww_44262b86\msvcp80.dll - ok
09:07:57.0125 0x053c [ 2081A5B5E4ABA206A0A8A1A97DF0FB23, 032B6D1F541F180A2FE619664EF180D3FD748AEF7E311BA925FCED74E7ED4713 ] C:\WINDOWS\system32\logonui.exe
09:07:57.0125 0x053c C:\WINDOWS\system32\logonui.exe - ok
09:07:57.0125 0x053c [ 6F44DD636C791B70ADE78FE974BE0A1D, 47DD6786655BF9EDCA9045FD672C7611FBFFDA9DD02BA9C292343A0B543AECFA ] C:\Program Files\Windows Defender\MpClient.dll
09:07:57.0125 0x053c C:\Program Files\Windows Defender\MpClient.dll - ok
09:07:57.0125 0x053c [ 3D41A9326F0376FC73AF961DD23B1FB1, 1242F3B57599675D1E0E26615E206CE3DB15FA6A23BC5D21EB630EE9858EBC7B ] C:\WINDOWS\system32\duser.dll
09:07:57.0125 0x053c C:\WINDOWS\system32\duser.dll - ok
09:07:57.0140 0x053c [ 3576D9EB6E8ABC14DDB62F42ED9C9920, 0BEEE25C0EFFA617199C2903199721F18F3DCBD306C6E6E286AB625175508195 ] C:\Program Files\Microsoft Security Client\MpRTP.dll
09:07:57.0140 0x053c C:\Program Files\Microsoft Security Client\MpRTP.dll - ok
09:07:57.0140 0x053c [ AFFC87E2501FCE8F09D4C10BA6421CCF, E63837B281C4AE90A7CBA8E072E07A9A5A2FDD5B15E7FB5C2D7562FE72BE5408 ] C:\WINDOWS\system32\msimg32.dll
09:07:57.0140 0x053c C:\WINDOWS\system32\msimg32.dll - ok
09:07:57.0140 0x053c [ 5D43C9A33F18C707BA169AFDA88BDF30, 6796891360B4731B4F165300BD9FAC9A2A4C54E8CFF86DEC8036D3765AE4D9A3 ] C:\WINDOWS\system32\fltlib.dll
09:07:57.0140 0x053c C:\WINDOWS\system32\fltlib.dll - ok
09:07:57.0156 0x053c [ 20200EE3CFE10E9F0C028D8653BE11C6, 3ACF2110D72509CBA3BF780C5D6D662BAFEEA6CA423BE8B0F97288B953127035 ] C:\WINDOWS\system32\oleacc.dll
09:07:57.0156 0x053c C:\WINDOWS\system32\oleacc.dll - ok
09:07:57.0156 0x053c [ 8F762C29D21DEDD8BCAF8FFF2CE66562, 47DFCA4EC9895AF7441846885B1430CA6B57ED2107912964E19DE46676414321 ] C:\Documents and Settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{897BA194-1DE4-427E-B9E6-277BB775D66A}\mpengine.dll
09:07:57.0156 0x053c C:\Documents and Settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{897BA194-1DE4-427E-B9E6-277BB775D66A}\mpengine.dll - ok
09:07:57.0156 0x053c [ F137A0CA70003DB20448D540651FA003, 4D3095FD8431D0839B6EE785A979D005A1035368A152CDC705804E85B7673198 ] C:\WINDOWS\system32\clbcatq.dll
09:07:57.0156 0x053c C:\WINDOWS\system32\clbcatq.dll - ok
09:07:57.0156 0x053c [ F927A4434C5028758A842943EF1A3849, B1AA3AF150C05307461774925901789456B0CCCD03A5E71ADA4AB58455962BEE ] C:\WINDOWS\system32\drivers\ndisuio.sys
09:07:57.0156 0x053c C:\WINDOWS\system32\drivers\ndisuio.sys - ok
09:07:57.0171 0x053c [ 7D763F0228AFCBFB6868AEC7249FE40E, 62F1AEC9ED1120AEEB5F27743BDBBCDD1715E3EFCC692DFF3E6EED74B8F50900 ] C:\WINDOWS\system32\ati2evxx.dll
09:07:57.0171 0x053c C:\WINDOWS\system32\ati2evxx.dll - ok
09:07:57.0171 0x053c [ 515A7FAE2070C2B0242B2353443E2F11, 6121C5613784831F584B50E8DC91BBD7AC58BDB602FE4CDB4B237670B6BB4537 ] C:\WINDOWS\system32\cscdll.dll
09:07:57.0171 0x053c C:\WINDOWS\system32\cscdll.dll - ok
09:07:57.0171 0x053c [ 5E38D7684A49CACFB752B046357E0589, F192AD4190BCFB6939A5CBC91648FE63168AF79A5E227A111DEAD6A92E42AB8D ] C:\WINDOWS\system32\dhcpcsvc.dll
09:07:57.0171 0x053c C:\WINDOWS\system32\dhcpcsvc.dll - ok
09:07:57.0187 0x053c [ 5F7E24FA9EAB896051FFB87F840730D2, 356EEFDCD54DECAD0170B34B993E4BF80DD039E2B2922D7A8D09B84031E9FC7A ] C:\WINDOWS\system32\dnsrslvr.dll
09:07:57.0187 0x053c C:\WINDOWS\system32\dnsrslvr.dll - ok
09:07:57.0187 0x053c [ E2092F0A1D7ABC243F9C2362483D150D, 50028400D6BA1C5B27BFC9AAC9D41539383F3EC723977CA937715E14094D846A ] C:\WINDOWS\system32\dimsntfy.dll
09:07:57.0187 0x053c C:\WINDOWS\system32\dimsntfy.dll - ok
09:07:57.0187 0x053c [ 1CA7F914E504B34FB4DB1C3B60D29658, 1A2B4C24DCE36C4B00BE69891A33565A8FD137789808667E34E233483FD09D73 ] C:\Program Files\Common Files\logishrd\Bluetooth\LBTWLgn.dll
09:07:57.0187 0x053c C:\Program Files\Common Files\logishrd\Bluetooth\LBTWLgn.dll - ok
09:07:57.0203 0x053c [ 1280A158C722FA95A80FB7AEBE78FA7D, 9B6E8158E581500C5C417F6453A6414901020123D34FDBC04289750E8B072538 ] C:\WINDOWS\system32\comres.dll
09:07:57.0203 0x053c C:\WINDOWS\system32\comres.dll - ok
09:07:57.0203 0x053c [ 2CC34E8BB667EEF78899546E12649196, 5BA2604041BF7C1D580D4D2AEDC7708F9E9B0AF6E0928663E3D9C7297296D721 ] C:\WINDOWS\system32\wlnotify.dll
09:07:57.0203 0x053c C:\WINDOWS\system32\wlnotify.dll - ok
09:07:57.0203 0x053c [ BD83ABA61E8ACCC8D9FFB869F29418CE, 45ED22E825047A1BE07B017F95FBF965A90602C59E6B110D0C604FBE07DE1562 ] C:\WINDOWS\system32\winspool.drv
09:07:57.0203 0x053c C:\WINDOWS\system32\winspool.drv - ok
09:07:57.0203 0x053c [ E5EDBD51476DB5001ABF5C82AE5C3DD1, 5C97ABF5802A7F886781788FE6107F9F06962F9D704A2A43A03062C9405F56C3 ] C:\WINDOWS\system32\shgina.dll
09:07:57.0203 0x053c C:\WINDOWS\system32\shgina.dll - ok
09:07:57.0218 0x053c [ A7DB739AE99A796D91580147E919CC59, EDF4E039BA277B0E6D66FEB0B28096E67D682C09DFC18ECECF062D9DCFB75ACF ] C:\WINDOWS\system32\lmhsvc.dll
09:07:57.0218 0x053c C:\WINDOWS\system32\lmhsvc.dll - ok
09:07:57.0218 0x053c [ 81DC3F549F44B1C1FFF022DEC9ECF30B, 3D14BFEA539F9CEB16555BD56C5E3C7C8F6692FC62C2789F8AAEA1C042E63940 ] C:\WINDOWS\system32\wzcsvc.dll
09:07:57.0218 0x053c C:\WINDOWS\system32\wzcsvc.dll - ok
09:07:57.0218 0x053c [ F0BDB62E1A737145141F49F1938054F6, 5F540906F6424C95F3CBBFCE9AF8A534C17A2E3639D10D65C991C4C4E5B02E09 ] C:\WINDOWS\system32\BCMLogon.dll
09:07:57.0218 0x053c C:\WINDOWS\system32\BCMLogon.dll - ok
09:07:57.0218 0x053c [ 876CCF164E08D6B903CD14398E056DD2, 9AC7887F992F20E10EB3ED9B3AEF47B5C840172FA7895531F4EF86D6EA642D0F ] C:\WINDOWS\system32\rtutils.dll
09:07:57.0218 0x053c C:\WINDOWS\system32\rtutils.dll - ok
09:07:57.0234 0x053c [ 7B0770526801F05D58C51A3DFB87B4BD, 7A2858DD3AE8C26DE88F8CC71E8DC9A8A50C363BA4FB34EE6EE2D81C18845A96 ] C:\WINDOWS\system32\wmi.dll
09:07:57.0234 0x053c C:\WINDOWS\system32\wmi.dll - ok
09:07:57.0234 0x053c [ F35A584E947A5B401FEB0FE01DB4A0D7, 4DA5EFDC46D126B45DAEEE8BC69C0BA2AA243589046B7DFD12A7E21B9BEE6A32 ] C:\WINDOWS\system32\MFC71.DLL
09:07:57.0234 0x053c C:\WINDOWS\system32\MFC71.DLL - ok
09:07:57.0234 0x053c [ E6EF7BC927D9F8F9BA1584BFC39E0C6F, EC80729BDD250C161B29DA853D45C703CB4844DE185C5665DB0627D9568995AB ] C:\WINDOWS\system32\eapolqec.dll
09:07:57.0234 0x053c C:\WINDOWS\system32\eapolqec.dll - ok
09:07:57.0250 0x053c [ 224FB925C641DA16CEB6D60F40CA4C75, 2DDB3B019D2A22B359C5974DC366EC9B95F4382DB1BF7F1958CFF0EC277895C7 ] C:\WINDOWS\system32\atl.dll
09:07:57.0250 0x053c C:\WINDOWS\system32\atl.dll - ok
09:07:57.0250 0x053c [ 8AE93AACC648921BAACB8602991AC4B3, 78292B1BAEE64C997C50B6D907FE623C2EDF937A62D3C3690FA24342180B7AB2 ] C:\WINDOWS\system32\qutil.dll
09:07:57.0250 0x053c C:\WINDOWS\system32\qutil.dll - ok
09:07:57.0250 0x053c [ 8E2CC37BA87D8F681066E0E9C8A19F73, 90536FD502D92AE4FECE0C250373742D2E8AC9E9BE314070BB28C4A2BEA15508 ] C:\WINDOWS\system32\dot3api.dll
09:07:57.0250 0x053c C:\WINDOWS\system32\dot3api.dll - ok
09:07:57.0250 0x053c [ F5B754CDEA20BBB3A31E16A776EDE6D6, C5D682FA9B86810C6E3D741E507EDA024C4554BEB5B6A1686F70E109EE9CD746 ] C:\WINDOWS\system32\esent.dll
09:07:57.0250 0x053c C:\WINDOWS\system32\esent.dll - ok
09:07:57.0265 0x053c [ 86F1895AE8C5E8B17D99ECE768A70732, 8094AF5EE310714CAEBCCAEEE7769FFB08048503BA478B879EDFEF5F1A24FEFE ] C:\WINDOWS\system32\MSVCR71.DLL
09:07:57.0265 0x053c C:\WINDOWS\system32\MSVCR71.DLL - ok
09:07:57.0265 0x053c [ 561FA2ABB31DFA8FAB762145F81667C2, DF96156F6A548FD6FE5672918DE5AE4509D3C810A57BFFD2A91DE45A3ED5B23B ] C:\WINDOWS\system32\MSVCP71.DLL
09:07:57.0265 0x053c C:\WINDOWS\system32\MSVCP71.DLL - ok
09:07:57.0265 0x053c [ A39BE37C9237DB5F1990D61B268EA555, ABAB9D73DF10D2AC78F00A6C5E5318C4DE166CDF70683408D83D218CB39B7449 ] C:\WINDOWS\system32\rastls.dll
09:07:57.0265 0x053c C:\WINDOWS\system32\rastls.dll - ok
09:07:57.0281 0x053c [ 6E4BE11D50F8A8DE2BAD644C9C9DE8D3, 9085384DD71F983E7FD8B6C8F54A3097412DA3C802C813C8AAB1F30558C416D6 ] C:\WINDOWS\system32\cryptui.dll
09:07:57.0281 0x053c C:\WINDOWS\system32\cryptui.dll - ok
09:07:57.0281 0x053c [ D73F1BE00684E675571015B3A5880F5B, 4F34349E98F2EE611C403C63CC0841CFD92347741C003E5A67AF230B909DB58B ] C:\WINDOWS\system32\wininet.dll
09:07:57.0281 0x053c C:\WINDOWS\system32\wininet.dll - ok
09:07:57.0281 0x053c [ 10753A3ADC3E39A3B10CC3F08E98E6B4, 99C7B1B04CD593139917ED3D68BEC36C63BCE76663505CB5D026B62AF39BB383 ] C:\WINDOWS\system32\normaliz.dll
09:07:57.0281 0x053c C:\WINDOWS\system32\normaliz.dll - ok
09:07:57.0281 0x053c [ E463A1590ACA094DC5CC8366E5EA15FF, 89B66CBC7290B8BBA1236B7DA29F85523754A04AAD068AE952C37BA805836AD7 ] C:\WINDOWS\system32\urlmon.dll
09:07:57.0281 0x053c C:\WINDOWS\system32\urlmon.dll - ok
09:07:57.0296 0x053c [ ECAE1B2A7374FA898F038E13F22180D4, 85A1021B369794A365D101545855EC36C63B6A48E11D7CA4289404FEFE81E4B2 ] C:\WINDOWS\system32\iertutil.dll
09:07:57.0296 0x053c C:\WINDOWS\system32\iertutil.dll - ok
09:07:57.0296 0x053c [ EA5B8BECA3F279C757578CD7F1E95855, 6FA42A9C8A114208BCB1D0A799C43CD07FB0F986495191D58C1BBD150B7B3A90 ] C:\WINDOWS\system32\mprapi.dll
09:07:57.0296 0x053c C:\WINDOWS\system32\mprapi.dll - ok
09:07:57.0296 0x053c [ 2CDAE321B8E878A278BA2D2FA013060B, 51A382D665EB4A8BD66A3EF9B518DC02D3637318768758AB6F1017E50826CC56 ] C:\WINDOWS\system32\activeds.dll
09:07:57.0296 0x053c C:\WINDOWS\system32\activeds.dll - ok
09:07:57.0312 0x053c [ 0D84657DBF93DB98673DEFDF2B29E25A, 22105E297D663790BFA1EAE5AC670B283E69FDF2428DEBC596F3EB920E53AFF9 ] C:\WINDOWS\system32\adsldpc.dll
09:07:57.0312 0x053c C:\WINDOWS\system32\adsldpc.dll - ok
09:07:57.0312 0x053c [ 92C4F48B62B0B876194584C3FF09CCB6, B24FF5E8D4F09B8200395B68A20A083E7ED9A29B9E9FB85F42E1A6BBB911D1C4 ] C:\WINDOWS\system32\rasapi32.dll
09:07:57.0312 0x053c C:\WINDOWS\system32\rasapi32.dll - ok
09:07:57.0312 0x053c [ 4DEF926F6A0545AE486A03C84F2EE482, 2D209061632634D7338C0BBEEE8056E8085BE22FA6974A2CC6BAEDC14CF6F6B1 ] C:\WINDOWS\system32\rasman.dll
09:07:57.0312 0x053c C:\WINDOWS\system32\rasman.dll - ok
09:07:57.0328 0x053c [ 00AABF131B4823785818DB99A075A313, FF0F24D35325EC246C758C7CF51FDDEF13757DFD7BE5F6F5D51E0DD7C6673686 ] C:\WINDOWS\system32\tapi32.dll
09:07:57.0328 0x053c C:\WINDOWS\system32\tapi32.dll - ok
09:07:57.0328 0x053c [ C1FAEA15E41F62D7BFA7FBC395C24BA6, 5DAA7F6E1EEA128AEDEDCAF04EB83AED4BCF856BC123BC134E9FA634DC569C0B ] C:\WINDOWS\system32\riched20.dll
09:07:57.0328 0x053c C:\WINDOWS\system32\riched20.dll - ok
09:07:57.0328 0x053c [ A7E06854EA2A20AEE8EC32BD8C754298, C23ACA5939C29C59B0BD6DF247650F0B640E675A759D6C6484D9710BC923515A ] C:\WINDOWS\system32\mpnotify.exe
09:07:57.0328 0x053c C:\WINDOWS\system32\mpnotify.exe - ok
09:07:57.0328 0x053c [ 56CE97FF94B7662A300D359CD6F4D601, D67A792E176AE3394CEB8FEF16F9E56DC614D7D4F58F6B9202E49EFD42BAE9E4 ] C:\WINDOWS\system32\raschap.dll
09:07:57.0328 0x053c C:\WINDOWS\system32\raschap.dll - ok
09:07:57.0343 0x053c [ 0A9A7365A1CA4319AA7C1D6CD8E4EAFA, 0B582F47BD70732BAC48B8B86E5D06CE7F299A20E8177F3F2E6F28217C3FB605 ] C:\WINDOWS\system32\schedsvc.dll
09:07:57.0343 0x053c C:\WINDOWS\system32\schedsvc.dll - ok
09:07:57.0343 0x053c [ E47E364C96467FD54FA44D59F927C3AB, D48C377A7ACF805C413D4618A099A50BE6724E8996C151B00DEAFD27CA935183 ] C:\WINDOWS\system32\msidle.dll
09:07:57.0343 0x053c C:\WINDOWS\system32\msidle.dll - ok
09:07:57.0343 0x053c [ 60784F891563FB1B767F70117FC2428F, E0B07F08E60FFBAD36C2E58180F4B2A16DCA47716044CBE0213DF7B74D742F1F ] C:\WINDOWS\system32\spoolsv.exe
09:07:57.0343 0x053c C:\WINDOWS\system32\spoolsv.exe - ok
09:07:57.0359 0x053c [ B714735C12A70171DE28657948FD91F1, DF7BF2D1BEBB016A8CB739EEE2670CF9F44A5CC2319A532E5C3DE0F5AA3AA144 ] C:\WINDOWS\system32\mlang.dll
09:07:57.0359 0x053c C:\WINDOWS\system32\mlang.dll - ok
09:07:57.0359 0x053c [ 085ED2E391A871C7BAE87E0228B546BA, 15C050965A7377CDE1178A0C28C3E05B16838A1D7DEB1DD190E3C5D58511F5AC ] C:\WINDOWS\system32\cscui.dll
09:07:57.0359 0x053c C:\WINDOWS\system32\cscui.dll - ok
09:07:57.0359 0x053c [ 566382CA5F2C41FEAEEEFAC908F1EB92, FF25ACB5CC757F6D7FE8724EDAC16A36332406AF39745C45858AB24CAF24AC48 ] C:\WINDOWS\system32\xmlprovi.dll
09:07:57.0359 0x053c C:\WINDOWS\system32\xmlprovi.dll - ok
09:07:57.0359 0x053c [ 767FF54A552732CE772C2302025FA82F, 7761546C33B0E55B0A8214798FD035C2499D31D690CE03E25B0068C81EDECF3F ] C:\WINDOWS\system32\wzcsapi.dll
09:07:57.0359 0x053c C:\WINDOWS\system32\wzcsapi.dll - ok
09:07:57.0375 0x053c [ DEF7A7882BEC100FE0B2CE2549188F9D, 462C95B63D0A1058291A2DC8CBFCB13D7D74CCD1CA43B613A7EB43D49E3276F8 ] C:\WINDOWS\system32\audiosrv.dll
09:07:57.0375 0x053c C:\WINDOWS\system32\audiosrv.dll - ok
09:07:57.0375 0x053c [ 50A166237A0FA771261275A405646CC0, CFA9B2C8CDCDB56C27B89593A106AAE211E24D8EA433129A6E9BD2FBF39AB5BB ] C:\WINDOWS\system32\powrprof.dll
09:07:57.0375 0x053c C:\WINDOWS\system32\powrprof.dll - ok
09:07:57.0375 0x053c [ 3E2F3E2F4A82B7FAE23BAB864FB0F837, 78FEB881B5F1C90AD13DD69BB8C95CDF60C84E127871916D1EE8A938849E6282 ] C:\WINDOWS\system32\dpcdll.dll
09:07:57.0375 0x053c C:\WINDOWS\system32\dpcdll.dll - ok
09:07:57.0390 0x053c [ A8888A5327621856C0CEC4E385F69309, B08B63300D824E35E31EEEA2C4C086DFA2C2A964CEDAE512E74D3D88AADAA2C1 ] C:\WINDOWS\system32\wkssvc.dll
09:07:57.0390 0x053c C:\WINDOWS\system32\wkssvc.dll - ok
09:07:57.0390 0x053c [ 5784A06FDC2AC7954225A1A79E1A8F00, B03EFCE2C9565C9532C17E030887B7AE9E6CAB897C54018504254F3B4BDA4831 ] C:\WINDOWS\system32\ati2evxx.exe
09:07:57.0390 0x053c C:\WINDOWS\system32\ati2evxx.exe - ok
09:07:57.0390 0x053c [ A93AEE1928A9D7CE3E16D24EC7380F89, 944CD2135E171AF338352568AA7FE1B8004733A4281395AD6723E0CF43D5F53F ] C:\WINDOWS\system32\userinit.exe
09:07:57.0390 0x053c C:\WINDOWS\system32\userinit.exe - ok
09:07:57.0390 0x053c [ 11D42BB6206F33FBB3BA0288D3EF81BD, 76ABCFB62C5AC549F58C231F72A99882CDEB74928104B77FE52554765C2B1A22 ] C:\WINDOWS\system32\drivers\mrxdav.sys
09:07:57.0390 0x053c C:\WINDOWS\system32\drivers\mrxdav.sys - ok
09:07:57.0406 0x053c [ 77A354E28153AD2D5E120A5A8687BC06, 8B2D37A4443501C0A8E70BC2079BE27F0A36FD07B561E6F68B40A72EABBC2DFE ] C:\WINDOWS\system32\webclnt.dll
09:07:57.0406 0x053c C:\WINDOWS\system32\webclnt.dll - ok
09:07:57.0406 0x053c [ 12896823FB95BFB3DC9B46BCAEDC9923, 1E675CB7DF214172F7EB0497F7275556038A0D09C6E5A3E6862C5E26885EF455 ] C:\WINDOWS\explorer.exe
09:07:57.0406 0x053c C:\WINDOWS\explorer.exe - ok
09:07:57.0406 0x053c [ 5575FAF8F97CE5E713D108C2A58D7C7C, 96D4595D19A78CCBE8B325A08780AC077AE5CC99642ACD72FB47AEAE8D344D3B ] C:\WINDOWS\system32\drivers\parport.sys
09:07:57.0406 0x053c C:\WINDOWS\system32\drivers\parport.sys - ok
09:07:57.0421 0x053c [ E392E172687BE172F8600C5F41AB03D9, 5E928035FA9DB71FDCEB74D6D4859E43169A0B202A87653A2CE5F88865D13D2E ] C:\WINDOWS\system32\browseui.dll
09:07:57.0421 0x053c C:\WINDOWS\system32\browseui.dll - ok
09:07:57.0421 0x053c [ CCA207A8896D4C6A0C9CE29A4AE411A7, 5999B39242283CD803319AADCA171CCCC6E2A40FB2FAFA51B1D29F3FF2DD8D6C ] C:\WINDOWS\system32\drivers\serial.sys
09:07:57.0421 0x053c C:\WINDOWS\system32\drivers\serial.sys - ok
09:07:57.0421 0x053c [ 574738F61FCA2935F5265DC4E5691314, 3C7CCF064397186C3A3863DD2370AB6414A61B330097DCA4F299CA7BBAA3D1B4 ] C:\WINDOWS\system32\qmgr.dll
09:07:57.0421 0x053c C:\WINDOWS\system32\qmgr.dll - ok
09:07:57.0437 0x053c [ 680B56A8B62D1BCF4A0B2AAAD03D88E4, C095D8A3A1CEAD1D78B0EE17B982718CDF4B3FE1F86D9D273875B8C1893C981B ] C:\WINDOWS\system32\wdmaud.drv
09:07:57.0437 0x053c C:\WINDOWS\system32\wdmaud.drv - ok
09:07:57.0437 0x053c [ C5A75EB48E2344ABDC162BDA79E16841, 6070A8AAFD38FBC6A68A2B10C20117612354DF21B4492D90CA522BFB6870D726 ] C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
09:07:57.0437 0x053c C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe - ok
09:07:57.0437 0x053c [ 6768ACF64B18196494413695F0C3A00F, 3A8F8586F1D997D19A8478345338D2AECD785AEABDB61531DD3F92003D3230A5 ] C:\WINDOWS\system32\drivers\wdmaud.sys
09:07:57.0437 0x053c C:\WINDOWS\system32\drivers\wdmaud.sys - ok
09:07:57.0437 0x053c [ 8B83F3ED0F1688B4958F77CD6D2BF290, 546D3602183702B4F53E84413CFA2C933D64C8540378E54A8DCD148F3F36A2DA ] C:\WINDOWS\system32\drivers\sysaudio.sys
09:07:57.0437 0x053c C:\WINDOWS\system32\drivers\sysaudio.sys - ok
09:07:57.0453 0x053c [ AB8B92451ECB048A4D1DE7C3FFCB4A9F, DD17733CBB370FCA08F0296704D7CBEACA3C8F76D0ABE4761C3B1FFDF7481D9E ] C:\WINDOWS\system32\drivers\splitter.sys
09:07:57.0453 0x053c C:\WINDOWS\system32\drivers\splitter.sys - ok
09:07:57.0453 0x053c [ C14AA05881A35B6D6BB8D55B117EE22D, F30873FA983CE21734BE1A357CDF855EF33511990C14B454EBAA3D6059CD823D ] C:\WINDOWS\system32\shfolder.dll
09:07:57.0453 0x053c C:\WINDOWS\system32\shfolder.dll - ok
09:07:57.0453 0x053c [ 8BED39E3C35D6A489438B8141717A557, 1B5796E56B0927360CE0759641B1151828BC0A9E45620D2B2D880491F5CE33D0 ] C:\WINDOWS\system32\drivers\aec.sys
09:07:57.0453 0x053c C:\WINDOWS\system32\drivers\aec.sys - ok
09:07:57.0468 0x053c [ 8CE882BCC6CF8A62F2B2323D95CB3D01, B408550A581F3DA222355964AFA4E976AD8471F0AA37573C42C4948AE5A23A3B ] C:\WINDOWS\system32\drivers\swmidi.sys
09:07:57.0468 0x053c C:\WINDOWS\system32\drivers\swmidi.sys - ok
09:07:57.0468 0x053c [ E5F7C30EDF0892667933BE879F067D67, E4BA45F4C6C74A0CDE9B12A00C91E2F5EF83536C89C9053DEC507CBB4F130A12 ] C:\WINDOWS\system32\msvcr100_clr0400.dll
09:07:57.0468 0x053c C:\WINDOWS\system32\msvcr100_clr0400.dll - ok
09:07:57.0468 0x053c [ 26CB10FA893F940AB09713FF46DCDADE, B113E03877FF2073ABAC1A7DF53A575F15915438C5EB10401FFEF7CAAEA902BC ] C:\WINDOWS\system32\shdocvw.dll
09:07:57.0468 0x053c C:\WINDOWS\system32\shdocvw.dll - ok
09:07:57.0468 0x053c [ 684559A03CBC1D05BA120A18B0D8BA5D, 7425F27C8EF8CEF26B071D7FD5FED538C74EF524AEF73E427B1781F3A3C16C42 ] C:\WINDOWS\system32\winhttp.dll
09:07:57.0468 0x053c C:\WINDOWS\system32\winhttp.dll - ok
09:07:57.0484 0x053c [ 8A208DFCF89792A484E76C40E5F50B45, 4E40E2EB38C6254E7CAA488200E89EE7DEBBBA773890BC6A84313CC68178D54F ] C:\WINDOWS\system32\drivers\dmusic.sys
09:07:57.0484 0x053c C:\WINDOWS\system32\drivers\dmusic.sys - ok
09:07:57.0484 0x053c [ 692BCF44383D056AED41B045A323D378, 1A99DEE83FFAF64E73067FC049C0A4CE07D94E4AE31EFA17B38CEFA9E41D67DC ] C:\WINDOWS\system32\drivers\kmixer.sys
09:07:57.0484 0x053c C:\WINDOWS\system32\drivers\kmixer.sys - ok
09:07:57.0484 0x053c [ 8F5FCFF8E8848AFAC920905FBD9D33C8, C8C6FB97AB0871C8C88A2201525A5CF10D5131CB6980D32692ED7A8F58399AD5 ] C:\WINDOWS\system32\drivers\drmkaud.sys
09:07:57.0484 0x053c C:\WINDOWS\system32\drivers\drmkaud.sys - ok
09:07:57.0484 0x053c [ 13E67B55B3ABD7BF3FE7AAE5A0F9A9DE, 4E0A67B3CC897E80D4B342FFE8B7B4CC4F6CA2EF2D34C136027A098B2E1C6166 ] C:\WINDOWS\system32\netman.dll
09:07:57.0484 0x053c C:\WINDOWS\system32\netman.dll - ok
09:07:57.0500 0x053c [ 062F837C1FBDB6A0A75F82EFC2EE8E74, 3C0BFA381CBC2C55B58A8942A7148A6C27E244D26313EFB4708DD5858C689E02 ] C:\WINDOWS\system32\netshell.dll
09:07:57.0500 0x053c C:\WINDOWS\system32\netshell.dll - ok
09:07:57.0500 0x053c [ 9A3BD5F55AADFF859539142F6328A66E, B8165F650F0E24D380601D54BC81A84C06D886A6CF995EA6CA63EABCFA75554A ] C:\WINDOWS\system32\msacm32.drv
09:07:57.0500 0x053c C:\WINDOWS\system32\msacm32.drv - ok
09:07:57.0500 0x053c [ 5C12660A97822F6E61576943B49AAAD6, 621BE8E009DC95A8901F701F529ED98BD8E6D62D272AE0E1FAF69889A4D5633B ] C:\WINDOWS\system32\midimap.dll
09:07:57.0500 0x053c C:\WINDOWS\system32\midimap.dll - ok
09:07:57.0515 0x053c [ B04DB1F0B2652FCBCCC5FD0C46579F0F, 24D1919B63ED444F5C6629626C239EC78A5BB7A3F29B154FEEA03A6FB8F26148 ] C:\WINDOWS\system32\mscoree.dll
09:07:57.0515 0x053c C:\WINDOWS\system32\mscoree.dll - ok
09:07:57.0515 0x053c [ AB690CD34CF4B4E3DDF78FD4FBCF88C3, ACC1C82EEC52C97288FE734E3275FEAA09EC93EB8E2C30DC9D9A6C66B21E66FF ] C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscorsvc.dll
09:07:57.0515 0x053c C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscorsvc.dll - ok
09:07:57.0515 0x053c [ 6C69EA6A0C308A0FB81992CAC9F39C59, 164BEB9C5CCBEEFF98210881ECCA6FD5BC7FE241F716F93D7FC69431F34240CD ] C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\fusion.dll
09:07:57.0515 0x053c C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\fusion.dll - ok
09:07:57.0531 0x053c [ 235892E493845D64D890163CFEF90E97, 48FC98DD1E5F8F05DE6954FE26C0A448AA9838D7DC716518C715F35E3CFA227D ] C:\WINDOWS\system32\credui.dll
09:07:57.0531 0x053c C:\WINDOWS\system32\credui.dll - ok
09:07:57.0531 0x053c [ 4E8F3230BAC8C1CAADF01A8C728E1C5C, 62E73A7D4C58F2E30670F6A72E734B618AF45F60A8CB2177A4D504283F829BE5 ] C:\WINDOWS\system32\dot3dlg.dll
09:07:57.0531 0x053c C:\WINDOWS\system32\dot3dlg.dll - ok
09:07:57.0531 0x053c [ B03E3F64B70F8031E65EB26DA23DE91A, 73184B4A75C1EA5D10B9D78A9E705432551DE15231F10C5A31021896D0938D80 ] C:\Program Files\Microsoft LifeCam\MSCamS32.exe
09:07:57.0531 0x053c C:\Program Files\Microsoft LifeCam\MSCamS32.exe - ok
09:07:57.0531 0x053c [ 12E54181D584F72296FD6EC72309BD94, B22BD7AF84BF78F6A69C782F0E07EBE885857B0412C43C8021EFC63C9D06A5EB ] C:\WINDOWS\system32\drivers\LBeepKE.sys
09:07:57.0531 0x053c C:\WINDOWS\system32\drivers\LBeepKE.sys - ok
09:07:57.0546 0x053c [ 5DB625E7D095604010CF84DE2D8ACFA6, DEED8055CD1F2E2D898C5C77283B56078414CC7D9FCA6FCF58BA0B66B565E826 ] C:\WINDOWS\system32\eappcfg.dll
09:07:57.0546 0x053c C:\WINDOWS\system32\eappcfg.dll - ok
09:07:57.0546 0x053c [ CA04959077AFE36369D37B3504740C87, CBB90BC35A74EC03DC04CD60DAC966A9FA98DC9EEFB926089DBE7A47D3B710B1 ] C:\WINDOWS\system32\onex.dll
09:07:57.0546 0x053c C:\WINDOWS\system32\onex.dll - ok
09:07:57.0546 0x053c [ ABC4206543450C0666D152F4B65833B8, D78D5E719E7744805DF6DD1D9567E67E11223F4E3B13170E35F27D46FCB6C244 ] C:\WINDOWS\system32\eappprxy.dll
09:07:57.0546 0x053c C:\WINDOWS\system32\eappprxy.dll - ok
09:07:57.0562 0x053c [ 4C39358EBDD2FFCD9132A30E1EC31E16, 06918CF99AD26CD6CF106881C0D5BDB212DC0BAC4549805C9F5906E3D03D152C ] C:\WINDOWS\WinSxS\x86_Microsoft.VC90.CRT_1fc8b3b9a1e18e3b_9.0.30729.6161_x-ww_31a54e43\msvcp90.dll
09:07:57.0562 0x053c C:\WINDOWS\WinSxS\x86_Microsoft.VC90.CRT_1fc8b3b9a1e18e3b_9.0.30729.6161_x-ww_31a54e43\msvcp90.dll - ok
09:07:57.0562 0x053c [ CDBE9690CF2B8409FACAD94FAC9479C9, 8E7FE1A1F3550C479FFD86A77BC9D10686D47F8727025BB891D8F4F0259354C8 ] C:\WINDOWS\WinSxS\x86_Microsoft.VC90.CRT_1fc8b3b9a1e18e3b_9.0.30729.6161_x-ww_31a54e43\msvcr90.dll
09:07:57.0562 0x053c C:\WINDOWS\WinSxS\x86_Microsoft.VC90.CRT_1fc8b3b9a1e18e3b_9.0.30729.6161_x-ww_31a54e43\msvcr90.dll - ok
09:07:57.0562 0x053c [ 332760FBA1655FCFD35BD6F4FD871300, 6C539FD14B9CF9423E305EAF60CB5C12CA0F7AEF571FB09BAF64E83F108B7F2D ] C:\WINDOWS\system32\ipsecsvc.dll
09:07:57.0562 0x053c C:\WINDOWS\system32\ipsecsvc.dll - ok
09:07:57.0562 0x053c [ D4991D98F2DB73C60D042F1AEF79EFAE, 58AF949EAEBF4FF3E3314DFB66CE4198BF65F0836B68CD27A6ED319742CCCCD2 ] C:\WINDOWS\system32\es.dll
09:07:57.0562 0x053c C:\WINDOWS\system32\es.dll - ok
09:07:57.0578 0x053c [ 4FCCA060DFE0C51A09DD5C3843888BCD, D82417706B517F2610DDF7C86BE03A72EFA9A2A389DF5C8F8ADEAB8144E2C80A ] C:\WINDOWS\pchealth\helpctr\binaries\pchsvc.dll
09:07:57.0578 0x053c C:\WINDOWS\pchealth\helpctr\binaries\pchsvc.dll - ok
09:07:57.0578 0x053c [ BBD57331ADFD9FD722C3BF4D6947554A, 759EA777BF0D7AD44124528AD70B613323246E34F53846B93B8E95AEC96C7197 ] C:\Program Files\Microsoft LifeCam\CAL2.dll
09:07:57.0578 0x053c C:\Program Files\Microsoft LifeCam\CAL2.dll - ok
09:07:57.0578 0x053c [ 3E587DBBDFF938DDE5D4CE4047BE9041, CA13B2C50FB09365362077AEC4B25120CF09F8C35702F645922D618FE57B5E05 ] C:\Program Files\Skype\Updater\Updater.exe
09:07:57.0578 0x053c C:\Program Files\Skype\Updater\Updater.exe - ok
09:07:57.0593 0x053c [ BC93B4A066477954555966D77FEC9ECB, 27F5B780175EF46DA102EE33F7F33559C8B40C077EEA4405D579D9507F4B1C23 ] C:\WINDOWS\system32\ersvc.dll
09:07:57.0593 0x053c C:\WINDOWS\system32\ersvc.dll - ok
09:07:57.0593 0x053c [ C5FF8682EADA5B3B27A865F1C3EF9270, 7D316AA7CFD6416C172F7A6A55476110F507BD3017DB37EC1624AFB11B3F3C3E ] C:\WINDOWS\system32\oakley.dll
09:07:57.0593 0x053c C:\WINDOWS\system32\oakley.dll - ok
09:07:57.0593 0x053c [ 8973122796E3B5D6B5900FC186E55FEA, 350120A20F8591C27E68A5903E3175DD3F4F85BA2FF1F8B6E1D3B3758B5B509D ] C:\WINDOWS\system32\hid.dll
09:07:57.0593 0x053c C:\WINDOWS\system32\hid.dll - ok
09:07:57.0593 0x053c [ 853D0D0C6F02D7BFDF1CF99DD7553732, AC761B4CA518B787CB2C18101606E5F64245049D140C72B6B1112556DEC86B2E ] C:\WINDOWS\system32\pstorsvc.dll
09:07:57.0593 0x053c C:\WINDOWS\system32\pstorsvc.dll - ok
09:07:57.0609 0x053c [ 248712EA6BA17B9FF0C542A3828375DD, 03EFDE351860C4C49F42D6129C6A6F2B3FC859C20F14FE0652F9C4FBD81244B4 ] C:\WINDOWS\system32\winipsec.dll
09:07:57.0609 0x053c C:\WINDOWS\system32\winipsec.dll - ok
09:07:57.0609 0x053c [ 3D4E199942E29207970E04315D02AD3B, 0825960894CF9C86CC8775BDD2A262948A09CA495AA7FE9F210FAF49E7086383 ] C:\WINDOWS\system32\cryptsvc.dll
09:07:57.0609 0x053c C:\WINDOWS\system32\cryptsvc.dll - ok
09:07:57.0609 0x053c [ AA5E22854F56C68148EB3345DBD62970, 441818E5E9F568C4AC7174BCF625ACB63D8837658559949DF468B61125900B96 ] C:\WINDOWS\system32\devenum.dll
09:07:57.0609 0x053c C:\WINDOWS\system32\devenum.dll - ok
09:07:57.0625 0x053c [ DEB04DA35CC871B6D309B77E1443C796, F66A15C9528D661940F1F4CA453B3E95036D68C74C3B8AB53644211DBD3D2F32 ] C:\WINDOWS\system32\hidserv.dll
09:07:57.0625 0x053c C:\WINDOWS\system32\hidserv.dll - ok
09:07:57.0625 0x053c [ 22D89D84E8E081CDA529DBF8C0255A38, 26863A2D27BE257D99EF28A612FC1B514558B27002EF10B0F682BC15C6D1CD74 ] C:\WINDOWS\system32\psbase.dll
09:07:57.0625 0x053c C:\WINDOWS\system32\psbase.dll - ok
09:07:57.0625 0x053c [ FEDE68BF80052BAD393AFD5C2E60DCB0, 6A40D89524317C554C5C33A35FB659147A3118F4C646AB36653A19A8811627CB ] C:\WINDOWS\system32\dssenh.dll
09:07:57.0625 0x053c C:\WINDOWS\system32\dssenh.dll - ok
09:07:57.0640 0x053c [ 00709952D444EAE14DBBD30D36FBAE0F, A65B57C68F9119940133F6680AF3644866EEBDA5378F9B6AED441FB999B50526 ] C:\WINDOWS\system32\certcli.dll
09:07:57.0640 0x053c C:\WINDOWS\system32\certcli.dll - ok
09:07:57.0640 0x053c [ 9BE42E99BBD5461F1F94FE39FEE2E6F5, 0688BF6E39A28EBAD339A1B0FE5C2E44BAB23CAAE1D9E8A05E9629D9B37D6027 ] C:\Program Files\VERIZONDM\bin\sprtsvc.exe
09:07:57.0640 0x053c C:\Program Files\VERIZONDM\bin\sprtsvc.exe - ok
09:07:57.0640 0x053c [ D25C03D04159D462D69F294BA7142BDB, 397B0FE2BB56FFBBF1BD89273802348B3AA102A5725E2CB3670FA89526E6C5EC ] C:\WINDOWS\system32\msdmo.dll
09:07:57.0640 0x053c C:\WINDOWS\system32\msdmo.dll - ok
09:07:57.0640 0x053c [ 01CFA88F8DEE91EC9F8E0988F49D106E, 24681D0B28CF3544F9C36876069296AE9E4DF3043BF72A1A55D248160067DF9A ] C:\WINDOWS\system32\avicap32.dll
09:07:57.0640 0x053c C:\WINDOWS\system32\avicap32.dll - ok
09:07:57.0656 0x053c [ 235B2311786AC007AD644B12A2DA8AC7, DB676642F9C0467DBC313D0B475250B247EABB281FD359896398A0E7C725F0F8 ] C:\WINDOWS\system32\msvfw32.dll
09:07:57.0656 0x053c C:\WINDOWS\system32\msvfw32.dll - ok
09:07:57.0656 0x053c [ 3A7C3CBE5D96B8AE96CE81F0B22FB527, 0044F03132596A494448CCE5F3D6ECC12617BB4CF6BAE348F79D4DC40ACD6EE0 ] C:\WINDOWS\system32\srvsvc.dll
09:07:57.0656 0x053c C:\WINDOWS\system32\srvsvc.dll - ok
09:07:57.0656 0x053c [ CBE612E2BB6A10E3563336191EDA1250, C331797DC3569F0E715766561DE2562F60B924378842246C35D2B1CF867E9D96 ] C:\WINDOWS\system32\seclogon.dll
09:07:57.0656 0x053c C:\WINDOWS\system32\seclogon.dll - ok
09:07:57.0671 0x053c [ 20FD44370267CCD0A64A1B31861C21D2, D98194A17D1C63434EC6449742C10033F1B94D80826B20464519B1DD4DE1DB5F ] C:\WINDOWS\system32\netmsg.dll
09:07:57.0671 0x053c C:\WINDOWS\system32\netmsg.dll - ok
09:07:57.0671 0x053c [ 3805DF0AC4296A34BA4BF93B346CC378, B57A14F1B7B0997E619DDD62B73157AA2399A9852166FB58139CBB358A88F6F3 ] C:\WINDOWS\system32\srsvc.dll
09:07:57.0671 0x053c C:\WINDOWS\system32\srsvc.dll - ok
09:07:57.0671 0x053c [ B4ED498E3BFEE64E952BC44FC6057DB8, 1FB5ABAE69103BF477F704189D75B0395F587234BFE94F9F79961D8FE2CE55AC ] C:\WINDOWS\system32\desk.cpl
09:07:57.0671 0x053c C:\WINDOWS\system32\desk.cpl - ok
09:07:57.0671 0x053c [ 47DDFC2F003F7F9F0592C6874962A2E7, 17C643BD4EB09B5666FE41817DC785BE04A6E491CE79E8E5A702CDBD98E1BDD7 ] C:\WINDOWS\system32\drivers\srv.sys
09:07:57.0671 0x053c C:\WINDOWS\system32\drivers\srv.sys - ok
09:07:57.0687 0x053c [ 92982BC49FA1E45EBD64A4605AE57790, EFE8C2DD3767ECF874049560C9EF15B472B6290228499C61444982DE0C931107 ] C:\Program Files\VERIZONDM\bin\sprtsched.dll
09:07:57.0687 0x053c C:\Program Files\VERIZONDM\bin\sprtsched.dll - ok
09:07:57.0687 0x053c [ 55BCA12F7F523D35CA3CB833C725F54E, 849FB1AE31B143B14B298BBC0D91230693D41DEB95F46516878F53A7F4186C38 ] C:\WINDOWS\system32\trkwks.dll
09:07:57.0687 0x053c C:\WINDOWS\system32\trkwks.dll - ok
09:07:57.0687 0x053c [ 8BAD69CBAC032D4BBACFCE0306174C30, 2AA0DA710FCBFF38FE8DA91EE02E7A4503269347E61F8D3246FCA3384BBA2305 ] C:\WINDOWS\system32\wiaservc.dll
09:07:57.0687 0x053c C:\WINDOWS\system32\wiaservc.dll - ok
09:07:57.0703 0x053c [ 2D0E4ED081963804CCC196A0929275B5, E1D75C7D7233D81DFDE13160B0C80138DF8B35230D04FB79B367A52FACF69BF8 ] C:\WINDOWS\system32\wbem\wmisvc.dll
09:07:57.0703 0x053c C:\WINDOWS\system32\wbem\wmisvc.dll - ok
09:07:57.0703 0x053c [ EE9710428FFB95FD3845D41E7148AC31, 5CFBE4B7BCCB136B958E21EACB965E09F7D6CC0CB29DEA9022047809582B1065 ] C:\WINDOWS\system32\themeui.dll
09:07:57.0703 0x053c C:\WINDOWS\system32\themeui.dll - ok
09:07:57.0703 0x053c [ ACACB8B14E66109B8ACD6644B5574B9A, 2373E67EB51F8045E7CD346F75B4BAD093E29CC609955BBC4C9FEF7A97A5FD86 ] C:\WINDOWS\system32\vssapi.dll
09:07:57.0703 0x053c C:\WINDOWS\system32\vssapi.dll - ok
09:07:57.0703 0x053c [ 5F0CE62E0831CF972EC6949FD3E37DA7, DFDD251D3FC6CDBD971F52EF0AECEC0344B57214615AA486AA9234D30A40AF60 ] C:\WINDOWS\system32\cfgmgr32.dll
09:07:57.0703 0x053c C:\WINDOWS\system32\cfgmgr32.dll - ok
09:07:57.0718 0x053c [ 4AC2FA4A6F0DF2511BAC13393C06EFF1, 502B9D43EB6305508E8CDF034528C3F1DDF4525727C1B7663EA835BE2307FF20 ] C:\WINDOWS\system32\mscms.dll
09:07:57.0718 0x053c C:\WINDOWS\system32\mscms.dll - ok
09:07:57.0718 0x053c [ 61E71BC3CD3530444000A9B68F7EE931, 4B4DF7ED75A922238390D08B743CD9E2732042A787F9C57A05565207E3CB529B ] C:\WINDOWS\system32\WLTRYSVC.EXE
09:07:57.0718 0x053c C:\WINDOWS\system32\WLTRYSVC.EXE - ok
09:07:57.0718 0x053c [ 251E22A5D9BAAC9E1153707EEF2EF62E, 84101016302BEDBCF9FA857723D4606366680DB6DF726EBE005CDB03DFD9DD67 ] C:\Program Files\VERIZONDM\bin\sprtfod.dll
09:07:57.0718 0x053c C:\Program Files\VERIZONDM\bin\sprtfod.dll - ok
09:07:57.0734 0x053c [ 912B67BB8249925A5C972FC5839EAE09, 11F9F26C2D5EADD683F9FA4FDC8C25A1FB7EE9D6E3F4419C9DAB8C4E434F1857 ] C:\WINDOWS\system32\actxprxy.dll
09:07:57.0734 0x053c C:\WINDOWS\system32\actxprxy.dll - ok
09:07:57.0734 0x053c [ FC3EC24FCE372C89423E015A2AC1A31E, 8D028182CF83667D3E4D148979972D208FA6D9B8540EE47A0A7831B770ECD257 ] C:\WINDOWS\system32\wuaueng.dll
09:07:57.0734 0x053c C:\WINDOWS\system32\wuaueng.dll - ok
09:07:57.0734 0x053c [ 35321FB577CDC98CE3EB3A3EB9E4610A, C9A6F5CF282D8FCB3CDFCC4B306013480E78E1B664E1A60A4E27B161F9FFD4CD ] C:\WINDOWS\system32\wuauserv.dll
09:07:57.0734 0x053c C:\WINDOWS\system32\wuauserv.dll - ok
09:07:57.0734 0x053c [ 67156D5A9AC356DC99D7BCCB388E3316, 449A140065197779C0F8588E5C53014BBF54A9C74818D5CFDCB88CC7B36F44CF ] C:\WINDOWS\system32\wsock32.dll
09:07:57.0734 0x053c C:\WINDOWS\system32\wsock32.dll - ok
09:07:57.0750 0x053c [ 9EFBB3055B3EECE5B0FC7BAED07A6EE9, 8CF9C8882C1DF59E51E2D65425C595E1C37005E6F94C47EBCDEBFF991788C162 ] C:\WINDOWS\system32\msxml6.dll
09:07:57.0750 0x053c C:\WINDOWS\system32\msxml6.dll - ok
09:07:57.0750 0x053c [ 5C5209B04B1942A534259C2AB7BB1EEA, 1A4C6B92E6D6F90B2E2552CA2B780A5A4A99CA4DD6E07F1ABCE9357E4CCBA78B ] C:\Program Files\VERIZONDM\bin\libeay32.dll
09:07:57.0750 0x053c C:\Program Files\VERIZONDM\bin\libeay32.dll - ok
09:07:57.0750 0x053c [ 9A0CE1DB25F1CDD3ED11236884800538, 549F5B549512F9E7E4C2C9509678EA7654FDA3211DD398D350D915787963E50E ] C:\WINDOWS\system32\BCMWLTRY.EXE
09:07:57.0750 0x053c C:\WINDOWS\system32\BCMWLTRY.EXE - ok
09:07:57.0765 0x053c [ A95FD607292F05218FEB8D580FB4CC8E, DAB81C573BD34356E7833B4239D16C63A917A41D0148D6B0C0650CB6C4D1653B ] C:\Program Files\VERIZONDM\bin\sprtsync.dll
09:07:57.0765 0x053c C:\Program Files\VERIZONDM\bin\sprtsync.dll - ok
09:07:57.0765 0x053c [ F9D3C78CFE15271D80790677C893CE45, 885425736648DF7B315E92680ED3BD058ACE97A86D388FEA80EB0C039ADF25D7 ] C:\WINDOWS\system32\cabinet.dll
09:07:57.0765 0x053c C:\WINDOWS\system32\cabinet.dll - ok
09:07:57.0765 0x053c [ B85E95679B5ADC12311BCD3F5385D623, 378D304CF408AE1928EF6290A5A9F2388920B55FD69382759B356B6A3FF94F3A ] C:\WINDOWS\system32\mspatcha.dll
09:07:57.0765 0x053c C:\WINDOWS\system32\mspatcha.dll - ok
09:07:57.0765 0x053c [ 7C278E6408D1DCE642230C0585A854D5, DA46079A04F6E8E3441E4AE454AEAC02B3E935DE29CE7F6D4476F57867FCC12A ] C:\WINDOWS\system32\wscsvc.dll
09:07:57.0765 0x053c C:\WINDOWS\system32\wscsvc.dll - ok
09:07:57.0781 0x053c [ 2F7959C5FAA11E0F53FA3D321C9074D0, D02BAD365B275B475823AC33D9AC6A88CF92F7F8731D72569849500ADBE53E7E ] C:\Program Files\VERIZONDM\bin\sprtupdate.dll
09:07:57.0781 0x053c C:\Program Files\VERIZONDM\bin\sprtupdate.dll - ok
09:07:57.0781 0x053c [ DFFE021DD998826C9BC400954A62F368, 8F55008386DE1717B54FE4E049D89017A9288E5EA2C1D45489423BBA21628989 ] C:\WINDOWS\system32\bcm1xsup.dll
09:07:57.0781 0x053c C:\WINDOWS\system32\bcm1xsup.dll - ok
09:07:57.0781 0x053c [ 8C22083ED515DC94D575438662F0BE6A, 67DC2A393AE31764C090BE2AEFAD3E20220538152157BAEBF366112166FEAB23 ] C:\WINDOWS\system32\msi.dll
09:07:57.0781 0x053c C:\WINDOWS\system32\msi.dll - ok
09:07:57.0796 0x053c [ 4DF537A09034434EA9481B88AB1D3C25, 0628922DDA8E170E013F66D7D1EC03EAED2AF366BF4CFCDDDC6A5B8552784A36 ] C:\WINDOWS\system32\bcmwlpkt.dll
09:07:57.0796 0x053c C:\WINDOWS\system32\bcmwlpkt.dll - ok
09:07:57.0796 0x053c [ 8F2097E8B174F38178570C611464935F, 3F25E7B097B65EAF82A6D5B58646DFF38CA19347664F40C2B8A409B9D6939457 ] C:\WINDOWS\system32\ATL71.DLL
09:07:57.0796 0x053c C:\WINDOWS\system32\ATL71.DLL - ok
09:07:57.0796 0x053c [ 83F41D0D89645D7235C051AB1D9523AC, B681F33EEAA511D6A2DCB9FBAA407B739184C9FF6067C6B7E51F1FC37E9D4DD7 ] C:\WINDOWS\system32\ipnathlp.dll
09:07:57.0796 0x053c C:\WINDOWS\system32\ipnathlp.dll - ok
09:07:57.0812 0x053c [ 205ADD80FF8099B1A8101EB490B933D1, 6B4D94F1683B1D30A1BB0019E2E3E0AE1AA85561D416708198EC2BDAB649E178 ] C:\WINDOWS\system32\wbem\wbemprox.dll
09:07:57.0812 0x053c C:\WINDOWS\system32\wbem\wbemprox.dll - ok
09:07:57.0812 0x053c [ D95C71052E5EF63B55997FB31483D02F, 829A559050680C039CA7AFCFE3246745D465ED11722A603AA32253FD413894C3 ] C:\WINDOWS\system32\wbem\wbemcomn.dll
09:07:57.0812 0x053c C:\WINDOWS\system32\wbem\wbemcomn.dll - ok
09:07:57.0812 0x053c [ F0BF811622F2DD6C8E26EE4600D83731, 81CFC1118551E84F5BBD2A863419529AA32DA92E5834C71DA77D13854F6CF048 ] C:\WINDOWS\system32\wbem\wbemcore.dll
09:07:57.0812 0x053c C:\WINDOWS\system32\wbem\wbemcore.dll - ok
09:07:57.0812 0x053c [ 89366C2AFF401C512C66709F58C81BA2, B1C4E1981C844591A9127BE6A49B7A5A544E6A0D907418F50EE08138F350845B ] C:\WINDOWS\system32\wltrynt.dll
09:07:57.0812 0x053c C:\WINDOWS\system32\wltrynt.dll - ok
09:07:57.0828 0x053c [ F9D82B82F1B7C0B2D2606A987073F58C, 78DB49D7B905C32C5CA7A8E73AAFE75D2F3ACDD9D5E65B0D196B532F2881E80A ] C:\PROGRA~1\WIFD1F~1\MpShHook.dll
09:07:57.0828 0x053c C:\PROGRA~1\WIFD1F~1\MpShHook.dll - ok
09:07:57.0828 0x053c [ E4616430709F440CF1809D88DC2366EA, C2CBC0A21A892FD8341E5A29E7164172340E07A75A5D54493036156D907AEAE7 ] C:\WINDOWS\system32\wbem\esscli.dll
09:07:57.0828 0x053c C:\WINDOWS\system32\wbem\esscli.dll - ok
09:07:57.0828 0x053c [ 378A0AEFB11D8B0DC8C27B9F7604B88D, D0D6863FCE412B75B9B5FC38EA923759201E7193ED40CFBAA674630E2DE56FD3 ] C:\WINDOWS\system32\wbem\fastprox.dll
09:07:57.0828 0x053c C:\WINDOWS\system32\wbem\fastprox.dll - ok
09:07:57.0843 0x053c [ F1DAC7969C1337AF790BD1D981AA780C, C544785173AD8F2F28B414938D8D81C679157F7CE60EE7688DCB0A8FF9CE4D69 ] C:\WINDOWS\system32\qmgrprxy.dll
09:07:57.0843 0x053c C:\WINDOWS\system32\qmgrprxy.dll - ok
09:07:57.0843 0x053c [ CFD4E51402DA9838B5A04AE680AF54A0, 5378F42B195B5832B00A05AD64E00473A45FFB86AC25C57241F26EA82B149FE1 ] C:\WINDOWS\system32\browser.dll
09:07:57.0843 0x053c C:\WINDOWS\system32\browser.dll - ok
09:07:57.0843 0x053c [ 7FDD5D0684ECA8C1F68B4D99D124DCD0, 7105B026F966A992430F86C3698ABE15EC73E4772F1A3E362E29FD5247A5DCA6 ] C:\WINDOWS\system32\sens.dll
09:07:57.0843 0x053c C:\WINDOWS\system32\sens.dll - ok
09:07:57.0843 0x053c [ 010472D0AE758227C6F6E6933549C219, 4082365231756E2889BD9A19EEFA27665B9902F8C8BC376C70DC3AA80AEA541B ] C:\WINDOWS\system32\wbem\wbemsvc.dll
09:07:57.0843 0x053c C:\WINDOWS\system32\wbem\wbemsvc.dll - ok
09:07:57.0859 0x053c [ 058710B720282CA82B909912D3EF28DB, 97535E75CA6A77E6BCB81216B0FB383024709539727FD656DF6AFD33A50CAD04 ] C:\WINDOWS\regedit.exe
09:07:57.0859 0x053c C:\WINDOWS\regedit.exe - ok
09:07:57.0859 0x053c [ ED0C0DF222209E43AD9AFBF3FE87DDE0, 927329F9244DA9F0074FA0D4C101EE793AFCF433155E58714C33444C5EF35014 ] C:\WINDOWS\system32\comsvcs.dll
09:07:57.0859 0x053c C:\WINDOWS\system32\comsvcs.dll - ok
09:07:57.0859 0x053c [ 96A0066AB9872D3575575A463C53FF6C, 939C2C4D5043B4A9A4D531B072F4344F0B84FA1D7840B810344B2773EB420CAE ] C:\WINDOWS\system32\aclui.dll
09:07:57.0859 0x053c C:\WINDOWS\system32\aclui.dll - ok
09:07:57.0875 0x053c [ 751068D5D0ECD64A4810379729A1F0BC, 55D2F6F32513349C3BCA5E06B719B03A56577A23CB30CC1BC5E848DE2D456FD7 ] C:\WINDOWS\system32\ulib.dll
09:07:57.0875 0x053c C:\WINDOWS\system32\ulib.dll - ok
09:07:57.0875 0x053c [ 690D97864735E8ECD87F55777E266690, 2098D2AADEF82C3EDD82FD6182C14568CDE1EF02205ED1EA4CB19252B74BB807 ] C:\WINDOWS\system32\colbact.dll
09:07:57.0875 0x053c C:\WINDOWS\system32\colbact.dll - ok
09:07:57.0875 0x053c [ 37461F2C3F212CF508A20FDC729ABDE5, 258FAC009860CBD148787B7C771E79DA45463704F4167A78796EFF84106CDFDA ] C:\WINDOWS\system32\clb.dll
09:07:57.0875 0x053c C:\WINDOWS\system32\clb.dll - ok
09:07:57.0875 0x053c [ DF82E222578DBE59FCBBD69A02E4C806, 0F0CD9DC739500536F252475F84F8EF378428CAC7DD9CFCDEC676862A20A0C46 ] C:\WINDOWS\system32\clusapi.dll
09:07:57.0875 0x053c C:\WINDOWS\system32\clusapi.dll - ok
09:07:57.0890 0x053c [ 36795A645EAA47FE31D2A8F136A2C69B, D681D7DFC4A2A2F10658D76A93F009BDBFC6117E245E0883C509A286DC952EAD ] C:\WINDOWS\system32\mtxclu.dll
09:07:57.0890 0x053c C:\WINDOWS\system32\mtxclu.dll - ok
09:07:57.0890 0x053c [ F51EBB6FC536A6B2D588FD668D3A8249, 6C22B5FBE3F721025879447B006EC5A343D482A87E23674B5A3BB43983AB328E ] C:\WINDOWS\system32\resutils.dll
09:07:57.0890 0x053c C:\WINDOWS\system32\resutils.dll - ok
09:07:57.0890 0x053c [ 3458EDA96E30FBD0477A2800D3FB1909, BDF84362E4D8A102E7FB5F352D950B84D1A8E1E7928521B68E7671D4176803C5 ] C:\WINDOWS\system32\wups.dll
09:07:57.0890 0x053c C:\WINDOWS\system32\wups.dll - ok
09:07:57.0906 0x053c [ 3273D1565BF30225C115B480A3BB2C9D, DF802F845EFEE506A0D3CA1EA9AEE1EDE73BCC02F2B64EDFACE0BBEFCF965455 ] C:\WINDOWS\system32\wbem\wmiutils.dll
09:07:57.0906 0x053c C:\WINDOWS\system32\wbem\wmiutils.dll - ok
09:07:57.0906 0x053c [ BDC0C99E472176C8C2C853A68ADC5073, 9A0A0CEE321C9BAF5545D6CB0BE3E725228B694F331FFACCEB770350AAF2C8C3 ] C:\WINDOWS\system32\wups2.dll
09:07:57.0906 0x053c C:\WINDOWS\system32\wups2.dll - ok
09:07:57.0906 0x053c [ 942A17D2901A31EA68627CBFFCD268CC, C75E1C03929E16EDDBACFC37BD6C40E941F9D99E3E40ED3A07238343342685BD ] C:\WINDOWS\system32\wbem\repdrvfs.dll
09:07:57.0906 0x053c C:\WINDOWS\system32\wbem\repdrvfs.dll - ok
09:07:57.0906 0x053c [ 071143F687B4F887E21461CA6CC7EB29, 92C849517F985F19926E6425CD99E21029E1CA14FC92C9E40091DC79D4A723F2 ] C:\WINDOWS\system32\wbem\wmiprvsd.dll
09:07:57.0906 0x053c C:\WINDOWS\system32\wbem\wmiprvsd.dll - ok
09:07:57.0921 0x053c [ 2E0B0A051FFAA86E358465BB0880D453, 493CF6150DE95B269727631D50FE21405A41E449C4FF43E94F93D27559EA5624 ] C:\WINDOWS\system32\wuauclt.exe
09:07:57.0921 0x053c C:\WINDOWS\system32\wuauclt.exe - ok
09:07:57.0921 0x053c [ 26D881D27CBE51D3614E68D7313EA026, BC84CFD5F382F6D844815065118793950E922B8FB52944E337DAA62874C103A3 ] C:\WINDOWS\system32\wbem\wbemess.dll
09:07:57.0921 0x053c C:\WINDOWS\system32\wbem\wbemess.dll - ok
09:07:57.0921 0x053c [ 1A617835452EEE5060976C9B9F5FE635, DCCAAB049681BE876B73F0880EA32196CDA7EC954D452768A48D366096C5BD53 ] C:\WINDOWS\system32\wuapi.dll
09:07:57.0921 0x053c C:\WINDOWS\system32\wuapi.dll - ok
09:07:57.0937 0x053c [ D26451B540720A7313A9BCBE794DAF62, 255B3594876F9D9222760A53D1119E73D3BA4E4766C9DFAD63DCB180C5F33846 ] C:\WINDOWS\system32\wbem\ncprov.dll
09:07:57.0937 0x053c C:\WINDOWS\system32\wbem\ncprov.dll - ok
09:07:57.0937 0x053c [ 6D778E0F95447E6546553EEEA709D03C, 62ABED7D45040381BBCED97EA7B6C697B418448FD3322FD4BFB2BBFDB6155EB4 ] C:\WINDOWS\system32\cmd.exe
09:07:57.0937 0x053c C:\WINDOWS\system32\cmd.exe - ok
09:07:57.0937 0x053c [ 450168B0C88526D18A2D7480F8929816, 7684B11B15CA6969821B125A763645C8388BDA347C7D50F54CD232757C77F2EB ] C:\WINDOWS\system32\ieframe.dll
09:07:57.0937 0x053c C:\WINDOWS\system32\ieframe.dll - ok
09:07:57.0953 0x053c [ 6B47CAB302139AA94503187C11F71A9B, 5CCF7B00FD7D0F80B26A7267E33BD4F54E324699BFBC54CF5D10BA5B3F435954 ] C:\Program Files\Common Files\SupportSoft\bin\bcont_nm.exe
09:07:57.0953 0x053c C:\Program Files\Common Files\SupportSoft\bin\bcont_nm.exe - ok
09:07:57.0953 0x053c [ 79E3A8C328E7E569C32B0998377D9742, F5854956E452AD663004679BBDF8B006695B69C8962534CD243193F04F294DF3 ] C:\WINDOWS\system32\spoolss.dll
09:07:57.0953 0x053c C:\WINDOWS\system32\spoolss.dll - ok
09:07:57.0953 0x053c [ 6404807ABC7AF52FA3792697AE638B50, 75FB44348CCC53A4EA2C3677F42098A12CE882F3E015E3D847A07972C1E4AEF5 ] C:\WINDOWS\system32\wbem\wbemcons.dll
09:07:57.0953 0x053c C:\WINDOWS\system32\wbem\wbemcons.dll - ok
09:07:57.0953 0x053c [ 5677DFE438EC1F009273FC84FEED6B10, 44B62CC4D138E13C22FC29E9751CB7ED0B0C6C8897A8E6469172F8642B0527BE ] C:\WINDOWS\system32\localspl.dll
09:07:57.0953 0x053c C:\WINDOWS\system32\localspl.dll - ok
09:07:57.0968 0x053c [ 5D3D1AB0EF4EA55B731863050482C111, 8713DAA48DBC5FDF95BE993863BEE669BBB4026347DC575D72F520F423EE21BA ] C:\WINDOWS\system32\cnbjmon.dll
09:07:57.0968 0x053c C:\WINDOWS\system32\cnbjmon.dll - ok
09:07:57.0968 0x053c [ 222DE7F5EDB9DDBE628384A1A8BE59CE, 063AF8C6C251961ABC93A8E8A07DB9B9582CD1812CA3BB297FAFDF0AD3E5B4CC ] C:\WINDOWS\system32\pjlmon.dll
09:07:57.0968 0x053c C:\WINDOWS\system32\pjlmon.dll - ok
09:07:57.0968 0x053c [ AE0382AD9C73D343D85E1A50C80B7C20, 7477A5A33C0ACF80BE73F0169893A7D53AF8ABC514FCE190A6ACC677092E5A55 ] C:\WINDOWS\system32\tcpmon.dll
09:07:57.0968 0x053c C:\WINDOWS\system32\tcpmon.dll - ok
09:07:57.0968 0x053c [ F26385E8BA4549B5186B774EC0E45D86, 0BA8CA4C06918690EA68678CA5887F1B7E2B0976C99BDFAF99CC1C99F3E300A0 ] C:\WINDOWS\system32\usbmon.dll
09:07:57.0968 0x053c C:\WINDOWS\system32\usbmon.dll - ok
09:07:57.0984 0x053c [ EEE7F12D9FF46F68FBC0DA059A359E9E, 1D0D5AC87ACDF3F041D9C31A92BFE7B1B81CBAD81F8F7CE8183FC3F61CAFF8CC ] C:\WINDOWS\system32\spool\prtprocs\w32x86\filterpipelineprintproc.dll
09:07:57.0984 0x053c C:\WINDOWS\system32\spool\prtprocs\w32x86\filterpipelineprintproc.dll - ok
09:07:57.0984 0x053c [ 291778DFEBAA278B451D457B03C10AC1, 19649A327CC5EC74FB84D1FC347912E21D120C8470CB361DA1E8D4E49968F21E ] C:\WINDOWS\system32\win32spl.dll
09:07:57.0984 0x053c C:\WINDOWS\system32\win32spl.dll - ok
09:07:57.0984 0x053c [ B41D53899E37CC43DA85DA19998BEE81, CA92B8313338F0F8B1B630A0057B9C114E8D8BC10F09825C9008A5A824B91FDC ] C:\WINDOWS\system32\netrap.dll
09:07:57.0984 0x053c C:\WINDOWS\system32\netrap.dll - ok
09:07:58.0000 0x053c [ EE4C651A217B01D636B5364AC77DA892, E40C7DD39234673A3BA8FD87C189653C391E326ECB3E8011B5020BB9D78F56D0 ] C:\WINDOWS\system32\inetpp.dll
09:07:58.0000 0x053c C:\WINDOWS\system32\inetpp.dll - ok
09:07:58.0000 0x053c [ 1BB66A40744622E60E802B39F013DC64, 67A23F1E9E6123A3D7248213384D51D6166D146CACD679E244CE0F891A344B97 ] C:\DOCUME~1\Me\LOCALS~1\Temp\{AE2D4A60-D639-4A08-AE09-19C8FB6F41E2}.exe
09:07:58.0000 0x053c C:\DOCUME~1\Me\LOCALS~1\Temp\{AE2D4A60-D639-4A08-AE09-19C8FB6F41E2}.exe - ok
09:07:58.0000 0x053c [ 17AA58A54C00F1746B8654C050491F43, AADA0D527FB96852998073E58F93710C4B3A25D7D1414BA9F23A28DA3D06B4CD ] C:\WINDOWS\system32\msutb.dll
09:07:58.0000 0x053c C:\WINDOWS\system32\msutb.dll - ok
09:07:58.0000 0x053c [ E40FCF943127DDC8FD60554B722D762B, 2E7A7C08B56E07D69CB32F335D93F6D2C748EFA2CF4C41102A18C7761A4E9CF0 ] C:\WINDOWS\system32\msctf.dll
09:07:58.0000 0x053c C:\WINDOWS\system32\msctf.dll - ok
09:07:58.0015 0x053c [ 2DC5A8019E2387987905F77C664E4BE2, 32FD8D0D3146A599CFB536955F9E93AA50467B2176A70E481133B61D4BD29AD9 ] C:\WINDOWS\system32\linkinfo.dll
09:07:58.0015 0x053c C:\WINDOWS\system32\linkinfo.dll - ok
09:07:58.0015 0x053c [ A70A2D85AD143D6BB823C246CEB699A5, D8ED98DC2964A2DAF448893718E6381FBABAB53DD7497266851E0F4221F1B01F ] C:\WINDOWS\system32\ntshrui.dll
09:07:58.0015 0x053c C:\WINDOWS\system32\ntshrui.dll - ok
09:07:58.0015 0x053c [ 91790D6749EBED90E2C40479C0A91879, 3C267950F13CCE412474C5228FC0E3D8D7F912E82464BD2CE6312A0326F84A80 ] C:\WINDOWS\system32\verclsid.exe
09:07:58.0015 0x053c C:\WINDOWS\system32\verclsid.exe - ok
09:07:58.0031 0x053c [ 93C088C2AEB2F23E720BDA7E32BD5117, 7ECFCAF8E057986501B42181E049E48063D940A34A3F3E425FF82D2183008E90 ] C:\WINDOWS\system32\upnp.dll
09:07:58.0031 0x053c C:\WINDOWS\system32\upnp.dll - ok
09:07:58.0031 0x053c [ 9CEFA27B0C4AC2D47938780CDA7A5286, 204EFFD43AF15B2F340EB4680345A111CDECE056981ACE1A7262E24A0F14DA64 ] C:\Program Files\Microsoft Security Client\msseces.exe
09:07:58.0031 0x053c C:\Program Files\Microsoft Security Client\msseces.exe - ok
09:07:58.0031 0x053c [ 3D075865DCC26931972F6476AD0497BE, E1FB17787F54D9A4E2A04DD699FA770C9CE100A427E6EFBF4E0CF24EAAD3A9BA ] C:\WINDOWS\system32\ssdpapi.dll
09:07:58.0031 0x053c C:\WINDOWS\system32\ssdpapi.dll - ok
09:07:58.0046 0x053c [ 35643C90B523A7E5602B9A3BDB1D2F60, CC5DDB27DCFACA74DAC7F2657935C34AC7E7BF6AA9C0A552DC95575E513EFDB5 ] C:\WINDOWS\stsystra.exe
09:07:58.0046 0x053c C:\WINDOWS\stsystra.exe - ok
09:07:58.0046 0x053c [ 37A62C6092AADD2EFDE0468DD8818E99, 2D01A2EEE0BE81B3252E1A3EAD21D3D91EA6DE826A1783B14948A0E0B475BAB1 ] C:\WINDOWS\system32\netcfgx.dll
09:07:58.0046 0x053c C:\WINDOWS\system32\netcfgx.dll - ok
09:07:58.0046 0x053c [ 5F1D5F88303D4A4DBC8E5F97BA967CC3, 5FB24FC7916A6E6B3BE7D84CB1684215B266CD1495575C2E5672B8447932E5B1 ] C:\WINDOWS\system32\ctfmon.exe
09:07:58.0046 0x053c C:\WINDOWS\system32\ctfmon.exe - ok
09:07:58.0046 0x053c [ 29ECDA17BA5E6D98430F698587569ACC, 9C37D92CCBED1F9ED4E585F98E7FB17C6AD083712B078ABCB40476310BCDB7F8 ] C:\WINDOWS\WinSxS\x86_Microsoft.Windows.GdiPlus_6595b64144ccf1df_1.0.6002.23084_x-ww_f3f35550\GdiPlus.dll
09:07:58.0046 0x053c C:\WINDOWS\WinSxS\x86_Microsoft.Windows.GdiPlus_6595b64144ccf1df_1.0.6002.23084_x-ww_f3f35550\GdiPlus.dll - ok
09:07:58.0062 0x053c [ F6FAEC07446A78A9C5AF4558FF5BD118, 9291106F6666913DB6D18943D255D60F77CCDB5A46BD4C100A5E80D40D6927D9 ] C:\WINDOWS\ime\sptip.dll
09:07:58.0062 0x053c C:\WINDOWS\ime\sptip.dll - ok
09:07:58.0062 0x053c [ 2E311FFAE5E295044A2889CBDFB53A52, 18517AFC4070E32627985083644B518C5FE48C50B756D5834AC2D229B91B63D5 ] C:\WINDOWS\system32\stlang.dll
09:07:58.0062 0x053c C:\WINDOWS\system32\stlang.dll - ok
09:07:58.0062 0x053c [ 76A9A3CBEADD68CC57CDA5E1D7448235, 4AFD048C5D2306AB8DE46F3AA60AC0213333DDA3B09A9E91F7585DB6EB978EC8 ] C:\WINDOWS\system32\rasmans.dll
09:07:58.0062 0x053c C:\WINDOWS\system32\rasmans.dll - ok
09:07:58.0078 0x053c [ F6F2BFC17069EB335ACCEEF7595F9302, 7434C4353DD2B2E5C8F3690CEF2E1F7E234C2402E6E3BFCBF29DCB1494125F8A ] C:\WINDOWS\system32\mfc42u.dll
09:07:58.0078 0x053c C:\WINDOWS\system32\mfc42u.dll - ok
09:07:58.0078 0x053c [ FE542E0AE02E0A1C95F403FDAB0D9C86, 57CABB168787E2CB8532ADFD6B5E41EF207BEDE14BCC277C07582DAA5A739DD1 ] C:\Program Files\Microsoft Security Client\EppManifest.dll
09:07:58.0078 0x053c C:\Program Files\Microsoft Security Client\EppManifest.dll - ok
09:07:58.0078 0x053c [ A0191A60C2B1DED48D4AC4CACB537B2E, C3AEB570405E2FA820B04BF044E3CB3056746E20FC7CD67C02476FBFA5E9DB8C ] C:\WINDOWS\system32\stacapi.dll
09:07:58.0078 0x053c C:\WINDOWS\system32\stacapi.dll - ok
09:07:58.0078 0x053c [ ACFEE2392503DD5E457363A0510B8BCB, 60CFB4C077409ABA90F7C0B0D5B1A0F0D10DFA2DA3338AAA174C051724039517 ] C:\WINDOWS\system32\msxml3.dll
09:07:58.0078 0x053c C:\WINDOWS\system32\msxml3.dll - ok
09:07:58.0093 0x053c [ 855F6333E3A4DFC6F3C8B0520C261FCD, AF3F5D77FE8AF0BE09E2DD3AFDE1B1167D851D437078025E5CF82D8D0C315B34 ] C:\WINDOWS\system32\msftedit.dll
09:07:58.0093 0x053c C:\WINDOWS\system32\msftedit.dll - ok
09:07:58.0093 0x053c [ D475BBD6FEF8DB2DDE0DA7CCFD2C9042, 8E9D77A216D8DD2BE2B304E60EDF85CE825309E67262FCFF1891AEDE63909599 ] C:\Program Files\Microsoft Security Client\SqmApi.dll
09:07:58.0093 0x053c C:\Program Files\Microsoft Security Client\SqmApi.dll - ok
09:07:58.0093 0x053c [ 3CBA2210FA39C6ED7895634842E930DD, 9AFC6A7E1F936ED3636F89FD49B5C944594F88A5BFB597348AF2FB83DA2E4E40 ] C:\WINDOWS\system32\sensapi.dll
09:07:58.0093 0x053c C:\WINDOWS\system32\sensapi.dll - ok
09:07:58.0109 0x053c [ CC8915DB4E33E8FB29CA0D2DBF75306E, 6319C0580FFDA989A2726814667C330F6A5C864D34B8C87645DD5A98E7A2C7FB ] C:\WINDOWS\system32\webcheck.dll
09:07:58.0109 0x053c C:\WINDOWS\system32\webcheck.dll - ok
09:07:58.0109 0x053c [ 50512FC9B7878E3C2C147BC17326A7DB, 670006280CA98213C3A23B442615FD729C83953795619360F9D2988E56A602D7 ] C:\WINDOWS\system32\stobject.dll
09:07:58.0109 0x053c C:\WINDOWS\system32\stobject.dll - ok
09:07:58.0109 0x053c [ 231A0B0E3BA7ABFE469A8262FAA1FD71, 76F8AE2680438B279081EDFC2728E3785736E82A5C6396AA705BFFFF5C361294 ] C:\WINDOWS\system32\batmeter.dll
09:07:58.0109 0x053c C:\WINDOWS\system32\batmeter.dll - ok
09:07:58.0125 0x053c [ 9DD06F00898AA5CA7E24186EFC8E5E25, 51141D0D07DBC955B63281351D3F17163ACE9A5B08628EA1C82F33FD2913970E ] C:\DOCUME~1\Me\LOCALS~1\Temp\{ABAEEEBB-A711-41A6-B429-38C17930016B}\{14150B11-790A-437C-8645-99E981F02A31}.tmp
09:07:58.0125 0x053c C:\DOCUME~1\Me\LOCALS~1\Temp\{ABAEEEBB-A711-41A6-B429-38C17930016B}\{14150B11-790A-437C-8645-99E981F02A31}.tmp - ok
09:07:58.0125 0x053c [ 91A7771934C0D9D2DA7699D25BB5B348, 154A6EB866AF22B38AEE8DB5A864653FEB15DED69DE26E5B602B7C5056CDDF72 ] C:\DOCUME~1\Me\LOCALS~1\Temp\{ABAEEEBB-A711-41A6-B429-38C17930016B}\{C8127985-A6EB-40A6-8C25-6FC580D22C7E}.tmp
09:07:58.0125 0x053c C:\DOCUME~1\Me\LOCALS~1\Temp\{ABAEEEBB-A711-41A6-B429-38C17930016B}\{C8127985-A6EB-40A6-8C25-6FC580D22C7E}.tmp - ok
09:07:58.0125 0x053c [ 55C11301579A42639736EA3B17A3A588, CBEBDD7C883EF47DB86060AF0F09FD2218161D5FEB0CECEB4A068B9CC63499F8 ] C:\DOCUME~1\Me\LOCALS~1\Temp\{ABAEEEBB-A711-41A6-B429-38C17930016B}\{F71B2ACA-5CA0-41A8-AF78-6E004D5A6692}.tmp
09:07:58.0125 0x053c C:\DOCUME~1\Me\LOCALS~1\Temp\{ABAEEEBB-A711-41A6-B429-38C17930016B}\{F71B2ACA-5CA0-41A8-AF78-6E004D5A6692}.tmp - ok
09:07:58.0125 0x053c [ 798A9E6828997EEF4517ADA8A2259831, 64389FAD94D54E2D43A7292AD3C57CB16F90F2C80EA44099E02D11E19E390A5B ] C:\WINDOWS\system32\wbem\wmiprvse.exe
09:07:58.0125 0x053c C:\WINDOWS\system32\wbem\wmiprvse.exe - ok
09:07:58.0140 0x053c [ E837FDBB92E9873E538395B623F45462, E00D9F1471D9BDE7E53A5F8359B6F3B1606A432D4E94AB6B2A6898AB48E6751B ] C:\WINDOWS\system32\wbem\cimwin32.dll
09:07:58.0140 0x053c C:\WINDOWS\system32\wbem\cimwin32.dll - ok
09:07:58.0140 0x053c [ 4306FA2F1099D7C606139255FDB62B19, 75A0A99B9D8B0E2B39A8093F72DC283D5F2D56FB731C2BA193579DCE916030A0 ] C:\WINDOWS\system32\wbem\framedyn.dll
09:07:58.0140 0x053c C:\WINDOWS\system32\wbem\framedyn.dll - ok
09:07:58.0140 0x053c [ DF471F11CC78BE02FE6BA15F2D94F65B, 9AC230DE58CE40E78AE6872BCF4778B69EEBF17E0E41B1301FF364ABD4737A78 ] C:\DOCUME~1\Me\LOCALS~1\Temp\{ABAEEEBB-A711-41A6-B429-38C17930016B}\{6102A488-5BB3-4814-9E74-50B6E5452E0D}.tmp
09:07:58.0140 0x053c C:\DOCUME~1\Me\LOCALS~1\Temp\{ABAEEEBB-A711-41A6-B429-38C17930016B}\{6102A488-5BB3-4814-9E74-50B6E5452E0D}.tmp - ok
09:07:58.0156 0x053c [ 0FD19BDDD2513874FF6903F717367795, DFAF9C33F993BA26FC84EF66ABC7C483E62762F7E1FC763605A75ACC2E8AA4EE ] C:\DOCUME~1\Me\LOCALS~1\Temp\{ABAEEEBB-A711-41A6-B429-38C17930016B}\{FC25AE7D-19E6-4DC7-8277-198722599D46}.tmp
09:07:58.0156 0x053c C:\DOCUME~1\Me\LOCALS~1\Temp\{ABAEEEBB-A711-41A6-B429-38C17930016B}\{FC25AE7D-19E6-4DC7-8277-198722599D46}.tmp - ok
09:07:58.0156 0x053c [ DD88BBF87A43331A4E99E37F7BF59FDB, 872190F559FA0DD1F711E9FA101BA1AB6E6DE5ED0CCCE1AB7AFE45BC3B78A0F1 ] C:\DOCUME~1\Me\LOCALS~1\Temp\{ABAEEEBB-A711-41A6-B429-38C17930016B}\{E0030888-46BC-4BF7-A3F7-D312DCA07CB2}.tmp
09:07:58.0156 0x053c C:\DOCUME~1\Me\LOCALS~1\Temp\{ABAEEEBB-A711-41A6-B429-38C17930016B}\{E0030888-46BC-4BF7-A3F7-D312DCA07CB2}.tmp - ok
09:07:58.0156 0x053c [ 4261449C1CADA6B007E5C27522946D2B, 11E79D1C529E816CCCAC9266089C77A4DB44676CAEEE25C66D6DB420B18D3ACB ] C:\DOCUME~1\Me\LOCALS~1\Temp\{ABAEEEBB-A711-41A6-B429-38C17930016B}\{B4BA709F-A55C-4708-9A4A-231C6102DA20}.tmp
09:07:58.0156 0x053c C:\DOCUME~1\Me\LOCALS~1\Temp\{ABAEEEBB-A711-41A6-B429-38C17930016B}\{B4BA709F-A55C-4708-9A4A-231C6102DA20}.tmp - ok
09:07:58.0156 0x053c [ 6627AA675A5C1B0330487A02E23F0560, 256AE9BA4273D4247FFAD6099D5A4FC8E98EDB27293AC8CAF7A571EB3890FAA7 ] C:\DOCUME~1\Me\LOCALS~1\Temp\{ABAEEEBB-A711-41A6-B429-38C17930016B}\{94BE86BD-DB17-4D05-B88C-A7C0E3EE558A}.tmp
09:07:58.0156 0x053c C:\DOCUME~1\Me\LOCALS~1\Temp\{ABAEEEBB-A711-41A6-B429-38C17930016B}\{94BE86BD-DB17-4D05-B88C-A7C0E3EE558A}.tmp - ok
09:07:58.0171 0x053c [ 723B834A07F7DF7DE4CEB637D57ACEA3, B42867045DD3FB7682CDBD133970421010F0F14125E4992C73657CABA4659250 ] C:\DOCUME~1\Me\LOCALS~1\Temp\{ABAEEEBB-A711-41A6-B429-38C17930016B}\{111E33A3-7822-4491-9C43-0F76DC5CDF12}.tmp
09:07:58.0171 0x053c C:\DOCUME~1\Me\LOCALS~1\Temp\{ABAEEEBB-A711-41A6-B429-38C17930016B}\{111E33A3-7822-4491-9C43-0F76DC5CDF12}.tmp - ok
09:07:58.0171 0x053c [ C1DE893FAF6D7F6CFB479A1F61835482, AD5FA3CE73777704C67C933691F1F068E1A7FF545F728B97574F9C33AC4BBC01 ] C:\DOCUME~1\Me\LOCALS~1\Temp\{ABAEEEBB-A711-41A6-B429-38C17930016B}\{9B41B9D2-ED06-4AB1-9017-EEBBE2EFE0C6}.tmp
09:07:58.0171 0x053c C:\DOCUME~1\Me\LOCALS~1\Temp\{ABAEEEBB-A711-41A6-B429-38C17930016B}\{9B41B9D2-ED06-4AB1-9017-EEBBE2EFE0C6}.tmp - ok
09:07:58.0171 0x053c [ 317C54DCAB9EE29CD4B9F55D197A90D1, 050B753DD504324CA6F36DD825B588F8DBD586440FCDA438C49BFD11D6F176EA ] C:\WINDOWS\system32\msisip.dll
09:07:58.0171 0x053c C:\WINDOWS\system32\msisip.dll - ok
09:07:58.0187 0x053c [ 559D9CBFC29DEE2773B28D38851683BA, 91E104EA78222F8968FC887A4BBA1D68B8BE1A9447AE59CE635CB9E62774D67A ] C:\Program Files\Microsoft Silverlight\xapauthenticodesip.dll
09:07:58.0187 0x053c C:\Program Files\Microsoft Silverlight\xapauthenticodesip.dll - ok
09:07:58.0187 0x053c [ 3A6D465F379E5C815F4AD565391E654C, EE40580ED71282B1D5D95752DD843DCC30689196B22051AF8CDF6127B985411E ] C:\WINDOWS\system32\wshext.dll
09:07:58.0187 0x053c C:\WINDOWS\system32\wshext.dll - ok
09:07:58.0187 0x053c [ EF01D104449CC654FDCF423C92BD8846, 019B733AA058D043D45FE0A8C4B3E457EB204BFCF6844683AA544095D77C2142 ] C:\Program Files\Mozilla Firefox\firefox.exe
09:07:58.0187 0x053c C:\Program Files\Mozilla Firefox\firefox.exe - ok
09:07:58.0203 0x053c [ 67EC459E42D3081DD8FD34356F7CAFC1, 1221A09484964A6F38AF5E34EE292B9AFEFCCB3DC6E55435FD3AAF7C235D9067 ] C:\Program Files\Mozilla Firefox\msvcr100.dll
09:07:58.0203 0x053c C:\Program Files\Mozilla Firefox\msvcr100.dll - ok
09:07:58.0203 0x053c [ 03E9314004F504A14A61C3D364B62F66, A3BA6421991241BEA9C8334B62C3088F8F131AB906C3CC52113945D05016A35F ] C:\Program Files\Mozilla Firefox\msvcp100.dll
09:07:58.0203 0x053c C:\Program Files\Mozilla Firefox\msvcp100.dll - ok
09:07:58.0203 0x053c [ 36722E8B5329EE4089F412B248122372, F98574A3070D0BBA808904B6EEC37A96027A1B19AB11124C96CFF09D2A87C3C5 ] C:\Program Files\Mozilla Firefox\mozglue.dll
09:07:58.0203 0x053c C:\Program Files\Mozilla Firefox\mozglue.dll - ok
09:07:58.0203 0x053c [ B15FB835D69B469B7465C03D1D830B19, ADF22813F0569B71BD623E672CE6DBF522822EADC781CE68EA594EFA4383599B ] C:\Program Files\Mozilla Firefox\nss3.dll
09:07:58.0203 0x053c C:\Program Files\Mozilla Firefox\nss3.dll - ok
09:07:58.0218 0x053c [ D585CB527E22B8A7F301725F9DB80F10, 6C82D157A1725DB4FA9D214445FE026F1032279989647AF36D598F4D5583BC3E ] C:\Program Files\Mozilla Firefox\mozjs.dll
09:07:58.0218 0x053c C:\Program Files\Mozilla Firefox\mozjs.dll - ok
09:07:58.0218 0x053c [ 3AD07CAA265C69A747A1AF7B6FC15C49, 7CE1A9FFEBBB3EE843A85469B6F57497B67C438B8780249BF7A7868E406DEAB9 ] C:\Program Files\Mozilla Firefox\mozalloc.dll
09:07:58.0218 0x053c C:\Program Files\Mozilla Firefox\mozalloc.dll - ok
09:07:58.0218 0x053c [ 98DED4AE26279452B33B44DC921B25F5, 61E2A0057218D2891C0A95DFD2D593B1F136A548C0DF57EA6090025ACFD9A4D1 ] C:\Program Files\Mozilla Firefox\gkmedias.dll
09:07:58.0218 0x053c C:\Program Files\Mozilla Firefox\gkmedias.dll - ok
09:07:58.0218 0x053c [ 1D845821F5ADB076831DE4C2818F858B, 5F1F18042E6B16BC149F2B0F22ECE3D3668E846C843F016D33C9E6C60E2D64C6 ] C:\WINDOWS\system32\usp10.dll
09:07:58.0218 0x053c C:\WINDOWS\system32\usp10.dll - ok
09:07:58.0234 0x053c [ 1CBF73FF9492A3DE6FC501901932AD7A, 65FF206751115A93CE2F208D3EB80D6B4391024E16C92A338B42995BB5BC6647 ] C:\Program Files\Mozilla Firefox\xul.dll
09:07:58.0234 0x053c C:\Program Files\Mozilla Firefox\xul.dll - ok
09:07:58.0234 0x053c [ B6E6F3F5B63053D5DC1F4EE32992492F, 089F9C92B677A138BABA4817624E8CA49B7E507B7D6FA0B1A3B4302B354B5C7E ] C:\WINDOWS\system32\dbghelp.dll
09:07:58.0234 0x053c C:\WINDOWS\system32\dbghelp.dll - ok
09:07:58.0234 0x053c [ 5572F661A900084D519C97B229C500B6, 7D699BC1CACBECE18365EC84D543DA39EBFA74CCDCAB6F20A00EEC93481B480C ] C:\Program Files\Mozilla Firefox\browser\components\browsercomps.dll
09:07:58.0234 0x053c C:\Program Files\Mozilla Firefox\browser\components\browsercomps.dll - ok
09:07:58.0250 0x053c [ 776F9A769B6CAF69522FCA64A8B04D25, 0FC88E7AE936D959CEAD2E06483ED85C5177D1F5E749E5D151ACD9E31F983AD3 ] C:\Program Files\Mozilla Firefox\softokn3.dll
09:07:58.0250 0x053c C:\Program Files\Mozilla Firefox\softokn3.dll - ok
09:07:58.0250 0x053c [ DF73580DD14B472C8512CC19AFE6A2F6, E1D5A8D50D0DD1B7FB455384C11694B596B6255FA6F225B66276686360ED46BC ] C:\Program Files\Mozilla Firefox\nssdbm3.dll
09:07:58.0250 0x053c C:\Program Files\Mozilla Firefox\nssdbm3.dll - ok
09:07:58.0250 0x053c [ BEC21DB9CB33109E95F28E6CBEA7C493, B3054FA538850945A01DD8EDFDAAA64BC1699C5C4CEC1338517DA6F70714D050 ] C:\Program Files\Mozilla Firefox\freebl3.dll
09:07:58.0250 0x053c C:\Program Files\Mozilla Firefox\freebl3.dll - ok
09:07:58.0265 0x053c [ C271A6D9DC09229FACCB66F899C49F9B, 2FF1BF3136EBF430B564F6F6C4AB695BC0B95FA6401BF56BF7CB1BEB643279AB ] C:\Program Files\Mozilla Firefox\nssckbi.dll
09:07:58.0265 0x053c C:\Program Files\Mozilla Firefox\nssckbi.dll - ok
09:07:58.0265 0x053c [ C14350FC0D47D806699C4F907FC6785B, A8862B47A74F5FB03C9916A42B986D9B352549ED486AD2B9DAD405A98B5564B3 ] C:\WINDOWS\system32\cryptnet.dll
09:07:58.0265 0x053c C:\WINDOWS\system32\cryptnet.dll - ok
09:07:58.0265 0x053c [ B60DDDD2D63CE41CB8C487FCFBB6419E, B18A0D4BEBA606BF30F5010BA3C72ABAFAC80D5F303A8BFFB24D7F7B78B786E6 ] C:\Program Files\Internet Explorer\iexplore.exe
09:07:58.0265 0x053c C:\Program Files\Internet Explorer\iexplore.exe - ok
09:07:58.0265 0x053c [ AF8841FEF8DE40D36E77C6662843EDAE, E7FAE0E448B7123CE4BBD20D5EBFCD8690F6902D7007C39733658EAD65A0A1DE ] C:\WINDOWS\AppPatch\aclayers.dll
09:07:58.0265 0x053c C:\WINDOWS\AppPatch\aclayers.dll - ok
09:07:58.0281 0x053c [ 2DE1190196EE9555DB548A57622022EB, 89DBC777BE06D008AABEDAC61AFC11B4FF7ABCA86C205109ED9D34D21C0B5146 ] C:\WINDOWS\system32\drprov.dll
09:07:58.0281 0x053c C:\WINDOWS\system32\drprov.dll - ok
09:07:58.0281 0x053c [ AC5DF42FE314C1446B1DAD237BFCFFE0, FD53D9BCC619ED7AE4B7C29B7D457A2F61D6D340841A4E030329D7032C306AB6 ] C:\WINDOWS\system32\netui0.dll
09:07:58.0281 0x053c C:\WINDOWS\system32\netui0.dll - ok
09:07:58.0281 0x053c [ 36468087E22C57A83DF758B3F90DF73F, F6898D07CEE4F528A9F17A231CCB5E38F826A0C1926EFBF35ECCA06E0E8EE565 ] C:\WINDOWS\system32\ntlanman.dll
09:07:58.0281 0x053c C:\WINDOWS\system32\ntlanman.dll - ok
09:07:58.0296 0x053c [ ED5A816D8E11E03F1937AC3C56826EE4, D01525B5BD9F9DDF149B78706C6C2F5AE26F5337F897C1B8763DBC67AB64F875 ] C:\WINDOWS\system32\netui1.dll
09:07:58.0296 0x053c C:\WINDOWS\system32\netui1.dll - ok
09:07:58.0296 0x053c [ FB8F8EEC8D9C2157789472DD61CDC78B, D5306081621FFEFF585FAD292E60207E1BCB4EA67367E12872AF73C464110C68 ] C:\WINDOWS\system32\davclnt.dll
09:07:58.0296 0x053c C:\WINDOWS\system32\davclnt.dll - ok
09:07:58.0296 0x053c [ FF3477C03BE7201C294C35F684B3479F, D6246521539BA4ACD022D26983182F5E323D2EF1EA7C54265A248C43A1CE5202 ] C:\WINDOWS\system32\termsrv.dll
09:07:58.0296 0x053c C:\WINDOWS\system32\termsrv.dll - ok
09:07:58.0296 0x053c [ DF6551E4C4C46655A0C76194F1FCEA5D, F3895AE4B36BC85C458EDC85FBD1F5AB5C33913CD91C60A65083DC0BDD037BF5 ] C:\WINDOWS\system32\icaapi.dll
09:07:58.0296 0x053c C:\WINDOWS\system32\icaapi.dll - ok
09:07:58.0312 0x053c [ 2D65D56C2F8B6CC5EBFF8E7200C30304, 10CD5FF00D110D1AE2313DBCBDB17C2B9DFF930F5DAD65C35C08FCF9C152C053 ] C:\WINDOWS\system32\mstlsapi.dll
09:07:58.0312 0x053c C:\WINDOWS\system32\mstlsapi.dll - ok
09:07:58.0312 0x053c [ 83BA5E873164A3711B44052F58C8FE9F, 7271ADE7A615E6F33375D23DACC32A8A652AF18CAAF8439F018E32E32E222F5A ] C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscoreei.dll
09:07:58.0312 0x053c C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscoreei.dll - ok
09:07:58.0312 0x053c [ 3CB78C17BB664637787C9A1C98F79C38, F35C31F6B7F366CB949D1044B357C76DEC9170441C5E559802794F62B72FD255 ] C:\WINDOWS\system32\tapisrv.dll
09:07:58.0312 0x053c C:\WINDOWS\system32\tapisrv.dll - ok
09:07:58.0328 0x053c [ F80A415EF82CD06FFAF0D971528EAD38, 524D9E9201572929522F6805011783711B7C0F76308B924C89CF75F4B7A1FDF3 ] C:\WINDOWS\system32\drivers\http.sys
09:07:58.0328 0x053c C:\WINDOWS\system32\drivers\http.sys - ok
09:07:58.0328 0x053c [ F92E1076C42FCD6DB3D72D8CFE9816D5, 94135ACF2D9426BB78E4522429120B03D94B541422C277B9ACA31410874A464C ] C:\WINDOWS\system32\wscntfy.exe
09:07:58.0328 0x053c C:\WINDOWS\system32\wscntfy.exe - ok
09:07:58.0328 0x053c [ 0A5679B3714EDAB99E357057EE88FCA6, 01E1A101FFF48402C77E385A78FEF27876E04533B60EB1C18558A737E57E5FA8 ] C:\WINDOWS\system32\ssdpsrv.dll
09:07:58.0328 0x053c C:\WINDOWS\system32\ssdpsrv.dll - ok
09:07:58.0328 0x053c [ 30DEAF54A9755BB8546168CFE8A6B5E1, 3936228CD3125C763ABFCB93E86E4B43838202BCC0913A28E84AC0263B43EE0D ] C:\WINDOWS\system32\imapi.exe
09:07:58.0328 0x053c C:\WINDOWS\system32\imapi.exe - ok
09:07:58.0343 0x053c [ 5F7692CEC90E2E9AA32CD58321E234B8, 0F76BD005B6FC51EE8B2D167C5E792947F8A8FF1A4FBC7F9CB3572BEAFC12639 ] C:\WINDOWS\system32\rastapi.dll
09:07:58.0343 0x053c C:\WINDOWS\system32\rastapi.dll - ok
09:07:58.0343 0x053c [ 8BCD11D38FCE43A519246A91CC40DE6A, 981EE4B29FDE6DB58FAA17BCCA66DB8143D693D91A00B7519F01ABBAE11AA580 ] C:\WINDOWS\system32\security.dll
09:07:58.0343 0x053c C:\WINDOWS\system32\security.dll - ok
09:07:58.0343 0x053c [ AACE07FE34FADDDF973CE068A6424957, A14DC612762F56EE3CF9FBDF58E9476400F2CD9513319AD90E3818B2DB9F4580 ] C:\WINDOWS\system32\unimdm.tsp
09:07:58.0343 0x053c C:\WINDOWS\system32\unimdm.tsp - ok
09:07:58.0359 0x053c [ 995252FCC4692B5B97EE17D596C9386E, E0EC754ADC0976BCF88C4777E788A67844428DF0B828D8EE7B8A039C763DFFDD ] C:\WINDOWS\system32\uniplat.dll
09:07:58.0359 0x053c C:\WINDOWS\system32\uniplat.dll - ok
09:07:58.0359 0x053c [ 8C515081584A38AA007909CD02020B3D, A5E13CA10F702928E0DE84C74D0EA8ACCB117FD76FBABC55220C75C4FFD596DC ] C:\WINDOWS\system32\alg.exe
09:07:58.0359 0x053c C:\WINDOWS\system32\alg.exe - ok
09:07:58.0359 0x053c [ 19AE6CBA05B9005698A6DEDCC88F202E, 047016D4989FB1460BE11C0C22E10858E3D6598EBA31C98B8489413C1A350A9C ] C:\WINDOWS\system32\unimdmat.dll
09:07:58.0359 0x053c C:\WINDOWS\system32\unimdmat.dll - ok
09:07:58.0375 0x053c [ FE4A73CDBC882A19D070F1C01586E81A, EAF450BA7E168EA41EAA7556E14CBDFCF1B96D7E57A17EC20C3BECFDA9FDFD9A ] C:\WINDOWS\system32\modemui.dll
09:07:58.0375 0x053c C:\WINDOWS\system32\modemui.dll - ok
09:07:58.0375 0x053c [ 76EC97C5068D3D9FAA7774B0F659D31A, 4E2EF0DC0B05187A6154D4D672B7530E14103D7D1EDF1BDE960F9B988B5EC41F ] C:\WINDOWS\system32\kmddsp.tsp
09:07:58.0375 0x053c C:\WINDOWS\system32\kmddsp.tsp - ok
09:07:58.0375 0x053c [ C730F70351D950DDA7388C9A9763CF54, 7A9D265E4D2F76EF131D01C2EE1CDC19A8E5FDCAF97649CC562E8114B92D411F ] C:\WINDOWS\system32\wbem\wmipcima.dll
09:07:58.0375 0x053c C:\WINDOWS\system32\wbem\wmipcima.dll - ok
09:07:58.0375 0x053c [ 4589963D84F2984FA5949A72162BA4F4, BC927EC7D0EBDBD2B4780D892D41739840DD31B0FF8C79013014925F52860808 ] C:\WINDOWS\system32\ndptsp.tsp
09:07:58.0375 0x053c C:\WINDOWS\system32\ndptsp.tsp - ok
09:07:58.0390 0x053c [ 8B8A45DF7CEF36D93C7BD3E4C84003B8, 7E3A0204FCDD5DFFB3B352451232DD86F8298F83918533D874C122A2EF29081B ] C:\WINDOWS\system32\ipconf.tsp
09:07:58.0390 0x053c C:\WINDOWS\system32\ipconf.tsp - ok
09:07:58.0390 0x053c [ 8BC2B02DC11C98D14CEE43B8E8393FF3, 1314C33E2E5F11B361CF1E88884B2A9862F8BAB1C498F48DC4C49ACDB28D4732 ] C:\WINDOWS\system32\h323.tsp
09:07:58.0390 0x053c C:\WINDOWS\system32\h323.tsp - ok
09:07:58.0390 0x053c [ 6B552ED3BEE5AA3C4560478FF779BA98, 1778F0B7200F93EB255E1F215BB5FBEAA0DBF63BC60B286D76120F8A787995C4 ] C:\WINDOWS\system32\hidphone.tsp
09:07:58.0390 0x053c C:\WINDOWS\system32\hidphone.tsp - ok
09:07:58.0406 0x053c [ D0545A010ED2259A740C8414899A938F, 5E6FD116C6F65241A075E4469C5AD1967B8D66DE11E223F7A3F00139FB0160C3 ] C:\WINDOWS\system32\rasppp.dll
09:07:58.0406 0x053c C:\WINDOWS\system32\rasppp.dll - ok
09:07:58.0406 0x053c [ B464BD425D5D09ABE4192234D1577B22, DF7333CAF299A18DEA43ACEF0A6D8C3F79918D1B3FCE437FDED6B54F95C106B9 ] C:\WINDOWS\system32\ntlsapi.dll
09:07:58.0406 0x053c C:\WINDOWS\system32\ntlsapi.dll - ok
09:07:58.0406 0x053c [ A655C88AA555BB8EF8957BD29408827F, 6CD48D32D1DFF68FEED5CC20D0DE12729101381EB8A6774408566C14E0B18FFB ] C:\WINDOWS\system32\rasqec.dll
09:07:58.0406 0x053c C:\WINDOWS\system32\rasqec.dll - ok
09:07:58.0406 0x053c [ 401A8C0BE0BAA7D7A470F0942244152D, EC21ED13E526617697CD8E6D79FC706CBDA0AF36C02C05B39E8603B217E406BC ] C:\WINDOWS\system32\rasdlg.dll
09:07:58.0406 0x053c C:\WINDOWS\system32\rasdlg.dll - ok
09:07:58.0421 0x053c [ 5EB87BA0B93CA7E894FC8002E3CE4C2A, 3736FA95578D4833CDC2BDEE10CBBEAC6B4D4A8E3D89E50E8723BBA312FFE4F5 ] C:\Program Files\Internet Explorer\sqmapi.dll
09:07:58.0421 0x053c C:\Program Files\Internet Explorer\sqmapi.dll - ok
09:07:58.0421 0x053c [ 1E4E7EA0CC0171FC322F87BA46945224, 9D5027D1587630C381233A0F5E517329E026F97DB2053A7D123CCB9574D04B36 ] C:\Program Files\Internet Explorer\xpshims.dll
09:07:58.0421 0x053c C:\Program Files\Internet Explorer\xpshims.dll - ok
09:07:58.0421 0x053c [ 11734790410900D2CD6B7839020E4DD9, D457755F13909BC06B9A62CCC41AE369D97870663E77E149B49CF50DF025390C ] C:\WINDOWS\system32\ieui.dll
09:07:58.0421 0x053c C:\WINDOWS\system32\ieui.dll - ok
09:07:58.0437 0x053c [ 4F47A5B11107C52E7E70E3DA6DCF1EF7, AA35F215ABF048FDA38759C08132015080D2C0AE52321EE2D814DBE45CEEBA43 ] C:\Program Files\Internet Explorer\ieproxy.dll
09:07:58.0437 0x053c C:\Program Files\Internet Explorer\ieproxy.dll - ok
09:07:58.0437 0x053c [ E11457C66FDD966EE415FBBC6D9BE643, 9CAF889C740D79F56F1CE817DA7C8F2BAEE740212B578DAC509EA2C8BA2D790E ] C:\WINDOWS\system32\msimtf.dll
09:07:58.0437 0x053c C:\WINDOWS\system32\msimtf.dll - ok
09:07:58.0437 0x053c [ BEA4AEE74FEF171EB61DE1BAD8FAF427, 80B525C319D24CCA669D147D1010D66B9516347DFB062612374EFF7C368C2414 ] C:\WINDOWS\system32\xmllite.dll
09:07:58.0437 0x053c C:\WINDOWS\system32\xmllite.dll - ok
09:07:58.0437 0x053c [ C88C65DF1ED4DFD34CFBD11CDFE519A3, 1CD0B01D00F515F7866CDDBCDD3B68C5F71DA8EA7EC468BB4CF2D7709965F593 ] C:\WINDOWS\system32\wucltui.dll
09:07:58.0437 0x053c C:\WINDOWS\system32\wucltui.dll - ok
09:07:58.0453 0x053c [ C31DD4CEC06D2908AE5F212A0B13805B, 5CCBA4EECAE6E90E1DBF3AA558F64329C6E698C303D882CFEB8620D0816BC9A6 ] C:\WINDOWS\system32\wuaucpl.cpl
09:07:58.0453 0x053c C:\WINDOWS\system32\wuaucpl.cpl - ok
09:07:58.0453 0x053c [ BBDFDBEAD1B7A1CFD44BFFFD177FB627, F2BD23BE0A349E0A9FFC7C43949186D27C31C5B44008ED461073B80046DC7C55 ] C:\WINDOWS\system32\mucltui.dll
09:07:58.0453 0x053c C:\WINDOWS\system32\mucltui.dll - ok
09:07:58.0453 0x053c [ 579017CF9C919429188190DAE79BB8FC, F42DE38F770FA2FBD8DFC9F2486B8E311FE9372D06A4F24270A168517CAC752D ] C:\WINDOWS\system32\mshtml.dll
09:07:58.0453 0x053c C:\WINDOWS\system32\mshtml.dll - ok
09:07:58.0468 0x053c [ 2ACCD352451EC0F99AF2AD9DB6DB4439, 7EFFA9D4561674633B2FFB35F629947B061AFE5DA756DA6D02E0584FCE221445 ] C:\WINDOWS\system32\msls31.dll
09:07:58.0468 0x053c C:\WINDOWS\system32\msls31.dll - ok
09:07:58.0468 0x053c [ 0689622E6484934EB6E5F4D3A96311F9, A7D417556512F0FB129939F70835529F3EAC3D5ACBECE5B960A97C2605AF0833 ] C:\WINDOWS\system32\jscript.dll
09:07:58.0468 0x053c C:\WINDOWS\system32\jscript.dll - ok
09:07:58.0468 0x053c [ 79BBA6F61E70793CFC4058832ABBDC94, 3DCBCD62467464678CB373DA5CEA473CEC9BFDA2E1D71979ABBDBCDA0C013618 ] C:\WINDOWS\system32\iepeers.dll
09:07:58.0468 0x053c C:\WINDOWS\system32\iepeers.dll - ok
09:07:58.0468 0x053c [ 42B928FC8518D793BF7A5EAFC57B1D8B, 22C194288DB7FE6902E4BE183856A07456B764D3B123C346A63F49AE55B4EF88 ] C:\WINDOWS\system32\imgutil.dll
09:07:58.0468 0x053c C:\WINDOWS\system32\imgutil.dll - ok
09:07:58.0484 0x053c [ E5FA1B044DAC5F6F600A1742D73F6936, 8B9FC6C6388316854F101B99F0C15597DAC20CE43A4B9B151748F98070E9DF8A ] C:\WINDOWS\system32\pngfilt.dll
09:07:58.0484 0x053c C:\WINDOWS\system32\pngfilt.dll - ok
09:07:58.0484 0x053c [ 5E1A0476E009A1930A524DFF4CA13982, 02635287787412C2075F48A1BBA60B2705C13F5E0D82F82C8C048ED9D8AB5F26 ] C:\WINDOWS\system32\dxtrans.dll
09:07:58.0484 0x053c C:\WINDOWS\system32\dxtrans.dll - ok
09:07:58.0484 0x053c [ A340CD71EB535A3DD751B5F28723E50C, AC19738C9255B6B48D20DDCF384BDDAEE0B3EF50F2297512E1750901DA9CC72A ] C:\WINDOWS\system32\ddraw.dll
09:07:58.0484 0x053c C:\WINDOWS\system32\ddraw.dll - ok
09:07:58.0500 0x053c [ A47F6A13202AA54541CA46D6CED79F5F, D1FA5CDA2256F3B10E9306673A0E29EE7693548E29D5665BBEA2D42927D061F0 ] C:\WINDOWS\system32\ddrawex.dll
09:07:58.0500 0x053c C:\WINDOWS\system32\ddrawex.dll - ok
09:07:58.0500 0x053c [ D8B91D94ECB123862B390FDE3250D3BB, DB2959E80684627ADD72CD895F8B4CBA56CFEBF60BFD60719E400181DD2CE979 ] C:\WINDOWS\system32\dciman32.dll
09:07:58.0500 0x053c C:\WINDOWS\system32\dciman32.dll - ok
09:07:58.0500 0x053c [ 057D53F1490598D41D9D4DEE9A92B0B1, 3B085C27A91BF708B475250630545ECF0D57C454F8C4B21FDD40C81C0B9621B6 ] C:\WINDOWS\system32\dxtmsft.dll
09:07:58.0500 0x053c C:\WINDOWS\system32\dxtmsft.dll - ok
09:07:58.0500 0x053c [ B48E7B4C95CCE0C6C0C3F7B1A97FBC8F, E3B0CEBA4408D1F4DC26ED63F746C330A6D42D057EB6AF12E1C88C956C37412A ] C:\WINDOWS\system32\wzcdlg.dll
09:07:58.0500 0x053c C:\WINDOWS\system32\wzcdlg.dll - ok
09:07:58.0515 0x053c [ 01D09C1B51B74590FBFAC5ED908E5E95, 387E93C3EAC26256FE908A7C21C63592CD68CF5FEAD2888EF6403DA95FF016C4 ] C:\WINDOWS\system32\Macromed\Flash\Flash32_11_9_900_117.ocx
09:07:58.0515 0x053c C:\WINDOWS\system32\Macromed\Flash\Flash32_11_9_900_117.ocx - ok
09:07:58.0515 0x053c [ 4D83ED8BDDEC431FC8AD907B47CFB6E3, 4687B8DD40CA9B83AA5CE1268F62476EBA886C10CC8B7B5AB716E4C56AF1EEAF ] C:\WINDOWS\system32\dsound.dll
09:07:58.0515 0x053c C:\WINDOWS\system32\dsound.dll - ok
09:07:58.0515 0x053c [ AA0507F0516A4DFF1B1279AB4A2ABB37, 8EBC13ED4D96F208C5DF940EE51A4D06B64DD789425301B466C9FCD1EF78C64D ] C:\WINDOWS\system32\dinput8.dll
09:07:58.0515 0x053c C:\WINDOWS\system32\dinput8.dll - ok
09:07:58.0531 0x053c [ 56ADB11F7D4D0816C0BE1E701C1B5E52, 8986E38F7CB4DEED83B0614A8BA37B20C3C30B7A3EFD1A17A9D0B3EBFF58AE8B ] C:\WINDOWS\system32\d3dim700.dll
09:07:58.0531 0x053c C:\WINDOWS\system32\d3dim700.dll - ok
09:07:58.0531 0x053c [ F5CF984927625B23757C83B0E3AACFA9, ADDAB91A54EE724F832EE564FC7547B1A2FD80A250CA695C490B97E9012B7E38 ] C:\WINDOWS\system32\wbem\wmiadap.exe
09:07:58.0531 0x053c C:\WINDOWS\system32\wbem\wmiadap.exe - ok
09:07:58.0531 0x053c [ 6358C181BF021970A897C1FAB0ECF5D2, E85170DA25D32659AB321F6CB2D8707D0B08503FF481F0BF714AD79969223F46 ] C:\WINDOWS\system32\loadperf.dll
09:07:58.0531 0x053c C:\WINDOWS\system32\loadperf.dll - ok
09:07:58.0546 0x053c [ 960F6D3CD9A1BA6435D7AADD102B297F, 5360EA5288B3B5A9FC5B728A7D049299C6F93CD050A84CAE0946B0152F2D1348 ] C:\WINDOWS\system32\wbem\wmiprov.dll
09:07:58.0546 0x053c C:\WINDOWS\system32\wbem\wmiprov.dll - ok
09:07:58.0671 0x053c AV detected via SS1: Microsoft Security Essentials, 4.3.0219.0, enabled, updated
09:07:58.0671 0x053c Win FW state via NFM: enabled
09:08:01.0187 0x053c ============================================================
09:08:01.0187 0x053c Scan finished
09:08:01.0187 0x053c ============================================================
09:08:01.0203 0x0478 Detected object count: 2
09:08:01.0203 0x0478 Actual detected object count: 2
09:09:04.0156 0x0478 cercsr6 ( UnsignedFile.Multi.Generic ) - skipped by user
09:09:04.0156 0x0478 cercsr6 ( UnsignedFile.Multi.Generic ) - User select action: Skip
09:09:04.0156 0x0478 PrismXL ( UnsignedFile.Multi.Generic ) - skipped by user
09:09:04.0156 0x0478 PrismXL ( UnsignedFile.Multi.Generic ) - User select action: Skip

#5
Sherry0004008

Posted 06 November 2013 - 09:18 AM

New Member

Topic Starter
Member
4 posts

ComboFix 13-11-04.01 - Me 11/06/2013 9:51.1.2 - x86
Microsoft Windows XP Home Edition 5.1.2600.3.1252.1.1033.18.894.329 [GMT -5:00]
Running from: c:\documents and settings\Me\Desktop\ComboFix.exe
AV: Microsoft Security Essentials *Enabled/Updated* {EDB4FA23-53B8-4AFA-8C5D-99752CCA7095}
.
.
((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\documents and settings\All Users\Application Data\TEMP
c:\documents and settings\Me\Application Data\PriceGong
c:\documents and settings\Me\Application Data\PriceGong\Data\1.txt
c:\documents and settings\Me\Application Data\PriceGong\Data\a.txt
c:\documents and settings\Me\Application Data\PriceGong\Data\b.txt
c:\documents and settings\Me\Application Data\PriceGong\Data\c.txt
c:\documents and settings\Me\Application Data\PriceGong\Data\d.txt
c:\documents and settings\Me\Application Data\PriceGong\Data\e.txt
c:\documents and settings\Me\Application Data\PriceGong\Data\f.txt
c:\documents and settings\Me\Application Data\PriceGong\Data\g.txt
c:\documents and settings\Me\Application Data\PriceGong\Data\h.txt
c:\documents and settings\Me\Application Data\PriceGong\Data\i.txt
c:\documents and settings\Me\Application Data\PriceGong\Data\j.txt
c:\documents and settings\Me\Application Data\PriceGong\Data\k.txt
c:\documents and settings\Me\Application Data\PriceGong\Data\l.txt
c:\documents and settings\Me\Application Data\PriceGong\Data\m.txt
c:\documents and settings\Me\Application Data\PriceGong\Data\n.txt
c:\documents and settings\Me\Application Data\PriceGong\Data\o.txt
c:\documents and settings\Me\Application Data\PriceGong\Data\p.txt
c:\documents and settings\Me\Application Data\PriceGong\Data\q.txt
c:\documents and settings\Me\Application Data\PriceGong\Data\r.txt
c:\documents and settings\Me\Application Data\PriceGong\Data\s.txt
c:\documents and settings\Me\Application Data\PriceGong\Data\t.txt
c:\documents and settings\Me\Application Data\PriceGong\Data\u.txt
c:\documents and settings\Me\Application Data\PriceGong\Data\v.txt
c:\documents and settings\Me\Application Data\PriceGong\Data\w.txt
c:\documents and settings\Me\Application Data\PriceGong\Data\wlu.txt
c:\documents and settings\Me\Application Data\PriceGong\Data\x.txt
c:\documents and settings\Me\Application Data\PriceGong\Data\y.txt
c:\documents and settings\Me\Application Data\PriceGong\Data\z.txt
C:\END
c:\program files\GoogleEarthWin_5.2.1.1588.exe
c:\program files\WindowsXP-KB936929-SP3-x86-ENU.exe
c:\windows\wininit.ini
.
.
((((((((((((((((((((((((( Files Created from 2013-10-06 to 2013-11-06 )))))))))))))))))))))))))))))))
.
.
2013-11-06 14:36 . 2013-11-06 14:36 40392 ----a-w- c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{897BA194-1DE4-427E-B9E6-277BB775D66A}\MpKsl17f02cf9.sys
2013-11-06 10:10 . 2009-03-09 20:27 453456 ----a-w- c:\windows\system32\d3dx10_41.dll
2013-11-06 10:09 . 2007-07-19 23:14 444776 ----a-w- c:\windows\system32\d3dx10_35.dll
2013-11-06 10:08 . 2005-05-26 20:34 2297552 ----a-w- c:\windows\system32\d3dx9_26.dll
2013-11-06 09:43 . 2013-10-16 05:20 7796464 ----a-w- c:\documents and settings\All Users\Application Data\Microsoft\Windows Defender\Definition Updates\{2A64E0B1-55E0-409A-B3E0-5A4B0C0E41B0}\mpengine.dll
2013-11-06 06:29 . 2013-11-06 12:56 62576 ----a-w- c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{897BA194-1DE4-427E-B9E6-277BB775D66A}\offreg.dll
2013-11-06 06:09 . 2013-10-14 06:39 7796464 ----a-w- c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{897BA194-1DE4-427E-B9E6-277BB775D66A}\mpengine.dll
2013-10-30 22:47 . 2013-10-14 06:39 7796464 ----a-w- c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\Backup\mpengine.dll
2013-10-12 02:52 . 2013-10-12 02:52 -------- d-----w- C:\ec6f17cbe15f251dc4223fe216
2013-10-12 02:14 . 2013-07-03 02:12 25088 -c----w- c:\windows\system32\dllcache\hidparse.sys
2013-10-12 02:14 . 2013-07-03 01:59 14976 -c----w- c:\windows\system32\dllcache\usbscan.sys
2013-10-12 02:06 . 2013-08-09 00:55 32384 -c----w- c:\windows\system32\dllcache\usbccgp.sys
2013-10-12 02:06 . 2013-08-09 00:55 5376 -c----w- c:\windows\system32\dllcache\usbd.sys
2013-10-12 02:06 . 2009-03-18 11:02 30336 -c----w- c:\windows\system32\dllcache\usbehci.sys
2013-10-12 02:06 . 2013-08-09 00:55 144128 -c----w- c:\windows\system32\dllcache\usbport.sys
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2013-10-12 04:18 . 2012-04-04 00:51 692616 ----a-w- c:\windows\system32\FlashPlayerApp.exe
2013-10-12 04:18 . 2012-03-08 03:11 71048 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2013-09-23 18:33 . 2004-08-04 12:00 920064 ----a-w- c:\windows\system32\wininet.dll
2013-09-23 18:33 . 2004-08-04 12:00 43520 ----a-w- c:\windows\system32\licmgr10.dll
2013-09-23 18:33 . 2004-08-04 12:00 1469440 ----a-w- c:\windows\system32\inetcpl.cpl
2013-09-23 18:33 . 2004-08-04 12:00 18944 ----a-w- c:\windows\system32\corpol.dll
2013-09-23 18:06 . 2004-08-04 12:00 385024 ----a-w- c:\windows\system32\html.iec
2013-09-03 18:35 . 2012-03-08 01:44 238872 ------w- c:\windows\system32\MpSigStub.exe
2013-08-29 01:31 . 2004-08-04 12:00 1878656 ----a-w- c:\windows\system32\win32k.sys
2013-08-09 01:56 . 2004-08-04 12:00 386560 ----a-w- c:\windows\system32\themeui.dll
2013-08-09 00:55 . 2004-08-04 12:00 144128 ----a-w- c:\windows\system32\drivers\usbport.sys
2013-08-09 00:55 . 2004-08-04 12:00 32384 ----a-w- c:\windows\system32\drivers\usbccgp.sys
2013-08-09 00:55 . 2004-08-04 12:00 5376 ----a-w- c:\windows\system32\drivers\usbd.sys
2012-11-22 05:51 . 2012-11-22 05:46 19380192 ----a-w- c:\program files\Firefox Setup 17.0.exe
2012-11-08 05:26 . 2012-11-08 05:26 373432 -c--a-w- c:\program files\SoftonicDownloader_for_google-earth.exe
2012-11-04 07:03 . 2012-11-08 04:42 901984 -c--a-w- c:\program files\windows xp service pack 3 setup.exe
2012-10-13 05:53 . 2012-03-08 02:42 16883056 -c--a-w- c:\program files\IE8-WindowsXP-x86-ENU.exe
2012-07-31 14:25 . 2012-11-08 04:40 889416 -c--a-w- c:\program files\dotNetFx40_Full_setup.exe
2012-03-09 00:29 . 2012-03-09 00:27 15792320 -c--a-w- c:\program files\Firefox Setup 10.0.2.exe
2012-03-08 04:00 . 2012-03-08 02:51 113864 -c--a-w- c:\program files\VidCap_II.exe
2012-03-08 03:16 . 2012-03-08 03:16 887896 -c--a-w- c:\program files\dotNetFx40_Client_setup.exe
2012-03-08 02:58 . 2012-03-08 02:58 424072 -c--a-w- c:\program files\msgr11us.exe
2012-03-08 01:27 . 2012-03-08 01:24 8068864 -c--a-w- c:\program files\mseinstall.exe
.
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"MSC"="c:\program files\Microsoft Security Client\msseces.exe" [2013-08-12 995176]
"SigmatelSysTrayApp"="stsystra.exe" [2005-12-27 413696]
.
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"WUAppSetup"="c:\program files\Common Files\logishrd\WUApp32.exe" [2007-02-03 430080]
"tscuninstall"="c:\windows\system32\tscupgrd.exe" [2004-08-04 44544]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\LBTWlgn]
2012-10-01 07:22 66360 ----a-w- c:\program files\Common Files\logishrd\Bluetooth\LBTWLgn.dll
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]
@="Service"
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]
@="Driver"
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WinDefend]
@="Service"
.
[HKLM\~\startupfolder\C:^Documents and Settings^Me^Start Menu^Programs^Startup^Logitech . Product Registration.lnk]
path=c:\documents and settings\Me\Start Menu\Programs\Startup\Logitech . Product Registration.lnk
backup=c:\windows\pss\Logitech . Product Registration.lnkStartup
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ManyCam
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Media Finder
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MSC
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MSMSGS
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Optimizer Pro
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM]
2012-12-03 07:35 946352 ----a-w- c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ATICCC]
2006-01-03 01:41 45056 -c--a-w- c:\program files\ATI Technologies\ATI.ACE\CLI.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ctfmon.exe]
2013-02-01 01:35 15360 ----a-w- c:\windows\system32\ctfmon.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\EvtMgr6]
2012-11-04 17:43 1851192 ----a-w- c:\program files\Logitech\SetPointP\SetPoint.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Messenger (Yahoo!)]
2012-02-23 04:49 6591800 ----a-w- c:\progra~1\Yahoo!\Messenger\YahooMessenger.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SigmatelSysTrayApp]
2005-12-27 14:20 413696 ----a-w- c:\windows\stsystra.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SMSERIAL]
2006-09-28 02:26 573440 -c--a-w- c:\program files\Motorola\SMSERIAL\sm56hlpr.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Windows Defender]
2006-11-03 23:20 866584 ----a-w- c:\program files\Windows Defender\MSASCui.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\services]
"YahooAUService"=2 (0x2)
"vToolbarUpdater"=2 (0x2)
"Ati HotKey Poller"=2 (0x2)
"aspnet_state"=3 (0x3)
"gupdatem"=3 (0x3)
"gupdate"=2 (0x2)
"napagent"=3 (0x3)
"WinDefend"=2 (0x2)
"WajamUpdater"=2 (0x2)
"tgsrvc_verizondm"=2 (0x2)
"PrismXL"=2 (0x2)
"JavaQuickStarterService"=2 (0x2)
"AdobeFlashPlayerUpdateSvc"=3 (0x3)
.
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\run-]
"ctfmon.exe"=c:\windows\system32\ctfmon.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run-]
"Broadcom Wireless Manager UI"=c:\windows\system32\WLTRAY.exe
"MSC"="c:\program files\Microsoft Security Client\msseces.exe" -hide -runkey
"SigmatelSysTrayApp"=stsystra.exe
"VERIZONDM"="c:\program files\VERIZONDM\bin\sprtcmd.exe" /P VERIZONDM
"Adobe ARM"="c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run-disabled]
"Adobe ARM"="c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
"LifeCam"="c:\program files\Microsoft LifeCam\LifeExp.exe"
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List]
"3389:TCP"= 3389:TCP:*:Disabled:@xpsp2res.dll,-22009
.
R1 MpKsl17f02cf9;MpKsl17f02cf9;c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{897BA194-1DE4-427E-B9E6-277BB775D66A}\MpKsl17f02cf9.sys [11/6/2013 9:36 AM 40392]
R2 LBeepKE;Logitech Beep Suppression Driver;c:\windows\system32\drivers\LBeepKE.sys [1/6/2013 4:45 AM 12216]
R2 sprtsvc_verizondm;SupportSoft Sprocket Service (verizondm);c:\program files\VERIZONDM\bin\sprtsvc.exe [2/1/2011 8:54 AM 206120]
R3 ManyCam;ManyCam Virtual Webcam;c:\windows\system32\drivers\mcvidrv.sys [10/10/2012 10:08 PM 34432]
R3 mcaudrv_simple;ManyCam Virtual Microphone;c:\windows\system32\drivers\mcaudrv.sys [10/10/2012 10:08 PM 25088]
S2 SkypeUpdate;Skype Updater;c:\program files\Skype\Updater\Updater.exe [6/21/2013 8:53 AM 162408]
S3 LEqdUsb;Logitech SetPoint Unifying KMDF USB Filter;c:\windows\system32\drivers\LEqdUsb.sys [9/18/2012 4:32 AM 43704]
S3 LHidEqd;Logitech SetPoint Unifying KMDF HID Filter;c:\windows\system32\drivers\LHidEqd.sys [9/18/2012 4:32 AM 12216]
S3 MSHUSBVideo;NX6000/NX3000/VX2000/VX5000/VX5500/VX7000/Cinema Filter Driver;c:\windows\system32\drivers\nx6000.sys [1/24/2013 11:43 PM 30576]
S4 tgsrvc_verizondm;SupportSoft Repair Service (verizondm);c:\program files\VERIZONDM\bin\tgsrvc.exe [2/1/2011 8:54 AM 185640]
S4 WajamUpdater;WajamUpdater;"c:\program files\Wajam\Updater\WajamUpdater.exe" --> c:\program files\Wajam\Updater\WajamUpdater.exe [?]
S4 WinDefend;Windows Defender;c:\program files\Windows Defender\MsMpEng.exe [11/3/2006 6:19 PM 13592]
.
--- Other Services/Drivers In Memory ---
.
*NewlyCreated* - MPKSL17F02CF9
*NewlyCreated* - SWPRV
.
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{A509B1FF-37FF-4bFF-8CFF-4F3A747040FF}]
2009-03-08 08:32 128512 ----a-w- c:\windows\system32\advpack.dll
.
Contents of the 'Scheduled Tasks' folder
.
2013-11-06 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2012-04-04 04:18]
.
2013-11-06 c:\windows\Tasks\Microsoft Antimalware Scheduled Scan.job
- c:\program files\Microsoft Security Client\MpCmdRun.exe [2013-08-12 14:12]
.
2013-11-06 c:\windows\Tasks\MP Scheduled Scan.job
- c:\program files\Windows Defender\MpCmdRun.exe [2006-11-03 23:20]
.
.
------- Supplementary Scan -------
.
uStart Page = hxxp://www.google.com/
uSearchAssistant =
IE: Download with &Media Finder - c:\program files\Media Finder\hook.html
TCP: DhcpNameServer = 172.16.0.1
FF - ProfilePath - c:\documents and settings\Me\Application Data\Mozilla\Firefox\Profiles\2wnxhfl0.default\
FF - prefs.js: browser.search.defaulturl - hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT3298570&CUI=UN19599948213406304&UM=2&SearchSource=3&q={searchTerms}
FF - prefs.js: browser.search.selectedEngine - MixiDJ V34 Customized Web Search
FF - prefs.js: browser.startup.homepage - www.google.com
FF - prefs.js: network.proxy.gopher -
FF - prefs.js: network.proxy.gopher_port - 0
FF - prefs.js: network.proxy.type - 0
.
- - - - ORPHANS REMOVED - - - -
.
WebBrowser-{4D594333-0076-A76A-76A7-7A786E7484D7} - (no file)
SafeBoot-34532059.sys
MSConfigStartUp-ApnUpdater - c:\program files\Ask.com\Updater\Updater.exe
MSConfigStartUp-Facebook Update - c:\documents and settings\Me\Local Settings\Application Data\Facebook\Update\FacebookUpdate.exe
MSConfigStartUp-Google Update - c:\documents and settings\Me\Local Settings\Application Data\Google\Update\GoogleUpdate.exe
.
.
.
**************************************************************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2013-11-06 10:02
Windows 5.1.2600 Service Pack 3 NTFS
.
scanning hidden processes ...
.
scanning hidden autostart entries ...
.
scanning hidden files ...
.
scan completed successfully
hidden files: 0
.
**************************************************************************
.
--------------------- LOCKED REGISTRY KEYS ---------------------
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\WINDOWS\\system32\\Macromed\\Flash\\FlashUtil32_11_9_900_117_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\WINDOWS\\system32\\Macromed\\Flash\\FlashUtil32_11_9_900_117_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
--------------------- DLLs Loaded Under Running Processes ---------------------
.
- - - - - - - > 'winlogon.exe'(644)
c:\windows\system32\Ati2evxx.dll
c:\program files\common files\logishrd\bluetooth\LBTWlgn.dll
c:\windows\System32\BCMLogon.dll
.
Completion time: 2013-11-06 10:05:41
ComboFix-quarantined-files.txt 2013-11-06 15:05
.
Pre-Run: 98,478,551,040 bytes free
Post-Run: 98,763,362,304 bytes free
.
WindowsXP-KB310994-SP2-Home-BootDisk-ENU.exe
[boot loader]
timeout=2
default=multi(0)disk(0)rdisk(0)partition(1)\WINDOWS
[operating systems]
c:\cmdcons\BOOTSECT.DAT="Microsoft Windows Recovery Console" /cmdcons
UnsupportedDebug="do not select this" /debug
multi(0)disk(0)rdisk(0)partition(1)\WINDOWS="Microsoft Windows XP Home Edition" /fastdetect /usepmtimer /NoExecute=OptOut
.
- - End Of File - - 730248C36723EBCF01885135113BA994
8F558EB6672622401DA993E1E865C861

#6
maliprog

Posted 07 November 2013 - 12:21 AM

Trusted Helper

Malware Removal
6,172 posts

Hi Sherry0004008,

Step 1

NOTE: This fix is custom made for this system only and for current system state! Don't try to run it on another system!

Please close all running programs and Run OTL

Under the Custom Scans/Fixes box at the bottom, paste in the following

:OTL
[2012/10/11 23:49:14 | 000,000,000 | -HSD | M] -- C:\RECYCLER\S-1-5-18\$e4de3b2e3377a553cfcf7535f9642542\L
[2012/10/12 22:08:18 | 000,000,000 | -HSD | M] -- C:\RECYCLER\S-1-5-18\$e4de3b2e3377a553cfcf7535f9642542\U
[2012/10/12 00:18:15 | 000,000,804 | ---- | M] () -- C:\RECYCLER\S-1-5-18\$e4de3b2e3377a553cfcf7535f9642542\L\00000004.@

:Files
C:\RECYCLER\S-1-5-18\$e4de3b2e3377a553cfcf7535f9642542\L
C:\RECYCLER\S-1-5-18\$e4de3b2e3377a553cfcf7535f9642542\U
C:\RECYCLER\S-1-5-18\$e4de3b2e3377a553cfcf7535f9642542\L\00000004.@
ipconfig /flushdns /c

:Commands
[purity]
[Reboot]
Then click the Run Fix button at the top
Let the program run unhindered, reboot the PC when it is done
Post the fix log it produces in your next reply or you can find it in C:\_OTL\MovedFiles

Step 2

Download the ESET services repair tool, extract the file to your desktop.

Double-click ServicesRepair.exe.
If security notifications appear, click Continue or Run and then click Yes when asked if you want to proceed.
Once the tool has finished, you will be prompted to restart your computer. Click Yes to restart.
A log will be saved in the CCSupport folder the tool created on your desktop, please post the content in your next reply.

Step 3

Please download Malwarebytes' Anti-Malware

Double Click mbam-setup.exe to install the application.

Make sure a checkmark is placed next to Update Malwarebytes' Anti-Malware and Launch Malwarebytes' Anti-Malware, then click Finish.
If an update is found, it will download and install the latest version.
Once the program has loaded, select "Perform Quick Scan", then click Scan.
The scan may take some time to finish, so please be patient.
When the scan is complete, click OK, then Show Results to view the results.
Make sure that everything is checked, and click Remove Selected.
When disinfection is completed, a log will open in Notepad and you may be prompted to Restart.(See Extra Note)
The log is automatically saved by MBAM and can be viewed by clicking the Logs tab in MBAM.
Copy&Paste the entire report in your next reply.

Extra Note:
If MBAM encounters a file that is difficult to remove, you will be presented with 1 of 2 prompts, click OK to either and let MBAM proceed with the disinfection process, if asked to restart the computer, please do so immediately.

Step 4

Please don't forget to include these items in your reply:

OTL fix log
ESET SRT log
Malwarebytes log

It would be helpful if you could post each log in separate post using "Add Reply" button

#7
maliprog

Posted 18 November 2013 - 12:38 AM

Trusted Helper

Malware Removal
6,172 posts

Due to lack of feedback, this topic has been closed.

If you need this topic reopened, please contact a staff member. This applies only to the original topic starter. Everyone else please begin a New Topic.