Jump to content

Welcome to Geeks to Go - Register now for FREE

Need help with your computer or device? Want to learn new tech skills? You're in the right place!
Geeks to Go is a friendly community of tech experts who can solve any problem you have. Just create a free account and post your question. Our volunteers will reply quickly and guide you through the steps. Don't let tech troubles stop you. Join Geeks to Go now and get the support you need!

How it Works Create Account
Photo

Problems with Ads and sites that open automatically [Solved]


  • This topic is locked This topic is locked

#1
jonatanoliveira

jonatanoliveira

    Member

  • Member
  • PipPip
  • 12 posts
Hello everyone. First I want to apologize for my english and any possible mistake, but it is not my natural language.

The problem I'm having is:

Every time I open a web site a lot of ads's are open on the right/left and top/ down of the web page. All of them come as "Ads by OffersWizard". Go to youtube web site is painfull because I have to wait while the "Ads" are opened, what makes the web page open in a very slow way. Furthermore, other web sites are constantly open automaticaly like for exemple: "http://rvzr-a.akamai...=OffersWizard". Any ideas to fix this? I've tried to run MalwreBytes, CCleaner, JRT.exe, etc...., but the problem remains :( ...And it has been painful and boring, surfing on the internet in my computer.

After run OTL.exe The OTL.txt has following contents:
OTL logfile created on: 23/12/2013 22:39:32 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Admin\Desktop
64bit- An unknown product (Version = 6.2.9200) - Type = NTWorkstation
Internet Explorer (Version = 9.10.9200.16750)
Locale: 00000816 | Country: Portugal | Language: PTG | Date Format: dd/MM/yyyy

5,89 Gb Total Physical Memory | 3,72 Gb Available Physical Memory | 63,23% Memory free
6,83 Gb Paging File | 4,33 Gb Available in Paging File | 63,44% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 186,30 Gb Total Space | 89,37 Gb Free Space | 47,97% Space Free | Partition Type: NTFS
Drive D: | 258,15 Gb Total Space | 257,70 Gb Free Space | 99,83% Space Free | Partition Type: NTFS

Computer Name: USER | User Name: Admin | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Quick Scan | Include 64bit Scans
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2013/12/23 22:38:29 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\Admin\Desktop\OTL.exe
PRC - [2013/11/16 00:07:03 | 000,900,440 | ---- | M] (BitTorrent Inc.) -- C:\Users\Admin\AppData\Roaming\uTorrent\uTorrent.exe
PRC - [2013/10/28 06:59:32 | 000,096,256 | ---- | M] (AmiExt ltd. ) -- C:\Program Files (x86)\AmiExt\flashEnhancer\ie\AmiStorage.exe
PRC - [2013/09/27 18:46:26 | 000,559,696 | ---- | M] (Lavasoft) -- C:\ProgramData\Ad-Aware Browsing Protection\adawarebp.exe
PRC - [2013/05/11 10:37:26 | 000,065,640 | ---- | M] (Adobe Systems Incorporated) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
PRC - [2013/02/26 10:08:24 | 000,176,240 | ---- | M] (ASUSTeK Computer Inc.) -- C:\Program Files (x86)\ASUS\Splendid\ColorUService.exe
PRC - [2013/02/06 14:58:52 | 000,020,792 | ---- | M] (ASUSTeK Computer Inc.) -- C:\Program Files (x86)\ASUS\ASUS Smart Gesture\QuickGesture\x86\QuickGesture.exe
PRC - [2013/01/24 22:18:32 | 000,323,584 | R--- | M] (Atheros) -- C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe
PRC - [2012/11/28 16:56:40 | 000,054,488 | ---- | M] (ASUS) -- C:\Program Files (x86)\ASUS\Splendid\ACMON.exe
PRC - [2012/08/31 18:27:20 | 000,590,208 | ---- | M] (ASUS) -- C:\Program Files (x86)\ASUS\ASUS InstantOn\InsOnWMI.exe
PRC - [2012/08/22 08:24:28 | 001,559,936 | ---- | M] (ASUSTeK Computer Inc.) -- C:\Program Files (x86)\ASUS\ASUS Live Update\LiveUpdate.exe
PRC - [2012/07/24 17:21:22 | 001,123,536 | ---- | M] (ASUSTek Computer Inc.) -- C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe
PRC - [2012/07/17 13:57:22 | 000,365,376 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
PRC - [2012/07/17 13:57:20 | 000,277,824 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
PRC - [2012/07/13 15:27:00 | 000,769,432 | ---- | M] (Nero AG) -- C:\Program Files (x86)\Nero\Update\NASvc.exe
PRC - [2012/06/27 11:47:02 | 000,129,856 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\FWService\IntelMeFWService.exe
PRC - [2012/06/25 09:57:14 | 000,166,720 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe
PRC - [2012/04/13 09:14:00 | 000,277,120 | ---- | M] (ASUS) -- C:\Program Files (x86)\ASUS\ASUS InstantOn\InsOnSrv.exe
PRC - [2011/05/18 15:56:08 | 001,540,096 | ---- | M] (Nokia) -- C:\Program Files (x86)\Common Files\Nokia\MPlatform\NokiaMServer.exe


========== Modules (No Company Name) ==========

MOD - [2013/12/17 11:46:13 | 000,190,976 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\UIAutomationTypes\bf8e8be3a2bfc3269582e4ddaef6dced\UIAutomationTypes.ni.dll
MOD - [2013/12/16 16:17:04 | 007,662,080 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Xml\d91f3556f8011a5d48e1448e3fa8df9e\System.Xml.ni.dll
MOD - [2013/12/16 16:16:50 | 001,889,792 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Xaml\639f444db9491d25b5d158531e1f7d9b\System.Xaml.ni.dll
MOD - [2013/12/16 16:16:47 | 012,894,208 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Windows.Forms\f7baf2ee0ee33a4e00a592b86c1ec238\System.Windows.Forms.ni.dll
MOD - [2013/12/16 16:15:32 | 001,644,544 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Drawing\c4477b3ce64d0d612d1ab0dba425b77f\System.Drawing.ni.dll
MOD - [2013/12/16 16:15:15 | 000,976,384 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Configuration\1f56d5786274992934de0c900431c447\System.Configuration.ni.dll
MOD - [2013/12/16 16:15:13 | 000,475,648 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\Presentatioaec034ca#\23bfebd243f552b4ea5c41b7dd0024fc\PresentationFramework.Aero2.ni.dll
MOD - [2013/12/16 16:15:11 | 018,813,440 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\Presentatio5ae0f00f#\f20c5eaca5a287b27d535362aaaa36e2\PresentationFramework.ni.dll
MOD - [2013/12/16 16:07:33 | 011,025,920 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\PresentationCore\82d9d43b18f5276208a21c3ba40ef0b5\PresentationCore.ni.dll
MOD - [2013/12/16 16:07:13 | 003,950,080 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\WindowsBase\bc4a4f244f109fef7ac1d12f260d55a9\WindowsBase.ni.dll
MOD - [2013/12/16 16:06:47 | 010,060,800 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System\79f6324a598a7c4446a4a1168be7c4b1\System.ni.dll
MOD - [2013/12/16 16:06:29 | 016,953,856 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\mscorlib\045c9588954c3662d542b53f4462268b\mscorlib.ni.dll
MOD - [2013/10/28 06:59:38 | 000,178,176 | ---- | M] () -- C:\Program Files (x86)\AmiExt\flashEnhancer\ie\AmiBho.dll
MOD - [2013/04/21 20:44:32 | 000,087,952 | ---- | M] () -- C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll
MOD - [2013/04/21 20:44:04 | 001,242,952 | ---- | M] () -- C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll


========== Services (SafeList) ==========

SRV:64bit: - [2013/12/19 08:07:26 | 005,089,128 | ---- | M] (Reimage®) [Auto | Running] -- C:\Program Files\Reimage\Reimage Repair\ReiGuard.exe -- (ReimageRealTimeProtection)
SRV:64bit: - [2013/12/11 18:03:14 | 000,513,736 | ---- | M] () [Auto | Running] -- C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.1.5152.0\AdAwareService.exe -- (LavasoftAdAwareService11)
SRV:64bit: - [2013/08/16 05:39:26 | 002,371,728 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\WSService.dll -- (WSService)
SRV:64bit: - [2013/07/30 11:45:02 | 000,328,928 | ---- | M] (McAfee, Inc.) [Auto | Running] -- C:\Program Files\Common Files\mcafee\Platform\McSvcHost\McSvHost.exe -- (McSchedulerSvc)
SRV:64bit: - [2013/07/30 11:45:02 | 000,328,928 | ---- | M] (McAfee, Inc.) [Auto | Running] -- C:\Program Files\Common Files\mcafee\Platform\McSvcHost\McSvHost.exe -- (mcpltsvc)
SRV:64bit: - [2013/07/30 11:45:02 | 000,328,928 | ---- | M] (McAfee, Inc.) [Auto | Running] -- C:\Program Files\Common Files\mcafee\Platform\McSvcHost\McSvHost.exe -- (McOobeSv2)
SRV:64bit: - [2013/07/02 00:44:21 | 000,016,048 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Windows Defender\MsMpEng.exe -- (WinDefend)
SRV:64bit: - [2013/06/24 22:54:45 | 000,263,680 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\wcmsvc.dll -- (Wcmsvc)
SRV:64bit: - [2013/06/01 09:19:58 | 000,207,872 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\DeviceSetupManager.dll -- (DsmSvc)
SRV:64bit: - [2013/05/04 06:58:02 | 000,470,528 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\netprofmsvc.dll -- (netprofm)
SRV:64bit: - [2013/05/04 06:57:05 | 000,179,712 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\bisrv.dll -- (BrokerInfrastructure)
SRV:64bit: - [2013/04/09 04:48:42 | 000,169,472 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\AudioEndpointBuilder.dll -- (AudioEndpointBuilder)
SRV:64bit: - [2013/03/02 02:45:07 | 000,171,008 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\TimeBrokerServer.dll -- (TimeBroker)
SRV:64bit: - [2013/03/02 02:45:05 | 000,180,224 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\SystemEventsBrokerServer.dll -- (SystemEventsBroker)
SRV:64bit: - [2013/01/18 07:20:42 | 000,039,824 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Windows\SysNative\DptfPolicyLpmService.exe -- (DptfPolicyLpmService)
SRV:64bit: - [2013/01/18 07:20:42 | 000,033,168 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Windows\SysNative\DptfPolicyConfigTDPService.exe -- (DptfPolicyConfigTDPService)
SRV:64bit: - [2013/01/18 07:20:42 | 000,031,632 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Windows\SysNative\DptfParticipantProcessorService.exe -- (DptfParticipantProcessorService)
SRV:64bit: - [2013/01/09 23:23:16 | 001,964,544 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\wlidsvc.dll -- (wlidsvc)
SRV:64bit: - [2013/01/09 23:22:35 | 000,438,272 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\lsm.dll -- (LSM)
SRV:64bit: - [2012/12/19 22:29:48 | 000,045,488 | ---- | M] (ASUSTek Computer Inc.) [Auto | Running] -- C:\Program Files\ASUS\ASUS VivoBook\ASUSWakeupService.exe -- (WakeupService)
SRV:64bit: - [2012/11/24 04:35:39 | 000,116,736 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\fhsvc.dll -- (fhsvc)
SRV:64bit: - [2012/11/24 04:35:07 | 002,675,712 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\spool\drivers\x64\3\PrintConfig.dll -- (PrintNotify)
SRV:64bit: - [2012/07/26 03:07:47 | 000,065,536 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\wiarpc.dll -- (WiaRpc)
SRV:64bit: - [2012/07/26 03:07:40 | 000,283,648 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\vaultsvc.dll -- (VaultSvc)
SRV:64bit: - [2012/07/26 03:07:25 | 000,012,800 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\svsvc.dll -- (svsvc)
SRV:64bit: - [2012/07/26 03:06:34 | 000,743,936 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\netlogon.dll -- (Netlogon)
SRV:64bit: - [2012/07/26 03:06:33 | 000,161,792 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\NcaSvc.dll -- (NcaSvc)
SRV:64bit: - [2012/07/26 03:06:33 | 000,073,728 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\NcdAutoSetup.dll -- (NcdAutoSetup)
SRV:64bit: - [2012/07/26 03:05:55 | 000,059,904 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\keyiso.dll -- (KeyIso)
SRV:64bit: - [2012/07/26 03:05:34 | 000,037,376 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\efssvc.dll -- (EFS)
SRV:64bit: - [2012/07/26 03:05:24 | 000,342,016 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\das.dll -- (DeviceAssociationService)
SRV:64bit: - [2012/07/26 03:05:08 | 000,122,368 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\AUInstallAgent.dll -- (AllUserInstallAgent)
SRV:64bit: - [2012/07/26 00:24:02 | 000,336,384 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmicvss)
SRV:64bit: - [2012/07/26 00:24:02 | 000,336,384 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmictimesync)
SRV:64bit: - [2012/07/26 00:24:02 | 000,336,384 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmicshutdown)
SRV:64bit: - [2012/07/26 00:24:02 | 000,336,384 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmicrdv)
SRV:64bit: - [2012/07/26 00:24:02 | 000,336,384 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmickvpexchange)
SRV:64bit: - [2012/07/26 00:24:02 | 000,336,384 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmicheartbeat)
SRV:64bit: - [2012/04/20 13:16:12 | 000,635,104 | ---- | M] (Intel® Corporation) [Auto | Running] -- C:\Program Files\Intel\iCLS Client\HeciServer.exe -- (Intel®
SRV - [2013/10/04 23:58:24 | 000,087,728 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files (x86)\Microsoft Visual Studio 12.0\Common7\Packages\Debugger\Services\VsEtwService.exe -- (VsEtwService120)
SRV - [2013/07/24 18:21:46 | 000,334,608 | ---- | M] (McAfee, Inc.) [On_Demand | Stopped] -- c:\PROGRA~1\COMMON~1\mcafee\actwiz\mcawfwk.exe -- (McAWFwk)
SRV - [2013/05/17 11:01:06 | 000,008,192 | ---- | M] () [Auto | Stopped] -- C:\Windows\SysWOW64\srvany.exe -- (KMService)
SRV - [2013/05/11 10:37:26 | 000,065,640 | ---- | M] (Adobe Systems Incorporated) [Auto | Running] -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe -- (AdobeARMservice)
SRV - [2013/01/24 23:12:12 | 000,227,456 | ---- | M] (Qualcomm Atheros Commnucations) [Auto | Running] -- C:\Program Files (x86)\Bluetooth Suite\adminservice.exe -- (AtherosSvc)
SRV - [2013/01/24 22:18:32 | 000,323,584 | R--- | M] (Atheros) [Auto | Running] -- C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe -- (ZAtheros Bt and Wlan Coex Agent)
SRV - [2012/11/24 04:35:07 | 002,675,712 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\system32\spool\DRIVERS\x64\3\PrintConfig.dll -- (PrintNotify)
SRV - [2012/11/02 07:19:54 | 000,277,024 | ---- | M] (Intel Corporation) [On_Demand | Stopped] -- C:\Windows\SysWOW64\IntelCpHeciSvc.exe -- (cphs)
SRV - [2012/07/26 03:20:04 | 000,018,432 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysWOW64\StorSvc.dll -- (StorSvc)
SRV - [2012/07/25 17:58:26 | 000,126,976 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files (x86)\Windows Kits\8.0\Testing\Runtimes\TAEF\Wex.Services.exe -- (Te.Service)
SRV - [2012/07/25 17:13:16 | 000,139,776 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files (x86)\Windows Kits\8.0\App Certification Kit\fussvc.exe -- (fussvc)
SRV - [2012/07/17 13:57:22 | 000,365,376 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe -- (UNS)
SRV - [2012/07/17 13:57:20 | 000,277,824 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe -- (LMS)
SRV - [2012/07/13 15:27:00 | 000,769,432 | ---- | M] (Nero AG) [Auto | Running] -- C:\Program Files (x86)\Nero\Update\NASvc.exe -- (NAUpdate)
SRV - [2012/06/27 11:47:02 | 000,129,856 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\FWService\IntelMeFWService.exe -- (Intel®
SRV - [2012/06/25 09:57:14 | 000,166,720 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe -- (jhi_service)
SRV - [2012/06/11 10:33:26 | 000,724,376 | ---- | M] (Nokia) [On_Demand | Stopped] -- C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe -- (ServiceLayer)
SRV - [2012/04/13 09:14:00 | 000,277,120 | ---- | M] (ASUS) [Auto | Running] -- C:\Program Files (x86)\ASUS\ASUS InstantOn\InsOnSrv.exe -- (ASUS InstantOn)


========== Driver Services (SafeList) ==========

DRV:64bit: - [2013/10/10 11:53:35 | 000,096,600 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\Drivers\wfplwfs.sys -- (WFPLWFS)
DRV:64bit: - [2013/10/05 06:10:20 | 000,285,016 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\Drivers\spaceport.sys -- (spaceport)
DRV:64bit: - [2013/10/02 02:50:07 | 000,447,320 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\USBHUB3.SYS -- (USBHUB3)
DRV:64bit: - [2013/08/16 05:41:13 | 000,058,200 | ---- | M] (Microsoft Corporation) [Kernel | System | Stopped] -- C:\Windows\SysNative\Drivers\dam.sys -- (dam)
DRV:64bit: - [2013/08/10 06:30:22 | 000,151,896 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\tpm.sys -- (TPM)
DRV:64bit: - [2013/07/17 18:10:52 | 000,329,800 | ---- | M] (BitDefender S.R.L.) [File_System | On_Demand | Running] -- C:\Windows\SysNative\Drivers\Trufos.sys -- (Trufos)
DRV:64bit: - [2013/07/17 18:10:52 | 000,138,232 | ---- | M] (BitDefender LLC) [File_System | On_Demand | Running] -- C:\Program Files\Lavasoft\Ad-Aware Antivirus\Antimalware Engine\2.6.0.0\gzflt.sys -- (gzflt)
DRV:64bit: - [2013/07/17 18:09:40 | 000,107,080 | ---- | M] (BitDefender LLC) [Kernel | System | Running] -- C:\Program Files\Lavasoft\Ad-Aware Antivirus\Firewall Engine\1.6.0.0\Drivers\bdfwfpf.sys -- (bdfwfpf)
DRV:64bit: - [2013/07/17 18:09:40 | 000,097,816 | ---- | M] (BitDefender LLC) [Kernel | System | Running] -- C:\Program Files\Lavasoft\Ad-Aware Antivirus\Firewall Engine\1.6.0.0\Drivers\bdfndisf6.sys -- (BdfNdisf)
DRV:64bit: - [2013/07/09 08:04:07 | 000,120,144 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\msgpioclx.sys -- (GPIOClx0101)
DRV:64bit: - [2013/07/02 01:41:47 | 000,337,752 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\USBXHCI.SYS -- (USBXHCI)
DRV:64bit: - [2013/07/02 01:41:47 | 000,213,336 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\UCX01000.SYS -- (UCX01000)
DRV:64bit: - [2013/07/02 00:44:14 | 000,036,288 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\WdBoot.sys -- (WdBoot)
DRV:64bit: - [2013/07/01 22:08:49 | 000,247,216 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\WdFilter.sys -- (WdFilter)
DRV:64bit: - [2013/06/29 06:15:54 | 000,195,416 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\sdbus.sys -- (sdbus)
DRV:64bit: - [2013/06/01 03:08:57 | 000,037,632 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\BthAvrcpTg.sys -- (BthAvrcpTg)
DRV:64bit: - [2013/03/02 10:57:46 | 000,077,544 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\Drivers\storahci.sys -- (storahci)
DRV:64bit: - [2013/03/02 10:39:38 | 000,069,864 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\Drivers\pdc.sys -- (pdc)
DRV:64bit: - [2013/02/06 14:59:06 | 000,065,784 | ---- | M] (ASUS Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\AsusTP.sys -- (ATP)
DRV:64bit: - [2013/01/24 22:46:26 | 000,581,200 | ---- | M] (Qualcomm Atheros) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\btfilter.sys -- (BtFilter)
DRV:64bit: - [2013/01/24 22:46:24 | 000,136,424 | ---- | M] (Qualcomm Atheros) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\btath_rcp.sys -- (BTATH_RCP)
DRV:64bit: - [2013/01/24 22:46:22 | 000,077,464 | ---- | M] (Qualcomm Atheros) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\btath_lwflt.sys -- (BTATH_LWFLT)
DRV:64bit: - [2013/01/24 22:46:20 | 000,346,192 | ---- | M] (Qualcomm Atheros) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\btath_a2dp.sys -- (BTATH_A2DP)
DRV:64bit: - [2013/01/24 22:46:20 | 000,179,432 | ---- | M] (Qualcomm Atheros) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\btath_hcrp.sys -- (BTATH_HCRP)
DRV:64bit: - [2013/01/24 22:46:20 | 000,115,280 | ---- | M] (Qualcomm Atheros) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\btath_avdt.sys -- (btath_avdt)
DRV:64bit: - [2013/01/24 22:46:20 | 000,089,168 | ---- | M] (Qualcomm Atheros) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\btath_flt.sys -- (AthBTPort)
DRV:64bit: - [2013/01/24 22:46:20 | 000,034,384 | ---- | M] (Qualcomm Atheros) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\btath_bus.sys -- (BTATH_BUS)
DRV:64bit: - [2013/01/21 01:56:12 | 003,747,840 | ---- | M] (Qualcomm Atheros Communications, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\athw8x.sys -- (athr)
DRV:64bit: - [2013/01/18 07:20:42 | 000,363,920 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\DptfManager.sys -- (DptfManager)
DRV:64bit: - [2013/01/18 07:20:42 | 000,229,776 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\DptfDevProc.sys -- (DptfDevProc)
DRV:64bit: - [2013/01/18 07:20:42 | 000,107,920 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\DptfDevDram.sys -- (DptfDevDram)
DRV:64bit: - [2013/01/18 07:20:42 | 000,097,680 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\DptfDevPch.sys -- (DptfDevPch)
DRV:64bit: - [2013/01/18 07:20:42 | 000,065,424 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\DptfDevGen.sys -- (DptfDevGen)
DRV:64bit: - [2013/01/18 07:20:42 | 000,043,408 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\DptfDevFan.sys -- (DptfDevFan)
DRV:64bit: - [2013/01/11 18:02:34 | 000,064,624 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\HECIx64.sys -- (MEIx64)
DRV:64bit: - [2013/01/10 01:53:32 | 000,028,904 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\msgpiowin32.sys -- (msgpiowin32)
DRV:64bit: - [2012/12/13 12:50:36 | 000,054,784 | ---- | M] (Apple, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\usbaapl64.sys -- (USBAAPL64)
DRV:64bit: - [2012/11/27 03:55:44 | 000,029,952 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\BthhfHid.sys -- (bthhfhid)
DRV:64bit: - [2012/11/24 04:35:07 | 003,265,256 | ---- | M] (Broadcom Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\Drivers\evbda.sys -- (ebdrv)
DRV:64bit: - [2012/11/24 04:35:07 | 000,533,224 | ---- | M] (Broadcom Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\Drivers\bxvbda.sys -- (b06bdrv)
DRV:64bit: - [2012/11/20 04:54:31 | 000,039,936 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\hidi2c.sys -- (hidi2c)
DRV:64bit: - [2012/11/06 03:55:44 | 000,022,528 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\fxppm.sys -- (FxPPM)
DRV:64bit: - [2012/11/02 07:19:38 | 005,332,896 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\igdkmd64.sys -- (igfx)
DRV:64bit: - [2012/10/26 10:28:30 | 000,342,528 | ---- | M] (Intel® Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\IntcDAud.sys -- (IntcDAud)
DRV:64bit: - [2012/10/12 08:08:01 | 000,027,880 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\rdpvideominiport.sys -- (RdpVideoMiniport)
DRV:64bit: - [2012/10/11 07:25:48 | 000,056,552 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\sdstor.sys -- (sdstor)
DRV:64bit: - [2012/10/04 00:26:58 | 000,095,232 | ---- | M] (Alcor Micro, Corp.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\AmUStor.sys -- (AmUStor)
DRV:64bit: - [2012/08/21 12:01:20 | 000,033,240 | ---- | M] (GEAR Software Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\GEARAspiWDM.sys -- (GEARAspiWDM)
DRV:64bit: - [2012/08/02 03:22:48 | 000,014,992 | ---- | M] ( ) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\kbfiltr.sys -- (kbfiltr)
DRV:64bit: - [2012/07/26 05:26:46 | 000,025,328 | ---- | M] (Microsoft Corporation) [Recognizer | Boot | Unknown] -- C:\Windows\SysNative\drivers\fs_rec.sys -- (Fs_Rec)
DRV:64bit: - [2012/07/26 05:26:45 | 000,033,792 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\condrv.sys -- (condrv)
DRV:64bit: - [2012/07/26 05:00:58 | 000,322,800 | ---- | M] (VIA Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\Drivers\VSTXRAID.SYS -- (VSTXRAID)
DRV:64bit: - [2012/07/26 05:00:58 | 000,106,224 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\VerifierExt.sys -- (VerifierExt)
DRV:64bit: - [2012/07/26 05:00:58 | 000,097,008 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\uaspstor.sys -- (UASPStor)
DRV:64bit: - [2012/07/26 05:00:57 | 000,077,040 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\Drivers\acpiex.sys -- (acpiex)
DRV:64bit: - [2012/07/26 05:00:55 | 000,064,240 | ---- | M] (Marvell Semiconductor, Inc.) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\Drivers\mvumis.sys -- (mvumis)
DRV:64bit: - [2012/07/26 05:00:55 | 000,030,960 | ---- | M] (Promise Technology, Inc.) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\Drivers\stexstor.sys -- (stexstor)
DRV:64bit: - [2012/07/26 05:00:52 | 000,092,400 | ---- | M] (LSI Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\Drivers\lsi_sas2.sys -- (LSI_SAS2)
DRV:64bit: - [2012/07/26 05:00:52 | 000,081,136 | ---- | M] (LSI Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\Drivers\lsi_sss.sys -- (LSI_SSS)
DRV:64bit: - [2012/07/26 05:00:52 | 000,064,752 | ---- | M] (Hewlett-Packard Company) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\Drivers\HpSAMD.sys -- (HpSAMD)
DRV:64bit: - [2012/07/26 05:00:51 | 000,113,904 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\Drivers\EhStorTcgDrv.sys -- (EhStorTcgDrv)
DRV:64bit: - [2012/07/26 05:00:51 | 000,081,136 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\Drivers\EhStorClass.sys -- (EhStorClass)
DRV:64bit: - [2012/07/26 05:00:49 | 000,258,288 | ---- | M] (AMD Technologies Inc.) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\Drivers\amdsbs.sys -- (amdsbs)
DRV:64bit: - [2012/07/26 05:00:49 | 000,106,736 | ---- | M] (LSI) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\Drivers\3ware.sys -- (3ware)
DRV:64bit: - [2012/07/26 05:00:49 | 000,076,016 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\Drivers\amdsata.sys -- (amdsata)
DRV:64bit: - [2012/07/26 05:00:48 | 000,026,352 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\Drivers\amdxata.sys -- (amdxata)
DRV:64bit: - [2012/07/26 04:57:54 | 000,361,200 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\Drivers\clfs.sys -- (CLFS)
DRV:64bit: - [2012/07/26 04:53:16 | 000,067,824 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\vpci.sys -- (vpci)
DRV:64bit: - [2012/07/26 03:17:38 | 000,036,592 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\terminpt.sys -- (terminpt)
DRV:64bit: - [2012/07/26 02:29:14 | 000,010,752 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\mshidumdf.sys -- (mshidumdf)
DRV:64bit: - [2012/07/26 02:29:08 | 000,048,640 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\Drivers\BasicDisplay.sys -- (BasicDisplay)
DRV:64bit: - [2012/07/26 02:29:03 | 000,024,576 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\HyperVideo.sys -- (HyperVideo)
DRV:64bit: - [2012/07/26 02:28:52 | 000,029,696 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\Drivers\BasicRender.sys -- (BasicRender)
DRV:64bit: - [2012/07/26 02:27:58 | 000,012,288 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\vmgencounter.sys -- (gencounter)
DRV:64bit: - [2012/07/26 02:27:41 | 000,018,432 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\kdnic.sys -- (kdnic)
DRV:64bit: - [2012/07/26 02:27:37 | 000,010,752 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\acpitime.sys -- (acpitime)
DRV:64bit: - [2012/07/26 02:27:33 | 000,023,552 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\Drivers\npsvctrig.sys -- (npsvctrig)
DRV:64bit: - [2012/07/26 02:27:29 | 000,019,968 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\WpdUpFltr.sys -- (WpdUpFltr)
DRV:64bit: - [2012/07/26 02:27:16 | 000,010,240 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\acpipagr.sys -- (acpipagr)
DRV:64bit: - [2012/07/26 02:27:01 | 000,011,776 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\hyperkbd.sys -- (hyperkbd)
DRV:64bit: - [2012/07/26 02:26:46 | 000,062,976 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\SerCx.sys -- (SerCx)
DRV:64bit: - [2012/07/26 02:26:43 | 000,059,392 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\SpbCx.sys -- (SpbCx)
DRV:64bit: - [2012/07/26 02:26:34 | 000,030,208 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\TsUsbGD.sys -- (TsUsbGD)
DRV:64bit: - [2012/07/26 02:26:13 | 000,051,200 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\bthhfenum.sys -- (BthHFEnum)
DRV:64bit: - [2012/07/26 02:25:57 | 000,033,280 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\dmvsc.sys -- (dmvsc)
DRV:64bit: - [2012/07/26 02:25:56 | 000,057,344 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\TsUsbFlt.sys -- (TsUsbFlt)
DRV:64bit: - [2012/07/26 02:25:13 | 000,045,056 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\wpcfltr.sys -- (wpcfltr)
DRV:64bit: - [2012/07/26 02:25:02 | 000,202,752 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\BthLEEnum.sys -- (BthLEEnum)
DRV:64bit: - [2012/07/26 02:25:01 | 000,126,464 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\NdisImPlatform.sys -- (NdisImPlatform)
DRV:64bit: - [2012/07/26 02:23:53 | 000,068,608 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\mslldp.sys -- (MsLldp)
DRV:64bit: - [2012/07/26 02:23:42 | 000,097,792 | ---- | M] (Microsoft Corporation) [Kernel | Auto | Running] -- C:\Windows\SysNative\Drivers\Ndu.sys -- (Ndu)
DRV:64bit: - [2012/07/24 17:21:22 | 000,017,152 | ---- | M] (ASUSTek Computer Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\AiCharger.sys -- (AiCharger)
DRV:64bit: - [2012/07/24 03:16:28 | 000,645,952 | ---- | M] (Intel Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\Drivers\iaStorA.sys -- (iaStorA)
DRV:64bit: - [2012/07/19 09:21:42 | 000,110,744 | ---- | M] (Qualcomm Atheros Co., Ltd.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\L1C63x64.sys -- (L1C)
DRV:64bit: - [2012/06/11 10:33:46 | 000,026,112 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\pccsmcfdx64.sys -- (pccsmcfd)
DRV:64bit: - [2012/06/02 14:34:37 | 001,146,880 | ---- | M] (LSI Corp) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\agrsm64.sys -- (AgereSoftModem)
DRV:64bit: - [2012/06/02 14:31:56 | 000,589,824 | ---- | M] (Realtek ) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\Rt630x64.sys -- (RTL8168)
DRV:64bit: - [2012/06/02 14:31:50 | 008,604,672 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\NETwNs64.sys -- (NETwNs64)
DRV:64bit: - [2012/06/02 14:31:38 | 000,333,824 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\e1i63x64.sys -- (e1iexpress)
DRV:64bit: - [2012/05/31 03:47:44 | 000,021,152 | ---- | M] (ASUS) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\AsHIDSwitch64.sys -- (HIDSwitch)
DRV:64bit: - [2012/02/11 06:59:34 | 000,334,936 | ---- | M] (Microsoft Corporation) [File_System | Disabled | Stopped] -- C:\Windows\SysNative\Drivers\RsFx0200.sys -- (RsFx0200)
DRV - [2012/07/13 15:13:14 | 000,070,264 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Program Files (x86)\Microsoft Visual Studio 11.0\Team Tools\Performance Tools\x64\VSPerfDrv110.sys -- (VSPerfDrv110)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.google.com
IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com
IE:64bit: - HKLM\..\SearchScopes,DefaultScope = {33BB0A4E-99AF-4226-BDF6-49120163DE86}
IE:64bit: - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/...E10TR&pc=ASU2JS
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.google.com
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com
IE - HKLM\..\SearchScopes,DefaultScope =
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/...ms}&FORM=IE8SRC

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.google.com
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com/
IE - HKCU\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0


========== FireFox ==========

FF:64bit: - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF64_11_9_900_117.dll File not found
FF:64bit: - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.25.2: C:\Windows\system32\npDeployJava1.dll File not found
FF:64bit: - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.25.2: C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF:64bit: - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF:64bit: - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0: C:\PROGRA~1\MICROS~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_9_900_117.dll ()
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=: File not found
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=1.0: C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF - HKLM\Software\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42: C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
FF - HKLM\Software\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI updater: C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.45.2: C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.45.2: C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files (x86)\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0: C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/SharePoint,version=14.0: C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=16.4.3505.0912: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files (x86)\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files (x86)\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF - HKCU\Software\MozillaPlugins\@lightspark.github.com/Lightspark;version=1: C:\Program Files (x86)\Lightspark 0.5.3-git\nplightsparkplugin.dll File not found

FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\[email protected]: C:\Program Files (x86)\AmiExt\flashEnhancer\ff [2013/11/03 17:38:39 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Thunderbird\Extensions\\[email protected]: C:\Program Files\McAfee\MSK

[2013/10/07 16:03:07 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\mozilla firefox\extensions

========== Chrome ==========

CHR - default_search_provider: SecureSearch (Enabled)
CHR - default_search_provider: search_url = http://securedsearch...q={searchTerms}
CHR - default_search_provider: suggest_url = ,
CHR - homepage: http://securedsearch...C24185297C2E603
CHR - plugin: Shockwave Flash (Enabled) = C:\Program Files (x86)\Google\Chrome\Application\31.0.1650.63\PepperFlash\pepflashplayer.dll
CHR - plugin: Chrome Remote Desktop Viewer (Enabled) = internal-remoting-viewer
CHR - plugin: Native Client (Enabled) = C:\Program Files (x86)\Google\Chrome\Application\31.0.1650.63\ppGoogleNaClPluginChrome.dll
CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Program Files (x86)\Google\Chrome\Application\31.0.1650.63\pdf.dll
CHR - plugin: Adobe Acrobat (Enabled) = C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Browser\nppdf32.dll
CHR - plugin: Microsoft Office 2010 (Enabled) = C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL
CHR - plugin: Microsoft Office 2010 (Enabled) = C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL
CHR - plugin: Google Update (Enabled) = C:\Program Files (x86)\Google\Update\1.3.21.145\npGoogleUpdate3.dll
CHR - plugin: Intel\u00AE Identity Protection Technology (Enabled) = C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIIPT.dll
CHR - plugin: Intel\u00AE Identity Protection Technology (Enabled) = C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIUpdater.dll
CHR - plugin: Photo Gallery (Enabled) = C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
CHR - Extension: Google Docs = C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0\
CHR - Extension: Google Drive = C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0\
CHR - Extension: YouTube = C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0\
CHR - Extension: Pesquisa do Google = C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0\
CHR - Extension: Metacrawler New Tab = C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\doobfiogmfmpjnoofjhhgjehmlofngfp\9.4.4_0\
CHR - Extension: flash-Enhancer = C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\ehmnjgkmbpbohelngpclcdhgochdeoej\2.1_0\
CHR - Extension: Google Wallet = C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.5.0_0\
CHR - Extension: Lavasoft NewTab = C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\oejkcgajlodefenbbjdnaiahmbnnoole\0.14_0\
CHR - Extension: Gmail = C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\

O1 HOSTS File: ([2012/07/26 05:26:49 | 000,000,824 | ---- | M]) - C:\Windows\SysNative\Drivers\etc\hosts
O2:64bit: - BHO: (Groove GFS Browser Helper) - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~1\MICROS~1\Office14\GROOVEEX.DLL (Microsoft Corporation)
O2:64bit: - BHO: (Java™ Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
O2:64bit: - BHO: (CIESpeechBHO Class) - {8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll (Qualcomm Atheros Commnucations)
O2:64bit: - BHO: (Office Document Cache Handler) - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~1\MICROS~1\Office14\URLREDIR.DLL (Microsoft Corporation)
O2:64bit: - BHO: (Java™ Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
O2 - BHO: (flash-Enhancer) - {5A60B6BB-FA81-4EFA-AB9C-A820E2143736} - C:\Program Files (x86)\AmiExt\flashEnhancer\ie\AmiBho.dll ()
O2 - BHO: (Groove GFS Browser Helper) - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL (Microsoft Corporation)
O2 - BHO: (Java™ Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
O2 - BHO: (Microsoft Web Test Recorder 10.0 Helper) - {876d9f09-c6d6-4324-a2cc-04dd9a4de12f} - C:\Program Files (x86)\Microsoft Visual Studio 11.0\Common7\IDE\PrivateAssemblies\Microsoft.VisualStudio.QualityTools.RecorderBarBHO100.dll (Microsoft Corporation)
O2 - BHO: (Office Document Cache Handler) - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL (Microsoft Corporation)
O2 - BHO: (Java™ Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
O3:64bit: - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found.
O3 - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found.
O4:64bit: - HKLM..\Run: [] File not found
O4:64bit: - HKLM..\Run: [AdAwareTray] C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.1.5152.0\AdAwareTray.exe ()
O4:64bit: - HKLM..\Run: [DptfPolicyLpmServiceHelper] C:\Windows\SysNative\DptfPolicyLpmServiceHelper.exe (Intel Corporation)
O4:64bit: - HKLM..\Run: [HotKeysCmds] C:\Windows\SysNative\hkcmd.exe (Intel Corporation)
O4:64bit: - HKLM..\Run: [IgfxTray] C:\Windows\SysNative\igfxtray.exe (Intel Corporation)
O4:64bit: - HKLM..\Run: [RtHDVBg] C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe (Realtek Semiconductor)
O4:64bit: - HKLM..\Run: [RTHDVCPL] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (Realtek Semiconductor)
O4 - HKLM..\Run: [Ad-Aware Browsing Protection] C:\ProgramData\Ad-Aware Browsing Protection\adawarebp.exe (Lavasoft)
O4 - HKLM..\Run: [APSDaemon] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe (Apple Inc.)
O4 - HKLM..\Run: [ASUSPRP] C:\Program Files (x86)\ASUS\APRP\APRP.EXE (ASUSTek Computer Inc.)
O4 - HKLM..\Run: [ASUSWebStorage] C:\Program Files (x86)\ASUS\WebStorage Sync Agent\1.1.10.123\AsusWSPanel.exe (ASUS Cloud Corporation)
O4 - HKLM..\Run: [ATLauncher] C:\Program Files\McAfeeEx\McAfeeAntiTheft\ATLauncher.exe (McAfee, Inc.)
O4 - HKLM..\Run: [ATUninstallIcon] C:\Program Files\McAfeeEx\McAfeeAntiTheft\ATLauncher.exe (McAfee, Inc.)
O4 - HKLM..\Run: [Internet Helper Anti-phishing] C:\ProgramData\Internet Helper Anti-phishing\internetHelper_antiphishing.exe (Internet Helper)
O4 - HKLM..\Run: [mcpltui_exe] C:\Program Files\Common Files\McAfee\Platform\mcuicnt.exe (McAfee, Inc.)
O4 - HKLM..\Run: [NokiaMServer] C:\Program Files (x86)\Common Files\Nokia\MPlatform\NokiaMServer.exe (Nokia)
O4 - HKCU..\Run: [AVG-Secure-Search-Update_0913b] C:\Users\Admin\AppData\Roaming\AVG 0913b Campaign\AVG-Secure-Search-Update-0913b.exe /PROMPT --mid 5a4de1c0d04b47d39dc2f54322e64eb9-ea21060da609248e0bbc63918779dda9036bc979 --CMPID 0913b File not found
O4 - HKCU..\Run: [uTorrent] C:\Users\Admin\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc.)
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Main present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\Run: BtvStack = "C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe" (Atheros Commnucations)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: PromptOnSecureDesktop = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableCursorSuppression = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DisableCAD = 1
O8:64bit: - Extra context menu item: E&nviar para o OneNote - res://C:\PROGRA~2\MICROS~1\Office14\ONBttnIE.dll/105 File not found
O8:64bit: - Extra context menu item: E&xportar para o Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office14\EXCEL.EXE/3000 File not found
O8 - Extra context menu item: E&nviar para o OneNote - res://C:\PROGRA~2\MICROS~1\Office14\ONBttnIE.dll/105 File not found
O8 - Extra context menu item: E&xportar para o Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office14\EXCEL.EXE/3000 File not found
O9:64bit: - Extra 'Tools' menuitem : Send by Bluetooth to - {7815BE26-237D-41A8-A98F-F7BD75F71086} - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll (Qualcomm Atheros Commnucations)
O1364bit: - gopher Prefix: missing
O13 - gopher Prefix: missing
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.10.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{EE0331AF-1B41-481F-A53E-1CA982129884}: DhcpNameServer = 192.168.10.1
O18:64bit: - Protocol\Handler\ms-help - No CLSID value found
O18:64bit: - Protocol\Handler\wlpg - No CLSID value found
O20:64bit: - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (userinit.exe) - C:\Windows\SysWow64\userinit.exe (Microsoft Corporation)
O20:64bit: - Winlogon\Notify\igfxcui: DllName - (igfxdev.dll) - C:\Windows\SysNative\igfxdev.dll (Intel Corporation)
O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O28:64bit: - HKLM ShellExecuteHooks: {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\PROGRA~1\MICROS~1\Office14\GROOVEEX.DLL (Microsoft Corporation)
O28 - HKLM ShellExecuteHooks: {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL (Microsoft Corporation)
O30 - LSA: Security Packages - (livessp) - File not found
O32 - HKLM CDRom: AutoRun - 1
O34 - HKLM BootExecute: (autocheck autochk *)
O35:64bit: - HKLM\..comfile [open] -- "%1" %*
O35:64bit: - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %*
O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)

========== Files/Folders - Created Within 30 Days ==========

[2013/12/23 22:38:29 | 000,602,112 | ---- | C] (OldTimer Tools) -- C:\Users\Admin\Desktop\OTL.exe
[2013/12/17 23:36:01 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Serviço Antirroubo Intel
[2013/12/16 16:22:11 | 000,000,000 | ---D | C] -- C:\Users\Admin\AppData\Roaming\NuGet
[2013/12/16 15:33:33 | 000,000,000 | ---D | C] -- C:\Users\Admin\Documents\Visual Studio 2013
[2013/12/16 15:32:52 | 000,000,000 | ---D | C] -- C:\ProgramData\NuGet
[2013/12/16 15:13:48 | 000,000,000 | -HSD | C] -- C:\Config.Msi
[2013/12/16 15:11:45 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Visual Studio 2013
[2013/12/16 15:10:25 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft Visual Studio 12.0
[2013/12/12 00:35:51 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ad-Aware Antivirus
[2013/12/12 00:34:23 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Lavasoft
[2013/12/12 00:32:30 | 000,000,000 | ---D | C] -- C:\Users\Admin\AppData\Roaming\Lavasoft
[2013/12/10 13:42:57 | 000,000,000 | ---D | C] -- C:\ProgramData\BitDefender
[2013/12/10 13:35:46 | 002,084,072 | ---- | C] (Bitdefender) -- C:\Windows\SysNative\bdnc.dll
[2013/12/10 13:35:42 | 001,061,776 | ---- | C] (BitDefender S.R.L.) -- C:\Windows\SysNative\bdsmtpp.dll
[2013/12/10 13:35:42 | 000,209,984 | ---- | C] (BitDefender) -- C:\Windows\SysNative\BdFirewallSDK.dll
[2013/12/10 13:35:42 | 000,195,016 | ---- | C] (BitDefender) -- C:\Windows\SysNative\httproxy.dll
[2013/12/10 13:35:42 | 000,155,912 | ---- | C] (BitDefender S.R.L.) -- C:\Windows\SysNative\bdpop3p.dll
[2013/12/10 13:35:42 | 000,122,928 | ---- | C] (BitDefender) -- C:\Windows\SysNative\OEMbdpredir.dll
[2013/12/10 13:35:42 | 000,096,160 | ---- | C] (BitDefender) -- C:\Windows\SysNative\bdpredir.dll
[2013/12/10 13:34:02 | 000,000,000 | ---D | C] -- C:\Program Files\Lavasoft
[2013/12/09 10:21:43 | 000,000,000 | ---D | C] -- C:\Users\Admin\AppData\Local\adawarebp
[2013/12/08 10:57:08 | 001,034,531 | ---- | C] (Thisisu) -- C:\Users\Admin\Desktop\JRT.exe
[2013/12/04 21:41:24 | 000,000,000 | ---D | C] -- C:\AdwCleaner
[2013/12/04 21:00:49 | 000,000,000 | ---D | C] -- C:\ProgramData\CDB
[2013/12/04 21:00:28 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Reimage Repair
[2013/12/04 21:00:19 | 000,000,000 | ---D | C] -- C:\Program Files\Reimage
[2013/12/04 21:00:15 | 000,000,000 | ---D | C] -- C:\rei
[2013/12/04 20:04:06 | 000,000,000 | ---D | C] -- C:\Windows\ERUNT
[2013/11/28 22:29:41 | 000,000,000 | ---D | C] -- C:\Users\Admin\AppData\Roaming\LavasoftStatistics
[2013/11/28 22:26:16 | 000,000,000 | ---D | C] -- C:\ProgramData\Ad-Aware Browsing Protection
[2013/11/28 22:25:58 | 000,000,000 | ---D | C] -- C:\Users\Admin\AppData\Roaming\SecureSearch
[2013/11/28 22:25:44 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Lavasoft
[2013/11/28 22:15:11 | 000,000,000 | ---D | C] -- C:\ProgramData\Lavasoft
[1 C:\Windows\SysNative\drivers\*.tmp files -> C:\Windows\SysNative\drivers\*.tmp -> ]

========== Files - Modified Within 30 Days ==========

[2013/12/23 22:38:29 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\Admin\Desktop\OTL.exe
[2013/12/23 22:21:00 | 000,001,016 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2013/12/23 15:21:00 | 000,001,012 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2013/12/23 15:04:19 | 000,000,062 | ---- | M] () -- C:\Users\Admin\AppData\Roaming\sp_data.sys
[2013/12/23 15:04:18 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2013/12/23 15:03:58 | 000,002,307 | ---- | M] () -- C:\Users\Public\Desktop\Ad-Aware Antivirus.lnk
[2013/12/23 15:02:17 | 268,435,456 | -HS- | M] () -- C:\swapfile.sys
[2013/12/23 15:02:16 | 763,113,471 | -HS- | M] () -- C:\hiberfil.sys
[2013/12/22 21:36:40 | 000,033,240 | ---- | M] () -- C:\Windows\SysNative\ScanResults.xml
[2013/12/22 21:29:03 | 000,001,056 | ---- | M] () -- C:\Windows\SysNative\SettingsFile
[2013/12/18 09:27:37 | 002,164,812 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI
[2013/12/18 09:27:37 | 000,918,322 | ---- | M] () -- C:\Windows\SysNative\prfh0816.dat
[2013/12/18 09:27:37 | 000,849,020 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat
[2013/12/18 09:27:37 | 000,217,978 | ---- | M] () -- C:\Windows\SysNative\prfc0816.dat
[2013/12/18 09:27:37 | 000,187,680 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat
[2013/12/13 18:39:22 | 000,034,657 | ---- | M] () -- C:\Users\Admin\Desktop\1463496_10152042118074070_1006177461_n.jpg
[2013/12/12 22:58:53 | 000,424,832 | ---- | M] () -- C:\Windows\SysNative\FNTCACHE.DAT
[2013/12/10 13:22:04 | 001,724,552 | ---- | M] () -- C:\Users\Admin\Desktop\Adaware_Installer.exe
[2013/12/10 10:14:40 | 000,093,651 | ---- | M] () -- C:\Users\Admin\Desktop\testJoanna.pdf
[2013/12/08 10:57:10 | 001,034,531 | ---- | M] (Thisisu) -- C:\Users\Admin\Desktop\JRT.exe
[2013/12/06 21:21:22 | 000,433,602 | ---- | M] () -- C:\Users\Admin\Desktop\Questionnaire P.pdf
[2013/12/04 21:15:58 | 000,000,162 | ---- | M] () -- C:\Windows\Reimage.ini
[2013/12/04 20:15:55 | 000,001,422 | ---- | M] () -- C:\Users\Admin\Application Data\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk
[2013/12/04 20:15:54 | 000,002,285 | ---- | M] () -- C:\Users\Admin\Application Data\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk
[1 C:\Windows\SysNative\drivers\*.tmp files -> C:\Windows\SysNative\drivers\*.tmp -> ]

========== Files Created - No Company Name ==========

[2013/12/13 18:39:22 | 000,034,657 | ---- | C] () -- C:\Users\Admin\Desktop\1463496_10152042118074070_1006177461_n.jpg
[2013/12/12 22:58:42 | 000,424,832 | ---- | C] () -- C:\Windows\SysNative\FNTCACHE.DAT
[2013/12/12 00:50:37 | 000,385,528 | ---- | C] () -- C:\Windows\SysNative\ApnDatabase.xml
[2013/12/12 00:35:51 | 000,002,307 | ---- | C] () -- C:\Users\Public\Desktop\Ad-Aware Antivirus.lnk
[2013/12/10 13:35:42 | 000,156,936 | ---- | C] () -- C:\Windows\SysNative\bdfwcore.dll
[2013/12/10 13:22:03 | 001,724,552 | ---- | C] () -- C:\Users\Admin\Desktop\Adaware_Installer.exe
[2013/12/10 10:14:38 | 000,093,651 | ---- | C] () -- C:\Users\Admin\Desktop\testJoanna.pdf
[2013/12/08 21:09:40 | 000,033,240 | ---- | C] () -- C:\Windows\SysNative\ScanResults.xml
[2013/12/08 21:02:06 | 000,001,056 | ---- | C] () -- C:\Windows\SysNative\SettingsFile
[2013/12/06 11:20:37 | 000,433,602 | ---- | C] () -- C:\Users\Admin\Desktop\Questionnaire P.pdf
[2013/12/04 20:59:02 | 000,000,162 | ---- | C] () -- C:\Windows\Reimage.ini
[2013/11/24 02:31:49 | 000,356,766 | ---- | C] () -- C:\Users\Admin\AppData\Local\metacrawler-speeddial.crx
[2013/09/18 21:56:23 | 002,205,462 | ---- | C] () -- C:\Windows\SysWow64\PerfStringBackup.INI
[2013/09/12 00:36:59 | 000,083,968 | ---- | C] () -- C:\Windows\SysWow64\OEMLicense.dll
[2013/06/26 08:11:42 | 000,650,752 | ---- | C] () -- C:\Windows\SysWow64\xvidcore.dll
[2013/06/26 08:11:42 | 000,243,200 | ---- | C] () -- C:\Windows\SysWow64\xvidvfw.dll
[2013/06/26 08:11:42 | 000,216,064 | ---- | C] ( ) -- C:\Windows\SysWow64\lagarith.dll
[2013/06/26 08:11:41 | 000,178,688 | ---- | C] () -- C:\Windows\SysWow64\unrar.dll
[2013/06/26 08:11:39 | 000,112,640 | ---- | C] () -- C:\Windows\SysWow64\ff_vfw.dll
[2013/05/17 11:01:22 | 000,008,192 | ---- | C] () -- C:\Windows\SysWow64\srvany.exe
[2013/05/17 10:23:22 | 000,000,062 | ---- | C] () -- C:\Users\Admin\AppData\Roaming\sp_data.sys
[2013/03/21 11:06:38 | 000,004,362 | ---- | C] () -- C:\Windows\SysWow64\DptfInvalidPolicyRemover.ini
[2013/03/21 11:05:54 | 000,598,780 | ---- | C] () -- C:\Windows\SysWow64\igvpkrng700.bin
[2013/03/21 11:05:34 | 000,064,512 | ---- | C] () -- C:\Windows\SysWow64\igdde32.dll
[2013/03/21 11:05:30 | 000,755,048 | ---- | C] () -- C:\Windows\SysWow64\igcodeckrng700.bin
[2012/11/23 19:50:39 | 000,024,576 | ---- | C] () -- C:\ProgramData\SetStretch.exe
[2012/11/23 19:50:39 | 000,000,256 | ---- | C] () -- C:\ProgramData\SetStretch.cmd
[2012/11/23 19:50:39 | 000,000,103 | ---- | C] () -- C:\ProgramData\SetStretch.VBS
[2012/07/26 08:13:10 | 000,215,943 | ---- | C] () -- C:\Windows\SysWow64\dssec.dat
[2012/07/26 08:13:09 | 000,000,741 | ---- | C] () -- C:\Windows\SysWow64\NOISE.DAT
[2012/07/26 07:21:26 | 000,067,584 | --S- | C] () -- C:\Windows\bootstat.dat
[2012/07/26 01:17:42 | 000,043,520 | ---- | C] () -- C:\Windows\SysWow64\BWContextHandler.dll
[2012/07/25 20:37:29 | 000,043,131 | ---- | C] () -- C:\Windows\mib.bin
[2012/07/25 20:28:31 | 000,364,544 | ---- | C] () -- C:\Windows\SysWow64\msjetoledb40.dll
[2012/07/25 20:22:56 | 000,267,284 | ---- | C] () -- C:\Windows\SysWow64\igvpkrng600.bin
[2012/07/25 20:22:54 | 000,963,376 | ---- | C] () -- C:\Windows\SysWow64\igcodeckrng600.bin
[2012/06/02 14:31:19 | 000,673,088 | ---- | C] () -- C:\Windows\SysWow64\mlang.dat
[2012/04/20 12:59:44 | 000,001,536 | ---- | C] () -- C:\Windows\SysWow64\IusEventLog.dll

========== ZeroAccess Check ==========

[2013/07/29 13:20:03 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini

[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64

[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]

[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] /64

[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
"" = C:\Windows\SysNative\shell32.dll -- [2013/08/02 06:28:20 | 019,758,080 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shell32.dll -- [2013/08/02 05:08:10 | 017,561,088 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\fastprox.dll -- [2012/07/26 03:05:38 | 001,004,544 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2012/07/26 03:18:27 | 000,784,896 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\wbemess.dll -- [2012/07/26 03:07:41 | 000,455,680 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]

========== LOP Check ==========

[2013/05/17 10:24:31 | 000,000,000 | ---D | M] -- C:\Users\Admin\AppData\Roaming\ASUS WebStorage
[2013/11/15 09:53:55 | 000,000,000 | ---D | M] -- C:\Users\Admin\AppData\Roaming\AVG2014
[2013/09/04 00:11:30 | 000,000,000 | ---D | M] -- C:\Users\Admin\AppData\Roaming\DownLite
[2013/07/09 16:50:25 | 000,000,000 | ---D | M] -- C:\Users\Admin\AppData\Roaming\Nokia
[2013/12/16 16:22:11 | 000,000,000 | ---D | M] -- C:\Users\Admin\AppData\Roaming\NuGet
[2013/07/09 16:50:27 | 000,000,000 | ---D | M] -- C:\Users\Admin\AppData\Roaming\PC Suite
[2013/11/28 22:25:58 | 000,000,000 | ---D | M] -- C:\Users\Admin\AppData\Roaming\SecureSearch
[2013/12/10 12:06:11 | 000,000,000 | ---D | M] -- C:\Users\Admin\AppData\Roaming\TeraCopy
[2013/07/02 17:17:43 | 000,000,000 | ---D | M] -- C:\Users\Admin\AppData\Roaming\TuneUp Software
[2013/12/23 23:00:05 | 000,000,000 | ---D | M] -- C:\Users\Admin\AppData\Roaming\uTorrent

========== Purity Check ==========

Extras.txt has the following contents:

OTL Extras logfile created on: 23/12/2013 22:39:32 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Admin\Desktop
64bit- An unknown product (Version = 6.2.9200) - Type = NTWorkstation
Internet Explorer (Version = 9.10.9200.16750)
Locale: 00000816 | Country: Portugal | Language: PTG | Date Format: dd/MM/yyyy

5,89 Gb Total Physical Memory | 3,72 Gb Available Physical Memory | 63,23% Memory free
6,83 Gb Paging File | 4,33 Gb Available in Paging File | 63,44% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 186,30 Gb Total Space | 89,37 Gb Free Space | 47,97% Space Free | Partition Type: NTFS
Drive D: | 258,15 Gb Total Space | 257,70 Gb Free Space | 99,83% Space Free | Partition Type: NTFS

Computer Name: USER | User Name: Admin | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Quick Scan | Include 64bit Scans
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days

========== Extra Registry (SafeList) ==========


========== File Associations ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.html[@ = htmlfile] -- C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation)
.url[@ = InternetShortcut] -- C:\Windows\SysNative\rundll32.exe (Microsoft Corporation)

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\Windows\SysWow64\control.exe (Microsoft Corporation)
.html [@ = htmlfile] -- C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation)

[HKEY_CURRENT_USER\SOFTWARE\Classes\<extension>]
.html [@ = ChromeHTML] -- Reg Error: Key error. File not found

========== Shell Spawning ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
htmlfile [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
htmlfile [opennew] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
http [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
https [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
InternetShortcut [open] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\ieframe.dll",OpenURL %l (Microsoft Corporation)
InternetShortcut [print] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\OpenWith.exe "%1" (Microsoft Corporation)
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Applications\iexplore.exe [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] -- "C:\Program Files\Internet Explorer\iexplore.exe" (Microsoft Corporation)

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
htmlfile [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
htmlfile [opennew] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
http [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
https [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\OpenWith.exe "%1" (Microsoft Corporation)
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Applications\iexplore.exe [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] -- Reg Error: Value error.

========== Security Center Settings ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = CE 37 E6 AF FF 6A CD 01 [binary data]
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]

========== Firewall Settings ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0

========== Authorized Applications List ==========


========== Vista Active Open Ports Exception List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{01DBFEDB-ED94-4A78-B19D-083A8A7BBFFC}" = lport=6915 | protocol=6 | dir=in | app=c:\program files (x86)\microsoft visual studio 11.0\common7\ide\devenv.exe |
"{03612281-FF77-4FE1-990F-D5A47BF94D97}" = lport=1900 | protocol=17 | dir=in | name=windows live communications platform (ssdp) |
"{0800EE06-F1D2-4C6C-AE0E-328363C9C892}" = lport=3702 | protocol=17 | dir=in | app=c:\program files (x86)\microsoft visual studio 12.0\common7\ide\wdexpress.exe |
"{0B50CC35-A480-4F17-88D9-2DA116C8D3AA}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{287C427C-1C90-4107-ADC6-34D488222948}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | [email protected],-28539 |
"{2B223AAF-EB93-485B-AF36-A6435CA2EF4D}" = rport=445 | protocol=6 | dir=out | app=system |
"{36D84736-1B4D-42F5-87BD-73CC860AB1F5}" = lport=6916 | protocol=6 | dir=in | app=c:\program files (x86)\microsoft visual studio 11.0\common7\ide\devenv.exe |
"{50821F4D-0471-48C7-871E-BD0A5D46C646}" = lport=6004 | protocol=17 | dir=in | app=c:\program files (x86)\microsoft office\office14\outlook.exe |
"{54DAA708-8FE8-4AC1-9A21-2AF170F63675}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{6A3B22BA-A46F-4E8F-ABDD-4509BD7747BD}" = lport=6918 | protocol=6 | dir=in | app=c:\program files (x86)\microsoft visual studio 11.0\common7\ide\devenv.exe |
"{772783F3-963C-49CE-A7B5-910DCAB17F9B}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{8841B8C1-AF9E-4B51-B785-A345EC340C08}" = lport=rpc | protocol=6 | dir=in | svc=spooler | app=%systemroot%\system32\spoolsv.exe |
"{8963689D-9BEE-4254-B331-9E995B1A66E8}" = lport=137 | protocol=17 | dir=in | app=system |
"{8DA69F8F-54EF-40CC-8802-280822B284B5}" = lport=6919 | protocol=6 | dir=in | app=c:\program files (x86)\microsoft visual studio 11.0\common7\ide\devenv.exe |
"{9075FBB4-F7F9-4E17-AC6A-33535ADD6F21}" = lport=445 | protocol=6 | dir=in | app=system |
"{96C21F5C-BFDC-476D-8DE8-0E6E1376EBB5}" = lport=2869 | protocol=6 | dir=in | name=windows live communications platform (upnp) |
"{A2C67A74-CD6B-4F0B-98CC-5BDB99A9142C}" = rport=139 | protocol=6 | dir=out | app=system |
"{B200387F-439B-4824-8BC1-694AEEAE5F54}" = rport=138 | protocol=17 | dir=out | app=system |
"{BA436920-E0A7-4DE1-8308-A04E5F55DBCA}" = lport=3702 | protocol=17 | dir=in | app=c:\program files (x86)\microsoft visual studio 11.0\common7\ide\devenv.exe |
"{C269BA18-1678-44C4-8935-E95E1ED5DADA}" = lport=139 | protocol=6 | dir=in | app=system |
"{CC47526F-D4A4-47AE-B702-91B4BF6B0755}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{D7A605EE-B703-4CCE-A230-D1E315DA1890}" = lport=6917 | protocol=6 | dir=in | app=c:\program files (x86)\microsoft visual studio 11.0\common7\ide\devenv.exe |
"{D80FE4C6-58F8-4D12-B96A-A07601F48111}" = lport=6920 | protocol=6 | dir=in | app=c:\program files (x86)\microsoft visual studio 11.0\common7\ide\devenv.exe |
"{E122981D-5674-42B2-9952-61E527455F5C}" = lport=138 | protocol=17 | dir=in | app=system |
"{E4F33B89-16FF-43FA-8870-EEC4274D2FD9}" = rport=137 | protocol=17 | dir=out | app=system |

========== Vista Active Application Exception List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{02E6959F-320F-42F1-8FCA-514AF5DCFFD8}" = dir=out | name=@{microsoft.bing_1.5.1.259_x64__8wekyb3d8bbwe?ms-resource://microsoft.bing/resources/app_name} |
"{05576FBC-4806-402D-BBE7-A1B5667900C7}" = dir=out | name=@{microsoft.zunemusic_1.4.18.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.zunemusic/resources/ids_manifest_music_app_name} |
"{062E996A-9A9A-495D-AD66-3B823283614B}" = dir=out | name=microsoft solitaire collection |
"{09C23E1E-5F02-4577-AC1B-16583C108E78}" = dir=out | name=@{microsoft.zunevideo_1.5.41.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.zunevideo/resources/ids_manifest_video_app_name} |
"{0C2B0529-79A7-43FE-AB95-EE35B92C2766}" = protocol=6 | dir=in | app=c:\program files (x86)\avg\avg2014\avgmfapx.exe |
"{0F74B741-F62F-4C1C-9622-8D5A26F4A943}" = dir=out | name=fresh paint |
"{1149C2AD-6B94-4604-B0D8-EA8D8BD73335}" = dir=in | name=skype |
"{191B30E5-7523-41BC-AC5C-57C58535AABB}" = dir=out | name=@{microsoft.reader_6.2.9200.20780_x64__8wekyb3d8bbwe?ms-resource://microsoft.reader/resources/shortdisplayname} |
"{19F07613-B562-4FB6-8A98-F4240DCEEE60}" = protocol=6 | dir=in | app=c:\program files\common files\mcafee\platform\mcsvchost\mcsvhost.exe |
"{1B6A8805-331E-46FA-B4B5-EDE8923F1EC1}" = protocol=1 | dir=out | [email protected],-28544 |
"{1C21E43C-A6B5-408E-AE72-A373CB7A2351}" = protocol=6 | dir=in | app=c:\program files (x86)\microsoft office\office14\onenote.exe |
"{1D669AF3-4F2C-47B0-BC76-DF38030AE392}" = protocol=17 | dir=in | app=c:\program files (x86)\avg\avg2013\avgdiagex.exe |
"{1F64F591-829B-4BC0-B19A-F14DFF55975E}" = dir=out | name=@{microsoft.xboxlivegames_1.3.10.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.xboxlivegames/resources/34150} |
"{2327E77A-AA9C-4096-8230-FCCAE503E780}" = dir=in | name=@{microsoft.windowscommunicationsapps_17.0.1119.516_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowscommunicationsapps/resources/communicationspackagename} |
"{27CFC6DF-7293-4CA5-9666-384B5A4653C4}" = dir=out | name=@{microsoft.bingweather_2.0.0.310_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingweather/resources/apptitle} |
"{29EB9347-5C93-47D1-A0C0-9C651E58EDE9}" = protocol=58 | dir=out | [email protected],-28546 |
"{2B00AF96-E109-4906-B253-427A8304EEC8}" = dir=in | name=@{microsoft.windowsphotos_16.4.4388.928_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowsphotos/photo/residappname} |
"{2FD2FD1E-067A-4570-A692-64E26AF2B940}" = protocol=17 | dir=in | app=c:\program files (x86)\lavasoft\adaware securesearch toolbar\dtuser.exe |
"{345C682E-A521-4181-947F-FB350ED019A7}" = dir=out | name=pinball fx2 |
"{35D8E49D-EAE5-4F19-A8B4-D5D0AB69D88D}" = dir=out | name=@{microsoft.bingnews_2.0.0.308_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingnews/resources/news} |
"{35D9BE04-B6DA-44BC-82BE-323B290CB4FC}" = protocol=17 | dir=in | app=c:\users\admin\appdata\roaming\utorrent\utorrent.exe |
"{43BD5AC3-1710-4664-AB63-889FA145661E}" = dir=out | name=@{microsoft.bingsports_2.0.0.309_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingsports/resources/bingsports} |
"{43FAD34C-CC4F-43EE-BDBC-D9020A55B62B}" = protocol=17 | dir=in | app=c:\program files\common files\mcafee\mcsvchost\mcsvhost.exe |
"{442B0D5B-A3F4-4E3D-A0AF-379D67EBACB5}" = dir=in | app=c:\program files (x86)\common files\apple\apple application support\webkit2webprocess.exe |
"{534BB704-5D63-4CEE-A6CD-3372CD838A41}" = protocol=17 | dir=in | app=c:\program files\common files\mcafee\platform\mcsvchost\mcsvhost.exe |
"{54B8A3B9-9802-444B-AEF3-DEAD34047753}" = dir=out | name=@{microsoft.microsoftskydrive_16.4.4388.928_x64__8wekyb3d8bbwe?ms-resource://microsoft.microsoftskydrive/resources/shortproductname} |
"{54EAD3C3-B141-42CA-AC7D-705A52BEEF14}" = protocol=58 | dir=in | [email protected],-28545 |
"{5779F18F-ACD1-4C78-AED0-8898A548CEB7}" = protocol=6 | dir=in | app=c:\program files\common files\mcafee\platform\mcsvchost\mcsvhost.exe |
"{58AB0942-A091-429E-A4D2-0F22855745BE}" = dir=out | name=@{microsoft.windowsphotos_16.4.4388.928_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowsphotos/photo/residappname} |
"{5E9A9A01-C0A4-4C9D-9C51-FF601C15DD0A}" = protocol=6 | dir=in | app=c:\program files (x86)\avg\avg2013\avgdiagex.exe |
"{69585044-3219-4834-B372-FA11CE4E13BA}" = dir=out | name=taptiles |
"{6D71093B-CDD9-41B1-9E37-95EA12688A84}" = protocol=17 | dir=in | app=c:\program files (x86)\avg\avg2014\avgmfapx.exe |
"{77704C0E-B8EF-41AA-BEDF-E6D6CBBCD837}" = protocol=17 | dir=in | app=c:\program files (x86)\microsoft office\office14\onenote.exe |
"{808F1451-4108-46FD-ADBB-F17324B5F0BD}" = dir=out | name=@{c:\windows\winstore\resources.pri?ms-resource://winstore/resources/displayname} |
"{8C7A2DE7-5788-4BDE-A693-E40609A3DB6D}" = protocol=1 | dir=in | [email protected],-28543 |
"{8E3655A6-51BE-43A3-A967-6AAA920A5B70}" = protocol=17 | dir=in | app=c:\program files (x86)\avg\avg2013\avgmfapx.exe |
"{9659629D-C522-4429-ADF4-7457E61F9736}" = dir=out | name=@{browserchoice_6.2.0.0_neutral_neutral_cw5n1h2txyewy?ms-resource://browserchoice/resources/displayname} |
"{96AA0935-32EC-4C92-9A8C-00900462B40F}" = protocol=6 | dir=in | app=c:\program files (x86)\lavasoft\adaware securesearch toolbar\dtuser.exe |
"{A2CD2030-FF88-40EB-858B-A4A326DA3AAC}" = dir=out | name=@{microsoft.windowscommunicationsapps_17.0.1119.516_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowscommunicationsapps/resources/communicationspackagename} |
"{A2FB580E-AC10-4B75-B2A3-4D722E85D853}" = dir=in | name=@{browserchoice_6.2.0.0_neutral_neutral_cw5n1h2txyewy?ms-resource://browserchoice/resources/displayname} |
"{A64B60DB-C223-4584-9DE2-1147742AB370}" = protocol=6 | dir=in | app=c:\program files (x86)\avg\avg2013\avgmfapx.exe |
"{B4593C92-7259-4544-81B3-3B03F2C45D92}" = dir=in | app=c:\program files (x86)\windows live\contacts\wlcomm.exe |
"{B62A022E-09B0-4F85-AB10-4B42A83F8CCD}" = dir=out | name=@{microsoft.bingmaps_1.6.1821.2624_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingmaps/resources/appdisplayname} |
"{B6ABB6E3-95D4-4322-ACA4-8F52DAF74CFF}" = protocol=6 | dir=in | app=c:\users\admin\appdata\roaming\utorrent\utorrent.exe |
"{BA6D96DB-BF33-44B1-9F17-8FD97B8DAE9D}" = dir=in | name=pinball fx2 |
"{C8EA0562-5D91-47DD-866D-EDA88F967617}" = protocol=17 | dir=in | app=c:\program files (x86)\avg\avg2013\avgnsa.exe |
"{CABAF211-3DBA-4F23-B2A7-DE725B6D31AD}" = dir=out | name=skype |
"{D03CE527-7B4A-41C3-895C-0BF715236609}" = protocol=17 | dir=in | app=c:\program files (x86)\avg\avg2013\avgemca.exe |
"{D3B08FC7-295D-4F8A-9D8E-15454ABB48C8}" = dir=out | name=adera |
"{D8092B91-B19E-4525-837E-8AA29441DAFE}" = protocol=6 | dir=in | app=c:\program files (x86)\avg\avg2013\avgemca.exe |
"{DEDEBB8F-B58F-479F-A4E5-60A59465B5CC}" = dir=out | name=windows_ie_ac_001 |
"{DF8D783A-C6C6-4326-8271-D82625504424}" = dir=out | name=@{microsoft.bingfinance_2.0.0.308_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingfinance/resources/apptitle} |
"{E7985E1D-C36F-4787-80A8-6350D07E9266}" = dir=in | name=@{c:\windows\winstore\resources.pri?ms-resource://winstore/resources/displayname} |
"{EEE65C4A-07DB-4F19-9058-A22AB10B1100}" = protocol=6 | dir=in | app=c:\program files (x86)\avg\avg2013\avgnsa.exe |
"{F071FDF0-F6C0-4E96-9D37-ACB94912DD5B}" = protocol=17 | dir=in | app=c:\program files (x86)\microsoft office\office14\groove.exe |
"{F12F0FDA-F54F-4EE8-9D00-37961D334123}" = protocol=17 | dir=in | app=c:\program files\common files\mcafee\platform\mcsvchost\mcsvhost.exe |
"{F85D9AC8-C9D1-4C33-BCF9-A40D986DD0C7}" = dir=out | name=@{microsoft.bingtravel_2.0.0.308_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingtravel/resources/apptitle} |
"{F8D8784F-7622-48C4-9162-D71B9E0323BD}" = dir=in | name=@{microsoft.reader_6.2.9200.20780_x64__8wekyb3d8bbwe?ms-resource://microsoft.reader/resources/shortdisplayname} |
"{FA9AB257-A57B-4D13-8835-16EE8539FCE4}" = protocol=6 | dir=in | app=c:\program files (x86)\microsoft office\office14\groove.exe |
"{FCEE7F5E-2167-4425-99B6-B601DC055864}" = dir=in | app=c:\program files (x86)\itunes\itunes.exe |
"{FD65611E-2AF5-4905-AAA9-075EDB4B5C75}" = protocol=6 | dir=in | app=c:\program files\common files\mcafee\mcsvchost\mcsvhost.exe |

========== HKEY_LOCAL_MACHINE Uninstall List ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{03A2AE02-CBC9-4746-A376-0F7BF6AF5F39}" = Microsoft SQL Server 2012 Transact-SQL Compiler Service
"{04FDBE69-F9FD-42A2-9008-E5CE7F60C6BE}" = ASUS VivoBook
"{05198C22-FFCE-374A-B190-9F18CC99DAEA}" = Build Tools Language Resources - amd64
"{05FF8209-C4F1-4C77-BC28-791653156D20}" = Microsoft System CLR Types for SQL Server 2012 (x64)
"{0FBEEDF8-30FA-4FA3-B31F-C9C7E7E8DFA2}" = ASUS Screen Saver
"{13417784-A359-3CDD-8DE1-B7108707D647}" = Visual Studio 2012 Prerequisites - ENU Language Pack
"{18B2A97C-92C3-4AC7-BE72-F823E0BC895B}" = SQL Server 2012 Database Engine Services
"{1D411379-9CE0-4B13-A19B-72D3222DD620}" = SQL Server 2012 Common Files
"{1D8E6291-B0D5-35EC-8441-6616F567A0F7}" = Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219
"{202AAF1F-69AA-442A-B59F-6B54B1AD07C6}" = SQL Server 2012 Common Files
"{21B133D6-5979-47F0-BE1C-F6A6B304693F}" = Visual Studio 2010 x64 Redistributables
"{26A24AE4-039D-4CA4-87B4-2F86417025FF}" = Java 7 Update 25 (64-bit)
"{26BFF1F1-5C03-4C55-9C7C-FD65889AFA70}" = SQL Server 2012 Management Studio
"{27EF252D-800C-ED42-9904-459FE0046225}" = Windows Software Development Kit for Windows Store Apps DirectX x64 Remote
"{28A683FB-7BEF-4C94-93D1-0DDDB7761894}" = OnlineThreatsEngine
"{28D85F24-B685-3364-BB7C-284C88C2FFE5}" = Microsoft Visual Studio Team Foundation Server 2012 Storyboarding
"{2B997E80-3BEC-3222-9114-98DBE1182B2E}" = Microsoft Visual C++ 2012 x64 Debug Runtime - 11.0.50727
"{2F72F540-1F60-4266-9506-952B21D6640D}" = Apple Mobile Device Support
"{34A7A77A-A23D-44ED-B3B6-EC8198BE2622}" = SQL Server 2012 Full text search
"{3E0DD83F-BE4C-4478-86A0-AD0D79D1353E}" = Microsoft VSS Writer for SQL Server 2012
"{3FA063D7-EDC1-AFA8-54AF-0563C7DEE070}" = Windows App Certification Kit Native Components
"{43A5C316-9521-49C3-B9B6-FCE5E1005DF0}" = Microsoft SQL Server 2012 Management Objects (x64)
"{4701DEDE-1888-49E0-BAE5-857875924CA2}" = Microsoft SQL Server System CLR Types (x64)
"{5247E16E-BCF8-95AB-1653-B3F8FBF8B3F1}" = Windows Software Development Kit DirectX x64 Remote
"{54C5041B-0E91-4E92-8417-AAA12493C790}" = Microsoft SQL Server 2012 Transact-SQL ScriptDom
"{54FF8FAB-DE27-4187-82F1-EBAE6AEE869A}" = SQL Server 2012 Database Engine Shared
"{55EFD1A6-ED8E-3A4C-9581-5E1A1FF244CD}" = Microsoft Visual Studio Team Foundation Server 2012 Storyboarding Language Pack - ENU
"{572E796D-C52B-3797-A685-2FB6F895D4BE}" = Microsoft Visual Studio 2010 Office Developer Tools (x64)
"{57C84705-FA60-4288-9432-2F704F6D335A}" = AntispamEngine
"{58FED865-4F13-408D-A5BF-996019C4B936}" = Microsoft SQL Server 2012 Command Line Utilities
"{600DEB42-433A-40AF-BC14-082E40577BF2}" = AntimalwareEngine
"{60391499-BB97-3FC7-9F17-2BF560DCE231}" = Microsoft Visual Studio 2013 Express Prerequisites x64 - ENU
"{61862D7C-CDBC-48D5-8AE1-3B8BD1E23BC5}" = Visual Studio 2012 Prerequisites
"{633AB014-DDE6-403E-A302-8920CC32C543}" = Microsoft Visual Studio 2012 Performance Collection Tools
"{656E214E-B73F-458C-AD64-ED316F008207}" = SQL Server 2012 BI Development Studio
"{65C91666-C3E8-3A42-BDA8-87932DD34F89}" = Microsoft Team Foundation Server 2013 Object Model (x64)
"{6603C2CE-3C54-4F1D-92F9-8390CD4CCCA8}" = SQL Server 2012 Database Engine Shared
"{662014D2-0450-37ED-ABAE-157C88127BEB}" = Visual Studio 2010 Prerequisites - English
"{68A48EF1-DF03-394F-AF40-1E4FE42BB8DD}" = Microsoft Visual Studio Team Foundation Server 2012 Object Model Language Pack - ENU
"{6AAF4427-3039-4C8A-BE53-D6F01C21AD46}" = Microsoft Visual Studio 2012 IntelliTrace Core amd64
"{6C026A91-640F-4A23-8B68-05D589CC6F18}" = Microsoft SQL Server 2012 Express LocalDB
"{6F07A6C2-9068-3673-A120-DC10012468C6}" = Microsoft Visual Studio Team Foundation Server 2012 Object Model
"{7272DF1C-2F88-43AC-A481-84DD67DF9746}" = SQL Server 2012 Documentation Components
"{76FF0F03-B707-4332-B5D1-A56C8303514E}" = iTunes
"{776CC1A1-330C-4A13-B331-D3AD23545A3D}" = AdAwareInstaller
"{78909610-D229-459C-A936-25D92283D3FD}" = Microsoft SQL Server Compact 4.0 SP1 x64 ENU
"{7994B53E-9CAF-414E-904C-63AA00D64B52}" = AdAwareUpdater
"{7994B53E-9CAF-414E-904C-63AA00D64B52}_AdAwareUpdater" = Ad-Aware Antivirus
"{7BF61FA9-BDFB-4563-98AD-FCB0DA28CCC7}" = IIS 8.0 Express
"{84FBCA4A-D650-4B0D-8094-EC0671FA9B91}" = SQL Server 2012 Database Engine Services
"{877C7A27-7529-4B0C-BA7B-4D697E90DDC1}" = FirewallEngine
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{8C775E70-A791-4DA8-BCC3-6AB7136F4484}" = Visual Studio 2012 x64 Redistributables
"{8CB0713F-CFE0-445D-BCB2-538465860E1A}" = Microsoft SQL Server 2012 Setup (English)
"{90140000-002A-0000-1000-0000000FF1CE}" = Microsoft Office Office 64-bit Components 2010
"{90140000-002A-0816-1000-0000000FF1CE}" = Microsoft Office Shared 64-bit MUI (Portuguese (Portugal)) 2010
"{929FBD26-9020-399B-9A7A-751D61F0B942}" = Microsoft Visual C++ 2013 x64 Additional Runtime - 12.0.21005
"{95120000-00B9-0409-1000-0000000FF1CE}" = Microsoft Application Error Reporting
"{96F4525A-470D-F15C-796E-58D9988C3E5F}" = Windows Software Development Kit for Windows Store Apps DirectX x64 Remote
"{9B6239BF-4E85-4590-8D72-51E30DB1A9AA}" = ASUS Power4Gear Hybrid
"{9f4f4a9b-eec5-4906-92fe-d1f43ccf5c8d}.sdb" = IIS Express Application Compatibility Database for x64
"{A0F05048-7653-4FCD-9F3A-C740E4052ACE}" = Microsoft SQL Server 2012 RsFx Driver
"{A2CB1ACB-94A2-32BA-A15E-7D80319F7589}" = Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.50727
"{A6BA243E-85A3-4635-A269-32949C98AC7F}" = Microsoft SQL Server 2012 Data-Tier App Framework (x64)
"{A7037EB2-F953-4B12-B843-195F4D988DA1}" = SQL Server 2012 Management Studio
"{A749D8E6-B613-3BE3-8F5F-045C84EBA29B}" = Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.21005
"{A84A4FB1-D703-48DB-89E0-68B6499D2801}" = Qualcomm Atheros Bluetooth Suite (64)
"{AA72C306-30BE-4BB1-9E42-59552BAD2CDF}" = Microsoft Web Deploy 3.0
"{AB071C8B-873C-459F-ACA9-9EBE03C3E89B}" = MSVC90_x64
"{AC53FC8B-EE18-3F9C-9B59-60937D0B182C}" = Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.50727
"{B143BE44-8723-315E-9413-011C55873C0E}" = Microsoft Visual Studio 2010 Tools for Office Runtime (x64)
"{B3192F55-2CE8-4C8E-9E40-D3B4998276B2}" = SQL Server 2012 Documentation Components
"{B40EE88B-400A-4266-A17B-E3DE64E94431}" = Microsoft SQL Server 2008 Setup Support Files
"{B74B199A-EDD4-B657-E055-327D454402D2}" = Windows Software Development Kit DirectX x64 Remote
"{BED1EA3D-592D-4305-9D1F-20F03726EFC1}" = Sql Server Customer Experience Improvement Program
"{C41498FE-0BF8-3B22-9785-231CE53C728E}" = Microsoft Team Foundation Server 2013 Object Model Language Pack (x64) - ENU
"{C596D608-3E74-3232-8CA5-DF1DCB9F10DE}" = Microsoft Visual C++ 2013 x64 Debug Runtime - 12.0.21005
"{CC8B009A-98C9-497F-99AF-CEBE35D8C0CF}" = Microsoft SQL Server 2012 T-SQL Language Service
"{CE5E1FC7-FD27-493F-A65F-23AD7ED9661D}" = WebFilteringEngine
"{CECA0188-BD7A-43EF-B1F7-DDF719099C46}" = SQL Server 2012 Documentation Components
"{D307B5CF-D1F0-48A4-8DA3-54765F535208}" = SQL Server 2012 SQL Data Quality Common
"{D411E9C9-CE62-4DBF-9D92-4CB22B750ED5}" = Microsoft SQL Server 2012 Native Client
"{D9F3D00D-E946-3B3D-A4A6-93D5020DB9F7}" = Microsoft Visual C++ 2012 x64 Designtime - 11.0.50727
"{DCCB1789-1DA0-4E3A-A52F-7815B602CC98}" = SQL Server 2012 Reporting Services
"{E2B8249D-895C-4685-8C83-00F3B1A13028}" = Microsoft Web Platform Installer 4.0
"{E5748D30-7E6D-3A8E-BFE6-C1D02C6DDABB}" = Microsoft Help Viewer 1.1
"{E9FA781F-3E80-4399-825A-AD3E11C28C77}" = MSVCRT110_amd64
"{EE1B54D1-BFBC-4C19-8D66-E0AF3E967896}" = SQL Server 2012 BI Development Studio
"{EF79C448-6946-4D71-8134-03407888C054}" = Shared C Run-time for x64
"{F4404AFD-2EF3-40C1-8C09-29E5F3B6972B}" = Intel® Trusted Connect Service Client
"{F74753A3-C93C-34F5-A199-993CAF602B7D}" = Build Tools - amd64
"{FCD81E1A-6ED6-4F19-A572-82FFE102654E}" = SQL Server 2012 Reporting Services
"{fdfba1f3-74ae-4255-9c10-a0f552b4610f}.sdb" = IIS Express Application Compatibility Database for x86
"{FE74AC04-F248-4641-B3A9-89C6AA4339CD}" = Microsoft Visual Studio 2012 Performance Collection Tools - ENU
"4A9DE1E9EBC800B7F01739D4DE7363EF6751BDF5" = Windows Driver Package - ASUS (ATP) Mouse (01/10/2013 1.0.0.170)
"62BBD193ADFDBB228C7E1ADB56463F5732FF7F6F" = Pacote de controladores do Windows - Nokia pccsmcfd LegacyDriver (05/31/2012 7.1.2.0)
"Microsoft Help Viewer 1.1" = Microsoft Help Viewer 1.1
"Microsoft SQL Server 11" = Microsoft SQL Server 2012 (64-bit)
"Microsoft SQL Server SQLServer2012" = Microsoft SQL Server 2012 (64-bit)
"Microsoft Visual Studio 2010 Tools for Office Runtime (x64)" = Microsoft Visual Studio 2010 Tools for Office Runtime (x64)
"WinRAR archiver" = WinRAR 4.00 (64-bit)

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{0001B4FD-9EA3-4D90-A79E-FD14BA3AB01D}" = PDFCreator
"{000AD938-EEBB-46F5-BD33-23CB34A57C54}" = Movie Maker
"{00EC8ABC-3C5A-40F8-A8CB-E7DCD5ABFA05}" = Microsoft NuGet - Visual Studio 2012
"{012D26C3-E12A-3BDA-8ECE-DF14E721A507}" = Microsoft Visual Studio 2010 Shell (Integrated) - ENU
"{02213A81-CB13-7262-5ABE-1FFA2C75559F}" = Windows App Certification Kit x64
"{0398BFBC-991B-3275-9463-D2BF91B3C80B}" = Microsoft Help Viewer 2.1
"{0454BB9A-2A7A-4214-BDFF-937F7A711A44}" = Windows Live Communications Platform
"{046806D1-0A38-3FCA-AF84-F71C50A0C363}" = Microsoft Visual Studio Premium 2012
"{04DD7AF4-A6D3-4E30-9BB9-3B3670719234}" = Microsoft SQL Server 2012 T-SQL Language Service
"{061FF8F3-5226-4278-8AAB-282C1B024F58}" = Photo Common
"{070C38AC-05CE-43DF-9A20-141332F6AB2B}" = Microsoft System CLR Types for SQL Server 2012
"{087D261B-73AE-4B8A-8F18-2EE80DD2ED8B}" = Фотоальбом
"{08AEF86A-1956-4846-B906-B01350E96E30}" = Entity Framework Tools for Visual Studio 2013
"{0969AF05-4FF6-4C00-9406-43599238DE0D}" = ASUS Splendid Video Enhancement Technology
"{0A1A1D48-DB23-443A-BC7B-49255D138020}" = Entity Framework Designer for Visual Studio 2012 - enu
"{0B698858-DAB0-4F9E-A10A-125B274EDA06}" = Microsoft Visual C++ x64 Libraries
"{0BCC836F-0B28-4090-B58A-64883BAA3B2F}" = WCF Data Services 5.0 (for OData v3) Primary Components
"{0BFF2188-2D8E-4BE2-95D0-B3CCD4C6A0C9}" = Photo Common
"{0D7FCBFB-F478-4D32-901C-83F0BF5A3501}" = Microsoft SQL Server Data Tools - enu (12.0.30919.1)
"{1172AC15-080E-30E3-85B0-FF59AD2E6315}" = Microsoft Visual Studio Ultimate 2012 - ENU
"{13A4EE12-23EA-3371-91EE-EFB36DDFFF3E}" = Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.21005
"{13F3CEA5-9E2C-4C4E-9F0F-D0DB389CF4A9}" = Movie Maker
"{148878BD-A2A5-4CF1-A103-2BA632F41953}" = WCF Data Services Tools for Microsoft Visual Studio 2012
"{1690CE56-2231-4E59-9006-A0876D949EA8}" = Tools for .Net 3.5
"{189AEA94-DAFB-487A-8CEE-F9D3DDE0A748}" = Microsoft Silverlight 4 SDK
"{191A6F65-6878-398D-A272-EF011B80F371}" = Microsoft Visual Studio Tools for Applications x86 Runtime 3.0
"{19A5926D-66E1-46FC-854D-163AA10A52D3}" = Microsoft .NET Framework 4.5.1 SDK
"{1B876496-B3A2-4D22-9B12-B608A3FD4B8B}" = Microsoft SQL Server 2012 Data-Tier App Framework
"{1B9BBB23-65CB-3AEE-BFC6-633E7CA299FD}" = Microsoft Visual Studio Team Foundation Server 2012 Team Explorer Language Pack - ENU
"{1C163D33-33B3-33EB-A617-0D4D852BE8E1}" = Microsoft Visual C++ 2012 x86 Debug Runtime - 11.0.50727
"{1DB43E5A-2F24-4F51-92B0-A2C0EBF5C742}" = Microsoft Report Viewer Add-On for Visual Studio 2012
"{1DBD1F12-ED93-49C0-A7CC-56CBDE488158}" = ASUS LifeFrame3
"{1F1AA110-D758-30C1-A1B4-5484C72BCACE}" = Microsoft Visual Studio Express 2013 for Windows Desktop - ENU
"{1F8E06E2-BA93-40DC-B183-E024CBD853A8}" = Microsoft Visual C++ 2012 Compilers
"{1FEE19BC-6F0C-42E4-82FF-FB597F6141DF}" = Windows Live Essentials
"{2432E589-6256-4513-B0BF-EFA8E325D5F0}" = Nero SharedVideoCodecs
"{246B0F46-F84E-4857-8C47-F2A86B598BC5}" = Microsoft Visual Studio 2012 Preparation
"{25F61E72-AAA4-4607-95D2-1E5139C98FFB}" = Nokia_Multimedia_Common_Components_2_5
"{26A24AE4-039D-4CA4-87B4-2F83217025FF}" = Java 7 Update 45
"{28006915-2739-4EBE-B5E8-49B25D32EB33}" = Qualcomm Atheros Client Installation Program
"{2890E324-6F3B-4975-8B95-E7D6D80E0226}" = Nero Burning ROM Help (CHM)
"{29F259D7-C517-3EED-84B4-237573CFD39C}" = Microsoft Visual C++ 2012 Microsoft Foundation Class Libraries
"{2AC4C6D7-512D-4B78-A85B-2C16E748AB8E}" = Movie Maker
"{2B068A64-F867-44E9-8827-A795647C8730}" = Фотографии (общедоступная версия)
"{2C0CC01A-DDBC-3AED-AF18-E741242FD727}" = Microsoft Visual Studio Ultimate 2012 XAML UI Designer enu Resources
"{2C76E3DA-BA76-4FAD-B1B1-72B46D639028}" = PreEmptive Analytics Visual Studio Components
"{2F6CE32A-018D-4656-895B-9E5E20D7740A}" = Microsoft ASP.NET MVC 3 - Visual Studio 2012 Tools Update
"{2F73A7B2-E50E-39A6-9ABC-EF89E4C62E36}" = Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.50727
"{2F7DBBE6-8EBC-495C-9041-46A772F4E311}" = Microsoft SQL Server 2012 Management Objects
"{30F99474-EBE3-4134-A02B-F6CD38CFE243}" = Photo Gallery
"{3108C217-BE83-42E4-AE9E-A56A2A92E549}" = Atheros Communications Inc.® AR81Family Gigabit/Fast Ethernet Driver
"{330E5D98-20D2-4CA4-AE51-FCB8AA80F634}" = Microsoft Visual Studio 2012 Devenv
"{35C1D9D6-87C0-46A3-B1B4-EDBCC063221C}" = Prerequisites for SSDT
"{372D17F6-A54E-4A01-B264-1314890FFE61}" = Dotfuscator and Analytics Community Edition
"{37464E70-B0B9-9DFF-649A-CBE169BAD657}" = Windows Software Development Kit for Windows Store Apps
"{387AA3E2-B9FE-4DA1-A097-A0D2213E8794}" = ASUS S Series Product Demo
"{38FC6E9A-F719-431A-A83D-4C86D5FD6555}" = Microsoft Visual Studio 2012 Shell (Minimum) Resources
"{3A523AF9-D32F-4C85-8388-0335731F3405}" = WCF RIA Services V1.0 SP2
"{3AAB08A3-F129-4BD5-B409-AE674F93759D}" = Prerequisite installer
"{3C63F944-803E-49A7-B3A2-B8AB3313E883}" = Windows Live UX Platform Language Pack
"{42F61556-29ED-8122-F39E-6F04EA5FF279}" = Windows Software Development Kit for Windows Store Apps DirectX x86 Remote
"{4592BAE7-B99A-47A5-9B6B-3BC236B9D3E9}" = Alcor Micro USB Card Reader
"{49110532-D289-4BFF-807C-45B782E66A7C}" = Photo Common
"{492FCC0B-45E1-383A-A2CF-9E7F305AC200}" = Microsoft Visual Studio 2013 Team Explorer Language Pack - ENU
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{4AE57014-05C4-4864-A13D-86517A7E1BA4}" = Microsoft .NET Framework 4.5 SDK
"{4B9E6EB0-0EED-4E74-9479-F982C3254F71}" = SQL Server Browser for SQL Server 2012
"{4CCBD1F4-CEEC-452A-9CB8-46564B501315}" = Windows Live UX Platform
"{4D3286A6-F6AB-498A-82A4-E4F040529F3D}" = ASUS Smart Gesture
"{532DBCC8-9468-435C-AEF6-30B7F50735A2}" = Blend for Visual Studio 2012 ENU resources
"{5411060C-8F8C-393D-8D3B-26AF2C92FABB}" = Microsoft Visual Studio 2013 Shell (Minimum)
"{56AD3004-0B49-967F-F682-B05650B61A78}" = Windows Software Development Kit for Windows Store Apps DirectX x86 Remote
"{56E962F0-4FB0-3C67-88DB-9EAA6EEFC493}" = Microsoft .NET Framework 4.5 Multi-Targeting Pack
"{57D782D7-49FD-48DE-AB47-A690A1519A2D}" = Microsoft ASP.NET Web Pages 2 - Visual Studio 2012 Tools
"{57F20F04-014D-453F-B6A3-AE9485C4DFAB}" = Blend for Visual Studio 2012
"{58172D66-2F69-4215-9AEC-ED8196023736}" = ASUS Tutor
"{5917D694-AFC3-46BF-8CAB-0DABAF9D6FCB}" = Windows Live UX Platform Language Pack
"{5963F4B4-D138-47CD-ADEF-470E87E185BD}" = Nero Burning ROM
"{59D87F40-6C4B-4F80-A42B-FAA0E6EAFAB6}" = Microsoft ASP.NET MVC 4 - Visual Studio 2012 Tools
"{5A03C202-08B4-3F1D-9A60-A4F53EF1B636}" = Microsoft Visual Studio Tools for Applications Design-Time 3.0
"{5D09C772-ECB3-442B-9CC6-B4341C78FDC2}" = Suporte para Aplicaçőes Apple
"{5D5CFAD6-9F93-8C63-3EB0-B6A0D3D4BD12}" = Windows Software Development Kit
"{5D9ED403-94DE-3BA0-B1D6-71F4BDA412E6}" = Microsoft Visual C++ 2010 x86 Runtime - 10.0.40219
"{62BBCDDC-4979-4E59-9D97-5B8E874C3191}" = Movie Maker
"{631471BE-DEAB-454B-A9AC-CE3EB42C28B3}" = Microsoft ASP.NET Web Pages
"{63824BC0-B747-43F3-9863-1066D64AD919}" = Photo Gallery
"{64484316-E4BA-38B3-8954-0358522A8D40}" = Microsoft Visual Studio Express 2013 for Windows Desktop
"{644F4910-E812-49AD-93EC-86828CB81A0D}" = PC Connectivity Solution
"{65153EA5-8B6E-43B6-857B-C6E4FC25798A}" = Intel® Management Engine Components
"{65BB0407-4CC8-4DC7-952E-3EEFDF05602A}" = Nero Update
"{6781FF9B-E87D-4A03-9373-A55A288B83FA}" = Microsoft SQL Server Data Tools Build Utilities - enu (12.0.30919.1)
"{678800C0-D94E-4513-89CB-478F2B781A0B}" = Microsoft Visual C++ 2013 x86-x64 Compilers
"{6A0C6700-EA93-372C-8871-DCCF13D160A4}" = Microsoft .NET Framework 4.5.1 Multi-Targeting Pack
"{6A8DB215-7BCD-4377-B015-2E4541A3E7C6}" = Windows Live PIMT Platform
"{6C06FEE9-C64E-453F-B8A5-D9E9B79ED040}" = Microsoft Visual C++ 2013 32bit Compilers - ENU Resources
"{6CEA775F-E70A-4D72-A3B4-1EB3A5AD4B5C}" = Windows Live Essentials
"{6DAB46E3-D017-3E2B-85D8-F57A230384C0}" = Microsoft Visual Studio Team Foundation Server 2012 Team Explorer
"{6F066545-40A2-4C38-A8F7-78581CC5C442}" = Microsoft ASP.NET Web Pages - Visual Studio 2012 Tools
"{6FC3B79F-47C6-38AF-B9A9-67DE3C639598}" = Microsoft Visual Studio Premium 2012 - ENU
"{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable
"{731C183B-86A0-3442-BE55-68A7C92581E9}" = Microsoft Visual C++ 2012 Extended Libraries
"{7437A4B9-314F-3B8F-827B-22909146E471}" = Microsoft LightSwitch for Visual Studio 2012 Core
"{749F674B-2674-47E8-879C-5626A06B2A91}" = ASUS InstantOn
"{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}" = Apple Software Update
"{790E9425-8570-493F-9AE7-81AFC9E46930}" = Microsoft SQL Server Data Tools Build Utilities - enu (11.1.20627.00)
"{800F484E-9D69-492D-B656-7BAA32586142}" = Microsoft Visual Studio 2012 Shell (Minimum)
"{81CF4226-47C1-418C-8718-1B3ED2C37878}" = Windows Live Essentials
"{820C677A-41B2-48C3-8136-FEE35A052E73}" = Microsoft Visual Studio 2012 Shell (Minimum) Interop Assemblies
"{83F2B8F4-5CF3-4BE9-9772-9543EAE4AC5F}" = Microsoft SQL Server 2008 R2 Management Objects
"{84D88F57-4130-30FE-A0B6-1E04428FE1F6}" = Microsoft Visual C++ 2013 Core Libraries
"{89B4532E-19CE-4FA9-9692-10BFD5A38532}" = Visual Studio Extensions for Windows Library for JavaScript
"{89ECB85A-D933-4CEA-9116-5CBC9C2ED95B}" = ASUS Instant Connect
"{8A642ACD-CE3A-4A23-A8B1-A0F7EB12B214}" = Windows Live SOXE Definitions
"{8DD46C6A-0056-4FEC-B70A-28BB16A1F11F}" = MSVCRT
"{8E14DDC8-EA60-4E18-B3E3-1937104D5BDA}" = MSVCRT110
"{8E6E8CBB-8E58-493C-943F-4664F5F2FEDB}" = Movie Maker
"{8F21291E-0444-4B1D-B9F9-4370A73E346D}" = WinFlash
"{8F7FECEC-088F-431D-A5FB-2B59E1E69943}" = Galería de fotos
"{90140000-0011-0000-0000-0000000FF1CE}" = Microsoft Office Professional Plus 2010
"{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{047B0968-E622-4FAA-9B4B-121FA109EDDE}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-0015-0816-0000-0000000FF1CE}" = Microsoft Office Access MUI (Portuguese (Portugal)) 2010
"{90140000-0015-0816-0000-0000000FF1CE}_Office14.PROPLUS_{A5B089C7-E865-47B2-8E2C-424550131EE7}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-0016-0816-0000-0000000FF1CE}" = Microsoft Office Excel MUI (Portuguese (Portugal)) 2010
"{90140000-0016-0816-0000-0000000FF1CE}_Office14.PROPLUS_{A5B089C7-E865-47B2-8E2C-424550131EE7}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-0018-0816-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (Portuguese (Portugal)) 2010
"{90140000-0018-0816-0000-0000000FF1CE}_Office14.PROPLUS_{A5B089C7-E865-47B2-8E2C-424550131EE7}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-0019-0816-0000-0000000FF1CE}" = Microsoft Office Publisher MUI (Portuguese (Portugal)) 2010
"{90140000-0019-0816-0000-0000000FF1CE}_Office14.PROPLUS_{A5B089C7-E865-47B2-8E2C-424550131EE7}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-001A-0816-0000-0000000FF1CE}" = Microsoft Office Outlook MUI (Portuguese (Portugal)) 2010
"{90140000-001A-0816-0000-0000000FF1CE}_Office14.PROPLUS_{A5B089C7-E865-47B2-8E2C-424550131EE7}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-001B-0816-0000-0000000FF1CE}" = Microsoft Office Word MUI (Portuguese (Portugal)) 2010
"{90140000-001B-0816-0000-0000000FF1CE}_Office14.PROPLUS_{A5B089C7-E865-47B2-8E2C-424550131EE7}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2010
"{90140000-001F-0409-0000-0000000FF1CE}_Office14.PROPLUS_{99ACCA38-6DD3-48A8-96AE-A283C9759279}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-001F-040C-0000-0000000FF1CE}" = Microsoft Office Proof (French) 2010
"{90140000-001F-040C-0000-0000000FF1CE}_Office14.PROPLUS_{46298F6A-1E7E-4D4A-B5F5-106A4F0E48C6}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-001F-0816-0000-0000000FF1CE}" = Microsoft Office Proof (Portuguese (Portugal)) 2010
"{90140000-001F-0816-0000-0000000FF1CE}_Office14.PROPLUS_{958B705D-0E1E-4E39-94C7-2F9B52DA3283}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-001F-0C0A-0000-0000000FF1CE}" = Microsoft Office Proof (Spanish) 2010
"{90140000-001F-0C0A-0000-0000000FF1CE}_Office14.PROPLUS_{DEA87BE2-FFCC-4F33-9946-FCBE55A1E998}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-002A-0000-1000-0000000FF1CE}_Office14.PROPLUS_{967EF02C-5C7E-4718-8FCB-BDC050190CCF}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-002A-0816-1000-0000000FF1CE}_Office14.PROPLUS_{2EE6B9BA-7C9D-4BE5-B577-04416F76E347}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-002C-0816-0000-0000000FF1CE}" = Microsoft Office Proofing (Portuguese (Portugal)) 2010
"{90140000-002C-0816-0000-0000000FF1CE}_Office14.PROPLUS_{67DD47DA-AF6A-48D3-99DE-BABC487C0591}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-0044-0816-0000-0000000FF1CE}" = Microsoft Office InfoPath MUI (Portuguese (Portugal)) 2010
"{90140000-0044-0816-0000-0000000FF1CE}_Office14.PROPLUS_{A5B089C7-E865-47B2-8E2C-424550131EE7}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-006E-0816-0000-0000000FF1CE}" = Microsoft Office Shared MUI (Portuguese (Portugal)) 2010
"{90140000-006E-0816-0000-0000000FF1CE}_Office14.PROPLUS_{0FB3AA14-8127-402A-881C-B9B8695DA1BF}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-00A1-0816-0000-0000000FF1CE}" = Microsoft Office OneNote MUI (Portuguese (Portugal)) 2010
"{90140000-00A1-0816-0000-0000000FF1CE}_Office14.PROPLUS_{A5B089C7-E865-47B2-8E2C-424550131EE7}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-00BA-0816-0000-0000000FF1CE}" = Microsoft Office Groove MUI (Portuguese (Portugal)) 2010
"{90140000-00BA-0816-0000-0000000FF1CE}_Office14.PROPLUS_{A5B089C7-E865-47B2-8E2C-424550131EE7}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{9347889B-C22A-3905-901F-C05D8F73C929}" = Build Tools Language Resources - x86
"{93489CA8-6656-33A0-A5AC-E0EDEDB17C3E}" = Microsoft Visual Studio Professional 2012
"{942CC691-5B98-42A3-8BC5-A246BA69D983}" = Microsoft ASP.NET MVC 4 Runtime
"{95120000-00B9-0409-0000-0000000FF1CE}" = Microsoft Application Error Reporting
"{9600393b-6ede-469b-a522-689fce1461d1}" = Microsoft Visual Studio Ultimate 2012
"{984022F2-9BCA-A41D-6A38-1AE658F01415}" = Windows Software Development Kit
"{985EF141-95DD-3934-8F23-7C2C4C61E5F7}" = Microsoft Visual Studio 2013 Shell (Minimum) Resources
"{989889A7-D13D-4DA4-B059-B250784DFABC}" = Photo Common
"{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}" = Visual Studio 2012 x86 Redistributables
"{9B4D3AFE-8679-4704-AA4C-BAB0E41870EF}" = Windows Live Essentials
"{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
"{9C60D080-84E7-43A5-8ECA-28253D253BD7}" = Windows Live Essentials
"{9CCE40CE-A9E6-4916-8729-B008558EEF3F}" = Microsoft Report Viewer 2012 Runtime
"{9E7DE17D-A9E2-4762-8C10-1E80F5976F4A}" = Microsoft Visual Studio 2013 Preparation
"{A19A8C25-272A-4CD6-8BA8-3772321A021B}" = Συλλογή φωτογραφιών
"{A1CB8286-CFB3-A985-D799-721A0F2A27F3}" = Windows Software Development Kit DirectX x86 Remote
"{A2CCB3C1-3DF9-4E3E-8D3F-DDBBCDDB28B5}" = Microsoft C++ REST SDK for Visual Studio 2013
"{A3A6D5EA-B6B5-3C05-BDA8-EAB99C09CDDC}" = Microsoft Visual Studio 2012 SharePoint Developer Tools
"{A3B8D9FB-CA7D-4487-8CA2-A6A2C8AD1077}" = Microsoft Visual C++ x86 Libraries
"{A4366F69-CE22-4DB7-9C8C-46A5845AF997}" = Microsoft Visual C++ 2012 Compilers - ENU Resources
"{A6030DAD-1600-F767-C8DD-C722ADFE8FBC}" = Windows Software Development Kit DirectX x86 Remote
"{A7E19604-93AF-4611-8C9F-CE509C2B286F}_is1" = Free YouTube Downloader 3.5.167
"{A859E3E5-C62F-4BFA-AF1D-2B95E03166AF}" = ASUS USB Charger Plus
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{ABC88553-8770-4B97-B43E-5A90647A5B63}" = Nero ControlCenter
"{AC76BA86-7AD7-1046-7B44-AB0000000001}" = Adobe Reader XI (11.0.05) - Portuguęs
"{AD1AEE2A-D9C0-3FAC-8D6B-B5E07B47257B}" = Microsoft Visual C++ 2012 Core Libraries
"{ADE1F206-1365-4B14-9A24-4B1A7DD58BAC}" = Windows Live UX Platform Language Pack
"{AE937DBA-FEFD-3BFE-9860-0591C0F91D61}" = Microsoft Visual Studio 2013 Shell (Minimum) Interop Assemblies
"{AF111648-99A1-453E-81DD-80DBBF6DAD0D}" = MSVC90_x86
"{B1465D1D-6427-4CA1-AE29-8B699209E663}" = Microsoft Visual Studio 2012 Devenv Resources
"{B3533B84-A8DF-4A7A-8E95-B15F08B26E96}" = Microsoft Visual Studio 2012 IntelliTrace Core x86
"{B5DA9D49-9BD8-0F2F-52FC-C7E66BC8D944}" = LocalESPCui for en-us
"{B693A4C3-B708-4F25-978E-56CA2517914C}" = Windows Live UX Platform Language Pack
"{B96FCD4F-6EDD-4258-8A6D-0FCEA8445E3E}" = Microsoft Web Developer Tools - Visual Studio 2012
"{B9F35D86-242E-3FA4-B9F8-A982E0DF918D}" = Microsoft Visual Studio 2012 SharePoint Developer Tools ENU Language Pack
"{BAD0254F-9BDB-3D14-A5AC-9C0EF51F3D09}" = Microsoft Portable Library Multi-Targeting Pack Language Pack - enu
"{BDBE5D2A-AAB7-77BD-7A0E-5006665CE7C6}" = LocalESPC
"{BEBEE34D-84A2-4EDD-8BEA-96CC54371263}" = Nero Core Components
"{bec3d87e-1d6d-4b15-8383-29068c86b888}" = Microsoft Visual Studio Express 2013 for Windows Desktop - ENU
"{BFA6D5AD-25EA-475F-AD80-ECD408C674AB}" = Movie Maker
"{C0CA68BF-2963-4139-8207-1E83038F86F8}" = Nero BurningROM 12
"{C1BE4600-7D15-3D1E-8AA2-B3241DB1D063}" = Microsoft Visual Studio Ultimate 2012 XAML UI Designer Core
"{C3F6F200-6D7B-4879-B9EE-700C0CE1FCDA}" = Microsoft SQL Server System CLR Types
"{C424CD5E-EA05-4D3E-B5DA-F9F149E1D3AC}" = Windows Live Installer
"{C4CAD994-6EA2-3121-8352-DA593150B322}" = Microsoft Portable Library Multi-Targeting Pack
"{C5A17590-8CBE-3581-965D-EF183BE07920}" = Microsoft Visual Studio Ultimate 2013 XAML UI Designer Core
"{C81452EB-CBCF-B8EB-3124-48C5B3D506B0}" = Windows Runtime Intellisense Content - en-us
"{C8BBA220-8549-462A-B411-1AF44DE098B5}" = Photo Common
"{C994C746-C6D0-4EBA-B09E-DF7B18381B69}" = Nero ControlCenter Help (CHM)
"{C9B6EFD0-4F01-4BBA-8374-39AD99A3ED72}" = Windows Live Photo Common
"{C9E7751E-88ED-36CF-B610-71A1D262E906}" = Team Explorer for Microsoft Visual Studio 2013
"{CFEF48A8-BFB8-3EAC-8BA5-DE4F8AA267CE}" = Microsoft .NET Framework 4 Multi-Targeting Pack
"{CFFDC0EC-6924-3347-B047-13339EDBEC28}" = Microsoft Visual Studio Professional 2012 - ENU
"{D11F66FF-82B3-DDB8-1146-525370552BE1}" = Windows Software Development Kit for Windows Store Apps
"{D3517C62-68A5-37CF-92F7-93C029A89681}" = Microsoft .NET Framework 4.5.1 Multi-Targeting Pack (ENU)
"{D64B6984-242F-32BC-B008-752806E5FC44}" = Microsoft Visual Studio 2010 Shell (Isolated) - ENU
"{D971780F-A609-4F78-92AA-B56FBC3955B9}" = Microsoft Visual Studio 2012 IntelliTrace Front End x86
"{DCDEC776-BADD-48B9-8F9A-DFF513C3D7FA}" = Microsoft ASP.NET MVC 3
"{E09C4DB7-630C-4F06-A631-8EA7239923AF}" = D3DX10
"{E1FBB3D4-ADB0-4949-B101-855DA061C735}" = Microsoft Silverlight 5 SDK
"{E37CD6E8-BC51-4D48-9840-803EC3B418D3}" = גלריית התמונות
"{E4ADE757-7FE9-322D-9CAE-C77D77A2D2BF}" = Microsoft LightSwitch for Visual Studio 2012 CoreRes - ENU
"{E4C33F5B-1B2F-466E-957E-B274F08151A0}" = Microsoft Web Deploy dbSqlPackage Provider - enu
"{E5CAE8D2-9F9F-3BEA-AA0F-B5B40611C704}" = Microsoft Visual C++ 2013 x86 Debug Runtime - 12.0.21005
"{E818AE7C-244B-4A50-9C86-C0E4A8B69159}" = Microsoft Visual Studio 2012 Tools for SQL Server Compact 4.0 SP1 ENU
"{EA348D4B-FB4D-4449-8749-654CA51F56A6}" = Windows Live UX Platform Language Pack
"{EB514FFD-5FBA-3C53-94F8-3A2B96C5E7A8}" = Microsoft Visual Studio Ultimate 2013 XAML UI Designer enu Resources
"{ED6C77F9-4D7E-447C-9EC0-9A212D075535}" = Movie Maker
"{ED885463-044B-436D-9DD9-B486A4FFF964}" = Microsoft NuGet - Visual Studio Express 2013 for Windows Desktop
"{EFA87714-E75A-3BFC-A698-A3AABA5A8A0C}" = Microsoft Visual Studio Ultimate 2012
"{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}" = Microsoft SQL Server 2005 Compact Edition [ENU]
"{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}" = Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219
"{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}" = Intel® Processor Graphics
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
"{F21F0424-B2FF-40BF-A984-9E0D7FB4C97E}" = Windows Live UX Platform Language Pack
"{F361FE04-789E-42F3-BBAB-E7B380AA5E06}" = Windows XP Targeting with C++
"{F3BBC56F-2282-4464-952F-A89772181F30}" = Microsoft SQL Server Data Tools – Database Projects – Web installer entry point
"{F5E338CE-E1C6-4F7D-8300-44DBD05B9F14}" = Galeria de Fotografias
"{F7304CCF-B4A0-49C7-88A8-CD3F28FFBF9A}" = Основные компоненты Windows Live
"{F8CFEB22-A2E7-3971-9EDA-4B11EDEFC185}" = Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.21005
"{FA540E67-095C-4A1B-97BA-4D547DEC9AF4}" = ASUS Live Update
"{FA804794-2CCB-4301-954F-2C2894698876}" = Microsoft SQL Server Data Tools - enu (11.1.20627.00)
"{FB3A15FD-FC67-3A2F-892B-6890B0C56EA9}" = Build Tools - x86
"{FBBC8076-BB21-4E06-9FA0-309AEF6E35EE}" = Microsoft ASP.NET Web Pages 2 Runtime
"{FCB3772C-B7D0-4933-B1A9-3707EBACC573}" = Intel® SDK for OpenCL - CPU Only Runtime Package
"{FDB30193-FDA0-3DAA-ACCA-A75EEFE53607}" = Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.50727
"{FE7C0B3D-50B9-4951-BE78-A321CBF86552}" = Windows Live SOXE
"{FEB375AB-6EEC-3929-8FAF-188ED81DD8B5}" = Microsoft Help Viewer 2.0
"Adobe Flash Player Plugin" = Adobe Flash Player 11 Plugin
"AmUStor" = Alcor Micro USB Card Reader
"ASUS WebStorage" = ASUS WebStorage Sync Agent
"FFD10ECE-F715-4a86-9BD8-F6F47DA5DA1C" = Intel® Dynamic Platform and Thermal Framework
"flash-Enhancer" = flash-Enhancer
"Google Chrome" = Google Chrome
"Internet Helper Anti-phishing" = Internet Helper Anti-phishing
"KLiteCodecPack_is1" = K-Lite Mega Codec Pack 9.6.5
"Microsoft Help Viewer 2.0" = Microsoft Help Viewer 2.0
"Microsoft Help Viewer 2.1" = Microsoft Help Viewer 2.1
"Office14.PROPLUS" = Microsoft Office Professional Plus 2010
"WinLiveSuite" = Windows Live Essentials

========== HKEY_CURRENT_USER Uninstall List ==========

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"uTorrent" = µTorrent

========== Last 20 Event Log Errors ==========

[ Application Events ]
Error - 19/11/2013 17:58:04 | Computer Name = User | Source = Report Server Windows Service (SQLEXPRESS) | ID = 107
Description = Report Server Windows Service (SQLEXPRESS) cannot connect to the report
server database.

Error - 19/11/2013 18:14:10 | Computer Name = User | Source = Microsoft-Windows-SpellChecker | ID = 33
Description =

Error - 19/11/2013 18:16:48 | Computer Name = User | Source = Microsoft-Windows-SpellChecker | ID = 33
Description =

Error - 20/11/2013 07:04:14 | Computer Name = User | Source = Report Server Windows Service (SQLEXPRESS) | ID = 107
Description = Report Server Windows Service (SQLEXPRESS) cannot connect to the report
server database.

Error - 20/11/2013 07:15:32 | Computer Name = User | Source = Microsoft-Windows-SpellChecker | ID = 33
Description =

Error - 20/11/2013 07:40:35 | Computer Name = User | Source = Microsoft-Windows-SpellChecker | ID = 33
Description =

Error - 20/11/2013 08:48:20 | Computer Name = User | Source = Microsoft-Windows-SpellChecker | ID = 33
Description =

Error - 20/11/2013 08:50:38 | Computer Name = User | Source = Microsoft-Windows-SpellChecker | ID = 33
Description =

Error - 20/11/2013 09:37:19 | Computer Name = User | Source = Microsoft-Windows-Immersive-Shell | ID = 5973
Description = A ativaçăo da aplicaçăo DefaultBrowser_NOPUBLISHERID!Chrome falhou
com o erro: -2147024891. Consulte o registo Microsoft-Windows-TWinUI/Operacional
para obter informaçőes adicionais.

Error - 20/11/2013 13:35:55 | Computer Name = User | Source = Application Error | ID = 1000
Description = Nome da aplicaçăo com falha: IEXPLORE.EXE, versăo: 10.0.9200.16537,
carimbo de data/hora: 0x512347f7 Nome do módulo com falha: ntdll.dll, versăo: 6.2.9200.16578,
carimbo de data/hora: 0x515fac6e Código de exceçăo: 0xc0000374 Desvio de falha: 0x000daa3c
ID
do processo com falha: 0x552c Hora de início da aplicaçăo com falha: 0x01cee5eebf385842
Caminho
da aplicaçăo com falha: C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE Caminho
do módulo com falha: C:\Windows\SYSTEM32\ntdll.dll ID do Relatório: 3502071c-520a-11e3-bf37-74d02b722d5b
Nome
completo do pacote com falha: ID da aplicaçăo relativa ao pacote com falha:

[ System Events ]
Error - 17/12/2013 05:32:31 | Computer Name = User | Source = DCOM | ID = 10016
Description =

Error - 17/12/2013 05:32:33 | Computer Name = User | Source = DCOM | ID = 10016
Description =

Error - 17/12/2013 19:32:56 | Computer Name = User | Source = Service Control Manager | ID = 7000
Description = O serviço my_process falhou o arranque devido ao seguinte erro: %%2

Error - 17/12/2013 19:34:15 | Computer Name = User | Source = DCOM | ID = 10016
Description =

Error - 17/12/2013 19:34:16 | Computer Name = User | Source = DCOM | ID = 10016
Description =

Error - 18/12/2013 05:22:34 | Computer Name = User | Source = Service Control Manager | ID = 7000
Description = O serviço my_process falhou o arranque devido ao seguinte erro: %%2

Error - 18/12/2013 05:23:59 | Computer Name = User | Source = DCOM | ID = 10016
Description =

Error - 18/12/2013 05:23:59 | Computer Name = User | Source = DCOM | ID = 10016
Description =

Error - 18/12/2013 09:54:29 | Computer Name = User | Source = Service Control Manager | ID = 7000
Description = O serviço my_process falhou o arranque devido ao seguinte erro: %%2

Error - 18/12/2013 11:39:25 | Computer Name = User | Source = Service Control Manager | ID = 7000
Description = O serviço my_process falhou o arranque devido ao seguinte erro: %%2


< End of report >



< End of report >


Thank you very much.

Best regards.
P.S. I'm using Windows 8.
  • 0

Advertisements


#2
SleepyDude

SleepyDude

    Trusted Helper

  • Malware Removal
  • 4,974 posts
Olá Joana :welcome:

My name is SleepyDude I will be helping you with your Computer problem. I know that having a computer with problems can be very frustrating but I will do my best to help you fixing the issue.

Please note I'm currently in training, all my responses will be revised by my Teacher before I post so expect a slight delay between replies. On the bright side, you have two people to examine your problem!

Sometimes this can be a long process, it's very important that you stay with me and follow all my instructions to the letter until I declare your machine is clean.

I have compiled a list of guidelines you must take in consideration so that the helping process goes smooth for you and for me:

  • Please perform all steps in the order they are listed in each set of instructions
  • Don't install/uninstall any software or run any other cleaning tools besides the ones I ask you to use
    • Running other programs can interfere with the tools we use and have unpredicted results. Also I need to know what is going on with your machine at any time
  • If possible avoid using the computer for other tasks until we finish the cleaning process
    • The reason for this is because it can make the malware infection worst and more difficult to clean. Some malware can download updates from the internet when you use the computer
  • Please don't attach your logs instead Copy & Paste the information to your post unless specifically instructed to do so
  • Please read every post completely before doing anything if you have some doubts or questions please ask before continuing

IMPORTANT: At GeeksToGo we do our best to help you solving the problem but sometimes things don't go as planned. To be safe than sorry you should Backup your important data to a safe place, anywhere except on the computer with problems.

The all fixing process need to be executed from a user account with Administrator privileges also some of the tasks need to be executed in Safe Mode, you should save or print the instructions for use when you don't have access to the forum.

I need some time to check your logs but I the mean time I would like you to post the last report generated by AdwCleaner, look for the most recent file on C:\AdwCleaner\AdwCleaner[??].txt.
I also need one more log, please execute the following:


Step 1 - CKScanner scan

  • Download CKScanner from here and save the file to the Desktop
  • Double click CKScanner.exe or If running Windows Vista or above Right click and select Run as Administrator
    (Accept any Security Warnings)
  • click Search For Files
  • After a very short time, when the cursor hourglass disappears, click Save List To File.
  • A message box will verify the file saved. Please run the program once only.
  • Double click the CKFiles.txt text file on your desktop and copy/paste the contents in your next reply.

Things I would like to see in your next reply:
  • The CKFiles.txt log
  • AdwCleaner log AdwCleaner[??].txt

  • 0

#3
jonatanoliveira

jonatanoliveira

    Member

  • Topic Starter
  • Member
  • PipPip
  • 12 posts
I SleeyDude,
First I want to thank you for your availability.

The log in AdwCleaner is:
# AdwCleaner v3.014 - Report created 04/12/2013 at 21:53:52
# Updated 01/12/2013 by Xplode
# Operating System : Windows 8 (64 bits)
# Username : Admin - USER
# Running from : C:\Users\Admin\Downloads\AdwCleaner.exe
# Option : Clean

***** [ Services ] *****

Service Deleted : winzipersvc

***** [ Files / Folders ] *****

Folder Deleted : C:\Searchprotect
Folder Deleted : C:\ProgramData\AVG Security Toolbar
Folder Deleted : C:\ProgramData\Babylon
Folder Deleted : C:\ProgramData\BitGuard
Folder Deleted : C:\ProgramData\blekko toolbars
Folder Deleted : C:\ProgramData\Search Protection
Folder Deleted : C:\ProgramData\Tarma Installer
Folder Deleted : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tuto4pc
Folder Deleted : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinZipper
Folder Deleted : C:\Program Files (x86)\Better-Surf
Folder Deleted : C:\Program Files (x86)\Conduit
Folder Deleted : C:\Program Files (x86)\DealPly
Folder Deleted : C:\Program Files (x86)\MetaCrawler
Folder Deleted : C:\Program Files (x86)\searchgol
Folder Deleted : C:\Program Files (x86)\Searchprotect
Folder Deleted : C:\Program Files (x86)\Toolbar Cleaner
Folder Deleted : C:\Program Files (x86)\WinZipper
Folder Deleted : C:\Program Files (x86)\tuto4pc_pt_24
Folder Deleted : C:\Program Files (x86)\Common Files\337
Folder Deleted : C:\Users\Admin\AppData\Local\TBHostSupport
Folder Deleted : C:\Users\Admin\AppData\Local\WhiteListing
Folder Deleted : C:\Users\Admin\AppData\Local\tuto4pc_pt_24
Folder Deleted : C:\Users\Admin\AppData\LocalLow\adawaretb
Folder Deleted : C:\Users\Admin\AppData\Roaming\eIntaller
Folder Deleted : C:\Users\Admin\AppData\Roaming\searchgol
Folder Deleted : C:\Users\Admin\AppData\Roaming\WinZipper
Folder Deleted : C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BitGuard
Folder Deleted : C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\poheodfamflhhhdcmjfeggbgigeefaco
Folder Deleted : C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\gdfglldanmpdjibmppnggdphndfklefg
File Deleted : C:\END
File Deleted : C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_igdhbblpcellaljokkpfhcjlagemhgjl_0.localstorage
File Deleted : C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_fastcontent.conduit.com_0.localstorage
File Deleted : C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_fastcontent.conduit.com_0.localstorage-journal
File Deleted : C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_storage.conduit.com_0.localstorage-journal
File Deleted : C:\Windows\System32\Tasks\BitGuard
File Deleted : C:\Windows\Tasks\Dealply.job
File Deleted : C:\Windows\System32\Tasks\Dealply
File Deleted : C:\Windows\System32\Tasks\Desk 365 RunAsStdUser
File Deleted : C:\Windows\System32\Tasks\EPUpdater
File Deleted : C:\Windows\Tasks\MetaCrawler.job
File Deleted : C:\Windows\System32\Tasks\MetaCrawler

***** [ Shortcuts ] *****

Shortcut Disinfected : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome\Google Chrome.lnk

***** [ Registry ] *****

Value Deleted : HKLM\SOFTWARE\Mozilla\Firefox\Extensions [[email protected]]
Value Deleted : HKLM\SOFTWARE\Mozilla\Firefox\Extensions [[email protected]]
Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\dedmngkbaffkenlfdcbganndoghblmap
Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\poheodfamflhhhdcmjfeggbgigeefaco
Key Deleted : HKCU\Software\Google\Chrome\Extensions\gdfglldanmpdjibmppnggdphndfklefg
Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\gdfglldanmpdjibmppnggdphndfklefg
Key Deleted : HKLM\SOFTWARE\Classes\AlxSSB.AlxTBSSB
Key Deleted : HKLM\SOFTWARE\Classes\AlxSSB.AlxTBSSB.1
Key Deleted : HKLM\SOFTWARE\Classes\AppID\escort.DLL
Key Deleted : HKLM\SOFTWARE\Classes\AppID\escortApp.DLL
Key Deleted : HKLM\SOFTWARE\Classes\AppID\escortEng.DLL
Key Deleted : HKLM\SOFTWARE\Classes\AppID\escorTlbr.DLL
Key Deleted : HKLM\SOFTWARE\Classes\AppID\esrv.EXE
Key Deleted : HKLM\SOFTWARE\Classes\Prod.cap
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\Iminent_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\Iminent_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\WebCakeDesktop_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\WebCakeDesktop_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\dealplylive.exe
Value Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [Search Protection]
Key Deleted : HKLM\SYSTEM\CurrentControlSet\Services\Eventlog\Application\DeskSvc
Key Deleted : HKCU\Software\9e8f88e16aba40
Key Deleted : HKLM\SOFTWARE\9e8f88e16aba40
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{09C554C3-109B-483C-A06B-F14172F1A947}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{0A18A436-2A7A-49F3-A488-30538A2F6323}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{1F02FB61-2BE5-4C16-8199-AEAA16EB0342}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{4277F7CF-0000-46CF-BA49-D624465C4BAB}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{4E1E9D45-8BF9-4139-915C-9F83CC3D5921}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{88AF4F6A-C6B7-4229-9275-824E98BF97F9}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{B12E99ED-69BD-437C-86BE-C862B9E5444D}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{D7EE8177-D51E-4F89-92B6-83EA2EC40800}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{007EFBDF-8A5D-4930-97CC-A4B437CBA777}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{02054E11-5113-4BE3-8153-AA8DFB5D3761}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{6C97A91E-4524-4019-86AF-2AA2D567BF5C}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{8271B5D6-76D3-4ABF-AEB3-1721161C76BC}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{87BEF026-9269-413C-A5B3-11F35451380E}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{E57091A7-B5F0-4C42-9329-72ED3E59ED31}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{F511AFDB-726E-4458-90E7-1ECB97406544}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{FB684D26-01F4-4D9D-87CB-F486BEBA56DC}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{021B4049-F57D-4565-A693-FD3B04786BFA}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{0362AA09-808D-48E9-B360-FB51A8CBCE09}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{06844020-CD0B-3D3D-A7FE-371153013E49}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{0ADC01BB-303B-3F8E-93DA-12C140E85460}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{10D3722F-23E6-3901-B6C1-FF6567121920}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{1675E62B-F911-3B7B-A046-EB57261212F3}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{192929F2-9273-3894-91B0-F54671C4C861}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{2932897E-3036-43D9-8A64-B06447992065}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{2DE92D29-A042-3C37-BFF8-07C7D8893EFA}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{32B80AD6-1214-45F4-994E-78A5D482C000}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{3A8E103F-B2B7-3BEF-B3B0-88E29B2420E4}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{478CE5D3-D38E-3FFE-8DBE-8C4A0F1C4D8D}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{48B7DA4E-69ED-39E3-BAD5-3E3EFF22CFB0}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{5982F405-44E4-3BBB-BAC4-CF8141CBBC5C}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{5D8C3CC3-3C05-38A1-B244-924A23115FE9}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{641593AF-D9FD-30F7-B783-36E16F7A2E08}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{711FC48A-1356-3932-94D8-A8B733DBC7E4}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{72227B7F-1F02-3560-95F5-592E68BACC0C}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{79FB5FC8-44B9-4AF5-BADD-CCE547F953E5}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{7B5E8CE3-4722-4C0E-A236-A6FF731BEF37}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{890D4F59-5ED0-3CB4-8E0E-74A5A86E7ED0}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{8C68913C-AC3C-4494-8B9C-984D87C85003}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{8D019513-083F-4AA5-933F-7D43A6DA82C4}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{923F6FB8-A390-370E-A0D2-DD505432481D}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{9BBB26EF-B178-35D6-9D3D-B485F4279FE5}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{A62DDBE0-8D2A-339A-B089-8CBCC5CD322A}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{A82AD04D-0B8E-3A49-947B-6A69A8A9C96D}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{ADEB3CC9-A05D-4FCC-BD09-9025456AA3EA}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{B06D4521-D09C-3F41-8E39-9D784CCA2A75}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{C06DAD42-6F39-4CE1-83CC-9A8B9105E556}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{C2E799D0-43A5-3477-8A98-FC5F3677F35C}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{D16107CD-2AD5-46A8-BA59-303B7C32C500}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{D25B101F-8188-3B43-9D85-201F372BC205}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{D2BA7595-5E44-3F1E-880F-03B3139FA5ED}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{D35F5C81-17D9-3E1C-A1FC-4472542E1D25}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{D8FA96CA-B250-312C-AF34-4FF1DD72589D}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{DAFC1E63-3359-416D-9BC2-E7DCA6F7B0F3}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{DC5E5C44-80FD-3697-9E65-9F286D92F3E7}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{E1B4C9DE-D741-385F-981E-6745FACE6F01}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{E7B623F5-9715-3F9F-A671-D1485A39F8A2}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{ED916A7B-7C68-3198-B87D-2DABC30A5587}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{EFA1BDB2-BB3D-3D9A-8EB5-D0D22E0F64F4}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{F4CBF4DD-F8FE-35BA-BB7E-68304DAAB70B}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{FC32005D-E27C-32E0-ADFA-152F598B75E7}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{2BF2028E-3F3C-4C05-AB45-B2F1DCFE0759}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{4E1E9D45-8BF9-4139-915C-9F83CC3D5921}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{9C049BA6-EA47-4AC3-AED6-A66D8DC9E1D8}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{BEAA0C04-ED15-4C17-800B-28716025A4E4}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{D7EE8177-D51E-4F89-92B6-83EA2EC40800}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{DA9FC525-41ED-4C00-B046-946DA7CDD305}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{DB538320-D3C5-433C-BCA9-C4081A054FCF}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6C97A91E-4524-4019-86AF-2AA2D567BF5C}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8271B5D6-76D3-4ABF-AEB3-1721161C76BC}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{6C97A91E-4524-4019-86AF-2AA2D567BF5C}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{8271B5D6-76D3-4ABF-AEB3-1721161C76BC}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{6C97A91E-4524-4019-86AF-2AA2D567BF5C}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{8271B5D6-76D3-4ABF-AEB3-1721161C76BC}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{6C97A91E-4524-4019-86AF-2AA2D567BF5C}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{8C5CBB76-7379-4490-AA5B-B037C0A36381}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{E57091A7-B5F0-4C42-9329-72ED3E59ED31}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}
Value Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{6C97A91E-4524-4019-86AF-2AA2D567BF5C}]
Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{6C97A91E-4524-4019-86AF-2AA2D567BF5C}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{021B4049-F57D-4565-A693-FD3B04786BFA}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{0362AA09-808D-48E9-B360-FB51A8CBCE09}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{06844020-CD0B-3D3D-A7FE-371153013E49}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{0ADC01BB-303B-3F8E-93DA-12C140E85460}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{0AFD55C8-ADF8-4A33-A6E1-DEDB7A36AEB4}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{10D3722F-23E6-3901-B6C1-FF6567121920}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{1675E62B-F911-3B7B-A046-EB57261212F3}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{192929F2-9273-3894-91B0-F54671C4C861}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{2932897E-3036-43D9-8A64-B06447992065}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{2DE92D29-A042-3C37-BFF8-07C7D8893EFA}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{32B80AD6-1214-45F4-994E-78A5D482C000}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{3860D897-7DCD-473C-9744-B21DB133AB20}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{3A8E103F-B2B7-3BEF-B3B0-88E29B2420E4}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{462862BE-9A5C-49A5-9CBD-A649EAC63645}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{478CE5D3-D38E-3FFE-8DBE-8C4A0F1C4D8D}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{48B7DA4E-69ED-39E3-BAD5-3E3EFF22CFB0}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{5982F405-44E4-3BBB-BAC4-CF8141CBBC5C}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{5D8C3CC3-3C05-38A1-B244-924A23115FE9}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{641593AF-D9FD-30F7-B783-36E16F7A2E08}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{711FC48A-1356-3932-94D8-A8B733DBC7E4}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{72227B7F-1F02-3560-95F5-592E68BACC0C}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{7B5E8CE3-4722-4C0E-A236-A6FF731BEF37}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{890D4F59-5ED0-3CB4-8E0E-74A5A86E7ED0}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{8C68913C-AC3C-4494-8B9C-984D87C85003}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{8D019513-083F-4AA5-933F-7D43A6DA82C4}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{923F6FB8-A390-370E-A0D2-DD505432481D}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{9BBB26EF-B178-35D6-9D3D-B485F4279FE5}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{9EDC0C90-2B5B-4512-953E-35767BAD5C67}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{A62DDBE0-8D2A-339A-B089-8CBCC5CD322A}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{A82AD04D-0B8E-3A49-947B-6A69A8A9C96D}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{ADEB3CC9-A05D-4FCC-BD09-9025456AA3EA}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{B06D4521-D09C-3F41-8E39-9D784CCA2A75}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{C06DAD42-6F39-4CE1-83CC-9A8B9105E556}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{C2E799D0-43A5-3477-8A98-FC5F3677F35C}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{D16107CD-2AD5-46A8-BA59-303B7C32C500}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{D25B101F-8188-3B43-9D85-201F372BC205}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{D2BA7595-5E44-3F1E-880F-03B3139FA5ED}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{D35F5C81-17D9-3E1C-A1FC-4472542E1D25}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{D8FA96CA-B250-312C-AF34-4FF1DD72589D}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{DAFC1E63-3359-416D-9BC2-E7DCA6F7B0F3}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{DC5E5C44-80FD-3697-9E65-9F286D92F3E7}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{DF84E609-C3A4-49CB-A160-61767DAF8899}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{E1B4C9DE-D741-385F-981E-6745FACE6F01}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{E7B623F5-9715-3F9F-A671-D1485A39F8A2}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{ED916A7B-7C68-3198-B87D-2DABC30A5587}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{EFA1BDB2-BB3D-3D9A-8EB5-D0D22E0F64F4}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{F4CBF4DD-F8FE-35BA-BB7E-68304DAAB70B}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{FC32005D-E27C-32E0-ADFA-152F598B75E7}
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6C97A91E-4524-4019-86AF-2AA2D567BF5C}
Value Deleted : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{6C97A91E-4524-4019-86AF-2AA2D567BF5C}]
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}
Key Deleted : HKCU\Software\Alexa Internet
Key Deleted : HKCU\Software\Tutorials
Key Deleted : HKCU\Software\TutoTag
Key Deleted : HKCU\Software\AppDataLow\{1146AC44-2F03-4431-B4FD-889BC837521F}
Key Deleted : HKCU\Software\AppDataLow\Software\adawaretb
Key Deleted : HKLM\Software\{1146AC44-2F03-4431-B4FD-889BC837521F}
Key Deleted : HKLM\Software\{3A7D3E19-1B79-4E4E-BD96-5467DA2C4EF0}
Key Deleted : HKLM\Software\adawaretb
Key Deleted : HKLM\Software\BetterSurf
Key Deleted : HKLM\Software\Desksvc
Key Deleted : HKLM\Software\hdcode
Key Deleted : HKLM\Software\Iminent
Key Deleted : HKLM\Software\InstallCore
Key Deleted : HKLM\Software\SearchProtect
Key Deleted : HKLM\Software\Toolbar Cleaner
Key Deleted : HKLM\Software\Tutorials
Key Deleted : HKLM\Software\V9
Key Deleted : HKLM\Software\winzipersvc
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\adawaretb
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\SearchTheWebARP
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Toolbar Cleaner
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\winzipper
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\tuto4pc_pt_24_is1
Key Deleted : [x64] HKLM\SOFTWARE\Tarma Installer
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{C4ED781C-7394-4906-AAFF-D6AB64FF7C38}

***** [ Browsers ] *****

-\\ Internet Explorer v10.0.9200.16537

Setting Restored : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Default_Page_URL]
Setting Restored : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Start Page]

-\\ Google Chrome v31.0.1650.57

[ File : C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\preferences ]

Deleted : urls_to_restore_on_startup

*************************

AdwCleaner[R0].txt - [19202 octets] - [04/12/2013 21:43:55]
AdwCleaner[S0].txt - [18715 octets] - [04/12/2013 21:53:52]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [18776 octets] ##########
The log in ckfiles is:
CKScanner 2.4 - Additional Security Risks - These are not necessarily bad
scanner sequence 3.MN.11.VCAPBZ
----- EOF -----

P.S. I runned the CKScanner but on the first time, while CKScanner was executing, appeared on the window "Program is not responding". I closed the program and I executed it again. So, this log was generated after the second run.

Thank you.

I've just installed and runned AdwCleaner and runned the scan options. The contentes of the AdwCleaner texto file is now:
# AdwCleaner v3.016 - Report created 25/12/2013 at 20:06:53
# Updated 23/12/2013 by Xplode
# Operating System : Windows 8 (64 bits)
# Username : Admin - USER
# Running from : C:\Users\Admin\Desktop\AdwCleaner.exe
# Option : Scan

***** [ Services ] *****


***** [ Files / Folders ] *****


***** [ Shortcuts ] *****


***** [ Registry ] *****

Key Found : [x64] HKLM\SOFTWARE\Speedchecker Limited

***** [ Browsers ] *****

-\\ Internet Explorer v10.0.9200.16537


-\\ Google Chrome v31.0.1650.63

[ File : C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\preferences ]


*************************

AdwCleaner[R0].txt - [19202 octets] - [04/12/2013 21:43:55]
AdwCleaner[R1].txt - [702 octets] - [25/12/2013 20:06:53]
AdwCleaner[S0].txt - [19089 octets] - [04/12/2013 21:53:52]

########## EOF - C:\AdwCleaner\AdwCleaner[R1].txt - [822 octets] ##########

After press the Clean buton the new text file "AdwCleaner[S1]" has the follow contentes:
# AdwCleaner v3.016 - Report created 25/12/2013 at 20:22:41
# Updated 23/12/2013 by Xplode
# Operating System : Windows 8 (64 bits)
# Username : Admin - USER
# Running from : C:\Users\Admin\Desktop\AdwCleaner.exe
# Option : Clean

***** [ Services ] *****


***** [ Files / Folders ] *****


***** [ Shortcuts ] *****


***** [ Registry ] *****

Key Deleted : [x64] HKLM\SOFTWARE\Speedchecker Limited

***** [ Browsers ] *****

-\\ Internet Explorer v10.0.9200.16537


-\\ Google Chrome v31.0.1650.63

[ File : C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\preferences ]


*************************

AdwCleaner[R0].txt - [19202 octets] - [04/12/2013 21:43:55]
AdwCleaner[R1].txt - [905 octets] - [25/12/2013 20:06:53]
AdwCleaner[S0].txt - [19089 octets] - [04/12/2013 21:53:52]
AdwCleaner[S1].txt - [825 octets] - [25/12/2013 20:22:41]

########## EOF - C:\AdwCleaner\AdwCleaner[S1].txt - [884 octets] ##########

Edited by jonatanoliveira, 25 December 2013 - 02:31 PM.

  • 0

#4
SleepyDude

SleepyDude

    Trusted Helper

  • Malware Removal
  • 4,974 posts
Hi Joana,

First I want to thank you for your availability.

You are welcome. Now that I have checked your logs it's time we start working in your computer problem but before that I have some important warning...


!!! P2P Warning !!!


I notice there are signs of some P2P (Peer-to-Peer) File Sharing Programs on your computer.

The P2P technology can be used for legit downloads but many people use them to download stuff like music, movies, software with cracks/keygens that is illegal and violate the intellectual property rights.
This kind of downloads it's proven to be a major source of problems because its very common they include Virus, Trojans and all kinds of malware that can damage your computer and should be avoided at all cost if you want to keep your system safe and you away from lawsuits.
If your P2P program is not configured correctly or the program have some security flaw, your computer may also be sharing more files than you realize! GeeksToGo does not recommend using such programs and I strongly advise you to remove them. The choice is yours but if you decide to keep this program(s) please do not use them until we finish the cleaning process.


Please uninstall the following Peer-to-Peer program(s): uTorrent.


Step 1 - Uninstall Programs

Please open Start > Control Panel > Uninstall a program or Programs and Features if in Classic View, locate these programs on the list and uninstall them:
  • flash-Enhancer
  • Internet Helper Anti-phishing
    Optional removals but recommended:
  • µTorrent
Note:If you can't uninstall any of the programs on the list don't worry we will remove it latter just move to the next item.


Step 2 - Run OTL Fix

!!! WARNING !!! The following fix is only relevant for this system and no other, running the script on another computer will not work and may cause problems...

  • Right click on the icon Posted Image and choose Run as Administrator to execute the tool. Make sure all other windows are closed.
    Do not change any other settings unless otherwise told to do so.
  • Under the Posted Image box at the bottom, paste in the following:
    :Commands
    [CreateRestorePoint]
    
    :OTL
    SRV:64bit: - [2013/12/19 08:07:26 | 005,089,128 | ---- | M] (Reimage®) [Auto | Running] -- C:\Program Files\Reimage\Reimage Repair\ReiGuard.exe -- (ReimageRealTimeProtection)
    SRV - [2013/05/17 11:01:06 | 000,008,192 | ---- | M] () [Auto | Stopped] -- C:\Windows\SysWOW64\srvany.exe -- (KMService)
    FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\[email protected]: C:\Program Files (x86)\AmiExt\flashEnhancer\ff [2013/11/03 17:38:39 | 000,000,000 | ---D | M]
    CHR - Extension: Metacrawler New Tab = C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\doobfiogmfmpjnoofjhhgjehmlofngfp\9.4.4_0\
    CHR - Extension: flash-Enhancer = C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\ehmnjgkmbpbohelngpclcdhgochdeoej\2.1_0\
    O2 - BHO: (flash-Enhancer) - {5A60B6BB-FA81-4EFA-AB9C-A820E2143736} - C:\Program Files (x86)\AmiExt\flashEnhancer\ie\AmiBho.dll ()
    O4 - HKCU..\Run: [AVG-Secure-Search-Update_0913b] C:\Users\Admin\AppData\Roaming\AVG 0913b Campaign\AVG-Secure-Search-Update-0913b.exe /PROMPT --mid 5a4de1c0d04b47d39dc2f54322e64eb9-ea21060da609248e0bbc63918779dda9036bc979 --CMPID 0913b File not found
    O4 - HKCU..\Run: [uTorrent] C:\Users\Admin\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc.)
    [2013/12/04 21:00:28 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Reimage Repair
    [2013/12/04 21:00:19 | 000,000,000 | ---D | C] -- C:\Program Files\Reimage
    [2013/12/04 21:00:15 | 000,000,000 | ---D | C] -- C:\rei
    [2013/12/04 21:15:58 | 000,000,162 | ---- | M] () -- C:\Windows\Reimage.ini
    [2013/11/24 02:31:49 | 000,356,766 | ---- | C] () -- C:\Users\Admin\AppData\Local\metacrawler-speeddial.crx
    [2013/05/17 11:01:22 | 000,008,192 | ---- | C] () -- C:\Windows\SysWow64\srvany.exe
    [2013/11/15 09:53:55 | 000,000,000 | ---D | M] -- C:\Users\Admin\AppData\Roaming\AVG2014
    [2013/12/23 23:00:05 | 000,000,000 | ---D | M] -- C:\Users\Admin\AppData\Roaming\uTorrent
    
    :Files
    netsh advfirewall reset /c
    netsh advfirewall set allprofiles state on /c
    C:\Program Files (x86)\AmiExt
    C:\Program Files\Reimage
    C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\doobfiogmfmpjnoofjhhgjehmlofngfp
    C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\ehmnjgkmbpbohelngpclcdhgochdeoej
    C:\Users\Admin\AppData\Roaming\AVG 0913b Campaign
    
    :Commands
    [EmptyTemp]
    
  • click the Posted Image button at the top. Let the program run uninterrupted.
  • click OK
Notes:
  • When OTL executes the Fix it can shutdown all running processes and you may lose the Desktop and icons, but they will return on reboot
  • OTL may ask to reboot the machine. Please accept right away.
  • The report should appear in Notepad after the reboot. Copy & Paste that report in your next reply and not as attachment.
  • The OTL fix log will be saved in the following location: C:\_OTL\MovedFiles\mmddyyyy_hhmmss.log - where mmddyyy _hhmmss is the date and time when the fix run.


Step 2 - RogueKiller Scan

  • Visit the RogueKiller download page by clicking here.
    (If you are using Internet Explorer 8 or better the Smartscreen Filter will need to be disabled. To learn how to do this in IE 8, 9 and 10 check this link)
  • Click the download button next to Build 64 bits (x64) and save the RogueKillerX64.exe file to the Desktop.
  • Close all the running programs, specially the Web browser.
  • Double click the RogueKiller icon to run the program.
    (On Windows Vista or higher right click the file and select Run as Administrator)
    Note: If this is the first time you have used the program you will need to accept the User Agreement.
  • Wait until Prescan has finished... This may take a few minutes, especially if it is the first time you have used the program.
    Posted Image
  • Click on Scan
  • Wait for the end of the scan. Do not delete anything at this time.
  • Click the Report button. Notepad will open with the log please Copy & Paste all the contents into your next reply.
    Note: The report has been created on the Desktop in a file named RKreport[x]_S_mmddyyyy_hhmmss.txt.


Things I would like to see in your next reply:
  • The OTL Fix log
  • The RogueKiller report RKreport[x]_S_mmddyyyy_hhmmss.txt

  • 0

#5
jonatanoliveira

jonatanoliveira

    Member

  • Topic Starter
  • Member
  • PipPip
  • 12 posts
Hi SleepyDude,
after executing the steps you told me to do, here are the reports you ask me.
OTL Fix log:
All processes killed
========== COMMANDS ==========
Restore point Set: OTL Restore Point
========== OTL ==========
Service ReimageRealTimeProtection stopped successfully!
Service ReimageRealTimeProtection deleted successfully!
C:\Program Files\Reimage\Reimage Repair\ReiGuard.exe moved successfully.
Service KMService stopped successfully!
Service KMService deleted successfully!
C:\Windows\SysWOW64\srvany.exe moved successfully.
Registry value HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\[email protected] deleted successfully.
File C:\Program Files (x86)\AmiExt\flashEnhancer\ff not found.
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\doobfiogmfmpjnoofjhhgjehmlofngfp\9.4.4_0\_locales\tr folder moved successfully.
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\doobfiogmfmpjnoofjhhgjehmlofngfp\9.4.4_0\_locales\ru folder moved successfully.
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\doobfiogmfmpjnoofjhhgjehmlofngfp\9.4.4_0\_locales\pt_BR folder moved successfully.
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\doobfiogmfmpjnoofjhhgjehmlofngfp\9.4.4_0\_locales\pl folder moved successfully.
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\doobfiogmfmpjnoofjhhgjehmlofngfp\9.4.4_0\_locales\nl folder moved successfully.
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\doobfiogmfmpjnoofjhhgjehmlofngfp\9.4.4_0\_locales\ja folder moved successfully.
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\doobfiogmfmpjnoofjhhgjehmlofngfp\9.4.4_0\_locales\it folder moved successfully.
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\doobfiogmfmpjnoofjhhgjehmlofngfp\9.4.4_0\_locales\he folder moved successfully.
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\doobfiogmfmpjnoofjhhgjehmlofngfp\9.4.4_0\_locales\fr folder moved successfully.
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\doobfiogmfmpjnoofjhhgjehmlofngfp\9.4.4_0\_locales\es folder moved successfully.
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\doobfiogmfmpjnoofjhhgjehmlofngfp\9.4.4_0\_locales\en folder moved successfully.
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\doobfiogmfmpjnoofjhhgjehmlofngfp\9.4.4_0\_locales\de folder moved successfully.
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\doobfiogmfmpjnoofjhhgjehmlofngfp\9.4.4_0\_locales\ar folder moved successfully.
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\doobfiogmfmpjnoofjhhgjehmlofngfp\9.4.4_0\_locales folder moved successfully.
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\doobfiogmfmpjnoofjhhgjehmlofngfp\9.4.4_0\skin\plugins\resources folder moved successfully.
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\doobfiogmfmpjnoofjhhgjehmlofngfp\9.4.4_0\skin\plugins\images\info folder moved successfully.
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\doobfiogmfmpjnoofjhhgjehmlofngfp\9.4.4_0\skin\plugins\images\favorites folder moved successfully.
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\doobfiogmfmpjnoofjhhgjehmlofngfp\9.4.4_0\skin\plugins\images\chrome folder moved successfully.
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\doobfiogmfmpjnoofjhhgjehmlofngfp\9.4.4_0\skin\plugins\images folder moved successfully.
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\doobfiogmfmpjnoofjhhgjehmlofngfp\9.4.4_0\skin\plugins\css folder moved successfully.
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\doobfiogmfmpjnoofjhhgjehmlofngfp\9.4.4_0\skin\plugins folder moved successfully.
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\doobfiogmfmpjnoofjhhgjehmlofngfp\9.4.4_0\skin\newtab\resources folder moved successfully.
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\doobfiogmfmpjnoofjhhgjehmlofngfp\9.4.4_0\skin\newtab\images\patterns folder moved successfully.
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\doobfiogmfmpjnoofjhhgjehmlofngfp\9.4.4_0\skin\newtab\images folder moved successfully.
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\doobfiogmfmpjnoofjhhgjehmlofngfp\9.4.4_0\skin\newtab\css folder moved successfully.
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\doobfiogmfmpjnoofjhhgjehmlofngfp\9.4.4_0\skin\newtab folder moved successfully.
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\doobfiogmfmpjnoofjhhgjehmlofngfp\9.4.4_0\skin\icons folder moved successfully.
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\doobfiogmfmpjnoofjhhgjehmlofngfp\9.4.4_0\skin\gallery folder moved successfully.
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\doobfiogmfmpjnoofjhhgjehmlofngfp\9.4.4_0\skin\external folder moved successfully.
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\doobfiogmfmpjnoofjhhgjehmlofngfp\9.4.4_0\skin folder moved successfully.
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\doobfiogmfmpjnoofjhhgjehmlofngfp\9.4.4_0\content\newtab folder moved successfully.
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\doobfiogmfmpjnoofjhhgjehmlofngfp\9.4.4_0\content\external folder moved successfully.
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\doobfiogmfmpjnoofjhhgjehmlofngfp\9.4.4_0\content\data folder moved successfully.
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\doobfiogmfmpjnoofjhhgjehmlofngfp\9.4.4_0\content\browser\misc folder moved successfully.
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\doobfiogmfmpjnoofjhhgjehmlofngfp\9.4.4_0\content\browser folder moved successfully.
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\doobfiogmfmpjnoofjhhgjehmlofngfp\9.4.4_0\content folder moved successfully.
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\doobfiogmfmpjnoofjhhgjehmlofngfp\9.4.4_0 folder moved successfully.
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\ehmnjgkmbpbohelngpclcdhgochdeoej\2.1_0\js\utils folder moved successfully.
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\ehmnjgkmbpbohelngpclcdhgochdeoej\2.1_0\js\core folder moved successfully.
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\ehmnjgkmbpbohelngpclcdhgochdeoej\2.1_0\js folder moved successfully.
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\ehmnjgkmbpbohelngpclcdhgochdeoej\2.1_0\images folder moved successfully.
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\ehmnjgkmbpbohelngpclcdhgochdeoej\2.1_0 folder moved successfully.
Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{5A60B6BB-FA81-4EFA-AB9C-A820E2143736}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{5A60B6BB-FA81-4EFA-AB9C-A820E2143736}\ not found.
File C:\Program Files (x86)\AmiExt\flashEnhancer\ie\AmiBho.dll not found.
Registry value HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\\AVG-Secure-Search-Update_0913b deleted successfully.
Registry value HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\\uTorrent not found.
File C:\Users\Admin\AppData\Roaming\uTorrent\uTorrent.exe not found.
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Reimage Repair folder moved successfully.
C:\Program Files\Reimage\Reimage Repair\Microsoft.VC90.CRT folder moved successfully.
C:\Program Files\Reimage\Reimage Repair folder moved successfully.
C:\Program Files\Reimage folder moved successfully.
C:\rei\Temp\20131204_2115\DownloaderTemp folder moved successfully.
C:\rei\Temp\20131204_2115 folder moved successfully.
C:\rei\Temp folder moved successfully.
C:\rei\Results\EXE1.6.4.8\RUN20131204_2115 folder moved successfully.
C:\rei\Results\EXE1.6.4.8 folder moved successfully.
C:\rei\Results\Agent folder moved successfully.
C:\rei\Results folder moved successfully.
C:\rei\AV\Microsoft.VC90.CRT folder moved successfully.
C:\rei\AV folder moved successfully.
C:\rei folder moved successfully.
C:\Windows\Reimage.ini moved successfully.
C:\Users\Admin\AppData\Local\metacrawler-speeddial.crx moved successfully.
File C:\Windows\SysWow64\srvany.exe not found.
C:\Users\Admin\AppData\Roaming\AVG2014\cfgall folder moved successfully.
C:\Users\Admin\AppData\Roaming\AVG2014 folder moved successfully.
C:\Users\Admin\AppData\Roaming\uTorrent folder moved successfully.
========== FILES ==========
< netsh advfirewall reset /c >
Ok.
C:\Users\Admin\Desktop\cmd.bat deleted successfully.
C:\Users\Admin\Desktop\cmd.txt deleted successfully.
< netsh advfirewall set allprofiles state on /c >
Ok.
C:\Users\Admin\Desktop\cmd.bat deleted successfully.
C:\Users\Admin\Desktop\cmd.txt deleted successfully.
C:\Program Files (x86)\AmiExt folder moved successfully.
File\Folder C:\Program Files\Reimage not found.
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\doobfiogmfmpjnoofjhhgjehmlofngfp folder moved successfully.
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\ehmnjgkmbpbohelngpclcdhgochdeoej folder moved successfully.
File\Folder C:\Users\Admin\AppData\Roaming\AVG 0913b Campaign not found.
========== COMMANDS ==========

[EMPTYTEMP]

User: Admin
->Temp folder emptied: 110818244 bytes
->Temporary Internet Files folder emptied: 398639082 bytes
->Java cache emptied: 234498 bytes
->Google Chrome cache emptied: 362663928 bytes
->Flash cache emptied: 2086 bytes

User: All Users

User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: MSSQL$SQLEXPRESS
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: MSSQLFDLauncher$SQLEXPRESS
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: Public

User: ReportServer$SQLEXPRESS
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32 (64bit) .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 106671989 bytes
%systemroot%\sysnative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files folder emptied: 64127836 bytes
RecycleBin emptied: 3845890843 bytes

Total Files Cleaned = 4 663,00 mb


OTL by OldTimer - Version 3.2.69.0 log created on 12302013_012919

Files\Folders moved on Reboot...
File\Folder C:\Users\Admin\AppData\Local\Temp\OICE_60AA0EBA-C4B6-495E-9FE6-13E74CE5D313.0\58C690B. not found!
C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\O38KPVZ1\335910-problems-with-ads-and-sites-that-open-automatically[1].htm moved successfully.
C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\AntiPhishing\7A7E08C8-3FF5-45F2-873D-A84D669DC82F.dat moved successfully.
C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\MSIMGSIZ.DAT moved successfully.
C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\counters.dat moved successfully.

PendingFileRenameOperations files...

Registry entries deleted on Reboot...


RogueKiller report RKreport[0]_S_12302013_020340:
RogueKiller V8.8.0 _x64_ [Dec 27 2013] by Tigzy
mail : tigzyRK<at>gmail<dot>com
Feedback : http://www.adlice.com/forum/
Website : http://www.adlice.co...es/roguekiller/
Blog : http://www.adlice.com

Operating System : Windows 8 (6.2.9200 ) 64 bits version
Started in : Normal mode
User : Admin [Admin rights]
Mode : Scan -- Date : 12/30/2013 02:03:40
| ARK || FAK || MBR |

¤¤¤ Bad processes : 2 ¤¤¤
[SUSP PATH] AsPatchTouchPanel64.exe -- C:\ProgramData\AsTouchPanel\AsPatchTouchPanel64.exe [7] -> KILLED [TermProc]
[SUSP PATH] GS.Enabler.exe -- c:\programdata\QuickSet\gs.enabler\GS.Enabler.exe [-] -> KILLED [TermProc]

¤¤¤ Registry Entries : 4 ¤¤¤
[HJ POL][PUM] HKLM\[...]\System : ConsentPromptBehaviorAdmin (0) -> FOUND
[HJ POL][PUM] HKLM\[...]\Wow6432Node\[...]\System : ConsentPromptBehaviorAdmin (0) -> FOUND
[HJ DESK][PUM] HKLM\[...]\NewStartPanel : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1) -> FOUND
[HJ DESK][PUM] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> FOUND

¤¤¤ Scheduled tasks : 2 ¤¤¤
[V1][ROGUE ST] GS.Enabler-S-4560858878.job : c:\programdata\quickset\gs.enabler\GS.Enabler.exe - /schedule /profile "c:\programdata\quickset\gs.enabler\4560858878.ini" [-][-] -> FOUND
[V2][SUSP PATH] ASUS Patch for Touch Panel : C:\ProgramData\AsTouchPanel\AsPatchTouchPanel64.exe [7] -> FOUND

¤¤¤ Startup Entries : 0 ¤¤¤

¤¤¤ Web browsers : 0 ¤¤¤

¤¤¤ Browser Addons : 0 ¤¤¤

¤¤¤ Particular Files / Folders: ¤¤¤

¤¤¤ Driver : [NOT LOADED 0x0] ¤¤¤

¤¤¤ External Hives: ¤¤¤

¤¤¤ Infection : ¤¤¤

¤¤¤ HOSTS File: ¤¤¤
--> %SystemRoot%\System32\drivers\etc\hosts




¤¤¤ MBR Check: ¤¤¤

+++++ PhysicalDrive0: (\\.\PHYSICALDRIVE0 @ IDE) Hitachi HTS545050A7E380 +++++
--- User ---
[MBR] 99ef70066650b01898e1b185e5e6c276
[BSP] 2cdf211e660d5305180eab02b5106d4e : Empty MBR Code
Partition table:
0 - [XXXXXX] UNKNOWN (0x00) [VISIBLE] Offset (sectors): 1 | Size: 2097152 Mo
User = LL1 ... OK!
User = LL2 ... OK!

+++++ PhysicalDrive1: (\\.\PHYSICALDRIVE1 @ USB) Flash Drive SK_USB20 USB Device +++++
--- User ---
[MBR] bdf547fe34f00525055973408c59db49
[BSP] ec038f3ca5091360f60d743d6f1c7fdb : MBR Code unknown
Partition table:
0 - [XXXXXX] FAT16 (0x06) [VISIBLE] Offset (sectors): 240 | Size: 973 Mo
User = LL1 ... OK!
Error reading LL2 MBR! ([0x32] O pedido năo é suportado. )

+++++ PhysicalDrive2: (\\.\PHYSICALDRIVE2 @ USB) USB DISK 2.0 USB Device +++++
--- User ---
[MBR] 99d48cd2dc43d0c103b84c68a934a9fa
[BSP] 33a07a59d299ab4ea9f4ab0156f9d86f : Windows XP MBR Code
Partition table:
0 - [XXXXXX] FAT32-LBA (0x0c) [VISIBLE] Offset (sectors): 8064 | Size: 15284 Mo
User = LL1 ... OK!
Error reading LL2 MBR! ([0x32] O pedido năo é suportado. )

Finished : << RKreport[0]_S_12302013_020340.txt >>



Thank you for the time and the consideration.

Best regards.
  • 0

#6
SleepyDude

SleepyDude

    Trusted Helper

  • Malware Removal
  • 4,974 posts
Hi,

We are making progress but there are some more work to do...

Step 1 - Run OTL Fix

!!! WARNING !!! The following fix is only relevant for this system and no other, running the script on another computer will not work and may cause problems...

  • Right click on the icon Posted Image and choose Run as Administrator to execute the tool. Make sure all other windows are closed.
    Do not change any other settings unless otherwise told to do so.
  • Under the Posted Image box at the bottom, paste in the following:
    :Commands
    [CreateRestorePoint]
    
    :Files
    c:\Windows\Tasks\GS.Enabler-S-4560858878.job
    c:\programdata\QuickSet
    
    :Commands
    [EmptyTemp]
    
  • click the Posted Image button at the top. Let the program run uninterrupted.
  • click OK
Notes:
  • When OTL executes the Fix it can shutdown all running processes and you may lose the Desktop and icons, but they will return on reboot
  • OTL may ask to reboot the machine. Please accept right away.
  • The report should appear in Notepad after the reboot. Copy & Paste that report in your next reply and not as attachment.
  • The OTL fix log will be saved in the following location: C:\_OTL\MovedFiles\mmddyyyy_hhmmss.log - where mmddyyy _hhmmss is the date and time when the fix run.

Step 2 - Scan with aswMBR

  • Download aswMBR from here or here and save the file to the Desktop.
  • Double click the aswMBR.exe file to run it.
    (On Windows Vista and above right click the icon and choose Run as Administrator, accept the security warning)
    Posted Image
  • If it asks you if you want to download the latest virus definitions, click Yes
  • Click the "Scan" button to start the scan
    Posted Image
  • On completion of the scan click Save log and save the file aswMBR.txt to your Desktop.
    WARNING: Don't click on the buttons FixMBR and Fix unless instructed to do so.
  • Open the log aswMBR.txt and post the full contents of the file in your next reply.



Things I would like to see in your next reply:
  • The OTL Fix log
  • The aswMBR.txt log
  • How's the computer now?

  • 0

#7
jonatanoliveira

jonatanoliveira

    Member

  • Topic Starter
  • Member
  • PipPip
  • 12 posts
I SleepyDude,

I made what you asked me to do. The OTLLog file contentes is:
12312013_125844:
All processes killed
========== COMMANDS ==========
Restore point Set: OTL Restore Point
========== FILES ==========
c:\Windows\Tasks\GS.Enabler-S-4560858878.job moved successfully.
c:\programdata\QuickSet\Setup folder moved successfully.
c:\programdata\QuickSet\GS.Enabler\4560858878 folder moved successfully.
c:\programdata\QuickSet\GS.Enabler folder moved successfully.
c:\programdata\QuickSet folder moved successfully.
========== COMMANDS ==========

[EMPTYTEMP]

User: Admin
->Temp folder emptied: 1901856 bytes
->Temporary Internet Files folder emptied: 31593437 bytes
->Java cache emptied: 0 bytes
->Google Chrome cache emptied: 0 bytes
->Flash cache emptied: 602 bytes

User: All Users

User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: MSSQL$SQLEXPRESS
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: MSSQLFDLauncher$SQLEXPRESS
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: Public

User: ReportServer$SQLEXPRESS
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32 (64bit) .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 103496 bytes
%systemroot%\sysnative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files folder emptied: 2064 bytes
RecycleBin emptied: 0 bytes

Total Files Cleaned = 32,00 mb


OTL by OldTimer - Version 3.2.69.0 log created on 12312013_125844

Files\Folders moved on Reboot...
File\Folder C:\Users\Admin\AppData\Local\Temp\OICE_60AA0EBA-C4B6-495E-9FE6-13E74CE5D313.0\58C690B. not found!
C:\Users\Admin\AppData\Local\Temp\Low\JavaDeployReg.log moved successfully.
C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\RZFMQYRA\335910-problems-with-ads-and-sites-that-open-automatically[1].htm moved successfully.
C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\RZFMQYRA\redot[1].js moved successfully.
C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\RZFMQYRA\redot[2].js moved successfully.
C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\RZFMQYRA\rexdot[1].js moved successfully.
C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\RZFMQYRA\rexdot[2].js moved successfully.
C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\RZFMQYRA\var=ccauds[1].js moved successfully.
C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\M9362XXV\rexdot[1].js moved successfully.
C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\M9362XXV\yClJuv2bauS[1].js moved successfully.
C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\9V2PXRC6\fpdata[1].js moved successfully.
C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\9V2PXRC6\redot[1].js moved successfully.
C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\9V2PXRC6\redot[2].js moved successfully.
C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\9V2PXRC6\rexdot[1].js moved successfully.
C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\3LFT65BQ\facebook_com[1].htm moved successfully.
C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\3LFT65BQ\prompt[3].js moved successfully.
C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\3LFT65BQ\var=ccauds[1].js moved successfully.
C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\MSIMGSIZ.DAT moved successfully.
C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\counters.dat moved successfully.

PendingFileRenameOperations files...

Registry entries deleted on Reboot...


The contentes of aswMBR log file is:
aswMBR version 0.9.9.1771 Copyright© 2011 AVAST Software
Run date: 2013-12-31 13:23:03
-----------------------------
13:23:03.465 OS Version: Windows x64 6.2.9200
13:23:03.465 Number of processors: 4 586 0x3A09
13:23:03.465 ComputerName: USER UserName:
13:23:03.481 Initialze error 1
13:23:42.174 The log file has been saved successfully to "C:\Users\Admin\Desktop\aswMBR.txt"


aswMBR version 0.9.9.1771 Copyright© 2011 AVAST Software
Run date: 2013-12-31 13:25:07
-----------------------------
13:25:07.882 OS Version: Windows x64 6.2.9200
13:25:07.898 Number of processors: 4 586 0x3A09
13:25:07.898 ComputerName: USER UserName:
13:25:07.898 Initialze error 1
13:25:21.040 The log file has been saved successfully to "C:\Users\Admin\Desktop\aswMBR.txt"

The Computer its much better. I dont have those anoying ads anymore.... thanks
Happy new year.

P.S. I had some problems in running aswMBR.exe. I clicked scan and after a while appeared a message box saying there were some problems in running the software. but I saved the Log anyway :). Is it normal?
  • 0

#8
SleepyDude

SleepyDude

    Trusted Helper

  • Malware Removal
  • 4,974 posts
Hi Jonatan,

I SleepyDude,

I made what you asked me to do.

Thank You.

The Computer its much better. I dont have those anoying ads anymore.... thanks
Happy new year.

Good. I wish you and to your family a Excellent 2014. (Nós Portugueses bem precisamos... :))

P.S. I had some problems in running aswMBR.exe. I clicked scan and after a while appeared a message box saying there were some problems in running the software. but I saved the Log anyway :). Is it normal?

It's not normal let's try with a different tool...


Step 1 - TDSSKiller

Please download the latest version of TDSSKiller from here and save it to your Desktop.
  • Doubleclick on TDSSKiller.exe to run the application
    (Accept the UAC prompt to allow changes to the computer).
  • Click Accept on the windows End User License Agreement and KSN Statement, then on the following window click on Change parameters
    Posted Image
  • Put a checkmark beside loaded modules.
    Posted Image
  • A reboot will be needed to apply the changes. Do it.
  • TDSSKiller will launch automatically after the reboot. Also your computer may seem very slow and unusable. This is normal. Give it enough time to load your background programs.
  • Then click again on Change parameters in TDSSKiller.
  • Check all boxes then click OK.
    Posted Image
  • Click the Start Scan button.
    Posted Image
  • The scan should take no longer than 2 minutes.
  • If a suspicious object is detected, the default action will be Skip, click on Continue.
    Posted Image
  • If malicious objects are found, they will show in the Scan results - Select action for found objects and offer three options.
    Ensure Cure (default) is selected, then click Continue > Reboot now to finish the cleaning process.
    Posted Image
    Note: If Cure is not available, please choose Skip instead, do not choose Delete unless instructed.
  • A report will be created in your root directory, (usually C:\ folder) in the form of "TDSSKiller.[Version]_[Date]_[Time]_log.txt". Please copy and paste the contents of that file on your next post.


Things I would like to see in your next reply:
  • The TDSSKiller log

  • 0

#9
jonatanoliveira

jonatanoliveira

    Member

  • Topic Starter
  • Member
  • PipPip
  • 12 posts
Hi SleepyDude,
So, I've being helpede by a portuguese? Nice :)....2014 its goona be good for us, I'm sure. At leats I have hope :)

So, I did whta you asked me to do. No threats were found....
The contentes of the report is TDSSKiller.3.0.0.19_01.01.2014_18.03.23_log:
18:03:23.0675 0x1344 TDSS rootkit removing tool 3.0.0.19 Nov 18 2013 09:27:50
18:03:23.0675 0x1344 UEFI system
18:03:23.0878 0x1344 ============================================================
18:03:23.0894 0x1344 Current date / time: 2014/01/01 18:03:23.0878
18:03:23.0894 0x1344 SystemInfo:
18:03:23.0894 0x1344
18:03:23.0894 0x1344 OS Version: 6.2.9200 ServicePack: 0.0
18:03:23.0894 0x1344 Product type: Workstation
18:03:23.0894 0x1344 ComputerName: USER
18:03:23.0894 0x1344 UserName: Admin
18:03:23.0894 0x1344 Windows directory: C:\Windows
18:03:23.0894 0x1344 System windows directory: C:\Windows
18:03:23.0894 0x1344 Running under WOW64
18:03:23.0894 0x1344 Processor architecture: Intel x64
18:03:23.0894 0x1344 Number of processors: 4
18:03:23.0894 0x1344 Page size: 0x1000
18:03:23.0894 0x1344 Boot type: Normal boot
18:03:23.0894 0x1344 ============================================================
18:03:23.0894 0x1344 BG loaded
18:03:24.0222 0x1344 System UUID: {63A69B4B-9D61-6548-0A08-7FB7E017D6BB}
18:03:25.0706 0x1344 Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
18:03:25.0722 0x1344 ============================================================
18:03:25.0722 0x1344 \Device\Harddisk0\DR0:
18:03:25.0738 0x1344 GPT partitions:
18:03:25.0738 0x1344 \Device\Harddisk0\DR0\Partition1: GPT, TypeGUID: {C12A7328-F81F-11D2-BA4B-00A0C93EC93B}, UniqueGUID: {82764F10-62A6-41AC-9574-432708513E65}, Name: EFI system partition, StartLBA 0x800, BlocksNum 0x96000
18:03:25.0738 0x1344 \Device\Harddisk0\DR0\Partition2: GPT, TypeGUID: {DE94BBA4-06D1-4D40-A16A-BFD50179D6AC}, UniqueGUID: {5E1A5F51-9775-4C8C-BD52-A6E1FE146868}, Name: Basic data partition, StartLBA 0x96800, BlocksNum 0x1C2000
18:03:25.0738 0x1344 \Device\Harddisk0\DR0\Partition3: GPT, TypeGUID: {E3C9E316-0B5C-4DB8-817D-F92DF00215AE}, UniqueGUID: {9DCCE596-AF0E-40CF-812B-B6448338579A}, Name: Microsoft reserved partition, StartLBA 0x258800, BlocksNum 0x40000
18:03:25.0738 0x1344 \Device\Harddisk0\DR0\Partition4: GPT, TypeGUID: {EBD0A0A2-B9E5-4433-87C0-68B6B72699C7}, UniqueGUID: {F6CFDDFE-62A3-44CF-ADC6-538558FD3CF6}, Name: Basic data partition, StartLBA 0x298800, BlocksNum 0x1749C000
18:03:25.0738 0x1344 \Device\Harddisk0\DR0\Partition5: GPT, TypeGUID: {EBD0A0A2-B9E5-4433-87C0-68B6B72699C7}, UniqueGUID: {24A9317B-4312-4850-A1D3-235FD5403A81}, Name: Basic data partition, StartLBA 0x17734800, BlocksNum 0x2044C800
18:03:25.0738 0x1344 \Device\Harddisk0\DR0\Partition6: GPT, TypeGUID: {DE94BBA4-06D1-4D40-A16A-BFD50179D6AC}, UniqueGUID: {0EF34F70-B5EA-4D5C-94C5-5AB59C76FF20}, Name: Basic data partition, StartLBA 0x37B81000, BlocksNum 0x2805000
18:03:25.0738 0x1344 MBR partitions:
18:03:25.0738 0x1344 ============================================================
18:03:25.0769 0x1344 C: <-> \Device\Harddisk0\DR0\Partition4
18:03:25.0847 0x1344 D: <-> \Device\Harddisk0\DR0\Partition5
18:03:25.0847 0x1344 ============================================================
18:03:25.0847 0x1344 Initialize success
18:03:25.0847 0x1344 ============================================================
18:03:59.0039 0x0c48 ============================================================
18:03:59.0039 0x0c48 Scan started
18:03:59.0039 0x0c48 Mode: Manual; SigCheck; TDLFS;
18:03:59.0039 0x0c48 ============================================================
18:03:59.0039 0x0c48 KSN ping started
18:04:01.0415 0x0c48 KSN ping finished: true
18:04:01.0868 0x0c48 ================ Scan system memory ========================
18:04:01.0868 0x0c48 System memory - ok
18:04:01.0868 0x0c48 ================ Scan services =============================
18:04:03.0071 0x0c48 [ E890C46E4754F0DF51BAFCC8D2E07498, E620D03030F3B65442E0A5CB8B59016A6E8DB3BCA52741977B8897B34438E902 ] 1394ohci C:\Windows\System32\drivers\1394ohci.sys
18:04:03.0259 0x0c48 1394ohci - ok
18:04:03.0353 0x0c48 [ 4F18D4C7EA14F11A7211F60D553C03DB, 09AB6D2D8E9B7B6D6A97708551C0E4B34538947A15EA2A69C11764D7BC0BB7F6 ] 3ware C:\Windows\system32\drivers\3ware.sys
18:04:03.0416 0x0c48 3ware - ok
18:04:03.0509 0x0c48 [ 975AABEB243B800C23626D6B652C5A9C, FB02336F26AF10BA2A0D1B97C33CB1D78BB90CA51EF008A613A0274779798FAD ] ACPI C:\Windows\system32\drivers\ACPI.sys
18:04:03.0603 0x0c48 ACPI - ok
18:04:03.0650 0x0c48 [ DC968C37822117E576B933F34A2D130C, 4C94E00ADC242296D7CBBFC7346D5F9AE5FE1B0C616ECA3BDE10A7B34FD2040B ] acpiex C:\Windows\system32\Drivers\acpiex.sys
18:04:03.0713 0x0c48 acpiex - ok
18:04:03.0728 0x0c48 [ 0CA9F7C3A78227C21A0A7854E245CFB2, D54147C9C1EE2F0098B863B0852E027DB89D6FA67F6B7FD54F609D9715A11442 ] acpipagr C:\Windows\System32\drivers\acpipagr.sys
18:04:03.0853 0x0c48 acpipagr - ok
18:04:03.0884 0x0c48 [ 8EB8DA03B142D3DD1EB9ED8107A76C43, 24B9B24F9A5BDF3AAD13C4EE0638497D9CA4A100096C6EAE403E0215EA89C439 ] AcpiPmi C:\Windows\System32\drivers\acpipmi.sys
18:04:03.0963 0x0c48 AcpiPmi - ok
18:04:03.0978 0x0c48 [ CBCE725C5D86ABA7D2604E22951AA9B8, DE0440F0E943F057EBCD01DB4B1E12DBC241FBF03C42021306D322AB88FF8F21 ] acpitime C:\Windows\System32\drivers\acpitime.sys
18:04:04.0041 0x0c48 acpitime - ok
18:04:04.0197 0x0c48 [ ADDA5E1951B90D3D23C56D3CF0622ADC, E85E7BFD29F00ED34BF5BE8BD4DA93CBB14278E16809BB55406875F0DA88551E ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
18:04:04.0259 0x0c48 AdobeARMservice - ok
18:04:04.0384 0x0c48 [ 93C6388592B99925C1D1576E465BC80F, 4C48BE5471DA4788357D71E90DFEA20FE320C7AAE1F4C55AFBE2E46FEA5CF8FB ] adp94xx C:\Windows\system32\drivers\adp94xx.sys
18:04:04.0463 0x0c48 adp94xx - ok
18:04:04.0525 0x0c48 [ D27763E0247292654E7F7D16444C7C72, 0314C713D31E2B34F215B52F804F014D876E6ED92DC656CC3E27920CCD36CF0E ] adpahci C:\Windows\system32\drivers\adpahci.sys
18:04:04.0713 0x0c48 adpahci - ok
18:04:04.0775 0x0c48 [ 67B90070FF48F794AF19F9FCF0080D75, 5D0D352606D58D2CA0814F38EF7B1774C030BE44353DF5910CBFAAF4FDE64ED6 ] adpu320 C:\Windows\system32\drivers\adpu320.sys
18:04:04.0822 0x0c48 adpu320 - ok
18:04:04.0885 0x0c48 [ 974AE60BF5B90E31412D93596C968E5B, 092B59C2B67C4618E7B1800615D1DF7199482F60D0D27BD91763F7F8D7FC883F ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
18:04:04.0978 0x0c48 AeLookupSvc - ok
18:04:05.0072 0x0c48 [ 7C0E0EDF18D6CC565D7BFBB451709FA5, 47C21CD9D87B5C1B5EB14F6166B5E3349B1A6F10501E63CCED8D52A9FE22765D ] AFD C:\Windows\system32\drivers\afd.sys
18:04:05.0197 0x0c48 AFD - ok
18:04:05.0353 0x0c48 [ 98022774D9930ECBB292E70DB7601DF6, BE64A40B9BE997D73C0FC14D97E204C9D886EDA07EC4C9391A70CE477084E5F1 ] AgereSoftModem C:\Windows\system32\DRIVERS\agrsm64.sys
18:04:05.0556 0x0c48 AgereSoftModem - ok
18:04:05.0588 0x0c48 [ 01590377A5AB19E792528C628A2A68F9, F3A4B6CA4E8D4436E44E36D7F7EEF3DC861D1EE50D41F4273226C4ED95674B84 ] agp440 C:\Windows\system32\drivers\agp440.sys
18:04:05.0619 0x0c48 agp440 - ok
18:04:05.0650 0x0c48 [ 16F6F6B7903B913AB41AB848C8BB5658, 7304257048CB42E5274B3F6400F4A053A38E3B70A157662FE9D2B7C5979DE851 ] AiCharger C:\Windows\system32\DRIVERS\AiCharger.sys
18:04:05.0713 0x0c48 AiCharger - ok
18:04:05.0744 0x0c48 [ D1BE8E6E5B3AF23A4393AF1BF867977A, B3AE97D35A9304198715D76F6C3F0545AA176FDEBA6C2055782558B11DFA14EB ] ALG C:\Windows\System32\alg.exe
18:04:05.0869 0x0c48 ALG - ok
18:04:05.0931 0x0c48 [ 025E8C755BE293E50854D26D1BBE5133, 4373639689306A3D8FE0F862072711BAD5DBAA45E105CD3129586439A90EE070 ] AllUserInstallAgent C:\Windows\system32\AUInstallAgent.dll
18:04:06.0025 0x0c48 AllUserInstallAgent - ok
18:04:06.0056 0x0c48 [ 5A81054B824004B1ECC04F0034A1CDF9, 73A1986A4B346C425157216EBF16CC90EFFC642EDF6109E6364CF0552E3388FD ] AmdK8 C:\Windows\System32\drivers\amdk8.sys
18:04:06.0228 0x0c48 AmdK8 - ok
18:04:06.0260 0x0c48 [ B849D453E644FAB9BC8EF6DC8CA9C4C6, B803CDA478D3385937C44CBB05A0E65ABACEFEBA682975787C44E2904FB89D2D ] AmdPPM C:\Windows\System32\drivers\amdppm.sys
18:04:06.0353 0x0c48 AmdPPM - ok
18:04:06.0400 0x0c48 [ 35A0EB5AECB0FA3C41A2FB514A562304, 737783ABF348288471AC7051D4DC6CB336D686C94EC7B8938DCA74AFE9BECB1C ] amdsata C:\Windows\system32\drivers\amdsata.sys
18:04:06.0447 0x0c48 amdsata - ok
18:04:06.0478 0x0c48 [ 00452671904F5EE94B50BF0219C97164, 99F9B86D3DB3E10B014120A63CD43CBAAB22C8E38851090ABE37D89ABD61F7B6 ] amdsbs C:\Windows\system32\drivers\amdsbs.sys
18:04:06.0541 0x0c48 amdsbs - ok
18:04:06.0541 0x0c48 [ EA3FFE53E92E59C87E3ECA9BEB20D9B7, DC0B8B798720F5F75F8AFD3383CF69194282AEEE84DCACB97382F4C86E1D3E49 ] amdxata C:\Windows\system32\drivers\amdxata.sys
18:04:06.0588 0x0c48 amdxata - ok
18:04:06.0619 0x0c48 [ 7D676814DE129391D423F3D97F590414, F72ECCC2D80F6E2144B88D232E74DD17C7E9FEBB476A289759C7FF041C6E47B3 ] AmUStor C:\Windows\system32\drivers\AmUStor.SYS
18:04:06.0728 0x0c48 AmUStor - ok
18:04:06.0775 0x0c48 [ 83B3682CE922FB0F415734B26D9D6233, 9102E8B410BB1AE426770896B6AB584D1F02830337FBB2DEC182F3F19832F35F ] AppID C:\Windows\system32\drivers\appid.sys
18:04:06.0869 0x0c48 AppID - ok
18:04:06.0900 0x0c48 [ CE2BEAD7F31816FF0AC490D048C969F9, 7D24C5A9E8F7C21CC6D8BF2CA29A8B79DDE7EEDE2F37D36B9071ECE1CF61371F ] AppIDSvc C:\Windows\System32\appidsvc.dll
18:04:06.0963 0x0c48 AppIDSvc - ok
18:04:07.0010 0x0c48 [ 4F750B7EFCB6520AE01E01D082D7D476, AD2A67D727A1D4DD0BBACC6B4BB432FA9A14D50D8BA292B95A4747CEC9F85728 ] Appinfo C:\Windows\System32\appinfo.dll
18:04:07.0088 0x0c48 Appinfo - ok
18:04:07.0182 0x0c48 [ 30E3850F303EAE5C364782EA78579CC9, 8C94E5A9052F6E794685194EEACB31A174A947D60246908B6A0DEFA081A747A3 ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
18:04:07.0322 0x0c48 Apple Mobile Device - ok
18:04:07.0353 0x0c48 [ E933401B392387F4BE34DE8BAF1722A7, 57CC6DE31E2C82D2B12509F0A5EC9EC70DD2EF6A1F31A66ADF62DC6AE0A67323 ] arc C:\Windows\system32\drivers\arc.sys
18:04:07.0400 0x0c48 arc - ok
18:04:07.0447 0x0c48 [ 07CA323EF2E8247A568AB0F3662AD644, 1224B41193F0E9B164732BA5BF707A13427C82C1D8C3EDC2AAE5C5C75454B9F6 ] arcsas C:\Windows\system32\drivers\arcsas.sys
18:04:07.0494 0x0c48 arcsas - ok
18:04:07.0744 0x0c48 [ 9A262EDD17F8473B91B333D6B031A901, 05DFBD3A7D83FDE1D062EA719ACA9EC48CB7FD42D17DDD88B82E5D25469ADD23 ] aspnet_state C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
18:04:07.0822 0x0c48 aspnet_state - ok
18:04:07.0900 0x0c48 [ 6A122B4F0E5293CACFA8A5F2CBA9B356, 9D69076B697BEE8742E32EBEF1802D829DEA6B1D93AF485D11CC89A08CA4D809 ] ASUS InstantOn C:\Program Files (x86)\ASUS\ASUS InstantOn\InsOnSrv.exe
18:04:08.0025 0x0c48 ASUS InstantOn - ok
18:04:08.0057 0x0c48 [ 74DBAEC35366C4EE7670428808715A6A, 3B3A7A81CD8038C4750560B94A9247C4409410780B312BA71EDF2E393DCA7474 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
18:04:08.0103 0x0c48 AsyncMac - ok
18:04:08.0119 0x0c48 [ A721FF570C2387E383BDDEA9632863C9, 45DD7787F44A2C742560FEB03AB66910C2F0002D95BB02C55EEDE973AA92AD24 ] atapi C:\Windows\system32\drivers\atapi.sys
18:04:08.0150 0x0c48 atapi - ok
18:04:08.0197 0x0c48 [ 62A40F3DFF2B40915A1981285B14EFD4, 02F19978D153E816A6A879F6D0D67B2AB89F5964B86953F11B82D9970C3ED963 ] AthBTPort C:\Windows\system32\DRIVERS\btath_flt.sys
18:04:08.0275 0x0c48 AthBTPort - ok
18:04:08.0338 0x0c48 [ A917E4F753B90A5181ECBFA56D5C154A, 4025FC65AB44AE5FDF6D144F16873C1E165D9EB7C4BF0570C996F2D7C8B71A1E ] AtherosSvc C:\Program Files (x86)\Bluetooth Suite\adminservice.exe
18:04:08.0369 0x0c48 AtherosSvc - ok
18:04:08.0932 0x0c48 [ 667153FCB54CD80626A5AC5A2F49F068, B1FEE1D4A7B45C4DCC3A012E8837ADD6059E6E716862BDED3BBEB8282FA02CA8 ] athr C:\Windows\system32\DRIVERS\athw8x.sys
18:04:09.0322 0x0c48 athr - ok
18:04:09.0369 0x0c48 [ 3903D1056E778BAEFA310B9B6EA6053E, 863977B4166A04557E154C41AC3B194A9F5C56C6090E8DE47C0D9D0E8CBD648E ] ATP C:\Windows\System32\drivers\AsusTP.sys
18:04:09.0400 0x0c48 ATP - ok
18:04:09.0432 0x0c48 [ BCD7A47EF587DC00DD61D12D9C2D1E44, 95BC9AC8BA8A86DB5C7A6317002BD9872F193B401A0C58DF252DCF3D4A7541E2 ] AudioEndpointBuilder C:\Windows\System32\AudioEndpointBuilder.dll
18:04:09.0541 0x0c48 AudioEndpointBuilder - ok
18:04:09.0697 0x0c48 [ 599B3F685A263A114FFAF3BE29C49C75, 579E9561BA8537888E061E303F3F89E2E6F8B8DED74369C3767DB10B35CD45E8 ] Audiosrv C:\Windows\System32\Audiosrv.dll
18:04:09.0791 0x0c48 Audiosrv - ok
18:04:09.0838 0x0c48 [ 89491EF71D5EA011127832C588002853, 05620E4235956D8446FB9604F930738C8AA97E3A74C907E37F7CC08B8EDA0461 ] AxInstSV C:\Windows\System32\AxInstSV.dll
18:04:09.0916 0x0c48 AxInstSV - ok
18:04:10.0010 0x0c48 [ 87AB5BB072A3F128541D5B815F82FFDD, 186AF33D3DE90638C3E165CAC3DA17295E8A80CDB523F9BE4AF7D38CA6954905 ] b06bdrv C:\Windows\system32\drivers\bxvbda.sys
18:04:10.0088 0x0c48 b06bdrv - ok
18:04:10.0119 0x0c48 [ 81703BC5D68DEDBB086C2368FBE7B334, CFD4A55C8045C482F8D410514F3211AEFA00097AB395F5A04BFE983ED6254F6B ] BasicDisplay C:\Windows\System32\drivers\BasicDisplay.sys
18:04:10.0197 0x0c48 BasicDisplay - ok
18:04:10.0213 0x0c48 [ 5EC68164E14D25675C98BBB5F09E8606, 1D7EDB21C87039FC5F39F46460AD852BC4EC6B179B1C205D189DD3C397343435 ] BasicRender C:\Windows\System32\drivers\BasicRender.sys
18:04:10.0260 0x0c48 BasicRender - ok
18:04:10.0322 0x0c48 [ 89143A7BA7850F5C7E61B43BB44B6418, 00BB781DF87D4FF1BAFD318AFE237296B4F5925023BA4486405EC0A384C88D8F ] BDESVC C:\Windows\System32\bdesvc.dll
18:04:10.0400 0x0c48 BDESVC - ok
18:04:10.0525 0x0c48 [ 8F966B0778C248ACC4D22DB88364455E, EAC1780FCA264EFA36FEDAFEF676594D11BDD0C00998C5EBB86F2F21012E71B7 ] BdfNdisf C:\Program Files\Lavasoft\Ad-Aware Antivirus\Firewall Engine\1.6.0.0\Drivers\bdfndisf6.sys
18:04:10.0572 0x0c48 BdfNdisf - ok
18:04:10.0604 0x0c48 [ EC80614A72BC7039D2B22E3DD6C15895, 932260AB126523428B884034162E3619E1B7FA13720F830783B592AAE825AC86 ] bdfwfpf C:\Program Files\Lavasoft\Ad-Aware Antivirus\Firewall Engine\1.6.0.0\Drivers\bdfwfpf.sys
18:04:10.0666 0x0c48 bdfwfpf - ok
18:04:10.0697 0x0c48 [ 9E7AEA59776D904607985AFFE7E5E183, C3DB745A9F4DA7CB9628A7913DD52B2444B14FEB9D588FF6558CF52CEB8955EB ] Beep C:\Windows\system32\drivers\Beep.sys
18:04:10.0775 0x0c48 Beep - ok
18:04:10.0900 0x0c48 [ 53AA55632B94622F2DC3695E86EF9363, 9B5BB8EDA48A37AE97BCD42D83B25A6D10AA6231EABE745DCCE6D60E19094A6F ] BFE C:\Windows\System32\bfe.dll
18:04:11.0041 0x0c48 BFE - ok
18:04:11.0135 0x0c48 [ D598C44A7072D3108D8D8102EC5E07F7, D7472E9BAAB7B6E1D30F4E153412E2A16EE5C08DE2BF8BFF4D65089825226FE0 ] BITS C:\Windows\System32\qmgr.dll
18:04:11.0369 0x0c48 BITS - ok
18:04:11.0447 0x0c48 [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD, 17BFFC5DF609CE3B2F0CAB4BD6C118608C66A3AD86116A47E90B2BB7D8954122 ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
18:04:11.0510 0x0c48 Bonjour Service - ok
18:04:11.0541 0x0c48 [ B17AC10B47C7FCB44D22A1F06415840E, 990D6F629D93F4F913D218ACE5187A26DCB762BAFB2BB279CCE8CAF2755D85A5 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
18:04:11.0619 0x0c48 bowser - ok
18:04:11.0666 0x0c48 [ 038FA1B55531E7020DB705B42FCCE373, 023E87E3204D64890D6FEA78E762E5BC5BD0A59325EBC264834727779EEEDBC5 ] BrokerInfrastructure C:\Windows\System32\bisrv.dll
18:04:11.0760 0x0c48 BrokerInfrastructure - ok
18:04:11.0807 0x0c48 [ 310068BDA80B1D55C36580FD8A873FAF, A75412FF1F483461F526E9A359DCEECA5E683441514464D5ED82D1A9740D583E ] Browser C:\Windows\System32\browser.dll
18:04:11.0885 0x0c48 Browser - ok
18:04:11.0947 0x0c48 [ 6BF12F3F3A5D3F2866E69B8B463BC0CD, E6D3358ABCF16ED2E68A93171C5E84D797137898BB2231E26FF0E4A07B8ADB22 ] BTATH_A2DP C:\Windows\system32\drivers\btath_a2dp.sys
18:04:11.0994 0x0c48 BTATH_A2DP - ok
18:04:12.0026 0x0c48 [ DC7038090A369FE866B76DB18E356558, 6782DBDDA352FBF8C2F5F6A90591794B569F2897AA5BD901AF062E774E734E48 ] btath_avdt C:\Windows\system32\drivers\btath_avdt.sys
18:04:12.0072 0x0c48 btath_avdt - ok
18:04:12.0088 0x0c48 [ C6978F7EBA6F37D626482AC6B9390630, B4BF939AB9962A61DE9518604C20347DC2A6FCDCEB3D8AEF295AF12E6F2CDCF3 ] BTATH_BUS C:\Windows\System32\drivers\btath_bus.sys
18:04:12.0119 0x0c48 BTATH_BUS - ok
18:04:12.0182 0x0c48 [ 4AF7C20F94DAC343C01ED671C82DCB99, 2AABD85D9D76461DE883E0F13F61C391BA81E6198FF88268B319474E25A196C8 ] BTATH_HCRP C:\Windows\System32\drivers\btath_hcrp.sys
18:04:12.0244 0x0c48 BTATH_HCRP - ok
18:04:12.0260 0x0c48 [ 785C38070043BEEE9E9D591DE4067244, 1C8D15B8A9E80A2799E7094C4AE111FEA9FBC6EAA4A61B13EFE59314C9794949 ] BTATH_LWFLT C:\Windows\system32\DRIVERS\btath_lwflt.sys
18:04:12.0291 0x0c48 BTATH_LWFLT - ok
18:04:12.0338 0x0c48 [ A6019537D6125099363F90D0C6D181F9, CA0C46AABBF71E2A29C93A477A06D33E3CACC84978DD9D729BEFB339E50D7055 ] BTATH_RCP C:\Windows\System32\drivers\btath_rcp.sys
18:04:12.0385 0x0c48 BTATH_RCP - ok
18:04:12.0463 0x0c48 [ 7A38787D2CF43FA2812E2BF86F636BB9, 1A22D38B8CA091E8E8D794FC316DE52E949102EB779A38A1FAE2F72DD3DD5945 ] BtFilter C:\Windows\system32\DRIVERS\btfilter.sys
18:04:12.0557 0x0c48 BtFilter - ok
18:04:12.0635 0x0c48 [ 6695200F455E251F0BCC9CE4D0978D59, 4DB2F967E449581A9330EF43E794B45B93581564B20C5B991FC1EC665A640D69 ] BthAvrcpTg C:\Windows\System32\drivers\BthAvrcpTg.sys
18:04:12.0713 0x0c48 BthAvrcpTg - ok
18:04:12.0760 0x0c48 [ A8B20D852B07AE19A13B5D47EC4E4C3B, 86571C9E2BA15BB169CAB2D24C4D0598154C02FD173638CAFC685A7F6B09472D ] BthEnum C:\Windows\System32\drivers\BthEnum.sys
18:04:12.0838 0x0c48 BthEnum - ok
18:04:12.0869 0x0c48 [ 616EB8748C988AEE98D93DA141C3D3B4, 15A055B0496BDB29CBCF6EEBF112D4BA1C7A2FF39124728830D0FD1FD7A404CB ] BthHFEnum C:\Windows\System32\drivers\bthhfenum.sys
18:04:13.0010 0x0c48 BthHFEnum - ok
18:04:13.0041 0x0c48 [ DCB4EBD928A6FB368BE6CAE522412DE1, 9E1345F29467054689B9F48B5CCB567760D36610A4EA9AF41B829EAD60347269 ] bthhfhid C:\Windows\System32\drivers\BthHFHid.sys
18:04:13.0151 0x0c48 bthhfhid - ok
18:04:13.0197 0x0c48 [ 42201C346F0B8C458E1E9CDE04D68A2C, 6168FD0D10CD06B00B5C79D5D2B5C353AAC22FD99CE8D417DDBA33ED63CFB8BF ] BthLEEnum C:\Windows\system32\DRIVERS\BthLEEnum.sys
18:04:13.0307 0x0c48 BthLEEnum - ok
18:04:13.0369 0x0c48 [ EB4CBCB3288233CD964716D0A5E1CFC5, 0CE67B2D7855117B924ACC3A2979CE12F8DE45227B37AF95F9ABCC7406AD1EC3 ] BTHMODEM C:\Windows\System32\drivers\bthmodem.sys
18:04:13.0479 0x0c48 BTHMODEM - ok
18:04:13.0510 0x0c48 [ 091BB978E9504D0AD14586929431A957, ACED02B879026A228E35F40847C210BC30A5AFC948FFE922DB21663E4A8DFF1D ] BthPan C:\Windows\system32\DRIVERS\bthpan.sys
18:04:13.0604 0x0c48 BthPan - ok
18:04:13.0776 0x0c48 [ 13795CAA34239D97A7211E7F9D96E012, C4F3402B063A7CFCE386D1AE9255975A199164BA9E7DCDB6129725213A0642B1 ] BTHPORT C:\Windows\System32\Drivers\BTHport.sys
18:04:13.0932 0x0c48 BTHPORT - ok
18:04:13.0979 0x0c48 [ A4387C3D271959313E2577DB7BE8BA7A, C71474802102102EBE04DF036EEB2F5FB3380BE288E3842F19F234EFAE977D70 ] bthserv C:\Windows\system32\bthserv.dll
18:04:14.0057 0x0c48 bthserv - ok
18:04:14.0073 0x0c48 [ 1F715957F5236D30B6020A19A4271F6A, C06B637C2C6919E2DE1055AE249AE3EAF7B4890799F22BF5757CC10CEF145043 ] BTHUSB C:\Windows\System32\Drivers\BTHUSB.sys
18:04:14.0135 0x0c48 BTHUSB - ok
18:04:14.0166 0x0c48 [ 990B1BABE6E81FB18E65A87EBEFB1772, 1820D4AC57E1D4B7FB5AA89C277B16910ED73712878D2B43FE542CE16DFE16C3 ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
18:04:14.0245 0x0c48 cdfs - ok
18:04:14.0308 0x0c48 [ 339BFF85D788268752DA8C9644B188EE, C2279F1A39AED39865A5027D2FD087F8E82F3ED8C94BA4D922855B98E792AFC5 ] cdrom C:\Windows\System32\drivers\cdrom.sys
18:04:14.0402 0x0c48 cdrom - ok
18:04:14.0433 0x0c48 [ BAF8F0F55BC300E5F882E521F054E345, FB228DB18F2FA55D8BA35A7E6778EE5D2EB0C29D384F1A0A868F90AE706188D7 ] CertPropSvc C:\Windows\System32\certprop.dll
18:04:14.0511 0x0c48 CertPropSvc - ok
18:04:14.0542 0x0c48 [ F64B7D1A37CC1D5F421D5359EEC81E2E, 2B4879DD32B2C20B94847755E22B1BCBE2B567B3989C57A9BA2DD783307EFFDB ] circlass C:\Windows\System32\drivers\circlass.sys
18:04:14.0620 0x0c48 circlass - ok
18:04:14.0699 0x0c48 [ 9905168708DB68849B879B5548F68AB3, B7A495E57B9398704988DC472126CBC5B8D76761A34F51732FBF6CC88E3AB79A ] CLFS C:\Windows\system32\drivers\CLFS.sys
18:04:14.0777 0x0c48 CLFS - ok
18:04:14.0839 0x0c48 [ 2DC8538A2260647484A6C921CA837313, 094059DD66B0C50A1CAE288F920107B0B6AD1AA5758284E35B92C131EDEA30EA ] CmBatt C:\Windows\System32\drivers\CmBatt.sys
18:04:14.0917 0x0c48 CmBatt - ok
18:04:14.0995 0x0c48 [ E708BFF0473EC6B271EA46B65B16CA56, 2B4C661F7C5A4395CA4204122A1C3C8AA766B56C3D01CD8BAAFA18F71FC7B591 ] CNG C:\Windows\system32\Drivers\cng.sys
18:04:15.0074 0x0c48 CNG - ok
18:04:15.0152 0x0c48 [ 0E5B1E9E7122EDAAF1F6CE047965CA92, 803E585B92D1E2E5B6BF67BE511E88DC2629A12407C3E30F7AEFB544D390A9B8 ] CompositeBus C:\Windows\System32\drivers\CompositeBus.sys
18:04:15.0230 0x0c48 CompositeBus - ok
18:04:15.0245 0x0c48 COMSysApp - ok
18:04:15.0277 0x0c48 [ D9CB0782AF819548072AA45B70F8B22D, 04796F39ABB88759A534DE3D0C51F684BF2A8DE1F4028B657CCFDBDD39A6618C ] condrv C:\Windows\system32\drivers\condrv.sys
18:04:15.0355 0x0c48 condrv - ok
18:04:16.0089 0x0c48 [ 7324EC715932A12B09715B50891396F7, 5994FE5942232272F9AA8D52D0889BFE0160A5E80B0E61B1EAB3A7606B122161 ] cphs C:\Windows\SysWow64\IntelCpHeciSvc.exe
18:04:16.0292 0x0c48 cphs - ok
18:04:17.0355 0x0c48 [ 5CE2742F063731EC10C1B2EE386A2C08, 309919BDDD4649AFB95A99DCF8AFC3BAE10F9BC1E2819C0794CFD0F80682C223 ] CryptSvc C:\Windows\system32\cryptsvc.dll
18:04:17.0433 0x0c48 CryptSvc - ok
18:04:17.0683 0x0c48 [ FAEF4C245BE832DB41B15DAAC336AFB7, 1F8C98AB0DF4327FCB01FE0356025488E19B48A45FFFA50576B49A8587FAC42B ] dam C:\Windows\system32\drivers\dam.sys
18:04:17.0730 0x0c48 dam - ok
18:04:17.0902 0x0c48 [ 1EC6E533C954BDDF2A37E7851A7E58FD, C25936A7465B6A2B3D05D2FCB09D91ACC07CFE038A5E968C99CFA9D9F2967DD4 ] DcomLaunch C:\Windows\system32\rpcss.dll
18:04:18.0058 0x0c48 DcomLaunch - ok
18:04:18.0105 0x0c48 [ C8650D1F61149AA546BDBC99172EBBC1, D9592ED1B6F23B6EC76A0B93635B6E38702311B0A6982F0F9DEC37FCDAF1288B ] defragsvc C:\Windows\System32\defragsvc.dll
18:04:18.0246 0x0c48 defragsvc - ok
18:04:18.0324 0x0c48 [ 5EAEF67AE2AF4D2DC664B649DB7B2E16, ADAC7FD6AC12B50F4998C5EB0BD770DD4B80A94C4CC1B9376AD77648E48D012D ] DeviceAssociationService C:\Windows\system32\das.dll
18:04:18.0402 0x0c48 DeviceAssociationService - ok
18:04:18.0449 0x0c48 [ 799BE46D45D486704CE0F37CA5385262, BB78DEE83B9DB613B1C083D55FAA458BE3E394AED80EB91B599185A7272F33B3 ] DeviceInstall C:\Windows\system32\umpnpmgr.dll
18:04:18.0543 0x0c48 DeviceInstall - ok
18:04:18.0574 0x0c48 [ 09D9EB9E7898F8E6561473A20CC808B9, 0F511593D36084843E5138AF6D55FE08D77803968AE12A236A02368DB364347E ] Dfsc C:\Windows\system32\Drivers\dfsc.sys
18:04:18.0636 0x0c48 Dfsc - ok
18:04:18.0714 0x0c48 [ 9E0E72222264745ADEB0E5AC680B0ED6, 576AFC8741695396A3B8E9DBDD3703E9D70370437D09D162262E47A140D101B4 ] Dhcp C:\Windows\system32\dhcpcore.dll
18:04:18.0824 0x0c48 Dhcp - ok
18:04:18.0855 0x0c48 [ 3C736FAE17BA6F91BA37594AAB139CD0, 34304A194105B19E7ADD80108DC85C3B7AA9E942C84A7EF93C475CE1D9AE4615 ] discache C:\Windows\system32\drivers\discache.sys
18:04:18.0918 0x0c48 discache - ok
18:04:18.0949 0x0c48 [ 560495FF4CA22E1D9B1972FA18F43B6F, 41FFDD4C1097AA857A8177E34F101A1A9C1429A4E8DEC3D395C6135A9E112CD6 ] disk C:\Windows\system32\drivers\disk.sys
18:04:19.0011 0x0c48 disk - ok
18:04:19.0027 0x0c48 [ 82A7C72593793FE1EADA7A305BD1567A, 75F432E4C75AE9EFF553BD860B3B250853BDDA85C17DBD9B7242D74593506A86 ] dmvsc C:\Windows\System32\drivers\dmvsc.sys
18:04:19.0105 0x0c48 dmvsc - ok
18:04:19.0152 0x0c48 [ 066B9710B36AB550E01EEFCA52155968, DCA9F3F4856A6866D3F5A2EEE34E96A83F40198DB0B5AC6381A7568DE1F56FAB ] Dnscache C:\Windows\System32\dnsrslvr.dll
18:04:19.0246 0x0c48 Dnscache - ok
18:04:19.0277 0x0c48 [ 9949AD2ABA168A618D46C799D6CC898C, DFAC86A0AEE83C9EFE1BEE9EC15C8CAF1D619D55AF3ACC3986057A5AC985D06A ] dot3svc C:\Windows\System32\dot3svc.dll
18:04:19.0371 0x0c48 dot3svc - ok
18:04:19.0418 0x0c48 [ 109FC3F80BF4F4DC5A071058074F13C1, F30736F45BA1811D59E9CB1C172D8D1EA9F5A7D36DCFFBFC9E7E02448C1CF851 ] DPS C:\Windows\system32\dps.dll
18:04:19.0496 0x0c48 DPS - ok
18:04:19.0558 0x0c48 [ 1272A390DB777599821C5F1C0E451EED, CB0C6A31032EC4C898125636C92B09A18F3C11C08C463DA9D89411FCCDF7E654 ] DptfDevDram C:\Windows\system32\DRIVERS\DptfDevDram.sys
18:04:19.0589 0x0c48 DptfDevDram - ok
18:04:19.0621 0x0c48 [ D59A1C5D7CCCC499F3307AC880BE1EF9, A8D67AF35264C32CDD55F8A5B78E7B3B45CDB727297853345748585BCCCB18E0 ] DptfDevFan C:\Windows\system32\DRIVERS\DptfDevFan.sys
18:04:19.0652 0x0c48 DptfDevFan - ok
18:04:19.0668 0x0c48 [ BF3636040404B45CB96FB6D646FE2FC0, C8FF9E387246C6D785E25C7A5D93DEFAF48144E8865EA1C5243E9BB378669223 ] DptfDevGen C:\Windows\system32\DRIVERS\DptfDevGen.sys
18:04:19.0699 0x0c48 DptfDevGen - ok
18:04:19.0714 0x0c48 [ ADCA14E28462BDD22E15729D2A114123, 824910645214C968080E7E213DDDD420F0DB1781272203F68173958B74E95CFA ] DptfDevPch C:\Windows\system32\DRIVERS\DptfDevPch.sys
18:04:19.0746 0x0c48 DptfDevPch - ok
18:04:19.0793 0x0c48 [ DC9BC4E80E1588C6B3DAEE31DC2A7372, CA54C3F9ECEFD739383FEDAD1097399E13CAFB834F09ECB46539C28F05250DFD ] DptfDevProc C:\Windows\system32\DRIVERS\DptfDevProc.sys
18:04:19.0839 0x0c48 DptfDevProc - ok
18:04:19.0886 0x0c48 [ 4F62A81D2145F952F6CA2847BA4ACA1F, 9EDEA75A49917E64CB03DBEE214D88DF674AF5303460FFD5FCC81AA57A352C1F ] DptfManager C:\Windows\system32\DRIVERS\DptfManager.sys
18:04:19.0949 0x0c48 DptfManager - ok
18:04:19.0980 0x0c48 [ 4FFD99381C2E71B99637E04ECD9E12A5, 3538ED04104CB09671A8D2D28C5A015156F2B1BD25981919CB0615E53851BC93 ] DptfParticipantProcessorService C:\Windows\system32\DptfParticipantProcessorService.exe
18:04:20.0011 0x0c48 DptfParticipantProcessorService - ok
18:04:20.0043 0x0c48 [ 58FBC21C694DDC9F24000E87BDDEB4AD, 4C1CA6D1A8D2C01F244DEBB35890B0E0F25F7A8057E4FDA7296E2B50580C2EE3 ] DptfPolicyConfigTDPService C:\Windows\system32\DptfPolicyConfigTDPService.exe
18:04:20.0058 0x0c48 DptfPolicyConfigTDPService - ok
18:04:20.0089 0x0c48 [ FD1B28D2D5763BF4ED607002B78E5D85, 7CA9BDBCA6ACECA2C3C0F1B9696A1DCDD7CA35996D3C7505FD26EC3A8F68296A ] DptfPolicyLpmService C:\Windows\system32\DptfPolicyLpmService.exe
18:04:20.0121 0x0c48 DptfPolicyLpmService - ok
18:04:20.0152 0x0c48 [ 9C7C183F937951AE17C5B8B3259CF3FF, 8ED607139F15D08B4835ACF864421BA4C08C88FE90B9AAF707F5D8514D7731B1 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
18:04:20.0293 0x0c48 drmkaud - ok
18:04:20.0339 0x0c48 [ F87F4AAAF6664906248D11D5E579A53B, F283932F68ED93891EEF00C18724359AB7057E922A3CDC8BC6F33F84D2B0BEE5 ] DsmSvc C:\Windows\System32\DeviceSetupManager.dll
18:04:20.0433 0x0c48 DsmSvc - ok
18:04:20.0574 0x0c48 [ E6AF4DF1817953D73C519B17CF849756, 26A90EB368A3F572086F223ABED87B8FC6F998AE401C9E52BEB5EE76AB052702 ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
18:04:20.0746 0x0c48 DXGKrnl - ok
18:04:20.0855 0x0c48 [ 651FBD69A9713D623D456A240F96179C, 22A1F306B454EF9C84D25EF266F3ED0E1D896B1F5BE60170E79F37F2DBCA59F4 ] e1iexpress C:\Windows\system32\DRIVERS\e1i63x64.sys
18:04:20.0949 0x0c48 e1iexpress - ok
18:04:20.0996 0x0c48 [ 58BA473DD88F5FC1932282BA683AA03E, B8A4407D3006D91BE88F9C5389AC1CACC73BEBF6F66433A1E5EB8E58E8836C12 ] Eaphost C:\Windows\System32\eapsvc.dll
18:04:21.0058 0x0c48 Eaphost - ok
18:04:21.0293 0x0c48 [ 5AB97B3282D7D6114949D1EB5C8598E4, FB9449CC1CDC12C12AA0469BB6ACC770CB011250EDFD86E9600E754610608EFD ] ebdrv C:\Windows\system32\drivers\evbda.sys
18:04:21.0636 0x0c48 ebdrv - ok
18:04:21.0730 0x0c48 [ F702AB6181513303AB0FC8D59E52708B, D46939B9F672269E65C98606A573C849C4AF5A26E4E75D3A8FE56A65B3A6EA08 ] EFS C:\Windows\System32\lsass.exe
18:04:21.0808 0x0c48 EFS - ok
18:04:21.0840 0x0c48 [ 66D60BD9A4C05616ABECA2A901475098, 8111550DB03FFD72F1822F47B16F075DA92874B64F19342D7CF60B0EE648AFEF ] EhStorClass C:\Windows\system32\drivers\EhStorClass.sys
18:04:21.0886 0x0c48 EhStorClass - ok
18:04:21.0933 0x0c48 [ A61D0F543024E458C0FE32352E1978E2, BDE6BC140300EAF790F16466C28897CE0BD7D94DCED13FDE20AA4AACA0F6A4FD ] EhStorTcgDrv C:\Windows\system32\drivers\EhStorTcgDrv.sys
18:04:21.0980 0x0c48 EhStorTcgDrv - ok
18:04:21.0996 0x0c48 [ D790D058D67582DB9C84C2D33695FE6B, A5763D7F6D191EA4B290B3E92D842AC36FD46DF598472E70B46E45D8CCD2F912 ] ErrDev C:\Windows\System32\drivers\errdev.sys
18:04:22.0043 0x0c48 ErrDev - ok
18:04:22.0121 0x0c48 [ F9E01C2D9F8BC049E04CF5DC24A5F638, CB6CCB59C77D4A59DDA846608AABEF1DFEC24C8422712AB8D59E27C13D731D2E ] EventSystem C:\Windows\system32\es.dll
18:04:22.0215 0x0c48 EventSystem - ok
18:04:22.0246 0x0c48 [ 7A4D6FEB8C52B3FE855E4DCDF9107E03, 6B0146A4C9AD32DCDC2DEE8E8C5A29F687665458486449E0D37B151ED63B8ADC ] exfat C:\Windows\system32\drivers\exfat.sys
18:04:22.0324 0x0c48 exfat - ok
18:04:22.0371 0x0c48 [ 60996602A7111FD2D086E803F33E4282, E62A91C90F8542990BEA4E6A5D9DD3D070F4EB23B4C13414C5DA2B0219509749 ] fastfat C:\Windows\system32\drivers\fastfat.sys
18:04:22.0433 0x0c48 fastfat - ok
18:04:22.0590 0x0c48 [ F0E7F8382ED5E138B0DFA4CB5058BCFE, 6247C7B75F975F5AB080FFB9881EF58A6F360219F7AF2DE871F38E80CAF3B62C ] Fax C:\Windows\system32\fxssvc.exe
18:04:22.0699 0x0c48 Fax - ok
18:04:22.0730 0x0c48 [ 73B2D11DF0B6E03A0CB0323218ACB3E4, BA9256919BAA2E0760F6A658B557FDC389ACE8F9820D1A41FD995FC5613F5AA6 ] fdc C:\Windows\System32\drivers\fdc.sys
18:04:22.0793 0x0c48 fdc - ok
18:04:22.0824 0x0c48 [ 0828E3E7BD77C89149EAD3232BFD38DB, A6A296647A4EDBFF59124E3A9C0AB48759AA1738615ACFA5A454FF6BD3C31BA2 ] fdPHost C:\Windows\system32\fdPHost.dll
18:04:22.0902 0x0c48 fdPHost - ok
18:04:22.0918 0x0c48 [ 872506AAB591E8908DF4461475AF92DF, 772F2D08CB95775E438822B9EA005CBA92ED4071ADAB2C0101156A7D037D4704 ] FDResPub C:\Windows\system32\fdrespub.dll
18:04:22.0996 0x0c48 FDResPub - ok
18:04:23.0027 0x0c48 [ 0588950D93A426F97C7AAADB1A9B0458, ABCB3619BD58CAC438FC032495AE45A7B6FFDD4BD33C1B3D1BC7F9F13FCB727A ] fhsvc C:\Windows\system32\fhsvc.dll
18:04:23.0105 0x0c48 fhsvc - ok
18:04:23.0137 0x0c48 [ 88A9EBACD1058ABB237A6B4E96E7F397, 263D25D33B679EB01D97763701347C31B2F72E28CE2C7EC8013EA77756D98BE1 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
18:04:23.0183 0x0c48 FileInfo - ok
18:04:23.0215 0x0c48 [ 9E4EE3A0B00FF7D5F42A4AF9744CBA02, 1D7BFB00D74A28AC13ECBA1E0036D50EE79266AC02CEDB2632466BF9DD46F211 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
18:04:23.0293 0x0c48 Filetrace - ok
18:04:23.0355 0x0c48 [ B1D4C168FF7B8579E3745888658FFB1D, 1A5C13E902A0C788A8B995ADD2FBC3303005911C0AA3F3F4497D3016AA0EF583 ] flpydisk C:\Windows\System32\drivers\flpydisk.sys
18:04:23.0402 0x0c48 flpydisk - ok
18:04:23.0433 0x0c48 [ B33EC133AE4E6C1881D2302D93D2467D, 77E3A16257EA3698B3FCD947D004144E8D1EEE48EF5C82DF49B1B9B2B3C61DB2 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
18:04:23.0512 0x0c48 FltMgr - ok
18:04:23.0762 0x0c48 [ 0BCDC0FF11B984162B0CF0FF6E9E0146, D44A3CECBA36B7A64854E244FA6B5E65047896BF9983D20B431410FBBA36697A ] FontCache C:\Windows\system32\FntCache.dll
18:04:23.0887 0x0c48 FontCache - ok
18:04:24.0043 0x0c48 [ 0B56259F5611787222A04A8F254E51D4, F77AEC0ACBFAF9154E32223B84B613229DACCD953AEBC3E96C27570F9AB10FD0 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
18:04:24.0090 0x0c48 FontCache3.0.0.0 - ok
18:04:24.0152 0x0c48 [ A5F7873A39E4E9FAAAE59B7E9E36B705, 32036109F5A50E9F3BEF97C5B28AE8179B3A5E22517868A83CADE4671FF90DEC ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
18:04:24.0199 0x0c48 FsDepends - ok
18:04:24.0215 0x0c48 [ A6DD7D491F587F4BC13FB972977DC8E8, B86F97F17F6F443EC16DEF67CCA4EF78AFE56078D2877838A982FECB19557C87 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
18:04:24.0277 0x0c48 Fs_Rec - ok
18:04:24.0512 0x0c48 [ 895BA1CFF25E867CE5A52073E905C93B, A417065E831B768BD76364EC1E5FEDAADF172DCD1E6C2A134CB311EDDC2DC477 ] fussvc C:\Program Files (x86)\Windows Kits\8.0\App Certification Kit\fussvc.exe
18:04:24.0574 0x0c48 fussvc - detected UnsignedFile.Multi.Generic ( 1 )
18:04:27.0027 0x0c48 Detect skipped due to KSN trusted
18:04:27.0027 0x0c48 fussvc - ok
18:04:27.0121 0x0c48 [ C1646A95EAC515F60CDB2A7A8A013C1E, F559B83C02B17265EDE95DD497C1A94E402F07EC251FC47449F789907AFFED14 ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
18:04:27.0199 0x0c48 fvevol - ok
18:04:27.0246 0x0c48 [ A969D92973DFA895E7776B4BFE36DBB2, 7528E6983ECC59291A7A386E4E459B19D1593ABDDFFD276E2F01B0EA21693E20 ] FxPPM C:\Windows\System32\drivers\fxppm.sys
18:04:27.0387 0x0c48 FxPPM - ok
18:04:27.0418 0x0c48 [ 52BC441E07A827EBAB70CDC7EAEDB28D, 8DECBD8E12EA52039742599CFBBF0D3B6610B57EF8D9DAEEEA33D202A478D286 ] gagp30kx C:\Windows\system32\drivers\gagp30kx.sys
18:04:27.0465 0x0c48 gagp30kx - ok
18:04:27.0496 0x0c48 [ 8E98D21EE06192492A5671A6144D092F, B8F656B34D361EA5AFB47F3A67AB2221580DADA59C8CD0CB83181E4AD8B562B4 ] GEARAspiWDM C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
18:04:27.0543 0x0c48 GEARAspiWDM - ok
18:04:27.0574 0x0c48 [ 721F8EEF5E9747F32670DEFF7FB92541, E0A8EF70753E260C2C7D93D316B5EF9589DB086FDF829BDA2958C6A09CE471A6 ] gencounter C:\Windows\System32\drivers\vmgencounter.sys
18:04:27.0699 0x0c48 gencounter - ok
18:04:27.0746 0x0c48 [ FC2B8B06BDBD3B6457F5A3DA9AD2410E, 4BF196E1CAC94E9265EBEB68F41C3E29F0C709ECFF9420B5B1C9C82680D5D6A8 ] GPIOClx0101 C:\Windows\system32\Drivers\msgpioclx.sys
18:04:27.0809 0x0c48 GPIOClx0101 - ok
18:04:28.0027 0x0c48 [ 5358678C6370F2ADC5291849F6503262, 841633D7A936C3889690C67E189BAD4C6B294C196FFFE5B564FCECDFE46A9E52 ] gpsvc C:\Windows\System32\gpsvc.dll
18:04:28.0184 0x0c48 gpsvc - ok
18:04:28.0263 0x0c48 [ 506708142BC63DABA64F2D3AD1DCD5BF, 9C36A08D9E7932FF4DA7B5F24E6B42C92F28685B8ABE964C870E8D7670FD531A ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
18:04:28.0310 0x0c48 gupdate - ok
18:04:28.0357 0x0c48 [ 506708142BC63DABA64F2D3AD1DCD5BF, 9C36A08D9E7932FF4DA7B5F24E6B42C92F28685B8ABE964C870E8D7670FD531A ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
18:04:28.0403 0x0c48 gupdatem - ok
18:04:28.0622 0x0c48 [ 07177B5A8C277074C30AC515FEBD4F37, A18B7A4491732D97884D0F95428563DE6EBCBB988C5595DA2C710DFDE733B096 ] gzflt C:\Program Files\Lavasoft\Ad-Aware Antivirus\Antimalware Engine\2.6.0.0\gzflt.sys
18:04:28.0653 0x0c48 gzflt - ok
18:04:28.0716 0x0c48 [ 630555943E5A3FE21010CE91EC7FC84F, 20D7247A4363EE9E851501D89A466564ADCAEC304DE42280E4E09AD8499436A9 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
18:04:28.0794 0x0c48 HdAudAddService - ok
18:04:28.0841 0x0c48 [ 7D87B5B6C7188D553E11B59DC7F0B111, FC633DB71E1D72E8AD8F89BBB54324CC6ED17F5594EF55DD0BDB58EE1F601FF5 ] HDAudBus C:\Windows\System32\drivers\HDAudBus.sys
18:04:28.0919 0x0c48 HDAudBus - ok
18:04:28.0935 0x0c48 [ 3F76BBA53D65E85A7F53E7A71082082C, D1E18815BB19CD11007C4A66162C76F55D4FE6B09B34ED45969C7ECC29D394AD ] HidBatt C:\Windows\System32\drivers\HidBatt.sys
18:04:28.0982 0x0c48 HidBatt - ok
18:04:29.0013 0x0c48 [ 085F150D002B7F0153D3C06DDF33A143, 41847FD02608ECFE3A6B4B38CBDE8416B0EF17491868511FD704B0BCC280338E ] HidBth C:\Windows\System32\drivers\hidbth.sys
18:04:29.0107 0x0c48 HidBth - ok
18:04:29.0122 0x0c48 [ CC4A07E51D89575CAB6F4EB590D87CD4, DFB4EAF0923EF9FF6C42EDD1EA5E4025F243C9BE2D03D5423FE8A897DC01D657 ] hidi2c C:\Windows\System32\drivers\hidi2c.sys
18:04:29.0247 0x0c48 hidi2c - ok
18:04:29.0294 0x0c48 [ DC96F7DACB777CDEAEF9958A50BFDA06, 7CE79F32D5EE65C0178CFF56523825D3EE01095B2CE8C67634A6604A821A9086 ] HidIr C:\Windows\System32\drivers\hidir.sys
18:04:29.0372 0x0c48 HidIr - ok
18:04:29.0419 0x0c48 [ FAC37D7B3D6354A5A5E19A45B50B4008, 2962B552A1DA545DFDEF0886582E82596FE8A3A19AAF989B025AFDA84D16D4EC ] hidserv C:\Windows\system32\hidserv.dll
18:04:29.0482 0x0c48 hidserv - ok
18:04:29.0513 0x0c48 [ A9F2301B8D28BB4D887F5AEBB55ACB3A, 886B04224CA0A90B4FD0B9F8D243EED4FBA367D078FB1CAF99EE671FE1FCEC27 ] HIDSwitch C:\Windows\System32\drivers\AsHIDSwitch64.sys
18:04:29.0544 0x0c48 HIDSwitch - ok
18:04:29.0575 0x0c48 [ 012C354B4AB48E9A7A657DF39E3A2073, B15D0089CE509FF1CF73DFE095425C1C99FC3971622DCAAD9CAEB989A12A4FDB ] HidUsb C:\Windows\System32\drivers\hidusb.sys
18:04:29.0638 0x0c48 HidUsb - ok
18:04:29.0669 0x0c48 [ 43F884B61A24377567CD0FEB35236334, B3BA36B527C8D6D83DE2FBCD8D503B87FD2611BF15B07A7BC138DC8BAE6A50C1 ] hkmsvc C:\Windows\system32\kmsvc.dll
18:04:29.0747 0x0c48 hkmsvc - ok
18:04:29.0825 0x0c48 [ 33DFC14DFDCCFA7AA10E392F6A8EC1CF, E6967F3F465C6E903221BC0FCBAE7D05FD18C0BF110D929335F5935364B3C1BC ] HomeGroupListener C:\Windows\system32\ListSvc.dll
18:04:29.0904 0x0c48 HomeGroupListener - ok
18:04:30.0013 0x0c48 [ E0D9F6FE18FA7F53ADD29AF719CE2B7E, B965DCC72625188F3B896CB447B7696F22687266EAFC5AA270E2AD53DD9F324D ] HomeGroupProvider C:\Windows\system32\provsvc.dll
18:04:30.0107 0x0c48 HomeGroupProvider - ok
18:04:30.0154 0x0c48 [ 64DB7A8D97CA53DCCF93D0A1E08342CF, 02CAB7F28D3830C482683425C60044239C6F1562556688A274CA2C237C846E76 ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
18:04:30.0200 0x0c48 HpSAMD - ok
18:04:30.0325 0x0c48 [ F4A91D985EB9D1D2717D538F3424603C, 454AD2FF3A7963B9835AEF300F6672F92D0CCF59593BA2CCC83F0EC1446BB659 ] HTTP C:\Windows\system32\drivers\HTTP.sys
18:04:30.0435 0x0c48 HTTP - ok
18:04:30.0482 0x0c48 [ 2A98301068801700906C06649860FE94, 664394A52326289DCA0828B0041A105653F4FEF3E3DCCC3787AAE0F6FDC73A14 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
18:04:30.0529 0x0c48 hwpolicy - ok
18:04:30.0575 0x0c48 [ DC76901D82097C9E297F20C287CB9A27, 01A412D0D8A65050BE4250A7C4B9F98A4C43FD891827761E0C830369A5F9F09C ] hyperkbd C:\Windows\System32\drivers\hyperkbd.sys
18:04:30.0622 0x0c48 hyperkbd - ok
18:04:30.0638 0x0c48 [ 716413AB3CA12DE0A7222D28C1C9352C, B82B586BD9DBD70DDA19A02504E8CB00DA53677703AB848B53387601C5BAD3D3 ] HyperVideo C:\Windows\system32\DRIVERS\HyperVideo.sys
18:04:30.0669 0x0c48 HyperVideo - ok
18:04:30.0700 0x0c48 [ C9E9CBF73AFFBFE3E801EFB516787BA3, 1A850D614BDA6AA4195CC657702BC6242BA51B90131717743182AA160F65E72C ] i8042prt C:\Windows\System32\drivers\i8042prt.sys
18:04:30.0763 0x0c48 i8042prt - ok
18:04:30.0857 0x0c48 [ 0FE66A51D81A25AACEAAE4C26308121D, C5553F7ABA74A8EB71A4ED0E8F2A6AA2892F871D164F2D4FADB035BE7D1A8C44 ] iaStorA C:\Windows\system32\drivers\iaStorA.sys
18:04:30.0919 0x0c48 iaStorA - ok
18:04:30.0966 0x0c48 [ 5E394EBD26FD68AA9300332C46BEDD62, 56A5DA7CE08C07B519E55D0A46AA9D10B640349808EFE02B3278267B75B5F603 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
18:04:31.0029 0x0c48 iaStorV - ok
18:04:31.0388 0x0c48 [ FCAA07539A6137EF78AAB39CC455CC5E, BABD3D0607FB82352C8BD2B8CD4E4A430CC6A1E536D2B4CDFD585D1F26D4B935 ] igfx C:\Windows\system32\DRIVERS\igdkmd64.sys
18:04:31.0935 0x0c48 igfx - ok
18:04:31.0982 0x0c48 [ 24847A06B84339FEEDE5CABF3D27D320, 7727B1DAD0D4A1D474FBBEFCEBDF36A1F07D1AA300869AE57A24ED91BF84B6B4 ] iirsp C:\Windows\system32\drivers\iirsp.sys
18:04:32.0013 0x0c48 iirsp - ok
18:04:32.0122 0x0c48 [ E455C83E029121270BED73CDAC381F37, 433D525C19DBF26FAC28853C606C872D973104842B0EF1B2BF2EAC85457E2953 ] IKEEXT C:\Windows\System32\ikeext.dll
18:04:32.0232 0x0c48 IKEEXT - ok
18:04:32.0466 0x0c48 [ DBB365794DD346C9466F05C8D4CB3D25, 9976B2D049A0288CECF1644DA723ED3466EC127C8508CC3713D40DF828D0D7F0 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
18:04:32.0747 0x0c48 IntcAzAudAddService - ok
18:04:32.0794 0x0c48 [ F5495B38BFB9149925F54F65AB40EFBF, 7CBB72C41E2343DACBFB967A39CA04788561EDECB289C41BC2D6A06B80882AC4 ] IntcDAud C:\Windows\system32\DRIVERS\IntcDAud.sys
18:04:32.0888 0x0c48 IntcDAud - ok
18:04:32.0966 0x0c48 [ C99F8E90DE4B8F0C7FE15BB1CBCD29DC, F791EE101EEF8B9F48102B6C63A89B78F7C0041C750C4F4C0D16D54B583B7B5C ] Intel® Capability Licensing Service Interface C:\Program Files\Intel\iCLS Client\HeciServer.exe
18:04:33.0029 0x0c48 Intel® Capability Licensing Service Interface - ok
18:04:33.0091 0x0c48 [ 9656F8E29F6C3161A3E99BCD3A472FF9, 30AD00B53CCB2E4121508729F3471D3C0568F1C32324C398382C97E8BC43ECF0 ] Intel® ME Service C:\Program Files (x86)\Intel\Intel® Management Engine Components\FWService\IntelMeFWService.exe
18:04:33.0154 0x0c48 Intel® ME Service - ok
18:04:33.0185 0x0c48 [ 4F37726CF764CA18A8A84F85EF3A7F24, 6212B23917526E127CE641A11A58DA93651FFE70829C4079FE465DBDC81CF470 ] intelide C:\Windows\system32\drivers\intelide.sys
18:04:33.0216 0x0c48 intelide - ok
18:04:33.0263 0x0c48 [ E15CDF68DD73423F15D4AC404793AF0D, E2D0136AF68D1A73EB3A63C83284B4661222CB0A4AFACCF276CB57CBD4850287 ] intelppm C:\Windows\System32\drivers\intelppm.sys
18:04:33.0294 0x0c48 intelppm - ok
18:04:33.0310 0x0c48 [ 8FCA66234A0933D796BB780B7953BAB9, 7DD677F5EE09A8D7A75C9E475B5E6B3DCA49D1E846C7D160B839D7029B1C5B6D ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
18:04:33.0372 0x0c48 IpFilterDriver - ok
18:04:33.0466 0x0c48 [ C217B8D2E58C57A319B16125C3D4B69C, 905BB858E1782BD08FF080A4A604CE662440A15601B178FBD30269C306C04CCF ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
18:04:33.0576 0x0c48 iphlpsvc - ok
18:04:33.0638 0x0c48 [ 6E98A046A12AA113F8898AA5D612BD6E, 28816CC1F03F2BFBF099C087C0BB6949E959F44C888DD2D0528FF7ED5D665ECF ] IPMIDRV C:\Windows\System32\drivers\IPMIDrv.sys
18:04:33.0716 0x0c48 IPMIDRV - ok
18:04:33.0732 0x0c48 [ 3969B9C218DD3FAA9F4ED2FFC3651C02, 93447F124CC55FB17055126432194153E1BB8F0FD95A47608494B6834A5F7089 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
18:04:33.0794 0x0c48 IPNAT - ok
18:04:33.0873 0x0c48 [ 33B286326BD2B1A7748C43391058FB19, C6240C9ED5B7C227595E953E3D1AB5F2D45CCD86FDBDF985836A970B4B6467FE ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
18:04:33.0935 0x0c48 iPod Service - ok
18:04:33.0951 0x0c48 [ 25CD7C4BB2863FFC2B0B311F0AEBF77C, 4099BAA2DB4ADB93B878D71E241B7D9EB7E0EE7ED0FE2450CCB9E4718B3726EB ] IRENUM C:\Windows\system32\drivers\irenum.sys
18:04:34.0029 0x0c48 IRENUM - ok
18:04:34.0060 0x0c48 [ D940C5BB9DC92E588533C19ABCC3D2C2, D1442854CEDE86F2C187A35851E74C873D34B772C60BC118FA1577F79C03364D ] isapnp C:\Windows\system32\drivers\isapnp.sys
18:04:34.0091 0x0c48 isapnp - ok
18:04:34.0138 0x0c48 [ 69C8BF0BC2B0EA10F130F4D3104DC2EF, 8FFF92828C3DC20F0F42C42E58A03B59A4E0187963F728DC618C9595FB2D0239 ] iScsiPrt C:\Windows\System32\drivers\msiscsi.sys
18:04:34.0201 0x0c48 iScsiPrt - ok
18:04:34.0248 0x0c48 [ 78ABBE558F57144047F10A0F50FE4B2F, 6BE608F7697D83FD6C7E6EA422AC5637933BDC96B1044C12DE9A419CE7D6F6CE ] jhi_service C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe
18:04:34.0310 0x0c48 jhi_service - ok
18:04:34.0341 0x0c48 [ 8FBD94B69D6423E20ABCD59D86368B21, 218EF992095E365EC917413749856A64D55D8129D77098E24D670843233377F4 ] kbdclass C:\Windows\System32\drivers\kbdclass.sys
18:04:34.0373 0x0c48 kbdclass - ok
18:04:34.0388 0x0c48 [ E88C932ABDF8185A62C8F2FC7B051FB6, 67F9AF58237A11F0BF3D15AA5B32E5CE66B7AA039B999D938F7F6E63DCEA7A6E ] kbdhid C:\Windows\System32\drivers\kbdhid.sys
18:04:34.0451 0x0c48 kbdhid - ok
18:04:34.0482 0x0c48 [ A8080BEBCDB7A16495CE1205921DCAC5, D4B0EF97B75BF75934A0BEEE48CACD20E8F505600C3A07243DF7627680EE8552 ] kbfiltr C:\Windows\System32\drivers\kbfiltr.sys
18:04:34.0498 0x0c48 kbfiltr - ok
18:04:34.0529 0x0c48 [ FB6C185092E18011EF49989425C2AA87, 043524409E0A764201DD221C48B7DEEA0D161945EB37D4B88313BAB2299949DF ] kdnic C:\Windows\system32\DRIVERS\kdnic.sys
18:04:34.0591 0x0c48 kdnic - ok
18:04:34.0607 0x0c48 [ F702AB6181513303AB0FC8D59E52708B, D46939B9F672269E65C98606A573C849C4AF5A26E4E75D3A8FE56A65B3A6EA08 ] KeyIso C:\Windows\system32\lsass.exe
18:04:34.0654 0x0c48 KeyIso - ok
18:04:34.0685 0x0c48 [ DFA480F6DED551464F3A5B959F437800, C07AB6F28A09FCBE11EECAD03B06CEAE1016EC24031FCA0C092639E90FBA84CF ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
18:04:34.0716 0x0c48 KSecDD - ok
18:04:34.0779 0x0c48 [ 127FB0AAD232BAAD2C9BBACD374F4FC5, 3BC56F6B4374062C96149D69ACE053DF81A278F0361599F5A2F3DB1F76F0AD68 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
18:04:34.0826 0x0c48 KSecPkg - ok
18:04:34.0857 0x0c48 [ 81492FEEBF2F26455B00EE8DBAE8A1B0, E33AA2DFB2D3BB30B02CDADA2EC290F86329DA3198327A653F39A843D86390B9 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
18:04:34.0904 0x0c48 ksthunk - ok
18:04:34.0966 0x0c48 [ 5825DBACEDC3812B5CF8D40B997BF210, 1C2997BCC707C1029B21876E093038CE3BBF6E6694B4CCF7EEDD47172ED9A541 ] KtmRm C:\Windows\system32\msdtckrm.dll
18:04:35.0060 0x0c48 KtmRm - ok
18:04:35.0091 0x0c48 [ CBD16721541EE334F6D623CE0B4003BF, DE2C6345B2051AD4C3A3F3AB89AB63AE58A0BA6AB0BCB6B0DFCE6BCD0E8E9519 ] L1C C:\Windows\system32\DRIVERS\L1C63x64.sys
18:04:35.0123 0x0c48 L1C - ok
18:04:35.0169 0x0c48 [ 256EE31588257E8A555DBFAA13F1908E, B6817F632EDEA483E35BF26846DCDD4E95E860620959179B2A5D8AD7EEDDB126 ] LanmanServer C:\Windows\system32\srvsvc.dll
18:04:35.0248 0x0c48 LanmanServer - ok
18:04:35.0326 0x0c48 [ 16650912BE5A94B40E0B3B4C39652B56, 908C2C9367AE0AC9AECB5D91514BB33ACD746D99F19C1A8DD6A9550E9CAD9E00 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
18:04:35.0451 0x0c48 LanmanWorkstation - ok
18:04:35.0654 0x0c48 [ 589A586DD3D27DB099D4F6CDC67BE95D, FB677B97A44D5A44CFF99DDA693DA10D9306D1E2B7F65BD2A5307095FE8EE73A ] LavasoftAdAwareService11 C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.1.5152.0\AdAwareService.exe
18:04:35.0701 0x0c48 LavasoftAdAwareService11 - ok
18:04:35.0748 0x0c48 [ CEEFD29FC551F289810B0B9381B321DC, 900F206B487B2190D9363F28AA4BA0CD7DCFE1D005BE05A48AF74B1B81194691 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
18:04:35.0810 0x0c48 lltdio - ok
18:04:35.0857 0x0c48 [ BCF53485E0A94722CDE3C4A93CD8EB8C, D24E1066EB102245A89A5D17D608DB9DF6B71C99F1C77E070B95EFD17D268141 ] lltdsvc C:\Windows\System32\lltdsvc.dll
18:04:35.0935 0x0c48 lltdsvc - ok
18:04:35.0951 0x0c48 [ 5A2F7F1CBC2E631A497DAD16164E06D2, 35274FC6C386380B01B5E8F467E71A2C4E2FB2AD701554F9B1A9B036B0340142 ] lmhosts C:\Windows\System32\lmhsvc.dll
18:04:36.0029 0x0c48 lmhosts - ok
18:04:36.0060 0x0c48 [ 2C24DC448DBE8DB9BE1441B824C57E79, DA2257EEC964A47D03C2BB13317FD788E51D4685E2395B303ED7B2575FEF3B19 ] LMS C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
18:04:36.0138 0x0c48 LMS - ok
18:04:36.0170 0x0c48 [ 022CDD12161B063D7852B1075BF3FFF2, E21267243AF2FC208D27E67827B1264A762C99AECEDB7AD2C48A04F421A6B2F0 ] LSI_SAS C:\Windows\system32\drivers\lsi_sas.sys
18:04:36.0216 0x0c48 LSI_SAS - ok
18:04:36.0249 0x0c48 [ 07AD59D669B996F29F91817F0ECFA34F, 026F332F862D142BFFC9D169CCD17A35BFB6B301EEC72AA13E16369B3520919C ] LSI_SAS2 C:\Windows\system32\drivers\lsi_sas2.sys
18:04:36.0296 0x0c48 LSI_SAS2 - ok
18:04:36.0327 0x0c48 [ 216FB796AA4E252ACCE93B1BCB80B5EC, 5B1E49B5F7B9C7A778198D27F8EE500FE35DC32D40B22A3D6ED67560BEB04212 ] LSI_SCSI C:\Windows\system32\drivers\lsi_scsi.sys
18:04:36.0374 0x0c48 LSI_SCSI - ok
18:04:36.0389 0x0c48 [ 5E80530AF37102488EE980B4A92AF99F, 364E18EAD9AC22F8A306B24C6C43E58224F6BE2744EFEAA2484696B8D9880851 ] LSI_SSS C:\Windows\system32\drivers\lsi_sss.sys
18:04:36.0421 0x0c48 LSI_SSS - ok
18:04:36.0530 0x0c48 [ A57BA284F5996FFD32DCDBC41A4657DB, 2106B83873A824BC83EF42FAC9DD9A0F741209535A84AE65EA8E786519920043 ] LSM C:\Windows\System32\lsm.dll
18:04:36.0639 0x0c48 LSM - ok
18:04:36.0655 0x0c48 [ 2BDC5D711FA61307CE6190D47C956368, 6BCDC6CBB9783F1ABE8957BDA94AF977DFB2A310BB6D19085EFC8609C97FD180 ] luafv C:\Windows\system32\drivers\luafv.sys
18:04:36.0733 0x0c48 luafv - ok
18:04:36.0921 0x0c48 [ 4F3FAE9E811E64BBE68152F0ED186D75, 55C53B218F8769E9E8774278E7FFB4A8B7753B103D280248E9D5FE42F12B2DCB ] McAWFwk c:\PROGRA~1\COMMON~1\mcafee\actwiz\mcawfwk.exe
18:04:36.0999 0x0c48 McAWFwk - ok
18:04:37.0171 0x0c48 [ FB11715EEB23D0999C2295177EBBA5C0, 533754A3591B5852253C793CE08ADA6CAD0545E3A11F42430EFA9D959B6BF4F7 ] McOobeSv2 C:\Program Files\Common Files\mcafee\Platform\McSvcHost\McSvHost.exe
18:04:37.0218 0x0c48 McOobeSv2 - ok
18:04:37.0264 0x0c48 [ FB11715EEB23D0999C2295177EBBA5C0, 533754A3591B5852253C793CE08ADA6CAD0545E3A11F42430EFA9D959B6BF4F7 ] mcpltsvc C:\Program Files\Common Files\mcafee\Platform\McSvcHost\McSvHost.exe
18:04:37.0311 0x0c48 mcpltsvc - ok
18:04:37.0358 0x0c48 [ FB11715EEB23D0999C2295177EBBA5C0, 533754A3591B5852253C793CE08ADA6CAD0545E3A11F42430EFA9D959B6BF4F7 ] McSchedulerSvc C:\Program Files\Common Files\mcafee\Platform\McSvcHost\McSvHost.exe
18:04:37.0389 0x0c48 McSchedulerSvc - ok
18:04:37.0452 0x0c48 [ 9B0D829C3BE4E7472DB9DD2B79908E3C, ACED5806FFF39E84007B5A3DCB16315329DC53007F46B1BEEDC391CC659F7DD3 ] megasas C:\Windows\system32\drivers\megasas.sys
18:04:37.0499 0x0c48 megasas - ok
18:04:37.0577 0x0c48 [ ECC3F54C7AFC318271C4F0B4606D8DB0, FD1ACB18B8C912C7A57DABCD5460800DD0721A82E09C8D79C47B3392D61CBEA6 ] MegaSR C:\Windows\system32\drivers\MegaSR.sys
18:04:37.0655 0x0c48 MegaSR - ok
18:04:37.0718 0x0c48 [ 2BB3EAE2EA641515D4B205CAB29E1624, D3F18EE393EB1B0F919484281269A3C55A092D023E62C59D74CB63A55612024B ] MEIx64 C:\Windows\System32\drivers\HECIx64.sys
18:04:37.0749 0x0c48 MEIx64 - ok
18:04:37.0874 0x0c48 Microsoft SharePoint Workspace Audit Service - ok
18:04:37.0936 0x0c48 [ EEE908BE7143FCA48CF0CB87214E2AB8, 4F9BD299F559DD36DBD93489CFAA753F236FBB70946E034D2E2260059AE20962 ] MMCSS C:\Windows\system32\mmcss.dll
18:04:38.0014 0x0c48 MMCSS - ok
18:04:38.0030 0x0c48 [ 780098AD5DA8A4822E2563984C85EF7B, 29312970774E944B5ED388316CF3D350DCABF721F9695737B0AC56BE878B0446 ] Modem C:\Windows\system32\drivers\modem.sys
18:04:38.0108 0x0c48 Modem - ok
18:04:38.0139 0x0c48 [ EA8EAD3F5B762F889CC7F3966625B48B, B701A42E5E08B7BC6601560446146803182E5DC631AB73E9408F19CB6432F121 ] monitor C:\Windows\System32\drivers\monitor.sys
18:04:38.0202 0x0c48 monitor - ok
18:04:38.0249 0x0c48 [ 618446B98C79776654340CE27C73485E, EFE7169FDD545933B5949DA2D09266971C0C3E6894E7BD8AFE29E41567C72B16 ] mouclass C:\Windows\System32\drivers\mouclass.sys
18:04:38.0280 0x0c48 mouclass - ok
18:04:38.0296 0x0c48 [ C0ADEBED913295803B579ED288936CBB, 58F71541166D1DA07C18FBD27458D55E3F8AD7291CB7496B3A2F01372A5B0CAE ] mouhid C:\Windows\System32\drivers\mouhid.sys
18:04:38.0343 0x0c48 mouhid - ok
18:04:38.0358 0x0c48 [ 89D263DBF08119CE16273991C120D6DD, 9771EDAD266F0E234E71DFB6792F396710E051F2ADCA5CDADEBBD2790D0E6054 ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
18:04:38.0405 0x0c48 mountmgr - ok
18:04:38.0452 0x0c48 [ 0D1609DD82C7440F5D5BF21A9D4D5C0C, BCBFF081FAFB822CE29D291FB329FC310D90F0EC0D1BB69CF8CB09ED5A2E84D1 ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
18:04:38.0546 0x0c48 mpsdrv - ok
18:04:38.0702 0x0c48 [ 3031573A739DBEE8923851929D0AF423, E9EA6C0D12A896AC745173B1F1A58192B52724AA424718B16B8D05E9AC091741 ] MpsSvc C:\Windows\system32\mpssvc.dll
18:04:38.0843 0x0c48 MpsSvc - ok
18:04:38.0905 0x0c48 [ 3D70147F55F1EC84EB9139ED7FFE48BC, 12429C2FDDDA13815F0E18F9009011AA5360955759A23A38175543F480CB92EF ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
18:04:39.0014 0x0c48 MRxDAV - ok
18:04:39.0077 0x0c48 [ 93179D48066918323628CB016D8C94DC, FE110BF7A10EDD1DF7F6B933D373FCA51F37413282EBC4187E7C9B1965186BCC ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
18:04:39.0202 0x0c48 mrxsmb - ok
18:04:39.0249 0x0c48 [ 06D5F2FA3C61E8EA91648EA8E9F99FD3, C665B7896501D42C73955F4EAF4FA3C6B2C9286957D6023C235AFBF9BFB761C6 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
18:04:39.0311 0x0c48 mrxsmb10 - ok
18:04:39.0374 0x0c48 [ 5C7DD2E5759FFCCD2C7341C1B90F2B26, 9822FA53E6067C0E39B7A3A3F1E88719D5D8B055D86FF894F0475B158289EA45 ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
18:04:39.0421 0x0c48 mrxsmb20 - ok
18:04:39.0483 0x0c48 [ 98487487D6B3797CA927E9D7B030AE13, 05840AF0DD2E3CB596DA768DBD0728B52210EC05B55AB5921E697AD8956938DD ] MsBridge C:\Windows\system32\DRIVERS\bridge.sys
18:04:39.0546 0x0c48 MsBridge - ok
18:04:39.0577 0x0c48 [ 4A07458EB4F17573BD39F22029A991C1, 74D7A1882EA4D19B8F090C2813489E5D3F759BF4AF2D88AE852EC6510C405B5E ] MSDTC C:\Windows\System32\msdtc.exe
18:04:39.0655 0x0c48 MSDTC - ok
18:04:39.0718 0x0c48 [ 3886F1F2A4D2900ABAA7E4486BEEE6A2, ECCA22985838A914EDC866C491DEB64B9FF5110EFA9BEE541F634AC5EC3081F9 ] Msfs C:\Windows\system32\drivers\Msfs.sys
18:04:39.0765 0x0c48 Msfs - ok
18:04:39.0811 0x0c48 [ C32A7A39B960A42BA9D4FBE47213CA03, 4DA48587138972DA5E95AEDBBBE73BA8CCADC8172C6654427ABEAC8047B27E95 ] msgpiowin32 C:\Windows\System32\drivers\msgpiowin32.sys
18:04:39.0858 0x0c48 msgpiowin32 - ok
18:04:39.0905 0x0c48 [ D3857A767B91A061B408CCAB02DA4F40, A4D780772086AD8717EE6DC2B6189F796939FB5E5AA08FD9D1984101998FBECF ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
18:04:39.0968 0x0c48 mshidkmdf - ok
18:04:39.0983 0x0c48 [ 839B48910FB1E887635C48F3EC11A05E, F8CFD99911500CC1B6A90C8E2A1697BD5A6E5776A62A62FE5B342FE204C936B1 ] mshidumdf C:\Windows\System32\drivers\mshidumdf.sys
18:04:40.0030 0x0c48 mshidumdf - ok
18:04:40.0046 0x0c48 [ 55C0DB741E3AB7463242B185B1C2997C, D2E2A5B48A64EA0EC2A6566C08E65A38D11CEA64BCA7B57793BA0D009E4D974A ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
18:04:40.0093 0x0c48 msisadrv - ok
18:04:40.0124 0x0c48 [ 216C6B035A4BA5560E1255BD8E5BB89F, A14E038604B9A5506DB145A4D9F51E2751AC825240D2744924F39C332B5DE00B ] MSiSCSI C:\Windows\system32\iscsiexe.dll
18:04:40.0186 0x0c48 MSiSCSI - ok
18:04:40.0202 0x0c48 msiserver - ok
18:04:40.0233 0x0c48 [ 509809566E49F4411055864EA8D437CD, 70F37BF9C759E8BCA1C6AC8FB9805950925E1C648ED37E8561A0F7A407DFDC28 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
18:04:40.0296 0x0c48 MSKSSRV - ok
18:04:40.0311 0x0c48 [ 63145201D6458E4958E572E7D6FC2604, EDD4A8A3BBE94B983554B1117734E66A2647B867269C5F0567C47EDE6F3FACCB ] MsLldp C:\Windows\system32\DRIVERS\mslldp.sys
18:04:40.0374 0x0c48 MsLldp - ok
18:04:40.0374 0x0c48 [ 99D526E803DB6D7FF290FD98B6204641, 4AFAA3B1186621AEAD19E12D3DBE104DD8FCD5C106F9EC3ADA4AD1BC7093E61F ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
18:04:40.0421 0x0c48 MSPCLOCK - ok
18:04:40.0421 0x0c48 [ 06FA77C3E2A491ADCD704C5E73006269, 465A7EE5387E6C11398A554F73437278F5BF110356E7F49F315905C1F2459278 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
18:04:40.0468 0x0c48 MSPQM - ok
18:04:40.0515 0x0c48 [ E134EC4DE11CF78CB01432D180710D84, BB111F97AEEFDCA5866B157E9957599CD7A4952B5BCCA0B0BCA9EDFCD17E61FE ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
18:04:40.0577 0x0c48 MsRPC - ok
18:04:40.0624 0x0c48 [ B5AECF12F09DEE97C9FCAA5BA016CE1E, F5305C4CE6C93A3A3481BD13BE0C23FE26571E11029ACFFE75FB78913681FCFC ] mssmbios C:\Windows\System32\drivers\mssmbios.sys
18:04:40.0655 0x0c48 mssmbios - ok
18:04:40.0843 0x0c48 [ 67EF4AE2F440BBAB7D7BA42224CA392B, E28764C57C6D5F1F4BE936AC034DF5602ACCED36CD414A04635A00199CB3C66A ] MSSQL$SQLEXPRESS C:\Program Files\Microsoft SQL Server\MSSQL11.SQLEXPRESS\MSSQL\Binn\sqlservr.exe
18:04:40.0890 0x0c48 MSSQL$SQLEXPRESS - ok
18:04:40.0921 0x0c48 [ F4991C8C070C86082E6F0597F73E02D0, C39F47D2D4525BB4950827F1EDB92CCF5067267AA1AAEF7137E45482C1436D97 ] MSSQLFDLauncher$SQLEXPRESS C:\Program Files\Microsoft SQL Server\MSSQL11.SQLEXPRESS\MSSQL\Binn\fdlauncher.exe
18:04:40.0968 0x0c48 MSSQLFDLauncher$SQLEXPRESS - ok
18:04:40.0999 0x0c48 [ 72D66A05E0F99F2528F6C6204FD22AA1, B14D433BC5795F1DC4C672302285E665DC012693E75574F60664AAD8874DE562 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
18:04:41.0046 0x0c48 MSTEE - ok
18:04:41.0077 0x0c48 [ 8AAAE399FC255FA105D4158CBA289001, 2F55C02605B4A3406B289FF9D46C76260B9138E3DE96AFAEA0E0522E5A2A746C ] MTConfig C:\Windows\System32\drivers\MTConfig.sys
18:04:41.0124 0x0c48 MTConfig - ok
18:04:41.0155 0x0c48 [ 3BCB702F3E6CC622DCAFCAA45D7CDE0A, 00D33A4AB3E7C5F65F59C63F8E2FD27EF38D5484595F785D5632E9414E29352C ] Mup C:\Windows\system32\Drivers\mup.sys
18:04:41.0186 0x0c48 Mup - ok
18:04:41.0218 0x0c48 [ 3A1E095277BBD406CEA8EA6B76950664, 47838F307A6354E77C19A7B1F3F3E22726EF60403B611F358AD6FFE81D7214E7 ] mvumis C:\Windows\system32\drivers\mvumis.sys
18:04:41.0249 0x0c48 mvumis - ok
18:04:41.0265 0x0c48 my_process - ok
18:04:41.0327 0x0c48 [ 4B18840511D720BA118D3017E8165875, 724458A69269A5AE57E8DAB74FF3C198A79B6F7A9602BF38A70B4A40543ED167 ] napagent C:\Windows\system32\qagentRT.dll
18:04:41.0405 0x0c48 napagent - ok
18:04:41.0468 0x0c48 [ 43D7388A90A4C6EA346A4D6FF0377479, DFDCFA448B49C8A577056070AF516F08CD2E452706A3CF9173195ABA4256F35D ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
18:04:41.0546 0x0c48 NativeWifiP - ok
18:04:41.0640 0x0c48 [ E0E4A1F81A7D69C595A8A9DDAD084C19, 8F55F3637AE8BFFB0ACE37AFC5122026525137E0B2923899B779C1BD08DF0E22 ] NAUpdate C:\Program Files (x86)\Nero\Update\NASvc.exe
18:04:41.0796 0x0c48 NAUpdate - ok
18:04:41.0843 0x0c48 [ 6A0C3996DA7DAE6D6939676D786EEEC4, 6E8A4C6234FD3040BC889E92016A4D5AC7BCAF5059521E50C733966163A546A0 ] NcaSvc C:\Windows\System32\ncasvc.dll
18:04:41.0905 0x0c48 NcaSvc - ok
18:04:41.0937 0x0c48 [ C982FE4CC91DECE2259F494FCEB4030F, 4C285407E6F9FBBA92180F4063AEFB736ED142D802F0151002F0CC20AB7BB4E5 ] NcdAutoSetup C:\Windows\System32\NcdAutoSetup.dll
18:04:42.0030 0x0c48 NcdAutoSetup - ok
18:04:42.0124 0x0c48 [ A10E176F3B2BF83EDE7B5C4658C93B66, 42F2FAEB4A29BBC6727D7E159D3E7E2E66D33785E5C98496EEB44D281601A23E ] NDIS C:\Windows\system32\drivers\ndis.sys
18:04:42.0233 0x0c48 NDIS - ok
18:04:42.0265 0x0c48 [ 39C8A1D9D46F5E83A016BCAB72455284, 80DBED610E0818C2C7122FBC5BC8C15BCE981538AE48DC48F464A86389AF3F68 ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
18:04:42.0327 0x0c48 NdisCap - ok
18:04:42.0358 0x0c48 [ 762941932B7E4C588E48A577BA9D6440, 71FA1870E398CB848D8294FEF6C60E0499CAB9A16EC3F487564C41072590E4F3 ] NdisImPlatform C:\Windows\system32\DRIVERS\NdisImPlatform.sys
18:04:42.0437 0x0c48 NdisImPlatform - ok
18:04:42.0468 0x0c48 [ 7A6F8A6D0E01432EBA294EF29CDD0FA7, D902AE15194A9F8A2198914FC76184FE7E2B589747275952A04A52853128FDB8 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
18:04:42.0546 0x0c48 NdisTapi - ok
18:04:42.0562 0x0c48 [ 79AB68BB3FFF974AD4F41FA559F4EC67, 1745EC6520B48E325C56D98A1F4DB9CE135FE3E097B3D66E6598791132CAD7BD ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
18:04:42.0624 0x0c48 Ndisuio - ok
18:04:42.0671 0x0c48 [ 62C7DBF4F9301F76CF87D4B9D8F57BF8, D51FEF198F74FDF583826E259E4736F51CD49908194104677889FD135EEC2EBC ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
18:04:42.0733 0x0c48 NdisWan - ok
18:04:42.0749 0x0c48 [ 62C7DBF4F9301F76CF87D4B9D8F57BF8, D51FEF198F74FDF583826E259E4736F51CD49908194104677889FD135EEC2EBC ] NDISWANLEGACY C:\Windows\system32\DRIVERS\ndiswan.sys
18:04:42.0796 0x0c48 NDISWANLEGACY - ok
18:04:42.0827 0x0c48 [ 3730942D7DB2F8BB5F84542B7FF6F650, 89C9D7D7305205BDB304CE6DA7D1A57EDE86A9D77429698802A39D75EB78CAAB ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
18:04:42.0890 0x0c48 NDProxy - ok
18:04:42.0937 0x0c48 [ D3F60A4345FCA9C1BE68AD7D0D6DE770, 214AF09F4B021C2F8655FBC8AC8C801E89CD9115CDE690FAEBDA69D63D660EDD ] Ndu C:\Windows\system32\drivers\Ndu.sys
18:04:42.0983 0x0c48 Ndu - ok
18:04:43.0015 0x0c48 [ 7C203A76394F9AE68F69EEE5F9612C4A, 2222654915913BDC9367A2075714906A10CF22C047A7494CD59CB71834ED1B62 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
18:04:43.0077 0x0c48 NetBIOS - ok
18:04:43.0124 0x0c48 [ 7CEC25C682D319D484630B3952C31A11, 025C46B367E0570E9E3F9DF1564C3E47B1524E9E9A180BBDF0E9C684838F5E42 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
18:04:43.0218 0x0c48 NetBT - ok
18:04:43.0233 0x0c48 [ F702AB6181513303AB0FC8D59E52708B, D46939B9F672269E65C98606A573C849C4AF5A26E4E75D3A8FE56A65B3A6EA08 ] Netlogon C:\Windows\system32\lsass.exe
18:04:43.0265 0x0c48 Netlogon - ok
18:04:43.0312 0x0c48 [ 89519D29CBEC2121CA65CC29C4D345E0, F3BA7BCAFEC8DD8B29837458D1B2B1DEE748AEAAAE0575FD3AAE65CFC72A04CD ] Netman C:\Windows\System32\netman.dll
18:04:43.0390 0x0c48 Netman - ok
18:04:43.0452 0x0c48 [ 79FA9393C67EBBF92A56923592CF7A7C, A8AB8A6346B97B68810CC632F425085BE9E63ACAED0F119A7BFD03F2DA4AA5F6 ] netprofm C:\Windows\System32\netprofmsvc.dll
18:04:43.0546 0x0c48 netprofm - ok
18:04:43.0640 0x0c48 [ 5243CFC2E7161C91C2B355240035B9E4, CFD77485A9D7BC47F3A9C53D73B2AE2D5D04B90ED38628F3124EA569F4DE969E ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
18:04:43.0718 0x0c48 NetTcpPortSharing - ok
18:04:44.0280 0x0c48 [ 57B9C04D673F236D41FAB03842C8640B, 898DCBBBF94875059CD328B0FC75BE36A4E3DD471C6E28BFAE064BCF84349518 ] NETwNs64 C:\Windows\system32\DRIVERS\NETwNs64.sys
18:04:45.0046 0x0c48 NETwNs64 - ok
18:04:45.0093 0x0c48 [ 12DD2800E4EEA37DC9AE256AD62423B4, 34740469EEA8740CBACD881CB232C9ABB9AB180DE5F45336BC6DBE154259F29B ] nfrd960 C:\Windows\system32\drivers\nfrd960.sys
18:04:45.0140 0x0c48 nfrd960 - ok
18:04:45.0202 0x0c48 [ 80ABCD4C2DE9FD832477303AE0CA3BE5, 98F3958E650CEB1006D92980503E1B176D2CA55D2A6742C1C27CDE829D137DA9 ] NlaSvc C:\Windows\System32\nlasvc.dll
18:04:45.0265 0x0c48 NlaSvc - ok
18:04:45.0296 0x0c48 [ 17E19A742FB30C002F8B43575451DBE1, 59D226A4A5B5281C399BE96C694915E38EEAF335D31F346B0C65D8F469D7C9C3 ] Npfs C:\Windows\system32\drivers\Npfs.sys
18:04:45.0343 0x0c48 Npfs - ok
18:04:45.0374 0x0c48 [ 8ED299C30792544264E558BEA79F0947, 8A03FDA9AADB79ECBCBCDC988B7D8CF0672689C9DF673A2ECFE0D2D88A9C6A6B ] npsvctrig C:\Windows\System32\drivers\npsvctrig.sys
18:04:45.0437 0x0c48 npsvctrig - ok
18:04:45.0499 0x0c48 [ 832B5FDF0B5577713FD7F2465FCD0ACE, 4A551CDBACED47DD781EC59F8B59A13D66EFD85DCF636BCFCBACFE5972A78E93 ] nsi C:\Windows\system32\nsisvc.dll
18:04:45.0530 0x0c48 nsi - ok
18:04:45.0577 0x0c48 [ 689B3B1E95C70ABF7AFF29F9406EF1E0, 8B62D8AE53E1B3218158FADC0075682AB06D18998CF5DE82C920A9CD91C0652F ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
18:04:45.0609 0x0c48 nsiproxy - ok
18:04:45.0905 0x0c48 [ 76929F4A69E425911A63B407E26C2589, 17896DB6EDEF2637D159432DB61E8B5FA2F4F54B5F50BCD6215827C321ED2C2A ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
18:04:46.0140 0x0c48 Ntfs - ok
18:04:46.0171 0x0c48 [ 4163ADE07DB51843AE31F65B94F5398D, 4349E7EF1EE1E71E1F436BA42F5B58871D82B987D513BA2D6E1CEB8A21BD1B20 ] Null C:\Windows\system32\drivers\Null.sys
18:04:46.0234 0x0c48 Null - ok
18:04:46.0265 0x0c48 [ D6D34118263412D3AAA8348A9572B7F2, 66106A25BC5A4CA7697A23ED67CEDB5C0BF678EA70FD967A405D2DF76F4CA3A4 ] nvraid C:\Windows\system32\drivers\nvraid.sys
18:04:46.0359 0x0c48 nvraid - ok
18:04:46.0406 0x0c48 [ 27AFC428D1D32ABD04A86763A4EDDEA9, 0920866013A8C8CFEE00E6AECDD41736F5501C49837E2D785998734F087F6B98 ] nvstor C:\Windows\system32\drivers\nvstor.sys
18:04:46.0452 0x0c48 nvstor - ok
18:04:46.0484 0x0c48 [ 051CFB5107BAAE510419BDC41F8C4036, 9990906F17A3886EF301D2AA6556263B52A1C0554C6BD18331AF44ECECAEE4B5 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
18:04:46.0531 0x0c48 nv_agp - ok
18:04:46.0609 0x0c48 [ 9D10F99A6712E28F8ACD5641E3A7EA6B, 70964A0ED9011EA94044E15FA77EDD9CF535CC79ED8E03A3721FF007E69595CC ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
18:04:46.0702 0x0c48 ose - ok
18:04:47.0499 0x0c48 [ 61BFFB5F57AD12F83AB64B7181829B34, 1DD0DD35E4158F95765EE6639F217DF03A0A19E624E020DBA609268C08A13846 ] osppsvc C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
18:04:47.0906 0x0c48 osppsvc - ok
18:04:48.0046 0x0c48 [ AB76700D764A342D7475FB8F47CAB18C, ECDF705D3E69EF6E7044C98A462A7281D0E7D0D85769C0815555D934B0B69C8D ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
18:04:48.0109 0x0c48 p2pimsvc - ok
18:04:48.0156 0x0c48 [ 4319FD931DCD796435ECB5DB4A04FBA5, 20185B2F359EEC202B37019A4E4F5B914ADCF78B97AF0CBD91EECED2259FC6DE ] p2psvc C:\Windows\system32\p2psvc.dll
18:04:48.0234 0x0c48 p2psvc - ok
18:04:48.0297 0x0c48 [ 4563DAF8C6A740AD7F501E219BD10766, 7A1212DDAE2D66A9C2041262796904E36036CDC4C5B75C2F66B8DF9D89F7C25D ] Parport C:\Windows\System32\drivers\parport.sys
18:04:48.0344 0x0c48 Parport - ok
18:04:48.0391 0x0c48 [ D6ACCF9F2EEEEA711C14EFD976E573F3, 60D2A81832A8D24F91C3EF134440D5026354917F59462BACBCE7A01D84767D91 ] partmgr C:\Windows\system32\drivers\partmgr.sys
18:04:48.0438 0x0c48 partmgr - ok
18:04:48.0485 0x0c48 [ 4811D9EC53649105A5A8BEA661B0F936, C77907E03D0561500FCFEAFAC323E9679E66297329901A0CA2BD7E919419A8E8 ] PcaSvc C:\Windows\System32\pcasvc.dll
18:04:48.0610 0x0c48 PcaSvc - ok
18:04:48.0641 0x0c48 [ 3FDE033DFB0D07F8B7D5C9A3044AA121, 2C23B4FA34BA3060884B0168A830DD395A3853855CD6DF4065FBB303DFB4A87E ] pccsmcfd C:\Windows\system32\DRIVERS\pccsmcfdx64.sys
18:04:48.0704 0x0c48 pccsmcfd - ok
18:04:48.0750 0x0c48 [ 4A003E8F718C1E6A2050CA98CD53E3E2, BCC3BE1EC3FA4967353371D85094D096940A7B5944A6FFCA31E8FBE83D92CC6C ] pci C:\Windows\system32\drivers\pci.sys
18:04:48.0813 0x0c48 pci - ok
18:04:48.0829 0x0c48 [ F9908D274D458220F91E89B54D78D837, 1E89ABFA6B375383E0297CEE5AF66E37F90E16DD21ABA5C91777A86CDF013B4D ] pciide C:\Windows\system32\drivers\pciide.sys
18:04:48.0860 0x0c48 pciide - ok
18:04:48.0907 0x0c48 [ 84D19CB6102627932DCB5DFDF89FE269, 2F9C47E076645B35877D9ACA77968EFFCDA8794D76265CD9A4AAA239C4B33C5F ] pcmcia C:\Windows\system32\drivers\pcmcia.sys
18:04:48.0969 0x0c48 pcmcia - ok
18:04:48.0985 0x0c48 [ CEBBAD5391C2644560C55628A40BFD27, 8AAA6EBD8D89FC91AECCCF1452F53C5650A1A17027FF4E64D224371404CE4C8B ] pcw C:\Windows\system32\drivers\pcw.sys
18:04:49.0047 0x0c48 pcw - ok
18:04:49.0079 0x0c48 [ 0698DEDEAD6A00AD0D468C687D830FBF, B9DCA1A61F2EF80DB26380F390F2E9A17114D33129D61CF465B949B6A7916CAA ] pdc C:\Windows\system32\drivers\pdc.sys
18:04:49.0125 0x0c48 pdc - ok
18:04:49.0250 0x0c48 [ 61FE70659CD43E07F94DA4DC31DEC493, 3739B6670B440173FD81DE3D47B0B90FAF296802AD4F57C05BF5CF191BF16022 ] PEAUTH C:\Windows\system32\drivers\peauth.sys
18:04:49.0391 0x0c48 PEAUTH - ok
18:04:50.0329 0x0c48 [ EB88FA19F0EA05DD04BE9C5FFEEFFE1A, 459CF99D5243C4ACAA38C7B426ADC52F1044C759D06A925D475DF6213AEB85CD ] PerfHost C:\Windows\SysWow64\perfhost.exe
18:04:50.0454 0x0c48 PerfHost - ok
18:04:51.0860 0x0c48 [ 6E84BFF58F7643499277F29DFA2F8C8D, 401CCF137F35D9690C7B56B2BFEDB2DB72709EBE38626D787904B67640EF6F14 ] pla C:\Windows\system32\pla.dll
18:04:52.0048 0x0c48 pla - ok
18:04:52.0094 0x0c48 [ 799BE46D45D486704CE0F37CA5385262, BB78DEE83B9DB613B1C083D55FAA458BE3E394AED80EB91B599185A7272F33B3 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
18:04:52.0126 0x0c48 PlugPlay - ok
18:04:52.0188 0x0c48 [ 8E2414E818C26C4A9C70CB2B8567F04F, A16B22AE143BA070C562FBE5DEF32F7E228F50B302B66E46B46C44C0F50A4461 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
18:04:52.0235 0x0c48 PNRPAutoReg - ok
18:04:52.0266 0x0c48 [ AB76700D764A342D7475FB8F47CAB18C, ECDF705D3E69EF6E7044C98A462A7281D0E7D0D85769C0815555D934B0B69C8D ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
18:04:52.0329 0x0c48 PNRPsvc - ok
18:04:52.0438 0x0c48 [ 0108C8E5176D590F242701EF5A62CC26, 3A72F5D4402663B7445F6B3C55F01E83A619B6192F7D3CC2DE3C57F9F50D5A2D ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
18:04:52.0548 0x0c48 PolicyAgent - ok
18:04:52.0594 0x0c48 [ F1E067F56373F11EA4B785CAE823740A, 69BD30E64DA17595FF29C9C9FF9AD4F2F4BE29B688FBAC9DABB2FA9D13A47FF0 ] Power C:\Windows\system32\umpo.dll
18:04:52.0673 0x0c48 Power - ok
18:04:52.0813 0x0c48 [ 362D47E5B4D67270DE4B8606036F4ADD, 716E229C68D91AEA5B5629F60133D5CBDC0C95ABA54D9DC6264E923CAF4DC6C0 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
18:04:52.0891 0x0c48 PptpMiniport - ok
18:04:53.0407 0x0c48 [ CC0B8655E4B2A5BBB215CDA8FC3BE4DE, 878E46E308BC3AC689CFC401BAA12D217BFB9911C29A10DB5DFFAC250A58CE55 ] PrintNotify C:\Windows\system32\spool\DRIVERS\x64\3\PrintConfig.dll
18:04:53.0704 0x0c48 PrintNotify - ok
18:04:53.0751 0x0c48 [ DD979EB6A7212F60E4AFBE96EDC7AE6D, BC681D64C5B8F08FD4613D71111853FCD5B05E4BD127D2C6258BAED7627105BE ] Processor C:\Windows\System32\drivers\processr.sys
18:04:53.0876 0x0c48 Processor - ok
18:04:53.0923 0x0c48 [ 429E8502AD2227CF88F8840FC5BD590D, A186DA46C083580ACEDE9C7E3156865034302CD803140EEEC8E1DE16DA4BC99B ] ProfSvc C:\Windows\system32\profsvc.dll
18:04:54.0001 0x0c48 ProfSvc - ok
18:04:54.0063 0x0c48 [ EB8034147D4820CD31BFCB11A2A652DF, B10B5E16B7A05D2DB2D5D1945B6146DE15EEDE2C778772A59F104706B5145E46 ] Psched C:\Windows\system32\DRIVERS\pacer.sys
18:04:54.0141 0x0c48 Psched - ok
18:04:54.0220 0x0c48 [ 0AFBF333B6F87A2F598EAB379AF100B8, D11F3A4D7E4463B62E2DBDE5FC61425B1FDFB07DD1A19BC001D479CA1F554510 ] QWAVE C:\Windows\system32\qwave.dll
18:04:54.0298 0x0c48 QWAVE - ok
18:04:54.0329 0x0c48 [ 13D47BB0CCA2FC51BD15F8E85C6A078E, EA832A9511007C9E8599C3066E1FA66BE869E8A27886D9A9AC590BD4DFBD1A15 ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
18:04:54.0391 0x0c48 QWAVEdrv - ok
18:04:54.0423 0x0c48 [ 873C60F8178100557740A832FCE10B5F, 400EF60CB2C98E2AFE122AF3D01CCE56A1548AF865345EE2194AB74DBCBF4C48 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
18:04:54.0485 0x0c48 RasAcd - ok
18:04:54.0516 0x0c48 [ 69B93F623B130976243ECA3D84CC99CA, F27617E651EADFAEE479619AAB01CDAA98111BA63E204D5C44A1256732CB0100 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
18:04:54.0579 0x0c48 RasAgileVpn - ok
18:04:54.0610 0x0c48 [ 005F6E54C4A2DA4EBF68FB0392CE8BB0, 2F3C90A04964D4D906238BD557D90F7AC05DF86FE9729C4378B39431F54DDAE3 ] RasAuto C:\Windows\System32\rasauto.dll
18:04:54.0673 0x0c48 RasAuto - ok
18:04:54.0688 0x0c48 [ A14D625C5AEE5FFE0F47D1A1D419FAAE, 1229B81C23340AD5B436B1FD227876EB41715CE6BD270BA367F18879D26B8F04 ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
18:04:54.0766 0x0c48 Rasl2tp - ok
18:04:54.0829 0x0c48 [ C923C785A2DE0B396AD6D13ACAFF2DE9, 4F950DA776FBABEC7D546983D6F3018733F61268A4BF95C01D4836AD000BD073 ] RasMan C:\Windows\System32\rasmans.dll
18:04:54.0923 0x0c48 RasMan - ok
18:04:54.0954 0x0c48 [ 00695B9C2DB6111064499C529E90C042, 3CD4DF4D8001C2BBF52EEEB1F0D587209878BEAC339D268892477AD840D490F1 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
18:04:55.0016 0x0c48 RasPppoe - ok
18:04:55.0063 0x0c48 [ A7F24D8CD1956B0A1FDCB86CC5114DE4, 30489D235362DF62B105378597168B13F4BAC74A8EDDBDA25237E3C017B69FEE ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
18:04:55.0141 0x0c48 RasSstp - ok
18:04:55.0204 0x0c48 [ CA03D642ACE58E1BA54E4B383F91CD69, 39BB942603801CF11FBEA28E24F8C8D1EF2AF615D1FABF951683A015D6A6EF37 ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
18:04:55.0298 0x0c48 rdbss - ok
18:04:55.0329 0x0c48 [ CA7DF5EC95D8DE0DD24BE7FF97369F68, 153E6F716CA935DBCACB8FF1BB8DE5F5551CE3D18878225470E45893CA69BDB8 ] rdpbus C:\Windows\System32\drivers\rdpbus.sys
18:04:55.0391 0x0c48 rdpbus - ok
18:04:55.0423 0x0c48 [ B2A3AD74FF2E2FFA73AF2567108231B3, DF8CEA6215F75C634D56F6B8AE11ECCEEB5F8CBC091AC3D6D9F7DE214B00A439 ] RDPDR C:\Windows\system32\drivers\rdpdr.sys
18:04:55.0516 0x0c48 RDPDR - ok
18:04:55.0563 0x0c48 [ 57F4787E4602A3FCA719C0A33137C6DA, D03AE59A184EB5D126F8EAB9D36EE406ABB8B9ED834F2D2496DDB1349FF56F89 ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys
18:04:55.0610 0x0c48 RdpVideoMiniport - ok
18:04:55.0641 0x0c48 [ B3CB0721E81E30419CE7D837EF4EA151, EC9410818661BF77E4A19694E3A3030E1D983B36F49C72E27F92A1424E0729C2 ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
18:04:55.0704 0x0c48 RDPWD - ok
18:04:55.0751 0x0c48 [ 62C1F8A0685FE07E998AA296C4F697C4, C636AB2D0F139003A6AD7A12E9DC13EE4485A62F30DA59AF842FF02FE07442EE ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
18:04:55.0813 0x0c48 rdyboost - ok
18:04:55.0860 0x0c48 [ 3663CCF243EE0C04E9F6F91ED1737273, 31D06445996F99A7F6B32004D1BA63A21C61DE125373F860BA9A9DE5278E8293 ] RemoteAccess C:\Windows\System32\mprdim.dll
18:04:55.0923 0x0c48 RemoteAccess - ok
18:04:55.0985 0x0c48 [ E80DD61E52EDFFF9DA1ED7260A68855B, 97909F42AE35E28B8F98C01A1D8BAD80A949CDCA0C88FB4ACF0A655DC7C10E45 ] RemoteRegistry C:\Windows\system32\regsvc.dll
18:04:56.0063 0x0c48 RemoteRegistry - ok
18:04:56.0563 0x0c48 [ 6099C32689C98EB433EA44AF6DB9F3B4, 58F89D6825990F788E502F0E8A6EF3FCC7D528CB8C578A54C4B88B2F91003581 ] ReportServer$SQLEXPRESS C:\Program Files\Microsoft SQL Server\MSRS11.SQLEXPRESS\Reporting Services\ReportServer\bin\ReportingServicesService.exe
18:04:56.0751 0x0c48 ReportServer$SQLEXPRESS - ok
18:04:56.0845 0x0c48 [ CCBFCABDFE2BC22F0645CEAADDB36004, 279EA9075079F91165027CEFD4FBC61A213CA602EE7DE106F7D2D243468706AA ] RFCOMM C:\Windows\System32\drivers\rfcomm.sys
18:04:56.0907 0x0c48 RFCOMM - ok
18:04:56.0954 0x0c48 [ 73F2E030B5C24E4E41401B5F0D59E6FD, FAA8B5E3159684E0836900C6EAF63857B445F7F180169B56D5790F097EDAA38B ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
18:04:57.0017 0x0c48 RpcEptMapper - ok
18:04:57.0048 0x0c48 [ 10B21284B3D964AB3DC45490E57D422E, 12D5E3A7785F21C99C5EAD14A88EB7A86A058E26C091991339356D99D196CC13 ] RpcLocator C:\Windows\system32\locator.exe
18:04:57.0110 0x0c48 RpcLocator - ok
18:04:57.0251 0x0c48 [ 1EC6E533C954BDDF2A37E7851A7E58FD, C25936A7465B6A2B3D05D2FCB09D91ACC07CFE038A5E968C99CFA9D9F2967DD4 ] RpcSs C:\Windows\system32\rpcss.dll
18:04:57.0329 0x0c48 RpcSs - ok
18:04:57.0470 0x0c48 [ 5AA85332CB1694871B2F0704E0FC9113, 18E11C4E966DEE53FA0E482C55769A35C6C746EB3347DF171A1978D22BC7990B ] RsFx0200 C:\Windows\system32\DRIVERS\RsFx0200.sys
18:04:57.0532 0x0c48 RsFx0200 - ok
18:04:57.0579 0x0c48 [ E04E770DD198B9399640717145E79EBF, 2F9BECB7E4B0A522C6370FD39CFD7DFD3FB5D0A779AECCED2EE855629FA3C952 ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
18:04:57.0657 0x0c48 rspndr - ok
18:04:57.0735 0x0c48 [ 15923AA360F7675D3D43C9669316A0BA, AD1852732082140C62CC44A01914162E44BF412B4A852DF27DC0E0765E64288F ] RTL8168 C:\Windows\system32\DRIVERS\Rt630x64.sys
18:04:57.0845 0x0c48 RTL8168 - ok
18:04:57.0876 0x0c48 [ 752EC7DCD2F96871A3857EEE6AFE965A, 1D0640966B9147A06ED0E733711773E6B4AB8AC6D962D5B369ECB04170D18AD8 ] s3cap C:\Windows\System32\drivers\vms3cap.sys
18:04:57.0907 0x0c48 s3cap - ok
18:04:57.0970 0x0c48 [ F702AB6181513303AB0FC8D59E52708B, D46939B9F672269E65C98606A573C849C4AF5A26E4E75D3A8FE56A65B3A6EA08 ] SamSs C:\Windows\system32\lsass.exe
18:04:58.0001 0x0c48 SamSs - ok
18:04:58.0032 0x0c48 [ 9C7B28CE0D136DB226E24DB3BC817F92, E9DE55D6432ADD08EC75F99F2B5D2BD1F553F4EE55991B1767B1578351EE0BF2 ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
18:04:58.0079 0x0c48 sbp2port - ok
18:04:58.0126 0x0c48 [ 14316954FCE79C9DE5A0AFF9D42C83AA, B60FB1FAC0299F9560761411711E86EDFA2F8D27B58230E2E4BB37736FAB2287 ] SCardSvr C:\Windows\System32\SCardSvr.dll
18:04:58.0188 0x0c48 SCardSvr - ok
18:04:58.0220 0x0c48 [ 5D7733A12756B267FCA021672B26BC9E, 01CE5B5F49914B9E099BD909A66296F3A40644AE47BA1D5EBFFB30CD33C70A4A ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
18:04:58.0298 0x0c48 scfilter - ok
18:04:58.0501 0x0c48 [ ED40ED9A65F3E79A8C43DD50C5FDADBF, 2323BFAB1BC3D661A376650B7AC14C7780C92BA575DA048F3C7611CDB3F7F04A ] Schedule C:\Windows\system32\schedsvc.dll
18:04:58.0642 0x0c48 Schedule - ok
18:04:58.0688 0x0c48 [ BAF8F0F55BC300E5F882E521F054E345, FB228DB18F2FA55D8BA35A7E6778EE5D2EB0C29D384F1A0A868F90AE706188D7 ] SCPolicySvc C:\Windows\System32\certprop.dll
18:04:58.0735 0x0c48 SCPolicySvc - ok
18:04:58.0782 0x0c48 [ F58B030A0664385C707B8C1C63682041, E46AADAA2CD687B9A4B564DC5B002493C8480542588E660BC3DF89EAF9DB0427 ] sdbus C:\Windows\System32\drivers\sdbus.sys
18:04:58.0829 0x0c48 sdbus - ok
18:04:58.0892 0x0c48 [ 92968277ED491E4B3DDA361E3952361E, 71C50853BB2126A34C7CD014EE44D4B8B39F589E2E8E8E8F4C982E07498E3899 ] SDRSVC C:\Windows\System32\SDRSVC.dll
18:04:58.0970 0x0c48 SDRSVC - ok
18:04:59.0017 0x0c48 [ BB107AA9980B0DA4E19A3A90C3BD4460, BCB4CF0FFF1FD57302557B68044A88C8EEAAE57C2FEAE8EAD1F410F960298B6D ] sdstor C:\Windows\System32\drivers\sdstor.sys
18:04:59.0048 0x0c48 sdstor - ok
18:04:59.0095 0x0c48 [ 3EA8A16169C26AFBEB544E0E48421186, 34BBB0459C96B3DE94CCB0D73461562935C583D7BF93828DA4E20A6BC9B7301D ] secdrv C:\Windows\system32\drivers\secdrv.sys
18:04:59.0142 0x0c48 secdrv - ok
18:04:59.0173 0x0c48 [ CD282626738B6BC92B6E7CD0AAE95B63, 1A56567C781786C85C63E24E79186EE5C82D3EB2679061B21BA0571A3A6CB7F5 ] seclogon C:\Windows\system32\seclogon.dll
18:04:59.0235 0x0c48 seclogon - ok
18:04:59.0267 0x0c48 [ 9C51620998F0763039DFA6BF68E475ED, 9E496ADE7CE9A446BE8A2C2FC61B462D966778A94A4C147AABBD25C4821C2BCE ] SENS C:\Windows\System32\sens.dll
18:04:59.0315 0x0c48 SENS - ok
18:04:59.0393 0x0c48 [ DDA4CAF29D8C0A297F886BFE561E6659, 94E5DD649B5D86FA1A7C7D30FCF9644D0EE048D312E626111458ADF66BFBE978 ] SensorsSimulatorDriver C:\Windows\system32\DRIVERS\WUDFRd.sys
18:04:59.0455 0x0c48 SensorsSimulatorDriver - ok
18:04:59.0502 0x0c48 [ 0D50B4B860DAB65241628D04CD33ACAE, 2AA897C3F9ED076AB9244A32745D18489B076F3ED28A35B868C472131C5B5B46 ] SensrSvc C:\Windows\system32\sensrsvc.dll
18:04:59.0580 0x0c48 SensrSvc - ok
18:04:59.0611 0x0c48 [ 87C46B239A7EEF30FDFDD5E9BD46130C, F36FB5B20AC58FBD31F7E636059D2D865B751E178E51A03B94ABE0BBD1AB1EC9 ] SerCx C:\Windows\system32\drivers\SerCx.sys
18:04:59.0674 0x0c48 SerCx - ok
18:04:59.0690 0x0c48 [ 7A1F9347C85FD55E39B8A76B3A25C5AD, 03AF3B23285278A38F4CBEAB7FD326A48FA1EC7F8D044C059CE5403C6D225639 ] Serenum C:\Windows\System32\drivers\serenum.sys
18:04:59.0736 0x0c48 Serenum - ok
18:04:59.0752 0x0c48 [ F640A0A218BBF857F1D04A15D7D939F6, 948C13886281FE7947E10FB7B34D5CCFE512FB632F1132B6062AC85149F79950 ] Serial C:\Windows\System32\drivers\serial.sys
18:04:59.0799 0x0c48 Serial - ok
18:04:59.0815 0x0c48 [ F1A5F56B2620B862CC28FF96A0A6DAAB, E5367212B2CADF3820D657CFC27CD961547E28DAB950C68E1380CF97FB68F3F4 ] sermouse C:\Windows\System32\drivers\sermouse.sys
18:04:59.0846 0x0c48 sermouse - ok
18:04:59.0971 0x0c48 [ C3BB6CF8F9EE199005A2AAE2815AD756, 7A817599C2F3AD819D643223AA714CCCB790EE5983096D8D9CD2D626D6924837 ] ServiceLayer C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe
18:05:00.0143 0x0c48 ServiceLayer - ok
18:05:00.0221 0x0c48 [ CB60A60340788C8D6DE2A269D28086AB, 2D8948E59BB9B00E16D20E425F80E7B862957DBAC9A4D1484E5191FAF333B60D ] SessionEnv C:\Windows\system32\sessenv.dll
18:05:00.0283 0x0c48 SessionEnv - ok
18:05:00.0315 0x0c48 [ 7EE65419B29302C795714FF8073969A1, E28D89A5423E3A5062030EB2418E9435DD5D8B9D16570046E782D3FCFDA2E79A ] sfloppy C:\Windows\System32\drivers\sfloppy.sys
18:05:00.0377 0x0c48 sfloppy - ok
18:05:00.0455 0x0c48 [ 090AE16F79C8EAD04E6031F863DA85F3, 3F27BE46DF602B53940414A6E9FEB23B36CFFB8E9A7F41440C3315B8E27D0029 ] SharedAccess C:\Windows\System32\ipnathlp.dll
18:05:00.0518 0x0c48 SharedAccess - ok
18:05:00.0596 0x0c48 [ A77F3ABE13FCC698511E5DEC7ACEBD5F, 78A43FDA9F770FD8BA107605DB44BC71D8B89D7E75560DA783AA6356C1873C15 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
18:05:00.0721 0x0c48 ShellHWDetection - ok
18:05:00.0752 0x0c48 [ 2560721D6F16D5B611C36A3A9D28C1B2, 15C30404902654ABA5DB5367FC5BD31343B12A3FC22B4BC5A26B09016447B5ED ] SiSRaid2 C:\Windows\system32\drivers\SiSRaid2.sys
18:05:00.0846 0x0c48 SiSRaid2 - ok
18:05:00.0877 0x0c48 [ 3AA8FDE1DBF65BB8B88B053529554A0D, 8060D946344D043D336F4735363C23C37C91A6DB3F81E575C267B2EC2BECB0EC ] SiSRaid4 C:\Windows\system32\drivers\sisraid4.sys
18:05:00.0971 0x0c48 SiSRaid4 - ok
18:05:01.0018 0x0c48 [ E660156A4588A84305CB772FD2C0DB21, 9492EB6578D4A689945E1FC2440EFA77D461049CDB2D00A645969A71B7DA68E1 ] SNMPTRAP C:\Windows\System32\snmptrap.exe
18:05:01.0065 0x0c48 SNMPTRAP - ok
18:05:01.0112 0x0c48 [ 9110193D93960E38B8692E4519C75D72, 789381B4CCC056EE431E78E2339AC9802264A1CE4B378DDA9769649664C9A7A0 ] spaceport C:\Windows\system32\drivers\spaceport.sys
18:05:01.0158 0x0c48 spaceport - ok
18:05:01.0190 0x0c48 [ 3D8679C8DF52EB26EB7583A4E0A29202, DCD9B69299275857712AB200C014AE820C8A9F7E53C4A335A84518FBE4BB56BB ] SpbCx C:\Windows\system32\drivers\SpbCx.sys
18:05:01.0237 0x0c48 SpbCx - ok
18:05:01.0315 0x0c48 [ 3F215BF2D4D8D6756298B25B579772C2, 744192D1635E5D296BFD399E870B70592202CEAF95C31C2D2B226A868D33A3FD ] Spooler C:\Windows\System32\spoolsv.exe
18:05:01.0440 0x0c48 Spooler - ok
18:05:01.0752 0x0c48 [ 061A977C920FBE4BF71FF47C966DDDCA, 746516396B72E4ADB05D978C819CD45FE44EE194756F6DA50121D755439CA590 ] sppsvc C:\Windows\system32\sppsvc.exe
18:05:02.0127 0x0c48 sppsvc - ok
18:05:02.0237 0x0c48 [ AECDE8DA025B1256E00A6749102FBDC9, 92CAAEF9DF3DBDEC8F95A82D8D5A33BA6834E20224ADFB736AAB802CEFA510BE ] SQLAgent$SQLEXPRESS C:\Program Files\Microsoft SQL Server\MSSQL11.SQLEXPRESS\MSSQL\Binn\SQLAGENT.EXE
18:05:02.0299 0x0c48 SQLAgent$SQLEXPRESS - ok
18:05:02.0377 0x0c48 [ E9254892A2D74E537BAD3092F0F8EE40, BEB715404B799F3181C699E233F98B2A913BEB677E94ABE8E2872499FC755385 ] SQLBrowser C:\Program Files (x86)\Microsoft SQL Server\90\Shared\sqlbrowser.exe
18:05:02.0455 0x0c48 SQLBrowser - ok
18:05:02.0502 0x0c48 [ 055B0DE7BCDB14FB18279F09DCA07954, 94944F996F2F73233A96F8E766606EA5CCC7142EA2AF4BCEFD2603578F2B4A4A ] SQLWriter C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
18:05:02.0549 0x0c48 SQLWriter - ok
18:05:02.0580 0x0c48 [ 0F1FCD575A03ABDE13FCA9D0ADE4DDA6, 61EEB1349489CB85204F1B4E398BE24EDC01FB914120C9DD0487F8EE1EDA055E ] srv C:\Windows\system32\DRIVERS\srv.sys
18:05:02.0658 0x0c48 srv - ok
18:05:02.0737 0x0c48 [ 56218A571ECF8D55E0CDFF8DF2546CF1, 44B34722108EDDC8757A0B7C939A854457BB7EBC92A83C4284DFFAECFC2E3619 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
18:05:02.0830 0x0c48 srv2 - ok
18:05:02.0877 0x0c48 [ 14FC338B80CFF7E04215133B568D15C4, 1F437BE0EC887097F0C3409D4198A20981FC325FDF915532AB85070D337DEF2B ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
18:05:02.0955 0x0c48 srvnet - ok
18:05:03.0018 0x0c48 [ 7A20882D76D4A78240A5AC9F2C2EBA21, ACA05211EE542999A118BBD2CD051038A7DC8C40C4B8971DC6514BA90E90EC61 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
18:05:03.0080 0x0c48 SSDPSRV - ok
18:05:03.0127 0x0c48 [ D233B16999A8E626F6004BD7814C57EC, 5BBFE5DDF1269617ABD1BDBED85A79D99BB52EA29C2BB3A8F4A1827BFAA1A747 ] SstpSvc C:\Windows\system32\sstpsvc.dll
18:05:03.0174 0x0c48 SstpSvc - ok
18:05:03.0205 0x0c48 [ 4E85355B94CFCB67C135F6521A4895A7, AC4FC65C1E62A54B3834E7FE0A2B1ECC48A2AA563AE5BD508326EE68FFFBBEEE ] stexstor C:\Windows\system32\drivers\stexstor.sys
18:05:03.0252 0x0c48 stexstor - ok
18:05:03.0362 0x0c48 [ BAC8A721736AECC55A4F71523AEAB65F, B52E1303B13A961A5FC190829E55B6F28ACA409A6EEF44B358D1D210558FE1D8 ] stisvc C:\Windows\System32\wiaservc.dll
18:05:03.0471 0x0c48 stisvc - ok
18:05:03.0518 0x0c48 [ B240874B2CA0CD02E8CD11E140B14C57, 0FDBEE3DB644175A30065CAF020F375703ADC45A33221788C010F3111707FC25 ] storahci C:\Windows\system32\drivers\storahci.sys
18:05:03.0580 0x0c48 storahci - ok
18:05:03.0612 0x0c48 [ F74DBC95A57B1EE866D3732EB5F79BE2, E4FE9D5CD0A385ACB60D5D5E8D969F26C3A6BC0C08FF0838DBE9CA106229C8DE ] storflt C:\Windows\system32\DRIVERS\vmstorfl.sys
18:05:03.0659 0x0c48 storflt - ok
18:05:03.0690 0x0c48 [ 5337E138B49ED1F44CCBA4073BC35C20, 2B296973215E3865A56C46DC3D27F1460D96BC321558CE7A911B05B0E7BF397F ] StorSvc C:\Windows\system32\storsvc.dll
18:05:03.0768 0x0c48 StorSvc - ok
18:05:03.0799 0x0c48 [ 543CD3CC0E05B8D8815E0D4F040B6F59, 4B57C9534E94A0A67FC82DBD4FAECACA180BEC281FB477550A37C0A04777E09E ] storvsc C:\Windows\system32\drivers\storvsc.sys
18:05:03.0830 0x0c48 storvsc - ok
18:05:03.0877 0x0c48 [ 8BC1C1ED6EF9C985A3FAA6A72F41679A, 82CC77030D23013572B4A64A64B6156789F253BF56268B790093CE3D345410A0 ] svsvc C:\Windows\system32\svsvc.dll
18:05:03.0940 0x0c48 svsvc - ok
18:05:03.0971 0x0c48 [ 4AFD66AAE74FFB5986BC240744DC5FC9, 0C9347614E3FD3B4D3B29FA4A5DA23FF6EE4CD9A1FFC378B855B8DE61B2876CF ] swenum C:\Windows\System32\drivers\swenum.sys
18:05:04.0002 0x0c48 swenum - ok
18:05:04.0065 0x0c48 [ 502F9488540051F3E6C39889ECFA76BB, 22ABD681BE4CF8A1F484C6363C1334B1EF7A6C074D837B0121DE1896887B84C6 ] swprv C:\Windows\System32\swprv.dll
18:05:04.0174 0x0c48 swprv - ok
18:05:04.0284 0x0c48 [ A06CB9269D29EE3D0F3F5630ABB660B8, 519A01FC7D9414B26CCBC23E7FB1CEAF1C91CD173B4F4A4025F8316B7460C584 ] SysMain C:\Windows\system32\sysmain.dll
18:05:04.0409 0x0c48 SysMain - ok
18:05:04.0471 0x0c48 [ 6FB88606C4A71E1BFAF97D63A676C673, D72F93A482E989ACA50F9647B7AD699A4656AEAACF377BB2B8CEBB094B748852 ] SystemEventsBroker C:\Windows\System32\SystemEventsBrokerServer.dll
18:05:04.0534 0x0c48 SystemEventsBroker - ok
18:05:04.0596 0x0c48 [ A6C06C45C44AD06C70AF8899AEC15BDC, AC2CCCDBA6B94BA85A6D41B47343193D175786D4ECF71AE9C7766ADD63A1273F ] TabletInputService C:\Windows\System32\TabSvc.dll
18:05:04.0737 0x0c48 TabletInputService - ok
18:05:04.0768 0x0c48 [ 88B7721AB551C4325036B25A34A2BF7B, 2817CC6294542524EC373A674535F913440736BEBE81233CA91D5ECD93620B02 ] TapiSrv C:\Windows\System32\tapisrv.dll
18:05:04.0846 0x0c48 TapiSrv - ok
18:05:05.0127 0x0c48 [ 37D85E873C9531A2F88DD9C63D3F8A9E, C31FF8324962B72DAED445F0A264E3E2E51296DDC98A5914DCE155693FB18868 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
18:05:05.0346 0x0c48 Tcpip - ok
18:05:05.0721 0x0c48 [ 37D85E873C9531A2F88DD9C63D3F8A9E, C31FF8324962B72DAED445F0A264E3E2E51296DDC98A5914DCE155693FB18868 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
18:05:05.0909 0x0c48 TCPIP6 - ok
18:05:05.0971 0x0c48 [ 8F2A13A5DF99D72FDDE87F502A66F989, 2228C62ACDB4CBBFDD2BE705E604E0B9A8AEA7146F65F2D8B9B2A2FB49ACFAE1 ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
18:05:06.0034 0x0c48 tcpipreg - ok
18:05:06.0065 0x0c48 [ 73DC722CE5DF26D7638CE2446F2655C7, 9B8E6F6DEA5E0C2AEAC24A31897D2E73F86EF44F1C25FEF82D2C860353793817 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
18:05:06.0127 0x0c48 tdx - ok
18:05:06.0221 0x0c48 [ BB676D2C7AD5E7131D12417E4691F9B9, C6DE7D8C08C2F059C696E9D63FC55692C8CB37FECF92F5A863D7D2C5AF3B425F ] Te.Service C:\Program Files (x86)\Windows Kits\8.0\Testing\Runtimes\TAEF\Wex.Services.exe
18:05:06.0284 0x0c48 Te.Service - detected UnsignedFile.Multi.Generic ( 1 )
18:05:08.0940 0x0c48 Detect skipped due to KSN trusted
18:05:08.0940 0x0c48 Te.Service - ok
18:05:09.0018 0x0c48 [ F7C8AB5D8AFFAA318D6A21093D139BF4, 0A35052EF7DC8615783A23897358D8C579BE694363615C9563FF629E7B719991 ] terminpt C:\Windows\System32\drivers\terminpt.sys
18:05:09.0081 0x0c48 terminpt - ok
18:05:09.0174 0x0c48 [ 541EE228D0DEF392F7B2DFD885DD021B, 594D6538FA4DB5EF4D130007D7C29051EC2EDCA39EBB119695B58E9CBB0EB728 ] TermService C:\Windows\System32\termsrv.dll
18:05:09.0268 0x0c48 TermService - ok
18:05:09.0299 0x0c48 [ 519A6F672FFF56B7D8EE8C730CEC8ECD, 2B36F10C0AE16A261DC0887B1050808BA1F0568F3879E4ABC3D370F08C3FADB7 ] Themes C:\Windows\system32\themeservice.dll
18:05:09.0378 0x0c48 Themes - ok
18:05:09.0440 0x0c48 [ EEE908BE7143FCA48CF0CB87214E2AB8, 4F9BD299F559DD36DBD93489CFAA753F236FBB70946E034D2E2260059AE20962 ] THREADORDER C:\Windows\system32\mmcss.dll
18:05:09.0471 0x0c48 THREADORDER - ok
18:05:09.0534 0x0c48 [ 4515B9E4140F04FB3907692DF89FCA87, F68EC56524BDA877646E987BE7414C1D622BD9FF05A5AEADCA39030FDC2B0115 ] TimeBroker C:\Windows\System32\TimeBrokerServer.dll
18:05:09.0596 0x0c48 TimeBroker - ok
18:05:09.0643 0x0c48 [ E94F7A7B48C7638D1F3F8089344C97B7, 276CDE59614D563A52529BCC4BFC726E5F5BE131C9C4142558A644D79328C810 ] TPM C:\Windows\system32\drivers\tpm.sys
18:05:09.0690 0x0c48 TPM - ok
18:05:09.0753 0x0c48 [ 8C8CF3041B27E7657ADD0EE17F6DBFCA, A6846478B9E7B0A509E5A28C6C7B66ED39F0247F9AFF01E3C3CADC0DBEF3CA00 ] TrkWks C:\Windows\System32\trkwks.dll
18:05:09.0815 0x0c48 TrkWks - ok
18:05:09.0909 0x0c48 [ D5747C16225B4C7B0D04511DB0407544, 413AC0BF02EE3E4B93784DAA6F29BA41E569948D4B3A41AA1AB7E06720EBEBD5 ] Trufos C:\Windows\system32\DRIVERS\Trufos.sys
18:05:09.0987 0x0c48 Trufos - ok
18:05:10.0096 0x0c48 [ 8ABBB5CE0C62E0A6D28F32F44B7F865C, 4C78FE2A4A25A758D5191C4EDB2A6FE691FF82E7C16C0F146DC96DAD87D4F64E ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
18:05:10.0174 0x0c48 TrustedInstaller - ok
18:05:10.0206 0x0c48 [ 4E7C5FB10A50435523DE0CAA37DE2BD3, D6206DF61950F2541FB754E57C4D9EF9FA0CC1EDD6F6FA4E45F02B47958493F7 ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
18:05:10.0284 0x0c48 TsUsbFlt - ok
18:05:10.0300 0x0c48 [ 16D684A820872EE54F6370703AC0B513, 795E20484358424CE9FA766937DD99413025A8AF967D03490392E8E02A382D0B ] TsUsbGD C:\Windows\System32\drivers\TsUsbGD.sys
18:05:10.0346 0x0c48 TsUsbGD - ok
18:05:10.0393 0x0c48 [ 78C9EE193AC2B4CBDBC48B620314D740, 41523E47D321BFF5778F5E453545B928C0A469C3BBA51578E74D6721D7DF9273 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
18:05:10.0456 0x0c48 tunnel - ok
18:05:10.0518 0x0c48 [ 6D4F67CA56ACA2085DFA2CD89EAFBC1A, AA7DA2207C0236F47859A4791F9D7301E7ADB50A59D831DC859ECC7CA70D3E1D ] uagp35 C:\Windows\system32\drivers\uagp35.sys
18:05:10.0565 0x0c48 uagp35 - ok
18:05:10.0581 0x0c48 [ 6FD6D03B7752C78712E5CFF29A305026, F09C5188AAFCF4C77B05BA1E604F9912782A9F1371F72F959288EBC2725407ED ] UASPStor C:\Windows\System32\drivers\uaspstor.sys
18:05:10.0628 0x0c48 UASPStor - ok
18:05:10.0690 0x0c48 [ 061BA3EE0D2BE17944990544008CF190, C9236D368EC2281B545E8C008BC2801F21A9716ED3D4DAEDB0751A5008346E81 ] UCX01000 C:\Windows\System32\drivers\ucx01000.sys
18:05:10.0737 0x0c48 UCX01000 - ok
18:05:10.0800 0x0c48 [ 25C50F4EDF70D0A831E0566BD181CCF2, F2F9E86FB5617C16077D2073EC0AA747F76F1EB5148BA110347A84F3C3569F83 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
18:05:10.0878 0x0c48 udfs - ok
18:05:10.0925 0x0c48 [ FB3475FEA1CCB0DAEA1EBE44D0E3BB7D, 16DE6E0894C356A58AF12BEC2FE9B188F147DD4B16CB2414DE600CE4127F929D ] UI0Detect C:\Windows\system32\UI0Detect.exe
18:05:10.0971 0x0c48 UI0Detect - ok
18:05:11.0050 0x0c48 [ 07FEBCDF24FABA0D47B635D85A0FFB7A, 452C04B14681EBCE8B1B25B75A1B7CC978722B7DDE54D624E17841B14ACCF65D ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
18:05:11.0096 0x0c48 uliagpkx - ok
18:05:11.0128 0x0c48 [ 02CEB3FE6152668A7BA420B93B664860, 613F27540FD1EFE2442E326F507DACD5A25691C8481937022B7E1104F3E6E9E2 ] umbus C:\Windows\System32\drivers\umbus.sys
18:05:11.0190 0x0c48 umbus - ok
18:05:11.0221 0x0c48 [ 991EE6B5FC41EAEF99C8AF5B92F2CA09, 30AAD7D18FF5962CEC7180359D148EED5A1BF193DDB2B34508897FC3EBA692C3 ] UmPass C:\Windows\System32\drivers\umpass.sys
18:05:11.0284 0x0c48 UmPass - ok
18:05:11.0315 0x0c48 [ 43FEFB040A0CC30F795FBF544169594D, F2A730C0F7C883321C378D4564120A40428D7F8E393F02C8D6A08934795A35C7 ] UmRdpService C:\Windows\System32\umrdp.dll
18:05:11.0362 0x0c48 UmRdpService - ok
18:05:11.0518 0x0c48 [ E1A119AD21F5AFE22EB516C549306D3D, 48769D5E7A78B7A2C00F1F6798AC133CF3E0B2C76F71D3719BD741DDD8F2D229 ] UNS C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
18:05:11.0581 0x0c48 UNS - ok
18:05:11.0737 0x0c48 [ 14D22C411854AA2560AFC94CD2D5E61F, BB376734733671C02319E6DB1800D41212694446FD65465498C92D4ECBFE7458 ] upnphost C:\Windows\System32\upnphost.dll
18:05:11.0831 0x0c48 upnphost - ok
18:05:11.0878 0x0c48 [ C9E9D59C0099A9FF51697E9306A44240, 78D9A7A5E5742962B6978F475BF06CB32262F1D214699D3D40538476A58012A1 ] USBAAPL64 C:\Windows\System32\Drivers\usbaapl64.sys
18:05:11.0956 0x0c48 USBAAPL64 - ok
18:05:11.0987 0x0c48 [ C976C4306F9AE133D6BBD47FDFC3BF92, 820413D92D6A89055A7F26523BF5CC4B668610C4A06E8B0D163FBF929B1DFA9A ] usbccgp C:\Windows\System32\drivers\usbccgp.sys
18:05:12.0034 0x0c48 usbccgp - ok
18:05:12.0065 0x0c48 [ 427B6DB8C05A5A977E8C3525370A2595, C67222CA9123AE12D953995326B3B582C146CEA89594B7209DB0B1F628A0118D ] usbcir C:\Windows\System32\drivers\usbcir.sys
18:05:12.0143 0x0c48 usbcir - ok
18:05:12.0175 0x0c48 [ B24FDEB1B18496F1B463782235AA3AF1, 3F5036F36987C8007D03DAFC3EC30615515BE96D9A1DF879BCD4EB0E66CD50B1 ] usbehci C:\Windows\System32\drivers\usbehci.sys
18:05:12.0206 0x0c48 usbehci - ok
18:05:12.0315 0x0c48 [ F8C2A832DF9403F5EA8080CBDBDA95FB, 50E9455465672BC13EB945BEC132D2F30BA2EB25C68928D2B4C256F2DB292A83 ] usbhub C:\Windows\System32\drivers\usbhub.sys
18:05:12.0425 0x0c48 usbhub - ok
18:05:12.0503 0x0c48 [ E5F7328B1D29BCE791862CD3C0DD382A, E520D75CA6E4EDB06F576D97FB6B7CFD46A3EF3A3AC881537DE3BB8C862FE8C3 ] USBHUB3 C:\Windows\System32\drivers\UsbHub3.sys
18:05:12.0581 0x0c48 USBHUB3 - ok
18:05:12.0659 0x0c48 [ 325F6179009B5A7F6118951A5BA422AB, 756CB2893530485E8C3ACFF5A40F4C6EB446E72B2296E8772058E407A5E066DE ] usbohci C:\Windows\System32\drivers\usbohci.sys
18:05:12.0800 0x0c48 usbohci - ok
18:05:12.0847 0x0c48 [ 9FDBA6982582A6F2354144980F641E7B, 054A65412CB22C5BE970FD3A266E140110D869B614B9F9894628D553CE82C991 ] usbprint C:\Windows\System32\drivers\usbprint.sys
18:05:12.0925 0x0c48 usbprint - ok
18:05:12.0972 0x0c48 [ BFC7FE4AAEB61317A921871B4085EF4B, CBC3FBAEAD6C82A437CC87A97007EF807C64053AB8FA5C3233C2A0CF6FC8D019 ] USBSTOR C:\Windows\System32\drivers\USBSTOR.SYS
18:05:13.0018 0x0c48 USBSTOR - ok
18:05:13.0097 0x0c48 [ 1ABF657259DB57F7E5558E4DF1357C0C, 34EAF5DEA3293CFA96BA81B036305FD90ABAE05B9CB73D4F54FB236448C1978C ] usbuhci C:\Windows\System32\drivers\usbuhci.sys
18:05:13.0159 0x0c48 usbuhci - ok
18:05:13.0222 0x0c48 [ 9EF7C01D3ACCBC243B5CB1A95865B2FF, 367A7640B4992E68EB3E1BBD78D3014742F4CC4056750E389048C653251DAD33 ] usbvideo C:\Windows\System32\Drivers\usbvideo.sys
18:05:13.0316 0x0c48 usbvideo - ok
18:05:13.0379 0x0c48 [ 8DC398D7B8E02C929A2096E74A170970, 87B3CE84D05F50C33935B28F0AFF1CB15DAA4530768BA1FB25C311609CD4B0A5 ] USBXHCI C:\Windows\System32\drivers\USBXHCI.SYS
18:05:13.0457 0x0c48 USBXHCI - ok
18:05:13.0488 0x0c48 [ F702AB6181513303AB0FC8D59E52708B, D46939B9F672269E65C98606A573C849C4AF5A26E4E75D3A8FE56A65B3A6EA08 ] VaultSvc C:\Windows\system32\lsass.exe
18:05:13.0535 0x0c48 VaultSvc - ok
18:05:13.0582 0x0c48 [ BACECBFF9C97F7627A60B0E0F1FE7EE8, DC82F767D066B93A48A090DC7146EBCCDC54B43C6CD9DF29A160E09E3A531DC8 ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
18:05:13.0629 0x0c48 vdrvroot - ok
18:05:13.0723 0x0c48 [ 1B4488988E5E7512E6C5CD1255E9E973, B82C26E767A8895CFFD76C11D07D5C945C38E1BD32CC27D20A6C0FA7F6064FC5 ] vds C:\Windows\System32\vds.exe
18:05:13.0848 0x0c48 vds - ok
18:05:13.0879 0x0c48 [ 74FA2D4368DE6F6CE14393EDF1F342BE, C5CE4164B2C3D583A7FB8687ADEADCDB08D36A5AB1965E5FC6949AEED15881C8 ] VerifierExt C:\Windows\system32\drivers\VerifierExt.sys
18:05:13.0926 0x0c48 VerifierExt - ok
18:05:14.0019 0x0c48 [ 500BE6B2E49883720D0AE8BB859ED7A3, 4606B02A3E8123510676E554635EB5ECF9DC5F2B83928710C8563787C52CC102 ] vhdmp C:\Windows\System32\drivers\vhdmp.sys
18:05:14.0113 0x0c48 vhdmp - ok
18:05:14.0160 0x0c48 [ F5B4A14B00E89250C50982AC762DDD1D, 581CD97DD42E74A82F06BFB827DFC82618B4A8667ACA7E93C628BB0D056CE8F0 ] viaide C:\Windows\system32\drivers\viaide.sys
18:05:14.0207 0x0c48 viaide - ok
18:05:14.0223 0x0c48 [ 78DB50F7329F6D1311658DABFFFC8BE0, 8CB0C831608033C4BC1D2DA7FAA7D429333A3654E76A989F7AF85BFC5F086BE9 ] vmbus C:\Windows\system32\drivers\vmbus.sys
18:05:14.0270 0x0c48 vmbus - ok
18:05:14.0285 0x0c48 [ ECFEE2F2BA3932C7880D1A8F67D68F91, 57DCD55A518A9FBDEF72B511C643B1062C3F7BD339F4B0FC19E9D84C615B968D ] VMBusHID C:\Windows\System32\drivers\VMBusHID.sys
18:05:14.0316 0x0c48 VMBusHID - ok
18:05:14.0410 0x0c48 [ B8FF4248103E6EA47B9D85C55673ABA3, 4337FA0F0FB5C45BFC42FF17DFAA5DCA394C74BA8283851504AD79F47B69CB0D ] vmicheartbeat C:\Windows\System32\ICSvc.dll
18:05:14.0473 0x0c48 vmicheartbeat - ok
18:05:14.0535 0x0c48 [ B8FF4248103E6EA47B9D85C55673ABA3, 4337FA0F0FB5C45BFC42FF17DFAA5DCA394C74BA8283851504AD79F47B69CB0D ] vmickvpexchange C:\Windows\System32\ICSvc.dll
18:05:14.0582 0x0c48 vmickvpexchange - ok
18:05:14.0629 0x0c48 [ B8FF4248103E6EA47B9D85C55673ABA3, 4337FA0F0FB5C45BFC42FF17DFAA5DCA394C74BA8283851504AD79F47B69CB0D ] vmicrdv C:\Windows\System32\ICSvc.dll
18:05:14.0676 0x0c48 vmicrdv - ok
18:05:14.0707 0x0c48 [ B8FF4248103E6EA47B9D85C55673ABA3, 4337FA0F0FB5C45BFC42FF17DFAA5DCA394C74BA8283851504AD79F47B69CB0D ] vmicshutdown C:\Windows\System32\ICSvc.dll
18:05:14.0754 0x0c48 vmicshutdown - ok
18:05:14.0770 0x0c48 [ B8FF4248103E6EA47B9D85C55673ABA3, 4337FA0F0FB5C45BFC42FF17DFAA5DCA394C74BA8283851504AD79F47B69CB0D ] vmictimesync C:\Windows\System32\ICSvc.dll
18:05:14.0816 0x0c48 vmictimesync - ok
18:05:14.0848 0x0c48 [ B8FF4248103E6EA47B9D85C55673ABA3, 4337FA0F0FB5C45BFC42FF17DFAA5DCA394C74BA8283851504AD79F47B69CB0D ] vmicvss C:\Windows\System32\ICSvc.dll
18:05:14.0895 0x0c48 vmicvss - ok
18:05:14.0957 0x0c48 [ CB60FAAED8B49B812EBBF77EB87D9B18, ADA7C68D4C4981555ED48981E8B7ACBEEF5C39F902EB98782FC3DFF495FE0C33 ] volmgr C:\Windows\system32\drivers\volmgr.sys
18:05:15.0004 0x0c48 volmgr - ok
18:05:15.0051 0x0c48 [ A74101DA9809251BCD0E5A26BAE0F824, 15A3A7CC31A13C5882812C344D0937A8A4503D12DB07B9F7F2A8191B739CDBF7 ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
18:05:15.0113 0x0c48 volmgrx - ok
18:05:15.0160 0x0c48 [ 78A5BBA3819FFFC62FFEC3E2220D102D, A95797B97D576374C2CDA8A09E6C51A89BADE428AAA89D5093579C85062E5874 ] volsnap C:\Windows\system32\drivers\volsnap.sys
18:05:15.0223 0x0c48 volsnap - ok
18:05:15.0254 0x0c48 [ A8DA1C1B52ECEA3726DEBED4FF1B700D, 75C024EC3858DF24FB82FE105BDD1E37900D53EFE9D72F42CDDFFD0742525586 ] vpci C:\Windows\System32\drivers\vpci.sys
18:05:15.0301 0x0c48 vpci - ok
18:05:15.0410 0x0c48 [ 9B4F6978628D07FAEBF77FF6F8F2960D, FC36FE6BE77445D55E4E92CE3EAF172E253EC8CF8D2EBCA204969CF21FFA5600 ] VsEtwService120 C:\Program Files (x86)\Microsoft Visual Studio 12.0\Common7\Packages\Debugger\Services\VsEtwService.exe
18:05:15.0457 0x0c48 VsEtwService120 - ok
18:05:15.0488 0x0c48 [ 38A60CD9C009C55C6D3B5586F8E6A353, 7F7E2AE39F1A0A5245650911E310E0948BC22A18262A16FA76B44A042D66312D ] vsmraid C:\Windows\system32\drivers\vsmraid.sys
18:05:15.0535 0x0c48 vsmraid - ok
18:05:15.0629 0x0c48 [ F972436B5ED08069A1E7D623B77C226A, FA01505B5EC392ADE55019C22588D2F3608CBF9A6B03A44203F3587D372F8342 ] VSPerfDrv110 C:\Program Files (x86)\Microsoft Visual Studio 11.0\Team Tools\Performance Tools\x64\VSPerfDrv110.sys
18:05:15.0660 0x0c48 VSPerfDrv110 - ok
18:05:15.0770 0x0c48 [ D0C69E44BC1E1D4AD290FD84104623D8, 4C86760EA4BD2A64FFD42D89284EC3E5048CB2F0F6F3B80D017B41C0D2456A90 ] VSS C:\Windows\system32\vssvc.exe
18:05:15.0926 0x0c48 VSS - ok
18:05:15.0988 0x0c48 [ A0F6FE0FC2F647C22BBFD6BD4249DBCC, AC2F3C70EDCA0AFBB2606267DFE6D3E8E7B0772140153BAD6B0A9EDE6A1D2F29 ] VSTXRAID C:\Windows\system32\drivers\vstxraid.sys
18:05:16.0113 0x0c48 VSTXRAID - ok
18:05:16.0129 0x0c48 [ 62460A45435A26A334907E3F2EA45611, FEF86E05117CC0AAB8211CA1542776EB620BD4699BD590D91F16621ED35B9824 ] vwifibus C:\Windows\System32\drivers\vwifibus.sys
18:05:16.0176 0x0c48 vwifibus - ok
18:05:16.0191 0x0c48 [ 095E943D27025E4D588AF0A72CC2318F, 3CE406A202F93EF8C4BC7317621A672670D734C69166393CA7256D5E5E667041 ] vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys
18:05:16.0254 0x0c48 vwififlt - ok
18:05:16.0270 0x0c48 [ 73FA1A41A97A5C34ADC03B3577FF1A86, CBA4BC0DA837C163587BBB4BF2AC1549C72440307C984D3CDF8995023718136C ] vwifimp C:\Windows\system32\DRIVERS\vwifimp.sys
18:05:16.0332 0x0c48 vwifimp - ok
18:05:16.0379 0x0c48 [ F690B6EEAA94576727B24376D7ED3601, A61EE96024C8FC4058481DFB1E7F0AD746565368672FA3B6BA8F9E23D0F47E4C ] W32Time C:\Windows\system32\w32time.dll
18:05:16.0457 0x0c48 W32Time - ok
18:05:16.0520 0x0c48 [ 6B806E893714019969E2B50D7EF6A4D9, 38FE2B01082DC4C2A0C11A292016A727F48C3DF1293DC3A0216B2254A452263F ] WacomPen C:\Windows\System32\drivers\wacompen.sys
18:05:16.0567 0x0c48 WacomPen - ok
18:05:16.0629 0x0c48 [ ADC5A921A818633D7CA599446AE1A9BF, C26BE434B3076B6387ADEB44F4196C2A66ABAEE521B6418AD0D230BF9D6CFF68 ] WakeupService C:\Program Files\ASUS\ASUS VivoBook\ASUSWakeupService.exe
18:05:16.0676 0x0c48 WakeupService - ok
18:05:16.0707 0x0c48 [ 61F6972FF9AC9A8D0B4D62076DC30051, 5A028036461534CA53CB2D6C1D720783D408A9F17FD77AB1ECDD75FBAD9F2381 ] Wanarp C:\Windows\system32\DRIVERS\wanarp.sys
18:05:16.0770 0x0c48 Wanarp - ok
18:05:16.0770 0x0c48 [ 61F6972FF9AC9A8D0B4D62076DC30051, 5A028036461534CA53CB2D6C1D720783D408A9F17FD77AB1ECDD75FBAD9F2381 ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
18:05:16.0801 0x0c48 Wanarpv6 - ok
18:05:16.0942 0x0c48 [ 42DF22F8C448E7CD219F6D63743505E2, 063F4280C7BD20CE1360436B76A17DFE17FF611F75337A47373D098CC6C263BF ] wbengine C:\Windows\system32\wbengine.exe
18:05:17.0113 0x0c48 wbengine - ok
18:05:17.0176 0x0c48 [ 31D37B2F6069C631EF0557D322924812, 6E18A1060F3C8F4BF220E286C44327866A8F9109E74928AA2D8C2DA9C452038B ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
18:05:17.0254 0x0c48 WbioSrvc - ok
18:05:17.0301 0x0c48 [ AF1349386D4C6786EF4E34FACEF15042, 6B33778409BC54C1955B92508ADDEBAFD629141961B71C94A91DC4CFE8391A13 ] Wcmsvc C:\Windows\System32\wcmsvc.dll
18:05:17.0379 0x0c48 Wcmsvc - ok
18:05:17.0426 0x0c48 [ 5B5FEAB51172F5513C2CF7B39CFA6A01, 4FDAC5168E00D44781C6F5D98ECD4977A12663C5CE6FFDFF9DBC89A28D6212D8 ] wcncsvc C:\Windows\System32\wcncsvc.dll
18:05:17.0535 0x0c48 wcncsvc - ok
18:05:17.0582 0x0c48 [ E19556D414332E2BEBA1F368229006B4, AB3454EC85D7B6E62D44C4510C1547AE7F736558588E54B0E265F7B3A5810E15 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
18:05:17.0645 0x0c48 WcsPlugInService - ok
18:05:17.0676 0x0c48 [ B3A4D918DAB90505B6BC7B70632913CB, ECC19DCD7902C29D0682C70B9546CF8B82477A32147EE30EB6750D8499605B46 ] Wd C:\Windows\system32\drivers\wd.sys
18:05:17.0707 0x0c48 Wd - ok
18:05:17.0754 0x0c48 [ FD47DF026B32969B8A68721A0243E8EE, 57A7B9B40CEDADFB023AEDD9F29869F1B93EA2596F47B5DDC233D57FC585CCE1 ] WdBoot C:\Windows\system32\drivers\WdBoot.sys
18:05:17.0801 0x0c48 WdBoot - ok
18:05:17.0879 0x0c48 [ E2C933EDBC389386EBE6D2BA953F43D8, AF1DEADD5F1267CCEBD226E8EEB971D1946EA6A5A9645A36F5D111F758AF2F07 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
18:05:17.0957 0x0c48 Wdf01000 - ok
18:05:18.0004 0x0c48 [ 5F425D842DD6ADE9F95A51A0616AFAD7, 807B8E6A4FE443A362076C225F588A8C897CFE24A6367F4D461C8F6D3EF004C5 ] WdFilter C:\Windows\system32\drivers\WdFilter.sys
18:05:18.0051 0x0c48 WdFilter - ok
18:05:18.0082 0x0c48 [ 240FC332484572227CD1DF82407F33E5, 5210549EC519DD3BCA6BBC995F01E1E3E0988580797E4BD1433F429E0CB30412 ] WdiServiceHost C:\Windows\system32\wdi.dll
18:05:18.0160 0x0c48 WdiServiceHost - ok
18:05:18.0160 0x0c48 [ 240FC332484572227CD1DF82407F33E5, 5210549EC519DD3BCA6BBC995F01E1E3E0988580797E4BD1433F429E0CB30412 ] WdiSystemHost C:\Windows\system32\wdi.dll
18:05:18.0223 0x0c48 WdiSystemHost - ok
18:05:18.0254 0x0c48 [ F2002DA5E6B78C15B2CD48CFF8F0FBB6, 4281100271761521F75F4D5A3D2E9FF40A9C7D81CEDAFD2EDD95788534090CA6 ] WebClient C:\Windows\System32\webclnt.dll
18:05:18.0317 0x0c48 WebClient - ok
18:05:18.0395 0x0c48 [ 35FD720943D4FCD75C3275BF062FF140, 9D8345E6DE1AE23F93AD0B52D27D1CCFD69EF7EE50654F92CA999BEC4570A773 ] Wecsvc C:\Windows\system32\wecsvc.dll
18:05:18.0473 0x0c48 Wecsvc - ok
18:05:18.0520 0x0c48 [ 4D2612E3C462B68F499D840B1133263E, 4DDAEB4480AEC31A8184838588E0D3DFA31CE6D2FA6E906926860C75F52DC7B7 ] wercplsupport C:\Windows\System32\wercplsupport.dll
18:05:18.0645 0x0c48 wercplsupport - ok
18:05:18.0692 0x0c48 [ 5F70EBFC1F75B487DE79501E3CCBDB54, 2FCA57BF60A43B03BB42FBF22BBFC19AD2266FBBD818494AD114125E6E433321 ] WerSvc C:\Windows\System32\WerSvc.dll
18:05:18.0785 0x0c48 WerSvc - ok
18:05:18.0832 0x0c48 [ 44BB9C31E6242C4BD1CE7C2B440C2533, E603BB001028918B687818E930340008C752679B133037367A8A8E41DA559FFE ] WFPLWFS C:\Windows\system32\DRIVERS\wfplwfs.sys
18:05:18.0879 0x0c48 WFPLWFS - ok
18:05:18.0895 0x0c48 [ 60E0C220593DA4F7C289CB909D2DBAE0, 057CA7727F748600CC155043081AB9E3244763CF4913F317D13226A515F6FDB6 ] WiaRpc C:\Windows\System32\wiarpc.dll
18:05:18.0942 0x0c48 WiaRpc - ok
18:05:18.0989 0x0c48 [ A3C7624A42A3447EF5EDD1ED37FE4E60, BD8BDF0A571873FA8277878AF7AED11196CFF1B4DF1EA6BA13BD4887D7B63B94 ] WIMMount C:\Windows\system32\drivers\wimmount.sys
18:05:19.0035 0x0c48 WIMMount - ok
18:05:19.0051 0x0c48 WinDefend - ok
18:05:19.0160 0x0c48 [ 7911470B6018059A880469A63B65700A, 4B6131491A028FBCA54AC261112D183EFD42E98160545C8E8DFBDA01C87B3FB5 ] WinHttpAutoProxySvc C:\Windows\system32\winhttp.dll
18:05:19.0285 0x0c48 WinHttpAutoProxySvc - ok
18:05:19.0442 0x0c48 [ 3D6B518B71C75C8FA4115A33615C107A, ED7A266013D29D3B1A462464735C3632BEA121D1B32553907AEAA0B00595C3DF ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
18:05:19.0504 0x0c48 Winmgmt - ok
18:05:19.0879 0x0c48 [ 8E212A627F33F6FC3B5F3BB47212F66E, 9BBFE26ABFA14F346FE3711D13D959523EEA23608A33C16F3D750D66CA511911 ] WinRM C:\Windows\system32\WsmSvc.dll
18:05:20.0207 0x0c48 WinRM - ok
18:05:20.0254 0x0c48 [ BB20956C424531003F7FA6CD36F11D5D, 2C55F1C7553A527A7C4C34E730BE943269AE23928731C64D3DC945E07AE1771E ] WinUsb C:\Windows\system32\DRIVERS\WinUSB.sys
18:05:20.0332 0x0c48 WinUsb - ok
18:05:20.0582 0x0c48 [ 6351724B8FA0255C2DBD970297F00B93, A02F274479F9F32E30C75A5BD991B008B3CCB47D380D5870563EF918DAC5730E ] WlanSvc C:\Windows\System32\wlansvc.dll
18:05:20.0723 0x0c48 WlanSvc - ok
18:05:21.0020 0x0c48 [ B330CE47FB74A6BE9A3FFFF4B3F64D9B, B76226808406D8B38DE2D3A8CCE633BB507022C8BAAA6C3DAD34204CC6CE1284 ] wlidsvc C:\Windows\system32\wlidsvc.dll
18:05:21.0254 0x0c48 wlidsvc - ok
18:05:21.0286 0x0c48 [ E2A596CACFC6504306CDB7B593B90084, DF89CF57249553CE922C841F18B99A213185FA1099C053B9BB8C0F6E5BC3FEC0 ] WmiAcpi C:\Windows\System32\drivers\wmiacpi.sys
18:05:21.0317 0x0c48 WmiAcpi - ok
18:05:21.0379 0x0c48 [ D113499052C5E541906B727779F0F959, 05FB51086C0A0CE3812A7E6098C5A454ECCFE8553669CFA715153564F2226DB0 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
18:05:21.0426 0x0c48 wmiApSrv - ok
18:05:21.0457 0x0c48 WMPNetworkSvc - ok
18:05:21.0520 0x0c48 [ C6FF953D5D6F2EAE3B8883474D5076B3, 001CBB7FBC30209C892869258E5ABD3F0932886E156ECB10DCA599F6D32648BE ] wpcfltr C:\Windows\system32\DRIVERS\wpcfltr.sys
18:05:21.0598 0x0c48 wpcfltr - ok
18:05:21.0614 0x0c48 [ A6ED163169876BFD2437E872FE2F1509, C13E8676800EEEF690F51C4DEA660B36C8734AE2CCAAC48054E10D74B98949B8 ] WPCSvc C:\Windows\System32\wpcsvc.dll
18:05:21.0661 0x0c48 WPCSvc - ok
18:05:21.0692 0x0c48 [ 3013658A4D327854BEEC4A08D9655194, C4CF5AA6A47CC55E7037B0BFE20AE0A6442ADDC5DEB89D6861C98C61851FA821 ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
18:05:21.0786 0x0c48 WPDBusEnum - ok
18:05:21.0801 0x0c48 [ 0346CAFC181C91C6E2330332EB332ED6, D46F44C339399CAAE13CD71C53A169E95065208E07E5420DE00A4509D6CB056F ] WpdUpFltr C:\Windows\system32\drivers\WpdUpFltr.sys
18:05:21.0895 0x0c48 WpdUpFltr - ok
18:05:21.0926 0x0c48 [ BC8B5CB336E63BB25EAD1CE8EDD34B81, A42759956EDCCC6D0688240AA4F833FB9CA132D42D2D901CDCBB24DCE1788C1D ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
18:05:22.0020 0x0c48 ws2ifsl - ok
18:05:22.0067 0x0c48 [ 012CFE7F0F95266F554EE3B91EE2128A, 866312F6BF7369BE686F1BA9F01311C99E95E268C6E63BE37C841F54F5AA0DB8 ] wscsvc C:\Windows\System32\wscsvc.dll
18:05:22.0129 0x0c48 wscsvc - ok
18:05:22.0145 0x0c48 WSearch - ok
18:05:22.0504 0x0c48 [ D4D04839F3DFAF09D94BAB1016F7A297, 944A41D251F522EE87189C1D01CF7EEE2C70BF4353BA4005C44F03DB485F843F ] WSService C:\Windows\System32\WSService.dll
18:05:22.0801 0x0c48 WSService - ok
18:05:23.0270 0x0c48 [ 311E5E1976E0BD9110A88B93158055D5, F1AA738D6AD74C33785EEFE1FBE8A869AAB62417B7D079389293AB1209A849C1 ] wuauserv C:\Windows\system32\wuaueng.dll
18:05:23.0567 0x0c48 wuauserv - ok
18:05:23.0598 0x0c48 [ AB886378EEB55C6C75B4F2D14B6C869F, D6C4602EB8F291DADEDF3CD211013D4AC752DDE7E799C2D8D74AA4F5477CAED6 ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
18:05:23.0645 0x0c48 WudfPf - ok
18:05:23.0676 0x0c48 [ DDA4CAF29D8C0A297F886BFE561E6659, 94E5DD649B5D86FA1A7C7D30FCF9644D0EE048D312E626111458ADF66BFBE978 ] WUDFRd C:\Windows\System32\drivers\WUDFRd.sys
18:05:23.0723 0x0c48 WUDFRd - ok
18:05:23.0770 0x0c48 [ DDA4CAF29D8C0A297F886BFE561E6659, 94E5DD649B5D86FA1A7C7D30FCF9644D0EE048D312E626111458ADF66BFBE978 ] WUDFSensorLP C:\Windows\system32\DRIVERS\WUDFRd.sys
18:05:23.0817 0x0c48 WUDFSensorLP - ok
18:05:23.0864 0x0c48 [ B20F051B03A966392364C83F009F7D17, 88ECEB55AE91F58F592B96EBC10B572747D5A2F9B7629E8F371761E4F7408A65 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
18:05:23.0926 0x0c48 wudfsvc - ok
18:05:23.0973 0x0c48 [ DDA4CAF29D8C0A297F886BFE561E6659, 94E5DD649B5D86FA1A7C7D30FCF9644D0EE048D312E626111458ADF66BFBE978 ] WUDFWpdFs C:\Windows\system32\DRIVERS\WUDFRd.sys
18:05:24.0004 0x0c48 WUDFWpdFs - ok
18:05:24.0051 0x0c48 [ DDA4CAF29D8C0A297F886BFE561E6659, 94E5DD649B5D86FA1A7C7D30FCF9644D0EE048D312E626111458ADF66BFBE978 ] WUDFWpdMtp C:\Windows\system32\DRIVERS\WUDFRd.sys
18:05:24.0098 0x0c48 WUDFWpdMtp - ok
18:05:24.0223 0x0c48 [ 6D9E07436B6646EC8F7EFFD39B6BA288, 82C1CEA93ECEF17D221AD0F87C5BD96F3FD8143841C16BD9608BD4D58D90B8E0 ] WwanSvc C:\Windows\System32\wwansvc.dll
18:05:24.0318 0x0c48 WwanSvc - ok
18:05:24.0396 0x0c48 [ 86B8B1F5C1189D68B07666784BE882FE, 0DD8C627F3DDBDB61B1910540C465C0D62C9F8D84C7CBB6C80782DB02D535AF0 ] ZAtheros Bt and Wlan Coex Agent C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe
18:05:24.0505 0x0c48 ZAtheros Bt and Wlan Coex Agent - detected UnsignedFile.Multi.Generic ( 1 )
18:05:26.0865 0x0c48 Detect skipped due to KSN trusted
18:05:26.0865 0x0c48 ZAtheros Bt and Wlan Coex Agent - ok
18:05:26.0896 0x0c48 ================ Scan global ===============================
18:05:26.0959 0x0c48 [ DDC1AFBF9DDF880CE9BD3896114D8DED, E2406231EA4D2689A5EDFA9BD1A1BC064359D8D23B37F113A18B5EAE3E2D4050 ] C:\Windows\system32\basesrv.dll
18:05:27.0006 0x0c48 [ E9343076AE704D20BB0D01F3AF3EFFEF, FF2CE4146945976F9480690505CECD3C7C719BAF0F633E6192C8272C75EF295D ] C:\Windows\system32\winsrv.dll
18:05:27.0068 0x0c48 [ BD7C6949984D19AAA609896B675E7357, 5B46538B27BC70F5A3805AA63F6AACDC780C7168468FB535F2D35CF26B9DEE06 ] C:\Windows\system32\sxssrv.dll
18:05:27.0193 0x0c48 [ 8F226143046435C75C033B0C52E90FFE, 54FA316485B57D7B8104FE621F5F40DEC35E3D57C3DF46B5F7EACF57445FE7CA ] C:\Windows\system32\services.exe
18:05:27.0224 0x0c48 [ Global ] - ok
18:05:27.0224 0x0c48 ================ Scan MBR ==================================
18:05:27.0240 0x0c48 [ 5FB38429D5D77768867C76DCBDB35194 ] \Device\Harddisk0\DR0
18:05:28.0178 0x0c48 \Device\Harddisk0\DR0 - ok
18:05:28.0178 0x0c48 ================ Scan VBR ==================================
18:05:28.0209 0x0c48 [ 57AB611BD735DAA1FB67E8D2B9CCA5AB ] \Device\Harddisk0\DR0\Partition1
18:05:28.0224 0x0c48 \Device\Harddisk0\DR0\Partition1 - ok
18:05:28.0240 0x0c48 [ 8FA0B2E893E0C0EC0C5C4922E33A4C9F ] \Device\Harddisk0\DR0\Partition2
18:05:28.0256 0x0c48 \Device\Harddisk0\DR0\Partition2 - ok
18:05:28.0287 0x0c48 [ 6614918F2AA4EF9FA2AB77260D404265 ] \Device\Harddisk0\DR0\Partition3
18:05:28.0303 0x0c48 \Device\Harddisk0\DR0\Partition3 - ok
18:05:28.0318 0x0c48 [ 817E3069361537F4DBD78D12D8CA7BF2 ] \Device\Harddisk0\DR0\Partition4
18:05:28.0349 0x0c48 \Device\Harddisk0\DR0\Partition4 - ok
18:05:28.0381 0x0c48 [ 9E3EBE4967FCC2249B3D99C250CCB198 ] \Device\Harddisk0\DR0\Partition5
18:05:28.0428 0x0c48 \Device\Harddisk0\DR0\Partition5 - ok
18:05:28.0474 0x0c48 [ BC72E301F76B53AAC8C44A1CD9D648D8 ] \Device\Harddisk0\DR0\Partition6
18:05:28.0506 0x0c48 \Device\Harddisk0\DR0\Partition6 - ok
18:05:28.0506 0x0c48 ================ Scan active images ========================
18:05:28.0521 0x0c48 [ 07C872F13ACC81A5F10DEC6CF37BF9A8, F017F30879F4231C13A5E3DBE8072BA7D0C84F6596667E5335C155A1C5B628DD ] C:\Windows\System32\Drivers\crashdmp.sys
18:05:28.0521 0x0c48 C:\Windows\System32\Drivers\crashdmp.sys - ok
18:05:28.0521 0x0c48 [ AAF40EB125BED7271F05289873EC4EDB, 4FD912F0BEFD5A16270686BF56BDD8F12A9CAB5E3636E2A3860815B1CA6DD8B3 ] C:\Windows\System32\Drivers\Diskdump.sys
18:05:28.0521 0x0c48 C:\Windows\System32\Drivers\Diskdump.sys - ok
18:05:28.0537 0x0c48 [ 0FE66A51D81A25AACEAAE4C26308121D, C5553F7ABA74A8EB71A4ED0E8F2A6AA2892F871D164F2D4FADB035BE7D1A8C44 ] C:\Windows\System32\Drivers\iaStorA.sys
18:05:28.0537 0x0c48 C:\Windows\System32\Drivers\iaStorA.sys - ok
18:05:28.0553 0x0c48 [ CB9EAD11F3312C77CE9B7F29B59C3A39, E71B768CD85068A5D22697BC1670EBE70885740AC347F52E604CFA8C481995D0 ] C:\Windows\System32\Drivers\dumpfve.sys
18:05:28.0553 0x0c48 C:\Windows\System32\Drivers\dumpfve.sys - ok
18:05:28.0553 0x0c48 [ 339BFF85D788268752DA8C9644B188EE, C2279F1A39AED39865A5027D2FD087F8E82F3ED8C94BA4D922855B98E792AFC5 ] C:\Windows\System32\Drivers\cdrom.sys
18:05:28.0553 0x0c48 C:\Windows\System32\Drivers\cdrom.sys - ok
18:05:28.0568 0x0c48 [ 4163ADE07DB51843AE31F65B94F5398D, 4349E7EF1EE1E71E1F436BA42F5B58871D82B987D513BA2D6E1CEB8A21BD1B20 ] C:\Windows\System32\Drivers\null.sys
18:05:28.0568 0x0c48 C:\Windows\System32\Drivers\null.sys - ok
18:05:28.0568 0x0c48 [ 9E7AEA59776D904607985AFFE7E5E183, C3DB745A9F4DA7CB9628A7913DD52B2444B14FEB9D588FF6558CF52CEB8955EB ] C:\Windows\System32\Drivers\beep.sys
18:05:28.0568 0x0c48 C:\Windows\System32\Drivers\beep.sys - ok
18:05:28.0584 0x0c48 [ 5EC68164E14D25675C98BBB5F09E8606, 1D7EDB21C87039FC5F39F46460AD852BC4EC6B179B1C205D189DD3C397343435 ] C:\Windows\System32\Drivers\BasicRender.sys
18:05:28.0584 0x0c48 C:\Windows\System32\Drivers\BasicRender.sys - ok
18:05:28.0584 0x0c48 [ E6AF4DF1817953D73C519B17CF849756, 26A90EB368A3F572086F223ABED87B8FC6F998AE401C9E52BEB5EE76AB052702 ] C:\Windows\System32\Drivers\dxgkrnl.sys
18:05:28.0584 0x0c48 C:\Windows\System32\Drivers\dxgkrnl.sys - ok
18:05:28.0599 0x0c48 [ B9FF5E13079ADB858ED5C0B1E4CAB225, 56D58A7622618B53E8384AD4A2D62370E0E4368E35BFAD344B2C37FF9ACAE9EE ] C:\Windows\System32\Drivers\watchdog.sys
18:05:28.0599 0x0c48 C:\Windows\System32\Drivers\watchdog.sys - ok
18:05:28.0599 0x0c48 [ 81703BC5D68DEDBB086C2368FBE7B334, CFD4A55C8045C482F8D410514F3211AEFA00097AB395F5A04BFE983ED6254F6B ] C:\Windows\System32\Drivers\BasicDisplay.sys
18:05:28.0599 0x0c48 C:\Windows\System32\Drivers\BasicDisplay.sys - ok
18:05:28.0615 0x0c48 [ 28619B6E5A37F71AE1145643949CFA60, 3F987B3932733067D8752C3E204718CC17199EDCE2D0AB792B5AEF23F8A44131 ] C:\Windows\System32\Drivers\dxgmms1.sys
18:05:28.0615 0x0c48 C:\Windows\System32\Drivers\dxgmms1.sys - ok
18:05:28.0631 0x0c48 [ 3886F1F2A4D2900ABAA7E4486BEEE6A2, ECCA22985838A914EDC866C491DEB64B9FF5110EFA9BEE541F634AC5EC3081F9 ] C:\Windows\System32\Drivers\msfs.sys
18:05:28.0631 0x0c48 C:\Windows\System32\Drivers\msfs.sys - ok
18:05:28.0631 0x0c48 [ 17E19A742FB30C002F8B43575451DBE1, 59D226A4A5B5281C399BE96C694915E38EEAF335D31F346B0C65D8F469D7C9C3 ] C:\Windows\System32\Drivers\npfs.sys
18:05:28.0631 0x0c48 C:\Windows\System32\Drivers\npfs.sys - ok
18:05:28.0646 0x0c48 [ 8F966B0778C248ACC4D22DB88364455E, EAC1780FCA264EFA36FEDAFEF676594D11BDD0C00998C5EBB86F2F21012E71B7 ] C:\Program Files\Lavasoft\Ad-Aware Antivirus\Firewall Engine\1.6.0.0\Drivers\bdfndisf6.sys
18:05:28.0646 0x0c48 C:\Program Files\Lavasoft\Ad-Aware Antivirus\Firewall Engine\1.6.0.0\Drivers\bdfndisf6.sys - ok
18:05:28.0646 0x0c48 [ EC80614A72BC7039D2B22E3DD6C15895, 932260AB126523428B884034162E3619E1B7FA13720F830783B592AAE825AC86 ] C:\Program Files\Lavasoft\Ad-Aware Antivirus\Firewall Engine\1.6.0.0\Drivers\bdfwfpf.sys
18:05:28.0646 0x0c48 C:\Program Files\Lavasoft\Ad-Aware Antivirus\Firewall Engine\1.6.0.0\Drivers\bdfwfpf.sys - ok
18:05:28.0662 0x0c48 [ 749AFA28C01233E93F59BD31B2B088B1, 38D4E4DAFE79F28F67CAED64243689CCD9C9D79E4E9B8D76F6F0C8D36EFA13C7 ] C:\Windows\System32\Drivers\tdi.sys
18:05:28.0662 0x0c48 C:\Windows\System32\Drivers\tdi.sys - ok
18:05:28.0678 0x0c48 [ 73DC722CE5DF26D7638CE2446F2655C7, 9B8E6F6DEA5E0C2AEAC24A31897D2E73F86EF44F1C25FEF82D2C860353793817 ] C:\Windows\System32\Drivers\tdx.sys
18:05:28.0678 0x0c48 C:\Windows\System32\Drivers\tdx.sys - ok
18:05:28.0678 0x0c48 [ 7CEC25C682D319D484630B3952C31A11, 025C46B367E0570E9E3F9DF1564C3E47B1524E9E9A180BBDF0E9C684838F5E42 ] C:\Windows\System32\Drivers\netbt.sys
18:05:28.0678 0x0c48 C:\Windows\System32\Drivers\netbt.sys - ok
18:05:28.0693 0x0c48 [ 7C0E0EDF18D6CC565D7BFBB451709FA5, 47C21CD9D87B5C1B5EB14F6166B5E3349B1A6F10501E63CCED8D52A9FE22765D ] C:\Windows\System32\Drivers\afd.sys
18:05:28.0693 0x0c48 C:\Windows\System32\Drivers\afd.sys - ok
18:05:28.0693 0x0c48 [ EB8034147D4820CD31BFCB11A2A652DF, B10B5E16B7A05D2DB2D5D1945B6146DE15EEDE2C778772A59F104706B5145E46 ] C:\Windows\System32\Drivers\pacer.sys
18:05:28.0693 0x0c48 C:\Windows\System32\Drivers\pacer.sys - ok
18:05:28.0709 0x0c48 [ 7C203A76394F9AE68F69EEE5F9612C4A, 2222654915913BDC9367A2075714906A10CF22C047A7494CD59CB71834ED1B62 ] C:\Windows\System32\Drivers\netbios.sys
18:05:28.0709 0x0c48 C:\Windows\System32\Drivers\netbios.sys - ok
18:05:28.0724 0x0c48 [ 095E943D27025E4D588AF0A72CC2318F, 3CE406A202F93EF8C4BC7317621A672670D734C69166393CA7256D5E5E667041 ] C:\Windows\System32\Drivers\vwififlt.sys
18:05:28.0724 0x0c48 C:\Windows\System32\Drivers\vwififlt.sys - ok
18:05:28.0724 0x0c48 [ CA03D642ACE58E1BA54E4B383F91CD69, 39BB942603801CF11FBEA28E24F8C8D1EF2AF615D1FABF951683A015D6A6EF37 ] C:\Windows\System32\Drivers\rdbss.sys
18:05:28.0724 0x0c48 C:\Windows\System32\Drivers\rdbss.sys - ok
18:05:28.0740 0x0c48 [ 689B3B1E95C70ABF7AFF29F9406EF1E0, 8B62D8AE53E1B3218158FADC0075682AB06D18998CF5DE82C920A9CD91C0652F ] C:\Windows\System32\Drivers\nsiproxy.sys
18:05:28.0740 0x0c48 C:\Windows\System32\Drivers\nsiproxy.sys - ok
18:05:28.0740 0x0c48 [ 61F6972FF9AC9A8D0B4D62076DC30051, 5A028036461534CA53CB2D6C1D720783D408A9F17FD77AB1ECDD75FBAD9F2381 ] C:\Windows\System32\Drivers\wanarp.sys
18:05:28.0740 0x0c48 C:\Windows\System32\Drivers\wanarp.sys - ok
18:05:28.0756 0x0c48 [ 3C736FAE17BA6F91BA37594AAB139CD0, 34304A194105B19E7ADD80108DC85C3B7AA9E942C84A7EF93C475CE1D9AE4615 ] C:\Windows\System32\Drivers\discache.sys
18:05:28.0756 0x0c48 C:\Windows\System32\Drivers\discache.sys - ok
18:05:28.0756 0x0c48 [ B5AECF12F09DEE97C9FCAA5BA016CE1E, F5305C4CE6C93A3A3481BD13BE0C23FE26571E11029ACFFE75FB78913681FCFC ] C:\Windows\System32\Drivers\mssmbios.sys
18:05:28.0756 0x0c48 C:\Windows\System32\Drivers\mssmbios.sys - ok
18:05:28.0771 0x0c48 [ 8ED299C30792544264E558BEA79F0947, 8A03FDA9AADB79ECBCBCDC988B7D8CF0672689C9DF673A2ECFE0D2D88A9C6A6B ] C:\Windows\System32\Drivers\npsvctrig.sys
18:05:28.0771 0x0c48 C:\Windows\System32\Drivers\npsvctrig.sys - ok
18:05:28.0787 0x0c48 [ 09D9EB9E7898F8E6561473A20CC808B9, 0F511593D36084843E5138AF6D55FE08D77803968AE12A236A02368DB364347E ] C:\Windows\System32\Drivers\dfsc.sys
18:05:28.0787 0x0c48 C:\Windows\System32\Drivers\dfsc.sys - ok
18:05:28.0787 0x0c48 [ FAEF4C245BE832DB41B15DAAC336AFB7, 1F8C98AB0DF4327FCB01FE0356025488E19B48A45FFFA50576B49A8587FAC42B ] C:\Windows\System32\Drivers\dam.sys
18:05:28.0787 0x0c48 C:\Windows\System32\Drivers\dam.sys - ok
18:05:28.0803 0x0c48 [ 7A6F8A6D0E01432EBA294EF29CDD0FA7, D902AE15194A9F8A2198914FC76184FE7E2B589747275952A04A52853128FDB8 ] C:\Windows\System32\Drivers\ndistapi.sys
18:05:28.0803 0x0c48 C:\Windows\System32\Drivers\ndistapi.sys - ok
18:05:28.0803 0x0c48 [ 62C7DBF4F9301F76CF87D4B9D8F57BF8, D51FEF198F74FDF583826E259E4736F51CD49908194104677889FD135EEC2EBC ] C:\Windows\System32\Drivers\ndiswan.sys
18:05:28.0803 0x0c48 C:\Windows\System32\Drivers\ndiswan.sys - ok
18:05:28.0818 0x0c48 [ A7F24D8CD1956B0A1FDCB86CC5114DE4, 30489D235362DF62B105378597168B13F4BAC74A8EDDBDA25237E3C017B69FEE ] C:\Windows\System32\Drivers\rassstp.sys
18:05:28.0818 0x0c48 C:\Windows\System32\Drivers\rassstp.sys - ok
18:05:28.0818 0x0c48 [ 69B93F623B130976243ECA3D84CC99CA, F27617E651EADFAEE479619AAB01CDAA98111BA63E204D5C44A1256732CB0100 ] C:\Windows\System32\Drivers\agilevpn.sys
18:05:28.0818 0x0c48 C:\Windows\System32\Drivers\agilevpn.sys - ok
18:05:28.0834 0x0c48 [ 78C9EE193AC2B4CBDBC48B620314D740, 41523E47D321BFF5778F5E453545B928C0A469C3BBA51578E74D6721D7DF9273 ] C:\Windows\System32\Drivers\tunnel.sys
18:05:28.0834 0x0c48 C:\Windows\System32\Drivers\tunnel.sys - ok
18:05:28.0834 0x0c48 [ 08F850FEBDBDE7C89017B6B0CA0D1CD2, 04B671CF2F269A12B996633E83B397F2924EBBAC425919D74E2BBC3013A238B5 ] C:\Windows\System32\smss.exe
18:05:28.0834 0x0c48 C:\Windows\System32\smss.exe - ok
18:05:28.0849 0x0c48 [ 0E5B1E9E7122EDAAF1F6CE047965CA92, 803E585B92D1E2E5B6BF67BE511E88DC2629A12407C3E30F7AEFB544D390A9B8 ] C:\Windows\System32\Drivers\CompositeBus.sys
18:05:28.0849 0x0c48 C:\Windows\System32\Drivers\CompositeBus.sys - ok
18:05:28.0865 0x0c48 [ A05BA2FE3B3FFE1920F383E3E321D9A2, 4AF9852622346852FC078501D49C84702D3285A059FA16F61A548A2978851ED3 ] C:\Windows\System32\ntdll.dll
18:05:28.0865 0x0c48 C:\Windows\System32\ntdll.dll - ok
18:05:28.0865 0x0c48 [ FB6C185092E18011EF49989425C2AA87, 043524409E0A764201DD221C48B7DEEA0D161945EB37D4B88313BAB2299949DF ] C:\Windows\System32\Drivers\kdnic.sys
18:05:28.0865 0x0c48 C:\Windows\System32\Drivers\kdnic.sys - ok
18:05:28.0881 0x0c48 [ 02CEB3FE6152668A7BA420B93B664860, 613F27540FD1EFE2442E326F507DACD5A25691C8481937022B7E1104F3E6E9E2 ] C:\Windows\System32\Drivers\umbus.sys
18:05:28.0881 0x0c48 C:\Windows\System32\Drivers\umbus.sys - ok
18:05:28.0881 0x0c48 [ E47235E8DF26CA48DA189ACFD756329C, C1E8D7B2C9C434376359172B10D5162A54E937DA359FB41E76F84C68DEDE9473 ] C:\Windows\System32\autochk.exe
18:05:28.0881 0x0c48 C:\Windows\System32\autochk.exe - ok
18:05:28.0896 0x0c48 [ FCAA07539A6137EF78AAB39CC455CC5E, BABD3D0607FB82352C8BD2B8CD4E4A430CC6A1E536D2B4CDFD585D1F26D4B935 ] C:\Windows\System32\Drivers\igdkmd64.sys
18:05:28.0896 0x0c48 C:\Windows\System32\Drivers\igdkmd64.sys - ok
18:05:28.0896 0x0c48 [ DC9BC4E80E1588C6B3DAEE31DC2A7372, CA54C3F9ECEFD739383FEDAD1097399E13CAFB834F09ECB46539C28F05250DFD ] C:\Windows\System32\Drivers\DptfDevProc.sys
18:05:28.0912 0x0c48 C:\Windows\System32\Drivers\DptfDevProc.sys - ok
18:05:28.0912 0x0c48 [ 16F6F6B7903B913AB41AB848C8BB5658, 7304257048CB42E5274B3F6400F4A053A38E3B70A157662FE9D2B7C5979DE851 ] C:\Windows\System32\Drivers\AiCharger.sys
18:05:28.0912 0x0c48 C:\Windows\System32\Drivers\AiCharger.sys - ok
18:05:28.0928 0x0c48 [ 60996602A7111FD2D086E803F33E4282, E62A91C90F8542990BEA4E6A5D9DD3D070F4EB23B4C13414C5DA2B0219509749 ] C:\Windows\System32\Drivers\fastfat.sys
18:05:28.0928 0x0c48 C:\Windows\System32\Drivers\fastfat.sys - ok
18:05:28.0928 0x0c48 [ 8DC398D7B8E02C929A2096E74A170970, 87B3CE84D05F50C33935B28F0AFF1CB15DAA4530768BA1FB25C311609CD4B0A5 ] C:\Windows\System32\Drivers\USBXHCI.SYS
18:05:28.0928 0x0c48 C:\Windows\System32\Drivers\USBXHCI.SYS - ok
18:05:28.0943 0x0c48 [ 061BA3EE0D2BE17944990544008CF190, C9236D368EC2281B545E8C008BC2801F21A9716ED3D4DAEDB0751A5008346E81 ] C:\Windows\System32\Drivers\UCX01000.SYS
18:05:28.0943 0x0c48 C:\Windows\System32\Drivers\UCX01000.SYS - ok
18:05:28.0943 0x0c48 [ 2BB3EAE2EA641515D4B205CAB29E1624, D3F18EE393EB1B0F919484281269A3C55A092D023E62C59D74CB63A55612024B ] C:\Windows\System32\Drivers\HECIx64.sys
18:05:28.0943 0x0c48 C:\Windows\System32\Drivers\HECIx64.sys - ok
18:05:28.0959 0x0c48 [ 7CB7E04259F323D051A10515B8863564, 30A506AAAE4999C2C171C3FB3DCE46EF9CAB4B94A59B3EB70AB650EE7A1028D2 ] C:\Windows\System32\Drivers\usbport.sys
18:05:28.0959 0x0c48 C:\Windows\System32\Drivers\usbport.sys - ok
18:05:28.0974 0x0c48 [ 7D87B5B6C7188D553E11B59DC7F0B111, FC633DB71E1D72E8AD8F89BBB54324CC6ED17F5594EF55DD0BDB58EE1F601FF5 ] C:\Windows\System32\Drivers\hdaudbus.sys
18:05:28.0974 0x0c48 C:\Windows\System32\Drivers\hdaudbus.sys - ok
18:05:28.0974 0x0c48 [ B24FDEB1B18496F1B463782235AA3AF1, 3F5036F36987C8007D03DAFC3EC30615515BE96D9A1DF879BCD4EB0E66CD50B1 ] C:\Windows\System32\Drivers\usbehci.sys
18:05:28.0974 0x0c48 C:\Windows\System32\Drivers\usbehci.sys - ok
18:05:28.0990 0x0c48 [ 667153FCB54CD80626A5AC5A2F49F068, B1FEE1D4A7B45C4DCC3A012E8837ADD6059E6E716862BDED3BBEB8282FA02CA8 ] C:\Windows\System32\Drivers\athw8x.sys
18:05:28.0990 0x0c48 C:\Windows\System32\Drivers\athw8x.sys - ok
18:05:28.0990 0x0c48 [ CBD16721541EE334F6D623CE0B4003BF, DE2C6345B2051AD4C3A3F3AB89AB63AE58A0BA6AB0BCB6B0DFCE6BCD0E8E9519 ] C:\Windows\System32\Drivers\L1C63x64.sys
18:05:28.0990 0x0c48 C:\Windows\System32\Drivers\L1C63x64.sys - ok
18:05:29.0006 0x0c48 [ 62460A45435A26A334907E3F2EA45611, FEF86E05117CC0AAB8211CA1542776EB620BD4699BD590D91F16621ED35B9824 ] C:\Windows\System32\Drivers\vwifibus.sys
18:05:29.0006 0x0c48 C:\Windows\System32\Drivers\vwifibus.sys - ok
18:05:29.0021 0x0c48 [ 3903D1056E778BAEFA310B9B6EA6053E, 863977B4166A04557E154C41AC3B194A9F5C56C6090E8DE47C0D9D0E8CBD648E ] C:\Windows\System32\Drivers\AsusTP.sys
18:05:29.0021 0x0c48 C:\Windows\System32\Drivers\AsusTP.sys - ok
18:05:29.0021 0x0c48 [ C9E9CBF73AFFBFE3E801EFB516787BA3, 1A850D614BDA6AA4195CC657702BC6242BA51B90131717743182AA160F65E72C ] C:\Windows\System32\Drivers\i8042prt.sys
18:05:29.0021 0x0c48 C:\Windows\System32\Drivers\i8042prt.sys - ok
18:05:29.0037 0x0c48 [ A8080BEBCDB7A16495CE1205921DCAC5, D4B0EF97B75BF75934A0BEEE48CACD20E8F505600C3A07243DF7627680EE8552 ] C:\Windows\System32\Drivers\kbfiltr.sys
18:05:29.0037 0x0c48 C:\Windows\System32\Drivers\kbfiltr.sys - ok
18:05:29.0037 0x0c48 [ 618446B98C79776654340CE27C73485E, EFE7169FDD545933B5949DA2D09266971C0C3E6894E7BD8AFE29E41567C72B16 ] C:\Windows\System32\Drivers\mouclass.sys
18:05:29.0037 0x0c48 C:\Windows\System32\Drivers\mouclass.sys - ok
18:05:29.0053 0x0c48 [ D59A1C5D7CCCC499F3307AC880BE1EF9, A8D67AF35264C32CDD55F8A5B78E7B3B45CDB727297853345748585BCCCB18E0 ] C:\Windows\System32\Drivers\DptfDevFan.sys
18:05:29.0053 0x0c48 C:\Windows\System32\Drivers\DptfDevFan.sys - ok
18:05:29.0053 0x0c48 [ BF3636040404B45CB96FB6D646FE2FC0, C8FF9E387246C6D785E25C7A5D93DEFAF48144E8865EA1C5243E9BB378669223 ] C:\Windows\System32\Drivers\DptfDevGen.sys
18:05:29.0053 0x0c48 C:\Windows\System32\Drivers\DptfDevGen.sys - ok
18:05:29.0068 0x0c48 [ ADCA14E28462BDD22E15729D2A114123, 824910645214C968080E7E213DDDD420F0DB1781272203F68173958B74E95CFA ] C:\Windows\System32\Drivers\DptfDevPch.sys
18:05:29.0068 0x0c48 C:\Windows\System32\Drivers\DptfDevPch.sys - ok
18:05:29.0084 0x0c48 [ 8FBD94B69D6423E20ABCD59D86368B21, 218EF992095E365EC917413749856A64D55D8129D77098E24D670843233377F4 ] C:\Windows\System32\Drivers\kbdclass.sys
18:05:29.0084 0x0c48 C:\Windows\System32\Drivers\kbdclass.sys - ok
18:05:29.0084 0x0c48 [ 04F5D7396FE6414150FEEDB60FDAC670, 502871E61CE2B5A84FF9A58E33348C9CDDF5CD68E27582C3F8332C6619E2AE03 ] C:\Windows\System32\Drivers\battc.sys
18:05:29.0084 0x0c48 C:\Windows\System32\Drivers\battc.sys - ok
18:05:29.0099 0x0c48 [ 2DC8538A2260647484A6C921CA837313, 094059DD66B0C50A1CAE288F920107B0B6AD1AA5758284E35B92C131EDEA30EA ] C:\Windows\System32\Drivers\CmBatt.sys
18:05:29.0099 0x0c48 C:\Windows\System32\Drivers\CmBatt.sys - ok
18:05:29.0099 0x0c48 [ 1272A390DB777599821C5F1C0E451EED, CB0C6A31032EC4C898125636C92B09A18F3C11C08C463DA9D89411FCCDF7E654 ] C:\Windows\System32\Drivers\DptfDevDram.sys
18:05:29.0099 0x0c48 C:\Windows\System32\Drivers\DptfDevDram.sys - ok
18:05:29.0115 0x0c48 [ 346DEF1A9DB0B4133CE0FA38AAF565C0, 5C7190EF5F8C14AD165CB2FEC1261BEF861427F2F4758A48516AD3CFAE3A1DDC ] C:\Windows\System32\Drivers\hidparse.sys
18:05:29.0115 0x0c48 C:\Windows\System32\Drivers\hidparse.sys - ok
18:05:29.0115 0x0c48 [ E15CDF68DD73423F15D4AC404793AF0D, E2D0136AF68D1A73EB3A63C83284B4661222CB0A4AFACCF276CB57CBD4850287 ] C:\Windows\System32\Drivers\intelppm.sys
18:05:29.0115 0x0c48 C:\Windows\System32\Drivers\intelppm.sys - ok
18:05:29.0131 0x0c48 [ E2A596CACFC6504306CDB7B593B90084, DF89CF57249553CE922C841F18B99A213185FA1099C053B9BB8C0F6E5BC3FEC0 ] C:\Windows\System32\Drivers\wmiacpi.sys
18:05:29.0131 0x0c48 C:\Windows\System32\Drivers\wmiacpi.sys - ok
18:05:29.0146 0x0c48 [ A9F2301B8D28BB4D887F5AEBB55ACB3A, 886B04224CA0A90B4FD0B9F8D243EED4FBA367D078FB1CAF99EE671FE1FCEC27 ] C:\Windows\System32\Drivers\AsHIDSwitch64.sys
18:05:29.0146 0x0c48 C:\Windows\System32\Drivers\AsHIDSwitch64.sys - ok
18:05:29.0146 0x0c48 [ 2C2A9A4D53DC90A5195BB51F0A4B1E21, 31A0136ADA98E90178AFFC5F9B2711F2D0C54F9327B81FA7B7FA9570ED9AE519 ] C:\Windows\System32\Drivers\hidclass.sys
18:05:29.0146 0x0c48 C:\Windows\System32\Drivers\hidclass.sys - ok
18:05:29.0162 0x0c48 [ 4F62A81D2145F952F6CA2847BA4ACA1F, 9EDEA75A49917E64CB03DBEE214D88DF674AF5303460FFD5FCC81AA57A352C1F ] C:\Windows\System32\Drivers\DptfManager.sys
18:05:29.0162 0x0c48 C:\Windows\System32\Drivers\DptfManager.sys - ok
18:05:29.0162 0x0c48 [ 362D47E5B4D67270DE4B8606036F4ADD, 716E229C68D91AEA5B5629F60133D5CBDC0C95ABA54D9DC6264E923CAF4DC6C0 ] C:\Windows\System32\Drivers\raspptp.sys
18:05:29.0162 0x0c48 C:\Windows\System32\Drivers\raspptp.sys - ok
18:05:29.0178 0x0c48 [ A14D625C5AEE5FFE0F47D1A1D419FAAE, 1229B81C23340AD5B436B1FD227876EB41715CE6BD270BA367F18879D26B8F04 ] C:\Windows\System32\Drivers\rasl2tp.sys
18:05:29.0178 0x0c48 C:\Windows\System32\Drivers\rasl2tp.sys - ok
18:05:29.0178 0x0c48 [ 00695B9C2DB6111064499C529E90C042, 3CD4DF4D8001C2BBF52EEEB1F0D587209878BEAC339D268892477AD840D490F1 ] C:\Windows\System32\Drivers\raspppoe.sys
18:05:29.0178 0x0c48 C:\Windows\System32\Drivers\raspppoe.sys - ok
18:05:29.0193 0x0c48 [ DDA4CAF29D8C0A297F886BFE561E6659, 94E5DD649B5D86FA1A7C7D30FCF9644D0EE048D312E626111458ADF66BFBE978 ] C:\Windows\System32\Drivers\WUDFRd.sys
18:05:29.0193 0x0c48 C:\Windows\System32\Drivers\WUDFRd.sys - ok
18:05:29.0209 0x0c48 [ C6978F7EBA6F37D626482AC6B9390630, B4BF939AB9962A61DE9518604C20347DC2A6FCDCEB3D8AEF295AF12E6F2CDCF3 ] C:\Windows\System32\Drivers\btath_bus.sys
18:05:29.0209 0x0c48 C:\Windows\System32\Drivers\btath_bus.sys - ok
18:05:29.0209 0x0c48 [ 36C27EA76685391BC5CAA1FA25E29FBF, 413FFEA5D9E1CBA24E5B0DA62B59FA39AE31787762057AFF8AFD2B59C8EBFB08 ] C:\Windows\System32\Drivers\ks.sys
18:05:29.0209 0x0c48 C:\Windows\System32\Drivers\ks.sys - ok
18:05:29.0224 0x0c48 [ 4AFD66AAE74FFB5986BC240744DC5FC9, 0C9347614E3FD3B4D3B29FA4A5DA23FF6EE4CD9A1FFC378B855B8DE61B2876CF ] C:\Windows\System32\Drivers\swenum.sys
18:05:29.0224 0x0c48 C:\Windows\System32\Drivers\swenum.sys - ok
18:05:29.0224 0x0c48 [ CA7DF5EC95D8DE0DD24BE7FF97369F68, 153E6F716CA935DBCACB8FF1BB8DE5F5551CE3D18878225470E45893CA69BDB8 ] C:\Windows\System32\Drivers\rdpbus.sys
18:05:29.0224 0x0c48 C:\Windows\System32\Drivers\rdpbus.sys - ok
18:05:29.0240 0x0c48 [ 3730942D7DB2F8BB5F84542B7FF6F650, 89C9D7D7305205BDB304CE6DA7D1A57EDE86A9D77429698802A39D75EB78CAAB ] C:\Windows\System32\Drivers\ndproxy.sys
18:05:29.0240 0x0c48 C:\Windows\System32\Drivers\ndproxy.sys - ok
18:05:29.0256 0x0c48 [ 9F83642C3709D1A4DD49EEE9F48F839D, 65C795FFB5F399D575FDD44D90087429FA99CC04AD469D8805C3C11DD59C1887 ] C:\Windows\System32\Drivers\usbd.sys
18:05:29.0256 0x0c48 C:\Windows\System32\Drivers\usbd.sys - ok
18:05:29.0256 0x0c48 [ F8C2A832DF9403F5EA8080CBDBDA95FB, 50E9455465672BC13EB945BEC132D2F30BA2EB25C68928D2B4C256F2DB292A83 ] C:\Windows\System32\Drivers\usbhub.sys
18:05:29.0256 0x0c48 C:\Windows\System32\Drivers\usbhub.sys - ok
18:05:29.0271 0x0c48 [ E5F7328B1D29BCE791862CD3C0DD382A, E520D75CA6E4EDB06F576D97FB6B7CFD46A3EF3A3AC881537DE3BB8C862FE8C3 ] C:\Windows\System32\Drivers\USBHUB3.SYS
18:05:29.0271 0x0c48 C:\Windows\System32\Drivers\USBHUB3.SYS - ok
18:05:29.0271 0x0c48 [ 946ECE07334A74373FAFBFAA063E62F2, C5A3D3E122330B078BA1F371EE18B1C5E4597850F88EB2D510C23C4940D3F19C ] C:\Windows\System32\Drivers\drmk.sys
18:05:29.0271 0x0c48 C:\Windows\System32\Drivers\drmk.sys - ok
18:05:29.0287 0x0c48 [ 857433889008F86728E8C099C740729D, 71B978D490E50D8FF2118ED2D79A3A9E93D9E89B945BAE1D887244B075F77F57 ] C:\Windows\System32\Drivers\portcls.sys
18:05:29.0287 0x0c48 C:\Windows\System32\Drivers\portcls.sys - ok
18:05:29.0303 0x0c48 [ DBB365794DD346C9466F05C8D4CB3D25, 9976B2D049A0288CECF1644DA723ED3466EC127C8508CC3713D40DF828D0D7F0 ] C:\Windows\System32\Drivers\RTKVHD64.sys
18:05:29.0303 0x0c48 C:\Windows\System32\Drivers\RTKVHD64.sys - ok
18:05:29.0303 0x0c48 [ 81492FEEBF2F26455B00EE8DBAE8A1B0, E33AA2DFB2D3BB30B02CDADA2EC290F86329DA3198327A653F39A843D86390B9 ] C:\Windows\System32\Drivers\ksthunk.sys
18:05:29.0303 0x0c48 C:\Windows\System32\Drivers\ksthunk.sys - ok
18:05:29.0318 0x0c48 [ F5495B38BFB9149925F54F65AB40EFBF, 7CBB72C41E2343DACBFB967A39CA04788561EDECB289C41BC2D6A06B80882AC4 ] C:\Windows\System32\Drivers\IntcDAud.sys
18:05:29.0318 0x0c48 C:\Windows\System32\Drivers\IntcDAud.sys - ok
18:05:29.0318 0x0c48 [ C976C4306F9AE133D6BBD47FDFC3BF92, 820413D92D6A89055A7F26523BF5CC4B668610C4A06E8B0D163FBF929B1DFA9A ] C:\Windows\System32\Drivers\usbccgp.sys
18:05:29.0318 0x0c48 C:\Windows\System32\Drivers\usbccgp.sys - ok
18:05:29.0334 0x0c48 [ 9EF7C01D3ACCBC243B5CB1A95865B2FF, 367A7640B4992E68EB3E1BBD78D3014742F4CC4056750E389048C653251DAD33 ] C:\Windows\System32\Drivers\usbvideo.sys
18:05:29.0334 0x0c48 C:\Windows\System32\Drivers\usbvideo.sys - ok
18:05:29.0334 0x0c48 [ 012C354B4AB48E9A7A657DF39E3A2073, B15D0089CE509FF1CF73DFE095425C1C99FC3971622DCAAD9CAEB989A12A4FDB ] C:\Windows\System32\Drivers\hidusb.sys
18:05:29.0334 0x0c48 C:\Windows\System32\Drivers\hidusb.sys - ok
18:05:29.0349 0x0c48 [ 6B3F1596000CB33F73E14B6F7D5CFF82, 4DA1A14B39413F19D507B8371C99F9265E3FC17DC7F0842057B254C9D5ADD69D ] C:\Windows\System32\difxapi.dll
18:05:29.0349 0x0c48 C:\Windows\System32\difxapi.dll - ok
18:05:29.0349 0x0c48 [ A99AD14F26BDA7D7F27F76BC91B7EED7, 98491CFA2524A9650367BEF87814A58B198F467335C6AB7A446004A9D0320EC6 ] C:\Windows\System32\user32.dll
18:05:29.0349 0x0c48 C:\Windows\System32\user32.dll - ok
18:05:29.0365 0x0c48 [ 1D2731630A5437C54217CDE1C4830F81, 153E04E449A05B902CF956F0C48490C7279158757C484550AD725DEB45998620 ] C:\Windows\System32\ole32.dll
18:05:29.0365 0x0c48 C:\Windows\System32\ole32.dll - ok
18:05:29.0381 0x0c48 [ 4416D7F0F05098711EA45C9D95610A6E, 4945A0DCD88D744428486483BB10690FADC0BBF7071FFCF0E49938433EC84420 ] C:\Windows\System32\shell32.dll
18:05:29.0381 0x0c48 C:\Windows\System32\shell32.dll - ok
18:05:29.0381 0x0c48 [ 75CB0458521FFA420E4230A931E4517B, 319B06970F31528A81C86BD965BE901D602158CA9822F6EAE7C3A51BE68EAD2E ] C:\Windows\System32\normaliz.dll
18:05:29.0381 0x0c48 C:\Windows\System32\normaliz.dll - ok
18:05:29.0396 0x0c48 [ 6BDCC68E85A386414E4E028DEB768350, 3D8BE9951B23EB3724D2DBA58138484CA0D42296F6E7668463CA049982FF67C9 ] C:\Windows\System32\rpcrt4.dll
18:05:29.0396 0x0c48 C:\Windows\System32\rpcrt4.dll - ok
18:05:29.0396 0x0c48 [ BB1B37C53D09CA41E2A55DD9D6C1B32E, 7620EC9436EF154FE66368385EBA4C6335AC3ECF4F7E7F72356C60E3614BA4F0 ] C:\Windows\System32\oleaut32.dll
18:05:29.0396 0x0c48 C:\Windows\System32\oleaut32.dll - ok
18:05:29.0412 0x0c48 [ 8542BEA78795403D705A21B83ABD589F, 73FBD20662212323CBE6EB091994E89BFF86538C073EBA7C9C1AC321EF25B888 ] C:\Windows\System32\GdiPlus.dll
18:05:29.0412 0x0c48 C:\Windows\System32\GdiPlus.dll - ok
18:05:29.0412 0x0c48 [ A74C6A6DA5A35686D7639ACDBD458BFB, FEC49FE822C462F6C2FE1B8480C119C0C524CD9BC800B5CD0524507461D5FEDC ] C:\Windows\System32\nsi.dll
18:05:29.0412 0x0c48 C:\Windows\System32\nsi.dll - ok
18:05:29.0428 0x0c48 [ 41AC2B1335317D2F8700E17328F71E0C, E570C6D2FD54BF5B0BBD321FBF4C9AAB115A5A92D6F7EF7FDF53F5F75088E1DD ] C:\Windows\System32\psapi.dll
18:05:29.0428 0x0c48 C:\Windows\System32\psapi.dll - ok
18:05:29.0428 0x0c48 [ 7653DB77F0DB2A50392F015321E42E37, C53F7A8C36CDEFF0322A74EEE203490E7F821BEDAC68A9A416B2EAC9A3EA314B ] C:\Windows\System32\setupapi.dll
18:05:29.0428 0x0c48 C:\Windows\System32\setupapi.dll - ok
18:05:29.0443 0x0c48 [ 2E5B349ACDA36C20612795754DB93312, 323A623FEF29F20E364528B58CF5C188B550F2CD38E9ED64B34071C74B9BC391 ] C:\Windows\System32\ws2_32.dll
18:05:29.0443 0x0c48 C:\Windows\System32\ws2_32.dll - ok
18:05:29.0459 0x0c48 [ E1FF9D65E6B86F7EBB531AE36C5AF635, 92981D598DC950C191B0320955DD777FBAC7BBEE1C17CB8D6171AC40FFC7B026 ] C:\Windows\System32\kernel32.dll
18:05:29.0459 0x0c48 C:\Windows\System32\kernel32.dll - ok
18:05:29.0459 0x0c48 [ DA66D6D4A0B77D57F5CF449B1231010F, 4F590109EC31F8761FDFD5C4149165B36B2A93C423F577FEF85B221DE8CE47C2 ] C:\Windows\System32\imm32.dll
18:05:29.0459 0x0c48 C:\Windows\System32\imm32.dll - ok
18:05:29.0474 0x0c48 [ 3A30E09AAA2BB060D39C8FA5E20D4FA3, F172A0F7194D73AD4A11A4B1C12459385C64F334E471C25E3471B8B57EED6E5C ] C:\Windows\System32\advapi32.dll
18:05:29.0474 0x0c48 C:\Windows\System32\advapi32.dll - ok
18:05:29.0474 0x0c48 [ 85B5B3797315F714A62AC986FFB2B17E, DF6590235BA33AFF42F7153646DA70C600EC607C1E01BBB58C468A54E0E795EF ] C:\Windows\System32\sechost.dll
18:05:29.0474 0x0c48 C:\Windows\System32\sechost.dll - ok
18:05:29.0490 0x0c48 [ 46501A8D9CF0383A104120810E1BABA6, 8062AB1FC35F61448D08E26919FD7DA3F91D807C912E41321918F24C4ADBBA1D ] C:\Windows\System32\shlwapi.dll
18:05:29.0490 0x0c48 C:\Windows\System32\shlwapi.dll - ok
18:05:29.0490 0x0c48 [ E7099336BF7531B6FCC920DCB5101259, BDEA2A0F10965A98843E5486F472A23C769E298A75C4E7B7F523660FAD32DD9B ] C:\Windows\System32\wininet.dll
18:05:29.0490 0x0c48 C:\Windows\System32\wininet.dll - ok
18:05:29.0506 0x0c48 [ 2E3EDE81672653E0C759F0A1135F704F, DD670B8F3997D5C9B36968CD1E1EDCD5292E3EA553C2EAFCA8A0D5F88964D7A6 ] C:\Windows\System32\clbcatq.dll
18:05:29.0506 0x0c48 C:\Windows\System32\clbcatq.dll - ok
18:05:29.0521 0x0c48 [ F85D33830D2655FB2916667579D45725, 71E81E2EFC09A845BA1F5A2EC0B50EF71601ADD8EBA8C6FB9554D0D6A44DADF9 ] C:\Windows\System32\msctf.dll
18:05:29.0521 0x0c48 C:\Windows\System32\msctf.dll - ok
18:05:29.0521 0x0c48 [ C3D51000E8FBEF76BC91E145B0D7FC67, 5B7F37042B51C6321D8AC3E31385E2A6742523EB74A23BA43662738AFF14C09C ] C:\Windows\System32\comdlg32.dll
18:05:29.0521 0x0c48 C:\Windows\System32\comdlg32.dll - ok
18:05:29.0537 0x0c48 [ E1B2751640FA7840CC5EB6E78513A632, 2F81762EDA6B2FCA88F4D78D3696E856A2D1F4809C9A53702D8069D9B643BF20 ] C:\Windows\System32\Wldap32.dll
18:05:29.0537 0x0c48 C:\Windows\System32\Wldap32.dll - ok
18:05:29.0537 0x0c48 [ B74C50954E234506548CBBF3933AF391, 50A1C0704069AAD9E7158689C521442CE8F29F47F247A6E3FCBCBB107E665ADA ] C:\Windows\System32\wow64.dll
18:05:29.0537 0x0c48 C:\Windows\System32\wow64.dll - ok
18:05:29.0553 0x0c48 [ 2AE813F005223E5B39E0C4D7B8314732, 3F24D78F2F0B61B9ED24A06D6792CF7732E3A17B94A8F71ACB29D04A8918113F ] C:\Windows\System32\wow64win.dll
18:05:29.0553 0x0c48 C:\Windows\System32\wow64win.dll - ok
18:05:29.0553 0x0c48 [ 2DA75D0CC0A3CE775C7F823E6C2355DA, B6B2740363DFB4FC79473161E4B072DC063198D0A2BCC9470F1F8BD8110F323D ] C:\Windows\System32\urlmon.dll
18:05:29.0553 0x0c48 C:\Windows\System32\urlmon.dll - ok
18:05:29.0568 0x0c48 [ 2299D30B0C3F41687127DDAC5B3CAC32, FCE9322707F415144D4DF5417142CE475AB0360C16B8B2930AC12BE4781275B0 ] C:\Windows\System32\gdi32.dll
18:05:29.0568 0x0c48 C:\Windows\System32\gdi32.dll - ok
18:05:29.0584 0x0c48 [ 0341C9184C252000D1AD396C71CFD860, 910155B34763EDA22EC7D63625B4177B00F8B3AA2F68B807E26B10BCB0540547 ] C:\Windows\System32\combase.dll
18:05:29.0584 0x0c48 C:\Windows\System32\combase.dll - ok
18:05:29.0584 0x0c48 [ 544A2EB9629532C6C8D4FE7DB9181FA4, FC3780AC14ED98AF194E4EC09346EEB03C8673DDAD59AFBFDEACD23395552727 ] C:\Windows\System32\imagehlp.dll
18:05:29.0584 0x0c48 C:\Windows\System32\imagehlp.dll - ok
18:05:29.0599 0x0c48 [ CC81790E0A18535853C33BABBFF15D56, 03D086F691038A1291EF4F517C36B231AC6002A08ABD3C8258E430C6F1F289E8 ] C:\Windows\System32\lpk.dll
18:05:29.0599 0x0c48 C:\Windows\System32\lpk.dll - ok
18:05:29.0599 0x0c48 [ 7A94C5BB4A430394B3C3800281CBD3D0, D2C12A4114BA3027E4A2FB76B830B87FBE109B68576D38046B8206A56199870C ] C:\Windows\System32\iertutil.dll
18:05:29.0599 0x0c48 C:\Windows\System32\iertutil.dll - ok
18:05:29.0615 0x0c48 [ 1E2E99B4FA9A5F0D9934F8B99B528A62, 89CE514C386A78D656E97AD2100A949A129D7B1EBBFF9500753C423C37D3EB33 ] C:\Windows\System32\wow64cpu.dll
18:05:29.0615 0x0c48 C:\Windows\System32\wow64cpu.dll - ok
18:05:29.0615 0x0c48 [ AECED95ACFDCF96757EDD8D0CFFE34B8, A76487C0572BC588BA0B87A15B1341674EA54C55AE95565086927007FF1EDFB6 ] C:\Windows\System32\msvcrt.dll
18:05:29.0615 0x0c48 C:\Windows\System32\msvcrt.dll - ok
18:05:29.0631 0x0c48 [ 74466D77EE8588C04B95AE9DBC693EF8, E164FC36601D2F2B4E5CF08A5E9D535F461DA6C5B342B734215F589B4F2C7549 ] C:\Windows\System32\wintrust.dll
18:05:29.0631 0x0c48 C:\Windows\System32\wintrust.dll - ok
18:05:29.0646 0x0c48 [ 8A8DB47DDF6B2118DF4D1561CEA586B3, C8F149AF8F3AA900C1BDC6139AF451A7245E81A926E0927C7E322088F2EFAE01 ] C:\Windows\System32\comctl32.dll
18:05:29.0646 0x0c48 C:\Windows\System32\comctl32.dll - ok
18:05:29.0646 0x0c48 [ 61EE56D354A5B425845F6A38CE401F92, 7EBF58A6A1369109820370FAA1969281EBECF219D323B202A4C5BB4D8727433E ] C:\Windows\System32\crypt32.dll
18:05:29.0646 0x0c48 C:\Windows\System32\crypt32.dll - ok
18:05:29.0662 0x0c48 [ C26780F936820DBB3A1323FC1C09E05F, A7F38B8959C668D02CED78306917FE8F7740CB199129DB5F9408FB728A66CC5F ] C:\Windows\System32\cfgmgr32.dll
18:05:29.0662 0x0c48 C:\Windows\System32\cfgmgr32.dll - ok
18:05:29.0662 0x0c48 [ F37BD0CAA604B6FE5CEC9D0BC05ABAF8, B084F5E3EF08623473A33954686BE8DDD978F14B66AC9E665FEAA498CDC680DD ] C:\Windows\System32\KernelBase.dll
18:05:29.0662 0x0c48 C:\Windows\System32\KernelBase.dll - ok
18:05:29.0678 0x0c48 [ 51B6CB1852B49E150F7E8B8C2F4CB0F7, C069D14E79F01468521EE466AE5DC5757E53765B7A05567F9D8E3DE21EC1E7B5 ] C:\Windows\System32\devobj.dll
18:05:29.0678 0x0c48 C:\Windows\System32\devobj.dll - ok
18:05:29.0693 0x0c48 [ C763F7DC50C70E657DCB164FA9D92085, 9006A11034F128250DE9B918F478AB5B3AAD1685FA9B5BEC5FA259439DCFFAA1 ] C:\Windows\System32\msasn1.dll
18:05:29.0693 0x0c48 C:\Windows\System32\msasn1.dll - ok
18:05:29.0693 0x0c48 [ 36D755FFED947A08B1650ACE9644FAB8, B37629A1EB7B3E1AC6C9164A5B7FDEAF8A3B4629B732CD885089BDB3BEE31CF5 ] C:\Windows\SysWOW64\lpk.dll
18:05:29.0693 0x0c48 C:\Windows\SysWOW64\lpk.dll - ok
18:05:29.0709 0x0c48 [ BD321B58C0CC6C8196F8CF4EE226E830, 592D62425AFCF37E10088202B9DD01C22C20A9D4F5F562006D407B8B26CDBB3F ] C:\Windows\SysWOW64\normaliz.dll
18:05:29.0709 0x0c48 C:\Windows\SysWOW64\normaliz.dll - ok
18:05:29.0724 0x0c48 [ A10B2CB810FF727328872C8D5673D491, 1E544DDBCF295953B1B87E4C4E5926953C7C82C9C00F44A22BB2BECCD9CF3C9F ] C:\Windows\System32\win32k.sys
18:05:29.0724 0x0c48 C:\Windows\System32\win32k.sys - ok
18:05:29.0756 0x0c48 [ 1C510F9C2DB7393468EB789A96DAAFA8, ED20E82B4754BA3B93F70E85890505E6C3177C72B7F5BDC3AA465DB236CF0834 ] C:\Windows\System32\csrsrv.dll
18:05:29.0756 0x0c48 C:\Windows\System32\csrsrv.dll - ok
18:05:29.0756 0x0c48 [ 0D9F14739D05F8B8B028B539FC6F1F29, 07751B8D090F4E159C0E38FB569B3C781DC8AAF0CE5A9505AC4F37265B5F4654 ] C:\Windows\System32\csrss.exe
18:05:29.0756 0x0c48 C:\Windows\System32\csrss.exe - ok
18:05:29.0771 0x0c48 [ DDC1AFBF9DDF880CE9BD3896114D8DED, E2406231EA4D2689A5EDFA9BD1A1BC064359D8D23B37F113A18B5EAE3E2D4050 ] C:\Windows\System32\basesrv.dll
18:05:29.0771 0x0c48 C:\Windows\System32\basesrv.dll - ok
18:05:29.0787 0x0c48 [ E9343076AE704D20BB0D01F3AF3EFFEF, FF2CE4146945976F9480690505CECD3C7C719BAF0F633E6192C8272C75EF295D ] C:\Windows\System32\winsrv.dll
18:05:29.0787 0x0c48 C:\Windows\System32\winsrv.dll - ok
18:05:29.0787 0x0c48 [ EA8EAD3F5B762F889CC7F3966625B48B, B701A42E5E08B7BC6601560446146803182E5DC631AB73E9408F19CB6432F121 ] C:\Windows\System32\Drivers\monitor.sys
18:05:29.0787 0x0c48 C:\Windows\System32\Drivers\monitor.sys - ok
18:05:29.0803 0x0c48 [ 4C7303709714F589A0809AC82F03CA84, 6D2BF13F52831C48A26A74FEB6458EDB4C578292C1B79AF419BF0BE9CA9A88FA ] C:\Windows\System32\profapi.dll
18:05:29.0803 0x0c48 C:\Windows\System32\profapi.dll - ok
18:05:29.0803 0x0c48 [ BD7C6949984D19AAA609896B675E7357, 5B46538B27BC70F5A3805AA63F6AACDC780C7168468FB535F2D35CF26B9DEE06 ] C:\Windows\System32\sxssrv.dll
18:05:29.0803 0x0c48 C:\Windows\System32\sxssrv.dll - ok
18:05:29.0818 0x0c48 [ F14D77B1B3347ED08272B65A3F80B4CE, 355875455F744C2E02C7C9934636F8CD82ACB22DD86A81B05D093A0DFB562A4E ] C:\Windows\System32\tsddd.dll
18:05:29.0818 0x0c48 C:\Windows\System32\tsddd.dll - ok
18:05:29.0818 0x0c48 [ FE9AB232B56A12224E8A3F3F9878C9A3, 09326E764DAF190D1A888E6E4786FAE471EF93BEFB03ABB405357F6DED5F9ABC ] C:\Windows\System32\wininit.exe
18:05:29.0818 0x0c48 C:\Windows\System32\wininit.exe - ok
18:05:29.0834 0x0c48 [ 8144BCD1736C3C76978B8378556CA746, 4E1FE0847716C697360E3601CB6D842599DCD46C853C06D480BB66463D95F0D2 ] C:\Windows\System32\wininitext.dll
18:05:29.0834 0x0c48 C:\Windows\System32\wininitext.dll - ok
18:05:29.0834 0x0c48 [ 8D46D6195A59F6DBE993385D6B26B5C7, EEE7902C8A11B2E3F68908868E97BD3A7623F99010E9264F2B66C76C23F18FAC ] C:\Windows\System32\cdd.dll
18:05:29.0834 0x0c48 C:\Windows\System32\cdd.dll - ok
18:05:29.0849 0x0c48 [ 58CE9264EF29214F0D6E09298F982753, 069C0E78319E0477C696062BBFB9532A06B2E7EBEC4BBD1C96F84D4A569F9906 ] C:\Windows\System32\KBDPO.DLL
18:05:29.0849 0x0c48 C:\Windows\System32\KBDPO.DLL - ok
18:05:29.0865 0x0c48 [ 6C2146239D657326A2D4DA72685AA315, 11C1B7EA3FC1B25B8C821D3C2E0949587D4F2F1906D6DA351657ED666185C4CA ] C:\Windows\System32\KBDUK.DLL
18:05:29.0865 0x0c48 C:\Windows\System32\KBDUK.DLL - ok
18:05:29.0865 0x0c48 [ BCF2036A0DD579E47C008C133550283E, 52F95F4A253C431221852FA0E0FB9AB94752FDEE597750949460C74242887B09 ] C:\Windows\System32\winlogon.exe
18:05:29.0865 0x0c48 C:\Windows\System32\winlogon.exe - ok
18:05:29.0881 0x0c48 [ EF72CFB67C73A8751F3BC4F4C98EAD4C, 47A0E97C24FBBEA83954C32FCA98D69B5DF1CC59DA020030018CB9E23E7A8F69 ] C:\Windows\System32\powrprof.dll
18:05:29.0881 0x0c48 C:\Windows\System32\powrprof.dll - ok
18:05:29.0881 0x0c48 [ 7679414791657155EDF45D388325BEFE, 70467B3284BF0E85E4BD25E702D60C6299621B2FEE2CBB764BC1D4F78285EA67 ] C:\Windows\System32\sxs.dll
18:05:29.0881 0x0c48 C:\Windows\System32\sxs.dll - ok
18:05:29.0896 0x0c48 [ 10564D7D4FBAABDB826E9D607679C85F, 1E85B8F5A24CB9261A55BF9D16B365D1DC5F36EC409E6086481F736FD60AB08C ] C:\Windows\System32\WlS0WndH.dll
18:05:29.0896 0x0c48 C:\Windows\System32\WlS0WndH.dll - ok
18:05:29.0896 0x0c48 [ 2577AEA213B0B70FF5B4E3D180E66B11, A5C6D937BF2FE09FE63FD87528F853567A40C94AEC492E9F9B9CA9D9121B07D2 ] C:\Windows\System32\cryptbase.dll
18:05:29.0896 0x0c48 C:\Windows\System32\cryptbase.dll - ok
18:05:29.0912 0x0c48 [ 7F4E2FB897E35952C5B22BE48047FCA8, 68E1AA815C667C0CBAA931D27746F8544943E51398D798D027C24A44EA2A64A2 ] C:\Windows\System32\bcryptprimitives.dll
18:05:29.0912 0x0c48 C:\Windows\System32\bcryptprimitives.dll - ok
18:05:29.0912 0x0c48 [ C0FAB7DDA13CE5593A48B40056AA278D, 7CDA1C4A43E25A284B8DE20E6065199BC6569EF6BAB5D034A73DA3B559D65ABF ] C:\Windows\System32\samcli.dll
18:05:29.0912 0x0c48 C:\Windows\System32\samcli.dll - ok
18:05:29.0928 0x0c48 [ 9D7EAFBAD213566D70BAE9A14B847666, 9E181A029835789C449D6D756F5CDFCA3712A393DEEA96831DB2AAC12B1169D1 ] C:\Windows\System32\winsta.dll
18:05:29.0928 0x0c48 C:\Windows\System32\winsta.dll - ok
18:05:29.0943 0x0c48 [ D293F2E8CEE73B87B04790D5169C0F25, 6B05D92ACC59FC1FBEAE0E31298F72ED4FF9E2BE2D8263F848057F15A033EF8F ] C:\Windows\System32\lsasrv.dll
18:05:29.0943 0x0c48 C:\Windows\System32\lsasrv.dll - ok
18:05:29.0943 0x0c48 [ F702AB6181513303AB0FC8D59E52708B, D46939B9F672269E65C98606A573C849C4AF5A26E4E75D3A8FE56A65B3A6EA08 ] C:\Windows\System32\lsass.exe
18:05:29.0943 0x0c48 C:\Windows\System32\lsass.exe - ok
18:05:29.0959 0x0c48 [ 8F226143046435C75C033B0C52E90FFE, 54FA316485B57D7B8104FE621F5F40DEC35E3D57C3DF46B5F7EACF57445FE7CA ] C:\Windows\System32\services.exe
18:05:29.0959 0x0c48 C:\Windows\System32\services.exe - ok
18:05:29.0959 0x0c48 [ 90BEE4B9728DDCF9787100CB8A04815C, 036D94C59ECF3A9C1EF193AA66CEFC384B628D1F36BBE1648FDF8F1778659AE2 ] C:\Windows\System32\sspisrv.dll
18:05:29.0959 0x0c48 C:\Windows\System32\sspisrv.dll - ok
18:05:29.0974 0x0c48 [ E8001E0F56F0B0F5D204EF865F47372B, 6B1A23443F4F9737CB654AD7257968C080958C1AA5C0615DCD2A00BA9278259F ] C:\Windows\System32\wtsapi32.dll
18:05:29.0974 0x0c48 C:\Windows\System32\wtsapi32.dll - ok
18:05:29.0974 0x0c48 [ D1AEFA79EE1EE089D03249BE581D5DD6, E8A41BB6004F10AA829F7DD348F3349FB891B28F7CCE6E6AFC237D9A21EB07F3 ] C:\Windows\System32\sspicli.dll
18:05:29.0974 0x0c48 C:\Windows\System32\sspicli.dll - ok
18:05:29.0990 0x0c48 [ ECFC9AF8D1A6E16223E1B17EA732FA08, BF74E48E2F14DCBA257473FCCEC3E512C7283335610205E3B84CB16449E86335 ] C:\Windows\System32\scext.dll
18:05:29.0990 0x0c48 C:\Windows\System32\scext.dll - ok
18:05:30.0006 0x0c48 [ 16C7029B1FBD1F80B2337933E66BF793, B73A60D94B1179ABA543856BA62B1F240A94D420DD01D01828AD43F6EE641ADE ] C:\Windows\System32\ubpm.dll
18:05:30.0006 0x0c48 C:\Windows\System32\ubpm.dll - ok
18:05:30.0006 0x0c48 [ F51618F0CBA3D733560D816AF43AEE29, 68061207ED10210B40858EC18D2E8A6F531C4968EBD6E43E4D473D543B7E60DA ] C:\Windows\System32\samsrv.dll
18:05:30.0006 0x0c48 C:\Windows\System32\samsrv.dll - ok
18:05:30.0021 0x0c48 [ DF8111BDC2F35006F0CD471A2CC65665, 9469D6E40D6F66E3171CD1C7765DC2E6CC0D62699B64A68AD04C6CED21CA126A ] C:\Windows\System32\SPInf.dll
18:05:30.0021 0x0c48 C:\Windows\System32\SPInf.dll - ok
18:05:30.0021 0x0c48 [ D71A882FE7A74F01B92F6A2C74305E45, B8E7A987B58DED89CC6423E286E052A110B0448EC9E15B9E00FD8303C192A5D2 ] C:\Windows\System32\srvcli.dll
18:05:30.0021 0x0c48 C:\Windows\System32\srvcli.dll - ok
18:05:30.0037 0x0c48 [ E3D5F59826899393970533A8E6AB34EE, 1FE5E545C1CDE06843B8E79FA378A7D6DFAF438CBEEF886D8035E56B45A45FA5 ] C:\Windows\System32\bcrypt.dll
18:05:30.0037 0x0c48 C:\Windows\System32\bcrypt.dll - ok
18:05:30.0037 0x0c48 [ EA697BA99655FA048BB297EE9A3CCBC7, 1AD4B8717B41AA79D5AAC5E49619DAB3FBFA528B4B20A037317B5C465F78F040 ] C:\Windows\System32\ncrypt.dll
18:05:30.0037 0x0c48 C:\Windows\System32\ncrypt.dll - ok
18:05:30.0053 0x0c48 [ A6FE1FCAB4AC686D6BD7884B317935F7, 08B3BD92505F781E23AA823E9F34D4F49033EAE13FD75A4C47DD81BBA7BA385C ] C:\Windows\System32\ntasn1.dll
18:05:30.0053 0x0c48 C:\Windows\System32\ntasn1.dll - ok
18:05:30.0053 0x0c48 [ 39084062AB7B7CA19DBF0AA4581D833B, F70757667060222A94037D4B62FA236B6EFC5D4CD72559F8F21F562002D93B83 ] C:\Windows\System32\msprivs.dll
18:05:30.0053 0x0c48 C:\Windows\System32\msprivs.dll - ok
18:05:30.0068 0x0c48 [ 21AA2C2564DDB9F3B83CE322D9E97F9C, 492B583B3182DF3B80C2E237DD77656711FACFB97A19F8F3E52A9E34E6F2D1DB ] C:\Windows\System32\netjoin.dll
18:05:30.0068 0x0c48 C:\Windows\System32\netjoin.dll - ok
18:05:30.0084 0x0c48 [ 058B0CDA8E19AF2A7E6CFA7604BB8D14, D0F645CB1F43A998C97FAEFAE511A752DECF5C82588A1E8EDB29DE96618DA0AE ] C:\Windows\System32\cryptdll.dll
18:05:30.0084 0x0c48 C:\Windows\System32\cryptdll.dll - ok
18:05:30.0084 0x0c48 [ 510A64BC84EA509337AAA67A888F101C, 6CB756E5545F0FD16FC82C937CD48A5F632310B70879D7745F4AD2990E3F8A67 ] C:\Windows\System32\kerberos.dll
18:05:30.0084 0x0c48 C:\Windows\System32\kerberos.dll - ok
18:05:30.0084 0x0c48 [ 016EDF8CF3BC0428F9A910637E918808, AC099B0BC04A6F4A2599E3305FA1E1FB3B90E4B4D71F37C616AE8B9C3A20B12A ] C:\Windows\System32\negoexts.dll
18:05:30.0084 0x0c48 C:\Windows\System32\negoexts.dll - ok
18:05:30.0099 0x0c48 [ 8F9F55C4B857E35552D78A2AAF1BADF9, D5F17DEB76C4B96177798C15C81A34FC0A7EB9DBF70A92395BBF5083FCF215E7 ] C:\Windows\System32\cryptsp.dll
18:05:30.0099 0x0c48 C:\Windows\System32\cryptsp.dll - ok
18:05:30.0115 0x0c48 [ 1AC307A2F7317007BC382046B3835202, A1FC763F34D12872C76551A66BBD8DED07DF55712F54773372FE6B4F27BC8DF5 ] C:\Windows\System32\mswsock.dll
18:05:30.0115 0x0c48 C:\Windows\System32\mswsock.dll - ok
18:05:30.0115 0x0c48 [ 4543E23FF678CA9D2C943A45B5B82A17, 1025FEF57E115A84217BE0F0DAFE0F2FA65F69F1C7FF0103FAE82816696B419B ] C:\Windows\System32\msv1_0.dll
18:05:30.0115 0x0c48 C:\Windows\System32\msv1_0.dll - ok
18:05:30.0131 0x0c48 [ FDC70965F0FC9DFEBC919627DED5DDFF, 54ED1E203720963982706F0D402449059A0C6057A771A72903122A3C41BF5E14 ] C:\Windows\System32\netlogon.dll
18:05:30.0131 0x0c48 C:\Windows\System32\netlogon.dll - ok
18:05:30.0131 0x0c48 [ B16A14270DB26838B48A06835FDBBFB4, E12D0314E4F09FBA9CC85D7191ADDFE70F6419AA120FFC6C14E0F3B5FFB68195 ] C:\Windows\System32\dnsapi.dll
18:05:30.0131 0x0c48 C:\Windows\System32\dnsapi.dll - ok
18:05:30.0146 0x0c48 [ 113E9BB020461D5F9D0C0C6EA29C513F, BA8F05244F9F500026D647C3329FE965119DE9E6E20AEF20ED6A806CC9AACC17 ] C:\Windows\System32\logoncli.dll
18:05:30.0146 0x0c48 C:\Windows\System32\logoncli.dll - ok
18:05:30.0146 0x0c48 [ 72FCEDD4EEE5F1C38F84F0947A26950E, 9B9A14632160346B69973CDAA38D8EC6D5648E161C3ABE984159CB9EADD74093 ] C:\Windows\System32\userenv.dll
18:05:30.0146 0x0c48 C:\Windows\System32\userenv.dll - ok
18:05:30.0162 0x0c48 [ 4F54EB37483A890F8C19478207FC5004, 621D8B58348F5F1739F7D79AE956EE9C79A39C20453AABC6BB169B356F669A7F ] C:\Windows\System32\schannel.dll
18:05:30.0162 0x0c48 C:\Windows\System32\schannel.dll - ok
18:05:30.0178 0x0c48 [ 0DFEBCD834EF05A112BF90F8A7993212, 0059B928F19C832DE87B515D64E4D51DA5D8A4E221444CDA2AC0EA6356E1B2D1 ] C:\Windows\System32\wdigest.dll
18:05:30.0178 0x0c48 C:\Windows\System32\wdigest.dll - ok
18:05:30.0178 0x0c48 [ 77DAB73F2AF988D07D72FD2DA0DC91FC, 200E95D4DA2AE725EF7433A947ACBB33BE3CE32EBA863EC8DB558F0F87E366AB ] C:\Windows\System32\rsaenh.dll
18:05:30.0178 0x0c48 C:\Windows\System32\rsaenh.dll - ok
18:05:30.0193 0x0c48 [ CC6D17EDB5B1C73523E4B7D6EB7BBC09, BBFC18708273C7D2E34FFD4F63A7D86C3E0BA3BE3A35CB2C773440EE77E67CAE ] C:\Windows\System32\TSpkg.dll
18:05:30.0193 0x0c48 C:\Windows\System32\TSpkg.dll - ok
18:05:30.0193 0x0c48 [ 0059D2032BCA18EBBC03D6D1308892F6, AE1C8DBCBAE564D9814C6AFB52C2B9A493FCC9BC9E789DAD080132828FD09280 ] C:\Windows\System32\pku2u.dll
18:05:30.0193 0x0c48 C:\Windows\System32\pku2u.dll - ok
18:05:30.0209 0x0c48 [ 5B92CE37EBE65A5424074E50C48AA52E, 1B8679051E25E06E76B539AECFAD4E700A8A2ADDE9C2E6EC949FE68FC456E09A ] C:\Windows\System32\livessp.dll
18:05:30.0209 0x0c48 C:\Windows\System32\livessp.dll - ok
18:05:30.0209 0x0c48 [ D8BEFDDADA7125E5A4DD37EA5AC620D9, E91E26353E2151C755C5D5B4F25084F0CEF688A9F1CA7FF309C57C607BCF9DF4 ] C:\Windows\System32\efslsaext.dll
18:05:30.0209 0x0c48 C:\Windows\System32\efslsaext.dll - ok
18:05:30.0225 0x0c48 [ 8EA33056071F6EB7A97C68E978F01573, 0A3FEF2C7B00CB6DE1CA6216BE06C6F3D61B15CC3A06F9B0F1BCB8C1443A25EA ] C:\Windows\System32\credssp.dll
18:05:30.0225 0x0c48 C:\Windows\System32\credssp.dll - ok
18:05:30.0240 0x0c48 [ 2F5E3751FAB4AE994262E2FB9CEDC885, 6B2429CF621D05D72CBF38163C92BC9508D72EB5D4951382321A16859CE871FA ] C:\Windows\System32\dpapisrv.dll
18:05:30.0240 0x0c48 C:\Windows\System32\dpapisrv.dll - ok
18:05:30.0240 0x0c48 [ 4F6E1CA672370A9BCAC049CE3AB7F666, E984A9803615B2C90933694B65A7D9B95919680F29354B9E93126889BE2BF5B4 ] C:\Windows\System32\scecli.dll
18:05:30.0240 0x0c48 C:\Windows\System32\scecli.dll - ok
18:05:30.0256 0x0c48 [ C0D0F60B47079C2AAD30B836326313F4, 0EB155BCA65D4B7FBE3DCB12832DEE555449ED21D403EBE6CED1F1B9B81A7FE4 ] C:\Windows\System32\scesrv.dll
18:05:30.0256 0x0c48 C:\Windows\System32\scesrv.dll - ok
18:05:30.0256 0x0c48 [ 0D7B278E91F0F07BBC4DFDF634BEFDB5, 3EC751DE5364FB5F4B965338A4F741625C5EB85187419B7242EA9678C6250148 ] C:\Windows\System32\authz.dll
18:05:30.0256 0x0c48 C:\Windows\System32\authz.dll - ok
18:05:30.0271 0x0c48 [ E17EA93682D88F1CE94CCE2A804FA691, DDD2A8EB5100EA96983FFBC38097EC5C4BEB9E3335D3A124261776A2E4981FDC ] C:\Windows\System32\netutils.dll
18:05:30.0271 0x0c48 C:\Windows\System32\netutils.dll - ok
18:05:30.0271 0x0c48 [ EDE27EACE742EE2888C5DD36400A2EC0, 4AE0C5191FE9D93E1BE2B99C0C64BF3CA43272CD66003139476192F946F0BEC4 ] C:\Windows\System32\svchost.exe
18:05:30.0271 0x0c48 C:\Windows\System32\svchost.exe - ok
18:05:30.0287 0x0c48 [ 0CE9A21C24E62DFD77E273B56B11C2C7, 5380B306AAE6BE15472874994DA013D43D10F3BF637C81DA2E5AD05C0DC7EECA ] C:\Windows\System32\devrtl.dll
18:05:30.0287 0x0c48 C:\Windows\System32\devrtl.dll - ok
18:05:30.0303 0x0c48 [ 799BE46D45D486704CE0F37CA5385262, BB78DEE83B9DB613B1C083D55FAA458BE3E394AED80EB91B599185A7272F33B3 ] C:\Windows\System32\umpnpmgr.dll
18:05:30.0303 0x0c48 C:\Windows\System32\umpnpmgr.dll - ok
18:05:30.0303 0x0c48 [ F1E067F56373F11EA4B785CAE823740A, 69BD30E64DA17595FF29C9C9FF9AD4F2F4BE29B688FBAC9DABB2FA9D13A47FF0 ] C:\Windows\System32\umpo.dll
18:05:30.0303 0x0c48 C:\Windows\System32\umpo.dll - ok
18:05:30.0318 0x0c48 [ 5C2758C697F6EC1C3771902D5FDF8079, 1A1BC2B91181D4B9F6B05A7A25E73FAF86C89DE6C246D75C6497CCB784D53C78 ] C:\Windows\System32\gpapi.dll
18:05:30.0318 0x0c48 C:\Windows\System32\gpapi.dll - ok
18:05:30.0318 0x0c48 [ 2BA42F109B70D10E2F12072AD5BFFE27, ACB02141234D0D83899602F192AF55BDEACC33D14362A97CDDEC971F9B2EB59A ] C:\Windows\System32\hid.dll
18:05:30.0318 0x0c48 C:\Windows\System32\hid.dll - ok
18:05:30.0334 0x0c48 [ 61A8BF961A244C60697814D8CC2741FA, 1F67DEC687A6FDBDC62E5CB52CC177673A601676605949B6F2132AC3BCEFA054 ] C:\Windows\System32\pcwum.dll
18:05:30.0334 0x0c48 C:\Windows\System32\pcwum.dll - ok
18:05:30.0334 0x0c48 [ 58CE8F135CC6F3271603A8BB094B1967, A47AD0441433A583766A90117176C8ECB42D9ACE4AA6B593010C2140395A8A8F ] C:\Windows\System32\umpoext.dll
18:05:30.0334 0x0c48 C:\Windows\System32\umpoext.dll - ok
18:05:30.0350 0x0c48 [ 2BDC5D711FA61307CE6190D47C956368, 6BCDC6CBB9783F1ABE8957BDA94AF977DFB2A310BB6D19085EFC8609C97FD180 ] C:\Windows\System32\Drivers\luafv.sys
18:05:30.0350 0x0c48 C:\Windows\System32\Drivers\luafv.sys - ok
18:05:30.0350 0x0c48 [ AB886378EEB55C6C75B4F2D14B6C869F, D6C4602EB8F291DADEDF3CD211013D4AC752DDE7E799C2D8D74AA4F5477CAED6 ] C:\Windows\System32\Drivers\WUDFPf.sys
18:05:30.0350 0x0c48 C:\Windows\System32\Drivers\WUDFPf.sys - ok
18:05:30.0365 0x0c48 [ 73F2E030B5C24E4E41401B5F0D59E6FD, FAA8B5E3159684E0836900C6EAF63857B445F7F180169B56D5790F097EDAA38B ] C:\Windows\System32\RpcEpMap.dll
18:05:30.0365 0x0c48 C:\Windows\System32\RpcEpMap.dll - ok
18:05:30.0381 0x0c48 [ 1EC6E533C954BDDF2A37E7851A7E58FD, C25936A7465B6A2B3D05D2FCB09D91ACC07CFE038A5E968C99CFA9D9F2967DD4 ] C:\Windows\System32\rpcss.dll
18:05:30.0381 0x0c48 C:\Windows\System32\rpcss.dll - ok
18:05:30.0381 0x0c48 [ 587089B7A93F3DE43832F3DBDD8F4653, 9A026D63576454ECF009E09809E09B75874E43B78C031F64C31012A871CAF91D ] C:\Windows\System32\RpcRtRemote.dll
18:05:30.0381 0x0c48 C:\Windows\System32\RpcRtRemote.dll - ok
18:05:30.0396 0x0c48 [ 038FA1B55531E7020DB705B42FCCE373, 023E87E3204D64890D6FEA78E762E5BC5BD0A59325EBC264834727779EEEDBC5 ] C:\Windows\System32\bisrv.dll
18:05:30.0396 0x0c48 C:\Windows\System32\bisrv.dll - ok
18:05:30.0396 0x0c48 [ 43197AE4DF1F8D5A95C5134C81B05FB9, 5D8BED8631B8395BEE30123BD15FA082C4C75A3799FB3CE07C1873D2A85F928F ] C:\Windows\System32\FirewallAPI.dll
18:05:30.0396 0x0c48 C:\Windows\System32\FirewallAPI.dll - ok
18:05:30.0412 0x0c48 [ A57BA284F5996FFD32DCDBC41A4657DB, 2106B83873A824BC83EF42FAC9DD9A0F741209535A84AE65EA8E786519920043 ] C:\Windows\System32\lsm.dll
18:05:30.0412 0x0c48 C:\Windows\System32\lsm.dll - ok
18:05:30.0412 0x0c48 [ 8018DC4AA69B7B2159B4EBEC9833C67E, 032B96DD3D98AD92A4C51A9E603A86F55E304C3076F4D325BF0FF2F6AA04052F ] C:\Windows\System32\psmsrv.dll
18:05:30.0412 0x0c48 C:\Windows\System32\psmsrv.dll - ok
18:05:30.0428 0x0c48 [ 2383FFF04B78586DB2F78E82583F630A, 35081F9BDC2D1FFECAAF9DF974D75416A769722643650F2752BB32DA6F9D84FF ] C:\Windows\System32\sysntfy.dll
18:05:30.0428 0x0c48 C:\Windows\System32\sysntfy.dll - ok
18:05:30.0443 0x0c48 [ AD00E5D3B748150CF1A53A1ABB52E320, CCECC961C299D37B2F9A3771B62FE8EF3425DAA9203EECF8D7D3EB0C614E6CC0 ] C:\Windows\System32\UXInit.dll
18:05:30.0443 0x0c48 C:\Windows\System32\UXInit.dll - ok
18:05:30.0443 0x0c48 [ E5D1CB25AB7050FE4A4397089BE2AA09, 4806EC7A712E28FF8B473EE71E22CD8B73CA5249C51640F58B4A9A683350CBD4 ] C:\Windows\System32\wmsgapi.dll
18:05:30.0443 0x0c48 C:\Windows\System32\wmsgapi.dll - ok
18:05:30.0459 0x0c48 [ 51107DD3E8DF825ED09CF028F6C8B138, 4C02B11BF079D28F8713A467D6D5D7C323E29ECE77DFA56300639775DAADB90D ] C:\Windows\System32\uxtheme.dll
18:05:30.0459 0x0c48 C:\Windows\System32\uxtheme.dll - ok
18:05:30.0459 0x0c48 [ 11EA2B2C58E38BDBBEC4298BCEE40A59, BE7EB8717B6E82879398058E85F4B58969C469B4FC14EE4B8B174B13D7F0487B ] C:\Windows\System32\wevtsvc.dll
18:05:30.0459 0x0c48 C:\Windows\System32\wevtsvc.dll - ok
18:05:30.0475 0x0c48 [ 52576C623E5877D6CD73479610A532C2, 58D8596659AFF4E68F1C8D21042D4DB00227A4B07BB3470B3CF5BE1B5950D3BD ] C:\Windows\System32\dpapi.dll
18:05:30.0475 0x0c48 C:\Windows\System32\dpapi.dll - ok
18:05:30.0475 0x0c48 [ FAD009934DE5E8FA2511109B2349B9B1, DBAA161E24CD91DD15F135469556E8569DCCC47A8AC52F5196996F72EDACAC54 ] C:\Windows\System32\LogonUI.exe
18:05:30.0475 0x0c48 C:\Windows\System32\LogonUI.exe - ok
18:05:30.0490 0x0c48 [ 3DB7FFC313BD190D0E64931302776BAF, E7F12568729DBF43323C47B4AE12F231A05B4E57D677D339E98555B01E2498B8 ] C:\Windows\System32\ntmarta.dll
18:05:30.0490 0x0c48 C:\Windows\System32\ntmarta.dll - ok
18:05:30.0506 0x0c48 [ 429E8502AD2227CF88F8840FC5BD590D, A186DA46C083580ACEDE9C7E3156865034302CD803140EEEC8E1DE16DA4BC99B ] C:\Windows\System32\profsvc.dll
18:05:30.0506 0x0c48 C:\Windows\System32\profsvc.dll - ok
18:05:30.0506 0x0c48 [ 97F8694D6CDD8A3BBDF0A24D9B321C7B, 163F6CA5954B5D60645F27AC0BC0A2D0A05C61067347035B8C7D6DECCC2B9099 ] C:\Windows\System32\authui.dll
18:05:30.0506 0x0c48 C:\Windows\System32\authui.dll - ok
18:05:30.0521 0x0c48 [ 0CBF0748B3F6C978233BBDD1D9D6A023, 7AE78B94A0D3974A3B4C3EB6C4F08C3A8003E6961B4A1175EC6A7788C148692F ] C:\Windows\System32\dwm.exe
18:05:30.0521 0x0c48 C:\Windows\System32\dwm.exe - ok
18:05:30.0521 0x0c48 [ A6D52417607B399790678AFB2B44CDF3, 5BF832A731B90FCF4FBAF75E250BFFFF20CB11C7441309E23E71066BDA4E4825 ] C:\Windows\System32\dwmredir.dll
18:05:30.0521 0x0c48 C:\Windows\System32\dwmredir.dll - ok
18:05:30.0537 0x0c48 [ 5170FF8948D9FBFA5386E7AC915B7A66, DACCB696410DABA470686F9C22E77D379D9CBADF67F53C12A5F192B98304EE22 ] C:\Windows\System32\dwmcore.dll
18:05:30.0537 0x0c48 C:\Windows\System32\dwmcore.dll - ok
18:05:30.0553 0x0c48 [ 5358678C6370F2ADC5291849F6503262, 841633D7A936C3889690C67E189BAD4C6B294C196FFFE5B564FCECDFE46A9E52 ] C:\Windows\System32\gpsvc.dll
18:05:30.0553 0x0c48 C:\Windows\System32\gpsvc.dll - ok
18:05:30.0553 0x0c48 [ BF81D887348C8DD9E45B08F3718F7D96, 469534F8BD42B7C3C0B6E4DDCCF85EE1D533D531F65A151F8FA81BC3DEC2276A ] C:\Windows\System32\SHCore.dll
18:05:30.0553 0x0c48 C:\Windows\System32\SHCore.dll - ok
18:05:30.0568 0x0c48 [ B1256D36D6D415FB924A26957A83C2CB, 24058235181F322D76D138BC0413474FD399DED2FE522F843DF5611A2A75364F ] C:\Windows\System32\dcomp.dll
18:05:30.0568 0x0c48 C:\Windows\System32\dcomp.dll - ok
18:05:30.0568 0x0c48 [ 91E1A704990CEE32FFFBDF8AB8C258E4, 7FAC1A8A21E7C4F15F54F882CA2166B4C2BD92C52D691824F54F37D7A9283B00 ] C:\Windows\System32\dsrole.dll
18:05:30.0568 0x0c48 C:\Windows\System32\dsrole.dll - ok
18:05:30.0584 0x0c48 [ F0C56FAF38A244599CBC173D581E27FC, 6F2A2DDB435E52450C60B4432D1020088ABFAFCD2D06697FC24D39CC6CA08509 ] C:\Windows\System32\nlaapi.dll
18:05:30.0584 0x0c48 C:\Windows\System32\nlaapi.dll - ok
18:05:30.0584 0x0c48 [ 519A6F672FFF56B7D8EE8C730CEC8ECD, 2B36F10C0AE16A261DC0887B1050808BA1F0568F3879E4ABC3D370F08C3FADB7 ] C:\Windows\System32\themeservice.dll
18:05:30.0584 0x0c48 C:\Windows\System32\themeservice.dll - ok
18:05:30.0600 0x0c48 [ 6587EB86E32C49AC726817220390CFFE, 2F2DA8E93761CA6C3A27A4D983E8C38FF0C60B2A06F573E3B1306AC31B6E5A14 ] C:\Windows\System32\WindowsCodecs.dll
18:05:30.0600 0x0c48 C:\Windows\System32\WindowsCodecs.dll - ok
18:05:30.0600 0x0c48 [ 80E5C64479952266CCFCF52CBBBE84DC, A6A94784396A7DB55C2239D02C5D315022FE67F0E8EA1A4107756DEDBCA6CBAE ] C:\Windows\System32\dui70.dll
18:05:30.0600 0x0c48 C:\Windows\System32\dui70.dll - ok
18:05:30.0615 0x0c48 [ 91F2CB5172B120F7BE0645882D4427C8, 6C7BD71AAC26C4244C96EDEBB47CF93638D2C28C8A85012814A31A31173D081F ] C:\Windows\System32\profsvcext.dll
18:05:30.0615 0x0c48 C:\Windows\System32\profsvcext.dll - ok
18:05:30.0615 0x0c48 [ F9E01C2D9F8BC049E04CF5DC24A5F638, CB6CCB59C77D4A59DDA846608AABEF1DFEC24C8422712AB8D59E27C13D731D2E ] C:\Windows\System32\es.dll
18:05:30.0615 0x0c48 C:\Windows\System32\es.dll - ok
18:05:30.0631 0x0c48 [ E2B8F9FE6FA401AEB0BDFF8ED61A7568, AF1866C4DB5904BCA4CFBA4CECA6AE478BEAE24DC83D8B13414E7B4139C9FFDE ] C:\Windows\System32\wmiclnt.dll
18:05:30.0631 0x0c48 C:\Windows\System32\wmiclnt.dll - ok
18:05:30.0631 0x0c48 [ 6CB5B0F8F835B0E69857436405BA6E28, 8D166C6C9340F8E0785A24751AC52C83E1BA3E2A6C48F6513676B40364C0080F ] C:\Windows\System32\d3d10_1.dll
18:05:30.0631 0x0c48 C:\Windows\System32\d3d10_1.dll - ok
18:05:30.0646 0x0c48 [ BB6591EA99CBCD17989CBF04214DD7E8, 860ED35BE8697B7ED89E8BC1A6AECE5F40FBF9CD2B0C10B4E510C88DB6795661 ] C:\Windows\System32\ntdsapi.dll
18:05:30.0646 0x0c48 C:\Windows\System32\ntdsapi.dll - ok
18:05:30.0662 0x0c48 [ F235600515AD6CBE06DB440FBB7C8E01, F5241F9388EC8D7C470DCEC07E4B307B80CB55DC9FF5638A2EB5AE32D79A6E20 ] C:\Windows\System32\atl.dll
18:05:30.0662 0x0c48 C:\Windows\System32\atl.dll - ok
18:05:30.0662 0x0c48 [ 38082C25FC60B10977AC729127A4463D, 4F6D3DCD33C6DA86E8AF74DADDBB78B87AB09627EAFF5193EA94C84747A8BF5A ] C:\Windows\System32\dwmapi.dll
18:05:30.0662 0x0c48 C:\Windows\System32\dwmapi.dll - ok
18:05:30.0678 0x0c48 [ D70E930E67968D0F849333841DDBA02B, D671D8176E9AB24A294F6389D4CDB08C795D3C4E63186600412AF88EA3112CED ] C:\Windows\System32\netapi32.dll
18:05:30.0678 0x0c48 C:\Windows\System32\netapi32.dll - ok
18:05:30.0678 0x0c48 [ 4A945F0177124D653B5EF975D11DA9F8, 15ABE16F232F34E8539AD9E9A926067E7829AC9BAABE925F03F12029247AE56E ] C:\Windows\System32\dfscli.dll
18:05:30.0678 0x0c48 C:\Windows\System32\dfscli.dll - ok
18:05:30.0693 0x0c48 [ 9C51620998F0763039DFA6BF68E475ED, 9E496ADE7CE9A446BE8A2C2FC61B462D966778A94A4C147AABBD25C4821C2BCE ] C:\Windows\System32\Sens.dll
18:05:30.0693 0x0c48 C:\Windows\System32\Sens.dll - ok
18:05:30.0693 0x0c48 [ FC414C8C91848FACFD6514AEF88A5ABA, E00EF2380FEAD83A23A8720BDA16FB7218C1B8D5C5EE6FDA3B446D75364CC7A1 ] C:\Windows\System32\wkscli.dll
18:05:30.0693 0x0c48 C:\Windows\System32\wkscli.dll - ok
18:05:30.0709 0x0c48 [ BCD7A47EF587DC00DD61D12D9C2D1E44, 95BC9AC8BA8A86DB5C7A6317002BD9872F193B401A0C58DF252DCF3D4A7541E2 ] C:\Windows\System32\AudioEndpointBuilder.dll
18:05:30.0709 0x0c48 C:\Windows\System32\AudioEndpointBuilder.dll - ok
18:05:30.0725 0x0c48 [ 3951ECF063787EB40CD33D2961B39E23, 40818482DF1EB61A0E077A0EC8B7D9B024BBC4BBD6509E985C40B3575FDCBCC0 ] C:\Windows\System32\d3d10_1core.dll
18:05:30.0725 0x0c48 C:\Windows\System32\d3d10_1core.dll - ok
18:05:30.0725 0x0c48 [ 0BCDC0FF11B984162B0CF0FF6E9E0146, D44A3CECBA36B7A64854E244FA6B5E65047896BF9983D20B431410FBBA36697A ] C:\Windows\System32\FntCache.dll
18:05:30.0725 0x0c48 C:\Windows\System32\FntCache.dll - ok
18:05:30.0740 0x0c48 [ 4B249FD266D2FF17EE8809EB46A173A6, 7DA4CBC84F905BE6E76C9554642549A3D98C1BED4D3AA41E3D36FA5B27BF3E38 ] C:\Windows\System32\taskschd.dll
18:05:30.0740 0x0c48 C:\Windows\System32\taskschd.dll - ok
18:05:30.0740 0x0c48 [ 08B3A62B406421E7D4A03B2F93F6CFDA, D57E90D901044644454ABBC69EC76B312031FE6979E248249DF48CEC9B049257 ] C:\Windows\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16579_none_418ab7ef718b27ef\comctl32.dll
18:05:30.0740 0x0c48 C:\Windows\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16579_none_418ab7ef718b27ef\comctl32.dll - ok
18:05:30.0756 0x0c48 [ B5FEAE9A8C299EB6D1B6D810CDB4A9A7, 583C67C3A72BB444D9B5E0515E8AE86875331454A28403218388507DA263691A ] C:\Windows\System32\MMDevAPI.dll
18:05:30.0756 0x0c48 C:\Windows\System32\MMDevAPI.dll - ok
18:05:30.0756 0x0c48 [ 02DF949C584B02FAB05868502C578D42, 18ED0FAC5DDA7B1A77B003B48D58BC41679ECC32F48CB1A180C0710E6963C30A ] C:\Windows\System32\dxgi.dll
18:05:30.0756 0x0c48 C:\Windows\System32\dxgi.dll - ok
18:05:30.0771 0x0c48 [ BEB9FF627ACB97F10D0B65D404D62C7A, 545B733976106942F35C2B33676FBFB9A1A23ACAF541D0E4A482E9651506664F ] C:\Windows\System32\d3d11.dll
18:05:30.0771 0x0c48 C:\Windows\System32\d3d11.dll - ok
18:05:30.0787 0x0c48 [ EEE908BE7143FCA48CF0CB87214E2AB8, 4F9BD299F559DD36DBD93489CFAA753F236FBB70946E034D2E2260059AE20962 ] C:\Windows\System32\mmcss.dll
18:05:30.0787 0x0c48 C:\Windows\System32\mmcss.dll - ok
18:05:30.0787 0x0c48 [ 599B3F685A263A114FFAF3BE29C49C75, 579E9561BA8537888E061E303F3F89E2E6F8B8DED74369C3767DB10B35CD45E8 ] C:\Windows\System32\audiosrv.dll
18:05:30.0787 0x0c48 C:\Windows\System32\audiosrv.dll - ok
18:05:30.0803 0x0c48 [ 37843E6888569097918544F0338BC19D, C9FCBE51494225FBEFDC8A7D863CE5FD7318E454F13D066D719F415D9F3786A4 ] C:\Windows\System32\avrt.dll
18:05:30.0803 0x0c48 C:\Windows\System32\avrt.dll - ok
18:05:30.0803 0x0c48 [ 0E0A4CDB1258FF435D96BA51AB329B7A, 5EBEBE1220E070847677A3C3A91EA7A8CDE663467335A9E7E801DFFD97E14EC2 ] C:\Windows\System32\duser.dll
18:05:30.0803 0x0c48 C:\Windows\System32\duser.dll - ok
18:05:30.0818 0x0c48 [ A6C06C45C44AD06C70AF8899AEC15BDC, AC2CCCDBA6B94BA85A6D41B47343193D175786D4ECF71AE9C7766ADD63A1273F ] C:\Windows\System32\TabSvc.dll
18:05:30.0818 0x0c48 C:\Windows\System32\TabSvc.dll - ok
18:05:30.0834 0x0c48 [ B1DF2D87DC8BF6072699AC8301B37796, D5A6FD1EDB627324DFA1A0555F1777A3313EF29DDE29982C3CE59DAF1ED0D105 ] C:\Windows\System32\WUDFPlatform.dll
18:05:30.0834 0x0c48 C:\Windows\System32\WUDFPlatform.dll - ok
18:05:30.0834 0x0c48 [ B20F051B03A966392364C83F009F7D17, 88ECEB55AE91F58F592B96EBC10B572747D5A2F9B7629E8F371761E4F7408A65 ] C:\Windows\System32\WUDFSvc.dll
18:05:30.0834 0x0c48 C:\Windows\System32\WUDFSvc.dll - ok
18:05:30.0850 0x0c48 [ 5DCBA1A3AE7150D2B71347BDD08639ED, 1F95863F935EA963AF10D6E0A66E57F222E1ABCFAE7A9EBFD64028B7B34B8E02 ] C:\Windows\System32\version.dll
18:05:30.0850 0x0c48 C:\Windows\System32\version.dll - ok
18:05:30.0850 0x0c48 [ 1C84163466F20A1AED38155B95D7D237, 4E47346E55AA7EEAAFE28D3C5E3432570EDC723FA84B27111C2A5E922A082DE8 ] C:\Windows\System32\dxgidebug.dll
18:05:30.0850 0x0c48 C:\Windows\System32\dxgidebug.dll - ok
18:05:30.0865 0x0c48 [ 2C71C009DFAC4C6EE7795C6C042090B4, F4BA7EA954F735E9B61CCFF99D319F618FA16688191CC8ECC5D923B4DE29E554 ] C:\Windows\System32\slc.dll
18:05:30.0865 0x0c48 C:\Windows\System32\slc.dll - ok
18:05:30.0865 0x0c48 [ D39F1714D8944A0AC590B08F5A2DD0E7, 2A642B28DBE1B855D3A1E35E08C07DA4A57EA643C33EA8519611B483AF091D40 ] C:\Windows\System32\SndVolSSO.dll
18:05:30.0865 0x0c48 C:\Windows\System32\SndVolSSO.dll - ok
18:05:30.0881 0x0c48 [ 46F09D226A9F0676932657A6761CEB82, EDB5AC9597817FC9F30655BF4EF441D4A7CFAFEC8AC6D1DAC39D4A2FB79E0935 ] C:\Windows\System32\d3d10warp.dll
18:05:30.0881 0x0c48 C:\Windows\System32\d3d10warp.dll - ok
18:05:30.0896 0x0c48 [ 8ABFE00F213F2571498F1B8FD7939A98, B557EC9EFD33612BAFE01FFD304B50EFB8C3C19763470560DA950B5AB4A9AC9C ] C:\Windows\System32\WUDFHost.exe
18:05:30.0896 0x0c48 C:\Windows\System32\WUDFHost.exe - ok
18:05:30.0896 0x0c48 [ 25AE683DCB4AE7E6F1B193A0CB9DB35F, 9DC4BE1A51A3E94DB05369222CFCBA2125DA519EAAC46823EAECD738974463EF ] C:\Windows\System32\WUDFx.dll
18:05:30.0896 0x0c48 C:\Windows\System32\WUDFx.dll - ok
18:05:30.0912 0x0c48 [ 7ACA8A8C9180334B88C402F8FB5FC517, F858EF10B3F8B9493BC208B8D956F36BAD338A216066601CE5EB233E244FD329 ] C:\Windows\System32\BCP47Langs.dll
18:05:30.0912 0x0c48 C:\Windows\System32\BCP47Langs.dll - ok
18:05:30.0912 0x0c48 [ 3D9769EC15095457F4025E69963BE54F, 2920ADDB59B1A6715AB53BAC729E93A8103FB887F57E43EC669D7F6D37833C61 ] C:\Windows\System32\Drivers\UMDF\SensorsSimulatorDriver.dll
18:05:30.0912 0x0c48 C:\Windows\System32\Drivers\UMDF\SensorsSimulatorDriver.dll - ok
18:05:30.0928 0x0c48 [ 156B8769D44187090781DFA9FED1AE18, E78130BD3771344D15785D4F73012E107EAE8350D203C9DD6147993A36A548F6 ] C:\Windows\System32\SmartcardCredentialProvider.dll
18:05:30.0928 0x0c48 C:\Windows\System32\SmartcardCredentialProvider.dll - ok
18:05:30.0928 0x0c48 [ 55B2B2ED592D61D70FC9B4783C65AF81, 50478B1BB4E3CECF9368BAEBFDA6835E01EDAC8113B2B1FE6E16D72A4B5C10B2 ] C:\Windows\System32\atl110.dll
18:05:30.0928 0x0c48 C:\Windows\System32\atl110.dll - ok
18:05:30.0943 0x0c48 [ BA47A3E78521EC9EA4341F6FA8A75EC9, 4605269D80E7336CF56A7C95453C170E8A62EFC2CAA8B679696160D06CEAF0D7 ] C:\Windows\System32\propsys.dll
18:05:30.0943 0x0c48 C:\Windows\System32\propsys.dll - ok
18:05:30.0959 0x0c48 [ C98F6286818474AB284144A73EC7BA6D, 34FBB46A9F1676FC977C9E624C0568589F8869D9B3CAAF7101FFCBAD91DD58EB ] C:\Windows\System32\cngcredui.dll
18:05:30.0959 0x0c48 C:\Windows\System32\cngcredui.dll - ok
18:05:30.0959 0x0c48 [ A3D537FD8CEDDA2826A2D2103D6E90B9, 416866003F698F83FD437B4FF7565F5997149C4D67365C18049D941E869C7A1D ] C:\Windows\System32\igdumd64.dll
18:05:30.0959 0x0c48 C:\Windows\System32\igdumd64.dll - ok
18:05:30.0975 0x0c48 [ 3E57DE8477F6F851B43904B50B1816C5, 7ECF255AEFCD35602F2182D5748D88445EA0FECFDEA14F7CA0F4665D404CE89F ] C:\Windows\System32\DWrite.dll
18:05:30.0975 0x0c48 C:\Windows\System32\DWrite.dll - ok
18:05:30.0975 0x0c48 [ AC89ADD10CDAC8D5647928FBE5B94621, 2670131BA80D4729499042EDC5E6AD31DF1DEB3B3A7C30094327BA079C268066 ] C:\Windows\System32\PortableDeviceTypes.dll
18:05:30.0975 0x0c48 C:\Windows\System32\PortableDeviceTypes.dll - ok
18:05:30.0990 0x0c48 [ 64F6AFD2F4F8D0DB5B8770EC59103778, A681B1D160BC2E4855B0C907110870D0FC0BB917C89B35C8327679E0DEC5E1FB ] C:\Windows\System32\PortableDeviceApi.dll
18:05:30.0990 0x0c48 C:\Windows\System32\PortableDeviceApi.dll - ok
18:05:30.0990 0x0c48 [ 8CD0FE485E7830F835828A4195261F5F, 399764FFABE6FE6FDFE6FDE3BA560E95B0A7634E63DDD1545F63ADEB0C190EBC ] C:\Windows\System32\SensorsClassExtension.dll
18:05:30.0990 0x0c48 C:\Windows\System32\SensorsClassExtension.dll - ok
18:05:31.0006 0x0c48 [ 84B46D1BAA5FDD488315B0D34CF77B28, 805B5A931B26BD1042D2BFD55E7908D08D66B816AC3D5F35AE635BD531BB5FAA ] C:\Windows\System32\PortableDeviceClassExtension.dll
18:05:31.0006 0x0c48 C:\Windows\System32\PortableDeviceClassExtension.dll - ok
18:05:31.0021 0x0c48 [ 7FA8C13A62CAEB2D84A731030DC1B866, CDDD1F4E96D215BC07FEEC79E54D42BBA8F9C3D5490A9CCB7A5F8098F45483C0 ] C:\Windows\System32\oleacc.dll
18:05:31.0021 0x0c48 C:\Windows\System32\oleacc.dll - ok
18:05:31.0021 0x0c48 [ CEEFD29FC551F289810B0B9381B321DC, 900F206B487B2190D9363F28AA4BA0CD7DCFE1D005BE05A48AF74B1B81194691 ] C:\Windows\System32\Drivers\lltdio.sys
18:05:31.0021 0x0c48 C:\Windows\System32\Drivers\lltdio.sys - ok
18:05:31.0037 0x0c48 [ 43D7388A90A4C6EA346A4D6FF0377479, DFDCFA448B49C8A577056070AF516F08CD2E452706A3CF9173195ABA4256F35D ] C:\Windows\System32\Drivers\nwifi.sys
18:05:31.0037 0x0c48 C:\Windows\System32\Drivers\nwifi.sys - ok
18:05:31.0037 0x0c48 [ F8F73B55E542834106C9948148D3A805, 1AEDBFB62BD02FF95457885604CFBFA2EE4D9448E50E82CE129CE660644240EF ] C:\Windows\System32\AthCredentialProvider.dll
18:05:31.0037 0x0c48 C:\Windows\System32\AthCredentialProvider.dll - ok
18:05:31.0053 0x0c48 [ 79AB68BB3FFF974AD4F41FA559F4EC67, 1745EC6520B48E325C56D98A1F4DB9CE135FE3E097B3D66E6598791132CAD7BD ] C:\Windows\System32\Drivers\ndisuio.sys
18:05:31.0053 0x0c48 C:\Windows\System32\Drivers\ndisuio.sys - ok
18:05:31.0068 0x0c48 [ FA6C8E59B74908550607EBEDCD7BA1E2, BCD5847CA9C6E781E20C4377DF097BC30A32F5D911BFC365BD1329EEB751862A ] C:\Windows\System32\secur32.dll
18:05:31.0068 0x0c48 C:\Windows\System32\secur32.dll - ok
18:05:31.0068 0x0c48 [ 46558835A2092077DB5E90BE3E9715B1, CE4B184A40E98C659E34424808C99D2F29B44BAFFD65DDCD85F06CDEF8599466 ] C:\Windows\System32\credui.dll
18:05:31.0068 0x0c48 C:\Windows\System32\credui.dll - ok
18:05:31.0084 0x0c48 [ E04E770DD198B9399640717145E79EBF, 2F9BECB7E4B0A522C6370FD39CFD7DFD3FB5D0A779AECCED2EE855629FA3C952 ] C:\Windows\System32\Drivers\rspndr.sys
18:05:31.0084 0x0c48 C:\Windows\System32\Drivers\rspndr.sys - ok
18:05:31.0084 0x0c48 [ 04A9D55BDCD79EBB2F32D91FE5946C28, A295750E156760FD28E02ED83E8DBA0731BD90C9374F3D735A80D7472D2FE95A ] C:\Windows\System32\IPHLPAPI.DLL
18:05:31.0084 0x0c48 C:\Windows\System32\IPHLPAPI.DLL - ok
18:05:31.0100 0x0c48 [ 5A2F7F1CBC2E631A497DAD16164E06D2, 35274FC6C386380B01B5E8F467E71A2C4E2FB2AD701554F9B1A9B036B0340142 ] C:\Windows\System32\lmhsvc.dll
18:05:31.0100 0x0c48 C:\Windows\System32\lmhsvc.dll - ok
18:05:31.0100 0x0c48 [ 832B5FDF0B5577713FD7F2465FCD0ACE, 4A551CDBACED47DD781EC59F8B59A13D66EFD85DCF636BCFCBACFE5972A78E93 ] C:\Windows\System32\nsisvc.dll
18:05:31.0100 0x0c48 C:\Windows\System32\nsisvc.dll - ok
18:05:31.0115 0x0c48 [ 066B9710B36AB550E01EEFCA52155968, DCA9F3F4856A6866D3F5A2EEE34E96A83F40198DB0B5AC6381A7568DE1F56FAB ] C:\Windows\System32\dnsrslvr.dll
18:05:31.0115 0x0c48 C:\Windows\System32\dnsrslvr.dll - ok
18:05:31.0115 0x0c48 [ 58B7BEACEB8B19A9698FE85B76C88ED9, 1B2C3E482F70F9E2CB85E9D52C9450946B1508F12087BFD4A78D4B1458AB20BD ] C:\Windows\System32\FWPUCLNT.DLL
18:05:31.0115 0x0c48 C:\Windows\System32\FWPUCLNT.DLL - ok
18:05:31.0131 0x0c48 [ F28C7A1A04C73FD099CBA2441B07842D, 2680D367DF0FDEDAF88DEE6D177225701682742E8702125D8E85C4BFA520BD75 ] C:\Windows\System32\nrpsrv.dll
18:05:31.0131 0x0c48 C:\Windows\System32\nrpsrv.dll - ok
18:05:31.0146 0x0c48 [ AF1349386D4C6786EF4E34FACEF15042, 6B33778409BC54C1955B92508ADDEBAFD629141961B71C94A91DC4CFE8391A13 ] C:\Windows\System32\wcmsvc.dll
18:05:31.0146 0x0c48 C:\Windows\System32\wcmsvc.dll - ok
18:05:31.0146 0x0c48 [ 0911A3B2DE545EA2498E560D745B7E71, 9A32494AD2D8B9166B81543A2D602AFA15944CC25084CC3F704ED93C52227FD0 ] C:\Windows\System32\winnsi.dll
18:05:31.0146 0x0c48 C:\Windows\System32\winnsi.dll - ok
18:05:31.0162 0x0c48 [ 9E0E72222264745ADEB0E5AC680B0ED6, 576AFC8741695396A3B8E9DBDD3703E9D70370437D09D162262E47A140D101B4 ] C:\Windows\System32\dhcpcore.dll
18:05:31.0162 0x0c48 C:\Windows\System32\dhcpcore.dll - ok
18:05:31.0162 0x0c48 [ 6351724B8FA0255C2DBD970297F00B93, A02F274479F9F32E30C75A5BD991B008B3CCB47D380D5870563EF918DAC5730E ] C:\Windows\System32\wlansvc.dll
18:05:31.0162 0x0c48 C:\Windows\System32\wlansvc.dll - ok
18:05:31.0178 0x0c48 [ EB87F1EFE1376CE0283635563026F9E0, 86AB2AB2A37996944E725B48B957C3B34E649F79708F0034A4CDDA357DDC058A ] C:\Windows\System32\dhcpcsvc6.dll
18:05:31.0178 0x0c48 C:\Windows\System32\dhcpcsvc6.dll - ok
18:05:31.0178 0x0c48 [ 137BBCFB2080C5F6F4E5C4EB6314D97A, 6152A78B2E7782B502045AA94C230948340FD6720A25E44BE2F9F398F1548646 ] C:\Windows\System32\dnsext.dll
18:05:31.0178 0x0c48 C:\Windows\System32\dnsext.dll - ok
18:05:31.0193 0x0c48 [ 8C7D71CE2F03E8CD6F1045D9275E6E1D, 032DDC966851D87133A7B34D4DDDC517E0657BE160BD415AB2BB87DB2B24FCC8 ] C:\Windows\System32\wcmcsp.dll
18:05:31.0193 0x0c48 C:\Windows\System32\wcmcsp.dll - ok
18:05:31.0193 0x0c48 [ 366FD6F3A451351B5DF2D7C4ECF4C73A, AE3CB6C6AFBA9A4AA5C85F66023C35338CA579B30326DD02918F9D55259503D5 ] C:\Windows\System32\msvcr100.dll
18:05:31.0193 0x0c48 C:\Windows\System32\msvcr100.dll - ok
18:05:31.0209 0x0c48 [ 8341C75945D37A0CA7642A47B7E79260, 3AD1C15ACFD847AC199769AE0B9634986D98E37ECC6218A67E13388AA1CE0518 ] C:\Windows\System32\dhcpcsvc.dll
18:05:31.0209 0x0c48 C:\Windows\System32\dhcpcsvc.dll - ok
18:05:31.0225 0x0c48 [ ACB80C69E775A1EA1D0500CE8C72FD69, 3AC431A3CE0ADF07C8BF33E9DB94F64297947E37F4CB318DE14C47245F066DC2 ] C:\Windows\System32\dhcpcore6.dll
18:05:31.0225 0x0c48 C:\Windows\System32\dhcpcore6.dll - ok
18:05:31.0225 0x0c48 [ 7D6BDD2A339080EFA03D9EB39398F4E6, 956CAE39979A4A7A7BFBBF5FDCF0553F3F9B0DB9D52FB33FF9135114ABB2856F ] C:\Windows\System32\wlanmsm.dll
18:05:31.0225 0x0c48 C:\Windows\System32\wlanmsm.dll - ok
18:05:31.0240 0x0c48 [ 72EC1DEF102304EE8C2E47566328F035, A16B5CBCBE9D31661FFC725D3FE28F97EF6AA5AA2FF894F43082E3447EF8EBA2 ] C:\Windows\System32\onex.dll
18:05:31.0240 0x0c48 C:\Windows\System32\onex.dll - ok
18:05:31.0240 0x0c48 [ 14D785DFBE808D9CF7B8C06884730B1D, C352EFB9B798AABC41A130ECD7E471F903EA0764411120A914CAEA0A0EE7F0C6 ] C:\Windows\System32\wlansec.dll
18:05:31.0240 0x0c48 C:\Windows\System32\wlansec.dll - ok
18:05:31.0256 0x0c48 [ 6684C72C745F0E5E385EEAFF3C15538F, 9EEEB59D28417C45CDDFD46566234C352D456929B8819B0D3273987F81359B19 ] C:\Windows\System32\eappprxy.dll
18:05:31.0256 0x0c48 C:\Windows\System32\eappprxy.dll - ok
18:05:31.0271 0x0c48 [ AF433565E5E02857C5D0AFFD932AF150, F87E322C81988EC00EAF0EB0A7327614676CE7B0BD243C74831508E820CC3210 ] C:\Windows\System32\msimg32.dll
18:05:31.0271 0x0c48 C:\Windows\System32\msimg32.dll - ok
18:05:31.0271 0x0c48 [ AAA384C8F6412103973518D60FCEAAD0, FBD00C65F43869674D0ED2D3FAA080DE56DF88A0615D3527873C8830E6ED99C0 ] C:\Windows\System32\bthprops.cpl
18:05:31.0271 0x0c48 C:\Windows\System32\bthprops.cpl - ok
18:05:31.0287 0x0c48 [ 36E419B92BFBF76438B8C0C4DD28B9E6, B5F6A5C3C638B7011E47BA8C120C3172680B51ECFBA7ED150C331E84AC0D64DB ] C:\Windows\System32\msxml6.dll
18:05:31.0287 0x0c48 C:\Windows\System32\msxml6.dll - ok
18:05:31.0287 0x0c48 [ D8DCEE270674DDB6503730CC4C2F1691, AC58EB378CA65642487F8660637A9F4A2E9CAADED71D71D8020F1D7CE94EF03F ] C:\Windows\System32\BluetoothApis.dll
18:05:31.0287 0x0c48 C:\Windows\System32\BluetoothApis.dll - ok
18:05:31.0303 0x0c48 [ 435D285F768738E8754BC0C4E67EC9D5, A636EE9B8AAAC4D65B3E70122FCD20E3BE42EFA26D7452D6267B5DEC28E54166 ] C:\Windows\System32\igd10umd64.dll
18:05:31.0303 0x0c48 C:\Windows\System32\igd10umd64.dll - ok
18:05:31.0303 0x0c48 [ 439580916E49358F8BE33005E98E4B1F, 88C7E7EB90FAD41CBDADAC2CEF0A174DB2D295F2E509A492ABEDB70FDB242C79 ] C:\Windows\System32\BioCredProv.dll
18:05:31.0303 0x0c48 C:\Windows\System32\BioCredProv.dll - ok
18:05:31.0318 0x0c48 [ CE0884D5E82E48F0959BEE3006BEA0E1, 4D6E115B40FBEE9A11F3E989C996CD403D356B88F27DE2A5521D6A7C7F615945 ] C:\Windows\System32\certCredProvider.dll
18:05:31.0318 0x0c48 C:\Windows\System32\certCredProvider.dll - ok
18:05:31.0334 0x0c48 [ 77DA2B3F012A1F0D88F29C612F606F28, 0D98A159E1D8985D2E041456F08ED268AB18C3CBF1635BC80F006C356A4F17DA ] C:\Windows\System32\winbio.dll
18:05:31.0334 0x0c48 C:\Windows\System32\winbio.dll - ok
18:05:31.0334 0x0c48 [ D9AEEA13463C68BC9506342A7D15CBDA, 9E41E7937C26C5C23D167B12822891DAD3CA92A4213631DD8E62A98DFB96C6A5 ] C:\Windows\System32\wlgpclnt.dll
18:05:31.0334 0x0c48 C:\Windows\System32\wlgpclnt.dll - ok
18:05:31.0350 0x0c48 [ 855D7BA4DC79E4157651FF5B23B41FD0, 81CDD8271D5C82B847BAFD3AA26565ECF918EE5DE1B13845FC5A3626ABD42665 ] C:\Windows\System32\UIAnimation.dll
18:05:31.0350 0x0c48 C:\Windows\System32\UIAnimation.dll - ok
18:05:31.0350 0x0c48 [ 193F8B5C8E94D2F4512868135CDB3B1A, DC548C8D0F37073E01A798AE44DD51CFB82DD7F32DBC0F046EE7E25DA3964469 ] C:\Windows\System32\l2gpstore.dll
18:05:31.0350 0x0c48 C:\Windows\System32\l2gpstore.dll - ok
18:05:31.0365 0x0c48 [ A77F3ABE13FCC698511E5DEC7ACEBD5F, 78A43FDA9F770FD8BA107605DB44BC71D8B89D7E75560DA783AA6356C1873C15 ] C:\Windows\System32\shsvcs.dll
18:05:31.0365 0x0c48 C:\Windows\System32\shsvcs.dll - ok
18:05:31.0365 0x0c48 [ 047DB56D72FDC16114606B1A6576904B, A1264FC9A7891557172CADDD7BE71FD88ECE7C0AA8D441AF0170C88EB768C129 ] C:\Windows\System32\wlanapi.dll
18:05:31.0365 0x0c48 C:\Windows\System32\wlanapi.dll - ok
18:05:31.0381 0x0c48 [ D3CD3034E2292DBECCD3161DC29D8E07, 04FAE31ECF9383729E52A69E4F4E24568C496D67FEFED0B9DFADFB0F4B086841 ] C:\Windows\System32\netcfgx.dll
18:05:31.0381 0x0c48 C:\Windows\System32\netcfgx.dll - ok
18:05:31.0396 0x0c48 [ 1D03DD2BA438D4B3E1A0289738619056, 598DD04E851566E38496A7BC671BB0AF2D8C88BFAE1A6734AD570516AEE9F050 ] C:\Windows\System32\wlidcredprov.dll
18:05:31.0396 0x0c48 C:\Windows\System32\wlidcredprov.dll - ok
18:05:31.0396 0x0c48 [ 73FA1A41A97A5C34ADC03B3577FF1A86, CBA4BC0DA837C163587BBB4BF2AC1549C72440307C984D3CDF8995023718136C ] C:\Windows\System32\Drivers\vwifimp.sys
18:05:31.0396 0x0c48 C:\Windows\System32\Drivers\vwifimp.sys - ok
18:05:31.0412 0x0c48 [ 3E5177CAE5C4325C49345B4D48626856, 5162866034888429584464245B3782FB48C1183D7AAE87DAC2ABB79F475BFC83 ] C:\Windows\System32\SubscriptionMgr.dll
18:05:31.0412 0x0c48 C:\Windows\System32\SubscriptionMgr.dll - ok
18:05:31.0412 0x0c48 [ 81ECD8768D3E4AD61DB7EE27401A25E9, 32166BA146CE840FC89BDDF8E4C36189637C897D0C0FC6CFB0B7AB24E94A3291 ] C:\Windows\System32\wevtapi.dll
18:05:31.0412 0x0c48 C:\Windows\System32\wevtapi.dll - ok
18:05:31.0428 0x0c48 [ 59FB8ADC92BF41345BD0034F02187C0E, B62D38CD939289E6547EF7D5E51FE0F44C4064CB6C75A30F3A7110F931916E41 ] C:\Windows\System32\wlanhlp.dll
18:05:31.0428 0x0c48 C:\Windows\System32\wlanhlp.dll - ok
18:05:31.0428 0x0c48 [ EC7C1F9882A5E2F4C5391DDC43582110, AECFDC57EEFE492749B5167C16AF7773F8E19227EEDD5F5822AED494C2F49204 ] C:\Windows\System32\rasplap.dll
18:05:31.0428 0x0c48 C:\Windows\System32\rasplap.dll - ok
18:05:31.0443 0x0c48 [ ED40ED9A65F3E79A8C43DD50C5FDADBF, 2323BFAB1BC3D661A376650B7AC14C7780C92BA575DA048F3C7611CDB3F7F04A ] C:\Windows\System32\schedsvc.dll
18:05:31.0443 0x0c48 C:\Windows\System32\schedsvc.dll - ok
18:05:31.0459 0x0c48 [ 6E578460E165F14D9BA473ED54E3299B, 9C479BFC6D6D06509233A47513563E614909DE550D67BDD249B1D1BFB81CA4EA ] C:\Windows\System32\rasapi32.dll
18:05:31.0459 0x0c48 C:\Windows\System32\rasapi32.dll - ok
18:05:31.0459 0x0c48 [ D058F369A791DD5B4DF8E7C18C0EB282, B710758473B752A6D21E93778255192F5E1C541A939D7505C1F6C417A9027FBF ] C:\Windows\System32\ktmw32.dll
18:05:31.0459 0x0c48 C:\Windows\System32\ktmw32.dll - ok
18:05:31.0475 0x0c48 [ 8C988C29CFB9B3673E882B4DA5EEC81D, 93C6FC9ECC08DB44FF1CE1EEB19B9C8A7D58A2B89D467EEE9223B86B55409DE1 ] C:\Windows\System32\rasman.dll
18:05:31.0475 0x0c48 C:\Windows\System32\rasman.dll - ok
18:05:31.0475 0x0c48 [ 4E251FE2729D6A3FCCC87DC13F823DC2, 70F2D7A4EC3E6CDAC4D644FDBCB2DB3019FF0860E336C52F9CC821DED0AA8221 ] C:\Windows\System32\rtutils.dll
18:05:31.0475 0x0c48 C:\Windows\System32\rtutils.dll - ok
18:05:31.0490 0x0c48 [ 15E300200794A8FC38589B44A0B314D6, 5083ABE1F777938FB310EA7A584BE2DBFC2B74C780DDA54A6B32D71591D11F42 ] C:\Windows\System32\xmllite.dll
18:05:31.0490 0x0c48 C:\Windows\System32\xmllite.dll - ok
18:05:31.0490 0x0c48 [ EB4EE894AF86408776C6FD03376DEA29, 7DDBC722E40C502887A574516C1DD7BA2CC16EF0475508C35CC61036B3266420 ] C:\Windows\System32\fveapi.dll
18:05:31.0490 0x0c48 C:\Windows\System32\fveapi.dll - ok
18:05:31.0506 0x0c48 [ 21E796CF2D1B8A6FAA2347B0070316CE, 6E6B2441FA1B7D64B6A26E19472686F58627AAC5D65D23A753D9DD46624C1146 ] C:\Windows\System32\winbrand.dll
18:05:31.0506 0x0c48 C:\Windows\System32\winbrand.dll - ok
18:05:31.0506 0x0c48 [ 58FE249FBABBA09A98EBAF28B0E0C382, B6B12B92B8AB821EF64F78DBBA75E166EFF9F6192B35C1D150CCE45BFB0C06DE ] C:\Windows\System32\UIAutomationCore.dll
18:05:31.0506 0x0c48 C:\Windows\System32\UIAutomationCore.dll - ok
18:05:31.0521 0x0c48 [ 8FF250BD9B3AC4D9D3F325570F901F36, B9324A54D9C6074E7A9AE0A985CFF43755FE10C310BB6E5B71A2693FDEEF19D7 ] C:\Windows\System32\fvecerts.dll
18:05:31.0521 0x0c48 C:\Windows\System32\fvecerts.dll - ok
18:05:31.0537 0x0c48 [ AA221DD533C7B0897B90B92AFFA45A7E, 411611DC8AD56EB92DD9D2AADE9C30E5DB33D200B9A3083BBC458D4E30C0331B ] C:\Windows\System32\taskcomp.dll
18:05:31.0537 0x0c48 C:\Windows\System32\taskcomp.dll - ok
18:05:31.0537 0x0c48 [ F4A91D985EB9D1D2717D538F3424603C, 454AD2FF3A7963B9835AEF300F6672F92D0CCF59593BA2CCC83F0EC1446BB659 ] C:\Windows\System32\Drivers\http.sys
18:05:31.0537 0x0c48 C:\Windows\System32\Drivers\http.sys - ok
18:05:31.0553 0x0c48 [ 246612D5622F7BA13E87BA08D2F7489A, D5A8B34A9EA312D01F4DCB36684CDEE4D8CAB5CD2B9593866F63095FF504CD66 ] C:\Windows\System32\samlib.dll
18:05:31.0553 0x0c48 C:\Windows\System32\samlib.dll - ok
18:05:31.0553 0x0c48 [ 3F215BF2D4D8D6756298B25B579772C2, 744192D1635E5D296BFD399E870B70592202CEAF95C31C2D2B226A868D33A3FD ] C:\Windows\System32\spoolsv.exe
18:05:31.0553 0x0c48 C:\Windows\System32\spoolsv.exe - ok
18:05:31.0568 0x0c48 [ 599FCE13B819BA7D2D4D4E9C5AD08002, 5D4E9721F691DFFA9F4B5CD2BD0B0756F75A3633BBE6DEC36318034E95BCF271 ] C:\Windows\System32\ProximityService.dll
18:05:31.0568 0x0c48 C:\Windows\System32\ProximityService.dll - ok
18:05:31.0568 0x0c48 [ 406388E840C631E3C338F4E3551F791C, DA74B2340C156F83F4D999774B77DD58E682304482340E4A2D69E721E8F3F163 ] C:\Windows\System32\ProximityCommon.dll
18:05:31.0568 0x0c48 C:\Windows\System32\ProximityCommon.dll - ok
18:05:31.0584 0x0c48 [ 14316954FCE79C9DE5A0AFF9D42C83AA, B60FB1FAC0299F9560761411711E86EDFA2F8D27B58230E2E4BB37736FAB2287 ] C:\Windows\System32\SCardSvr.dll
18:05:31.0584 0x0c48 C:\Windows\System32\SCardSvr.dll - ok
18:05:31.0584 0x0c48 [ 103E609A08474C43C04FB064440FCAE7, 5621577B397F656273FF71DA7DD50B2AD40C83B2AD14FB41F91BDC92E0F70A75 ] C:\Windows\System32\shacct.dll
18:05:31.0584 0x0c48 C:\Windows\System32\shacct.dll - ok
18:05:31.0600 0x0c48 [ 9C09F1D54C7F391B1C3D7440AF30720A, 2CB74FE80A8AD9C05C50E2D989C0B7CBAF6C34C6FF09F61479E817503885BB04 ] C:\Windows\System32\InputSwitch.dll
18:05:31.0600 0x0c48 C:\Windows\System32\InputSwitch.dll - ok
18:05:31.0615 0x0c48 [ D142894EBEFD276A5CFE876884A6E3F9, 23C70855328491916519D9193CE066BE08BAC4ACD3486CBF4239DDD38AC3CFFA ] C:\Windows\System32\uDWM.dll
18:05:31.0615 0x0c48 C:\Windows\System32\uDWM.dll - ok
18:05:31.0615 0x0c48 [ 53AA55632B94622F2DC3695E86EF9363, 9B5BB8EDA48A37AE97BCD42D83B25A6D10AA6231EABE745DCCE6D60E19094A6F ] C:\Windows\System32\BFE.DLL
18:05:31.0615 0x0c48 C:\Windows\System32\BFE.DLL - ok
18:05:31.0631 0x0c48 [ 877F83E385595D018BDB29CDCCCFBE2B, 01A8F5F7E3D6BD504908463ED059AC456E9CF7613C779159CD4578A14C03E4E5 ] C:\Program Files\Common Files\microsoft shared\ink\TabTip.exe
18:05:31.0631 0x0c48 C:\Program Files\Common Files\microsoft shared\ink\TabTip.exe - ok
18:05:31.0631 0x0c48 [ F0E5C2AACB8DFD8EF2F7A67A12CCDA5D, 8A5801FCDECF5735DC150498E7C68F4E598DDD75A9B96A1E42043E390C1B7916 ] C:\Windows\System32\IDStore.dll
18:05:31.0631 0x0c48 C:\Windows\System32\IDStore.dll - ok
18:05:31.0646 0x0c48 [ F9D935D60C397809FC6E1E0676F4AC6E, B526CDE36112D17BCFF95B18663970758A25F1CC089F8B2AA492FF6E729B2815 ] C:\Windows\System32\wuaext.dll
18:05:31.0646 0x0c48 C:\Windows\System32\wuaext.dll - ok
18:05:31.0646 0x0c48 [ 3426BE7D0ED8888ACFE04BA6BB9AF83B, 1B297A8AF0AFBAEFF0C2CFEA93E2D2B688D43B45D82990034FF4E2404F0C58F6 ] C:\Windows\System32\taskhost.exe
18:05:31.0646 0x0c48 C:\Windows\System32\taskhost.exe - ok
18:05:31.0662 0x0c48 [ DC774C3671FBD6FD176864AF0EBA404E, AD95E442134EC6727AF0B8EA6DF47A56196B431C88C31ECA6FDD3BDE5ED8C68D ] C:\Windows\System32\d2d1.dll
18:05:31.0662 0x0c48 C:\Windows\System32\d2d1.dll - ok
18:05:31.0678 0x0c48 [ 75B2D5E65DE399AD3B0E03FE5C426F5E, F09CBD27657054165BDB3C6D8ECA9F3148B91769D086898DF152902F6879C0C3 ] C:\Windows\System32\lpksetup.exe
18:05:31.0678 0x0c48 C:\Windows\System32\lpksetup.exe - ok
18:05:31.0678 0x0c48 [ 53B518707ECB8132E173ADAF42D68054, 53FC46B36408FB952B2B0EAB7D46B6884CFBE7F9B37B618DEC1FA70713322AEE ] C:\Windows\System32\Windows.UI.Immersive.dll
18:05:31.0678 0x0c48 C:\Windows\System32\Windows.UI.Immersive.dll - ok
18:05:31.0693 0x0c48 [ E4A613CCCFD9EE97640FEA50674D620E, 7E04758F6559C827A4BA4160591F6CE052F7693E95A0CE4025C9B8CA213688AE ] C:\Program Files\Common Files\microsoft shared\ink\tipskins.dll
18:05:31.0693 0x0c48 C:\Program Files\Common Files\microsoft shared\ink\tipskins.dll - ok
18:05:31.0693 0x0c48 [ 8B70B0C422715563B90FAD1E360A0E2A, 717E08BEC241510BAD9D846824BD5AA11BED193E80F15BCAD98C05E4923BC923 ] C:\Windows\System32\dpx.dll
18:05:31.0693 0x0c48 C:\Windows\System32\dpx.dll - ok
18:05:31.0709 0x0c48 [ B17AC10B47C7FCB44D22A1F06415840E, 990D6F629D93F4F913D218ACE5187A26DCB762BAFB2BB279CCE8CAF2755D85A5 ] C:\Windows\System32\Drivers\bowser.sys
18:05:31.0709 0x0c48 C:\Windows\System32\Drivers\bowser.sys - ok
18:05:31.0709 0x0c48 [ 0D1609DD82C7440F5D5BF21A9D4D5C0C, BCBFF081FAFB822CE29D291FB329FC310D90F0EC0D1BB69CF8CB09ED5A2E84D1 ] C:\Windows\System32\Drivers\mpsdrv.sys
18:05:31.0709 0x0c48 C:\Windows\System32\Drivers\mpsdrv.sys - ok
18:05:31.0725 0x0c48 [ 93179D48066918323628CB016D8C94DC, FE110BF7A10EDD1DF7F6B933D373FCA51F37413282EBC4187E7C9B1965186BCC ] C:\Windows\System32\Drivers\mrxsmb.sys
18:05:31.0725 0x0c48 C:\Windows\System32\Drivers\mrxsmb.sys - ok
18:05:31.0740 0x0c48 [ 06D5F2FA3C61E8EA91648EA8E9F99FD3, C665B7896501D42C73955F4EAF4FA3C6B2C9286957D6023C235AFBF9BFB761C6 ] C:\Windows\System32\Drivers\mrxsmb10.sys
18:05:31.0740 0x0c48 C:\Windows\System32\Drivers\mrxsmb10.sys - ok
18:05:31.0740 0x0c48 [ 3031573A739DBEE8923851929D0AF423, E9EA6C0D12A896AC745173B1F1A58192B52724AA424718B16B8D05E9AC091741 ] C:\Windows\System32\MPSSVC.dll
18:05:31.0740 0x0c48 C:\Windows\System32\MPSSVC.dll - ok
18:05:31.0756 0x0c48 [ 5C7DD2E5759FFCCD2C7341C1B90F2B26, 9822FA53E6067C0E39B7A3A3F1E88719D5D8B055D86FF894F0475B158289EA45 ] C:\Windows\System32\Drivers\mrxsmb20.sys
18:05:31.0756 0x0c48 C:\Windows\System32\Drivers\mrxsmb20.sys - ok
18:05:31.0756 0x0c48 [ D9F59FD02C8DADB0CE65579AC0B4B9AD, ACA99615F56FF0137450DED2DFFB1CF02F08EE27D89575833066AFB51B76A678 ] C:\Program Files\Common Files\microsoft shared\ink\TipRes.dll
18:05:31.0756 0x0c48 C:\Program Files\Common Files\microsoft shared\ink\TipRes.dll - ok
18:05:31.0771 0x0c48 [ D87775F050DD29AADDF479F5C17E4200, 20F6AE9989803A741256EC584B38D35A7EAD5CC163EB68BABB296F8354903CEF ] C:\Windows\System32\adhapi.dll
18:05:31.0771 0x0c48 C:\Windows\System32\adhapi.dll - ok
18:05:31.0787 0x0c48 [ FF468871BC365B52AE650D422FEA21F5, 917F1B6042E08284680E3C81A9E7A7513CF35EAFCCA0577AC589B921E0B12ACF ] C:\Windows\System32\wfapigp.dll
18:05:31.0787 0x0c48 C:\Windows\System32\wfapigp.dll - ok
18:05:31.0787 0x0c48 [ 16650912BE5A94B40E0B3B4C39652B56, 908C2C9367AE0AC9AECB5D91514BB33ACD746D99F19C1A8DD6A9550E9CAD9E00 ] C:\Windows\System32\wkssvc.dll
18:05:31.0787 0x0c48 C:\Windows\System32\wkssvc.dll - ok
18:05:31.0803 0x0c48 [ 48E42483A6516E48586A2133CA1AB035, 79C1EB86C8D5DCC51E3FEFA78459F468497C6495DF2EAEA7EBEAFA6DCB55D193 ] C:\Windows\System32\comsvcs.dll
18:05:31.0803 0x0c48 C:\Windows\System32\comsvcs.dll - ok
18:05:31.0803 0x0c48 [ 2640C2240F9B6529AE779D83E8FF2127, E962AF0EC3C1257156D6D7ED9B8FB9D32975361A7AC0CDC32B90DE03DED82179 ] C:\Windows\System32\apphelp.dll
18:05:31.0803 0x0c48 C:\Windows\System32\apphelp.dll - ok
18:05:31.0818 0x0c48 [ ABE4B349D12138772B0D3B1B55C5F2A8, 524BD0CAD64C89F265C349D11F703535111D4DC8DB2A9CA7E17C5C5DFACCABF5 ] C:\Windows\System32\MrmCoreR.dll
18:05:31.0818 0x0c48 C:\Windows\System32\MrmCoreR.dll - ok
18:05:31.0818 0x0c48 [ 8542BEA78795403D705A21B83ABD589F, 73FBD20662212323CBE6EB091994E89BFF86538C073EBA7C9C1AC321EF25B888 ] C:\Windows\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\GdiPlus.dll
18:05:31.0818 0x0c48 C:\Windows\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_726fbfe0cc22f012\GdiPlus.dll - ok
18:05:31.0834 0x0c48 [ ADDA5E1951B90D3D23C56D3CF0622ADC, E85E7BFD29F00ED34BF5BE8BD4DA93CBB14278E16809BB55406875F0DA88551E ] C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
18:05:31.0834 0x0c48 C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe - ok
18:05:31.0850 0x0c48 [ FCCEDE04F10EC0B72321333FF928E5AF, 235ADDDD6EC0418AABA5A4159B66009CA9F3A08DC24FBCAAA867F083C2393819 ] C:\Windows\SysWOW64\ntdll.dll
18:05:31.0850 0x0c48 C:\Windows\SysWOW64\ntdll.dll - ok
18:05:31.0850 0x0c48 [ 941B22338052E8A0ADA7944B827E3E2A, 0EC2911E08348C951870AFFC1C83AAC7B5906A0BADE41F22F3F14DA8C8B11CB8 ] C:\Windows\SysWOW64\kernel32.dll
18:05:31.0850 0x0c48 C:\Windows\SysWOW64\kernel32.dll - ok
18:05:31.0865 0x0c48 [ 5A3BF11D81C7F7EE8EDE9A2430B70878, FCB465DB8A773A016A6D4F8460D4B48B54C4976E8CCEA3164296480493B08C95 ] C:\Windows\SysWOW64\KernelBase.dll
18:05:31.0865 0x0c48 C:\Windows\SysWOW64\KernelBase.dll - ok
18:05:31.0865 0x0c48 [ BA1C3ACD929A71E88B49C2B6E38F92B3, A6087A8AE0C1440BC7C315D7A3AB40CBDC642AA5FB26B528CBC54FBB168839B8 ] C:\Windows\SysWOW64\user32.dll
18:05:31.0865 0x0c48 C:\Windows\SysWOW64\user32.dll - ok
18:05:31.0881 0x0c48 [ BFEF608CD713A4CD3165D72E2AEB23F2, EBB4D0DC1F695A8A0B4C34AD7FB8099E5A769019FF838EFF1671DC23F048B717 ] C:\Windows\SysWOW64\advapi32.dll
18:05:31.0881 0x0c48 C:\Windows\SysWOW64\advapi32.dll - ok
18:05:31.0881 0x0c48 [ 594C715F554206032FE8C8AC9FF8F440, 60FE371631AC2574FE29F6AA8F5946406200707F2AF5DC504EB9CD74D89A0671 ] C:\Windows\SysWOW64\shell32.dll
18:05:31.0881 0x0c48 C:\Windows\SysWOW64\shell32.dll - ok
18:05:31.0896 0x0c48 [ 6ADA7F192919DD51930A73F364129433, B56F5CFBC62EF6809A6941FB12E0A97EE137A05DFD16DFED6C2C7A959824EFB2 ] C:\Windows\SysWOW64\ole32.dll
18:05:31.0896 0x0c48 C:\Windows\SysWOW64\ole32.dll - ok
18:05:31.0896 0x0c48 [ 2C1467A6FF34E6E13920D9E546D47E50, F2236FD9ACE66A5B569DC7CC88A74FDD8285B8D82719CA373513050174A8BAB6 ] C:\Windows\SysWOW64\oleaut32.dll
18:05:31.0912 0x0c48 C:\Windows\SysWOW64\oleaut32.dll - ok
18:05:31.0912 0x0c48 [ 8EF66E7F4CEE23A30917D27C460CDB8D, 2F48089EAB69DF54E541E895C082868C68932579DCD0BCAE09F20F03B1BAC6A1 ] C:\Windows\SysWOW64\crypt32.dll
18:05:31.0912 0x0c48 C:\Windows\SysWOW64\crypt32.dll - ok
18:05:31.0928 0x0c48 [ F7A43B51E2C1D7C332FB17D0A804AF60, 519B9F6177E7EB398294604ABDA6786CBE31198EA28B809877DF8D12F9C674B8 ] C:\Windows\SysWOW64\wintrust.dll
18:05:31.0928 0x0c48 C:\Windows\SysWOW64\wintrust.dll - ok
18:05:31.0928 0x0c48 [ F1F9EEEF647CFA62A7104C054CE0999B, E77C7BB47F927865E7B4D689172321CDB70E296BD9A77CB64FF5C405AEDC6973 ] C:\Windows\WinSxS\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6871_none_50944e7cbcb706e5\msvcr90.dll
18:05:31.0928 0x0c48 C:\Windows\WinSxS\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6871_none_50944e7cbcb706e5\msvcr90.dll - ok
18:05:31.0943 0x0c48 [ 23787853DA559818AC593D470E27441E, 7F684F57FB19E96A66E67BF8611D942CD316E9D274A498321FB84493B88C0F2E ] C:\Windows\SysWOW64\gdi32.dll
18:05:31.0943 0x0c48 C:\Windows\SysWOW64\gdi32.dll - ok
18:05:31.0943 0x0c48 [ B59E9810F8A416B9E5354834F26969D4, 266896E8A1807D899633F7EB8A07B262A59B956368F1C42F0D7E933B21C60CF0 ] C:\Windows\SysWOW64\msvcrt.dll
18:05:31.0943 0x0c48 C:\Windows\SysWOW64\msvcrt.dll - ok
18:05:31.0959 0x0c48 [ B4CB5AE28AD921DBB2BB5D0A6D1FDD9D, 763C35E365B2F5F355AB7377C76DB11EC49E1477168E73F3668C9C11F9C654CA ] C:\Windows\SysWOW64\rpcrt4.dll
18:05:31.0959 0x0c48 C:\Windows\SysWOW64\rpcrt4.dll - ok
18:05:31.0975 0x0c48 [ 496E036F16467D7B7D12E0794E9FB85D, 33A26F4DD38AEE725E03B3E88D762D4D6171E52E91CE787930EC47045A1B28DC ] C:\Windows\SysWOW64\sechost.dll
18:05:31.0975 0x0c48 C:\Windows\SysWOW64\sechost.dll - ok
18:05:31.0975 0x0c48 [ 828CFD406E60311A9E5414685FA7EEDF, 2561C970B9DF4E1BBD701866D6FD77509B18E0063DC250E61B868C5C7CCB4759 ] C:\Windows\SysWOW64\combase.dll
18:05:31.0975 0x0c48 C:\Windows\SysWOW64\combase.dll - ok
18:05:31.0990 0x0c48 [ B8ECF8A56EEF75468F9ABFECE70AF555, 0B0F821595664D1B6671B4981025E151326CF24ACE433FAA5BF882E633B1CC2D ] C:\Windows\SysWOW64\shlwapi.dll
18:05:31.0990 0x0c48 C:\Windows\SysWOW64\shlwapi.dll - ok
18:05:31.0990 0x0c48 [ AFAACBE85092FBD8EE7F54CA7FF3F0F1, BD79E678B1FAA611A9855507B3C02175448D8EA335D52FF93520F1865FF88523 ] C:\Windows\SysWOW64\msasn1.dll
18:05:31.0990 0x0c48 C:\Windows\SysWOW64\msasn1.dll - ok
18:05:32.0006 0x0c48 [ 39B721A0FB5F3E9880EE247F04012D8C, FB0DF4CD6A130E2A40F3EDC7C1D8079F1C677D62952E7790C4853FC5E1EF4090 ] C:\Windows\SysWOW64\sspicli.dll
18:05:32.0006 0x0c48 C:\Windows\SysWOW64\sspicli.dll - ok
18:05:32.0006 0x0c48 [ 7DFC3FCD0D5B7FC2F60C344BB384607C, B034A9B7D348C4C438F50E0A5616C2F538F29C6B520C74F17A7154FF2819ACEA ] C:\Windows\SysWOW64\bcryptprimitives.dll
18:05:32.0006 0x0c48 C:\Windows\SysWOW64\bcryptprimitives.dll - ok
18:05:32.0021 0x0c48 [ 0D3C6E1A7EBD401F46E00EDBD61D1A72, 54375377F13A2F686B605812319715523868E978D427C296AD3B74E05BDC0B55 ] C:\Windows\SysWOW64\cryptbase.dll
18:05:32.0021 0x0c48 C:\Windows\SysWOW64\cryptbase.dll - ok
18:05:32.0037 0x0c48 [ 467497DF10CF8D4014BD25CCE987EA84, D7FDACE671E3F6697EE9901849F5B2369E0F303E2F0A218514782224487350CE ] C:\Windows\System32\wcmapi.dll
18:05:32.0037 0x0c48 C:\Windows\System32\wcmapi.dll - ok
18:05:32.0037 0x0c48 [ D9AD6E1971162EB4DACB3B6BECEAC4B7, A2DE2128BEA15BE62631231D0DDFEBD74BD4F12CDA2E39D23C5965096B107BE0 ] C:\Program Files\Common Files\microsoft shared\ink\tiptsf.dll
18:05:32.0037 0x0c48 C:\Program Files\Common Files\microsoft shared\ink\tiptsf.dll - ok
18:05:32.0053 0x0c48 [ 30E3850F303EAE5C364782EA78579CC9, 8C94E5A9052F6E794685194EEACB31A174A947D60246908B6A0DEFA081A747A3 ] C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
18:05:32.0053 0x0c48 C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe - ok
18:05:32.0053 0x0c48 [ 12BC4D22DD8280FED7D3004E099DC499, 4D2FFD16A0903C9C66E66BC246014A701C9CDF48F2E71EAD9A5E1C9FB6340388 ] C:\Windows\WinSxS\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6910_none_d089c358442de345\msvcp80.dll
18:05:32.0053 0x0c48 C:\Windows\WinSxS\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6910_none_d089c358442de345\msvcp80.dll - ok
18:05:32.0068 0x0c48 [ B6A5F92A417ED4BDE54BE170AF0A9E31, 75B8D2D19A74468867913443F3E457E34F445396BE78733E4F9A47A77597AC64 ] C:\Windows\WinSxS\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6910_none_d089c358442de345\msvcr80.dll
18:05:32.0068 0x0c48 C:\Windows\WinSxS\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6910_none_d089c358442de345\msvcr80.dll - ok
18:05:32.0084 0x0c48 [ 80942B137077DA7D2375B3041DA9127F, B3EB3C63A8E1EB55C2F3AEF975E3C9638A2BFF6F5C2D10FF16E7B5E12EE75BE7 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\AppleVersions.dll
18:05:32.0084 0x0c48 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\AppleVersions.dll - ok
18:05:32.0084 0x0c48 [ 6D41F6AA35220E7A54543075B27E8F83, 3350373F3443954B4DABE39955FD9B3C7FC223B73CC1429793A920ED17FB8A06 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\YSCrashDump.dll
18:05:32.0084 0x0c48 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\YSCrashDump.dll - ok
18:05:32.0100 0x0c48 [ 682C3D4982B5375732A4273809365A0A, FA62EB00740311D631C8237DB40E2503B1C9FBAB050AA17970339995C54845BE ] C:\Windows\SysWOW64\version.dll
18:05:32.0100 0x0c48 C:\Windows\SysWOW64\version.dll - ok
18:05:32.0100 0x0c48 [ 6953E980ADCA0BE816C7FF463695499A, 86FF463C3997B790BC6CFE8D5605FE858BF0FF841A61481C8890C7EFCEE28351 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\CoreFoundation.dll
18:05:32.0100 0x0c48 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\CoreFoundation.dll - ok
18:05:32.0115 0x0c48 [ 560A9357766AB0CDF38143EA3A66DA64, 0097C9EAA9E1236C7D01C9549A553F161E0B4CC3CF4C5542EF1A8884B2B0CC2E ] C:\Windows\System32\msftedit.dll
18:05:32.0115 0x0c48 C:\Windows\System32\msftedit.dll - ok
18:05:32.0131 0x0c48 [ F6FD367C9EAAEDF90CD7A7952AE0B336, 65DF0688F18EC3DEC27E725DC3A2F0D656F321832BDFA45253C0933620214AAF ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\ASL.dll
18:05:32.0131 0x0c48 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\ASL.dll - ok
18:05:32.0131 0x0c48 [ B3CC9EDFD97F7087013A9A47089DF571, D9D13A76621FFDBBAD5298C8FB5BFE136443FDE264977567839337EC21A9190D ] C:\Windows\SysWOW64\ws2_32.dll
18:05:32.0131 0x0c48 C:\Windows\SysWOW64\ws2_32.dll - ok
18:05:32.0146 0x0c48 [ 76E6465F3153FCA20F07928BBA62D7B8, 828A91F337A55AE25440749FFE96079018754906DC429DC4AB386A1088DE36CE ] C:\Windows\System32\Windows.Globalization.dll
18:05:32.0146 0x0c48 C:\Windows\System32\Windows.Globalization.dll - ok
18:05:32.0146 0x0c48 [ 47AC075FC4DE7DCF690E861B9B2C22A9, 8ADCC665167D46C52D70DD142495C71C86EE75AABBDF32E51011096681CD39D9 ] C:\Windows\System32\ninput.dll
18:05:32.0146 0x0c48 C:\Windows\System32\ninput.dll - ok
18:05:32.0162 0x0c48 [ 5EE6D3195E6470DB22F480CCF5F5FF4A, D124D18CE265B05F1F01D0D2976B8D573785911E676D5588B0FE186A0B4ECEF2 ] C:\Windows\System32\actxprxy.dll
18:05:32.0162 0x0c48 C:\Windows\System32\actxprxy.dll - ok
18:05:32.0162 0x0c48 [ 54152706627F5F33952340D90ADA50EE, 5D7F240B054AD448B24E339E00C4A2C6ECC65F6CF43CB8C76ACDC4486CDF34EA ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\pthreadVC2.dll
18:05:32.0162 0x0c48 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\pthreadVC2.dll - ok
18:05:32.0178 0x0c48 [ 755059FD6A758EA4413B58A1B423E7D1, 621D29ABBF9F72FB8CAC62ADC230B69C3BB6990BEB6215C2B285190EE97D17E3 ] C:\Windows\System32\SettingSyncInfo.dll
18:05:32.0178 0x0c48 C:\Windows\System32\SettingSyncInfo.dll - ok
18:05:32.0193 0x0c48 [ B617F2E83951A9A4F495BBA58CF492B2, 7EFB78957D73DEF36264E0C941A442DF7B0B4DB2ADCB9E3602627C2B1F7C88F2 ] C:\Windows\System32\dllhost.exe
18:05:32.0193 0x0c48 C:\Windows\System32\dllhost.exe - ok
18:05:32.0193 0x0c48 [ C570FD825751F7805CE226F68C4605DE, 405E3ED1F534DF6DC60F25210A74C90A952685017932ECB93005F4151F2B63AF ] C:\Program Files (x86)\ASUS\Splendid\ACMON.exe
18:05:32.0193 0x0c48 C:\Program Files (x86)\ASUS\Splendid\ACMON.exe - ok
18:05:32.0209 0x0c48 [ 1C36F01131AA9E8DAF2094B860A3A849, 79E074FF9DFED9B8BF72723D1C4A3CC722DFAB3463F05EA1A4E3409DA83E33DF ] C:\Windows\System32\AtBroker.exe
18:05:32.0209 0x0c48 C:\Windows\System32\AtBroker.exe - ok
18:05:32.0209 0x0c48 [ 98D9EC5E81ECFCCEEB94894D19AA9F7E, FBE4C9179B2119C80C7A26C5F7D692E0042F9ACCF6FD26C330F6473C8404CEEB ] C:\Windows\System32\mpr.dll
18:05:32.0209 0x0c48 C:\Windows\System32\mpr.dll - ok
18:05:32.0225 0x0c48 [ FF9831030678C7B6D70BAC00F68F8976, BFA9DA98F93910B8FE09EA06F917AB1F5435FCE9F786EABDF1970E19B2C63FDC ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libdispatch.dll
18:05:32.0225 0x0c48 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libdispatch.dll - ok
18:05:32.0240 0x0c48 [ 78865ABC5F5D13190F8B35BD9044714A, A16E0158129AE76AE459D9424D246C01ECECCC87A27C40D8DB0232330D2F5458 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\objc.dll
18:05:32.0240 0x0c48 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\objc.dll - ok
18:05:32.0240 0x0c48 [ C2CBE7C1A0F8415DD9608DD80A0131EC, 1EFA0A30E6DC7DE68B9F9883FFE3A43530E8DC26B357E491F4D8723DFDC0838B ] C:\ProgramData\AsTouchPanel\AsPatchTouchPanel64.exe
18:05:32.0240 0x0c48 C:\ProgramData\AsTouchPanel\AsPatchTouchPanel64.exe - ok
18:05:32.0256 0x0c48 [ 715A1F4D2A064DA1DDCAC2533FAF780F, DE0D0C6B373910CCAC4BCDBAEDB3EE8FFC69DF2A07BED383986242B73F348618 ] C:\Windows\SysWOW64\wtsapi32.dll
18:05:32.0256 0x0c48 C:\Windows\SysWOW64\wtsapi32.dll - ok
18:05:32.0256 0x0c48 [ 6967ABFBCE8F38A8D6A3761413D5CC9A, EDB08215F79490021AA4B2C854E6EEDF687A017B59E621F3AA4036A2C7D28196 ] C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPLauncher.exe
18:05:32.0256 0x0c48 C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPLauncher.exe - ok
18:05:32.0271 0x0c48 [ B07086D59443DAC6A668D691B27B968C, BAAC4EA75FF0B07397A6640CABDC5CF4C09F97D2780EBB34636C426521B56BDC ] C:\Program Files (x86)\ASUS\Splendid\ColorUService.exe
18:05:32.0271 0x0c48 C:\Program Files (x86)\ASUS\Splendid\ColorUService.exe - ok
18:05:32.0271 0x0c48 [ 0899BF12B2142213630D49E645B8A507, CC544B5534D11077555344A980CB439697D7F7FD6728008D1A31EB9C0B4BC8E1 ] C:\Windows\System32\taskhostex.exe
18:05:32.0271 0x0c48 C:\Windows\System32\taskhostex.exe - ok
18:05:32.0287 0x0c48 [ 0E925F7BA032920D58DD284B6181A247, BEB43ECDCC0F56A477F59E03B7E4D3C8274FE88AFBE095F1E55DDF4BFA21798D ] C:\Windows\System32\userinit.exe
18:05:32.0287 0x0c48 C:\Windows\System32\userinit.exe - ok
18:05:32.0303 0x0c48 [ 38E669E49C35B6A02A9AF0737C526C0F, 6F1DB7CE5AF490EB700B61388F994CD4D73BA16535CA28FFEDC44A224965EB69 ] C:\Windows\System32\PlaySndSrv.dll
18:05:32.0303 0x0c48 C:\Windows\System32\PlaySndSrv.dll - ok
18:05:32.0318 0x0c48 [ CD09341CCD92DA45EA5A0C725270FA51, E171F1724BAA5557720CEB45211F5D59069511467DBBEF0E545D0B94C270FA97 ] C:\Windows\System32\userinitext.dll
18:05:32.0318 0x0c48 C:\Windows\System32\userinitext.dll - ok
18:05:32.0318 0x0c48 [ 7C58A2513C3DA421A461D75C66C56D21, 2FC463BB49710021F814C682569DF0470FF48625920D7EB6441C57FEA38AD276 ] C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe
18:05:32.0318 0x0c48 C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe - ok
18:05:32.0334 0x0c48 [ A572A1F193C14D7C17AB2BF3029A52BB, 9671A07BB27FF76FD346E5EABB8FDD660631627E665AFBA8CC0D01940DD82439 ] C:\Windows\System32\MsCtfMonitor.dll
18:05:32.0334 0x0c48 C:\Windows\System32\MsCtfMonitor.dll - ok
18:05:32.0334 0x0c48 [ AED6D63CFA5A3EF7021AF9C457FEE994, B4BFA27F677295B00A1DF9A7E14DB4B75CAC2DD41B898D4E9A378ECCCE3699F0 ] C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\msvcr100.dll
18:05:32.0334 0x0c48 C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\msvcr100.dll - ok
18:05:32.0350 0x0c48 [ ED81D83083187FE0C75E2CD5A0A1378C, 50CC37C89B70FEE97208E8C5F73A2B1B1113A84E03D7B0D3480AF1F46BD24FF4 ] C:\Program Files (x86)\ASUS\Splendid\Alb_ASUSLib.dll
18:05:32.0350 0x0c48 C:\Program Files (x86)\ASUS\Splendid\Alb_ASUSLib.dll - ok
18:05:32.0350 0x0c48 [ 0BC5A4142F38A6BB35DECD01A2BC2ED7, 938381068588A347AD4246C53BFED6B9E1AA8DE03C76B2931B45A18DB72BC3D8 ] C:\Program Files\ASUS\P4G\BatteryLife.exe
18:05:32.0350 0x0c48 C:\Program Files\ASUS\P4G\BatteryLife.exe - ok
18:05:32.0365 0x0c48 [ E5B6D88B36BDDAD5039764FBF80284DD, DAEA4712E2ACA7055279DFFEF317FCEE923AC240D7FC26419B1DCEA48CA832B1 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libicuin.dll
18:05:32.0365 0x0c48 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libicuin.dll - ok
18:05:32.0381 0x0c48 [ 1D75BC73585969F41BA7EF0C882DFF2B, 86DD31172DAAAAB5F7848ADA46A8848F891D413E84FAF732C7F4DE16526AAC9F ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libicuuc.dll
18:05:32.0381 0x0c48 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libicuuc.dll - ok
18:05:32.0381 0x0c48 [ F95E431A10B9D970B63601195863F6EC, 26A5217631A4B0ED5445E9B041AD6FD2A849C63AFA1CEB95B3C7B7A8CF750E44 ] C:\Windows\SysWOW64\mscms.dll
18:05:32.0381 0x0c48 C:\Windows\SysWOW64\mscms.dll - ok
18:05:32.0396 0x0c48 [ 1AFB56F8A39455ACBAB16A29A45C30AC, 2EF2A0DECC9654EE6D265CE6D03DE72C3BB559401731091B97C1962241134CEC ] C:\Windows\SysWOW64\nsi.dll
18:05:32.0396 0x0c48 C:\Windows\SysWOW64\nsi.dll - ok
18:05:32.0396 0x0c48 [ A2B03204078BBB32CDD3AF779717FCC4, 3B6E1867FD458042583A676D6A7E8884BB4D60080D70FBBC61ACBE595739C84C ] C:\Windows\SysWOW64\wsock32.dll
18:05:32.0396 0x0c48 C:\Windows\SysWOW64\wsock32.dll - ok
18:05:32.0412 0x0c48 [ 0E38A984BE8C1F4A095B4A4E8BA1EB23, B05DB6BE638D13805F9CDCB0259EF69007B53A5B3E3335BFFA3F4427E7D42800 ] C:\Windows\SysWOW64\winmm.dll
18:05:32.0412 0x0c48 C:\Windows\SysWOW64\winmm.dll - ok
18:05:32.0412 0x0c48 [ 7E5F5E64C91FEDFE72E4C1728094BA69, 32B5FA995F1AB895341D28BE0E51B54E16EB79EE9BF5FC81CB37750293CA10E7 ] C:\Program Files\ASUS\P4G\DevMng.dll
18:05:32.0412 0x0c48 C:\Program Files\ASUS\P4G\DevMng.dll - ok
18:05:32.0428 0x0c48 [ 1A196FE539A6F81977805B6CE4F90BDC, C7E4BCDC4DCBC69C6850B3EE7BFB948F83E2C023B8AC75983E9A2EA43A5B640D ] C:\Windows\System32\msutb.dll
18:05:32.0428 0x0c48 C:\Windows\System32\msutb.dll - ok
18:05:32.0443 0x0c48 [ 38175536133BDC9324910582250CB8DD, 1116D08BADDC34B647D587750697444DAC76AE1068A43C4812577A2FD44266A7 ] C:\Windows\System32\taskeng.exe
18:05:32.0443 0x0c48 C:\Windows\System32\taskeng.exe - ok
18:05:32.0443 0x0c48 [ 8BC5E1F477761F75B26E66746828915D, D8163F93274B68E8CC87086566EAA256C0AF3AA5C919B98773650536F0F54E0B ] C:\Windows\System32\HotStartUserAgent.dll
18:05:32.0443 0x0c48 C:\Windows\System32\HotStartUserAgent.dll - ok
18:05:32.0459 0x0c48 [ 50E6288786474CC1275108D33FCC9488, 47ECF37F86B3DC26ED1F0BA092F4B157F3AEEFFFB2B1F65C0F73D80BCEAFB4C1 ] C:\Program Files\ASUS\P4G\OvrClk.dll
18:05:32.0459 0x0c48 C:\Program Files\ASUS\P4G\OvrClk.dll - ok
18:05:32.0459 0x0c48 [ 827AE73CD7CB3A8292A50EF39169071F, B54F2A5F650B3ECEDFE2D8279F545308C8604BBD31ED30D4FD7FDBD643269324 ] C:\Windows\System32\winmm.dll
18:05:32.0459 0x0c48 C:\Windows\System32\winmm.dll - ok
18:05:32.0475 0x0c48 [ 0ABF97013CA7400213DCBDC7B499AF85, 3C1165DC451BC1EF48FDF743C83B85C3E476A6EEF10F4F69339BD94FB01001F1 ] C:\Windows\System32\winmmbase.dll
18:05:32.0475 0x0c48 C:\Windows\System32\winmmbase.dll - ok
18:05:32.0475 0x0c48 [ 506708142BC63DABA64F2D3AD1DCD5BF, 9C36A08D9E7932FF4DA7B5F24E6B42C92F28685B8ABE964C870E8D7670FD531A ] C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
18:05:32.0475 0x0c48 C:\Program Files (x86)\Google\Update\GoogleUpdate.exe - ok
18:05:32.0490 0x0c48 [ BC61E429D78796F292D5E9A71C3A967F, A030CA80039C0057822881C1577B0B6276228A9541C79165113979342999528A ] C:\Windows\System32\TSChannel.dll
18:05:32.0490 0x0c48 C:\Windows\System32\TSChannel.dll - ok
18:05:32.0506 0x0c48 [ AFE9464D80CFE0B0ECFE906C8A5996A0, 15F76F5F035286209B2BBF95A6959E1AE44C9EFED649F91346FA3BE371100709 ] C:\Windows\System32\winspool.drv
18:05:32.0506 0x0c48 C:\Windows\System32\winspool.drv - ok
18:05:32.0506 0x0c48 [ F3DE10AABD5C7A1A186C9966F037D0C0, BC50848AEEF466DFF4A3D8C386BF0D0EC35B8E5B438031AE885AA5371F2E1A42 ] C:\Program Files (x86)\ASUS\USBChargerPlus\mfc100u.dll
18:05:32.0506 0x0c48 C:\Program Files (x86)\ASUS\USBChargerPlus\mfc100u.dll - ok
18:05:32.0521 0x0c48 [ 0E8E6463F81C80AFBED533E0F1F8895D, B68C5524D867E09EB39FB417694ED02F2DD171A1A1223BF15E03238E5D44B650 ] C:\Windows\explorer.exe
18:05:32.0521 0x0c48 C:\Windows\explorer.exe - ok
18:05:32.0537 0x0c48 [ 56DA495DE9758984ADF855D4EA30D4A9, B21E68473130F6A6FF3DD124CF8EFBB958D6BFB3F9B15BAFF944243A9B0AEBD1 ] C:\Windows\System32\esent.dll
18:05:32.0537 0x0c48 C:\Windows\System32\esent.dll - ok
18:05:32.0553 0x0c48 [ 85F7AFD9C7DFD6824BAFDC5E5D7D4E86, D880C850650B42E8C301FCEDD286C8F01A8F9F5146FFF6699F7DFF98AC65958A ] C:\Windows\SysWOW64\SHCore.dll
18:05:32.0553 0x0c48 C:\Windows\SysWOW64\SHCore.dll - ok
18:05:32.0553 0x0c48 [ 1F8766129FFF3B04EB9E304C2A1A6137, 015921153A675B24B4098950A327CFC807CA9384F141A9BF7B4941B6B51905F9 ] C:\Program Files (x86)\ASUS\Splendid\GLCDdll.dll
18:05:32.0553 0x0c48 C:\Program Files (x86)\ASUS\Splendid\GLCDdll.dll - ok
18:05:32.0568 0x0c48 [ FC7A868DECC3AB027F29178EC8A7F252, 69623FF219EDF12CC0A49E7FFE9AFBB5E09EE2F6FA7A29DBF190AFB7592D9DE6 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\icudt46.dll
18:05:32.0568 0x0c48 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\icudt46.dll - ok
18:05:32.0584 0x0c48 [ 2D43B15DA25E6CDC39C733730D48F110, 69B08A736A04B0D9B352788F90B9D716EA816B1A460B373F8FF60DA35D594A06 ] C:\Windows\WinSxS\amd64_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6910_none_88dc8c812fb1ba3f\msvcr80.dll
18:05:32.0584 0x0c48 C:\Windows\WinSxS\amd64_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6910_none_88dc8c812fb1ba3f\msvcr80.dll - ok
18:05:32.0584 0x0c48 [ DF790AE26A476DAA05210BA571B45AAC, 05450E3DF1CD1388E8E1F97C899CD4BAE62BC32DF75A44DFAF3B30103BA36A5F ] C:\Windows\SysWOW64\winmmbase.dll
18:05:32.0584 0x0c48 C:\Windows\SysWOW64\winmmbase.dll - ok
18:05:32.0600 0x0c48 [ 567612D556BBC4FC98169EA98F6EA480, 2B76C6CEB61177DF590FA4B589C448205B543958F691073EFA8248F0245EE75B ] C:\Windows\SysWOW64\cfgmgr32.dll
18:05:32.0600 0x0c48 C:\Windows\SysWOW64\cfgmgr32.dll - ok
18:05:32.0615 0x0c48 [ B2A25F2C3DCCD9858701E0AF13E5EE4D, 623221CB1610C150AE1F952680118DB42F93A5B3E4B8487552286A6BF4B3853B ] C:\Windows\SysWOW64\devobj.dll
18:05:32.0615 0x0c48 C:\Windows\SysWOW64\devobj.dll - ok
18:05:32.0615 0x0c48 [ 0E37FBFA79D349D672456923EC5FBBE3, 8793353461826FBD48F25EA8B835BE204B758CE7510DB2AF631B28850355BD18 ] C:\Program Files (x86)\ASUS\USBChargerPlus\msvcr100.dll
18:05:32.0615 0x0c48 C:\Program Files (x86)\ASUS\USBChargerPlus\msvcr100.dll - ok
18:05:32.0631 0x0c48 [ BA34C32F67F91AD0DA3D3A3425C9236A, 05C5083DE29838857CA78DC1D0797DF25A52242B3F618EE7FCE0C56AD753310D ] C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16579_none_8937eec6860750f5\comctl32.dll
18:05:32.0631 0x0c48 C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16579_none_8937eec6860750f5\comctl32.dll - ok
18:05:32.0631 0x0c48 [ 4B38E4C990EF80D03BEF9586F273C149, 466B80881758AA38C6A5772C150BBEA29E862FB87D5485467355E949F510F19B ] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_ba1cf6b7e09f1918\GdiPlus.dll
18:05:32.0631 0x0c48 C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9200.16518_none_ba1cf6b7e09f1918\GdiPlus.dll - ok
18:05:32.0647 0x0c48 [ 1E0DFBB85EA37AB2BA780EA9AB522026, 41617A92F5F353395F61ED1C2B94A7F720FB58BF379400BBE341BABDFD273331 ] C:\Windows\SysWOW64\setupapi.dll
18:05:32.0647 0x0c48 C:\Windows\SysWOW64\setupapi.dll - ok
18:05:32.0647 0x0c48 [ 51E886381803D55926A6D50643B9436C, B4AB1D1E7740DE87D7FE5229A43D22546FCEA27F9A92286DE6B2AFE35F15A761 ] C:\Windows\SysWOW64\imm32.dll
18:05:32.0647 0x0c48 C:\Windows\SysWOW64\imm32.dll - ok
18:05:32.0662 0x0c48 [ 6FA9D09428E56C11E01066CAF2FB5031, 20F3914606813346D58A0843383CAF0D887DAA856E7A8C6A2774B2615BB2D0CB ] C:\Windows\SysWOW64\msimg32.dll
18:05:32.0662 0x0c48 C:\Windows\SysWOW64\msimg32.dll - ok
18:05:32.0678 0x0c48 [ D8FED3E93970890FC25C5D378E6A5BD6, 76BF604DF0967016ADF6BB2A6AC9D20607AEC882E159F24D40651676C2FB8E94 ] C:\Windows\SysWOW64\msctf.dll
18:05:32.0678 0x0c48 C:\Windows\SysWOW64\msctf.dll - ok
18:05:32.0678 0x0c48 [ B938289D040F341BA457C7F27B507A7F, B63AA6EF1D48BF90AFA4DA5F8F8C39A3002056FFB0889B79762179E1FB797258 ] C:\Windows\System32\wdmaud.drv
18:05:32.0678 0x0c48 C:\Windows\System32\wdmaud.drv - ok
18:05:32.0693 0x0c48 [ 7DBFCB05BCD03500D6B877C54FEE4971, 94B5E4E649C7B45804FA82762F5C8BBAE564321780280C438B757A3F3A0B881D ] C:\Windows\System32\ksuser.dll
18:05:32.0693 0x0c48 C:\Windows\System32\ksuser.dll - ok
18:05:32.0693 0x0c48 [ 78DF3884149D09A3E703DDCA91BFFD84, 7ED4E1B4B72A66124186D9C9F7499320C8BCE4BC5896D68AD6E889C4EC20B9A6 ] C:\Windows\System32\AudioSes.dll
18:05:32.0693 0x0c48 C:\Windows\System32\AudioSes.dll - ok
18:05:32.0709 0x0c48 [ 714F76BF1B594CD7D38AF1515F6F25E5, 1F7B79610B3832078CF1C86E3DAF819DAE3561B94922D83B0232CDF5481DF391 ] C:\Windows\System32\msacm32.drv
18:05:32.0709 0x0c48 C:\Windows\System32\msacm32.drv - ok
18:05:32.0709 0x0c48 [ 1BA72303004CC0C35217722D703B8311, F6D7FEC8FA64CBDEBAD3513E81B406469D302A3D838E70E31969FAEA2B844A85 ] C:\Windows\System32\midimap.dll
18:05:32.0709 0x0c48 C:\Windows\System32\midimap.dll - ok
18:05:32.0725 0x0c48 [ 802EEA1D3BB0D99892DF2DCE5B5610DE, 6522EFB00409DE333FBA7B48A9F69C1C4DD89BDF93BBD0CB874759F66906D7F9 ] C:\Windows\System32\msacm32.dll
18:05:32.0725 0x0c48 C:\Windows\System32\msacm32.dll - ok
18:05:32.0740 0x0c48 [ 09B2F3A41C6A8BFA22640826F70E9810, 7208F1C21C166C885754918F1FDBE1A7EC5D3EAEED23EEE41D0243F68B24C89C ] C:\Windows\System32\audiodg.exe
18:05:32.0740 0x0c48 C:\Windows\System32\audiodg.exe - ok
18:05:32.0740 0x0c48 [ 2CD665EF1353721341B789B78E25B3AC, E61880DD641E39F63527D7736398CC85A751BC0EB8588A24711C7A1CA394B922 ] C:\Windows\SysWOW64\uxtheme.dll
18:05:32.0740 0x0c48 C:\Windows\SysWOW64\uxtheme.dll - ok
18:05:32.0756 0x0c48 [ 341ADCBB9A744F559C3CF3CA5D3D8934, F08D9693FB24CE50256F9F0FE67C8F79099A7E99AF55DF01346791A1C2453E4E ] C:\Windows\SysWOW64\dwmapi.dll
18:05:32.0756 0x0c48 C:\Windows\SysWOW64\dwmapi.dll - ok
18:05:32.0756 0x0c48 [ A7495E342A2EE0160812AC856C11F6CF, 3D67385DC3115BB1D8544E8596FECC972D205BC84BAD4F4DD01CBA9783B66199 ] C:\Program Files (x86)\Google\Update\1.3.22.3\goopdate.dll
18:05:32.0756 0x0c48 C:\Program Files (x86)\Google\Update\1.3.22.3\goopdate.dll - ok
18:05:32.0772 0x0c48 [ 67EC459E42D3081DD8FD34356F7CAFC1, 1221A09484964A6F38AF5E34EE292B9AFEFCCB3DC6E55435FD3AAF7C235D9067 ] C:\Program Files (x86)\ASUS\Splendid\msvcr100.dll
18:05:32.0772 0x0c48 C:\Program Files (x86)\ASUS\Splendid\msvcr100.dll - ok
18:05:32.0772 0x0c48 [ C2C86942ED94D1CD81F61BEFB3036AF6, CD2E2243AF04D7E7A3E3F78D9B39C7049CD53F1992BF691A1EC4C5CA5FE17C5C ] C:\Windows\SysWOW64\comdlg32.dll
18:05:32.0772 0x0c48 C:\Windows\SysWOW64\comdlg32.dll - ok
18:05:32.0787 0x0c48 [ 3588D5D12FF7BFEBF2A4955C36B38EB0, A5B4531EF91F32A02CA13AA0ABD0A32DADB2B979876F2E2B2E7FCB116ABDF3C6 ] C:\Windows\SysWOW64\psapi.dll
18:05:32.0787 0x0c48 C:\Windows\SysWOW64\psapi.dll - ok
18:05:32.0803 0x0c48 [ 4F583ABEF86D3B9DD2C0D24C9E41138E, 0CF8059493DF2AA7E56BDC0791A328FBBFC670423ADF6D8BB810D899FEBF293A ] C:\Windows\SysWOW64\winspool.drv
18:05:32.0803 0x0c48 C:\Windows\SysWOW64\winspool.drv - ok
18:05:32.0803 0x0c48 [ 1136EC767D7915D0F945E38BBC64024C, E91F56D9F55CCA067439620B4611DCCA2F5449DE9C0EB1D10C34877A6DF44F0A ] C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_5.82.9200.16658_none_bf1359a245f1cd12\comctl32.dll
18:05:32.0803 0x0c48 C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_5.82.9200.16658_none_bf1359a245f1cd12\comctl32.dll - ok
18:05:32.0818 0x0c48 [ 41E843174754F87D86EF0FBF7F60DB0D, C5FEC9110FE8B7587787987AF858097324B0FC8978D6548CB0084C1870BE116D ] C:\Windows\SysWOW64\oleacc.dll
18:05:32.0818 0x0c48 C:\Windows\SysWOW64\oleacc.dll - ok
18:05:32.0818 0x0c48 [ 58EE457D0D49A95A1E981F6F67FB560F, D02158F903713EC4B8CC5A8C8ACC340637150EE61FD89BD12E202B0C1242B0EB ] C:\Windows\SysWOW64\userenv.dll
18:05:32.0818 0x0c48 C:\Windows\SysWOW64\userenv.dll - ok
18:05:32.0834 0x0c48 [ F6104D2DBF254FE23928F978F6CABE35, FCE28A41334707A4990698DA1571EACBC574B28E20DF044169B051B30D3BAD42 ] C:\Windows\SysWOW64\oledlg.dll
18:05:32.0834 0x0c48 C:\Windows\SysWOW64\oledlg.dll - ok
18:05:32.0834 0x0c48 [ 7D2306701584AE7B77B8622314B55F78, 89E250231402D7C3685E3A120BAE1F2D4280CE44F2760F8658144ADDB7D86882 ] C:\Windows\SysWOW64\profapi.dll
18:05:32.0834 0x0c48 C:\Windows\SysWOW64\profapi.dll - ok
18:05:32.0850 0x0c48 [ 04267428D7342E139891A0DADF3ECF74, EDA4E62CDC9B2675E5C31D36907E2167043674A28A323C0E365E4ED9FBEFAB15 ] C:\Program Files (x86)\ASUS\USBChargerPlus\V0416.dll
18:05:32.0850 0x0c48 C:\Program Files (x86)\ASUS\USBChargerPlus\V0416.dll - ok
18:05:32.0850 0x0c48 [ 4D9B3DFBAB2EA93B594B74D47E0B4E5D, 01DD03D27E27BC7E8B454543C36F83D9F71BD7A17D39D72B815DA5F5AFF115BF ] C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService_main.dll
18:05:32.0850 0x0c48 C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService_main.dll - ok
18:05:32.0865 0x0c48 [ 062373995EAE5F0EAC9EAA9192136BFB, 0392D5656BD677C4C5CB74C96E7B85B0867F2535A37950AEC7F5C4A1A70D19AE ] C:\Windows\SysWOW64\dnssd.dll
18:05:32.0865 0x0c48 C:\Windows\SysWOW64\dnssd.dll - ok
18:05:32.0881 0x0c48 [ BFDD523AB06AB9932B6327E52C6E9AE6, 7EA9BE9F33ED3B25D519235391B574FFF0110AB1E78D893E397B745CADC9858A ] C:\Windows\SysWOW64\propsys.dll
18:05:32.0881 0x0c48 C:\Windows\SysWOW64\propsys.dll - ok
18:05:32.0881 0x0c48 [ 62F46FB1AED31B289F6A64718A3E5ECF, F1E8D1610CD22685C378286E46FE68CF2A05588A3A447DD0988B03F7B86AEE83 ] C:\Windows\SysWOW64\clbcatq.dll
18:05:32.0881 0x0c48 C:\Windows\SysWOW64\clbcatq.dll - ok
18:05:32.0897 0x0c48 [ D9DFD27BCCE44BEE511B744E3E7ADF45, AB04DA0786091E9E6E8FF7DA78AD3EF9471A0196016790DD6505AE708F0449E8 ] C:\Windows\SysWOW64\urlmon.dll
18:05:32.0897 0x0c48 C:\Windows\SysWOW64\urlmon.dll - ok
18:05:32.0897 0x0c48 [ AED28606A69169DF3D1142680AE8865A, 59704EBE8CF700BF24F333E11F095AD29A892CE7311FD982BA03FBEE8A3F4B42 ] C:\Windows\SysWOW64\iertutil.dll
18:05:32.0897 0x0c48 C:\Windows\SysWOW64\iertutil.dll - ok
18:05:32.0912 0x0c48 [ 3AA6FD9B534F17CBD5D311DDC077973C, 78337AD2D0D71EB308DC0A0E6D717A85052A0AD803329D1D03182E5090B9223D ] C:\Windows\SysWOW64\wininet.dll
18:05:32.0912 0x0c48 C:\Windows\SysWOW64\wininet.dll - ok
18:05:32.0928 0x0c48 [ 35FC382FACA5FA2D1E16336EC9C74D6E, 3C45E09953B245E4F768F7FDDB8F29924165CE30F343FEDD05C93343B5EF584F ] C:\Program Files (x86)\ASUS\Splendid\my_intel_cpp_x64.exe
18:05:32.0928 0x0c48 C:\Program Files (x86)\ASUS\Splendid\my_intel_cpp_x64.exe - ok
18:05:32.0928 0x0c48 [ DDF8C39C085D2E98BD030B3E8A1F40B8, 10EC29D288CD416D7E4D04171E820210B661BE99A4EC00567D7C986901257681 ] C:\Windows\SysWOW64\secur32.dll
18:05:32.0928 0x0c48 C:\Windows\SysWOW64\secur32.dll - ok
18:05:32.0943 0x0c48 [ 2BD1447ECF8A9697AFCF4D7C71D45AA7, 976579652DBAFDB22D4431C071000D904C30CDC8C2AE84CA987F931374EAD379 ] C:\Windows\SysWOW64\wbem\wbemprox.dll
18:05:32.0943 0x0c48 C:\Windows\SysWOW64\wbem\wbemprox.dll - ok
18:05:32.0943 0x0c48 [ D9CB0782AF819548072AA45B70F8B22D, 04796F39ABB88759A534DE3D0C51F684BF2A8DE1F4028B657CCFDBDD39A6618C ] C:\Windows\System32\Drivers\condrv.sys
18:05:32.0943 0x0c48 C:\Windows\System32\Drivers\condrv.sys - ok
18:05:32.0959 0x0c48 [ 58C0CA86362B32ABC87E39A99013C75A, ACCAE2E3800FBE15E41069C4F756D1623D91F9D948966EF2B677875FCDB1E432 ] C:\Windows\System32\conhost.exe
18:05:32.0959 0x0c48 C:\Windows\System32\conhost.exe - ok
18:05:32.0959 0x0c48 [ FA0672B09ED377939BB9F3D39895B404, DF571CC82DADD5B41F9E460111FB73B2AB6E4E255CDE9069D89F0AADFA8C38D9 ] C:\Windows\SysWOW64\wbemcomn.dll
18:05:32.0959 0x0c48 C:\Windows\SysWOW64\wbemcomn.dll - ok
18:05:32.0975 0x0c48 [ 7D20883F79FF846AEE49678238BE8A7A, B0C8752AA25FA32E4D313C041BC9869FC076E971ABCCF14CFCBF685F47B0456D ] C:\Windows\SysWOW64\cryptsp.dll
18:05:32.0975 0x0c48 C:\Windows\SysWOW64\cryptsp.dll - ok
18:05:32.0990 0x0c48 [ 434D27871C24D123038BCE8507010276, DB8810EE1D6F942DA2240699A18A22683963ABF839AC1EFC0C04469354273A5B ] C:\Windows\SysWOW64\rsaenh.dll
18:05:32.0990 0x0c48 C:\Windows\SysWOW64\rsaenh.dll - ok
18:05:32.0990 0x0c48 [ 6B8EDB9EC94DC2D1370C57564E853051, C8960461CE94DE892A0886A2136D137388642052D4508970A1FA69CB7FEFDF2E ] C:\Windows\System32\AudioEng.dll
18:05:32.0990 0x0c48 C:\Windows\System32\AudioEng.dll - ok
18:05:33.0006 0x0c48 [ 6246774331042E74F7E1ADA504C24063, 49714225D1468F3E6551045829E552239C007FAA7BD432E551A5DDE5B015A6DD ] C:\Windows\System32\AUDIOKSE.dll
18:05:33.0006 0x0c48 C:\Windows\System32\AUDIOKSE.dll - ok
18:05:33.0006 0x0c48 [ BD483C1AE32D5B21A22CABE74A9D4798, 02EDAA1C8AEB28E8E9547EF5A455B14A683851CDAA79CA58A2C909DFF04D098D ] C:\Windows\SysWOW64\IPHLPAPI.DLL
18:05:33.0006 0x0c48 C:\Windows\SysWOW64\IPHLPAPI.DLL - ok
18:05:33.0022 0x0c48 [ 6E3FE9ED37F6B3EE671AB3893DF8717A, 27424B61B7DC9F70C7894A524B20AB4DD8E0974FF1BF9A901BE2741A54A526FE ] C:\Windows\SysWOW64\imagehlp.dll
18:05:33.0022 0x0c48 C:\Windows\SysWOW64\imagehlp.dll - ok
18:05:33.0022 0x0c48 [ 09D886BA5A4BCC31079A2B12980CCF50, 92FD2987877E84E5DC4D4343B2A2DDBF01B46EB5CDC29E68739099FE37D8273E ] C:\Windows\SysWOW64\msi.dll
18:05:33.0022 0x0c48 C:\Windows\SysWOW64\msi.dll - ok
18:05:33.0037 0x0c48 [ 5C96F30D1144AB5D8F03DFF045B8C791, EB2705DB5BDA2BFC458635194EF914B26B9E31FD969F4206EACFB61B29261096 ] C:\Windows\SysWOW64\netapi32.dll
18:05:33.0037 0x0c48 C:\Windows\SysWOW64\netapi32.dll - ok
18:05:33.0053 0x0c48 [ 7FFC244DFE77909A13F52CF54B1FE475, 5994B8747CBF82E7BA54ECB370D6E66A4FC941775A09FE56A1EA70C4BCB8DE85 ] C:\Windows\SysWOW64\netutils.dll
18:05:33.0053 0x0c48 C:\Windows\SysWOW64\netutils.dll - ok
18:05:33.0053 0x0c48 [ D8533AF2AAE712047A3CCAC9AC98EDC4, F9AE92E0C151020C6219FAC30B7A303AE7C494199795A7B88B23CB52A0FA9F31 ] C:\Windows\SysWOW64\srvcli.dll
18:05:33.0053 0x0c48 C:\Windows\SysWOW64\srvcli.dll - ok
18:05:33.0068 0x0c48 [ 77ADCD16CCEB8A9AD1FD81FC464B1A6B, E066AAC7AD4E3EB3AC59475CD186074D431C743139F6CBB9211391011445C5EC ] C:\Windows\SysWOW64\winnsi.dll
18:05:33.0068 0x0c48 C:\Windows\SysWOW64\winnsi.dll - ok
18:05:33.0068 0x0c48 [ 182DD861AD25CD72AE6F3B54AE7AA8AD, 4AC95A181AE344B243FE8E90E5A1076BE6F20B8B5258219451AE144203568B02 ] C:\Windows\SysWOW64\wkscli.dll
18:05:33.0068 0x0c48 C:\Windows\SysWOW64\wkscli.dll - ok
18:05:33.0084 0x0c48 [ E4B3CE98A6DBE4B609133C045D2C8525, CA8739164032C320B180C7D546D31DD4BA9966F32CC76658ECA36E47FE6BE925 ] C:\Windows\SysWOW64\cscapi.dll
18:05:33.0084 0x0c48 C:\Windows\SysWOW64\cscapi.dll - ok
18:05:33.0084 0x0c48 [ 5192F9A06BC32684ADF938EE16E118D9, 36BBC1B76E3A027DCE485761567A8BB606C86160783E8D9EC3E52F1B316006AD ] C:\Windows\SysWOW64\ntmarta.dll
18:05:33.0084 0x0c48 C:\Windows\SysWOW64\ntmarta.dll - ok
18:05:33.0100 0x0c48 [ E531A673098E1D152ECE23D24C3737EB, A22A50D112FEB8E8B849F950268ECD6ACA9044B9517C1F23E5F5C57AD7A0ACCF ] C:\Windows\System32\RtkAPO64.dll
18:05:33.0100 0x0c48 C:\Windows\System32\RtkAPO64.dll - ok
18:05:33.0100 0x0c48 [ C317E72447B437F99CC750BD876DF30E, 5B4D4BD365F4FEB72662100B1EBC10A155250898599D0A3044862F564D3FCE32 ] C:\Windows\SysWOW64\mswsock.dll
18:05:33.0100 0x0c48 C:\Windows\SysWOW64\mswsock.dll - ok
18:05:33.0115 0x0c48 [ A0EB7F22BAF4332CFB955B3E09A9F033, 41FD6E2BD058641C25890C8437CA1378FB226BE1B4E22C5C9E4C9DF2EF8B2976 ] C:\Windows\System32\MaxxAudioAPO30.dll
18:05:33.0115 0x0c48 C:\Windows\System32\MaxxAudioAPO30.dll - ok
18:05:33.0115 0x0c48 [ 151A9FFA90027B9E636F99295D9672AB, CF5C43A392E54380699C8C5D1DBFD3934033D5CB30DFFE14CC0CDFA3A7042A1A ] C:\Windows\System32\deviceaccess.dll
18:05:33.0131 0x0c48 C:\Windows\System32\deviceaccess.dll - ok
18:05:33.0131 0x0c48 [ DC5547F48A48636BB50179AECDD94A0B, 1BA1C7A47CD37687FD4CA7C7A529030A049B636A99724F10940F007E56CBD262 ] C:\Windows\System32\WMALFXGFXDSP.dll
18:05:33.0131 0x0c48 C:\Windows\System32\WMALFXGFXDSP.dll - ok
18:05:33.0147 0x0c48 [ 1717CE7906AB980501948CEC53DFF636, 0A3183B009CBD01EC2A8E52D98BC07C9FDBDE577216C775CAD3AE9F2AED57057 ] C:\Windows\System32\mfplat.dll
18:05:33.0147 0x0c48 C:\Windows\System32\mfplat.dll - ok
18:05:33.0147 0x0c48 [ FCC286A63B3403E6385F345F6072520A, 0310BC66F041E739D893DEC4F5EC97DECC02F500251783C666AB754F71EDCABF ] C:\Program Files (x86)\ASUS\Splendid\Alb_ASUSLib_x64.dll
18:05:33.0147 0x0c48 C:\Program Files (x86)\ASUS\Splendid\Alb_ASUSLib_x64.dll - ok
18:05:33.0162 0x0c48 [ 8A8DB47DDF6B2118DF4D1561CEA586B3, C8F149AF8F3AA900C1BDC6139AF451A7245E81A926E0927C7E322088F2EFAE01 ] C:\Windows\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_5.82.9200.16658_none_776622cb3175a40c\comctl32.dll
18:05:33.0162 0x0c48 C:\Windows\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_5.82.9200.16658_none_776622cb3175a40c\comctl32.dll - ok
18:05:33.0178 0x0c48 [ 0815FF32A4268325C9F244643EA91C85, 85C25789BC100AE9F51548ECE6A643EBD2CFD283779229BDBBA836E4C583E8DE ] C:\Windows\System32\igfxpers.exe
18:05:33.0178 0x0c48 C:\Windows\System32\igfxpers.exe - ok
18:05:33.0178 0x0c48 [ F43E1A4EB5954ADD1C6C0F5775140EC4, 3229B5B16559AE39174172B5E1E111E3FE5651F6E62092C987FD91E5D1127ECD ] C:\Windows\System32\hccutils.dll
18:05:33.0178 0x0c48 C:\Windows\System32\hccutils.dll - ok
18:05:33.0193 0x0c48 [ D4564586A7CF3E30C09C050CAFD4F71C, D53F5A0C31E5938A8B100CAEDA0D635DD579255B18067DA73ACB6E640DDE2D42 ] C:\Windows\System32\igfxsrvc.exe
18:05:33.0193 0x0c48 C:\Windows\System32\igfxsrvc.exe - ok
18:05:33.0193 0x0c48 [ 6F2B682BDD1640F3272F9B39BDCBCE63, 5BDCBB1D298268AAFA19686D1DB45117B8A64DAB7105AB446E82BC3F7B479A21 ] C:\Windows\System32\igfxsrvc.dll
18:05:33.0193 0x0c48 C:\Windows\System32\igfxsrvc.dll - ok
18:05:33.0209 0x0c48 [ 4B4AC9BA2BE6C2E31A9B63D808273280, A038A96291B4F8942CF6E2B30D72986B5D9BC52DD33E17E9A1FAE916F327BB4C ] C:\Windows\System32\igfxdev.dll
18:05:33.0209 0x0c48 C:\Windows\System32\igfxdev.dll - ok
18:05:33.0209 0x0c48 [ 5125C1F27F8537F33076D0C0151F6B7F, 25D16B44387DC7758CD8F5C50C59B97221DF692D0EF728EF5F12F314204BA6E6 ] C:\Windows\SysWOW64\dbghelp.dll
18:05:33.0209 0x0c48 C:\Windows\SysWOW64\dbghelp.dll - ok
18:05:33.0225 0x0c48 [ 6A122B4F0E5293CACFA8A5F2CBA9B356, 9D69076B697BEE8742E32EBEF1802D829DEA6B1D93AF485D11CC89A08CA4D809 ] C:\Program Files (x86)\ASUS\ASUS InstantOn\InsOnSrv.exe
18:05:33.0225 0x0c48 C:\Program Files (x86)\ASUS\ASUS InstantOn\InsOnSrv.exe - ok
18:05:33.0240 0x0c48 [ FBDC1D23E595C22805BFE35D677732DA, C2D17DB780F45D408AC14296B4CE2F4C32CDC479599DCB176CA7708A57CDA5A2 ] C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\MobileDevice.dll
18:05:33.0240 0x0c48 C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\MobileDevice.dll - ok
18:05:33.0240 0x0c48 [ 105CFE016CCB20175BEACEC146F175AB, BA21F40CDBF159EE4EACCBFB2A7D20EB9E1C2758883AF089A8E53EE478002E83 ] C:\Windows\System32\IccLibDll_x64.dll
18:05:33.0240 0x0c48 C:\Windows\System32\IccLibDll_x64.dll - ok
18:05:33.0256 0x0c48 [ 6C20BD6E46D606CB40A13C22D52B90C7, 3AC55198B0DEEDF8CDC818D76466B3600FE03EDCCC57AF7A4E2DCAAC053089A4 ] C:\Windows\SysWOW64\powrprof.dll
18:05:33.0256 0x0c48 C:\Windows\SysWOW64\powrprof.dll - ok
18:05:33.0256 0x0c48 [ A84509C6AB1C764C592F192AA89DA830, 1A6DA207875BF886BDB93725BC87C2137543D9DD6B0CAD49A2A0B78C90735801 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll
18:05:33.0256 0x0c48 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll - ok
18:05:33.0272 0x0c48 [ A917E4F753B90A5181ECBFA56D5C154A, 4025FC65AB44AE5FDF6D144F16873C1E165D9EB7C4BF0570C996F2D7C8B71A1E ] C:\Program Files (x86)\Bluetooth Suite\AdminService.exe
18:05:33.0272 0x0c48 C:\Program Files (x86)\Bluetooth Suite\AdminService.exe - ok
18:05:33.0287 0x0c48 [ 83C4E13852335E1EAC12AA62A2F01E52, 3647F74F779F7298E08117EEA7C7C03AB99AA2177649E8FE7C9DDC4ECC9A2380 ] C:\Windows\SysWOW64\winsta.dll
18:05:33.0287 0x0c48 C:\Windows\SysWOW64\winsta.dll - ok
18:05:33.0287 0x0c48 [ A7DDDDE163F16AB49DF3DE9EEC715495, 00F83712F55C4B54F5B54595CDA2BCCDFCB72F0B31EED8274F87232106995EA6 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\CFNetwork.dll
18:05:33.0287 0x0c48 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\CFNetwork.dll - ok
18:05:33.0303 0x0c48 [ 0A855F27A1E48991D14C593CB930D2B2, 43D11DDFA64BE9A2EEB94574F21FD45334E4598506F3D5AE1446C7A0ADD10300 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\SQLite3.dll
18:05:33.0303 0x0c48 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\SQLite3.dll - ok
18:05:33.0303 0x0c48 [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD, 17BFFC5DF609CE3B2F0CAB4BD6C118608C66A3AD86116A47E90B2BB7D8954122 ] C:\Program Files\Bonjour\mDNSResponder.exe
18:05:33.0303 0x0c48 C:\Program Files\Bonjour\mDNSResponder.exe - ok
18:05:33.0318 0x0c48 [ 4FFD99381C2E71B99637E04ECD9E12A5, 3538ED04104CB09671A8D2D28C5A015156F2B1BD25981919CB0615E53851BC93 ] C:\Windows\System32\DptfParticipantProcessorService.exe
18:05:33.0318 0x0c48 C:\Windows\System32\DptfParticipantProcessorService.exe - ok
18:05:33.0334 0x0c48 [ BAF8F0F55BC300E5F882E521F054E345, FB228DB18F2FA55D8BA35A7E6778EE5D2EB0C29D384F1A0A868F90AE706188D7 ] C:\Windows\System32\certprop.dll
18:05:33.0334 0x0c48 C:\Windows\System32\certprop.dll - ok
18:05:33.0334 0x0c48 [ 3C5846581F329FD6768E5E7C1780151E, 1C55CB41A1A19C38091739FE96D26BBBA40B0FB3CCE00DCA368DFEF89861BB13 ] C:\Windows\System32\cryptcatsvc.dll
18:05:33.0334 0x0c48 C:\Windows\System32\cryptcatsvc.dll - ok
18:05:33.0350 0x0c48 [ 5CE2742F063731EC10C1B2EE386A2C08, 309919BDDD4649AFB95A99DCF8AFC3BAE10F9BC1E2819C0794CFD0F80682C223 ] C:\Windows\System32\cryptsvc.dll
18:05:33.0350 0x0c48 C:\Windows\System32\cryptsvc.dll - ok
18:05:33.0350 0x0c48 [ 5EAEF67AE2AF4D2DC664B649DB7B2E16, ADAC7FD6AC12B50F4998C5EB0BD770DD4B80A94C4CC1B9376AD77648E48D012D ] C:\Windows\System32\das.dll
18:05:33.0350 0x0c48 C:\Windows\System32\das.dll - ok
18:05:33.0365 0x0c48 [ 109FC3F80BF4F4DC5A071058074F13C1, F30736F45BA1811D59E9CB1C172D8D1EA9F5A7D36DCFFBFC9E7E02448C1CF851 ] C:\Windows\System32\dps.dll
18:05:33.0365 0x0c48 C:\Windows\System32\dps.dll - ok
18:05:33.0365 0x0c48 [ 8E5271A1AC463276023B39BC846F299C, 2699A2BEFF1D9B76531E5CA23F7DDEC1385DE130322CA2399839529DE74C8430 ] C:\Windows\System32\WinSCard.dll
18:05:33.0365 0x0c48 C:\Windows\System32\WinSCard.dll - ok
18:05:33.0381 0x0c48 [ 645846172593708AC3F39CF6D09AF2D9, F28B14D2CC791D77203C343D367E56C706065BF5AE964417CDE4D5DCDE6B24A3 ] C:\Windows\System32\dafBth.dll
18:05:33.0381 0x0c48 C:\Windows\System32\dafBth.dll - ok
18:05:33.0381 0x0c48 [ B278B76FF26BE911DD369724612F2D03, 515F606AE0EA88B0CE971377D5067424181E81A7B08B9686DB53454FAC07B354 ] C:\Windows\System32\dasHost.exe
18:05:33.0381 0x0c48 C:\Windows\System32\dasHost.exe - ok
18:05:33.0397 0x0c48 [ 9C2CB23B77E539D87B4652FA68A6C275, D927888766B5197DF5CAB0A3D2373774BFC00C0A5BEA92495D20C38B5D25FF55 ] C:\Windows\System32\vssapi.dll
18:05:33.0397 0x0c48 C:\Windows\System32\vssapi.dll - ok
18:05:33.0412 0x0c48 [ D876B344E40D4B4960C4B0FE1EE1A884, A4A4A02253486E85C303F109D5E1B2E73ECDAB02235E2229D8E394C1D2D530A4 ] C:\Windows\WinSxS\amd64_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6871_none_08e717a5a83adddf\msvcr90.dll
18:05:33.0412 0x0c48 C:\Windows\WinSxS\amd64_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6871_none_08e717a5a83adddf\msvcr90.dll - ok
18:05:33.0412 0x0c48 [ 5579A2CE7756B59F4BB778AFDCAF2096, BD3B9A39DC077EA64502915A5E71593402D2555A04D9979B28DA86678F1D2A7F ] C:\Windows\System32\vsstrace.dll
18:05:33.0412 0x0c48 C:\Windows\System32\vsstrace.dll - ok
18:05:33.0428 0x0c48 [ 3A8D1E216D2F16551B37234E6E7341CB, 58F622CC26A36712A24C306253AE3C55B408D05D32C5BFD82C74E5DFD818E4DB ] C:\Program Files (x86)\ASUS\ASUS InstantOn\InsOnWMI.exe
18:05:33.0428 0x0c48 C:\Program Files (x86)\ASUS\ASUS InstantOn\InsOnWMI.exe - ok
18:05:33.0428 0x0c48 [ 58FBC21C694DDC9F24000E87BDDEB4AD, 4C1CA6D1A8D2C01F244DEBB35890B0E0F25F7A8057E4FDA7296E2B50580C2EE3 ] C:\Windows\System32\DptfPolicyConfigTDPService.exe
18:05:33.0428 0x0c48 C:\Windows\System32\DptfPolicyConfigTDPService.exe - ok
18:05:33.0443 0x0c48 [ B284E6B52A5EFDD420B4A1AAA8137149, FCC86B193E9B1770779D6A186AC1B419D932DCB4F7346F1B51F9DD713930634D ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll
18:05:33.0443 0x0c48 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll - ok
18:05:33.0459 0x0c48 [ FD1B28D2D5763BF4ED607002B78E5D85, 7CA9BDBCA6ACECA2C3C0F1B9696A1DCDD7CA35996D3C7505FD26EC3A8F68296A ] C:\Windows\System32\DptfPolicyLpmService.exe
18:05:33.0459 0x0c48 C:\Windows\System32\DptfPolicyLpmService.exe - ok
18:05:33.0459 0x0c48 [ E455C83E029121270BED73CDAC381F37, 433D525C19DBF26FAC28853C606C872D973104842B0EF1B2BF2EAC85457E2953 ] C:\Windows\System32\IKEEXT.DLL
18:05:33.0459 0x0c48 C:\Windows\System32\IKEEXT.DLL - ok
18:05:33.0475 0x0c48 [ C37508B16F7C26CDF20BAD5646034670, 81F8D1510CBBA5C9B008C77B87D2C2541387F4F6339C3B63F9D4910586C9C8B0 ] C:\Windows\System32\vpnikeapi.dll
18:05:33.0475 0x0c48 C:\Windows\System32\vpnikeapi.dll - ok
18:05:33.0475 0x0c48 [ C99F8E90DE4B8F0C7FE15BB1CBCD29DC, F791EE101EEF8B9F48102B6C63A89B78F7C0041C750C4F4C0D16D54B583B7B5C ] C:\Program Files\Intel\iCLS Client\HeciServer.exe
18:05:33.0475 0x0c48 C:\Program Files\Intel\iCLS Client\HeciServer.exe - ok
18:05:33.0490 0x0c48 [ 78ABBE558F57144047F10A0F50FE4B2F, 6BE608F7697D83FD6C7E6EA422AC5637933BDC96B1044C12DE9A419CE7D6F6CE ] C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\Jhi_service.exe
18:05:33.0490 0x0c48 C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\Jhi_service.exe - ok
18:05:33.0506 0x0c48 [ BC83108B18756547013ED443B8CDB31B, B2AD109C15EAA92079582787B7772BA0A2F034F7D075907FF87028DF0EAEA671 ] C:\Windows\SysWOW64\msvcp100.dll
18:05:33.0506 0x0c48 C:\Windows\SysWOW64\msvcp100.dll - ok
18:05:33.0506 0x0c48 [ 95657078E1CDCB8445DAC99A400D24F9, 34C91E6D8C3F7E5C5A26020DD253EAD01D113F6ADAEA7D401AE52B078FA08AD8 ] C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPLoader.exe
18:05:33.0506 0x0c48 C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPLoader.exe - ok
18:05:33.0522 0x0c48 [ 0E37FBFA79D349D672456923EC5FBBE3, 8793353461826FBD48F25EA8B835BE204B758CE7510DB2AF631B28850355BD18 ] C:\Windows\SysWOW64\msvcr100.dll
18:05:33.0522 0x0c48 C:\Windows\SysWOW64\msvcr100.dll - ok
18:05:33.0522 0x0c48 [ BB3717D6FC27A22D0403C825A93BC068, DC7B070DA7FDD78099E00C5D2576D878B09C58F61A94968479C2C1BAF14944FD ] C:\Windows\SysWOW64\dnsapi.dll
18:05:33.0522 0x0c48 C:\Windows\SysWOW64\dnsapi.dll - ok
18:05:33.0537 0x0c48 [ 40947436A70E0034E41123DF5A0A7702, 5D40FD92DA5CA59C1BADB58AD509DB6A6D613F18660A9A270A53ECA85D34C3A9 ] C:\Program Files (x86)\Bonjour\mdnsNSP.dll
18:05:33.0537 0x0c48 C:\Program Files (x86)\Bonjour\mdnsNSP.dll - ok
18:05:33.0553 0x0c48 [ 7CD424F005ED71204DCB14CF11F1EB0C, 728BF0EDF925815E575583D601F8C53FE6F041257B15FFCE41CB8D6A6ECACBE1 ] C:\Windows\SysWOW64\rasadhlp.dll
18:05:33.0553 0x0c48 C:\Windows\SysWOW64\rasadhlp.dll - ok
18:05:33.0553 0x0c48 [ 589A586DD3D27DB099D4F6CDC67BE95D, FB677B97A44D5A44CFF99DDA693DA10D9306D1E2B7F65BD2A5307095FE8EE73A ] C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.1.5152.0\AdAwareService.exe
18:05:33.0553 0x0c48 C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.1.5152.0\AdAwareService.exe - ok
18:05:33.0568 0x0c48 [ 1C51CD68DB8C774E4C69CD628CFC4C80, 64BEEDB08BEEC4C3ABC79403FC8419D92BEB048BF79EC8F5BEC9FA739474C40D ] C:\Windows\SysWOW64\FWPUCLNT.DLL
18:05:33.0568 0x0c48 C:\Windows\SysWOW64\FWPUCLNT.DLL - ok
18:05:33.0568 0x0c48 [ D029339C0F59CF662094EDDF8C42B2B5, 934D882EFD3C0F3F1EFBC238EF87708F3879F5BB456D30AF62F3368D58B6AA4C ] C:\Windows\System32\msvcp100.dll
18:05:33.0568 0x0c48 C:\Windows\System32\msvcp100.dll - ok
18:05:33.0584 0x0c48 [ 008BAF696CD210F4E9DC815B20B395B3, 9794571FE050B25841353A3502A671E21547CA3E90D9B9A53078CAB58E1C1CD1 ] C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.1.5152.0\boost_filesystem-vc100-mt-1_53.dll
18:05:33.0584 0x0c48 C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.1.5152.0\boost_filesystem-vc100-mt-1_53.dll - ok
18:05:33.0584 0x0c48 [ D8C61E8B05530121398A257FDC8CC0B6, 285F30BB3923B78957B344F86064AD340D7E99A86300E9DD23F0238C26986F73 ] C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.1.5152.0\boost_system-vc100-mt-1_53.dll
18:05:33.0584 0x0c48 C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.1.5152.0\boost_system-vc100-mt-1_53.dll - ok
18:05:33.0600 0x0c48 [ 471A8401E42A0AB8025624A1565AAC44, B2F0B9CD8E2F2EAF3C8ABBC896CAD9A8787C9E596068A90388214022DA3C4F2B ] C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.1.5152.0\Logger.dll
18:05:33.0600 0x0c48 C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.1.5152.0\Logger.dll - ok
18:05:33.0615 0x0c48 [ 03F1370E3436459D6B64BB0FD774D4F6, 727BE01DDA499CF156EAD565B9BB23D30CC9507FD62FEC4CC1D36368E8052AD8 ] C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.1.5152.0\boost_date_time-vc100-mt-1_53.dll
18:05:33.0615 0x0c48 C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.1.5152.0\boost_date_time-vc100-mt-1_53.dll - ok
18:05:33.0615 0x0c48 [ 6A0C81508755C7F8EA5C5A4BC0E922CB, EABC691A8BEC3F85E8FA4F3FA72AB1D5D4FF466DCEDCD3B0C419C54EECFEC489 ] C:\Windows\SysWOW64\apphelp.dll
18:05:33.0615 0x0c48 C:\Windows\SysWOW64\apphelp.dll - ok
18:05:33.0631 0x0c48 [ 465680BDE344CE4FF6646626AA3A9125, DF762666DB5E7C31B0EC64976C85B5D6533805AF2D4FC9BCFF9FB94AAF823E8D ] C:\Program Files (x86)\Google\Update\1.3.22.3\GoogleCrashHandler.exe
18:05:33.0631 0x0c48 C:\Program Files (x86)\Google\Update\1.3.22.3\GoogleCrashHandler.exe - ok
18:05:33.0647 0x0c48 [ FB11715EEB23D0999C2295177EBBA5C0, 533754A3591B5852253C793CE08ADA6CAD0545E3A11F42430EFA9D959B6BF4F7 ] C:\Program Files\Common Files\mcafee\Platform\McSvcHost\McSvHost.exe
18:05:33.0647 0x0c48 C:\Program Files\Common Files\mcafee\Platform\McSvcHost\McSvHost.exe - ok
18:05:33.0647 0x0c48 [ 15E58125150B0AD5CB3B6A84FE793A42, 15427535E39D3605BF151D7D239E1CDD795982A00BC76BA862F66F0378B028C1 ] C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\ssleay32.dll
18:05:33.0647 0x0c48 C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\ssleay32.dll - ok
18:05:33.0662 0x0c48 [ 778D9852243DB33D76C9BECD30949E1E, 61E7B9C7B7B29E6497859EC0AC5DACF05F78B7E8D588244662FEB0A24F3C23B7 ] C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\libeay32.dll
18:05:33.0662 0x0c48 C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\libeay32.dll - ok
18:05:33.0678 0x0c48 [ F8B339E25A9713724F276BE0326CE046, 0D1A06F5103B4273FC0DC50BA9126D042C8B76BFB8EF093D012A95D42FE9BB3D ] C:\Program Files\Common Files\mcafee\Platform\McSvcHost\LogCntrl.dll
18:05:33.0678 0x0c48 C:\Program Files\Common Files\mcafee\Platform\McSvcHost\LogCntrl.dll - ok
18:05:33.0678 0x0c48 [ 41A74A8BBC516065786FAED0EE2BB851, 18C8D2E60C4715CD2952644B863D430E1677ED9A4B6DB07FB49B7B4FA0DCC411 ] C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.1.5152.0\AdAwareServiceKernel.dll
18:05:33.0678 0x0c48 C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.1.5152.0\AdAwareServiceKernel.dll - ok
18:05:33.0693 0x0c48 [ 9CCBA5E2489E603BB1578D1D541252A8, 47184C9CD89B64B948EDD95367328541584CE101400900D6905C0AA4C77FCA36 ] C:\Program Files (x86)\Google\Update\1.3.22.3\GoogleCrashHandler64.exe
18:05:33.0693 0x0c48 C:\Program Files (x86)\Google\Update\1.3.22.3\GoogleCrashHandler64.exe - ok
18:05:33.0693 0x0c48 [ 55955FB63C2E045AA9915184880B4F27, 19731B1D96A58B58E53BB1A52171C4469DD74B2B3FA27058ECF931FD0FAFC44D ] C:\Windows\System32\cscapi.dll
18:05:33.0693 0x0c48 C:\Windows\System32\cscapi.dll - ok
18:05:33.0709 0x0c48 [ D635063008E82F77E9E4563F4C987DDD, 1D4C18A867AEF4704D3761F6EF3AADCF454F70BCDFB2C7D3A143070E8C9EAB85 ] C:\Windows\SysWOW64\mstask.dll
18:05:33.0709 0x0c48 C:\Windows\SysWOW64\mstask.dll - ok
18:05:33.0725 0x0c48 [ 62A95A135DC9AEA405140922ABAE11AB, 6ADF117F6E864C0D631305AEA0EBE62A071A62A14733A0E64CA0F19F5538D8FC ] C:\PROGRA~1\COMMON~1\mcafee\OOBE\McOobeSv.dll
18:05:33.0725 0x0c48 C:\PROGRA~1\COMMON~1\mcafee\OOBE\McOobeSv.dll - ok
18:05:33.0725 0x0c48 [ DB314CFF0FB931BEEF9AA53B4DBABDC5, 2143BDD48D44FC30B4D3C9A1710AB1EBEC96A4F0F62069EBE92D1A660E4CF899 ] C:\Program Files (x86)\Common Files\Microsoft Shared\Ink\TabTip32.exe
18:05:33.0725 0x0c48 C:\Program Files (x86)\Common Files\Microsoft Shared\Ink\TabTip32.exe - ok
18:05:33.0740 0x0c48 [ 7E07B4BF18ECF70CFFA9F272770D93ED, C6124081F5D2E95F639A4F38E996456B6D3B797CA59B808C18B99E1E915DD77E ] C:\Program Files (x86)\Common Files\Microsoft Shared\Ink\tiptsf.dll
18:05:33.0740 0x0c48 C:\Program Files (x86)\Common Files\Microsoft Shared\Ink\tiptsf.dll - ok
18:05:33.0740 0x0c48 [ 04ED9A5B39FFDDDD8314E8F34049022F, 669B87FEABE0BB5BF31AD705D1ED9B3B57306C3C470BD941AD2D5670D97A752F ] C:\Windows\System32\dbghelp.dll
18:05:33.0740 0x0c48 C:\Windows\System32\dbghelp.dll - ok
18:05:33.0756 0x0c48 [ FAA2738B8B955F13EC03F77BC2FC7526, 0014AA0E5FE778AA0203EF18337C959F8C7B7D42029212E9CA375245F952FF0A ] C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.1.5152.0\SQLite.dll
18:05:33.0756 0x0c48 C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.1.5152.0\SQLite.dll - ok
18:05:33.0772 0x0c48 [ FCD59C405ADFADAC1B0729C580F7F70C, DDF1EECFF48A448E56A693EC31895BE9B97445022CC1CF344EF4BCD56B6C8886 ] C:\Windows\System32\wlidprov.dll
18:05:33.0772 0x0c48 C:\Windows\System32\wlidprov.dll - ok
18:05:33.0772 0x0c48 [ 0FBCC53E6A01DB4CDD75CF28B2869737, 23CF9914997B51ADB3C69DB77CBC896772F3F265DACB46043BEFC60B5806F202 ] C:\PROGRA~1\McAfeeEx\TASKSC~1\MCTASK~1.DLL
18:05:33.0772 0x0c48 C:\PROGRA~1\McAfeeEx\TASKSC~1\MCTASK~1.DLL - ok
18:05:33.0787 0x0c48 [ 6824F9C552CDECA217ECCFE5DFBDA53F, 79B4F3F9DF68E2CB0F7CA9337E286A2A0872A880D293F1D433D01DF98784FB42 ] C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.1.5152.0\pugixml.dll
18:05:33.0787 0x0c48 C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.1.5152.0\pugixml.dll - ok
18:05:33.0803 0x0c48 [ FFE10C5784C41CDB379C8823476EAA28, 9C7C9D37DB108B51148476F3D54A72BAD439DAB7C78D3335C1785BD5E866EC92 ] C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.1.5152.0\RCF.dll
18:05:33.0803 0x0c48 C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.1.5152.0\RCF.dll - ok
18:05:33.0803 0x0c48 [ 67EF4AE2F440BBAB7D7BA42224CA392B, E28764C57C6D5F1F4BE936AC034DF5602ACCED36CD414A04635A00199CB3C66A ] C:\Program Files\Microsoft SQL Server\MSSQL11.SQLEXPRESS\MSSQL\Binn\sqlservr.exe
18:05:33.0803 0x0c48 C:\Program Files\Microsoft SQL Server\MSSQL11.SQLEXPRESS\MSSQL\Binn\sqlservr.exe - ok
18:05:33.0818 0x0c48 [ 957BC88891C8F56ED14E28209E4DEAC1, 9CF42E6B40806371D17910A8E3324ACEAEA30D6ECF3C7DA9608C1CC955B35BD6 ] C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.1.5152.0\boost_regex-vc100-mt-1_53.dll
18:05:33.0818 0x0c48 C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.1.5152.0\boost_regex-vc100-mt-1_53.dll - ok
18:05:33.0834 0x0c48 [ B7341D1BA2AF8661CEEB059FC221EA25, 18B7C6B79292A5FC97360F4852FAF13925C32C4898D998EEF759E8A80F954C07 ] C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.1.5152.0\boost_thread-vc100-mt-1_53.dll
18:05:33.0834 0x0c48 C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.1.5152.0\boost_thread-vc100-mt-1_53.dll - ok
18:05:33.0834 0x0c48 [ 7C45360A8C55B61BE997B1E080ED8607, 512D62AB17C4F17606CDF050B22480D9CEC95228B4DDD33DA53A12E91E0E4502 ] C:\Windows\System32\security.dll
18:05:33.0834 0x0c48 C:\Windows\System32\security.dll - ok
18:05:33.0850 0x0c48 [ D563622C5E1A3FCB50E51EE6B814E321, E2711C43A492BD3A4AEC61FE39311CA1C8D0843D0067615A798B383F455D0F89 ] C:\Program Files\Common Files\microsoft shared\ink\InkObj.dll
18:05:33.0850 0x0c48 C:\Program Files\Common Files\microsoft shared\ink\InkObj.dll - ok
18:05:33.0850 0x0c48 [ 8D454387D12D4DB13805F4128DE8F117, 75D0F07519EE9EFF74EFA183F1D38A706EC891905552A76051A4EF06FC1CFFF2 ] C:\Windows\System32\cryptnet.dll
18:05:33.0850 0x0c48 C:\Windows\System32\cryptnet.dll - ok
18:05:33.0865 0x0c48 [ 4B6D283273198B8EF03F50BA94B49C28, CA77798AECD48F2C205307C7119170AFAE01F1116BAE0E49EFF82E57C3C2078C ] C:\Program Files\Common Files\mcafee\OOBE\mcoemmgr.exe
18:05:33.0865 0x0c48 C:\Program Files\Common Files\mcafee\OOBE\mcoemmgr.exe - ok
18:05:33.0865 0x0c48 [ BB385EE4B7C352CAF02C67C9DB4E0AC0, CD08ABA68BF92A6ABBB2A9C707A32F03324389DDED8A8427F90DCE218793BC29 ] C:\Program Files\Microsoft SQL Server\MSSQL11.SQLEXPRESS\MSSQL\Binn\sqlos.dll
18:05:33.0865 0x0c48 C:\Program Files\Microsoft SQL Server\MSSQL11.SQLEXPRESS\MSSQL\Binn\sqlos.dll - ok
18:05:33.0881 0x0c48 [ 412B8D2C5E774F9AD8D15E47094186CB, 8EE431DC17545D120ECFC3A217489B0EEFE48E898133007B0BADDD7DC5B3EE52 ] C:\Windows\System32\pdh.dll
18:05:33.0881 0x0c48 C:\Windows\System32\pdh.dll - ok
18:05:33.0897 0x0c48 [ 19537A3EF2C3DC8D91B4409F29807C2A, B772E41E196BA2213C4405FD96AB8E344266E3BFD197FD603F14F79EC9A084C3 ] C:\Program Files\Microsoft SQL Server\MSSQL11.SQLEXPRESS\MSSQL\Binn\opends60.dll
18:05:33.0897 0x0c48 C:\Program Files\Microsoft SQL Server\MSSQL11.SQLEXPRESS\MSSQL\Binn\opends60.dll - ok
18:05:33.0897 0x0c48 [ DBA5A4BC4E794CB9D4AD9BF3977357CA, 79AAD48580372824F63A53BC77269A26A1441E8133E47689030D436DD8BC2436 ] C:\PROGRA~1\COMMON~1\mcafee\Platform\mcutil.dll
18:05:33.0897 0x0c48 C:\PROGRA~1\COMMON~1\mcafee\Platform\mcutil.dll - ok
18:05:33.0912 0x0c48 [ E65E14EBC7B486D0A88504206C8F6FBD, 6F4C4B0D19BE1F3D8AFC187F83AD7EAA3E7919569AD9530E08CD7F71156CD45F ] C:\Program Files (x86)\ASUS\ASUS Smart Gesture\QuickGesture\x64\QuickGesture64.exe
18:05:33.0912 0x0c48 C:\Program Files (x86)\ASUS\ASUS Smart Gesture\QuickGesture\x64\QuickGesture64.exe - ok
18:05:33.0912 0x0c48 [ 8C372DD07B681ADB379383342F4D1784, 44723A2B1E59BD2FA88621BB2624FCA31B59ECA2AE5075147E12D9F29C9E9976 ] C:\Program Files (x86)\ASUS\ASUS Smart Gesture\QuickGesture\x86\QuickGesture.exe
18:05:33.0912 0x0c48 C:\Program Files (x86)\ASUS\ASUS Smart Gesture\QuickGesture\x86\QuickGesture.exe - ok
18:05:33.0928 0x0c48 [ 54A181C5D5C1721098EF24F6E5D01AC1, 56BD34111F3B8DD07F8026A73C800C7814EE7EAF68FCF8A9326F5D524E6DA6D2 ] C:\Program Files (x86)\ASUS\ASUS Smart Gesture\QuickGesture\x64\QuickGesture64.dll
18:05:33.0928 0x0c48 C:\Program Files (x86)\ASUS\ASUS Smart Gesture\QuickGesture\x64\QuickGesture64.dll - ok
18:05:33.0943 0x0c48 [ E46FCD9E81D79D441EF2AB8E6B362E7B, 9A7853AC7909F6D6FA2CE155FA5B3FA1D8AE0342D7D6CD40EAB24AC7E8BCDA71 ] C:\Program Files (x86)\ASUS\ASUS Smart Gesture\QuickGesture\x86\QuickGesture.dll
18:05:33.0943 0x0c48 C:\Program Files (x86)\ASUS\ASUS Smart Gesture\QuickGesture\x86\QuickGesture.dll - ok
18:05:33.0943 0x0c48 [ AED6D63CFA5A3EF7021AF9C457FEE994, B4BFA27F677295B00A1DF9A7E14DB4B75CAC2DD41B898D4E9A378ECCCE3699F0 ] C:\Program Files (x86)\ASUS\ASUS Smart Gesture\QuickGesture\x64\msvcr100.dll
18:05:33.0943 0x0c48 C:\Program Files (x86)\ASUS\ASUS Smart Gesture\QuickGesture\x64\msvcr100.dll - ok
18:05:33.0959 0x0c48 [ 67EC459E42D3081DD8FD34356F7CAFC1, 1221A09484964A6F38AF5E34EE292B9AFEFCCB3DC6E55435FD3AAF7C235D9067 ] C:\Program Files (x86)\ASUS\ASUS Smart Gesture\QuickGesture\x86\msvcr100.dll
18:05:33.0959 0x0c48 C:\Program Files (x86)\ASUS\ASUS Smart Gesture\QuickGesture\x86\msvcr100.dll - ok
18:05:33.0975 0x0c48 [ E5022C5E268209367A186DF3F8705AEA, 41E0C24BBC50915C2133ECB8726395451BC3403F383D730C843BD01186640549 ] C:\Windows\SysWOW64\UIAutomationCore.dll
18:05:33.0975 0x0c48 C:\Windows\SysWOW64\UIAutomationCore.dll - ok
18:05:33.0975 0x0c48 [ 0C792D2F23FC8E30B248FA3A4A761815, B44C2655842F3B2D95783B74544B7F140B8EB23FB6B13866252247F71F8A1816 ] C:\PROGRA~1\COMMON~1\mcafee\Platform\PLATFO~1.DLL
18:05:33.0975 0x0c48 C:\PROGRA~1\COMMON~1\mcafee\Platform\PLATFO~1.DLL - ok
18:05:33.0990 0x0c48 [ 55ED435133E38C699D367FB10CD03147, B810A1C4195779BC37E2F3DEBD0C493220BB025E3EE32A8AF977044CA056E332 ] C:\PROGRA~1\COMMON~1\mcafee\Platform\McUICnt.exe
18:05:33.0990 0x0c48 C:\PROGRA~1\COMMON~1\mcafee\Platform\McUICnt.exe - ok
18:05:33.0990 0x0c48 [ EE2EB43E92EAE9024D87A52900836A5E, 8C8FB1599E5F7198E5E6FCF4BD26BCCEF095DFB353A703E23C773DA6DAEA75BD ] C:\Program Files\Microsoft SQL Server\MSSQL11.SQLEXPRESS\MSSQL\Binn\sqlmin.dll
18:05:33.0990 0x0c48 C:\Program Files\Microsoft SQL Server\MSSQL11.SQLEXPRESS\MSSQL\Binn\sqlmin.dll - ok
18:05:34.0006 0x0c48 [ C82020F726F659478ACB95051C054CB5, 7288E990448132BCD752CB9DCAF25F7E4EF0F5B61B63E7F1F12D9C79B8D2E425 ] C:\Windows\SysWOW64\sxs.dll
18:05:34.0006 0x0c48 C:\Windows\SysWOW64\sxs.dll - ok
18:05:34.0022 0x0c48 [ E4FE7633A86CCCFC453A25C2DD89BAFC, 409D68B756EA87B844BE469231EA84496FFA1022F1A2307D82CADA10BA8358A7 ] C:\PROGRA~1\McAfeeEx\MCAFEE~1\REMIND~2.DLL
18:05:34.0022 0x0c48 C:\PROGRA~1\McAfeeEx\MCAFEE~1\REMIND~2.DLL - ok
18:05:34.0022 0x0c48 [ 525B88A0ED6530B60A265872CDEAC46C, 1ED966D0F66D77E18C65210603B4D187ED6850DD22EC0A45DD11FDC76267FF30 ] C:\Program Files\Common Files\mcafee\Platform\McRTMui.dll
18:05:34.0022 0x0c48 C:\Program Files\Common Files\mcafee\Platform\McRTMui.dll - ok
18:05:34.0037 0x0c48 [ 876B49A50FE9D0F3838E63C4DDF03BC3, AC5C665353EE7AE00410B0BF26F341E2E9CAFBDC20229CC6C9A978ADAC759C39 ] C:\Program Files\Common Files\mcafee\Platform\LangSel.dll
18:05:34.0037 0x0c48 C:\Program Files\Common Files\mcafee\Platform\LangSel.dll - ok
18:05:34.0037 0x0c48 [ 008207A8345B1A1551C360F1F8BC3420, F7245246DEF4FCA19572EC43D48134EADBAD7BC530A2BE8B9B7C1C14CE6698B4 ] C:\Windows\System32\msxml3.dll
18:05:34.0037 0x0c48 C:\Windows\System32\msxml3.dll - ok
18:05:34.0053 0x0c48 [ 685BC92CB2A6D42BCC122B8AABEAB8CD, 4A98C28F3C8A3BD7382386496379D97B23F6334E3A1E430DEA265856F465AE53 ] C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.1.5152.0\AdAwareActivation.dll
18:05:34.0053 0x0c48 C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.1.5152.0\AdAwareActivation.dll - ok
18:05:34.0068 0x0c48 [ BEC6A30D2AE6B43EEB05C0DE6B17539D, 696C30EE7ACACF8ADE7C16F85D3C12BFD9937F70AD918D41A0E01EBEF068E3AB ] C:\Program Files\Microsoft SQL Server\MSSQL11.SQLEXPRESS\MSSQL\Binn\sqllang.dll
18:05:34.0068 0x0c48 C:\Program Files\Microsoft SQL Server\MSSQL11.SQLEXPRESS\MSSQL\Binn\sqllang.dll - ok
18:05:34.0068 0x0c48 [ 9CE88382E495A754301B2BC19833EC15, 0C4BCE2B6594D48A4B2079C401FC24093C317E54755549105B7CDE0E37F0096F ] C:\PROGRA~1\COMMON~1\mcafee\Platform\mcbrwsr2.dll
18:05:34.0068 0x0c48 C:\PROGRA~1\COMMON~1\mcafee\Platform\mcbrwsr2.dll - ok
18:05:34.0084 0x0c48 [ A09121A80C11905DC4CAD7A5C8EB0C8B, 64C81F63F9FD7873A49CE58ABB325B9DBC53F6EBBEC3BF7C71205F9D9C8A1D49 ] C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.1.5152.0\cryptopp.dll
18:05:34.0084 0x0c48 C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.1.5152.0\cryptopp.dll - ok
18:05:34.0084 0x0c48 [ 2D1DD6B644D57A13F80C381AC7E6D0B9, E22EFCFB34164EF9E6FBED1B8909BEB3D4B11CF0D2A10D00459CC321D1C39D56 ] C:\Program Files\Microsoft SQL Server\MSSQL11.SQLEXPRESS\MSSQL\Binn\sqltses.dll
18:05:34.0084 0x0c48 C:\Program Files\Microsoft SQL Server\MSSQL11.SQLEXPRESS\MSSQL\Binn\sqltses.dll - ok
18:05:34.0100 0x0c48 [ E2CF81C108C36D73436909F6181ED5B6, 2E8AC354FF06F609F00A34AECCEF8FA09C75885A3BC642EB5D7DDFFBEC2F11A5 ] C:\Program Files\Microsoft SQL Server\MSSQL11.SQLEXPRESS\MSSQL\Binn\sqldk.dll
18:05:34.0100 0x0c48 C:\Program Files\Microsoft SQL Server\MSSQL11.SQLEXPRESS\MSSQL\Binn\sqldk.dll - ok
18:05:34.0115 0x0c48 [ 62608962D83846E12529032E56D97AC2, 4019FC1AF12BB49E74A968D68364D08784FEC98B8C39437349DC8E300057AB9E ] C:\Windows\System32\ieframe.dll
18:05:34.0115 0x0c48 C:\Windows\System32\ieframe.dll - ok
18:05:34.0115 0x0c48 [ E7DF87BFD745E8F0A355715771A99406, 4E44EF99419C01643EF363370F0E91C909FDF7FFD0E82D887E82DCC119DC6B59 ] C:\Program Files\Microsoft SQL Server\110\Shared\instapi110.dll
18:05:34.0115 0x0c48 C:\Program Files\Microsoft SQL Server\110\Shared\instapi110.dll - ok
18:05:34.0131 0x0c48 [ D3F60A4345FCA9C1BE68AD7D0D6DE770, 214AF09F4B021C2F8655FBC8AC8C801E89CD9115CDE690FAEBDA69D63D660EDD ] C:\Windows\System32\Drivers\Ndu.sys
18:05:34.0131 0x0c48 C:\Windows\System32\Drivers\Ndu.sys - ok
18:05:34.0131 0x0c48 [ 4811D9EC53649105A5A8BEA661B0F936, C77907E03D0561500FCFEAFAC323E9679E66297329901A0CA2BD7E919419A8E8 ] C:\Windows\System32\pcasvc.dll
18:05:34.0131 0x0c48 C:\Windows\System32\pcasvc.dll - ok
18:05:34.0147 0x0c48 [ 46275652DB4FB68597C19E5C2A260249, 44CB065375D7A9C4F0A711A64AD313A538244546862F4801DC613ECB527D3537 ] C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.1.5152.0\AdAwareApplicationUpdater.dll
18:05:34.0147 0x0c48 C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.1.5152.0\AdAwareApplicationUpdater.dll - ok
18:05:34.0162 0x0c48 [ 61FE70659CD43E07F94DA4DC31DEC493, 3739B6670B440173FD81DE3D47B0B90FAF296802AD4F57C05BF5CF191BF16022 ] C:\Windows\System32\Drivers\PEAuth.sys
18:05:34.0162 0x0c48 C:\Windows\System32\Drivers\PEAuth.sys - ok
18:05:34.0162 0x0c48 [ B6B44CF7C7091FC27FCAB108B12402EB, DA6EF9EF09FABC0D000FCBF0C5007C87FA6D1B3D7904A2AD07BCC4DFA9E2B085 ] C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.1.5152.0\AdAwareGamingMode.dll
18:05:34.0162 0x0c48 C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.1.5152.0\AdAwareGamingMode.dll - ok
18:05:34.0178 0x0c48 [ 1580A33C6CD8E0117247A48C31825D6E, 3A5E9B2A65B8DFCA700AA7C85B2E0CF9EEDA582D479F51CF08C79A13FDEC42C1 ] C:\Windows\System32\aepic.dll
18:05:34.0178 0x0c48 C:\Windows\System32\aepic.dll - ok
18:05:34.0178 0x0c48 [ 9168704A793ACBEEB0BEF95BEB54F13C, AF7A333FB644AE1C49A6444B1263970DACC1DFE9FB06C22C2732A20FB7EFC6EF ] C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.1.5152.0\AdAwareReset.dll
18:05:34.0178 0x0c48 C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.1.5152.0\AdAwareReset.dll - ok
18:05:34.0193 0x0c48 [ E8F6B4D5200932F64999C0AD714D115F, E2509F448698E160052439388619FD3C89D7E6761B4A92A723B4B8DBC4413FCE ] C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.1.5152.0\AdAwareTime.dll
18:05:34.0193 0x0c48 C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.1.5152.0\AdAwareTime.dll - ok
18:05:34.0209 0x0c48 [ C954FE5796A0BFCDCDD8A9C210E9D2C3, B935E2E16F20CBE4172509EB7A71C1CCF52EBFFF629CE64D1F6698A7AE6CFDBA ] C:\Windows\System32\sfc_os.dll
18:05:34.0209 0x0c48 C:\Windows\System32\sfc_os.dll - ok
18:05:34.0209 0x0c48 [ 80ABCD4C2DE9FD832477303AE0CA3BE5, 98F3958E650CEB1006D92980503E1B176D2CA55D2A6742C1C27CDE829D137DA9 ] C:\Windows\System32\nlasvc.dll
18:05:34.0209 0x0c48 C:\Windows\System32\nlasvc.dll - ok
18:05:34.0225 0x0c48 [ 4E9687189BAB4F3965FEB612CFF729B9, E4F0900F7ED0EF0740CE00E1B77FA7A1D3CEFD0D28390AEC89DCCA57446A8E47 ] C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.1.5152.0\AdAwareDefinitionsUpdater.dll
18:05:34.0225 0x0c48 C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.1.5152.0\AdAwareDefinitionsUpdater.dll - ok
18:05:34.0225 0x0c48 [ 9F22331263D61BA67D14E0725A3DA59E, 28B1EA76D469A24B46AD7542E18F7CECCB8C41884EB427E5B88FB2367197FDE1 ] C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.1.5152.0\AdAwareDefinitionsUpdaterScheduler.dll
18:05:34.0225 0x0c48 C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.1.5152.0\AdAwareDefinitionsUpdaterScheduler.dll - ok
18:05:34.0240 0x0c48 [ 856C1D64AF1DFF94A9E9DFD95358378C, 7C3BF13C7A2F284B045380245287BC6F327EA59DD1651DAB851F892A08A9A787 ] C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.1.5152.0\AdAwareIgnoreList.dll
18:05:34.0240 0x0c48 C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.1.5152.0\AdAwareIgnoreList.dll - ok
18:05:34.0256 0x0c48 [ 6B48734D5856F32A8CACE40CD1AD9B33, F7F92CF25B933348D0E0A4011AF4B001212AC767D5114281CD4E1001371EE6E1 ] C:\Windows\System32\ncsi.dll
18:05:34.0256 0x0c48 C:\Windows\System32\ncsi.dll - ok
18:05:34.0256 0x0c48 [ 7911470B6018059A880469A63B65700A, 4B6131491A028FBCA54AC261112D183EFD42E98160545C8E8DFBDA01C87B3FB5 ] C:\Windows\System32\winhttp.dll
18:05:34.0256 0x0c48 C:\Windows\System32\winhttp.dll - ok
18:05:34.0272 0x0c48 [ 5858AA1B5AF20C37B186971A21460A4E, 5BD4708E4E6AFC22B3AAFE592A7800C9621BFC3833585F00F00FFE6294A42915 ] C:\Windows\System32\ssdpapi.dll
18:05:34.0272 0x0c48 C:\Windows\System32\ssdpapi.dll - ok
18:05:34.0272 0x0c48 [ EC7DDD3134EA048778833AA0F417CE51, 0FD37AA7B8E46621719339CB1ED702394D297A9CCE90012D1AE37630103EC5B1 ] C:\Program Files\Microsoft SQL Server\MSSQL11.SQLEXPRESS\MSSQL\Binn\sqlboot.dll
18:05:34.0272 0x0c48 C:\Program Files\Microsoft SQL Server\MSSQL11.SQLEXPRESS\MSSQL\Binn\sqlboot.dll - ok
18:05:34.0287 0x0c48 [ C002E1B38061FCD656C900235CEC151E, 9BB266270A437C53D1BF3550E75729551EC8D0A5E03FFD8940732630E6C594E9 ] C:\Program Files\Microsoft SQL Server\MSSQL11.SQLEXPRESS\MSSQL\Binn\Resources\2070\sqlevn70.rll
18:05:34.0287 0x0c48 C:\Program Files\Microsoft SQL Server\MSSQL11.SQLEXPRESS\MSSQL\Binn\Resources\2070\sqlevn70.rll - ok
18:05:34.0303 0x0c48 [ B00F91D8A76A1DC5B31780795FA6225D, 9EABB1CFB67948003BC148B2B7F546ECD2FD2998EA499E4C2685F09BBCDA3E08 ] C:\Program Files\Microsoft SQL Server\MSSQL11.SQLEXPRESS\MSSQL\Binn\Resources\1033\sqlevn70.rll
18:05:34.0303 0x0c48 C:\Program Files\Microsoft SQL Server\MSSQL11.SQLEXPRESS\MSSQL\Binn\Resources\1033\sqlevn70.rll - ok
18:05:34.0303 0x0c48 [ 5C67318C3982F6FFB18ADA80A4557205, BE04813EC7DB06C841658381E9C81E24070F87598E8846B75A525F9D5CE7433D ] C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.1.5152.0\AdAwareQuarantine.dll
18:05:34.0303 0x0c48 C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.1.5152.0\AdAwareQuarantine.dll - ok
18:05:34.0318 0x0c48 [ 67EC93EFA35CCFC91A9B5C5A8D7077A8, DA5850C8D64FD80CB687BFB5AD3DEF7671E84F07CB9E1F021868C274ACD3B162 ] C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.1.5152.0\AdAwareAntiMalwareEngine.dll
18:05:34.0318 0x0c48 C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.1.5152.0\AdAwareAntiMalwareEngine.dll - ok
18:05:34.0318 0x0c48 [ F164B9D9EB6AA4FED10AC2DA8CB4A89A, 52C67E219174823D4FBC2AA4416AA73AF9EB83E3EF1E2114673F80A003C3CCE2 ] C:\Windows\System32\mshtml.dll
18:05:34.0318 0x0c48 C:\Windows\System32\mshtml.dll - ok
18:05:34.0334 0x0c48 [ FC51B263A7DF59B5A00AC70549E3F5F3, 1966C61D366C37E9A648B9E993F0513D876A9C6111839144BB21F6502D04EF7D ] C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.1.5152.0\AdAwareAntiRootkitEngine.dll
18:05:34.0334 0x0c48 C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.1.5152.0\AdAwareAntiRootkitEngine.dll - ok
18:05:34.0334 0x0c48 [ 079C7DD76F6D83856FBA93276A5CCC40, BEAE3AB8AA77407FAC1A86A6210E523225C730224BD072315A774991EAB06276 ] C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.1.5152.0\AdAwareScannerHistory.dll
18:05:34.0334 0x0c48 C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.1.5152.0\AdAwareScannerHistory.dll - ok
18:05:34.0350 0x0c48 [ EC4B1EDE2F9610180609EB5DF24018EC, 6AB85677F41940DE4EDFE6E1B1E0F794A3563324714374919289045ED8C196B3 ] C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.1.5152.0\AdAwareScanner.dll
18:05:34.0350 0x0c48 C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.1.5152.0\AdAwareScanner.dll - ok
18:05:34.0365 0x0c48 [ 4359D19F57E2E123E122C2FDE0B29678, 23E6575C753FDA4B654FB7A3ACE63FBE78940D05D6A34ABB607FC0F36008D257 ] C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.1.5152.0\boost_timer-vc100-mt-1_53.dll
18:05:34.0365 0x0c48 C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.1.5152.0\boost_timer-vc100-mt-1_53.dll - ok
18:05:34.0365 0x0c48 [ BC30F3F809C1731E5B3A9BA92EDD0EFC, DF76EE3D9290FFFC220D29F1C22C493B5EAE332B5B43EF86933EA277B95911AE ] C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.1.5152.0\boost_chrono-vc100-mt-1_53.dll
18:05:34.0365 0x0c48 C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.1.5152.0\boost_chrono-vc100-mt-1_53.dll - ok
18:05:34.0381 0x0c48 [ ED7EDE87C070B4DD465B9A5F51451D7B, D6A46884AA0CB8D4FE8F0F9E553065AC455888700B9C91349B22C6D76CF7352E ] C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.1.5152.0\AdAwareScannerScheduler.dll
18:05:34.0381 0x0c48 C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.1.5152.0\AdAwareScannerScheduler.dll - ok
18:05:34.0397 0x0c48 [ 56CACB957470D0817D28708676D46563, CF5A25693DD791F6017406DC073B024F50C48C3913EC9C6680C791272F6F45F7 ] C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.1.5152.0\AdAwareRealTimeProtection.dll
18:05:34.0397 0x0c48 C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.1.5152.0\AdAwareRealTimeProtection.dll - ok
18:05:34.0397 0x0c48 [ B13AF04A1F72153717345C893C736CB1, BFB864A90B9A075F3A46A377AF826FE5C64CEC2D52F4166DAC99CBD671233ACC ] C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.1.5152.0\AdAwareIncompatibles.dll
18:05:34.0397 0x0c48 C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.1.5152.0\AdAwareIncompatibles.dll - ok
18:05:34.0412 0x0c48 [ 25C8162B1B28A6D925C30FA894C60D47, 2C4213E8E98DCCC6798C7EF1B9976540BDE96387A97414F988DA57F01F1770E8 ] C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.1.5152.0\AdAwareAntiSpam.dll
18:05:34.0412 0x0c48 C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.1.5152.0\AdAwareAntiSpam.dll - ok
18:05:34.0428 0x0c48 [ 251C6317C8FB5AF580FEEE4202E87A7C, D350AE440C22F098761D7D5E892CBA92CC47C9BFA930118708E6F7CF00DA8AD7 ] C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.1.5152.0\AdAwareAntiPhishing.dll
18:05:34.0428 0x0c48 C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.1.5152.0\AdAwareAntiPhishing.dll - ok
18:05:34.0428 0x0c48 [ 71F571F83E9BF2984D2880FE49618A9A, 9598E0BC42B0C395267532FB11C8A38FD9B82E75360E7480AE1A53F1BA4BDC6A ] C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.1.5152.0\AdAwareParentalControl.dll
18:05:34.0428 0x0c48 C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.1.5152.0\AdAwareParentalControl.dll - ok
18:05:34.0443 0x0c48 [ 4FC09EF079AB347D8FA9D06750C799BD, 1CCD6AB373C0CF111DE4EFD336D19CE1F6564BECA3DDD155DBE10F7CD8B2A4E8 ] C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.1.5152.0\AdAwareWebProtection.dll
18:05:34.0443 0x0c48 C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.1.5152.0\AdAwareWebProtection.dll - ok
18:05:34.0443 0x0c48 [ FCF8B26CFBEACEB1AD2661DDFF278007, 930A232EF48504F0DD972C0CB658C88EAE7CF117164A17DF0DE9A7DE06C63410 ] C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.1.5152.0\AdAwareEmailProtection.dll
18:05:34.0443 0x0c48 C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.1.5152.0\AdAwareEmailProtection.dll - ok
18:05:34.0459 0x0c48 [ 0334F799BC1E58E61431F8C82C685921, E3E5EFEEC6B778762FC44DDFFF7F890DBF8585E26057394B31BD36271D2489C1 ] C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.1.5152.0\AdAwareNetworkProtection.dll
18:05:34.0459 0x0c48 C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.1.5152.0\AdAwareNetworkProtection.dll - ok
18:05:34.0475 0x0c48 [ 9996A02594337CE8A6D0A885CE1D1C1F, C9442E190D85DB255040E40E19B142EE810AD914F7F60D3DA76CFE419D677771 ] C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.1.5152.0\AdAwareInstaller.dll
18:05:34.0475 0x0c48 C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.1.5152.0\AdAwareInstaller.dll - ok
18:05:34.0475 0x0c48 [ CCA14076376D8D0161BA4EDC5A2CA81C, 7709325BF3EDDB45EADEF356A0C2E66A06BC6E9E14F8E81DE1B543C05AA129CB ] C:\Windows\System32\mscoree.dll
18:05:34.0475 0x0c48 C:\Windows\System32\mscoree.dll - ok
18:05:34.0490 0x0c48 [ DA3021EFAC1D185AC725AFCCD3398521, 7FBA9E570984C0A9C96C5D39FCC63533F5019663D12830F0A83E15604775F999 ] C:\Windows\System32\msi.dll
18:05:34.0490 0x0c48 C:\Windows\System32\msi.dll - ok
18:05:34.0490 0x0c48 [ B3489A741AF744C7DE628C4400E45ADB, 2D750F929AD5C839E2229E9CAADDEE83D3CFB52A7834DA3C78E3C9B1443E1EDE ] C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.1.5152.0\libcurl.dll
18:05:34.0490 0x0c48 C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.1.5152.0\libcurl.dll - ok
18:05:34.0506 0x0c48 [ 8E0BF53FC3A926E3F32CF28AE652C543, 6E55168086BCFE030A6342DC08009F501AB783F33CB8AC04D266A1937F08869D ] C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.1.5152.0\libssh2.dll
18:05:34.0506 0x0c48 C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.1.5152.0\libssh2.dll - ok
18:05:34.0522 0x0c48 [ B7A4FB788974B93EC3974A7E5188DB14, 588AF430B6308116C11040BEF97E3511E6CD30C69C44641B08256B35DA049CCE ] C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.1.5152.0\libeay32.dll
18:05:34.0522 0x0c48 C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.1.5152.0\libeay32.dll - ok
18:05:34.0522 0x0c48 [ 74ADA74E9129EBA63CDC55B349C93699, E2C4905EC5C43386DB092446901D8CC14712B854119E679168D3AF33CBFCA4EC ] C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.1.5152.0\ssleay32.dll
18:05:34.0522 0x0c48 C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.1.5152.0\ssleay32.dll - ok
18:05:34.0537 0x0c48 [ 163EA8DCC36FCC850E2D9FD42717608E, DD8E1E86504321AF39F4517FA04553296F3B5931CA19943B385353C43973FC67 ] C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.1.5152.0\zlib.dll
18:05:34.0537 0x0c48 C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.1.5152.0\zlib.dll - ok
18:05:34.0553 0x0c48 [ 0FA29BD2E724CBBEB2D430384A181CA3, 261E838C8CB8350E695E334018F33FF422746A12325B6B9DBDDD68974FB2E11D ] C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscoreei.dll
18:05:34.0553 0x0c48 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscoreei.dll - ok
18:05:34.0553 0x0c48 [ DE9FDB812157F77CA4EB46E3ABB40448, 244F7DFBCEA4041C8F0814B06D9ADA8DAFDB0FF1147A1C206783677FCD1ED687 ] C:\Windows\System32\clusapi.dll
18:05:34.0553 0x0c48 C:\Windows\System32\clusapi.dll - ok
18:05:34.0568 0x0c48 [ D728042519B8FCBEE14EC250E3F050B8, 1739032E4B3E8224E1BB7062BFA9B74370189AFD1835B90D79FFADB13DF53EA6 ] C:\Windows\System32\resutils.dll
18:05:34.0568 0x0c48 C:\Windows\System32\resutils.dll - ok
18:05:34.0568 0x0c48 [ F6E06380D717875F6AEFC2B0694B9E9D, 2ED566322CD7A90EB7C39C139C5B138808E0220A2FB48DFFC2EB52373F0CD225 ] C:\Windows\System32\ncryptprov.dll
18:05:34.0568 0x0c48 C:\Windows\System32\ncryptprov.dll - ok
18:05:34.0584 0x0c48 [ 4215C49E751ECA4BC42B3C10C8A55950, 3DB415C5F1A7FA98CF7259802DD1FD749C64DC5AD2D8CB788D2B356A83AC9F16 ] C:\Windows\System32\ncryptsslp.dll
18:05:34.0584 0x0c48 C:\Windows\System32\ncryptsslp.dll - ok
18:05:34.0584 0x0c48 [ 0515FF4F49057EDE5FAAB6537D26D5EB, CB6076A36C8109AC2E99422F8B1A495EBD13AA7A0F3ECCEFCFD791228811F6E7 ] C:\Windows\System32\dssenh.dll
18:05:34.0584 0x0c48 C:\Windows\System32\dssenh.dll - ok
18:05:34.0600 0x0c48 [ 2D7FD376507DD09CE5988A17AC2A698C, 85796BA67B9E94BA44FB8DA8BBF4B7A7E0942DF5AE55F5613D0695C62267728E ] C:\Windows\System32\sqlncli11.dll
18:05:34.0600 0x0c48 C:\Windows\System32\sqlncli11.dll - ok
18:05:34.0600 0x0c48 [ 5BCD550B947D40BAA26BA786B18A7B34, 71E317C7D83F9D07CCAA8BC738A28A123C0E31BD5E2AEA5149E41BE82791FBCD ] C:\Program Files\Microsoft SQL Server\MSSQL11.SQLEXPRESS\MSSQL\Binn\sqlscriptupgrade.dll
18:05:34.0615 0x0c48 C:\Program Files\Microsoft SQL Server\MSSQL11.SQLEXPRESS\MSSQL\Binn\sqlscriptupgrade.dll - ok
18:05:34.0615 0x0c48 [ 0787086C24E0A18285C7DB19FF903EC3, 5689C75F1095B73D2245C26282E8BC1B782AC7D94B04E8B6E9CEF9FDA5AF3767 ] C:\Program Files\Microsoft SQL Server\MSSQL11.SQLEXPRESS\MSSQL\Binn\batchparser.dll
18:05:34.0615 0x0c48 C:\Program Files\Microsoft SQL Server\MSSQL11.SQLEXPRESS\MSSQL\Binn\batchparser.dll - ok
18:05:34.0631 0x0c48 [ BCADE83E1C8601B2A037124D4DD69B4B, E8839FBF712DA1007D505B8212AA07FED5E848A811C7AE2076BFFEB7DAE09D3A ] C:\Windows\System32\1033\sqlnclir11.rll
18:05:34.0631 0x0c48 C:\Windows\System32\1033\sqlnclir11.rll - ok
18:05:34.0631 0x0c48 [ 0AD1DC002A7CFF4BBF275FFFD4748268, BD1FDAFF014584E74D1E4982D70272248BC9B527B333C1BCF63D6074D4E301DB ] C:\Windows\System32\netbios.dll
18:05:34.0631 0x0c48 C:\Windows\System32\netbios.dll - ok
18:05:34.0647 0x0c48 [ 1395B4487D0FBD6F3DC0750A49A9F101, 321A1957AA6B843F7B76EA6F922DEBE22A9DF5C0E750947A212707ED89DD473E ] C:\Windows\Microsoft.NET\Framework64\v4.0.30319\clr.dll
18:05:34.0647 0x0c48 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\clr.dll - ok
18:05:34.0662 0x0c48 [ ACA30B753EF16345AE2100E40603BF14, FCEA9D8CAA29DAB6C8956373F9B3CBFBBC8F0BEE201BE5F7695E679586F3D599 ] C:\Windows\System32\msvcr110_clr0400.dll
18:05:34.0662 0x0c48 C:\Windows\System32\msvcr110_clr0400.dll - ok
18:05:34.0662 0x0c48 [ FA53944BB994114197F43DD2C02E05C0, 670442A02DB5093311EF309A4AAE13989590C4D6228A6BFBFA0B6BD24848D709 ] C:\Program Files\Microsoft SQL Server\MSSQL11.SQLEXPRESS\MSSQL\Binn\ftimport.dll
18:05:34.0662 0x0c48 C:\Program Files\Microsoft SQL Server\MSSQL11.SQLEXPRESS\MSSQL\Binn\ftimport.dll - ok
18:05:34.0678 0x0c48 [ 5D2F22BCDB24AEB5AF82E8F7B4BA3F5E, CBB751A8B17B5A857B152A188F7981D5EBA85A6562DE06D4FB5BE6CD129B837B ] C:\Program Files\Microsoft SQL Server\MSSQL11.SQLEXPRESS\MSSQL\Binn\msfte.dll
18:05:34.0678 0x0c48 C:\Program Files\Microsoft SQL Server\MSSQL11.SQLEXPRESS\MSSQL\Binn\msfte.dll - ok
18:05:34.0678 0x0c48 [ A5E4B3FF51CF5B7926D9651908FEB666, 13F0C74845318B52B76E6000564B1A99C37DE48422B44AC74D034FA222C65A23 ] C:\Program Files\Microsoft SQL Server\MSSQL11.SQLEXPRESS\MSSQL\Binn\DBGHELP.DLL
18:05:34.0693 0x0c48 C:\Program Files\Microsoft SQL Server\MSSQL11.SQLEXPRESS\MSSQL\Binn\DBGHELP.DLL - ok
18:05:34.0693 0x0c48 [ 7CE118FFB27F30A4BF159A22C7B2C0CD, 331641C530DAAE4BD41BD95C11D6757BB09BE60D3B26A75FFDC308B2362A29CF ] C:\Windows\System32\dsparse.dll
18:05:34.0693 0x0c48 C:\Windows\System32\dsparse.dll - ok
18:05:34.0709 0x0c48 [ 827919431C1B2BCA0AC103EC147D418A, A9A18BFADA3F478C9FC634703C11DC9CEA90D9062ACFA478613E8BCA7185B338 ] C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.1.5152.0\AdAwarePromo.dll
18:05:34.0709 0x0c48 C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.1.5152.0\AdAwarePromo.dll - ok
18:05:34.0709 0x0c48 [ 6099C32689C98EB433EA44AF6DB9F3B4, 58F89D6825990F788E502F0E8A6EF3FCC7D528CB8C578A54C4B88B2F91003581 ] C:\Program Files\Microsoft SQL Server\MSRS11.SQLEXPRESS\Reporting Services\ReportServer\bin\ReportingServicesService.exe
18:05:34.0709 0x0c48 C:\Program Files\Microsoft SQL Server\MSRS11.SQLEXPRESS\Reporting Services\ReportServer\bin\ReportingServicesService.exe - ok
18:05:34.0725 0x0c48 [ F261BBCB29184CD177328B9693EEC993, 8917A23AAB9405A52B6ABBEF93D4AEA4E81F3D3284D783DACD760ECE6A680AF6 ] C:\Program Files\Microsoft SQL Server\MSRS11.SQLEXPRESS\Reporting Services\ReportServer\bin\SQLRSOS.dll
18:05:34.0725 0x0c48 C:\Program Files\Microsoft SQL Server\MSRS11.SQLEXPRESS\Reporting Services\ReportServer\bin\SQLRSOS.dll - ok
18:05:34.0740 0x0c48 [ 26AF4F0ED1340C8154D3DE03E9CB7E22, F061971FA798D5D07B436D0FB5DDF7E91FAFEF45116CE11C6BA498869D2A5CC6 ] C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.1.5152.0\AdAwareFeedback.dll
18:05:34.0740 0x0c48 C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.1.5152.0\AdAwareFeedback.dll - ok
18:05:34.0740 0x0c48 [ 055B0DE7BCDB14FB18279F09DCA07954, 94944F996F2F73233A96F8E766606EA5CCC7142EA2AF4BCEFD2603578F2B4A4A ] C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
18:05:34.0740 0x0c48 C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe - ok
18:05:34.0756 0x0c48 [ 3EA8A16169C26AFBEB544E0E48421186, 34BBB0459C96B3DE94CCB0D73461562935C583D7BF93828DA4E20A6BC9B7301D ] C:\Windows\System32\Drivers\secdrv.sys
18:05:34.0756 0x0c48 C:\Windows\System32\Drivers\secdrv.sys - ok
18:05:34.0756 0x0c48 [ 2982B8887EDF00708768F84B272E4B02, 9951A1539DBE68ABD9BF955B11B1A83BB79A2F0DFEDD4A32C3D6FFD5E4818D71 ] C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.1.5152.0\SecurityCenter.dll
18:05:34.0772 0x0c48 C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.1.5152.0\SecurityCenter.dll - ok
18:05:34.0772 0x0c48 [ 03D7DAC41AB6BB1DBB353C1D50148E8D, 7A443707CAE0D674A087DFBBA9B443741B9D2F951886AFEAC6530E3C9EA54363 ] C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorwks.dll
18:05:34.0772 0x0c48 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorwks.dll - ok
18:05:34.0787 0x0c48 [ 76F79B28613EC859E2580356869EAFE0, 2E613E5D6A01DC342EC93CBC251D9EAE67ADDCDAC79FD803364399D0E3E89EED ] C:\Program Files\Lavasoft\Ad-Aware Antivirus\Antimalware Engine\2.6.0.0\BDUpdateServiceCom.dll
18:05:34.0787 0x0c48 C:\Program Files\Lavasoft\Ad-Aware Antivirus\Antimalware Engine\2.6.0.0\BDUpdateServiceCom.dll - ok
18:05:34.0787 0x0c48 [ 960636D4788C0355D0A8AFB533E76ED7, B9BCFB69451A3379433695E6CBDB4C50A7C809EB14E284C9E86680E9BE149201 ] C:\Program Files\Lavasoft\Ad-Aware Antivirus\Antimalware Engine\2.6.0.0\OEMUninstall.dll


It was not necessary reboot the computer because no therats wer founded, and it was not necessary to select Skip or ensure Cure and then click continue.

Thanks once again.
P.S. I had to split the report in 2 replies because the site is saying that my reply its to long and to shorten it a litle bit.
  • 0

#10
jonatanoliveira

jonatanoliveira

    Member

  • Topic Starter
  • Member
  • PipPip
  • 12 posts
here it are the rest of the log file texto:

18:05:34.0787 0x0c48 C:\Program Files\Lavasoft\Ad-Aware Antivirus\Antimalware Engine\2.6.0.0\OEMUninstall.dll - ok
18:05:34.0803 0x0c48 [ 8AB8CC8200DF2148BEA11FD7F520EA3A, 3FA64BDDFDA52FD985A17850195ADEF6515E49CB51711C31B4ABB9F10BC44783 ] C:\Windows\System32\BdFirewallSDK.dll
18:05:34.0803 0x0c48 C:\Windows\System32\BdFirewallSDK.dll - ok
18:05:34.0818 0x0c48 [ E32E201688F60CBEF10439F568F94DF5, 650344FC1636B95B6A4F930D31FAB7C5DCC7C2C244998CCF4B85431A1B8E0008 ] C:\Windows\System32\bdfwcore.dll
18:05:34.0818 0x0c48 C:\Windows\System32\bdfwcore.dll - ok
18:05:34.0818 0x0c48 [ CC9E4AB534A4BA4D4007B756896C6562, 230AAF19A3C2B2295EBB35CCD1FEB1B455A88491A5109A747EA3926865E618D7 ] C:\Program Files\Lavasoft\Ad-Aware Antivirus\Antimalware Engine\2.6.0.0\bdquar.dll
18:05:34.0818 0x0c48 C:\Program Files\Lavasoft\Ad-Aware Antivirus\Antimalware Engine\2.6.0.0\bdquar.dll - ok
18:05:34.0834 0x0c48 [ 276F7AFF2F4A0F807881AD9D72018BB8, 539A54A4517517E00CAFFC4656CD4F7D314B699C3D9BD036D0AF74ED3127B255 ] C:\Program Files\Lavasoft\Ad-Aware Antivirus\Antimalware Engine\2.6.0.0\scan.dll
18:05:34.0834 0x0c48 C:\Program Files\Lavasoft\Ad-Aware Antivirus\Antimalware Engine\2.6.0.0\scan.dll - ok
18:05:34.0834 0x0c48 [ E67507B3359A743A89B68A1C4D77C61A, DC33DD02E495076B11BEF35FCFDB1D85FCE52E6F41DF8D0FA6AB58B9236232DC ] C:\Program Files\Lavasoft\Ad-Aware Antivirus\Antimalware Engine\2.6.0.0\BDSmartDB.dll
18:05:34.0834 0x0c48 C:\Program Files\Lavasoft\Ad-Aware Antivirus\Antimalware Engine\2.6.0.0\BDSmartDB.dll - ok
18:05:34.0850 0x0c48 [ 5C06EC025D87DE9FAAC152A9E6A8B258, 7A85D57BE2552BB038249720948E30345C7DF4E74F37CC9936BB28DCF65F1139 ] C:\Windows\assembly\NativeImages_v4.0.30319_64\mscorlib\54c5d3ee1f311718f3a2feb337c5fa29\mscorlib.ni.dll
18:05:34.0850 0x0c48 C:\Windows\assembly\NativeImages_v4.0.30319_64\mscorlib\54c5d3ee1f311718f3a2feb337c5fa29\mscorlib.ni.dll - ok
18:05:34.0865 0x0c48 [ 14FC338B80CFF7E04215133B568D15C4, 1F437BE0EC887097F0C3409D4198A20981FC325FDF915532AB85070D337DEF2B ] C:\Windows\System32\Drivers\srvnet.sys
18:05:34.0865 0x0c48 C:\Windows\System32\Drivers\srvnet.sys - ok
18:05:34.0865 0x0c48 [ 42363182AB20C3248E37E5D274ADEEB1, 0AB6F87F439D330480C8D59B66145CF02E709FB12DC8FF4F5120141D397BE631 ] C:\Program Files\Microsoft SQL Server\90\Shared\sqlwvss.dll
18:05:34.0865 0x0c48 C:\Program Files\Microsoft SQL Server\90\Shared\sqlwvss.dll - ok
18:05:34.0881 0x0c48 [ 8F2A13A5DF99D72FDDE87F502A66F989, 2228C62ACDB4CBBFDD2BE705E604E0B9A8AEA7146F65F2D8B9B2A2FB49ACFAE1 ] C:\Windows\System32\Drivers\tcpipreg.sys
18:05:34.0881 0x0c48 C:\Windows\System32\Drivers\tcpipreg.sys - ok
18:05:34.0881 0x0c48 [ A06CB9269D29EE3D0F3F5630ABB660B8, 519A01FC7D9414B26CCBC23E7FB1CEAF1C91CD173B4F4A4025F8316B7460C584 ] C:\Windows\System32\sysmain.dll
18:05:34.0881 0x0c48 C:\Windows\System32\sysmain.dll - ok
18:05:34.0897 0x0c48 [ ADC5A921A818633D7CA599446AE1A9BF, C26BE434B3076B6387ADEB44F4196C2A66ABAEE521B6418AD0D230BF9D6CFF68 ] C:\Program Files\ASUS\ASUS VivoBook\ASUSWakeupService.exe
18:05:34.0897 0x0c48 C:\Program Files\ASUS\ASUS VivoBook\ASUSWakeupService.exe - ok
18:05:34.0912 0x0c48 [ BAC8A721736AECC55A4F71523AEAB65F, B52E1303B13A961A5FC190829E55B6F28ACA409A6EEF44B358D1D210558FE1D8 ] C:\Windows\System32\wiaservc.dll
18:05:34.0912 0x0c48 C:\Windows\System32\wiaservc.dll - ok
18:05:34.0912 0x0c48 [ 2935B83ADDED04242622580091251474, 717F1CB2ADDA8D9DE5447FFFD82B1104B8365A32E32952B65F17A9AE4B3E1982 ] C:\Windows\System32\wiatrace.dll
18:05:34.0912 0x0c48 C:\Windows\System32\wiatrace.dll - ok
18:05:34.0928 0x0c48 [ 508F0DE3A65183A3D7ADF4C1F20E9696, CBDDDAD6FE5F5AE4A79B24197043BB7A489E6158E1F6766A3F80BAEA084B9B11 ] C:\Windows\System32\PortableDeviceWiaCompat.dll
18:05:34.0928 0x0c48 C:\Windows\System32\PortableDeviceWiaCompat.dll - ok
18:05:34.0928 0x0c48 [ F082773EF130B7293E0F6D64B962A118, 8E2F70EBDCE4CE43650323FF34204A2CD7B2D5E6E9708CCFBF4AF929228828E0 ] C:\Windows\System32\deviceassociation.dll
18:05:34.0928 0x0c48 C:\Windows\System32\deviceassociation.dll - ok
18:05:34.0944 0x0c48 [ 8C8CF3041B27E7657ADD0EE17F6DBFCA, A6846478B9E7B0A509E5A28C6C7B66ED39F0247F9AFF01E3C3CADC0DBEF3CA00 ] C:\Windows\System32\trkwks.dll
18:05:34.0944 0x0c48 C:\Windows\System32\trkwks.dll - ok
18:05:34.0959 0x0c48 [ 8F625E3E627BC99823E7E168A9AB5625, ACD73EE7B9E0812AD99B646C7D62DEDAB57387431F7EBFD1855F5F3E1AC3F35E ] C:\Windows\System32\wsdchngr.dll
18:05:34.0959 0x0c48 C:\Windows\System32\wsdchngr.dll - ok
18:05:34.0959 0x0c48 [ 92DEE993B7055A522AAC948E59CBC5D4, 379E09FB67DE1CC910DC727539624A50ADDFAC6871AD2DB2991B14444F30A525 ] C:\Windows\assembly\NativeImages_v4.0.30319_64\System\4598449d72d7ebbd53952399ed5fc710\System.ni.dll
18:05:34.0959 0x0c48 C:\Windows\assembly\NativeImages_v4.0.30319_64\System\4598449d72d7ebbd53952399ed5fc710\System.ni.dll - ok
18:05:34.0975 0x0c48 [ 1171979F6DC6A9FE1D74A89E306D545E, 8AF31576BE2CBBA88CA201D473A1C8B1F06BC71B78455011CA15E8919DC9B7C5 ] C:\Windows\assembly\NativeImages_v2.0.50727_64\mscorlib\a77d877c214d5c7b4adbe2b8a9da3cf2\mscorlib.ni.dll
18:05:34.0975 0x0c48 C:\Windows\assembly\NativeImages_v2.0.50727_64\mscorlib\a77d877c214d5c7b4adbe2b8a9da3cf2\mscorlib.ni.dll - ok
18:05:34.0975 0x0c48 [ DBE7DDC9E03161A4DB465D0C83979740, A731429909A91ACEF7091A07B6E4D4E1E52651BC2D2528F6B9BF73D52403B905 ] C:\Windows\assembly\NativeImages_v4.0.30319_64\System.Serv759bfb78#\05f33a77835b482bdbdec12467be7963\System.ServiceProcess.ni.dll
18:05:34.0975 0x0c48 C:\Windows\assembly\NativeImages_v4.0.30319_64\System.Serv759bfb78#\05f33a77835b482bdbdec12467be7963\System.ServiceProcess.ni.dll - ok
18:05:34.0990 0x0c48 [ B2EB2989A321F859E799FDF7CC985FA9, 286B025DDBDA954FC5E39D0DE37AF4F1D3F4F105AF10A92858D6CB091EAFE9AB ] C:\Windows\Microsoft.NET\Framework64\v4.0.30319\clrjit.dll
18:05:34.0990 0x0c48 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\clrjit.dll - ok
18:05:35.0006 0x0c48 [ 3D6B518B71C75C8FA4115A33615C107A, ED7A266013D29D3B1A462464735C3632BEA121D1B32553907AEAA0B00595C3DF ] C:\Windows\System32\wbem\WMIsvc.dll
18:05:35.0006 0x0c48 C:\Windows\System32\wbem\WMIsvc.dll - ok
18:05:35.0006 0x0c48 [ 86B8B1F5C1189D68B07666784BE882FE, 0DD8C627F3DDBDB61B1910540C465C0D62C9F8D84C7CBB6C80782DB02D535AF0 ] C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe
18:05:35.0006 0x0c48 C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe - ok
18:05:35.0022 0x0c48 [ 21CA3869D0EA99C902B26ED697BD78E5, C18AC7A07EF12C3242FEC2E68952F8B91F365ADF755E6E7D1ADE9319C0041CDC ] C:\Windows\System32\wbemcomn.dll
18:05:35.0022 0x0c48 C:\Windows\System32\wbemcomn.dll - ok
18:05:35.0022 0x0c48 [ 1E879760C0543A68A96193638A0234B1, 3E5BFDFFC836EEF18145BD57E67C29B68767D53BB009E73FA329D72AD94F0EFB ] C:\Windows\SysWOW64\bthprops.cpl
18:05:35.0022 0x0c48 C:\Windows\SysWOW64\bthprops.cpl - ok
18:05:35.0037 0x0c48 [ 56218A571ECF8D55E0CDFF8DF2546CF1, 44B34722108EDDC8757A0B7C939A854457BB7EBC92A83C4284DFFAECFC2E3619 ] C:\Windows\System32\Drivers\srv2.sys
18:05:35.0037 0x0c48 C:\Windows\System32\Drivers\srv2.sys - ok
18:05:35.0053 0x0c48 [ 281B01A5C9180ED7C7780053B1FC85CC, B43FE3CF12B389345B31600295FF6C8519A1ACBF1124BC6CAF95D9FC3F3CF5DB ] C:\Windows\SysWOW64\BluetoothApis.dll
18:05:35.0053 0x0c48 C:\Windows\SysWOW64\BluetoothApis.dll - ok
18:05:35.0053 0x0c48 [ CDC2AA3B345E78C6B1AF25F91E744966, 73BDA5A8A2A0700A621FA6338A87D24CDF78E7C06E460D59E828113E59938C25 ] C:\Windows\SysWOW64\wlanapi.dll
18:05:35.0053 0x0c48 C:\Windows\SysWOW64\wlanapi.dll - ok
18:05:35.0069 0x0c48 [ C217B8D2E58C57A319B16125C3D4B69C, 905BB858E1782BD08FF080A4A604CE662440A15601B178FBD30269C306C04CCF ] C:\Windows\System32\iphlpsvc.dll
18:05:35.0069 0x0c48 C:\Windows\System32\iphlpsvc.dll - ok
18:05:35.0069 0x0c48 [ 0F1FCD575A03ABDE13FCA9D0ADE4DDA6, 61EEB1349489CB85204F1B4E398BE24EDC01FB914120C9DD0487F8EE1EDA055E ] C:\Windows\System32\Drivers\srv.sys
18:05:35.0069 0x0c48 C:\Windows\System32\Drivers\srv.sys - ok
18:05:35.0084 0x0c48 [ 735D4C58ADC1F4DE5A59850078910218, BBBE7A15C1078F6BC7045BCC0C216F6C0203F66C3D921D84334EB80F8D94FF13 ] C:\Windows\System32\wbem\wbemcore.dll
18:05:35.0084 0x0c48 C:\Windows\System32\wbem\wbemcore.dll - ok
18:05:35.0084 0x0c48 [ E54F732758B5BB7405C2F4E05A64D6E1, 072FE1A984150196D02FED1D88D380DE000211EB396E2C6388B55A6EA72BC301 ] C:\Windows\System32\wbem\esscli.dll
18:05:35.0084 0x0c48 C:\Windows\System32\wbem\esscli.dll - ok
18:05:35.0100 0x0c48 [ 19304E66115DD1400182211B4FD7E73A, 5E15C03A18B56142DC243125BB7EE1F66A5FD1DAE08B0DC5B5871A2C2035BB5D ] C:\Windows\System32\wbem\fastprox.dll
18:05:35.0100 0x0c48 C:\Windows\System32\wbem\fastprox.dll - ok
18:05:35.0115 0x0c48 [ 9B7280BAF510CE8AA3E712BC63EE50E3, 1A1AA6B665F162823AB5E88688B1C9042099B10E359D328966B068DD6CCEA837 ] C:\Windows\System32\wbem\wbemsvc.dll
18:05:35.0115 0x0c48 C:\Windows\System32\wbem\wbemsvc.dll - ok
18:05:35.0115 0x0c48 [ 7139C54E7282804745F9991F588FE506, F8693CF2A6B5C6D2D6EF6CBF0241B7DABE33E546383D8144601F2DF9D73EC8C5 ] C:\Windows\SysWOW64\wbem\wbemsvc.dll
18:05:35.0115 0x0c48 C:\Windows\SysWOW64\wbem\wbemsvc.dll - ok
18:05:35.0131 0x0c48 [ 0E2BB2E43DCCE4ED986BF3B8641DFC08, F51D0C10539F218DFF151B6C9BA7C4125D0DC2DE2A3B1A1F7172F9DBB5D465B1 ] C:\Windows\System32\adhsvc.dll
18:05:35.0131 0x0c48 C:\Windows\System32\adhsvc.dll - ok
18:05:35.0131 0x0c48 [ 104BA949E64659ED6B8D23BA08299F55, 6BBFF261D527CD679DE2568BA452D3AFCA6FD43639660F86EE890E8C128DB0C5 ] C:\Windows\System32\httpprxm.dll
18:05:35.0131 0x0c48 C:\Windows\System32\httpprxm.dll - ok
18:05:35.0147 0x0c48 [ 992BD101F370B0D93A1131227BA342F6, 9034637756768BFD687E9CE569059FACA3BCAAFD998BC990C84D94AA7CE82CC5 ] C:\Windows\SysWOW64\wbem\fastprox.dll
18:05:35.0147 0x0c48 C:\Windows\SysWOW64\wbem\fastprox.dll - ok
18:05:35.0147 0x0c48 [ 8BD33FC2A78607E00D012D550C0E2E69, 5382A95932F7BAA3B55948AA99D3AFA8B324BFB8D7CAEC2465C4A81C93390D56 ] C:\Windows\System32\ncbservice.dll
18:05:35.0147 0x0c48 C:\Windows\System32\ncbservice.dll - ok
18:05:35.0162 0x0c48 [ 43B20FC33366C5F867C9F05D03DA651F, B452243C9145DB677E9810335EE31CE38AA5A75F48CFBC4F151803C6BADA74B5 ] C:\Windows\System32\netprofm.dll
18:05:35.0162 0x0c48 C:\Windows\System32\netprofm.dll - ok
18:05:35.0178 0x0c48 [ D86F25F0AD6CA6E77A9F67641EEB6722, 15066B624C54A3FEDEEB840330E45B7F24A411941DB39DFB75177225409C57B4 ] C:\Windows\System32\sqmapi.dll
18:05:35.0178 0x0c48 C:\Windows\System32\sqmapi.dll - ok
18:05:35.0178 0x0c48 [ 4811A86C4CA6EDC58D316A29E56629F6, EEED60D7D8BC534CF9A2F782FB01A22C6DA2606104937E1A1548105D84EF4DE8 ] C:\Windows\System32\wbem\wmiutils.dll
18:05:35.0178 0x0c48 C:\Windows\System32\wbem\wmiutils.dll - ok
18:05:35.0194 0x0c48 [ 5C51484B4D2211FBE88DEB472588B5DF, C67B371351DF5627B6E2F23B768F3D1743CD2E248FFE0B9A945E1FF05839B14B ] C:\Windows\System32\wdscore.dll
18:05:35.0194 0x0c48 C:\Windows\System32\wdscore.dll - ok
18:05:35.0194 0x0c48 [ C9DA260FC97E22905A97FFC3D5F42B18, E424CB675532C7323E3628DA0D498FCD34CB636ECC05C6D7F449F61C78606CE9 ] C:\Windows\System32\bi.dll
18:05:35.0194 0x0c48 C:\Windows\System32\bi.dll - ok
18:05:35.0209 0x0c48 [ 616285E00B6B7F2DE84891F6D094528B, 7B71CA5D755FBC9E46A8CEECE364768AFF8B8BE64A73A27D690853D1F2CD763F ] C:\Windows\System32\wbem\repdrvfs.dll
18:05:35.0209 0x0c48 C:\Windows\System32\wbem\repdrvfs.dll - ok
18:05:35.0225 0x0c48 [ 31F671016B2F3403D39A2FD6B58D63EE, 8F5D9F03EAFB9AEE5FA56561908CF08947E6BBD92B1608CA9008C46C4AE90DC5 ] C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsec.dll
18:05:35.0225 0x0c48 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsec.dll - ok
18:05:35.0225 0x0c48 [ 256EE31588257E8A555DBFAA13F1908E, B6817F632EDEA483E35BF26846DCDD4E95E860620959179B2A5D8AD7EEDDB126 ] C:\Windows\System32\srvsvc.dll
18:05:35.0225 0x0c48 C:\Windows\System32\srvsvc.dll - ok
18:05:35.0240 0x0c48 [ B4A8196583408768088F71ECFB8EAE1D, 8FBC83FF2F47521554CA6C46B5B7BA78F7D02F9E8D10E73D24F8B232F66461B6 ] C:\Windows\System32\riched20.dll
18:05:35.0240 0x0c48 C:\Windows\System32\riched20.dll - ok
18:05:35.0240 0x0c48 [ 310068BDA80B1D55C36580FD8A873FAF, A75412FF1F483461F526E9A359DCEECA5E683441514464D5ED82D1A9740D583E ] C:\Windows\System32\browser.dll
18:05:35.0240 0x0c48 C:\Windows\System32\browser.dll - ok
18:05:35.0256 0x0c48 [ 58D768B03F3C7FF919004634C29E7843, A8D1ADB08CE993C6F83F27FDEF6B5491E63FF41E37C64E0B56FDAB8CE3C54CB7 ] C:\Windows\System32\nci.dll
18:05:35.0256 0x0c48 C:\Windows\System32\nci.dll - ok
18:05:35.0272 0x0c48 [ A557305B43BBB2EEF886983C80E7DD21, 37FD48D83D18026347BF46D2AB7925CADC9F791250E375CAEF6BF2947D610B0F ] C:\Program Files\ASUS\ASUS VivoBook\VivoBook.exe
18:05:35.0272 0x0c48 C:\Program Files\ASUS\ASUS VivoBook\VivoBook.exe - ok
18:05:35.0272 0x0c48 [ 3C14BC7A5590DFDD754CA7A15CED0A9A, ABC82F9D02A6BD0B90459BD8300F4CEA39AA40D1705CAA34A145FBCADF54F3E2 ] C:\Windows\System32\sscore.dll
18:05:35.0272 0x0c48 C:\Windows\System32\sscore.dll - ok
18:05:35.0287 0x0c48 [ C6B2D1AE7F957BCA38C6C86E800BDC3F, 653317C168276537AEBC054B2AA2B51132DE5543F55A432E9F145B1ECA4A5198 ] C:\Windows\System32\usp10.dll
18:05:35.0287 0x0c48 C:\Windows\System32\usp10.dll - ok
18:05:35.0287 0x0c48 [ 547D152592C3B4960DD80D9C61F7C8A9, 391730B171A4BE09B6C2C89614ED39B3750529DF43AE652E79CE3E463466611B ] C:\Windows\System32\mi.dll
18:05:35.0287 0x0c48 C:\Windows\System32\mi.dll - ok
18:05:35.0303 0x0c48 [ C5D0659CEA9A87C4C4E82B0464683F19, 8F789FB1E65A1BD5CD1F44FDD3B6ED1CDE1BAFE2A320E95B3401AE25BCD7BF12 ] C:\Windows\System32\sscoreext.dll
18:05:35.0303 0x0c48 C:\Windows\System32\sscoreext.dll - ok
18:05:35.0303 0x0c48 [ 8CABB7DB418AA58CEC8A00E43368EAA7, 1BFD20A806FE6FD4E00240D2940C1CC8D368F312254CF4AF9EFE06780797A1C8 ] C:\Windows\System32\miutils.dll
18:05:35.0303 0x0c48 C:\Windows\System32\miutils.dll - ok
18:05:35.0319 0x0c48 [ 3D3AE51E3778D89CCDB7CE3714F24E7D, 698B4DFF92847CA745094A635D113C0BEE72B761EB280DD380F0665668FA0CA6 ] C:\Windows\System32\msls31.dll
18:05:35.0319 0x0c48 C:\Windows\System32\msls31.dll - ok
18:05:35.0335 0x0c48 [ 52EF3A32EC17D3E9580A79A23B712917, 1A5C013334E48AB404BA958CEDF346B10CDDE823332B357416BC5F45CB79CF63 ] C:\Windows\System32\brdgcfg.dll
18:05:35.0335 0x0c48 C:\Windows\System32\brdgcfg.dll - ok
18:05:35.0335 0x0c48 [ 08AF5B64DA03D206508CBACAEB9E1FF3, 3254D0AE75D14E0B46885DBDB64C3A3043C6C450F80B0E172FEE05F9C5018732 ] C:\Windows\System32\ndiscapCfg.dll
18:05:35.0335 0x0c48 C:\Windows\System32\ndiscapCfg.dll - ok
18:05:35.0351 0x0c48 [ DD35092F11DCED777EF8621D4EE2505A, 92A6FA9989834632986DAAD9A7F168BD85673C9D51AAC4F55F6CA723C92E4156 ] C:\Windows\System32\rascfg.dll
18:05:35.0351 0x0c48 C:\Windows\System32\rascfg.dll - ok
18:05:35.0351 0x0c48 [ 909EBA9AF43AF0E70EA7FFC352484424, 7C028D773E9B2CEB2ADD0ACA8ADD038C470D98C3CCC3DBC80C06F4BC64C3E967 ] C:\Windows\System32\mprapi.dll
18:05:35.0351 0x0c48 C:\Windows\System32\mprapi.dll - ok
18:05:35.0366 0x0c48 [ AEA052132903B2751391F21555A123EF, 69B7B62740F1CA3C3EDAF608749614C4C7B9840EA0BBE9636188E2236D244AFC ] C:\Windows\Microsoft.NET\Framework64\v2.0.50727\Culture.dll
18:05:35.0366 0x0c48 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\Culture.dll - ok
18:05:35.0366 0x0c48 [ 0AEF3F58E05D5BBCD8A3CF2B393FE465, F9697AA818175E2F07936B90C0FE6C8436A5DFB759D0E5A4CD9B0E5CEE53C563 ] C:\Windows\System32\wmidcom.dll
18:05:35.0366 0x0c48 C:\Windows\System32\wmidcom.dll - ok
18:05:35.0382 0x0c48 [ 11F0834544D68B955E6C44DFFB272122, B02C18C530033B413FA5FB72AF2AAC4B14CA179FC150BC004A28B8C951520E84 ] C:\Windows\System32\mprmsg.dll
18:05:35.0382 0x0c48 C:\Windows\System32\mprmsg.dll - ok
18:05:35.0398 0x0c48 [ F9D908DE6B166DAC9B89BF62FA291CE8, D0A918AD60221623BB0278EA94CD6938744617FDBB2054968AFAFC2940648F02 ] C:\Program Files\Bonjour\mdnsNSP.dll
18:05:35.0398 0x0c48 C:\Program Files\Bonjour\mdnsNSP.dll - ok
18:05:35.0398 0x0c48 [ 25FD6AB608C7CFDEAAC24BA882AC4052, 22388DD49B652D48B53A786581A309D46CB2429921DEF0B29A65CA232E65A2E6 ] C:\Windows\System32\NdisImPlatform.dll
18:05:35.0398 0x0c48 C:\Windows\System32\NdisImPlatform.dll - ok
18:05:35.0413 0x0c48 [ 04C84B41AD7BC0C663A613CA9E3D3FC5, 3E588C77AC9F2396DDD624F9DB34601728AF417FDED4DC757165A15DEF51B9BD ] C:\Windows\System32\rasadhlp.dll
18:05:35.0413 0x0c48 C:\Windows\System32\rasadhlp.dll - ok
18:05:35.0413 0x0c48 [ 814F4A0774F08F580D71FA7E880CD454, 97AFF613618579BA6294EDD8DCE51AE4E0FECF41C49C06BAEA5FCD5273E3472E ] C:\Windows\System32\localspl.dll
18:05:35.0413 0x0c48 C:\Windows\System32\localspl.dll - ok
18:05:35.0429 0x0c48 [ CEB35EB551BE4F216691255D38867346, DD4F2492DAA55452E4CA4B5753FF003E2DC3AC4EA7155D98A25A4A28F38DE91E ] C:\Windows\System32\activeds.dll
18:05:35.0429 0x0c48 C:\Windows\System32\activeds.dll - ok
18:05:35.0445 0x0c48 [ FC0F11E0253A58BBA13A31C75C8BC091, 895017DD5A613342CDAC9BF5394F1CEEDFEF5EAE00FDB901C8FFAFC423F667A3 ] C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorjit.dll
18:05:35.0445 0x0c48 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorjit.dll - ok
18:05:35.0445 0x0c48 [ 6AE7DC415EFF4840512E5354CE99F4A5, 1067A1A802EE5C11ED0D8B54662548604570C498EEA680F18886C76E435F7ADE ] C:\Windows\System32\adsldpc.dll
18:05:35.0445 0x0c48 C:\Windows\System32\adsldpc.dll - ok
18:05:35.0460 0x0c48 [ F6BB843AFC93AEE9E928CFE4BB5B743C, 82AFF0865BF7292CCC862F18FB19A8A1D4408C7468402C4536BC560D8C3176ED ] C:\Windows\System32\LldpNotify.dll
18:05:35.0460 0x0c48 C:\Windows\System32\LldpNotify.dll - ok
18:05:35.0460 0x0c48 [ 55A07D76F345CD44070890FFC693BEF6, 0CDD712CD1EC6D6ED9F9505948BDA17F099BFC4BB80157C395FC95975F852CFD ] C:\Windows\System32\spoolss.dll
18:05:35.0460 0x0c48 C:\Windows\System32\spoolss.dll - ok
18:05:35.0476 0x0c48 [ E8DF2DAD385DAAB92D55AD1332538F5A, 44893ADD7FA4B496EE51FACE04B1FD6DBC147AE88EE8006CEE55DA795D2ADC36 ] C:\Windows\System32\FXSMON.dll
18:05:35.0476 0x0c48 C:\Windows\System32\FXSMON.dll - ok
18:05:35.0491 0x0c48 [ D2600D5000CFD439AA791E56BD763AD8, EBFFAA88744F2E1BBC148976D9DF6C933C88FC84D46B728D5552883DD740E580 ] C:\Windows\System32\pdfcmnnt.dll
18:05:35.0491 0x0c48 C:\Windows\System32\pdfcmnnt.dll - ok
18:05:35.0491 0x0c48 [ 7D8902670720152867617016CE940ED8, 476AF47041B60B961321A052FC43A0252041D29D1AECF964646DC900218791F4 ] C:\Windows\System32\PrintIsolationProxy.dll
18:05:35.0491 0x0c48 C:\Windows\System32\PrintIsolationProxy.dll - ok
18:05:35.0507 0x0c48 [ 11A9C08F39F929B0D04FEE7C743CE8D9, 7EAA4CC06E5F63D81609DADA3A7135C1199E20FE02B89A6BCA60B1A67CE71268 ] C:\Windows\System32\adsldp.dll
18:05:35.0507 0x0c48 C:\Windows\System32\adsldp.dll - ok
18:05:35.0507 0x0c48 [ AF56A8936DF2F7031D4311C81D065CE9, 788E138D579E71616AB3E10AF0959674BF59165505FB031795D71BAD0213198E ] C:\Windows\System32\tcpipcfg.dll
18:05:35.0507 0x0c48 C:\Windows\System32\tcpipcfg.dll - ok
18:05:35.0523 0x0c48 [ 1ACFB845970106D77B57D7176429A811, 3D6D7743C85D95E63E59B418B5AF3CCA83C9DE0B8A95F284F99EB6B5DAF3A212 ] C:\Windows\System32\wbem\WmiPrvSD.dll
18:05:35.0523 0x0c48 C:\Windows\System32\wbem\WmiPrvSD.dll - ok
18:05:35.0523 0x0c48 [ AF5A41782DBD2010497851B8E955BD2A, ECC6908FF5501D2A0D99005CEBDC3BB43D9AFC0005A459322AE26AE09D42424F ] C:\Windows\System32\tcpmon.dll
18:05:35.0523 0x0c48 C:\Windows\System32\tcpmon.dll - ok
18:05:35.0538 0x0c48 [ 85EBAAA913E187B65FB5B47EA36FA306, 57B20E164248A04BF117892E30F4303806E9C2C3E424B7F2FF17D3A9DF78E487 ] C:\Windows\System32\snmpapi.dll
18:05:35.0538 0x0c48 C:\Windows\System32\snmpapi.dll - ok
18:05:35.0554 0x0c48 [ ADB778A085E71B9835F3FA776878184B, 4CC4EACB11BC70B35A123D5995251255215420C5BDB56785847FA7D1F1604065 ] C:\Windows\System32\wsnmp32.dll
18:05:35.0554 0x0c48 C:\Windows\System32\wsnmp32.dll - ok
18:05:35.0554 0x0c48 [ CA118D3D37F5975B8613DB7E4079BB59, 3C8B553461FB92426E4D203ED42EA80DBC79867CE6E90C39B988089B2BDF51EB ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System\22ec5ef7e68231f7589fdc57aa925444\System.ni.dll
18:05:35.0554 0x0c48 C:\Windows\assembly\NativeImages_v2.0.50727_64\System\22ec5ef7e68231f7589fdc57aa925444\System.ni.dll - ok
18:05:35.0570 0x0c48 [ BE611E28DD9AF75A6B904B55F5D6E6C3, F871BDA796B9F216B58AD1723712CB34040A6A177E111BDC3520A975FFF2EF7E ] C:\Windows\System32\usbmon.dll
18:05:35.0570 0x0c48 C:\Windows\System32\usbmon.dll - ok
18:05:35.0570 0x0c48 [ 54482D83FF8501A46BB0B349FED0DAEB, 3506E8039D63F737F6858E1E63EBBC669EE19F2B6B6EC033E89F3BE05A0231D1 ] C:\Windows\System32\ncobjapi.dll
18:05:35.0570 0x0c48 C:\Windows\System32\ncobjapi.dll - ok
18:05:35.0585 0x0c48 [ E09A3A37634A2F23A2184839BC31FD54, 2F0B854F09A92760CB1443E7DDEFF64DA4AE1E2A7EE1639814E92CE6D29E9A96 ] C:\Windows\System32\wshbth.dll
18:05:35.0585 0x0c48 C:\Windows\System32\wshbth.dll - ok
18:05:35.0585 0x0c48 [ B852BB8E1D0902064346A09A7B32FC17, 26FFA667560B01945406C98735858EA159194D00AB03F035E245716C0CBA0283 ] C:\Windows\System32\WSDMon.dll
18:05:35.0585 0x0c48 C:\Windows\System32\WSDMon.dll - ok
18:05:35.0601 0x0c48 [ E296B0D7842DD5478605B6C86573E52F, D03A634475192424ECC266301E36E47DF3632A5BA075DC449BB9DC8B4F3CEAE1 ] C:\Windows\System32\wbem\wbemess.dll
18:05:35.0601 0x0c48 C:\Windows\System32\wbem\wbemess.dll - ok
18:05:35.0601 0x0c48 [ 96486A251B78FFBD9C559C78054BAD59, 05DE8DB2F8F23033DBA66DC377EB54364123E2CD4DDFB1D0628F3A1F8FB8AA29 ] C:\Windows\System32\WSDApi.dll
18:05:35.0601 0x0c48 C:\Windows\System32\WSDApi.dll - ok
18:05:35.0616 0x0c48 [ 47E892006A6155BE617F526E02CA09DD, 3528CF57B1506DD2277B8C0301C68AA489F83FDDF33DB38F620C55C38488C0A2 ] C:\Windows\System32\fundisc.dll
18:05:35.0616 0x0c48 C:\Windows\System32\fundisc.dll - ok
18:05:35.0632 0x0c48 [ 768B5A538A11E9C6F8EDD9AFDFA16936, 6CBFA8E69BB3CE9148C141EE060D5DE88C08F964C1E21EF2F2A825E10ADD47FB ] C:\Windows\System32\winrnr.dll
18:05:35.0632 0x0c48 C:\Windows\System32\winrnr.dll - ok
18:05:35.0632 0x0c48 [ CA4FAFFA957C71C006B59E29DFE3EB8B, 2144DD4B49D61CFB49A52439BE8F76AE9468A101627287B11328370B00A22C44 ] C:\Windows\System32\pnrpnsp.dll
18:05:35.0632 0x0c48 C:\Windows\System32\pnrpnsp.dll - ok
18:05:35.0648 0x0c48 [ 509192E80BF34E985C4D277A8FFF2893, C0FFAC035C24DCDD0C945CD95265ED14604937A199AB453891AEE6BD36544833 ] C:\Windows\System32\webservices.dll
18:05:35.0648 0x0c48 C:\Windows\System32\webservices.dll - ok
18:05:35.0648 0x0c48 [ 149FEE067A002D75B7714C300D019C9E, CA50C77FEF5B87228266437B9439B8FDB479D8B2E95768C3ABE98D4A9E47B544 ] C:\Windows\System32\NapiNSP.dll
18:05:35.0648 0x0c48 C:\Windows\System32\NapiNSP.dll - ok
18:05:35.0663 0x0c48 [ 5E6EC5FE2AD328A8AC3249F230E2B65A, F2D7263C727F96EF1D63CCE4FDE76F893848061A2968F6C3C9F2B2FE16B84FA3 ] C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPCenter.exe
18:05:35.0663 0x0c48 C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPCenter.exe - ok
18:05:35.0679 0x0c48 [ C5147A598A4FC93395065983DE7F54E0, 719BCFC9799C03780CA232D397D312B50432E345E528ED66D9CD8A855F83642A ] C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPApi.dll
18:05:35.0679 0x0c48 C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPApi.dll - ok
18:05:35.0679 0x0c48 [ 9B850CD20E994E7DF9ADD6102976AA1B, 370FB61D7E214771F0067A8FC7830696006EDBE15F4FC18F4763C17ABF3F1349 ] C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPStrike.dll
18:05:35.0679 0x0c48 C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPStrike.dll - ok
18:05:35.0695 0x0c48 [ E24FCC199F4AD27289ACEC15D8A6740C, 84AA1777D751ED135FED09DEF227F25FFB5547AFA2D53300167CCBC05564FAE7 ] C:\Windows\System32\fdPnp.dll
18:05:35.0695 0x0c48 C:\Windows\System32\fdPnp.dll - ok
18:05:35.0695 0x0c48 [ A6B742C6B8CF9A37E0EF470DF890F74B, 5A48F3734AEC1BDE85374774DDBE18576E84ABD8C9D3D468AAC8787EF5DDD2C1 ] C:\Windows\System32\drvstore.dll
18:05:35.0695 0x0c48 C:\Windows\System32\drvstore.dll - ok
18:05:35.0710 0x0c48 [ B6191C2187460A0568A9F510188DE2ED, 2F948A82E885FD9E78FAEE152A79C05B8B64305D1EDACA8C5A2B6618F6FFBF46 ] C:\Windows\System32\wbem\wbemprox.dll
18:05:35.0710 0x0c48 C:\Windows\System32\wbem\wbemprox.dll - ok
18:05:35.0726 0x0c48 [ D1CA3C8C5DC6DC357CE4C08F0BCC1EEE, C15346A5C57B541C4CC6552C40B65DB27902E7DA81A6C330612A4AEDA71ACA36 ] C:\Windows\System32\spool\prtprocs\x64\winprint.dll
18:05:35.0726 0x0c48 C:\Windows\System32\spool\prtprocs\x64\winprint.dll - ok
18:05:35.0726 0x0c48 [ 68423C8ABFBB20E739969F968702C9F5, 2222B85C26EB3419ABFCCF9A98D4B28F7B8FF93BF4D374A9A94F718CC1788277 ] C:\Windows\System32\printfilterpipelineprxy.dll
18:05:35.0726 0x0c48 C:\Windows\System32\printfilterpipelineprxy.dll - ok
18:05:35.0741 0x0c48 [ 93CF42531671EA4E24DA842B124FA269, 2962DB9EF279BA9DDC5F104B55472E58346D17D81D2816AB1DD84D4729088472 ] C:\Windows\System32\win32spl.dll
18:05:35.0741 0x0c48 C:\Windows\System32\win32spl.dll - ok
18:05:35.0741 0x0c48 [ 644F1A561B82F670A7A9A613FA8C462B, 9E322E21E59F8AE88AC52B5557D982EFEB0091C47DF3DCECC461013340B636EF ] C:\Windows\System32\inetpp.dll
18:05:35.0741 0x0c48 C:\Windows\System32\inetpp.dll - ok
18:05:35.0757 0x0c48 [ BEC5CED9217401E2D3C203FF6CA35B34, 2DC03692BB47916A974B16F64EA0E118AA336A2F438F6C4F06A41723A1143A56 ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.ServiceProce#\5bb21a23bc281dba92570c2bb7bb8d16\System.ServiceProcess.ni.dll
18:05:35.0757 0x0c48 C:\Windows\assembly\NativeImages_v2.0.50727_64\System.ServiceProce#\5bb21a23bc281dba92570c2bb7bb8d16\System.ServiceProcess.ni.dll - ok
18:05:35.0773 0x0c48 [ EB1E6129696EE881DE94F383BEE0B117, 5CB0EBDCB11E3B8434BD3CC0494E7A832361FD1A79D4010EB6F2BE8DD4E589C9 ] C:\Program Files\Lavasoft\Ad-Aware Antivirus\Antimalware Engine\2.6.0.0\bdcore.dll
18:05:35.0773 0x0c48 C:\Program Files\Lavasoft\Ad-Aware Antivirus\Antimalware Engine\2.6.0.0\bdcore.dll - ok
18:05:35.0773 0x0c48 [ 3C07AFE2FF3AEA0CAD2D6E92C1ACC114, 39E4840B95CE807F9C60DBA108438C4619ADE03BB11D9B89A969251430C97A7A ] C:\Program Files\Lavasoft\Ad-Aware Antivirus\Antimalware Engine\2.6.0.0\trufos.dll
18:05:35.0773 0x0c48 C:\Program Files\Lavasoft\Ad-Aware Antivirus\Antimalware Engine\2.6.0.0\trufos.dll - ok
18:05:35.0788 0x0c48 [ 0DAD891774444142208761733ED0700F, BD835B07018EA327093A6143D8E7338E651561F317B1409DBE149B22CA0BA033 ] C:\Program Files\Microsoft SQL Server\MSRS11.SQLEXPRESS\Reporting Services\ReportServer\bin\ReportingServicesNativeServer.dll
18:05:35.0788 0x0c48 C:\Program Files\Microsoft SQL Server\MSRS11.SQLEXPRESS\Reporting Services\ReportServer\bin\ReportingServicesNativeServer.dll - ok
18:05:35.0788 0x0c48 [ 3A4DE678E4E709C0794DA57C198AA7E3, 0BA37D0DB6D5D74E9B1D8EBC540C1ACD4A471386D683E5392360F06E06E60DE4 ] C:\Windows\System32\wbem\WmiPrvSE.exe
18:05:35.0788 0x0c48 C:\Windows\System32\wbem\WmiPrvSE.exe - ok
18:05:35.0804 0x0c48 [ 62BE346CAEEBCDC74B373F10131740B5, 9F8B8191706821A6D0E207CC8113670DE3AB4206859CEB7660F2249B87CF3050 ] C:\Windows\System32\fltLib.dll
18:05:35.0804 0x0c48 C:\Windows\System32\fltLib.dll - ok
18:05:35.0820 0x0c48 [ 0962DDEAAE4004837BB08132681FF5C0, F7C0045DDAF80A41E9633A29195D4990AF1BF7C5F58301BE5BA350ABB7522458 ] C:\Windows\WinSxS\amd64_microsoft.vc80.atl_1fc8b3b9a1e18e3b_8.0.50727.6229_none_8a167c0b2edeae4c\ATL80.dll
18:05:35.0820 0x0c48 C:\Windows\WinSxS\amd64_microsoft.vc80.atl_1fc8b3b9a1e18e3b_8.0.50727.6229_none_8a167c0b2edeae4c\ATL80.dll - ok
18:05:35.0820 0x0c48 [ D5747C16225B4C7B0D04511DB0407544, 413AC0BF02EE3E4B93784DAA6F29BA41E569948D4B3A41AA1AB7E06720EBEBD5 ] C:\Windows\System32\Drivers\Trufos.sys
18:05:35.0820 0x0c48 C:\Windows\System32\Drivers\Trufos.sys - ok
18:05:35.0835 0x0c48 [ 6B207E23E39D7A9B2E0F7EB85082E1A3, 99EA14C724F9602364645826A0B06641FB0997699C5F9A55E72E97A19055FA62 ] C:\Windows\WinSxS\amd64_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6910_none_88dc8c812fb1ba3f\msvcm80.dll
18:05:35.0835 0x0c48 C:\Windows\WinSxS\amd64_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6910_none_88dc8c812fb1ba3f\msvcm80.dll - ok
18:05:35.0835 0x0c48 [ EB0FC0A3A0CD213478A955F6DE09E3D6, 114A219A31E4FF1275C56055A32EBC057C41F9F3C7F9783590FCAC317F540AAE ] C:\Windows\System32\wbem\cimwin32.dll
18:05:35.0835 0x0c48 C:\Windows\System32\wbem\cimwin32.dll - ok
18:05:35.0851 0x0c48 [ 40B23288512BCEC4614848EBC56DF4E8, CD6B8C9C4801C7BCEB2121969030A1B2B16C5369703BEEA0319EAA765078D249 ] C:\Program Files\Microsoft SQL Server\MSRS11.SQLEXPRESS\Reporting Services\ReportServer\bin\ReportingServicesNativeClient.dll
18:05:35.0851 0x0c48 C:\Program Files\Microsoft SQL Server\MSRS11.SQLEXPRESS\Reporting Services\ReportServer\bin\ReportingServicesNativeClient.dll - ok
18:05:35.0866 0x0c48 [ 9913A96B7A27DF38A8AA3B2A949F4008, 26B3876F1F7E060CA4D3F01DB5D6B7A756CB341B77D00AC3534FDBA10749F134 ] C:\Windows\System32\framedynos.dll
18:05:35.0866 0x0c48 C:\Windows\System32\framedynos.dll - ok
18:05:35.0866 0x0c48 [ DDB2690A640079E3AD611E5C7AD834BD, 04393C46F058056C0F9ED85ACA8087A72B65857BE6F54B67FF469CA463F04125 ] C:\Windows\WinSxS\amd64_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6910_none_88dc8c812fb1ba3f\msvcp80.dll
18:05:35.0866 0x0c48 C:\Windows\WinSxS\amd64_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6910_none_88dc8c812fb1ba3f\msvcp80.dll - ok
18:05:35.0882 0x0c48 [ 203BEA6A8C2C2FA22A05C3FA9D01E222, 5E0E9D666AB10EE3E1FA4E202C975DC576981C2B2E700384704E77931A058363 ] C:\Windows\System32\wmi.dll
18:05:35.0882 0x0c48 C:\Windows\System32\wmi.dll - ok
18:05:35.0882 0x0c48 [ EF31BEB9CBC01EA8D7BD01697188F5E0, 9F3DF2156B2D95713F2D5A283181AE4C5300D3874A77F6F2EECD0A51093739A9 ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Xml\b6416bffcc5166d6abaa6529e3226e12\System.Xml.ni.dll
18:05:35.0882 0x0c48 C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Xml\b6416bffcc5166d6abaa6529e3226e12\System.Xml.ni.dll - ok
18:05:35.0898 0x0c48 [ 2D0941D65E6DCC446B2A0BACB3ADB57A, 83A289216D87DDAC49E916CE25C52612973B97F4AF5D8EE2E4FA482110DEAF49 ] C:\Program Files\Microsoft SQL Server\110\Shared\sqlboot.dll
18:05:35.0898 0x0c48 C:\Program Files\Microsoft SQL Server\110\Shared\sqlboot.dll - ok
18:05:35.0913 0x0c48 [ 99BB7A5E76592D891B31D17F9DA20B68, 9A1BC7D1A5E7A859888CFDB42FC3BC6714520F52E9D465FD0781B19EEF7C328C ] C:\Windows\System32\ntprint.dll
18:05:35.0913 0x0c48 C:\Windows\System32\ntprint.dll - ok
18:05:35.0913 0x0c48 [ 270030FDFF0E4020ADBCB67146FD154C, 40C47162ACE403758BA4B7B0F497FE0C3D77B933E567B9BBEE62D4D5EF6001E7 ] C:\Windows\System32\mscms.dll
18:05:35.0913 0x0c48 C:\Windows\System32\mscms.dll - ok
18:05:35.0929 0x0c48 [ 9E64D04072912FEDDC869218D21E83C5, BCD235A235D189BC8A6CFF1FB87926CEBA5325B4F224683976E232D9781C7EA1 ] C:\Windows\System32\spfileq.dll
18:05:35.0929 0x0c48 C:\Windows\System32\spfileq.dll - ok
18:05:35.0929 0x0c48 [ EC567C7422C61DC824522B3CE9221053, 0A6A07B8649EF0BAACD354953BE5F2A3C4D7AC5D24EB959019E4F570D5734675 ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Data\0027ec84c4a9e559055b908f6e279c4c\System.Data.ni.dll
18:05:35.0929 0x0c48 C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Data\0027ec84c4a9e559055b908f6e279c4c\System.Data.ni.dll - ok
18:05:35.0945 0x0c48 [ 9E435BA84F1D0E7A390418581882B330, 5E5F1A2244AB430EA9C741C9E87BAE1645AB7153D59C629E3893136E8C581DBA ] C:\Windows\System32\wbem\wmiprov.dll
18:05:35.0945 0x0c48 C:\Windows\System32\wbem\wmiprov.dll - ok
18:05:35.0960 0x0c48 [ FFBD302B058E2732246E7B365D99D73D, 469BE57307CC499F20D37A7D4B7097EED2C4B28AFE6D137AF215DF2364339D1C ] C:\Windows\System32\smbwmiv2.dll
18:05:35.0960 0x0c48 C:\Windows\System32\smbwmiv2.dll - ok
18:05:35.0960 0x0c48 [ 5E94D0BAFC05422F05528C44DA164FD5, 1144D0F4F5076444607CD8927C4AA36AF22EE63A26B5AB9A9E623EECA61DED1C ] C:\Windows\System32\wmitomi.dll
18:05:35.0960 0x0c48 C:\Windows\System32\wmitomi.dll - ok
18:05:35.0976 0x0c48 [ 9CBB1B96CF309000C3ABBFC12464D74D, 7DF2D56612825AD4E86B85AB830E288B32DD27BFEAFF5831656F17856DCC001D ] C:\Windows\assembly\GAC_64\System.Data\2.0.0.0__b77a5c561934e089\System.Data.dll
18:05:35.0976 0x0c48 C:\Windows\assembly\GAC_64\System.Data\2.0.0.0__b77a5c561934e089\System.Data.dll - ok
18:05:35.0976 0x0c48 [ 1B9219AA50413B2FF1E20885BB94F0BE, 90F853C0D00986263BF2A0E9D1D7219B03E455C041CE15B0EA5E96B0A844FE4D ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Configuration\70c1a1896024746c4032e72bece65273\System.Configuration.ni.dll
18:05:35.0976 0x0c48 C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Configuration\70c1a1896024746c4032e72bece65273\System.Configuration.ni.dll - ok
18:05:35.0991 0x0c48 [ D50B8AC8D504DD9FBD636974238AA3FF, 05743739AFCF4258358788EB591A2A6DD7B6FE10B936F7B0BF93ABE050C34C6A ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Transactions\d5d208f0e1a433203178e14fba2fbdab\System.Transactions.ni.dll
18:05:35.0991 0x0c48 C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Transactions\d5d208f0e1a433203178e14fba2fbdab\System.Transactions.ni.dll - ok
18:05:36.0007 0x0c48 [ 51187F2413CDB487542290E046B6378E, E5435609622A944E1D2FEB157A20EEFE86ECAE19C3089C2A6DAE703C1BEFF89A ] C:\Windows\System32\twinapi.dll
18:05:36.0007 0x0c48 C:\Windows\System32\twinapi.dll - ok
18:05:36.0007 0x0c48 [ 05B1D09454ACA804B286964CCF556E04, 9260881DDD6EA48C8CB1EFC360B6A6FD9568E611FBBA0027D2AF45D95F407CF2 ] C:\Windows\assembly\GAC_64\System.Transactions\2.0.0.0__b77a5c561934e089\System.Transactions.dll
18:05:36.0007 0x0c48 C:\Windows\assembly\GAC_64\System.Transactions\2.0.0.0__b77a5c561934e089\System.Transactions.dll - ok
18:05:36.0023 0x0c48 [ 66C87DB880052104808507D6FA84D68E, 46BD5C16225B3D0BF786FDA6461CE9A549DAA9FA38C8BDADAA0AF08FA6A24260 ] C:\Program Files\Common Files\microsoft shared\OFFICE14\MSOXMLMF.DLL
18:05:36.0023 0x0c48 C:\Program Files\Common Files\microsoft shared\OFFICE14\MSOXMLMF.DLL - ok
18:05:36.0038 0x0c48 [ 19736F4213E5F16F894891CB08A70FE0, C747A891900BBC3DAAE77282C92BE5D76FC5ADCB95906D35A8CA0D3D6C77414C ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.EnterpriseSe#\39ff906f6c3e2eccbb9ba3e04bc53635\System.EnterpriseServices.ni.dll
18:05:36.0038 0x0c48 C:\Windows\assembly\NativeImages_v2.0.50727_64\System.EnterpriseSe#\39ff906f6c3e2eccbb9ba3e04bc53635\System.EnterpriseServices.ni.dll - ok
18:05:36.0038 0x0c48 [ 7F81942E5269D4079BC77A60E2A08A24, 4F6B134FA47417F58908370C06688FBAB0ABBC00A371A42197518E118C89D7A4 ] C:\Windows\System32\dlnashext.dll
18:05:36.0038 0x0c48 C:\Windows\System32\dlnashext.dll - ok
18:05:36.0054 0x0c48 [ 8A6D92C24314304292B2F4D8408E1933, 5D6D262CD440F0DE4BCA61C6CC34089AA6A2F58F5263D6F1A5D16BCFD6B551D0 ] C:\Program Files\Microsoft SQL Server\90\Shared\instapi.dll
18:05:36.0054 0x0c48 C:\Program Files\Microsoft SQL Server\90\Shared\instapi.dll - ok
18:05:36.0054 0x0c48 [ 22841396DDA983B3FE9B9B1A39213105, 6A30B7F88B284B231CA55D960860F14CF48D2F37776E0F0697E7B07EB7B349FD ] C:\Windows\System32\Windows.Media.Streaming.dll
18:05:36.0054 0x0c48 C:\Windows\System32\Windows.Media.Streaming.dll - ok
18:05:36.0070 0x0c48 [ 450C63A37684A98F3868C67FCDA579E0, 4154A4EE05729AAA9C2FAB42EBDA9FB0D7B26319B0392E611B476C1D0476A601 ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Web\7aa1105a077734556a5962c119bb03b2\System.Web.ni.dll
18:05:36.0070 0x0c48 C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Web\7aa1105a077734556a5962c119bb03b2\System.Web.ni.dll - ok
18:05:36.0085 0x0c48 [ 15DBD0AA04E8D5110A368DEF2E0B907D, 611D53CC4FAC869EF24C26B634525727D6E9C4411153821FF0F9DE05BB7C59ED ] C:\Windows\assembly\GAC_64\Microsoft.SqlServer.MgdSqlDumper\11.0.0.0__89845dcd8080cc91\microsoft.sqlserver.mgdsqldumper.dll
18:05:36.0085 0x0c48 C:\Windows\assembly\GAC_64\Microsoft.SqlServer.MgdSqlDumper\11.0.0.0__89845dcd8080cc91\microsoft.sqlserver.mgdsqldumper.dll - ok
18:05:36.0085 0x0c48 [ 50361572A98348A6E780FFE231B55D49, A903DFBA8BC9A1D696396A5158327268B1C5975AF1755BED28650A4A6526E7D7 ] C:\Windows\System32\DevDispItemProvider.dll
18:05:36.0085 0x0c48 C:\Windows\System32\DevDispItemProvider.dll - ok
18:05:36.0101 0x0c48 [ A6302FCEB4495D9EE7BB94A597081C94, FABE4E115EE578DE8867BC0C25FE661A4EA07ED7CAD4D858C318C88D13223F04 ] C:\Windows\assembly\GAC_64\System.EnterpriseServices\2.0.0.0__b03f5f7f11d50a3a\System.EnterpriseServices.dll
18:05:36.0101 0x0c48 C:\Windows\assembly\GAC_64\System.EnterpriseServices\2.0.0.0__b03f5f7f11d50a3a\System.EnterpriseServices.dll - ok
18:05:36.0101 0x0c48 [ 0162FF86E799F25BAFE532194975A11F, 7DD5B29FFC1ED0A15889338EB424B4FCCFE92AEBE585D099E4E258A97AA9E5A5 ] C:\Windows\assembly\GAC_64\System.Web\2.0.0.0__b03f5f7f11d50a3a\System.Web.dll
18:05:36.0101 0x0c48 C:\Windows\assembly\GAC_64\System.Web\2.0.0.0__b03f5f7f11d50a3a\System.Web.dll - ok
18:05:36.0116 0x0c48 [ A8CD8C8FF9B97D91D2B84A1F914C555F, 53956D7D5C5286D74F6C8C026543AB8FA09CC1E88FB7EF7E5EF2585871D97D36 ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.DirectorySer#\4c4b1bb13416d65ddeb2423cb589701b\System.DirectoryServices.ni.dll
18:05:36.0116 0x0c48 C:\Windows\assembly\NativeImages_v2.0.50727_64\System.DirectorySer#\4c4b1bb13416d65ddeb2423cb589701b\System.DirectoryServices.ni.dll - ok
18:05:36.0132 0x0c48 [ 282191A781E23B9CB50BF7652A5F511C, 70299AE38C41D7793C30D998C91EF1A8AF428CD576DC742C1AE0E963ED744951 ] C:\Windows\System32\httpapi.dll
18:05:36.0132 0x0c48 C:\Windows\System32\httpapi.dll - ok
18:05:36.0132 0x0c48 [ F7FE8684ADE6E144F6BCDA556B6907E7, DC7CF70482A83FADE7862FF840F3615E22AAA4851C6E38CFE44CAF0A0625A96F ] C:\Windows\System32\dafupnp.dll
18:05:36.0132 0x0c48 C:\Windows\System32\dafupnp.dll - ok
18:05:36.0148 0x0c48 [ F6F1B55FC775E6F096AD400030E9D0B8, A49A0EE8DD53DB8040B46116B55FF0013597B7A1C7DD28AACA124A1BC0F25281 ] C:\Windows\System32\dimsjob.dll
18:05:36.0148 0x0c48 C:\Windows\System32\dimsjob.dll - ok
18:05:36.0148 0x0c48 [ F4991C8C070C86082E6F0597F73E02D0, C39F47D2D4525BB4950827F1EDB92CCF5067267AA1AAEF7137E45482C1436D97 ] C:\Program Files\Microsoft SQL Server\MSSQL11.SQLEXPRESS\MSSQL\Binn\fdlauncher.exe
18:05:36.0148 0x0c48 C:\Program Files\Microsoft SQL Server\MSSQL11.SQLEXPRESS\MSSQL\Binn\fdlauncher.exe - ok
18:05:36.0163 0x0c48 [ 4F750B7EFCB6520AE01E01D082D7D476, AD2A67D727A1D4DD0BBACC6B4BB432FA9A14D50D8BA292B95A4747CEC9F85728 ] C:\Windows\System32\appinfo.dll
18:05:36.0163 0x0c48 C:\Windows\System32\appinfo.dll - ok
18:05:36.0163 0x0c48 [ 79FA9393C67EBBF92A56923592CF7A7C, A8AB8A6346B97B68810CC632F425085BE9E63ACAED0F119A7BFD03F2DA4AA5F6 ] C:\Windows\System32\netprofmsvc.dll
18:05:36.0163 0x0c48 C:\Windows\System32\netprofmsvc.dll - ok
18:05:36.0179 0x0c48 [ 8BC1C1ED6EF9C985A3FAA6A72F41679A, 82CC77030D23013572B4A64A64B6156789F253BF56268B790093CE3D345410A0 ] C:\Windows\System32\svsvc.dll
18:05:36.0179 0x0c48 C:\Windows\System32\svsvc.dll - ok
18:05:36.0195 0x0c48 [ 3013658A4D327854BEEC4A08D9655194, C4CF5AA6A47CC55E7037B0BFE20AE0A6442ADDC5DEB89D6861C98C61851FA821 ] C:\Windows\System32\wpdbusenum.dll
18:05:36.0195 0x0c48 C:\Windows\System32\wpdbusenum.dll - ok
18:05:36.0195 0x0c48 [ 7A20882D76D4A78240A5AC9F2C2EBA21, ACA05211EE542999A118BBD2CD051038A7DC8C40C4B8971DC6514BA90E90EC61 ] C:\Windows\System32\ssdpsrv.dll
18:05:36.0195 0x0c48 C:\Windows\System32\ssdpsrv.dll - ok
18:05:36.0210 0x0c48 [ 240FC332484572227CD1DF82407F33E5, 5210549EC519DD3BCA6BBC995F01E1E3E0988580797E4BD1433F429E0CB30412 ] C:\Windows\System32\wdi.dll
18:05:36.0210 0x0c48 C:\Windows\System32\wdi.dll - ok
18:05:36.0210 0x0c48 [ 8383D48F0A55703A613C339EF586C6AA, E1D8BCB2E1BD3AA2233973EA7947AC2DD07A39863950190E91C0D54F4B04C03A ] C:\Windows\System32\fmifs.dll
18:05:36.0210 0x0c48 C:\Windows\System32\fmifs.dll - ok
18:05:36.0226 0x0c48 [ 5F70EBFC1F75B487DE79501E3CCBDB54, 2FCA57BF60A43B03BB42FBF22BBFC19AD2266FBBD818494AD114125E6E433321 ] C:\Windows\System32\wersvc.dll
18:05:36.0226 0x0c48 C:\Windows\System32\wersvc.dll - ok
18:05:36.0226 0x0c48 [ 541EE228D0DEF392F7B2DFD885DD021B, 594D6538FA4DB5EF4D130007D7C29051EC2EDCA39EBB119695B58E9CBB0EB728 ] C:\Windows\System32\termsrv.dll
18:05:36.0226 0x0c48 C:\Windows\System32\termsrv.dll - ok
18:05:36.0241 0x0c48 [ 26D38C1391CD81ADDD791DE136E2FEA7, 56B794F554E223FC4D0827652B84AAC28106DBCE2BF33D83AF1AE2BEDCB6C3FD ] C:\Windows\System32\npmproxy.dll
18:05:36.0241 0x0c48 C:\Windows\System32\npmproxy.dll - ok
18:05:36.0257 0x0c48 [ FDC88E3FA6AC8B41B39555E524C67E24, 14A9C3F49AE9917F0B3C54A5BEBCB0EA65BDFACF896BC8870DAC25464C58ECE8 ] C:\Windows\System32\ulib.dll
18:05:36.0257 0x0c48 C:\Windows\System32\ulib.dll - ok
18:05:36.0257 0x0c48 [ 54A59A152C795E4FD51FB247841F57D6, 07DD8A9E518E52A1826399A5DA280F5A523301E6DC3ACFDE1533E1438A1F3C9C ] C:\Windows\System32\diagperf.dll
18:05:36.0257 0x0c48 C:\Windows\System32\diagperf.dll - ok
18:05:36.0273 0x0c48 [ 335C4488A14AC4B52B3E1CDF6D6F7780, E5DAF500A18952F9D64116A8025B19E34B18CCE4C1069D8505253FE64932E153 ] C:\Windows\System32\hnetcfg.dll
18:05:36.0273 0x0c48 C:\Windows\System32\hnetcfg.dll - ok
18:05:36.0273 0x0c48 [ D1A04DC07552A12553D64404CDBAB3A1, CD6765C36FAF2E7DC61A869B6CB164448C6765F34A70437B9F0B54FD5A617F26 ] C:\Windows\System32\perftrack.dll
18:05:36.0273 0x0c48 C:\Windows\System32\perftrack.dll - ok
18:05:36.0288 0x0c48 [ 93718105EF305B97599193683EA5F5C7, ED3E9B31C2DDCDF9CA7858D8D5C5C2CB9F029B521316506A25F1F7428D65DB69 ] C:\Windows\System32\ifsutil.dll
18:05:36.0288 0x0c48 C:\Windows\System32\ifsutil.dll - ok
18:05:36.0288 0x0c48 [ 558B1181FC4CA2F235AE6C83523DB2D7, 936BA1898AA02AA2AC417BD9AFDEED143B2D2CF4D94EE7ED8737E4EC5BC04200 ] C:\Windows\System32\lsmproxy.dll
18:05:36.0288 0x0c48 C:\Windows\System32\lsmproxy.dll - ok
18:05:36.0304 0x0c48 [ 0F57DEA30340B49B06DCB8B077BEF072, B48D794036B68C9E2F2AFBC0D2B2A848445CBE3A325E07010FD70DC9285F4D54 ] C:\Windows\System32\PortableDeviceConnectApi.dll
18:05:36.0304 0x0c48 C:\Windows\System32\PortableDeviceConnectApi.dll - ok
18:05:36.0320 0x0c48 [ 5DB2F714220F200601ACD12515371383, 33C9932D4E775BC01987E6740CD976065816A5260EC7A807E6F09BBF6FAAF581 ] C:\Windows\System32\vmbuspipe.dll
18:05:36.0320 0x0c48 C:\Windows\System32\vmbuspipe.dll - ok
18:05:36.0320 0x0c48 [ 4F5052B97884A6050F328AEB288B2536, 22FCE9BB3AE393DB820989B3AC308CD5B3A5887D4AE8A01300F091B74ED41CF6 ] C:\Windows\System32\regapi.dll
18:05:36.0320 0x0c48 C:\Windows\System32\regapi.dll - ok
18:05:36.0335 0x0c48 [ BA2BA6F87720AB2486C0E5D84C6E5ED1, 90762D98CA57497BF8BB9AEA05447A53A05F968C03316749498647F65158E5A9 ] C:\Windows\System32\wpdshext.dll
18:05:36.0335 0x0c48 C:\Windows\System32\wpdshext.dll - ok
18:05:36.0335 0x0c48 [ 57F4787E4602A3FCA719C0A33137C6DA, D03AE59A184EB5D126F8EAB9D36EE406ABB8B9ED834F2D2496DDB1349FF56F89 ] C:\Windows\System32\Drivers\rdpvideominiport.sys
18:05:36.0335 0x0c48 C:\Windows\System32\Drivers\rdpvideominiport.sys - ok
18:05:36.0351 0x0c48 [ F5233F04307E67BA79622704FF17859C, 3C0008953B6829655C99E567F1903876B6EB6A820722E22B6E63ABFC2E26B212 ] C:\Windows\System32\rdpcorets.dll
18:05:36.0351 0x0c48 C:\Windows\System32\rdpcorets.dll - ok
18:05:36.0351 0x0c48 [ 7417B004B5BD4B9EC1140890131CD41D, 717212F4628B211803BCA98FF8936DE242127FB94278D5C6CCE9AA309A5C1594 ] C:\Windows\System32\pnpts.dll
18:05:36.0351 0x0c48 C:\Windows\System32\pnpts.dll - ok
18:05:36.0366 0x0c48 [ 855E7E347893BDB93245120E137577FB, 893EB173BFA795EDA7211228AFDEE3B74948E458A88BFAEA028EAEDE2D379417 ] C:\Windows\System32\radardt.dll
18:05:36.0366 0x0c48 C:\Windows\System32\radardt.dll - ok
18:05:36.0382 0x0c48 [ AF708314151C5C1613193687C2D6CF54, C1C5A893F7EDA8D1117078DC8FBDB74ABB46E362CB517A3DFD61D88D20E311C1 ] C:\Program Files\Microsoft SQL Server\MSSQL11.SQLEXPRESS\MSSQL\Binn\fdhost.exe
18:05:36.0382 0x0c48 C:\Program Files\Microsoft SQL Server\MSSQL11.SQLEXPRESS\MSSQL\Binn\fdhost.exe - ok
18:05:36.0382 0x0c48 [ 46CC344A94F7C6AAE35724A5CFCB8609, CAC461252C25FA712995B990871C1FC092647C0EC19315977503CDB6811754F9 ] C:\Windows\System32\untfs.dll
18:05:36.0382 0x0c48 C:\Windows\System32\untfs.dll - ok
18:05:36.0398 0x0c48 [ 789422243073568AE49BC1FC3A3D964C, B77F4E1847B3021CFEE2C93B5A7E705895DDEEA4369AD3FDB602DBFD9E4A08D1 ] C:\Windows\System32\lpksetupproxyserv.dll
18:05:36.0398 0x0c48 C:\Windows\System32\lpksetupproxyserv.dll - ok
18:05:36.0398 0x0c48 [ 899EEAEF7E3423A4BB08298EBE771298, C84295178505D8DF2FA9C88BDDA101DA811694502C36E8DA7BE1AC88242E8034 ] C:\Program Files\Microsoft SQL Server\MSSQL11.SQLEXPRESS\MSSQL\Binn\fd.dll
18:05:36.0398 0x0c48 C:\Program Files\Microsoft SQL Server\MSSQL11.SQLEXPRESS\MSSQL\Binn\fd.dll - ok
18:05:36.0413 0x0c48 [ CC5512FC3FCCEA164F01592B5979F1BE, E06EA0DDB51EA49775FD102382719700142D124F102F221AB790C9B70A662B94 ] C:\Windows\System32\srumsvc.dll
18:05:36.0413 0x0c48 C:\Windows\System32\srumsvc.dll - ok
18:05:36.0413 0x0c48 [ 8411147754C00B3B096C5C0ED95B3CFC, 8FBE93CBCAECDB7CC05F41B68140668EEA08A0165484DACE6E7CD8EF933BA709 ] C:\Windows\System32\runonce.exe
18:05:36.0413 0x0c48 C:\Windows\System32\runonce.exe - ok
18:05:36.0429 0x0c48 [ 94C17410F8A3E6BD1B1AF59539D2437E, B96076DE4903A081CA572D442C8091ED5FBCCA3FEC917F200924CB16D2A7615E ] C:\Windows\System32\d3d9.dll
18:05:36.0429 0x0c48 C:\Windows\System32\d3d9.dll - ok
18:05:36.0445 0x0c48 [ 0D477C50E1C3BC82E2A75A3AD990527B, 063E3F566230C4DD202007A0952F884C2F7DF0686B9D417DB4BA96A536CB3CF3 ] C:\Windows\System32\rfxvmt.dll
18:05:36.0445 0x0c48 C:\Windows\System32\rfxvmt.dll - ok
18:05:36.0445 0x0c48 [ E16F1A42A7088B49405A5A2136888A6C, 66087923715141DB6220E5B80C3CDD94299265349734DB3839E278E088DC2EB3 ] C:\Windows\System32\tlscsp.dll
18:05:36.0445 0x0c48 C:\Windows\System32\tlscsp.dll - ok
18:05:36.0460 0x0c48 [ 8B5D475B48506471669B9B46945138B0, 88956FDA549DA91BFE914955450AAE973460BC72870EA3C76B0A0C370B2D3D83 ] C:\Windows\System32\wer.dll
18:05:36.0460 0x0c48 C:\Windows\System32\wer.dll - ok
18:05:36.0460 0x0c48 [ 0D97A065E85D59B8F0EE2BD31A679456, 63F2E92CEECDB48E865B44C95F47502E98156A94D52D8D9E520D8227BB8A8AFA ] C:\Windows\System32\wdiasqmmodule.dll
18:05:36.0460 0x0c48 C:\Windows\System32\wdiasqmmodule.dll - ok
18:05:36.0476 0x0c48 [ DFB8703836AF863A25FC55BF88176591, 8867EC026DE1CCD2C8A1D5305A1C9BD1A1F8E4A1566A85F0FDF186E68C9A4F6F ] C:\Windows\System32\shdocvw.dll
18:05:36.0476 0x0c48 C:\Windows\System32\shdocvw.dll - ok
18:05:36.0491 0x0c48 [ F0408DB6F94E3F0D5ED94B16C097A622, 5DF9FEABA1258882966C3FD59488F6CCDF5D6A1F153176C801C153DFB3CA47D4 ] C:\Windows\SysWOW64\runonce.exe
18:05:36.0491 0x0c48 C:\Windows\SysWOW64\runonce.exe - ok
18:05:36.0491 0x0c48 [ DD76E400F233BB4FEBC9FB36EF37B2BA, 92A733DE641F80810FCB0AC9BFE8109A62BB6263323EAF879293992DBB3D5358 ] C:\Windows\System32\ifsutilx.dll
18:05:36.0491 0x0c48 C:\Windows\System32\ifsutilx.dll - ok
18:05:36.0507 0x0c48 [ 829562D41F5359BCA0ABC9DBE51B8723, 62ED1EBCD2636219C0BDD3F78895D69B486CAF40E86BA726988623886BD12B07 ] C:\Windows\System32\umb.dll
18:05:36.0507 0x0c48 C:\Windows\System32\umb.dll - ok
18:05:36.0507 0x0c48 [ 8ABBB5CE0C62E0A6D28F32F44B7F865C, 4C78FE2A4A25A758D5191C4EDB2A6FE691FF82E7C16C0F146DC96DAD87D4F64E ] C:\Windows\servicing\TrustedInstaller.exe
18:05:36.0507 0x0c48 C:\Windows\servicing\TrustedInstaller.exe - ok
18:05:36.0523 0x0c48 [ 53A3DE22A97A40469FC6AEB54A151A61, ECE86E8A88DE3A06EBDA73D8945DDA04DF9A94A0C8F949C9C3E1C3D2355CA526 ] C:\Windows\System32\atl100.dll
18:05:36.0523 0x0c48 C:\Windows\System32\atl100.dll - ok
18:05:36.0523 0x0c48 [ A924FCAA92481C04AC821AFFA49E87EA, 8FF34B0EE9B29A979A225B919131B077E045822056E4917554E5977997330105 ] C:\Program Files\Microsoft SQL Server\MSSQL11.SQLEXPRESS\MSSQL\Binn\query.dll
18:05:36.0523 0x0c48 C:\Program Files\Microsoft SQL Server\MSSQL11.SQLEXPRESS\MSSQL\Binn\query.dll - ok
18:05:36.0538 0x0c48 [ C01F3A9A0EC8F24F74EDA33B57DED08E, 2953D7DE24027A677EA056678FC86961C87D9B7C13B1CC4BED11C3718D3E9B7F ] C:\Program Files\Microsoft SQL Server\MSSQL11.SQLEXPRESS\MSSQL\Binn\sqlft110ph.dll
18:05:36.0538 0x0c48 C:\Program Files\Microsoft SQL Server\MSSQL11.SQLEXPRESS\MSSQL\Binn\sqlft110ph.dll - ok
18:05:36.0554 0x0c48 [ 7D2DF7A146A8E7EA1D9E11DCB368C21C, 01B7FB8177ADB8C98CEA024D0543F669A4D9D157BBC63D743040341E3AE32E85 ] C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPHelper.exe
18:05:36.0554 0x0c48 C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPHelper.exe - ok
18:05:36.0554 0x0c48 [ 2D7BB53EA2BB3F213CE558A79EC8448D, B1BF16715C45329B184D0B0DADBB078EE08EF33FCB10C815909F96EBA004C8BA ] C:\Windows\System32\nduprov.dll
18:05:36.0554 0x0c48 C:\Windows\System32\nduprov.dll - ok
18:05:36.0570 0x0c48 [ D0A82052050909677C648B2496C0909E, 52F3FA666A33CBF1622084D8B894A8E280FC30948AC7191661491D860DEF1E87 ] C:\Windows\System32\wpnsruprov.dll
18:05:36.0570 0x0c48 C:\Windows\System32\wpnsruprov.dll - ok
18:05:36.0570 0x0c48 [ 660C8E78B94F483E44B0243A774A4746, 690A9069F19050E0C85DBACD38FA9FB19272C07ADB55D78907468E6C1F613DBE ] C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL
18:05:36.0570 0x0c48 C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL - ok
18:05:36.0585 0x0c48 [ 9E2E7FE5237CFE3A0529B54C53021CA0, 0FF7EDCB907C08BF1A9422A8EC93F82D93D3A1AED2A1CA05450AB7113F580153 ] C:\Windows\System32\appsruprov.dll
18:05:36.0585 0x0c48 C:\Windows\System32\appsruprov.dll - ok
18:05:36.0585 0x0c48 [ D0C69E44BC1E1D4AD290FD84104623D8, 4C86760EA4BD2A64FFD42D89284EC3E5048CB2F0F6F3B80D017B41C0D2456A90 ] C:\Windows\System32\VSSVC.exe
18:05:36.0585 0x0c48 C:\Windows\System32\VSSVC.exe - ok
18:05:36.0601 0x0c48 [ 71697EDF104E5EACD75822E588FA8149, AEC6646D74CD1419D252017CF3FDD36B63E7EC12BF7A793C0AA1A023E94CAF23 ] C:\Windows\System32\energyprov.dll
18:05:36.0601 0x0c48 C:\Windows\System32\energyprov.dll - ok
18:05:36.0601 0x0c48 [ 27A11B538671C09604698302F4A01C63, 5095B36FA8F0C70AB6DCBDE0BE6157B7B276CA97D685DD8ADFA77C2030B4B9A0 ] C:\Windows\servicing\CbsApi.dll
18:05:36.0601 0x0c48 C:\Windows\servicing\CbsApi.dll - ok
18:05:36.0617 0x0c48 [ AE03E9CBFFB8EDE81B3DA7603E546F56, F8DEB21B67CBD41D0BB8BD8B772C6546D21876CACAFB04ACE807E29E1123CFC5 ] C:\Windows\System32\srumapi.dll
18:05:36.0617 0x0c48 C:\Windows\System32\srumapi.dll - ok
18:05:36.0632 0x0c48 [ 5544F876B3932D3D6ED67656B28228CF, F5B9588544E44B2EF6FB953E70AB85EEE6C2D263B08DD11AEC1D10837BDC6602 ] C:\Windows\System32\consent.exe
18:05:36.0632 0x0c48 C:\Windows\System32\consent.exe - ok
18:05:36.0632 0x0c48 [ D4906F341F79C601A4C9D964351C3ED3, 925E6374C53676CF61FA49735DF32DD62717C1660A78A35EF288FD10C6B91D82 ] C:\Windows\System32\HelpPaneProxy.dll
18:05:36.0632 0x0c48 C:\Windows\System32\HelpPaneProxy.dll - ok
18:05:36.0648 0x0c48 [ 8163A95309A122B67F72EE9A233087C0, 36CCFBEA95A2467C345DE2B210786B0CC91570419E484E00F5222722BDBC1F3B ] C:\Windows\System32\virtdisk.dll
18:05:36.0648 0x0c48 C:\Windows\System32\virtdisk.dll - ok
18:05:36.0648 0x0c48 [ D9B3A28A03758E411CCA14B71E9846E7, EA0C181D11C8BC43854155629D41DDD294F9F33734D3A5BED7ED8962D387994F ] C:\Windows\System32\vss_ps.dll
18:05:36.0648 0x0c48 C:\Windows\System32\vss_ps.dll - ok
18:05:36.0663 0x0c48 [ F6B1C6E075B902D80391E3FDA5B4527C, B4D515E329D1A5F7FB23A1803C1A58D3AF8566AE4887EE4F7E5487D9156241E0 ] C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_6.2.9200.16683_none_62280e15510f8e79\TiWorker.exe
18:05:36.0663 0x0c48 C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_6.2.9200.16683_none_62280e15510f8e79\TiWorker.exe - ok
18:05:36.0679 0x0c48 [ 152D6B80651B36ADA8A188B3EB0CB5D5, A32E29E26D7FABD37F05AC223D99757D8BEFD884F01AFD42EEC85538655AADF9 ] C:\Windows\System32\catsrvut.dll
18:05:36.0679 0x0c48 C:\Windows\System32\catsrvut.dll - ok
18:05:36.0679 0x0c48 [ 411DDCA777AD2B481EB117F782D223DB, AE2D8619F9564F56BCD7601D101F2C977D356E8D2D2695C38ED4E94DA2613E49 ] C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_6.2.9200.16683_none_62280e15510f8e79\wdscore.dll
18:05:36.0679 0x0c48 C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_6.2.9200.16683_none_62280e15510f8e79\wdscore.dll - ok
18:05:36.0695 0x0c48 [ 874C8B1317C58FFE62D4D6AA591EABE2, A928241B03B0106F57625C78811EBD65262A695401E921C1425AB6596D5DC202 ] C:\Windows\WinSxS\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6871_none_50944e7cbcb706e5\msvcp90.dll
18:05:36.0695 0x0c48 C:\Windows\WinSxS\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6871_none_50944e7cbcb706e5\msvcp90.dll - ok
18:05:36.0695 0x0c48 [ 5991EDF56238F45FC867CC4458504B19, 036F2A3DF91761E93B04E0D86C1CD15117F2D6BC0FA010EA8A718CA7CED68BCE ] C:\Windows\System32\mfcsubs.dll
18:05:36.0695 0x0c48 C:\Windows\System32\mfcsubs.dll - ok
18:05:36.0710 0x0c48 [ B2A3AD74FF2E2FFA73AF2567108231B3, DF8CEA6215F75C634D56F6B8AE11ECCEEB5F8CBC091AC3D6D9F7DE214B00A439 ] C:\Windows\System32\Drivers\rdpdr.sys
18:05:36.0710 0x0c48 C:\Windows\System32\Drivers\rdpdr.sys - ok
18:05:36.0726 0x0c48 [ DB0C938BC311B31CF90C13821AE682B3, CA8344D63EA0F3249EC33529FE1A833942872D22E453DEE9C40889F22A771D48 ] C:\Program Files (x86)\ASUS\ASUS Live Update\LiveUpdate.exe
18:05:36.0726 0x0c48 C:\Program Files (x86)\ASUS\ASUS Live Update\LiveUpdate.exe - ok
18:05:36.0726 0x0c48 [ 9624CE257C5EE8DB3295DBB584733BBB, 5C5B68560A92A1C837A41154208B388219F486A6233A5EC5F9B19E5B62C2C1CA ] C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_6.2.9200.16683_none_62280e15510f8e79\CbsCore.dll
18:05:36.0726 0x0c48 C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_6.2.9200.16683_none_62280e15510f8e79\CbsCore.dll - ok
18:05:36.0742 0x0c48 [ 502F9488540051F3E6C39889ECFA76BB, 22ABD681BE4CF8A1F484C6363C1334B1EF7A6C074D837B0121DE1896887B84C6 ] C:\Windows\System32\swprv.dll
18:05:36.0742 0x0c48 C:\Windows\System32\swprv.dll - ok
18:05:36.0742 0x0c48 [ 43FEFB040A0CC30F795FBF544169594D, F2A730C0F7C883321C378D4564120A40428D7F8E393F02C8D6A08934795A35C7 ] C:\Windows\System32\umrdp.dll
18:05:36.0742 0x0c48 C:\Windows\System32\umrdp.dll - ok
18:05:36.0757 0x0c48 [ 58A14C45A5CD2528F10A889E7B0C3FC2, 81521B27F6DE4F2451C5441DFA93781B6687EE8F9AE62A8FE76D61DE7965E6EF ] C:\Windows\WinSxS\x86_microsoft.vc90.atl_1fc8b3b9a1e18e3b_9.0.30729.6161_none_51cd0a7abbe4e19b\ATL90.dll
18:05:36.0757 0x0c48 C:\Windows\WinSxS\x86_microsoft.vc90.atl_1fc8b3b9a1e18e3b_9.0.30729.6161_none_51cd0a7abbe4e19b\ATL90.dll - ok
18:05:36.0773 0x0c48 [ CB60A60340788C8D6DE2A269D28086AB, 2D8948E59BB9B00E16D20E425F80E7B862957DBAC9A4D1484E5191FAF333B60D ] C:\Windows\System32\SessEnv.dll
18:05:36.0773 0x0c48 C:\Windows\System32\SessEnv.dll - ok
18:05:36.0773 0x0c48 [ 883D87AA9D3C15C3D57B11BABC180B4E, D1AAC11A9D4145F9DB01386D1B5D048CF052171FFF52AF083288677974F31A0F ] C:\PROGRA~2\COMMON~1\MICROS~1\OFFICE14\Cultures\OFFICE.ODF
18:05:36.0773 0x0c48 C:\PROGRA~2\COMMON~1\MICROS~1\OFFICE14\Cultures\OFFICE.ODF - ok
18:05:36.0788 0x0c48 [ 814C7EC050E3BACD1B81802D1CC6E8C6, 9E143632B936EDDD9ED0817B5DCCDF83FEA38D8DB5D0B781309834EEBBA7AF7E ] C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_6.2.9200.16683_none_62280e15510f8e79\msdelta.dll
18:05:36.0788 0x0c48 C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_6.2.9200.16683_none_62280e15510f8e79\msdelta.dll - ok
18:05:36.0804 0x0c48 [ 32C4A0FE36F7D245B49C2A56AB5D0703, 4F099D49558D07BA464C1276D9EFFE5CDDF5A1C7043F5217B05D1977CDF57952 ] C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_6.2.9200.16683_none_62280e15510f8e79\wcp.dll
18:05:36.0804 0x0c48 C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_6.2.9200.16683_none_62280e15510f8e79\wcp.dll - ok
18:05:36.0804 0x0c48 [ 2837C8A01729407765CBCD4EC0645063, DDFF421808DE5F4DD5CA5FAE6B914673E45C8357667AD69C2D7B5575E844087F ] C:\Windows\SysWOW64\mscoree.dll
18:05:36.0804 0x0c48 C:\Windows\SysWOW64\mscoree.dll - ok
18:05:36.0820 0x0c48 [ 6D0329DFDE4429A0CBCEC4237636DD32, 0D4C73F0E6C8233C80E6BDE2E56C8235F49EFECF620D3AE4B8FD4DB263A65744 ] C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_6.2.9200.16683_none_62280e15510f8e79\DrUpdate.dll
18:05:36.0820 0x0c48 C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_6.2.9200.16683_none_62280e15510f8e79\DrUpdate.dll - ok
18:05:36.0820 0x0c48 [ 5996C79FB52BDE3FA10F77396654AE42, 910D521315B83BB0D805EACEAC3C83169AA791D1D1E64B417077C01AE21FEB66 ] C:\Windows\SysWOW64\cmd.exe
18:05:36.0820 0x0c48 C:\Windows\SysWOW64\cmd.exe - ok
18:05:36.0835 0x0c48 [ 0C611C45EAF33CB6CDB793AB12053D33, C938AD94E4A39F44CCDF286AF27ABDA079AE4D333ED0D7984729E0C6618FED05 ] C:\Windows\SysWOW64\icm32.dll
18:05:36.0835 0x0c48 C:\Windows\SysWOW64\icm32.dll - ok
18:05:36.0835 0x0c48 [ A069FB34FDEECB7F17BA2B44A3E67966, 626944DB512B10CF16F285A7423A6AB3BA4CDE9035A513C9CD4FBAD088F3CB19 ] C:\Windows\System32\srclient.dll
18:05:36.0835 0x0c48 C:\Windows\System32\srclient.dll - ok
18:05:36.0851 0x0c48 [ 4D7CACEB878FA78458541617DB25667A, C42472E6B89A657C7CFC705725D3F4B45ECC8AE504E5F5A6DADC3AF3E331CEDE ] C:\Windows\System32\spp.dll
18:05:36.0851 0x0c48 C:\Windows\System32\spp.dll - ok
18:05:36.0867 0x0c48 [ 534E6B1B0A662E2896F8B5C5899D651F, 6642F6D2042CBD3C0FF4417EDB79F19BAE8AAC43188D3187AC20B085D412EEF5 ] C:\Windows\System32\SensApi.dll
18:05:36.0867 0x0c48 C:\Windows\System32\SensApi.dll - ok
18:05:36.0867 0x0c48 [ 06ADA73672F6773457BF165FD9849462, 79CA6B939419D2886DAD79637C4D836E4BD882B6AB866C401732B1A5C32667A2 ] C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscoreei.dll
18:05:36.0867 0x0c48 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscoreei.dll - ok
18:05:36.0882 0x0c48 [ F2E12B5B7EEDE6854104E5AF8AC841A8, 733DD36D212A4793475F917E92755290CFE3942D1751CFC60A94B223F88043EE ] C:\Windows\SysWOW64\cmdext.dll
18:05:36.0882 0x0c48 C:\Windows\SysWOW64\cmdext.dll - ok
18:05:36.0882 0x0c48 [ 942C929DC72DF1C18C8387249F1448F3, 0C6D7AF01BCE4DBEC273D04B87A342C5F20B6F393F56A898A78A0E2CC3DCF1CB ] C:\Windows\SysWOW64\sti.dll
18:05:36.0882 0x0c48 C:\Windows\SysWOW64\sti.dll - ok
18:05:36.0898 0x0c48 [ 42946DF60DA82E1350AB6D636AE19B3D, 950A9DAA685614975BE4A788FEF0D7E87C3F1FDF5D3FEA923F034C91C38BE3CE ] C:\Windows\SysWOW64\shdocvw.dll
18:05:36.0898 0x0c48 C:\Windows\SysWOW64\shdocvw.dll - ok
18:05:36.0898 0x0c48 [ A2418204EBFA6F41DE3DF2FBB46B7F3F, 18BF0FDF8EF215F73C5ED7E13ED8D0C662BA1313FB9928545A2BC50AC88B719B ] C:\Windows\System32\pcacli.dll
18:05:36.0898 0x0c48 C:\Windows\System32\pcacli.dll - ok
18:05:36.0913 0x0c48 [ B7CFDB21D7E98B462EB1AF3112F9293C, 5550C3B3DB370397B7435AC9BC2C9441517951DE2E7E7B3FCA073FCA60F7CBD2 ] C:\Windows\SysWOW64\ncrypt.dll
18:05:36.0913 0x0c48 C:\Windows\SysWOW64\ncrypt.dll - ok
18:05:36.0929 0x0c48 [ 10EB888ED897F031B9BFAC5867F5B290, D77BE722C98557737D4CEB4F6D6AD688EBD1F761ED9F32CA038C39D08CCE94D1 ] C:\Windows\SysWOW64\bcrypt.dll
18:05:36.0929 0x0c48 C:\Windows\SysWOW64\bcrypt.dll - ok
18:05:36.0929 0x0c48 [ D12DE9350321CF21238FCA4ED76B12A7, CBD5849728671E7998AE9BCDA6E521EF8F21F1D0F7CDFA2BCB30D49F1F92C4A8 ] C:\Windows\SysWOW64\ntasn1.dll
18:05:36.0929 0x0c48 C:\Windows\SysWOW64\ntasn1.dll - ok
18:05:36.0945 0x0c48 [ D97ED8735E58E646D64C96AF1E2999DB, EE2D85E77CAB8A20198841C716E9538C803A78CC9560A096A0D9579DC099C213 ] C:\Windows\SysWOW64\gpapi.dll
18:05:36.0945 0x0c48 C:\Windows\SysWOW64\gpapi.dll - ok
18:05:36.0945 0x0c48 [ 259AF6E8D5E3E28B8299FAA65473FB62, 456BD19ADA5C1BE6E764E91E1A23B063946A1D11BA2FB9E391578C1A047E53D6 ] C:\Windows\Microsoft.NET\Framework\v4.0.30319\clr.dll
18:05:36.0945 0x0c48 C:\Windows\Microsoft.NET\Framework\v4.0.30319\clr.dll - ok
18:05:36.0960 0x0c48 [ A50E9F5111BFB5451750F1A66DFC088B, DA9763B85C5CA2F3B1035D7FB275DED0E9D7122711AF5FA145A26497D5C707F6 ] C:\Windows\SysWOW64\cryptnet.dll
18:05:36.0960 0x0c48 C:\Windows\SysWOW64\cryptnet.dll - ok
18:05:36.0976 0x0c48 [ 1496430C99C30396065A0A7050D9C7B6, B6FE3AA6FD681FB137B18ADDE907D3C1836FA9881DA54F5F884F83B5D60BB535 ] C:\Windows\SysWOW64\Wldap32.dll
18:05:36.0976 0x0c48 C:\Windows\SysWOW64\Wldap32.dll - ok
18:05:36.0976 0x0c48 [ 956B6ACA4EFF31046403F0DD6235332E, B6D3F5375A7131E33D6D9EE0C73198BF7EAD4F198D86FFF2BB7B658330D8AE90 ] C:\Windows\SysWOW64\msvcr110_clr0400.dll
18:05:36.0976 0x0c48 C:\Windows\SysWOW64\msvcr110_clr0400.dll - ok
18:05:36.0992 0x0c48 [ 5BBFFBB4E84EA80B941DF0CF59A595BB, 45858A6E360BA1A79B67D629DFF8DE271624722A956DCBC7D499827239DCB3E4 ] C:\Windows\SysWOW64\twinapi.dll
18:05:36.0992 0x0c48 C:\Windows\SysWOW64\twinapi.dll - ok
18:05:36.0992 0x0c48 [ E5AA5FCA529FB3FD88D2C3EB38BBD899, F4DE4CB0FAE7BF7D5166BFB632B36EC8DEAC88A9FD4095D8225DBA8352FEB1C3 ] C:\Windows\SysWOW64\WindowsCodecs.dll
18:05:36.0992 0x0c48 C:\Windows\SysWOW64\WindowsCodecs.dll - ok
18:05:37.0007 0x0c48 [ 38671530B05BCC631BAEC684DB324080, 289FB65DD63E729BC9C2D8D647661EA2AF050BC5CBC1F1C771C788311B8A53F5 ] C:\Windows\SysWOW64\thumbcache.dll
18:05:37.0007 0x0c48 C:\Windows\SysWOW64\thumbcache.dll - ok
18:05:37.0007 0x0c48 [ 3092D5259BF618DEF83DD2A61A506FBE, BB9EB5A9A4C0B4B2184B3EE6CF99FB8D536CCEA6C850C13391C4A56525C33E00 ] C:\Windows\assembly\NativeImages_v4.0.30319_64\WindowsBase\958209d0b9f802336a517a990942cb53\WindowsBase.ni.dll
18:05:37.0007 0x0c48 C:\Windows\assembly\NativeImages_v4.0.30319_64\WindowsBase\958209d0b9f802336a517a990942cb53\WindowsBase.ni.dll - ok
18:05:37.0023 0x0c48 [ 2637AF9412187AA132A92702AEE92839, 3A38427622F782D7AE224E1E10C4E8B0C7B80DAF259223F578C078C301D09E2E ] C:\Windows\assembly\NativeImages_v4.0.30319_64\PresentationCore\fdce3fb951596585c85af1dbfa4ee762\PresentationCore.ni.dll
18:05:37.0023 0x0c48 C:\Windows\assembly\NativeImages_v4.0.30319_64\PresentationCore\fdce3fb951596585c85af1dbfa4ee762\PresentationCore.ni.dll - ok
18:05:37.0038 0x0c48 [ 6D0DA12F4B87AF812283E684A5F9B68E, FECCCD12E70536525CA5C80F165A22D46F89F6A7BB48254BC62B0A06ED5FDB7E ] C:\Windows\assembly\NativeImages_v4.0.30319_64\Presentatio5ae0f00f#\da265fecd29488a92406b318cbb75b3d\PresentationFramework.ni.dll
18:05:37.0038 0x0c48 C:\Windows\assembly\NativeImages_v4.0.30319_64\Presentatio5ae0f00f#\da265fecd29488a92406b318cbb75b3d\PresentationFramework.ni.dll - ok
18:05:37.0038 0x0c48 [ 244D2DB683B026C22B7E3C0BF12070DE, 46C5C35F991A414D6E4F6DEFF7E9204A4B5D7D3F5CFA439AC62A037C4881499A ] C:\Windows\assembly\NativeImages_v4.0.30319_64\System.Xaml\168436448f309e554334f2002fafbc16\System.Xaml.ni.dll
18:05:37.0038 0x0c48 C:\Windows\assembly\NativeImages_v4.0.30319_64\System.Xaml\168436448f309e554334f2002fafbc16\System.Xaml.ni.dll - ok
18:05:37.0054 0x0c48 [ 3CF6F418BF0BDB5450058030277D34AE, 8B05989FC6EF8C002DF2DDCCACEAABB85387BFE6743541994D73AC9D10F565CB ] C:\Windows\Microsoft.NET\Framework64\v4.0.30319\WPF\wpfgfx_v0400.dll
18:05:37.0054 0x0c48 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\WPF\wpfgfx_v0400.dll - ok
18:05:37.0070 0x0c48 [ B15CD492707C3D719B1B435D8F6E2F2E, 06421CABC387A30D272D97AF4DC032C15239920DB949891E7C0989D2BB499DCD ] C:\Windows\Microsoft.NET\Framework64\v4.0.30319\WPF\PresentationNative_v0400.dll
18:05:37.0070 0x0c48 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\WPF\PresentationNative_v0400.dll - ok
18:05:37.0070 0x0c48 [ C9544EAC56620B464297382D03E92EAF, 966259D54A11BD34D9CE37F055CBDFFB35F55A579DAD941B617AB94892AE4DD9 ] C:\Windows\assembly\NativeImages_v4.0.30319_64\System.Xml\8d35ec2b45fd2eaccdf8fa8b7bee1adf\System.Xml.ni.dll
18:05:37.0070 0x0c48 C:\Windows\assembly\NativeImages_v4.0.30319_64\System.Xml\8d35ec2b45fd2eaccdf8fa8b7bee1adf\System.Xml.ni.dll - ok
18:05:37.0085 0x0c48 [ E9D519EAA9034BE321E6DC03ECB97212, B9E213AEAAADF0C653F118D116AF70AD54B86845811B675F6A348C5E7C7DBDA7 ] C:\Windows\assembly\NativeImages_v4.0.30319_64\System.Configuration\7c42b91ec0ddf9b0c7bb847fc93e837b\System.Configuration.ni.dll
18:05:37.0085 0x0c48 C:\Windows\assembly\NativeImages_v4.0.30319_64\System.Configuration\7c42b91ec0ddf9b0c7bb847fc93e837b\System.Configuration.ni.dll - ok
18:05:37.0085 0x0c48 [ F473BF4D049E5BE0DCC8FC76E2426863, F87F6D87210168928E6D21CC93FAF058D8BFF0B5AFB9AEFC5006AB940911CAB3 ] C:\Windows\assembly\NativeImages_v4.0.30319_32\mscorlib\045c9588954c3662d542b53f4462268b\mscorlib.ni.dll
18:05:37.0085 0x0c48 C:\Windows\assembly\NativeImages_v4.0.30319_32\mscorlib\045c9588954c3662d542b53f4462268b\mscorlib.ni.dll - ok
18:05:37.0101 0x0c48 [ D0D3846F09A8783F3F07AFC29CC3AEF4, 0352DEFE90F846B9B959FB1690F0B1466608A59C21C03E16598C67DEE6A93C2B ] C:\Windows\System32\WindowsCodecsExt.dll
18:05:37.0101 0x0c48 C:\Windows\System32\WindowsCodecsExt.dll - ok
18:05:37.0101 0x0c48 [ B996429B04D53946FD8DBA5326B18AE7, F0A24B9F1ACC0A347D14634318C3DB7DFBE8C248460BE29F5048A2A54204F45E ] C:\Windows\System32\icm32.dll
18:05:37.0101 0x0c48 C:\Windows\System32\icm32.dll - ok
18:05:37.0117 0x0c48 [ 793A57FC4271C861BA5EAB753ABD5C79, 025E698655C2F4336A6EE9F6CBE9C727B9C9FA0F97D56FC2FEE3098707A388E0 ] C:\Windows\assembly\NativeImages_v4.0.30319_64\Presentatioaec034ca#\a394ce6b961a5028c35c814033734703\PresentationFramework.Aero2.ni.dll
18:05:37.0117 0x0c48 C:\Windows\assembly\NativeImages_v4.0.30319_64\Presentatioaec034ca#\a394ce6b961a5028c35c814033734703\PresentationFramework.Aero2.ni.dll - ok
18:05:37.0132 0x0c48 [ 658D47097D3C3D06E6CB7674AF83C3E2, 48E43B644C81C1271F2E435F688AF9FC154A80B56A3B11234415108896B3383F ] C:\Windows\Microsoft.NET\Framework64\v4.0.30319\WPF\PenIMC.dll
18:05:37.0132 0x0c48 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\WPF\PenIMC.dll - ok
18:05:37.0132 0x0c48 [ 97B5F3B86FAF838B3F49ED1052F16645, 29CA9F05A15DAD8FA03A56432D6DA6EED26998D5EE84BD106B8882D7530C8EEC ] C:\Windows\System32\wisp.dll
18:05:37.0132 0x0c48 C:\Windows\System32\wisp.dll - ok
18:05:37.0148 0x0c48 [ 25D93B37B2AFFAAF7B2C76EE9F0EC7DF, CC2DC4A34CA9D4B21585C0E2BA6DB9717AFC6F96B3A8BFBA74DABA24DD113C2E ] C:\Program Files\Common Files\microsoft shared\ink\tpcps.dll
18:05:37.0148 0x0c48 C:\Program Files\Common Files\microsoft shared\ink\tpcps.dll - ok
18:05:37.0163 0x0c48 [ 04DCECDDC153CDEC63E874F6715B495C, 71388C2B0A321472A6B2BD0FF9C40BA60F13BE03735BFD6C7574125BEF71D281 ] C:\Program Files\ASUS\ASUS VivoBook\ASUSTouchPadControl.dll
18:05:37.0163 0x0c48 C:\Program Files\ASUS\ASUS VivoBook\ASUSTouchPadControl.dll - ok
18:05:37.0163 0x0c48 [ 739DA86BE552DB4AD26F822463221436, E002D37E112C3F55E5F304EBF81A6B71FF1F7231A83DEB26F73CF7FBBF6DA7A3 ] C:\Program Files\ASUS\ASUS VivoBook\ASUSMaxxAudioControl.dll
18:05:37.0163 0x0c48 C:\Program Files\ASUS\ASUS VivoBook\ASUSMaxxAudioControl.dll - ok
18:05:37.0179 0x0c48 [ 737A93B7E4A2C708A1B58784186DB20F, C16F5001649B6A09F2536DC62FC6E2D5C6F62EA39185AFBFC05575659FA43409 ] C:\Program Files\McAfeeEx\Update\mcupd.exe
18:05:37.0179 0x0c48 C:\Program Files\McAfeeEx\Update\mcupd.exe - ok
18:05:37.0179 0x0c48 [ 3F0F15C238F458ED549F283F570A979E, 195BE079DF64B8DCBF3E6E3ACE2F805EED37E66289842F42E8C9728BAC074E5B ] C:\Windows\assembly\NativeImages_v4.0.30319_32\System\79f6324a598a7c4446a4a1168be7c4b1\System.ni.dll
18:05:37.0179 0x0c48 C:\Windows\assembly\NativeImages_v4.0.30319_32\System\79f6324a598a7c4446a4a1168be7c4b1\System.ni.dll - ok
18:05:37.0195 0x0c48 [ F37FFC1378D4D08DFD247842E2E55548, 4E0AFD9C83BC602488FE3D4F2CF4DA45D5DC9ACBEA479C67640358DB62610905 ] C:\Windows\assembly\NativeImages_v4.0.30319_32\WindowsBase\bc4a4f244f109fef7ac1d12f260d55a9\WindowsBase.ni.dll
18:05:37.0195 0x0c48 C:\Windows\assembly\NativeImages_v4.0.30319_32\WindowsBase\bc4a4f244f109fef7ac1d12f260d55a9\WindowsBase.ni.dll - ok
18:05:37.0210 0x0c48 [ F313FE4B66C6EC0312886201631008C3, 91835AAC50698C8D57E9220011EBD78C1C24077512C811FD62AD48B5D0A4DD38 ] C:\Windows\assembly\NativeImages_v4.0.30319_32\PresentationCore\82d9d43b18f5276208a21c3ba40ef0b5\PresentationCore.ni.dll
18:05:37.0210 0x0c48 C:\Windows\assembly\NativeImages_v4.0.30319_32\PresentationCore\82d9d43b18f5276208a21c3ba40ef0b5\PresentationCore.ni.dll - ok
18:05:37.0210 0x0c48 [ EB361C10F5BBC5F0304CB0317C50851E, A82611A41BB643D75D03C896649E3606565DFBC002296DA3B3DE1F675F97409B ] C:\Windows\assembly\NativeImages_v4.0.30319_32\Presentatio5ae0f00f#\f20c5eaca5a287b27d535362aaaa36e2\PresentationFramework.ni.dll
18:05:37.0210 0x0c48 C:\Windows\assembly\NativeImages_v4.0.30319_32\Presentatio5ae0f00f#\f20c5eaca5a287b27d535362aaaa36e2\PresentationFramework.ni.dll - ok
18:05:37.0226 0x0c48 [ E1F5ACD2E86DFC938AD781EC162B745D, 576B4326B5F4AE66BA92DE0B892492558AC5997CAB61AE0966AF2839AED57922 ] C:\Windows\System32\wbem\NCProv.dll
18:05:37.0226 0x0c48 C:\Windows\System32\wbem\NCProv.dll - ok
18:05:37.0242 0x0c48 [ 5593CF82E92072DC73F63F835083EDAF, 768706AB7FBA8B702C896D48DC0B16390DC6E4BDCE945478F0CE2745D9F0E3F2 ] C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Xaml\639f444db9491d25b5d158531e1f7d9b\System.Xaml.ni.dll
18:05:37.0242 0x0c48 C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Xaml\639f444db9491d25b5d158531e1f7d9b\System.Xaml.ni.dll - ok
18:05:37.0242 0x0c48 [ 7F4D44AF84186CD330E876747F648713, B44BB905D69B5D97757D8D73807DD55C1CC9F82335AC3D49DE907EFB99EF878E ] C:\Program Files\Lavasoft\Ad-Aware Antivirus\Antimalware Engine\2.6.0.0\bdardrv.dll
18:05:37.0242 0x0c48 C:\Program Files\Lavasoft\Ad-Aware Antivirus\Antimalware Engine\2.6.0.0\bdardrv.dll - ok
18:05:37.0257 0x0c48 [ 94162E0198A16FA874E8EE2D8B64B9E4, 9A4EC585A001789D72A4C7DE19339E766DAA8561BDC0FA68EE115319BA0622E7 ] C:\Program Files\Lavasoft\Ad-Aware Antivirus\Antispam Engine\2.3.29.0\AntispamThin.dll
18:05:37.0257 0x0c48 C:\Program Files\Lavasoft\Ad-Aware Antivirus\Antispam Engine\2.3.29.0\AntispamThin.dll - ok
18:05:37.0273 0x0c48 [ 9E2847FDB223870D5324C18208528051, 074FE81F66EADFA162E9B20A140486B34A3C2F7F30C70F9957B092748AD7BD93 ] C:\Program Files\Lavasoft\Ad-Aware Antivirus\Antispam Engine\2.3.29.0\ascore.dll
18:05:37.0273 0x0c48 C:\Program Files\Lavasoft\Ad-Aware Antivirus\Antispam Engine\2.3.29.0\ascore.dll - ok
18:05:37.0273 0x0c48 [ 35902594327E41D83EAA3D0B10FE58BF, B7C20C9010DE56163900CB3E094AC654AABF72E72124C5C840DDB21E4E0F1CDC ] C:\Program Files\Lavasoft\Ad-Aware Antivirus\Antispam Engine\2.3.29.0\asemlthin.mdl
18:05:37.0273 0x0c48 C:\Program Files\Lavasoft\Ad-Aware Antivirus\Antispam Engine\2.3.29.0\asemlthin.mdl - ok
18:05:37.0288 0x0c48 [ C6CCBB0D55E3CB643B005584A77D125F, 4F26654429D85301248A1254C6C8C3255CDD5E823BCCFD3B7ADB1EEDC2A38247 ] C:\Program Files\Lavasoft\Ad-Aware Antivirus\Antispam Engine\2.3.29.0\asunicode.dll
18:05:37.0288 0x0c48 C:\Program Files\Lavasoft\Ad-Aware Antivirus\Antispam Engine\2.3.29.0\asunicode.dll - ok
18:05:37.0288 0x0c48 [ A34AC5FBD1AC89D5C90D8A84DA7301FF, C5E2CA93DE1B4726183E6C438E8FAED64AF509EF4FCB7B95F6A601974A4948C2 ] C:\Program Files\Lavasoft\Ad-Aware Antivirus\Antispam Engine\2.3.29.0\asmcocr.dll
18:05:37.0288 0x0c48 C:\Program Files\Lavasoft\Ad-Aware Antivirus\Antispam Engine\2.3.29.0\asmcocr.dll - ok
18:05:37.0304 0x0c48 [ F6B5B7BD42EDEDEC0B47140932D5BA3D, EDC835BE2735F2474808FE494F94C0C960AA025FD0787C3F2BD580D02C37E9B8 ] C:\Program Files\Lavasoft\Ad-Aware Antivirus\Antispam Engine\2.3.29.0\asregex.dll
18:05:37.0304 0x0c48 C:\Program Files\Lavasoft\Ad-Aware Antivirus\Antispam Engine\2.3.29.0\asregex.dll - ok
18:05:37.0320 0x0c48 [ A08D61E251A67D9A68EEE34369646AFB, 985524A4EAC930D609423A8359055FF55EDE6CA7C956DE06932A0366958D1F14 ] C:\Program Files\Lavasoft\Ad-Aware Antivirus\Antispam Engine\2.3.29.0\mimepack.dll
18:05:37.0320 0x0c48 C:\Program Files\Lavasoft\Ad-Aware Antivirus\Antispam Engine\2.3.29.0\mimepack.dll - ok
18:05:37.0320 0x0c48 [ 6A428494CDD5CB4E9CFB98DEB4E71A64, 68AE03F9E381962FE5982D763D34765A44D3FFB683FE05A1585D15A3DEBF9FD3 ] C:\Program Files\Lavasoft\Ad-Aware Antivirus\Antispam Engine\2.3.29.0\bdnc.dll
18:05:37.0320 0x0c48 C:\Program Files\Lavasoft\Ad-Aware Antivirus\Antispam Engine\2.3.29.0\bdnc.dll - ok
18:05:37.0335 0x0c48 [ 5BAC84927F797025EAA34C20B8B04DF8, 7615694C3B75CEE5CCEC65061141C5BF37AC393FD45632ADE851F166524E893A ] C:\Program Files\Lavasoft\Ad-Aware Antivirus\Online Threats Engine\2.2.2.0\OnlineThreats.dll
18:05:37.0335 0x0c48 C:\Program Files\Lavasoft\Ad-Aware Antivirus\Online Threats Engine\2.2.2.0\OnlineThreats.dll - ok
18:05:37.0335 0x0c48 [ DD478D291F4F5BA99B16B15743095B67, 5F953A52BB702341EF33EC237F14CA25C0D448D1DE0C563F4E13204193D39A87 ] C:\Program Files\Lavasoft\Ad-Aware Antivirus\Online Threats Engine\2.2.2.0\otcore.dll
18:05:37.0335 0x0c48 C:\Program Files\Lavasoft\Ad-Aware Antivirus\Online Threats Engine\2.2.2.0\otcore.dll - ok
18:05:37.0351 0x0c48 [ B043479220F2C97B6CF06BBA31C3D24B, 13BDB217B092E32A32F72A18E011EE2146E60C2F592FF6F033AFAEF7C9A06320 ] C:\Program Files\Lavasoft\Ad-Aware Antivirus\Online Threats Engine\2.2.2.0\ashttpbr.mdl
18:05:37.0351 0x0c48 C:\Program Files\Lavasoft\Ad-Aware Antivirus\Online Threats Engine\2.2.2.0\ashttpbr.mdl - ok
18:05:37.0367 0x0c48 [ CDD757EBE882AC084D1C23256DAB512B, B1CC9CFD5566EEF986B45972D38125F362550EC8DF12CD60D04A2ED124778251 ] C:\Program Files\Lavasoft\Ad-Aware Antivirus\Online Threats Engine\2.2.2.0\ashttpdsp.mdl
18:05:37.0367 0x0c48 C:\Program Files\Lavasoft\Ad-Aware Antivirus\Online Threats Engine\2.2.2.0\ashttpdsp.mdl - ok
18:05:37.0367 0x0c48 [ DB8022363916A076E524BF9348638E60, 46819104B1E90A17AF0C8359098BCE6309BC4F1AA040BB4BDBC957B842A50597 ] C:\Program Files\Lavasoft\Ad-Aware Antivirus\Online Threats Engine\2.2.2.0\ashttpph.mdl
18:05:37.0367 0x0c48 C:\Program Files\Lavasoft\Ad-Aware Antivirus\Online Threats Engine\2.2.2.0\ashttpph.mdl - ok
18:05:37.0382 0x0c48 [ 51FFD0B1AD1151ED88A638EA06CE1EDE, A60E333A8EF4A86833544180FC4C540F56440314924414D9E318B777686DA20A ] C:\Program Files\Lavasoft\Ad-Aware Antivirus\Online Threats Engine\2.2.2.0\ashttprbl.mdl
18:05:37.0382 0x0c48 C:\Program Files\Lavasoft\Ad-Aware Antivirus\Online Threats Engine\2.2.2.0\ashttprbl.mdl - ok
18:05:37.0398 0x0c48 [ 4A9CCBB1E52DABD921838AB933A7F789, 1B6315CE3A6275B6BA9E7AD0503D1853CF696A0FC11DD33B5C0DEA54622D0831 ] C:\Program Files\Lavasoft\Ad-Aware Antivirus\Online Threats Engine\2.2.2.0\asunicode.dll
18:05:37.0398 0x0c48 C:\Program Files\Lavasoft\Ad-Aware Antivirus\Online Threats Engine\2.2.2.0\asunicode.dll - ok
18:05:37.0398 0x0c48 [ 944056922E8B98C77350829194D90842, BBE6A2D011F40880C9279CAB821D07BA7CBD15B9B63EEEF7E17F2ED67663D915 ] C:\Program Files\Lavasoft\Ad-Aware Antivirus\Online Threats Engine\2.2.2.0\asregex.dll
18:05:37.0398 0x0c48 C:\Program Files\Lavasoft\Ad-Aware Antivirus\Online Threats Engine\2.2.2.0\asregex.dll - ok
18:05:37.0413 0x0c48 [ 435123639E3DA3A90A58DD5030D0D220, 15A9A9804043B47FE3B9F06E838E59867A2F8DF3AF879CB53312F39CBDE2A9B8 ] C:\Windows\System32\bdnc.dll
18:05:37.0413 0x0c48 C:\Windows\System32\bdnc.dll - ok
18:05:37.0429 0x0c48 [ 1D3B239AA7111C11AB81E286772E8CC1, 24AA80FA019F17A975A70EB4B4A2FA37526EED680A06F39BF714310A4EA000F3 ] C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Drawing\c4477b3ce64d0d612d1ab0dba425b77f\System.Drawing.ni.dll
18:05:37.0429 0x0c48 C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Drawing\c4477b3ce64d0d612d1ab0dba425b77f\System.Drawing.ni.dll - ok
18:05:37.0429 0x0c48 [ 3717B71A1F2272651BE176951FC8E453, 7DA039EB417C787E2217C9C63B05444BB6B1EB8357CB9B026645914603BCB2E8 ] C:\Program Files\Lavasoft\Ad-Aware Antivirus\WebFiltering Engine\2.2.1.0\WebFiltering.dll
18:05:37.0429 0x0c48 C:\Program Files\Lavasoft\Ad-Aware Antivirus\WebFiltering Engine\2.2.1.0\WebFiltering.dll - ok
18:05:37.0445 0x0c48 [ 5F3F30EECC998A9CD3D679FA547DC5A5, 842AF62F18EFECF06CF053D768996D8FD250F22212F91464425DE72CD9338F80 ] C:\Program Files\Lavasoft\Ad-Aware Antivirus\WebFiltering Engine\2.2.1.0\wfcore.dll
18:05:37.0445 0x0c48 C:\Program Files\Lavasoft\Ad-Aware Antivirus\WebFiltering Engine\2.2.1.0\wfcore.dll - ok
18:05:37.0460 0x0c48 [ 3083025D0905A0B6C140F85B919D1FA9, 949535BC87FAA698FB68404BB0282A3F21928289405A726B38089B23C3B31634 ] C:\Program Files\Lavasoft\Ad-Aware Antivirus\WebFiltering Engine\2.2.1.0\ashttpbr.mdl
18:05:37.0460 0x0c48 C:\Program Files\Lavasoft\Ad-Aware Antivirus\WebFiltering Engine\2.2.1.0\ashttpbr.mdl - ok
18:05:37.0460 0x0c48 [ 1CFE07D40EE1AA0BDCEA73134A7D5AA8, 1101801BCD8543506B53DC9C90A98999F9425D0FFA2A41A580B9DB4FC2733254 ] C:\Program Files\Lavasoft\Ad-Aware Antivirus\WebFiltering Engine\2.2.1.0\ashttpdsp.mdl
18:05:37.0460 0x0c48 C:\Program Files\Lavasoft\Ad-Aware Antivirus\WebFiltering Engine\2.2.1.0\ashttpdsp.mdl - ok
18:05:37.0476 0x0c48 [ F2C627994EBDF024085F0DBAC7118FC1, 431F29BA16BDE66F5A6DCA5A5B951C9A4357F1E4932C198DF08C2A1EC8541244 ] C:\Program Files\Lavasoft\Ad-Aware Antivirus\WebFiltering Engine\2.2.1.0\ashttpf.mdl
18:05:37.0476 0x0c48 C:\Program Files\Lavasoft\Ad-Aware Antivirus\WebFiltering Engine\2.2.1.0\ashttpf.mdl - ok
18:05:37.0476 0x0c48 [ D44B929A21C29C709E275BCCD3EFFE30, 2EF33549BA45A2062440AA43FE4C5684D61FA17D9DCDA8DAA5B087901D639BDE ] C:\Program Files\Lavasoft\Ad-Aware Antivirus\WebFiltering Engine\2.2.1.0\ashttprbl.mdl
18:05:37.0476 0x0c48 C:\Program Files\Lavasoft\Ad-Aware Antivirus\WebFiltering Engine\2.2.1.0\ashttprbl.mdl - ok
18:05:37.0492 0x0c48 [ 853A3633D99C004A6EA16BB14770FC02, E752C4873D11125F2D9848F6C52FF4728940216EB80F4828DA74855BDA58F005 ] C:\Program Files\Lavasoft\Ad-Aware Antivirus\WebFiltering Engine\2.2.1.0\asunicode.dll
18:05:37.0492 0x0c48 C:\Program Files\Lavasoft\Ad-Aware Antivirus\WebFiltering Engine\2.2.1.0\asunicode.dll - ok
18:05:37.0507 0x0c48 [ 388BC32C98FBC0BEB54556924AF6F8EF, 549A2B0749CDB87741ECE39D490A50EA50E80273E92CE60E25F9C0314E87BF90 ] C:\Program Files\Lavasoft\Ad-Aware Antivirus\WebFiltering Engine\2.2.1.0\asregex.dll
18:05:37.0507 0x0c48 C:\Program Files\Lavasoft\Ad-Aware Antivirus\WebFiltering Engine\2.2.1.0\asregex.dll - ok
18:05:37.0507 0x0c48 [ FD4C613364F59BAAC59A2C4F5F0EE52B, 45AA6C336E2042D54605D66FCBD1BC0355914C0B4125F56D2E7B4FBB553B0AA2 ] C:\Windows\System32\httproxy.dll
18:05:37.0507 0x0c48 C:\Windows\System32\httproxy.dll - ok
18:05:37.0523 0x0c48 [ 5A60405B7D88A6B6DF933DCCE778DD99, 8154A117AB37675D991A98A44C35072C2EDC9D6DFD5DFCCBFEA1B989E48497D4 ] C:\Windows\System32\bdpredir.dll
18:05:37.0523 0x0c48 C:\Windows\System32\bdpredir.dll - ok
18:05:37.0538 0x0c48 [ 73D9B14B7C8621500675F8123043C864, BC05308A02630207002900030715F977BC4DA6A5353AFB09A36925B4C46FA9C0 ] C:\Windows\System32\bdpop3p.dll
18:05:37.0538 0x0c48 C:\Windows\System32\bdpop3p.dll - ok
18:05:37.0538 0x0c48 [ 4808A82876F8959EDBF3BC2FE516369F, 583EBBCB4FAF47A1AB645E513C00D2B2DF9B9D7BDFB371109141BE43708F54E2 ] C:\Program Files\Lavasoft\Ad-Aware Antivirus\Antimalware Engine\2.6.0.0\gzfltum.dll
18:05:37.0538 0x0c48 C:\Program Files\Lavasoft\Ad-Aware Antivirus\Antimalware Engine\2.6.0.0\gzfltum.dll - ok
18:05:37.0554 0x0c48 [ 07177B5A8C277074C30AC515FEBD4F37, A18B7A4491732D97884D0F95428563DE6EBCBB988C5595DA2C710DFDE733B096 ] C:\Program Files\Lavasoft\Ad-Aware Antivirus\Antimalware Engine\2.6.0.0\gzflt.sys
18:05:37.0554 0x0c48 C:\Program Files\Lavasoft\Ad-Aware Antivirus\Antimalware Engine\2.6.0.0\gzflt.sys - ok
18:05:37.0554 0x0c48 [ 06C273F458943CC5BD5066B4D2FB1978, F18193B9F11A53BB26D96CA621B21BEA229345C885C675F3938BE0EBED0445A5 ] C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Windows.Forms\f7baf2ee0ee33a4e00a592b86c1ec238\System.Windows.Forms.ni.dll
18:05:37.0554 0x0c48 C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Windows.Forms\f7baf2ee0ee33a4e00a592b86c1ec238\System.Windows.Forms.ni.dll - ok
18:05:37.0570 0x0c48 [ 5EFD801A12FB267405B24945012F5E1A, D4E5535FEC97DEF597E443C3CEFF70C5A8301C1DD4FE235F4B239C8B88446694 ] C:\Windows\System32\linkinfo.dll
18:05:37.0570 0x0c48 C:\Windows\System32\linkinfo.dll - ok
18:05:37.0585 0x0c48 [ 3213F234B8FC8D0869D50B98884EB5F4, 3F2E2A3AD819503D10D18E9620B4F29F7E1453FB9CDC5B96CB4F2928D52676D2 ] C:\Windows\SysWOW64\DWrite.dll
18:05:37.0585 0x0c48 C:\Windows\SysWOW64\DWrite.dll - ok
18:05:37.0585 0x0c48 [ 76C2A3B47FE220E027697CDEF63A72C9, 6C2ECAD3DEB1410E3AEE506EF23562DBCFBE4C3BB3CD5C3CE3A660FA24262F91 ] C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\wpfgfx_v0400.dll
18:05:37.0585 0x0c48 C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\wpfgfx_v0400.dll - ok
18:05:37.0601 0x0c48 [ BEDA0DCDD857D44926E031CD019FBF0F, 0A39158C67A786D18D470BEAC8A66814CE100AB61EA2637B85CF872A555AD59F ] C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\PresentationNative_v0400.dll
18:05:37.0601 0x0c48 C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\PresentationNative_v0400.dll - ok
18:05:37.0601 0x0c48 [ 562FB384A58BE53D4A5F5DF9B9592030, 738202E5995516AE8AC5B3C784F52B0428B00BB2F1F4D2633AC717540791579B ] C:\Windows\Microsoft.NET\Framework\v4.0.30319\clrjit.dll
18:05:37.0601 0x0c48 C:\Windows\Microsoft.NET\Framework\v4.0.30319\clrjit.dll - ok
18:05:37.0617 0x0c48 [ B727FC7782E1EB4A61601FD24E18037C, 1C75C2E268772A4EA18CF686087F45C1753FC68E13C779EBF97D93ABC1DE88D3 ] C:\Program Files (x86)\ASUS\ASUS Live Update\alvupdt.dll
18:05:37.0617 0x0c48 C:\Program Files (x86)\ASUS\ASUS Live Update\alvupdt.dll - ok
18:05:37.0617 0x0c48 [ 1F01E2357745C87A250C22640D138A30, 5F886C5FDE4D542289B46DFBE97EBB6EEF05146B83EA4D02A309ECC825AC4605 ] C:\Windows\System32\browcli.dll
18:05:37.0617 0x0c48 C:\Windows\System32\browcli.dll - ok
18:05:37.0632 0x0c48 [ 72FDF51B6F91401A97C3271180A46C39, 1CC8343A7FAA4D5460E7FF4107AF5FC3952EE443C882D06574FDD384BB5C45B3 ] C:\Program Files\Common Files\microsoft shared\ink\IpsPlugin.dll
18:05:37.0632 0x0c48 C:\Program Files\Common Files\microsoft shared\ink\IpsPlugin.dll - ok
18:05:37.0648 0x0c48 [ 9FDAA6957F04A6D1917463B7CBBEF88A, B34BB8213F1A019229289B16A5D53822470FDBC74A9DBBC518F58B3019598762 ] C:\Windows\System32\SearchIndexer.exe
18:05:37.0648 0x0c48 C:\Windows\System32\SearchIndexer.exe - ok
18:05:37.0648 0x0c48 [ 64C3C2FCFECC783279FBC51769673144, 4ACAC188E60A169EB0F9DC0A8F80B4CE55C603B601BEF40D30A94BFE1F093033 ] C:\Windows\System32\tquery.dll
18:05:37.0648 0x0c48 C:\Windows\System32\tquery.dll - ok
18:05:37.0663 0x0c48 [ 13FC1A4A3463E9DE1EF1881E8525EB56, 45847E20C4C90515C8632AC808946EDB4D5DEF64892000C870532506CAC8F192 ] C:\Windows\System32\mssrch.dll
18:05:37.0663 0x0c48 C:\Windows\System32\mssrch.dll - ok
18:05:37.0663 0x0c48 [ 94F97611FFCFF810BF8CB0D467BADA60, 890E3A39E0A65027A093BF0A209D2A55B25E857CAF61D939D96E47F3BF7BAE32 ] C:\Windows\System32\msidle.dll
18:05:37.0663 0x0c48 C:\Windows\System32\msidle.dll - ok
18:05:37.0679 0x0c48 [ 480FB2259449C49C630D4AC3EC1EB426, F8203B156AC538004B807B4CB096D70FC282BDE8CA0BA3B9A95DBC426A32FA61 ] C:\Windows\System32\SearchProtocolHost.exe
18:05:37.0679 0x0c48 C:\Windows\System32\SearchProtocolHost.exe - ok
18:05:37.0679 0x0c48 [ E55A2C4497247F8CA09F1B2AAFAEDD3C, B58A3D5F8116B36DC03DA2491BA28802DCEDD87BBA66484E5E548036D985C928 ] C:\Windows\System32\msshooks.dll
18:05:37.0695 0x0c48 C:\Windows\System32\msshooks.dll - ok
18:05:37.0695 0x0c48 [ 3EA778FE9D9B56E67C0783A63C4B142E, A598E8143A29390B70016D16A8AA013549B4B79E7169D919BFB5365433853202 ] C:\Windows\System32\SearchFilterHost.exe
18:05:37.0695 0x0c48 C:\Windows\System32\SearchFilterHost.exe - ok
18:05:37.0710 0x0c48 [ 3C77496ED7DB0D802427689F7E613777, 2D47D94CB4656B2941D21646F7F6038DCF1565B9F8D3795C62D3CDE5B4307AB6 ] C:\Windows\System32\mssprxy.dll
18:05:37.0710 0x0c48 C:\Windows\System32\mssprxy.dll - ok
18:05:37.0710 0x0c48 [ 38069D6F774EB0B83A9301E5698B52CA, 3254AAC1C4BFD09431A90A851F8092275664F149CB02E74DEBD157F2121F4809 ] C:\Windows\System32\mssph.dll
18:05:37.0710 0x0c48 C:\Windows\System32\mssph.dll - ok
18:05:37.0726 0x0c48 [ D7507B2F96098C43D1BC835F8B8E5E8E, AD420B10879407FF6D636407861020007043D6538C4E20783A91C9CFD3BB4CF0 ] C:\Windows\System32\mapi32.dll
18:05:37.0726 0x0c48 C:\Windows\System32\mapi32.dll - ok
18:05:37.0726 0x0c48 [ B447650079883B58626DD6BBAE857877, F765672DC2895038E7C270DFAF13C1355C9D64B73F8D847BDEC82DD559584AE3 ] C:\Windows\System32\NaturalLanguage6.dll
18:05:37.0726 0x0c48 C:\Windows\System32\NaturalLanguage6.dll - ok
18:05:37.0742 0x0c48 [ 79D33DF0382DB854581CA963FB512511, 558DCC84785A353318ABE3E0D644F24BEEDC4730FB3C0B1C394A5D48367E79C8 ] C:\Windows\System32\NlsData0816.dll
18:05:37.0742 0x0c48 C:\Windows\System32\NlsData0816.dll - ok
18:05:37.0757 0x0c48 [ 6405AF14C24052BD9DE7593D20FBD37E, A6365CE4BC96E2C983D5B40AF07AD360F82DF0D5354DAACE62DA01200148D0A4 ] C:\Windows\System32\NlsLexicons0816.dll
18:05:37.0757 0x0c48 C:\Windows\System32\NlsLexicons0816.dll - ok
18:05:37.0757 0x0c48 [ 9C0502C5E747C8011D700DCA681A55A1, 44829A5B251A07AD032C3C9ADECEEA335A2C70B3D17C0A0E2B73BC328BC726A8 ] C:\Windows\System32\ELSCore.dll
18:05:37.0757 0x0c48 C:\Windows\System32\ELSCore.dll - ok
18:05:37.0773 0x0c48 [ A0F844B0E9ADACA064B832CAF0AEE338, 2EC9D69B0D5D4B03B3636152CC25C0E8990B96CDFC62B344C909E82091EACA3A ] C:\Windows\System32\elsTrans.dll
18:05:37.0773 0x0c48 C:\Windows\System32\elsTrans.dll - ok
18:05:37.0773 0x0c48 [ F6F335A35D54FF8A55D15FA35E0F7671, B30CBA2DB4B087FED5E3EC86E56D30261BC91A08FF387DCB6E226884F6FEAD3C ] C:\Windows\System32\elslad.dll
18:05:37.0773 0x0c48 C:\Windows\System32\elslad.dll - ok
18:05:37.0788 0x0c48 [ 49E2346A397A7512DD9D12E1D6D9A174, C8C3EB34920C7382236F294A450AF7A852AF52C2960EBACB1B0E698032A0C125 ] C:\Windows\System32\NlsData0009.dll
18:05:37.0788 0x0c48 C:\Windows\System32\NlsData0009.dll - ok
18:05:37.0788 0x0c48 [ 47DCA6F50C1D1E93F4DB5248557ED63C, 0F1ECE190C65BC7471A73DA78497CF18BE8694E861EC996EFEF0E6AD5FC47465 ] C:\Windows\System32\NlsLexicons0009.dll
18:05:37.0788 0x0c48 C:\Windows\System32\NlsLexicons0009.dll - ok
18:05:37.0804 0x0c48 [ D598C44A7072D3108D8D8102EC5E07F7, D7472E9BAAB7B6E1D30F4E153412E2A16EE5C08DE2BF8BFF4D65089825226FE0 ] C:\Windows\System32\qmgr.dll
18:05:37.0804 0x0c48 C:\Windows\System32\qmgr.dll - ok
18:05:37.0820 0x0c48 [ 7CD252214BC8C4004FB0814B1DBB1E0F, BBF848E833A4BFBB7BFD6F107BAB3F506C4A65D3F70E4A1BAAD9915604DC5D7B ] C:\Windows\System32\bitsperf.dll
18:05:37.0820 0x0c48 C:\Windows\System32\bitsperf.dll - ok
18:05:37.0820 0x0c48 [ 357CA105C57C860526342C3F35A7C4E6, A5A09E844B649826C7C21054D982F7EF20C2B57391FBA5EB5348C0A076E4E386 ] C:\Windows\System32\bitsigd.dll
18:05:37.0820 0x0c48 C:\Windows\System32\bitsigd.dll - ok
18:05:37.0835 0x0c48 [ E9B9C28A237D8FEF1FCD2C0D08E7D3C4, 52841100F7EC2E6A85825CA2EDCCF00705FF3AD3B52AD445276B5FC1215FEEA0 ] C:\Windows\System32\upnp.dll
18:05:37.0835 0x0c48 C:\Windows\System32\upnp.dll - ok
18:05:37.0835 0x0c48 [ 9656F8E29F6C3161A3E99BCD3A472FF9, 30AD00B53CCB2E4121508729F3471D3C0568F1C32324C398382C97E8BC43ECF0 ] C:\Program Files (x86)\Intel\Intel® Management Engine Components\FWService\IntelMeFWService.exe
18:05:37.0835 0x0c48 C:\Program Files (x86)\Intel\Intel® Management Engine Components\FWService\IntelMeFWService.exe - ok
18:05:37.0851 0x0c48 [ 2C24DC448DBE8DB9BE1441B824C57E79, DA2257EEC964A47D03C2BB13317FD788E51D4685E2395B303ED7B2575FEF3B19 ] C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
18:05:37.0851 0x0c48 C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe - ok
18:05:37.0851 0x0c48 [ 45015DF7CB15FA5191D735AE545F9B12, 25EE3F05EFBC795E31933B1525737624030F971A1B7D31020B8BB50914764D82 ] C:\Windows\System32\NlsData0416.dll
18:05:37.0851 0x0c48 C:\Windows\System32\NlsData0416.dll - ok
18:05:37.0867 0x0c48 [ E0E4A1F81A7D69C595A8A9DDAD084C19, 8F55F3637AE8BFFB0ACE37AFC5122026525137E0B2923899B779C1BD08DF0E22 ] C:\Program Files (x86)\Nero\Update\NASvc.exe
18:05:37.0867 0x0c48 C:\Program Files (x86)\Nero\Update\NASvc.exe - ok
18:05:37.0882 0x0c48 [ 2693502CB3B08B79F1BB050F3C2B93BB, 0E6FF60E865C92A1D35DB14D7BC3EC863DDB3DC868F0385C254C052944847697 ] C:\Windows\System32\NlsLexicons0416.dll
18:05:37.0882 0x0c48 C:\Windows\System32\NlsLexicons0416.dll - ok
18:05:37.0882 0x0c48 [ 7A4797475ABAD6ECF1BCB08637922ECA, EFD91794165E06139D5488F0EFA53652620AA002F814E6BA6A364B7204CB0A36 ] C:\Windows\SysWOW64\winhttp.dll
18:05:37.0882 0x0c48 C:\Windows\SysWOW64\winhttp.dll - ok
18:05:37.0898 0x0c48 [ 24360C89F7487992B7BC1D8B9AAF52B6, C38D275546D4DD049737269C45E4C11D767E2800EA69F8655EC829461BCE354C ] C:\Windows\SysWOW64\xmllite.dll
18:05:37.0898 0x0c48 C:\Windows\SysWOW64\xmllite.dll - ok
18:05:37.0898 0x0c48 [ 34A1A225D2963DA7BEF6181CD495EA8D, 4DA09CFD16A98E15BF3B39C788D2ED5761259BC9BAACD318D41DF96AA6C7A25A ] C:\Windows\SysWOW64\cryptdll.dll
18:05:37.0898 0x0c48 C:\Windows\SysWOW64\cryptdll.dll - ok
18:05:37.0913 0x0c48 [ B24AA0AC52483A412107B5B246A1C427, 693339A4C54835ADA129E04420B0700BFBFBC7809820419FFDABE4C7BE617F10 ] C:\Windows\System32\qmgrprxy.dll
18:05:37.0913 0x0c48 C:\Windows\System32\qmgrprxy.dll - ok
18:05:37.0929 0x0c48 [ 0475721EF91652E53DE2FA5E188DE3C5, 497E43E04AE3570ADFCE38C3F3A3B0851B70DBF25BC4A50B98B61C25578DD7EA ] C:\Windows\SysWOW64\qmgrprxy.dll
18:05:37.0929 0x0c48 C:\Windows\SysWOW64\qmgrprxy.dll - ok
18:05:37.0929 0x0c48 [ 85B5225FC64BB146C5C40FE658189CEB, 551126223CE26E58B441EE4065B8E54D7FB5C0342C2B8583A13A3F7319A3879B ] C:\Windows\SysWOW64\RstrtMgr.dll
18:05:37.0929 0x0c48 C:\Windows\SysWOW64\RstrtMgr.dll - ok
18:05:37.0945 0x0c48 [ 061A977C920FBE4BF71FF47C966DDDCA, 746516396B72E4ADB05D978C819CD45FE44EE194756F6DA50121D755439CA590 ] C:\Windows\System32\sppsvc.exe
18:05:37.0945 0x0c48 C:\Windows\System32\sppsvc.exe - ok
18:05:37.0945 0x0c48 [ 3D3C56EDE6C5B7176BDE056828064D68, 352EF36E456746AAF867A8BEB396EF23C7353A9133D273293A46EDF783DC63DF ] C:\Windows\SysWOW64\msiltcfg.dll
18:05:37.0945 0x0c48 C:\Windows\SysWOW64\msiltcfg.dll - ok
18:05:37.0960 0x0c48 [ 5DDEA740B911D4E910AC031090183E6A, 7CF71ACD9A9FAB1FA7D605EBBFAD93D0ABDF8C07A78255ED939E0B7F280DB3F6 ] C:\Windows\SysWOW64\sfc.dll
18:05:37.0960 0x0c48 C:\Windows\SysWOW64\sfc.dll - ok
18:05:37.0960 0x0c48 [ 0313A5DFA5966E31220C26A6167FD479, 3B5ADB421CEEA9AEFBCA49DC47059EB9C15530323A4FBCCD246488866503006E ] C:\Windows\SysWOW64\sfc_os.dll
18:05:37.0960 0x0c48 C:\Windows\SysWOW64\sfc_os.dll - ok
18:05:37.0976 0x0c48 [ 39F03455A7C449FFFB2BC4BBDE480EB5, D80FE9E21226D3C0ED2A4290A47333E9D53E08B6903C696C29BC40CD2571077A ] C:\Program Files (x86)\Nero\Update\NASvcPS.dll
18:05:37.0976 0x0c48 C:\Program Files (x86)\Nero\Update\NASvcPS.dll - ok
18:05:37.0992 0x0c48 [ 5C34AF33933E36E690A951AEFCD89108, 8263916FF84301F65A8CC8C842C6EEF9DC74EC0E7927A764CCA9652EBCA2F36F ] C:\Windows\System32\cryptxml.dll
18:05:37.0992 0x0c48 C:\Windows\System32\cryptxml.dll - ok
18:05:37.0992 0x0c48 [ 012CFE7F0F95266F554EE3B91EE2128A, 866312F6BF7369BE686F1BA9F01311C99E95E268C6E63BE37C841F54F5AA0DB8 ] C:\Windows\System32\wscsvc.dll
18:05:37.0992 0x0c48 C:\Windows\System32\wscsvc.dll - ok
18:05:38.0007 0x0c48 [ E1A119AD21F5AFE22EB516C549306D3D, 48769D5E7A78B7A2C00F1F6798AC133CF3E0B2C76F71D3719BD741DDD8F2D229 ] C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
18:05:38.0007 0x0c48 C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe - ok
18:05:38.0007 0x0c48 [ C9549BC9C3E3DECD8BE81E527137B85F, 8944F987C9D415EA561EA5314F3B5F19F8B65945E391C13112C2BA33341BDB2C ] C:\Windows\System32\wuapi.dll
18:05:38.0007 0x0c48 C:\Windows\System32\wuapi.dll - ok
18:05:38.0023 0x0c48 [ A0CFAE5D60E2011E7531F1921028259C, 8D0E6C024FECE67AEA51B6669CB9469D70B4083E865235BF95DC9F89958D6166 ] C:\Windows\System32\cabinet.dll
18:05:38.0023 0x0c48 C:\Windows\System32\cabinet.dll - ok
18:05:38.0038 0x0c48 [ A0C07056756C94FA19B231BBE58C33DF, DFA3D95B2130413939F6CEA309729B1361AECF6C07FD30C519FE48EB0DC56D6B ] C:\Windows\System32\wups.dll
18:05:38.0038 0x0c48 C:\Windows\System32\wups.dll - ok
18:05:38.0038 0x0c48 [ 64EE4663A3876638471F03586474DC13, E940F56893ACC0086CE44BE239AB7869BC11233D84FDDAAAF64FC1BE98110492 ] C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\ACE.dll
18:05:38.0038 0x0c48 C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\ACE.dll - ok
18:05:38.0054 0x0c48 [ D0C751D4D43B16327566FE17F39F461D, 56AB216BC6017E8171CA51DD21AEDAECC56C8BB2DFE83A1A54403A4CC7070B79 ] C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\WsmanClient.dll
18:05:38.0054 0x0c48 C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\WsmanClient.dll - ok
18:05:38.0054 0x0c48 [ E2430ECA924632371CC085AA4F086E65, 0C5A418B5A2B678335CEC5D0150A89CE1D59F2D686A30AA7CC66209D2F316E56 ] C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\Common.dll
18:05:38.0054 0x0c48 C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\Common.dll - ok
18:05:38.0070 0x0c48 [ 7B07B798B13DB6C65DFD16FC765F7139, FC4AF97A1D580D6FA0F810BA9174CF57D3ED960E0B5BEBB42E8E7C9810687E24 ] C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\GmsCommon.dll
18:05:38.0070 0x0c48 C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\GmsCommon.dll - ok
18:05:38.0085 0x0c48 [ 025358572294247DCF84C07D23DA6849, 37BADF26C3B609C013A849BA8096AB059FFC04050D70AA7F65F285055A9FD471 ] C:\Windows\System32\wscisvif.dll
18:05:38.0085 0x0c48 C:\Windows\System32\wscisvif.dll - ok
18:05:38.0085 0x0c48 [ 1551DEAE4879D18E604379CDB592CC88, 0959920E0FFC6C85B6C311D8C2530C958B306803FA9B3E1F1088C3D9FD4153C2 ] C:\Windows\System32\wscapi.dll
18:05:38.0085 0x0c48 C:\Windows\System32\wscapi.dll - ok
18:05:38.0101 0x0c48 [ 59D1A1E1DB55DEC476FD6B5C6BAF4288, F19F112439C3C0E289DC4B39851878F8EA7ADE52C162F6409DE56C7DCA6F557C ] C:\Windows\System32\wscproxystub.dll
18:05:38.0101 0x0c48 C:\Windows\System32\wscproxystub.dll - ok
18:05:38.0101 0x0c48 [ 2120A35C9222C972AE75950A234CCB50, 101A95CFA18E8BD3380B26B2434538731F079864092CF968FFBB253C32973C66 ] C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\Configurator.dll
18:05:38.0101 0x0c48 C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\Configurator.dll - ok
18:05:38.0117 0x0c48 [ 5E93D0C1BE58C32741AB31DDBB75BC84, 0202CCCCBD79EE81CB5CACBFD79D6F1CE20C20FBDC06FEDAC7C0759652587E77 ] C:\Program Files\Windows Defender\MpCmdRun.exe
18:05:38.0117 0x0c48 C:\Program Files\Windows Defender\MpCmdRun.exe - ok
18:05:38.0117 0x0c48 [ 4D3D037C655D35AE8FF6F8A30B11CF90, 3B85A8A6489F35FF758DD7820B24F53509EA0F212868BB0D7E9338EAA3643C3F ] C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\EventManager.dll
18:05:38.0117 0x0c48 C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\EventManager.dll - ok
18:05:38.0132 0x0c48 [ 04B16F85684A1D3F74E4A07653F6BF14, 11065B347AF9A1D446DE122D8D885083434B3528F8CBBAA6D0CF59C947A1AF69 ] C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\StatusEventHandler.dll
18:05:38.0132 0x0c48 C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\StatusEventHandler.dll - ok
18:05:38.0148 0x0c48 [ 64E93ED82EB4A29208B862A3F592CA36, B16203F2F06D6B1D7EB85A086EDAAA1298550FD50763D4498B93A0B208048857 ] C:\Windows\SysWOW64\dpapi.dll
18:05:38.0148 0x0c48 C:\Windows\SysWOW64\dpapi.dll - ok
18:05:38.0148 0x0c48 [ BD7849649C6E85118802010F442F67A8, BDD4BCE48CC70229F8DA63A8B3A8023EB8BD90099AE5DD068D5FFE1CF73A3B26 ] C:\Windows\SysWOW64\webio.dll
18:05:38.0148 0x0c48 C:\Windows\SysWOW64\webio.dll - ok
18:05:38.0163 0x0c48 [ 89F78472F59CD732A91B8F8DEE8CB79B, 1EC99A58B008DB6C1ECA69BFE88D2CB9BEDB7CC49E447E909C85F1FACB7B492D ] C:\Program Files\Windows Defender\MpClient.dll
18:05:38.0163 0x0c48 C:\Program Files\Windows Defender\MpClient.dll - ok
18:05:38.0163 0x0c48 [ 20FAFBD28EC1128955308E7ABA5E765A, EEB7959FC87165FB4173D151C70F5E466A6A3EF44205EDE2B5283EA283ABAEBF ] C:\Windows\System32\sppwinob.dll
18:05:38.0163 0x0c48 C:\Windows\System32\sppwinob.dll - ok
18:05:38.0179 0x0c48 [ C80BE09E09CBD2D85D95C96CD9EA839B, DDEE60F71151A3A803D732AD40F1793BF6757FD3304D7CB0749656237A416CC4 ] C:\Windows\System32\sppobjs.dll
18:05:38.0179 0x0c48 C:\Windows\System32\sppobjs.dll - ok
18:05:38.0195 0x0c48 [ 105991E8AF7853F169F9A8B7DD7CFE1F, 6968C4CD71DA0DFAE0D8E48808AE5F5B363F0E221C0E08C148E26AB742407993 ] C:\Windows\Branding\Basebrd\basebrd.dll
18:05:38.0195 0x0c48 C:\Windows\Branding\Basebrd\basebrd.dll - ok
18:05:38.0195 0x0c48 [ DC12FF4A1B00CAE279D5744F36B74873, C3F35377E81112AD42B60D94325B79BB53D6C77C915CF69C541FED660B1A5D6A ] C:\Windows\System32\wwapi.dll
18:05:38.0195 0x0c48 C:\Windows\System32\wwapi.dll - ok
18:05:38.0210 0x0c48 [ EB833BB4DF2CF5A4A7D1789C3ADD75DC, 2DB083127B2659BFA77812B672C697D5A448DA5E1E2116B2DF6B86B6011F9DF2 ] C:\Windows\System32\wsqmcons.exe
18:05:38.0210 0x0c48 C:\Windows\System32\wsqmcons.exe - ok
18:05:38.0210 0x0c48 [ 024632F2FC93286700FE82763C0A98FD, 9CCAB6A051633F04CD96D64940EE2406ED3A2EE136781FD84DF2695D45A8320B ] C:\Windows\System32\tdh.dll
18:05:38.0210 0x0c48 C:\Windows\System32\tdh.dll - ok
18:05:38.0226 0x0c48 [ F6EC23377172F5BECA4815A8D0614FF1, B9DEEBF5E70E4559E7A038E49056534D370D700E7961E9B63094B958D8D42823 ] C:\Windows\System32\sppcext.dll
18:05:38.0226 0x0c48 C:\Windows\System32\sppcext.dll - ok
18:05:38.0226 0x0c48 [ C121D6818C4FD2B8572F3409D4FF556F, 7B3EF8358D0081A4B3FC4F7A595E41E36C24380EE5BB3B0C193CA85E0D87A0F9 ] C:\Windows\System32\sppc.dll
18:05:38.0226 0x0c48 C:\Windows\System32\sppc.dll - ok
18:05:38.0242 0x0c48 [ AA3BF5E865917912239E52E2217556CA, 8EBA7F64CCBAECB8DBDCB876D58CE40BFE93EC0D8B935F4FB7C10755CE862EE6 ] C:\Windows\System32\WSClient.dll
18:05:38.0242 0x0c48 C:\Windows\System32\WSClient.dll - ok
18:05:38.0257 0x0c48 [ C34DDB3F1082D40B9795AB7013C6E8B3, 27174764D7E081F078F1808CD1CE7868DBD7BE11157D009801357B93710B89A2 ] C:\Windows\System32\WSShared.dll
18:05:38.0257 0x0c48 C:\Windows\System32\WSShared.dll - ok
18:05:38.0257 0x0c48 [ 47FD60435D7EC9DD7ACA87594704A18E, 9B5276F82888D14B7BCA022F089CA9BBCE06D9EE87367C5AE639E1C612DBAF36 ] C:\Windows\System32\AppXDeploymentClient.dll
18:05:38.0257 0x0c48 C:\Windows\System32\AppXDeploymentClient.dll - ok
18:05:38.0273 0x0c48 [ DD9730BDD6515CE314F2EAAADFE54951, 83C97F08B140B1F6B8CF608CD311F162E6EFA1FA2D5A2EE324216A5360826B98 ] C:\Windows\System32\WSSync.dll
18:05:38.0273 0x0c48 C:\Windows\System32\WSSync.dll - ok
18:05:38.0273 0x0c48 [ 2E854AC1ED5A4FA3A1D70DEC9DE72DAE, 8CE46A572F003A90C4886719D61D4DC92CDC736A73B75B2F7B55FBA835EF587F ] C:\Windows\System32\schtasks.exe
18:05:38.0273 0x0c48 C:\Windows\System32\schtasks.exe - ok
18:05:38.0288 0x0c48 [ AA33DA95CA8C2D543969F69B04C52782, 64178E465ACEDA5CC9A361BB2A99751EFBB1F1271638FFA0AC9C42A39B3B9619 ] C:\Windows\System32\wbem\WMIADAP.exe
18:05:38.0288 0x0c48 C:\Windows\System32\wbem\WMIADAP.exe - ok
18:05:38.0304 0x0c48 [ 927560169D763EB9C1CCCE689A0F3CA5, 959D36FF618E976B8407778B3E5A52EEC1508FE1CF1523B5158AD9B7F9576B43 ] C:\Windows\System32\loadperf.dll
18:05:38.0304 0x0c48 C:\Windows\System32\loadperf.dll - ok
18:05:38.0304 0x0c48 [ C9560BBB239E0EA21EF4BEA39DD85F69, F30A82724F35BBFF445058AF46B86A7BFEA8E51813B72206A3EFA9D3CA7F3DCD ] C:\Users\Admin\AppData\Local\Temp\{9B42E6E1-1193-48C6-BAD1-02838BE773DB}.exe
18:05:38.0304 0x0c48 C:\Users\Admin\AppData\Local\Temp\{9B42E6E1-1193-48C6-BAD1-02838BE773DB}.exe - ok
18:05:38.0320 0x0c48 [ F8DE2E949B135BA7E45AE18DC82BF262, 195918BB87110095D2A73A325CF971B0FFA926ED75873E36E24146154D4DD525 ] C:\Windows\SysWOW64\pcacli.dll
18:05:38.0320 0x0c48 C:\Windows\SysWOW64\pcacli.dll - ok
18:05:38.0320 0x0c48 [ 785838B984563D12D4612256D2C78B48, 70537173C440F0CA903153AD2F9CF158F54DC94D4650E418D5D2408238E7BAFE ] C:\Windows\SysWOW64\mpr.dll
18:05:38.0320 0x0c48 C:\Windows\SysWOW64\mpr.dll - ok
18:05:38.0335 0x0c48 [ 974AE60BF5B90E31412D93596C968E5B, 092B59C2B67C4618E7B1800615D1DF7199482F60D0D27BD91763F7F8D7FC883F ] C:\Windows\System32\aelupsvc.dll
18:05:38.0335 0x0c48 C:\Windows\System32\aelupsvc.dll - ok
18:05:38.0335 0x0c48 [ 4E1278D5040A2D2D274EB98661CBF07E, 16BCFB3D1CD6A2F0C8D6456877E2643DD3AEED7D31027E84DB6BC5675883A97C ] C:\Windows\SysWOW64\devrtl.dll
18:05:38.0335 0x0c48 C:\Windows\SysWOW64\devrtl.dll - ok
18:05:38.0351 0x0c48 [ 9A777EDE50D61A30265C4448A67F80E9, FB694F98E2825517028C6F47853FD92CDC095124D65B2650E5E71920ACD02E6E ] C:\Windows\System32\themeui.dll
18:05:38.0351 0x0c48 C:\Windows\System32\themeui.dll - ok
18:05:38.0351 0x0c48 [ 18D61C0822414ACDBD88EB8AD6319D70, 5D2258330D71B212D1E0FA85FA7A443D69FF7622C9C7AF349F2270B322EEA329 ] C:\Windows\System32\ExplorerFrame.dll
18:05:38.0351 0x0c48 C:\Windows\System32\ExplorerFrame.dll - ok
18:05:38.0367 0x0c48 [ C70826FE099A5006B7EC375009E3E257, 96A24BFFA9B98FEF36CEA82BA52D4EF368B80A9BED6866F4E2FE8C6847BCE2EE ] C:\Windows\System32\Tabbtn.dll
18:05:38.0367 0x0c48 C:\Windows\System32\Tabbtn.dll - ok
18:05:38.0382 0x0c48 [ 1DD5A4A154FF4A3ED4DA10776D5D97EF, 21C8F45412FCDA32D681A28C4BE39074F50E71D9FE2272A053B92E69489DCF76 ] C:\Windows\System32\TabbtnEx.dll
18:05:38.0382 0x0c48 C:\Windows\System32\TabbtnEx.dll - ok
18:05:38.0382 0x0c48 [ C4729C10C3D9E1517EFF2C7AAE72E819, A3F9267805D9F14FA23EA8EB6011D11D6651748B2A80F4FAF613793A06F9C399 ] C:\Windows\System32\gameux.dll
18:05:38.0382 0x0c48 C:\Windows\System32\gameux.dll - ok
18:05:38.0398 0x0c48 [ 09B07DFC6792D49516073FEF024315C9, 2A5AE32370B165C1BD95CB70DD1D3377F7607C1EF7852726010725EAE2329604 ] C:\Windows\System32\twinui.dll
18:05:38.0398 0x0c48 C:\Windows\System32\twinui.dll - ok
18:05:38.0398 0x0c48 [ 70C3B722AE97E6C6A144EC20E5D7C080, 395F03942442A3EF9B929203E266E1D9A60AB9DA66A27E276896A786ABFC9726 ] C:\Windows\System32\windows.immersiveshell.serviceprovider.dll
18:05:38.0398 0x0c48 C:\Windows\System32\windows.immersiveshell.serviceprovider.dll - ok
18:05:38.0413 0x0c48 [ BE06810E61584229B9B67875BF14F682, 286FE37F89185181FE04190A08D23B4861DE1EF3BF8D04BE8468AD7EDF8F55F8 ] C:\Program Files\Common Files\microsoft shared\ink\TipBand.dll
18:05:38.0413 0x0c48 C:\Program Files\Common Files\microsoft shared\ink\TipBand.dll - ok
18:05:38.0429 0x0c48 [ AB279D4734BC508911C004F8D1011973, 2FA5B8D37D92BEE6DCC3DBD528CF5198D4777679AA02EA88F16D38312BBFCBA3 ] C:\Windows\System32\wpncore.dll
18:05:38.0429 0x0c48 C:\Windows\System32\wpncore.dll - ok
18:05:38.0429 0x0c48 [ 9DD06F00898AA5CA7E24186EFC8E5E25, 51141D0D07DBC955B63281351D3F17163ACE9A5B08628EA1C82F33FD2913970E ] C:\Users\Admin\AppData\Local\Temp\{C5580BBD-DE48-4482-B27D-989760872350}\{6FC0CAEA-B8A1-4F3D-B454-183FEF92F0E3}.tmp
18:05:38.0429 0x0c48 C:\Users\Admin\AppData\Local\Temp\{C5580BBD-DE48-4482-B27D-989760872350}\{6FC0CAEA-B8A1-4F3D-B454-183FEF92F0E3}.tmp - ok
18:05:38.0445 0x0c48 [ 91A7771934C0D9D2DA7699D25BB5B348, 154A6EB866AF22B38AEE8DB5A864653FEB15DED69DE26E5B602B7C5056CDDF72 ] C:\Users\Admin\AppData\Local\Temp\{C5580BBD-DE48-4482-B27D-989760872350}\{7FE6F062-5A77-4F54-A55B-3305F7EBB378}.tmp
18:05:38.0445 0x0c48 C:\Users\Admin\AppData\Local\Temp\{C5580BBD-DE48-4482-B27D-989760872350}\{7FE6F062-5A77-4F54-A55B-3305F7EBB378}.tmp - ok
18:05:38.0445 0x0c48 [ 55C11301579A42639736EA3B17A3A588, CBEBDD7C883EF47DB86060AF0F09FD2218161D5FEB0CECEB4A068B9CC63499F8 ] C:\Users\Admin\AppData\Local\Temp\{C5580BBD-DE48-4482-B27D-989760872350}\{E0C0951E-09E9-41B3-A7BF-4F083E772D9D}.tmp
18:05:38.0445 0x0c48 C:\Users\Admin\AppData\Local\Temp\{C5580BBD-DE48-4482-B27D-989760872350}\{E0C0951E-09E9-41B3-A7BF-4F083E772D9D}.tmp - ok
18:05:38.0460 0x0c48 [ 9314C83DE37182685C788FCA3CEC43A4, BD068BD8C8A82B5C36E40656B6ED9247BBF6089FBB5695BAD5788E3FCFA9A683 ] C:\Windows\System32\thumbcache.dll
18:05:38.0460 0x0c48 C:\Windows\System32\thumbcache.dll - ok
18:05:38.0476 0x0c48 [ DF471F11CC78BE02FE6BA15F2D94F65B, 9AC230DE58CE40E78AE6872BCF4778B69EEBF17E0E41B1301FF364ABD4737A78 ] C:\Users\Admin\AppData\Local\Temp\{C5580BBD-DE48-4482-B27D-989760872350}\{27E14D50-E4EE-4B3A-8347-0282D3AC680D}.tmp
18:05:38.0476 0x0c48 C:\Users\Admin\AppData\Local\Temp\{C5580BBD-DE48-4482-B27D-989760872350}\{27E14D50-E4EE-4B3A-8347-0282D3AC680D}.tmp - ok
18:05:38.0476 0x0c48 [ 6FB88606C4A71E1BFAF97D63A676C673, D72F93A482E989ACA50F9647B7AD699A4656AEAACF377BB2B8CEBB094B748852 ] C:\Windows\System32\SystemEventsBrokerServer.dll
18:05:38.0476 0x0c48 C:\Windows\System32\SystemEventsBrokerServer.dll - ok
18:05:38.0492 0x0c48 [ 4515B9E4140F04FB3907692DF89FCA87, F68EC56524BDA877646E987BE7414C1D622BD9FF05A5AEADCA39030FDC2B0115 ] C:\Windows\System32\TimeBrokerServer.dll
18:05:38.0492 0x0c48 C:\Windows\System32\TimeBrokerServer.dll - ok
18:05:38.0507 0x0c48 [ 0FD19BDDD2513874FF6903F717367795, DFAF9C33F993BA26FC84EF66ABC7C483E62762F7E1FC763605A75ACC2E8AA4EE ] C:\Users\Admin\AppData\Local\Temp\{C5580BBD-DE48-4482-B27D-989760872350}\{64D0815D-DF4B-4A72-AD26-365C90DAAA1F}.tmp
18:05:38.0507 0x0c48 C:\Users\Admin\AppData\Local\Temp\{C5580BBD-DE48-4482-B27D-989760872350}\{64D0815D-DF4B-4A72-AD26-365C90DAAA1F}.tmp - ok
18:05:38.0507 0x0c48 [ DD88BBF87A43331A4E99E37F7BF59FDB, 872190F559FA0DD1F711E9FA101BA1AB6E6DE5ED0CCCE1AB7AFE45BC3B78A0F1 ] C:\Users\Admin\AppData\Local\Temp\{C5580BBD-DE48-4482-B27D-989760872350}\{D6611CDA-882F-402C-A89B-F8174354994B}.tmp
18:05:38.0507 0x0c48 C:\Users\Admin\AppData\Local\Temp\{C5580BBD-DE48-4482-B27D-989760872350}\{D6611CDA-882F-402C-A89B-F8174354994B}.tmp - ok
18:05:38.0523 0x0c48 [ 4261449C1CADA6B007E5C27522946D2B, 11E79D1C529E816CCCAC9266089C77A4DB44676CAEEE25C66D6DB420B18D3ACB ] C:\Users\Admin\AppData\Local\Temp\{C5580BBD-DE48-4482-B27D-989760872350}\{CA879CB2-CDA9-43FA-92B9-7883D4921196}.tmp
18:05:38.0523 0x0c48 C:\Users\Admin\AppData\Local\Temp\{C5580BBD-DE48-4482-B27D-989760872350}\{CA879CB2-CDA9-43FA-92B9-7883D4921196}.tmp - ok
18:05:38.0538 0x0c48 [ 6627AA675A5C1B0330487A02E23F0560, 256AE9BA4273D4247FFAD6099D5A4FC8E98EDB27293AC8CAF7A571EB3890FAA7 ] C:\Users\Admin\AppData\Local\Temp\{C5580BBD-DE48-4482-B27D-989760872350}\{CFA8B603-FB24-42A8-A812-37A4F84D1B7E}.tmp
18:05:38.0538 0x0c48 C:\Users\Admin\AppData\Local\Temp\{C5580BBD-DE48-4482-B27D-989760872350}\{CFA8B603-FB24-42A8-A812-37A4F84D1B7E}.tmp - ok
18:05:38.0554 0x0c48 [ 723B834A07F7DF7DE4CEB637D57ACEA3, B42867045DD3FB7682CDBD133970421010F0F14125E4992C73657CABA4659250 ] C:\Users\Admin\AppData\Local\Temp\{C5580BBD-DE48-4482-B27D-989760872350}\{F03906F7-2AB9-4B81-86E3-49AAF438F352}.tmp
18:05:38.0554 0x0c48 C:\Users\Admin\AppData\Local\Temp\{C5580BBD-DE48-4482-B27D-989760872350}\{F03906F7-2AB9-4B81-86E3-49AAF438F352}.tmp - ok
18:05:38.0554 0x0c48 [ C1DE893FAF6D7F6CFB479A1F61835482, AD5FA3CE73777704C67C933691F1F068E1A7FF545F728B97574F9C33AC4BBC01 ] C:\Users\Admin\AppData\Local\Temp\{C5580BBD-DE48-4482-B27D-989760872350}\{A76495DE-9B90-4D1C-BF26-4C6AB5BC3696}.tmp
18:05:38.0554 0x0c48 C:\Users\Admin\AppData\Local\Temp\{C5580BBD-DE48-4482-B27D-989760872350}\{A76495DE-9B90-4D1C-BF26-4C6AB5BC3696}.tmp - ok
18:05:38.0570 0x0c48 [ 48067CB53E31B98A394CB12024F26D1B, 9E26CDC31DC57E0DD5CCB2E84C55714475A4B4326A62A339B0F41227CA90529C ] C:\Windows\System32\Windows.Globalization.Fontgroups.dll
18:05:38.0570 0x0c48 C:\Windows\System32\Windows.Globalization.Fontgroups.dll - ok
18:05:38.0570 0x0c48 [ 1BAF176DEB4E51E3304B21E96C92C2EE, E0D93BA164776477F29F2F75C072F1EE9CD9C2F7605156643DF36D8703EACA4E ] C:\Windows\System32\Windows.Networking.Connectivity.dll
18:05:38.0570 0x0c48 C:\Windows\System32\Windows.Networking.Connectivity.dll - ok
18:05:38.0585 0x0c48 [ 44F388C294370B255F7EB751939BD6E3, A9913A987DF00543857767E05F32C19F0F199A68418662ED2F4B8269C575085F ] C:\Windows\System32\wpnprv.dll
18:05:38.0585 0x0c48 C:\Windows\System32\wpnprv.dll - ok
18:05:38.0585 0x0c48 [ D10587D957CFED8CC3B9B3D017C69003, 98D4D2E618F271A2C4A6AE991ED06027F68B0FFA6A71531F1FF8E2C130BE7052 ] C:\Windows\System32\Windows.Security.Authentication.OnlineId.dll
18:05:38.0585 0x0c48 C:\Windows\System32\Windows.Security.Authentication.OnlineId.dll - ok
18:05:38.0601 0x0c48 [ DCB7509F83B2A2089DBE07DDEDB52017, 4DD79932C95C74E4A54B3CF255DF3858A97DF10C3396FF6B2A4620C9C9379E8C ] C:\Windows\System32\WinTypes.dll
18:05:38.0601 0x0c48 C:\Windows\System32\WinTypes.dll - ok
18:05:38.0617 0x0c48 [ 83A075C07425E84ACC6687FFF7126930, B55E8B421FC5AC3958B522A527F5DDF4ABC9A8E5AE23FBACE1510322F024F90D ] C:\Windows\System32\Windows.Networking.Sockets.PushEnabledApplication.dll
18:05:38.0617 0x0c48 C:\Windows\System32\Windows.Networking.Sockets.PushEnabledApplication.dll - ok
18:05:38.0617 0x0c48 [ CE0BD323EB9BDFD140271E550CBA4111, D3082F0BC6FD634B581D86E41FBCDA3285451A5555F3E34DBAA5699147546D44 ] C:\Windows\System32\TimeBrokerClient.dll
18:05:38.0617 0x0c48 C:\Windows\System32\TimeBrokerClient.dll - ok
18:05:38.0632 0x0c48 [ 15AC3A854C3DD59DFD11EEE2FF63C79A, A9BEB4537A886325E8DC937824ABA8A7FDCCE23AB59EEC381BEFA42A702EC796 ] C:\Windows\SysWOW64\riched20.dll
18:05:38.0632 0x0c48 C:\Windows\SysWOW64\riched20.dll - ok
18:05:38.0632 0x0c48 [ BC9503A901A545FAD807909F8C86B286, EBF9E2E10CE69D90E6020B45ACD3F5711E28B3B79919A489E85EB61ED7AFC1CB ] C:\Windows\SysWOW64\usp10.dll
18:05:38.0632 0x0c48 C:\Windows\SysWOW64\usp10.dll - ok
18:05:38.0648 0x0c48 [ C4A6771ABE5F9B2B9B5876175F14E61A, 620D90F024F3C8B16BB2105F6D163A3758C5FE442C2F706C837D72E9844DAADC ] C:\Windows\SysWOW64\msls31.dll
18:05:38.0648 0x0c48 C:\Windows\SysWOW64\msls31.dll - ok
18:05:38.0663 0x0c48 [ 1E833CECF75535A4229363C6EB051576, FC27692533062B5D7C9F95887058E4988C3EB8C4475F76B6FFD4FD74CA20EA86 ] C:\Windows\System32\WWanAPI.dll
18:05:38.0663 0x0c48 C:\Windows\System32\WWanAPI.dll - ok
18:05:38.0663 0x0c48 [ 074223C4D8109C016B5864DEBF356BD8, 8301009C38244CB8457E94ED30456341E5A61469F442D6BC59FD1BD75C178E29 ] C:\Windows\SysWOW64\ExplorerFrame.dll
18:05:38.0663 0x0c48 C:\Windows\SysWOW64\ExplorerFrame.dll - ok
18:05:38.0679 0x0c48 [ FF5ACC9AA26A3FBDC2ECFDA51A735960, BC14AC543D71ADE4883954843CF5432E0B59E9F483F897722CD96317148CA347 ] C:\Windows\SysWOW64\duser.dll
18:05:38.0679 0x0c48 C:\Windows\SysWOW64\duser.dll - ok
18:05:38.0679 0x0c48 [ FB11241B62F07C9FFE664610E262C528, 0DECFD4C293D2E5D361B33FFA27C6D231A065BA5D772C82DDDA7378D17CCD5F2 ] C:\Windows\SysWOW64\dui70.dll
18:05:38.0679 0x0c48 C:\Windows\SysWOW64\dui70.dll - ok
18:05:38.0695 0x0c48 [ 118BA3061B4040BDC17432B775F3A292, 7C10B57FA298AFBB48F471D4C277C3678819ED6E9E33B0ADE492AF9B04DD05B3 ] C:\Windows\SysWOW64\d3d9.dll
18:05:38.0695 0x0c48 C:\Windows\SysWOW64\d3d9.dll - ok
18:05:38.0695 0x0c48 [ 515C837FF05C5B5A1F64D875B96ACED4, 5BB7847114482D81D5580A7367F88EF41C613234E0E0DFBB5CB60D3EA33847E0 ] C:\Windows\SysWOW64\igdumd32.dll
18:05:38.0695 0x0c48 C:\Windows\SysWOW64\igdumd32.dll - ok
18:05:38.0710 0x0c48 [ 62FEAA78427447229FCD5381E310E7BD, E0435DDB34FBDAA2DB72DF4A17C44C3F60B1BF95C7CE2CBDF67B606CB18956EC ] C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Xml\d91f3556f8011a5d48e1448e3fa8df9e\System.Xml.ni.dll
18:05:38.0710 0x0c48 C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Xml\d91f3556f8011a5d48e1448e3fa8df9e\System.Xml.ni.dll - ok
18:05:38.0726 0x0c48 [ 2DB814F0FB80448D73F35F854B5DA507, BCB781EEFE5033E49E5CFFC82A27FB548D2E374D90CBF193DD3053958E032203 ] C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Configuration\1f56d5786274992934de0c900431c447\System.Configuration.ni.dll
18:05:38.0726 0x0c48 C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Configuration\1f56d5786274992934de0c900431c447\System.Configuration.ni.dll - ok
18:05:38.0726 0x0c48 [ D251BA2F7B051730D1A796A5D91EAC75, 37A66762D1C2F4A96E8B8F231FF2548E1BDD4BA10B987606323E580FB72146E3 ] C:\Windows\SysWOW64\WindowsCodecsExt.dll
18:05:38.0726 0x0c48 C:\Windows\SysWOW64\WindowsCodecsExt.dll - ok
18:05:38.0742 0x0c48 [ 9BDFFDB2CE1807C15166E02E3E79D86F, 5FD34F11E7C8405EA187E4897062F968759E119764F8CF0E097D3C96494BFA54 ] C:\Windows\assembly\NativeImages_v4.0.30319_32\Presentatioaec034ca#\23bfebd243f552b4ea5c41b7dd0024fc\PresentationFramework.Aero2.ni.dll
18:05:38.0742 0x0c48 C:\Windows\assembly\NativeImages_v4.0.30319_32\Presentatioaec034ca#\23bfebd243f552b4ea5c41b7dd0024fc\PresentationFramework.Aero2.ni.dll - ok
18:05:38.0742 0x0c48 [ C1447A59CC0B929C154C82B220BA1124, DEA21E54090962B6BD014008CC4286BEB763040F7CDE70045EE20EFD3D792E80 ] C:\Windows\Microsoft.NET\assembly\GAC_MSIL\PresentationFramework.resources\v4.0_4.0.0.0_pt_31bf3856ad364e35\PresentationFramework.resources.dll
18:05:38.0742 0x0c48 C:\Windows\Microsoft.NET\assembly\GAC_MSIL\PresentationFramework.resources\v4.0_4.0.0.0_pt_31bf3856ad364e35\PresentationFramework.resources.dll - ok
18:05:38.0757 0x0c48 [ 6290075BBE5A9B3E9AAEE264B0DC8382, 139922F4B65C7DCDAF0835362C82A6967C9A536AEA1445D09624669B8AC023D1 ] C:\Windows\Microsoft.NET\assembly\GAC_MSIL\PresentationFramework-SystemXml\v4.0_4.0.0.0__b77a5c561934e089\PresentationFramework-SystemXml.dll
18:05:38.0757 0x0c48 C:\Windows\Microsoft.NET\assembly\GAC_MSIL\PresentationFramework-SystemXml\v4.0_4.0.0.0__b77a5c561934e089\PresentationFramework-SystemXml.dll - ok
18:05:38.0773 0x0c48 [ 38B5AB5E7ED58EAC6D7699940981B1D6, 3E0496B2E8D747D1E45F6BEDD6179B8E8A8A846A718666B574F339C89E85D9DE ] C:\Windows\assembly\NativeImages_v4.0.30319_32\UIAutomationTypes\bf8e8be3a2bfc3269582e4ddaef6dced\UIAutomationTypes.ni.dll
18:05:38.0773 0x0c48 C:\Windows\assembly\NativeImages_v4.0.30319_32\UIAutomationTypes\bf8e8be3a2bfc3269582e4ddaef6dced\UIAutomationTypes.ni.dll - ok
18:05:38.0773 0x0c48 [ 9F781C881A9813CDF37B5E2F96097BAA, D9710A438020D1E51D9EEB5283C8DD1665DBA759E43EA7C166C830F33E7D3711 ] C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsecimpl.dll
18:05:38.0773 0x0c48 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsecimpl.dll - ok
18:05:38.0788 0x0c48 [ FA626B36197B732B71F0D3BB67E5827A, BF7DE15A5842BD2F6889CED033AE6929C5A7E8E8D9C09ED123125390D7AE559B ] C:\Windows\Microsoft.NET\assembly\GAC_MSIL\PresentationCore.resources\v4.0_4.0.0.0_pt_31bf3856ad364e35\PresentationCore.resources.dll
18:05:38.0788 0x0c48 C:\Windows\Microsoft.NET\assembly\GAC_MSIL\PresentationCore.resources\v4.0_4.0.0.0_pt_31bf3856ad364e35\PresentationCore.resources.dll - ok
18:05:38.0804 0x0c48 [ 40E8A0C614CDD1524DBF728B323BE8A0, DB021724ED5C88E06B06A32BFD8961986F215B6ABAE8E3E330FCA84B9D16AA99 ] C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\PenIMC.dll
18:05:38.0804 0x0c48 C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\PenIMC.dll - ok
18:05:38.0804 0x0c48 [ FABEF5877F0B44AC7246223A46B4EB3E, D5C635D0DC478AE0E646DE06EE693E7B1192B4127318015DBCE7F7553FE71E41 ] C:\Windows\SysWOW64\wisp.dll
18:05:38.0804 0x0c48 C:\Windows\SysWOW64\wisp.dll - ok
18:05:38.0820 0x0c48 [ F51E48A7220A63E3CC1D0553D4B52AF9, 449AF3C95543D2247BACCB95D1B83B59E307F5C06B9F0CDB81414F5071B5C600 ] C:\Program Files (x86)\Common Files\Microsoft Shared\Ink\tpcps.dll
18:05:38.0820 0x0c48 C:\Program Files (x86)\Common Files\Microsoft Shared\Ink\tpcps.dll - ok
18:05:38.0835 0x0c48 [ 53DF0737B189966B6A58878E370A67BF, 7879EC24CAE7784EEA57F08DFE13E7C68E0C8049B624881D84D09C0BDEEBF729 ] C:\Windows\SysWOW64\msctfui.dll
18:05:38.0835 0x0c48 C:\Windows\SysWOW64\msctfui.dll - ok
18:05:38.0835 0x0c48 [ 6382B9C6D491D6926B129E9FC2D221FB, 79DED9AFEDC675D7C1BD82CA2BF2CD9F8CE2F0F88FC5E946062617BD80018714 ] C:\Windows\Microsoft.NET\assembly\GAC_MSIL\System.Windows.Forms.resources\v4.0_4.0.0.0_pt_b77a5c561934e089\System.Windows.Forms.resources.dll
18:05:38.0835 0x0c48 C:\Windows\Microsoft.NET\assembly\GAC_MSIL\System.Windows.Forms.resources\v4.0_4.0.0.0_pt_b77a5c561934e089\System.Windows.Forms.resources.dll - ok
18:05:38.0851 0x0c48 [ 520C138EB08059060D30C92BE5F817FE, 9A27DAFD99D9D352B72E510561B15138659A6074FCE5EAB9DFE66403405F9D49 ] C:\Windows\System32\msiltcfg.dll
18:05:38.0851 0x0c48 C:\Windows\System32\msiltcfg.dll - ok
18:05:38.0851 0x0c48 [ 0F3B2F57676DEBB7F86B74A51BEC079C, 7ECCCD1519D119D12D345E3AA4A3027705F6107ABEC6ADEF41CCFF83EECA2C24 ] C:\Windows\SysWOW64\dhcpcsvc6.dll
18:05:38.0851 0x0c48 C:\Windows\SysWOW64\dhcpcsvc6.dll - ok
18:05:38.0867 0x0c48 [ 84F0DC88E6AE4B49B032509868B4BD73, A9453FEDD2D317C9B47FA27D0E6AEF0A0157333F8D83418487AB41067AF184D5 ] C:\Windows\SysWOW64\dhcpcsvc.dll
18:05:38.0867 0x0c48 C:\Windows\SysWOW64\dhcpcsvc.dll - ok
18:05:39.0023 0x0c48 AV detected via SS2: Ad-Aware Antivirus, C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.1.5152.0\AdAwareSecurityCenter.exe ( 11.1.5152.0 ), 0x41000 ( enabled : updated )
18:05:39.0085 0x0c48 AV detected via SS2: Windows Defender, C:\Program Files\Windows Defender\MSASCui.exe ( 4.3.215.0 ), 0x60100 ( disabled : updated )
18:05:39.0085 0x0c48 FW detected via SS2: Ad-Aware Firewall, C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.1.5152.0\AdAwareSecurityCenter.exe ( 11.1.5152.0 ), 0x40010 ( disabled )
18:05:39.0179 0x0c48 Win FW state via NFP2: enabled
18:05:41.0570 0x0c48 ============================================================
18:05:41.0570 0x0c48 Scan finished
18:05:41.0570 0x0c48 ============================================================
18:05:41.0586 0x1054 Detected object count: 0
18:05:41.0586 0x1054 Actual detected object count: 0
18:08:43.0023 0x103c Deinitialize success
  • 0

Advertisements


#11
SleepyDude

SleepyDude

    Trusted Helper

  • Malware Removal
  • 4,974 posts
Hi Jonata,

Thanks for the report and yes it's clean. Because there was lots of Adware I would like you to run two more scans to make sure all is gone...


Step 1 - Malwarebytes Scan

Download Malwarebytes' Anti-Malware (MBAM)
  • execute mbam-setup and follow the prompts to install the program
  • on the last step of installation adjust the check box's according to the image:
    Posted Image
  • click Finish
  • let the program update the definitions and then it will load
  • close all the other running programs, specially the Web browser
  • select the option Perform quick scan and click the Scan button
  • when the scan finish and some malware has found click the Show Results button to view the results
  • click the Save Log button, save the log to the Desktop
  • Notepad with open with the log (mbam-log-date (time).txt), please Copy & Paste the contents into your next reply
  • for now click Exit to close the program


Step 2 - Scan with ESET On-line Scanner

Download Eset On-line Scanner, run the tool and follow the prompts to install the program.
Posted Image
  • UNCHECK the box's Remove found threats and Scan Archives.
  • Click on Advanced Settings, an check the options:
    • Scan for potentially unwanted applications
    • Scan for potentially unsafe applications
    • Enable Anti-Stealth Technology
  • Disable your AntiVirus and AntiSpyware applications to speedup the scan
    (If you have difficulty properly disabling your security programs, refer to this link)
  • Click Start and then wait for the scan to finish (it will take some time).
    The virus signature database will begin to download and the Scan will start automatically. Be patient this make take some time depending on the speed of your Internet Connection.
  • Once the scan is completed, close the program
  • Use Notepad to open the log file located at C:\Program Files\ESET\ESET Online Scanner\log.txt
  • Use Notepad to open the log file located at C:\Program Files (x86)\ESET\ESET Online Scanner\log.txt
  • Copy and paste the log contents to your reply
  • Enable your AntiVirus and AntiSpyware applications


Step 3 - Security Check

Download Security Check by screen317 from here or here.
  • Save it to the Desktop.
  • Right click on the icon Posted Image and choose Run as Administrator.
    Posted Image
  • Follow the onscreen instructions inside of the black box.
  • A Notepad document should open automatically called checkup.txt; please post the full contents of that document.



Things I would like to see in your next reply:
  • The MBAM log
  • The ESET log
  • The checkup.txt log

  • 0

#12
SleepyDude

SleepyDude

    Trusted Helper

  • Malware Removal
  • 4,974 posts
Hi Jonata,

Five days have passed since your last response! Any problem with my instructions? do you need help?

Regards.

___
SleepyDude
  • 0

#13
CompCav

CompCav

    Member 5k

  • Expert
  • 12,454 posts
Due to lack of feedback, this topic has been closed.

If you need this topic reopened, please contact a staff member. This applies only to the original topic starter. Everyone else please begin a New Topic.
  • 0

#14
admin

admin

    Founder Geek

  • Community Leader
  • 24,639 posts
Re-opened at topic starters request.
  • 0

#15
SleepyDude

SleepyDude

    Trusted Helper

  • Malware Removal
  • 4,974 posts
Hi Jonata,

Welcome back. How is the computer running?

Did you follow the steps on my post #11? If so please post the requested logs.
  • 0






Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP