Jump to content

Welcome to Geeks to Go - Register now for FREE

Need help with your computer or device? Want to learn new tech skills? You're in the right place!
Geeks to Go is a friendly community of tech experts who can solve any problem you have. Just create a free account and post your question. Our volunteers will reply quickly and guide you through the steps. Don't let tech troubles stop you. Join Geeks to Go now and get the support you need!

How it Works Create Account
Photo

Cannot install (some) third party software [Solved]


  • This topic is locked This topic is locked

#1
Tyskie

Tyskie

    Member

  • Member
  • PipPip
  • 58 posts
Greetings,

As you will see here, SleepyDude has asked me to post a new thread in the Malware Removal section of the forum so that's what I did.

I don't really know what else to say, all the information is in that thread :confused:

I would appreciate it if someone could have a read of it and then give me some :help:

Thanks in advance!

Luke.
  • 0

Advertisements


#2
SleepyDude

SleepyDude

    Trusted Helper

  • Malware Removal
  • 4,974 posts
Hello Luke, Welcome to Malware Removal section of the forum.

Let's see if we find what is happening with your computer by taking a deeper look...

Please note I'm currently in training, all my responses will be revised by my Teacher before I post so expect a slight delay between replies. On the bright side, you have two people to examine your problem!

Sometimes this can be a long process, it's very important that you stay with me and follow all my instructions to the letter until I declare your machine is clean.

I have compiled a list of guidelines you must take in consideration so that the helping process goes smooth for you and for me:

  • Please perform all steps in the order they are listed in each set of instructions
  • Don't install/uninstall any software or run any other cleaning tools besides the ones I ask you to use
    • Running other programs can interfere with the tools we use and have unpredicted results. Also I need to know what is going on with your machine at any time
  • If possible avoid using the computer for other tasks until we finish the cleaning process
    • The reason for this is because it can make the malware infection worst and more difficult to clean. Some malware can download updates from the internet when you use the computer
  • Please don't attach your logs instead Copy & Paste the information to your post unless specifically instructed to do so
  • Please read every post completely before doing anything if you have some doubts or questions please ask before continuing

IMPORTANT: At GeeksToGo we do our best to help you solving the problem but sometimes things don't go as planned. To be safe than sorry you should Backup your important data to a safe place, anywhere except on the computer with problems.

The all fixing process need to be executed from a user account with Administrator privileges also some of the tasks need to be executed in Safe Mode, you should save or print the instructions for use when you don't have access to the forum.


Step 1 - Custom OTL Scan

  • Download OTL to your Desktop
  • Execute OTL right click on the icon Posted Image and choose Run as Administrator. Make sure all other windows are closed.
    Posted Image
  • Do not change any other settings and tick only the following check box's:
    • Scan All Users
    • LOP Check
    • Purity Check
  • on the Posted Image box paste this:
    netsvcs
    BASESERVICES
    %SYSTEMDRIVE%\*.exe
    /md5start
    services.*
    explorer.exe
    winlogon.exe
    Userinit.exe
    svchost.exe
    /md5stop
    dir "%systemdrive%\*" /S /A:L /C
    CREATERESTOREPOINT
    
  • Click the Run Scan button. Let the program run uninterrupted, the scan won't take long.
    • When the scan completes, it will open notepad with OTL.Txt and another with Extras.txt. The files are saved on the same location as OTL.
    • Please copy (Edit->Select All, Edit->Copy) the full contents of both files and post in your topic.

  • 1

#3
Tyskie

Tyskie

    Member

  • Topic Starter
  • Member
  • PipPip
  • 58 posts
Wow, that was quick!

Unfortunately I probably won't be able to get to the problem computer today. I have so far read and understood your post fully and will reply as soon as I am able to carry out your instructions.

Until then, then :P

Luke.
  • 0

#4
Tyskie

Tyskie

    Member

  • Topic Starter
  • Member
  • PipPip
  • 58 posts
Hi SleepyDude,

The logs:

Extras.txt

OTL Extras logfile created on: 06/02/2014 12:27:05 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\user1\Desktop
Professional Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.11.9600.16476)
Locale: 00000809 | Country: United Kingdom | Language: ENG | Date Format: dd/MM/yyyy

3.24 Gb Total Physical Memory | 2.37 Gb Available Physical Memory | 73.15% Memory free
6.48 Gb Paging File | 5.64 Gb Available in Paging File | 87.04% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 74.41 Gb Total Space | 51.40 Gb Free Space | 69.09% Space Free | Partition Type: NTFS

Computer Name: UPSTAIRS-RECEPT | User Name: user1 | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Extra Registry (SafeList) ==========


========== File Associations ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\Windows\System32\control.exe (Microsoft Corporation)
.hlp [@ = hlpfile] -- C:\Windows\winhlp32.exe (Microsoft Corporation)
.html [@ = ChromeHTML] -- C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.)

[HKEY_USERS\S-1-5-21-3989558276-3022501522-427811093-1000\SOFTWARE\Classes\<extension>]
.html [@ = ChromeHTML] -- Reg Error: Key error. File not found

========== Shell Spawning ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
hlpfile [open] -- %SystemRoot%\winhlp32.exe %1 (Microsoft Corporation)
htmlfile [edit] -- Reg Error: Key error.
htmlfile [print] -- "%systemroot%\system32\rundll32.exe" "%systemroot%\system32\mshtml.dll",PrintHTML "%1"
http [open] -- "C:\Program Files\Google\Chrome\Application\chrome.exe" -- "%1" (Google Inc.)
https [open] -- "C:\Program Files\Google\Chrome\Application\chrome.exe" -- "%1" (Google Inc.)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [AddToPlaylistVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" (VideoLAN)
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [PlayWithVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" (VideoLAN)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

========== Security Center Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = Reg Error: Unknown registry data type -- File not found
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]

========== Firewall Settings ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 0
"DisableNotifications" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"EnableFirewall" = 0
"DisableNotifications" = 0

========== Authorized Applications List ==========


========== Vista Active Open Ports Exception List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]

========== Vista Active Application Exception List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{079FBDDC-9FF1-4849-9098-88A3768E9357}" = protocol=6 | dir=in | app=c:\program files\avg\avg2014\avgmfapx.exe |
"{8EF92E11-985D-48C2-AAB2-BADD57772A62}" = protocol=17 | dir=in | app=c:\program files\avg\avg2014\avgdiagex.exe |
"{C8AA1000-F574-4DBC-A32F-1E723F36ABAC}" = protocol=6 | dir=in | app=c:\program files\avg\avg2014\avgdiagex.exe |
"{EE2C6C4B-FAD0-404E-9A9D-0F5638A2ADDD}" = protocol=17 | dir=in | app=c:\program files\avg\avg2014\avgmfapx.exe |
"TCP Query User{50859DB2-FAF0-4E75-BB83-39EC6C5308AB}C:\users\user1\appdata\local\logmein rescue applet\lmir0001.tmp\lmi_rescue.exe" = protocol=6 | dir=in | app=c:\users\user1\appdata\local\logmein rescue applet\lmir0001.tmp\lmi_rescue.exe |
"UDP Query User{3DD45658-4955-41ED-A13B-53D324F8CA8B}C:\users\user1\appdata\local\logmein rescue applet\lmir0001.tmp\lmi_rescue.exe" = protocol=17 | dir=in | app=c:\users\user1\appdata\local\logmein rescue applet\lmir0001.tmp\lmi_rescue.exe |

========== HKEY_LOCAL_MACHINE Uninstall List ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{18455581-E099-4BA8-BC6B-F34B2F06600C}" = Google Toolbar for Internet Explorer
"{2318C2B1-4965-11d4-9B18-009027A5CD4F}" = Google Toolbar for Internet Explorer
"{26A24AE4-039D-4CA4-87B4-2F83217051FF}" = Java 7 Update 51
"{28DA7D8B-F9A4-4F18-8AA0-551B1E084D0D}" = Ralink RT2870 Wireless LAN Card
"{3B97ADB7-3DA1-4964-BC10-68384BA6A66F}" = AVG 2014
"{44BC4A3F-0332-435B-9B75-437FB95F2F88}" = AVG 2014
"{4903D172-DCCB-392F-93A3-34CA9D47FE3D}" = Microsoft .NET Framework 4.5.1
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033" = Microsoft .NET Framework 4.5.1
"{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}" = Visual Studio 2012 x86 Redistributables
"{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{AC76BA86-7AD7-1033-7B44-AB0000000001}" = Adobe Reader XI (11.0.06)
"{EA1DC8F8-C357-44CA-A332-AB9762DF698C}" = OpenOffice 4.0.0
"Adobe Flash Player ActiveX" = Adobe Flash Player 12 ActiveX
"AVG" = AVG 2014
"AVG SafeGuard toolbar" = AVG SafeGuard toolbar
"Google Chrome" = Google Chrome
"HDMI" = Intel® Graphics Media Accelerator Driver
"PROSet" = Intel® Network Connections Drivers
"VLC media player" = VLC media player 2.1.1

========== Last 20 Event Log Errors ==========

[ Application Events ]
Error - 30/01/2014 09:17:35 | Computer Name = Upstairs-Reception | Source = Application Error | ID = 1000
Description = Faulting application name: 7z920.exe, version: 0.0.0.0, time stamp:
0x4b1ae3c6 Faulting module name: 7z920.exe, version: 0.0.0.0, time stamp: 0x4b1ae3c6
Exception
code: 0xc0000005 Fault offset: 0x00002c77 Faulting process id: 0x5fc Faulting application
start time: 0x01cf1dbd9afcbf63 Faulting application path: C:\Users\user1\Downloads\7z920.exe
Faulting
module path: C:\Users\user1\Downloads\7z920.exe Report Id: e19ff8cc-89b0-11e3-bdad-c51d444851b9

Error - 30/01/2014 09:17:54 | Computer Name = Upstairs-Reception | Source = WinMgmt | ID = 10
Description =

Error - 30/01/2014 09:17:59 | Computer Name = Upstairs-Reception | Source = Application Error | ID = 1000
Description = Faulting application name: 7z920.exe, version: 0.0.0.0, time stamp:
0x4b1ae3c6 Faulting module name: 7z920.exe, version: 0.0.0.0, time stamp: 0x4b1ae3c6
Exception
code: 0xc0000005 Fault offset: 0x00002c77 Faulting process id: 0x6d0 Faulting application
start time: 0x01cf1dbda99ab292 Faulting application path: C:\Users\user1\Downloads\7z920.exe
Faulting
module path: C:\Users\user1\Downloads\7z920.exe Report Id: f03b8a9a-89b0-11e3-bdad-c51d444851b9

Error - 30/01/2014 11:07:12 | Computer Name = Upstairs-Reception | Source = WinMgmt | ID = 10
Description =

Error - 30/01/2014 11:09:41 | Computer Name = Upstairs-Reception | Source = Application Error | ID = 1000
Description = Faulting application name: 7z920.exe, version: 0.0.0.0, time stamp:
0x4b1ae3c6 Faulting module name: 7z920.exe, version: 0.0.0.0, time stamp: 0x4b1ae3c6
Exception
code: 0xc0000005 Fault offset: 0x00002cea Faulting process id: 0xb24 Faulting application
start time: 0x01cf1dcd4bfa6465 Faulting application path: C:\Users\user1\Downloads\7z920.exe
Faulting
module path: C:\Users\user1\Downloads\7z920.exe Report Id: 8ac49466-89c0-11e3-b751-001e4ff00367

Error - 30/01/2014 11:09:49 | Computer Name = Upstairs-Reception | Source = Application Error | ID = 1000
Description = Faulting application name: 7z920.exe, version: 0.0.0.0, time stamp:
0x4b1ae3c6 Faulting module name: 7z920.exe, version: 0.0.0.0, time stamp: 0x4b1ae3c6
Exception
code: 0xc0000005 Fault offset: 0x00002cea Faulting process id: 0xd80 Faulting application
start time: 0x01cf1dcd516d4ac5 Faulting application path: C:\Users\user1\Downloads\7z920.exe
Faulting
module path: C:\Users\user1\Downloads\7z920.exe Report Id: 8f31a368-89c0-11e3-b751-001e4ff00367

Error - 30/01/2014 11:10:13 | Computer Name = Upstairs-Reception | Source = Application Error | ID = 1000
Description = Faulting application name: wzipse40.exe, version: 0.0.0.0, time stamp:
0x4aef3ffd Faulting module name: wzipse40.exe, version: 0.0.0.0, time stamp: 0x4aef3ffd
Exception
code: 0xc0000005 Fault offset: 0x0001ddf7 Faulting process id: 0x6b0 Faulting application
start time: 0x01cf1dcd5f7eccc4 Faulting application path: C:\Users\user1\Downloads\wzipse40.exe
Faulting
module path: C:\Users\user1\Downloads\wzipse40.exe Report Id: 9dae4353-89c0-11e3-b751-001e4ff00367

Error - 30/01/2014 11:10:18 | Computer Name = Upstairs-Reception | Source = Application Error | ID = 1000
Description = Faulting application name: wzipse40.exe, version: 0.0.0.0, time stamp:
0x4aef3ffd Faulting module name: wzipse40.exe, version: 0.0.0.0, time stamp: 0x4aef3ffd
Exception
code: 0xc0000005 Fault offset: 0x0001ddf7 Faulting process id: 0xd90 Faulting application
start time: 0x01cf1dcd62eac728 Faulting application path: C:\Users\user1\Downloads\wzipse40.exe
Faulting
module path: C:\Users\user1\Downloads\wzipse40.exe Report Id: a0a0d78a-89c0-11e3-b751-001e4ff00367

Error - 03/02/2014 05:22:04 | Computer Name = Upstairs-Reception | Source = WinMgmt | ID = 10
Description =

Error - 06/02/2014 08:26:03 | Computer Name = Upstairs-Reception | Source = WinMgmt | ID = 10
Description =

[ System Events ]
Error - 30/01/2014 09:16:38 | Computer Name = Upstairs-Reception | Source = Service Control Manager | ID = 7001
Description = The Network List Service service depends on the Network Location Awareness
service which failed to start because of the following error: %%1068

Error - 30/01/2014 09:16:39 | Computer Name = Upstairs-Reception | Source = Service Control Manager | ID = 7001
Description = The Network List Service service depends on the Network Location Awareness
service which failed to start because of the following error: %%1068

Error - 30/01/2014 09:16:40 | Computer Name = Upstairs-Reception | Source = DCOM | ID = 10005
Description =

Error - 30/01/2014 09:16:40 | Computer Name = Upstairs-Reception | Source = DCOM | ID = 10005
Description =

Error - 30/01/2014 09:16:40 | Computer Name = Upstairs-Reception | Source = Service Control Manager | ID = 7001
Description = The Network List Service service depends on the Network Location Awareness
service which failed to start because of the following error: %%1068

Error - 30/01/2014 09:16:41 | Computer Name = Upstairs-Reception | Source = Service Control Manager | ID = 7001
Description = The Network List Service service depends on the Network Location Awareness
service which failed to start because of the following error: %%1068

Error - 30/01/2014 09:16:41 | Computer Name = Upstairs-Reception | Source = Service Control Manager | ID = 7001
Description = The Network List Service service depends on the Network Location Awareness
service which failed to start because of the following error: %%1068

Error - 30/01/2014 09:16:41 | Computer Name = Upstairs-Reception | Source = Service Control Manager | ID = 7001
Description = The Network List Service service depends on the Network Location Awareness
service which failed to start because of the following error: %%1068

Error - 30/01/2014 09:16:41 | Computer Name = Upstairs-Reception | Source = Service Control Manager | ID = 7001
Description = The Network List Service service depends on the Network Location Awareness
service which failed to start because of the following error: %%1068

Error - 30/01/2014 09:16:41 | Computer Name = Upstairs-Reception | Source = Service Control Manager | ID = 7001
Description = The Network List Service service depends on the Network Location Awareness
service which failed to start because of the following error: %%1068


< End of report >


OTL.txt

OTL logfile created on: 06/02/2014 12:27:05 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\user1\Desktop
Professional Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.11.9600.16476)
Locale: 00000809 | Country: United Kingdom | Language: ENG | Date Format: dd/MM/yyyy

3.24 Gb Total Physical Memory | 2.37 Gb Available Physical Memory | 73.15% Memory free
6.48 Gb Paging File | 5.64 Gb Available in Paging File | 87.04% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 74.41 Gb Total Space | 51.40 Gb Free Space | 69.09% Space Free | Partition Type: NTFS

Computer Name: UPSTAIRS-RECEPT | User Name: user1 | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2014/02/06 12:25:56 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\user1\Desktop\OTL.exe
PRC - [2014/01/24 11:25:05 | 000,049,152 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\taskhost.exe
PRC - [2014/01/23 10:12:50 | 002,534,936 | ---- | M] () -- C:\Program Files\AVG SafeGuard toolbar\vprot.exe
PRC - [2013/12/21 06:04:16 | 000,065,432 | ---- | M] (Adobe Systems Incorporated) -- C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
PRC - [2013/11/18 21:59:36 | 000,590,352 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG2014\avgcsrvx.exe
PRC - [2013/11/11 22:02:14 | 003,478,544 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG2014\avgidsagent.exe
PRC - [2013/11/07 22:03:50 | 004,956,176 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG2014\avgui.exe
PRC - [2013/10/28 23:24:02 | 000,729,648 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG2014\avgrsx.exe
PRC - [2013/09/24 01:33:08 | 000,348,008 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG2014\avgwdsvc.exe
PRC - [2011/02/25 05:30:54 | 002,616,320 | ---- | M] (Microsoft Corporation) -- C:\Windows\explorer.exe


========== Modules (No Company Name) ==========

MOD - [2014/01/23 10:12:50 | 002,534,936 | ---- | M] () -- C:\Program Files\AVG SafeGuard toolbar\vprot.exe
MOD - [2014/01/23 10:12:50 | 000,519,704 | ---- | M] () -- C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\17.3.0\log4cplusU.dll


========== Services (SafeList) ==========

SRV - [2014/01/24 14:40:56 | 000,257,928 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Windows\System32\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc)
SRV - [2014/01/24 11:21:15 | 001,343,400 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\Wat\WatAdminSvc.exe -- (WatAdminSvc)
SRV - [2014/01/23 10:12:50 | 001,772,056 | ---- | M] (AVG Secure Search) [Disabled | Stopped] -- C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\17.3.0\ToolbarUpdater.exe -- (vToolbarUpdater17.3.0)
SRV - [2013/12/21 06:04:16 | 000,065,432 | ---- | M] (Adobe Systems Incorporated) [Auto | Running] -- C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe -- (AdobeARMservice)
SRV - [2013/11/26 08:29:52 | 000,108,032 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\IEEtwCollector.exe -- (IEEtwCollectorService)
SRV - [2013/11/11 22:02:14 | 003,478,544 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto | Running] -- C:\Program Files\AVG\AVG2014\avgidsagent.exe -- (AVGIDSAgent)
SRV - [2013/09/24 01:33:08 | 000,348,008 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto | Running] -- C:\Program Files\AVG\AVG2014\avgwdsvc.exe -- (avgwd)
SRV - [2013/05/27 04:57:27 | 000,680,960 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV - [2009/07/14 01:16:15 | 000,016,384 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\StorSvc.dll -- (StorSvc)
SRV - [2009/07/14 01:16:13 | 000,025,088 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\sensrsvc.dll -- (SensrSvc)
SRV - [2009/07/14 01:16:12 | 001,004,544 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\PeerDistSvc.dll -- (PeerDistSvc)


========== Driver Services (SafeList) ==========

DRV - [2014/01/23 10:12:50 | 000,037,664 | ---- | M] (AVG Technologies) [Kernel | System | Running] -- C:\Windows\System32\drivers\avgtpx86.sys -- (avgtp)
DRV - [2013/11/05 21:50:48 | 000,120,600 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | System | Running] -- C:\Windows\System32\drivers\avgdiskx.sys -- (Avgdiskx)
DRV - [2013/11/04 21:57:30 | 000,209,176 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | System | Running] -- C:\Windows\System32\drivers\avgidsdriverx.sys -- (AVGIDSDriver)
DRV - [2013/10/31 23:00:28 | 000,176,952 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | System | Running] -- C:\Windows\System32\drivers\avgldx86.sys -- (Avgldx86)
DRV - [2013/10/31 22:30:08 | 000,222,520 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | Boot | Running] -- C:\Windows\System32\drivers\avglogx.sys -- (Avglogx)
DRV - [2013/10/24 22:28:32 | 000,147,768 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | Boot | Running] -- C:\Windows\System32\drivers\avgidshx.sys -- (AVGIDSHX)
DRV - [2013/10/01 00:49:38 | 000,102,712 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | Boot | Running] -- C:\Windows\System32\drivers\avgmfx86.sys -- (Avgmfx86)
DRV - [2013/09/17 00:57:26 | 000,022,840 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | System | Running] -- C:\Windows\System32\drivers\avgidsshimx.sys -- (AVGIDSShim)
DRV - [2013/09/10 00:43:20 | 000,027,448 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | Boot | Running] -- C:\Windows\System32\drivers\avgrkx86.sys -- (Avgrkx86)
DRV - [2013/03/29 17:01:16 | 001,598,256 | ---- | M] (Ralink Technology Corp.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\netr28u.sys -- (netr28u)
DRV - [2013/01/03 08:18:04 | 000,040,200 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\LMouFilt.Sys -- (LMouFilt)
DRV - [2013/01/03 08:18:04 | 000,030,984 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\LUsbFilt.sys -- (LUsbFilt)
DRV - [2013/01/03 08:18:00 | 000,044,680 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\LHidFilt.Sys -- (LHidFilt)
DRV - [2012/10/30 01:22:32 | 000,232,312 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\e1e6232.sys -- (e1express)
DRV - [2012/08/23 14:44:32 | 000,014,848 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\rdpvideominiport.sys -- (RdpVideoMiniport)
DRV - [2012/08/23 14:41:34 | 000,027,136 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\TsUsbGD.sys -- (TsUsbGD)
DRV - [2012/08/23 14:40:25 | 000,049,664 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\TsUsbFlt.sys -- (TsUsbFlt)
DRV - [2010/11/20 21:29:03 | 000,175,360 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\vmbus.sys -- (vmbus)
DRV - [2010/11/20 21:29:03 | 000,062,464 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\dmvsc.sys -- (dmvsc)
DRV - [2010/11/20 21:29:03 | 000,040,704 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\vmstorfl.sys -- (storflt)
DRV - [2010/11/20 21:29:03 | 000,028,032 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\storvsc.sys -- (storvsc)
DRV - [2010/11/20 21:29:03 | 000,017,920 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\VMBusHID.sys -- (VMBusHID)
DRV - [2010/11/20 21:29:03 | 000,005,632 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\vms3cap.sys -- (s3cap)
DRV - [2009/09/18 22:32:06 | 000,045,184 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\HECI.sys -- (HECI)
DRV - [2009/07/13 23:45:33 | 000,083,456 | ---- | M] (Brother Industries Ltd.) [Kernel | System | Running] -- C:\Windows\System32\drivers\serial.sys -- (Serial)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE - HKLM\..\SearchScopes,DefaultScope = {6A1806CD-94D4-4689-BA73-E35EA1EA9990}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/...ms}&FORM=IE8SRC
IE - HKLM\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = http://www.google.co...g}&sourceid=ie7


IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0



IE - HKU\S-1-5-21-3989558276-3022501522-427811093-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = https://www.google.co.uk/
IE - HKU\S-1-5-21-3989558276-3022501522-427811093-1000\..\SearchScopes,DefaultScope = {6A1806CD-94D4-4689-BA73-E35EA1EA9990}
IE - HKU\S-1-5-21-3989558276-3022501522-427811093-1000\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/...Box&FORM=IE11SR
IE - HKU\S-1-5-21-3989558276-3022501522-427811093-1000\..\SearchScopes\{2B375AE1-DF09-4E1F-BC9D-434E6A7AD93E}: "URL" = https://www.google.c...q={searchTerms}
IE - HKU\S-1-5-21-3989558276-3022501522-427811093-1000\..\SearchScopes\{2DF55C5D-B8A6-422F-85A7-F2919884FFBE}: "URL" = https://www.google.c...q={searchTerms}
IE - HKU\S-1-5-21-3989558276-3022501522-427811093-1000\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = https://www.google.c...q={searchTerms}
IE - HKU\S-1-5-21-3989558276-3022501522-427811093-1000\..\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233}: "URL" = http://mysearch.avg....fr&d=2014-01-23 10:14:08&v=17.3.1.91&pid=safeguard&sg=&sap=dsp&q={searchTerms}
IE - HKU\S-1-5-21-3989558276-3022501522-427811093-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0


========== FireFox ==========

FF - HKLM\Software\MozillaPlugins\@avg.com/AVG SiteSafety plugin,version=11.0.0.1,application/x-avg-sitesafety-plugin: C:\Program Files\Common Files\AVG Secure Search\SiteSafetyInstaller\17.3.0\\npsitesafety.dll ()
FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.51.2: C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.51.2: C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=2.1.1: C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)

FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\avg@toolbar: C:\ProgramData\AVG SafeGuard toolbar\FireFoxExt\17.3.1.91 [2014/01/23 10:14:45 | 000,000,000 | ---D | M]


========== Chrome ==========

CHR - Extension: No name found = C:\Users\user1\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0\
CHR - Extension: No name found = C:\Users\user1\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0\
CHR - Extension: No name found = C:\Users\user1\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0\
CHR - Extension: No name found = C:\Users\user1\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0\
CHR - Extension: No name found = C:\Users\user1\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.6.0_0\
CHR - Extension: No name found = C:\Users\user1\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_1\

O1 HOSTS File: ([2009/06/10 21:39:37 | 000,000,824 | ---- | M]) - C:\Windows\System32\drivers\etc\hosts
O2 - BHO: (Java™ Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
O2 - BHO: (AVG SafeGuard toolbar) - {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files\AVG SafeGuard toolbar\17.3.1.91\AVG SafeGuard toolbar_toolbar.dll (AVG Secure Search)
O2 - BHO: (Google Toolbar Notifier BHO) - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.7.9012.1008\swg.dll (Google Inc.)
O2 - BHO: (Java™ Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
O3 - HKLM\..\Toolbar: (AVG SafeGuard toolbar) - {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files\AVG SafeGuard toolbar\17.3.1.91\AVG SafeGuard toolbar_toolbar.dll (AVG Secure Search)
O3 - HKU\S-1-5-21-3989558276-3022501522-427811093-1000\..\Toolbar\WebBrowser: (no name) - {E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39} - No CLSID value found.
O4 - HKLM..\Run: [AVG_UI] C:\Program Files\AVG\AVG2014\avgui.exe (AVG Technologies CZ, s.r.o.)
O4 - HKLM..\Run: [vProt] C:\Program Files\AVG SafeGuard toolbar\vprot.exe ()
O4 - HKU\S-1-5-21-3989558276-3022501522-427811093-1000..\Run: [AVG-Secure-Search-Update_1213b] C:\Users\user1\AppData\Roaming\AVG 1213b Campaign\AVG-Secure-Search-Update-1213b.exe /PROMPT /mid=a99726ffb49147d2b60ed1570914ea94-f9e777cefa99b17e35a2729ad290c14594d4b8de /CMPID=1213b File not found
O4 - HKU\S-1-5-19..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (Microsoft Corporation)
O4 - HKU\S-1-5-20..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (Microsoft Corporation)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O7 - HKU\S-1-5-21-3989558276-3022501522-427811093-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O13 - gopher Prefix: missing
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.0.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{58FCC7CF-3515-4FE1-9B86-FB15EACEFF41}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{F8DA4515-B57B-4945-B86C-BF2FD6300DE1}: DhcpNameServer = 192.168.0.1
O18 - Protocol\Handler\viprotocol {B658800C-F66E-4EF3-AB85-6C0C227862A9} - C:\Program Files\Common Files\AVG Secure Search\ViProtocolInstaller\17.3.0\ViProtocol.dll (AVG Secure Search)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\System32\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\System32\SystemPropertiesPerformance.exe (Microsoft Corporation)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2009/06/10 21:42:20 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)

NetSvcs: FastUserSwitchingCompatibility - File not found
NetSvcs: Ias - C:\Windows\System32\ias.dll (Microsoft Corporation)
NetSvcs: Nla - File not found
NetSvcs: Ntmssvc - File not found
NetSvcs: NWCWorkstation - File not found
NetSvcs: Nwsapagent - File not found
NetSvcs: SRService - File not found
NetSvcs: WmdmPmSp - File not found
NetSvcs: LogonHours - File not found
NetSvcs: PCAudit - File not found
NetSvcs: helpsvc - File not found
NetSvcs: uploadmgr - File not found

CREATERESTOREPOINT
Restore point Set: OTL Restore Point

========== Files/Folders - Created Within 30 Days ==========

[2014/02/06 12:25:56 | 000,602,112 | ---- | C] (OldTimer Tools) -- C:\Users\user1\Desktop\OTL.exe
[2014/01/31 11:33:00 | 000,000,000 | ---D | C] -- C:\Users\user1\Desktop\MemTest86
[2014/01/28 14:14:51 | 000,000,000 | ---D | C] -- C:\Users\user1\Desktop\DotNet Setup Verifier
[2014/01/28 10:30:35 | 000,000,000 | ---D | C] -- C:\183c9fabe2042f9190
[2014/01/27 09:48:07 | 000,361,185 | ---- | C] (Farbar) -- C:\Users\user1\Desktop\FSS.exe
[2014/01/27 09:45:20 | 000,982,016 | ---- | C] (Farbar) -- C:\Users\user1\Desktop\MiniToolBox.exe
[2014/01/27 09:23:09 | 002,724,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mshtml.tlb
[2014/01/27 09:23:09 | 000,208,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ie4uinit.exe
[2014/01/27 09:23:08 | 000,440,832 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieui.dll
[2014/01/27 09:23:08 | 000,043,008 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\jsproxy.dll
[2014/01/27 09:23:08 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieetwcollectorres.dll
[2014/01/27 09:23:07 | 000,703,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieapfltr.dll
[2014/01/27 09:23:07 | 000,553,472 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\jscript9diag.dll
[2014/01/27 09:23:07 | 000,061,952 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iesetup.dll
[2014/01/27 09:23:07 | 000,032,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iernonce.dll
[2014/01/27 09:23:06 | 000,112,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieUnatt.exe
[2014/01/27 09:23:06 | 000,108,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieetwcollector.exe
[2014/01/27 09:23:06 | 000,051,200 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieetwproxystub.dll
[2014/01/27 09:23:04 | 001,928,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\inetcpl.cpl
[2014/01/27 09:23:02 | 004,243,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\jscript9.dll
[2014/01/24 14:44:00 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Adobe
[2014/01/24 14:44:00 | 000,000,000 | ---D | C] -- C:\Program Files\Adobe
[2014/01/24 14:43:49 | 000,000,000 | ---D | C] -- C:\ProgramData\Adobe
[2014/01/24 14:39:03 | 000,000,000 | ---D | C] -- C:\Windows\Sun
[2014/01/24 14:38:57 | 000,000,000 | ---D | C] -- C:\ProgramData\Oracle
[2014/01/24 14:38:49 | 000,000,000 | ---D | C] -- C:\ProgramData\Sun
[2014/01/24 14:38:47 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Java
[2014/01/24 14:38:30 | 000,264,616 | ---- | C] (Oracle Corporation) -- C:\Windows\System32\javaws.exe
[2014/01/24 14:38:24 | 000,175,016 | ---- | C] (Oracle Corporation) -- C:\Windows\System32\javaw.exe
[2014/01/24 14:38:24 | 000,174,504 | ---- | C] (Oracle Corporation) -- C:\Windows\System32\java.exe
[2014/01/24 14:38:24 | 000,094,632 | ---- | C] (Oracle Corporation) -- C:\Windows\System32\WindowsAccessBridge.dll
[2014/01/24 14:38:24 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
[2014/01/24 14:38:14 | 000,000,000 | ---D | C] -- C:\Program Files\Java
[2014/01/24 14:35:45 | 000,000,000 | ---D | C] -- C:\ProgramData\McAfee
[2014/01/24 13:46:41 | 000,012,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\TsUsbRedirectionGroupPolicyControl.exe
[2014/01/24 13:46:40 | 000,014,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\rdpvideominiport.sys
[2014/01/24 13:46:36 | 000,013,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\TsUsbRedirectionGroupPolicyExtension.dll
[2014/01/24 13:46:36 | 000,012,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\RdpGroupPolicyExtension.dll
[2014/01/24 13:46:35 | 000,049,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\TsUsbFlt.sys
[2014/01/24 13:46:35 | 000,027,136 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\TsUsbGD.sys
[2014/01/24 13:46:30 | 000,317,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wksprt.exe
[2014/01/24 13:46:30 | 000,269,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\aaclient.dll
[2014/01/24 13:46:30 | 000,221,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\rdpudd.dll
[2014/01/24 13:46:30 | 000,192,000 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\rdpendp_winip.dll
[2014/01/24 13:46:30 | 000,056,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\TSWbPrxy.exe
[2014/01/24 13:46:30 | 000,046,592 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\MsRdpWebAccess.dll
[2014/01/24 13:46:30 | 000,037,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\tsgqec.dll
[2014/01/24 13:46:30 | 000,032,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\TsUsbGDCoInstaller.dll
[2014/01/24 13:46:30 | 000,016,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wksprtPS.dll
[2014/01/24 13:46:27 | 002,739,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\rdpcorets.dll
[2014/01/24 13:45:19 | 000,148,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\storport.sys
[2014/01/24 13:45:19 | 000,074,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\fsutil.exe
[2014/01/24 13:45:12 | 000,514,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\qdvd.dll
[2014/01/24 13:36:15 | 000,000,000 | ---D | C] -- C:\Windows\System32\Wat
[2014/01/24 12:59:25 | 000,417,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WMPhoto.dll
[2014/01/24 12:58:43 | 002,616,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\explorer.exe
[2014/01/24 12:09:35 | 000,000,000 | ---D | C] -- C:\Windows\Migration
[2014/01/24 11:45:37 | 000,172,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WUDFPlatform.dll
[2014/01/24 11:45:36 | 000,613,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WUDFx.dll
[2014/01/24 11:45:36 | 000,038,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WUDFCoinstaller.dll
[2014/01/24 11:41:50 | 000,293,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\browserchoice.exe
[2014/01/24 11:31:33 | 012,625,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wmploc.DLL
[2014/01/24 11:26:13 | 000,646,144 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\MsSpellCheckingFacility.exe
[2014/01/24 11:26:13 | 000,645,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\jsIntl.dll
[2014/01/24 11:26:13 | 000,194,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\elshyph.dll
[2014/01/24 11:26:13 | 000,182,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msls31.dll
[2014/01/24 11:26:13 | 000,164,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msrating.dll
[2014/01/24 11:26:13 | 000,071,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\RegisterIEPKEYs.exe
[2014/01/24 11:26:12 | 001,051,136 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mshtmlmedia.dll
[2014/01/24 11:26:12 | 000,616,104 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieapfltr.dat
[2014/01/24 11:26:12 | 000,367,104 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dxtmsft.dll
[2014/01/24 11:26:12 | 000,337,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\html.iec
[2014/01/24 11:26:12 | 000,244,736 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dxtrans.dll
[2014/01/24 11:26:12 | 000,238,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iedkcs32.dll
[2014/01/24 11:26:12 | 000,233,472 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\url.dll
[2014/01/24 11:26:12 | 000,034,816 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\JavaScriptCollectionAgent.dll
[2014/01/24 11:26:11 | 000,083,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\inseng.dll
[2014/01/24 11:26:11 | 000,024,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\licmgr10.dll
[2014/01/24 11:26:09 | 000,523,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msfeeds.dll
[2014/01/24 11:26:09 | 000,151,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iexpress.exe
[2014/01/24 11:26:09 | 000,139,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wextract.exe
[2014/01/24 11:26:09 | 000,056,832 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\pngfilt.dll
[2014/01/24 11:26:08 | 000,116,736 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iepeers.dll
[2014/01/24 11:26:08 | 000,111,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\IEAdvpack.dll
[2014/01/24 11:26:08 | 000,086,016 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iesysprep.dll
[2014/01/24 11:26:08 | 000,074,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\SetIEInstalledDate.exe
[2014/01/24 11:26:08 | 000,061,952 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\MshtmlDac.dll
[2014/01/24 11:26:08 | 000,048,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mshtmler.dll
[2014/01/24 11:26:08 | 000,043,008 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msfeedsbs.dll
[2014/01/24 11:26:08 | 000,036,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\imgutil.dll
[2014/01/24 11:26:08 | 000,012,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msfeedssync.exe
[2014/01/24 11:25:30 | 003,969,472 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ntkrnlpa.exe
[2014/01/24 11:25:30 | 003,914,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ntoskrnl.exe
[2014/01/24 11:25:30 | 000,619,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\tdh.dll
[2014/01/24 11:25:30 | 000,038,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\csrsrv.dll
[2014/01/24 11:25:16 | 000,187,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\FWPKCLNT.SYS
[2014/01/24 11:25:05 | 000,049,152 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\taskhost.exe
[2014/01/24 11:23:11 | 003,419,136 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d2d1.dll
[2014/01/24 11:23:11 | 002,284,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msmpeg2vdec.dll
[2014/01/24 11:23:11 | 001,988,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3d10warp.dll
[2014/01/24 11:23:11 | 001,247,744 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\DWrite.dll
[2014/01/24 11:23:11 | 001,158,144 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\XpsPrint.dll
[2014/01/24 11:23:11 | 001,080,832 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3d10.dll
[2014/01/24 11:23:11 | 000,604,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3d10level9.dll
[2014/01/24 11:23:11 | 000,364,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\XpsGdiConverter.dll
[2014/01/24 11:23:11 | 000,293,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dxgi.dll
[2014/01/24 11:23:11 | 000,249,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3d10_1core.dll
[2014/01/24 11:23:11 | 000,220,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3d10core.dll
[2014/01/24 11:23:11 | 000,207,872 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WindowsCodecsExt.dll
[2014/01/24 11:23:11 | 000,187,392 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\UIAnimation.dll
[2014/01/24 11:23:11 | 000,161,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3d10_1.dll
[2014/01/24 11:23:11 | 000,010,752 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-downlevel-advapi32-l1-1-0.dll
[2014/01/24 11:23:11 | 000,009,728 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-downlevel-shlwapi-l1-1-0.dll
[2014/01/24 11:23:11 | 000,005,632 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-downlevel-shlwapi-l2-1-0.dll
[2014/01/24 11:23:11 | 000,005,632 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-downlevel-ole32-l1-1-0.dll
[2014/01/24 11:23:11 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-downlevel-user32-l1-1-0.dll
[2014/01/24 11:23:11 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-downlevel-advapi32-l2-1-0.dll
[2014/01/24 11:23:11 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-downlevel-version-l1-1-0.dll
[2014/01/24 11:23:11 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-downlevel-shell32-l1-1-0.dll
[2014/01/24 11:23:11 | 000,002,560 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-downlevel-normaliz-l1-1-0.dll
[2014/01/24 11:21:46 | 001,505,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3d11.dll
[2014/01/24 11:12:16 | 000,284,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\usbport.sys
[2014/01/24 11:12:15 | 000,006,016 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\usbd.sys
[2014/01/24 11:11:40 | 000,220,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ncrypt.dll
[2014/01/24 11:11:40 | 000,015,872 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\sspisrv.dll
[2014/01/24 11:11:35 | 000,903,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\certutil.exe
[2014/01/24 11:11:35 | 000,043,008 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\certenc.dll
[2014/01/24 11:11:26 | 001,164,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mfc42u.dll
[2014/01/24 11:11:26 | 001,137,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mfc42.dll
[2014/01/24 11:11:24 | 001,549,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\tquery.dll
[2014/01/24 11:11:24 | 001,401,344 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mssrch.dll
[2014/01/24 11:11:23 | 000,666,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mssvp.dll
[2014/01/24 11:11:23 | 000,337,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mssph.dll
[2014/01/24 11:11:23 | 000,197,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mssphtb.dll
[2014/01/24 11:11:23 | 000,059,392 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msscntrs.dll
[2014/01/24 11:11:16 | 000,033,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\RNDISMP.sys
[2014/01/24 11:11:12 | 000,055,808 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\hidclass.sys
[2014/01/24 11:11:12 | 000,025,728 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\hidparse.sys
[2014/01/24 11:11:06 | 001,796,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\authui.dll
[2014/01/24 11:11:06 | 000,152,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\SmartcardCredentialProvider.dll
[2014/01/24 11:11:02 | 000,376,832 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dpnet.dll
[2014/01/24 11:10:52 | 000,218,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\dxgmms1.sys
[2014/01/24 11:10:40 | 000,534,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\EncDec.dll
[2014/01/24 11:09:55 | 000,102,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\PresentationCFFRasterizerNative_v0300.dll
[2014/01/24 11:09:51 | 000,191,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\FXSCOVER.exe
[2014/01/24 11:09:49 | 000,245,760 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\OxpsConverter.exe
[2014/01/24 11:09:39 | 002,349,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\win32k.sys
[2014/01/24 11:09:34 | 000,193,536 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dhcpcore6.dll
[2014/01/24 11:09:34 | 000,044,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dhcpcsvc6.dll
[2014/01/24 11:09:28 | 000,642,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\CPFilters.dll
[2014/01/24 11:09:27 | 000,850,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\sbe.dll
[2014/01/24 11:09:27 | 000,199,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mpg2splt.ax
[2014/01/24 11:09:11 | 000,024,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\cryptdlg.dll
[2014/01/24 11:09:06 | 000,175,104 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\netcorehc.dll
[2014/01/24 11:09:06 | 000,156,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ncsi.dll
[2014/01/24 11:09:06 | 000,018,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\netevent.dll
[2014/01/24 11:08:53 | 000,015,872 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\usb8023.sys
[2014/01/24 11:08:34 | 000,047,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\WdfLdr.sys
[2014/01/24 11:08:34 | 000,009,728 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\Wdfres.dll
[2014/01/24 11:08:24 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\tzres.dll
[2014/01/24 11:08:16 | 002,576,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\gameux.dll
[2014/01/24 11:08:16 | 000,046,592 | ---- | C] (Microsoft) -- C:\Windows\System32\fpb.rs
[2014/01/24 11:08:16 | 000,045,568 | ---- | C] (Microsoft) -- C:\Windows\System32\oflc-nz.rs
[2014/01/24 11:08:16 | 000,044,544 | ---- | C] (Microsoft) -- C:\Windows\System32\pegibbfc.rs
[2014/01/24 11:08:16 | 000,043,520 | ---- | C] (Microsoft) -- C:\Windows\System32\csrr.rs
[2014/01/24 11:08:16 | 000,040,960 | ---- | C] (Microsoft) -- C:\Windows\System32\cob-au.rs
[2014/01/24 11:08:16 | 000,030,720 | ---- | C] (Microsoft) -- C:\Windows\System32\usk.rs
[2014/01/24 11:08:16 | 000,021,504 | ---- | C] (Microsoft) -- C:\Windows\System32\grb.rs
[2014/01/24 11:08:16 | 000,020,480 | ---- | C] (Microsoft) -- C:\Windows\System32\pegi-pt.rs
[2014/01/24 11:08:16 | 000,020,480 | ---- | C] (Microsoft) -- C:\Windows\System32\pegi.rs
[2014/01/24 11:08:16 | 000,015,360 | ---- | C] (Microsoft) -- C:\Windows\System32\djctq.rs
[2014/01/24 11:08:15 | 000,308,736 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\Wpc.dll
[2014/01/24 11:08:15 | 000,055,296 | ---- | C] (Microsoft) -- C:\Windows\System32\cero.rs
[2014/01/24 11:08:15 | 000,051,712 | ---- | C] (Microsoft) -- C:\Windows\System32\esrb.rs
[2014/01/24 11:08:15 | 000,023,552 | ---- | C] (Microsoft) -- C:\Windows\System32\oflc.rs
[2014/01/24 11:08:15 | 000,020,480 | ---- | C] (Microsoft) -- C:\Windows\System32\pegi-fi.rs
[2014/01/24 11:08:05 | 000,434,688 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\scavengeui.dll
[2014/01/24 11:07:53 | 000,465,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\psisdecd.dll
[2014/01/24 11:07:53 | 000,075,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\psisrndr.ax
[2014/01/24 11:07:51 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msxml3r.dll
[2014/01/24 11:07:41 | 001,328,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\quartz.dll
[2014/01/24 11:07:39 | 000,314,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\webio.dll
[2014/01/24 11:07:37 | 001,620,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WMVDECOD.DLL
[2014/01/24 11:07:35 | 000,295,424 | ---- | C] (Adobe Systems Incorporated) -- C:\Windows\System32\atmfd.dll
[2014/01/24 11:07:35 | 000,070,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\fontsub.dll
[2014/01/24 11:07:35 | 000,034,304 | ---- | C] (Adobe Systems) -- C:\Windows\System32\atmlib.dll
[2014/01/24 11:07:35 | 000,010,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dciman32.dll
[2014/01/24 11:07:29 | 000,240,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\netio.sys
[2014/01/24 11:07:28 | 000,067,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\packager.dll
[2014/01/24 11:07:24 | 000,400,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\srcore.dll
[2014/01/24 11:07:19 | 000,319,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\odbcjt32.dll
[2014/01/24 11:07:19 | 000,163,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\odbctrac.dll
[2014/01/24 11:07:19 | 000,122,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\odbccp32.dll
[2014/01/24 11:07:19 | 000,086,016 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\odbccu32.dll
[2014/01/24 11:07:19 | 000,081,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\odbccr32.dll
[2014/01/24 11:07:12 | 000,126,976 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\cscript.exe
[2014/01/24 11:07:07 | 000,040,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wwanprotdim.dll
[2014/01/24 11:07:05 | 000,271,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\conhost.exe
[2014/01/24 11:07:05 | 000,169,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\winsrv.dll
[2014/01/24 11:07:05 | 000,006,144 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-security-base-l1-1-0.dll
[2014/01/24 11:07:05 | 000,005,120 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-file-l1-1-0.dll
[2014/01/24 11:07:05 | 000,004,608 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-threadpool-l1-1-0.dll
[2014/01/24 11:07:05 | 000,004,608 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-processthreads-l1-1-0.dll
[2014/01/24 11:07:05 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-sysinfo-l1-1-0.dll
[2014/01/24 11:07:05 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-synch-l1-1-0.dll
[2014/01/24 11:07:05 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-misc-l1-1-0.dll
[2014/01/24 11:07:05 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-localregistry-l1-1-0.dll
[2014/01/24 11:07:05 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-localization-l1-1-0.dll
[2014/01/24 11:07:05 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-xstate-l1-1-0.dll
[2014/01/24 11:07:05 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-processenvironment-l1-1-0.dll
[2014/01/24 11:07:05 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-namedpipe-l1-1-0.dll
[2014/01/24 11:07:05 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-memory-l1-1-0.dll
[2014/01/24 11:07:05 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-libraryloader-l1-1-0.dll
[2014/01/24 11:07:05 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-interlocked-l1-1-0.dll
[2014/01/24 11:07:05 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-heap-l1-1-0.dll
[2014/01/24 11:07:05 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-util-l1-1-0.dll
[2014/01/24 11:07:05 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-string-l1-1-0.dll
[2014/01/24 11:07:05 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-rtlsupport-l1-1-0.dll
[2014/01/24 11:07:05 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-profile-l1-1-0.dll
[2014/01/24 11:07:05 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-io-l1-1-0.dll
[2014/01/24 11:07:05 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-handle-l1-1-0.dll
[2014/01/24 11:07:05 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-fibers-l1-1-0.dll
[2014/01/24 11:07:05 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-errorhandling-l1-1-0.dll
[2014/01/24 11:07:05 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-delayload-l1-1-0.dll
[2014/01/24 11:07:05 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-debug-l1-1-0.dll
[2014/01/24 11:07:05 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-datetime-l1-1-0.dll
[2014/01/24 11:07:05 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-console-l1-1-0.dll
[2014/01/24 11:06:55 | 000,028,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dnscacheugc.exe
[2014/01/24 11:06:54 | 000,177,152 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\portcls.sys
[2014/01/24 11:06:54 | 000,081,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\drmk.sys
[2014/01/24 11:06:51 | 000,509,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\qedit.dll
[2014/01/24 11:06:50 | 000,656,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\nshwfp.dll
[2014/01/24 11:06:50 | 000,216,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\FWPUCLNT.DLL
[2014/01/24 11:06:49 | 000,031,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\prevhost.exe
[2014/01/24 11:06:48 | 000,041,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\browcli.dll
[2014/01/24 11:06:43 | 000,123,904 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\poqexec.exe
[2014/01/24 11:06:42 | 000,133,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\ataport.sys
[2014/01/24 11:06:39 | 000,129,536 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\rdpcorekmts.dll
[2014/01/24 11:06:39 | 000,058,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\rdpwsx.dll
[2014/01/24 11:06:39 | 000,008,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\rdrmemptylst.exe
[2014/01/24 11:06:37 | 000,078,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\synceng.dll
[2014/01/24 11:06:37 | 000,027,008 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\Diskdump.sys
[2014/01/24 11:06:34 | 000,478,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\timedate.cpl
[2014/01/24 10:55:43 | 000,101,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\consent.exe
[2014/01/23 16:20:34 | 000,000,000 | ---D | C] -- C:\Windows\System32\MRT
[2014/01/23 15:20:56 | 000,000,000 | ---D | C] -- C:\Users\user1\AppData\Local\LogMeIn Rescue Applet
[2014/01/23 11:05:32 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft.NET
[2014/01/23 10:40:55 | 000,000,000 | ---D | C] -- C:\Users\user1\AppData\Roaming\Macromedia
[2014/01/23 10:35:16 | 000,000,000 | ---D | C] -- C:\Users\user1\AppData\Roaming\Adobe
[2014/01/23 10:18:56 | 000,805,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\cdosys.dll
[2014/01/23 10:15:19 | 000,826,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\rdpcore.dll
[2014/01/23 10:15:05 | 000,000,000 | ---D | C] -- C:\Users\user1\AppData\Local\AVG SafeGuard toolbar
[2014/01/23 10:14:46 | 000,000,000 | ---D | C] -- C:\ProgramData\AVG Security Toolbar
[2014/01/23 10:13:58 | 000,037,664 | ---- | C] (AVG Technologies) -- C:\Windows\System32\drivers\avgtpx86.sys
[2014/01/23 10:13:18 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\AVG Secure Search
[2014/01/23 10:13:14 | 000,000,000 | ---D | C] -- C:\ProgramData\AVG SafeGuard toolbar
[2014/01/23 10:13:13 | 000,000,000 | ---D | C] -- C:\Program Files\AVG SafeGuard toolbar
[2014/01/23 10:10:52 | 002,422,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wucltux.dll
[2014/01/23 10:10:52 | 000,045,080 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wups2.dll
[2014/01/23 10:10:43 | 000,088,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wudriver.dll
[2014/01/23 10:10:43 | 000,035,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wups.dll
[2014/01/23 10:10:42 | 000,577,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wuapi.dll
[2014/01/23 10:10:33 | 000,171,904 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wuwebv.dll
[2014/01/23 10:10:33 | 000,033,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wuapp.exe
[2014/01/22 15:24:37 | 000,000,000 | ---D | C] -- C:\Users\user1\AppData\Local\Diagnostics
[2014/01/22 15:22:36 | 000,000,000 | ---D | C] -- C:\Users\user1\AppData\Roaming\Google
[2014/01/22 15:11:43 | 000,000,000 | ---D | C] -- C:\Users\user1\AppData\Local\ElevatedDiagnostics
[2014/01/21 13:40:44 | 000,000,000 | ---D | C] -- C:\Users\user1\AppData\Roaming\vlc
[2014/01/21 13:34:38 | 001,100,288 | ---- | C] (The OpenSSL Project, http://www.openssl.org/) -- C:\Windows\System32\libeay32.dll
[2014/01/21 13:34:38 | 000,237,568 | ---- | C] (The OpenSSL Project, http://www.openssl.org/) -- C:\Windows\System32\ssleay32.dll
[2014/01/21 13:34:38 | 000,000,000 | ---D | C] -- C:\Program Files\Ralink
[2014/01/21 13:34:03 | 001,598,256 | ---- | C] (Ralink Technology Corp.) -- C:\Windows\System32\drivers\netr28u.sys
[2014/01/21 13:34:02 | 000,241,328 | ---- | C] (Ralink Technology, Inc.) -- C:\Windows\System32\RaCoInst.dll
[2014/01/21 13:34:02 | 000,000,000 | ---D | C] -- C:\ProgramData\Ralink Driver
[2014/01/21 13:34:01 | 000,000,000 | -H-D | C] -- C:\Program Files\InstallShield Installation Information
[2014/01/21 13:33:39 | 000,000,000 | ---D | C] -- C:\Users\user1\AppData\Roaming\InstallShield
[2014/01/21 12:04:21 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
[2014/01/21 12:03:53 | 000,000,000 | ---D | C] -- C:\ProgramData\Google
[2014/01/21 12:03:26 | 000,000,000 | ---D | C] -- C:\Users\user1\AppData\Local\Google
[2014/01/21 12:03:26 | 000,000,000 | ---D | C] -- C:\Program Files\Google
[2014/01/21 12:03:20 | 000,692,616 | ---- | C] (Adobe Systems Incorporated) -- C:\Windows\System32\FlashPlayerApp.exe
[2014/01/21 12:03:20 | 000,071,048 | ---- | C] (Adobe Systems Incorporated) -- C:\Windows\System32\FlashPlayerCPLApp.cpl
[2014/01/21 12:03:19 | 000,000,000 | ---D | C] -- C:\Windows\System32\Macromed
[2014/01/21 12:02:52 | 000,000,000 | ---D | C] -- C:\Users\user1\AppData\Local\Adobe
[2014/01/21 12:02:11 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
[2014/01/21 12:02:03 | 000,000,000 | ---D | C] -- C:\Program Files\VideoLAN
[2014/01/21 12:01:40 | 000,000,000 | --SD | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OpenOffice 4.0.0
[2014/01/21 12:01:14 | 000,000,000 | ---D | C] -- C:\Program Files\OpenOffice 4
[2014/01/21 11:55:46 | 000,000,000 | ---D | C] -- C:\Users\user1\AppData\Roaming\AVG2014
[2014/01/21 11:55:17 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG
[2014/01/21 11:55:16 | 000,000,000 | ---D | C] -- C:\Users\user1\AppData\Roaming\TuneUp Software
[2014/01/21 11:55:03 | 000,000,000 | -H-D | C] -- C:\$AVG
[2014/01/21 11:55:03 | 000,000,000 | ---D | C] -- C:\ProgramData\AVG2014
[2014/01/21 11:54:45 | 000,000,000 | ---D | C] -- C:\Program Files\AVG
[2014/01/21 11:52:53 | 000,000,000 | -HSD | C] -- C:\Windows\Installer
[2014/01/21 11:52:20 | 000,000,000 | -H-D | C] -- C:\ProgramData\Common Files
[2014/01/21 11:52:19 | 000,000,000 | ---D | C] -- C:\Users\user1\AppData\Local\MFAData
[2014/01/21 11:52:19 | 000,000,000 | ---D | C] -- C:\ProgramData\MFAData
[2014/01/21 11:52:19 | 000,000,000 | ---D | C] -- C:\Users\user1\AppData\Local\Avg2014
[2014/01/21 11:37:00 | 001,002,008 | ---- | C] (Intel Corporation) -- C:\Windows\System32\igxpun.exe
[2014/01/21 11:37:00 | 000,000,000 | ---D | C] -- C:\Windows\System32\x64
[2014/01/21 11:37:00 | 000,000,000 | ---D | C] -- C:\Windows\System32\Lang
[2014/01/21 11:36:48 | 000,294,912 | ---- | C] (Intel Corporation) -- C:\Windows\System32\igfxrptg.lrc
[2014/01/21 11:36:48 | 000,291,328 | ---- | C] (Intel Corporation) -- C:\Windows\System32\igfxrrus.lrc
[2014/01/21 11:36:48 | 000,289,280 | ---- | C] (Intel Corporation) -- C:\Windows\System32\igfxrptb.lrc
[2014/01/21 11:36:48 | 000,287,744 | ---- | C] (Intel Corporation) -- C:\Windows\System32\igfxrplk.lrc
[2014/01/21 11:36:48 | 000,282,624 | ---- | C] (Intel Corporation) -- C:\Windows\System32\igfxrsve.lrc
[2014/01/21 11:36:48 | 000,282,624 | ---- | C] (Intel Corporation) -- C:\Windows\System32\igfxrsky.lrc
[2014/01/21 11:36:48 | 000,280,064 | ---- | C] (Intel Corporation) -- C:\Windows\System32\igfxrnor.lrc
[2014/01/21 11:36:48 | 000,279,040 | ---- | C] (Intel Corporation) -- C:\Windows\System32\igfxrtrk.lrc
[2014/01/21 11:36:48 | 000,277,504 | ---- | C] (Intel Corporation) -- C:\Windows\System32\igfxrslv.lrc
[2014/01/21 11:36:48 | 000,262,656 | ---- | C] (Intel Corporation) -- C:\Windows\System32\igfxrtha.lrc
[2014/01/21 11:36:47 | 000,304,640 | ---- | C] (Intel Corporation) -- C:\Windows\System32\igfxrita.lrc
[2014/01/21 11:36:47 | 000,303,616 | ---- | C] (Intel Corporation) -- C:\Windows\System32\igfxrfra.lrc
[2014/01/21 11:36:47 | 000,299,520 | ---- | C] (Intel Corporation) -- C:\Windows\System32\igfxrnld.lrc
[2014/01/21 11:36:47 | 000,288,256 | ---- | C] (Intel Corporation) -- C:\Windows\System32\igfxrhun.lrc
[2014/01/21 11:36:47 | 000,281,088 | ---- | C] (Intel Corporation) -- C:\Windows\System32\igfxrfin.lrc
[2014/01/21 11:36:47 | 000,249,856 | ---- | C] (Intel Corporation) -- C:\Windows\System32\igfxrheb.lrc
[2014/01/21 11:36:47 | 000,206,848 | ---- | C] (Intel Corporation) -- C:\Windows\System32\igfxrjpn.lrc
[2014/01/21 11:36:47 | 000,205,312 | ---- | C] (Intel Corporation) -- C:\Windows\System32\igfxrkor.lrc
[2014/01/21 11:36:45 | 000,310,784 | ---- | C] (Intel Corporation) -- C:\Windows\System32\igfxrell.lrc
[2014/01/21 11:36:45 | 000,303,616 | ---- | C] (Intel Corporation) -- C:\Windows\System32\igfxrdeu.lrc
[2014/01/21 11:36:45 | 000,303,104 | ---- | C] (Intel Corporation) -- C:\Windows\System32\igfxresp.lrc
[2014/01/21 11:36:45 | 000,282,624 | ---- | C] (Intel Corporation) -- C:\Windows\System32\igfxrcsy.lrc
[2014/01/21 11:36:45 | 000,280,576 | ---- | C] (Intel Corporation) -- C:\Windows\System32\igfxrdan.lrc
[2014/01/21 11:36:45 | 000,275,968 | ---- | C] (Intel Corporation) -- C:\Windows\System32\igfxrenu.lrc
[2014/01/21 11:36:45 | 000,252,416 | ---- | C] (Intel Corporation) -- C:\Windows\System32\igfxrara.lrc
[2014/01/21 11:36:45 | 000,179,712 | ---- | C] (Intel Corporation) -- C:\Windows\System32\igfxrcht.lrc
[2014/01/21 11:36:45 | 000,178,176 | ---- | C] (Intel Corporation) -- C:\Windows\System32\igfxrchs.lrc
[2014/01/21 11:36:45 | 000,119,296 | ---- | C] (Intel Corporation) -- C:\Windows\System32\igfxcpl.cpl
[2014/01/21 11:36:40 | 000,059,392 | ---- | C] (Intel Corporation) -- C:\Windows\System32\oemdspif.dll
[2014/01/21 11:36:33 | 000,257,536 | ---- | C] (Intel Corporation) -- C:\Windows\System32\igfxTMM.dll
[2014/01/21 11:36:33 | 000,155,648 | ---- | C] (Intel Corporation) -- C:\Windows\System32\igfxCoIn_v1930.dll
[2014/01/21 11:36:33 | 000,051,712 | ---- | C] (Intel Corporation) -- C:\Windows\System32\igfxsrvc.dll
[2014/01/21 11:36:31 | 005,702,656 | ---- | C] (Intel Corporation) -- C:\Windows\System32\igfxress.dll
[2014/01/21 11:36:30 | 000,199,680 | ---- | C] (Intel Corporation) -- C:\Windows\System32\igfxpph.dll
[2014/01/21 11:36:30 | 000,130,048 | ---- | C] (Intel Corporation) -- C:\Windows\System32\igfxdo.dll
[2014/01/21 11:36:30 | 000,023,552 | ---- | C] (Intel Corporation) -- C:\Windows\System32\igfxexps.dll
[2014/01/21 11:36:29 | 000,536,576 | ---- | C] (Intel Corporation) -- C:\Windows\System32\igdumdx32.dll
[2014/01/21 11:36:14 | 004,104,192 | ---- | C] (Intel Corporation) -- C:\Windows\System32\ig4icd32.dll
[2014/01/21 11:36:13 | 002,686,976 | ---- | C] (Intel Corporation) -- C:\Windows\System32\ig4dev32.dll
[2014/01/21 11:36:13 | 000,094,208 | ---- | C] (Intel Corporation) -- C:\Windows\System32\hccutils.dll
[2014/01/21 11:36:11 | 008,198,680 | ---- | C] (Intel® Corporation) -- C:\Windows\System32\TVWSetup.exe
[2014/01/21 11:36:08 | 000,672,792 | ---- | C] (Intel Corporation) -- C:\Windows\System32\igfxcfg.exe
[2014/01/21 11:35:56 | 000,016,400 | ---- | C] (Logitech, Inc.) -- C:\Windows\System32\drivers\LNonPnP.sys
[2014/01/21 11:35:54 | 000,044,680 | ---- | C] (Logitech, Inc.) -- C:\Windows\System32\drivers\LHidFilt.Sys
[2014/01/21 11:35:54 | 000,040,200 | ---- | C] (Logitech, Inc.) -- C:\Windows\System32\drivers\LMouFilt.Sys
[2014/01/21 11:35:54 | 000,030,984 | ---- | C] (Logitech, Inc.) -- C:\Windows\System32\drivers\LUsbFilt.sys
[2014/01/21 11:35:52 | 001,584,520 | ---- | C] (Logitech, Inc.) -- C:\Windows\System32\LkmdfCoInst.dll
[2014/01/21 11:35:52 | 000,056,200 | ---- | C] (Logitech, Inc.) -- C:\Windows\System32\LMouFiltCoInst.dll
[2014/01/21 11:35:49 | 000,317,240 | ---- | C] (Intel Corporation) -- C:\Windows\System32\PROUnstl.exe
[2014/01/21 11:35:38 | 000,232,312 | ---- | C] (Intel Corporation) -- C:\Windows\System32\drivers\e1e6232.sys
[2014/01/21 11:35:38 | 000,121,440 | ---- | C] (Intel Corporation) -- C:\Windows\System32\e1000msg.dll
[2014/01/21 11:35:38 | 000,083,808 | ---- | C] (Intel Corporation) -- C:\Windows\System32\NicInE6.dll
[2014/01/21 11:35:38 | 000,028,792 | ---- | C] (Intel Corporation) -- C:\Windows\System32\NicCo36.dll
[2014/01/21 11:34:51 | 000,045,184 | ---- | C] (Intel Corporation) -- C:\Windows\System32\drivers\HECI.sys
[2014/01/21 11:29:41 | 000,000,000 | R--D | C] -- C:\Users\user1\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
[2014/01/21 11:29:41 | 000,000,000 | R--D | C] -- C:\Users\user1\Searches
[2014/01/21 11:29:41 | 000,000,000 | R--D | C] -- C:\Users\user1\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
[2014/01/21 11:29:41 | 000,000,000 | -H-D | C] -- C:\Users\user1\Application Data\Microsoft\Internet Explorer\Quick Launch\User Pinned
[2014/01/21 11:29:32 | 000,000,000 | ---D | C] -- C:\Users\user1\AppData\Roaming\Identities
[2014/01/21 11:29:27 | 000,000,000 | R--D | C] -- C:\Users\user1\Contacts
[2014/01/21 11:29:17 | 000,000,000 | ---D | C] -- C:\Users\user1\AppData\Local\VirtualStore
[2014/01/21 11:29:16 | 000,000,000 | -HSD | C] -- C:\Users\user1\AppData\Local\Temporary Internet Files
[2014/01/21 11:29:16 | 000,000,000 | -HSD | C] -- C:\Users\user1\Templates
[2014/01/21 11:29:16 | 000,000,000 | -HSD | C] -- C:\Users\user1\Start Menu
[2014/01/21 11:29:16 | 000,000,000 | -HSD | C] -- C:\Users\user1\SendTo
[2014/01/21 11:29:16 | 000,000,000 | -HSD | C] -- C:\Users\user1\Recent
[2014/01/21 11:29:16 | 000,000,000 | -HSD | C] -- C:\Users\user1\PrintHood
[2014/01/21 11:29:16 | 000,000,000 | -HSD | C] -- C:\Users\user1\NetHood
[2014/01/21 11:29:16 | 000,000,000 | -HSD | C] -- C:\Users\user1\Documents\My Videos
[2014/01/21 11:29:16 | 000,000,000 | -HSD | C] -- C:\Users\user1\Documents\My Pictures
[2014/01/21 11:29:16 | 000,000,000 | -HSD | C] -- C:\Users\user1\Documents\My Music
[2014/01/21 11:29:16 | 000,000,000 | -HSD | C] -- C:\Users\user1\My Documents
[2014/01/21 11:29:16 | 000,000,000 | -HSD | C] -- C:\Users\user1\Local Settings
[2014/01/21 11:29:16 | 000,000,000 | -HSD | C] -- C:\Users\user1\AppData\Local\History
[2014/01/21 11:29:16 | 000,000,000 | -HSD | C] -- C:\Users\user1\Cookies
[2014/01/21 11:29:16 | 000,000,000 | -HSD | C] -- C:\Users\user1\Application Data
[2014/01/21 11:29:16 | 000,000,000 | -HSD | C] -- C:\Users\user1\AppData\Local\Application Data
[2014/01/21 11:29:15 | 000,000,000 | --SD | C] -- C:\Users\user1\AppData\Roaming\Microsoft
[2014/01/21 11:29:15 | 000,000,000 | R--D | C] -- C:\Users\user1\Videos
[2014/01/21 11:29:15 | 000,000,000 | R--D | C] -- C:\Users\user1\Saved Games
[2014/01/21 11:29:15 | 000,000,000 | R--D | C] -- C:\Users\user1\Pictures
[2014/01/21 11:29:15 | 000,000,000 | R--D | C] -- C:\Users\user1\Music
[2014/01/21 11:29:15 | 000,000,000 | R--D | C] -- C:\Users\user1\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
[2014/01/21 11:29:15 | 000,000,000 | R--D | C] -- C:\Users\user1\Links
[2014/01/21 11:29:15 | 000,000,000 | R--D | C] -- C:\Users\user1\Favorites
[2014/01/21 11:29:15 | 000,000,000 | R--D | C] -- C:\Users\user1\Downloads
[2014/01/21 11:29:15 | 000,000,000 | R--D | C] -- C:\Users\user1\Documents
[2014/01/21 11:29:15 | 000,000,000 | R--D | C] -- C:\Users\user1\Desktop
[2014/01/21 11:29:15 | 000,000,000 | R--D | C] -- C:\Users\user1\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
[2014/01/21 11:29:15 | 000,000,000 | -H-D | C] -- C:\Users\user1\AppData
[2014/01/21 11:29:15 | 000,000,000 | ---D | C] -- C:\Users\user1\AppData\Local\Temp
[2014/01/21 11:29:15 | 000,000,000 | ---D | C] -- C:\Users\user1\AppData\Local\Microsoft
[2014/01/21 11:29:15 | 000,000,000 | ---D | C] -- C:\Users\user1\AppData\Roaming\Media Center Programs
[2014/01/21 11:29:06 | 000,000,000 | -HSD | C] -- C:\Recovery
[2014/01/21 00:51:21 | 000,000,000 | ---D | C] -- C:\Windows\Panther
[2014/01/20 16:54:57 | 000,000,000 | ---D | C] -- C:\Windows\SoftwareDistribution
[2014/01/20 16:52:52 | 000,000,000 | ---D | C] -- C:\Windows\Prefetch
[2014/01/20 16:51:59 | 000,000,000 | -HSD | C] -- C:\System Volume Information

========== Files - Modified Within 30 Days ==========

[2014/02/06 12:25:56 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\user1\Desktop\OTL.exe
[2014/02/06 12:24:33 | 000,000,880 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2014/02/06 12:24:29 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2014/02/06 12:24:28 | 2608,287,744 | -HS- | M] () -- C:\hiberfil.sys
[2014/02/03 10:43:00 | 000,000,830 | ---- | M] () -- C:\Windows\tasks\Adobe Flash Player Updater.job
[2014/02/03 10:19:26 | 000,000,884 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2014/02/03 09:27:50 | 000,021,920 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2014/02/03 09:27:50 | 000,021,920 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2014/01/31 16:42:59 | 000,251,130 | ---- | M] () -- C:\Users\user1\Desktop\depwizarderror.jpg
[2014/01/31 16:42:28 | 000,218,217 | ---- | M] () -- C:\Users\user1\Desktop\FBZiperror.jpg
[2014/01/31 11:35:35 | 000,174,864 | ---- | M] () -- C:\Users\user1\Desktop\memtestextracterror.jpg
[2014/01/31 11:33:52 | 000,665,740 | ---- | M] () -- C:\Windows\System32\perfh009.dat
[2014/01/31 11:33:52 | 000,125,416 | ---- | M] () -- C:\Windows\System32\perfc009.dat
[2014/01/29 15:16:52 | 000,002,129 | ---- | M] () -- C:\Users\Public\Desktop\Google Chrome.lnk
[2014/01/28 10:32:32 | 001,637,054 | ---- | M] () -- C:\Users\user1\Desktop\FixDotNet20140128103212071.cab
[2014/01/27 09:48:07 | 000,361,185 | ---- | M] (Farbar) -- C:\Users\user1\Desktop\FSS.exe
[2014/01/27 09:45:20 | 000,982,016 | ---- | M] (Farbar) -- C:\Users\user1\Desktop\MiniToolBox.exe
[2014/01/24 15:40:02 | 000,010,752 | ---- | M] () -- C:\Users\user1\Documents\bkp240114.reg
[2014/01/24 14:40:56 | 000,692,616 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\System32\FlashPlayerApp.exe
[2014/01/24 14:40:56 | 000,071,048 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\System32\FlashPlayerCPLApp.cpl
[2014/01/24 14:38:16 | 000,094,632 | ---- | M] (Oracle Corporation) -- C:\Windows\System32\WindowsAccessBridge.dll
[2014/01/24 14:38:15 | 000,264,616 | ---- | M] (Oracle Corporation) -- C:\Windows\System32\javaws.exe
[2014/01/24 14:38:15 | 000,175,016 | ---- | M] (Oracle Corporation) -- C:\Windows\System32\javaw.exe
[2014/01/24 14:38:15 | 000,174,504 | ---- | M] (Oracle Corporation) -- C:\Windows\System32\java.exe
[2014/01/24 13:38:56 | 000,295,056 | ---- | M] () -- C:\Windows\System32\FNTCACHE.DAT
[2014/01/24 11:26:13 | 000,646,144 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\MsSpellCheckingFacility.exe
[2014/01/24 11:26:13 | 000,645,120 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\jsIntl.dll
[2014/01/24 11:26:13 | 000,194,048 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\elshyph.dll
[2014/01/24 11:26:13 | 000,182,272 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msls31.dll
[2014/01/24 11:26:13 | 000,164,864 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msrating.dll
[2014/01/24 11:26:13 | 000,071,680 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\RegisterIEPKEYs.exe
[2014/01/24 11:26:12 | 001,051,136 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mshtmlmedia.dll
[2014/01/24 11:26:12 | 000,616,104 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ieapfltr.dat
[2014/01/24 11:26:12 | 000,367,104 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dxtmsft.dll
[2014/01/24 11:26:12 | 000,337,408 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\html.iec
[2014/01/24 11:26:12 | 000,244,736 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dxtrans.dll
[2014/01/24 11:26:12 | 000,238,288 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\iedkcs32.dll
[2014/01/24 11:26:12 | 000,233,472 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\url.dll
[2014/01/24 11:26:12 | 000,034,816 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\JavaScriptCollectionAgent.dll
[2014/01/24 11:26:12 | 000,016,284 | ---- | M] () -- C:\Windows\System32\ieuinit.inf
[2014/01/24 11:26:11 | 000,083,456 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\inseng.dll
[2014/01/24 11:26:11 | 000,024,576 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\licmgr10.dll
[2014/01/24 11:26:09 | 000,523,776 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msfeeds.dll
[2014/01/24 11:26:09 | 000,151,552 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\iexpress.exe
[2014/01/24 11:26:09 | 000,139,264 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wextract.exe
[2014/01/24 11:26:09 | 000,056,832 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\pngfilt.dll
[2014/01/24 11:26:08 | 000,116,736 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\iepeers.dll
[2014/01/24 11:26:08 | 000,111,616 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\IEAdvpack.dll
[2014/01/24 11:26:08 | 000,086,016 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\iesysprep.dll
[2014/01/24 11:26:08 | 000,074,240 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\SetIEInstalledDate.exe
[2014/01/24 11:26:08 | 000,061,952 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\MshtmlDac.dll
[2014/01/24 11:26:08 | 000,048,640 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mshtmler.dll
[2014/01/24 11:26:08 | 000,043,008 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msfeedsbs.dll
[2014/01/24 11:26:08 | 000,036,352 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\imgutil.dll
[2014/01/24 11:26:08 | 000,012,800 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msfeedssync.exe
[2014/01/24 11:25:30 | 003,969,472 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ntkrnlpa.exe
[2014/01/24 11:25:30 | 003,914,176 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ntoskrnl.exe
[2014/01/24 11:25:30 | 000,619,520 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\tdh.dll
[2014/01/24 11:25:30 | 000,038,912 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\csrsrv.dll
[2014/01/24 11:25:16 | 000,187,752 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\FWPKCLNT.SYS
[2014/01/24 11:25:05 | 000,049,152 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\taskhost.exe
[2014/01/24 11:23:11 | 003,419,136 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\d2d1.dll
[2014/01/24 11:23:11 | 002,284,544 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msmpeg2vdec.dll
[2014/01/24 11:23:11 | 001,988,096 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\d3d10warp.dll
[2014/01/24 11:23:11 | 001,247,744 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\DWrite.dll
[2014/01/24 11:23:11 | 001,158,144 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\XpsPrint.dll
[2014/01/24 11:23:11 | 001,080,832 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\d3d10.dll
[2014/01/24 11:23:11 | 000,604,160 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\d3d10level9.dll
[2014/01/24 11:23:11 | 000,364,544 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\XpsGdiConverter.dll
[2014/01/24 11:23:11 | 000,293,376 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dxgi.dll
[2014/01/24 11:23:11 | 000,249,856 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\d3d10_1core.dll
[2014/01/24 11:23:11 | 000,220,160 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\d3d10core.dll
[2014/01/24 11:23:11 | 000,207,872 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\WindowsCodecsExt.dll
[2014/01/24 11:23:11 | 000,187,392 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\UIAnimation.dll
[2014/01/24 11:23:11 | 000,161,792 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\d3d10_1.dll
[2014/01/24 11:23:11 | 000,010,752 | -H-- | M] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-downlevel-advapi32-l1-1-0.dll
[2014/01/24 11:23:11 | 000,009,728 | -H-- | M] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-downlevel-shlwapi-l1-1-0.dll
[2014/01/24 11:23:11 | 000,005,632 | -H-- | M] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-downlevel-shlwapi-l2-1-0.dll
[2014/01/24 11:23:11 | 000,005,632 | -H-- | M] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-downlevel-ole32-l1-1-0.dll
[2014/01/24 11:23:11 | 000,004,096 | -H-- | M] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-downlevel-user32-l1-1-0.dll
[2014/01/24 11:23:11 | 000,003,584 | -H-- | M] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-downlevel-advapi32-l2-1-0.dll
[2014/01/24 11:23:11 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-downlevel-version-l1-1-0.dll
[2014/01/24 11:23:11 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-downlevel-shell32-l1-1-0.dll
[2014/01/24 11:23:11 | 000,002,560 | -H-- | M] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-downlevel-normaliz-l1-1-0.dll
[2014/01/24 11:21:46 | 001,505,280 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\d3d11.dll
[2014/01/23 10:12:50 | 000,037,664 | ---- | M] (AVG Technologies) -- C:\Windows\System32\drivers\avgtpx86.sys
[2014/01/21 13:01:47 | 000,002,225 | ---- | M] () -- C:\Users\user1\Application Data\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk
[2014/01/21 13:00:09 | 000,016,400 | ---- | M] (Logitech, Inc.) -- C:\Windows\System32\drivers\LNonPnP.sys
[2014/01/21 12:01:42 | 000,001,070 | ---- | M] () -- C:\Users\Public\Desktop\OpenOffice 4.0.0.lnk
[2014/01/21 11:50:46 | 000,001,407 | ---- | M] () -- C:\Users\user1\Application Data\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk
[2014/01/21 11:33:42 | 000,000,000 | -H-- | M] () -- C:\Windows\System32\drivers\Msft_User_WpdFs_01_09_00.Wdf
[2014/01/20 16:55:31 | 000,041,450 | ---- | M] () -- C:\Windows\System32\license.rtf

========== Files Created - No Company Name ==========

[2014/01/31 16:42:59 | 000,251,130 | ---- | C] () -- C:\Users\user1\Desktop\depwizarderror.jpg
[2014/01/31 16:42:28 | 000,218,217 | ---- | C] () -- C:\Users\user1\Desktop\FBZiperror.jpg
[2014/01/31 11:35:34 | 000,174,864 | ---- | C] () -- C:\Users\user1\Desktop\memtestextracterror.jpg
[2014/01/28 10:32:32 | 001,637,054 | ---- | C] () -- C:\Users\user1\Desktop\FixDotNet20140128103212071.cab
[2014/01/24 15:40:02 | 000,010,752 | ---- | C] () -- C:\Users\user1\Documents\bkp240114.reg
[2014/01/24 14:44:13 | 000,002,441 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader XI.lnk
[2014/01/24 11:45:36 | 000,000,003 | ---- | C] () -- C:\Windows\System32\drivers\MsftWdf_User_01_11_00_Inbox_Critical.Wdf
[2014/01/24 11:26:12 | 000,016,284 | ---- | C] () -- C:\Windows\System32\ieuinit.inf
[2014/01/24 11:08:34 | 000,000,003 | ---- | C] () -- C:\Windows\System32\drivers\MsftWdf_Kernel_01011_Inbox_Critical.Wdf
[2014/01/21 13:34:03 | 000,076,560 | ---- | C] () -- C:\Windows\System32\drivers\FW_7610.bin
[2014/01/21 13:34:03 | 000,045,412 | ---- | C] () -- C:\Windows\System32\drivers\FW_7601.bin
[2014/01/21 13:34:03 | 000,014,172 | ---- | C] () -- C:\Windows\System32\RaCoInst.dat
[2014/01/21 13:34:03 | 000,008,192 | ---- | C] () -- C:\Windows\System32\drivers\FW_2870.bin
[2014/01/21 13:34:03 | 000,004,096 | ---- | C] () -- C:\Windows\System32\drivers\FW_3573.bin
[2014/01/21 12:04:21 | 000,002,225 | ---- | C] () -- C:\Users\user1\Application Data\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk
[2014/01/21 12:04:21 | 000,002,129 | ---- | C] () -- C:\Users\Public\Desktop\Google Chrome.lnk
[2014/01/21 12:03:31 | 000,000,884 | ---- | C] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2014/01/21 12:03:30 | 000,000,880 | ---- | C] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2014/01/21 12:03:22 | 000,000,830 | ---- | C] () -- C:\Windows\tasks\Adobe Flash Player Updater.job
[2014/01/21 12:01:42 | 000,001,070 | ---- | C] () -- C:\Users\Public\Desktop\OpenOffice 4.0.0.lnk
[2014/01/21 11:50:46 | 000,001,407 | ---- | C] () -- C:\Users\user1\Application Data\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk
[2014/01/21 11:36:50 | 000,060,254 | ---- | C] () -- C:\Windows\System32\iglhxg32.vp
[2014/01/21 11:36:50 | 000,060,226 | ---- | C] () -- C:\Windows\System32\iglhxc32.vp
[2014/01/21 11:36:50 | 000,060,015 | ---- | C] () -- C:\Windows\System32\iglhxo32.vp
[2014/01/21 11:36:50 | 000,039,440 | ---- | C] () -- C:\Windows\System32\iglhxs32.vp
[2014/01/21 11:36:50 | 000,001,090 | ---- | C] () -- C:\Windows\System32\iglhxa32.vp
[2014/01/21 11:36:43 | 001,921,265 | ---- | C] () -- C:\Windows\System32\iglhxa32.cpa
[2014/01/21 11:35:38 | 000,002,711 | ---- | C] () -- C:\Windows\System32\e1e6232.din
[2014/01/21 11:33:42 | 000,000,000 | -H-- | C] () -- C:\Windows\System32\drivers\Msft_User_WpdFs_01_09_00.Wdf
[2014/01/21 11:29:42 | 000,001,413 | ---- | C] () -- C:\Users\user1\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
[2014/01/21 11:29:15 | 000,000,290 | ---- | C] () -- C:\Users\user1\Application Data\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk
[2014/01/21 11:29:15 | 000,000,272 | ---- | C] () -- C:\Users\user1\Application Data\Microsoft\Internet Explorer\Quick Launch\Window Switcher.lnk
[2014/01/20 16:55:18 | 000,001,345 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Media Center.lnk
[2014/01/20 16:55:13 | 000,001,326 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows DVD Maker.lnk
[2014/01/20 16:51:59 | 2608,287,744 | -HS- | C] () -- C:\hiberfil.sys

========== ZeroAccess Check ==========

[2009/07/14 04:42:31 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini

[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]

[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shell32.dll -- [2013/07/26 01:55:59 | 012,872,704 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2010/11/20 21:29:20 | 000,606,208 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]
"" = %systemroot%\system32\wbem\wbemess.dll -- [2009/07/14 01:16:17 | 000,342,528 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both

========== LOP Check ==========

[2014/01/30 15:09:01 | 000,000,000 | ---D | M] -- C:\Users\Administrator\AppData\Roaming\AVG2014
[2014/01/21 11:55:46 | 000,000,000 | ---D | M] -- C:\Users\user1\AppData\Roaming\AVG2014
[2014/01/21 11:55:16 | 000,000,000 | ---D | M] -- C:\Users\user1\AppData\Roaming\TuneUp Software

========== Purity Check ==========



========== Custom Scans ==========

========== Base Services ==========
SRV - [2009/07/14 01:14:53 | 000,062,464 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\System32\aelupsvc.dll -- (AeLookupSvc)
SRV - [2013/02/27 04:49:16 | 000,047,104 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\System32\appinfo.dll -- (Appinfo)
SRV - [2009/07/14 01:14:11 | 000,059,392 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\alg.exe -- (ALG)
SRV - [2010/11/20 21:29:08 | 000,585,728 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\qmgr.dll -- (BITS)
SRV - [2010/11/20 21:29:12 | 000,494,592 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\BFE.DLL -- (BFE)
SRV - [2013/09/25 00:49:20 | 000,022,016 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\System32\lsass.exe -- (KeyIso)
SRV - [2009/07/14 01:15:19 | 000,271,360 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\es.dll -- (EventSystem)
SRV - [2012/07/04 21:14:34 | 000,102,912 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\System32\browser.dll -- (Browser)
SRV - [2013/07/09 04:46:31 | 000,140,288 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\cryptsvc.dll -- (CryptSvc)
SRV - [2010/11/20 21:29:12 | 000,376,832 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\rpcss.dll -- (DcomLaunch)
SRV - [2010/11/20 21:29:12 | 000,254,464 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\dhcpcore.dll -- (Dhcp)
SRV - [2011/03/03 05:38:01 | 000,132,608 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\dnsrslvr.dll -- (Dnscache)
SRV - [2009/07/14 01:15:13 | 000,098,304 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\System32\eapsvc.dll -- (EapHost)
SRV - [2009/07/14 01:15:24 | 000,049,152 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\System32\hidserv.dll -- (hidserv)
SRV - [2009/07/14 01:15:33 | 000,300,544 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\System32\ipnathlp.dll -- (SharedAccess)
SRV - [2010/11/20 21:29:07 | 000,350,208 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\System32\IPSECSVC.DLL -- (PolicyAgent)
No service found with a name of MsMpSvc
No service found with a name of NisSrv
SRV - [2009/07/14 01:16:15 | 000,313,856 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\System32\swprv.dll -- (swprv)
SRV - [2009/07/14 01:15:41 | 000,049,664 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\System32\mmcss.dll -- (MMCSS)
SRV - [2009/07/14 01:16:03 | 000,280,576 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\System32\netman.dll -- (Netman)
SRV - [2009/07/14 01:16:03 | 000,360,448 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\System32\netprofm.dll -- (netprofm)
SRV - [2012/10/03 16:42:26 | 000,242,176 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\nlasvc.dll -- (NlaSvc)
SRV - [2009/07/14 01:16:11 | 000,019,456 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\nsisvc.dll -- (nsi)
SRV - [2011/05/24 10:44:59 | 000,293,376 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\umpnpmgr.dll -- (PlugPlay)
SRV - [2012/02/11 05:37:49 | 000,317,440 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\spoolsv.exe -- (Spooler)
SRV - [2013/09/25 00:49:20 | 000,022,016 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\lsass.exe -- (ProtectedStorage)
No service found with a name of EMDMgmt
SRV - [2009/07/14 01:16:12 | 000,090,624 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\rasauto.dll -- (RasAuto)
SRV - [2010/11/20 21:29:24 | 000,286,208 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\rasmans.dll -- (RasMan)
SRV - [2010/11/20 21:29:12 | 000,376,832 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\rpcss.dll -- (RpcSs)
SRV - [2009/07/14 01:16:13 | 000,021,504 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\seclogon.dll -- (seclogon)
SRV - [2013/09/25 00:49:20 | 000,022,016 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\lsass.exe -- (SamSs)
SRV - [2009/07/14 01:16:20 | 000,073,728 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\wscsvc.dll -- (wscsvc)
SRV - [2010/11/20 21:29:07 | 000,168,960 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\srvsvc.dll -- (LanmanServer)
SRV - [2010/11/20 21:29:12 | 000,328,192 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\shsvcs.dll -- (ShellHWDetection)
No service found with a name of slsvc
SRV - [2010/11/20 21:29:21 | 000,750,592 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\schedsvc.dll -- (Schedule)
SRV - [2010/11/20 21:29:07 | 000,242,176 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\tapisrv.dll -- (TapiSrv)
SRV - [2009/07/14 01:16:16 | 000,037,376 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\themeservice.dll -- (Themes)
SRV - [2012/05/01 04:44:12 | 000,164,352 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\profsvc.dll -- (ProfSvc)
SRV - [2010/11/20 21:29:12 | 001,025,536 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\VSSVC.exe -- (VSS)
SRV - [2010/11/20 21:29:07 | 000,473,600 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\audiosrv.dll -- (Audiosrv)
SRV - [2010/11/20 21:29:07 | 000,473,600 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\audiosrv.dll -- (AudioEndpointBuilder)
SRV - [2010/11/20 21:29:49 | 000,125,952 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\sdrsvc.dll -- (SDRSVC)
SRV - [2013/05/27 04:57:27 | 000,680,960 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV - [2010/11/20 21:29:11 | 001,086,976 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\wevtsvc.dll -- (eventlog)
SRV - [2010/11/20 21:29:06 | 000,566,272 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\MPSSVC.dll -- (MpsSvc)
SRV - [2010/11/20 21:29:41 | 000,463,360 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\wiaservc.dll -- (StiSvc)
SRV - [2010/11/20 21:29:20 | 000,073,216 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\msiexec.exe -- (msiserver)
SRV - [2009/07/14 01:16:19 | 000,168,960 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\wbem\WMIsvc.dll -- (Winmgmt)
SRV - [2012/06/02 22:19:17 | 001,933,848 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\wuaueng.dll -- (wuauserv)
SRV - [2010/11/20 21:29:20 | 000,214,016 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\dot3svc.dll -- (dot3svc)
SRV - [2009/07/14 01:16:19 | 000,829,440 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\wlansvc.dll -- (Wlansvc)
SRV - [2010/11/20 21:29:07 | 000,084,480 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\wkssvc.dll -- (LanmanWorkstation)

< %SYSTEMDRIVE%\*.exe >

< MD5 for: EXPLORER.EXE >
[2011/02/26 05:19:21 | 002,616,320 | ---- | M] (Microsoft Corporation) MD5=0FB9C74046656D1579A64660AD67B746 -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.21669_none_54149f9ef14031fc\explorer.exe
[2010/11/20 21:29:20 | 002,616,320 | ---- | M] (Microsoft Corporation) MD5=40D777B7A95E00593EB1568C68514493 -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.17514_none_53bc10fdd7fe87ca\explorer.exe
[2011/02/25 05:30:54 | 002,616,320 | ---- | M] (Microsoft Corporation) MD5=8B88EBBB05A0E56B7DCC708498C02B3E -- C:\Windows\explorer.exe
[2011/02/25 05:30:54 | 002,616,320 | ---- | M] (Microsoft Corporation) MD5=8B88EBBB05A0E56B7DCC708498C02B3E -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.17567_none_5389023fd8245f84\explorer.exe

< MD5 for: SERVICES >
[2009/06/10 21:39:37 | 000,017,463 | ---- | M] () MD5=D9E1A01B480D961B7CF0509D597A92D6 -- C:\Windows\System32\drivers\etc\services
[2009/06/10 21:39:37 | 000,017,463 | ---- | M] () MD5=D9E1A01B480D961B7CF0509D597A92D6 -- C:\Windows\winsxs\x86_microsoft-windows-w..nfrastructure-other_31bf3856ad364e35_6.1.7600.16385_none_045b589158ae90da\services

< MD5 for: SERVICES.CFG >
[2012/09/23 20:43:36 | 000,603,848 | R--- | M] () MD5=81B120EAEE296F0E54F66C16C5A21367 -- C:\Windows\Installer\$PatchCache$\Managed\68AB67CA7DA73301B744BA0000000010\11.0.0\services.cfg
[2013/12/21 06:04:16 | 000,559,392 | ---- | M] () MD5=F9FBA73F44366AB3514BD1985707F178 -- C:\Program Files\Adobe\Reader 11.0\Reader\Services\Services.cfg

< MD5 for: SERVICES.EXE >
[2009/07/14 01:14:36 | 000,259,072 | ---- | M] (Microsoft Corporation) MD5=5F1B6A9C35D3D5CA72D6D6FDEF9747D6 -- C:\Windows\System32\services.exe
[2009/07/14 01:14:36 | 000,259,072 | ---- | M] (Microsoft Corporation) MD5=5F1B6A9C35D3D5CA72D6D6FDEF9747D6 -- C:\Windows\winsxs\x86_microsoft-windows-s..s-servicecontroller_31bf3856ad364e35_6.1.7600.16385_none_cf36168b2e9c967b\services.exe

< MD5 for: SERVICES.EXE.MUI >
[2011/04/12 02:15:38 | 000,017,408 | ---- | M] (Microsoft Corporation) MD5=0DA5F221169DEB5AC3A22465CD6F0281 -- C:\Windows\System32\en-US\services.exe.mui
[2011/04/12 02:15:38 | 000,017,408 | ---- | M] (Microsoft Corporation) MD5=0DA5F221169DEB5AC3A22465CD6F0281 -- C:\Windows\winsxs\x86_microsoft-windows-s..ontroller.resources_31bf3856ad364e35_6.1.7600.16385_en-us_69d39d3a8748c332\services.exe.mui

< MD5 for: SERVICES.LNK >
[2009/07/14 04:41:45 | 000,001,288 | ---- | M] () MD5=021B1B178776500E54560EDCFFE0EE21 -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\services.lnk
[2009/07/14 04:41:45 | 000,001,288 | ---- | M] () MD5=021B1B178776500E54560EDCFFE0EE21 -- C:\Users\All Users\Microsoft\Windows\Start Menu\Programs\Administrative Tools\services.lnk

< MD5 for: SERVICES.MOF >
[2009/06/10 21:26:14 | 000,002,866 | ---- | M] () MD5=26A11C895A7F0B6D32105EBE127D8500 -- C:\Windows\System32\wbem\services.mof
[2009/06/10 21:26:14 | 000,002,866 | ---- | M] () MD5=26A11C895A7F0B6D32105EBE127D8500 -- C:\Windows\winsxs\x86_microsoft-windows-s..s-servicecontroller_31bf3856ad364e35_6.1.7600.16385_none_cf36168b2e9c967b\services.mof

< MD5 for: SERVICES.MSC >
[2011/04/12 02:15:37 | 000,092,745 | ---- | M] () MD5=7A1D35F59468B8118AF5B8E21DF78AE2 -- C:\Windows\System32\en-US\services.msc
[2009/06/10 21:21:09 | 000,092,745 | ---- | M] () MD5=7A1D35F59468B8118AF5B8E21DF78AE2 -- C:\Windows\System32\services.msc
[2011/04/12 02:15:37 | 000,092,745 | ---- | M] () MD5=7A1D35F59468B8118AF5B8E21DF78AE2 -- C:\Windows\winsxs\x86_microsoft-windows-s..cessnapin.resources_31bf3856ad364e35_6.1.7600.16385_en-us_a4156d265db25d25\services.msc
[2009/06/10 21:21:09 | 000,092,745 | ---- | M] () MD5=7A1D35F59468B8118AF5B8E21DF78AE2 -- C:\Windows\winsxs\x86_microsoft-windows-servicessnapin_31bf3856ad364e35_6.1.7600.16385_none_cf3a38c7a70e7a54\services.msc

< MD5 for: SERVICES.PTXML >
[2009/07/13 20:20:01 | 000,001,061 | ---- | M] () MD5=640D7DD61B1CFA6C96F80F68F78CDFA7 -- C:\Windows\System32\wdi\perftrack\Services.ptxml
[2009/07/13 20:20:01 | 000,001,061 | ---- | M] () MD5=640D7DD61B1CFA6C96F80F68F78CDFA7 -- C:\Windows\winsxs\x86_microsoft-windows-s..s-servicecontroller_31bf3856ad364e35_6.1.7600.16385_none_cf36168b2e9c967b\Services.ptxml

< MD5 for: SERVICES.RDB >
[2013/07/16 15:28:04 | 000,186,248 | ---- | M] () MD5=3190DA6D96EAE3A354AE533BA0D35D5F -- C:\Program Files\OpenOffice 4\program\services.rdb

< MD5 for: SVCHOST.EXE >
[2009/07/14 01:14:41 | 000,020,992 | ---- | M] (Microsoft Corporation) MD5=54A47F6B5E09A77E61649109C6A08866 -- C:\Windows\System32\svchost.exe
[2009/07/14 01:14:41 | 000,020,992 | ---- | M] (Microsoft Corporation) MD5=54A47F6B5E09A77E61649109C6A08866 -- C:\Windows\winsxs\x86_microsoft-windows-services-svchost_31bf3856ad364e35_6.1.7600.16385_none_b591afc466a15356\svchost.exe

< MD5 for: USERINIT.EXE >
[2010/11/20 21:29:06 | 000,026,624 | ---- | M] (Microsoft Corporation) MD5=61AC3EFDFACFDD3F0F11DD4FD4044223 -- C:\Windows\System32\userinit.exe
[2010/11/20 21:29:06 | 000,026,624 | ---- | M] (Microsoft Corporation) MD5=61AC3EFDFACFDD3F0F11DD4FD4044223 -- C:\Windows\winsxs\x86_microsoft-windows-userinit_31bf3856ad364e35_6.1.7601.17514_none_de3024012ff21116\userinit.exe

< MD5 for: WINLOGON.EXE >
[2010/11/20 21:29:06 | 000,286,720 | ---- | M] (Microsoft Corporation) MD5=6D13E1406F50C66E2A95D97F22C47560 -- C:\Windows\System32\winlogon.exe
[2010/11/20 21:29:06 | 000,286,720 | ---- | M] (Microsoft Corporation) MD5=6D13E1406F50C66E2A95D97F22C47560 -- C:\Windows\winsxs\x86_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7601.17514_none_71ca6b0233339500\winlogon.exe

< dir "%systemdrive%\*" /S /A:L /C >
Volume in drive C has no label.
Volume Serial Number is 0695-92B0
Directory of C:\
14/07/2009 04:53 <JUNCTION> Documents and Settings [C:\Users]
0 File(s) 0 bytes
Directory of C:\ProgramData
14/07/2009 04:53 <JUNCTION> Application Data [C:\ProgramData]
14/07/2009 04:53 <JUNCTION> Desktop [C:\Users\Public\Desktop]
14/07/2009 04:53 <JUNCTION> Documents [C:\Users\Public\Documents]
14/07/2009 04:53 <JUNCTION> Favorites [C:\Users\Public\Favorites]
14/07/2009 04:53 <JUNCTION> Start Menu [C:\ProgramData\Microsoft\Windows\Start Menu]
14/07/2009 04:53 <JUNCTION> Templates [C:\ProgramData\Microsoft\Windows\Templates]
0 File(s) 0 bytes
Directory of C:\Users
14/07/2009 04:53 <SYMLINKD> All Users [C:\ProgramData]
14/07/2009 04:53 <JUNCTION> Default User [C:\Users\Default]
0 File(s) 0 bytes
Directory of C:\Users\Administrator
30/01/2014 15:08 <JUNCTION> Application Data [C:\Users\Administrator\AppData\Roaming]
30/01/2014 15:08 <JUNCTION> Cookies [C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Cookies]
30/01/2014 15:08 <JUNCTION> Local Settings [C:\Users\Administrator\AppData\Local]
30/01/2014 15:08 <JUNCTION> My Documents [C:\Users\Administrator\Documents]
30/01/2014 15:08 <JUNCTION> NetHood [C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Network Shortcuts]
30/01/2014 15:08 <JUNCTION> PrintHood [C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Printer Shortcuts]
30/01/2014 15:08 <JUNCTION> Recent [C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Recent]
30/01/2014 15:08 <JUNCTION> SendTo [C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\SendTo]
30/01/2014 15:08 <JUNCTION> Start Menu [C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu]
30/01/2014 15:08 <JUNCTION> Templates [C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Templates]
0 File(s) 0 bytes
Directory of C:\Users\Administrator\AppData\Local
30/01/2014 15:08 <JUNCTION> Application Data [C:\Users\Administrator\AppData\Local]
30/01/2014 15:08 <JUNCTION> History [C:\Users\Administrator\AppData\Local\Microsoft\Windows\History]
30/01/2014 15:08 <JUNCTION> Temporary Internet Files [C:\Users\Administrator\AppData\Local\Microsoft\Windows\Temporary Internet Files]
0 File(s) 0 bytes
Directory of C:\Users\Administrator\Documents
30/01/2014 15:08 <JUNCTION> My Music [C:\Users\Administrator\Music]
30/01/2014 15:08 <JUNCTION> My Pictures [C:\Users\Administrator\Pictures]
30/01/2014 15:08 <JUNCTION> My Videos [C:\Users\Administrator\Videos]
0 File(s) 0 bytes
Directory of C:\Users\All Users
14/07/2009 04:53 <JUNCTION> Application Data [C:\ProgramData]
14/07/2009 04:53 <JUNCTION> Desktop [C:\Users\Public\Desktop]
14/07/2009 04:53 <JUNCTION> Documents [C:\Users\Public\Documents]
14/07/2009 04:53 <JUNCTION> Favorites [C:\Users\Public\Favorites]
14/07/2009 04:53 <JUNCTION> Start Menu [C:\ProgramData\Microsoft\Windows\Start Menu]
14/07/2009 04:53 <JUNCTION> Templates [C:\ProgramData\Microsoft\Windows\Templates]
0 File(s) 0 bytes
Directory of C:\Users\Default
14/07/2009 04:53 <JUNCTION> Application Data [C:\Users\Default\AppData\Roaming]
14/07/2009 04:53 <JUNCTION> Cookies [C:\Users\Default\AppData\Roaming\Microsoft\Windows\Cookies]
14/07/2009 04:53 <JUNCTION> Local Settings [C:\Users\Default\AppData\Local]
14/07/2009 04:53 <JUNCTION> My Documents [C:\Users\Default\Documents]
14/07/2009 04:53 <JUNCTION> NetHood [C:\Users\Default\AppData\Roaming\Microsoft\Windows\Network Shortcuts]
14/07/2009 04:53 <JUNCTION> PrintHood [C:\Users\Default\AppData\Roaming\Microsoft\Windows\Printer Shortcuts]
14/07/2009 04:53 <JUNCTION> Recent [C:\Users\Default\AppData\Roaming\Microsoft\Windows\Recent]
14/07/2009 04:53 <JUNCTION> SendTo [C:\Users\Default\AppData\Roaming\Microsoft\Windows\SendTo]
14/07/2009 04:53 <JUNCTION> Start Menu [C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu]
14/07/2009 04:53 <JUNCTION> Templates [C:\Users\Default\AppData\Roaming\Microsoft\Windows\Templates]
0 File(s) 0 bytes
Directory of C:\Users\Default\AppData\Local
14/07/2009 04:53 <JUNCTION> Application Data [C:\Users\Default\AppData\Local]
14/07/2009 04:53 <JUNCTION> History [C:\Users\Default\AppData\Local\Microsoft\Windows\History]
14/07/2009 04:53 <JUNCTION> Temporary Internet Files [C:\Users\Default\AppData\Local\Microsoft\Windows\Temporary Internet Files]
0 File(s) 0 bytes
Directory of C:\Users\Default\Documents
14/07/2009 04:53 <JUNCTION> My Music [C:\Users\Default\Music]
14/07/2009 04:53 <JUNCTION> My Pictures [C:\Users\Default\Pictures]
14/07/2009 04:53 <JUNCTION> My Videos [C:\Users\Default\Videos]
0 File(s) 0 bytes
Directory of C:\Users\Public\Documents
14/07/2009 04:53 <JUNCTION> My Music [C:\Users\Public\Music]
14/07/2009 04:53 <JUNCTION> My Pictures [C:\Users\Public\Pictures]
14/07/2009 04:53 <JUNCTION> My Videos [C:\Users\Public\Videos]
0 File(s) 0 bytes
Directory of C:\Users\user1
21/01/2014 11:29 <JUNCTION> Application Data [C:\Users\user1\AppData\Roaming]
21/01/2014 11:29 <JUNCTION> Cookies [C:\Users\user1\AppData\Roaming\Microsoft\Windows\Cookies]
21/01/2014 11:29 <JUNCTION> Local Settings [C:\Users\user1\AppData\Local]
21/01/2014 11:29 <JUNCTION> My Documents [C:\Users\user1\Documents]
21/01/2014 11:29 <JUNCTION> NetHood [C:\Users\user1\AppData\Roaming\Microsoft\Windows\Network Shortcuts]
21/01/2014 11:29 <JUNCTION> PrintHood [C:\Users\user1\AppData\Roaming\Microsoft\Windows\Printer Shortcuts]
21/01/2014 11:29 <JUNCTION> Recent [C:\Users\user1\AppData\Roaming\Microsoft\Windows\Recent]
21/01/2014 11:29 <JUNCTION> SendTo [C:\Users\user1\AppData\Roaming\Microsoft\Windows\SendTo]
21/01/2014 11:29 <JUNCTION> Start Menu [C:\Users\user1\AppData\Roaming\Microsoft\Windows\Start Menu]
21/01/2014 11:29 <JUNCTION> Templates [C:\Users\user1\AppData\Roaming\Microsoft\Windows\Templates]
0 File(s) 0 bytes
Directory of C:\Users\user1\AppData\Local
21/01/2014 11:29 <JUNCTION> Application Data [C:\Users\user1\AppData\Local]
21/01/2014 11:29 <JUNCTION> History [C:\Users\user1\AppData\Local\Microsoft\Windows\History]
21/01/2014 11:29 <JUNCTION> Temporary Internet Files [C:\Users\user1\AppData\Local\Microsoft\Windows\Temporary Internet Files]
0 File(s) 0 bytes
Directory of C:\Users\user1\Documents
21/01/2014 11:29 <JUNCTION> My Music [C:\Users\user1\Music]
21/01/2014 11:29 <JUNCTION> My Pictures [C:\Users\user1\Pictures]
21/01/2014 11:29 <JUNCTION> My Videos [C:\Users\user1\Videos]
0 File(s) 0 bytes
Total Files Listed:
0 File(s) 0 bytes
66 Dir(s) 58,863,837,184 bytes free

< End of report >



Cheers,

Luke.
  • 0

#5
SleepyDude

SleepyDude

    Trusted Helper

  • Malware Removal
  • 4,974 posts
Hi Luke,

I'm checking your logs and notice this file C:\Users\user1\Documents\bkp240114.reg do you know what it is?

Can you attach the file to your post so I can check it contents?
  • 1

#6
Tyskie

Tyskie

    Member

  • Topic Starter
  • Member
  • PipPip
  • 58 posts
Hello!

As I mentioned in my very first post in the Windows 7 section of the forum, when I was trying to fix the installation problems I tried making changes to the registry by following instructions in various Microsoft Knowledge Databases.

Before I started making changes, I created a backup of the registry, hence the name 'bkp...' which contains the date on which I created the backup.

I attach the file.

Many thanks,

Luke.

Attached Files


  • 0

#7
SleepyDude

SleepyDude

    Trusted Helper

  • Malware Removal
  • 4,974 posts
Hi Luke,

Before I started making changes, I created a backup of the registry, hence the name 'bkp...' which contains the date on which I created the backup.

Unfortunately exporting the registry like that it's a very simple backup that misses things like permissions, etc. it's better to create a System Restore point before the changes or use a program like Registry Backup from tweaking.com

Let's run some more scans...


Step 1 - Scan with aswMBR

  • Download aswMBR from here or here and save the file to the Desktop.
  • Double click the aswMBR.exe file to run it.
    (On Windows Vista and above right click the icon and choose Run as Administrator, accept the security warning)
    Posted Image
  • If it asks you if you want to download the latest virus definitions, click Yes
  • Click the "Scan" button to start the scan
    Posted Image
  • On completion of the scan click Save log and save the file aswMBR.txt to your Desktop.
    WARNING: Don't click on the buttons FixMBR and Fix unless instructed to do so.
  • Open the log aswMBR.txt and post the full contents of the file in your next reply.


Step 2 - Scan with AdwCleaner

Download AdwCleaner from here to the Desktop
  • Close all open windows and browsers
    Win7:
  • Right click on the Adwcleaner icon and choose Run as Administrator to execute the program
    WinXP:
  • Double click the Adwcleaner icon to execute the program
    Posted Image
  • Click the Scan button and wait for the program to finish.
  • For now click the Report button, Notepad will open please copy/paste the generated log to your next reply. This report is also saved to C:\AdwCleaner\AdwCleaner[R0].txt


Things I would like to see in your next reply:
  • The aswMBR.txt log
  • AdwCleaner log AdwCleaner[R0].txt

  • 1

#8
Tyskie

Tyskie

    Member

  • Topic Starter
  • Member
  • PipPip
  • 58 posts
Hello SleepyDude,

Couple of things - the aswmbr: I wasn't sure about the scan option as I didn't see it in your screenshot. This appeared just underneath 'Trace disk IO calls' and I left it on 'QuickScan'.

For adwcleaner: I think it finished :huh: It seemed to do the scans and the blue bar got to the end but then it said 'Pending. Please uncheck elements you don't want to remove.' Pending made me think it's still scanning but it was probably just waiting for me to check/uncheck items but there were none.

Here are the logs:

aswmbr:

aswMBR version 0.9.9.1771 Copyright© 2011 AVAST Software
Run date: 2014-02-10 12:49:47
-----------------------------
12:49:47.505 OS Version: Windows 6.1.7601 Service Pack 1
12:49:47.505 Number of processors: 2 586 0xF0D
12:49:47.505 ComputerName: UPSTAIRS-RECEPT UserName: user1
12:49:47.926 Initialize success
12:55:46.742 AVAST engine defs: 14021000
12:56:49.876 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP0T0L0-3
12:56:49.876 Disk 0 Vendor: WDC_WD800JD-75JNC0 06.01C06 Size: 76293MB BusType: 3
12:56:50.032 Disk 0 MBR read successfully
12:56:50.032 Disk 0 MBR scan
12:56:50.032 Disk 0 Windows 7 default MBR code
12:56:50.047 Disk 0 Partition 1 80 (A) 07 HPFS/NTFS NTFS 100 MB offset 2048
12:56:50.063 Disk 0 Partition 2 00 07 HPFS/NTFS NTFS 76191 MB offset 206848
12:56:50.078 Disk 0 scanning sectors +156246016
12:56:50.141 Disk 0 scanning C:\Windows\system32\drivers
12:56:58.268 Service scanning
12:57:18.002 Modules scanning
12:57:23.306 Disk 0 trace - called modules:
12:57:23.322 ntkrnlpa.exe CLASSPNP.SYS disk.sys ataport.SYS halmacpi.dll intelide.sys PCIIDEX.SYS atapi.sys
12:57:23.338 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0x85f172e0]
12:57:23.338 3 CLASSPNP.SYS[8b97a59e] -> nt!IofCallDriver -> \Device\Ide\IdeDeviceP0T0L0-3[0x85e3f908]
12:57:23.743 AVAST engine scan C:\Windows
12:57:25.022 AVAST engine scan C:\Windows\system32
12:59:47.825 AVAST engine scan C:\Windows\system32\drivers
13:00:00.071 AVAST engine scan C:\Users\user1
13:01:19.803 AVAST engine scan C:\ProgramData
13:01:31.144 Scan finished successfully
13:02:26.587 Disk 0 MBR has been saved successfully to "C:\Users\user1\Desktop\MBR.dat"
13:02:26.602 The log file has been saved successfully to "C:\Users\user1\Desktop\aswMBR.txt"





adwcleaner:

# AdwCleaner v3.018 - Report created 10/02/2014 at 13:13:52
# Updated 28/01/2014 by Xplode
# Operating System : Windows 7 Professional Service Pack 1 (32 bits)
# Username : user1 - UPSTAIRS-RECEPT
# Running from : C:\Users\user1\Desktop\Scans\adwcleaner.exe
# Option : Scan

***** [ Services ] *****


***** [ Files / Folders ] *****

Folder Found C:\Program Files\Common Files\AVG Secure Search
Folder Found C:\ProgramData\AVG Security Toolbar

***** [ Shortcuts ] *****


***** [ Registry ] *****

Key Found : HKCU\Software\AVG Secure Search
Key Found : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{95B7759C-8C7F-4BF1-B163-73684A933233}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{95B7759C-8C7F-4BF1-B163-73684A933233}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{F25AF245-4A81-40DC-92F9-E9021F207706}
Key Found : HKCU\Software\Softonic
Key Found : HKLM\Software\AVG Security Toolbar
Key Found : HKLM\SOFTWARE\Classes\AppID\{1FDFF5A2-7BB1-48E1-8081-7236812B12B2}
Key Found : HKLM\SOFTWARE\Classes\AppID\ViProtocol.DLL
Key Found : HKLM\SOFTWARE\Classes\CLSID\{4E92DB5F-AAD9-49D3-8EAB-B40CBE5B1FF7}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{933B95E2-E7B7-4AD9-B952-7AC336682AE3}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{95B7759C-8C7F-4BF1-B163-73684A933233}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{B658800C-F66E-4EF3-AB85-6C0C227862A9}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{DE9028D0-5FFA-4E69-94E3-89EE8741F468}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{F25AF245-4A81-40DC-92F9-E9021F207706}
Key Found : HKLM\SOFTWARE\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217}
Key Found : HKLM\SOFTWARE\Classes\Interface\{4E92DB5F-AAD9-49D3-8EAB-B40CBE5B1FF7}
Key Found : HKLM\SOFTWARE\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC}
Key Found : HKLM\SOFTWARE\Classes\Interface\{C401D2CE-DC27-45C7-BC0C-8E6EA7F085D6}
Key Found : HKLM\SOFTWARE\Classes\protector_dll.protectorbho
Key Found : HKLM\SOFTWARE\Classes\protector_dll.protectorbho.1
Key Found : HKLM\SOFTWARE\Classes\protocols\handler\viprotocol
Key Found : HKLM\SOFTWARE\Classes\S
Key Found : HKLM\SOFTWARE\Classes\ScriptHelper.ScriptHelperApi
Key Found : HKLM\SOFTWARE\Classes\ScriptHelper.ScriptHelperApi.1
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{74FB6AFD-DD77-4CEB-83BD-AB2B63E63C93}
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{9C049BA6-EA47-4AC3-AED6-A66D8DC9E1D8}
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{C2AC8A0E-E48E-484B-A71C-C7A937FAAB94}
Key Found : HKLM\SOFTWARE\Classes\ViProtocol.ViProtocolOLE
Key Found : HKLM\SOFTWARE\Classes\ViProtocol.ViProtocolOLE.1
Key Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}
Key Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{F25AF245-4A81-40DC-92F9-E9021F207706}
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_for_vlc-media-player_RASAPI32
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_for_vlc-media-player_RASMANCS
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{95B7759C-8C7F-4BF1-B163-73684A933233}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{C6FDD0C3-266A-4DC3-B459-28C697C44CDC}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{F25AF245-4A81-40DC-92F9-E9021F207706}
Key Found : HKLM\SOFTWARE\MozillaPlugins\@avg.com/AVG SiteSafety plugin,version=11.0.0.1,application/x-avg-sitesafety-plugin
Value Found : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}]
Value Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{95B7759C-8C7F-4BF1-B163-73684A933233}]
Value Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [vProt]
Value Found : HKLM\SOFTWARE\Mozilla\Firefox\Extensions [Avg@toolbar]

***** [ Browsers ] *****

-\\ Internet Explorer v11.0.9600.16428


-\\ Google Chrome v32.0.1700.107

[ File : C:\Users\user1\AppData\Local\Google\Chrome\User Data\Default\preferences ]

Found : icon_url
Found : keyword
Found : urls_to_restore_on_startup
Found : icon_url
Found : search_url
Found : suggest_url
Found : keyword
Found : urls_to_restore_on_startup
Found : icon_url
Found : search_url
Found : suggest_url
Found : keyword
Found : urls_to_restore_on_startup

*************************

AdwCleaner[R0].txt - [4790 octets] - [10/02/2014 13:03:25]
AdwCleaner[R1].txt - [4710 octets] - [10/02/2014 13:13:52]

########## EOF - C:\AdwCleaner\AdwCleaner[R1].txt - [4770 octets] ##########



Hope I've done it right!

Thanks,

Luke.

Edited by Tyskie, 10 February 2014 - 07:23 AM.

  • 0

#9
SleepyDude

SleepyDude

    Trusted Helper

  • Malware Removal
  • 4,974 posts
Hi Luke,

Hope I've done it right!

Thanks,


Yes you did, sorry for the images they don't match exactly your situation.
  • 1

#10
SleepyDude

SleepyDude

    Trusted Helper

  • Malware Removal
  • 4,974 posts
Hi Luke,

We need to remove some Adware detected and do more scans...


Step 1 - AdwCleaner Remove

  • Close all open windows and browsers
  • Right click on the Posted Image icon you have on the Desktop and choose Run as Administrator to execute the program
    Posted Image
  • Click the Scan button and wait for the scan to finish, only then the Clean button becomes active
  • Click the Clean button and wait, once done it may ask to reboot, allow it.
  • On reboot a log will be presented please copy/paste that in your next reply. The report is saved to C:\AdwCleaner\AdwCleaner[S0].txt


Step 2 - Malwarebytes Scan

Download Malwarebytes' Anti-Malware (MBAM)
  • execute mbam-setup and follow the prompts to install the program
  • on the last step of installation adjust the check box's according to the image:
    Posted Image
  • click Finish
  • let the program update the definitions and then it will load
  • close all the other running programs, specially the Web browser
  • select the option Perform quick scan and click the Scan button
  • when the scan finish and some malware has found click the Show Results button to view the results
  • make sure that everything listed is Checked (right click and choose Select All) then click on the Remove Selected button
  • after the removal process Notepad with open showing the log, please Copy & Paste the contents into your next reply
Notes:
  • If MBAM encounters a file that is difficult to remove, you will be presented with some prompts, click OK to accept them and let MBAM proceed with the disinfection process. If asked to restart the computer, please do so immediately;
  • after restart you can find the MBAM log executing the program again and accessing the Logs tab, make sure you select the more recent one and click Open then Copy & Paste the log contents into your next reply;


Step 3 - TDSSKiller

Please download the latest version of TDSSKiller from here and save it to your Desktop.
  • Doubleclick on TDSSKiller.exe to run the application
    (Accept the UAC prompt to allow changes to the computer).
  • Click Accept on the windows End User License Agreement and KSN Statement, then on the following window click on Change parameters
    Posted Image
  • Put a checkmark beside loaded modules.
    Posted Image
  • A reboot will be needed to apply the changes. Do it.
  • TDSSKiller will launch automatically after the reboot. Also your computer may seem very slow and unusable. This is normal. Give it enough time to load your background programs.
  • Then click again on Change parameters in TDSSKiller.
  • Check all boxes then click OK.
    Posted Image
  • Click the Start Scan button.
    Posted Image
  • The scan should take no longer than 2 minutes.
  • If a suspicious object is detected, the default action will be Skip, click on Continue.
    Posted Image
  • If malicious objects are found, they will show in the Scan results - Select action for found objects and offer three options.
    Ensure Cure (default) is selected, then click Continue > Reboot now to finish the cleaning process.
    Posted Image
    Note: If Cure is not available, please choose Skip instead, do not choose Delete unless instructed.
  • A report will be created in your root directory, (usually C:\ folder) in the form of "TDSSKiller.[Version]_[Date]_[Time]_log.txt". Please copy and paste the contents of that file on your next post.



Things I would like to see in your next reply:
  • AdwCleaner log AdwCleaner[S0].txt
  • The MBAM log
  • The TDSSKiller log

  • 1

Advertisements


#11
Tyskie

Tyskie

    Member

  • Topic Starter
  • Member
  • PipPip
  • 58 posts

Hi Luke,

Hope I've done it right!

Thanks,


Yes you did, sorry for the images they don't match exactly your situation.


Hi SD,

No problem at all and thanks for confirming, I'm glad I did it right!

adwcleaner log:

# AdwCleaner v3.018 - Report created 11/02/2014 at 11:58:15
# Updated 28/01/2014 by Xplode
# Operating System : Windows 7 Professional Service Pack 1 (32 bits)
# Username : user1 - UPSTAIRS-RECEPT
# Running from : C:\Users\user1\Desktop\Scans\adwcleaner.exe
# Option : Clean

***** [ Services ] *****


***** [ Files / Folders ] *****

Folder Deleted : C:\ProgramData\AVG Security Toolbar
Folder Deleted : C:\Program Files\Common Files\AVG Secure Search

***** [ Shortcuts ] *****


***** [ Registry ] *****

Value Deleted : HKLM\SOFTWARE\Mozilla\Firefox\Extensions [Avg@toolbar]
Key Deleted : HKLM\SOFTWARE\Classes\AppID\ViProtocol.DLL
Key Deleted : HKLM\SOFTWARE\Classes\protector_dll.protectorbho
Key Deleted : HKLM\SOFTWARE\Classes\protector_dll.protectorbho.1
Key Deleted : HKLM\SOFTWARE\Classes\protocols\handler\viprotocol
Key Deleted : HKLM\SOFTWARE\Classes\S
Key Deleted : HKLM\SOFTWARE\Classes\ScriptHelper.ScriptHelperApi
Key Deleted : HKLM\SOFTWARE\Classes\ScriptHelper.ScriptHelperApi.1
Key Deleted : HKLM\SOFTWARE\Classes\ViProtocol.ViProtocolOLE
Key Deleted : HKLM\SOFTWARE\Classes\ViProtocol.ViProtocolOLE.1
Value Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [vProt]
Key Deleted : HKLM\SOFTWARE\MozillaPlugins\@avg.com/AVG SiteSafety plugin,version=11.0.0.1,application/x-avg-sitesafety-plugin
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_for_vlc-media-player_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_for_vlc-media-player_RASMANCS
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{1FDFF5A2-7BB1-48E1-8081-7236812B12B2}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{4E92DB5F-AAD9-49D3-8EAB-B40CBE5B1FF7}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{933B95E2-E7B7-4AD9-B952-7AC336682AE3}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{95B7759C-8C7F-4BF1-B163-73684A933233}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{B658800C-F66E-4EF3-AB85-6C0C227862A9}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{DE9028D0-5FFA-4E69-94E3-89EE8741F468}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{F25AF245-4A81-40DC-92F9-E9021F207706}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{4E92DB5F-AAD9-49D3-8EAB-B40CBE5B1FF7}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{C401D2CE-DC27-45C7-BC0C-8E6EA7F085D6}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{74FB6AFD-DD77-4CEB-83BD-AB2B63E63C93}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{9C049BA6-EA47-4AC3-AED6-A66D8DC9E1D8}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{C2AC8A0E-E48E-484B-A71C-C7A937FAAB94}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{95B7759C-8C7F-4BF1-B163-73684A933233}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{95B7759C-8C7F-4BF1-B163-73684A933233}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{F25AF245-4A81-40DC-92F9-E9021F207706}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{95B7759C-8C7F-4BF1-B163-73684A933233}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{C6FDD0C3-266A-4DC3-B459-28C697C44CDC}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{F25AF245-4A81-40DC-92F9-E9021F207706}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{F25AF245-4A81-40DC-92F9-E9021F207706}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233}
Value Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{95B7759C-8C7F-4BF1-B163-73684A933233}]
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}]
Key Deleted : HKCU\Software\AVG Secure Search
Key Deleted : HKCU\Software\Softonic
Key Deleted : HKLM\Software\AVG Security Toolbar

***** [ Browsers ] *****

-\\ Internet Explorer v11.0.9600.16428


-\\ Google Chrome v32.0.1700.107

[ File : C:\Users\user1\AppData\Local\Google\Chrome\User Data\Default\preferences ]

Deleted : icon_url

*************************

AdwCleaner[R0].txt - [4790 octets] - [10/02/2014 13:03:25]
AdwCleaner[R1].txt - [4850 octets] - [10/02/2014 13:13:52]
AdwCleaner[R2].txt - [4910 octets] - [10/02/2014 13:18:55]
AdwCleaner[R3].txt - [4970 octets] - [11/02/2014 11:57:40]
AdwCleaner[S0].txt - [4710 octets] - [11/02/2014 11:58:15]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [4770 octets] ##########



MBAM log (on completion of the scan I was presented with the following dialog: "The scan completed successfully. No malicious items were detected."):

Malwarebytes Anti-Malware 1.75.0.1300
www.malwarebytes.org

Database version: v2014.02.11.05

Windows 7 Service Pack 1 x86 NTFS
Internet Explorer 11.0.9600.16476
user1 :: UPSTAIRS-RECEPT [administrator]

11/02/2014 12:09:22
mbam-log-2014-02-11 (12-09-22).txt

Scan type: Quick scan
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 217664
Time elapsed: 5 minute(s), 20 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 0
(No malicious items detected)

(end)



TDSSKiller log (there were 2 so I pasted the larger one as I believe the small one is from before the reboot - if you want the smaller one, let me know. Again, it detected no threats.):

12:22:26.0037 0x0c68 TDSS rootkit removing tool 3.0.0.23 Feb 10 2014 23:32:41
12:22:26.0489 0x0c68 ============================================================
12:22:26.0489 0x0c68 Current date / time: 2014/02/11 12:22:26.0489
12:22:26.0489 0x0c68 SystemInfo:
12:22:26.0489 0x0c68
12:22:26.0489 0x0c68 OS Version: 6.1.7601 ServicePack: 1.0
12:22:26.0489 0x0c68 Product type: Workstation
12:22:26.0489 0x0c68 ComputerName: UPSTAIRS-RECEPT
12:22:26.0505 0x0c68 UserName: user1
12:22:26.0505 0x0c68 Windows directory: C:\Windows
12:22:26.0505 0x0c68 System windows directory: C:\Windows
12:22:26.0505 0x0c68 Processor architecture: Intel x86
12:22:26.0505 0x0c68 Number of processors: 2
12:22:26.0505 0x0c68 Page size: 0x1000
12:22:26.0505 0x0c68 Boot type: Normal boot
12:22:26.0505 0x0c68 ============================================================
12:22:26.0505 0x0c68 BG loaded
12:22:27.0815 0x0c68 System UUID: {93AC3494-AC9E-A750-BD7B-9299367AB73F}
12:22:28.0783 0x0c68 Drive \Device\Harddisk0\DR0 - Size: 0x12A05F2000 (74.51 Gb), SectorSize: 0x200, Cylinders: 0x25FE, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
12:22:28.0814 0x0c68 ============================================================
12:22:28.0814 0x0c68 \Device\Harddisk0\DR0:
12:22:28.0845 0x0c68 MBR partitions:
12:22:28.0845 0x0c68 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000
12:22:28.0845 0x0c68 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0x94CF800
12:22:28.0845 0x0c68 ============================================================
12:22:28.0939 0x0c68 C: <-> \Device\Harddisk0\DR0\Partition2
12:22:28.0939 0x0c68 ============================================================
12:22:28.0939 0x0c68 Initialize success
12:22:28.0939 0x0c68 ============================================================
12:22:39.0562 0x0728 ============================================================
12:22:39.0562 0x0728 Scan started
12:22:39.0562 0x0728 Mode: Manual; SigCheck; TDLFS;
12:22:39.0562 0x0728 ============================================================
12:22:39.0562 0x0728 KSN ping started
12:22:42.0355 0x0728 KSN ping finished: true
12:22:43.0727 0x0728 ================ Scan system memory ========================
12:22:43.0727 0x0728 System memory - ok
12:22:43.0727 0x0728 ================ Scan services =============================
12:22:43.0868 0x0728 [ 1B133875B8AA8AC48969BD3458AFE9F5, 01753BDD47F3F9BC0E0D23A069B9C56D4AE6A6B6295BC19B95AE245D25B12744 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
12:22:44.0039 0x0728 1394ohci - ok
12:22:44.0086 0x0728 [ CEA80C80BED809AA0DA6FEBC04733349, AE69C142DC2210A4AE657C23CEA4A6E7CB32C4F4EBA039414123CAC52157509B ] ACPI C:\Windows\system32\drivers\ACPI.sys
12:22:44.0102 0x0728 ACPI - ok
12:22:44.0117 0x0728 [ 1EFBC664ABFF416D1D07DB115DCB264F, BF94D069D692140B792DBF4FD3CB0127D27C26CC5BFB6B0C28A8B6346767EE58 ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
12:22:44.0180 0x0728 AcpiPmi - ok
12:22:44.0258 0x0728 [ B362181ED3771DC03B4141927C80F801, 69514E5177A0AEA89C27C2234712F9F82E8D8F99E1FD4273898C9324C6FF7472 ] AdobeARMservice C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
12:22:44.0273 0x0728 AdobeARMservice - ok
12:22:44.0336 0x0728 [ C8C6C0D659734FDBF63F6F421A5416BC, 11C452D77D0A8A5E430D0D0C9949797FFC03D2E3DADB8FBB9B63EDA868AFF83C ] AdobeFlashPlayerUpdateSvc C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
12:22:44.0367 0x0728 AdobeFlashPlayerUpdateSvc - ok
12:22:44.0398 0x0728 [ 21E785EBD7DC90A06391141AAC7892FB, A2D3D764C5E6DC0AD5AAF48485FFB8B121D2A40DC08ECF2D2CB92278A1002B25 ] adp94xx C:\Windows\system32\drivers\adp94xx.sys
12:22:44.0429 0x0728 adp94xx - ok
12:22:44.0461 0x0728 [ 0C676BC278D5B59FF5ABD57BBE9123F2, 339E8A433D186BAAB6FCB44C82CC9FB6FCD63C87981449494CBEB2072CB6B7BB ] adpahci C:\Windows\system32\drivers\adpahci.sys
12:22:44.0476 0x0728 adpahci - ok
12:22:44.0507 0x0728 [ 7C7B5EE4B7B822EC85321FE23A27DB33, A934AFB71D439555E6376DA9B34F82E8D39A300A4547BE9AC9311F6A3C36270C ] adpu320 C:\Windows\system32\drivers\adpu320.sys
12:22:44.0523 0x0728 adpu320 - ok
12:22:44.0539 0x0728 [ 8B5EEFEEC1E6D1A72A06C526628AD161, 026CDF4C96F4D493E7BABF79A14C4B0B5ADCCEF0B081FFFA2E3B243B2414167F ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
12:22:44.0679 0x0728 AeLookupSvc - ok
12:22:44.0726 0x0728 [ F81BB7E487EDCEAB630A7EE66CF23913, 7D1638FD7E388EF670FA0A421762E0413351058A20DDF0F9988A383F05395A68 ] AFD C:\Windows\system32\drivers\afd.sys
12:22:44.0773 0x0728 AFD - ok
12:22:44.0804 0x0728 [ 507812C3054C21CEF746B6EE3D04DD6E, D7E59350AC338AD229E3D10C76E32AE16D120311B263714A9CD94AB538633B0E ] agp440 C:\Windows\system32\drivers\agp440.sys
12:22:44.0819 0x0728 agp440 - ok
12:22:44.0851 0x0728 [ 8B30250D573A8F6B4BD23195160D8707, 64EC289AFCD63D84EAFD9D81C50D0A77BCC79A1EFF32C50B2776BB0C0151757D ] aic78xx C:\Windows\system32\drivers\djsvs.sys
12:22:44.0866 0x0728 aic78xx - ok
12:22:44.0882 0x0728 [ 18A54E132947CD98FEA9ACCC57F98F13, 9D39AF972785E49F0DD12C4BAEF39A79CD69F098886BF152AF1B7CCE2E902115 ] ALG C:\Windows\System32\alg.exe
12:22:44.0944 0x0728 ALG - ok
12:22:44.0975 0x0728 [ 0D40BCF52EA90FC7DF2AEAB6503DEA44, 1D1AA8F50935D976C29DE7A84708CADBBBDD936F0DD2C059E820F0D21367B3B6 ] aliide C:\Windows\system32\drivers\aliide.sys
12:22:44.0991 0x0728 aliide - ok
12:22:44.0991 0x0728 [ 3C6600A0696E90A463771C7422E23AB5, 370B33DC1C25B981628A318BAE434A78A5F0A0DA93C2896DC7A3D7B87AE1A5E7 ] amdagp C:\Windows\system32\drivers\amdagp.sys
12:22:45.0007 0x0728 amdagp - ok
12:22:45.0038 0x0728 [ CD5914170297126B6266860198D1D4F0, 2239FCBD1A7EC27CE4F10DA36AE6BD6CCB87E5128C82CA71B84BFE5AF5602A60 ] amdide C:\Windows\system32\drivers\amdide.sys
12:22:45.0053 0x0728 amdide - ok
12:22:45.0069 0x0728 [ 00DDA200D71BAC534BF56A9DB5DFD666, CA316B1FFD85BA1CF8664B3229DA1F238A5341E016059F7ED89702324CFD124B ] AmdK8 C:\Windows\system32\drivers\amdk8.sys
12:22:45.0100 0x0728 AmdK8 - ok
12:22:45.0100 0x0728 [ 3CBF30F5370FDA40DD3E87DF38EA53B6, 7EACF1743367BE805357B6FD10F8F99E9B1C301FE3782D77719347B13DFA65EC ] AmdPPM C:\Windows\system32\drivers\amdppm.sys
12:22:45.0131 0x0728 AmdPPM - ok
12:22:45.0194 0x0728 [ D320BF87125326F996D4904FE24300FC, F767D8C5C58D57202905D829F7AE1B1FF33937F407FDCE4C90E32A6638F27416 ] amdsata C:\Windows\system32\drivers\amdsata.sys
12:22:45.0209 0x0728 amdsata - ok
12:22:45.0241 0x0728 [ EA43AF0C423FF267355F74E7A53BDABA, 3F1335909AB0281A2FBDD7AD90E18309E091656CD32B48894B992789D8C61DB4 ] amdsbs C:\Windows\system32\drivers\amdsbs.sys
12:22:45.0256 0x0728 amdsbs - ok
12:22:45.0287 0x0728 [ 46387FB17B086D16DEA267D5BE23A2F2, 8B8AC61B91F154B4EB5CC6DECB5FCCEBA8B42EFE94859947136AD06681EA8ED0 ] amdxata C:\Windows\system32\drivers\amdxata.sys
12:22:45.0303 0x0728 amdxata - ok
12:22:45.0319 0x0728 [ AEA177F783E20150ACE5383EE368DA19, 8FA9EE27AA1F22E8B8FE33A21028CA1E0062BAA95CB132C20D55B98C03B4254F ] AppID C:\Windows\system32\drivers\appid.sys
12:22:45.0381 0x0728 AppID - ok
12:22:45.0412 0x0728 [ 62A9C86CB6085E20DB4823E4E97826F5, E0F840B49710022C4FB437002AD06F64B0F6B5D628B32D00F2B66765E6B97E4B ] AppIDSvc C:\Windows\System32\appidsvc.dll
12:22:45.0459 0x0728 AppIDSvc - ok
12:22:45.0506 0x0728 [ EACFDF31921F51C097629F1F3C9129B4, 24138755D823E69760579ECBD672421192457CDC9941B2BC499C2D34D83E86C3 ] Appinfo C:\Windows\System32\appinfo.dll
12:22:45.0553 0x0728 Appinfo - ok
12:22:45.0599 0x0728 [ A45D184DF6A8803DA13A0B329517A64A, C1D16B60A6D69689AE951DC3D6884ED2E233D144B3FC0B86BC1C50AAAAA01ED2 ] AppMgmt C:\Windows\System32\appmgmts.dll
12:22:45.0662 0x0728 AppMgmt - ok
12:22:45.0677 0x0728 [ 2932004F49677BD84DBC72EDB754FFB3, 73F84582244AC53994A2F4499A119B4A84A6BF7FD3046C29A8080C763DE540B8 ] arc C:\Windows\system32\drivers\arc.sys
12:22:45.0693 0x0728 arc - ok
12:22:45.0709 0x0728 [ 5D6F36C46FD283AE1B57BD2E9FEB0BC7, F7C9C3B4F2C816F57A43B2921672858C291054220BADE291044343778216F6BA ] arcsas C:\Windows\system32\drivers\arcsas.sys
12:22:45.0709 0x0728 arcsas - ok
12:22:45.0818 0x0728 [ 9D768C43FEF254DD50B1DBF8AD5C4C0B, A50854EA5C08605133B8BB4DFDC6090357C5665314AA72E0BFA1E07D4E451F09 ] aspnet_state C:\Windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe
12:22:45.0865 0x0728 aspnet_state - ok
12:22:45.0880 0x0728 [ ADD2ADE1C2B285AB8378D2DAAF991481, 7965A705F37924C0EC7A934E64E89C5DF4069816E2EEA3509E0AC90F78910519 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
12:22:45.0974 0x0728 AsyncMac - ok
12:22:46.0021 0x0728 [ 338C86357871C167A96AB976519BF59E, F28CC534523D1701B0552F5D7E18E88369C4218BDB1F69110C3E31D395884AD6 ] atapi C:\Windows\system32\drivers\atapi.sys
12:22:46.0021 0x0728 atapi - ok
12:22:46.0052 0x0728 [ CE3B4E731638D2EF62FCB419BE0D39F0, 3B98179CB0101778D9E7810D2CD46D9C0D7120E141BA11471666E7D9EB3C93CC ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
12:22:46.0099 0x0728 AudioEndpointBuilder - ok
12:22:46.0130 0x0728 [ CE3B4E731638D2EF62FCB419BE0D39F0, 3B98179CB0101778D9E7810D2CD46D9C0D7120E141BA11471666E7D9EB3C93CC ] Audiosrv C:\Windows\System32\Audiosrv.dll
12:22:46.0161 0x0728 Audiosrv - ok
12:22:46.0223 0x0728 [ 9C7C45DE9E167F6268D32D6D10133F7D, 58005B49AE6D5CABB3ECEFF0D800F53D6E81A67B5EFE25E9374EC061FEC5601F ] Avgdiskx C:\Windows\system32\DRIVERS\avgdiskx.sys
12:22:46.0239 0x0728 Avgdiskx - ok
12:22:46.0442 0x0728 [ F89B2DACE0FBE54CF65D12B7081C19C3, 64BBA5A29948ABFADB8865CE0D7D0259AB291B8DA04786AB351055D57B49D439 ] AVGIDSAgent C:\Program Files\AVG\AVG2014\avgidsagent.exe
12:22:46.0535 0x0728 AVGIDSAgent - ok
12:22:46.0567 0x0728 [ C66B17D93F94622293608C2FB91C5806, 5BA6948A5328D73B1BAF6DACC7B2A842FD0072246DD416DE39F6993EAABC2997 ] AVGIDSDriver C:\Windows\system32\DRIVERS\avgidsdriverx.sys
12:22:46.0582 0x0728 AVGIDSDriver - ok
12:22:46.0613 0x0728 [ 0C70FAB4B08DC1FF6612AA3F352CFCA9, 6991B6A9E5063611C280968F758E6B0F431E19EB8539808531C6293A0F313C47 ] AVGIDSHX C:\Windows\system32\DRIVERS\avgidshx.sys
12:22:46.0629 0x0728 AVGIDSHX - ok
12:22:46.0629 0x0728 [ 4118A9D326A76D485713A36988102C3E, 10C494165258D091AB31533C37FA05C29013471D5B2D6BDA60F731715FA02248 ] AVGIDSShim C:\Windows\system32\DRIVERS\avgidsshimx.sys
12:22:46.0645 0x0728 AVGIDSShim - ok
12:22:46.0660 0x0728 [ 578ECC3D911897B2C5B760EDAF8ED6CA, 99CAACB349C8629D4BE6070BDBFB0BDB4A13ABFFF738F04D723D2AFE7EA58894 ] Avgldx86 C:\Windows\system32\DRIVERS\avgldx86.sys
12:22:46.0676 0x0728 Avgldx86 - ok
12:22:46.0707 0x0728 [ BD1A440B9F126AFE52978A44952B0018, 83577249AACC3F0C655C27A471739113B2086BFC1FF15D0ED7E64B0215B739DB ] Avglogx C:\Windows\system32\DRIVERS\avglogx.sys
12:22:46.0723 0x0728 Avglogx - ok
12:22:46.0738 0x0728 [ 7DC192EC714342E7C020C7CF42E394D8, 09F4CFFD93067E62B09C550A7A0588E90CAD190E49E1B7082FC5A949AF389781 ] Avgmfx86 C:\Windows\system32\DRIVERS\avgmfx86.sys
12:22:46.0754 0x0728 Avgmfx86 - ok
12:22:46.0769 0x0728 [ E6322DF686CE1C59D7797FAEF0732454, 03534F19568B421F9BE9C99A7A5302D38FCABA26E95C49A492DA49E58A918B55 ] Avgrkx86 C:\Windows\system32\DRIVERS\avgrkx86.sys
12:22:46.0785 0x0728 Avgrkx86 - ok
12:22:46.0816 0x0728 [ 15ACA2AD17ACECA4814F249783E63AD3, AB8E74A5B8FC2FD04BA2B495610A8BE76408E9362A447D7069D5AAB8F3512F33 ] avgtp C:\Windows\system32\drivers\avgtpx86.sys
12:22:46.0832 0x0728 avgtp - ok
12:22:46.0863 0x0728 [ B747B6BB015E552F49C634BB19540F3D, 5000AD41BD101BC06D595484B6E58DEEBB962939ACF4B24DE515771D1C4AE3ED ] avgwd C:\Program Files\AVG\AVG2014\avgwdsvc.exe
12:22:46.0879 0x0728 avgwd - ok
12:22:46.0925 0x0728 [ 6E30D02AAC9CAC84F421622E3A2F6178, 229DC527C1D6C778BCA2C855A2A6F6D2C4B0F4F6DE56C886B3AAD26E3347952C ] AxInstSV C:\Windows\System32\AxInstSV.dll
12:22:47.0003 0x0728 AxInstSV - ok
12:22:47.0066 0x0728 [ 1A231ABEC60FD316EC54C66715543CEC, 09E2897BA80737997A286EA5408C03DD3CC0EBACD24CB391C2455B6D4BE7D67E ] b06bdrv C:\Windows\system32\drivers\bxvbdx.sys
12:22:47.0144 0x0728 b06bdrv - ok
12:22:47.0191 0x0728 [ BD8869EB9CDE6BBE4508D869929869EE, F4363A12EBFDBB89C69FD59B22F9EE05BADA07D477A1DF2DE01F59D6EE496543 ] b57nd60x C:\Windows\system32\DRIVERS\b57nd60x.sys
12:22:47.0237 0x0728 b57nd60x - ok
12:22:47.0284 0x0728 [ EE1E9C3BB8228AE423DD38DB69128E71, ED54FD9795F3A4D32F02BED6052AD9404409A05644CDBEBFF19C662D104DA95A ] BDESVC C:\Windows\System32\bdesvc.dll
12:22:47.0315 0x0728 BDESVC - ok
12:22:47.0331 0x0728 [ 505506526A9D467307B3C393DEDAF858, 8AD6F1492E357F57CF42261497BA29122045D4FC0DCC9669AA5AC9B2A4BABFA4 ] Beep C:\Windows\system32\drivers\Beep.sys
12:22:47.0362 0x0728 Beep - ok
12:22:47.0409 0x0728 [ 1E2BAC209D184BB851E1A187D8A29136, 53933C938DA5126986FFF2918C1F522ABE93ABAB460AE32E4453161C2F7B68DF ] BFE C:\Windows\System32\bfe.dll
12:22:47.0456 0x0728 BFE - ok
12:22:47.0503 0x0728 [ E585445D5021971FAE10393F0F1C3961, 178C008A9A0A6BFDA65EB0B98C510271360AD4474F22F13594F5EB60AA4E1CF5 ] BITS C:\Windows\System32\qmgr.dll
12:22:47.0549 0x0728 BITS - ok
12:22:47.0565 0x0728 [ 2287078ED48FCFC477B05B20CF38F36F, 55BCA6174E6034A8D61CBE4126B2F1989F6052BFA624BEA9C0A0A664AEC74521 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
12:22:47.0612 0x0728 blbdrive - ok
12:22:47.0659 0x0728 [ 8F2DA3028D5FCBD1A060A3DE64CD6506, E234672E9CFE1A95AD2E78E306E41E010B870221E6EBBC0E2B0BE2FA5CE0CD76 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
12:22:47.0690 0x0728 bowser - ok
12:22:47.0705 0x0728 [ 9F9ACC7F7CCDE8A15C282D3F88B43309, A9131334BD9CF8FD60BA9D54AA054E2DF2BE1219FB650DF1464F2787BDEAE98F ] BrFiltLo C:\Windows\system32\drivers\BrFiltLo.sys
12:22:47.0737 0x0728 BrFiltLo - ok
12:22:47.0752 0x0728 [ 56801AD62213A41F6497F96DEE83755A, 0DEB8318FB47DF6473C171C795C735E26A73FA12232876C6856549EA16F33361 ] BrFiltUp C:\Windows\system32\drivers\BrFiltUp.sys
12:22:47.0783 0x0728 BrFiltUp - ok
12:22:47.0815 0x0728 [ 3DAA727B5B0A45039B0E1C9A211B8400, 903B51E75F0C503A0E255120F53BF51B047B219FEC1E15F2F1D02DDD562FC73B ] Browser C:\Windows\System32\browser.dll
12:22:47.0861 0x0728 Browser - ok
12:22:47.0893 0x0728 [ 845B8CE732E67F3B4133164868C666EA, 9309B094CD9B5EBC46295A5EB806BED472C3CEDE3B5F6F497EBDABA496A2A27F ] Brserid C:\Windows\System32\Drivers\Brserid.sys
12:22:47.0955 0x0728 Brserid - ok
12:22:47.0971 0x0728 [ 203F0B1E73ADADBBB7B7B1FABD901F6B, 782FA7B26940FE479C49C9BAA2EB582CDAAAD607013E9BCFC85E6FBBB7D49A6D ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
12:22:48.0002 0x0728 BrSerWdm - ok
12:22:48.0017 0x0728 [ BD456606156BA17E60A04E18016AE54B, DFBDC9DA6A3EA40BACFF204BC6C55C2C122B5885D2CBF6D45054DE43EE15EC4D ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
12:22:48.0033 0x0728 BrUsbMdm - ok
12:22:48.0049 0x0728 [ AF72ED54503F717A43268B3CC5FAEC2E, 4A638669B0C30B1BDED242A8BF2015A37749570FF4D67D190BACC8D7E0C44468 ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
12:22:48.0080 0x0728 BrUsbSer - ok
12:22:48.0080 0x0728 [ ED3DF7C56CE0084EB2034432FC56565A, B5B75E002E7BC0209582C635CCCA26DB569BDB23C33A126634E00C6434BF941B ] BTHMODEM C:\Windows\system32\drivers\bthmodem.sys
12:22:48.0111 0x0728 BTHMODEM - ok
12:22:48.0142 0x0728 [ 1DF19C96EEF6C29D1C3E1A8678E07190, 1F4BB161FF3A1C5B1465BB52F3520FEDB7ACB1FAA132466F07D16DB8E394AEA5 ] bthserv C:\Windows\system32\bthserv.dll
12:22:48.0189 0x0728 bthserv - ok
12:22:48.0220 0x0728 [ 77EA11B065E0A8AB902D78145CA51E10, 160EB3BBE9E5F3CC4A02584E6F2576A812C7565B940D74838B983F1EE51FA73A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
12:22:48.0267 0x0728 cdfs - ok
12:22:48.0298 0x0728 [ BE167ED0FDB9C1FA1133953C18D5A6C9, E26A851CA13E7300F977E5B20FA5D25FD0E1442AB6AD5DB58BBDB2DAAD87027C ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
12:22:48.0329 0x0728 cdrom - ok
12:22:48.0361 0x0728 [ 319C6B309773D063541D01DF8AC6F55F, 182F392FE839499D159A30A3CD04B5D0C87219930BFB1A7456880B7DA75B9820 ] CertPropSvc C:\Windows\System32\certprop.dll
12:22:48.0407 0x0728 CertPropSvc - ok
12:22:48.0439 0x0728 [ 3FE3FE94A34DF6FB06E6418D0F6A0060, 6B3A2A26609A75B690D4C0B3059E40822F3B3DB08943F58EC496BABDA7D0A735 ] circlass C:\Windows\system32\drivers\circlass.sys
12:22:48.0454 0x0728 circlass - ok
12:22:48.0470 0x0728 [ 635181E0E9BBF16871BF5380D71DB02D, 58D5150C6F3B9F1730FFDF3A8A2ABF5FF207F9785BD66C0C1E03A0F1C223A26A ] CLFS C:\Windows\system32\CLFS.sys
12:22:48.0485 0x0728 CLFS - ok
12:22:48.0548 0x0728 [ D88040F816FDA31C3B466F0FA0918F29, 39D3630E623DA25B8444B6D3AAAB16B98E7E289C5619E19A85D47B74C71449F3 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
12:22:48.0579 0x0728 clr_optimization_v2.0.50727_32 - ok
12:22:48.0610 0x0728 [ E87213F37A13E2B54391E40934F071D0, 7EB221127EFB5BF158FB03D18EFDA2C55FB6CE3D1A1FE69C01D70DBED02C87E5 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
12:22:48.0688 0x0728 clr_optimization_v4.0.30319_32 - ok
12:22:48.0704 0x0728 [ DEA805815E587DAD1DD2C502220B5616, 2D6A7668C95352B818F5EC59FF462894935833D34190257DA9CAC7E67FD3631C ] CmBatt C:\Windows\system32\drivers\CmBatt.sys
12:22:48.0735 0x0728 CmBatt - ok
12:22:48.0766 0x0728 [ C537B1DB64D495B9B4717B4D6D9EDBF2, 400EEFE662DE117C9CC956E4CBD5E98F28F962E7447CD93E8A78FDD8CA39EB4B ] cmdide C:\Windows\system32\drivers\cmdide.sys
12:22:48.0782 0x0728 cmdide - ok
12:22:48.0829 0x0728 [ 85449EEBE8F8EBD6481EFBF0F352B4EB, E6FF04970C5A5BFDE7297A86C1C7B9BFE2E0F976A1A1AFB874CEB488DC6151CC ] CNG C:\Windows\system32\Drivers\cng.sys
12:22:48.0875 0x0728 CNG - ok
12:22:48.0875 0x0728 [ A6023D3823C37043986713F118A89BEE, FAC239A7FA6251C7EDFFA34B4BAE3910B8BC0BD4A3574B6DB6931A8D691E207B ] Compbatt C:\Windows\system32\drivers\compbatt.sys
12:22:48.0891 0x0728 Compbatt - ok
12:22:48.0922 0x0728 [ CBE8C58A8579CFE5FCCF809E6F114E89, AC083A1C649EBA18C59FCC1772D0784B10E2B8C63094E3C14388E147DBC3F6DF ] CompositeBus C:\Windows\system32\DRIVERS\CompositeBus.sys
12:22:48.0969 0x0728 CompositeBus - ok
12:22:48.0969 0x0728 COMSysApp - ok
12:22:48.0985 0x0728 [ 2C4EBCFC84A9B44F209DFF6C6E6C61D1, 6FC323217D82EF661BA0E3F949B61B05BB5235D1A69C81D24876C2153FAECEF6 ] crcdisk C:\Windows\system32\drivers\crcdisk.sys
12:22:49.0000 0x0728 crcdisk - ok
12:22:49.0063 0x0728 [ 7CA1BECEA5DE2643ADDAD32670E7A4C9, E3AB4CC52A97E3855D7EAB87363F807FDD2162ED8C76A036CD71549ED64E7797 ] CryptSvc C:\Windows\system32\cryptsvc.dll
12:22:49.0094 0x0728 CryptSvc - ok
12:22:49.0141 0x0728 [ 3C2177A897B4CA2788C6FB0C3FD81D4B, 98575CBD0664586E6211D02E71BDD52CBAA149A1658573550E29E74E5F7B1553 ] CSC C:\Windows\system32\drivers\csc.sys
12:22:49.0187 0x0728 CSC - ok
12:22:49.0234 0x0728 [ 15F93B37F6801943360D9EB42485D5D3, DD6838C6496CB15F8BB57A6596F6A64ADD9C36B09F062295699131232712B558 ] CscService C:\Windows\System32\cscsvc.dll
12:22:49.0281 0x0728 CscService - ok
12:22:49.0328 0x0728 [ 7660F01D3B38ACA1747E397D21D790AF, 04611B43705C064C2A8331F6D3F8E4530295694AE2C3E3EC3F62CFF4A5EFA88D ] DcomLaunch C:\Windows\system32\rpcss.dll
12:22:49.0375 0x0728 DcomLaunch - ok
12:22:49.0406 0x0728 [ 8D6E10A2D9A5EED59562D9B82CF804E1, 888F9650F4E872BA8F4E0C27E38A6672A561042B17EBA40E306A22357965B0AD ] defragsvc C:\Windows\System32\defragsvc.dll
12:22:49.0453 0x0728 defragsvc - ok
12:22:49.0484 0x0728 [ F024449C97EC1E464AAFFDA18593DB88, 7EF1E241892E098A472BCA14C724DFF1AACCF190954AF1C4A38B6D542CC74BD2 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
12:22:49.0515 0x0728 DfsC - ok
12:22:49.0546 0x0728 [ E9E01EB683C132F7FA27CD607B8A2B63, 4D9037B458C522874619143A4176BCED42472C68933E6E83D37B67242706F3C4 ] Dhcp C:\Windows\system32\dhcpcore.dll
12:22:49.0593 0x0728 Dhcp - ok
12:22:49.0609 0x0728 [ 1A050B0274BFB3890703D490F330C0DA, 79D74F4679A2EE040FAAF4D0392A9311239A10A5F8A5CCB48656C6F89B6D62FB ] discache C:\Windows\system32\drivers\discache.sys
12:22:49.0655 0x0728 discache - ok
12:22:49.0687 0x0728 [ 565003F326F99802E68CA78F2A68E9FF, ABC42B24DBA4FFC411120E09278EF26AF56CCAB463B69B4BD6C530B4A07063D2 ] Disk C:\Windows\system32\drivers\disk.sys
12:22:49.0687 0x0728 Disk - ok
12:22:49.0718 0x0728 [ 2A958EF85DB1B61FFCA65044FA4BCE9E, C83511685EE1CE85A5ADF9B5BE96C375A521601F66024BDC3EE044C0B6E85D69 ] dmvsc C:\Windows\system32\drivers\dmvsc.sys
12:22:49.0749 0x0728 dmvsc - ok
12:22:49.0796 0x0728 [ 33EF4861F19A0736B11314AAD9AE28D0, 4C4B84365D85758E3263B88F157D8B086B392C6F1EA5F0F3DB6BF87EF90248EC ] Dnscache C:\Windows\System32\dnsrslvr.dll
12:22:49.0843 0x0728 Dnscache - ok
12:22:49.0874 0x0728 [ 366BA8FB4B7BB7435E3B9EACB3843F67, 65B7C61ACF34F1F0149045AA9E09A3F917A927963237A385A914D0B80551DC31 ] dot3svc C:\Windows\System32\dot3svc.dll
12:22:49.0936 0x0728 dot3svc - ok
12:22:49.0967 0x0728 [ 8EC04CA86F1D68DA9E11952EB85973D6, 2E3FBC2D683D1274E8BC45EEEA87D43B77EDDCAAF0D453296D9FDA6B9D717071 ] DPS C:\Windows\system32\dps.dll
12:22:50.0030 0x0728 DPS - ok
12:22:50.0061 0x0728 [ B918E7C5F9BF77202F89E1A9539F2EB4, C589A37DE50BBEF22E2DAA9682EA43147F614AA1AF7DAAA942BA5FC192313A0B ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
12:22:50.0108 0x0728 drmkaud - ok
12:22:50.0170 0x0728 [ 71BC35067CABC02C9453AEAA42B2E43E, 713B19F2C08EA5E4C087F7A74A8856932CF33E19D63384823DD4E02ED8798619 ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
12:22:50.0201 0x0728 DXGKrnl - ok
12:22:50.0248 0x0728 [ 377AD53E4154477339290B4212E69D53, CFB201699CBB9416963973DB2E45810760BEBABAE684EC06E35495601A8A10AF ] e1express C:\Windows\system32\DRIVERS\e1e6232.sys
12:22:50.0264 0x0728 e1express - ok
12:22:50.0311 0x0728 [ 8600142FA91C1B96367D3300AD0F3F3A, 5713625E27DF11FAAFDA7AC79899A6AD813166E167088FA990EC5DE87DBE83DF ] EapHost C:\Windows\System32\eapsvc.dll
12:22:50.0342 0x0728 EapHost - ok
12:22:50.0529 0x0728 [ 024E1B5CAC09731E4D868E64DBFB4AB0, AB0826A74BBEE5B7A1B035861B665C79BC98305CFC7D82BEF420558FBD3EE994 ] ebdrv C:\Windows\system32\drivers\evbdx.sys
12:22:50.0732 0x0728 ebdrv - ok
12:22:50.0763 0x0728 [ 803B370865D907EA21DC0C2B6A8936B5, E98F0BA1D94786E061A3EA2CC76041FF6BE0ADF47C6205D5572C03BF0E29CA78 ] EFS C:\Windows\System32\lsass.exe
12:22:50.0794 0x0728 EFS - ok
12:22:50.0872 0x0728 [ A8C362018EFC87BEB013EE28F29C0863, 07971C681FBD391C0BA0172618AF8AD77520182207F1C57F134B34D6A113857F ] ehRecvr C:\Windows\ehome\ehRecvr.exe
12:22:50.0919 0x0728 ehRecvr - ok
12:22:50.0935 0x0728 [ D389BFF34F80CAEDE417BF9D1507996A, 12859B9925D7A4631DE61A820922F43F56ED23C2AF014CBF36322685E5CF641E ] ehSched C:\Windows\ehome\ehsched.exe
12:22:50.0966 0x0728 ehSched - ok
12:22:51.0013 0x0728 [ 0ED67910C8C326796FAA00B2BF6D9D3C, 97FAA7627A162B0AEC15545E0165D13355D535B4157604BB87F8EEB72ECD24A8 ] elxstor C:\Windows\system32\drivers\elxstor.sys
12:22:51.0059 0x0728 elxstor - ok
12:22:51.0059 0x0728 [ 8FC3208352DD3912C94367A206AB3F11, 69B65C12BDADD4B730508674B1B77C5496612B4ACCC447DB9AFE49ADEA8CBF02 ] ErrDev C:\Windows\system32\drivers\errdev.sys
12:22:51.0091 0x0728 ErrDev - ok
12:22:51.0137 0x0728 [ F6916EFC29D9953D5D0DF06882AE8E16, ED41893960018D5EC2F7829B1DE4B6967D9FD074D60B11B9EB854E3E0948EC24 ] EventSystem C:\Windows\system32\es.dll
12:22:51.0184 0x0728 EventSystem - ok
12:22:51.0215 0x0728 [ 2DC9108D74081149CC8B651D3A26207F, 75CB47923A867DDAC512701CE71DFCFC340FC3A2E27F4255D0836A1FBC463176 ] exfat C:\Windows\system32\drivers\exfat.sys
12:22:51.0247 0x0728 exfat - ok
12:22:51.0262 0x0728 [ 7E0AB74553476622FB6AE36F73D97D35, 41463A255FDA1D550B3385EC7C73ABC343B1BBBE9CEE4DF9F2A8B3E7338C4947 ] fastfat C:\Windows\system32\drivers\fastfat.sys
12:22:51.0309 0x0728 fastfat - ok
12:22:51.0371 0x0728 [ 967EA5B213E9984CBE270205DF37755B, 43153E23210B03FAE16897D62D55B8742F834EDC695F8401EAB5DE307F62602D ] Fax C:\Windows\system32\fxssvc.exe
12:22:51.0434 0x0728 Fax - ok
12:22:51.0449 0x0728 [ E817A017F82DF2A1F8CFDBDA29388B29, 4CC9320A21E6FEA2D16C48D6BEA14391B695BD541A3C5FDDAEEE086A414FC837 ] fdc C:\Windows\system32\DRIVERS\fdc.sys
12:22:51.0481 0x0728 fdc - ok
12:22:51.0496 0x0728 [ F3222C893BD2F5821A0179E5C71E88FB, A85B947249DBB986358CCD4B158DD58A9301F074F3C6CCCDEF2D01F432E59D1B ] fdPHost C:\Windows\system32\fdPHost.dll
12:22:51.0527 0x0728 fdPHost - ok
12:22:51.0559 0x0728 [ 7DBE8CBFE79EFBDEB98C9FB08D3A9A5B, 0E76C29D2A974A3F2FBFCB63D066D4136B78E02F6B1F579B1865CA7A76193987 ] FDResPub C:\Windows\system32\fdrespub.dll
12:22:51.0574 0x0728 FDResPub - ok
12:22:51.0590 0x0728 [ 6CF00369C97F3CF563BE99BE983D13D8, F65F35324A2FB9DFB533B1C4D089D990CC242218FE83414329D07B786D8EFF33 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
12:22:51.0605 0x0728 FileInfo - ok
12:22:51.0621 0x0728 [ 42C51DC94C91DA21CB9196EB64C45DB9, 388C68D12ECC8FFE3116FEAAF4DB7B80CF4A3F97E935788DD21C6ADE2369F635 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
12:22:51.0652 0x0728 Filetrace - ok
12:22:51.0683 0x0728 [ 87907AA70CB3C56600F1C2FB8841579B, CA1CD82A1CD453617CE5EA431A1836997F14E3580554E8A516D9FE1E9926D979 ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
12:22:51.0715 0x0728 flpydisk - ok
12:22:51.0746 0x0728 [ 7520EC808E0C35E0EE6F841294316653, 6EC65511B4838A7172A8F89E35C2F9DF4F0BFCE3BE12EDA790F3EB567102FF67 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
12:22:51.0761 0x0728 FltMgr - ok
12:22:51.0871 0x0728 [ E12C4928B32ACE04610259647F072635, B71B9C2DF45F33C4DAC88435129B08B0BCDBBE82E8C3AD0A95F00137CC8B619F ] FontCache C:\Windows\system32\FntCache.dll
12:22:51.0933 0x0728 FontCache - ok
12:22:51.0980 0x0728 [ E56F39F6B7FDA0AC77A79B0FD3DE1A2F, DBED26852B99B362152DA9CD4F31A1883EF6F9B496F3CF3772A197BA72DB61DA ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
12:22:51.0995 0x0728 FontCache3.0.0.0 - ok
12:22:52.0027 0x0728 [ 1A16B57943853E598CFF37FE2B8CBF1D, 87609F46F3B8123552141FD70866E895220B1BBD92BC2B580CAF49201AA0197E ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
12:22:52.0042 0x0728 FsDepends - ok
12:22:52.0058 0x0728 [ 7DAE5EBCC80E45D3253F4923DC424D05, 8A2C4D5591509B0B0A44583520617A9AE34F32BB6E68A012A7D7870ED24F703A ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
12:22:52.0073 0x0728 Fs_Rec - ok
12:22:52.0120 0x0728 [ E306A24D9694C724FA2491278BF50FDB, 1D246B9C28550640EACBF8CF9DC980FD75106B92832D392FEBEF0C7012353091 ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
12:22:52.0136 0x0728 fvevol - ok
12:22:52.0167 0x0728 [ 65EE0C7A58B65E74AE05637418153938, 0E1A398ADD8411AF4CCC3344D67BE1B261320C58328BD5C5855A357476FAEBEF ] gagp30kx C:\Windows\system32\drivers\gagp30kx.sys
12:22:52.0167 0x0728 gagp30kx - ok
12:22:52.0214 0x0728 [ E897EAF5ED6BA41E081060C9B447A673, A428DC68516F19C6C53A8B62E4BDB2587E70FB751B9D77700B6B147D347DA157 ] gpsvc C:\Windows\System32\gpsvc.dll
12:22:52.0261 0x0728 gpsvc - ok
12:22:52.0339 0x0728 [ 506708142BC63DABA64F2D3AD1DCD5BF, 9C36A08D9E7932FF4DA7B5F24E6B42C92F28685B8ABE964C870E8D7670FD531A ] gupdate C:\Program Files\Google\Update\GoogleUpdate.exe
12:22:52.0354 0x0728 gupdate - ok
12:22:52.0370 0x0728 [ 506708142BC63DABA64F2D3AD1DCD5BF, 9C36A08D9E7932FF4DA7B5F24E6B42C92F28685B8ABE964C870E8D7670FD531A ] gupdatem C:\Program Files\Google\Update\GoogleUpdate.exe
12:22:52.0370 0x0728 gupdatem - ok
12:22:52.0401 0x0728 [ 5D4BC124FAAE6730AC002CDB67BF1A1C, 00294F4DC7D17F6DD2A22B9C3299BED40146BA45C972367154D20DB502472551 ] gusvc C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
12:22:52.0432 0x0728 gusvc - ok
12:22:52.0448 0x0728 [ C44E3C2BAB6837DB337DDEE7544736DB, 88A24FF7D2FECCEAFFD421B2039A0FB623DA47A6B220B80EF1E52DD26D9E222D ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
12:22:52.0479 0x0728 hcw85cir - ok
12:22:52.0526 0x0728 [ A5EF29D5315111C80A5C1ABAD14C8972, A181DA72E946F121C3F4A19438C547B0BFD15138AB1DB5465945EC89DF1F6B0A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
12:22:52.0557 0x0728 HdAudAddService - ok
12:22:52.0588 0x0728 [ 9036377B8A6C15DC2EEC53E489D159B5, 1E56D2ACFE92E6DF96D755B05C63D580EED82C210F075C8623E138BEE6BCD41B ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys
12:22:52.0619 0x0728 HDAudBus - ok
12:22:52.0666 0x0728 [ 0BF1D760B05CAAAF231123D53C4789E2, 53EB2FAEFC6267BA29831D2AFF6EDBF6916B25509D8C206D34FD52E76965856B ] HECI C:\Windows\system32\DRIVERS\HECI.sys
12:22:52.0713 0x0728 HECI - ok
12:22:52.0729 0x0728 [ 1D58A7F3E11A9731D0EAAAA8405ACC36, 7056FA18B86FBD52C4A6092D80476C02553EA053D6A0BEDB01A2FA5E152D5215 ] HidBatt C:\Windows\system32\drivers\HidBatt.sys
12:22:52.0791 0x0728 HidBatt - ok
12:22:52.0807 0x0728 [ 89448F40E6DF260C206A193A4683BA78, 71E0FCC32AE6FF8DFF420DB0383D6A200E1EAE14BD2E32453F92CE18B31C1F3C ] HidBth C:\Windows\system32\drivers\hidbth.sys
12:22:52.0853 0x0728 HidBth - ok
12:22:52.0869 0x0728 [ CF50B4CF4A4F229B9F3C08351F99CA5E, B97843620AF80FF0EC8F2C438255C0A42A756C6314FAF3DEF415DE16E14C108F ] HidIr C:\Windows\system32\drivers\hidir.sys
12:22:52.0900 0x0728 HidIr - ok
12:22:52.0931 0x0728 [ 2BC6F6A1992B3A77F5F41432CA6B3B6B, 2AF3312F1C8C8923C0A29AA5DAE57CE269417E53DEA2F0CCCC8DB57029698FE1 ] hidserv C:\Windows\system32\hidserv.dll
12:22:52.0978 0x0728 hidserv - ok
12:22:53.0041 0x0728 [ 10C19F8290891AF023EAEC0832E1EB4D, E208553029488A6EE2F5216CC9FE5F93E9931A94C0D0625253BB159E30642853 ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
12:22:53.0087 0x0728 HidUsb - ok
12:22:53.0119 0x0728 [ 196B4E3F4CCCC24AF836CE58FACBB699, 7A2E1F603A073421FA0987EFB96647F1F0F2D4E0C82AA62EBC041585DA811DAF ] hkmsvc C:\Windows\system32\kmsvc.dll
12:22:53.0150 0x0728 hkmsvc - ok
12:22:53.0181 0x0728 [ 6658F4404DE03D75FE3BA09F7ABA6A30, E51D9C1580A283EB862F09B73AAE1B647DD683A53F3DD99834222F12DD15E40F ] HomeGroupListener C:\Windows\system32\ListSvc.dll
12:22:53.0228 0x0728 HomeGroupListener - ok
12:22:53.0259 0x0728 [ DBC02D918FFF1CAD628ACBE0C0EAA8E8, 02121800D9062692C102475876AE8143EBE46D855E8328B8CDCFE6A2F0D19696 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
12:22:53.0306 0x0728 HomeGroupProvider - ok
12:22:53.0337 0x0728 [ 295FDC419039090EB8B49FFDBB374549, 670E8015FD374640C6570F56F7FE8DE4D8F92E7A8072F5D1B2B95D0BD699CEF7 ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
12:22:53.0353 0x0728 HpSAMD - ok
12:22:53.0384 0x0728 [ 871917B07A141BFF43D76D8844D48106, 30C702008D0EE57D63F74864967DD19A55A268E77E42B5B3CC73037AD51D2987 ] HTTP C:\Windows\system32\drivers\HTTP.sys
12:22:53.0431 0x0728 HTTP - ok
12:22:53.0446 0x0728 [ 0C4E035C7F105F1299258C90886C64C5, CFB4FBE7B28058E6D3E6E508CF3C1645F6AAE0AFEB4C5364835B9C42311DF0D4 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
12:22:53.0446 0x0728 hwpolicy - ok
12:22:53.0477 0x0728 [ F151F0BDC47F4A28B1B20A0818EA36D6, 84B24B5796D9F70A8C37773F5484A4606CC7908370CCD942627ACBEDC4952D79 ] i8042prt C:\Windows\system32\drivers\i8042prt.sys
12:22:53.0509 0x0728 i8042prt - ok
12:22:53.0555 0x0728 [ 5CD5F9A5444E6CDCB0AC89BD62D8B76E, 72870092A80C6DAE0105025B0ED8B607E98BA81E59298364A7FE4C9C56C68FF0 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
12:22:53.0587 0x0728 iaStorV - ok
12:22:53.0665 0x0728 [ C521D7EB6497BB1AF6AFA89E322FB43C, BDDCFCBB5B76A9295669B5AC9F732D6127199ED5C300770B554C4E4794F66BB7 ] idsvc C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
12:22:53.0727 0x0728 idsvc - ok
12:22:53.0743 0x0728 IEEtwCollectorService - ok
12:22:54.0023 0x0728 [ 9467514EA189475A6E7FDC5D7BDE9D3F, E6F5B99BF6B614832770F9310B06334A8174C7660DDEC7589433640527A14683 ] igfx C:\Windows\system32\DRIVERS\igdkmd32.sys
12:22:54.0211 0x0728 igfx - ok
12:22:54.0242 0x0728 [ 4173FF5708F3236CF25195FECD742915, 0A9C0701DF6EAC6602BE342FC13C7950EF04BB5BDF7D96C2C5DABBD2A29AA55D ] iirsp C:\Windows\system32\drivers\iirsp.sys
12:22:54.0257 0x0728 iirsp - ok
12:22:54.0304 0x0728 [ B9C54120F46392100478F58F374E5709, A28EE8B0988F580D5984E815FC78DF41B169260814234AA0E453375542D0957B ] IKEEXT C:\Windows\System32\ikeext.dll
12:22:54.0351 0x0728 IKEEXT - ok
12:22:54.0382 0x0728 [ A0F12F2C9BA6C72F3987CE780E77C130, 5F53DF8BE1621AA7DFB655CFD9C95E0AFA1AD3CE2E290E19D7B7FB3C6E380034 ] intelide C:\Windows\system32\drivers\intelide.sys
12:22:54.0398 0x0728 intelide - ok
12:22:54.0429 0x0728 [ 3B514D27BFC4ACCB4037BC6685F766E0, F12D7AC62F8550E6F33B28AD751D8413AB7FFEF963242D99FFA76CE8A48B027A ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
12:22:54.0445 0x0728 intelppm - ok
12:22:54.0460 0x0728 [ ACB364B9075A45C0736E5C47BE5CAE19, 202F77C659103D2D0E787B8CB0A23BE32EA5AA2E6B3B0A0F0A8DFA906AB3C0C0 ] IPBusEnum C:\Windows\system32\ipbusenum.dll
12:22:54.0491 0x0728 IPBusEnum - ok
12:22:54.0523 0x0728 [ 709D1761D3B19A932FF0238EA6D50200, 0A9D2C3A6E91CA45540555B40CB4E2DF3EBE98C1D164C4EECEE20C86782F5823 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
12:22:54.0554 0x0728 IpFilterDriver - ok
12:22:54.0601 0x0728 [ 58F67245D041FBE7AF88F4EAF79DF0FA, 67468D6A46FF4D87AD321BFEA42F2FC843D09AA292A119C76D4D795D06028F96 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
12:22:54.0663 0x0728 iphlpsvc - ok
12:22:54.0663 0x0728 [ 4BD7134618C1D2A27466A099062547BF, 20284ABEF4433A59E2981F4143CAEC67DC990864FE0B9E3DC70EE0B88539E964 ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
12:22:54.0694 0x0728 IPMIDRV - ok
12:22:54.0694 0x0728 [ A5FA468D67ABCDAA36264E463A7BB0CD, EDB828D596E43372F97DAE1AADA46428C4C45FB80646DDC64FAD5F25C826CF63 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
12:22:54.0725 0x0728 IPNAT - ok
12:22:54.0757 0x0728 [ 42996CFF20A3084A56017B7902307E9F, 688176DAB91BE569280E4822E4C5BDE755794D293591C53F8047AD59C441751D ] IRENUM C:\Windows\system32\drivers\irenum.sys
12:22:54.0788 0x0728 IRENUM - ok
12:22:54.0819 0x0728 [ 1F32BB6B38F62F7DF1A7AB7292638A35, 86522358680FBB1CEBC56B4D139290689BB0F71A3EC78CE883E4D75D0B37586F ] isapnp C:\Windows\system32\drivers\isapnp.sys
12:22:54.0819 0x0728 isapnp - ok
12:22:54.0881 0x0728 [ CB7A9ABB12B8415BCE5D74994C7BA3AE, 464BFF3F5EEE985BE075E23E1813F5CB82A9A0771A92C6D889B13B867BCDF647 ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
12:22:54.0928 0x0728 iScsiPrt - ok
12:22:54.0944 0x0728 [ ADEF52CA1AEAE82B50DF86B56413107E, A3AE1E96B04AC81665ABBD3CB267DFB3F78376DAE18FB0DBD447908DDAAA22D2 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
12:22:54.0959 0x0728 kbdclass - ok
12:22:54.0975 0x0728 [ 9E3CED91863E6EE98C24794D05E27A71, 90CF59F20E14E4A5A793266805E82BF7AE1F0CF4C7BAB1FD2EEF3B53C5DF770F ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
12:22:55.0006 0x0728 kbdhid - ok
12:22:55.0022 0x0728 [ 803B370865D907EA21DC0C2B6A8936B5, E98F0BA1D94786E061A3EA2CC76041FF6BE0ADF47C6205D5572C03BF0E29CA78 ] KeyIso C:\Windows\system32\lsass.exe
12:22:55.0037 0x0728 KeyIso - ok
12:22:55.0069 0x0728 [ F286830298323272260332D6ABC905C1, FF4CD182A95CA53119B228690D682EE9214BE131A0DBCB09B6189FBEBBFF902C ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
12:22:55.0084 0x0728 KSecDD - ok
12:22:55.0100 0x0728 [ D7C760D57B1656DD748B9E4AB6CB5A51, F8AE4185A6A9F7005DEFF1FDC03F395C6189825B482B8C650637FD29DE93AB68 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
12:22:55.0115 0x0728 KSecPkg - ok
12:22:55.0147 0x0728 [ 89A7B9CC98D0D80C6F31B91C0A310FCD, 4583CAEEE0D50C0C7CE955E533FDA063CDC37B69033D41EF22EF1BA242E4C747 ] KtmRm C:\Windows\system32\msdtckrm.dll
12:22:55.0193 0x0728 KtmRm - ok
12:22:55.0240 0x0728 [ D64AF876D53ECA3668BB97B51B4E70AB, D5C07C019BFEAFBEDC29AB5060356A3B07449712B21B50E03378BEF04AF180F9 ] LanmanServer C:\Windows\system32\srvsvc.dll
12:22:55.0287 0x0728 LanmanServer - ok
12:22:55.0318 0x0728 [ 58405E4F68BA8E4057C6E914F326ABA2, C3E6519A1A38F1B3597D4391E42ABFE8F1F5E86256C4B3BD876CDAD9BB68B0A6 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
12:22:55.0349 0x0728 LanmanWorkstation - ok
12:22:55.0381 0x0728 [ 006540C9CDC7E72ADD1435CF778EC674, 3DBF0968C7EC730AC395A33F71FD135968580F7B8C2E07A7B427A7BB0AD34DA3 ] LHidFilt C:\Windows\system32\DRIVERS\LHidFilt.Sys
12:22:55.0381 0x0728 LHidFilt - ok
12:22:55.0427 0x0728 [ F7611EC07349979DA9B0AE1F18CCC7A6, 879AA7A391966F00761CA039C25EBC62F6712DD5461694911EEC673E12DE103E ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
12:22:55.0459 0x0728 lltdio - ok
12:22:55.0505 0x0728 [ 5700673E13A2117FA3B9020C852C01E2, 6684A2905EE8C438F2A64BE47E51A54D287B08DEFB8E0AE7FC2809D845EE3C5F ] lltdsvc C:\Windows\System32\lltdsvc.dll
12:22:55.0537 0x0728 lltdsvc - ok
12:22:55.0552 0x0728 [ 55CA01BA19D0006C8F2639B6C045E08B, 4DBBDC820C514DB18CC13F8EE178F8C4E39C295C6E3C255416C235553CE7BDC1 ] lmhosts C:\Windows\System32\lmhsvc.dll
12:22:55.0599 0x0728 lmhosts - ok
12:22:55.0630 0x0728 [ 3C5BA4B2E4D1180BF9810963A494799A, CDC5B4D1BC859637166DB47AA1C2AFE8AB0255FA49CBA9298B5B79CD48358588 ] LMouFilt C:\Windows\system32\DRIVERS\LMouFilt.Sys
12:22:55.0630 0x0728 LMouFilt - ok
12:22:55.0661 0x0728 [ EB119A53CCF2ACC000AC71B065B78FEF, 1FD60735C4945AE565C223F0B47EAF9602D8777E3D15600914C1A9D761215AF9 ] LSI_FC C:\Windows\system32\drivers\lsi_fc.sys
12:22:55.0677 0x0728 LSI_FC - ok
12:22:55.0693 0x0728 [ 8ADE1C877256A22E49B75D1CC9161F9C, 3D64F233DC866537E50549A7C1A2B40A954055B22F0BDA39825B04C38C607CB7 ] LSI_SAS C:\Windows\system32\drivers\lsi_sas.sys
12:22:55.0708 0x0728 LSI_SAS - ok
12:22:55.0708 0x0728 [ DC9DC3D3DAA0E276FD2EC262E38B11E9, A264990857CBC74036799E17A087130626C0A09BE19879019BAF2D761C62AECC ] LSI_SAS2 C:\Windows\system32\drivers\lsi_sas2.sys
12:22:55.0724 0x0728 LSI_SAS2 - ok
12:22:55.0739 0x0728 [ 0A036C7D7CAB643A7F07135AC47E0524, 2F662D07FCB74B8D493156DB555EAA90A47E93CF14C7B30039D2FE47EB8682B8 ] LSI_SCSI C:\Windows\system32\drivers\lsi_scsi.sys
12:22:55.0755 0x0728 LSI_SCSI - ok
12:22:55.0771 0x0728 [ 6703E366CC18D3B6E534F5CF7DF39CEE, 7396B9AF938284D99EC51206A7B2FA4A0DC10A493DCE6707818B03A7473782C4 ] luafv C:\Windows\system32\drivers\luafv.sys
12:22:55.0817 0x0728 luafv - ok
12:22:55.0849 0x0728 [ 49F629541C91371FE3AAA2F8728555D9, 7D57ADE953141ED70EF35090A18E4E50373DB574D9B19F207DB5703994DD1E29 ] LUsbFilt C:\Windows\system32\Drivers\LUsbFilt.Sys
12:22:55.0849 0x0728 LUsbFilt - ok
12:22:55.0880 0x0728 [ BFB9EE8EE977EFE85D1A3105ABEF6DD1, D2A84EBF0C0B7A14AD432FD2EF43CC12300027AEA3FA4075659FB088AB62B588 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
12:22:55.0895 0x0728 Mcx2Svc - ok
12:22:55.0911 0x0728 [ 0FFF5B045293002AB38EB1FD1FC2FB74, 49071B565FD5B2DE43EC00D8518C3BE70843F38919E82F13104B8C1FAFB20374 ] megasas C:\Windows\system32\drivers\megasas.sys
12:22:55.0927 0x0728 megasas - ok
12:22:55.0942 0x0728 [ DCBAB2920C75F390CAF1D29F675D03D6, 85C3A7A010BEA5E3C6179161B295F2CB900A6A214833A5F87A4327392880E2BB ] MegaSR C:\Windows\system32\drivers\MegaSR.sys
12:22:55.0958 0x0728 MegaSR - ok
12:22:55.0973 0x0728 [ 146B6F43A673379A3C670E86D89BE5EA, C4412DCF80DE6B55466F399413271364F14BC0819C224AA161EDDC31A9775440 ] MMCSS C:\Windows\system32\mmcss.dll
12:22:56.0020 0x0728 MMCSS - ok
12:22:56.0036 0x0728 [ F001861E5700EE84E2D4E52C712F4964, F4DC5AEED6F34D76CCEF360862CC47EF71097BE0813C8CE04EE5F0DB387DFFAE ] Modem C:\Windows\system32\drivers\modem.sys
12:22:56.0083 0x0728 Modem - ok
12:22:56.0098 0x0728 [ 79D10964DE86B292320E9DFE02282A23, 52714827B7EEDACA55326A4E4F6158D4942DFAA3BACDE303A2F569BF3F4FAA72 ] monitor C:\Windows\system32\DRIVERS\monitor.sys
12:22:56.0129 0x0728 monitor - ok
12:22:56.0161 0x0728 [ FB18CC1D4C2E716B6B903B0AC0CC0609, F10CCA63493782B16DE6B96B94A27078DBE68AECEF34FDF840CFF86D2C6E3C5E ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
12:22:56.0176 0x0728 mouclass - ok
12:22:56.0192 0x0728 [ 2C388D2CD01C9042596CF3C8F3C7B24D, B2FB72272BB01AEDA4047B57C943B7E9BD8A6497854F8CC34672AAA592D0A703 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
12:22:56.0223 0x0728 mouhid - ok
12:22:56.0223 0x0728 [ FC8771F45ECCCFD89684E38842539B9B, 806DDF2B4830CA866582FE74A521BB7DF26CA0E19013DAF584D3677FB48CC77A ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
12:22:56.0239 0x0728 mountmgr - ok
12:22:56.0270 0x0728 [ 2D699FB6E89CE0D8DA14ECC03B3EDFE0, D3D903EEA465D77345AAC9B9F02CDEADF4831212EA2DE4FCA33BEE26EBB47420 ] mpio C:\Windows\system32\drivers\mpio.sys
12:22:56.0285 0x0728 mpio - ok
12:22:56.0301 0x0728 [ AD2723A7B53DD1AACAE6AD8C0BFBF4D0, 1D6DCFA0E56C3E55B6AED819176E751502F863BA0FCF4F0B3253A81D208141A2 ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
12:22:56.0348 0x0728 mpsdrv - ok
12:22:56.0410 0x0728 [ 9835584E999D25004E1EE8E5F3E3B881, 71798B0CBE9AE69F1F29B845319019C69EC7F415CBABB3B87DDE92C360675021 ] MpsSvc C:\Windows\system32\mpssvc.dll
12:22:56.0457 0x0728 MpsSvc - ok
12:22:56.0488 0x0728 [ 21F4B24ACFC79A483515BD986DD9043F, 22681907E02E0B723ABE2CEF0602D36C8EF862E7E2B62A9B40A5EF582E58D7BA ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
12:22:56.0535 0x0728 MRxDAV - ok
12:22:56.0582 0x0728 [ 5D16C921E3671636C0EBA3BBAAC5FD25, 5BC107B95CAFC88F51FBB9F657B99944B20627A2B618F263093D7045E4FFD65C ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
12:22:56.0613 0x0728 mrxsmb - ok
12:22:56.0629 0x0728 [ 6D17A4791ACA19328C685D256349FEFC, 012AA3D84EEAAF53780D06D2D11B9727DFC3441F3FAD75BC9E751FB814403668 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
12:22:56.0644 0x0728 mrxsmb10 - ok
12:22:56.0660 0x0728 [ B81F204D146000BE76651A50670A5E9E, 78193D0F967BE9829E53F9B500342934B4B1E1F4CEFC444382959E2061BC3B17 ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
12:22:56.0675 0x0728 mrxsmb20 - ok
12:22:56.0707 0x0728 [ 012C5F4E9349E711E11E0F19A8589F0A, 208B92DFCF7AD43202660FBBC9FF5E03AEDBEE38178FF3628EB74CB6CD37C584 ] msahci C:\Windows\system32\drivers\msahci.sys
12:22:56.0707 0x0728 msahci - ok
12:22:56.0738 0x0728 [ 55055F8AD8BE27A64C831322A780A228, C2C9FD1F61302997117B1CD0835E8234405BB80084065ED05363B77868397304 ] msdsm C:\Windows\system32\drivers\msdsm.sys
12:22:56.0753 0x0728 msdsm - ok
12:22:56.0769 0x0728 [ E1BCE74A3BD9902B72599C0192A07E27, 5162EB623FE64E9DFEAC6CA2410EFA1314E62EC13207FFBFED2D61AA887603C4 ] MSDTC C:\Windows\System32\msdtc.exe
12:22:56.0800 0x0728 MSDTC - ok
12:22:56.0831 0x0728 [ DAEFB28E3AF5A76ABCC2C3078C07327F, 6EB558532400B489763BAE7203538DE5F196282A8CB46A1B31D59120FC5AFCEF ] Msfs C:\Windows\system32\drivers\Msfs.sys
12:22:56.0847 0x0728 Msfs - ok
12:22:56.0878 0x0728 [ 3E1E5767043C5AF9367F0056295E9F84, B2EDFECD3C14E4FE1BA87D9A86334043A9BD696A554EBD186DA7EAEB2EBD4F70 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
12:22:56.0894 0x0728 mshidkmdf - ok
12:22:56.0909 0x0728 [ 0A4E5757AE09FA9622E3158CC1AEF114, ED574E420E57374E328C7C526504ECA569C164287966F06019EC207CB17F2C54 ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
12:22:56.0925 0x0728 msisadrv - ok
12:22:56.0956 0x0728 [ 90F7D9E6B6F27E1A707D4A297F077828, BEFC220EAA7307849600748842ACB9254A6A91158812D9B23EFAF912C498BA7F ] MSiSCSI C:\Windows\system32\iscsiexe.dll
12:22:57.0003 0x0728 MSiSCSI - ok
12:22:57.0003 0x0728 msiserver - ok
12:22:57.0019 0x0728 [ 8C0860D6366AAFFB6C5BB9DF9448E631, 949C5A14E57F2D7385543C17C3485E7ADE36EA2016F6E0A1866571D2EDE90A77 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
12:22:57.0050 0x0728 MSKSSRV - ok
12:22:57.0065 0x0728 [ 3EA8B949F963562CEDBB549EAC0C11CE, 1B0B2F16A1790282504F3C548D47C3281EFB440D5D9711A1EF76D6371B768D2D ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
12:22:57.0112 0x0728 MSPCLOCK - ok
12:22:57.0112 0x0728 [ F456E973590D663B1073E9C463B40932, 48BA6D5580EE7B6A4C06E04772FD35B51779553FC0DD6C5C30DD8B5DEEB25B11 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
12:22:57.0159 0x0728 MSPQM - ok
12:22:57.0175 0x0728 [ 0E008FC4819D238C51D7C93E7B41E560, 141FCEBDD05874407EAEC35A9DCD3BB16F2A428F23E55487D6A5DBFCADBF10D2 ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
12:22:57.0190 0x0728 MsRPC - ok
12:22:57.0206 0x0728 [ FC6B9FF600CC585EA38B12589BD4E246, F05DB01AE1955D2468CE6B51E51998B111CA3B0BDEED090EE6B99B625CBA564A ] mssmbios C:\Windows\system32\DRIVERS\mssmbios.sys
12:22:57.0221 0x0728 mssmbios - ok
12:22:57.0237 0x0728 [ B42C6B921F61A6E55159B8BE6CD54A36, 6BB0A7BE005B8F281E551D1B8046CE4202372BC7AE0161881C858BFAC675FE1C ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
12:22:57.0268 0x0728 MSTEE - ok
12:22:57.0268 0x0728 [ 33599130F44E1F34631CEA241DE8AC84, E15B31D1AFDC8DC6D2B21D4215796A99ECC69EEDBB06CEED01AECC3C99A44C8B ] MTConfig C:\Windows\system32\drivers\MTConfig.sys
12:22:57.0299 0x0728 MTConfig - ok
12:22:57.0315 0x0728 [ 159FAD02F64E6381758C990F753BCC80, E55AB01DCFA95ECAB24A2A9656E28FF9D064BA08B3D82DC8AA42F5991BA09598 ] Mup C:\Windows\system32\Drivers\mup.sys
12:22:57.0331 0x0728 Mup - ok
12:22:57.0362 0x0728 [ 61D57A5D7C6D9AFE10E77DAE6E1B445E, D252248532142E9E2332DA693BC51B795102CA938B568FF04981E98B19BFBC5C ] napagent C:\Windows\system32\qagentRT.dll
12:22:57.0424 0x0728 napagent - ok
12:22:57.0455 0x0728 [ 26384429FCD85D83746F63E798AB1480, 957C115C263A4B4DC854558B43ECE632D8E2BCCB744E23A01EBA7476BA2E7FFB ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
12:22:57.0471 0x0728 NativeWifiP - ok
12:22:57.0533 0x0728 [ 8C9C922D71F1CD4DEF73F186416B7896, 15FF43CD90C7913F83B35F2E7986561584588E8A45196EBD965C3A355836A9C7 ] NDIS C:\Windows\system32\drivers\ndis.sys
12:22:57.0549 0x0728 NDIS - ok
12:22:57.0580 0x0728 [ 0E1787AA6C9191D3D319E8BAFE86F80C, F535022747355B2C66424BDA892D7DCB820C2EB8EE05BAE5BC6D1B1D65186278 ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
12:22:57.0611 0x0728 NdisCap - ok
12:22:57.0643 0x0728 [ E4A8AEC125A2E43A9E32AFEEA7C9C888, 6EA181117126FC70B3C1DD1AC73CC26D1603A2CF49E47F66623E2C9489C49B55 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
12:22:57.0658 0x0728 NdisTapi - ok
12:22:57.0674 0x0728 [ D8A65DAFB3EB41CBB622745676FCD072, 874D3C3D247C4A309DA813DB1D2EDB0037D3C489824BD5FE95B0C20699764EF7 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
12:22:57.0721 0x0728 Ndisuio - ok
12:22:57.0752 0x0728 [ 38FBE267E7E6983311179230FACB1017, CFD1CBCA59650795C030DB30E5795B37C11C736E14003AE1DAB081BA5C0C9B14 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
12:22:57.0783 0x0728 NdisWan - ok
12:22:57.0814 0x0728 [ A4BDC541E69674FBFF1A8FF00BE913F2, 18CCFD063E9870B8B6958715BC0414C4D920AE63528EA1E9D7E30F7138918FFA ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
12:22:57.0830 0x0728 NDProxy - ok
12:22:57.0877 0x0728 [ 80B275B1CE3B0E79909DB7B39AF74D51, 75B406B0D9D28239D4EB2A298419A5F78A58237D88C5FD688EF1DFFAFACCF796 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
12:22:57.0923 0x0728 NetBIOS - ok
12:22:57.0939 0x0728 [ 280122DDCF04B378EDD1AD54D71C1E54, F98B2ADE34F7E67C7C06C1D0FFB80ECBC353D044D4B4784CD952910345DC2ED0 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
12:22:57.0970 0x0728 NetBT - ok
12:22:57.0986 0x0728 [ 803B370865D907EA21DC0C2B6A8936B5, E98F0BA1D94786E061A3EA2CC76041FF6BE0ADF47C6205D5572C03BF0E29CA78 ] Netlogon C:\Windows\system32\lsass.exe
12:22:58.0001 0x0728 Netlogon - ok
12:22:58.0064 0x0728 [ 7CCCFCA7510684768DA22092D1FA4DB2, BB9E4F8FABBF596D888E6D303CB54A336D9DFF95B36AEA9369D2ED787DDC4B5D ] Netman C:\Windows\System32\netman.dll
12:22:58.0111 0x0728 Netman - ok
12:22:58.0142 0x0728 [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
12:22:58.0173 0x0728 NetMsmqActivator - ok
12:22:58.0173 0x0728 [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetPipeActivator C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
12:22:58.0189 0x0728 NetPipeActivator - ok
12:22:58.0204 0x0728 [ 8C338238C16777A802D6A9211EB2BA50, 0D08A47CD403EDA5E8CAD7409BBBBCDC29A9861D2DC41D42B68B22B1AA1EBDD6 ] netprofm C:\Windows\System32\netprofm.dll
12:22:58.0251 0x0728 netprofm - ok
12:22:58.0345 0x0728 [ 1C3B74D722B42F63146B801D64374BDA, 1786A6084C63731B49FFC35A8385F7E24AEBAE374CD37102C6D7C22B8AE805C1 ] netr28u C:\Windows\system32\DRIVERS\netr28u.sys
12:22:58.0438 0x0728 netr28u - ok
12:22:58.0438 0x0728 [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetTcpActivator C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
12:22:58.0469 0x0728 NetTcpActivator - ok
12:22:58.0469 0x0728 [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
12:22:58.0485 0x0728 NetTcpPortSharing - ok
12:22:58.0501 0x0728 [ 1D85C4B390B0EE09C7A46B91EFB2C097, 6A8850B151E88EE371F3CC543A946302DDF9494908D684B8B0C706A42CC54348 ] nfrd960 C:\Windows\system32\drivers\nfrd960.sys
12:22:58.0516 0x0728 nfrd960 - ok
12:22:58.0563 0x0728 [ 374071043F9E4231EE43BE2BB48DD36D, C4FA3FC40CC49DBBB91901D14210A55D3831FAC9F9B3FF45FCA7F5CF242C9E92 ] NlaSvc C:\Windows\System32\nlasvc.dll
12:22:58.0594 0x0728 NlaSvc - ok
12:22:58.0610 0x0728 [ 1DB262A9F8C087E8153D89BEF3D2235F, A51EE5D5AD3CD76B74BEA9C66C462608BF3B50C53DAA4110A75DB10495A8C101 ] Npfs C:\Windows\system32\drivers\Npfs.sys
12:22:58.0657 0x0728 Npfs - ok
12:22:58.0688 0x0728 [ BA387E955E890C8A88306D9B8D06BF17, 3477BD9686C5777A93251C154512671AAA7533B18C536DF51F7B1D6D28E7F8A5 ] nsi C:\Windows\system32\nsisvc.dll
12:22:58.0719 0x0728 nsi - ok
12:22:58.0735 0x0728 [ E9A0A4D07E53D8FEA2BB8387A3293C58, 690CAD6C4E35ECC1172A2E1FD3933DF73158B3BF42CB21244269612A53DE4D7A ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
12:22:58.0766 0x0728 nsiproxy - ok
12:22:58.0828 0x0728 [ 5E43D2B0EE64123D4880DFA6626DEFDE, 164413A22DE58B19EA2B4120034B46D6BE1F424B80C3421E10BE5C81153D049F ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
12:22:58.0875 0x0728 Ntfs - ok
12:22:58.0891 0x0728 [ F9756A98D69098DCA8945D62858A812C, 572ADBFCFDE2030B34A013AADC14DBC144EB3F34D06991E2464A3EA9605BC045 ] Null C:\Windows\system32\drivers\Null.sys
12:22:58.0937 0x0728 Null - ok
12:22:58.0969 0x0728 [ B3E25EE28883877076E0E1FF877D02E0, 402B6FED6FBBF645190396DC141141EF52DD059DABD01F8AC9CF01D23664070C ] nvraid C:\Windows\system32\drivers\nvraid.sys
12:22:58.0984 0x0728 nvraid - ok
12:22:59.0031 0x0728 [ 4380E59A170D88C4F1022EFF6719A8A4, 93EDB3F4CDBF53C9C1970DD29AB146E390695C568180847BA8903F5FBEABCFF2 ] nvstor C:\Windows\system32\drivers\nvstor.sys
12:22:59.0062 0x0728 nvstor - ok
12:22:59.0093 0x0728 [ 5A0983915F02BAE73267CC2A041F717D, D83461D74597BF2BE042FEFCC27FCD18BF63CB8135B0666D731D50951C3468A8 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
12:22:59.0109 0x0728 nv_agp - ok
12:22:59.0125 0x0728 [ 08A70A1F2CDDE9BB49B885CB817A66EB, 0BB98123B544124B144F3E95D77E01E973D060B8B2302503FF24ABBBE803EB63 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
12:22:59.0156 0x0728 ohci1394 - ok
12:22:59.0203 0x0728 [ 82A8521DDC60710C3D3D3E7325209BEC, C4E34571EDD57C7FBB3D736B5FE8BD154624705B5C8EA2EC898F19F75B9A5942 ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
12:22:59.0249 0x0728 p2pimsvc - ok
12:22:59.0281 0x0728 [ 59C3DDD501E39E006DAC31BF55150D91, E02B63AB7F34CF6FF3F644AF354D10004E6F50014E03172D80BD78934EF71EF1 ] p2psvc C:\Windows\system32\p2psvc.dll
12:22:59.0312 0x0728 p2psvc - ok
12:22:59.0343 0x0728 [ 2EA877ED5DD9713C5AC74E8EA7348D14, 14BA3722CE5F8FF07F2D97DCDD6558EB49C9B02E5E6FAD6D9F18D354733EFECE ] Parport C:\Windows\system32\DRIVERS\parport.sys
12:22:59.0359 0x0728 Parport - ok
12:22:59.0390 0x0728 [ 3F34A1B4C5F6475F320C275E63AFCE9B, 31295D5121C0C3F2085E0EEBA260EEE4CA003993C026E2F81986D19158036E6B ] partmgr C:\Windows\system32\drivers\partmgr.sys
12:22:59.0405 0x0728 partmgr - ok
12:22:59.0421 0x0728 [ EB0A59F29C19B86479D36B35983DAADC, AC09AFE7F13BE4079D01383BAC44091997E1AAF6512C9673A42B9E3780EB08A8 ] Parvdm C:\Windows\system32\DRIVERS\parvdm.sys
12:22:59.0437 0x0728 Parvdm - ok
12:22:59.0468 0x0728 [ 358AB7956D3160000726574083DFC8A6, 6CAFD4D1B8AB8C1D167ADC018985DDAB5AC2CBFFB3434FE6390F14AF50C19025 ] PcaSvc C:\Windows\System32\pcasvc.dll
12:22:59.0483 0x0728 PcaSvc - ok
12:22:59.0499 0x0728 [ 673E55C3498EB970088E812EA820AA8F, 1F81315664B8CBFDD569416C0ECCE4C6251F34577313A0858AB46609781303B5 ] pci C:\Windows\system32\drivers\pci.sys
12:22:59.0515 0x0728 pci - ok
12:22:59.0546 0x0728 [ AFE86F419014DB4E5593F69FFE26CE0A, CAF36E61BE7B511D3A03A65FF5A3017CEE4D2F53005B410F2D4A2AAE9FED4C00 ] pciide C:\Windows\system32\drivers\pciide.sys
12:22:59.0561 0x0728 pciide - ok
12:22:59.0593 0x0728 [ F396431B31693E71E8A80687EF523506, BC614FC21E029E2497F1CCE3131BBD295B827F2310762B47D5BBC7703D80554B ] pcmcia C:\Windows\system32\drivers\pcmcia.sys
12:22:59.0608 0x0728 pcmcia - ok
12:22:59.0624 0x0728 [ 250F6B43D2B613172035C6747AEEB19F, A91F15B133F2619912CF750E6F3662E011CD0FA4B9477CE532CE3196D23307D9 ] pcw C:\Windows\system32\drivers\pcw.sys
12:22:59.0639 0x0728 pcw - ok
12:22:59.0671 0x0728 [ 9E0104BA49F4E6973749A02BF41344ED, B32F39F38DB48D77FBA884DEE34112BAB81CCEF5DD2EAAA12D9589D73D2BB116 ] PEAUTH C:\Windows\system32\drivers\peauth.sys
12:22:59.0717 0x0728 PEAUTH - ok
12:22:59.0780 0x0728 [ AF4D64D2A57B9772CF3801950B8058A6, C9C493A3775E6E1660CE5DF75DA574D0C04245FB88CF41B96217A725359C350D ] PeerDistSvc C:\Windows\system32\peerdistsvc.dll
12:22:59.0889 0x0728 PeerDistSvc - ok
12:22:59.0967 0x0728 [ 414BBA67A3DED1D28437EB66AEB8A720, D6DF254E2615FA402044824DCD9004F579FC0DF74B90E44C99D5F0253CF8AD88 ] pla C:\Windows\system32\pla.dll
12:23:00.0076 0x0728 pla - ok
12:23:00.0139 0x0728 [ EC7BC28D207DA09E79B3E9FAF8B232CA, A42F8F69C3CD753D787A5D558659DEA2CC306C896D75B8C82549219CF654504F ] PlugPlay C:\Windows\system32\umpnpmgr.dll
12:23:00.0201 0x0728 PlugPlay - ok
12:23:00.0217 0x0728 [ 63FF8572611249931EB16BB8EED6AFC8, 9732CCBCB93A7A4BEC88812B952C20244479E9BD781240C195E57F09E619EA33 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
12:23:00.0248 0x0728 PNRPAutoReg - ok
12:23:00.0263 0x0728 [ 82A8521DDC60710C3D3D3E7325209BEC, C4E34571EDD57C7FBB3D736B5FE8BD154624705B5C8EA2EC898F19F75B9A5942 ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
12:23:00.0295 0x0728 PNRPsvc - ok
12:23:00.0326 0x0728 [ 53946B69BA0836BD95B03759530C81EC, 7F14A34635354CCA0F5342C8D9DF5A6AA1B94F6A508BD8834029E9BACF252920 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
12:23:00.0388 0x0728 PolicyAgent - ok
12:23:00.0419 0x0728 [ F87D30E72E03D579A5199CCB3831D6EA, B09328E89954584F97908FA5946376BA990B8C650DABCBF3CA3B08719937C694 ] Power C:\Windows\system32\umpo.dll
12:23:00.0435 0x0728 Power - ok
12:23:00.0482 0x0728 [ 631E3E205AD6D86F2AED6A4A8E69F2DB, 1D3BF0CFC37D91A3A56246920B9CF1084E78A055D56E85A773417809C58C8065 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
12:23:00.0513 0x0728 PptpMiniport - ok
12:23:00.0544 0x0728 [ 85B1E3A0C7585BC4AAE6899EC6FCF011, 1E067113C146D6842D7FB04007F363D6FB7783C6BC7C9AB6614E44075C4F86C3 ] Processor C:\Windows\system32\drivers\processr.sys
12:23:00.0560 0x0728 Processor - ok
12:23:00.0607 0x0728 [ CADEFAC453040E370A1BDFF3973BE00D, 2E3DD8DA702468D8AB0F3CE27188B1991D4CB015FB36BAE4C6E7996B61CF49B8 ] ProfSvc C:\Windows\system32\profsvc.dll
12:23:00.0653 0x0728 ProfSvc - ok
12:23:00.0669 0x0728 [ 803B370865D907EA21DC0C2B6A8936B5, E98F0BA1D94786E061A3EA2CC76041FF6BE0ADF47C6205D5572C03BF0E29CA78 ] ProtectedStorage C:\Windows\system32\lsass.exe
12:23:00.0685 0x0728 ProtectedStorage - ok
12:23:00.0700 0x0728 [ 6270CCAE2A86DE6D146529FE55B3246A, 463209CBAF1B0E269DC8FC6FBDEE5BB7E5ADB5D3F024930BFD0B97E0A9678883 ] Psched C:\Windows\system32\DRIVERS\pacer.sys
12:23:00.0731 0x0728 Psched - ok
12:23:00.0809 0x0728 [ AB95ECF1F6659A60DDC166D8315B0751, 0ED6D3460D28978BADF31B930DBB3298A6A10EFF8883763EABA0E36A21A0E83D ] ql2300 C:\Windows\system32\drivers\ql2300.sys
12:23:00.0872 0x0728 ql2300 - ok
12:23:00.0903 0x0728 [ B4DD51DD25182244B86737DC51AF2270, 7E62B04F054A6330B7F9968222523BDE8F3EE47A11D17E6C0E2D5ACDC07B9E6B ] ql40xx C:\Windows\system32\drivers\ql40xx.sys
12:23:00.0903 0x0728 ql40xx - ok
12:23:00.0950 0x0728 [ 31AC809E7707EB580B2BDB760390765A, A8481FD19A0F778F5591B7676F591F664ADC68B6867E663C0F9564173F4AC909 ] QWAVE C:\Windows\system32\qwave.dll
12:23:00.0997 0x0728 QWAVE - ok
12:23:01.0012 0x0728 [ 584078CA1B95CA72DF2A27C336F9719D, 836F115C92D343463C14A9DE39648C1EFA7C7EE4720F5C692EE0F68B84830121 ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
12:23:01.0028 0x0728 QWAVEdrv - ok
12:23:01.0043 0x0728 [ 30A81B53C766D0133BB86D234E5556AB, 726C6B83B5ACAA84CAB1689B6DD6DDAE3199D61A57B5D7B5B5A0F62FCF838090 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
12:23:01.0075 0x0728 RasAcd - ok
12:23:01.0090 0x0728 [ 57EC4AEF73660166074D8F7F31C0D4FD, C66B425EC4DB5E7FD289AE631C9B019EB16717C55E80FAE964BB22203E4AACEF ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
12:23:01.0106 0x0728 RasAgileVpn - ok
12:23:01.0121 0x0728 [ A60F1839849C0C00739787FD5EC03F13, B210DFA5A843CF1DA73635F168E2EA5052CBED15C664F8523CDFB34CA165D0E0 ] RasAuto C:\Windows\System32\rasauto.dll
12:23:01.0168 0x0728 RasAuto - ok
12:23:01.0168 0x0728 [ D9F91EAFEC2815365CBE6D167E4E332A, 8350457A39D141C13807E7DB5A8D4113197C4016F7744B9993391F4AEA0C4A5C ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
12:23:01.0215 0x0728 Rasl2tp - ok
12:23:01.0231 0x0728 [ CB9E04DC05EACF5B9A36CA276D475006, 4D8C0AEF1D4F84F375AD2BAF786C9F6C52316A3E655B913449E71AD7C0FCA56E ] RasMan C:\Windows\System32\rasmans.dll
12:23:01.0293 0x0728 RasMan - ok
12:23:01.0324 0x0728 [ 0FE8B15916307A6AC12BFB6A63E45507, 64119474DE7499E6E8B82E78BBD50074B3AA70B3E8329089FAE9B7F29919004E ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
12:23:01.0355 0x0728 RasPppoe - ok
12:23:01.0355 0x0728 [ 44101F495A83EA6401D886E7FD70096B, 56A0CE5C89870752B9B2AB795C1A248CA28209E049B2F20CCA0308CBE2488A0A ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
12:23:01.0402 0x0728 RasSstp - ok
12:23:01.0418 0x0728 [ D528BC58A489409BA40334EBF96A311B, C71E9A4B101DB6C3183B9F97B9098D73D6FE1B12C05C2EB3CE8A8041BEE6BA61 ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
12:23:01.0465 0x0728 rdbss - ok
12:23:01.0496 0x0728 [ 0D8F05481CB76E70E1DA06EE9F0DA9DF, 2AFCBE3237D27AFBF095F91F1FCCA63E6890F34A9E4F00E5C34C92394CDA89FB ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
12:23:01.0511 0x0728 rdpbus - ok
12:23:01.0511 0x0728 [ 23DAE03F29D253AE74C44F99E515F9A1, 8FED93D10B2062F0526FE3508101F8FCF8F72DEB90AFB472EB7CBAE83A0EC430 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
12:23:01.0558 0x0728 RDPCDD - ok
12:23:01.0589 0x0728 [ B973FCFC50DC1434E1970A146F7E3885, BE797E5F5AE34D37F8DA1134CE94DD14DBE36D2BC405B97E992E2257848B7CA9 ] RDPDR C:\Windows\system32\drivers\rdpdr.sys
12:23:01.0621 0x0728 RDPDR - ok
12:23:01.0636 0x0728 [ 5A53CA1598DD4156D44196D200C94B8A, 8112FE14FEC94C67B1C5BDE4171E37584F1D0098D2C557C9E4BDD3E0291E25E4 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
12:23:01.0667 0x0728 RDPENCDD - ok
12:23:01.0699 0x0728 [ 44B0A53CD4F27D50ED461DAE0C0B4E1F, CDA80B08E67AD034081C0C920CD66147689F1844403CBC552F65005E7C011A91 ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
12:23:01.0730 0x0728 RDPREFMP - ok
12:23:01.0777 0x0728 [ 65375DF758CA1872AB7EBBBA457FD5E6, 8AC7681F51277E799C22FF95FA0B833E9E260D37C0416319FF05B66FB3948005 ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys
12:23:01.0823 0x0728 RdpVideoMiniport - ok
12:23:01.0855 0x0728 [ F031683E6D1FEA157ABB2FF260B51E61, 83B552819A5964152882C527E1421DBCEAACC74DEB897E3C4B53F52F1467FED3 ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
12:23:01.0901 0x0728 RDPWD - ok
12:23:01.0917 0x0728 [ 518395321DC96FE2C9F0E96AC743B656, 5F6A0880B4F3EE7196259EA362DA9554B0687B0236F9A8E5CF7A4A77F01F1776 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
12:23:01.0933 0x0728 rdyboost - ok
12:23:01.0964 0x0728 [ 7B5E1419717FAC363A31CC302895217A, 048B96B127CC20833948DAE53C59886D5C725ECA7A744424A01339447D2DDC32 ] RemoteAccess C:\Windows\System32\mprdim.dll
12:23:01.0995 0x0728 RemoteAccess - ok
12:23:02.0011 0x0728 [ CB9A8683F4EF2BF99E123D79950D7935, B9FA3E7E91E76D975CF40BFA37909E50F29CC13AB1399007884710651827E9AA ] RemoteRegistry C:\Windows\system32\regsvc.dll
12:23:02.0042 0x0728 RemoteRegistry - ok
12:23:02.0073 0x0728 [ 78D072F35BC45D9E4E1B61895C152234, 80C924EE1156B4E3172E83DCB9C60817E87885FB9377647E0BF90153E415B1CA ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
12:23:02.0120 0x0728 RpcEptMapper - ok
12:23:02.0151 0x0728 [ 94D36C0E44677DD26981D2BFEEF2A29D, D77A93AC60536F3706E8A0154C0C2199E888B7748C84DB7437254FF175F4DF55 ] RpcLocator C:\Windows\system32\locator.exe
12:23:02.0182 0x0728 RpcLocator - ok
12:23:02.0213 0x0728 [ 7660F01D3B38ACA1747E397D21D790AF, 04611B43705C064C2A8331F6D3F8E4530295694AE2C3E3EC3F62CFF4A5EFA88D ] RpcSs C:\Windows\system32\rpcss.dll
12:23:02.0245 0x0728 RpcSs - ok
12:23:02.0276 0x0728 [ 032B0D36AD92B582D869879F5AF5B928, 0F8F18A6A0A689957B886D9368015889091094EDA18BE532093F06A70A7CE184 ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
12:23:02.0323 0x0728 rspndr - ok
12:23:02.0354 0x0728 [ 7FA7F2E249A5DCBB7970630E15E1F482, 9633B193F3FDA67BC551C6DCA4788AB83E9F45F77763EE579D02FE5D6B80DEDF ] s3cap C:\Windows\system32\drivers\vms3cap.sys
12:23:02.0385 0x0728 s3cap - ok
12:23:02.0401 0x0728 [ 803B370865D907EA21DC0C2B6A8936B5, E98F0BA1D94786E061A3EA2CC76041FF6BE0ADF47C6205D5572C03BF0E29CA78 ] SamSs C:\Windows\system32\lsass.exe
12:23:02.0416 0x0728 SamSs - ok
12:23:02.0432 0x0728 [ 05D860DA1040F111503AC416CCEF2BCA, DAE2F37D09A5A42F945BC8E27E4EA2303521081783A80CEE7FEE7C5A1C2CFC5E ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
12:23:02.0447 0x0728 sbp2port - ok
12:23:02.0479 0x0728 [ 8FC518FFE9519C2631D37515A68009C4, 21E10585470CF9FC3BD1977F8A426686CD2FA6BD2094B9E3594B21C7C4541D25 ] SCardSvr C:\Windows\System32\SCardSvr.dll
12:23:02.0525 0x0728 SCardSvr - ok
12:23:02.0541 0x0728 [ 0693B5EC673E34DC147E195779A4DCF6, AF1B56FBF3ADABF94CD9DBA67586B8746DE135151F6B3D1B0EE315BC1E2DB670 ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
12:23:02.0572 0x0728 scfilter - ok
12:23:02.0635 0x0728 [ A04BB13F8A72F8B6E8B4071723E4E336, E63287FF71C39CBF64C3347C455324C8437F9CF398153E269543588B65389502 ] Schedule C:\Windows\system32\schedsvc.dll
12:23:02.0697 0x0728 Schedule - ok
12:23:02.0713 0x0728 [ 319C6B309773D063541D01DF8AC6F55F, 182F392FE839499D159A30A3CD04B5D0C87219930BFB1A7456880B7DA75B9820 ] SCPolicySvc C:\Windows\System32\certprop.dll
12:23:02.0744 0x0728 SCPolicySvc - ok
12:23:02.0759 0x0728 [ 08236C4BCE5EDD0A0318A438AF28E0F7, 77727F963F63C4CEC11E7AAD5FB3836179701D512CA9436C3170B9E6A4E5F888 ] SDRSVC C:\Windows\System32\SDRSVC.dll
12:23:02.0806 0x0728 SDRSVC - ok
12:23:02.0837 0x0728 [ 90A3935D05B494A5A39D37E71F09A677, F72733A69BC6E1A2BB91D7632FF3463C12563F60FDCC00A2CDD67FF20D479952 ] secdrv C:\Windows\system32\drivers\secdrv.sys
12:23:02.0884 0x0728 secdrv - ok
12:23:02.0900 0x0728 [ A59B3A4442C52060CC7A85293AA3546F, 1776D6DEE51991149265AAF39E17065E301C5FA1FF4068653DC0010B9B27185D ] seclogon C:\Windows\system32\seclogon.dll
12:23:02.0947 0x0728 seclogon - ok
12:23:02.0962 0x0728 [ DCB7FCDCC97F87360F75D77425B81737, F8289AF2C458C167038EEFE613EE5E3D6D5B3308B8784168374BC81C47891CE5 ] SENS C:\Windows\System32\sens.dll
12:23:03.0009 0x0728 SENS - ok
12:23:03.0025 0x0728 [ 50087FE1EE447009C9CC2997B90DE53F, B5E6CF1D991F87C29C5E28198E0962E31FFB499A46C3BD43FC20391693389959 ] SensrSvc C:\Windows\system32\sensrsvc.dll
12:23:03.0071 0x0728 SensrSvc - ok
12:23:03.0087 0x0728 [ 9AD8B8B515E3DF6ACD4212EF465DE2D1, E2F019BCD1446236D078D46065DD151DD068778F33BE2F1E8A0CC1EA2F954E86 ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
12:23:03.0103 0x0728 Serenum - ok
12:23:03.0118 0x0728 [ 5FB7FCEA0490D821F26F39CC5EA3D1E2, A26DB2EB9F3E2509B4EBA949DB97595CC32332D9321DF68283BFC102E66D766F ] Serial C:\Windows\system32\DRIVERS\serial.sys
12:23:03.0149 0x0728 Serial - ok
12:23:03.0181 0x0728 [ 79BFFB520327FF916A582DFEA17AA813, 7A2A9D69BE02228591186A9F4453D4B5FD98837CA422C873C48040170E8BD18C ] sermouse C:\Windows\system32\drivers\sermouse.sys
12:23:03.0196 0x0728 sermouse - ok
12:23:03.0227 0x0728 [ 4AE380F39A0032EAB7DD953030B26D28, C8F5F2DD59574E966FDF3057867BB959A554BAB6FD5DC6F1427094A6BC2B2809 ] SessionEnv C:\Windows\system32\sessenv.dll
12:23:03.0259 0x0728 SessionEnv - ok
12:23:03.0259 0x0728 [ 9F976E1EB233DF46FCE808D9DEA3EB9C, 6A5C53F27F8BCA85CE206EE7D196176F67EC6FFA5D4830373A20792C149B5E75 ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
12:23:03.0290 0x0728 sffdisk - ok
12:23:03.0290 0x0728 [ 932A68EE27833CFD57C1639D375F2731, 11D6B98FBEEE2B9C7B06EF7091857BBD3B349077997D6261D66280668FD1B5C3 ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
12:23:03.0305 0x0728 sffp_mmc - ok
12:23:03.0321 0x0728 [ 6D4CCAEDC018F1CF52866BBBAA235982, AAC41F5C97B3FE5A3DC0838457EB8CC9BB71FCA16D3EDBB67D603F0A9D46C131 ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
12:23:03.0337 0x0728 sffp_sd - ok
12:23:03.0352 0x0728 [ DB96666CC8312EBC45032F30B007A547, C3AE60FC65A36E96E0D2CC6E184481D70F91A19DC3E2E17E2873DD670A592DD7 ] sfloppy C:\Windows\system32\drivers\sfloppy.sys
12:23:03.0383 0x0728 sfloppy - ok
12:23:03.0415 0x0728 [ D1A079A0DE2EA524513B6930C24527A2, E2BC16DBCF38841EECD49C6FA1A9AC89C17F332F12606CA826F058E995E1B83D ] SharedAccess C:\Windows\System32\ipnathlp.dll
12:23:03.0477 0x0728 SharedAccess - ok
12:23:03.0524 0x0728 [ 414DA952A35BF5D50192E28263B40577, 9C9BAFB9880DA6CC728506A142BE124E186219610DCC3460657A3CA93C865DF1 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
12:23:03.0571 0x0728 ShellHWDetection - ok
12:23:03.0586 0x0728 [ 2565CAC0DC9FE0371BDCE60832582B2E, 1A775214E86B83C2F1799F12D71077D81C89AD32734A248BA88787B7F104B79D ] sisagp C:\Windows\system32\drivers\sisagp.sys
12:23:03.0602 0x0728 sisagp - ok
12:23:03.0617 0x0728 [ A9F0486851BECB6DDA1D89D381E71055, 7E909538AB758C18AC2CCBFFEE17BA36FA6ED2E674AA70924AA87AC61375FF35 ] SiSRaid2 C:\Windows\system32\drivers\SiSRaid2.sys
12:23:03.0633 0x0728 SiSRaid2 - ok
12:23:03.0649 0x0728 [ 3727097B55738E2F554972C3BE5BC1AA, 75D52A596A298C33EC79A3B0B80F25492C08A182ABC679401502DA9597687566 ] SiSRaid4 C:\Windows\system32\drivers\sisraid4.sys
12:23:03.0664 0x0728 SiSRaid4 - ok
12:23:03.0680 0x0728 [ 3E21C083B8A01CB70BA1F09303010FCE, 803F8F91299C387110F34A49340E7136AAE91B418E2977A36285EA8F432FF197 ] Smb C:\Windows\system32\DRIVERS\smb.sys
12:23:03.0711 0x0728 Smb - ok
12:23:03.0727 0x0728 [ 6A984831644ECA1A33FFEAE4126F4F37, 753E23D2B33D47C52C05D892B052CFD96D93B97FB6E9FCB58EF1E4C4A125BF78 ] SNMPTRAP C:\Windows\System32\snmptrap.exe
12:23:03.0742 0x0728 SNMPTRAP - ok
12:23:03.0742 0x0728 [ 95CF1AE7527FB70F7816563CBC09D942, CE8BACB91A5A86CBCE82619C6C1873B4D7593B00CED3B522E41B8F7F6258CC65 ] spldr C:\Windows\system32\drivers\spldr.sys
12:23:03.0758 0x0728 spldr - ok
12:23:03.0820 0x0728 [ 9AEA093B8F9C37CF45538382CABA2475, CC63239C412067AA72318ADB8BB80BCDF2CA60DA05D814D32753C92508BC16A8 ] Spooler C:\Windows\System32\spoolsv.exe
12:23:03.0851 0x0728 Spooler - ok
12:23:03.0992 0x0728 [ CF87A1DE791347E75B98885214CED2B8, 7AF4E03D751C951A4E5FBA28200DABFE6B3BF055490163EEEEA84EBA4D0F368A ] sppsvc C:\Windows\system32\sppsvc.exe
12:23:04.0117 0x0728 sppsvc - ok
12:23:04.0148 0x0728 [ B0180B20B065D89232A78A40FE56EAA6, 4D045B23AD58A8822BE9F20119744A8D47455469D54494745CEB099951DA60FF ] sppuinotify C:\Windows\system32\sppuinotify.dll
12:23:04.0179 0x0728 sppuinotify - ok
12:23:04.0210 0x0728 [ E4C2764065D66EA1D2D3EBC28FE99C46, 043AEF06A23069DD17675955C834690A5FD8F1948A05B3969F977E823C4E25F5 ] srv C:\Windows\system32\DRIVERS\srv.sys
12:23:04.0241 0x0728 srv - ok
12:23:04.0273 0x0728 [ 03F0545BD8D4C77FA0AE1CEEDFCC71AB, 4DF31206DF8F33C2975E23C7257ED930C4EDA8BC4E246D8FDA130BB583083ED0 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
12:23:04.0304 0x0728 srv2 - ok
12:23:04.0335 0x0728 [ BE6BD660CAA6F291AE06A718A4FA8ABC, CD38939CFBA80B882D38099194FC1EBAE15A9D27A4D941DD03C55EC745E52E59 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
12:23:04.0366 0x0728 srvnet - ok
12:23:04.0397 0x0728 [ D887C9FD02AC9FA880F6E5027A43E118, F38BAD90EC791368C37C21090302708D2DFB83ECE9096609AD9AA667B2E5592E ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
12:23:04.0429 0x0728 SSDPSRV - ok
12:23:04.0444 0x0728 [ D318F23BE45D5E3A107469EB64815B50, D74355E6FF215AA8CE53BC9DF16AF2740F2FC2FD754939478A3608BDA8C6DDA0 ] SstpSvc C:\Windows\system32\sstpsvc.dll
12:23:04.0475 0x0728 SstpSvc - ok
12:23:04.0491 0x0728 [ DB32D325C192B801DF274BFD12A7E72B, F089DBA719E22BC269720A6B840B873A4AF5639745DB0C3DBC8BD2F2839A1ABA ] stexstor C:\Windows\system32\drivers\stexstor.sys
12:23:04.0507 0x0728 stexstor - ok
12:23:04.0569 0x0728 [ E1FB3706030FB4578A0D72C2FC3689E4, A62EC9AA4514CAF2A10C0A3AEF7A36F593A7E7DA370A3F130C24E1B612E19427 ] StiSvc C:\Windows\System32\wiaservc.dll
12:23:04.0631 0x0728 StiSvc - ok
12:23:04.0663 0x0728 [ 472AF0311073DCECEAA8FA18BA2BDF89, 089414057EB2047E42C96C1ACE79D509967461DC5A4D2836F63C04268637A3FC ] storflt C:\Windows\system32\drivers\vmstorfl.sys
12:23:04.0663 0x0728 storflt - ok
12:23:04.0678 0x0728 [ 0BF669F0A910BEDA4A32258D363AF2A5, 83EEBACDE4F69A2866B69CAA633F5C8B3CB01D88CEDB01B6EA5988E0A25CEE47 ] StorSvc C:\Windows\system32\storsvc.dll
12:23:04.0709 0x0728 StorSvc - ok
12:23:04.0725 0x0728 [ DCAFFD62259E0BDB433DD67B5BB37619, CBD12FF9BBF33D18B0F3D322B12EC62E7DF3BF45C6AD43D2E91FF4C4762E05D0 ] storvsc C:\Windows\system32\drivers\storvsc.sys
12:23:04.0741 0x0728 storvsc - ok
12:23:04.0756 0x0728 [ E58C78A848ADD9610A4DB6D214AF5224, 1575A90EB22A4FB066459BDA00C6CAC10198C3C8C74493721EC6D34B51F50426 ] swenum C:\Windows\system32\DRIVERS\swenum.sys
12:23:04.0756 0x0728 swenum - ok
12:23:04.0787 0x0728 [ A28BD92DF340E57B024BA433165D34D7, 889CC7FF143C3549982128473FF927CD80CF36485A347EF399C1271C8CE12CE4 ] swprv C:\Windows\System32\swprv.dll
12:23:04.0850 0x0728 swprv - ok
12:23:04.0897 0x0728 [ 36650D618CA34C9D357DFD3D89B2C56F, 7C3774E53DCF32CB3A4B3504E32D2A651E18467FA0A6AC4C7993C696741B704B ] SysMain C:\Windows\system32\sysmain.dll
12:23:04.0959 0x0728 SysMain - ok
12:23:04.0975 0x0728 [ 763FECDC3D30C815FE72DD57936C6CD1, 1A62C7E63E426D56894F4121C75D9C60FC9A14469ADBD0D6F0B94B8DE48CDA3E ] TabletInputService C:\Windows\System32\TabSvc.dll
12:23:05.0021 0x0728 TabletInputService - ok
12:23:05.0037 0x0728 [ 613BF4820361543956909043A265C6AC, FCFF02E466D2501630B452627FB218C01E5245A0921EE3D2117E7FD63AC7E98E ] TapiSrv C:\Windows\System32\tapisrv.dll
12:23:05.0099 0x0728 TapiSrv - ok
12:23:05.0131 0x0728 [ B799D9FDB26111737F58288D8DC172D9, 409A60819A4305699E2E492A6190637FAAEBD19E745A5DB2A5D6977106C86591 ] TBS C:\Windows\System32\tbssvc.dll
12:23:05.0162 0x0728 TBS - ok
12:23:05.0271 0x0728 [ CA59F7C570AF70BC174F477CFE2D9EE3, F09E4E14207A2AC6957D2C0AC8707D0E356A9087FA6DC703373242D8EEB026BD ] Tcpip C:\Windows\system32\drivers\tcpip.sys
12:23:05.0302 0x0728 Tcpip - ok
12:23:05.0396 0x0728 [ CA59F7C570AF70BC174F477CFE2D9EE3, F09E4E14207A2AC6957D2C0AC8707D0E356A9087FA6DC703373242D8EEB026BD ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
12:23:05.0443 0x0728 TCPIP6 - ok
12:23:05.0474 0x0728 [ 3EEBD3BD93DA46A26E89893C7AB2FF3B, 2C7204DCD2BCBC6A250FF0F6477616F327AF41FDB7CABE69E5C357361009FB4E ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
12:23:05.0505 0x0728 tcpipreg - ok
12:23:05.0552 0x0728 [ 1CB91B2BD8F6DD367DFC2EF26FD751B2, 879E2827354BB21573AC6A7CCEB746D44214540687E6882FFCB4089546FBD954 ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
12:23:05.0583 0x0728 TDPIPE - ok
12:23:05.0614 0x0728 [ 2C2C5AFE7EE4F620D69C23C0617651A8, E828D974C3F9D7004A030C3AD448096C736FDB4C4C1707D043E567D08C845103 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
12:23:05.0630 0x0728 TDTCP - ok
12:23:05.0661 0x0728 [ B459575348C20E8121D6039DA063C704, 1B4328A9EA39FF5A57F258E02254D04B73455F1DF7C997C13702A8B2F12D0347 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
12:23:05.0692 0x0728 tdx - ok
12:23:05.0708 0x0728 [ 04DBF4B01EA4BF25A9A3E84AFFAC9B20, 0D81B427720637882077C5024D738191F858FC734ED040697872D906351EF663 ] TermDD C:\Windows\system32\DRIVERS\termdd.sys
12:23:05.0723 0x0728 TermDD - ok
12:23:05.0755 0x0728 [ 382C804C92811BE57829D8E550A900E2, 5F52C2E7902024CF1C9CC0069F411C3F19CCA3DB209F437FA0F3932D4898EB50 ] TermService C:\Windows\System32\termsrv.dll
12:23:05.0817 0x0728 TermService - ok
12:23:05.0833 0x0728 [ 42FB6AFD6B79D9FE07381609172E7CA4, B57C85091209A2FAD19ED490B8FA7FC98F12911F9C9CACE9AF1E540780CE6700 ] Themes C:\Windows\system32\themeservice.dll
12:23:05.0864 0x0728 Themes - ok
12:23:05.0895 0x0728 [ 146B6F43A673379A3C670E86D89BE5EA, C4412DCF80DE6B55466F399413271364F14BC0819C224AA161EDDC31A9775440 ] THREADORDER C:\Windows\system32\mmcss.dll
12:23:05.0926 0x0728 THREADORDER - ok
12:23:05.0957 0x0728 [ 4792C0378DB99A9BC2AE2DE6CFFF0C3A, 532A3A812578B2DFD83001DE66FC73689D79EC729409EB572E07E6D65B281712 ] TrkWks C:\Windows\System32\trkwks.dll
12:23:05.0989 0x0728 TrkWks - ok
12:23:06.0051 0x0728 [ 2C49B175AEE1D4364B91B531417FE583, 6C7995E18F84E465C376D1D5F153C15ACB66CDEA86EE5BF186677F572E7E129B ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
12:23:06.0098 0x0728 TrustedInstaller - ok
12:23:06.0129 0x0728 [ B37B08F2E5EEB1A37E448E09BACE1101, 32CC9E06B88BAB6FAB4696B744548DFCE9199A7FD2BA8B019F269CA75895852C ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
12:23:06.0160 0x0728 tssecsrv - ok
12:23:06.0176 0x0728 [ 9CE253214ACAA5A7D323327D2055EFAA, 15E7DB578EDF36DD2FD5BA960C3941B2353037323B6B96702CDCDC07588EA724 ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
12:23:06.0223 0x0728 TsUsbFlt - ok
12:23:06.0238 0x0728 [ 57C527AF84748B5C2F5178C499C0B81F, 2FF1F25BA16F8984E9F2CE4DE663F261BAF267EDF10D466A52BB211C567F763C ] TsUsbGD C:\Windows\system32\drivers\TsUsbGD.sys
12:23:06.0269 0x0728 TsUsbGD - ok
12:23:06.0332 0x0728 [ B2FA25D9B17A68BB93D58B0556E8C90D, 0146931B733CAB1CD87F94C35F97E110D6ED6C55EAFF03345400A29AEDE99BDE ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
12:23:06.0347 0x0728 tunnel - ok
12:23:06.0379 0x0728 [ 750FBCB269F4D7DD2E420C56B795DB6D, E1A95C59148FE463539C34336FD0E74B31A33B8AB2B8E34AA10349C3347471D7 ] uagp35 C:\Windows\system32\drivers\uagp35.sys
12:23:06.0394 0x0728 uagp35 - ok
12:23:06.0410 0x0728 [ EE43346C7E4B5E63E54F927BABBB32FF, BAD6FC3BEE45E644D5A6A0A31428F5B2AEC72A0AA0C74EF8177B1FE23EEF3AA9 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
12:23:06.0472 0x0728 udfs - ok
12:23:06.0488 0x0728 [ 8344FD4FCE927880AA1AA7681D4927E5, 1B54EFA60A221E2B9FFE59BB41C7E7D8B5AC6826F1C5577456D81371D464255A ] UI0Detect C:\Windows\system32\UI0Detect.exe
12:23:06.0519 0x0728 UI0Detect - ok
12:23:06.0535 0x0728 [ 44E8048ACE47BEFBFDC2E9BE4CBC8880, 5D96D90FDF68AE470CC92CA9DF9DA2C05A53EF455A5A109DBBF7C96F3238257C ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
12:23:06.0550 0x0728 uliagpkx - ok
12:23:06.0581 0x0728 [ D295BED4B898F0FD999FCFA9B32B071B, D4130DB4AE76EE6DC0B8E7A4FEF5CB8B26EBD822C21021F6FA78FD29C1E211C2 ] umbus C:\Windows\system32\DRIVERS\umbus.sys
12:23:06.0597 0x0728 umbus - ok
12:23:06.0613 0x0728 [ 7550AD0C6998BA1CB4843E920EE0FEAC, 24C001E422C3B3B920CDCF6003A3179CE464DE4284775403DD5122EF9780460D ] UmPass C:\Windows\system32\drivers\umpass.sys
12:23:06.0628 0x0728 UmPass - ok
12:23:06.0659 0x0728 [ 409994A8EACEEE4E328749C0353527A0, FFC57B647147DE2957A7DE4B330CC534DE7AC892A2FCE3BB164F7A516CAB1B56 ] UmRdpService C:\Windows\System32\umrdp.dll
12:23:06.0706 0x0728 UmRdpService - ok
12:23:06.0753 0x0728 [ 833FBB672460EFCE8011D262175FAD33, C0C3067A305993CBF056C229771CB0593DD60C9C7AC5130FF1CA610BCA812AB5 ] upnphost C:\Windows\System32\upnphost.dll
12:23:06.0800 0x0728 upnphost - ok
12:23:06.0831 0x0728 [ 0803FBA9FE829D61AE26EC0BCC910C46, 30D00E2C7DFC630C99C1599587D4F9C272BC30D444E07C961AA05BF84587806B ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
12:23:06.0862 0x0728 usbccgp - ok
12:23:06.0909 0x0728 [ 2352AB5F9F8F097BF9D41D5A4718A041, 25BC7828C625B9B2A5110C25B230C5828CEC18EC97ECF9EC4745E8930CBF472C ] usbcir C:\Windows\system32\drivers\usbcir.sys
12:23:06.0956 0x0728 usbcir - ok
12:23:06.0987 0x0728 [ D40855F89B69305140BBD7E9A3BA2DA6, 745DC6D770666F6B19C2B6AA89C21D1A314732E291453BFA2367F9AF86F97C3C ] usbehci C:\Windows\system32\drivers\usbehci.sys
12:23:07.0003 0x0728 usbehci - ok
12:23:07.0049 0x0728 [ EDF2DF71C4F1E13A6AC75F5224DE655A, 1764D155C6B99201774B57195349304259232A12868ECFC2069CA49443EBDC2C ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
12:23:07.0096 0x0728 usbhub - ok
12:23:07.0112 0x0728 [ A6FB7957EA7AFB1165991E54CE934B74, 1CE83D9E3276AE380F720C7700A17D58A37A2A77FD72DA69EE0C756B88DB3689 ] usbohci C:\Windows\system32\drivers\usbohci.sys
12:23:07.0127 0x0728 usbohci - ok
12:23:07.0143 0x0728 [ 797D862FE0875E75C7CC4C1AD7B30252, 1BBE745E4C85F8911076F6032ACD7A35FAC048D3CB1500C64E08D8B2C70A1069 ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
12:23:07.0159 0x0728 usbprint - ok
12:23:07.0190 0x0728 [ F991AB9CC6B908DB552166768176896A, AD8E7A16B23B244B7F834622D4E38B5844193C6E31EF96F61E0E2EA16C945026 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
12:23:07.0237 0x0728 USBSTOR - ok
12:23:07.0252 0x0728 [ 78780C3EBCE17405B1CCD07A3A8A7D72, FBFF3111E22EE0B4BCAFA81F89AAE985135BFF48EEFD130C09B49CCF8A9946B9 ] usbuhci C:\Windows\system32\DRIVERS\usbuhci.sys
12:23:07.0268 0x0728 usbuhci - ok
12:23:07.0268 0x0728 [ 081E6E1C91AEC36758902A9F727CD23C, 9FDAA17A3B99067E035E5D76305427F15FFDBC5D304B2BB78AFC6463EDDE1A75 ] UxSms C:\Windows\System32\uxsms.dll
12:23:07.0299 0x0728 UxSms - ok
12:23:07.0315 0x0728 [ 803B370865D907EA21DC0C2B6A8936B5, E98F0BA1D94786E061A3EA2CC76041FF6BE0ADF47C6205D5572C03BF0E29CA78 ] VaultSvc C:\Windows\system32\lsass.exe
12:23:07.0330 0x0728 VaultSvc - ok
12:23:07.0346 0x0728 [ A059C4C3EDB09E07D21A8E5C0AABD3CB, BDD3729B49DF2E2FC72FFEF9D10235B481A671DE5A721B6B9A80873B7A343F07 ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
12:23:07.0361 0x0728 vdrvroot - ok
12:23:07.0408 0x0728 [ C3CD30495687C2A2F66A65CA6FD89BE9, 582E4706C1D6A151020D14B26C7BF166F4E42BDD6E410F30EC452469270C5E9B ] vds C:\Windows\System32\vds.exe
12:23:07.0471 0x0728 vds - ok
12:23:07.0486 0x0728 [ 17C408214EA61696CEC9C66E388B14F3, 829C0416672E2B2DFABCFE641E7F281F41E8DBB3C0EF11C7784CB9BB94F87E97 ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
12:23:07.0517 0x0728 vga - ok
12:23:07.0533 0x0728 [ 8E38096AD5C8570A6F1570A61E251561, 4DBA3C1397A2203548F45F006E66D99F837903F601ABBCE2304754F783CA8A39 ] VgaSave C:\Windows\System32\drivers\vga.sys
12:23:07.0564 0x0728 VgaSave - ok
12:23:07.0580 0x0728 [ 5461686CCA2FDA57B024547733AB42E3, 2721D0659AA890172FCAD4EC4D926B58ACD0EE4887DA51545DC7237420D5BF84 ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
12:23:07.0595 0x0728 vhdmp - ok
12:23:07.0611 0x0728 [ C829317A37B4BEA8F39735D4B076E923, 55D1796AE750071E1E05BD7702B6C355CCFFE27B4C00E93E7044C3184732B497 ] viaagp C:\Windows\system32\drivers\viaagp.sys
12:23:07.0627 0x0728 viaagp - ok
12:23:07.0642 0x0728 [ E02F079A6AA107F06B16549C6E5C7B74, B530DCE3EE4F285B3D5F69F7148D17E016D54F04E6F93706B829A34567748788 ] ViaC7 C:\Windows\system32\drivers\viac7.sys
12:23:07.0673 0x0728 ViaC7 - ok
12:23:07.0689 0x0728 [ E43574F6A56A0EE11809B48C09E4FD3C, 3687BF638E21C00E62ABFED70D728B91ADA08F7164CA898E654F31DA196589E9 ] viaide C:\Windows\system32\drivers\viaide.sys
12:23:07.0705 0x0728 viaide - ok
12:23:07.0736 0x0728 [ C2F2911156FDC7817C52829C86DA494E, FE499F189B5016FCE0018AA3DE3970B72275B7B15F3D4D608117F6DDEC6B90DC ] vmbus C:\Windows\system32\drivers\vmbus.sys
12:23:07.0751 0x0728 vmbus - ok
12:23:07.0767 0x0728 [ D4D77455211E204F370D08F4963063CE, 2018B2A84C73E0834200A594C02A9D28C74906F126DAD3CCDDFC9CD9A61669E2 ] VMBusHID C:\Windows\system32\drivers\VMBusHID.sys
12:23:07.0783 0x0728 VMBusHID - ok
12:23:07.0798 0x0728 [ 4C63E00F2F4B5F86AB48A58CD990F212, 9796BD4B9CFEEEAF57C5E332A732EFC2770B21F9B35301A5D202F5FC52C1E035 ] volmgr C:\Windows\system32\drivers\volmgr.sys
12:23:07.0814 0x0728 volmgr - ok
12:23:07.0845 0x0728 [ B5BB72067DDDDBBFB04B2F89FF8C3C87, 65B9AD55F43940A5FDD88B6EC5034A7E375DF8E6F5F1AE6519A4BD6B7E992EBC ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
12:23:07.0861 0x0728 volmgrx - ok
12:23:07.0876 0x0728 [ F497F67932C6FA693D7DE2780631CFE7, DAE544ED99D2CF570DA31343BD87D2F856D0D13529656D38E1BF854C77F017F6 ] volsnap C:\Windows\system32\drivers\volsnap.sys
12:23:07.0892 0x0728 volsnap - ok
12:23:07.0939 0x0728 [ 9DFA0CC2F8855A04816729651175B631, 37FD9E43A2A3F125E94A315FB4CD8A1B5499A5FD74806EB2D1E5DA88C070D3A3 ] vsmraid C:\Windows\system32\drivers\vsmraid.sys
12:23:07.0970 0x0728 vsmraid - ok
12:23:08.0032 0x0728 [ 209A3B1901B83AEB8527ED211CCE9E4C, 1A431F6409F8E0531F600F8F988ECECECB902DA26BBAAF1DE74A5CAC29A7CB44 ] VSS C:\Windows\system32\vssvc.exe
12:23:08.0110 0x0728 VSS - ok
12:23:08.0157 0x0728 vToolbarUpdater17.3.0 - ok
12:23:08.0173 0x0728 [ 90567B1E658001E79D7C8BBD3DDE5AA6, EFC23BEEA7F54A2DC56CB523DAD1AF0358D904C5278BF08873910E2DB3F13557 ] vwifibus C:\Windows\system32\DRIVERS\vwifibus.sys
12:23:08.0188 0x0728 vwifibus - ok
12:23:08.0204 0x0728 [ 7090D3436EEB4E7DA3373090A23448F7, 3A130B28F2BFA7DCEC8596C4CE4E187B019F5ECF1AAC8DD1BBDE9CBD2428FEC2 ] vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys
12:23:08.0235 0x0728 vwififlt - ok
12:23:08.0235 0x0728 [ 55187FD710E27D5095D10A472C8BAF1C, AE298E2D3BA366BCBDC092C717214C181E8843FA564A6DFB07FC3238A5A68DC3 ] W32Time C:\Windows\system32\w32time.dll
12:23:08.0297 0x0728 W32Time - ok
12:23:08.0329 0x0728 [ DE3721E89C653AA281428C8A69745D90, 501C78056ED4295625D8A5412025FD2F0CA24077044D3A5800BA79DF3D946516 ] WacomPen C:\Windows\system32\drivers\wacompen.sys
12:23:08.0344 0x0728 WacomPen - ok
12:23:08.0375 0x0728 [ 3C3C78515F5AB448B022BDF5B8FFDD2E, 35284174A42039C3C1FF8A3C8BC187A5E067C7782FC62D19749C2CB28C4E36C7 ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
12:23:08.0407 0x0728 WANARP - ok
12:23:08.0407 0x0728 [ 3C3C78515F5AB448B022BDF5B8FFDD2E, 35284174A42039C3C1FF8A3C8BC187A5E067C7782FC62D19749C2CB28C4E36C7 ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
12:23:08.0438 0x0728 Wanarpv6 - ok
12:23:08.0547 0x0728 [ 353A04C273EC58475D8633E75CCD5604, FFAE53B6B53AEFC9E8A10BF27480E072D74430276BEB532FE1D473E9616D8CE0 ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe
12:23:08.0625 0x0728 WatAdminSvc - ok
12:23:08.0687 0x0728 [ 691E3285E53DCA558E1A84667F13E15A, 12EDB66EF8FC100402BEA221F354D3BD5542F6DDF715B6E7D873D6BAE7E3D329 ] wbengine C:\Windows\system32\wbengine.exe
12:23:08.0765 0x0728 wbengine - ok
12:23:08.0797 0x0728 [ 9614B5D29DC76AC3C29F6D2D3AA70E67, A2FFB92F0030B4CD771E862DA575ECCF2F3A5B4B85858C1241A0C59262C0EC88 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
12:23:08.0843 0x0728 WbioSrvc - ok
12:23:08.0859 0x0728 [ 34EEE0DFAADB4F691D6D5308A51315DC, A040A03E25A0C78B9E26F86C2DF95BCAF8E7EC90183CEB295615D3265350EBEE ] wcncsvc C:\Windows\System32\wcncsvc.dll
12:23:08.0890 0x0728 wcncsvc - ok
12:23:08.0921 0x0728 [ 5D930B6357A6D2AF4D7653BDABBF352F, 677FF2ED14EE0B0CAA710DA81556CC16D5971DAB10E7C7432D167A87CA6F0EAA ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
12:23:08.0968 0x0728 WcsPlugInService - ok
12:23:08.0984 0x0728 [ 1112A9BADACB47B7C0BB0392E3158DFF, 1AE2AFA125973571F91E6945FE8A735F63D76EBB250A0075D98C580167FD9ED4 ] Wd C:\Windows\system32\drivers\wd.sys
12:23:08.0999 0x0728 Wd - ok
12:23:09.0062 0x0728 [ 25944D2CC49E0A6C581D02A74B7D6645, AF8FFAFEC07F1A6A3D4008E609E8E1D705A8DFCC7995C766E3946887203F7BEE ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
12:23:09.0093 0x0728 Wdf01000 - ok
12:23:09.0109 0x0728 [ 46EF9DC96265FD0B423DB72E7C38C2A5, 43801A51FB0E45CFFC73DF6441B54A75FC2FEAF5E0424DFE7AB04FC26CF6CD16 ] WdiServiceHost C:\Windows\system32\wdi.dll
12:23:09.0187 0x0728 WdiServiceHost - ok
12:23:09.0202 0x0728 [ 46EF9DC96265FD0B423DB72E7C38C2A5, 43801A51FB0E45CFFC73DF6441B54A75FC2FEAF5E0424DFE7AB04FC26CF6CD16 ] WdiSystemHost C:\Windows\system32\wdi.dll
12:23:09.0218 0x0728 WdiSystemHost - ok
12:23:09.0265 0x0728 [ 75E8EBD7040CE238684333F97014762A, 2CA0B267FBAEB303D1F8B639D733DC0DE17BA1276CC9096035B4F2BBBED3EF7F ] WebClient C:\Windows\System32\webclnt.dll
12:23:09.0311 0x0728 WebClient - ok
12:23:09.0327 0x0728 [ 760F0AFE937A77CFF27153206534F275, A53940BA28854486FF18F16B98A3314B36322B0B6EFB54D08B921315BEB0ADD5 ] Wecsvc C:\Windows\system32\wecsvc.dll
12:23:09.0374 0x0728 Wecsvc - ok
12:23:09.0389 0x0728 [ AC804569BB2364FB6017370258A4091B, 1856F354146A5946F3E7D0DD09726FC8A3502B0F0776FEADDF10669C81CC28E2 ] wercplsupport C:\Windows\System32\wercplsupport.dll
12:23:09.0421 0x0728 wercplsupport - ok
12:23:09.0436 0x0728 [ 08E420D873E4FD85241EE2421B02C4A4, E1E9436EB096FF7DE9A76DA6217035257EF9FC7565DDB9016DCA3859E7F1EF0F ] WerSvc C:\Windows\System32\WerSvc.dll
12:23:09.0483 0x0728 WerSvc - ok
12:23:09.0514 0x0728 [ 8B9A943F3B53861F2BFAF6C186168F79, 88E2F79F32AFBA17CB8377A508B83A1EC2315E9F3A365F591C87FE4525AA6713 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
12:23:09.0530 0x0728 WfpLwf - ok
12:23:09.0545 0x0728 [ 5CF95B35E59E2A38023836FFF31BE64C, CEA21302B3E855EE592810D4E0DE10E47A47A393064C435463CD54598735CD8D ] WIMMount C:\Windows\system32\drivers\wimmount.sys
12:23:09.0561 0x0728 WIMMount - ok
12:23:09.0639 0x0728 [ 082CF481F659FAE0DE51AD060881EB47, BB67D2AF0BB9192D4CCF66C23D80CE5A1B38715556D94E2561DBF8F805FA30A5 ] WinDefend C:\Program Files\Windows Defender\mpsvc.dll
12:23:09.0748 0x0728 WinDefend - ok
12:23:09.0779 0x0728 WinHttpAutoProxySvc - ok
12:23:09.0842 0x0728 [ F62E510B6AD4C21EB9FE8668ED251826, FA3E5CAC3E67E49377320CFBE4646585E6B62168292768FEA81E4623F9166890 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
12:23:09.0873 0x0728 Winmgmt - ok
12:23:09.0982 0x0728 [ 1B91CD34EA3A90AB6A4EF0550174F4CC, 5B6618615EBFBA594C945AD35F5C68DA8C6053892B6D12D626BB6120910D80DC ] WinRM C:\Windows\system32\WsmSvc.dll
12:23:10.0076 0x0728 WinRM - ok
12:23:10.0154 0x0728 [ 16935C98FF639D185086A3529B1F2067, E9C6B73A572A04FCE9B1B0E6815F941B10332D9A6D55B92927C2B1275F119091 ] Wlansvc C:\Windows\System32\wlansvc.dll
12:23:10.0216 0x0728 Wlansvc - ok
12:23:10.0232 0x0728 [ 0217679B8FCA58714C3BF2726D2CA84E, 4494984B922DCF24D37BCD0E6831CEBD07D1CA49235D04E821D17ED3DF84ED2A ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
12:23:10.0247 0x0728 WmiAcpi - ok
12:23:10.0279 0x0728 [ 6EB6B66517B048D87DC1856DDF1F4C3F, EBB534C4829477C70062ADBB5626236B02FE563A544C53FA255E79F3CA170FE8 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
12:23:10.0310 0x0728 wmiApSrv - ok
12:23:10.0403 0x0728 [ 3B40D3A61AA8C21B88AE57C58AB3122E, 6C67DCB007C3CDF2EB0BBF5FD89C32CD7800C20F7166872F8C387BE262C5CD21 ] WMPNetworkSvc C:\Program Files\Windows Media Player\wmpnetwk.exe
12:23:10.0450 0x0728 WMPNetworkSvc - ok
12:23:10.0466 0x0728 [ A2F0EC770A92F2B3F9DE6D518E11409C, 6838F2148B11285E00DC449D51F8AD85AAE57694E89BA2C607B87AC1C650D845 ] WPCSvc C:\Windows\System32\wpcsvc.dll
12:23:10.0513 0x0728 WPCSvc - ok
12:23:10.0528 0x0728 [ AA53356D60AF47EACC85BC617A4F3F66, 155CB8112AA382D841C1891750FF29EF4F1BF716CD9CDF0F2243209E2CCCAC98 ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
12:23:10.0559 0x0728 WPDBusEnum - ok
12:23:10.0591 0x0728 [ 6DB3276587B853BF886B69528FDB048C, 9972FF6DF0DF6F86D1E9BCEF4C29064748B217DA196B0633C30D3D580144951C ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
12:23:10.0622 0x0728 ws2ifsl - ok
12:23:10.0653 0x0728 [ 6F5D49EFE0E7164E03AE773A3FE25340, 15B6AFF7455538189A96F8863CC995A271E02C6FBDAC15B037D44DDA65E61339 ] wscsvc C:\Windows\System32\wscsvc.dll
12:23:10.0684 0x0728 wscsvc - ok
12:23:10.0684 0x0728 WSearch - ok
12:23:10.0809 0x0728 [ FC3EC24FCE372C89423E015A2AC1A31E, 8D028182CF83667D3E4D148979972D208FA6D9B8540EE47A0A7831B770ECD257 ] wuauserv C:\Windows\system32\wuaueng.dll
12:23:10.0856 0x0728 wuauserv - ok
12:23:10.0887 0x0728 [ 06E6F32C8D0A3F66D956F57B43A2E070, 9A6BD96A28294B0372F16E13D652FD603308F64B74A56E41E0C68C5E8011F943 ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
12:23:10.0918 0x0728 WudfPf - ok
12:23:10.0949 0x0728 [ 867C301E8B790040AE9CF6486E8041DF, D867D6498C987944D99508B2FAD6D6B749FA1EDFE8124B0863D4A642352F0855 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
12:23:10.0965 0x0728 WUDFRd - ok
12:23:11.0012 0x0728 [ FE47B7BC8EA320C2D9B5E5BF6E303765, 34518DBD1E9EA6E5DA62273B18613761E1D9C6B4E074A93C6D639FBAF02222EA ] wudfsvc C:\Windows\System32\WUDFSvc.dll
12:23:11.0027 0x0728 wudfsvc - ok
12:23:11.0074 0x0728 [ 3C5E51C05BE9B56EAFF4E388C3AB25E4, 10D9FDEDAB1FB2E76D54661AFA5C1A6B1B0980525F38F5D061537077841C6AEE ] WwanSvc C:\Windows\System32\wwansvc.dll
12:23:11.0121 0x0728 WwanSvc - ok
12:23:11.0137 0x0728 ================ Scan global ===============================
12:23:11.0168 0x0728 [ DAB748AE0439955ED2FA22357533DDDB, 73EDD402C7479DDCE1998D0C7E99E1EC2974F64EFC33A851439CC85D09EDCDF9 ] C:\Windows\system32\basesrv.dll
12:23:11.0199 0x0728 [ 51BB04243DF6196C06E125898127E397, E1B6C83FC6E455F6806185027C5B56F8BA9ECDF1CD69E97301EC0291F0D3466E ] C:\Windows\system32\winsrv.dll
12:23:11.0215 0x0728 [ 51BB04243DF6196C06E125898127E397, E1B6C83FC6E455F6806185027C5B56F8BA9ECDF1CD69E97301EC0291F0D3466E ] C:\Windows\system32\winsrv.dll
12:23:11.0246 0x0728 [ 364455805E64882844EE9ACB72522830, 906561DBBB33F744844CF27E456226044C85DF0FCFD26DE1FD11E09E2CFA6F8F ] C:\Windows\system32\sxssrv.dll
12:23:11.0277 0x0728 [ 5F1B6A9C35D3D5CA72D6D6FDEF9747D6, D7BC4ED605B32274B45328FD9914FB0E7B90D869A38F0E6F94FB1BF4E9E2B407 ] C:\Windows\system32\services.exe
12:23:11.0277 0x0728 [ Global ] - ok
12:23:11.0277 0x0728 ================ Scan MBR ==================================
12:23:11.0293 0x0728 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
12:23:11.0527 0x0728 \Device\Harddisk0\DR0 - ok
12:23:11.0527 0x0728 ================ Scan VBR ==================================
12:23:11.0542 0x0728 [ 8678DF9D3F6E4E2423163E567D5782ED ] \Device\Harddisk0\DR0\Partition1
12:23:11.0542 0x0728 \Device\Harddisk0\DR0\Partition1 - ok
12:23:11.0542 0x0728 [ 6A0A2D39269BC1E348516892C7353A8B ] \Device\Harddisk0\DR0\Partition2
12:23:11.0542 0x0728 \Device\Harddisk0\DR0\Partition2 - ok
12:23:11.0542 0x0728 ================ Scan active images ========================
12:23:11.0558 0x0728 [ B7EFEF22FF426EC4158A177CB3B558D3, 87D8F07E23B928B9D71B13B0F43A6235BAFC48879CFCF5920889849D09FFCD6C ] C:\Windows\System32\drivers\crashdmp.sys
12:23:11.0558 0x0728 C:\Windows\System32\drivers\crashdmp.sys - ok
12:23:11.0558 0x0728 [ 5428227D4730EBDFC842E9FB593F8C8A, C62A122FC8A04B63A94F337699A70901ED04B0F20AEC9538EC6E83ED2D18F1E3 ] C:\Windows\System32\drivers\Dumpata.sys
12:23:11.0558 0x0728 C:\Windows\System32\drivers\Dumpata.sys - ok
12:23:11.0573 0x0728 [ 338C86357871C167A96AB976519BF59E, F28CC534523D1701B0552F5D7E18E88369C4218BDB1F69110C3E31D395884AD6 ] C:\Windows\System32\drivers\atapi.sys
12:23:11.0573 0x0728 C:\Windows\System32\drivers\atapi.sys - ok
12:23:11.0573 0x0728 [ 62A63EF2F3053B461CB327E4D69AAA74, 26CC8BBC9BB6C53B46C837FA75C5449508989C26949BD19EB8E03E37F7928456 ] C:\Windows\System32\drivers\dumpfve.sys
12:23:11.0573 0x0728 C:\Windows\System32\drivers\dumpfve.sys - ok
12:23:11.0573 0x0728 [ 505506526A9D467307B3C393DEDAF858, 8AD6F1492E357F57CF42261497BA29122045D4FC0DCC9669AA5AC9B2A4BABFA4 ] C:\Windows\System32\drivers\beep.sys
12:23:11.0573 0x0728 C:\Windows\System32\drivers\beep.sys - ok
12:23:11.0589 0x0728 [ BE167ED0FDB9C1FA1133953C18D5A6C9, E26A851CA13E7300F977E5B20FA5D25FD0E1442AB6AD5DB58BBDB2DAAD87027C ] C:\Windows\System32\drivers\cdrom.sys
12:23:11.0589 0x0728 C:\Windows\System32\drivers\cdrom.sys - ok
12:23:11.0589 0x0728 [ F9756A98D69098DCA8945D62858A812C, 572ADBFCFDE2030B34A013AADC14DBC144EB3F34D06991E2464A3EA9605BC045 ] C:\Windows\System32\drivers\null.sys
12:23:11.0589 0x0728 C:\Windows\System32\drivers\null.sys - ok
12:23:11.0605 0x0728 [ 15ACA2AD17ACECA4814F249783E63AD3, AB8E74A5B8FC2FD04BA2B495610A8BE76408E9362A447D7069D5AAB8F3512F33 ] C:\Windows\System32\drivers\avgtpx86.sys
12:23:11.0605 0x0728 C:\Windows\System32\drivers\avgtpx86.sys - ok
12:23:11.0605 0x0728 [ 23DAE03F29D253AE74C44F99E515F9A1, 8FED93D10B2062F0526FE3508101F8FCF8F72DEB90AFB472EB7CBAE83A0EC430 ] C:\Windows\System32\drivers\RDPCDD.sys
12:23:11.0605 0x0728 C:\Windows\System32\drivers\RDPCDD.sys - ok
12:23:11.0605 0x0728 [ 8E38096AD5C8570A6F1570A61E251561, 4DBA3C1397A2203548F45F006E66D99F837903F601ABBCE2304754F783CA8A39 ] C:\Windows\System32\drivers\vga.sys
12:23:11.0605 0x0728 C:\Windows\System32\drivers\vga.sys - ok
12:23:11.0620 0x0728 [ 15C126D1B55814B9E5CAB10A9C1F4C67, CD118B6508355037294AE940E039C095BA9E4A96AA129D38DB0AEC0C393D0F00 ] C:\Windows\System32\drivers\videoprt.sys
12:23:11.0620 0x0728 C:\Windows\System32\drivers\videoprt.sys - ok
12:23:11.0620 0x0728 [ CB45A417C8EF7BA6BAC67EDCDDED8700, 0D9AD2498A7D3B7C3E485A5803D2BDF781B38E07E3C2B5980859073EF6FD9B8A ] C:\Windows\System32\drivers\watchdog.sys
12:23:11.0620 0x0728 C:\Windows\System32\drivers\watchdog.sys - ok
12:23:11.0620 0x0728 [ 5A53CA1598DD4156D44196D200C94B8A, 8112FE14FEC94C67B1C5BDE4171E37584F1D0098D2C557C9E4BDD3E0291E25E4 ] C:\Windows\System32\drivers\RDPENCDD.sys
12:23:11.0620 0x0728 C:\Windows\System32\drivers\RDPENCDD.sys - ok
12:23:11.0636 0x0728 [ 44B0A53CD4F27D50ED461DAE0C0B4E1F, CDA80B08E67AD034081C0C920CD66147689F1844403CBC552F65005E7C011A91 ] C:\Windows\System32\drivers\RDPREFMP.sys
12:23:11.0636 0x0728 C:\Windows\System32\drivers\RDPREFMP.sys - ok
12:23:11.0636 0x0728 [ DAEFB28E3AF5A76ABCC2C3078C07327F, 6EB558532400B489763BAE7203538DE5F196282A8CB46A1B31D59120FC5AFCEF ] C:\Windows\System32\drivers\msfs.sys
12:23:11.0636 0x0728 C:\Windows\System32\drivers\msfs.sys - ok
12:23:11.0636 0x0728 [ 280122DDCF04B378EDD1AD54D71C1E54, F98B2ADE34F7E67C7C06C1D0FFB80ECBC353D044D4B4784CD952910345DC2ED0 ] C:\Windows\System32\drivers\netbt.sys
12:23:11.0651 0x0728 C:\Windows\System32\drivers\netbt.sys - ok
12:23:11.0651 0x0728 [ 1DB262A9F8C087E8153D89BEF3D2235F, A51EE5D5AD3CD76B74BEA9C66C462608BF3B50C53DAA4110A75DB10495A8C101 ] C:\Windows\System32\drivers\npfs.sys
12:23:11.0651 0x0728 C:\Windows\System32\drivers\npfs.sys - ok
12:23:11.0651 0x0728 [ 2F885864D5BC8A16C86BEE595969A48A, 279E176CDEF9148A4A07F7D37172A2C2BDC89E47021EEB76F1BCDF789B76D95A ] C:\Windows\System32\drivers\tdi.sys
12:23:11.0651 0x0728 C:\Windows\System32\drivers\tdi.sys - ok
12:23:11.0667 0x0728 [ B459575348C20E8121D6039DA063C704, 1B4328A9EA39FF5A57F258E02254D04B73455F1DF7C997C13702A8B2F12D0347 ] C:\Windows\System32\drivers\tdx.sys
12:23:11.0667 0x0728 C:\Windows\System32\drivers\tdx.sys - ok
12:23:11.0667 0x0728 [ F81BB7E487EDCEAB630A7EE66CF23913, 7D1638FD7E388EF670FA0A421762E0413351058A20DDF0F9988A383F05395A68 ] C:\Windows\System32\drivers\afd.sys
12:23:11.0667 0x0728 C:\Windows\System32\drivers\afd.sys - ok
12:23:11.0667 0x0728 [ 8B9A943F3B53861F2BFAF6C186168F79, 88E2F79F32AFBA17CB8377A508B83A1EC2315E9F3A365F591C87FE4525AA6713 ] C:\Windows\System32\drivers\wfplwf.sys
12:23:11.0667 0x0728 C:\Windows\System32\drivers\wfplwf.sys - ok
12:23:11.0683 0x0728 [ 6270CCAE2A86DE6D146529FE55B3246A, 463209CBAF1B0E269DC8FC6FBDEE5BB7E5ADB5D3F024930BFD0B97E0A9678883 ] C:\Windows\System32\drivers\pacer.sys
12:23:11.0683 0x0728 C:\Windows\System32\drivers\pacer.sys - ok
12:23:11.0683 0x0728 [ 7090D3436EEB4E7DA3373090A23448F7, 3A130B28F2BFA7DCEC8596C4CE4E187B019F5ECF1AAC8DD1BBDE9CBD2428FEC2 ] C:\Windows\System32\drivers\vwififlt.sys
12:23:11.0683 0x0728 C:\Windows\System32\drivers\vwififlt.sys - ok
12:23:11.0683 0x0728 [ 80B275B1CE3B0E79909DB7B39AF74D51, 75B406B0D9D28239D4EB2A298419A5F78A58237D88C5FD688EF1DFFAFACCF796 ] C:\Windows\System32\drivers\netbios.sys
12:23:11.0683 0x0728 C:\Windows\System32\drivers\netbios.sys - ok
12:23:11.0698 0x0728 [ 5FB7FCEA0490D821F26F39CC5EA3D1E2, A26DB2EB9F3E2509B4EBA949DB97595CC32332D9321DF68283BFC102E66D766F ] C:\Windows\System32\drivers\serial.sys
12:23:11.0698 0x0728 C:\Windows\System32\drivers\serial.sys - ok
12:23:11.0698 0x0728 [ 04DBF4B01EA4BF25A9A3E84AFFAC9B20, 0D81B427720637882077C5024D738191F858FC734ED040697872D906351EF663 ] C:\Windows\System32\drivers\termdd.sys
12:23:11.0698 0x0728 C:\Windows\System32\drivers\termdd.sys - ok
12:23:11.0698 0x0728 [ 3C3C78515F5AB448B022BDF5B8FFDD2E, 35284174A42039C3C1FF8A3C8BC187A5E067C7782FC62D19749C2CB28C4E36C7 ] C:\Windows\System32\drivers\wanarp.sys
12:23:11.0698 0x0728 C:\Windows\System32\drivers\wanarp.sys - ok
12:23:11.0714 0x0728 [ D528BC58A489409BA40334EBF96A311B, C71E9A4B101DB6C3183B9F97B9098D73D6FE1B12C05C2EB3CE8A8041BEE6BA61 ] C:\Windows\System32\drivers\rdbss.sys
12:23:11.0714 0x0728 C:\Windows\System32\drivers\rdbss.sys - ok
12:23:11.0714 0x0728 [ FC6B9FF600CC585EA38B12589BD4E246, F05DB01AE1955D2468CE6B51E51998B111CA3B0BDEED090EE6B99B625CBA564A ] C:\Windows\System32\drivers\mssmbios.sys
12:23:11.0714 0x0728 C:\Windows\System32\drivers\mssmbios.sys - ok
12:23:11.0714 0x0728 [ E9A0A4D07E53D8FEA2BB8387A3293C58, 690CAD6C4E35ECC1172A2E1FD3933DF73158B3BF42CB21244269612A53DE4D7A ] C:\Windows\System32\drivers\nsiproxy.sys
12:23:11.0714 0x0728 C:\Windows\System32\drivers\nsiproxy.sys - ok
12:23:11.0729 0x0728 [ 1A050B0274BFB3890703D490F330C0DA, 79D74F4679A2EE040FAAF4D0392A9311239A10A5F8A5CCB48656C6F89B6D62FB ] C:\Windows\System32\drivers\discache.sys
12:23:11.0729 0x0728 C:\Windows\System32\drivers\discache.sys - ok
12:23:11.0729 0x0728 [ 3C2177A897B4CA2788C6FB0C3FD81D4B, 98575CBD0664586E6211D02E71BDD52CBAA149A1658573550E29E74E5F7B1553 ] C:\Windows\System32\drivers\csc.sys
12:23:11.0729 0x0728 C:\Windows\System32\drivers\csc.sys - ok
12:23:11.0745 0x0728 [ F024449C97EC1E464AAFFDA18593DB88, 7EF1E241892E098A472BCA14C724DFF1AACCF190954AF1C4A38B6D542CC74BD2 ] C:\Windows\System32\drivers\dfsc.sys
12:23:11.0745 0x0728 C:\Windows\System32\drivers\dfsc.sys - ok
12:23:11.0745 0x0728 [ 2287078ED48FCFC477B05B20CF38F36F, 55BCA6174E6034A8D61CBE4126B2F1989F6052BFA624BEA9C0A0A664AEC74521 ] C:\Windows\System32\drivers\blbdrive.sys
12:23:11.0745 0x0728 C:\Windows\System32\drivers\blbdrive.sys - ok
12:23:11.0745 0x0728 [ 578ECC3D911897B2C5B760EDAF8ED6CA, 99CAACB349C8629D4BE6070BDBFB0BDB4A13ABFFF738F04D723D2AFE7EA58894 ] C:\Windows\System32\drivers\avgldx86.sys
12:23:11.0745 0x0728 C:\Windows\System32\drivers\avgldx86.sys - ok
12:23:11.0761 0x0728 [ C66B17D93F94622293608C2FB91C5806, 5BA6948A5328D73B1BAF6DACC7B2A842FD0072246DD416DE39F6993EAABC2997 ] C:\Windows\System32\drivers\avgidsdriverx.sys
12:23:11.0761 0x0728 C:\Windows\System32\drivers\avgidsdriverx.sys - ok
12:23:11.0761 0x0728 [ 4118A9D326A76D485713A36988102C3E, 10C494165258D091AB31533C37FA05C29013471D5B2D6BDA60F731715FA02248 ] C:\Windows\System32\drivers\avgidsshimx.sys
12:23:11.0761 0x0728 C:\Windows\System32\drivers\avgidsshimx.sys - ok
12:23:11.0761 0x0728 [ 9C7C45DE9E167F6268D32D6D10133F7D, 58005B49AE6D5CABB3ECEFF0D800F53D6E81A67B5EFE25E9374EC061FEC5601F ] C:\Windows\System32\drivers\avgdiskx.sys
12:23:11.0761 0x0728 C:\Windows\System32\drivers\avgdiskx.sys - ok
12:23:11.0776 0x0728 [ B2FA25D9B17A68BB93D58B0556E8C90D, 0146931B733CAB1CD87F94C35F97E110D6ED6C55EAFF03345400A29AEDE99BDE ] C:\Windows\System32\drivers\tunnel.sys
12:23:11.0776 0x0728 C:\Windows\System32\drivers\tunnel.sys - ok
12:23:11.0776 0x0728 [ 3B514D27BFC4ACCB4037BC6685F766E0, F12D7AC62F8550E6F33B28AD751D8413AB7FFEF963242D99FFA76CE8A48B027A ] C:\Windows\System32\drivers\intelppm.sys
12:23:11.0776 0x0728 C:\Windows\System32\drivers\intelppm.sys - ok
12:23:11.0776 0x0728 [ E0B8C6B1EA1EF94747E966E9093FB968, 364539AE2AD49870DAF2773B6BD6306764D936F5EE1C2929B2B5A47EEC3409A7 ] C:\Windows\System32\ntdll.dll
12:23:11.0776 0x0728 C:\Windows\System32\ntdll.dll - ok
12:23:11.0792 0x0728 [ DE91DCC7BC55E940979097E98F743205, 77CBB42FA1648CF03F21709738F7F91513385F82B544981741F7BD8D65FB7786 ] C:\Windows\System32\smss.exe
12:23:11.0792 0x0728 C:\Windows\System32\smss.exe - ok
12:23:11.0792 0x0728 [ 9467514EA189475A6E7FDC5D7BDE9D3F, E6F5B99BF6B614832770F9310B06334A8174C7660DDEC7589433640527A14683 ] C:\Windows\System32\drivers\igdkmd32.sys
12:23:11.0792 0x0728 C:\Windows\System32\drivers\igdkmd32.sys - ok
12:23:11.0807 0x0728 [ 71BC35067CABC02C9453AEAA42B2E43E, 713B19F2C08EA5E4C087F7A74A8856932CF33E19D63384823DD4E02ED8798619 ] C:\Windows\System32\drivers\dxgkrnl.sys
12:23:11.0807 0x0728 C:\Windows\System32\drivers\dxgkrnl.sys - ok
12:23:11.0807 0x0728 [ E405328A0E38BF823E2361C413283F6D, 7637EA2F14216F0469CC309C0ABBFB70213721B0BADD6C36522F6789CC0F361E ] C:\Windows\System32\drivers\dxgmms1.sys
12:23:11.0807 0x0728 C:\Windows\System32\drivers\dxgmms1.sys - ok
12:23:11.0807 0x0728 [ 0BF1D760B05CAAAF231123D53C4789E2, 53EB2FAEFC6267BA29831D2AFF6EDBF6916B25509D8C206D34FD52E76965856B ] C:\Windows\System32\drivers\HECI.sys
12:23:11.0807 0x0728 C:\Windows\System32\drivers\HECI.sys - ok
12:23:11.0823 0x0728 [ 9AD8B8B515E3DF6ACD4212EF465DE2D1, E2F019BCD1446236D078D46065DD151DD068778F33BE2F1E8A0CC1EA2F954E86 ] C:\Windows\System32\drivers\serenum.sys
12:23:11.0823 0x0728 C:\Windows\System32\drivers\serenum.sys - ok
12:23:11.0823 0x0728 [ 377AD53E4154477339290B4212E69D53, CFB201699CBB9416963973DB2E45810760BEBABAE684EC06E35495601A8A10AF ] C:\Windows\System32\drivers\e1e6232.sys
12:23:11.0823 0x0728 C:\Windows\System32\drivers\e1e6232.sys - ok
12:23:11.0823 0x0728 [ D40855F89B69305140BBD7E9A3BA2DA6, 745DC6D770666F6B19C2B6AA89C21D1A314732E291453BFA2367F9AF86F97C3C ] C:\Windows\System32\drivers\usbehci.sys
12:23:11.0823 0x0728 C:\Windows\System32\drivers\usbehci.sys - ok
12:23:11.0839 0x0728 [ EC2C5AF37B76D7B58C642CB74423DB7A, BE1F6F2CE3B1539DAC23B73EA655B77E6E628E5E55BD16091E76934723BE77B1 ] C:\Windows\System32\drivers\usbport.sys
12:23:11.0839 0x0728 C:\Windows\System32\drivers\usbport.sys - ok
12:23:11.0839 0x0728 [ 78780C3EBCE17405B1CCD07A3A8A7D72, FBFF3111E22EE0B4BCAFA81F89AAE985135BFF48EEFD130C09B49CCF8A9946B9 ] C:\Windows\System32\drivers\usbuhci.sys
12:23:11.0839 0x0728 C:\Windows\System32\drivers\usbuhci.sys - ok
12:23:11.0839 0x0728 [ E817A017F82DF2A1F8CFDBDA29388B29, 4CC9320A21E6FEA2D16C48D6BEA14391B695BD541A3C5FDDAEEE086A414FC837 ] C:\Windows\System32\drivers\fdc.sys
12:23:11.0839 0x0728 C:\Windows\System32\drivers\fdc.sys - ok
12:23:11.0854 0x0728 [ 9036377B8A6C15DC2EEC53E489D159B5, 1E56D2ACFE92E6DF96D755B05C63D580EED82C210F075C8623E138BEE6BCD41B ] C:\Windows\System32\drivers\hdaudbus.sys
12:23:11.0854 0x0728 C:\Windows\System32\drivers\hdaudbus.sys - ok
12:23:11.0854 0x0728 [ 57EC4AEF73660166074D8F7F31C0D4FD, C66B425EC4DB5E7FD289AE631C9B019EB16717C55E80FAE964BB22203E4AACEF ] C:\Windows\System32\drivers\agilevpn.sys
12:23:11.0854 0x0728 C:\Windows\System32\drivers\agilevpn.sys - ok
12:23:11.0854 0x0728 [ CBE8C58A8579CFE5FCCF809E6F114E89, AC083A1C649EBA18C59FCC1772D0784B10E2B8C63094E3C14388E147DBC3F6DF ] C:\Windows\System32\drivers\CompositeBus.sys
12:23:11.0854 0x0728 C:\Windows\System32\drivers\CompositeBus.sys - ok
12:23:11.0870 0x0728 [ 2EA877ED5DD9713C5AC74E8EA7348D14, 14BA3722CE5F8FF07F2D97DCDD6558EB49C9B02E5E6FAD6D9F18D354733EFECE ] C:\Windows\System32\drivers\parport.sys
12:23:11.0870 0x0728 C:\Windows\System32\drivers\parport.sys - ok
12:23:11.0870 0x0728 [ E4A8AEC125A2E43A9E32AFEEA7C9C888, 6EA181117126FC70B3C1DD1AC73CC26D1603A2CF49E47F66623E2C9489C49B55 ] C:\Windows\System32\drivers\ndistapi.sys
12:23:11.0870 0x0728 C:\Windows\System32\drivers\ndistapi.sys - ok
12:23:11.0885 0x0728 [ D9F91EAFEC2815365CBE6D167E4E332A, 8350457A39D141C13807E7DB5A8D4113197C4016F7744B9993391F4AEA0C4A5C ] C:\Windows\System32\drivers\rasl2tp.sys
12:23:11.0885 0x0728 C:\Windows\System32\drivers\rasl2tp.sys - ok
12:23:11.0885 0x0728 [ 38FBE267E7E6983311179230FACB1017, CFD1CBCA59650795C030DB30E5795B37C11C736E14003AE1DAB081BA5C0C9B14 ] C:\Windows\System32\drivers\ndiswan.sys
12:23:11.0885 0x0728 C:\Windows\System32\drivers\ndiswan.sys - ok
12:23:11.0885 0x0728 [ 0FE8B15916307A6AC12BFB6A63E45507, 64119474DE7499E6E8B82E78BBD50074B3AA70B3E8329089FAE9B7F29919004E ] C:\Windows\System32\drivers\raspppoe.sys
12:23:11.0885 0x0728 C:\Windows\System32\drivers\raspppoe.sys - ok
12:23:11.0901 0x0728 [ 631E3E205AD6D86F2AED6A4A8E69F2DB, 1D3BF0CFC37D91A3A56246920B9CF1084E78A055D56E85A773417809C58C8065 ] C:\Windows\System32\drivers\raspptp.sys
12:23:11.0901 0x0728 C:\Windows\System32\drivers\raspptp.sys - ok
12:23:11.0901 0x0728 [ 44101F495A83EA6401D886E7FD70096B, 56A0CE5C89870752B9B2AB795C1A248CA28209E049B2F20CCA0308CBE2488A0A ] C:\Windows\System32\drivers\rassstp.sys
12:23:11.0901 0x0728 C:\Windows\System32\drivers\rassstp.sys - ok
12:23:11.0901 0x0728 [ 0D8F05481CB76E70E1DA06EE9F0DA9DF, 2AFCBE3237D27AFBF095F91F1FCCA63E6890F34A9E4F00E5C34C92394CDA89FB ] C:\Windows\System32\drivers\rdpbus.sys
12:23:11.0901 0x0728 C:\Windows\System32\drivers\rdpbus.sys - ok
12:23:11.0917 0x0728 [ ADEF52CA1AEAE82B50DF86B56413107E, A3AE1E96B04AC81665ABBD3CB267DFB3F78376DAE18FB0DBD447908DDAAA22D2 ] C:\Windows\System32\drivers\kbdclass.sys
12:23:11.0917 0x0728 C:\Windows\System32\drivers\kbdclass.sys - ok
12:23:11.0917 0x0728 [ FB18CC1D4C2E716B6B903B0AC0CC0609, F10CCA63493782B16DE6B96B94A27078DBE68AECEF34FDF840CFF86D2C6E3C5E ] C:\Windows\System32\drivers\mouclass.sys
12:23:11.0917 0x0728 C:\Windows\System32\drivers\mouclass.sys - ok
12:23:11.0917 0x0728 [ 5DCEF0C32BE0F33277326586FA503689, B6AEB5DE8F2430D2032DAF5B58DBB4E192F6113DB5379F5AD8189A7AC2560EEA ] C:\Windows\System32\drivers\ks.sys
12:23:11.0917 0x0728 C:\Windows\System32\drivers\ks.sys - ok
12:23:11.0932 0x0728 [ E58C78A848ADD9610A4DB6D214AF5224, 1575A90EB22A4FB066459BDA00C6CAC10198C3C8C74493721EC6D34B51F50426 ] C:\Windows\System32\drivers\swenum.sys
12:23:11.0932 0x0728 C:\Windows\System32\drivers\swenum.sys - ok
12:23:11.0932 0x0728 [ D295BED4B898F0FD999FCFA9B32B071B, D4130DB4AE76EE6DC0B8E7A4FEF5CB8B26EBD822C21021F6FA78FD29C1E211C2 ] C:\Windows\System32\drivers\umbus.sys
12:23:11.0932 0x0728 C:\Windows\System32\drivers\umbus.sys - ok
12:23:11.0932 0x0728 [ EDF2DF71C4F1E13A6AC75F5224DE655A, 1764D155C6B99201774B57195349304259232A12868ECFC2069CA49443EBDC2C ] C:\Windows\System32\drivers\usbhub.sys
12:23:11.0932 0x0728 C:\Windows\System32\drivers\usbhub.sys - ok
12:23:11.0948 0x0728 [ 87907AA70CB3C56600F1C2FB8841579B, CA1CD82A1CD453617CE5EA431A1836997F14E3580554E8A516D9FE1E9926D979 ] C:\Windows\System32\drivers\flpydisk.sys
12:23:11.0948 0x0728 C:\Windows\System32\drivers\flpydisk.sys - ok
12:23:11.0948 0x0728 [ A4BDC541E69674FBFF1A8FF00BE913F2, 18CCFD063E9870B8B6958715BC0414C4D920AE63528EA1E9D7E30F7138918FFA ] C:\Windows\System32\drivers\ndproxy.sys
12:23:11.0948 0x0728 C:\Windows\System32\drivers\ndproxy.sys - ok
12:23:11.0963 0x0728 [ 9842041E2F5ACE1E2F5FB4EF02053DC8, 8260D3DDCC92987CA3A456ABD0982A7C81DBBEDB87DE781039F2E4BCCF27DB6D ] C:\Windows\System32\drivers\drmk.sys
12:23:11.0963 0x0728 C:\Windows\System32\drivers\drmk.sys - ok
12:23:11.0963 0x0728 [ A5EF29D5315111C80A5C1ABAD14C8972, A181DA72E946F121C3F4A19438C547B0BFD15138AB1DB5465945EC89DF1F6B0A ] C:\Windows\System32\drivers\HdAudio.sys
12:23:11.0963 0x0728 C:\Windows\System32\drivers\HdAudio.sys - ok
12:23:11.0963 0x0728 [ EB6137D696A9B4E9718AC6F8641CB4C9, 438B6177F8BF50E17226D9C4E5FAE42D82178CCDD79979C78B15261B459E153E ] C:\Windows\System32\drivers\portcls.sys
12:23:11.0963 0x0728 C:\Windows\System32\drivers\portcls.sys - ok
12:23:11.0979 0x0728 [ F88A52EB62019D6A62FDD9E08034DBD8, 2E035366E9A1A26FB15F1E4857056E6AD7932BCE8CC68BB4B655609F424D2756 ] C:\Windows\System32\autochk.exe
12:23:11.0979 0x0728 C:\Windows\System32\autochk.exe - ok
12:23:11.0979 0x0728 [ 733CE83516F5BFE2801D8DF475E73299, A0534398F67BB9AAB0412F995F7BB9F56F8C6382D1B6447023E61B392DA268DD ] C:\PROGRA~1\AVG\AVG2014\avgrsx.exe
12:23:11.0979 0x0728 C:\PROGRA~1\AVG\AVG2014\avgrsx.exe - ok
12:23:11.0979 0x0728 [ 6E745904DB9FB36A6A175C5F5461602E, 9D96D7793B3A7B1EDD364FBA03FB3A4E3F8E11874CE5447B3B9E9009C14B107A ] C:\Program Files\AVG\AVG2014\avglogx.dll
12:23:11.0979 0x0728 C:\Program Files\AVG\AVG2014\avglogx.dll - ok
12:23:11.0995 0x0728 [ C3ACE819A9974599F6AD210A9BCED90B, B3E3B5BF750FC016BEAC939D2B4CE94B68D2018C9EFEA15B9FB80BC02E67226E ] C:\Program Files\AVG\AVG2014\avgsysx.dll
12:23:11.0995 0x0728 C:\Program Files\AVG\AVG2014\avgsysx.dll - ok
12:23:11.0995 0x0728 [ D0B89CAE8FF3A0331A5610E0DC056AF0, DFA3C5E4F75E8BE132CC27FEE96241AA3649A6D8EE23BD782070CE1454FB3673 ] C:\Program Files\AVG\AVG2014\avgntopensslx.dll
12:23:11.0995 0x0728 C:\Program Files\AVG\AVG2014\avgntopensslx.dll - ok
12:23:11.0995 0x0728 [ 50ABE682EBE752EAF62B18790D6D491C, E01499C4F81CC49A89590A07CB814D21126CE52DCD3FACADB6D1E243940C69FA ] C:\Windows\System32\drivers\hidclass.sys
12:23:11.0995 0x0728 C:\Windows\System32\drivers\hidclass.sys - ok
12:23:12.0010 0x0728 [ F1B27299F547D452EDAEF01FC187CB91, 574FC8ACB349244122E6D76333E2BB72680639EEF61C0B679F8485023B619263 ] C:\Windows\System32\drivers\hidparse.sys
12:23:12.0010 0x0728 C:\Windows\System32\drivers\hidparse.sys - ok
12:23:12.0010 0x0728 [ 74F805AB12EB0E3E49E469F19FF02640, 23A845F9162ECE37B6CF5B2537562C69705A4192D19438109B5212E111A49004 ] C:\Windows\System32\drivers\usbd.sys
12:23:12.0010 0x0728 C:\Windows\System32\drivers\usbd.sys - ok
12:23:12.0026 0x0728 [ 10C19F8290891AF023EAEC0832E1EB4D, E208553029488A6EE2F5216CC9FE5F93E9931A94C0D0625253BB159E30642853 ] C:\Windows\System32\drivers\hidusb.sys
12:23:12.0026 0x0728 C:\Windows\System32\drivers\hidusb.sys - ok
12:23:12.0026 0x0728 [ 9E3CED91863E6EE98C24794D05E27A71, 90CF59F20E14E4A5A793266805E82BF7AE1F0CF4C7BAB1FD2EEF3B53C5DF770F ] C:\Windows\System32\drivers\kbdhid.sys
12:23:12.0026 0x0728 C:\Windows\System32\drivers\kbdhid.sys - ok
12:23:12.0026 0x0728 [ 2C388D2CD01C9042596CF3C8F3C7B24D, B2FB72272BB01AEDA4047B57C943B7E9BD8A6497854F8CC34672AAA592D0A703 ] C:\Windows\System32\drivers\mouhid.sys
12:23:12.0026 0x0728 C:\Windows\System32\drivers\mouhid.sys - ok
12:23:12.0041 0x0728 [ 89E27DE72848709B1FE00B73034172D4, F3245854521B58514F331DAC792FCA634C7ABA12BAAB47D23E9D797407271EBB ] C:\PROGRA~1\AVG\AVG2014\avgchjwx.dll
12:23:12.0041 0x0728 C:\PROGRA~1\AVG\AVG2014\avgchjwx.dll - ok
12:23:12.0041 0x0728 [ 905EC6E0DA1E429F9ABE9DA7D52DD8E1, 657782F75272C49B83B1AC2AEA4E4BA4A30E757CD134161BB9CB599D39BACDD3 ] C:\PROGRA~1\AVG\AVG2014\avgclitx.dll
12:23:12.0041 0x0728 C:\PROGRA~1\AVG\AVG2014\avgclitx.dll - ok
12:23:12.0041 0x0728 [ 3EED1DAD1369BDE3C468355DD28A37B8, A9650E6105161894199819B119C06FD664B4EDA0DC7176F01D304F45F219BABB ] C:\PROGRA~1\AVG\AVG2014\avgdetallocatorx.dll
12:23:12.0041 0x0728 C:\PROGRA~1\AVG\AVG2014\avgdetallocatorx.dll - ok
12:23:12.0057 0x0728 [ A9679B26FB88E99D38DB445CC2D481C3, BC0BB6CFDF93155746CFC42BF943CA59C1351D54E50B2695D45480A3EE524A93 ] C:\PROGRA~1\AVG\AVG2014\avgcclix.dll
12:23:12.0057 0x0728 C:\PROGRA~1\AVG\AVG2014\avgcclix.dll - ok
12:23:12.0057 0x0728 [ 742FB52AF2320E38C3C3C71542E996EB, 740EFE649BF04106A6B5C3F6B21047D409C7915AD958995A11EBCAA2A751B122 ] C:\Program Files\AVG\AVG2014\avgcsrvx.exe
12:23:12.0057 0x0728 C:\Program Files\AVG\AVG2014\avgcsrvx.exe - ok
12:23:12.0057 0x0728 [ 24F31023E39396A4DA67481FC6118FEC, 979CDF5076DAA0A9676F82658C2AA74E86A488C096DE72392EA8361809ECF834 ] C:\Program Files\AVG\AVG2014\avgcorex.dll
12:23:12.0057 0x0728 C:\Program Files\AVG\AVG2014\avgcorex.dll - ok
12:23:12.0073 0x0728 [ 040FF1F758780E0A0851354B9969C360, D5BA20E488AD3DFB8ADE7D5DE0B0D9ED7D660EA42B46583D1A3B3858007FB4F0 ] C:\Program Files\AVG\AVG2014\avgcertx.dll
12:23:12.0073 0x0728 C:\Program Files\AVG\AVG2014\avgcertx.dll - ok
12:23:12.0073 0x0728 [ 5C1E26049BE95682625506049F64B671, 993646AE9AD73C95CF2F684FE722A327053AC3AEB05D1AC292D343BC57D4D5A7 ] C:\Program Files\AVG\AVG2014\avgchclx.dll
12:23:12.0073 0x0728 C:\Program Files\AVG\AVG2014\avgchclx.dll - ok
12:23:12.0073 0x0728 [ 2F3EDEAB324AB08FCF011C7A62CD6D60, 97829CC9D927638E562BAFBB6982B35C53B258368954ABB0B0789879EEB1B8F7 ] C:\Program Files\AVG\AVG2014\avgcommx.dll
12:23:12.0073 0x0728 C:\Program Files\AVG\AVG2014\avgcommx.dll - ok
12:23:12.0088 0x0728 [ E3EB05A3136FDCD705236159F2DDF04C, DFE12BC9B87554C6830332DD2246F53E07187B5AB6626CABF7727BBD13608422 ] C:\Program Files\AVG\AVG2014\avgntsqlitex.dll
12:23:12.0088 0x0728 C:\Program Files\AVG\AVG2014\avgntsqlitex.dll - ok
12:23:12.0088 0x0728 [ 8CC3C111D653E96F3EA1590891491D71, 1D326D7D116D76876EE2B14A5BFB7B4328E21DB9B5AAAB9CB67F8EFB93924230 ] C:\Windows\System32\shlwapi.dll
12:23:12.0088 0x0728 C:\Windows\System32\shlwapi.dll - ok
12:23:12.0104 0x0728 [ B2E1F7B212502BB49AAD4EFAD37C5CF5, 029ABE764099BF22541F2536EC03A37F5056B7253CFEBAF5B7FBD9C79FFA8F97 ] C:\Windows\System32\iertutil.dll
12:23:12.0104 0x0728 C:\Windows\System32\iertutil.dll - ok
12:23:12.0104 0x0728 [ 070C5B9D3006602A07757179D9B56F5D, 7B24E38ADDEEDD9168D0C87275AC0936D0A4F1195810F9736118076589BC18BA ] C:\Windows\System32\difxapi.dll
12:23:12.0104 0x0728 C:\Windows\System32\difxapi.dll - ok
12:23:12.0104 0x0728 [ 927FA6456AD6D7630F6854828D2FD16B, 65D0387703FA34CE330BD0E2CB3B686540A1DB98153CDF8B7AF85A263AA810CE ] C:\Windows\System32\wininet.dll
12:23:12.0104 0x0728 C:\Windows\System32\wininet.dll - ok
12:23:12.0119 0x0728 [ 0763C5D8660436D4D961F72609E33BBE, 98F2C463B922A1CA0D38EAF780BEA9CDCC1B21E9A7DA0E01333889432A2F3CDD ] C:\Windows\System32\urlmon.dll
12:23:12.0119 0x0728 C:\Windows\System32\urlmon.dll - ok
12:23:12.0119 0x0728 [ C9618BC9B2B0FD7C1138D8774795A79B, 0AC170669C2626519FA7A745C56BFBA6B83B8537488F5B9EB7BA72448E5E7A43 ] C:\Windows\System32\msctf.dll
12:23:12.0119 0x0728 C:\Windows\System32\msctf.dll - ok
12:23:12.0119 0x0728 [ 9DC80A8AAAAAC397BDAB3C67165A824E, 051636BFDFF7AB0E4191354E846BD0DACCA1A01FCC13C1AFED91D8DBFE17127A ] C:\Windows\System32\msvcrt.dll
12:23:12.0119 0x0728 C:\Windows\System32\msvcrt.dll - ok
12:23:12.0135 0x0728 [ D1DE1EAFDE97BE41CF6585027FF3E732, 76F17D4DF440D6734DC8157092D94EB18C2A73A0A49BEEA289E7B3EDE30E86A2 ] C:\Windows\System32\comdlg32.dll
12:23:12.0135 0x0728 C:\Windows\System32\comdlg32.dll - ok
12:23:12.0135 0x0728 [ F632602316001D517F4EF3B53B9A6C33, 1492B82B12AA8B69C5111D5E61997D41AEC9E454BE76E8024B18E28B145E9FFD ] C:\Windows\System32\lpk.dll
12:23:12.0135 0x0728 C:\Windows\System32\lpk.dll - ok
12:23:12.0135 0x0728 [ 9C278785347BCC991F8EA2999D90F58D, EA680C3642A6ABF627415AEE019956FAC702DC6A8F4B4D0FC8A4FB21EADD3896 ] C:\Windows\System32\normaliz.dll
12:23:12.0135 0x0728 C:\Windows\System32\normaliz.dll - ok
12:23:12.0151 0x0728 [ CFC97F07904067A1E5FAE195D534DA3A, EB4D2D127312EB09E2ACCA3276779E80F90FAF77322684BABF72B8EC6E1F906C ] C:\Windows\System32\sechost.dll
12:23:12.0151 0x0728 C:\Windows\System32\sechost.dll - ok
12:23:12.0151 0x0728 [ D67472125471784DE7147946EDA25FEB, F41960118F412B6CA5E80AE5E8DB9AECDD043A7DB34388FF57C6F9C5A0056F91 ] C:\Windows\System32\advapi32.dll
12:23:12.0151 0x0728 C:\Windows\System32\advapi32.dll - ok
12:23:12.0151 0x0728 [ A543AC1F7138376D778D630A35FCBC4C, 2D824C66A97FC8C39DAFA397CC47495B712D175EEF393486946DA8936BDD466A ] C:\Windows\System32\psapi.dll
12:23:12.0151 0x0728 C:\Windows\System32\psapi.dll - ok
12:23:12.0166 0x0728 [ E02781D4871844DCD30DF1D69A650F78, DC77302F06CD6CF7FC2C3B0F433A4AE41DF869B9F342C0656CCD8A125B3D3318 ] C:\Windows\System32\shell32.dll
12:23:12.0166 0x0728 C:\Windows\System32\shell32.dll - ok
12:23:12.0166 0x0728 [ A8BB45F9ECAD993461E0FEF8E2A99152, ACB756EA54E71F124D928829666B5B439785593877FF7C0C76ADCF954F4E6C94 ] C:\Windows\System32\Wldap32.dll
12:23:12.0166 0x0728 C:\Windows\System32\Wldap32.dll - ok
12:23:12.0182 0x0728 [ F1DD3ACAEE5E6B4BBC69BC6DF75CEF66, 6CCAD926934EACBE92FDFA1AE46DA6101D78A0B44AE38594E3A88FEBB35D230F ] C:\Windows\System32\user32.dll
12:23:12.0182 0x0728 C:\Windows\System32\user32.dll - ok
12:23:12.0182 0x0728 [ 928CF7268086631F54C3D8E17238C6DD, F058FAFB04E7EBD5CADE9B48195B7AA7C3508F332A89F5E6E5F3F071E8CADD4A ] C:\Windows\System32\ole32.dll
12:23:12.0182 0x0728 C:\Windows\System32\ole32.dll - ok
12:23:12.0182 0x0728 [ 10FB16B50AFFDA6D44588F3C445DC273, 6CDA17DA9B44D11E69F7C6682FA633EA75731623BB21B429A0FE2086ED4495A7 ] C:\Windows\System32\setupapi.dll
12:23:12.0182 0x0728 C:\Windows\System32\setupapi.dll - ok
12:23:12.0197 0x0728 [ B7230010D97787AF3D25E4C82F2B06B9, C795E9811CD461F8E98D1738667EB0C265A57065EA3420CE596D5038E7430C1E ] C:\Windows\System32\usp10.dll
12:23:12.0197 0x0728 C:\Windows\System32\usp10.dll - ok
12:23:12.0197 0x0728 [ FF5688D309347F2720911D8796912834, 3B0D73C50D40A6F42629B7750F99F656BF5C1C50237D5F98B6C0F2CE5E2DA359 ] C:\Windows\System32\clbcatq.dll
12:23:12.0197 0x0728 C:\Windows\System32\clbcatq.dll - ok
12:23:12.0197 0x0728 [ 6377051C63D5552A311935C67E9FDFDC, 3FB82988AAB66813567E8DB951D4EE87F156201070F005FDBF52EF998A323E65 ] C:\Windows\System32\nsi.dll
12:23:12.0197 0x0728 C:\Windows\System32\nsi.dll - ok
12:23:12.0213 0x0728 [ 6C765E82B57F2E66CE9C54AC238471D9, 97F410023F5C08B4BC5DBF89A642200E76F4025ADD9707C24FD89D673675BB43 ] C:\Windows\System32\oleaut32.dll
12:23:12.0213 0x0728 C:\Windows\System32\oleaut32.dll - ok
12:23:12.0213 0x0728 [ 7FF15A4F092CD4A96055BA69F903E3E9, 1B594E6D057C632ABB3A8CF838157369024BD6B9F515CA8E774B22FE71A11627 ] C:\Windows\System32\ws2_32.dll
12:23:12.0213 0x0728 C:\Windows\System32\ws2_32.dll - ok
12:23:12.0213 0x0728 [ 5A775CAE7CCCAC581C05B8D2C92C0DF1, 0BD75912F3BDCF79B6C3CCEBCF3242725A17F73D6F6772C2C145F8157628B2E9 ] C:\Windows\System32\gdi32.dll
12:23:12.0213 0x0728 C:\Windows\System32\gdi32.dll - ok
12:23:12.0229 0x0728 [ 4A8E2F20809CC161107FAA94F6CF2685, 561DCE9E49696288A9EE802C0BEF424EB34A1C29B6D8931CCD5C7E26CB4F88EA ] C:\Windows\System32\imm32.dll
12:23:12.0229 0x0728 C:\Windows\System32\imm32.dll - ok
12:23:12.0229 0x0728 [ 6933E2AFF444A7A95D5C67E98449163E, 4E745B89D319FF997F7DFD288E9D02143CEF5474D2B8814803504A6570A146DE ] C:\Windows\System32\kernel32.dll
12:23:12.0229 0x0728 C:\Windows\System32\kernel32.dll - ok
12:23:12.0229 0x0728 [ E7B9D5FF20FFDD4AAE2EF1D1B8C27A37, 689D126B1B42140D5049015E3E324268E6542D4BC6CC14E31D8B89A25B94BAA5 ] C:\Windows\System32\imagehlp.dll
12:23:12.0229 0x0728 C:\Windows\System32\imagehlp.dll - ok
12:23:12.0244 0x0728 [ 3FFAEA12666E565FF51BF2FCA674F543, 95BA8DBDA495C170E075F48627D7DD89C6B29BE0CE0D0D8316B0236692675060 ] C:\Windows\System32\cfgmgr32.dll
12:23:12.0244 0x0728 C:\Windows\System32\cfgmgr32.dll - ok
12:23:12.0244 0x0728 [ CC09E0C9A2D89C6E71D093DC8BD121B7, 5F92457E27D817541EBA92FED984D2E6C1E35AD4E4E4CAE0F0778B795C260FAA ] C:\Windows\System32\crypt32.dll
12:23:12.0244 0x0728 C:\Windows\System32\crypt32.dll - ok
12:23:12.0244 0x0728 [ 5A043BDA3BFADD5B4C16F3BDE5EC4312, 70E4D7EB03AE69D51EFCFBF227D3C06CD378806B1D0FB6993D6022379FC0B9F9 ] C:\Windows\System32\rpcrt4.dll
12:23:12.0244 0x0728 C:\Windows\System32\rpcrt4.dll - ok
12:23:12.0260 0x0728 [ 68EAAEDF0365168B804E8728368FA946, 1FA25087E8B247B099B729F780DBF24F77FD34F58186A1C94329261CF3D18B8E ] C:\Windows\System32\wintrust.dll
12:23:12.0260 0x0728 C:\Windows\System32\wintrust.dll - ok
12:23:12.0260 0x0728 [ 6A13B4F3B3F575F1E24B877B9359AABA, 676AD5F8F709D4A9DCE9938D82DEEE329C9A385A6969C169B3DF37AA75F1E4C7 ] C:\Windows\System32\api-ms-win-downlevel-advapi32-l1-1-0.dll
12:23:12.0260 0x0728 C:\Windows\System32\api-ms-win-downlevel-advapi32-l1-1-0.dll - ok
12:23:12.0275 0x0728 [ 3BE0D923AA45A4DBE091C2D84F0B4FE7, 603EEC55D6F646150FC3F0F2C939CFE434C02FC7A7AB23B1FEC8B5C77E4C8381 ] C:\Windows\System32\api-ms-win-downlevel-version-l1-1-0.dll
12:23:12.0275 0x0728 C:\Windows\System32\api-ms-win-downlevel-version-l1-1-0.dll - ok
12:23:12.0275 0x0728 [ 2E33DFD10F28F86C3FC40EE123CC3904, 57C65671A04EFCA437A69E8E97B2FCA17897EE4608C7DB69F77D44FBD3490B50 ] C:\Windows\System32\api-ms-win-downlevel-normaliz-l1-1-0.dll
12:23:12.0275 0x0728 C:\Windows\System32\api-ms-win-downlevel-normaliz-l1-1-0.dll - ok
12:23:12.0275 0x0728 [ 1C60E09CA1C3A045BC4D367F67C915B7, DF1ED88CB57DA1AB1A4245AE0D5B42AFA3396EBF67B99411FFFB0DD06DE1AEAF ] C:\Windows\System32\api-ms-win-downlevel-ole32-l1-1-0.dll
12:23:12.0275 0x0728 C:\Windows\System32\api-ms-win-downlevel-ole32-l1-1-0.dll - ok
12:23:12.0291 0x0728 [ 6951562DC4625EEFC6EACD52AD165866, 44A0B3EA0232D613A5B4115492DF2A7CEF25B35300E6A3E3E50C9544C5D1049E ] C:\Windows\System32\api-ms-win-downlevel-shlwapi-l1-1-0.dll
12:23:12.0291 0x0728 C:\Windows\System32\api-ms-win-downlevel-shlwapi-l1-1-0.dll - ok
12:23:12.0291 0x0728 [ 589CBC4989F750E1DA35625AB481CF43, B93E1B8C3775F9C995FD5451C685A06DEFD24AE1DF0DD99D19D5E4B9AC0010F9 ] C:\Windows\System32\api-ms-win-downlevel-user32-l1-1-0.dll
12:23:12.0291 0x0728 C:\Windows\System32\api-ms-win-downlevel-user32-l1-1-0.dll - ok
12:23:12.0291 0x0728 [ 75F5E1FE8D55CF8E577E0EC5F2290D3F, F4E2C81F0834018052A481AE8D7DF4780302A6844160CCDC09F7D82D3B992BDE ] C:\Windows\System32\comctl32.dll
12:23:12.0291 0x0728 C:\Windows\System32\comctl32.dll - ok
12:23:12.0307 0x0728 [ CC4ED8BEA78B0DCA6F217E014C3291A7, 01104182E4E6FB3CF6397936D30B2CE3486967586D1B94187B59A8232DAE39FF ] C:\Windows\System32\devobj.dll
12:23:12.0307 0x0728 C:\Windows\System32\devobj.dll - ok
12:23:12.0307 0x0728 [ 1E65CF7B26D02750544EFDD73C8118FA, EAE54B09FCA7D9A7F26BF3CC30ECDF0E58555F21DEA1A6A3F1D58554DBE86598 ] C:\Windows\System32\KernelBase.dll
12:23:12.0307 0x0728 C:\Windows\System32\KernelBase.dll - ok
12:23:12.0322 0x0728 [ 938F39B50BAFE13D6F58C7790682C010, 902000EE51EFEABAF6A4B30F880AA37083D2232C6FC622CA513C4A823390FEDA ] C:\Windows\System32\msasn1.dll
12:23:12.0322 0x0728 C:\Windows\System32\msasn1.dll - ok
12:23:12.0322 0x0728 [ 5FCD3320AAE71506B43F9E12E4E72172, 067531833F90241A181EF082D85CFF74336D68DAB0AADE4393C1F35CD662DAAE ] C:\Windows\System32\drivers\dxapi.sys
12:23:12.0322 0x0728 C:\Windows\System32\drivers\dxapi.sys - ok
12:23:12.0322 0x0728 [ 1E882889A4314D6DF5DED4F6EC994E72, 4D8736BC20540A24D073D629ED8B1F089F4994195F737342C763DD5D532B2F74 ] C:\Windows\System32\win32k.sys
12:23:12.0322 0x0728 C:\Windows\System32\win32k.sys - ok
12:23:12.0338 0x0728 [ DAB748AE0439955ED2FA22357533DDDB, 73EDD402C7479DDCE1998D0C7E99E1EC2974F64EFC33A851439CC85D09EDCDF9 ] C:\Windows\System32\basesrv.dll
12:23:12.0338 0x0728 C:\Windows\System32\basesrv.dll - ok
12:23:12.0338 0x0728 [ 23AB7E36551C6BA5370EF7F05142F0EB, F190F2DCB416D109DFCA167628824CE053774FB708AA494450AD6313EF6BE654 ] C:\Windows\System32\csrsrv.dll
12:23:12.0338 0x0728 C:\Windows\System32\csrsrv.dll - ok
12:23:12.0338 0x0728 [ 342271F6142E7C70805B8A81E1BA5F5C, F9112B88FEC5EF10A7AEDF88DCEE61956D1FCDE7CB42197216E8265578713786 ] C:\Windows\System32\csrss.exe
12:23:12.0338 0x0728 C:\Windows\System32\csrss.exe - ok
12:23:12.0353 0x0728 [ 51BB04243DF6196C06E125898127E397, E1B6C83FC6E455F6806185027C5B56F8BA9ECDF1CD69E97301EC0291F0D3466E ] C:\Windows\System32\winsrv.dll
12:23:12.0353 0x0728 C:\Windows\System32\winsrv.dll - ok
12:23:12.0353 0x0728 [ 79D10964DE86B292320E9DFE02282A23, 52714827B7EEDACA55326A4E4F6158D4942DFAA3BACDE303A2F569BF3F4FAA72 ] C:\Windows\System32\drivers\monitor.sys
12:23:12.0353 0x0728 C:\Windows\System32\drivers\monitor.sys - ok
12:23:12.0353 0x0728 [ 7C76B61A5E1EF5D1FA554CF134100F18, 2B07C27A2C9A5D939CE9255C67E87B4EF8BFD3B011A592CC0E6994E660483648 ] C:\Windows\System32\tsddd.dll
12:23:12.0353 0x0728 C:\Windows\System32\tsddd.dll - ok
12:23:12.0369 0x0728 [ C733D233B623B7FFCE5031E4B756EE26, 33CC8B140B0E4A9B702E3468BE2646AEE4273F20C6EA5BAC6C3D8FC8EDEF0881 ] C:\Windows\System32\profapi.dll
12:23:12.0369 0x0728 C:\Windows\System32\profapi.dll - ok
12:23:12.0369 0x0728 [ 364455805E64882844EE9ACB72522830, 906561DBBB33F744844CF27E456226044C85DF0FCFD26DE1FD11E09E2CFA6F8F ] C:\Windows\System32\sxssrv.dll
12:23:12.0369 0x0728 C:\Windows\System32\sxssrv.dll - ok
12:23:12.0385 0x0728 [ B5C5DCAD3899512020D135600129D665, F6B4D18FA0D3C4958711AC0D476C21A6FDF2897F989A0AD290B43F463DD8B5B0 ] C:\Windows\System32\wininit.exe
12:23:12.0385 0x0728 C:\Windows\System32\wininit.exe - ok
12:23:12.0385 0x0728 [ AB0DDD50695906570E81F21D3481D4A9, A3C9298FE8BEA2AC6122386AE5C201AFC912175D34DE983D2682B5A8F6F72DC9 ] C:\Windows\System32\KBDUK.DLL
12:23:12.0385 0x0728 C:\Windows\System32\KBDUK.DLL - ok
12:23:12.0385 0x0728 [ 5997D769CDB108390DCFAEBF442BF816, 0E25CA984C0EEB629184423FAA9BC6D4356DF9A93F281E06DC83B4AC638AEC4A ] C:\Windows\System32\RpcRtRemote.dll
12:23:12.0385 0x0728 C:\Windows\System32\RpcRtRemote.dll - ok
12:23:12.0400 0x0728 [ CAEF9CD6C10B1017E2C298D849CD31DB, 62C6638D34CC554D952A09CDBABF29AA1487EED90578C48E3D01C519A4CC6FB8 ] C:\Windows\System32\cdd.dll
12:23:12.0400 0x0728 C:\Windows\System32\cdd.dll - ok
12:23:12.0400 0x0728 [ 919001D2BB17DF06CA3F8AC16AD039F6, 5169ACFBE9E9D4C4012773ECDD28231C952675EF0C272A40F226E7B5D671B18B ] C:\Windows\System32\sxs.dll
12:23:12.0400 0x0728 C:\Windows\System32\sxs.dll - ok
12:23:12.0400 0x0728 [ 633C2C060CF857099F6C4F8D75C952B1, 95E14B5212301900BC9DDB6B42735B114D364188E9B312C786511258106398C8 ] C:\Windows\System32\WlS0WndH.dll
12:23:12.0400 0x0728 C:\Windows\System32\WlS0WndH.dll - ok
12:23:12.0416 0x0728 [ F08F6FCD09F9BE94C37ACC1B344685FF, DE48D766258B46EFEAB16579421C4BD97ACC6883F782D00E9857F4A0CE7E8A34 ] C:\Windows\System32\cryptbase.dll
12:23:12.0416 0x0728 C:\Windows\System32\cryptbase.dll - ok
12:23:12.0416 0x0728 [ 6D13E1406F50C66E2A95D97F22C47560, BE40E84A824CB201F9C54DB4F860F3937630FDA3423940D44FCF4AC5DFF44271 ] C:\Windows\System32\winlogon.exe
12:23:12.0416 0x0728 C:\Windows\System32\winlogon.exe - ok
12:23:12.0416 0x0728 [ 418E881201583A3039D81F43E39E6C78, C96AAC161E09BE12815A4E931E65F66DB1A456C03253EF1111AE66F44B1515FF ] C:\Windows\System32\winsta.dll
12:23:12.0416 0x0728 C:\Windows\System32\winsta.dll - ok
12:23:12.0431 0x0728 [ 863F793D15B4026B1A5FDECA873D4D84, AF7ABD95BB5467551562F129F03C7AC9D52A021F7E547609F40A80E66932C942 ] C:\Windows\System32\apphelp.dll
12:23:12.0431 0x0728 C:\Windows\System32\apphelp.dll - ok
12:23:12.0431 0x0728 [ 803B370865D907EA21DC0C2B6A8936B5, E98F0BA1D94786E061A3EA2CC76041FF6BE0ADF47C6205D5572C03BF0E29CA78 ] C:\Windows\System32\lsass.exe
12:23:12.0431 0x0728 C:\Windows\System32\lsass.exe - ok
12:23:12.0447 0x0728 [ 8AEA9A37C1A3565A204D37C5E72AB791, 939903F93FF37525A6C4B5CBA29CDEEE6D6055C42D605E80AE787F2A76F9870E ] C:\Windows\System32\lsm.exe
12:23:12.0447 0x0728 C:\Windows\System32\lsm.exe - ok
12:23:12.0447 0x0728 [ 5F1B6A9C35D3D5CA72D6D6FDEF9747D6, D7BC4ED605B32274B45328FD9914FB0E7B90D869A38F0E6F94FB1BF4E9E2B407 ] C:\Windows\System32\services.exe
12:23:12.0447 0x0728 C:\Windows\System32\services.exe - ok
12:23:12.0447 0x0728 [ BD6B9BC84D004C6BEE89CF7BDB95E1FC, 142BCB6F616A34679FDFB5285E0C8CED110501518BA4B4E2DF3B4F691E28DE72 ] C:\Windows\System32\sspicli.dll
12:23:12.0447 0x0728 C:\Windows\System32\sspicli.dll - ok
12:23:12.0463 0x0728 [ D89077E2E1C88A29C57F21FAD28DAC45, 39B760D9976B9FF61046303B9FA29C2A0483D1CCC9617822810F46F288710627 ] C:\Windows\System32\sspisrv.dll
12:23:12.0463 0x0728 C:\Windows\System32\sspisrv.dll - ok
12:23:12.0463 0x0728 [ BA51FFE170C5B3AE8EC4F5BD2581A29E, CF734875C91B6C547A5F0BA68FB10ECDFD5FF24166A0D69309C27DC712C22F4B ] C:\Windows\System32\sysntfy.dll
12:23:12.0463 0x0728 C:\Windows\System32\sysntfy.dll - ok
12:23:12.0463 0x0728 [ D412B1B72C5AB020218E9A047D90CA05, A9CF8134DB968D259DF4DCC736159841BCB8DF309BEED4FB44F99033B8D31B39 ] C:\Windows\System32\wmsgapi.dll
12:23:12.0463 0x0728 C:\Windows\System32\wmsgapi.dll - ok
12:23:12.0478 0x0728 [ EF6950D7B24AAF4E477065F5455DD4F8, D02D02528EB103808BAD71FBE0271D5D3C101A53ACFB0B2B3835CFE6C7A2BE03 ] C:\Windows\System32\lsasrv.dll
12:23:12.0478 0x0728 C:\Windows\System32\lsasrv.dll - ok
12:23:12.0478 0x0728 [ 3369D021265E369D57317D61FA86DD79, 25A3BE3619324578C5B7CCB4585D89131DC60A969D35F9573FF20CCD67809BA3 ] C:\Windows\System32\scext.dll
12:23:12.0478 0x0728 C:\Windows\System32\scext.dll - ok
12:23:12.0478 0x0728 [ 372948BB5E41CE42341C4398DE572E56, A12A3CB0C04FD02A17E202FEE79EA1B4009DAE4B5DB8B9B9D4919D1FFB270CF3 ] C:\Windows\System32\secur32.dll
12:23:12.0478 0x0728 C:\Windows\System32\secur32.dll - ok
12:23:12.0494 0x0728 [ 245F4691314F42D4D1BC06442F0B2086, 281DD81E06547BEB0DDB1FBB68B149961F1DEE268C9E9648DE662900ECB40FE0 ] C:\Windows\System32\samsrv.dll
12:23:12.0494 0x0728 C:\Windows\System32\samsrv.dll - ok
12:23:12.0494 0x0728 [ 250AA41DE690561AF1282D598914564C, 0F16F50EC74CAC8879F8D88AF4FB656E06D19819E96BC3D71BCDDBF400C78F60 ] C:\Windows\System32\scesrv.dll
12:23:12.0494 0x0728 C:\Windows\System32\scesrv.dll - ok
12:23:12.0494 0x0728 [ 5CCDCD40E732D54E0F7451AC66AC1C87, 66F4DA105BD72E41250CD59E2B3CD931B47AC9FDB6C784B9E33C5EE1AC29841F ] C:\Windows\System32\srvcli.dll
12:23:12.0494 0x0728 C:\Windows\System32\srvcli.dll - ok
12:23:12.0509 0x0728 [ 1128637CAD49A8E3C8B5FA5D0A061525, 6B80E50D8296F9E2C978CC6BC002B964ACFD8F4BCF623F4770513792845B5278 ] C:\Windows\System32\cryptdll.dll
12:23:12.0509 0x0728 C:\Windows\System32\cryptdll.dll - ok
12:23:12.0509 0x0728 [ 82C089EA2A3EEFADF3588EA71E8BDADA, 2F3BB32EE2C0673058A74DEEB2D405E5E79F833F33C4D289A93EB3C618A86E75 ] C:\Windows\System32\wevtapi.dll
12:23:12.0509 0x0728 C:\Windows\System32\wevtapi.dll - ok
12:23:12.0509 0x0728 [ FB4EB9352B7D698E6B3C2AA2ED724DAD, 534AB280ACD29E88FD1BD8838E1231D9364E649C917547A838F51EC8AB941EE2 ] C:\Windows\System32\authz.dll
12:23:12.0509 0x0728 C:\Windows\System32\authz.dll - ok
12:23:12.0525 0x0728 [ FC7650224790CAE75A5E9231961FDEC5, D634FC1F43AAC41D8B440BD4C1E7576886CDE683EDE4CAF06C43163B5E176CBB ] C:\Windows\System32\bcrypt.dll
12:23:12.0525 0x0728 C:\Windows\System32\bcrypt.dll - ok
12:23:12.0525 0x0728 [ 50BA656134F78AF64E4DD3C8B6FEFD7E, F7AB96E0C9658B0444FD473E87165199FA90AE5CE434B40FBA1DB324925DF886 ] C:\Windows\System32\cngaudit.dll
12:23:12.0525 0x0728 C:\Windows\System32\cngaudit.dll - ok
12:23:12.0525 0x0728 [ AD7FB087A238883D1618F29F7BBBD584, D9541CA4D2AADFEEEC195863133B16C2EC94CA63F842F5646F7834F2D0E85FF3 ] C:\Windows\System32\ncrypt.dll
12:23:12.0525 0x0728 C:\Windows\System32\ncrypt.dll - ok
12:23:12.0541 0x0728 [ C90878913DF3DC504790282043DB5F4C, 5DC30020A523B5B219A219D74208A1249A43510D70723985817A021249D97036 ] C:\Windows\System32\msprivs.dll
12:23:12.0541 0x0728 C:\Windows\System32\msprivs.dll - ok
12:23:12.0541 0x0728 [ 6DCFAEC6D1334AA6CDF8961DB4633CBF, DA7A26935691379DA0DBA829DEDE82401BCA7D35E28BFBFE3F9CE38AFF344737 ] C:\Windows\System32\negoexts.dll
12:23:12.0541 0x0728 C:\Windows\System32\negoexts.dll - ok
12:23:12.0556 0x0728 [ E343CABBD8D600ABAF3F11625D33B3D0, AA73D0F205749C291BF5EF179BDF3BF30977E36C87F4FF5361942EE024E848F9 ] C:\Windows\System32\netjoin.dll
12:23:12.0556 0x0728 C:\Windows\System32\netjoin.dll - ok
12:23:12.0556 0x0728 [ 7321F18D1F820612ED0E9F2D4B578A7E, 612BD7DE1DFBD100BD6ACB37A38565D88C39842D990D296B9B8E1FB75C3A94E7 ] C:\Windows\System32\cryptsp.dll
12:23:12.0556 0x0728 C:\Windows\System32\cryptsp.dll - ok
12:23:12.0556 0x0728 [ BDA0B954A30498B5A7EDC6204CBA07ED, B14AC33E649F02AEC7ED9237DF6EB1801506C3066B0DACC8EBC4660D408AF614 ] C:\Windows\System32\kerberos.dll
12:23:12.0556 0x0728 C:\Windows\System32\kerberos.dll - ok
12:23:12.0572 0x0728 [ 4C1E16B9A53102C8D6FBA587CBCB95DE, F982ABB2353E45E3E09B30EA99EFDC2A905AD75B43CDB0A34DB33D91AADDAB17 ] C:\Windows\System32\msv1_0.dll
12:23:12.0572 0x0728 C:\Windows\System32\msv1_0.dll - ok
12:23:12.0572 0x0728 [ E94C583CDE2348950155F2AF2876F34D, D00C7E0D665E467B712C68A446CC5BE14FDA743A2301878B3CEB72CDD0A8B8E7 ] C:\Windows\System32\mswsock.dll
12:23:12.0572 0x0728 C:\Windows\System32\mswsock.dll - ok
12:23:12.0572 0x0728 [ 73E8667A19FEEDD856DF2695E9E511D4, 68D66C36D1F293D10ADCC6A33C870F989A29743537592CF172F02E794BEAFD1C ] C:\Windows\System32\wship6.dll
12:23:12.0572 0x0728 C:\Windows\System32\wship6.dll - ok
12:23:12.0587 0x0728 [ C1809B9907ADEDAF16F50C894100883B, 464CF897CB376DCDC9A584A2A470B5B82D99C595DC55930778B162E605CDFBA8 ] C:\Windows\System32\netlogon.dll
12:23:12.0587 0x0728 C:\Windows\System32\netlogon.dll - ok
12:23:12.0587 0x0728 [ B40420876B9288E0A1C8CCA8A84E5DC9, 0D3C73B45BC708D7B1E26DFB6D4F64031A998548FEA0FB5CE198ED716F7DC9A0 ] C:\Windows\System32\dnsapi.dll
12:23:12.0587 0x0728 C:\Windows\System32\dnsapi.dll - ok
12:23:12.0587 0x0728 [ 8EA53101FF2B15BDFF934B62A8FB326D, E28536A4AC6764C2480EF047AF2312AE2600819899C3E33B486CFE19F25AC464 ] C:\Windows\System32\logoncli.dll
12:23:12.0587 0x0728 C:\Windows\System32\logoncli.dll - ok
12:23:12.0603 0x0728 [ AA6F6457116B559B76BC6A012CB4C293, 87888451759EECCEA178BDB23AE48EEA534202AC40ED0DD83474ED7CE557C9F1 ] C:\Windows\System32\schannel.dll
12:23:12.0603 0x0728 C:\Windows\System32\schannel.dll - ok
12:23:12.0603 0x0728 [ 0450CF487ECD8A67B56F59F9A96D024D, 7B19CD3B3A98384844E3F4D04C505B8D17B2D5AABE184E265E85A17D0DDBC25B ] C:\Windows\System32\wdigest.dll
12:23:12.0603 0x0728 C:\Windows\System32\wdigest.dll - ok
12:23:12.0619 0x0728 [ 37CC990D4E2CDFAE12AC47F6B620FC13, D07E6EF4EED10ACA21A41A739147E54CC435EAF952CD0CA1F2E3CB2D83CEC831 ] C:\Windows\System32\pku2u.dll
12:23:12.0619 0x0728 C:\Windows\System32\pku2u.dll - ok
12:23:12.0619 0x0728 [ ED8EC63F7522DF4852147C84EC62C36A, 75633011CD28DCBD4834211A9D415F17DE15BFCD80FB9FF6CE25CBBD4E9899AF ] C:\Windows\System32\rsaenh.dll
12:23:12.0619 0x0728 C:\Windows\System32\rsaenh.dll - ok
12:23:12.0619 0x0728 [ D29E45078CF4020CE0AAC82EC652D1EA, 3CB552744C9D02A488ABCF171E29872156BA6B57C73EC45D708C72D541BE8365 ] C:\Windows\System32\TSpkg.dll
12:23:12.0619 0x0728 C:\Windows\System32\TSpkg.dll - ok
12:23:12.0634 0x0728 [ E8449FE262D7406BCB2AC2A45C53EC5F, 6C118C9FB26404D1943824CF3990F36E12986547FFACB7CC0DF975A913065D78 ] C:\Windows\System32\bcryptprimitives.dll
12:23:12.0634 0x0728 C:\Windows\System32\bcryptprimitives.dll - ok
12:23:12.0634 0x0728 [ 4E5FE39C1076D115EC8BFCFE14D75B80, F1D02BCA6F664DCDD0CCDE269D31787C7553CD38C7208A8DD8B80B9EA09FEB1C ] C:\Windows\System32\credssp.dll
12:23:12.0634 0x0728 C:\Windows\System32\credssp.dll - ok
12:23:12.0634 0x0728 [ 9CE253214ACAA5A7D323327D2055EFAA, 15E7DB578EDF36DD2FD5BA960C3941B2353037323B6B96702CDCDC07588EA724 ] C:\Windows\System32\drivers\TsUsbFlt.sys
12:23:12.0634 0x0728 C:\Windows\System32\drivers\TsUsbFlt.sys - ok
12:23:12.0650 0x0728 [ 91F434FF6606ED9BDC6A05D651B69553, F2CF43DDDE2241E8A25F710A516371E0C56D99195022D9715A98379C753929B3 ] C:\Windows\System32\efslsaext.dll
12:23:12.0650 0x0728 C:\Windows\System32\efslsaext.dll - ok
12:23:12.0650 0x0728 [ 7222995615BF93B628DCEA4BD6CCACF7, 306A3220868AC38AC796027F0D75052B596F55B9CAE87A9B8863515995BFC2F2 ] C:\Windows\System32\ubpm.dll
12:23:12.0650 0x0728 C:\Windows\System32\ubpm.dll - ok
12:23:12.0650 0x0728 [ 8124944EC89D6A1815E4E53F5B96AAF4, A6766BD0F62A381C9899F66E5C32731BD91600363F4CFBE560BC8AA2B111C790 ] C:\Windows\System32\scecli.dll
12:23:12.0650 0x0728 C:\Windows\System32\scecli.dll - ok
12:23:12.0665 0x0728 [ 4BDBBE5E4208022DD794F7EEEB0F7366, 4F69BA2EDABFA63A300B9F1880349EFAE185B899DD5C561E7B3BA6AAA4B22D6A ] C:\Windows\System32\SPInf.dll
12:23:12.0665 0x0728 C:\Windows\System32\SPInf.dll - ok
12:23:12.0665 0x0728 [ 54A47F6B5E09A77E61649109C6A08866, 121118A0F5E0E8C933EFD28C9901E54E42792619A8A3A6D11E1F0025A7324BC2 ] C:\Windows\System32\svchost.exe
12:23:12.0665 0x0728 C:\Windows\System32\svchost.exe - ok
12:23:12.0665 0x0728 [ EC7BC28D207DA09E79B3E9FAF8B232CA, A42F8F69C3CD753D787A5D558659DEA2CC306C896D75B8C82549219CF654504F ] C:\Windows\System32\umpnpmgr.dll
12:23:12.0665 0x0728 C:\Windows\System32\umpnpmgr.dll - ok
12:23:12.0681 0x0728 [ FD07F21E0A19C27ED4E1EEC2B07452B3, DF54C00B021AF64BB04EDEBCA6F41CCF48F1959DD53ADE545FAFC565F1243392 ] C:\Windows\System32\devrtl.dll
12:23:12.0681 0x0728 C:\Windows\System32\devrtl.dll - ok
12:23:12.0681 0x0728 [ 1097F3035BAF46CED8B332B3564C5108, C69781683CA963A1335780DABBBC60E2C3CEF0888738D3425D358D12E8D0AF58 ] C:\Windows\System32\gpapi.dll
12:23:12.0681 0x0728 C:\Windows\System32\gpapi.dll - ok
12:23:12.0697 0x0728 [ D15618A0FF8DBC2C5BF3726BACC75A0B, ADD81EA1D208907D67802F0E96EC0327BA89021F870BA22B9C7E3A19013A6AE7 ] C:\Windows\System32\userenv.dll
12:23:12.0697 0x0728 C:\Windows\System32\userenv.dll - ok
12:23:12.0697 0x0728 [ F87D30E72E03D579A5199CCB3831D6EA, B09328E89954584F97908FA5946376BA990B8C650DABCBF3CA3B08719937C694 ] C:\Windows\System32\umpo.dll
12:23:12.0697 0x0728 C:\Windows\System32\umpo.dll - ok
12:23:12.0697 0x0728 [ 5893EBDCE371174AC89ECD7731DD6D77, 31CC55F4724CFD95E48954B38C0A04D674399FD243083A816893ED5E5A770086 ] C:\Windows\System32\pcwum.dll
12:23:12.0697 0x0728 C:\Windows\System32\pcwum.dll - ok
12:23:12.0712 0x0728 [ 08DFDBD2FD4EA951DC46B1C7661ED35A, D926530C659DDAF80770663F46F1EFD94FFB4AAB475C4E3367CB531AF4A734E1 ] C:\Windows\System32\powrprof.dll
12:23:12.0712 0x0728 C:\Windows\System32\powrprof.dll - ok
12:23:12.0712 0x0728 [ 6703E366CC18D3B6E534F5CF7DF39CEE, 7396B9AF938284D99EC51206A7B2FA4A0DC10A493DCE6707818B03A7473782C4 ] C:\Windows\System32\drivers\luafv.sys
12:23:12.0712 0x0728 C:\Windows\System32\drivers\luafv.sys - ok
12:23:12.0712 0x0728 [ 7660F01D3B38ACA1747E397D21D790AF, 04611B43705C064C2A8331F6D3F8E4530295694AE2C3E3EC3F62CFF4A5EFA88D ] C:\Windows\System32\rpcss.dll
12:23:12.0712 0x0728 C:\Windows\System32\rpcss.dll - ok
12:23:12.0728 0x0728 [ 78D072F35BC45D9E4E1B61895C152234, 80C924EE1156B4E3172E83DCB9C60817E87885FB9377647E0BF90153E415B1CA ] C:\Windows\System32\RpcEpMap.dll
12:23:12.0728 0x0728 C:\Windows\System32\RpcEpMap.dll - ok
12:23:12.0728 0x0728 [ 81F08948A0F1475894C99D4D19A158A8, 93334DA369BF976E498265E432CAF63D898D378C6B32947DF355366ABE2A0FAC ] C:\Windows\System32\wshqos.dll
12:23:12.0728 0x0728 C:\Windows\System32\wshqos.dll - ok
12:23:12.0728 0x0728 [ EE5C8E27C37B79CB54A2FCEEED2DC262, 0A5E200FD65A491756B951A4A0ED39B88B7B313E97C2BBF3C91AC4C290772BB7 ] C:\Windows\System32\WSHTCPIP.DLL
12:23:12.0728 0x0728 C:\Windows\System32\WSHTCPIP.DLL - ok
12:23:12.0743 0x0728 [ 3F50200237961034FACE602373838980, F97D72CC75D921CF8F8E0544614407358AEFF97A8F48E4A89F82689EE8F2FC86 ] C:\Windows\System32\FirewallAPI.dll
12:23:12.0743 0x0728 C:\Windows\System32\FirewallAPI.dll - ok
12:23:12.0743 0x0728 [ 702254574E7E52052DE39408457B7149, 645CA9E88DA21C63710A04A0F54421018DF415A3D612112C71A255C49325C082 ] C:\Windows\System32\version.dll
12:23:12.0743 0x0728 C:\Windows\System32\version.dll - ok
12:23:12.0743 0x0728 [ 3EF0D8AB08385AAB5802E773511A2E6A, 1A7EE4BC646767004372EAEA9BC0A2071790E739101F7D25ECD9C95D3F29AFD6 ] C:\Windows\System32\LogonUI.exe
12:23:12.0743 0x0728 C:\Windows\System32\LogonUI.exe - ok
12:23:12.0759 0x0728 [ 241E015DD809CFB23242F890B1FC575B, 763381DCBACF06FD8D043B14D383B6F4D5295B8E665796C59603F15F3E3E36FC ] C:\Windows\System32\wevtsvc.dll
12:23:12.0759 0x0728 C:\Windows\System32\wevtsvc.dll - ok
12:23:12.0759 0x0728 [ EE7CB55F77465CDAC4C80F587FF7C278, 9DB3FC61275BA78A0A4E66440024341F0C6863659937A78E6224D3C42D7E57E7 ] C:\Windows\System32\authui.dll
12:23:12.0759 0x0728 C:\Windows\System32\authui.dll - ok
12:23:12.0759 0x0728 [ 28CA821606669BB9215CE010767720FA, C8A1F0D6704F8F37CF8AADDFAD511FF27E56E8BCFFD4AC948DFA0329DB1F3A1E ] C:\Windows\System32\cryptui.dll
12:23:12.0759 0x0728 C:\Windows\System32\cryptui.dll - ok
12:23:12.0775 0x0728 [ 352B3DC62A0D259A82A052238425C872, 393B24E0D6007C74AEE2FB2EE2C18623D37DF64E279B6767952DCFEE0EACBB10 ] C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2\comctl32.dll
12:23:12.0775 0x0728 C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2\comctl32.dll - ok
12:23:12.0775 0x0728 [ C30A3E5DEEEBA22E782AC54C5AF5F352, 80939A7B5354032256706C6CA0C3CCC7E67CD1C1C81EAEA2CBC74997C0863662 ] C:\Windows\System32\samlib.dll
12:23:12.0775 0x0728 C:\Windows\System32\samlib.dll - ok
12:23:12.0775 0x0728 [ F14A9B1778376D0B1788E402AC1F831A, 6110F29669E03F8163B5CD7124BE0FF329F36C18529FA3B8FF70FC00B2D8AA02 ] C:\Windows\System32\shacct.dll
12:23:12.0775 0x0728 C:\Windows\System32\shacct.dll - ok
12:23:12.0790 0x0728 [ 12C45E3CB6D65F73209549E2D02ECA7A, 9DFD9C58B90257C34D52B7156C1D2566BE32EE7BD4699DDE164A5F190EC4D44A ] C:\Windows\System32\propsys.dll
12:23:12.0790 0x0728 C:\Windows\System32\propsys.dll - ok
12:23:12.0790 0x0728 [ 63BFDF555DA2075A77D677829C3CCCD0, 13B0C0576A0158FBEE6C216136F8C66373C8E6592895D3D824EC67147B9190E9 ] C:\Windows\System32\uxtheme.dll
12:23:12.0790 0x0728 C:\Windows\System32\uxtheme.dll - ok
12:23:12.0790 0x0728 [ 84174CA0E190BB9D1EFD0F005FE13B35, B0146E651DAD4A8050FAF70026F1B7CE16EF454EB6E31088CDEBE3CD57E6591C ] C:\Windows\winsxs\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.18120_none_72d2e82386681b36\GdiPlus.dll
12:23:12.0806 0x0728 C:\Windows\winsxs\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.18120_none_72d2e82386681b36\GdiPlus.dll - ok
12:23:12.0806 0x0728 [ EE06B85BC69F18826302348A2AD089E0, 417205797CC9F6C986A863A61179784D9ADCAF1961EF8A4D9042D73C5A86509A ] C:\Windows\System32\dui70.dll
12:23:12.0806 0x0728 C:\Windows\System32\dui70.dll - ok
12:23:12.0806 0x0728 [ 16935C98FF639D185086A3529B1F2067, E9C6B73A572A04FCE9B1B0E6815F941B10332D9A6D55B92927C2B1275F119091 ] C:\Windows\System32\wlansvc.dll
12:23:12.0806 0x0728 C:\Windows\System32\wlansvc.dll - ok
12:23:12.0821 0x0728 [ CE3B4E731638D2EF62FCB419BE0D39F0, 3B98179CB0101778D9E7810D2CD46D9C0D7120E141BA11471666E7D9EB3C93CC ] C:\Windows\System32\audiosrv.dll
12:23:12.0821 0x0728 C:\Windows\System32\audiosrv.dll - ok
12:23:12.0821 0x0728 [ 6E1F8165C365D35C8E3C045AF0CDD481, B861360D0A014265A0BEB4CC2FE31EA05AE95120E8B07820C13A044D64C00E2B ] C:\Windows\System32\duser.dll
12:23:12.0821 0x0728 C:\Windows\System32\duser.dll - ok
12:23:12.0821 0x0728 [ 243974EC02F7AE49E4179C54624143AB, 755FA67F7BF10E3C6336788D297FBAA70F28F630852A43A78D3F7D7E3A7ECED0 ] C:\Windows\System32\MMDevAPI.dll
12:23:12.0821 0x0728 C:\Windows\System32\MMDevAPI.dll - ok
12:23:12.0837 0x0728 [ 2CFA4569350B7F84F815E9EC34E85766, 8DE5F880F23435256E697C24BDDFA9B8994ACC3FAA063AF274BEC918FE012788 ] C:\Windows\System32\SndVolSSO.dll
12:23:12.0837 0x0728 C:\Windows\System32\SndVolSSO.dll - ok
12:23:12.0837 0x0728 [ 139D3AB6AA920C34C50CBFFB9EB7D222, 5A5D205E16E6AFDCC965E4144FE6E104157DE7541D31727520363F2670513940 ] C:\Windows\System32\avrt.dll
12:23:12.0837 0x0728 C:\Windows\System32\avrt.dll - ok
12:23:12.0837 0x0728 [ 39C5F32747B3414D1BB216FDB1DEFC58, 6FAE64CB9748304090113903A5AE9E7154BE16BA2EEA7AB3EF04AB9D79B81380 ] C:\Windows\System32\dwmapi.dll
12:23:12.0837 0x0728 C:\Windows\System32\dwmapi.dll - ok
12:23:12.0853 0x0728 [ 63DF770DF74ACB370EF5A16727069AAF, B8F96336BF87F1153C245D19606CBD10FBE7CF2795BCC762F2A1B57CB7C39116 ] C:\Windows\System32\hid.dll
12:23:12.0853 0x0728 C:\Windows\System32\hid.dll - ok
12:23:12.0853 0x0728 [ 8C338238C16777A802D6A9211EB2BA50, 0D08A47CD403EDA5E8CAD7409BBBBCDC29A9861D2DC41D42B68B22B1AA1EBDD6 ] C:\Windows\System32\netprofm.dll
12:23:12.0853 0x0728 C:\Windows\System32\netprofm.dll - ok
12:23:12.0868 0x0728 [ EDF2A5E96BEC469DA3F64E9BDD386111, 63C91BBDFA2E087293B010A4E45625FBD1BFCAF655BFADE2F8B1C36CF804B118 ] C:\Windows\System32\xmllite.dll
12:23:12.0868 0x0728 C:\Windows\System32\xmllite.dll - ok
12:23:12.0868 0x0728 [ E12C4928B32ACE04610259647F072635, B71B9C2DF45F33C4DAC88435129B08B0BCDBBE82E8C3AD0A95F00137CC8B619F ] C:\Windows\System32\FntCache.dll
12:23:12.0868 0x0728 C:\Windows\System32\FntCache.dll - ok
12:23:12.0868 0x0728 [ 5B2E4E90C04FB9AE9F2C5E99FF59B283, 69DC06F246C3983934CA92149B4010A51868667D6E9A54A36338B1953B4CB21E ] C:\Windows\System32\WindowsCodecs.dll
12:23:12.0868 0x0728 C:\Windows\System32\WindowsCodecs.dll - ok
12:23:12.0884 0x0728 [ 8B0B4C5927A333A05513791758350DC4, 52FF08569678F3DA6D52FAE200E4C8C85E986805987EF1CDC0616C29664E7D64 ] C:\Windows\System32\microsoft-windows-kernel-power-events.dll
12:23:12.0884 0x0728 C:\Windows\System32\microsoft-windows-kernel-power-events.dll - ok
12:23:12.0884 0x0728 [ 146B6F43A673379A3C670E86D89BE5EA, C4412DCF80DE6B55466F399413271364F14BC0819C224AA161EDDC31A9775440 ] C:\Windows\System32\mmcss.dll
12:23:12.0884 0x0728 C:\Windows\System32\mmcss.dll - ok
12:23:12.0884 0x0728 [ 326C7F76A29897A892AA7726E91C1C67, 64305346B06EC14976130B0B80F14B4D5AB63E5B2A6A7B872EC9CE2BF8FADCD2 ] C:\Windows\System32\winbrand.dll
12:23:12.0884 0x0728 C:\Windows\System32\winbrand.dll - ok
12:23:12.0899 0x0728 [ 7520EC808E0C35E0EE6F841294316653, 6EC65511B4838A7172A8F89E35C2F9DF4F0BFCE3BE12EDA790F3EB567102FF67 ] C:\Windows\System32\drivers\fltMgr.sys
12:23:12.0899 0x0728 C:\Windows\System32\drivers\fltMgr.sys - ok
12:23:12.0899 0x0728 [ 4BCC63ED1C3D15B2635A8AE2B854B3EB, 4CF29B4E896996145D54263FD06358E16C3FE2CD39C3AF6BCCE607590C637555 ] C:\Windows\System32\SmartcardCredentialProvider.dll
12:23:12.0899 0x0728 C:\Windows\System32\SmartcardCredentialProvider.dll - ok
12:23:12.0899 0x0728 [ 65BF13016A3C22775F3E17591AE5268A, 7DFE2F99D33D47E4A55ACBE83FE5B536A2983742522629414D5F941043C591D3 ] C:\Windows\System32\VaultCredProvider.dll
12:23:12.0899 0x0728 C:\Windows\System32\VaultCredProvider.dll - ok
12:23:12.0915 0x0728 [ 6A6B2EE4565A178035BE2A4FF6F2C968, E2E231F1C2E2CE19583483ACC53318651FA7CA2DE46BCB89B4CBF97CA0525122 ] C:\Windows\System32\wtsapi32.dll
12:23:12.0915 0x0728 C:\Windows\System32\wtsapi32.dll - ok
12:23:12.0915 0x0728 [ E59F08ED9D2A128CE436BBFC232247F6, 9CD690C1B7CB6CA59F6AB2752A5AF2FC5A057CCBDA4166900F0AC68296972060 ] C:\Windows\System32\BioCredProv.dll
12:23:12.0915 0x0728 C:\Windows\System32\BioCredProv.dll - ok
12:23:12.0931 0x0728 [ D93A937A2A9D2CBC06B3A615A197011F, E55028F641512EC22CEC4674F7E380FE71059A21E51ECB345DDB769A276F30D1 ] C:\Windows\System32\PSHED.DLL
12:23:12.0931 0x0728 C:\Windows\System32\PSHED.DLL - ok
12:23:12.0931 0x0728 [ E9BB0CD09DA17C71FD1B9954D75AEEF7, FF5E2F04F1FD56FDD19368150B5750275F0A44E9EA9820C8087E84ECBBF45286 ] C:\Windows\System32\credui.dll
12:23:12.0931 0x0728 C:\Windows\System32\credui.dll - ok
12:23:12.0931 0x0728 [ 9835584E999D25004E1EE8E5F3E3B881, 71798B0CBE9AE69F1F29B845319019C69EC7F415CBABB3B87DDE92C360675021 ] C:\Windows\System32\MPSSVC.dll
12:23:12.0931 0x0728 C:\Windows\System32\MPSSVC.dll - ok
12:23:12.0946 0x0728 [ 36B8D5903CEEF0AA42A1EE002BD27FF1, CBD5C4D0E05B9A2657D816B655FFFC386807061594DEAABA754658D3152F7403 ] C:\Windows\System32\vaultcli.dll
12:23:12.0946 0x0728 C:\Windows\System32\vaultcli.dll - ok
12:23:12.0946 0x0728 [ 3FAD263CE1E2A6FFF40D00043B2275E3, 0063D7DAD57CA78C3DCE6A2E7D4FF7A47DBBBBAA33F92AEF747D8102E055D1AA ] C:\Windows\System32\winbio.dll
12:23:12.0946 0x0728 C:\Windows\System32\winbio.dll - ok
12:23:12.0946 0x0728 [ 2FCA0D2C59A855C54BAFA22AA329DF0F, ED9D26F539065D62FCCEDEEC8E509B30F4D15F8DA586C1F657ACEFE9DABAACD0 ] C:\Windows\System32\netapi32.dll
12:23:12.0946 0x0728 C:\Windows\System32\netapi32.dll - ok
12:23:12.0962 0x0728 [ 20B3934DB73EABA2B49B7177873CB81F, 492EAC5C51472B43DE11825358AEC4B9E3A081DACFD7513C696D6FE40F302EE5 ] C:\Windows\System32\netutils.dll
12:23:12.0962 0x0728 C:\Windows\System32\netutils.dll - ok
12:23:12.0962 0x0728 [ 68ECCA523ED760AAFC03C5D587569859, CDD734279C8F9F24EA2538BAD8E91EB8C3DD74C33032DB6B2D85C19576B42707 ] C:\Windows\System32\samcli.dll
12:23:12.0962 0x0728 C:\Windows\System32\samcli.dll - ok
12:23:12.0962 0x0728 [ E5A4A1326A02F8E7B59E6C3270CE7202, DCB76016F9AC47E631540874DA208A089F9D529DA9628705A2869B954526BFE0 ] C:\Windows\System32\wkscli.dll
12:23:12.0962 0x0728 C:\Windows\System32\wkscli.dll - ok
12:23:12.0977 0x0728 [ 6D8CACF3B1B54943EFCF420C2D667B37, 64EB621EC68077761A0662BE78D2D17ADA982FCFE4D3BBD3A96D0D990BD8541A ] C:\Windows\System32\certCredProvider.dll
12:23:12.0977 0x0728 C:\Windows\System32\certCredProvider.dll - ok
12:23:12.0977 0x0728 [ FFE4BEC5C187C426A17AE76A773063A6, 0003F7DBCE52F3E7B467FBB6522623E7318E22BC2E1BB5890AFAE29682543F99 ] C:\Windows\System32\rasplap.dll
12:23:12.0977 0x0728 C:\Windows\System32\rasplap.dll - ok
12:23:12.0977 0x0728 [ 839F96DBAAFD3353E0B248A5E0BD2A51, 11DA5AD3EA5FF4766C12B99FB520B3CBE08581ECAF1A2FD1DC5AC835CA78FAC2 ] C:\Windows\System32\rasapi32.dll
12:23:12.0977 0x0728 C:\Windows\System32\rasapi32.dll - ok
12:23:12.0993 0x0728 [ FFA7172354B9256DBB2CDD75F16F33FE, 85B2F014C67C2E52540F17D561793C6633C9E98F12639CCD3854EB1EC34DD035 ] C:\Windows\System32\rasman.dll
12:23:12.0993 0x0728 C:\Windows\System32\rasman.dll - ok
12:23:12.0993 0x0728 [ 0915C4DB6DBC3BB9E11B7ECBBE4B7159, ACE7F85685EB92FC3AB4215122B0469E32F23B196C49F08CDA7791D3122C45DC ] C:\Windows\System32\rtutils.dll
12:23:12.0993 0x0728 C:\Windows\System32\rtutils.dll - ok
12:23:12.0993 0x0728 [ 1F5497D7D3D79C7BF0AB0C8B4C5BFE6E, 27848861F25C00168A1A0FE0722D8E327D2251C4FB69A7968EE5722ECCD129E3 ] C:\Windows\System32\microsoft-windows-kernel-processor-power-events.dll
12:23:12.0993 0x0728 C:\Windows\System32\microsoft-windows-kernel-processor-power-events.dll - ok
12:23:13.0009 0x0728 [ 15F93B37F6801943360D9EB42485D5D3, DD6838C6496CB15F8BB57A6596F6A64ADD9C36B09F062295699131232712B558 ] C:\Windows\System32\cscsvc.dll
12:23:13.0009 0x0728 C:\Windows\System32\cscsvc.dll - ok
12:23:13.0009 0x0728 [ E897EAF5ED6BA41E081060C9B447A673, A428DC68516F19C6C53A8B62E4BDB2587E70FB751B9D77700B6B147D347DA157 ] C:\Windows\System32\gpsvc.dll
12:23:13.0009 0x0728 C:\Windows\System32\gpsvc.dll - ok
12:23:13.0009 0x0728 [ 772F44012DBE49DE894976AE2259A659, 34C7E200D075087A4084EF8947D5FC5A2511CC02A8A34AF8CFEEB5691364E522 ] C:\Windows\System32\PeerDist.dll
12:23:13.0009 0x0728 C:\Windows\System32\PeerDist.dll - ok
12:23:13.0024 0x0728 [ CADEFAC453040E370A1BDFF3973BE00D, 2E3DD8DA702468D8AB0F3CE27188B1991D4CB015FB36BAE4C6E7996B61CF49B8 ] C:\Windows\System32\profsvc.dll
12:23:13.0024 0x0728 C:\Windows\System32\profsvc.dll - ok
12:23:13.0024 0x0728 [ F10E5311E5093FA3C00FF88C54C32FCA, B557F5B00D77F030850D9AAC0FFEFC4C2A759EC4081C8459C9DEAE51BAAACC65 ] C:\Windows\System32\atl.dll
12:23:13.0024 0x0728 C:\Windows\System32\atl.dll - ok
12:23:13.0040 0x0728 [ F6916EFC29D9953D5D0DF06882AE8E16, ED41893960018D5EC2F7829B1DE4B6967D9FD074D60B11B9EB854E3E0948EC24 ] C:\Windows\System32\es.dll
12:23:13.0040 0x0728 C:\Windows\System32\es.dll - ok
12:23:13.0040 0x0728 [ 50E0DD0A5B8D8BC353578F2F73926697, 9A453F60FC0149417105BB5B4CB910D614A3D832D98313A58D0EA36BABED4460 ] C:\Windows\System32\nlaapi.dll
12:23:13.0040 0x0728 C:\Windows\System32\nlaapi.dll - ok
12:23:13.0040 0x0728 [ 544EFF88AC6C85DF5A4D6F18DFE08CFC, D688381F42062FD5D868E7770857C5951C41BA20A1B6E6F60B5D9536C02CD293 ] C:\Windows\System32\taskschd.dll
12:23:13.0040 0x0728 C:\Windows\System32\taskschd.dll - ok
12:23:13.0055 0x0728 [ 42FB6AFD6B79D9FE07381609172E7CA4, B57C85091209A2FAD19ED490B8FA7FC98F12911F9C9CACE9AF1E540780CE6700 ] C:\Windows\System32\themeservice.dll
12:23:13.0055 0x0728 C:\Windows\System32\themeservice.dll - ok
12:23:13.0055 0x0728 [ 2F040CF0613A6D64DCBBA9EE81F5A5AE, DA16117429AF47230CD7C136407C81951B8D2E45A8B7A9DC6948407AA2EC4ADD ] C:\Windows\System32\dsrole.dll
12:23:13.0055 0x0728 C:\Windows\System32\dsrole.dll - ok
12:23:13.0055 0x0728 [ C5A99A4C0DC9F0F5A95BA0C83D30A549, F99CCCE303F0FC07D82D3BBA223E8CCE41FB7FA8FB5C2A9214C161826537C7C9 ] C:\Windows\System32\mstask.dll
12:23:13.0055 0x0728 C:\Windows\System32\mstask.dll - ok
12:23:13.0071 0x0728 [ 8B74CEC6980D4816B0037AE9A27E538F, 8721EDB4C51BF6020002FA5DDB1987C68590F9F433A2F18D9756B2DAC7542CB6 ] C:\Windows\System32\slc.dll
12:23:13.0071 0x0728 C:\Windows\System32\slc.dll - ok
12:23:13.0071 0x0728 [ A12829E9974F57E9B5DBFEA7C93190F6, 1EC2A36CAF30A706B6082C5CA79B6A33FA99342E144508DB1415D1611E631EBC ] C:\Windows\System32\UXInit.dll
12:23:13.0071 0x0728 C:\Windows\System32\UXInit.dll - ok
12:23:13.0071 0x0728 [ 808D8A8B2A3074002852BC856D419576, 1AFDEAAD071D398F4663E82D58510ABC0A30048018866C59AB53D3ECB6E6D349 ] C:\Windows\System32\comres.dll
12:23:13.0071 0x0728 C:\Windows\System32\comres.dll - ok
12:23:13.0087 0x0728 [ DCB7FCDCC97F87360F75D77425B81737, F8289AF2C458C167038EEFE613EE5E3D6D5B3308B8784168374BC81C47891CE5 ] C:\Windows\System32\Sens.dll
12:23:13.0087 0x0728 C:\Windows\System32\Sens.dll - ok
12:23:13.0087 0x0728 [ 081E6E1C91AEC36758902A9F727CD23C, 9FDAA17A3B99067E035E5D76305427F15FFDBC5D304B2BB78AFC6463EDDE1A75 ] C:\Windows\System32\uxsms.dll
12:23:13.0087 0x0728 C:\Windows\System32\uxsms.dll - ok
12:23:13.0102 0x0728 [ F7611EC07349979DA9B0AE1F18CCC7A6, 879AA7A391966F00761CA039C25EBC62F6712DD5461694911EEC673E12DE103E ] C:\Windows\System32\drivers\lltdio.sys
12:23:13.0102 0x0728 C:\Windows\System32\drivers\lltdio.sys - ok
12:23:13.0102 0x0728 [ D8A65DAFB3EB41CBB622745676FCD072, 874D3C3D247C4A309DA813DB1D2EDB0037D3C489824BD5FE95B0C20699764EF7 ] C:\Windows\System32\drivers\ndisuio.sys
12:23:13.0102 0x0728 C:\Windows\System32\drivers\ndisuio.sys - ok
12:23:13.0102 0x0728 [ 26384429FCD85D83746F63E798AB1480, 957C115C263A4B4DC854558B43ECE632D8E2BCCB744E23A01EBA7476BA2E7FFB ] C:\Windows\System32\drivers\nwifi.sys
12:23:13.0102 0x0728 C:\Windows\System32\drivers\nwifi.sys - ok
12:23:13.0118 0x0728 [ 032B0D36AD92B582D869879F5AF5B928, 0F8F18A6A0A689957B886D9368015889091094EDA18BE532093F06A70A7CE184 ] C:\Windows\System32\drivers\rspndr.sys
12:23:13.0118 0x0728 C:\Windows\System32\drivers\rspndr.sys - ok
12:23:13.0118 0x0728 [ A90DC9ABD65DB1A8902F361103029952, 26798758976CE53251AC342B966BE0363AE1794BD965C452F5DEBC33E18969F0 ] C:\Windows\System32\IPHLPAPI.DLL
12:23:13.0118 0x0728 C:\Windows\System32\IPHLPAPI.DLL - ok
12:23:13.0118 0x0728 [ 55CA01BA19D0006C8F2639B6C045E08B, 4DBBDC820C514DB18CC13F8EE178F8C4E39C295C6E3C255416C235553CE7BDC1 ] C:\Windows\System32\lmhsvc.dll
12:23:13.0118 0x0728 C:\Windows\System32\lmhsvc.dll - ok
12:23:13.0133 0x0728 [ E9E01EB683C132F7FA27CD607B8A2B63, 4D9037B458C522874619143A4176BCED42472C68933E6E83D37B67242706F3C4 ] C:\Windows\System32\dhcpcore.dll
12:23:13.0133 0x0728 C:\Windows\System32\dhcpcore.dll - ok
12:23:13.0133 0x0728 [ D2A937964199F647B1C3BC435712E5D9, 03029296547750229C0C484CD09D67286096B92661C41DF67C60019DEF75A2F7 ] C:\Windows\System32\nrpsrv.dll
12:23:13.0133 0x0728 C:\Windows\System32\nrpsrv.dll - ok
12:23:13.0133 0x0728 [ BA387E955E890C8A88306D9B8D06BF17, 3477BD9686C5777A93251C154512671AAA7533B18C536DF51F7B1D6D28E7F8A5 ] C:\Windows\System32\nsisvc.dll
12:23:13.0133 0x0728 C:\Windows\System32\nsisvc.dll - ok
12:23:13.0149 0x0728 [ CFF35B879D1618D42C86644C717BA947, 1837275202628D3320867A3BF8CFDA15491730C4B74215F7C0D7E140BF01AC3C ] C:\Windows\System32\winnsi.dll
12:23:13.0149 0x0728 C:\Windows\System32\winnsi.dll - ok
12:23:13.0149 0x0728 [ EF71BA5DF59034962B0C62314A71351A, BB31EDFCCFF1CE984CDE0E1D8996BF70DC28F97B6685AE54172F2F4BAFA56A0F ] C:\Windows\System32\dhcpcore6.dll
12:23:13.0149 0x0728 C:\Windows\System32\dhcpcore6.dll - ok
12:23:13.0149 0x0728 [ 33EF4861F19A0736B11314AAD9AE28D0, 4C4B84365D85758E3263B88F157D8B086B392C6F1EA5F0F3DB6BF87EF90248EC ] C:\Windows\System32\dnsrslvr.dll
12:23:13.0149 0x0728 C:\Windows\System32\dnsrslvr.dll - ok
12:23:13.0165 0x0728 [ AF75DBA674E55221B7A055B0A4345F16, 50F1B550F4EBFA946564EB66BBD17C308DCB08055017E010095A94C2EBCE208D ] C:\Windows\System32\keyiso.dll
12:23:13.0165 0x0728 C:\Windows\System32\keyiso.dll - ok
12:23:13.0165 0x0728 [ 81F6C1AE23B1C493D9E996C3103915D7, E22408B4D2EDE2F89E686A4FDCD4057BE27B86D050E9CB489F0FFB39C72AEC1D ] C:\Windows\System32\dhcpcsvc6.dll
12:23:13.0165 0x0728 C:\Windows\System32\dhcpcsvc6.dll - ok
12:23:13.0180 0x0728 [ 9A892B3439884C62B04718F0303A49E9, E3A772832BE440B074628FCAE06FACA451E2329BAEDD62CAB54310B44AF6BA4A ] C:\Windows\System32\eapphost.dll
12:23:13.0180 0x0728 C:\Windows\System32\eapphost.dll - ok
12:23:13.0180 0x0728 [ 8600142FA91C1B96367D3300AD0F3F3A, 5713625E27DF11FAAFDA7AC79899A6AD813166E167088FA990EC5DE87DBE83DF ] C:\Windows\System32\eapsvc.dll
12:23:13.0180 0x0728 C:\Windows\System32\eapsvc.dll - ok
12:23:13.0180 0x0728 [ F0D0E883EBBDC7615DC9EDEA0FFB2817, 58F1395445018CB16ED4D3710443FB5B0E087043F6A69F7B10D72D0455958954 ] C:\Windows\System32\FWPUCLNT.DLL
12:23:13.0180 0x0728 C:\Windows\System32\FWPUCLNT.DLL - ok
12:23:13.0196 0x0728 [ 9A85ABCE0FDD1AF8E79E731EB0B679F3, 2A610BEB16610FE2F2E9A50477A62A05481E8A5843A814955A0EDFF45D0304B3 ] C:\Windows\System32\dhcpcsvc.dll
12:23:13.0196 0x0728 C:\Windows\System32\dhcpcsvc.dll - ok
12:23:13.0196 0x0728 [ 100103C6535C66265267F5EEA5F5846E, DC5972BC1FCABDC51E4DF4D5124D408BB03F2EFAF25AB70C921DD7A03A12DFD4 ] C:\Windows\System32\dnsext.dll
12:23:13.0196 0x0728 C:\Windows\System32\dnsext.dll - ok
12:23:13.0196 0x0728 [ 3C9035085141162416A0DD34DBF3F3C1, 31856241BBCC5AEC32C36BD073667001ECBA3A65C1D55B26A9CEE186CE1C03E6 ] C:\Windows\System32\wlanmsm.dll
12:23:13.0196 0x0728 C:\Windows\System32\wlanmsm.dll - ok
12:23:13.0211 0x0728 [ F748F53FE09D21D8ECBB6421E6792024, 38F737673F8B089B2540CE7015A4DF7081754F7CC83BFF85199B70555AF32ED0 ] C:\Windows\System32\onex.dll
12:23:13.0211 0x0728 C:\Windows\System32\onex.dll - ok
12:23:13.0211 0x0728 [ 20C06A50DFC097E134BC6FA8444CA9BC, 7739CF0ABCA918C9A49D655FB4E032163BBFB7064844F0C8EBDA282CB0225DFC ] C:\Windows\System32\wlansec.dll
12:23:13.0211 0x0728 C:\Windows\System32\wlansec.dll - ok
12:23:13.0211 0x0728 [ 5A5FEDDF02588B8F9FE4A95E5E7EAE97, 364A2DC446E9AB091A216D0EED559CEA334AA46EC0BC693CBD6CE1DE0F89317B ] C:\Windows\System32\eappcfg.dll
12:23:13.0211 0x0728 C:\Windows\System32\eappcfg.dll - ok
12:23:13.0227 0x0728 [ 666E57B6B51824D1D235F80A3DD70A13, B2ACCABDD5D8B23E502FE691C1DEE4A2C0EA20EDCDE5B4000557579D56D411EC ] C:\Windows\System32\eappprxy.dll
12:23:13.0227 0x0728 C:\Windows\System32\eappprxy.dll - ok
12:23:13.0227 0x0728 [ D33E95C0A2754061233B58DC41F8094C, C957FD018DCCC8EA4BFD0EBB16A8A65B5F8AD543929EE92251C8718872BBA628 ] C:\Windows\System32\umb.dll
12:23:13.0227 0x0728 C:\Windows\System32\umb.dll - ok
12:23:13.0227 0x0728 [ C1585EAA67C37A05BF6F93726FAFC069, 50401A628053871D5B864E2493018236A117F177AD1E466EDE6FB3CACBD6C5BD ] C:\Windows\System32\l2gpstore.dll
12:23:13.0227 0x0728 C:\Windows\System32\l2gpstore.dll - ok
12:23:13.0243 0x0728 [ 9419ABF3163B6F0E3AD3DD2B381C879F, 75029AFDB5F8A8F74A63B6C8165E77110E2FBAEC0021A9613035BFFEC646A54E ] C:\Windows\System32\WinSCard.dll
12:23:13.0243 0x0728 C:\Windows\System32\WinSCard.dll - ok
12:23:13.0243 0x0728 [ 1D6A771D1D702AE07919DB52C889A249, E5F3378AC40AEE6114EEAF3BF11DC1059466891CAE353E80C08622A60485C954 ] C:\Windows\System32\wlanutil.dll
12:23:13.0243 0x0728 C:\Windows\System32\wlanutil.dll - ok
12:23:13.0258 0x0728 [ 749F9795F01C35EEBE100A87D82B9681, 03A636328D3D97AFA6B5D6B3085EA8D27C3DBCAEA5986FD74904FC754378CD64 ] C:\Windows\System32\wlgpclnt.dll
12:23:13.0258 0x0728 C:\Windows\System32\wlgpclnt.dll - ok
12:23:13.0258 0x0728 [ EAADD6E47ED2A7003ACE1793B98CF63F, EE090284CA4595B6A140949A41025926CEC3CCACCD2931B6AC77A1E14D20E5B4 ] C:\Windows\System32\msxml6.dll
12:23:13.0258 0x0728 C:\Windows\System32\msxml6.dll - ok
12:23:13.0258 0x0728 [ 827CB0D6C3F8057EA037FF271F8E9795, 82760DBDDD38D2A31CAAF51D065DF4E7E1D0F0C22733A0AF653776EBF7B79470 ] C:\Windows\System32\imageres.dll
12:23:13.0258 0x0728 C:\Windows\System32\imageres.dll - ok
12:23:13.0274 0x0728 [ 414DA952A35BF5D50192E28263B40577, 9C9BAFB9880DA6CC728506A142BE124E186219610DCC3460657A3CA93C865DF1 ] C:\Windows\System32\shsvcs.dll
12:23:13.0274 0x0728 C:\Windows\System32\shsvcs.dll - ok
12:23:13.0274 0x0728 [ A04BB13F8A72F8B6E8B4071723E4E336, E63287FF71C39CBF64C3347C455324C8437F9CF398153E269543588B65389502 ] C:\Windows\System32\schedsvc.dll
12:23:13.0274 0x0728 C:\Windows\System32\schedsvc.dll - ok
12:23:13.0274 0x0728 [ 38B13C0DF479DBA23ECFA815159BA86E, C289C65AF3FB689AD6B770AB0E815860D9EA36FB2A8DE9F1818C63AD0FE47CBD ] C:\Windows\System32\ktmw32.dll
12:23:13.0274 0x0728 C:\Windows\System32\ktmw32.dll - ok
12:23:13.0289 0x0728 [ E6D90DC604F407B3B5E0FD285E46B2A0, 41C0E25E93E6985445410B23058B8972E7720464ABDB41D84FF10CCAC204921A ] C:\Windows\System32\fveapi.dll
12:23:13.0289 0x0728 C:\Windows\System32\fveapi.dll - ok
12:23:13.0289 0x0728 [ C87F28A34B3840F4B40011D170B1A159, 4FB94B9197C5FA73E1A74BA8DCD4ACE830C927FD67B117426714CCD7396E3CB9 ] C:\Windows\System32\fvecerts.dll
12:23:13.0289 0x0728 C:\Windows\System32\fvecerts.dll - ok
12:23:13.0289 0x0728 [ EAFC149CD3BD78C443E31BB157841197, 9045425B0C7A23D5A96D1084FB3B1DED35852B3FB1DCB942DEB4A5B906126CA4 ] C:\Windows\System32\tbs.dll
12:23:13.0289 0x0728 C:\Windows\System32\tbs.dll - ok
12:23:13.0305 0x0728 [ E2D56AE1D40E3725084054CD8E9CFBB1, 7548C22DE09DCCC9BA41BA1DE331CFD0B18DDA00A40E27DFB8EA551CDF7050BC ] C:\Windows\System32\wiarpc.dll
12:23:13.0305 0x0728 C:\Windows\System32\wiarpc.dll - ok
12:23:13.0305 0x0728 [ AC8C80DC4F1A6E60C9A762C1799F0B39, 9FD3A62B4E476CBE6D94D587826B5D8C6EB8208035A20B8E17749312C251FD6A ] C:\Windows\System32\adtschema.dll
12:23:13.0305 0x0728 C:\Windows\System32\adtschema.dll - ok
12:23:13.0305 0x0728 [ 1C3E8371377E988B683797A132EFFE1B, CC4A9B9084F163428973A04D77CADDAA838C5761BF9E55971FAD7275BB9D2194 ] C:\Windows\System32\taskcomp.dll
12:23:13.0305 0x0728 C:\Windows\System32\taskcomp.dll - ok
12:23:13.0321 0x0728 [ 3FD15B4611D9BDA3F8013548C0ECAECA, B47A8D9985D9B71EB870816A0AB2B6403D394CCBDF7DE5378D5721D58D68D28D ] C:\Windows\System32\ntmarta.dll
12:23:13.0321 0x0728 C:\Windows\System32\ntmarta.dll - ok
12:23:13.0321 0x0728 [ 871917B07A141BFF43D76D8844D48106, 30C702008D0EE57D63F74864967DD19A55A268E77E42B5B3CC73037AD51D2987 ] C:\Windows\System32\drivers\http.sys
12:23:13.0321 0x0728 C:\Windows\System32\drivers\http.sys - ok
12:23:13.0321 0x0728 [ 9AEA093B8F9C37CF45538382CABA2475, CC63239C412067AA72318ADB8BB80BCDF2CA60DA05D814D32753C92508BC16A8 ] C:\Windows\System32\spoolsv.exe
12:23:13.0321 0x0728 C:\Windows\System32\spoolsv.exe - ok
12:23:13.0336 0x0728 [ 1E2BAC209D184BB851E1A187D8A29136, 53933C938DA5126986FFF2918C1F522ABE93ABAB460AE32E4453161C2F7B68DF ] C:\Windows\System32\BFE.DLL
12:23:13.0336 0x0728 C:\Windows\System32\BFE.DLL - ok
12:23:13.0336 0x0728 [ 8F2DA3028D5FCBD1A060A3DE64CD6506, E234672E9CFE1A95AD2E78E306E41E010B870221E6EBBC0E2B0BE2FA5CE0CD76 ] C:\Windows\System32\drivers\bowser.sys
12:23:13.0336 0x0728 C:\Windows\System32\drivers\bowser.sys - ok
12:23:13.0352 0x0728 [ AD2723A7B53DD1AACAE6AD8C0BFBF4D0, 1D6DCFA0E56C3E55B6AED819176E751502F863BA0FCF4F0B3253A81D208141A2 ] C:\Windows\System32\drivers\mpsdrv.sys
12:23:13.0352 0x0728 C:\Windows\System32\drivers\mpsdrv.sys - ok
12:23:13.0352 0x0728 [ 5D16C921E3671636C0EBA3BBAAC5FD25, 5BC107B95CAFC88F51FBB9F657B99944B20627A2B618F263093D7045E4FFD65C ] C:\Windows\System32\drivers\mrxsmb.sys
12:23:13.0352 0x0728 C:\Windows\System32\drivers\mrxsmb.sys - ok
12:23:13.0352 0x0728 [ 6D17A4791ACA19328C685D256349FEFC, 012AA3D84EEAAF53780D06D2D11B9727DFC3441F3FAD75BC9E751FB814403668 ] C:\Windows\System32\drivers\mrxsmb10.sys
12:23:13.0352 0x0728 C:\Windows\System32\drivers\mrxsmb10.sys - ok
12:23:13.0367 0x0728 [ B81F204D146000BE76651A50670A5E9E, 78193D0F967BE9829E53F9B500342934B4B1E1F4CEFC444382959E2061BC3B17 ] C:\Windows\System32\drivers\mrxsmb20.sys
12:23:13.0367 0x0728 C:\Windows\System32\drivers\mrxsmb20.sys - ok
12:23:13.0367 0x0728 [ 58405E4F68BA8E4057C6E914F326ABA2, C3E6519A1A38F1B3597D4391E42ABFE8F1F5E86256C4B3BD876CDAD9BB68B0A6 ] C:\Windows\System32\wkssvc.dll
12:23:13.0367 0x0728 C:\Windows\System32\wkssvc.dll - ok
12:23:13.0367 0x0728 [ EB0A59F29C19B86479D36B35983DAADC, AC09AFE7F13BE4079D01383BAC44091997E1AAF6512C9673A42B9E3780EB08A8 ] C:\Windows\System32\drivers\parvdm.sys
12:23:13.0367 0x0728 C:\Windows\System32\drivers\parvdm.sys - ok
12:23:13.0383 0x0728 [ B362181ED3771DC03B4141927C80F801, 69514E5177A0AEA89C27C2234712F9F82E8D8F99E1FD4273898C9324C6FF7472 ] C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
12:23:13.0383 0x0728 C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe - ok
12:23:13.0383 0x0728 [ 019C372B1A9DA73A22D0D35A4D40F5C9, 6DDAF455D528FDC2F8271E5909289E76E54D81AC5563433653FC7E0C6EA5BB70 ] C:\Windows\System32\wfapigp.dll
12:23:13.0383 0x0728 C:\Windows\System32\wfapigp.dll - ok
12:23:13.0399 0x0728 [ CDBE9690CF2B8409FACAD94FAC9479C9, 8E7FE1A1F3550C479FFD86A77BC9D10686D47F8727025BB891D8F4F0259354C8 ] C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcr90.dll
12:23:13.0399 0x0728 C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcr90.dll - ok
12:23:13.0399 0x0728 [ F89B2DACE0FBE54CF65D12B7081C19C3, 64BBA5A29948ABFADB8865CE0D7D0259AB291B8DA04786AB351055D57B49D439 ] C:\Program Files\AVG\AVG2014\avgidsagent.exe
12:23:13.0399 0x0728 C:\Program Files\AVG\AVG2014\avgidsagent.exe - ok
12:23:13.0399 0x0728 [ 7F8678C59F188528D60104E697C2361E, 9B4D262B10CB09543ACA9A78482F4EDD905791D2C8C518B574EBA440A71A85B7 ] C:\Windows\System32\mscms.dll
12:23:13.0399 0x0728 C:\Windows\System32\mscms.dll - ok
12:23:13.0414 0x0728 [ 358AB7956D3160000726574083DFC8A6, 6CAFD4D1B8AB8C1D167ADC018985DDAB5AC2CBFFB3434FE6390F14AF50C19025 ] C:\Windows\System32\pcasvc.dll
12:23:13.0414 0x0728 C:\Windows\System32\pcasvc.dll - ok
12:23:13.0414 0x0728 [ 6A984831644ECA1A33FFEAE4126F4F37, 753E23D2B33D47C52C05D892B052CFD96D93B97FB6E9FCB58EF1E4C4A125BF78 ] C:\Windows\System32\snmptrap.exe
12:23:13.0414 0x0728 C:\Windows\System32\snmptrap.exe - ok
12:23:13.0414 0x0728 [ 3E29914113EC4B968BA5EB1F6D194A0A, C8D5572CA8D7624871188F0ACABC3AE60D4C5A4F6782D952B9038DE3BC28B39A ] C:\Windows\System32\msvcp110.dll
12:23:13.0414 0x0728 C:\Windows\System32\msvcp110.dll - ok
12:23:13.0430 0x0728 [ 4BA25D2CBE1587A841DCFB8C8C4A6EA6, B30160E759115E24425B9BCDF606EF6EBCE4657487525EDE7F1AC40B90FF7E49 ] C:\Windows\System32\msvcr110.dll
12:23:13.0430 0x0728 C:\Windows\System32\msvcr110.dll - ok
12:23:13.0430 0x0728 [ A86F5616EACB7155998011CEFFFB52F6, 1D877042AD916204D17516A609CE39B6AE9425D6B066E26708D39D53458A406B ] C:\Windows\System32\RdpGroupPolicyExtension.dll
12:23:13.0430 0x0728 C:\Windows\System32\RdpGroupPolicyExtension.dll - ok
12:23:13.0430 0x0728 [ 4A1E806032413883BAF1E9A6047BC668, 4D8EA2B36B57C7ABF131193B9C23B1A7209A3464C2716C471C7F8C11E0FA9E62 ] C:\Windows\Microsoft.NET\Framework\v4.0.30319\ServiceModelEvents.dll
12:23:13.0430 0x0728 C:\Windows\Microsoft.NET\Framework\v4.0.30319\ServiceModelEvents.dll - ok
12:23:13.0445 0x0728 [ A2F17346CC5C502D4E29EF986BD17D34, 786E1DA5DBE8B56A8708F361425059EC6DB89C43FD4A136090BAB44B084CC204 ] C:\Windows\System32\PeerDistSh.dll
12:23:13.0445 0x0728 C:\Windows\System32\PeerDistSh.dll - ok
12:23:13.0445 0x0728 [ B747B6BB015E552F49C634BB19540F3D, 5000AD41BD101BC06D595484B6E58DEEBB962939ACF4B24DE515771D1C4AE3ED ] C:\Program Files\AVG\AVG2014\avgwdsvc.exe
12:23:13.0445 0x0728 C:\Program Files\AVG\AVG2014\avgwdsvc.exe - ok
12:23:13.0461 0x0728 [ D318F23BE45D5E3A107469EB64815B50, D74355E6FF215AA8CE53BC9DF16AF2740F2FC2FD754939478A3608BDA8C6DDA0 ] C:\Windows\System32\sstpsvc.dll
12:23:13.0461 0x0728 C:\Windows\System32\sstpsvc.dll - ok
12:23:13.0461 0x0728 [ DBC02D918FFF1CAD628ACBE0C0EAA8E8, 02121800D9062692C102475876AE8143EBE46D855E8328B8CDCFE6A2F0D19696 ] C:\Windows\System32\provsvc.dll
12:23:13.0461 0x0728 C:\Windows\System32\provsvc.dll - ok
12:23:13.0461 0x0728 [ 7B851A8018B1EA00A69707A390004884, DAE654713EF1DC66C8C2D27752B659081794063A7D522D1F680AA9A6E7FBA9FD ] C:\Windows\System32\cryptnet.dll
12:23:13.0461 0x0728 C:\Windows\System32\cryptnet.dll - ok
12:23:13.0477 0x0728 [ 7CA1BECEA5DE2643ADDAD32670E7A4C9, E3AB4CC52A97E3855D7EAB87363F807FDD2162ED8C76A036CD71549ED64E7797 ] C:\Windows\System32\cryptsvc.dll
12:23:13.0477 0x0728 C:\Windows\System32\cryptsvc.dll - ok
12:23:13.0477 0x0728 [ 8EC04CA86F1D68DA9E11952EB85973D6, 2E3FBC2D683D1274E8BC45EEEA87D43B77EDDCAAF0D453296D9FDA6B9D717071 ] C:\Windows\System32\dps.dll
12:23:13.0477 0x0728 C:\Windows\System32\dps.dll - ok
12:23:13.0477 0x0728 [ 9E0104BA49F4E6973749A02BF41344ED, B32F39F38DB48D77FBA884DEE34112BAB81CCEF5DD2EAAA12D9589D73D2BB116 ] C:\Windows\System32\drivers\PEAuth.sys
12:23:13.0477 0x0728 C:\Windows\System32\drivers\PEAuth.sys - ok
12:23:13.0492 0x0728 [ 374071043F9E4231EE43BE2BB48DD36D, C4FA3FC40CC49DBBB91901D14210A55D3831FAC9F9B3FF45FCA7F5CF242C9E92 ] C:\Windows\System32\nlasvc.dll
12:23:13.0492 0x0728 C:\Windows\System32\nlasvc.dll - ok
12:23:13.0492 0x0728 [ 90A3935D05B494A5A39D37E71F09A677, F72733A69BC6E1A2BB91D7632FF3463C12563F60FDCC00A2CDD67FF20D479952 ] C:\Windows\System32\drivers\secdrv.sys
12:23:13.0492 0x0728 C:\Windows\System32\drivers\secdrv.sys - ok
12:23:13.0492 0x0728 [ BE6BD660CAA6F291AE06A718A4FA8ABC, CD38939CFBA80B882D38099194FC1EBAE15A9D27A4D941DD03C55EC745E52E59 ] C:\Windows\System32\drivers\srvnet.sys
12:23:13.0492 0x0728 C:\Windows\System32\drivers\srvnet.sys - ok
12:23:13.0508 0x0728 [ 140D9F911182357626165EA0BEB98C4F, 9B24047BF104895FCFDB68694934BDDD92DE98A0E6334A62E987C6DCBFFB9C5B ] C:\Windows\System32\ncsi.dll
12:23:13.0508 0x0728 C:\Windows\System32\ncsi.dll - ok
12:23:13.0508 0x0728 [ CA9F7888B524D8100B977C81F44C3234, 57F3353F89724147D8AC8B69B12C1303DF26978309776F5F8CCF074526A915D3 ] C:\Windows\System32\winhttp.dll
12:23:13.0508 0x0728 C:\Windows\System32\winhttp.dll - ok
12:23:13.0508 0x0728 [ 3EEBD3BD93DA46A26E89893C7AB2FF3B, 2C7204DCD2BCBC6A250FF0F6477616F327AF41FDB7CABE69E5C357361009FB4E ] C:\Windows\System32\drivers\tcpipreg.sys
12:23:13.0508 0x0728 C:\Windows\System32\drivers\tcpipreg.sys - ok
12:23:13.0523 0x0728 [ 36650D618CA34C9D357DFD3D89B2C56F, 7C3774E53DCF32CB3A4B3504E32D2A651E18467FA0A6AC4C7993C696741B704B ] C:\Windows\System32\sysmain.dll
12:23:13.0523 0x0728 C:\Windows\System32\sysmain.dll - ok
12:23:13.0523 0x0728 [ FB19FC5951A88F3C523E35C2C98D23C0, FF0DB8BF0C68DA0D09272E8181D2B5409C8850BB2F31AEA3AC4CD14C5A420A59 ] C:\Windows\System32\webio.dll
12:23:13.0523 0x0728 C:\Windows\System32\webio.dll - ok
12:23:13.0523 0x0728 [ 3D66B9DE391041808A4EA1849E6B1E1C, 0F42FA38D9E7BF0F0F5C45F0830441ABD7A87B1C675FC0ACB65EAD4098EAD520 ] C:\Program Files\AVG\AVG2014\avgcfgx.dll
12:23:13.0523 0x0728 C:\Program Files\AVG\AVG2014\avgcfgx.dll - ok
12:23:13.0539 0x0728 [ 03F0545BD8D4C77FA0AE1CEEDFCC71AB, 4DF31206DF8F33C2975E23C7257ED930C4EDA8BC4E246D8FDA130BB583083ED0 ] C:\Windows\System32\drivers\srv2.sys
12:23:13.0539 0x0728 C:\Windows\System32\drivers\srv2.sys - ok
12:23:13.0539 0x0728 [ 28E2231BD34A39C854BDF3923AB2FF86, A95179068F7B86E04F976B724F155DA86253B7F4414F43DBD95F2058282B99E4 ] C:\Windows\System32\ssdpapi.dll
12:23:13.0539 0x0728 C:\Windows\System32\ssdpapi.dll - ok
12:23:13.0555 0x0728 [ 4792C0378DB99A9BC2AE2DE6CFFF0C3A, 532A3A812578B2DFD83001DE66FC73689D79EC729409EB572E07E6D65B281712 ] C:\Windows\System32\trkwks.dll
12:23:13.0555 0x0728 C:\Windows\System32\trkwks.dll - ok
12:23:13.0555 0x0728 [ E4C2764065D66EA1D2D3EBC28FE99C46, 043AEF06A23069DD17675955C834690A5FD8F1948A05B3969F977E823C4E25F5 ] C:\Windows\System32\drivers\srv.sys
12:23:13.0555 0x0728 C:\Windows\System32\drivers\srv.sys - ok
12:23:13.0555 0x0728 [ 13337A3FB17F2242487FD45488ED0485, C174F8652118876494336AB88A65D594E0E6CCBAB20CC6BA08E6B253855A01CA ] C:\Windows\System32\vssapi.dll
12:23:13.0555 0x0728 C:\Windows\System32\vssapi.dll - ok
12:23:13.0570 0x0728 [ B940289C83121046BD6A60ACC6028593, EBD1C2C0A8EBB201924536AB5C6E032C12B9E081A153CC079748E1D6D625F0DF ] C:\Windows\System32\vsstrace.dll
12:23:13.0570 0x0728 C:\Windows\System32\vsstrace.dll - ok
12:23:13.0570 0x0728 [ B9C54120F46392100478F58F374E5709, A28EE8B0988F580D5984E815FC78DF41B169260814234AA0E453375542D0957B ] C:\Windows\System32\IKEEXT.DLL
12:23:13.0570 0x0728 C:\Windows\System32\IKEEXT.DLL - ok
12:23:13.0570 0x0728 [ F62E510B6AD4C21EB9FE8668ED251826, FA3E5CAC3E67E49377320CFBE4646585E6B62168292768FEA81E4623F9166890 ] C:\Windows\System32\wbem\WMIsvc.dll
12:23:13.0570 0x0728 C:\Windows\System32\wbem\WMIsvc.dll - ok
12:23:13.0586 0x0728 [ D64AF876D53ECA3668BB97B51B4E70AB, D5C07C019BFEAFBEDC29AB5060356A3B07449712B21B50E03378BEF04AF180F9 ] C:\Windows\System32\srvsvc.dll
12:23:13.0586 0x0728 C:\Windows\System32\srvsvc.dll - ok
12:23:13.0586 0x0728 [ 704314FD398C81D5F342CAA5DF7B7F21, CDA660E1E8AAE0789780B6B9604B138E67B2BDD1404A5E4C2354B35879D43085 ] C:\Windows\System32\wbemcomn.dll
12:23:13.0586 0x0728 C:\Windows\System32\wbemcomn.dll - ok
12:23:13.0586 0x0728 [ 3DAA727B5B0A45039B0E1C9A211B8400, 903B51E75F0C503A0E255120F53BF51B047B219FEC1E15F2F1D02DDD562FC73B ] C:\Windows\System32\browser.dll
12:23:13.0586 0x0728 C:\Windows\System32\browser.dll - ok
12:23:13.0601 0x0728 [ 58F67245D041FBE7AF88F4EAF79DF0FA, 67468D6A46FF4D87AD321BFEA42F2FC843D09AA292A119C76D4D795D06028F96 ] C:\Windows\System32\iphlpsvc.dll
12:23:13.0601 0x0728 C:\Windows\System32\iphlpsvc.dll - ok
12:23:13.0601 0x0728 [ 701C9EB15E1E23D22F7C7184C0506673, 1CD59E8B8889C93B55F600DA1A7246810E8EAB725EFEF80327AC96344AC596A6 ] C:\Windows\System32\wbem\WmiDcPrv.dll
12:23:13.0601 0x0728 C:\Windows\System32\wbem\WmiDcPrv.dll - ok
12:23:13.0617 0x0728 [ CE292C4C10B8DB6070F262EA2733F0DC, 0A685263DA0277F2D215C4C22BF39E2F869B632B42B8C992E068129F57177BE1 ] C:\Windows\System32\sqmapi.dll
12:23:13.0617 0x0728 C:\Windows\System32\sqmapi.dll - ok
12:23:13.0617 0x0728 [ CFC7D8289D2B5F3CF8D16E2DB7F93D4A, 61B4D669C692775EF361445293163E84FAD8636AC49C8047BE806DB4E4093291 ] C:\Windows\System32\wbem\fastprox.dll
12:23:13.0617 0x0728 C:\Windows\System32\wbem\fastprox.dll - ok
12:23:13.0617 0x0728 [ A399514D3B28C9A3453A486BBAAFF1C7, 487CAA68CF4EE0C9DC26975C694A2780ADEFB687D1EDF929CE6E1C7E3722FFE9 ] C:\Windows\System32\wdscore.dll
12:23:13.0617 0x0728 C:\Windows\System32\wdscore.dll - ok
12:23:13.0633 0x0728 [ E4B72E71EC37A59FE574A998A0C0EB9B, C17B06C936FC47B6AA5221ABF1DDE283F59E5751BEE9CDBCCBAF25CD4E7232AD ] C:\Windows\System32\netmsg.dll
12:23:13.0633 0x0728 C:\Windows\System32\netmsg.dll - ok
12:23:13.0633 0x0728 [ E3E811471DE781900FF21C1FD84E941E, 2A47FF52D1D6480AAD1919382E783EA184BF926311F8C7E466FEBE9F6FB88FD6 ] C:\Windows\System32\ntdsapi.dll
12:23:13.0633 0x0728 C:\Windows\System32\ntdsapi.dll - ok
12:23:13.0633 0x0728 [ C5B0324DB461559ADD070E632A6919FA, AB09CACB5B7DD372B27921A5E01220552A611CECA27EF87961001FA467FDED45 ] C:\Windows\System32\wbem\wbemprox.dll
12:23:13.0633 0x0728 C:\Windows\System32\wbem\wbemprox.dll - ok
12:23:13.0648 0x0728 [ 881D9F2D6E04E1C323050CF1574870F7, DA02C415977A2E50C3D1E96E227234E7195BD33903C446A17FBE0FA8D14A164F ] C:\Windows\System32\wbem\WinMgmtR.dll
12:23:13.0648 0x0728 C:\Windows\System32\wbem\WinMgmtR.dll - ok
12:23:13.0648 0x0728 [ 6383C60EC0133B14F5705F96369421B2, EAB3FA2344B853148F199F744E716FBB8E9331B9DB588F784274599B6BCE2335 ] C:\Windows\System32\hnetcfg.dll
12:23:13.0648 0x0728 C:\Windows\System32\hnetcfg.dll - ok
12:23:13.0648 0x0728 [ 1FF7E4F548C7C372C804938F0D5B36AE, F20409733F67853CBF51FD83E4DB73260FED7B7A4F361C6B3482D78C990E16FC ] C:\Windows\System32\netcfgx.dll
12:23:13.0648 0x0728 C:\Windows\System32\netcfgx.dll - ok
12:23:13.0664 0x0728 [ 45D9F6CD2469CDB6A640DD4BD2B01471, 21704ADB83B26DD9C2D4D248FE61F3FEC2003D6748BB6A830334F0FDA9610362 ] C:\Windows\System32\nci.dll
12:23:13.0664 0x0728 C:\Windows\System32\nci.dll - ok
12:23:13.0664 0x0728 [ 865BAA52F8B6298249D8985A659745B6, 18631E51130DE483AD91D494268916F6EB9E4DC511B9D6D906F285EC1854A003 ] C:\Program Files\AVG\AVG2014\avgwd.dll
12:23:13.0664 0x0728 C:\Program Files\AVG\AVG2014\avgwd.dll - ok
12:23:13.0664 0x0728 [ E00E7CF4BFAB3E998D7F3D6166889D0C, A911B0741E397E5D13256EA1E9C44881C08652642A8ACDE3FCD6BBE225CE3DCF ] C:\Program Files\AVG\AVG2014\avgsecapix.dll
12:23:13.0679 0x0728 C:\Program Files\AVG\AVG2014\avgsecapix.dll - ok
12:23:13.0679 0x0728 [ A63DC5C2EA944E6657203E0C8EDEAF61, F7AD4B09AFB301CE46DF695B22114331A57D52E6D4163FF74787BF68CCF44C78 ] C:\Windows\System32\dllhost.exe
12:23:13.0679 0x0728 C:\Windows\System32\dllhost.exe - ok
12:23:13.0679 0x0728 [ 75F5E1FE8D55CF8E577E0EC5F2290D3F, F4E2C81F0834018052A481AE8D7DF4780302A6844160CCDC09F7D82D3B992BDE ] C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.18201_none_ec80f00e8593ece5\comctl32.dll
12:23:13.0679 0x0728 C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.18201_none_ec80f00e8593ece5\comctl32.dll - ok
12:23:13.0695 0x0728 [ 0B31464B7B2D616BD5F7036673588EC1, AAC717D7FB02D5F7CC11AECC5C87FE6B7224340C569EBF7B77BD8C9F79FAA190 ] C:\Windows\System32\IDStore.dll
12:23:13.0695 0x0728 C:\Windows\System32\IDStore.dll - ok
12:23:13.0695 0x0728 [ ED6EE83D61EBC683C2CD8E899EA6FEBE, F82592908D038C44D9F2E5C5B7BC663A2D370FC565F40420E1138A9E55F0E7EB ] C:\Windows\System32\rasadhlp.dll
12:23:13.0695 0x0728 C:\Windows\System32\rasadhlp.dll - ok
12:23:13.0695 0x0728 [ 72E953215CADE1A726C04AAFDF6B463D, 473866333D2241BAD6918D21EBCBE8F8EEA9344D816788300BCA290A89FBD3DD ] C:\Windows\System32\taskhost.exe
12:23:13.0695 0x0728 C:\Windows\System32\taskhost.exe - ok
12:23:13.0711 0x0728 [ 3E319293003DAC47E7BD90316BE8BFD3, B136D549775F35E35002FD2117CCB00892259C833F82C7BD9F58AFC2AF189DAD ] C:\Program Files\AVG\AVG2014\avgremovalx.dll
12:23:13.0711 0x0728 C:\Program Files\AVG\AVG2014\avgremovalx.dll - ok
12:23:13.0711 0x0728 [ 74AF6AA2E8B3180AADAE5FE8813CB1CD, FB1C334A76B4E51B1C91141CB7E8B435FE4A8403072112B5F1BAC917649FFC22 ] C:\Windows\System32\localspl.dll
12:23:13.0711 0x0728 C:\Windows\System32\localspl.dll - ok
12:23:13.0711 0x0728 [ 629181C26A78EB66B0B4E774E5AC2882, DE39D01ADC4123C81EF77B24D7FC2F66C27CC2D31248EF53C52CD31AC90A95CE ] C:\Windows\System32\spoolss.dll
12:23:13.0711 0x0728 C:\Windows\System32\spoolss.dll - ok
12:23:13.0726 0x0728 [ 9E4B0E7472B4CEBA9E17F440B8CB0AB8, B1A9B2EF000917214C0198958CBD239D1D91B1720EC40DF041262A34D302AD74 ] C:\Windows\System32\winspool.drv
12:23:13.0726 0x0728 C:\Windows\System32\winspool.drv - ok
12:23:13.0726 0x0728 [ 126F8331BD023178C7F0EF2F5EDE16B3, F56DDCC9F282274F2EB073CE33B0CAB7EFC759B9C39B19909FE901E89DA0307F ] C:\Windows\System32\FXSMON.dll
12:23:13.0726 0x0728 C:\Windows\System32\FXSMON.dll - ok
12:23:13.0726 0x0728 [ 03CF941D031F30272D3063E5A4D686F5, 641189DA98156FC8DFABF766EB34726F64E5901AF5F74B42C392C218C892F179 ] C:\Windows\System32\PrintIsolationProxy.dll
12:23:13.0726 0x0728 C:\Windows\System32\PrintIsolationProxy.dll - ok
12:23:13.0742 0x0728 [ 1220595CABA75AB91A6B3FA3B89483CC, 313DFE385336D00DAFBC8DF30F001859C77DEB214BB3F874CE42F22734FFAE4E ] C:\Windows\System32\snmpapi.dll
12:23:13.0742 0x0728 C:\Windows\System32\snmpapi.dll - ok
12:23:13.0742 0x0728 [ B390C1D825C7687493BEDE237C6C2F25, 969C456E52695E8AECDDF80995F05D18F6F686AA1AE58A9A661C3069CDF5B1BD ] C:\Windows\System32\tcpmon.dll
12:23:13.0742 0x0728 C:\Windows\System32\tcpmon.dll - ok
12:23:13.0742 0x0728 [ 6357E2B68753A1F5CF4A68A25C4FD14A, F56BFEEACBB9DAE084F4C275DF0086091F5B83DE7183FA33F4445CD31FBB44E3 ] C:\Windows\System32\wsnmp32.dll
12:23:13.0742 0x0728 C:\Windows\System32\wsnmp32.dll - ok
12:23:13.0757 0x0728 [ 923CDD30092DB73EC4A0EBCDDD16C686, 83F94BE7C324FFADCA13780C617A8CAA1C7CD80F205EACA8FBADA83865D1E0D3 ] C:\Windows\System32\usbmon.dll
12:23:13.0757 0x0728 C:\Windows\System32\usbmon.dll - ok
12:23:13.0757 0x0728 [ 73F6C5223F7E9B5780DD4A6C30FCF569, 121A361A572EFC6AC964300DA93BF28DC11E55DDCA29A7C6E6FD12955FBA68B8 ] C:\Windows\System32\WSDApi.dll
12:23:13.0757 0x0728 C:\Windows\System32\WSDApi.dll - ok
12:23:13.0773 0x0728 [ A8EB761DE499242BECF153B2B34F020E, 3C6F477B5143FCE607FDB088AE471C7037E2BAC01D8CE8C57B5CF1BE57E78D46 ] C:\Windows\System32\WSDMon.dll
12:23:13.0773 0x0728 C:\Windows\System32\WSDMon.dll - ok
12:23:13.0773 0x0728 [ DB846EECA70EE9D2E2FF31147C57B0F4, 1086310477697F43EB156314804B7E9100E04966EF3934F9F5E37112C5129954 ] C:\Windows\System32\webservices.dll
12:23:13.0773 0x0728 C:\Windows\System32\webservices.dll - ok
12:23:13.0773 0x0728 [ 89D90579E5FB1469CB0464F6512E42B7, 0E85C6935FEAA219C923FF63D17F7C3AF72FF5028E0FF95B66092C6DF64C665C ] C:\Windows\System32\fundisc.dll
12:23:13.0773 0x0728 C:\Windows\System32\fundisc.dll - ok
12:23:13.0789 0x0728 [ F34CFADA6C48DAA41B996D24C7D8D3CA, D294DECC607A6ED7264BEC41FDA3BF12D3F2B3FAFAF55F0C5F2235A9066C97EC ] C:\Windows\System32\fdPnp.dll
12:23:13.0789 0x0728 C:\Windows\System32\fdPnp.dll - ok
12:23:13.0789 0x0728 [ CD72C6406BA561BED6D42CB145E55307, F5DD79FCE5CAA5049C74462B366509356B8B5CCB68E14586ED95CDF98F307787 ] C:\Windows\System32\spool\prtprocs\w32x86\winprint.dll
12:23:13.0789 0x0728 C:\Windows\System32\spool\prtprocs\w32x86\winprint.dll - ok
12:23:13.0789 0x0728 [ FC415B303B1ECF80B5F130A1F7203D02, ACC51D8CCF02E5EFB495BF66538B5F42CFFE5A186BC5762CC286E98509FC5DC4 ] C:\Windows\System32\win32spl.dll
12:23:13.0789 0x0728 C:\Windows\System32\win32spl.dll - ok
12:23:13.0804 0x0728 [ D27DDE7E0444C7F1819F958469EB7D93, EA13616D78F17CCFD77603F7EE2DDDD159100AA3DF78C1FAAEB4695D5AC7218A ] C:\Windows\System32\inetpp.dll
12:23:13.0804 0x0728 C:\Windows\System32\inetpp.dll - ok
12:23:13.0804 0x0728 [ AE9898D5600A232CD8AE3298692162E5, 8B94BA9C404B8A21CE023335960E77C73245FB30015161EEFF48573DDB7E6922 ] C:\Windows\System32\clusapi.dll
12:23:13.0804 0x0728 C:\Windows\System32\clusapi.dll - ok
12:23:13.0804 0x0728 [ 89E783711AF91AF09E1EF30EF3107446, CA91DABED7508A86A4AFA5F99A4A78D0BA3577168B04C8E3462FC4D55FA33FFD ] C:\Windows\System32\sscore.dll
12:23:13.0804 0x0728 C:\Windows\System32\sscore.dll - ok
12:23:13.0820 0x0728 [ 2AF094C822BD6094F14A8E85FB51D52A, F70A4FEC66E64245237D9D1A4C2C87168A26F224FCE648A3D7065E95259887D2 ] C:\Windows\System32\resutils.dll
12:23:13.0820 0x0728 C:\Windows\System32\resutils.dll - ok
12:23:13.0820 0x0728 [ 40CAEEE0EAF1B8569F7C8DF6420F2CB9, E18D66455D00A6D2A2D7CC0833C233FE8A6DD910B59D6B5B5F82EF91450858DF ] C:\Windows\System32\sfc.dll
12:23:13.0820 0x0728 C:\Windows\System32\sfc.dll - ok
12:23:13.0820 0x0728 [ 84799328D87B3091A3BDD251E1AD31F9, F85521215924388830DBB13580688DB70B46AF4C7D82D549D09086438F8D237B ] C:\Windows\System32\sfc_os.dll
12:23:13.0820 0x0728 C:\Windows\System32\sfc_os.dll - ok
12:23:13.0835 0x0728 [ 5845B1C54380FB980F68024B3A8B1E66, A7215D59B5C452F1494CFEC0DFC1E4ABE2D17EA0E1D07FBA062901BC3DED21AF ] C:\Windows\System32\vpnikeapi.dll
12:23:13.0835 0x0728 C:\Windows\System32\vpnikeapi.dll - ok
12:23:13.0835 0x0728 [ 49ACA548B2423F1C67898E6AC719A9A6, 23D84137EAB9AFDD31CBB6776B6B25AD135A120AF7F7885EB5BBF9E0A2CCC4C1 ] C:\Windows\System32\api-ms-win-downlevel-advapi32-l2-1-0.dll
12:23:13.0835 0x0728 C:\Windows\System32\api-ms-win-downlevel-advapi32-l2-1-0.dll - ok
12:23:13.0835 0x0728 [ 585EB475E7AF55C9065256E8FFB751A1, 5AE557013435DF993F0E872B90A94CBB9E80FA8A080469C300EBCEE62CABA92F ] C:\Windows\System32\wbem\wbemcore.dll
12:23:13.0835 0x0728 C:\Windows\System32\wbem\wbemcore.dll - ok
12:23:13.0851 0x0728 [ A8994EA29FDE1BA4A28A24B1D9258EE2, 38FEC11EF2F4E96CE90E71428928BA267E844BAAF97A44027BF98E9F739866F8 ] C:\Program Files\AVG\AVG2014\avgnetclix.dll
12:23:13.0851 0x0728 C:\Program Files\AVG\AVG2014\avgnetclix.dll - ok
12:23:13.0851 0x0728 [ 5AE88135C6A86FCD67BA16AFBB1C8389, 0FC750B5C84F1AFBE93E8A23410360F4B068D367A9AF6FF2E3F6160DA5005DE5 ] C:\Windows\System32\wbem\esscli.dll
12:23:13.0851 0x0728 C:\Windows\System32\wbem\esscli.dll - ok
12:23:13.0867 0x0728 [ 776AE0564F8B1C282E331FD95A1BDC5F, 601CFCA3922FFEA46A54AD323845A76A12FC6AF9FF64E9B0AE294FBB1AFCF4CB ] C:\Windows\System32\wbem\wbemsvc.dll
12:23:13.0867 0x0728 C:\Windows\System32\wbem\wbemsvc.dll - ok
12:23:13.0867 0x0728 [ 5C3F9DBA818CD93379D1A0F215270374, 6A4D96AC83989D47D80332E41E627F2607A3B2167E1A5D8E21361136C4424633 ] C:\Windows\System32\esent.dll
12:23:13.0867 0x0728 C:\Windows\System32\esent.dll - ok
12:23:13.0867 0x0728 [ 4F2659160AFCCA990305816946F69407, 9E70685B73B3EAB78C55863BABCEECC7CCA89475B508B2A9C651ADE6FDE0751A ] C:\Windows\System32\taskeng.exe
12:23:13.0867 0x0728 C:\Windows\System32\taskeng.exe - ok
12:23:13.0882 0x0728 [ 6CA5E47473270547D36A78B997943EEA, D545B32297DEE656E326863F8813453C62C9564077A863BC783E38C0B7085095 ] C:\Program Files\AVG\AVG2014\avgopensslx.dll
12:23:13.0882 0x0728 C:\Program Files\AVG\AVG2014\avgopensslx.dll - ok
12:23:13.0882 0x0728 [ B9A8CBCFCD3EC9D2EA4740AF347BF108, 97FA304E3880BC863D999F441AE47CB8ADF00D2DEC2A52ACD8FBD02CC096786A ] C:\Windows\System32\mpr.dll
12:23:13.0882 0x0728 C:\Windows\System32\mpr.dll - ok
12:23:13.0882 0x0728 [ 371E3B05894549113D07CD3081ED55EF, 9973678AC0F50B1F02B379B1D4A7DDF317B724D65BE3FF635FD751EDD1D96B5A ] C:\Windows\System32\wbem\repdrvfs.dll
12:23:13.0882 0x0728 C:\Windows\System32\wbem\repdrvfs.dll - ok
12:23:13.0898 0x0728 [ 5610B0425518D185331CB8E968D060E6, E235186C3BF266EE9EC733D2CFF35E3A65DE039C19B14260F4054F34B5E8AD41 ] C:\Windows\System32\wbem\wmiutils.dll
12:23:13.0898 0x0728 C:\Windows\System32\wbem\wmiutils.dll - ok
12:23:13.0898 0x0728 [ B43687C534A49700BF4B3C9898763752, B4C371CB2C0EAC1803E6C845F629814B2CE4C568022EB6A1C9AC1F293BF74F40 ] C:\Windows\System32\MsCtfMonitor.dll
12:23:13.0898 0x0728 C:\Windows\System32\MsCtfMonitor.dll - ok
12:23:13.0898 0x0728 [ 56CEED370508F69A1BA04939BD1BADDA, C84F383F2B3C9581F635E51DA39567F0B5ED2D847B18CCE51022BA4B2FA7EA8D ] C:\Windows\System32\msutb.dll
12:23:13.0898 0x0728 C:\Windows\System32\msutb.dll - ok
12:23:13.0913 0x0728 [ 61AC3EFDFACFDD3F0F11DD4FD4044223, 538FE1012FEDC72727A8DE0C2C01944B3D35C29812ECEF88E95AAC07235E0B0B ] C:\Windows\System32\userinit.exe
12:23:13.0913 0x0728 C:\Windows\System32\userinit.exe - ok
12:23:13.0913 0x0728 [ 7319102526BD11B45FD66335CF90CA12, F2C7484AE33BEDE8586FB09273665B25DA7E8FEEACF9FEF43EB0B902CE4A0BD9 ] C:\Windows\System32\HotStartUserAgent.dll
12:23:13.0913 0x0728 C:\Windows\System32\HotStartUserAgent.dll - ok
12:23:13.0929 0x0728 [ F58516E2DC0D963EF70D6BFC21FD82C4, 5689BF12B43BE0D6BFBD6B9122A2FF53FCEC766A58A0F3C6B88AE504ACB10E04 ] C:\Windows\System32\PlaySndSrv.dll
12:23:13.0929 0x0728 C:\Windows\System32\PlaySndSrv.dll - ok
12:23:13.0929 0x0728 [ 3CDE2911462FEC80064A409C07710C06, DBEC8669B1B8FA68750B17008C4328B223F8263EBE02C550780926C23D38D7D3 ] C:\Windows\System32\wbem\WmiPrvSD.dll
12:23:13.0929 0x0728 C:\Windows\System32\wbem\WmiPrvSD.dll - ok
12:23:13.0929 0x0728 [ A4CC7227A452C4909F9499D91B184364, 56111E57D17553BE3EAB8DA2DC42C7132E4458549AFFC08975B7A7204D8F5E76 ] C:\Windows\System32\ncobjapi.dll
12:23:13.0929 0x0728 C:\Windows\System32\ncobjapi.dll - ok
12:23:13.0945 0x0728 [ B350509B6C9296529BC464C60FEEAEF1, CC653ED001FE6A2BE5A9687572A70CEF9FAB258A57896643379E5D6C1D8E4F1F ] C:\Windows\System32\wbem\wbemess.dll
12:23:13.0945 0x0728 C:\Windows\System32\wbem\wbemess.dll - ok
12:23:13.0945 0x0728 [ 505BF4D1CADEB8D4F8BCD08D944DE25D, 526F07768471F4457CBEAB7093AF0B0242044C89A80A347DB47F44EBADEEA68D ] C:\Windows\System32\dwm.exe
12:23:13.0945 0x0728 C:\Windows\System32\dwm.exe - ok
12:23:13.0945 0x0728 [ 497E59D9F01C6F247E72222A61835119, 4C31900BA2F911B2A5AE8F7FCE267DCE17655B20A6B71CD4E38FE1B1692142D1 ] C:\Windows\System32\dwmcore.dll
12:23:13.0945 0x0728 C:\Windows\System32\dwmcore.dll - ok
12:23:13.0960 0x0728 [ 754AFC50022C95DA7C86B7020DB78136, 81C58F303DA2E0EC066261890C1D638EE02D2B579BBCB1BB398EDF6A0EBA671E ] C:\Windows\System32\dwmredir.dll
12:23:13.0960 0x0728 C:\Windows\System32\dwmredir.dll - ok
12:23:13.0960 0x0728 [ 3C1936A12C62254F914A01BBC6A8DC69, 0068F7A8B0D9E9776B44EAD99007B0CE5A5600633F2B477E9EFAAC644408C70E ] C:\Windows\System32\d3d10_1.dll
12:23:13.0960 0x0728 C:\Windows\System32\d3d10_1.dll - ok
12:23:13.0960 0x0728 [ D4212AB475A3B25EC4DF574536C3EDC5, F8BBEECB66BA6DDE5A64ED41D8BF95A1C81470552B4BFD5B11D888156289CCDD ] C:\Windows\System32\d3d10_1core.dll
12:23:13.0960 0x0728 C:\Windows\System32\d3d10_1core.dll - ok
12:23:13.0976 0x0728 [ 659E04E74135927CA6D7BC5E75C84417, 635CAF4AA78ACFBA30F855C82EFA696E826D710011E960E39817EE0CB6975149 ] C:\Windows\System32\TSChannel.dll
12:23:13.0976 0x0728 C:\Windows\System32\TSChannel.dll - ok
12:23:13.0976 0x0728 [ D4F264FE23F8953D840904418220C15E, 72EAF30265A0CC88DEC0FCA7869734D8C93572457C61A2BF1BDFFB20C061DBCD ] C:\Windows\System32\dxgi.dll
12:23:13.0976 0x0728 C:\Windows\System32\dxgi.dll - ok
12:23:13.0976 0x0728 [ 6DE66FE7C526637E74CD066461C7C871, 7E8980A3751762180D795EAC38458303BEAF8D1F85AB5F2D10D9CE7013090CBE ] C:\Windows\System32\d3d11.dll
12:23:13.0976 0x0728 C:\Windows\System32\d3d11.dll - ok
12:23:13.0991 0x0728 [ D5AEFAD57C08349A4393D987DF7C715D, C36A45BC2448DF30CD17BD2F8A17FC196FAFB685612CACCEB22DC7B58515C201 ] C:\Windows\System32\winmm.dll
12:23:13.0991 0x0728 C:\Windows\System32\winmm.dll - ok
12:23:13.0991 0x0728 [ 8B88EBBB05A0E56B7DCC708498C02B3E, 9E1EC8B43A88E68767FD8FED2F38E7984357B3F4186D0F907E62F8B6C9FF56AD ] C:\Windows\explorer.exe
12:23:13.0991 0x0728 C:\Windows\explorer.exe - ok
12:23:14.0007 0x0728 [ E2A17BCC08D92F42E08AF6BA2F93ABA7, 5FC9D47BF4B1094BECC0C0DDCD5CD4318DD3E4495D982F8785331616D5B82599 ] C:\Windows\System32\ExplorerFrame.dll
12:23:14.0007 0x0728 C:\Windows\System32\ExplorerFrame.dll - ok
12:23:14.0007 0x0728 [ 55D6494C2311707FD0AF7DB63DA4D656, 57F045938B9186CD7BA6C912BFE23123567979BB770F86BA50A06F78A5D2B616 ] C:\Windows\System32\igdumdx32.dll
12:23:14.0007 0x0728 C:\Windows\System32\igdumdx32.dll - ok
12:23:14.0007 0x0728 [ 4FF3EC04CD47DD62181894B71B004E40, 5C45E7E97AAA4E5642C1CD95A44C02D3EE76448534FA6428819AA44BAFECD5A0 ] C:\Windows\System32\d3d10level9.dll
12:23:14.0007 0x0728 C:\Windows\System32\d3d10level9.dll - ok
12:23:14.0023 0x0728 [ D039F98E767C2CF5020033B6ADDABB76, 72691A6CBBF0DED04E29C404CB47078D8D64DD6A2FB6E656FDB83835D531A25B ] C:\ProgramData\AVG 0214c Campaign\AVG-Secure-Search-Update-0214c.exe
12:23:14.0023 0x0728 C:\ProgramData\AVG 0214c Campaign\AVG-Secure-Search-Update-0214c.exe - ok
12:23:14.0023 0x0728 [ 39C3B2EEBEE102ADDA573C346FF5F3B7, F73D8780E40BF2CCE9CB6A36255BE3254237C331EC98928C4EEC05183DACDA23 ] C:\Windows\System32\igdumd32.dll
12:23:14.0023 0x0728 C:\Windows\System32\igdumd32.dll - ok
12:23:14.0023 0x0728 [ 6F8E3B7B70E1BBA871212940C1FBDF60, 3F9D4EE64E4210340C6FEE0DE81BFE3C613DDBE608EC09D63817D24CE24BFC5E ] C:\Windows\System32\SensApi.dll
12:23:14.0023 0x0728 C:\Windows\System32\SensApi.dll - ok
12:23:14.0038 0x0728 [ 2100560AF3F7F2948F2676E44DFB4ECF, 28472E8BEE46DCAE961C7AFEF71EFD5675ECD05492A92631CCB4EF62DFD10F7A ] C:\Windows\System32\uDWM.dll
12:23:14.0038 0x0728 C:\Windows\System32\uDWM.dll - ok
12:23:14.0038 0x0728 [ 936F728E04ACCF3F38801CFFCF1E3F40, 59CA86096F4B928E364B6A3C0408615F068BB8BC02DCFC5EAF4873EC6D6E0797 ] C:\Windows\System32\oledlg.dll
12:23:14.0038 0x0728 C:\Windows\System32\oledlg.dll - ok
12:23:14.0038 0x0728 [ 846D0E4DB261CFAF363902E41498E961, D7E5591B7604FD583AF7FDA19E30928B24A6145318A3944E7D207F0CCEEB30D0 ] C:\Windows\System32\EhStorShell.dll
12:23:14.0038 0x0728 C:\Windows\System32\EhStorShell.dll - ok
12:23:14.0054 0x0728 [ 57A51217581614DE07F30E34D6BB4993, 19D06DCCF1B39DFE4FF269C5C4001E60837296411EB8E169CE142DEFAA3D94FA ] C:\Windows\System32\cscdll.dll
12:23:14.0054 0x0728 C:\Windows\System32\cscdll.dll - ok
12:23:14.0054 0x0728 [ 3EC541C196DE18ED9A0D0AC82A694D4C, 51BCBDDFF113A02EF85E09BE6B2727EDB505EBFE355A8E163A7F4C82EBFBBCC4 ] C:\Windows\System32\cscui.dll
12:23:14.0054 0x0728 C:\Windows\System32\cscui.dll - ok
12:23:14.0054 0x0728 [ 506708142BC63DABA64F2D3AD1DCD5BF, 9C36A08D9E7932FF4DA7B5F24E6B42C92F28685B8ABE964C870E8D7670FD531A ] C:\Program Files\Google\Update\GoogleUpdate.exe
12:23:14.0054 0x0728 C:\Program Files\Google\Update\GoogleUpdate.exe - ok
12:23:14.0069 0x0728 [ 465BEA35F7ED4A4A57686DEA7EA10F47, 7F1B3CA09AB045F805DA5765BE7DD270F5DDACE3073017F7386FF1E2FA82D6FB ] C:\Windows\System32\cscapi.dll
12:23:14.0069 0x0728 C:\Windows\System32\cscapi.dll - ok
12:23:14.0069 0x0728 [ 03F3B770DFBED6131653CEDA8CA780F0, 77373919DCA647F09851E7E460AE78FBD89F21516B961F84AC4446304E51E09C ] C:\Windows\System32\ntshrui.dll
12:23:14.0069 0x0728 C:\Windows\System32\ntshrui.dll - ok
12:23:14.0069 0x0728 [ A7495E342A2EE0160812AC856C11F6CF, 3D67385DC3115BB1D8544E8596FECC972D205BC84BAD4F4DD01CBA9783B66199 ] C:\Program Files\Google\Update\1.3.22.3\goopdate.dll
12:23:14.0069 0x0728 C:\Program Files\Google\Update\1.3.22.3\goopdate.dll - ok
12:23:14.0085 0x0728 [ 523CF74A52C9A1762DA8B83AEE734498, 5A739182B916738B611E1BBA9098F8BCC8C4E2CC2CFEFD1BC5CE7941D11CEDFD ] C:\Windows\System32\IconCodecService.dll
12:23:14.0085 0x0728 C:\Windows\System32\IconCodecService.dll - ok
12:23:14.0085 0x0728 [ A6C29DB53ECA94FA8591C5388D604B82, F25E95BA669422286A8FA3A68E0C639A2F06319B6DC8FA641C965CFB27A50BD6 ] C:\Windows\System32\msi.dll
12:23:14.0085 0x0728 C:\Windows\System32\msi.dll - ok
12:23:14.0085 0x0728 [ 18AB2E5A40064ED5F7791AC5946A90F3, B7536CE56702C23B1CEC3E1B6C78866E0A76808B85A92AF3733D9ED9429E004C ] C:\Windows\System32\msimg32.dll
12:23:14.0085 0x0728 C:\Windows\System32\msimg32.dll - ok
12:23:14.0101 0x0728 [ 3C63D29752BFCF3BF6EA198850A7BA70, 95A0EE287735BBC6CA21650B294D2858B211159A1CA7A336ADF46FE45741E5A5 ] C:\Program Files\AVG\AVG2014\avgidpsdkx.dll
12:23:14.0101 0x0728 C:\Program Files\AVG\AVG2014\avgidpsdkx.dll - ok
12:23:14.0101 0x0728 [ 53223B673A3FA2F9A4D1C31C8D3F6CD8, B07A12E3ECD5E418A3F99F00C56E7F482F68CADE330E7C079DCCDFFAD2E21299 ] C:\Windows\System32\dbghelp.dll
12:23:14.0101 0x0728 C:\Windows\System32\dbghelp.dll - ok
12:23:14.0116 0x0728 [ 465680BDE344CE4FF6646626AA3A9125, DF762666DB5E7C31B0EC64976C85B5D6533805AF2D4FC9BCFF9FB94AAF823E8D ] C:\Program Files\Google\Update\1.3.22.3\GoogleCrashHandler.exe
12:23:14.0116 0x0728 C:\Program Files\Google\Update\1.3.22.3\GoogleCrashHandler.exe - ok
12:23:14.0116 0x0728 [ 0117608361E0A98654D1992B4908B10D, 94A59A5C76D24D6D22D2CECA6F48D46FCB3ECAACAC81A0010AE75B10C5E5B412 ] C:\Program Files\AVG\AVG2014\avgwdwsc.dll
12:23:14.0116 0x0728 C:\Program Files\AVG\AVG2014\avgwdwsc.dll - ok
12:23:14.0116 0x0728 [ A8CDF3768604FF95B54669E20053D569, 2DB85B86C839341F2A879A6D25F787D17EE665D425C1BAC3E1F82BAC61F89F94 ] C:\Windows\System32\wscapi.dll
12:23:14.0116 0x0728 C:\Windows\System32\wscapi.dll - ok
12:23:14.0132 0x0728 [ 5D629F714CC14FF6F024BE12A60473B5, BD76ACE92F2F53D13C2A1B3D32B29D10378B73C07358F8633E3DFD8D7E739839 ] C:\Program Files\AVG\AVG2014\avgshredx.dll
12:23:14.0132 0x0728 C:\Program Files\AVG\AVG2014\avgshredx.dll - ok
12:23:14.0132 0x0728 [ EACFDF31921F51C097629F1F3C9129B4, 24138755D823E69760579ECBD672421192457CDC9941B2BC499C2D34D83E86C3 ] C:\Windows\System32\appinfo.dll
12:23:14.0132 0x0728 C:\Windows\System32\appinfo.dll - ok
12:23:14.0132 0x0728 [ 46EF9DC96265FD0B423DB72E7C38C2A5, 43801A51FB0E45CFFC73DF6441B54A75FC2FEAF5E0424DFE7AB04FC26CF6CD16 ] C:\Windows\System32\wdi.dll
12:23:14.0132 0x0728 C:\Windows\System32\wdi.dll - ok
12:23:14.0147 0x0728 [ AA53356D60AF47EACC85BC617A4F3F66, 155CB8112AA382D841C1891750FF29EF4F1BF716CD9CDF0F2243209E2CCCAC98 ] C:\Windows\System32\wpdbusenum.dll
12:23:14.0147 0x0728 C:\Windows\System32\wpdbusenum.dll - ok
12:23:14.0147 0x0728 [ C5C867CD7EFAC60D5021223E374DEEC5, 197FEE8F02DE348E75771AC9AD748EFB29939F1AAF02DA6555181EEF787FD099 ] C:\Windows\System32\dimsjob.dll
12:23:14.0147 0x0728 C:\Windows\System32\dimsjob.dll - ok
12:23:14.0147 0x0728 [ 15E298B5EC5B89C5994A59863969D9FF, 8D38B2E023462D0804F72E907D11FF72CE84540EA3B8D83F411C602C3F6A1177 ] C:\Windows\System32\npmproxy.dll
12:23:14.0147 0x0728 C:\Windows\System32\npmproxy.dll - ok
12:23:14.0163 0x0728 [ E98278865E8DABA21CFE5FE4BE34210A, 3BB431A9F6476EA98C17DF46BA5DFA265E74328D84875E402236ED12E50B6330 ] C:\Windows\System32\PortableDeviceApi.dll
12:23:14.0163 0x0728 C:\Windows\System32\PortableDeviceApi.dll - ok
12:23:14.0163 0x0728 [ 53946B69BA0836BD95B03759530C81EC, 7F14A34635354CCA0F5342C8D9DF5A6AA1B94F6A508BD8834029E9BACF252920 ] C:\Windows\System32\IPSECSVC.DLL
12:23:14.0163 0x0728 C:\Windows\System32\IPSECSVC.DLL - ok
12:23:14.0163 0x0728 [ 7E82616BEE76BF5EAA5B30F681414E21, 2138D743C4C09ECD829E194CA42934CB044BFF400921DA9B5FA50371E191656E ] C:\Windows\System32\perftrack.dll
12:23:14.0163 0x0728 C:\Windows\System32\perftrack.dll - ok
12:23:14.0179 0x0728 [ ECF036299AA554B5E0455262857B39D0, E7A08E4AA1677291FB55E1B43511B912D45676652E35C6BA75D1604A8BE5B1D0 ] C:\Windows\System32\diagperf.dll
12:23:14.0179 0x0728 C:\Windows\System32\diagperf.dll - ok
12:23:14.0179 0x0728 [ 14486EB6AF542F2BD3239F7FC3E713F7, C084C653CF6C63D7B4DB08CBDE2CAF059019D276BCACD923A29D22E69055012C ] C:\Windows\System32\pautoenr.dll
12:23:14.0179 0x0728 C:\Windows\System32\pautoenr.dll - ok
12:23:14.0194 0x0728 [ C693E642ACFBDD76433AF6BE3C3EEE6F, 5241C30CCB095B10B10AD11F42F57B2DEA362C7F6DA36A9A5B23E4DFF113CFD7 ] C:\Windows\System32\PortableDeviceConnectApi.dll
12:23:14.0194 0x0728 C:\Windows\System32\PortableDeviceConnectApi.dll - ok
12:23:14.0194 0x0728 [ D99621C0735B21DCC8BC4FEF02F379EF, C9FAD74DD80B6CCA95B83B767BB55644E775E8DC3FFC05CD89AEF16686F902FD ] C:\Windows\System32\Apphlpdm.dll
12:23:14.0194 0x0728 C:\Windows\System32\Apphlpdm.dll - ok
12:23:14.0194 0x0728 [ DB603D3FD090C66F9709EF6493C26BA3, A9D9A3309DAEFC5AED885AC729B1E9DE8BA5454A0C83FD4F61BCAC935F6CBB4A ] C:\Windows\System32\FwRemoteSvr.dll
12:23:14.0194 0x0728 C:\Windows\System32\FwRemoteSvr.dll - ok
12:23:14.0210 0x0728 [ 590D5C506044FE02FF7643E32FF9BDAC, B8178A45E1DB6A39501E95CE4A2B2A1A88119367EC8DA7877120575A3EA47D16 ] C:\Windows\System32\wer.dll
12:23:14.0210 0x0728 C:\Windows\System32\wer.dll - ok
12:23:14.0210 0x0728 [ 8B794AE6D5C7D42092804BC39A2EB8F6, 0C8078442EABA31D48019F1A3B7941CC19D9B3AA571FFA5DCD4E19F67DEBF723 ] C:\Windows\System32\aepic.dll
12:23:14.0210 0x0728 C:\Windows\System32\aepic.dll - ok
12:23:14.0210 0x0728 [ F8E882C10AF4C29E378D1E28D4817CB1, 1164096E044FA9B38CCC462315B9A2F7C43C472091F539F6A4BF7B5EAA389410 ] C:\Windows\System32\pnpts.dll
12:23:14.0210 0x0728 C:\Windows\System32\pnpts.dll - ok
12:23:14.0225 0x0728 [ 7FFD52D73352806969D424EF327D10A7, DD44B084F052EF798997D7A8578E98DD4EF3F0E2A0C522DA2CC169D362C7B900 ] C:\Windows\System32\radardt.dll
12:23:14.0225 0x0728 C:\Windows\System32\radardt.dll - ok
12:23:14.0225 0x0728 [ F0016853FA3F38F55FD868FF74C0359B, 49A6A6D610591D0F2FF8A88C8E72D6DCABB8C5FE5D3E995F0CE0E8FC073BA289 ] C:\Windows\System32\wdiasqmmodule.dll
12:23:14.0225 0x0728 C:\Windows\System32\wdiasqmmodule.dll - ok
12:23:14.0225 0x0728 [ D44741F65A1D71F65814A12CF6E2400A, C6721F830675ADC7E7FDE2B5E822E56F6A063146F5066F1E25EBFE86F0A87136 ] C:\Windows\System32\runonce.exe
12:23:14.0225 0x0728 C:\Windows\System32\runonce.exe - ok
12:23:14.0241 0x0728 [ EE2C15CD4214E6F4CAF35B5381630603, 1C9DDECDD1B7B55541E8B0A0A3CA6A22BF08B42AD1B16B48C0FFBD8A7A3152CF ] C:\ProgramData\AVG 0214c Campaign\MachineIdCreator.exe
12:23:14.0241 0x0728 C:\ProgramData\AVG 0214c Campaign\MachineIdCreator.exe - ok
12:23:14.0241 0x0728 [ 2DE16A63F71D10B42ACE01E759078600, D52FAE32C1BBF982C9222FBF275FF53D5F6F77B7747AFBF641937DFDC8D70487 ] C:\Windows\System32\conhost.exe
12:23:14.0241 0x0728 C:\Windows\System32\conhost.exe - ok
12:23:14.0257 0x0728 [ D1D5DAB39DCB4BE0359943738D87409B, 0BA45FE28568E852502879AE83C081517BB8103359BD5783328833EC59A54681 ] C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe
12:23:14.0257 0x0728 C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe - ok
12:23:14.0257 0x0728 [ 3913F7F9977C799AE01ED1EBB1E4F08B, 17D4EB2EC95EF547A19D791498BC62ABF1B3F29D9EFD03AF2D51FE6B60DD83A0 ] C:\Program Files\AVG\AVG2014\avgsched.dll
12:23:14.0257 0x0728 C:\Program Files\AVG\AVG2014\avgsched.dll - ok
12:23:14.0257 0x0728 [ EF39CCCC9AD927A25334AE0B41A8A343, EC5FB376F84697F42B632BC9775D362CF6C54A68E26A0CF027D90F5A419BEA74 ] C:\Program Files\Malwarebytes' Anti-Malware\mbam.dll
12:23:14.0257 0x0728 C:\Program Files\Malwarebytes' Anti-Malware\mbam.dll - ok
12:23:14.0272 0x0728 [ 9275F02BEA644F43A459E316A932658F, A4B9A716BEF1ADFDDA4C44D4838EC57BD77DEE29C4B4737B58A9375C2366A87F ] C:\Program Files\Malwarebytes' Anti-Malware\mbamnet.dll
12:23:14.0272 0x0728 C:\Program Files\Malwarebytes' Anti-Malware\mbamnet.dll - ok
12:23:14.0272 0x0728 [ AAA7D53D228E76B4291AC61E987BB058, F59D4E2CAEDF30D3039CD435CE487A9D11861271B19D2047A07586DB7474B9D2 ] C:\ProgramData\AVG 0214c Campaign\avguidx.dll
12:23:14.0272 0x0728 C:\ProgramData\AVG 0214c Campaign\avguidx.dll - ok
12:23:14.0288 0x0728 [ 0B7E85364CB878E2AD531DB7B601A9E5, F5AD3018427F1CD68450EE5CB55AA9572546322580E0FB1E7888702A291C2380 ] C:\Windows\System32\NapiNSP.dll
12:23:14.0288 0x0728 C:\Windows\System32\NapiNSP.dll - ok
12:23:14.0288 0x0728 [ 5CF640EDDB1E40A5AB1BB743BCDEC610, 0313AA3F713C9F5B84DBB0B4DE78A96B173E9F7B4CF61C10FDC7DAE952DB04E5 ] C:\Windows\System32\pnrpnsp.dll
12:23:14.0288 0x0728 C:\Windows\System32\pnrpnsp.dll - ok
12:23:14.0288 0x0728 [ 5DF5D8CFD9B9573FA3B2C89D9061A240, 990EA273B640DF2D7E800C0CFF18550259C605A4951CD82CD9F1E7B6FF0C9533 ] C:\Windows\System32\winrnr.dll
12:23:14.0288 0x0728 C:\Windows\System32\winrnr.dll - ok
12:23:14.0303 0x0728 [ 61B1ED5F429EFAC7E2036769870AB93E, 628CF28434C5DFB81B76B90BEA4CDD9EB1E4B0971BEE24136A09490F9439E00E ] C:\Windows\System32\certcli.dll
12:23:14.0303 0x0728 C:\Windows\System32\certcli.dll - ok
12:23:14.0303 0x0728 [ AD7B9C14083B52BC532FBA5948342B98, 17F746D82695FA9B35493B41859D39D786D32B23A9D2E00F4011DEC7A02402AE ] C:\Windows\System32\cmd.exe
12:23:14.0303 0x0728 C:\Windows\System32\cmd.exe - ok
12:23:14.0303 0x0728 [ 8B5EEFEEC1E6D1A72A06C526628AD161, 026CDF4C96F4D493E7BABF79A14C4B0B5ADCCEF0B081FFFA2E3B243B2414167F ] C:\Windows\System32\aelupsvc.dll
12:23:14.0303 0x0728 C:\Windows\System32\aelupsvc.dll - ok
12:23:14.0319 0x0728 [ 29BC473072568C072EC8B176498DE996, D3A4DB88BECA8AB3F8722E499548EFEC63022C1CE38F526AFBDA76DDBA8E9064 ] C:\Windows\System32\CertEnroll.dll
12:23:14.0319 0x0728 C:\Windows\System32\CertEnroll.dll - ok
12:23:14.0319 0x0728 [ 4B638CE3DAA3A082E576C0DDF9D635D4, 371F3A44047D45F481D87E9FF9DE6452D4F21C31DD137D468F6B70F861CBC999 ] C:\Windows\System32\ieframe.dll
12:23:14.0319 0x0728 C:\Windows\System32\ieframe.dll - ok
12:23:14.0319 0x0728 [ 60F4AEFA103D421EA4A40E31409B4756, 037A8605CA504A4FF43E9D4DE9017CEA1E26D3556C975872C747E24D8B0835EF ] C:\Windows\System32\api-ms-win-downlevel-shell32-l1-1-0.dll
12:23:14.0319 0x0728 C:\Windows\System32\api-ms-win-downlevel-shell32-l1-1-0.dll - ok
12:23:14.0335 0x0728 [ 2C4A87CA8C00E98EFDCFA2E8EC9A3503, DA59CE662E98E56D89E2894D2AC8B9F324C16DA23C860640EDC2C82E0AD06097 ] C:\Windows\System32\shdocvw.dll
12:23:14.0335 0x0728 C:\Windows\System32\shdocvw.dll - ok
12:23:14.0335 0x0728 [ 25CABA7671247023155D72906625ADA7, CEDC787EC2EBC557508F860A20C72266600BB937637F8C2F52A5D2DDB687B8DF ] C:\Users\user1\AppData\Local\Temp\{1AA33A33-0E73-4EB0-8E2A-37BFF6A1027F}.exe
12:23:14.0335 0x0728 C:\Users\user1\AppData\Local\Temp\{1AA33A33-0E73-4EB0-8E2A-37BFF6A1027F}.exe - ok
12:23:14.0335 0x0728 [ F148865E4AC4F715E322EA06E6E21D84, 88CF0A1CB18BA9CA3D356EAF2F7EF8892CDDD9BF55798E64E4351C1ED111575A ] C:\Windows\System32\wbem\NCProv.dll
12:23:14.0335 0x0728 C:\Windows\System32\wbem\NCProv.dll - ok
12:23:14.0350 0x0728 [ 53074C7414C6DEE7CC6F6D92B184DBD2, 5F5DAC992E118D70A236AF094EB3A0A0562DE74FB0E4A7240B5366EA578B1668 ] C:\Program Files\AVG\AVG2014\avgcmgr.exe
12:23:14.0350 0x0728 C:\Program Files\AVG\AVG2014\avgcmgr.exe - ok
12:23:14.0350 0x0728 [ 71ED93440D2E708F7AA1FD40A9E66708, DADB61F206CD43EFC1206BEE1AB2DC7A9AD31F48FBF5859C51F42EBD2A145AE0 ] C:\Program Files\AVG\AVG2014\avgcslx.dll
12:23:14.0350 0x0728 C:\Program Files\AVG\AVG2014\avgcslx.dll - ok
12:23:14.0366 0x0728 [ 2C49B175AEE1D4364B91B531417FE583, 6C7995E18F84E465C376D1D5F153C15ACB66CDEA86EE5BF186677F572E7E129B ] C:\Windows\servicing\TrustedInstaller.exe
12:23:14.0366 0x0728 C:\Windows\servicing\TrustedInstaller.exe - ok
12:23:14.0366 0x0728 [ 7E9917D5309A90E7576653BFE39F80D8, 3525795CA69EF165AAAA20C878A20DF5A5F183CF6F8358A0132A88153E6459C6 ] C:\Windows\System32\timedate.cpl
12:23:14.0366 0x0728 C:\Windows\System32\timedate.cpl - ok
12:23:14.0366 0x0728 [ D2958325C1AE1AE37A83334C6229E3BC, D8263CB39A25447442B75A8D8E8111DF671D645DA90A33865C089DEDA9706904 ] C:\Windows\System32\actxprxy.dll
12:23:14.0366 0x0728 C:\Windows\System32\actxprxy.dll - ok
12:23:14.0381 0x0728 [ 5987EA8A82C53359BCD2C29D6588583E, 59E2DF91F8DA9E33DE65FA67A6A49A7C3F524618A87EAEFC8A28C5304E7FAB85 ] C:\Windows\System32\linkinfo.dll
12:23:14.0381 0x0728 C:\Windows\System32\linkinfo.dll - ok
12:23:14.0381 0x0728 [ 3A16EA01FCFAAB40882DB5BFEE632322, 04ED66BEFDB822181EBD1D84CBF0B17AAADF8455AE742F44D7ADCB26AB07BDAD ] C:\Windows\System32\msftedit.dll
12:23:14.0381 0x0728 C:\Windows\System32\msftedit.dll - ok
12:23:14.0381 0x0728 [ 298FDE634538B62CEEEC266D8773B21A, E6E445282D17CEAFEAB66A5A1E0124DD50F2438205BCE5649DB998BDAED06CB7 ] C:\Windows\System32\msls31.dll
12:23:14.0381 0x0728 C:\Windows\System32\msls31.dll - ok
12:23:14.0397 0x0728 [ 7896EFFDEE215C172BE724A64931EF1C, 10F9D73B85853FD6D7B54DCB9BC0FA5EC9FAECFB01E3AD4DAE4CC2FE2E68EE6D ] C:\Program Files\Common Files\microsoft shared\ink\tiptsf.dll
12:23:14.0397 0x0728 C:\Program Files\Common Files\microsoft shared\ink\tiptsf.dll - ok
12:23:14.0397 0x0728 [ CE7544B51C3A15D87A78C33FDDA9EC54, 078C6B9296A42DC3776D8F0596E128521245D9CC0AB641B11140898DF2034F28 ] C:\Windows\System32\hkcmd.exe
12:23:14.0397 0x0728 C:\Windows\System32\hkcmd.exe - ok
12:23:14.0397 0x0728 [ 5D836F63676305D99C179F024E2210CB, F4996ABAEDD53A3E34E22C48812B7B541C20CBBE84C6D2B2781035799143982A ] C:\Windows\System32\igfxpers.exe
12:23:14.0397 0x0728 C:\Windows\System32\igfxpers.exe - ok
12:23:14.0413 0x0728 [ 8854C4474E4E31FCA0C18BB9BD3A9D47, 26EAECA23FF49E1DD495F0F94F745F4C776382EE7BEF4926325E2AD21AC09313 ] C:\Windows\System32\igfxtray.exe
12:23:14.0413 0x0728 C:\Windows\System32\igfxtray.exe - ok
12:23:14.0413 0x0728 [ 643F7A81B4FC27845886AB9650AD2C61, 086156C6023AC9ECC0D0741ABA68EC352DAF09713134E2BD131D615A8C24797A ] C:\Program Files\AVG\AVG2014\avgui.exe
12:23:14.0413 0x0728 C:\Program Files\AVG\AVG2014\avgui.exe - ok
12:23:14.0428 0x0728 [ 175383778EB24D98C84E624021E3AA0B, FE831AC7C5375FE0F0D2A56F1546F968B2595503CC63FE9A8F819F7910A1604A ] C:\Windows\System32\aeevts.dll
12:23:14.0428 0x0728 C:\Windows\System32\aeevts.dll - ok
12:23:14.0428 0x0728 [ 2A39F32E0067CBF221611FE1FA8C6D8F, C6D1CAB7BC87F8EB7D801BE3E3DA9B631932A94468E7A6F46D60A43C9AB08EE7 ] C:\Windows\System32\DeviceCenter.dll
12:23:14.0428 0x0728 C:\Windows\System32\DeviceCenter.dll - ok
12:23:14.0428 0x0728 [ FCD688586654203879805259141D76FF, 4B312606CF22408C2A358C0FA4E7369B355F11C7677EB2FBD56797900C522772 ] C:\Windows\System32\hccutils.dll
12:23:14.0428 0x0728 C:\Windows\System32\hccutils.dll - ok
12:23:14.0444 0x0728 [ 5B6E8E09BE6401A7E022F52FDFCB2FF8, 471C556CF9405BBB380A8CEFE945C126B954B7C94F79CC72441B51F80141FC5E ] C:\Program Files\Common Files\Java\Java Update\jusched.exe
12:23:14.0444 0x0728 C:\Program Files\Common Files\Java\Java Update\jusched.exe - ok
12:23:14.0444 0x0728 [ D4C0835D5E0B72650944A2AEB5AC4A3B, BF25090177D6CD50EDDADB588E965F534A00D444FE5FBA9FE1F0F6C988035973 ] C:\Windows\System32\igfxsrvc.exe
12:23:14.0444 0x0728 C:\Windows\System32\igfxsrvc.exe - ok
12:23:14.0444 0x0728 [ 048EA4B978851788E9F5E8E4F081DF7A, EB62719AC0DCC18FF056F2CD84438BF14B61E38F0619617C81961C6257BDFCEC ] C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
12:23:14.0444 0x0728 C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe - ok
12:23:14.0459 0x0728 [ 5D61BE7DB55B026A5D61A3EED09D0EAD, D32CC7B31A6F98C60ABC313ABC7D1143681F72DE2BB2604711A0BA20710CAAAE ] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
12:23:14.0459 0x0728 C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe - ok
12:23:14.0459 0x0728 [ AED01A07B3F9B7AC9EBEC89EBE78B0A1, A63A0B3F0F47D66355D26CAF8E98A34F5CDBDAB9007615D724DD3A533B59CD87 ] C:\Windows\System32\igfxdev.dll
12:23:14.0459 0x0728 C:\Windows\System32\igfxdev.dll - ok
12:23:14.0459 0x0728 [ ECF6459A9C158BA07877221CF86D9E81, 24C1E0FBEECAEE865B2B79A7513751A5D2F53DDAE009A3FD807CFFF35FF90E18 ] C:\Windows\System32\igfxsrvc.dll
12:23:14.0459 0x0728 C:\Windows\System32\igfxsrvc.dll - ok
12:23:14.0475 0x0728 [ 2AC91779A31284C0F5AB36501B96264C, FED9FDFA9C64AE5C2AD439763925BBA8DB54B9CC6AB16C42F7DAA8E5FC91DD5C ] C:\Windows\System32\igfxrenu.lrc
12:23:14.0475 0x0728 C:\Windows\System32\igfxrenu.lrc - ok
12:23:14.0475 0x0728 [ 672D7C5080ACB003343006405DA2E621, 5F28C83A20ECB1F20894B60725477BEF0D672817DFDB9822FB345A3270A0C095 ] C:\Windows\System32\thumbcache.dll
12:23:14.0475 0x0728 C:\Windows\System32\thumbcache.dll - ok
12:23:14.0491 0x0728 [ 64E211E0FDFCE4D186DF58BB7D0503BC, 6B9E12979119BAD721D493A9CEFDC7B4150121D5590222069FD1B8D80F9AC5C0 ] C:\Windows\System32\gameux.dll
12:23:14.0491 0x0728 C:\Windows\System32\gameux.dll - ok
12:23:14.0491 0x0728 [ F1278B3514EA6FA9BC39B20D26139AAC, 7FA1B8CCBB4771F3105EEACE2C13F949FA65C7F53817C783BDF9770F94FF12B5 ] C:\Windows\System32\msiltcfg.dll
12:23:14.0491 0x0728 C:\Windows\System32\msiltcfg.dll - ok
12:23:14.0491 0x0728 [ AEB43D2A8158FB535F48F440CC266953, 3321230FDE9E8517D2FD30BA555F5B22113C2211CE5001A08DCD407E32EC95FD ] C:\Program Files\Google\GoogleToolbarNotifier\5.7.9012.1008\gtn.dll
12:23:14.0491 0x0728 C:\Program Files\Google\GoogleToolbarNotifier\5.7.9012.1008\gtn.dll - ok
12:23:14.0506 0x0728 [ 3D57FFBAD3ED16B63DE3879BAB0FB56F, 6BEAF5AFC98961190B004E8DE57CD5F9F39117287AE18D59DDB2EC5C0A0C6622 ] C:\Windows\System32\networkexplorer.dll
12:23:14.0506 0x0728 C:\Windows\System32\networkexplorer.dll - ok
12:23:14.0506 0x0728 [ 119C053FF0DC31C84AA39497109556A5, 191668C394FCDC512569C79DB9295B427FF636075E7FFBBA287639055E89F2AA ] C:\Windows\System32\igfxress.dll
12:23:14.0506 0x0728 C:\Windows\System32\igfxress.dll - ok
12:23:14.0506 0x0728 [ D3088606C810A355EAE9B9056C9B5392, 25B78E8199678E755E4BE737660E201E2C34EF3378AB182AE21314789161778C ] C:\Program Files\Google\GoogleToolbarNotifier\5.7.9012.1008\swg.dll
12:23:14.0506 0x0728 C:\Program Files\Google\GoogleToolbarNotifier\5.7.9012.1008\swg.dll - ok
12:23:14.0522 0x0728 [ C8A8321292A459B0A17FB39A782A5C74, A214E3B654BCB6E6142E101B0E89081D44A3A634AFA94DC0A620467335B7BEB2 ] C:\Program Files\Internet Explorer\iexplore.exe
12:23:14.0522 0x0728 C:\Program Files\Internet Explorer\iexplore.exe - ok
12:23:14.0522 0x0728 [ CCDA8E6A2AC68FD417A8BB8D88CBFDAC, EA9226AB7559B9D136566FDF7FCEDA34D0956E8065C6A3B692C88E2A945136E0 ] C:\Program Files\Adobe\Reader 11.0\Reader\AcroRd32.exe
12:23:14.0522 0x0728 C:\Program Files\Adobe\Reader 11.0\Reader\AcroRd32.exe - ok
12:23:14.0537 0x0728 [ 58B8702C20DE211D1FCB248D2FDD71D1, B2F6E3BA6FB5250F0E70555B39D34F19ADA760BDDA7E1A44113B97C3A1FD3F8B ] C:\Program Files\Adobe\Reader 11.0\Reader\reader_sl.exe
12:23:14.0537 0x0728 C:\Program Files\Adobe\Reader 11.0\Reader\reader_sl.exe - ok
12:23:14.0537 0x0728 [ E3C817F7FE44CC870ECDBCBC3EA36132, D769FAFA2B3232DE9FA7153212BA287F68E745257F1C00FAFB511E7A02DE7ADF ] C:\Windows\System32\msvcp100.dll
12:23:14.0537 0x0728 C:\Windows\System32\msvcp100.dll - ok
12:23:14.0537 0x0728 [ BF38660A9125935658CFA3E53FDC7D65, 60C06E0FA4449314DA3A0A87C1A9D9577DF99226F943637E06F61188E5862EFA ] C:\Windows\System32\msvcr100.dll
12:23:14.0537 0x0728 C:\Windows\System32\msvcr100.dll - ok
12:23:14.0553 0x0728 [ 9DD06F00898AA5CA7E24186EFC8E5E25, 51141D0D07DBC955B63281351D3F17163ACE9A5B08628EA1C82F33FD2913970E ] C:\Users\user1\AppData\Local\Temp\{B228B9EB-3C7C-4EE8-9E18-2749F7685D80}\{9BBF5D55-E62E-4D74-B140-2437643191B8}.tmp
12:23:14.0553 0x0728 C:\Users\user1\AppData\Local\Temp\{B228B9EB-3C7C-4EE8-9E18-2749F7685D80}\{9BBF5D55-E62E-4D74-B140-2437643191B8}.tmp - ok
12:23:14.0553 0x0728 [ 91A7771934C0D9D2DA7699D25BB5B348, 154A6EB866AF22B38AEE8DB5A864653FEB15DED69DE26E5B602B7C5056CDDF72 ] C:\Users\user1\AppData\Local\Temp\{B228B9EB-3C7C-4EE8-9E18-2749F7685D80}\{32BB9296-EA30-4285-B2D1-BADDA65DE2FE}.tmp
12:23:14.0553 0x0728 C:\Users\user1\AppData\Local\Temp\{B228B9EB-3C7C-4EE8-9E18-2749F7685D80}\{32BB9296-EA30-4285-B2D1-BADDA65DE2FE}.tmp - ok
12:23:14.0553 0x0728 [ 2D79817DD5AEA2A2A4449E72F20491E0, 830A761CD04EF310DEFC1D08D58D37307F75291026879FFB9D91C8A6B8B1E89A ] C:\Windows\System32\mfc110u.dll
12:23:14.0553 0x0728 C:\Windows\System32\mfc110u.dll - ok
12:23:14.0569 0x0728 [ 55C11301579A42639736EA3B17A3A588, CBEBDD7C883EF47DB86060AF0F09FD2218161D5FEB0CECEB4A068B9CC63499F8 ] C:\Users\user1\AppData\Local\Temp\{B228B9EB-3C7C-4EE8-9E18-2749F7685D80}\{AA474C7F-B470-48D7-AA40-005D2E820028}.tmp
12:23:14.0569 0x0728 C:\Users\user1\AppData\Local\Temp\{B228B9EB-3C7C-4EE8-9E18-2749F7685D80}\{AA474C7F-B470-48D7-AA40-005D2E820028}.tmp - ok
12:23:14.0569 0x0728 [ DF471F11CC78BE02FE6BA15F2D94F65B, 9AC230DE58CE40E78AE6872BCF4778B69EEBF17E0E41B1301FF364ABD4737A78 ] C:\Users\user1\AppData\Local\Temp\{B228B9EB-3C7C-4EE8-9E18-2749F7685D80}\{4C14BCA1-4B8E-4630-8DCD-3BDC5D3DADFA}.tmp
12:23:14.0569 0x0728 C:\Users\user1\AppData\Local\Temp\{B228B9EB-3C7C-4EE8-9E18-2749F7685D80}\{4C14BCA1-4B8E-4630-8DCD-3BDC5D3DADFA}.tmp - ok
12:23:14.0584 0x0728 [ 87D93D6E3173F6BCE00D5C3C089EAD71, A1598536C326CA606FD0145464D5AB260D5E602F42F1E99C74DCAB2EA1E7A15D ] C:\Program Files\AVG\AVG2014\avgkrnlapix.dll
12:23:14.0584 0x0728 C:\Program Files\AVG\AVG2014\avgkrnlapix.dll - ok
12:23:14.0584 0x0728 [ 0FD19BDDD2513874FF6903F717367795, DFAF9C33F993BA26FC84EF66ABC7C483E62762F7E1FC763605A75ACC2E8AA4EE ] C:\Users\user1\AppData\Local\Temp\{B228B9EB-3C7C-4EE8-9E18-2749F7685D80}\{D6EE766B-6051-424D-9868-9A70938586F3}.tmp
12:23:14.0584 0x0728 C:\Users\user1\AppData\Local\Temp\{B228B9EB-3C7C-4EE8-9E18-2749F7685D80}\{D6EE766B-6051-424D-9868-9A70938586F3}.tmp - ok
12:23:14.0584 0x0728 [ DD88BBF87A43331A4E99E37F7BF59FDB, 872190F559FA0DD1F711E9FA101BA1AB6E6DE5ED0CCCE1AB7AFE45BC3B78A0F1 ] C:\Users\user1\AppData\Local\Temp\{B228B9EB-3C7C-4EE8-9E18-2749F7685D80}\{ACFC74CA-94F3-4182-8D34-55C0DE0CBDAD}.tmp
12:23:14.0584 0x0728 C:\Users\user1\AppData\Local\Temp\{B228B9EB-3C7C-4EE8-9E18-2749F7685D80}\{ACFC74CA-94F3-4182-8D34-55C0DE0CBDAD}.tmp - ok
12:23:14.0600 0x0728 [ 4261449C1CADA6B007E5C27522946D2B, 11E79D1C529E816CCCAC9266089C77A4DB44676CAEEE25C66D6DB420B18D3ACB ] C:\Users\user1\AppData\Local\Temp\{B228B9EB-3C7C-4EE8-9E18-2749F7685D80}\{7B704831-2DBE-42E4-9D31-9293024FD58C}.tmp
12:23:14.0600 0x0728 C:\Users\user1\AppData\Local\Temp\{B228B9EB-3C7C-4EE8-9E18-2749F7685D80}\{7B704831-2DBE-42E4-9D31-9293024FD58C}.tmp - ok
12:23:14.0600 0x0728 [ 6627AA675A5C1B0330487A02E23F0560, 256AE9BA4273D4247FFAD6099D5A4FC8E98EDB27293AC8CAF7A571EB3890FAA7 ] C:\Users\user1\AppData\Local\Temp\{B228B9EB-3C7C-4EE8-9E18-2749F7685D80}\{7DA3C30E-4D2A-49A5-996B-31EFA166EC70}.tmp
12:23:14.0600 0x0728 C:\Users\user1\AppData\Local\Temp\{B228B9EB-3C7C-4EE8-9E18-2749F7685D80}\{7DA3C30E-4D2A-49A5-996B-31EFA166EC70}.tmp - ok
12:23:14.0600 0x0728 [ 723B834A07F7DF7DE4CEB637D57ACEA3, B42867045DD3FB7682CDBD133970421010F0F14125E4992C73657CABA4659250 ] C:\Users\user1\AppData\Local\Temp\{B228B9EB-3C7C-4EE8-9E18-2749F7685D80}\{D159BA2E-5E46-424D-B9AA-A93F068DEC20}.tmp
12:23:14.0600 0x0728 C:\Users\user1\AppData\Local\Temp\{B228B9EB-3C7C-4EE8-9E18-2749F7685D80}\{D159BA2E-5E46-424D-B9AA-A93F068DEC20}.tmp - ok
12:23:14.0615 0x0728 [ C1DE893FAF6D7F6CFB479A1F61835482, AD5FA3CE73777704C67C933691F1F068E1A7FF545F728B97574F9C33AC4BBC01 ] C:\Users\user1\AppData\Local\Temp\{B228B9EB-3C7C-4EE8-9E18-2749F7685D80}\{8675AC51-B911-4E0D-9FB3-A2AA78901CD4}.tmp
12:23:14.0615 0x0728 C:\Users\user1\AppData\Local\Temp\{B228B9EB-3C7C-4EE8-9E18-2749F7685D80}\{8675AC51-B911-4E0D-9FB3-A2AA78901CD4}.tmp - ok
12:23:14.0615 0x0728 [ D205C24A9D069049FE2DF2A1B38726A7, B98F420B57A34FDA24F9A655319245EEF86EF4A952014FFA018070A01D5CBC4C ] C:\Windows\System32\wdmaud.drv
12:23:14.0615 0x0728 C:\Windows\System32\wdmaud.drv - ok
12:23:14.0615 0x0728 [ 9C67F6BBDA3881CFD02095160CF91576, 6CE97C6F0AD8BE183DE935A7AAB7D46821E8DE9E55A4BFF54ACB49D056826A94 ] C:\Windows\System32\ksuser.dll
12:23:14.0615 0x0728 C:\Windows\System32\ksuser.dll - ok
12:23:14.0631 0x0728 [ 102CF6879887BBE846A00C459E6D4ABC, A4C51C79CF95D5C79DCEFB02946A09A987FEAF83CE2EE1BA7677EBA90869AC80 ] C:\Windows\System32\riched20.dll
12:23:14.0631 0x0728 C:\Windows\System32\riched20.dll - ok
12:23:14.0631 0x0728 [ E74AC97F0F257FFBEE09950B8D857E5B, 23C6D9F85AA5B4C309C9B701BAE2B963671822FC1641CB6A579671728305B742 ] C:\Program Files\AVG\AVG2014\avglngx.dll
12:23:14.0631 0x0728 C:\Program Files\AVG\AVG2014\avglngx.dll - ok
12:23:14.0647 0x0728 [ 8B285BDAB7735FDFB18E6F7122923B77, DE3DBDDBF0E999CDE4A53B194128094671684708CDBED2C4D5362316CAA3A8CD ] C:\Windows\System32\UIAnimation.dll
12:23:14.0647 0x0728 C:\Windows\System32\UIAnimation.dll - ok
12:23:14.0647 0x0728 [ C3D14CBB5DB1A5FE8D36F920DBD8F5CC, 9B2607C548CD167EC4DAA6B841462D611A7D72654A6692C324ED4F8D771DAE4C ] C:\Program Files\AVG\AVG2014\avguires.dll
12:23:14.0647 0x0728 C:\Program Files\AVG\AVG2014\avguires.dll - ok
12:23:14.0647 0x0728 [ AFA21B031D6A9FEC1C3ABF62F33B725D, 18A08656C0469ABC776CD464CD322292FD9BAF113EAF64E1FF1BC75B87F6D33E ] C:\Program Files\AVG\AVG2014\avgapps.dll
12:23:14.0647 0x0728 C:\Program Files\AVG\AVG2014\avgapps.dll - ok
12:23:14.0662 0x0728 [ 34934DD098FA19BEAE90164A2C3F495E, BBB46362B921B569CEE9F557BD3BBA822D6046B719C1EAF2106519351D5B8EB4 ] C:\Program Files\AVG\AVG2014\avgfilevaultx.dll
12:23:14.0662 0x0728 C:\Program Files\AVG\AVG2014\avgfilevaultx.dll - ok
12:23:14.0662 0x0728 [ 912649A1B3F9E6ACB3899FBDABA2ED5F, 049DFA9EA45A888B984E459B927A0F8AA4C10B9D36C6C0A0FE57F6329BEAF555 ] C:\Windows\System32\stobject.dll
12:23:14.0662 0x0728 C:\Windows\System32\stobject.dll - ok
12:23:14.0662 0x0728 [ 67C1B58706B47EEBA4E117AC197289E6, 9213E55DA854563E3A99369A4FAD853C0A97241A4F6D93F98444C57ADEEF89C1 ] C:\Windows\System32\batmeter.dll
12:23:14.0662 0x0728 C:\Windows\System32\batmeter.dll - ok
12:23:14.0678 0x0728 [ C8333F1F77A1B2E25F2202E892CAF634, 7A614AA4353ECE8175B6AB7B25EE26FAB22DF2A53C9A5A694B3A3B56F6C783A7 ] C:\Windows\System32\prnfldr.dll
12:23:14.0678 0x0728 C:\Windows\System32\prnfldr.dll - ok
12:23:14.0678 0x0728 [ ADDB05C93272A62606599B24730BD645, 38E2E2979C48549A3B72807B33254DB3AC106DB1FD2790C8AC1B27CDE86EC38F ] C:\Windows\System32\DXP.dll
12:23:14.0678 0x0728 C:\Windows\System32\DXP.dll - ok
12:23:14.0678 0x0728 [ 856CFFCD835528136367BB1A8FE1DB87, 97EE0B243F460BE737D18B634559BC6389064BA013890E69B650E5152AB873C8 ] C:\Windows\System32\Syncreg.dll
12:23:14.0678 0x0728 C:\Windows\System32\Syncreg.dll - ok
12:23:14.0693 0x0728 [ F8F03D206F7D5811D630349A23E9B9B9, D8F63A2DF5E79103BC3DD36BF09E60D095577BCB30BADA8763168E0199ED4CD8 ] C:\Windows\ehome\ehSSO.dll
12:23:14.0693 0x0728 C:\Windows\ehome\ehSSO.dll - ok
12:23:14.0693 0x0728 [ EAB975DB4C2805927FE5BD047D05C9AA, 8F5497B1A2652B5EAA5D35BD314B5F90C5140207427DAE6068D665FA44D3FD56 ] C:\Windows\System32\netshell.dll
12:23:14.0693 0x0728 C:\Windows\System32\netshell.dll - ok
12:23:14.0693 0x0728 [ B2B3DAE040F6B5AE1DF52B0CD7631A18, 062680EFF24EB83FF34DDD76043DB9ABB476C8FEE7BBE869A1E7F7FC8891314F ] C:\Windows\System32\AltTab.dll
12:23:14.0693 0x0728 C:\Windows\System32\AltTab.dll - ok
12:23:14.0709 0x0728 [ 735263DA17BF5BAF9CCD483843BF9D5A, A493F9191EA3F37A53474E94B3917EA038B29545FC62B1634CE47F05EA2FF5C6 ] C:\Windows\System32\WPDShServiceObj.dll
12:23:14.0709 0x0728 C:\Windows\System32\WPDShServiceObj.dll - ok
12:23:14.0709 0x0728 [ ADB45A977BD9E45790CA496DB84BA148, BB251C9A5D2F5C6BDFB22C6BA235748472FC28AF2ADAF1CE7948352301DDE3C1 ] C:\Windows\System32\PortableDeviceTypes.dll
12:23:14.0709 0x0728 C:\Windows\System32\PortableDeviceTypes.dll - ok
12:23:14.0725 0x0728 [ 3D6F22551D422F97AACB0BB927E4C846, 9AB7C9F2E7F3D1CEC4553D0DF57E074121957055A9A4349946D354ACB6FC4579 ] C:\Windows\System32\pnidui.dll
12:23:14.0725 0x0728 C:\Windows\System32\pnidui.dll - ok
12:23:14.0725 0x0728 [ 236F286E103FD44BD85FDD93097FD5DD, C369C98E76FEFBB05A12ABEECCF89C75132419B56866ED9AB77F61F84BA62785 ] C:\Windows\System32\SearchIndexer.exe
12:23:14.0725 0x0728 C:\Windows\System32\SearchIndexer.exe - ok
12:23:14.0725 0x0728 [ BD626EF05967D14C772B8096292731A3, FE3838B41DCAFC52089D909E7F411186D993C08AC149E093352D691D57C9BE71 ] C:\Windows\System32\QUTIL.DLL
12:23:14.0725 0x0728 C:\Windows\System32\QUTIL.DLL - ok
12:23:14.0740 0x0728 [ 465DBF63A5049E4DB4BC5C12FFE781CB, D12F6A9FB92144B2CFFD28BD72C234BA42F882EF22122DB83CE5EB1B8EBE9017 ] C:\Windows\System32\tquery.dll
12:23:14.0740 0x0728 C:\Windows\System32\tquery.dll - ok
12:23:14.0740 0x0728 [ CF4274CEEA9F7791FB7FC40A066BC2C7, C153EC0D420261185001B354955DF85C6E842334D34E70BB69CECC3AFC8CE36C ] C:\Windows\System32\cscobj.dll
12:23:14.0740 0x0728 C:\Windows\System32\cscobj.dll - ok
12:23:14.0740 0x0728 [ 0241CB16136B9A4939CA0395768AE286, E7A3A0BDB4AC4BD718C93BE650541F96603739BDB3DB6860665DCC073DA8007D ] C:\Windows\System32\mssrch.dll
12:23:14.0740 0x0728 C:\Windows\System32\mssrch.dll - ok
12:23:14.0756 0x0728 [ 674B0C0F6A448EB185CAAB9C51D44032, 6722351F46BF70BA967844D3239CD801DFC4538A4EB6C478D8497F27F7FD9F1D ] C:\Windows\System32\srchadmin.dll
12:23:14.0756 0x0728 C:\Windows\System32\srchadmin.dll - ok
12:23:14.0756 0x0728 [ 81600E2E27ED61427AAD865B9BCDDB9D, 0D7D39C0A5A2C24FAADCA41658A1C62D13180B462C78103BDF6DBD76B64DD79A ] C:\Windows\System32\msidle.dll
12:23:14.0756 0x0728 C:\Windows\System32\msidle.dll - ok
12:23:14.0756 0x0728 [ 1CBF15FDB0310345A68972EB5C5B948F, E1EDCE6216B24037B243AC68CEEBD510646B2EFD70BC118E68303F9ED85D1973 ] C:\Windows\System32\mssprxy.dll
12:23:14.0756 0x0728 C:\Windows\System32\mssprxy.dll - ok
12:23:14.0771 0x0728 [ 7CCCFCA7510684768DA22092D1FA4DB2, BB9E4F8FABBF596D888E6D303CB54A336D9DFF95B36AEA9369D2ED787DDC4B5D ] C:\Windows\System32\netman.dll
12:23:14.0771 0x0728 C:\Windows\System32\netman.dll - ok
12:23:14.0771 0x0728 [ B63E24E9271E99FD4540E3CA22A937DA, A9E75FBF482C4447E887E5B6EBAD96FE827F0BBD1101F1D8B54EE178D3AEAA7E ] C:\Windows\System32\en-US\tquery.dll.mui
12:23:14.0771 0x0728 C:\Windows\System32\en-US\tquery.dll.mui - ok
12:23:14.0771 0x0728 [ D39DA70FEA6BD713682F70635587DA9E, FF18C97642F48C711D75F32115B1260FE0BDF6072403E5A9226E9BE780AF1969 ] C:\Windows\System32\rasdlg.dll
12:23:14.0771 0x0728 C:\Windows\System32\rasdlg.dll - ok
12:23:14.0787 0x0728 [ D4191EFAB91E00FC09257AA5EBAF503B, 161B572CF4C65984EAFDBA95357373BC712AA414B52DDA23523F84151240E337 ] C:\Windows\System32\mprapi.dll
12:23:14.0787 0x0728 C:\Windows\System32\mprapi.dll - ok
12:23:14.0787 0x0728 [ 04B88428A872390D235BE52D38A9D4EF, F6954D514B67547738EB012456342D65289B0B18A0304BBAD5BDAA3436181C77 ] C:\Windows\System32\dot3api.dll
12:23:14.0787 0x0728 C:\Windows\System32\dot3api.dll - ok
12:23:14.0803 0x0728 [ 8063046AA70B97CA9985672B8848FB2E, C7A7F2D216D1F0D7F28A22E4933DB3D821AC52CC2EF7AE8BA08D18104FCF8B81 ] C:\Windows\System32\wlanhlp.dll
12:23:14.0803 0x0728 C:\Windows\System32\wlanhlp.dll - ok
12:23:14.0803 0x0728 [ B010CF886420EE29C2C276646721D255, CBCD032D679ADE3A9942A1D116648D6A9ECC71F66F8630629E724E5EE23F9F73 ] C:\Windows\System32\wlanapi.dll
12:23:14.0803 0x0728 C:\Windows\System32\wlanapi.dll - ok
12:23:14.0803 0x0728 [ 9A39A2A5F443A756C568C6ED5748AFE4, 13C2790985CBA9CD325BA20364A665DB50B769B7DDE93E6BE20F25427BDB34F8 ] C:\Windows\System32\ActionCenter.dll
12:23:14.0803 0x0728 C:\Windows\System32\ActionCenter.dll - ok
12:23:14.0818 0x0728 [ 53683A331F8A1BB20ADD0330F1DE6388, 5525766F740268FF5287F927CD784B885F5B8523374AC2858256E6757CDED9F4 ] C:\Program Files\Windows Media Player\wmpnscfg.exe
12:23:14.0818 0x0728 C:\Program Files\Windows Media Player\wmpnscfg.exe - ok
12:23:14.0818 0x0728 [ C02AA67276FEE0C15CC4D6D616BDE95E, 24B0FFA2903CC77FEDE6B491647BB759C4AE054E38A19EFA0D2662AC2959570B ] C:\Windows\System32\WWanAPI.dll
12:23:14.0818 0x0728 C:\Windows\System32\WWanAPI.dll - ok
12:23:14.0818 0x0728 [ F2ED6D00921CA138289E5E0CCB9ABF87, 528F249CE0835CA4D8B7C4940F5132DF1155EB344177BEA4CD7FCF9B8DCCCA4B ] C:\Windows\System32\wwapi.dll
12:23:14.0818 0x0728 C:\Windows\System32\wwapi.dll - ok
12:23:14.0834 0x0728 [ 02530B0B7E048DD5AC8D52DAEACAEB2B, 2DEB454F8B71EC54C59185E2F1D679F7EC1C7AEFCD1D59761FDD3D70CABE0254 ] C:\Windows\System32\QAGENT.DLL
12:23:14.0834 0x0728 C:\Windows\System32\QAGENT.DLL - ok
12:23:14.0834 0x0728 [ 8F8AB20AA863EA95A421B9D54C74F20C, BA71E3EED39E78EC554049464D4112EB3A15419F0C5809D9C7CB7F1746BDEBD3 ] C:\Program Files\Windows Media Player\wmpnssci.dll
12:23:14.0834 0x0728 C:\Program Files\Windows Media Player\wmpnssci.dll - ok
12:23:14.0834 0x0728 [ 03B3541AE6986602CF9CB5B3AD169C33, FC4B0ABA53EDB19DCBA00B8FEBE807643A4AB2D6B8337EE05CE2D0283BEF0F4E ] C:\Windows\System32\webcheck.dll
12:23:14.0834 0x0728 C:\Windows\System32\webcheck.dll - ok
12:23:14.0849 0x0728 [ 2DDEA2C345DA5BC589EFD398F220DB0E, B515B15BE7CB66F94B7A9B802719DAF7D50E1FE2832B66B6883AC0023060800D ] C:\Windows\System32\SyncCenter.dll
12:23:14.0849 0x0728 C:\Windows\System32\SyncCenter.dll - ok
12:23:14.0849 0x0728 [ 3B40D3A61AA8C21B88AE57C58AB3122E, 6C67DCB007C3CDF2EB0BBF5FD89C32CD7800C20F7166872F8C387BE262C5CD21 ] C:\Program Files\Windows Media Player\wmpnetwk.exe
12:23:14.0849 0x0728 C:\Program Files\Windows Media Player\wmpnetwk.exe - ok
12:23:14.0849 0x0728 [ E3D5E244807AD655787FCD25477CC1BC, 8A378249C936914DBFEDAE310D6ACB93D488C8F490EC4AAB435861C413A5BB0F ] C:\Windows\System32\bthprops.cpl
12:23:14.0849 0x0728 C:\Windows\System32\bthprops.cpl - ok
12:23:14.0865 0x0728 [ DF13A51A5C591887D2EC6AE64CEED0FA, DFD503AEBCAA056B2B0E669ACA52F6D26F4E6892F2DCFCCD902752C23A621653 ] C:\Windows\System32\wsock32.dll
12:23:14.0865 0x0728 C:\Windows\System32\wsock32.dll - ok
12:23:14.0865 0x0728 [ 2D11BC8B460957E62E4420373A0D8BDA, 56105E84333998D43DFCDA9E8A4D70EAC43076CFF8389B2E525EC5C3017DC5FD ] C:\Windows\System32\imapi2.dll
12:23:14.0865 0x0728 C:\Windows\System32\imapi2.dll - ok
12:23:14.0881 0x0728 [ 5CF15474FFDB5005E54958DF6EDD97AB, D4DBB3AACBB7679948258FFC53472FE8B5D0B3EC06D572EE2BDBF45CE608D86D ] C:\Windows\System32\wmdrmdev.dll
12:23:14.0881 0x0728 C:\Windows\System32\wmdrmdev.dll - ok
12:23:14.0881 0x0728 [ 47D052D9EE1FD3BA2A55D13F61E3EF24, 8DB44BA6FC0C49039F3E95D6137CFFF9EE0E0B24CA4E25342B7EFA897737DFAC ] C:\Windows\System32\drmv2clt.dll
12:23:14.0881 0x0728 C:\Windows\System32\drmv2clt.dll - ok
12:23:14.0881 0x0728 [ 40B82688907A7DBA4DB3B5ADDE3EAB3B, 7A8A051F414A0A11252A361461A086890BCE9F49CE1AF794061184AE16517EF1 ] C:\Windows\System32\mfplat.dll
12:23:14.0881 0x0728 C:\Windows\System32\mfplat.dll - ok
12:23:14.0896 0x0728 [ C7952D0A4C43A965A1741916BB134751, 84EF222159E8C444A1D9D2E6509245716E4106C8032861DBFF399001A529BF94 ] C:\Windows\System32\hgcpl.dll
12:23:14.0896 0x0728 C:\Windows\System32\hgcpl.dll - ok
12:23:14.0896 0x0728 [ 6C4B2E1A25841077084EB9F76FF6FFA7, 777D9E5D81409A54BF387BDDF4E471932FFB636406E390EC29EDF1FFFE3D8880 ] C:\Windows\System32\wmp.dll
12:23:14.0896 0x0728 C:\Windows\System32\wmp.dll - ok
12:23:14.0896 0x0728 [ EA2B00551F3E7B3D5F7FB730A55F8246, E45CD49CE2D3FF1F3CDB116F8F18EFB09A575021480E45CF9650C837D72272DC ] C:\Windows\System32\blackbox.dll
12:23:14.0896 0x0728 C:\Windows\System32\blackbox.dll - ok
12:23:14.0912 0x0728 [ 954EA9B34F155C844B11F4047A8F6F89, 44703118AE57D44C802DFA5619DC1CA55C5C046D666CE546E5870D722786E395 ] C:\Windows\System32\upnp.dll
12:23:14.0912 0x0728 C:\Windows\System32\upnp.dll - ok
12:23:14.0912 0x0728 [ D887C9FD02AC9FA880F6E5027A43E118, F38BAD90EC791368C37C21090302708D2DFB83ECE9096609AD9AA667B2E5592E ] C:\Windows\System32\ssdpsrv.dll
12:23:14.0912 0x0728 C:\Windows\System32\ssdpsrv.dll - ok
12:23:14.0912 0x0728 [ C2D6A4475B87651D5909E364439FDA52, BE9B898A8396F977E05A22D6EDF7B6B4EF4C16E159806453D03C2A918D24C19F ] C:\Windows\System32\FXSST.dll
12:23:14.0912 0x0728 C:\Windows\System32\FXSST.dll - ok
12:23:14.0927 0x0728 [ 02DF0628BE8B64B84D50FBE53549AA3B, AED50B07451F14D0C0682EDDC11ED5BBAD63D6DB11A91826B0ADBDBE411F0084 ] C:\Windows\System32\wmploc.DLL
12:23:14.0927 0x0728 C:\Windows\System32\wmploc.DLL - ok
12:23:14.0927 0x0728 [ 942E57152F1CD0533644AB30EF1A4728, 4F72510BECFAFDBB06C9CAAC66BA9E95225DE1EA12B4D2FD5B67492A2E628ABD ] C:\Windows\System32\FXSAPI.dll
12:23:14.0927 0x0728 C:\Windows\System32\FXSAPI.dll - ok
12:23:14.0927 0x0728 [ C4096CA42199428B3D63DC206C197F0E, 76336CD81608650E5AAD02D59D2AC752E7BDD057314BBC7334CECF74D1EAB587 ] C:\Windows\System32\FXSRESM.dll
12:23:14.0927 0x0728 C:\Windows\System32\FXSRESM.dll - ok
12:23:14.0943 0x0728 [ 967EA5B213E9984CBE270205DF37755B, 43153E23210B03FAE16897D62D55B8742F834EDC695F8401EAB5DE307F62602D ] C:\Windows\System32\FXSSVC.exe
12:23:14.0943 0x0728 C:\Windows\System32\FXSSVC.exe - ok
12:23:14.0943 0x0728 [ 28E84711FCDE86DE1A88C80AC3290B7D, 1D1651468597020A3EE10ED764F4BA8D1ADDF8CC6A506B514FCD41A29EC3F55B ] C:\Program Files\Internet Explorer\ieproxy.dll
12:23:14.0943 0x0728 C:\Program Files\Internet Explorer\ieproxy.dll - ok
12:23:14.0959 0x0728 [ 007863E45F25AA47A4C30D0930BBFD85, 60F2ABA40D520FCA2C57FA2DB72E111C14F21821DA17F662837506B80C269634 ] C:\Windows\System32\api-ms-win-downlevel-shlwapi-l2-1-0.dll
12:23:14.0959 0x0728 C:\Windows\System32\api-ms-win-downlevel-shlwapi-l2-1-0.dll - ok
12:23:14.0959 0x0728 [ 3F2B83695E5BF11930C16AF50E991F96, 339535078CDDEF3B0C7C749E7C53634C3B1C7FF18E808F118E1DF36D748A6E15 ] C:\Windows\System32\wmpps.dll
12:23:14.0959 0x0728 C:\Windows\System32\wmpps.dll - ok
12:23:14.0959 0x0728 [ 1CDEA9188899E76D4FFD54C9D512CCDB, B73B0AA397B8E673B4169E246D121ABCE2E888F6C8013AC4FFFA9A6539BB5FB0 ] C:\Windows\System32\msxml3.dll
12:23:14.0959 0x0728 C:\Windows\System32\msxml3.dll - ok
12:23:14.0974 0x0728 [ E585445D5021971FAE10393F0F1C3961, 178C008A9A0A6BFDA65EB0B98C510271360AD4474F22F13594F5EB60AA4E1CF5 ] C:\Windows\System32\qmgr.dll
12:23:14.0974 0x0728 C:\Windows\System32\qmgr.dll - ok
12:23:14.0974 0x0728 [ 0552A8684BF7566F744D5B19FF6AEC6B, D1EB44C75A0AE0C9ABFE3B1B7AD648DF77B56B4358E522DFF732911906B20B49 ] C:\Windows\System32\bitsperf.dll
12:23:14.0974 0x0728 C:\Windows\System32\bitsperf.dll - ok
12:23:14.0974 0x0728 [ F45ED8C4F9AF862CD9992849B5203C11, F51E56977C33B8F202C2945FB977501C6FFDD453F158B2BE01453FAF13569919 ] C:\Windows\System32\bitsigd.dll
12:23:14.0974 0x0728 C:\Windows\System32\bitsigd.dll - ok
12:23:14.0990 0x0728 [ E87213F37A13E2B54391E40934F071D0, 7EB221127EFB5BF158FB03D18EFDA2C55FB6CE3D1A1FE69C01D70DBED02C87E5 ] C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
12:23:14.0990 0x0728 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe - ok
12:23:14.0990 0x0728 [ 0DCA5F8AF83975061D9D8340DC471B5C, 71C8549419F46ABB4826B1847BF325374FA5C237CE14DB8B1DD8BB6FDABF6138 ] C:\Windows\System32\msvcr110_clr0400.dll
12:23:14.0990 0x0728 C:\Windows\System32\msvcr110_clr0400.dll - ok
12:23:14.0990 0x0728 [ D83947A58613E9091B4C9CC0F1546A8D, C71DF6E18E2099FC462717B8658D39C607A62C7E7A1E5CD0E258C17434535AD0 ] C:\Windows\System32\mscoree.dll
12:23:14.0990 0x0728 C:\Windows\System32\mscoree.dll - ok
12:23:15.0005 0x0728 [ 940AF0A30C11AE080FA97AA2AF75AB2C, CC5D7A78A13185F5899EB066D3238042AE5AFE9597C0E7DBD6A325FC96009C3A ] C:\Program Files\Google\Update\1.3.22.3\goopdateres_en-GB.dll
12:23:15.0005 0x0728 C:\Program Files\Google\Update\1.3.22.3\goopdateres_en-GB.dll - ok
12:23:15.0005 0x0728 [ 7E0FDDB1FD25A6E7DC7209B546FC0FD8, F6D7BF8B35492E4A147A5EE5D1A296ACD31AFA397F86F9FD4D296D274745A7DB ] C:\Program Files\AVG\AVG2014\fixcfg.exe
12:23:15.0005 0x0728 C:\Program Files\AVG\AVG2014\fixcfg.exe - ok
12:23:15.0021 0x0728 [ CF87A1DE791347E75B98885214CED2B8, 7AF4E03D751C951A4E5FBA28200DABFE6B3BF055490163EEEEA84EBA4D0F368A ] C:\Windows\System32\sppsvc.exe
12:23:15.0021 0x0728 C:\Windows\System32\sppsvc.exe - ok
12:23:15.0021 0x0728 [ 6F5D49EFE0E7164E03AE773A3FE25340, 15B6AFF7455538189A96F8863CC995A271E02C6FBDAC15B037D44DDA65E61339 ] C:\Windows\System32\wscsvc.dll
12:23:15.0021 0x0728 C:\Windows\System32\wscsvc.dll - ok
12:23:15.0021 0x0728 [ D16D818E9930A6E5B4F6476DD0998D1A, 11284FBAE473325322DA0CA6F9317B9A700A666D6D907BBBC812FD0E7BE7FE67 ] C:\Windows\System32\drivers\spsys.sys
12:23:15.0021 0x0728 C:\Windows\System32\drivers\spsys.sys - ok
12:23:15.0037 0x0728 [ 8CD1DEE212E52B9C22E66DBA44991D32, 7FCD0E7964368616434E3B3B080E783658B86524C26F3DB57503414204713E6D ] C:\Windows\System32\httpapi.dll
12:23:15.0037 0x0728 C:\Windows\System32\httpapi.dll - ok
12:23:15.0037 0x0728 [ 1B0EC94520CAB89A9CE1B2DA405166AF, 129102C98C8B3D403C85604C9A2AFC0471CDB1212FD2C5487D73FC089FC88F0C ] C:\Windows\System32\p2pcollab.dll
12:23:15.0037 0x0728 C:\Windows\System32\p2pcollab.dll - ok
12:23:15.0037 0x0728 [ FC3EC24FCE372C89423E015A2AC1A31E, 8D028182CF83667D3E4D148979972D208FA6D9B8540EE47A0A7831B770ECD257 ] C:\Windows\System32\wuaueng.dll
12:23:15.0037 0x0728 C:\Windows\System32\wuaueng.dll - ok
12:23:15.0052 0x0728 [ 61D57A5D7C6D9AFE10E77DAE6E1B445E, D252248532142E9E2332DA693BC51B795102CA938B568FF04981E98B19BFBC5C ] C:\Windows\System32\QAGENTRT.DLL
12:23:15.0052 0x0728 C:\Windows\System32\QAGENTRT.DLL - ok
12:23:15.0052 0x0728 [ 9FD6496B6D91C8BE2A10BD55EAE2D5F2, FC71F6CC24FE61BF83DD3E237C00DD0002D84DC303DB9570B241BF8212B8639D ] C:\Windows\System32\fveui.dll
12:23:15.0052 0x0728 C:\Windows\System32\fveui.dll - ok
12:23:15.0052 0x0728 [ 7A6986DD659B96398A11AF5173892715, FB7818952B9015F433418E7DC656A2C20CD682056AB981A55C1722020142D578 ] C:\Windows\System32\cabinet.dll
12:23:15.0052 0x0728 C:\Windows\System32\cabinet.dll - ok
12:23:15.0068 0x0728 [ 387A8A473ECC5BA02CF453277C1F3274, 3F36D3088B0F7CB0CC2C31E8F908527EC5502F0D3153D20332745B7BBF8B04D7 ] C:\Windows\System32\mspatcha.dll
12:23:15.0068 0x0728 C:\Windows\System32\mspatcha.dll - ok
12:23:15.0068 0x0728 [ 1A617835452EEE5060976C9B9F5FE635, DCCAAB049681BE876B73F0880EA32196CDA7EC954D452768A48D366096C5BD53 ] C:\Windows\System32\wuapi.dll
12:23:15.0068 0x0728 C:\Windows\System32\wuapi.dll - ok
12:23:15.0068 0x0728 [ 3458EDA96E30FBD0477A2800D3FB1909, BDF84362E4D8A102E7FB5F352D950B84D1A8E1E7928521B68E7671D4176803C5 ] C:\Windows\System32\wups.dll
12:23:15.0068 0x0728 C:\Windows\System32\wups.dll - ok
12:23:15.0083 0x0728 [ 3A11396EAC2414012155AB14E5C1E332, 27B2DF1C2980098025EC43B354C150BA1CE795F1138DFC03C763A115BBF77010 ] C:\Windows\System32\sppwinob.dll
12:23:15.0083 0x0728 C:\Windows\System32\sppwinob.dll - ok
12:23:15.0083 0x0728 [ BDC0C99E472176C8C2C853A68ADC5073, 9A0A0CEE321C9BAF5545D6CB0BE3E725228B694F331FFACCEB770350AAF2C8C3 ] C:\Windows\System32\wups2.dll
12:23:15.0083 0x0728 C:\Windows\System32\wups2.dll - ok
12:23:15.0099 0x0728 [ 421D9645B72CD341ECDBB0FCE06C97DE, C2F0DF431E526A8F6F3F521E1BD26838A6A7B5F8E5DBDD044871815DBC5FF6B1 ] C:\Windows\System32\sppobjs.dll
12:23:15.0099 0x0728 C:\Windows\System32\sppobjs.dll - ok
12:23:15.0099 0x0728 [ ADD2ADE1C2B285AB8378D2DAAF991481, 7965A705F37924C0EC7A934E64E89C5DF4069816E2EEA3509E0AC90F78910519 ] C:\Windows\System32\drivers\asyncmac.sys
12:23:15.0099 0x0728 C:\Windows\System32\drivers\asyncmac.sys - ok
12:23:15.0099 0x0728 [ 8258362DDB18B644A82D8B5061AD9426, 87CA586B2B1B0089BFF6A259A0743D184AE383B3B12C4BC5986D72ADFFBE9EDA ] C:\Windows\System32\wscisvif.dll
12:23:15.0099 0x0728 C:\Windows\System32\wscisvif.dll - ok
12:23:15.0115 0x0728 [ 5B8E80EC0D621CDF920AB2141CDBC733, CDF4BD7BE5B6ADEDD06448DCDCF9FCA6FA9EC57788342FF42D0EF09F651C3245 ] C:\Program Files\Windows Defender\MpClient.dll
12:23:15.0115 0x0728 C:\Program Files\Windows Defender\MpClient.dll - ok
12:23:15.0115 0x0728 Waiting for KSN requests completion. In queue: 43
12:23:16.0129 0x0728 Waiting for KSN requests completion. In queue: 43
12:23:17.0221 0x0728 AV detected via SS2: AVG AntiVirus Free Edition 2014, C:\Program Files\AVG\AVG2014\avgwsc.exe ( 14.0.0.4110 ), 0x41000 ( enabled : updated )
12:23:17.0221 0x0728 Win FW state via NFP2: disabled
12:23:20.0013 0x0728 ============================================================
12:23:20.0013 0x0728 Scan finished
12:23:20.0013 0x0728 ============================================================
12:23:20.0029 0x00c8 Detected object count: 0
12:23:20.0029 0x00c8 Actual detected object count: 0
12:24:07.0510 0x0c00 Deinitialize success




Cheers,

Luke.

Edited by Tyskie, 11 February 2014 - 06:34 AM.

  • 0

#12
SleepyDude

SleepyDude

    Trusted Helper

  • Malware Removal
  • 4,974 posts
Hi Luke,

I'm not sure you notice but MBAM installed successfully :)

Can you try to install 7-zip again to see if it works?
  • 1

#13
Tyskie

Tyskie

    Member

  • Topic Starter
  • Member
  • PipPip
  • 58 posts
Hello Sleepy!

I did notice that it installed but I thought it was just one of those that works, for some reason.

I downloaded 7-zip again and it ("7-zip.exe (1)") installed properly :thumbsup:

Then I tried installing the UC Plus program I had downloaded before and it did not work.

Then something in my mind *clicked*. Maybe you've fixed something in Internet Explorer so that it correctly downloads files now. I tried installing 7-zip using the old .exe I already had from before and it did not work!

Therefore I tried downloading UC Plus again and the new .exe worked!

I think we've done it!!! :cool:

I shall now try installing everything I need and come back to you if I have any problems.

In the meantime, could you please tell me if I can somehow adjust my IE settings to suit because for some reason it keeps telling me that most files I download 'could potentially harm my computer...' and it won't let me run them from IE (I have to go to my Downloads folder and execute from there). Also, it keeps blocking unsecure content in websites which means I have to click Show All Content to see the website properly. I understand that this is for my own security but I've never come across such high security before and it's making using the computer that bit more awkward. Is it because I put the Windows User Account security to the highest level or do I need to change settings within IE itself?

Thanks so much,

Luke.

Edited by Tyskie, 12 February 2014 - 04:03 AM.

  • 0

#14
SleepyDude

SleepyDude

    Trusted Helper

  • Malware Removal
  • 4,974 posts
Hi,

That's good news. :yeah:

About the Internet Explorer problem, try to reset the IE settings to default, on the link below there are instructions to do it manually or you can use the FixIt Tool.
How to reset Internet Explorer settings

Let me know the result. If everything is working I would like to post instructions to remove the tool we use and provide some security recommendations.
  • 1

#15
Tyskie

Tyskie

    Member

  • Topic Starter
  • Member
  • PipPip
  • 58 posts
Hi SleepyDude,

:cheers: :notworthy: :woot:

It looks like everything is working beautifully! I have managed to install Kaspersky Internet Security (and yes, I have disabled AVG in msconfig -> services and startup so that I do not have 2 AV's running in parallel but I have not uninstalled it). I have also installed MS Office 365.

So far all looks perfect. The UC Plus executable also ran, as mentioned in my last post.

Should I do one last test before we start uninstalling all the tools? Can you suggest a test? If not, let me know how I go about uninstalling all the tools.

Many thanks,

Luke.


Edit: I did the IE thing and that also seems fine so thanks for that!

Edited by Tyskie, 13 February 2014 - 09:37 AM.

  • 0






Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP