Jump to content


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.

Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

svchost.exe*32 consuming a lot of CPU and Memory


  • This topic is locked This topic is locked
45 replies to this topic

#1 dappy

dappy

  • Members
  • 39 posts
  • OFFLINE
  •  
  • Local time:03:25 PM

Posted 21 September 2012 - 04:58 PM

Every time I starft my computer this process gets started and as soon as I start my internet, this process starts taking a lot of CPU and memory. It takes up so much of memory and CPU that it hangs my system.

It's related file seems to be located at 'C:\Windows\svchost.exe' but everytime i delete it, it comes back automatically. Also, if I end the process thru task manager, it automatically gets started again. So far, I am living with it by suspending this process thru Resource Monitor.

I also tried changing the security of Windows folder from 'Trsutedinstaller' to myself but that didn't really solve the problem. Not sure, if that even resulted in some other problem.

I have seen many successful resolution of this problem on Bleepingcomputer and I am hopig for a resolution for myself as well.

Below mentioned is the DDS log:-

********************
.
DDS (Ver_2011-08-26.01) - NTFSAMD64
Internet Explorer: 9.0.8112.16421
Run by Dipanshu at 10:36:37 on 2012-09-21
Microsoft Windows 7 Home Premium 6.1.7600.0.1252.1.1033.18.4029.2469 [GMT -7:00]
.
AV: Quick Heal Total Security 13.00 *Enabled/Outdated* {D8418B0E-EE80-1320-B172-3D5DEB3CE14F}
SP: Quick Heal Total Security 13.00 *Enabled/Updated* {63206AEA-C8BA-1CAE-8BC2-062F90BBABF2}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
FW: Quick Heal Firewall *Enabled* {E07A0A2B-A4EF-1278-9A2D-946815EFA634}
.
============== Running Processes ===============
.
C:\Windows\system32\wininit.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_afc3018f8cfedd20\STacSV64.exe
C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Program Files (x86)\Absolute Software\Absolute Notifier\AbsoluteNotifierService.exe
C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE
c:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
C:\Program Files\Quick Heal\Quick Heal Total Security\EMLPROXY.EXE
C:\Program Files\Quick Heal\Quick Heal Total Security\SAPISSVC.EXE
C:\Program Files\Quick Heal\Quick Heal Total Security\opssvc.exe
C:\Program Files\Quick Heal\Quick Heal Total Security\quhlpsvc.exe
C:\Program Files\Quick Heal\Quick Heal Total Security\SCANWSCS.EXE
C:\Windows\system32\svchost.exe -k imgsvc
C:\Windows\system32\Dwm.exe
C:\Windows\system32\taskhost.exe
C:\Windows\Explorer.EXE
C:\Program Files (x86)\Dell DataSafe Local Backup\Components\scheduler\STService.exe
C:\Program Files (x86)\Dell DataSafe Local Backup\Toaster.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\IDT\WDM\sttray64.exe
C:\Program Files\Dell\QuickSet\quickset.exe
C:\Windows\System32\rundll32.exe
C:\Windows\System32\hkcmd.exe
C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
C:\Program Files\Quick Heal\Quick Heal Total Security\onlinent.exe
C:\Program Files\Quick Heal\Quick Heal Total Security\SCANMSG.EXE
C:\Windows\system32\wbem\wmiprvse.exe
C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\WebcamDell2.exe
C:\Program Files (x86)\Dell Support Center\bin\sprtcmd.exe
C:\Program Files (x86)\Adobe\Photoshop Elements 6.0\apdproxy.exe
C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
C:\Windows\system32\SearchIndexer.exe
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
-netsvcs
C:\Windows\system32\conhost.exe
C:\Windows\System32\perfmon.exe
C:\Windows\System32\vds.exe
C:\Windows\System32\svchost.exe -k secsvcs
C:\Windows\system32\wuauclt.exe
C:\Windows\System32\spoolsv.exe
C:\Program Files (x86)\Internet Explorer\iexplore.exe
C:\Program Files (x86)\Internet Explorer\iexplore.exe
C:\Windows\SysWOW64\Macromed\Flash\FlashUtil11e_ActiveX.exe
C:\Program Files (x86)\Internet Explorer\iexplore.exe
C:\Program Files (x86)\Internet Explorer\iexplore.exe
C:\Windows\system32\SearchProtocolHost.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Windows\system32\DllHost.exe
C:\Windows\system32\DllHost.exe
C:\Windows\SysWOW64\cmd.exe
C:\Windows\system32\conhost.exe
C:\Windows\SysWOW64\cscript.exe
C:\Windows\system32\wbem\wmiprvse.exe
.
============== Pseudo HJT Report ===============
.
uInternet Settings,ProxyOverride = *.local
mWinlogon: Userinit=userinit.exe
BHO: Adobe PDF Link Helper: {18df081c-e8ad-4283-a596-fa578c2ebdc3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
BHO: Skype add-on (mastermind): {22bf413b-c6d2-4d91-82a9-a0f997ba588c} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
BHO: Groove GFS Browser Helper: {72853161-30c5-4d22-b7f9-0bbc1d38a37e} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll
BHO: Windows Live Sign-in Helper: {9030d464-4c02-4abf-8ecc-5164760863c6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
BHO: Bing Bar Helper: {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - "C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll"
BHO: Java™ Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll
TB: Bing Bar: {8dcb7100-df86-4384-8842-8fa844297b3f} - "C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll"
TB: {21FA44EF-376D-4D53-9B0F-8A89D3229068} - No File
mRun: [Dell Webcam Central] "C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\WebcamDell2.exe" /mode2
mRun: [VolPanel] "C:\Program Files (x86)\Creative\SB X-Fi MB\Volume Panel\VolPanlu.exe" /r
mRun: [UpdReg] C:\Windows\UpdReg.EXE
mRun: [DellSupportCenter] "C:\Program Files (x86)\Dell Support Center\bin\sprtcmd.exe" /P DellSupportCenter
mRun: [Absolute Notifier] "C:\Program Files (x86)\Absolute Software\Absolute Notifier\AbsoluteNotifier.exe"
mRun: [Adobe Photo Downloader] "C:\Program Files (x86)\Adobe\Photoshop Elements 6.0\apdproxy.exe"
mRun: [GrooveMonitor] "C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe"
mRunOnce: [Launcher] C:\Program Files (x86)\Dell DataSafe Local Backup\Components\scheduler\Launcher.exe
mRunOnce: [STToasterLauncher] C:\program files (x86)\Dell DataSafe Local Backup\toasterLauncher.exe
StartupFolder: C:\PROGRA~3\MICROS~1\Windows\STARTM~1\Programs\Startup\BLUETO~1.LNK - C:\Program Files (x86)\WIDCOMM\Bluetooth Software\BTTray.exe
mPolicies-explorer: NoActiveDesktop = 1 (0x1)
mPolicies-explorer: NoActiveDesktopChanges = 1 (0x1)
mPolicies-system: ConsentPromptBehaviorAdmin = 5 (0x5)
mPolicies-system: ConsentPromptBehaviorUser = 3 (0x3)
mPolicies-system: EnableUIADesktopToggle = 0 (0x0)
IE: E&xport to Microsoft Excel - C:\PROGRA~2\MICROS~2\Office12\EXCEL.EXE/3000
IE: Send image to &Bluetooth Device... - c:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
IE: Send page to &Bluetooth Device... - c:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
IE: {CCA281CA-C863-46ef-9331-5C8D4460577F} - c:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
IE: {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - {5F7B1267-94A9-47F5-98DB-E99415F33AEC} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - C:\PROGRA~2\MICROS~2\Office12\ONBttnIE.dll
IE: {5067A26B-1337-4436-8AFE-EE169C2DA79F} - {77BF5300-1474-4EC7-9980-D32B190E9B07} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
IE: {77BF5300-1474-4EC7-9980-D32B190E9B07} - {77BF5300-1474-4EC7-9980-D32B190E9B07} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503} - C:\PROGRA~2\MICROS~2\Office12\REFIEBAR.DLL
DPF: {2AB1C516-D654-4D3A-B3D6-2185BBCEB409} - hxxps://cvpn.uhc.com/+CSCOL+/relayp.cab
DPF: {3D3B42C2-11BF-4732-A304-A01384B70D68} - hxxp://picasaweb.google.com/s/v/58.14/uploader2.cab
DPF: {700EF03F-A472-4D26-8ACB-300F4D04FD96} - hxxps://lojackforlaptops.absolute.com/ctmweb/testoc.cab
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_26-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_26-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_26-windows-i586.cab
DPF: {E34F52FE-7769-46CE-8F8B-5E8ABAD2E9FC} - hxxps://cvpn.uhc.com/CACHE/sdesktop/install/binaries/instweb.cab
TCP: DhcpNameServer = 209.18.47.61 209.18.47.62
TCP: Interfaces\{827809C9-B783-4B67-8EE2-ACAB867C1DD2} : NameServer = 8.8.8.8,8.8.4.4
TCP: Interfaces\{827809C9-B783-4B67-8EE2-ACAB867C1DD2} : DhcpNameServer = 209.18.47.61 209.18.47.62
TCP: Interfaces\{AB2D3E95-FACC-4915-9107-C40AEFEBFDAB}\2516A6 : DhcpNameServer = 192.168.1.1 24.28.193.96 24.28.193.97
Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveSystemServices.dll
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
SEH: Groove GFS Stub Execution Hook: {b5a7f190-dda6-4420-b3ba-52453494e6cd} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll
BHO-X64: Adobe PDF Link Helper: {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
BHO-X64: AcroIEHelperStub - No File
BHO-X64: Skype add-on (mastermind): {22BF413B-C6D2-4d91-82A9-A0F997BA588C} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
BHO-X64: Skype add-on (mastermind) - No File
BHO-X64: Groove GFS Browser Helper: {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll
BHO-X64: Windows Live Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
BHO-X64: Bing Bar Helper: {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - "C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll"
BHO-X64: Java™ Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll
TB-X64: Bing Bar: {8dcb7100-df86-4384-8842-8fa844297b3f} - "C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll"
TB-X64: {21FA44EF-376D-4D53-9B0F-8A89D3229068} - No File
mRun-x64: [Dell Webcam Central] "C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\WebcamDell2.exe" /mode2
mRun-x64: [VolPanel] "C:\Program Files (x86)\Creative\SB X-Fi MB\Volume Panel\VolPanlu.exe" /r
mRun-x64: [UpdReg] C:\Windows\UpdReg.EXE
mRun-x64: [DellSupportCenter] "C:\Program Files (x86)\Dell Support Center\bin\sprtcmd.exe" /P DellSupportCenter
mRun-x64: [Absolute Notifier] "C:\Program Files (x86)\Absolute Software\Absolute Notifier\AbsoluteNotifier.exe"
mRun-x64: [Adobe Photo Downloader] "C:\Program Files (x86)\Adobe\Photoshop Elements 6.0\apdproxy.exe"
mRun-x64: [GrooveMonitor] "C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe"
mRunOnce-x64: [Launcher] C:\Program Files (x86)\Dell DataSafe Local Backup\Components\scheduler\Launcher.exe
mRunOnce-x64: [STToasterLauncher] C:\program files (x86)\Dell DataSafe Local Backup\toasterLauncher.exe
IE-X64: {CCA281CA-C863-46ef-9331-5C8D4460577F} - c:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
SEH-X64: Groove GFS Stub Execution Hook: {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll
.
================= FIREFOX ===================
.
FF - ProfilePath - C:\Users\Dipanshu\AppData\Roaming\Mozilla\Firefox\Profiles\g6vacamy.default\
FF - plugin: C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll
FF - plugin: C:\Program Files (x86)\Google\Update\1.3.21.123\npGoogleUpdate3.dll
FF - plugin: C:\Program Files (x86)\Java\jre6\bin\new_plugin\npdeployJava1.dll
FF - plugin: c:\Program Files (x86)\Microsoft Silverlight\4.1.10329.0\npctrlui.dll
FF - plugin: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
FF - plugin: C:\Users\Dipanshu\AppData\Local\Google\Update\1.3.21.123\npGoogleUpdate3.dll
FF - plugin: C:\Users\Dipanshu\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll
FF - plugin: C:\Users\Dipanshu\AppData\Roaming\Mozilla\plugins\npgtpo3dautoplugin.dll
.
============= SERVICES / DRIVERS ===============
.
R0 PxHlpa64;PxHlpa64;C:\Windows\system32\Drivers\PxHlpa64.sys --> C:\Windows\system32\Drivers\PxHlpa64.sys [?]
R1 ggc;ggc;C:\Windows\system32\DRIVERS\ggc.sys --> C:\Windows\system32\DRIVERS\ggc.sys [?]
R1 wstif;wstif;C:\Windows\system32\drivers\wstif.sys --> C:\Windows\system32\drivers\wstif.sys [?]
R2 AbsoluteNotifier;Absolute Notifier;C:\Program Files (x86)\Absolute Software\Absolute Notifier\AbsoluteNotifierService.exe [2010-10-8 10408]
R2 BBUpdate;BBUpdate;C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE [2011-6-15 249648]
R2 catflt;catflt;C:\Windows\system32\DRIVERS\catflt.sys --> C:\Windows\system32\DRIVERS\catflt.sys [?]
R2 Core Mail Protection;Core Mail Protection;C:\Program Files\Quick Heal\Quick Heal Total Security\EMLPROXY.EXE [2011-8-6 38856]
R2 Core Scanning Server;Core Scanning Server;C:\Program Files\Quick Heal\Quick Heal Total Security\SAPISSVC.EXE [2011-8-6 254920]
R2 EMLSS;EMLSS;C:\Windows\system32\drivers\emltdi.sys --> C:\Windows\system32\drivers\emltdi.sys [?]
R2 Online Protection System;Online Protection System;C:\Program Files\Quick Heal\Quick Heal Total Security\OPSSVC.EXE [2011-8-6 30152]
R2 Quick Update Service;Quick Update Service;C:\Program Files\Quick Heal\Quick Heal Total Security\QUHLPSVC.EXE [2011-8-6 110024]
R3 CtClsFlt;Creative Camera Class Upper Filter Driver;C:\Windows\system32\DRIVERS\CtClsFlt.sys --> C:\Windows\system32\DRIVERS\CtClsFlt.sys [?]
R3 IntcHdmiAddService;Intel® High Definition Audio HDMI;C:\Windows\system32\drivers\IntcHdmi.sys --> C:\Windows\system32\drivers\IntcHdmi.sys [?]
R3 k57nd60a;Broadcom NetLink ™ Gigabit Ethernet - NDIS 6.0;C:\Windows\system32\DRIVERS\k57nd60a.sys --> C:\Windows\system32\DRIVERS\k57nd60a.sys [?]
R3 NETw5v64;Intel® Wireless WiFi Link 5000 Series Adapter Driver for Windows Vista 64 Bit;C:\Windows\system32\DRIVERS\NETw5v64.sys --> C:\Windows\system32\DRIVERS\NETw5v64.sys [?]
R3 wsnfmp;Network Filter Miniport;C:\Windows\system32\DRIVERS\wsnf.sys --> C:\Windows\system32\DRIVERS\wsnf.sys [?]
S0 mscank;mscank;C:\Windows\system32\DRIVERS\mscank64.sys --> C:\Windows\system32\DRIVERS\mscank64.sys [?]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-3-18 138576]
S2 Core Scanning ServerEx;Core Scanning ServerEx;C:\Program Files\Quick Heal\Quick Heal Total Security\SAPISSVC.EXE [2011-8-6 254920]
S2 gupdate;Google Update Service (gupdate);C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2010-4-27 136176]
S2 SkypeUpdate;Skype Updater;C:\Program Files (x86)\Skype\Updater\Updater.exe [2012-7-13 160944]
S3 BBSvc;Bing Bar Update Service;C:\Program Files (x86)\Microsoft\BingBar\BBSvc.EXE [2011-7-7 195336]
S3 btwl2cap;Bluetooth L2CAP Service;C:\Windows\system32\DRIVERS\btwl2cap.sys --> C:\Windows\system32\DRIVERS\btwl2cap.sys [?]
S3 cmnsusbser;Mobile Connector USB Device for Legacy Serial Communication LCT2053s;C:\Windows\system32\DRIVERS\cmnsusbser.sys --> C:\Windows\system32\DRIVERS\cmnsusbser.sys [?]
S3 Creative ALchemy AL6 Licensing Service;Creative ALchemy AL6 Licensing Service;C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\AL6Licensing.exe [2009-12-5 79360]
S3 Creative Audio Engine Licensing Service;Creative Audio Engine Licensing Service;C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\CTAELicensing.exe [2009-12-5 79360]
S3 gupdatem;Google Update Service (gupdatem);C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2010-4-27 136176]
S3 MozillaMaintenance;Mozilla Maintenance Service;C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2012-9-19 114144]
S3 Sound Blaster X-Fi MB Licensing Service;Sound Blaster X-Fi MB Licensing Service;C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\XMBLicensing.exe [2009-12-5 79360]
S3 USBAAPL64;Apple Mobile USB Driver;C:\Windows\system32\Drivers\usbaapl64.sys --> C:\Windows\system32\Drivers\usbaapl64.sys [?]
S3 WatAdminSvc;Windows Activation Technologies Service;C:\Windows\system32\Wat\WatAdminSvc.exe --> C:\Windows\system32\Wat\WatAdminSvc.exe [?]
S3 wsnf;Network Filter Service;C:\Windows\system32\DRIVERS\wsnf.sys --> C:\Windows\system32\DRIVERS\wsnf.sys [?]
S4 Change Modem Device Service;Change Modem Device Service;C:\Windows\SysWOW64\ChgService.exe [2011-6-15 135168]
S4 DockLoginService;Dock Login Service;C:\Program Files\Dell\DellDock\DockLogin.exe [2009-6-9 155648]
S4 SftService;SoftThinks Agent Service;C:\Program Files (x86)\Dell DataSafe Local Backup\SftService.exe [2009-12-5 656624]
.
=============== Created Last 30 ================
.
2012-09-20 03:36:02 -------- d-sh--w- C:\Windows\Installer
2012-09-18 22:33:01 9310152 ----a-w- C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{6A0BF282-866A-4CF8-94A6-EF94875167AE}\mpengine.dll
2012-09-16 17:46:09 20480 ----a-w- C:\Windows\svchost.exe
2012-09-15 18:13:34 -------- d-----w- C:\Windows\pss
2012-09-12 02:48:26 574464 ----a-w- C:\Windows\System32\d3d10level9.dll
2012-09-12 02:48:26 490496 ----a-w- C:\Windows\SysWow64\d3d10level9.dll
.
==================== Find3M ====================
.
2012-08-13 03:59:24 112248 ----a-w- C:\Windows\System32\drivers\wstif.sys
2012-07-18 17:31:12 3146752 ----a-w- C:\Windows\System32\win32k.sys
2012-07-06 19:58:53 552448 ----a-w- C:\Windows\System32\drivers\bthport.sys
2012-07-04 22:01:38 58880 ----a-w- C:\Windows\System32\browcli.dll
2012-07-04 22:01:38 136704 ----a-w- C:\Windows\System32\browser.dll
2012-07-04 21:23:55 41472 ----a-w- C:\Windows\SysWow64\browcli.dll
2012-06-29 03:56:34 2312704 ----a-w- C:\Windows\System32\jscript9.dll
2012-06-29 03:49:11 1392128 ----a-w- C:\Windows\System32\wininet.dll
2012-06-29 03:48:07 1494528 ----a-w- C:\Windows\System32\inetcpl.cpl
2012-06-29 03:43:49 173056 ----a-w- C:\Windows\System32\ieUnatt.exe
2012-06-29 03:39:48 2382848 ----a-w- C:\Windows\System32\mshtml.tlb
2012-06-29 00:16:58 1800704 ----a-w- C:\Windows\SysWow64\jscript9.dll
2012-06-29 00:09:01 1129472 ----a-w- C:\Windows\SysWow64\wininet.dll
2012-06-29 00:08:59 1427968 ----a-w- C:\Windows\SysWow64\inetcpl.cpl
2012-06-29 00:04:43 142848 ----a-w- C:\Windows\SysWow64\ieUnatt.exe
2012-06-29 00:00:45 2382848 ----a-w- C:\Windows\SysWow64\mshtml.tlb
.
============= FINISH: 10:41:29.79 ===============

BC AdBot (Login to Remove)

 


#2 dappy

dappy
  • Topic Starter

  • Members
  • 39 posts
  • OFFLINE
  •  
  • Local time:03:25 PM

Posted 21 September 2012 - 04:59 PM

Attache is the other file from DDS.Attached File  Attach.txt   8.54KB   0 downloads

#3 B-boy/StyLe/

B-boy/StyLe/

    Bleeping Freestyler


  • Malware Response Team
  • 6,270 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Bulgaria
  • Local time:02:25 AM

Posted 21 September 2012 - 07:31 PM

Hello dappy ! Welcome to BleepingComputer Forums! :welcome:

My name is Georgi and and I will be helping you with your computer problems.

Before we begin, please note the following:
  • I will working be on your Malware issues, this may or may not, solve other issues you have with your machine.
  • The logs can take some time to research, so please be patient with me.
  • Stay with the topic until I tell you that your system is clean. Missing symptoms does not mean that everything is okay.
  • Instructions that I give are for your system only!
  • Please do not run any tools until requested ! The reason for this is so I know what is going on with the machine at any time. Some programs can interfere with others and hamper the recovery process.
  • Please perform all steps in the order received. If you can't understand something don't hesitate to ask.
  • Again I would like to remind you to make no further changes to your computer unless I direct you to do so. I will not help you if you do not follow my instructions.



IMPORTANT NOTE: One or more of the identified infections is related to the rootkit TDL4. Rootkits, backdoor Trojans, Botnets, and IRCBots are very dangerous because they compromise system integrity by making changes that allow it to be used be the attacker for malicious purposes. Rootkits are used be Trojans to conceal its presence (hide from view) in order to prevent detection of an attacker's software and make removal more difficult. Many rootkits can hook into the Windows 32-bit kernel, and patch several APIs to hide new registry keys and files they install. They can disable your anti-virus and security tools to prevent detection and removal. Remote attackers use backdoors as a means of accessing and taking control of a computer that bepasses security mechanisms. This type of exploit allows them to steal sensitive information like passwords, personal and financial data which is send back to the hacker. To learn more about these types of infections, you can refer to:If your computer was used for online banking, has credit card information or other sensitive data on it, you should stay disconnected from the Internet until your system is fully cleaned. All passwords should be changed immediately to include those used for banking, email, eBay, paypal and online forums. You should consider them to be compromised and change each password using a clean computer, not the infected one. If not, an attacker may get the new passwords and transaction information. If using a router, you need to reset it with a strong logon/password so the malware cannot gain control before connect again. Banking and credit card institutions should be notified of the possible security breach. Because your computer was compromised please read:Although the infection has been identified and may be removed, your PC has likely been compromised and there is no way to be sure the computer can ever be trusted again. It is dangerous and incorrect to assume the computer is secure even if the malware appears to have been removed. In some instances an infection may have caused so much damage to your system that it cannot be completely cleaned or repaired so you can never be sure that you have completely removed a rootkit. The malware may leave so many remnants behind that security tools cannot find them. Tools that claim to be able to remove rootkits cannot guarantee that all traces of it will be removed. Many experts in the security community believe that once infected with this type of malware, the best course of action is to wipe the drive clean, reformat and reinstall the OS. Please read:


We can still clean this machine but I can't guarantee that it will be 100% secure afterwards. If you decide to continue please do this:



Please download the latest version of TDSSKiller from here and save it to your Desktop.
  • Doubleclick on TDSSKiller.exe to run the application, then click on Change parameters.
    Posted Image
  • Put a checkmark beside loaded modules.
    Posted Image
  • A reboot will be needed to apply the changes. Do it.
  • TDSSKiller will launch automatically after the reboot. Also your computer may seem very slow and unusable. This is normal. Give it enough time to load your background programs.
  • Then click on Change parameters in TDSSKiller.
  • Check all boxes then click OK.
    Posted Image
  • Click the Start Scan button.
    Posted Image
  • The scan should take no longer than 2 minutes.
  • If a suspicious object is detected, the default action will be Skip, click on Continue.
    Posted Image
  • If malicious objects are found, they will show in the Scan results - Select action for found objects and offer three options.
    Ensure Cure (default) is selected, then click Continue > Reboot now to finish the cleaning process.
    Posted Image
    Note: If Cure is not available, please choose Skip instead, do not choose Delete unless instructed.
  • A report will be created in your root directory, (usually C:\ folder) in the form of "TDSSKiller.[Version]_[Date]_[Time]_log.txt". Please copy and paste the contents of that file here.



Regards,
Georgi

qnfKk.jpg
My help is always free of charge. If you appreciate my work, you can buy me a beer or two by clicking here - paypal.gif


#4 dappy

dappy
  • Topic Starter

  • Members
  • 39 posts
  • OFFLINE
  •  
  • Local time:03:25 PM

Posted 22 September 2012 - 03:28 AM

Hi Georgi,

I ran the TDSSKiller on my system and below is the log file as per your suggestion. I'll be waiting for your instruction to remove this application from my system.

********************

02:10:50.0778 3408 TDSS rootkit removing tool 2.8.10.0 Sep 17 2012 19:23:24
02:10:51.0248 3408 ============================================================
02:10:51.0248 3408 Current date / time: 2012/09/22 02:10:51.0248
02:10:51.0248 3408 SystemInfo:
02:10:51.0248 3408
02:10:51.0248 3408 OS Version: 6.1.7600 ServicePack: 0.0
02:10:51.0248 3408 Product type: Workstation
02:10:51.0248 3408 ComputerName: DIPANSHU-PC
02:10:51.0248 3408 UserName: Dipanshu
02:10:51.0248 3408 Windows directory: C:\Windows
02:10:51.0248 3408 System windows directory: C:\Windows
02:10:51.0248 3408 Running under WOW64
02:10:51.0248 3408 Processor architecture: Intel x64
02:10:51.0248 3408 Number of processors: 2
02:10:51.0248 3408 Page size: 0x1000
02:10:51.0248 3408 Boot type: Normal boot
02:10:51.0248 3408 ============================================================
02:10:53.0598 3408 BG loaded
02:10:54.0718 3408 Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
02:10:54.0748 3408 ============================================================
02:10:54.0748 3408 \Device\Harddisk0\DR0:
02:10:54.0748 3408 MBR partitions:
02:10:54.0748 3408 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x139C5, BlocksNum 0x1D4C000
02:10:54.0748 3408 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x1D5F9C5, BlocksNum 0x38625E6B
02:10:54.0748 3408 ============================================================
02:10:54.0868 3408 C: <-> \Device\Harddisk0\DR0\Partition2
02:10:54.0868 3408 ============================================================
02:10:54.0868 3408 Initialize success
02:10:54.0868 3408 ============================================================
02:11:04.0348 3508 ============================================================
02:11:04.0348 3508 Scan started
02:11:04.0348 3508 Mode: Manual; SigCheck; TDLFS;
02:11:04.0348 3508 ============================================================
02:11:16.0048 3508 ================ Scan system memory ========================
02:11:16.0048 3508 System memory - ok
02:11:16.0058 3508 ================ Scan services =============================
02:11:16.0858 3508 [ 1B00662092F9F9568B995902F0CC40D5 ] 1394ohci C:\Windows\system32\DRIVERS\1394ohci.sys
02:12:13.0384 3508 1394ohci - ok
02:12:14.0334 3508 [ 426E0E8127BAC7D5DDEE8251F104E053 ] AbsoluteNotifier C:\Program Files (x86)\Absolute Software\Absolute Notifier\AbsoluteNotifierService.exe
02:12:14.0354 3508 AbsoluteNotifier - ok
02:12:15.0234 3508 [ 6F11E88748CDEFD2F76AA215F97DDFE5 ] ACPI C:\Windows\system32\DRIVERS\ACPI.sys
02:12:15.0374 3508 ACPI - ok
02:12:15.0694 3508 [ 63B05A0420CE4BF0E4AF6DCC7CADA254 ] AcpiPmi C:\Windows\system32\DRIVERS\acpipmi.sys
02:12:16.0024 3508 AcpiPmi - ok
02:12:17.0422 3508 [ E8FE4FCE23D2809BD88BCC1D0F8408CE ] AdobeActiveFileMonitor6.0 C:\Program Files (x86)\Adobe\Photoshop Elements 6.0\PhotoshopElementsFileAgent.exe
02:12:17.0465 3508 AdobeActiveFileMonitor6.0 - ok
02:12:17.0603 3508 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
02:12:17.0651 3508 adp94xx - ok
02:12:17.0717 3508 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
02:12:17.0759 3508 adpahci - ok
02:12:17.0806 3508 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
02:12:17.0994 3508 adpu320 - ok
02:12:18.0094 3508 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
02:12:19.0071 3508 AeLookupSvc - ok
02:12:19.0171 3508 [ DB9D6C6B2CD95A9CA414D045B627422E ] AFD C:\Windows\system32\drivers\afd.sys
02:12:19.0665 3508 AFD - ok
02:12:19.0741 3508 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\Windows\system32\DRIVERS\agp440.sys
02:12:19.0803 3508 agp440 - ok
02:12:19.0889 3508 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\Windows\System32\alg.exe
02:12:20.0136 3508 ALG - ok
02:12:20.0239 3508 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\Windows\system32\DRIVERS\aliide.sys
02:12:20.0337 3508 aliide - ok
02:12:20.0457 3508 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\Windows\system32\DRIVERS\amdide.sys
02:12:20.0551 3508 amdide - ok
02:12:20.0665 3508 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
02:12:21.0002 3508 AmdK8 - ok
02:12:21.0053 3508 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
02:12:21.0291 3508 AmdPPM - ok
02:12:21.0404 3508 [ EC7EBAB00A4D8448BAB68D1E49B4BEB9 ] amdsata C:\Windows\system32\drivers\amdsata.sys
02:12:21.0429 3508 amdsata - ok
02:12:21.0493 3508 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
02:12:21.0530 3508 amdsbs - ok
02:12:21.0563 3508 [ DB27766102C7BF7E95140A2AA81D042E ] amdxata C:\Windows\system32\drivers\amdxata.sys
02:12:21.0576 3508 amdxata - ok
02:12:21.0656 3508 [ 42FD751B27FA0E9C69BB39F39E409594 ] AppID C:\Windows\system32\drivers\appid.sys
02:12:22.0117 3508 AppID - ok
02:12:22.0161 3508 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\Windows\System32\appidsvc.dll
02:12:22.0444 3508 AppIDSvc - ok
02:12:22.0483 3508 [ D065BE66822847B7F127D1F90158376E ] Appinfo C:\Windows\System32\appinfo.dll
02:12:22.0590 3508 Appinfo - ok
02:12:22.0804 3508 [ 018857EAD9A077A56AEDFC0E5EF7A24A ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
02:12:22.0848 3508 Apple Mobile Device - ok
02:12:22.0907 3508 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\Windows\system32\DRIVERS\arc.sys
02:12:22.0998 3508 arc - ok
02:12:23.0092 3508 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
02:12:23.0204 3508 arcsas - ok
02:12:23.0293 3508 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
02:12:23.0480 3508 AsyncMac - ok
02:12:23.0562 3508 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\Windows\system32\DRIVERS\atapi.sys
02:12:23.0582 3508 atapi - ok
02:12:23.0814 3508 [ 07721A77180EDD4D39CCB865BF63C7FD ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
02:12:23.0884 3508 AudioEndpointBuilder - ok
02:12:23.0913 3508 [ 07721A77180EDD4D39CCB865BF63C7FD ] AudioSrv C:\Windows\System32\Audiosrv.dll
02:12:23.0963 3508 AudioSrv - ok
02:12:24.0166 3508 [ B20B5FA5CA050E9926E4D1DB81501B32 ] AxInstSV C:\Windows\System32\AxInstSV.dll
02:12:24.0408 3508 AxInstSV - ok
02:12:24.0530 3508 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\Windows\system32\DRIVERS\bxvbda.sys
02:12:24.0702 3508 b06bdrv - ok
02:12:24.0802 3508 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
02:12:24.0862 3508 b57nd60a - ok
02:12:25.0032 3508 [ 2ED050291BC1D7F9E322E328DB3AAECF ] BBSvc C:\Program Files (x86)\Microsoft\BingBar\BBSvc.EXE
02:12:25.0072 3508 BBSvc - ok
02:12:25.0164 3508 [ 785DE7ABDA13309D6065305542829E76 ] BBUpdate C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE
02:12:25.0174 3508 BBUpdate - ok
02:12:25.0224 3508 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\Windows\System32\bdesvc.dll
02:12:25.0334 3508 BDESVC - ok
02:12:25.0416 3508 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\Windows\system32\drivers\Beep.sys
02:12:25.0486 3508 Beep - ok
02:12:25.0808 3508 [ 4992C609A6315671463E30F6512BC022 ] BFE C:\Windows\System32\bfe.dll
02:12:25.0858 3508 BFE - ok
02:12:26.0002 3508 [ 7F0C323FE3DA28AA4AA1BDA3F575707F ] BITS C:\Windows\System32\qmgr.dll
02:12:26.0062 3508 BITS - ok
02:12:26.0116 3508 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
02:12:26.0144 3508 blbdrive - ok
02:12:26.0406 3508 [ F832F1505AD8B83474BD9A5B1B985E01 ] Bonjour Service C:\Program Files (x86)\Bonjour\mDNSResponder.exe
02:12:26.0486 3508 Bonjour Service - ok
02:12:26.0616 3508 [ 19D20159708E152267E53B66677A4995 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
02:12:26.0706 3508 bowser - ok
02:12:26.0766 3508 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
02:12:26.0859 3508 BrFiltLo - ok
02:12:26.0879 3508 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
02:12:26.0957 3508 BrFiltUp - ok
02:12:27.0053 3508 [ 6B054C67AAA87843504E8E3C09102009 ] Browser C:\Windows\System32\browser.dll
02:12:27.0113 3508 Browser - ok
02:12:27.0193 3508 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\Windows\System32\Drivers\Brserid.sys
02:12:27.0353 3508 Brserid - ok
02:12:27.0383 3508 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
02:12:27.0453 3508 BrSerWdm - ok
02:12:27.0493 3508 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
02:12:27.0563 3508 BrUsbMdm - ok
02:12:27.0593 3508 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
02:12:27.0695 3508 BrUsbSer - ok
02:12:27.0852 3508 [ CF98190A94F62E405C8CB255018B2315 ] BthEnum C:\Windows\system32\drivers\BthEnum.sys
02:12:27.0937 3508 BthEnum - ok
02:12:27.0997 3508 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
02:12:28.0057 3508 BTHMODEM - ok
02:12:28.0097 3508 [ 02DD601B708DD0667E1331FA8518E9FF ] BthPan C:\Windows\system32\DRIVERS\bthpan.sys
02:12:28.0207 3508 BthPan - ok
02:12:28.0336 3508 [ D59773C7FDD3D795D6FE402EEEA8D71E ] BTHPORT C:\Windows\system32\Drivers\BTHport.sys
02:12:28.0507 3508 BTHPORT - ok
02:12:28.0555 3508 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\Windows\system32\bthserv.dll
02:12:28.0702 3508 bthserv - ok
02:12:28.0738 3508 [ 8504842634DD144C075B6B0C982CCEC4 ] BTHUSB C:\Windows\system32\Drivers\BTHUSB.sys
02:12:28.0804 3508 BTHUSB - ok
02:12:28.0914 3508 [ 6BCFDC2B5B7F66D484486D4BD4B39A6B ] btwaudio C:\Windows\system32\drivers\btwaudio.sys
02:12:29.0006 3508 btwaudio - ok
02:12:29.0086 3508 [ 82DC8B7C626E526681C1BEBED2BC3FF9 ] btwavdt C:\Windows\system32\drivers\btwavdt.sys
02:12:29.0446 3508 btwavdt - ok
02:12:29.0758 3508 [ D65AA164ACD0F6706DBCFBBCC9731584 ] btwdins c:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
02:12:29.0778 3508 btwdins - ok
02:12:29.0840 3508 [ 6149301DC3F81D6F9667A3FBAC410975 ] btwl2cap C:\Windows\system32\DRIVERS\btwl2cap.sys
02:12:29.0920 3508 btwl2cap - ok
02:12:30.0142 3508 [ 28E105AD3B79F440BF94780F507BF66A ] btwrchid C:\Windows\system32\DRIVERS\btwrchid.sys
02:12:30.0262 3508 btwrchid - ok
02:12:30.0772 3508 [ ED7563CD3E67EE3C950A1B86818C24C3 ] catflt C:\Windows\system32\DRIVERS\catflt.sys
02:12:30.0812 3508 catflt - ok
02:12:30.0832 3508 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
02:12:31.0282 3508 cdfs - ok
02:12:31.0435 3508 [ 83D2D75E1EFB81B3450C18131443F7DB ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
02:12:31.0497 3508 cdrom - ok
02:12:31.0627 3508 [ 312E2F82AF11E79906898AC3E3D58A1F ] CertPropSvc C:\Windows\System32\certprop.dll
02:12:31.0737 3508 CertPropSvc - ok
02:12:32.0320 3508 [ 8C62EAF0FC820F2D1B32FCF1D02507BC ] Change Modem Device Service C:\Windows\SysWOW64\ChgService.exe
02:12:32.0408 3508 Change Modem Device Service ( UnsignedFile.Multi.Generic ) - warning
02:12:32.0408 3508 Change Modem Device Service - detected UnsignedFile.Multi.Generic (1)
02:12:32.0472 3508 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\Windows\system32\DRIVERS\circlass.sys
02:12:32.0562 3508 circlass - ok
02:12:32.0614 3508 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\Windows\system32\CLFS.sys
02:12:32.0664 3508 CLFS - ok
02:12:32.0826 3508 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
02:12:32.0866 3508 clr_optimization_v2.0.50727_32 - ok
02:12:33.0008 3508 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
02:12:33.0048 3508 clr_optimization_v2.0.50727_64 - ok
02:12:33.0320 3508 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
02:12:33.0470 3508 clr_optimization_v4.0.30319_32 - ok
02:12:33.0700 3508 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
02:12:33.0800 3508 clr_optimization_v4.0.30319_64 - ok
02:12:33.0950 3508 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
02:12:33.0970 3508 CmBatt - ok
02:12:34.0030 3508 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\Windows\system32\DRIVERS\cmdide.sys
02:12:34.0070 3508 cmdide - ok
02:12:34.0160 3508 [ F34031DC6D1745154F54B04AFF54F5D1 ] cmnsusbser C:\Windows\system32\DRIVERS\cmnsusbser.sys
02:12:34.0260 3508 cmnsusbser - ok
02:12:34.0330 3508 [ CA7720B73446FDDEC5C69519C1174C98 ] CNG C:\Windows\system32\Drivers\cng.sys
02:12:34.0390 3508 CNG - ok
02:12:34.0432 3508 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
02:12:34.0442 3508 Compbatt - ok
02:12:34.0502 3508 [ F26B3A86F6FA87CA360B879581AB4123 ] CompositeBus C:\Windows\system32\DRIVERS\CompositeBus.sys
02:12:34.0592 3508 CompositeBus - ok
02:12:34.0632 3508 COMSysApp - ok
02:12:35.0012 3508 [ 27A2F5B4168B333E003E2AB68811D62E ] Core Mail Protection C:\Program Files\Quick Heal\Quick Heal Total Security\EMLPROXY.EXE
02:12:35.0182 3508 Core Mail Protection - ok
02:12:35.0282 3508 [ 3D268FBD5077F41ECE4FF40567BFB492 ] Core Scanning Server C:\Program Files\Quick Heal\Quick Heal Total Security\SAPISSVC.EXE
02:12:35.0362 3508 Core Scanning Server - ok
02:12:35.0502 3508 [ 3D268FBD5077F41ECE4FF40567BFB492 ] Core Scanning ServerEx C:\Program Files\Quick Heal\Quick Heal Total Security\SAPISSVC.EXE
02:12:35.0522 3508 Core Scanning ServerEx - ok
02:12:35.0592 3508 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
02:12:35.0652 3508 crcdisk - ok
02:12:35.0862 3508 [ C8BD651E13895B93ED9EC5B4F1DF42BC ] Creative ALchemy AL6 Licensing Service C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\AL6Licensing.exe
02:12:35.0982 3508 Creative ALchemy AL6 Licensing Service ( UnsignedFile.Multi.Generic ) - warning
02:12:35.0982 3508 Creative ALchemy AL6 Licensing Service - detected UnsignedFile.Multi.Generic (1)
02:12:36.0072 3508 [ C0EAD9F8AB83D41FF07303C75589C2B8 ] Creative Audio Engine Licensing Service C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\CTAELicensing.exe
02:12:36.0092 3508 Creative Audio Engine Licensing Service ( UnsignedFile.Multi.Generic ) - warning
02:12:36.0092 3508 Creative Audio Engine Licensing Service - detected UnsignedFile.Multi.Generic (1)
02:12:36.0232 3508 [ F02786B66375292E58C8777082D4396D ] CryptSvc C:\Windows\system32\cryptsvc.dll
02:12:36.0302 3508 CryptSvc - ok
02:12:36.0482 3508 [ 07BA6D17E66879018B30B6C3F976EBED ] CTAudSvcService C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe
02:12:36.0532 3508 CTAudSvcService ( UnsignedFile.Multi.Generic ) - warning
02:12:36.0532 3508 CTAudSvcService - detected UnsignedFile.Multi.Generic (1)
02:12:36.0622 3508 [ ED5CF92396A62F4C15110DCDB5E854D9 ] CtClsFlt C:\Windows\system32\DRIVERS\CtClsFlt.sys
02:12:36.0662 3508 CtClsFlt - ok
02:12:36.0792 3508 [ 7266972E86890E2B30C0C322E906B027 ] DcomLaunch C:\Windows\system32\rpcss.dll
02:12:36.0862 3508 DcomLaunch - ok
02:12:36.0947 3508 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\Windows\System32\defragsvc.dll
02:12:37.0068 3508 defragsvc - ok
02:12:37.0120 3508 [ 9C253CE7311CA60FC11C774692A13208 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
02:12:37.0180 3508 DfsC - ok
02:12:37.0310 3508 [ CE3B9562D997F69B330D181A8875960F ] Dhcp C:\Windows\system32\dhcpcore.dll
02:12:37.0540 3508 Dhcp - ok
02:12:37.0610 3508 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\Windows\system32\drivers\discache.sys
02:12:37.0756 3508 discache - ok
02:12:37.0823 3508 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\Windows\system32\DRIVERS\disk.sys
02:12:37.0843 3508 Disk - ok
02:12:37.0905 3508 [ 85CF424C74A1D5EC33533E1DBFF9920A ] Dnscache C:\Windows\System32\dnsrslvr.dll
02:12:37.0945 3508 Dnscache - ok
02:12:38.0125 3508 [ 0840ABBBDF438691EE65A20040635CBE ] DockLoginService C:\Program Files\Dell\DellDock\DockLogin.exe
02:12:38.0175 3508 DockLoginService ( UnsignedFile.Multi.Generic ) - warning
02:12:38.0175 3508 DockLoginService - detected UnsignedFile.Multi.Generic (1)
02:12:38.0265 3508 [ 14452ACDB09B70964C8C21BF80A13ACB ] dot3svc C:\Windows\System32\dot3svc.dll
02:12:38.0395 3508 dot3svc - ok
02:12:38.0438 3508 [ 8C2BA6BEA949EE6E68385F5692BAFB94 ] DPS C:\Windows\system32\dps.dll
02:12:38.0518 3508 DPS - ok
02:12:38.0620 3508 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
02:12:38.0722 3508 drmkaud - ok
02:12:38.0892 3508 [ 1633B9ABF52784A1331476397A48CBEF ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
02:12:38.0922 3508 DXGKrnl - ok
02:12:38.0994 3508 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\Windows\System32\eapsvc.dll
02:12:39.0054 3508 EapHost - ok
02:12:40.0026 3508 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\Windows\system32\DRIVERS\evbda.sys
02:12:40.0528 3508 ebdrv - ok
02:12:40.0668 3508 [ 156F6159457D0AA7E59B62681B56EB90 ] EFS C:\Windows\System32\lsass.exe
02:12:40.0918 3508 EFS - ok
02:12:41.0728 3508 [ 47C071994C3F649F23D9CD075AC9304A ] ehRecvr C:\Windows\ehome\ehRecvr.exe
02:12:49.0958 3508 ehRecvr - ok
02:12:50.0028 3508 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\Windows\ehome\ehsched.exe
02:12:50.0450 3508 ehSched - ok
02:12:50.0600 3508 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys
02:12:50.0710 3508 elxstor - ok
02:12:50.0770 3508 [ C6FEE635EB61EEBBF960E981DC8C6CDE ] EMLSS C:\Windows\system32\drivers\emltdi.sys
02:12:50.0850 3508 EMLSS - ok
02:12:50.0880 3508 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\Windows\system32\DRIVERS\errdev.sys
02:12:51.0070 3508 ErrDev - ok
02:12:51.0122 3508 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\Windows\system32\es.dll
02:12:51.0202 3508 EventSystem - ok
02:12:51.0282 3508 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\Windows\system32\drivers\exfat.sys
02:12:51.0412 3508 exfat - ok
02:12:51.0442 3508 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\Windows\system32\drivers\fastfat.sys
02:12:51.0482 3508 fastfat - ok
02:12:51.0652 3508 [ D607B2F1BEE3992AA6C2C92C0A2F0855 ] Fax C:\Windows\system32\fxssvc.exe
02:12:51.0752 3508 Fax - ok
02:12:51.0792 3508 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\Windows\system32\DRIVERS\fdc.sys
02:12:51.0912 3508 fdc - ok
02:12:51.0992 3508 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\Windows\system32\fdPHost.dll
02:12:52.0062 3508 fdPHost - ok
02:12:52.0102 3508 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\Windows\system32\fdrespub.dll
02:12:52.0152 3508 FDResPub - ok
02:12:52.0182 3508 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
02:12:52.0192 3508 FileInfo - ok
02:12:52.0212 3508 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
02:12:52.0312 3508 Filetrace - ok
02:12:52.0562 3508 [ 227846995AFEEFA70D328BF5334A86A5 ] FLEXnet Licensing Service C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
02:12:52.0762 3508 FLEXnet Licensing Service ( UnsignedFile.Multi.Generic ) - warning
02:12:52.0762 3508 FLEXnet Licensing Service - detected UnsignedFile.Multi.Generic (1)
02:12:52.0812 3508 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
02:12:52.0902 3508 flpydisk - ok
02:12:52.0952 3508 [ F7866AF72ABBAF84B1FA5AA195378C59 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
02:12:52.0982 3508 FltMgr - ok
02:12:53.0212 3508 [ CB5E4B9C319E3C6BB363EB7E58A4A051 ] FontCache C:\Windows\system32\FntCache.dll
02:12:53.0312 3508 FontCache - ok
02:12:53.0402 3508 [ 8D89E3131C27FDD6932189CB785E1B7A ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
02:12:53.0452 3508 FontCache3.0.0.0 - ok
02:12:53.0522 3508 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
02:12:53.0572 3508 FsDepends - ok
02:12:53.0622 3508 [ D3E3F93D67821A2DB2B3D9FAC2DC2064 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
02:12:53.0642 3508 Fs_Rec - ok
02:12:53.0732 3508 [ AE87BA80D0EC3B57126ED2CDC15B24ED ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
02:12:53.0772 3508 fvevol - ok
02:12:53.0842 3508 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys
02:12:53.0892 3508 gagp30kx - ok
02:12:53.0962 3508 [ E403AACF8C7BB11375122D2464560311 ] GEARAspiWDM C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
02:12:53.0982 3508 GEARAspiWDM - ok
02:12:54.0182 3508 [ 5CAC29C48D9398ED1B99C7E16C00F96D ] ggc C:\Windows\system32\DRIVERS\ggc.sys
02:12:54.0242 3508 ggc - ok
02:12:54.0322 3508 [ D3316F6E3C011435F36E3D6E49B3196C ] GoToAssist C:\Program Files (x86)\Citrix\GoToAssist\514\g2aservice.exe
02:12:54.0352 3508 GoToAssist - ok
02:12:54.0462 3508 [ FE5AB4525BC2EC68B9119A6E5D40128B ] gpsvc C:\Windows\System32\gpsvc.dll
02:12:54.0522 3508 gpsvc - ok
02:12:54.0692 3508 [ F02A533F517EB38333CB12A9E8963773 ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
02:12:54.0712 3508 gupdate - ok
02:12:54.0902 3508 [ F02A533F517EB38333CB12A9E8963773 ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
02:12:54.0922 3508 gupdatem - ok
02:12:54.0962 3508 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
02:12:55.0102 3508 hcw85cir - ok
02:12:55.0192 3508 [ 0A49913402747A0B67DE940FB42CBDBB ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys
02:12:55.0262 3508 HDAudBus - ok
02:12:55.0292 3508 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys
02:12:55.0342 3508 HidBatt - ok
02:12:55.0382 3508 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
02:12:55.0552 3508 HidBth - ok
02:12:55.0602 3508 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
02:12:55.0792 3508 HidIr - ok
02:12:55.0832 3508 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\Windows\system32\hidserv.dll
02:12:55.0942 3508 hidserv - ok
02:12:56.0062 3508 [ B3BF6B5B50006DEF50B66306D99FCF6F ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
02:12:56.0132 3508 HidUsb - ok
02:12:56.0192 3508 [ EFA58EDE58DD74388FFD04CB32681518 ] hkmsvc C:\Windows\system32\kmsvc.dll
02:12:56.0332 3508 hkmsvc - ok
02:12:56.0362 3508 [ 046B2673767CA626E2CFB7FDF735E9E8 ] HomeGroupListener C:\Windows\system32\ListSvc.dll
02:12:56.0472 3508 HomeGroupListener - ok
02:12:56.0542 3508 [ 06A7422224D9865A5613710A089987DF ] HomeGroupProvider C:\Windows\system32\provsvc.dll
02:12:56.0572 3508 HomeGroupProvider - ok
02:12:56.0672 3508 [ 0886D440058F203EBA0E1825E4355914 ] HpSAMD C:\Windows\system32\DRIVERS\HpSAMD.sys
02:12:56.0722 3508 HpSAMD - ok
02:12:56.0992 3508 [ CEE049CAC4EFA7F4E1E4AD014414A5D4 ] HTTP C:\Windows\system32\drivers\HTTP.sys
02:12:57.0112 3508 HTTP - ok
02:12:57.0254 3508 [ CDAA8E257BB625B2387219E605DDE37D ] hwdatacard C:\Windows\system32\DRIVERS\ewusbmdm.sys
02:12:57.0384 3508 hwdatacard - ok
02:12:57.0424 3508 [ F17766A19145F111856378DF337A5D79 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
02:12:57.0444 3508 hwpolicy - ok
02:12:57.0624 3508 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\Windows\system32\DRIVERS\i8042prt.sys
02:12:57.0654 3508 i8042prt - ok
02:12:57.0814 3508 [ B75E45C564E944A2657167D197AB29DA ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
02:12:57.0904 3508 iaStorV - ok
02:12:58.0094 3508 [ 2F2BE70D3E02B6FA877921AB9516D43C ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
02:12:58.0244 3508 idsvc - ok
02:12:59.0554 3508 [ 677AA5991026A65ADA128C4B59CF2BAD ] igfx C:\Windows\system32\DRIVERS\igdkmd64.sys
02:12:59.0714 3508 igfx - ok
02:12:59.0784 3508 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys
02:12:59.0864 3508 iirsp - ok
02:13:00.0034 3508 [ C5B4683680DF085B57BC53E5EF34861F ] IKEEXT C:\Windows\System32\ikeext.dll
02:13:00.0134 3508 IKEEXT - ok
02:13:00.0324 3508 [ D485D3BD3E2179AA86853A182F70699F ] IntcHdmiAddService C:\Windows\system32\drivers\IntcHdmi.sys
02:13:00.0424 3508 IntcHdmiAddService - ok
02:13:00.0494 3508 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\Windows\system32\DRIVERS\intelide.sys
02:13:00.0534 3508 intelide - ok
02:13:00.0574 3508 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
02:13:00.0634 3508 intelppm - ok
02:13:00.0684 3508 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\Windows\system32\ipbusenum.dll
02:13:00.0774 3508 IPBusEnum - ok
02:13:00.0864 3508 [ 722DD294DF62483CECAAE6E094B4D695 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
02:13:00.0934 3508 IpFilterDriver - ok
02:13:01.0044 3508 [ F8E058D17363EC580E4B7232778B6CB5 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
02:13:01.0144 3508 iphlpsvc - ok
02:13:01.0274 3508 [ E2B4A4494DB7CB9B89B55CA268C337C5 ] IPMIDRV C:\Windows\system32\DRIVERS\IPMIDrv.sys
02:13:01.0354 3508 IPMIDRV - ok
02:13:01.0454 3508 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
02:13:01.0554 3508 IPNAT - ok
02:13:01.0844 3508 [ E94503089DF8976F5C4C9D5168E9765F ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
02:13:02.0204 3508 iPod Service - ok
02:13:02.0334 3508 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
02:13:02.0394 3508 IRENUM - ok
02:13:02.0454 3508 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\Windows\system32\DRIVERS\isapnp.sys
02:13:02.0484 3508 isapnp - ok
02:13:02.0564 3508 [ FA4D2557DE56D45B0A346F93564BE6E1 ] iScsiPrt C:\Windows\system32\DRIVERS\msiscsi.sys
02:13:02.0674 3508 iScsiPrt - ok
02:13:03.0354 3508 [ 7DBAFE10C1B777305C80BEA42FBDA710 ] k57nd60a C:\Windows\system32\DRIVERS\k57nd60a.sys
02:13:03.0444 3508 k57nd60a - ok
02:13:03.0474 3508 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
02:13:03.0484 3508 kbdclass - ok
02:13:03.0584 3508 [ 6DEF98F8541E1B5DCEB2C822A11F7323 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
02:13:03.0694 3508 kbdhid - ok
02:13:03.0754 3508 [ 156F6159457D0AA7E59B62681B56EB90 ] KeyIso C:\Windows\system32\lsass.exe
02:13:03.0784 3508 KeyIso - ok
02:13:03.0814 3508 [ 4F4B5FDE429416877DE7143044582EB5 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
02:13:03.0834 3508 KSecDD - ok
02:13:03.0864 3508 [ 6F40465A44ECDC1731BEFAFEC5BDD03C ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
02:13:03.0884 3508 KSecPkg - ok
02:13:03.0944 3508 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
02:13:04.0024 3508 ksthunk - ok
02:13:04.0074 3508 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\Windows\system32\msdtckrm.dll
02:13:04.0194 3508 KtmRm - ok
02:13:04.0274 3508 [ 81F1D04D4D0E433099365127375FD501 ] LanmanServer C:\Windows\system32\srvsvc.dll
02:13:04.0334 3508 LanmanServer - ok
02:13:04.0484 3508 [ 27026EAC8818E8A6C00A1CAD2F11D29A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
02:13:04.0574 3508 LanmanWorkstation - ok
02:13:04.0704 3508 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
02:13:04.0784 3508 lltdio - ok
02:13:04.0824 3508 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\Windows\System32\lltdsvc.dll
02:13:04.0914 3508 lltdsvc - ok
02:13:04.0984 3508 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\Windows\System32\lmhsvc.dll
02:13:05.0024 3508 lmhosts - ok
02:13:05.0144 3508 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys
02:13:05.0184 3508 LSI_FC - ok
02:13:05.0244 3508 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys
02:13:05.0294 3508 LSI_SAS - ok
02:13:05.0324 3508 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys
02:13:05.0354 3508 LSI_SAS2 - ok
02:13:05.0404 3508 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys
02:13:05.0454 3508 LSI_SCSI - ok
02:13:05.0524 3508 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\Windows\system32\drivers\luafv.sys
02:13:05.0624 3508 luafv - ok
02:13:05.0684 3508 [ F84C8F1000BC11E3B7B23CBD3BAFF111 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
02:13:05.0794 3508 Mcx2Svc - ok
02:13:05.0974 3508 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\Windows\system32\DRIVERS\megasas.sys
02:13:06.0044 3508 megasas - ok
02:13:06.0244 3508 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys
02:13:06.0324 3508 MegaSR - ok
02:13:06.0704 3508 [ 123271BD5237AB991DC5C21FDF8835EB ] Microsoft Office Groove Audit Service C:\Program Files (x86)\Microsoft Office\Office12\GrooveAuditService.exe
02:13:06.0744 3508 Microsoft Office Groove Audit Service - ok
02:13:06.0924 3508 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\Windows\system32\mmcss.dll
02:13:07.0014 3508 MMCSS - ok
02:13:07.0064 3508 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\Windows\system32\drivers\modem.sys
02:13:07.0374 3508 Modem - ok
02:13:07.0564 3508 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\Windows\system32\DRIVERS\monitor.sys
02:13:07.0624 3508 monitor - ok
02:13:07.0784 3508 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
02:13:07.0814 3508 mouclass - ok
02:13:07.0884 3508 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
02:13:07.0964 3508 mouhid - ok
02:13:08.0094 3508 [ 791AF66C4D0E7C90A3646066386FB571 ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
02:13:08.0114 3508 mountmgr - ok
02:13:08.0654 3508 [ CB8AF049AC9BE419A77ADAE288673359 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
02:13:08.0774 3508 MozillaMaintenance - ok
02:13:08.0914 3508 [ 609D1D87649ECC19796F4D76D4C15CEA ] mpio C:\Windows\system32\DRIVERS\mpio.sys
02:13:08.0964 3508 mpio - ok
02:13:09.0064 3508 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
02:13:09.0114 3508 mpsdrv - ok
02:13:09.0374 3508 [ AECAB449567D1846DAD63ECE49E893E3 ] MpsSvc C:\Windows\system32\mpssvc.dll
02:13:09.0474 3508 MpsSvc - ok
02:13:09.0644 3508 [ 30524261BB51D96D6FCBAC20C810183C ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
02:13:09.0724 3508 MRxDAV - ok
02:13:09.0784 3508 [ 040D62A9D8AD28922632137ACDD984F2 ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
02:13:09.0924 3508 mrxsmb - ok
02:13:10.0124 3508 [ F0067552F8F9B33D7C59403AB808A3CB ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
02:13:10.0184 3508 mrxsmb10 - ok
02:13:10.0244 3508 [ 3C142D31DE9F2F193218A53FE2632051 ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
02:13:10.0304 3508 mrxsmb20 - ok
02:13:10.0354 3508 [ 5C37497276E3B3A5488B23A326A754B7 ] msahci C:\Windows\system32\DRIVERS\msahci.sys
02:13:10.0374 3508 msahci - ok
02:13:10.0694 3508 [ F00512A58B7FFCBC26BB685E9016B9F0 ] mscank C:\Windows\system32\DRIVERS\mscank64.sys
02:13:10.0784 3508 mscank - ok
02:13:10.0814 3508 [ 8D27B597229AED79430FB9DB3BCBFBD0 ] msdsm C:\Windows\system32\DRIVERS\msdsm.sys
02:13:10.0864 3508 msdsm - ok
02:13:11.0054 3508 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\Windows\System32\msdtc.exe
02:13:11.0144 3508 MSDTC - ok
02:13:11.0214 3508 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\Windows\system32\drivers\Msfs.sys
02:13:11.0274 3508 Msfs - ok
02:13:11.0354 3508 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
02:13:11.0454 3508 mshidkmdf - ok
02:13:11.0574 3508 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\Windows\system32\DRIVERS\msisadrv.sys
02:13:11.0594 3508 msisadrv - ok
02:13:11.0724 3508 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
02:13:11.0864 3508 MSiSCSI - ok
02:13:11.0874 3508 msiserver - ok
02:13:12.0214 3508 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
02:13:12.0314 3508 MSKSSRV - ok
02:13:12.0404 3508 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
02:13:12.0674 3508 MSPCLOCK - ok
02:13:12.0954 3508 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
02:13:13.0034 3508 MSPQM - ok
02:13:13.0084 3508 [ 89CB141AA8616D8C6A4610FA26C60964 ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
02:13:13.0124 3508 MsRPC - ok
02:13:13.0344 3508 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\Windows\system32\DRIVERS\mssmbios.sys
02:13:13.0364 3508 mssmbios - ok
02:13:13.0454 3508 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
02:13:13.0554 3508 MSTEE - ok
02:13:13.0854 3508 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys
02:13:13.0964 3508 MTConfig - ok
02:13:14.0034 3508 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\Windows\system32\Drivers\mup.sys
02:13:14.0054 3508 Mup - ok
02:13:14.0894 3508 [ 4987E079A4530FA737A128BE54B63B12 ] napagent C:\Windows\system32\qagentRT.dll
02:13:14.0964 3508 napagent - ok
02:13:15.0114 3508 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
02:13:15.0294 3508 NativeWifiP - ok
02:13:15.0764 3508 [ CAD515DBD07D082BB317D9928CE8962C ] NDIS C:\Windows\system32\drivers\ndis.sys
02:13:15.0864 3508 NDIS - ok
02:13:15.0964 3508 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
02:13:16.0454 3508 NdisCap - ok
02:13:16.0684 3508 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
02:13:16.0734 3508 NdisTapi - ok
02:13:16.0854 3508 [ F105BA1E22BF1F2EE8F005D4305E4BEC ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
02:13:16.0954 3508 Ndisuio - ok
02:13:17.0114 3508 [ 557DFAB9CA1FCB036AC77564C010DAD3 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
02:13:17.0164 3508 NdisWan - ok
02:13:17.0224 3508 [ 659B74FB74B86228D6338D643CD3E3CF ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
02:13:17.0304 3508 NDProxy - ok
02:13:17.0474 3508 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
02:13:17.0524 3508 NetBIOS - ok
02:13:17.0684 3508 [ 9162B273A44AB9DCE5B44362731D062A ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
02:13:17.0824 3508 NetBT - ok
02:13:17.0844 3508 [ 156F6159457D0AA7E59B62681B56EB90 ] Netlogon C:\Windows\system32\lsass.exe
02:13:17.0854 3508 Netlogon - ok
02:13:18.0134 3508 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\Windows\System32\netman.dll
02:13:18.0234 3508 Netman - ok
02:13:18.0314 3508 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\Windows\System32\netprofm.dll
02:13:18.0414 3508 netprofm - ok
02:13:18.0604 3508 [ 3E5A36127E201DDF663176B66828FAFE ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
02:13:18.0644 3508 NetTcpPortSharing - ok
02:13:20.0764 3508 [ 705283C02177809CA9FA7CC58A4F1E77 ] NETw5v64 C:\Windows\system32\DRIVERS\NETw5v64.sys
02:13:20.0994 3508 NETw5v64 - ok
02:13:21.0124 3508 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys
02:13:21.0174 3508 nfrd960 - ok
02:13:21.0274 3508 [ D9A0CE66046D6EFA0C61BAA885CBA0A8 ] NlaSvc C:\Windows\System32\nlasvc.dll
02:13:21.0414 3508 NlaSvc - ok
02:13:21.0444 3508 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\Windows\system32\drivers\Npfs.sys
02:13:21.0534 3508 Npfs - ok
02:13:21.0564 3508 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\Windows\system32\nsisvc.dll
02:13:21.0674 3508 nsi - ok
02:13:21.0714 3508 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
02:13:21.0804 3508 nsiproxy - ok
02:13:22.0034 3508 [ 378E0E0DFEA67D98AE6EA53ADBBD76BC ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
02:13:22.0134 3508 Ntfs - ok
02:13:22.0174 3508 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\Windows\system32\drivers\Null.sys
02:13:22.0224 3508 Null - ok
02:13:22.0314 3508 [ A4D9C9A608A97F59307C2F2600EDC6A4 ] nvraid C:\Windows\system32\drivers\nvraid.sys
02:13:22.0374 3508 nvraid - ok
02:13:22.0404 3508 [ 6C1D5F70E7A6A3FD1C90D840EDC048B9 ] nvstor C:\Windows\system32\drivers\nvstor.sys
02:13:22.0454 3508 nvstor - ok
02:13:22.0484 3508 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\Windows\system32\DRIVERS\nv_agp.sys
02:13:22.0524 3508 nv_agp - ok
02:13:22.0744 3508 [ 785F487A64950F3CB8E9F16253BA3B7B ] odserv C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
02:13:22.0864 3508 odserv - ok
02:13:22.0904 3508 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\Windows\system32\DRIVERS\ohci1394.sys
02:13:22.0984 3508 ohci1394 - ok
02:13:23.0074 3508 [ BB9F6A68EB07C920C9975F2A0AE43FD1 ] Online Protection System C:\Program Files\Quick Heal\Quick Heal Total Security\opssvc.exe
02:13:23.0094 3508 Online Protection System - ok
02:13:23.0254 3508 [ 5A432A042DAE460ABE7199B758E8606C ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
02:13:23.0354 3508 ose - ok
02:13:23.0424 3508 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
02:13:23.0554 3508 p2pimsvc - ok
02:13:23.0634 3508 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\Windows\system32\p2psvc.dll
02:13:23.0764 3508 p2psvc - ok
02:13:23.0804 3508 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\Windows\system32\DRIVERS\parport.sys
02:13:23.0844 3508 Parport - ok
02:13:23.0904 3508 [ 90061B1ACFE8CCAA5345750FFE08D8B8 ] partmgr C:\Windows\system32\drivers\partmgr.sys
02:13:23.0924 3508 partmgr - ok
02:13:23.0994 3508 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll
02:13:24.0074 3508 PcaSvc - ok
02:13:24.0114 3508 [ F36F6504009F2FB0DFD1B17A116AD74B ] pci C:\Windows\system32\DRIVERS\pci.sys
02:13:24.0134 3508 pci - ok
02:13:24.0164 3508 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\Windows\system32\DRIVERS\pciide.sys
02:13:24.0254 3508 pciide - ok
02:13:24.0294 3508 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
02:13:24.0354 3508 pcmcia - ok
02:13:24.0374 3508 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\Windows\system32\drivers\pcw.sys
02:13:24.0384 3508 pcw - ok
02:13:24.0474 3508 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\Windows\system32\drivers\peauth.sys
02:13:24.0554 3508 PEAUTH - ok
02:13:25.0724 3508 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\Windows\SysWow64\perfhost.exe
02:13:25.0794 3508 PerfHost - ok
02:13:25.0964 3508 [ 557E9A86F65F0DE18C9B6751DFE9D3F1 ] pla C:\Windows\system32\pla.dll
02:13:26.0194 3508 pla - ok
02:13:26.0244 3508 [ 98B1721B8718164293B9701B98C52D77 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
02:13:26.0364 3508 PlugPlay - ok
02:13:26.0444 3508 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
02:13:26.0554 3508 PNRPAutoReg - ok
02:13:26.0594 3508 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
02:13:26.0624 3508 PNRPsvc - ok
02:13:26.0794 3508 [ 166EB40D1F5B47E615DE3D0FFFE5F243 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
02:13:26.0934 3508 PolicyAgent - ok
02:13:26.0994 3508 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\Windows\system32\umpo.dll
02:13:27.0084 3508 Power - ok
02:13:27.0174 3508 [ 27CC19E81BA5E3403C48302127BDA717 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
02:13:27.0294 3508 PptpMiniport - ok
02:13:27.0314 3508 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\Windows\system32\DRIVERS\processr.sys
02:13:27.0374 3508 Processor - ok
02:13:27.0504 3508 [ 97293447431311C06703368AD0F6C4BE ] ProfSvc C:\Windows\system32\profsvc.dll
02:13:27.0584 3508 ProfSvc - ok
02:13:27.0744 3508 [ 156F6159457D0AA7E59B62681B56EB90 ] ProtectedStorage C:\Windows\system32\lsass.exe
02:13:27.0774 3508 ProtectedStorage - ok
02:13:28.0004 3508 [ EE992183BD8EAEFD9973F352E587A299 ] Psched C:\Windows\system32\DRIVERS\pacer.sys
02:13:28.0054 3508 Psched - ok
02:13:28.0154 3508 [ 4712CC14E720ECCCC0AA16949D18AAF1 ] PxHlpa64 C:\Windows\system32\Drivers\PxHlpa64.sys
02:13:28.0234 3508 PxHlpa64 - ok
02:13:28.0514 3508 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys
02:13:28.0644 3508 ql2300 - ok
02:13:28.0684 3508 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys
02:13:28.0724 3508 ql40xx - ok
02:13:28.0804 3508 [ E599148A72888A009A1DC6470BC06794 ] Quick Update Service C:\Program Files\Quick Heal\Quick Heal Total Security\quhlpsvc.exe
02:13:28.0824 3508 Quick Update Service - ok
02:13:28.0944 3508 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\Windows\system32\qwave.dll
02:13:29.0054 3508 QWAVE - ok
02:13:29.0074 3508 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
02:13:29.0104 3508 QWAVEdrv - ok
02:13:29.0134 3508 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
02:13:29.0244 3508 RasAcd - ok
02:13:29.0344 3508 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
02:13:29.0394 3508 RasAgileVpn - ok
02:13:29.0454 3508 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\Windows\System32\rasauto.dll
02:13:29.0554 3508 RasAuto - ok
02:13:29.0644 3508 [ 87A6E852A22991580D6D39ADC4790463 ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
02:13:29.0724 3508 Rasl2tp - ok
02:13:29.0854 3508 [ 47394ED3D16D053F5906EFE5AB51CC83 ] RasMan C:\Windows\System32\rasmans.dll
02:13:29.0944 3508 RasMan - ok
02:13:30.0014 3508 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
02:13:30.0104 3508 RasPppoe - ok
02:13:30.0194 3508 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
02:13:30.0294 3508 RasSstp - ok
02:13:30.0334 3508 [ 3BAC8142102C15D59A87757C1D41DCE5 ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
02:13:30.0414 3508 rdbss - ok
02:13:30.0444 3508 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
02:13:30.0594 3508 rdpbus - ok
02:13:30.0624 3508 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
02:13:30.0664 3508 RDPCDD - ok
02:13:30.0774 3508 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
02:13:30.0844 3508 RDPENCDD - ok
02:13:30.0864 3508 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
02:13:30.0904 3508 RDPREFMP - ok
02:13:30.0974 3508 [ 447DE7E3DEA39D422C1504F245B668B1 ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
02:13:31.0264 3508 RDPWD - ok
02:13:31.0354 3508 [ 634B9A2181D98F15941236886164EC8B ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
02:13:31.0384 3508 rdyboost - ok
02:13:31.0444 3508 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\Windows\System32\mprdim.dll
02:13:31.0594 3508 RemoteAccess - ok
02:13:31.0654 3508 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll
02:13:31.0724 3508 RemoteRegistry - ok
02:13:31.0774 3508 [ 3DD798846E2C28102B922C56E71B7932 ] RFCOMM C:\Windows\system32\DRIVERS\rfcomm.sys
02:13:31.0874 3508 RFCOMM - ok
02:13:31.0914 3508 [ 6FAF5B04BEDC66D300D9D233B2D222F0 ] rimmptsk C:\Windows\system32\DRIVERS\rimmpx64.sys
02:13:31.0964 3508 rimmptsk - ok
02:13:32.0004 3508 [ 67F50C31713106FD1B0F286F86AA2B2E ] rimsptsk C:\Windows\system32\DRIVERS\rimspx64.sys
02:13:32.0094 3508 rimsptsk - ok
02:13:32.0134 3508 [ 4D7EF3D46346EC4C58784DB964B365DE ] rismxdp C:\Windows\system32\DRIVERS\rixdpx64.sys
02:13:32.0174 3508 rismxdp - ok
02:13:32.0234 3508 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
02:13:32.0364 3508 RpcEptMapper - ok
02:13:32.0394 3508 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\Windows\system32\locator.exe
02:13:32.0524 3508 RpcLocator - ok
02:13:32.0614 3508 [ 7266972E86890E2B30C0C322E906B027 ] RpcSs C:\Windows\system32\rpcss.dll
02:13:32.0674 3508 RpcSs - ok
02:13:32.0754 3508 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
02:13:32.0844 3508 rspndr - ok
02:13:32.0864 3508 [ 156F6159457D0AA7E59B62681B56EB90 ] SamSs C:\Windows\system32\lsass.exe
02:13:32.0874 3508 SamSs - ok
02:13:32.0914 3508 [ E3BBB89983DAF5622C1D50CF49F28227 ] sbp2port C:\Windows\system32\DRIVERS\sbp2port.sys
02:13:32.0954 3508 sbp2port - ok
02:13:33.0024 3508 [ DDE33528F026C9F2E182A54138D42640 ] ScanWscS C:\Program Files\Quick Heal\Quick Heal Total Security\SCANWSCS.EXE
02:13:33.0084 3508 ScanWscS - ok
02:13:33.0134 3508 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\Windows\System32\SCardSvr.dll
02:13:33.0234 3508 SCardSvr - ok
02:13:33.0304 3508 [ C94DA20C7E3BA1DCA269BC8460D98387 ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
02:13:33.0444 3508 scfilter - ok
02:13:33.0584 3508 [ 624D0F5FF99428BB90A5B8A4123E918E ] Schedule C:\Windows\system32\schedsvc.dll
02:13:33.0674 3508 Schedule - ok
02:13:33.0734 3508 [ 312E2F82AF11E79906898AC3E3D58A1F ] SCPolicySvc C:\Windows\System32\certprop.dll
02:13:33.0794 3508 SCPolicySvc - ok
02:13:33.0884 3508 [ 54E47AD086782D3AE9417C155CDCEB9B ] sdbus C:\Windows\system32\DRIVERS\sdbus.sys
02:13:33.0944 3508 sdbus - ok
02:13:33.0984 3508 [ 765A27C3279CE11D14CB9E4F5869FCA5 ] SDRSVC C:\Windows\System32\SDRSVC.dll
02:13:34.0064 3508 SDRSVC - ok
02:13:34.0144 3508 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys
02:13:34.0224 3508 secdrv - ok
02:13:34.0294 3508 [ 463B386EBC70F98DA5DFF85F7E654346 ] seclogon C:\Windows\system32\seclogon.dll
02:13:34.0374 3508 seclogon - ok
02:13:34.0424 3508 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\Windows\System32\sens.dll
02:13:34.0504 3508 SENS - ok
02:13:34.0504 3508 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\Windows\system32\sensrsvc.dll
02:13:34.0594 3508 SensrSvc - ok
02:13:34.0634 3508 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
02:13:34.0744 3508 Serenum - ok
02:13:34.0824 3508 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\Windows\system32\DRIVERS\serial.sys
02:13:34.0884 3508 Serial - ok
02:13:34.0904 3508 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys
02:13:34.0954 3508 sermouse - ok
02:13:35.0014 3508 [ C3BC61CE47FF6F4E88AB8A3B429A36AF ] SessionEnv C:\Windows\system32\sessenv.dll
02:13:35.0124 3508 SessionEnv - ok
02:13:35.0184 3508 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\Windows\system32\DRIVERS\sffdisk.sys
02:13:35.0444 3508 sffdisk - ok
02:13:35.0494 3508 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\Windows\system32\DRIVERS\sffp_mmc.sys
02:13:35.0704 3508 sffp_mmc - ok
02:13:35.0734 3508 [ 5588B8C6193EB1522490C122EB94DFFA ] sffp_sd C:\Windows\system32\DRIVERS\sffp_sd.sys
02:13:35.0754 3508 sffp_sd - ok
02:13:35.0784 3508 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
02:13:35.0874 3508 sfloppy - ok
02:13:36.0214 3508 [ 7F475425582163602EF1589C0071E521 ] SftService C:\Program Files (x86)\Dell DataSafe Local Backup\sftservice.EXE
02:13:36.0594 3508 SftService - ok
02:13:36.0944 3508 [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess C:\Windows\System32\ipnathlp.dll
02:13:37.0254 3508 SharedAccess - ok
02:13:37.0474 3508 [ 0298AC45D0EFFFB2DB4BAA7DD186E7BF ] ShellHWDetection C:\Windows\System32\shsvcs.dll
02:13:37.0554 3508 ShellHWDetection - ok
02:13:37.0634 3508 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys
02:13:37.0664 3508 SiSRaid2 - ok
02:13:37.0894 3508 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys
02:13:37.0944 3508 SiSRaid4 - ok
02:13:38.0264 3508 [ F07AF60B152221472FBDB2FECEC4896D ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe
02:13:38.0284 3508 SkypeUpdate - ok
02:13:38.0544 3508 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\Windows\system32\DRIVERS\smb.sys
02:13:38.0654 3508 Smb - ok
02:13:38.0734 3508 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\Windows\System32\snmptrap.exe
02:13:38.0794 3508 SNMPTRAP - ok
02:13:39.0064 3508 [ 9B24DCA429F819DB314F30EE4C6C80FD ] Sound Blaster X-Fi MB Licensing Service C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\XMBLicensing.exe
02:13:39.0084 3508 Sound Blaster X-Fi MB Licensing Service ( UnsignedFile.Multi.Generic ) - warning
02:13:39.0084 3508 Sound Blaster X-Fi MB Licensing Service - detected UnsignedFile.Multi.Generic (1)
02:13:39.0114 3508 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\Windows\system32\drivers\spldr.sys
02:13:39.0124 3508 spldr - ok
02:13:39.0514 3508 [ 567977DC43CC13C4C35ED7084C0B84D5 ] Spooler C:\Windows\System32\spoolsv.exe
02:13:39.0734 3508 Spooler - ok
02:13:40.0434 3508 [ 913D843498553A1BC8F8DBAD6358E49F ] sppsvc C:\Windows\system32\sppsvc.exe
02:13:40.0674 3508 sppsvc - ok
02:13:40.0734 3508 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\Windows\system32\sppuinotify.dll
02:13:40.0974 3508 sppuinotify - ok
02:13:41.0674 3508 [ D630B6F2E8379B6F10DC16E82A426552 ] sprtsvc_DellSupportCenter C:\Program Files (x86)\Dell Support Center\bin\sprtsvc.exe
02:13:41.0694 3508 sprtsvc_DellSupportCenter - ok
02:13:42.0144 3508 [ 2408C0366D96BCDF63E8F1C78E4A29C5 ] srv C:\Windows\system32\DRIVERS\srv.sys
02:13:42.0344 3508 srv - ok
02:13:42.0584 3508 [ 76548F7B818881B47D8D1AE1BE9C11F8 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
02:13:42.0764 3508 srv2 - ok
02:13:43.0054 3508 [ 0AF6E19D39C70844C5CAA8FB0183C36E ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
02:13:43.0104 3508 srvnet - ok
02:13:43.0354 3508 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
02:13:43.0454 3508 SSDPSRV - ok
02:13:43.0554 3508 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\Windows\system32\sstpsvc.dll
02:13:43.0634 3508 SstpSvc - ok
02:13:45.0064 3508 [ 444109453A2B87E6C16BCDA5953E81A9 ] STacSV C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_afc3018f8cfedd20\STacSV64.exe
02:13:45.0444 3508 STacSV - ok
02:13:45.0544 3508 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys
02:13:45.0674 3508 stexstor - ok
02:13:45.0904 3508 [ 02E784FA49032F84964DB90A3ED81890 ] STHDA C:\Windows\system32\DRIVERS\stwrt64.sys
02:13:45.0974 3508 STHDA - ok
02:13:46.0284 3508 [ 52D0E33B681BD0F33FDC08812FEE4F7D ] stisvc C:\Windows\System32\wiaservc.dll
02:13:46.0354 3508 stisvc - ok
02:13:46.0394 3508 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\Windows\system32\DRIVERS\swenum.sys
02:13:46.0414 3508 swenum - ok
02:13:46.0644 3508 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\Windows\System32\swprv.dll
02:13:46.0734 3508 swprv - ok
02:13:46.0834 3508 [ 1657B7442D5CE30533F5C4317716B468 ] SynTP C:\Windows\system32\DRIVERS\SynTP.sys
02:13:46.0894 3508 SynTP - ok
02:13:47.0514 3508 [ 3C1284516A62078FB68F768DE4F1A7BE ] SysMain C:\Windows\system32\sysmain.dll
02:13:47.0724 3508 SysMain - ok
02:13:47.0814 3508 [ 238935C3CF2854886DC7CBB2A0E2CC66 ] TabletInputService C:\Windows\System32\TabSvc.dll
02:13:48.0104 3508 TabletInputService - ok
02:13:48.0384 3508 [ 884264AC597B690C5707C89723BB8E7B ] TapiSrv C:\Windows\System32\tapisrv.dll
02:13:48.0524 3508 TapiSrv - ok
02:13:49.0144 3508 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\Windows\System32\tbssvc.dll
02:13:49.0214 3508 TBS - ok
02:13:50.0344 3508 [ 624C5B3AA4C99B3184BB922D9ECE3FF0 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
02:13:50.0384 3508 Tcpip - ok
02:13:50.0974 3508 [ 624C5B3AA4C99B3184BB922D9ECE3FF0 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
02:13:52.0344 3508 TCPIP6 - ok
02:13:52.0634 3508 [ 76D078AF6F587B162D50210F761EB9ED ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
02:13:52.0684 3508 tcpipreg - ok
02:13:52.0734 3508 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
02:13:52.0814 3508 TDPIPE - ok
02:13:52.0864 3508 [ 7518F7BCFD4B308ABC9192BACAF6C970 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
02:13:52.0974 3508 TDTCP - ok
02:13:53.0004 3508 [ 079125C4B17B01FCAEEBCE0BCB290C0F ] tdx C:\Windows\system32\DRIVERS\tdx.sys
02:13:53.0064 3508 tdx - ok
02:13:53.0114 3508 [ C448651339196C0E869A355171875522 ] TermDD C:\Windows\system32\DRIVERS\termdd.sys
02:13:53.0144 3508 TermDD - ok
02:13:53.0264 3508 [ 0F05EC2887BFE197AD82A13287D2F404 ] TermService C:\Windows\System32\termsrv.dll
02:13:53.0394 3508 TermService - ok
02:13:53.0427 3508 [ F0344071948D1A1FA732231785A0664C ] Themes C:\Windows\system32\themeservice.dll
02:13:53.0466 3508 Themes - ok
02:13:53.0506 3508 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\Windows\system32\mmcss.dll
02:13:53.0556 3508 THREADORDER - ok
02:13:53.0596 3508 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\Windows\System32\trkwks.dll
02:13:53.0736 3508 TrkWks - ok
02:13:54.0158 3508 [ 840F7FB849F5887A49BA18C13B2DA920 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
02:13:54.0208 3508 TrustedInstaller - ok
02:13:54.0228 3508 [ 61B96C26131E37B24E93327A0BD1FB95 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
02:13:54.0308 3508 tssecsrv - ok
02:13:54.0468 3508 [ 3836171A2CDF3AF8EF10856DB9835A70 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
02:13:55.0368 3508 tunnel - ok
02:13:55.0438 3508 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys
02:13:55.0788 3508 uagp35 - ok
02:13:55.0938 3508 [ D47BAEAD86C65D4F4069D7CE0A4EDCEB ] udfs C:\Windows\system32\DRIVERS\udfs.sys
02:13:56.0068 3508 udfs - ok
02:13:56.0118 3508 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\Windows\system32\UI0Detect.exe
02:13:56.0188 3508 UI0Detect - ok
02:13:56.0248 3508 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\Windows\system32\DRIVERS\uliagpkx.sys
02:13:56.0288 3508 uliagpkx - ok
02:13:56.0368 3508 [ EAB6C35E62B1B0DB0D1B48B671D3A117 ] umbus C:\Windows\system32\DRIVERS\umbus.sys
02:13:56.0418 3508 umbus - ok
02:13:56.0448 3508 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\Windows\system32\DRIVERS\umpass.sys
02:13:56.0518 3508 UmPass - ok
02:13:56.0548 3508 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\Windows\System32\upnphost.dll
02:13:56.0658 3508 upnphost - ok
02:13:56.0818 3508 [ F724B03C3DFAACF08D17D38BF3333583 ] USBAAPL64 C:\Windows\system32\Drivers\usbaapl64.sys
02:13:56.0928 3508 USBAAPL64 - ok
02:13:57.0058 3508 [ 77B01BC848298223A95D4EC23E1785A1 ] usbaudio C:\Windows\system32\drivers\usbaudio.sys
02:13:57.0118 3508 usbaudio - ok
02:13:57.0148 3508 [ 7B6A127C93EE590E4D79A5F2A76FE46F ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
02:13:57.0208 3508 usbccgp - ok
02:13:57.0288 3508 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\Windows\system32\DRIVERS\usbcir.sys
02:13:57.0588 3508 usbcir - ok
02:13:58.0138 3508 [ 92969BA5AC44E229C55A332864F79677 ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
02:13:58.0158 3508 usbehci - ok
02:13:58.0248 3508 [ E7DF1CFD28CA86B35EF5ADD0735CEEF3 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
02:13:58.0288 3508 usbhub - ok
02:13:58.0328 3508 [ F1BB1E55F1E7A65C5839CCC7B36D773E ] usbohci C:\Windows\system32\drivers\usbohci.sys
02:13:58.0488 3508 usbohci - ok
02:13:58.0558 3508 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
02:13:58.0708 3508 usbprint - ok
02:13:58.0758 3508 [ F39983647BC1F3E6100778DDFE9DCE29 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
02:13:58.0850 3508 USBSTOR - ok
02:13:58.0950 3508 [ BC3070350A491D84B518D7CCA9ABD36F ] usbuhci C:\Windows\system32\DRIVERS\usbuhci.sys
02:13:59.0020 3508 usbuhci - ok
02:13:59.0400 3508 [ 7CB8C573C6E4A2714402CC0A36EAB4FE ] usbvideo C:\Windows\System32\Drivers\usbvideo.sys
02:14:00.0180 3508 usbvideo - ok
02:14:00.0260 3508 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\Windows\System32\uxsms.dll
02:14:00.0330 3508 UxSms - ok
02:14:00.0350 3508 [ 156F6159457D0AA7E59B62681B56EB90 ] VaultSvc C:\Windows\system32\lsass.exe
02:14:00.0370 3508 VaultSvc - ok
02:14:00.0410 3508 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\Windows\system32\DRIVERS\vdrvroot.sys
02:14:00.0420 3508 vdrvroot - ok
02:14:00.0530 3508 [ 44D73E0BBC1D3C8981304BA15135C2F2 ] vds C:\Windows\System32\vds.exe
02:14:00.0600 3508 vds - ok
02:14:00.0690 3508 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
02:14:00.0740 3508 vga - ok
02:14:00.0770 3508 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\Windows\System32\drivers\vga.sys
02:14:00.0890 3508 VgaSave - ok
02:14:00.0930 3508 [ C82E748660F62A242B2DFAC1442F22A4 ] vhdmp C:\Windows\system32\DRIVERS\vhdmp.sys
02:14:00.0970 3508 vhdmp - ok
02:14:01.0020 3508 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\Windows\system32\DRIVERS\viaide.sys
02:14:01.0040 3508 viaide - ok
02:14:01.0080 3508 [ 2B1A3DAE2B4E70DBBA822B7A03FBD4A3 ] volmgr C:\Windows\system32\DRIVERS\volmgr.sys
02:14:01.0100 3508 volmgr - ok
02:14:01.0140 3508 [ 99B0CBB569CA79ACAED8C91461D765FB ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
02:14:01.0180 3508 volmgrx - ok
02:14:01.0240 3508 [ 58F82EED8CA24B461441F9C3E4F0BF5C ] volsnap C:\Windows\system32\DRIVERS\volsnap.sys
02:14:01.0270 3508 volsnap - ok
02:14:01.0320 3508 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys
02:14:01.0370 3508 vsmraid - ok
02:14:01.0670 3508 [ 787898BF9FB6D7BD87A36E2D95C899BA ] VSS C:\Windows\system32\vssvc.exe
02:14:01.0780 3508 VSS - ok
02:14:01.0850 3508 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\Windows\System32\drivers\vwifibus.sys
02:14:02.0020 3508 vwifibus - ok
02:14:02.0090 3508 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\Windows\system32\w32time.dll
02:14:02.0220 3508 W32Time - ok
02:14:02.0250 3508 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys
02:14:02.0320 3508 WacomPen - ok
02:14:02.0400 3508 [ 47CA49400643EFFD3F1C9A27E1D69324 ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
02:14:02.0450 3508 WANARP - ok
02:14:02.0490 3508 [ 47CA49400643EFFD3F1C9A27E1D69324 ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
02:14:02.0540 3508 Wanarpv6 - ok
02:14:02.0980 3508 [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe
02:14:03.0130 3508 WatAdminSvc - ok
02:14:03.0390 3508 [ 5AB1BB85BD8B5089CC5D64200DEDAE68 ] wbengine C:\Windows\system32\wbengine.exe
02:14:03.0550 3508 wbengine - ok
02:14:03.0600 3508 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
02:14:03.0650 3508 WbioSrvc - ok
02:14:03.0750 3508 [ DD1BAE8EBFC653824D29CCF8C9054D68 ] wcncsvc C:\Windows\System32\wcncsvc.dll
02:14:03.0950 3508 wcncsvc - ok
02:14:04.0000 3508 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
02:14:04.0080 3508 WcsPlugInService - ok
02:14:04.0140 3508 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\Windows\system32\DRIVERS\wd.sys
02:14:04.0190 3508 Wd - ok
02:14:04.0310 3508 [ 441BD2D7B4F98134C3A4F9FA570FD250 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
02:14:04.0360 3508 Wdf01000 - ok
02:14:04.0380 3508 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\Windows\system32\wdi.dll
02:14:04.0440 3508 WdiServiceHost - ok
02:14:04.0440 3508 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\Windows\system32\wdi.dll
02:14:04.0470 3508 WdiSystemHost - ok
02:14:04.0550 3508 [ 733006127F235BE7C35354EBEE7B9A7B ] WebClient C:\Windows\System32\webclnt.dll
02:14:04.0680 3508 WebClient - ok
02:14:04.0730 3508 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\Windows\system32\wecsvc.dll
02:14:04.0870 3508 Wecsvc - ok
02:14:04.0912 3508 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\Windows\System32\wercplsupport.dll
02:14:04.0952 3508 wercplsupport - ok
02:14:05.0044 3508 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\Windows\System32\WerSvc.dll
02:14:05.0104 3508 WerSvc - ok
02:14:05.0334 3508 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
02:14:05.0384 3508 WfpLwf - ok
02:14:05.0504 3508 [ B14EF15BD757FA488F9C970EEE9C0D35 ] WimFltr C:\Windows\system32\DRIVERS\wimfltr.sys
02:14:05.0554 3508 WimFltr - ok
02:14:05.0584 3508 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\Windows\system32\drivers\wimmount.sys
02:14:05.0694 3508 WIMMount - ok
02:14:05.0704 3508 WinDefend - ok
02:14:05.0714 3508 WinHttpAutoProxySvc - ok
02:14:05.0964 3508 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
02:14:06.0064 3508 Winmgmt - ok
02:14:06.0606 3508 [ 41FBB751936B387F9179E7F03A74FE29 ] WinRM C:\Windows\system32\WsmSvc.dll
02:14:06.0826 3508 WinRM - ok
02:14:06.0958 3508 [ 817EAFF5D38674EDD7713B9DFB8E9791 ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys
02:14:07.0028 3508 WinUsb - ok
02:14:07.0230 3508 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\Windows\System32\wlansvc.dll
02:14:07.0300 3508 Wlansvc - ok
02:14:07.0390 3508 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\Windows\system32\DRIVERS\wmiacpi.sys
02:14:07.0400 3508 WmiAcpi - ok
02:14:07.0482 3508 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
02:14:07.0622 3508 wmiApSrv - ok
02:14:07.0662 3508 WMPNetworkSvc - ok
02:14:07.0872 3508 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\Windows\System32\wpcsvc.dll
02:14:08.0044 3508 WPCSvc - ok
02:14:08.0064 3508 [ 2E57DDF2880A7E52E76F41C7E96D327B ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
02:14:08.0146 3508 WPDBusEnum - ok
02:14:08.0186 3508 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
02:14:08.0256 3508 ws2ifsl - ok
02:14:08.0356 3508 [ 8F9F3969933C02DA96EB0F84576DB43E ] wscsvc C:\Windows\System32\wscsvc.dll
02:14:08.0396 3508 wscsvc - ok
02:14:08.0406 3508 WSearch - ok
02:14:08.0556 3508 [ A013B692640CF71DB221A797F4676248 ] wsnf C:\Windows\system32\DRIVERS\wsnf.sys
02:14:08.0636 3508 wsnf - ok
02:14:08.0686 3508 [ A013B692640CF71DB221A797F4676248 ] wsnfmp C:\Windows\system32\DRIVERS\wsnf.sys
02:14:08.0766 3508 wsnfmp - ok
02:14:09.0016 3508 [ 344349F787555FDEF1DEE62056E6ECF0 ] wstif C:\Windows\system32\drivers\wstif.sys
02:14:09.0096 3508 wstif - ok
02:14:09.0466 3508 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv C:\Windows\system32\wuaueng.dll
02:14:09.0526 3508 wuauserv - ok
02:14:09.0556 3508 [ 7CADC74271DD6461C452C271B30BD378 ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
02:14:09.0636 3508 WudfPf - ok
02:14:09.0696 3508 [ 3B197AF0FFF08AA66B6B2241CA538D64 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
02:14:09.0766 3508 WUDFRd - ok
02:14:09.0836 3508 [ B551D6637AA0E132C18AC6E504F7B79B ] wudfsvc C:\Windows\System32\WUDFSvc.dll
02:14:09.0916 3508 wudfsvc - ok
02:14:09.0956 3508 [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc C:\Windows\System32\wwansvc.dll
02:14:10.0046 3508 WwanSvc - ok
*************

Remaining on next reply...

Remaining log from TDSSKiller

********

02:14:10.0126 3508 ================ Scan global ===============================
02:14:10.0166 3508 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
02:14:10.0226 3508 [ 0CB6EBF4B461A6043353C570BD72A1E1 ] C:\Windows\system32\winsrv.dll
02:14:10.0246 3508 [ 0CB6EBF4B461A6043353C570BD72A1E1 ] C:\Windows\system32\winsrv.dll
02:14:10.0276 3508 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
02:14:10.0336 3508 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
02:14:10.0336 3508 [Global] - ok
02:14:10.0336 3508 ================ Scan MBR ==================================
02:14:10.0376 3508 [ 5C616939100B85E558DA92B899A0FC36 ] \Device\Harddisk0\DR0
02:14:10.0376 3508 Suspicious mbr (Forged): \Device\Harddisk0\DR0
02:14:10.0496 3508 \Device\Harddisk0\DR0 ( Rootkit.Boot.Pihar.c ) - infected
02:14:10.0496 3508 \Device\Harddisk0\DR0 - detected Rootkit.Boot.Pihar.c (0)
02:14:10.0716 3508 \Device\Harddisk0\DR0 ( TDSS File System ) - warning
02:14:10.0716 3508 \Device\Harddisk0\DR0 - detected TDSS File System (1)
02:14:10.0716 3508 ================ Scan VBR ==================================
02:14:10.0726 3508 [ D7378BF694D12B3BE92B25933EFD13FA ] \Device\Harddisk0\DR0\Partition1
02:14:10.0726 3508 \Device\Harddisk0\DR0\Partition1 - ok
02:14:10.0746 3508 [ EBBE15E9AC9BD469CB60522A92BCC846 ] \Device\Harddisk0\DR0\Partition2
02:14:10.0756 3508 \Device\Harddisk0\DR0\Partition2 - ok
02:14:10.0756 3508 ================ Scan active images ========================
02:14:10.0756 3508 [ 3E588B60EC061686BA05D33574A344C6 ] C:\Windows\System32\drivers\crashdmp.sys
02:14:10.0756 3508 C:\Windows\System32\drivers\crashdmp.sys - ok
02:14:10.0766 3508 [ 839B5FE3D48E9F35B22C21A3D5103F6C ] C:\Windows\System32\drivers\Dumpata.sys
02:14:10.0766 3508 C:\Windows\System32\drivers\Dumpata.sys - ok
02:14:10.0776 3508 [ 5C37497276E3B3A5488B23A326A754B7 ] C:\Windows\System32\drivers\msahci.sys
02:14:10.0776 3508 C:\Windows\System32\drivers\msahci.sys - ok
02:14:10.0786 3508 [ 814DB88F2641691575A455CF25354098 ] C:\Windows\System32\drivers\dumpfve.sys
02:14:10.0786 3508 C:\Windows\System32\drivers\dumpfve.sys - ok
02:14:10.0796 3508 [ 83D2D75E1EFB81B3450C18131443F7DB ] C:\Windows\System32\drivers\cdrom.sys
02:14:10.0796 3508 C:\Windows\System32\drivers\cdrom.sys - ok
02:14:10.0806 3508 [ 5CAC29C48D9398ED1B99C7E16C00F96D ] C:\Windows\System32\drivers\ggc.sys
02:14:10.0806 3508 C:\Windows\System32\drivers\ggc.sys - ok
02:14:10.0806 3508 [ 16A47CE2DECC9B099349A5F840654746 ] C:\Windows\System32\drivers\beep.sys
02:14:10.0806 3508 C:\Windows\System32\drivers\beep.sys - ok
02:14:10.0816 3508 [ 9899284589F75FA8724FF3D16AED75C1 ] C:\Windows\System32\drivers\null.sys
02:14:10.0816 3508 C:\Windows\System32\drivers\null.sys - ok
02:14:10.0826 3508 [ CEA6CC257FC9B7715F1C2B4849286D24 ] C:\Windows\System32\drivers\RDPCDD.sys
02:14:10.0826 3508 C:\Windows\System32\drivers\RDPCDD.sys - ok
02:14:10.0826 3508 [ BB5971A4F00659529A5C44831AF22365 ] C:\Windows\System32\drivers\RDPENCDD.sys
02:14:10.0826 3508 C:\Windows\System32\drivers\RDPENCDD.sys - ok
02:14:10.0836 3508 [ 216F3FA57533D98E1F74DED70113177A ] C:\Windows\System32\drivers\RDPREFMP.sys
02:14:10.0836 3508 C:\Windows\System32\drivers\RDPREFMP.sys - ok
02:14:10.0836 3508 [ 53E92A310193CB3C03BEA963DE7D9CFC ] C:\Windows\System32\drivers\vga.sys
02:14:10.0836 3508 C:\Windows\System32\drivers\vga.sys - ok
02:14:10.0846 3508 [ E7353D59C9842BC7299FAEB7E7E09340 ] C:\Windows\System32\drivers\videoprt.sys
02:14:10.0846 3508 C:\Windows\System32\drivers\videoprt.sys - ok
02:14:10.0856 3508 [ FC438D1430B28618E2D0C7C332A710AD ] C:\Windows\System32\drivers\watchdog.sys
02:14:10.0856 3508 C:\Windows\System32\drivers\watchdog.sys - ok
02:14:10.0856 3508 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] C:\Windows\System32\drivers\msfs.sys
02:14:10.0856 3508 C:\Windows\System32\drivers\msfs.sys - ok
02:14:10.0866 3508 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] C:\Windows\System32\drivers\npfs.sys
02:14:10.0866 3508 C:\Windows\System32\drivers\npfs.sys - ok
02:14:10.0866 3508 [ 50555005E22A56AEF10BE607472D0BDC ] C:\Windows\System32\drivers\FWPKCLNT.SYS
02:14:10.0866 3508 C:\Windows\System32\drivers\FWPKCLNT.SYS - ok
02:14:10.0876 3508 [ 624C5B3AA4C99B3184BB922D9ECE3FF0 ] C:\Windows\System32\drivers\tcpip.sys
02:14:10.0876 3508 C:\Windows\System32\drivers\tcpip.sys - ok
02:14:10.0876 3508 [ 9162B273A44AB9DCE5B44362731D062A ] C:\Windows\System32\drivers\netbt.sys
02:14:10.0876 3508 C:\Windows\System32\drivers\netbt.sys - ok
02:14:10.0886 3508 [ 0CA6FE26ACC7FFEE1BD0463F40835F32 ] C:\Windows\System32\drivers\tdi.sys
02:14:10.0886 3508 C:\Windows\System32\drivers\tdi.sys - ok
02:14:10.0896 3508 [ 079125C4B17B01FCAEEBCE0BCB290C0F ] C:\Windows\System32\drivers\tdx.sys
02:14:10.0896 3508 C:\Windows\System32\drivers\tdx.sys - ok
02:14:10.0896 3508 [ 344349F787555FDEF1DEE62056E6ECF0 ] C:\Windows\System32\drivers\wstif.sys
02:14:10.0896 3508 C:\Windows\System32\drivers\wstif.sys - ok
02:14:10.0906 3508 [ DB9D6C6B2CD95A9CA414D045B627422E ] C:\Windows\System32\drivers\afd.sys
02:14:10.0906 3508 C:\Windows\System32\drivers\afd.sys - ok
02:14:10.0906 3508 [ 86743D9F5D2B1048062B14B1D84501C4 ] C:\Windows\System32\drivers\netbios.sys
02:14:10.0906 3508 C:\Windows\System32\drivers\netbios.sys - ok
02:14:10.0916 3508 [ EE992183BD8EAEFD9973F352E587A299 ] C:\Windows\System32\drivers\pacer.sys
02:14:10.0916 3508 C:\Windows\System32\drivers\pacer.sys - ok
02:14:10.0916 3508 [ C448651339196C0E869A355171875522 ] C:\Windows\System32\drivers\termdd.sys
02:14:10.0916 3508 C:\Windows\System32\drivers\termdd.sys - ok
02:14:10.0926 3508 [ 47CA49400643EFFD3F1C9A27E1D69324 ] C:\Windows\System32\drivers\wanarp.sys
02:14:10.0926 3508 C:\Windows\System32\drivers\wanarp.sys - ok
02:14:10.0936 3508 [ 611B23304BF067451A9FDEE01FBDD725 ] C:\Windows\System32\drivers\wfplwf.sys
02:14:10.0936 3508 C:\Windows\System32\drivers\wfplwf.sys - ok
02:14:10.0936 3508 [ 61583EE3C3A17003C4ACD0475646B4D3 ] C:\Windows\System32\drivers\blbdrive.sys
02:14:10.0936 3508 C:\Windows\System32\drivers\blbdrive.sys - ok
02:14:10.0946 3508 [ 9C253CE7311CA60FC11C774692A13208 ] C:\Windows\System32\drivers\dfsc.sys
02:14:10.0946 3508 C:\Windows\System32\drivers\dfsc.sys - ok
02:14:10.0946 3508 [ 13096B05847EC78F0977F2C0F79E9AB3 ] C:\Windows\System32\drivers\discache.sys
02:14:10.0946 3508 C:\Windows\System32\drivers\discache.sys - ok
02:14:10.0956 3508 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] C:\Windows\System32\drivers\mssmbios.sys
02:14:10.0956 3508 C:\Windows\System32\drivers\mssmbios.sys - ok
02:14:10.0956 3508 [ E7F5AE18AF4168178A642A9247C63001 ] C:\Windows\System32\drivers\nsiproxy.sys
02:14:10.0956 3508 C:\Windows\System32\drivers\nsiproxy.sys - ok
02:14:10.0966 3508 [ 3BAC8142102C15D59A87757C1D41DCE5 ] C:\Windows\System32\drivers\rdbss.sys
02:14:10.0966 3508 C:\Windows\System32\drivers\rdbss.sys - ok
02:14:10.0976 3508 [ 3836171A2CDF3AF8EF10856DB9835A70 ] C:\Windows\System32\drivers\tunnel.sys
02:14:10.0976 3508 C:\Windows\System32\drivers\tunnel.sys - ok
02:14:10.0976 3508 [ 68DB778AC4FD7896CE2F153353BA15C8 ] C:\Windows\System32\ntdll.dll
02:14:10.0976 3508 C:\Windows\System32\ntdll.dll - ok
02:14:10.0986 3508 [ 1911A3356FA3F77CCC825CCBAC038C2A ] C:\Windows\System32\smss.exe
02:14:10.0986 3508 C:\Windows\System32\smss.exe - ok
02:14:10.0986 3508 [ 8B7F8E882A649D81CEA1EDE9BBB68FFF ] C:\Windows\System32\autochk.exe
02:14:10.0986 3508 C:\Windows\System32\autochk.exe - ok
02:14:10.0996 3508 [ 677AA5991026A65ADA128C4B59CF2BAD ] C:\Windows\System32\drivers\igdkmd64.sys
02:14:10.0996 3508 C:\Windows\System32\drivers\igdkmd64.sys - ok
02:14:11.0006 3508 [ 48CC125A6AB6C72A13E3D3E9C39AD9D9 ] C:\Windows\System32\shell32.dll
02:14:11.0006 3508 C:\Windows\System32\shell32.dll - ok
02:14:11.0006 3508 [ F7CE0C81C545364020ED8203CF0A633E ] C:\Windows\System32\difxapi.dll
02:14:11.0006 3508 C:\Windows\System32\difxapi.dll - ok
02:14:11.0016 3508 [ 1633B9ABF52784A1331476397A48CBEF ] C:\Windows\System32\drivers\dxgkrnl.sys
02:14:11.0016 3508 C:\Windows\System32\drivers\dxgkrnl.sys - ok
02:14:11.0016 3508 [ 3238B9078E0766AB5E62DC737A809ADB ] C:\Windows\System32\drivers\dxgmms1.sys
02:14:11.0016 3508 C:\Windows\System32\drivers\dxgmms1.sys - ok
02:14:11.0026 3508 [ BBF36EB7117F6B976975C9D8D877DF18 ] C:\Windows\System32\drivers\usbport.sys
02:14:11.0026 3508 C:\Windows\System32\drivers\usbport.sys - ok
02:14:11.0036 3508 [ 0A49913402747A0B67DE940FB42CBDBB ] C:\Windows\System32\drivers\hdaudbus.sys
02:14:11.0036 3508 C:\Windows\System32\drivers\hdaudbus.sys - ok
02:14:11.0036 3508 [ 92969BA5AC44E229C55A332864F79677 ] C:\Windows\System32\drivers\usbehci.sys
02:14:11.0036 3508 C:\Windows\System32\drivers\usbehci.sys - ok
02:14:11.0046 3508 [ BC3070350A491D84B518D7CCA9ABD36F ] C:\Windows\System32\drivers\usbuhci.sys
02:14:11.0046 3508 C:\Windows\System32\drivers\usbuhci.sys - ok
02:14:11.0046 3508 [ 705283C02177809CA9FA7CC58A4F1E77 ] C:\Windows\System32\drivers\NETw5v64.sys
02:14:11.0046 3508 C:\Windows\System32\drivers\NETw5v64.sys - ok
02:14:11.0056 3508 [ 7DBAFE10C1B777305C80BEA42FBDA710 ] C:\Windows\System32\drivers\k57nd60a.sys
02:14:11.0056 3508 C:\Windows\System32\drivers\k57nd60a.sys - ok
02:14:11.0056 3508 [ 1B00662092F9F9568B995902F0CC40D5 ] C:\Windows\System32\drivers\1394ohci.sys
02:14:11.0066 3508 C:\Windows\System32\drivers\1394ohci.sys - ok
02:14:11.0066 3508 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] C:\Windows\System32\drivers\i8042prt.sys
02:14:11.0066 3508 C:\Windows\System32\drivers\i8042prt.sys - ok
02:14:11.0076 3508 [ 6FAF5B04BEDC66D300D9D233B2D222F0 ] C:\Windows\System32\drivers\rimmpx64.sys
02:14:11.0076 3508 C:\Windows\System32\drivers\rimmpx64.sys - ok
02:14:11.0076 3508 [ 67F50C31713106FD1B0F286F86AA2B2E ] C:\Windows\System32\drivers\rimspx64.sys
02:14:11.0076 3508 C:\Windows\System32\drivers\rimspx64.sys - ok
02:14:11.0086 3508 [ 4D7EF3D46346EC4C58784DB964B365DE ] C:\Windows\System32\drivers\rixdpx64.sys
02:14:11.0086 3508 C:\Windows\System32\drivers\rixdpx64.sys - ok
02:14:11.0096 3508 [ 54E47AD086782D3AE9417C155CDCEB9B ] C:\Windows\System32\drivers\sdbus.sys
02:14:11.0096 3508 C:\Windows\System32\drivers\sdbus.sys - ok
02:14:11.0096 3508 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] C:\Windows\System32\drivers\kbdclass.sys
02:14:11.0096 3508 C:\Windows\System32\drivers\kbdclass.sys - ok
02:14:11.0106 3508 [ 70B5A5A7E0DDD5EBAF6E35B7257A6B9D ] C:\Windows\System32\drivers\usbd.sys
02:14:11.0106 3508 C:\Windows\System32\drivers\usbd.sys - ok
02:14:11.0106 3508 [ 1657B7442D5CE30533F5C4317716B468 ] C:\Windows\System32\drivers\SynTP.sys
02:14:11.0106 3508 C:\Windows\System32\drivers\SynTP.sys - ok
02:14:11.0116 3508 [ AC8F79017C5C1FB316930EDEAD0AF517 ] C:\Windows\System32\ole32.dll
02:14:11.0116 3508 C:\Windows\System32\ole32.dll - ok
02:14:11.0116 3508 [ E10A0704318A6F7E52787D09717D7C2C ] C:\Windows\System32\iertutil.dll
02:14:11.0116 3508 C:\Windows\System32\iertutil.dll - ok
02:14:11.0126 3508 [ 6DF46D2BD74E3DA1B45F08F10D172732 ] C:\Windows\System32\advapi32.dll
02:14:11.0126 3508 C:\Windows\System32\advapi32.dll - ok
02:14:11.0136 3508 [ F94B8644F3AFE040EC6E1B6FBC9EFAA9 ] C:\Windows\System32\comdlg32.dll
02:14:11.0136 3508 C:\Windows\System32\comdlg32.dll - ok
02:14:11.0136 3508 [ 72D7B3EA16946E8F0CF7458150031CC6 ] C:\Windows\System32\user32.dll
02:14:11.0136 3508 C:\Windows\System32\user32.dll - ok
02:14:11.0146 3508 [ 8EA68FD3780DDDD5072F8CB830B3CB3D ] C:\Windows\System32\wininet.dll
02:14:11.0146 3508 C:\Windows\System32\wininet.dll - ok
02:14:11.0146 3508 [ DDBD24DC04DA5FD0EDF45CF72B7C01E2 ] C:\Windows\System32\kernel32.dll
02:14:11.0146 3508 C:\Windows\System32\kernel32.dll - ok
02:14:11.0156 3508 [ 5F2BDCA5FA0F20A6F452CF0EE2A2B18C ] C:\Windows\System32\usp10.dll
02:14:11.0156 3508 C:\Windows\System32\usp10.dll - ok
02:14:11.0166 3508 [ 579F6AFC6A6561951FA2202EFC3FE485 ] C:\Windows\System32\msvcrt.dll
02:14:11.0166 3508 C:\Windows\System32\msvcrt.dll - ok
02:14:11.0166 3508 [ E1B1255D3A4B3367FE4E9C71E62E3B5A ] C:\Windows\System32\gdi32.dll
02:14:11.0166 3508 C:\Windows\System32\gdi32.dll - ok
02:14:11.0176 3508 [ 044FE45FFD6AD40E3BBBE60B7F41BABE ] C:\Windows\System32\nsi.dll
02:14:11.0176 3508 C:\Windows\System32\nsi.dll - ok
02:14:11.0176 3508 [ C431EAF5CAA1C82CAC2534A2EAB348A3 ] C:\Windows\System32\msctf.dll
02:14:11.0176 3508 C:\Windows\System32\msctf.dll - ok
02:14:11.0186 3508 [ AA2C08CE85653B1A0D2E4AB407FA176C ] C:\Windows\System32\imm32.dll
02:14:11.0186 3508 C:\Windows\System32\imm32.dll - ok
02:14:11.0186 3508 [ 28C0B5024F5C5A438E78B188CFC81B7F ] C:\Windows\System32\normaliz.dll
02:14:11.0186 3508 C:\Windows\System32\normaliz.dll - ok
02:14:11.0196 3508 [ D87E1E59C73C1F98D5DED5B3850C40F5 ] C:\Windows\System32\psapi.dll
02:14:11.0196 3508 C:\Windows\System32\psapi.dll - ok
02:14:11.0196 3508 [ E5CBF5F8623BBD1DB7B8148A66F6EBA4 ] C:\Windows\System32\Wldap32.dll
02:14:11.0196 3508 C:\Windows\System32\Wldap32.dll - ok
02:14:11.0206 3508 [ 15A54626213EBF003F7D4C9D8380A656 ] C:\Windows\System32\imagehlp.dll
02:14:11.0206 3508 C:\Windows\System32\imagehlp.dll - ok
02:14:11.0216 3508 [ 25983DE69B57142039AC8D95E71CD9C9 ] C:\Windows\System32\clbcatq.dll
02:14:11.0216 3508 C:\Windows\System32\clbcatq.dll - ok
02:14:11.0216 3508 [ 83404DCBCE4925B6A5A77C5170F46D86 ] C:\Windows\System32\sechost.dll
02:14:11.0216 3508 C:\Windows\System32\sechost.dll - ok
02:14:11.0226 3508 [ 7083F463788CB34FCC42F565D56F89E8 ] C:\Windows\System32\ws2_32.dll
02:14:11.0226 3508 C:\Windows\System32\ws2_32.dll - ok
02:14:11.0226 3508 [ 6A4EA4C29FBF78112AE20013FB71E9C1 ] C:\Windows\System32\setupapi.dll
02:14:11.0226 3508 C:\Windows\System32\setupapi.dll - ok
02:14:11.0236 3508 [ 7F7FE11DF2D67B36DFE5013881619A94 ] C:\Windows\System32\urlmon.dll
02:14:11.0236 3508 C:\Windows\System32\urlmon.dll - ok
02:14:11.0236 3508 [ D202223587518B13D72D68937B7E3F70 ] C:\Windows\System32\lpk.dll
02:14:11.0236 3508 C:\Windows\System32\lpk.dll - ok
02:14:11.0246 3508 [ 48C903068B6BDAB5EF650B9CBEE85295 ] C:\Windows\System32\rpcrt4.dll
02:14:11.0246 3508 C:\Windows\System32\rpcrt4.dll - ok
02:14:11.0256 3508 [ 15BDC173EB5FA4F92B67D9FFB269A6EA ] C:\Windows\System32\shlwapi.dll
02:14:11.0256 3508 C:\Windows\System32\shlwapi.dll - ok
02:14:11.0256 3508 [ 2A46451EE42BCD2C842D8AA4923FAC16 ] C:\Windows\System32\oleaut32.dll
02:14:11.0256 3508 C:\Windows\System32\oleaut32.dll - ok
02:14:11.0266 3508 [ D05E03C1B2824236531F5E37334B6A8A ] C:\Windows\System32\cfgmgr32.dll
02:14:11.0266 3508 C:\Windows\System32\cfgmgr32.dll - ok
02:14:11.0266 3508 [ BC052EFAD10ACA1AD69545B629F50D99 ] C:\Windows\System32\comctl32.dll
02:14:11.0266 3508 C:\Windows\System32\comctl32.dll - ok
02:14:11.0276 3508 [ 08B1BDCDF896D38C6E820B9B155E7A17 ] C:\Windows\System32\KernelBase.dll
02:14:11.0276 3508 C:\Windows\System32\KernelBase.dll - ok
02:14:11.0276 3508 [ FEC6244873AB7981326CAEEC5B5FFF11 ] C:\Windows\System32\wintrust.dll
02:14:11.0276 3508 C:\Windows\System32\wintrust.dll - ok
02:14:11.0286 3508 [ B0B310037A3A9151735E9952D4395C76 ] C:\Windows\System32\crypt32.dll
02:14:11.0286 3508 C:\Windows\System32\crypt32.dll - ok
02:14:11.0286 3508 [ 06FEC9E8117103BB1141A560E98077DA ] C:\Windows\System32\devobj.dll
02:14:11.0286 3508 C:\Windows\System32\devobj.dll - ok
02:14:11.0296 3508 [ 98FB7DD3B28A92E3C0E5B4BD9D63EF01 ] C:\Windows\System32\msasn1.dll
02:14:11.0296 3508 C:\Windows\System32\msasn1.dll - ok
02:14:11.0306 3508 [ E403AACF8C7BB11375122D2464560311 ] C:\Windows\System32\drivers\GEARAspiWDM.sys
02:14:11.0306 3508 C:\Windows\System32\drivers\GEARAspiWDM.sys - ok
02:14:11.0306 3508 [ 7D27EA49F3C1F687D357E77A470AEA99 ] C:\Windows\System32\drivers\mouclass.sys
02:14:11.0306 3508 C:\Windows\System32\drivers\mouclass.sys - ok
02:14:11.0316 3508 [ ADA036632C664CAA754079041CF1F8C1 ] C:\Windows\System32\drivers\intelppm.sys
02:14:11.0316 3508 C:\Windows\System32\drivers\intelppm.sys - ok
02:14:11.0316 3508 [ 7ECFF9B22276B73F43A99A15A6094E90 ] C:\Windows\System32\drivers\agilevpn.sys
02:14:11.0316 3508 C:\Windows\System32\drivers\agilevpn.sys - ok
02:14:11.0326 3508 [ 0840155D0BDDF1190F84A663C284BD33 ] C:\Windows\System32\drivers\CmBatt.sys
02:14:11.0326 3508 C:\Windows\System32\drivers\CmBatt.sys - ok
02:14:11.0326 3508 [ F26B3A86F6FA87CA360B879581AB4123 ] C:\Windows\System32\drivers\CompositeBus.sys
02:14:11.0326 3508 C:\Windows\System32\drivers\CompositeBus.sys - ok
02:14:11.0336 3508 [ F6FF8944478594D0E414D3F048F0D778 ] C:\Windows\System32\drivers\wmiacpi.sys
02:14:11.0336 3508 C:\Windows\System32\drivers\wmiacpi.sys - ok
02:14:11.0346 3508 [ 30639C932D9FEF22B31268FE25A1B6E5 ] C:\Windows\System32\drivers\ndistapi.sys
02:14:11.0346 3508 C:\Windows\System32\drivers\ndistapi.sys - ok
02:14:11.0346 3508 [ 87A6E852A22991580D6D39ADC4790463 ] C:\Windows\System32\drivers\rasl2tp.sys
02:14:11.0346 3508 C:\Windows\System32\drivers\rasl2tp.sys - ok
02:14:11.0356 3508 [ 557DFAB9CA1FCB036AC77564C010DAD3 ] C:\Windows\System32\drivers\ndiswan.sys
02:14:11.0356 3508 C:\Windows\System32\drivers\ndiswan.sys - ok
02:14:11.0356 3508 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] C:\Windows\System32\drivers\raspppoe.sys
02:14:11.0356 3508 C:\Windows\System32\drivers\raspppoe.sys - ok
02:14:11.0366 3508 [ 5C7AF4A20F5BF67042B2E613D123D111 ] C:\Windows\System32\drivers\ks.sys
02:14:11.0366 3508 C:\Windows\System32\drivers\ks.sys - ok
02:14:11.0376 3508 [ 27CC19E81BA5E3403C48302127BDA717 ] C:\Windows\System32\drivers\raspptp.sys
02:14:11.0376 3508 C:\Windows\System32\drivers\raspptp.sys - ok
02:14:11.0376 3508 [ E8B1E447B008D07FF47D016C2B0EEECB ] C:\Windows\System32\drivers\rassstp.sys
02:14:11.0376 3508 C:\Windows\System32\drivers\rassstp.sys - ok
02:14:11.0386 3508 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] C:\Windows\System32\drivers\swenum.sys
02:14:11.0386 3508 C:\Windows\System32\drivers\swenum.sys - ok
02:14:11.0386 3508 [ 9C278785347BCC991F8EA2999D90F58D ] C:\Windows\SysWOW64\normaliz.dll
02:14:11.0386 3508 C:\Windows\SysWOW64\normaliz.dll - ok
02:14:11.0396 3508 [ EAB6C35E62B1B0DB0D1B48B671D3A117 ] C:\Windows\System32\drivers\umbus.sys
02:14:11.0396 3508 C:\Windows\System32\drivers\umbus.sys - ok
02:14:11.0396 3508 [ A013B692640CF71DB221A797F4676248 ] C:\Windows\System32\drivers\wsnf.sys
02:14:11.0396 3508 C:\Windows\System32\drivers\wsnf.sys - ok
02:14:11.0406 3508 [ E7DF1CFD28CA86B35EF5ADD0735CEEF3 ] C:\Windows\System32\drivers\usbhub.sys
02:14:11.0406 3508 C:\Windows\System32\drivers\usbhub.sys - ok
02:14:11.0416 3508 [ 659B74FB74B86228D6338D643CD3E3CF ] C:\Windows\System32\drivers\ndproxy.sys
02:14:11.0416 3508 C:\Windows\System32\drivers\ndproxy.sys - ok
02:14:11.0416 3508 [ 21D26064AEDB4988F785BB4A3A2C051E ] C:\Windows\System32\drivers\drmk.sys
02:14:11.0416 3508 C:\Windows\System32\drivers\drmk.sys - ok
02:14:11.0426 3508 [ 6869281E78CB31A43E969F06B57347C4 ] C:\Windows\System32\drivers\ksthunk.sys
02:14:11.0426 3508 C:\Windows\System32\drivers\ksthunk.sys - ok
02:14:11.0426 3508 [ 32E11315B5126921FFD9074840EF13D3 ] C:\Windows\System32\drivers\portcls.sys
02:14:11.0426 3508 C:\Windows\System32\drivers\portcls.sys - ok
02:14:11.0436 3508 [ 02E784FA49032F84964DB90A3ED81890 ] C:\Windows\System32\drivers\stwrt64.sys
02:14:11.0436 3508 C:\Windows\System32\drivers\stwrt64.sys - ok
02:14:11.0436 3508 [ D485D3BD3E2179AA86853A182F70699F ] C:\Windows\System32\drivers\IntcHdmi.sys
02:14:11.0436 3508 C:\Windows\System32\drivers\IntcHdmi.sys - ok
02:14:11.0446 3508 [ BF24D6F2ED97FE830BFD52B246F98E67 ] C:\Windows\System32\drivers\dxapi.sys
02:14:11.0446 3508 C:\Windows\System32\drivers\dxapi.sys - ok
02:14:11.0456 3508 [ E37C71EA972AD883E7841D07BC6D5F1C ] C:\Windows\System32\win32k.sys
02:14:11.0456 3508 C:\Windows\System32\win32k.sys - ok
02:14:11.0456 3508 [ E730EADB8F176DB06A378435BEB2E823 ] C:\Windows\System32\csrsrv.dll
02:14:11.0456 3508 C:\Windows\System32\csrsrv.dll - ok
02:14:11.0466 3508 [ 60C2862B4BF0FD9F582EF344C2B1EC72 ] C:\Windows\System32\csrss.exe
02:14:11.0466 3508 C:\Windows\System32\csrss.exe - ok
02:14:11.0466 3508 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\System32\basesrv.dll
02:14:11.0466 3508 C:\Windows\System32\basesrv.dll - ok
02:14:11.0476 3508 [ 0CB6EBF4B461A6043353C570BD72A1E1 ] C:\Windows\System32\winsrv.dll
02:14:11.0476 3508 C:\Windows\System32\winsrv.dll - ok
02:14:11.0476 3508 [ 7B6A127C93EE590E4D79A5F2A76FE46F ] C:\Windows\System32\drivers\usbccgp.sys
02:14:11.0476 3508 C:\Windows\System32\drivers\usbccgp.sys - ok
02:14:11.0486 3508 [ 7CB8C573C6E4A2714402CC0A36EAB4FE ] C:\Windows\System32\drivers\usbvideo.sys
02:14:11.0486 3508 C:\Windows\System32\drivers\usbvideo.sys - ok
02:14:11.0496 3508 [ ED5CF92396A62F4C15110DCDB5E854D9 ] C:\Windows\System32\drivers\CtClsFlt.sys
02:14:11.0496 3508 C:\Windows\System32\drivers\CtClsFlt.sys - ok
02:14:11.0496 3508 [ B03D591DC7DA45ECE20B3B467E6AADAA ] C:\Windows\System32\drivers\monitor.sys
02:14:11.0496 3508 C:\Windows\System32\drivers\monitor.sys - ok
02:14:11.0506 3508 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\System32\sxssrv.dll
02:14:11.0506 3508 C:\Windows\System32\sxssrv.dll - ok
02:14:11.0506 3508 [ F29FE765E1448EF371CFE05BFAC74ADB ] C:\Windows\System32\tsddd.dll
02:14:11.0506 3508 C:\Windows\System32\tsddd.dll - ok
02:14:11.0516 3508 [ 94355C28C1970635A31B3FE52EB7CEBA ] C:\Windows\System32\wininit.exe
02:14:11.0516 3508 C:\Windows\System32\wininit.exe - ok
02:14:11.0526 3508 [ B9A047D231D32FDF5AF2F281E4326A9D ] C:\Windows\System32\KBDUS.DLL
02:14:11.0526 3508 C:\Windows\System32\KBDUS.DLL - ok
02:14:11.0526 3508 [ 2C942733A5983DD4502219FF37C7EBC7 ] C:\Windows\System32\profapi.dll
02:14:11.0526 3508 C:\Windows\System32\profapi.dll - ok
02:14:11.0536 3508 [ F4389DA7DBDA2E7D292D360CF8E400C7 ] C:\Windows\System32\RpcRtRemote.dll
02:14:11.0536 3508 C:\Windows\System32\RpcRtRemote.dll - ok
02:14:11.0536 3508 [ 100BDF2F89D6056CEE900BB6156DA737 ] C:\Windows\System32\cdd.dll
02:14:11.0536 3508 C:\Windows\System32\cdd.dll - ok
02:14:11.0546 3508 [ 456C92A9D8DB51B9938A6234BBC65FC9 ] C:\Windows\System32\sxs.dll
02:14:11.0546 3508 C:\Windows\System32\sxs.dll - ok
02:14:11.0546 3508 [ B26B1801356760841C3BC69F9F91537F ] C:\Windows\System32\WlS0WndH.dll
02:14:11.0546 3508 C:\Windows\System32\WlS0WndH.dll - ok
02:14:11.0556 3508 [ 784FA3DF338E2E8F5F0389D6FAC428AF ] C:\Windows\System32\cryptbase.dll
02:14:11.0556 3508 C:\Windows\System32\cryptbase.dll - ok
02:14:11.0556 3508 [ 01A465AC251BCCF6037DF2EF28AA4292 ] C:\Windows\System32\apphelp.dll
02:14:11.0556 3508 C:\Windows\System32\apphelp.dll - ok
02:14:11.0566 3508 [ DA3E2A6FA9660CC75B471530CE88453A ] C:\Windows\System32\winlogon.exe
02:14:11.0566 3508 C:\Windows\System32\winlogon.exe - ok
02:14:11.0576 3508 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\System32\services.exe
02:14:11.0576 3508 C:\Windows\System32\services.exe - ok
02:14:11.0576 3508 [ 156F6159457D0AA7E59B62681B56EB90 ] C:\Windows\System32\lsass.exe
02:14:11.0576 3508 C:\Windows\System32\lsass.exe - ok
02:14:11.0586 3508 [ 04FCA22B77A2E37332CC8226187AF87B ] C:\Windows\System32\lsm.exe
02:14:11.0586 3508 C:\Windows\System32\lsm.exe - ok
02:14:11.0586 3508 [ BFA69408620587AFDEC2E8C12CA60492 ] C:\Windows\System32\lsasrv.dll
02:14:11.0586 3508 C:\Windows\System32\lsasrv.dll - ok
02:14:11.0596 3508 [ 68EA2513CA68AD8F741FF4F5B8D8590C ] C:\Windows\System32\sspisrv.dll
02:14:11.0596 3508 C:\Windows\System32\sspisrv.dll - ok
02:14:11.0596 3508 [ D8C88512BA9544AE1CC2034F50ECFA12 ] C:\Windows\System32\winsta.dll
02:14:11.0596 3508 C:\Windows\System32\winsta.dll - ok
02:14:11.0606 3508 [ 1F582C6C84D5243692F9C3E04D0A663F ] C:\Windows\System32\sspicli.dll
02:14:11.0606 3508 C:\Windows\System32\sspicli.dll - ok
02:14:11.0616 3508 [ B160ADAEFC76031D92C4FBAC0918B033 ] C:\Windows\System32\samsrv.dll
02:14:11.0616 3508 C:\Windows\System32\samsrv.dll - ok
02:14:11.0616 3508 [ 941AF3C8B0DE1B359BE22DD3288A8C8E ] C:\Windows\System32\scesrv.dll
02:14:11.0616 3508 C:\Windows\System32\scesrv.dll - ok
02:14:11.0626 3508 [ E914A50A151DFFE63D3935226DB5E2C1 ] C:\Windows\System32\scext.dll
02:14:11.0626 3508 C:\Windows\System32\scext.dll - ok
02:14:11.0626 3508 [ 74A0871810BF0F2AA3EB6681E9BECDD3 ] C:\Windows\System32\secur32.dll
02:14:11.0626 3508 C:\Windows\System32\secur32.dll - ok
02:14:11.0636 3508 [ 3A061472B38233BAFF9CFEFF2E49C46B ] C:\Windows\System32\cryptdll.dll
02:14:11.0636 3508 C:\Windows\System32\cryptdll.dll - ok
02:14:11.0636 3508 [ D23371AB9607651937C7641A38CD52BC ] C:\Windows\System32\srvcli.dll
02:14:11.0636 3508 C:\Windows\System32\srvcli.dll - ok
02:14:11.0646 3508 [ 68083118797CAF30FB2EA3E71494D67E ] C:\Windows\System32\sysntfy.dll
02:14:11.0646 3508 C:\Windows\System32\sysntfy.dll - ok
02:14:11.0656 3508 [ 3C073B0C596A0AF84933E7406766B040 ] C:\Windows\System32\wevtapi.dll
02:14:11.0656 3508 C:\Windows\System32\wevtapi.dll - ok
02:14:11.0656 3508 [ DEE7267C5D232A3B816866872CE199E6 ] C:\Windows\System32\wmsgapi.dll
02:14:11.0656 3508 C:\Windows\System32\wmsgapi.dll - ok
02:14:11.0666 3508 [ 86FE1B1F8FD42CD0DB641AB1CDB13093 ] C:\Windows\System32\cngaudit.dll
02:14:11.0666 3508 C:\Windows\System32\cngaudit.dll - ok
02:14:11.0666 3508 [ 7FBEBD2229EA5FD48D41B199EC2D541C ] C:\Windows\System32\authz.dll
02:14:11.0666 3508 C:\Windows\System32\authz.dll - ok
02:14:11.0676 3508 [ E08926B4E52F92FF8852BECC0E2F358A ] C:\Windows\System32\ncrypt.dll
02:14:11.0676 3508 C:\Windows\System32\ncrypt.dll - ok
02:14:11.0676 3508 [ B9A95365E52F421A20E1501935FADDA5 ] C:\Windows\System32\bcrypt.dll
02:14:11.0676 3508 C:\Windows\System32\bcrypt.dll - ok
02:14:11.0686 3508 [ 02B64609F865A39365FF88580DF11738 ] C:\Windows\System32\msprivs.dll
02:14:11.0686 3508 C:\Windows\System32\msprivs.dll - ok
02:14:11.0686 3508 [ B561B451320B0B40908A8BFD81705262 ] C:\Windows\System32\netjoin.dll
02:14:11.0686 3508 C:\Windows\System32\netjoin.dll - ok
02:14:11.0696 3508 [ 96772B584BD0E667CD7741EF96284ACB ] C:\Windows\System32\kerberos.dll
02:14:11.0696 3508 C:\Windows\System32\kerberos.dll - ok
02:14:11.0706 3508 [ 50532FCD7ECF02DD169CE5C485F02534 ] C:\Windows\System32\negoexts.dll
02:14:11.0706 3508 C:\Windows\System32\negoexts.dll - ok
02:14:11.0706 3508 [ D0C2FBB6D97416B0166478FC7AE2B212 ] C:\Windows\System32\cryptsp.dll
02:14:11.0706 3508 C:\Windows\System32\cryptsp.dll - ok
02:14:11.0716 3508 [ FC76FE3C1E1FDB761244D4F74EF560FD ] C:\Windows\System32\mswsock.dll
02:14:11.0716 3508 C:\Windows\System32\mswsock.dll - ok
02:14:11.0716 3508 [ FA4DB05923DDDEDE3196ABD09AE0F1E9 ] C:\Windows\System32\msv1_0.dll
02:14:11.0716 3508 C:\Windows\System32\msv1_0.dll - ok
02:14:11.0726 3508 [ EC7CBFF96B05ECF3D366355B3C64ADCF ] C:\Windows\System32\wship6.dll
02:14:11.0726 3508 C:\Windows\System32\wship6.dll - ok
02:14:11.0726 3508 [ 956D030D375F207B22FB111E06EF9C35 ] C:\Windows\System32\netlogon.dll
02:14:11.0726 3508 C:\Windows\System32\netlogon.dll - ok
02:14:11.0736 3508 [ E247E7DEB20C0CF0801A8AC39E9CE1DF ] C:\Windows\System32\dnsapi.dll
02:14:11.0736 3508 C:\Windows\System32\dnsapi.dll - ok
02:14:11.0746 3508 [ 8CE22E63F08613036DF8C7B00FBDF36B ] C:\Windows\System32\logoncli.dll
02:14:11.0746 3508 C:\Windows\System32\logoncli.dll - ok
02:14:11.0746 3508 [ 90B780886BD813882CB382FF3E90E092 ] C:\Windows\System32\schannel.dll
02:14:11.0746 3508 C:\Windows\System32\schannel.dll - ok
02:14:11.0756 3508 [ 95FB6CA4374E343DDD653FCC43F9D26B ] C:\Windows\System32\wdigest.dll
02:14:11.0756 3508 C:\Windows\System32\wdigest.dll - ok
02:14:11.0756 3508 [ 5D8874A8C11DDDDE29E12DE0E2013493 ] C:\Windows\System32\rsaenh.dll
02:14:11.0756 3508 C:\Windows\System32\rsaenh.dll - ok
02:14:11.0766 3508 [ 0DEFD5FBF801DD8F83BC0ED09861A8EC ] C:\Windows\System32\TSpkg.dll
02:14:11.0766 3508 C:\Windows\System32\TSpkg.dll - ok
02:14:11.0766 3508 [ E08088A97F95345E181C3DFCE2C615EF ] C:\Windows\System32\pku2u.dll
02:14:11.0766 3508 C:\Windows\System32\pku2u.dll - ok
02:14:11.0776 3508 [ DA090E97E57DCB48888015B5D3C749CD ] C:\Windows\System32\bcryptprimitives.dll
02:14:11.0776 3508 C:\Windows\System32\bcryptprimitives.dll - ok
02:14:11.0786 3508 [ 9301B8810B2DA4EB6AD55DB75FC1E339 ] C:\Windows\System32\credssp.dll
02:14:11.0786 3508 C:\Windows\System32\credssp.dll - ok
02:14:11.0786 3508 [ 90BDEFC5DF334E5100EAA781D798DE1A ] C:\Windows\System32\efslsaext.dll
02:14:11.0786 3508 C:\Windows\System32\efslsaext.dll - ok
02:14:11.0796 3508 [ 398712DDDAEFB85EDF61DF6A07B65C79 ] C:\Windows\System32\scecli.dll
02:14:11.0796 3508 C:\Windows\System32\scecli.dll - ok
02:14:11.0796 3508 [ 7CC7DF5B654DA579613F811D8C637E29 ] C:\Windows\System32\ubpm.dll
02:14:11.0796 3508 C:\Windows\System32\ubpm.dll - ok
02:14:11.0806 3508 [ C78655BC80301D76ED4FEF1C1EA40A7D ] C:\Windows\System32\svchost.exe
02:14:11.0806 3508 C:\Windows\System32\svchost.exe - ok
02:14:11.0806 3508 [ 98B1721B8718164293B9701B98C52D77 ] C:\Windows\System32\umpnpmgr.dll
02:14:11.0806 3508 C:\Windows\System32\umpnpmgr.dll - ok
02:14:11.0816 3508 [ E6EB44ABAAF1F330119F854856C53EBE ] C:\Windows\System32\SPInf.dll
02:14:11.0816 3508 C:\Windows\System32\SPInf.dll - ok
02:14:11.0816 3508 [ CD1B5AD07E5F7FEF30E055DCC9E96180 ] C:\Windows\System32\devrtl.dll
02:14:11.0816 3508 C:\Windows\System32\devrtl.dll - ok
02:14:11.0826 3508 [ 9C9307C95671AC962F3D6EB3A4A89BAE ] C:\Windows\System32\gpapi.dll
02:14:11.0826 3508 C:\Windows\System32\gpapi.dll - ok
02:14:11.0836 3508 [ 0776CF79590BDEF0A2728B0B9A813B96 ] C:\Windows\System32\userenv.dll
02:14:11.0836 3508 C:\Windows\System32\userenv.dll - ok
02:14:11.0836 3508 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] C:\Windows\System32\umpo.dll
02:14:11.0836 3508 C:\Windows\System32\umpo.dll - ok
02:14:11.0846 3508 [ F6C011B46FAEEF33536B2E80F48B5CBE ] C:\Windows\System32\pcwum.dll
02:14:11.0846 3508 C:\Windows\System32\pcwum.dll - ok
02:14:11.0846 3508 [ 716175021BDA290504CE434273F666BC ] C:\Windows\System32\powrprof.dll
02:14:11.0846 3508 C:\Windows\System32\powrprof.dll - ok
02:14:11.0856 3508 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] C:\Windows\System32\drivers\luafv.sys
02:14:11.0856 3508 C:\Windows\System32\drivers\luafv.sys - ok
02:14:11.0856 3508 [ ED7563CD3E67EE3C950A1B86818C24C3 ] C:\Windows\System32\drivers\catflt.sys
02:14:11.0856 3508 C:\Windows\System32\drivers\catflt.sys - ok
02:14:11.0866 3508 [ 7CADC74271DD6461C452C271B30BD378 ] C:\Windows\System32\drivers\WUDFPf.sys
02:14:11.0866 3508 C:\Windows\System32\drivers\WUDFPf.sys - ok
02:14:11.0866 3508 [ 7266972E86890E2B30C0C322E906B027 ] C:\Windows\System32\rpcss.dll
02:14:11.0866 3508 C:\Windows\System32\rpcss.dll - ok
02:14:11.0876 3508 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] C:\Windows\System32\RpcEpMap.dll
02:14:11.0876 3508 C:\Windows\System32\RpcEpMap.dll - ok
02:14:11.0886 3508 [ 31559F3244C6BC00A52030CAA83B6B91 ] C:\Windows\System32\WSHTCPIP.DLL
02:14:11.0886 3508 C:\Windows\System32\WSHTCPIP.DLL - ok
02:14:11.0886 3508 [ 16E964ABF6D1E0F0CC7822FCA9BA754D ] C:\Windows\System32\wshqos.dll
02:14:11.0886 3508 C:\Windows\System32\wshqos.dll - ok
02:14:11.0896 3508 [ 9AD9E06F8656F296D91FAE8EE5B95A27 ] C:\Windows\System32\FirewallAPI.dll
02:14:11.0896 3508 C:\Windows\System32\FirewallAPI.dll - ok
02:14:11.0896 3508 [ 93E6A39B1DB898F7C949FA5567E774CF ] C:\Windows\System32\LogonUI.exe
02:14:11.0896 3508 C:\Windows\System32\LogonUI.exe - ok
02:14:11.0906 3508 [ BCF0A980D21711E47D0803BDB0E99CAD ] C:\Windows\System32\authui.dll
02:14:11.0906 3508 C:\Windows\System32\authui.dll - ok
02:14:11.0906 3508 [ 94E026870A55AAEAFF7853C1754091E9 ] C:\Windows\System32\version.dll
02:14:11.0906 3508 C:\Windows\System32\version.dll - ok
02:14:11.0916 3508 [ 99ABDA9C92EC76CBAF52F00239D909C9 ] C:\Windows\System32\wevtsvc.dll
02:14:11.0916 3508 C:\Windows\System32\wevtsvc.dll - ok
02:14:11.0916 3508 [ DBA90306A721FB922FDACED9E9728C28 ] C:\Windows\System32\cryptui.dll
02:14:11.0916 3508 C:\Windows\System32\cryptui.dll - ok
02:14:11.0926 3508 [ 113921FC4A80A3DDF646852998B836D0 ] C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7\comctl32.dll
02:14:11.0926 3508 C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7\comctl32.dll - ok
02:14:11.0936 3508 [ 97293447431311C06703368AD0F6C4BE ] C:\Windows\System32\profsvc.dll
02:14:11.0936 3508 C:\Windows\System32\profsvc.dll - ok
02:14:11.0936 3508 [ FE05D03B73000CFF476E1D29109F3A84 ] C:\Program Files\Windows Defender\MpEvMsg.dll
02:14:11.0936 3508 C:\Program Files\Windows Defender\MpEvMsg.dll - ok
02:14:11.0946 3508 [ 07721A77180EDD4D39CCB865BF63C7FD ] C:\Windows\System32\audiosrv.dll
02:14:11.0946 3508 C:\Windows\System32\audiosrv.dll - ok
02:14:11.0946 3508 [ 227E2C382A1E02F8D4965E664D3BBE43 ] C:\Windows\System32\MMDevAPI.dll
02:14:11.0946 3508 C:\Windows\System32\MMDevAPI.dll - ok
02:14:11.0956 3508 [ B27EA141A7E748B607600A8551A44D5A ] C:\Windows\System32\propsys.dll
02:14:11.0956 3508 C:\Windows\System32\propsys.dll - ok
02:14:11.0956 3508 [ 78A1E65207484B7F8D3217507745F47C ] C:\Windows\System32\avrt.dll
02:14:11.0956 3508 C:\Windows\System32\avrt.dll - ok
02:14:11.0966 3508 [ E40E80D0304A73E8D269F7141D77250B ] C:\Windows\System32\mmcss.dll
02:14:11.0966 3508 C:\Windows\System32\mmcss.dll - ok
02:14:11.0976 3508 [ 444109453A2B87E6C16BCDA5953E81A9 ] C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_afc3018f8cfedd20\stacsv64.exe
02:14:11.0976 3508 C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_afc3018f8cfedd20\stacsv64.exe - ok
02:14:11.0976 3508 [ 9110FFAD124283F37D38771BB60556AF ] C:\Windows\System32\dsound.dll
02:14:11.0976 3508 C:\Windows\System32\dsound.dll - ok
02:14:11.0986 3508 [ EF2AE43BCD46ABB13FC3E5B2B1935C73 ] C:\Windows\System32\winmm.dll
02:14:11.0986 3508 C:\Windows\System32\winmm.dll - ok
02:14:11.0986 3508 [ D152EBC32A23069F8AA1D1F24B15E3F9 ] C:\Windows\System32\audiodg.exe
02:14:11.0986 3508 C:\Windows\System32\audiodg.exe - ok
02:14:11.0996 3508 [ 185F0A5625DB059128CF8CC9633B9C9F ] C:\Windows\System32\stapi64.dll
02:14:11.0996 3508 C:\Windows\System32\stapi64.dll - ok
02:14:11.0996 3508 [ 1F4492FE41767CDB8B89D17655847CDD ] C:\Windows\System32\ntmarta.dll
02:14:11.0996 3508 C:\Windows\System32\ntmarta.dll - ok
02:14:12.0006 3508 [ 07BA6D17E66879018B30B6C3F976EBED ] C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe
02:14:12.0006 3508 C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe - ok
02:14:12.0016 3508 [ DB6DD54A93522CA3572D04B56C5DB890 ] C:\Windows\SysWOW64\ntdll.dll
02:14:12.0016 3508 C:\Windows\SysWOW64\ntdll.dll - ok
02:14:12.0016 3508 [ 81D64E8D70E5FBF9F7ABF2D41154F54D ] C:\Windows\System32\AudioSes.dll
02:14:12.0016 3508 C:\Windows\System32\AudioSes.dll - ok
02:14:12.0026 3508 [ ADFDF57DC62AE66FE47D5AD1C838131B ] C:\Windows\System32\wow64.dll
02:14:12.0026 3508 C:\Windows\System32\wow64.dll - ok
02:14:12.0026 3508 [ E9727C5B096B0722BEBEE269ED841F37 ] C:\Windows\System32\wow64win.dll
02:14:12.0026 3508 C:\Windows\System32\wow64win.dll - ok
02:14:12.0036 3508 [ C0A718C7421975E8D25FF78271A8F54A ] C:\Windows\System32\wow64cpu.dll
02:14:12.0036 3508 C:\Windows\System32\wow64cpu.dll - ok
02:14:12.0036 3508 [ 4EA99F1644627B1EBAD99D0B93CDEE1C ] C:\Windows\SysWOW64\kernel32.dll
02:14:12.0036 3508 C:\Windows\SysWOW64\kernel32.dll - ok
02:14:12.0046 3508 [ 5EDBB34736DD7AC1A73CF8792A835E10 ] C:\Windows\System32\AudioEng.dll
02:14:12.0046 3508 C:\Windows\System32\AudioEng.dll - ok
02:14:12.0056 3508 [ 2BF12696F4AC8AFCFC06EAD6F8D2DB4C ] C:\Windows\SysWOW64\KernelBase.dll
02:14:12.0056 3508 C:\Windows\SysWOW64\KernelBase.dll - ok
02:14:12.0056 3508 [ E8B0FFC209E504CB7E79FC24E6C085F0 ] C:\Windows\SysWOW64\user32.dll
02:14:12.0056 3508 C:\Windows\SysWOW64\user32.dll - ok
02:14:12.0066 3508 [ FBE1E0B9EF53B5BB7C36763AA6A685CF ] C:\Windows\SysWOW64\gdi32.dll
02:14:12.0066 3508 C:\Windows\SysWOW64\gdi32.dll - ok
02:14:12.0066 3508 [ 384721EF4024890092625E20CADFAF85 ] C:\Windows\SysWOW64\lpk.dll
02:14:12.0066 3508 C:\Windows\SysWOW64\lpk.dll - ok
02:14:12.0076 3508 [ 0BA19F3198C40AC4E8CC66EE02EDA6C6 ] C:\Windows\SysWOW64\usp10.dll
02:14:12.0076 3508 C:\Windows\SysWOW64\usp10.dll - ok
02:14:12.0076 3508 [ F8A61B2E713309B4616D107919BDAB6E ] C:\Windows\SysWOW64\msvcrt.dll
02:14:12.0076 3508 C:\Windows\SysWOW64\msvcrt.dll - ok
02:14:12.0086 3508 [ 0C65FA8214D6F8378D1D3BA1CA46AF0A ] C:\Windows\SysWOW64\advapi32.dll
02:14:12.0086 3508 C:\Windows\SysWOW64\advapi32.dll - ok
02:14:12.0096 3508 [ 90385551B6B3793E949DF310A11D64E7 ] C:\Windows\SysWOW64\rpcrt4.dll
02:14:12.0096 3508 C:\Windows\SysWOW64\rpcrt4.dll - ok
02:14:12.0096 3508 [ CFC97F07904067A1E5FAE195D534DA3A ] C:\Windows\SysWOW64\sechost.dll
02:14:12.0096 3508 C:\Windows\SysWOW64\sechost.dll - ok
02:14:12.0106 3508 [ F08F6FCD09F9BE94C37ACC1B344685FF ] C:\Windows\SysWOW64\cryptbase.dll
02:14:12.0106 3508 C:\Windows\SysWOW64\cryptbase.dll - ok
02:14:12.0106 3508 [ 2CBC35E872BA9B46474890135B56DD66 ] C:\Windows\SysWOW64\shell32.dll
02:14:12.0106 3508 C:\Windows\SysWOW64\shell32.dll - ok
02:14:12.0116 3508 [ 351F62085F1D007533B4BB159C9EFDE3 ] C:\Windows\SysWOW64\sspicli.dll
02:14:12.0116 3508 C:\Windows\SysWOW64\sspicli.dll - ok
02:14:12.0116 3508 [ 61E02CC3184B63FAFE0B83EAC8B3B8EF ] C:\Windows\SysWOW64\winspool.drv
02:14:12.0116 3508 C:\Windows\SysWOW64\winspool.drv - ok
02:14:12.0126 3508 [ F037DB14CF6165C62F4A64D12A25B07C ] C:\Windows\SysWOW64\shlwapi.dll
02:14:12.0126 3508 C:\Windows\SysWOW64\shlwapi.dll - ok
02:14:12.0136 3508 [ E2C2D8C982316C8ABF800C6CE3F28FAB ] C:\Windows\SysWOW64\ole32.dll
02:14:12.0136 3508 C:\Windows\SysWOW64\ole32.dll - ok
02:14:12.0136 3508 [ 705C210EFC5564BE49EB026BD7AFF27A ] C:\Windows\SysWOW64\oleaut32.dll
02:14:12.0136 3508 C:\Windows\SysWOW64\oleaut32.dll - ok
02:14:12.0146 3508 [ 0E85C11F8850D524B02181C6E02BA9AE ] C:\Windows\SysWOW64\dsound.dll
02:14:12.0146 3508 C:\Windows\SysWOW64\dsound.dll - ok
02:14:12.0146 3508 [ 26A634B2E0FD87F23541AD13A503CA72 ] C:\Windows\SysWOW64\winmm.dll
02:14:12.0146 3508 C:\Windows\SysWOW64\winmm.dll - ok
02:14:12.0156 3508 [ 08DFDBD2FD4EA951DC46B1C7661ED35A ] C:\Windows\SysWOW64\powrprof.dll
02:14:12.0156 3508 C:\Windows\SysWOW64\powrprof.dll - ok
02:14:12.0156 3508 [ 41323AB614A2B66AD77B1121D24AC895 ] C:\Windows\SysWOW64\setupapi.dll
02:14:12.0156 3508 C:\Windows\SysWOW64\setupapi.dll - ok
02:14:12.0166 3508 [ E702ED19C332C1F12C1403D100E2F4F3 ] C:\Windows\SysWOW64\cfgmgr32.dll
02:14:12.0166 3508 C:\Windows\SysWOW64\cfgmgr32.dll - ok
02:14:12.0166 3508 [ 6C9C05D5344B9AB80E9180FC859BC45A ] C:\Windows\SysWOW64\devobj.dll
02:14:12.0166 3508 C:\Windows\SysWOW64\devobj.dll - ok
02:14:12.0176 3508 [ 4D59A5B6EF0AF6F9FDF3D157534380AF ] C:\Windows\SysWOW64\oleacc.dll
02:14:12.0176 3508 C:\Windows\SysWOW64\oleacc.dll - ok
02:14:12.0176 3508 [ 5923DB041C82BD93FE6C54114470CE17 ] C:\Windows\SysWOW64\crypt32.dll
02:14:12.0176 3508 C:\Windows\SysWOW64\crypt32.dll - ok
02:14:12.0186 3508 [ 0DE3069D6E09BA262856EF31C941BEFE ] C:\Windows\SysWOW64\imm32.dll
02:14:12.0186 3508 C:\Windows\SysWOW64\imm32.dll - ok
02:14:12.0196 3508 [ 4C04900AA8C323F5D4C316A89E976849 ] C:\Windows\SysWOW64\msasn1.dll
02:14:12.0196 3508 C:\Windows\SysWOW64\msasn1.dll - ok
02:14:12.0196 3508 [ C9618BC9B2B0FD7C1138D8774795A79B ] C:\Windows\SysWOW64\msctf.dll
02:14:12.0196 3508 C:\Windows\SysWOW64\msctf.dll - ok
02:14:12.0206 3508 [ DAAE8A9B8C0ACC7F858454132553C30D ] C:\Windows\SysWOW64\ws2_32.dll
02:14:12.0206 3508 C:\Windows\SysWOW64\ws2_32.dll - ok
02:14:12.0206 3508 [ F10E5311E5093FA3C00FF88C54C32FCA ] C:\Windows\SysWOW64\atl.dll
02:14:12.0206 3508 C:\Windows\SysWOW64\atl.dll - ok
02:14:12.0216 3508 [ 6377051C63D5552A311935C67E9FDFDC ] C:\Windows\SysWOW64\nsi.dll
02:14:12.0216 3508 C:\Windows\SysWOW64\nsi.dll - ok
02:14:12.0226 3508 [ 75A97A2C060E72AB49E071E08C7DD2BA ] C:\Windows\SysWOW64\wininet.dll
02:14:12.0226 3508 C:\Windows\SysWOW64\wininet.dll - ok
02:14:12.0226 3508 [ B17ADBBBDC97148D28F995F32C380F2E ] C:\Windows\SysWOW64\iertutil.dll
02:14:12.0226 3508 C:\Windows\SysWOW64\iertutil.dll - ok
02:14:12.0236 3508 [ 667981F2E7C26275F0694B58EEE303B9 ] C:\Windows\SysWOW64\urlmon.dll
02:14:12.0236 3508 C:\Windows\SysWOW64\urlmon.dll - ok
02:14:12.0236 3508 [ C1395286B822E306B4FE1568A8A77813 ] C:\Windows\System32\AUDIOKSE.dll
02:14:12.0236 3508 C:\Windows\System32\AUDIOKSE.dll - ok
02:14:12.0246 3508 [ 8560FFFC8EB3A806DCD4F82252CFC8C6 ] C:\Windows\System32\ksuser.dll
02:14:12.0246 3508 C:\Windows\System32\ksuser.dll - ok
02:14:12.0256 3508 [ 401106B4B036BA2D74BF168F22FE9400 ] C:\Windows\System32\stapo64.dll
02:14:12.0256 3508 C:\Windows\System32\stapo64.dll - ok
02:14:12.0256 3508 [ 0989ECD292D373E31D6DF5EDB9B62AE1 ] C:\Windows\System32\AESTAC64.dll
02:14:12.0256 3508 C:\Windows\System32\AESTAC64.dll - ok
02:14:12.0266 3508 [ 43E6294CC9698627627C58C6B786FB38 ] C:\Windows\System32\ctapo64.dll
02:14:12.0266 3508 C:\Windows\System32\ctapo64.dll - ok
02:14:12.0266 3508 [ 57FE2CFC2F25C200499D5D934EA24EB5 ] C:\Windows\System32\IPHLPAPI.DLL
02:14:12.0266 3508 C:\Windows\System32\IPHLPAPI.DLL - ok
02:14:12.0276 3508 [ 4C9210E8F4E052F6A4EB87716DA0C24C ] C:\Windows\System32\winnsi.dll
02:14:12.0276 3508 C:\Windows\System32\winnsi.dll - ok
02:14:12.0276 3508 [ F568F7C08458D69E4FCD8675BBB107E4 ] C:\Windows\System32\dhcpcsvc.dll
02:14:12.0276 3508 C:\Windows\System32\dhcpcsvc.dll - ok
02:14:12.0286 3508 [ 6F3C559B82F2912354BE5B098744CC8C ] C:\Windows\System32\WMALFXGFXDSP.dll
02:14:12.0286 3508 C:\Windows\System32\WMALFXGFXDSP.dll - ok
02:14:12.0286 3508 [ 54B5DCD55B223BC5DF50B82E1E9E86B1 ] C:\Windows\System32\mfplat.dll
02:14:12.0286 3508 C:\Windows\System32\mfplat.dll - ok
02:14:12.0296 3508 [ C469893743E18BA547DB3C7ED98B32F5 ] C:\Windows\System32\AESTAR64.dll
02:14:12.0296 3508 C:\Windows\System32\AESTAR64.dll - ok
02:14:12.0306 3508 [ 3D9FC44CA93001B423F89876369F1348 ] C:\Windows\System32\SRSLabs\{176F4E15-8F7C-4833-ADED-81FAE8CCD186}\sluapo64.dll
02:14:12.0306 3508 C:\Windows\System32\SRSLabs\{176F4E15-8F7C-4833-ADED-81FAE8CCD186}\sluapo64.dll - ok
02:14:12.0306 3508 [ 58775492FFD419248B08325E583C527F ] C:\Windows\System32\atl.dll
02:14:12.0306 3508 C:\Windows\System32\atl.dll - ok
02:14:12.0316 3508 [ FE5AB4525BC2EC68B9119A6E5D40128B ] C:\Windows\System32\gpsvc.dll
02:14:12.0316 3508 C:\Windows\System32\gpsvc.dll - ok
02:14:12.0316 3508 [ 588CD0C78A7FAAE4186B5EEA0AF3ED67 ] C:\Windows\System32\adtschema.dll
02:14:12.0316 3508 C:\Windows\System32\adtschema.dll - ok
02:14:12.0326 3508 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] C:\Windows\System32\netprofm.dll
02:14:12.0326 3508 C:\Windows\System32\netprofm.dll - ok
02:14:12.0336 3508 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] C:\Windows\System32\wlansvc.dll
02:14:12.0336 3508 C:\Windows\System32\wlansvc.dll - ok
02:14:12.0336 3508 [ 84F8C8B9FB1F12532999D25F5DD7E77C ] C:\Windows\System32\shacct.dll
02:14:12.0336 3508 C:\Windows\System32\shacct.dll - ok
02:14:12.0346 3508 [ 5B3EBFC3DA142324B388DDCC4465E1FF ] C:\Windows\System32\samlib.dll
02:14:12.0346 3508 C:\Windows\System32\samlib.dll - ok
02:14:12.0346 3508 [ D29E998E8277666982B4F0303BF4E7AF ] C:\Windows\System32\uxtheme.dll
02:14:12.0346 3508 C:\Windows\System32\uxtheme.dll - ok
02:14:12.0356 3508 [ DD0701DE0AAA010E6EBD0F53B672DCEE ] C:\Windows\winsxs\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7600.17007_none_2b47185a719d6182\GdiPlus.dll
02:14:12.0356 3508 C:\Windows\winsxs\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7600.17007_none_2b47185a719d6182\GdiPlus.dll - ok
02:14:12.0366 3508 [ 3CB6A7286422C72C34DAB54A5DFF1A34 ] C:\Windows\System32\dui70.dll
02:14:12.0366 3508 C:\Windows\System32\dui70.dll - ok
02:14:12.0366 3508 [ 8CCDE014A4CDF84564E03ACE064CA753 ] C:\Windows\System32\duser.dll
02:14:12.0366 3508 C:\Windows\System32\duser.dll - ok
02:14:12.0376 3508 [ B2E3D4BB3389817FB5E4CD9378BC8791 ] C:\Windows\System32\SndVolSSO.dll
02:14:12.0376 3508 C:\Windows\System32\SndVolSSO.dll - ok
02:14:12.0386 3508 [ DA1B7075260F3872585BFCDD668C648B ] C:\Windows\System32\dwmapi.dll
02:14:12.0386 3508 C:\Windows\System32\dwmapi.dll - ok
02:14:12.0386 3508 [ 896F15A6434D93EDB42519D5E18E6B50 ] C:\Windows\System32\hid.dll
02:14:12.0386 3508 C:\Windows\System32\hid.dll - ok
02:14:12.0396 3508 [ 30F9BACA07F8251D7DD1805A9E919CE0 ] C:\Windows\System32\wdmaud.drv
02:14:12.0396 3508 C:\Windows\System32\wdmaud.drv - ok
02:14:12.0396 3508 [ 39F91A948E6017B732C4A0B3086A8E32 ] C:\Windows\System32\xmllite.dll
02:14:12.0396 3508 C:\Windows\System32\xmllite.dll - ok
02:14:12.0406 3508 [ EA99F234843BBDDA1ABD2767111ADE25 ] C:\Windows\System32\WindowsCodecs.dll
02:14:12.0406 3508 C:\Windows\System32\WindowsCodecs.dll - ok
02:14:12.0416 3508 [ 9F2BACD5E1776A4BB7CC0EC3C3A4F96D ] C:\Windows\System32\winbrand.dll
02:14:12.0416 3508 C:\Windows\System32\winbrand.dll - ok
02:14:12.0416 3508 [ C2762A57DF0EE85E63CE4893C5215313 ] C:\Windows\System32\VaultCredProvider.dll
02:14:12.0416 3508 C:\Windows\System32\VaultCredProvider.dll - ok
02:14:12.0426 3508 [ BD3674BE7FC9D8D3732C83E8499576ED ] C:\Windows\System32\wtsapi32.dll
02:14:12.0426 3508 C:\Windows\System32\wtsapi32.dll - ok
02:14:12.0426 3508 [ 50544D04AD845C43130B70212EC05CCD ] C:\Windows\System32\microsoft-windows-kernel-power-events.dll
02:14:12.0426 3508 C:\Windows\System32\microsoft-windows-kernel-power-events.dll - ok
02:14:12.0436 3508 [ 86E3822A34D454032D8E88C72AE8CF2D ] C:\Windows\System32\nlaapi.dll
02:14:12.0436 3508 C:\Windows\System32\nlaapi.dll - ok
02:14:12.0436 3508 [ A77BE7CB3222B4FB0AC6C71D1C2698D4 ] C:\Windows\System32\dsrole.dll
02:14:12.0436 3508 C:\Windows\System32\dsrole.dll - ok
02:14:12.0446 3508 [ BE097F5BB10F9079FCEB2DC4E7E20F02 ] C:\Windows\System32\slc.dll
02:14:12.0446 3508 C:\Windows\System32\slc.dll - ok
02:14:12.0446 3508 [ F0344071948D1A1FA732231785A0664C ] C:\Windows\System32\themeservice.dll
02:14:12.0446 3508 C:\Windows\System32\themeservice.dll - ok
02:14:12.0456 3508 [ C22D2885DAFC8EB0D9E2EC3E62212FA3 ] C:\Program Files\WIDCOMM\Bluetooth Software\BtwCP.dll
02:14:12.0456 3508 C:\Program Files\WIDCOMM\Bluetooth Software\BtwCP.dll - ok
02:14:12.0466 3508 [ 02CDEB5D8B3DD5F6770DEFFBBC0CFAD0 ] C:\Windows\System32\winspool.drv
02:14:12.0466 3508 C:\Windows\System32\winspool.drv - ok
02:14:12.0466 3508 [ 92AAF75C3EB344A098DC026BC9DDF42A ] C:\Windows\System32\bthprops.cpl
02:14:12.0466 3508 C:\Windows\System32\bthprops.cpl - ok
02:14:12.0476 3508 [ 2A381A9740165D7A1405148B6DFB3E38 ] C:\Windows\System32\SmartcardCredentialProvider.dll
02:14:12.0476 3508 C:\Windows\System32\SmartcardCredentialProvider.dll - ok
02:14:12.0476 3508 [ F7866AF72ABBAF84B1FA5AA195378C59 ] C:\Windows\System32\drivers\fltMgr.sys
02:14:12.0476 3508 C:\Windows\System32\drivers\fltMgr.sys - ok
02:14:12.0486 3508 [ 4166F82BE4D24938977DD1746BE9B8A0 ] C:\Windows\System32\es.dll
02:14:12.0486 3508 C:\Windows\System32\es.dll - ok
02:14:12.0496 3508 [ BF352E73615F5461AA6884472435A544 ] C:\Windows\System32\BioCredProv.dll
02:14:12.0496 3508 C:\Windows\System32\BioCredProv.dll - ok
02:14:12.0496 3508 [ 1A47D52E303B7543E4E6026595B95422 ] C:\Windows\System32\comres.dll
02:14:12.0496 3508 C:\Windows\System32\comres.dll - ok
02:14:12.0506 3508 [ C32AB8FA018EF34C0F113BD501436D21 ] C:\Windows\System32\Sens.dll
02:14:12.0506 3508 C:\Windows\System32\Sens.dll - ok
02:14:12.0506 3508 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] C:\Windows\System32\uxsms.dll
02:14:12.0506 3508 C:\Windows\System32\uxsms.dll - ok
02:14:12.0516 3508 [ 97D38371502AA797DB14EB1FA5FCE4CD ] C:\Windows\System32\credui.dll
02:14:12.0516 3508 C:\Windows\System32\credui.dll - ok
02:14:12.0526 3508 [ 796B8123A7859AFD3A4AE10514DBAEB5 ] C:\Windows\System32\winbio.dll
02:14:12.0526 3508 C:\Windows\System32\winbio.dll - ok
02:14:12.0526 3508 [ 3C27B50BC43D5FED43081A784DD17190 ] C:\Windows\System32\netapi32.dll
02:14:12.0526 3508 C:\Windows\System32\netapi32.dll - ok
02:14:12.0536 3508 [ 44B9C66177651F3F53C87B665D58D17A ] C:\Windows\System32\vaultcli.dll
02:14:12.0536 3508 C:\Windows\System32\vaultcli.dll - ok
02:14:12.0536 3508 [ 4C8C2F987FC397DCE98874D6C9C0736A ] C:\Windows\System32\netutils.dll
02:14:12.0536 3508 C:\Windows\System32\netutils.dll - ok
02:14:12.0546 3508 [ B33CBD1A8C2A33121321D0FEBD7DD870 ] C:\Windows\System32\wkscli.dll
02:14:12.0546 3508 C:\Windows\System32\wkscli.dll - ok
02:14:12.0556 3508 [ 972C3301DB3DA91AE06A95F6B4160B1B ] C:\Windows\System32\certCredProvider.dll
02:14:12.0556 3508 C:\Windows\System32\certCredProvider.dll - ok
02:14:12.0556 3508 [ 87FA0C48C3B2E9FEE518818FE26B15B5 ] C:\Windows\System32\rasplap.dll
02:14:12.0556 3508 C:\Windows\System32\rasplap.dll - ok
02:14:12.0566 3508 [ A87205FE194B239D8D96E4972B779CC1 ] C:\Windows\System32\samcli.dll
02:14:12.0566 3508 C:\Windows\System32\samcli.dll - ok
02:14:12.0566 3508 [ 019CD868461B646E09BDF04474C19341 ] C:\Windows\System32\rasapi32.dll
02:14:12.0566 3508 C:\Windows\System32\rasapi32.dll - ok
02:14:12.0576 3508 [ B28DEEC597C8DEB70C744C7CF9210E3E ] C:\Windows\System32\rasman.dll
02:14:12.0576 3508 C:\Windows\System32\rasman.dll - ok
02:14:12.0576 3508 [ F5A61F0A0030C80DF319B0C14A4C8885 ] C:\Windows\System32\rtutils.dll
02:14:12.0576 3508 C:\Windows\System32\rtutils.dll - ok
02:14:12.0586 3508 [ CA2A0750ED830678997695FF61B04C30 ] C:\Windows\System32\midimap.dll
02:14:12.0586 3508 C:\Windows\System32\midimap.dll - ok
02:14:12.0596 3508 [ 10AC5CE9F78DC281A1BBD9B8CC587B8A ] C:\Windows\System32\msacm32.dll
02:14:12.0596 3508 C:\Windows\System32\msacm32.dll - ok
02:14:12.0596 3508 [ 1B7C3A37362C7B2890168C5FC61C8D9B ] C:\Windows\System32\msacm32.drv
02:14:12.0596 3508 C:\Windows\System32\msacm32.drv - ok
02:14:12.0606 3508 [ 9BC8610C32C96A2983A65DC21CAFA921 ] C:\Windows\System32\UXInit.dll
02:14:12.0606 3508 C:\Windows\System32\UXInit.dll - ok
02:14:12.0606 3508 [ AF28348ED585539C4A33A4341FF23696 ] C:\Windows\System32\oleacc.dll
02:14:12.0606 3508 C:\Windows\System32\oleacc.dll - ok
02:14:12.0616 3508 [ A3DB3C17EE6CAE65D53602B4E80BCCBC ] C:\Windows\System32\PSHED.DLL
02:14:12.0616 3508 C:\Windows\System32\PSHED.DLL - ok
02:14:12.0616 3508 [ 019BDD35DE269CB98B22DE8923C2AA3B ] C:\Windows\System32\UIAutomationCore.dll
02:14:12.0616 3508 C:\Windows\System32\UIAutomationCore.dll - ok
02:14:12.0626 3508 [ B0945E538CF906BBDDC5A11C8EE868CC ] C:\Windows\System32\microsoft-windows-kernel-processor-power-events.dll
02:14:12.0626 3508 C:\Windows\System32\microsoft-windows-kernel-processor-power-events.dll - ok
02:14:12.0636 3508 [ 37B68E458C0BC255DF2FB7454D0798D3 ] C:\Windows\System32\WUDFPlatform.dll
02:14:12.0636 3508 C:\Windows\System32\WUDFPlatform.dll - ok
02:14:12.0636 3508 [ B551D6637AA0E132C18AC6E504F7B79B ] C:\Windows\System32\WUDFSvc.dll
02:14:12.0636 3508 C:\Windows\System32\WUDFSvc.dll - ok
02:14:12.0646 3508 [ C6FEE635EB61EEBBF960E981DC8C6CDE ] C:\Windows\System32\drivers\EMLTDI.SYS
02:14:12.0646 3508 C:\Windows\System32\drivers\EMLTDI.SYS - ok
02:14:12.0646 3508 [ 1538831CF8AD2979A04C423779465827 ] C:\Windows\System32\drivers\lltdio.sys
02:14:12.0646 3508 C:\Windows\System32\drivers\lltdio.sys - ok
02:14:12.0656 3508 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] C:\Windows\System32\drivers\nwifi.sys
02:14:12.0656 3508 C:\Windows\System32\drivers\nwifi.sys - ok
02:14:12.0666 3508 [ F105BA1E22BF1F2EE8F005D4305E4BEC ] C:\Windows\System32\drivers\ndisuio.sys
02:14:12.0666 3508 C:\Windows\System32\drivers\ndisuio.sys - ok
02:14:12.0666 3508 [ DDC86E4F8E7456261E637E3552E804FF ] C:\Windows\System32\drivers\rspndr.sys
02:14:12.0666 3508 C:\Windows\System32\drivers\rspndr.sys - ok
02:14:12.0676 3508 [ D54BFDF3E0C953F823B3D0BFE4732528 ] C:\Windows\System32\nsisvc.dll
02:14:12.0676 3508 C:\Windows\System32\nsisvc.dll - ok
02:14:12.0676 3508 [ 85CF424C74A1D5EC33533E1DBFF9920A ] C:\Windows\System32\dnsrslvr.dll
02:14:12.0676 3508 C:\Windows\System32\dnsrslvr.dll - ok
02:14:12.0686 3508 [ 982F5395AD181179320083A4FA7E7CA8 ] C:\Windows\System32\eapphost.dll
02:14:12.0686 3508 C:\Windows\System32\eapphost.dll - ok
02:14:12.0696 3508 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] C:\Windows\System32\eapsvc.dll
02:14:12.0696 3508 C:\Windows\System32\eapsvc.dll - ok
02:14:12.0696 3508 [ F9EC845C5EECF20E9A67F9F805F2EF1F ] C:\Windows\System32\keyiso.dll
02:14:12.0696 3508 C:\Windows\System32\keyiso.dll - ok
02:14:12.0706 3508 [ 0040C486584A8E582C861CFB57AB5387 ] C:\Windows\System32\FWPUCLNT.DLL
02:14:12.0706 3508 C:\Windows\System32\FWPUCLNT.DLL - ok
02:14:12.0706 3508 [ 885D0942E0F28DB90919BE3129ECF279 ] C:\Windows\System32\dnsext.dll
02:14:12.0706 3508 C:\Windows\System32\dnsext.dll - ok
02:14:12.0716 3508 [ 2017BFE87CAB3D7EF632CFD2AA08D3F0 ] C:\Windows\System32\umb.dll
02:14:12.0716 3508 C:\Windows\System32\umb.dll - ok
02:14:12.0716 3508 [ 48A31B7CF046702059A86836DC21D786 ] C:\Windows\System32\wlanmsm.dll
02:14:12.0716 3508 C:\Windows\System32\wlanmsm.dll - ok
02:14:12.0726 3508 [ 4CBCC37856EA2039C27A2FB661DDA0E5 ] C:\Windows\System32\dhcpcsvc6.dll
02:14:12.0726 3508 C:\Windows\System32\dhcpcsvc6.dll - ok
02:14:12.0736 3508 [ 06A1386B6E3A0CBC368665C1840906F4 ] C:\Windows\System32\wlansec.dll
02:14:12.0736 3508 C:\Windows\System32\wlansec.dll - ok
02:14:12.0736 3508 [ D2B0D1C2BE5ECA80387F7CB8626DCAFE ] C:\Windows\System32\onex.dll
02:14:12.0736 3508 C:\Windows\System32\onex.dll - ok
02:14:12.0746 3508 [ 0D753307D274F3688BD21C377B616700 ] C:\Windows\System32\eappcfg.dll
02:14:12.0746 3508 C:\Windows\System32\eappcfg.dll - ok
02:14:12.0746 3508 [ 65522E77A1360DBC8D199DA3BF5EFFE4 ] C:\Windows\System32\eappprxy.dll
02:14:12.0746 3508 C:\Windows\System32\eappprxy.dll - ok
02:14:12.0756 3508 [ 97E43F324BE1503CB2FFB058534688DA ] C:\Windows\System32\l2gpstore.dll
02:14:12.0756 3508 C:\Windows\System32\l2gpstore.dll - ok
02:14:12.0756 3508 [ 22E7431E7DAE8463AF94A79A054276E5 ] C:\Windows\System32\WinSCard.dll
02:14:12.0756 3508 C:\Windows\System32\WinSCard.dll - ok
02:14:12.0766 3508 [ 7F1B4C6FF3B85F9ADF74055187B8A22C ] C:\Windows\System32\wlanutil.dll
02:14:12.0766 3508 C:\Windows\System32\wlanutil.dll - ok
02:14:12.0776 3508 [ 730BF204A595D5B6D7DC57A247CC741C ] C:\Windows\System32\wlgpclnt.dll
02:14:12.0776 3508 C:\Windows\System32\wlgpclnt.dll - ok
02:14:12.0776 3508 [ 72D3D64526765C34DBFC7D895B4FBDF6 ] C:\Windows\System32\msxml6.dll
02:14:12.0776 3508 C:\Windows\System32\msxml6.dll - ok
02:14:12.0786 3508 [ 8F6D9A20F1FB06F0602A7D5A82840DBF ] C:\Windows\System32\netcfgx.dll
02:14:12.0786 3508 C:\Windows\System32\netcfgx.dll - ok
02:14:12.0786 3508 [ 613BC4B8F4DEE3BF1D98F53A7D7AF9DB ] C:\Program Files\WIDCOMM\Bluetooth Software\btrez.dll
02:14:12.0786 3508 C:\Program Files\WIDCOMM\Bluetooth Software\btrez.dll - ok
02:14:12.0796 3508 [ 9173F70AF60C0A864EECDFB3342DC789 ] C:\Windows\winsxs\amd64_microsoft.vc80.mfc_1fc8b3b9a1e18e3b_8.0.50727.762_none_c46a533c8a667ee7\mfc80.dll
02:14:12.0796 3508 C:\Windows\winsxs\amd64_microsoft.vc80.mfc_1fc8b3b9a1e18e3b_8.0.50727.762_none_c46a533c8a667ee7\mfc80.dll - ok
02:14:12.0806 3508 [ 7B8F7848D3C65DD9589A4898CFF3757D ] C:\Windows\winsxs\amd64_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.4927_none_88dce9872fb18caf\msvcr80.dll
02:14:12.0806 3508 C:\Windows\winsxs\amd64_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.4927_none_88dce9872fb18caf\msvcr80.dll - ok
02:14:12.0806 3508 [ 9935F595C9B80BC40723042B43086549 ] C:\Windows\winsxs\amd64_microsoft.vc80.mfcloc_1fc8b3b9a1e18e3b_8.0.50727.762_none_fc42961a63b5a82b\mfc80ENU.dll
02:14:12.0806 3508 C:\Windows\winsxs\amd64_microsoft.vc80.mfcloc_1fc8b3b9a1e18e3b_8.0.50727.762_none_fc42961a63b5a82b\mfc80ENU.dll - ok
02:14:12.0816 3508 [ 5AA945234E9D4CCE4F715276B9AA712C ] C:\Windows\System32\imageres.dll
02:14:12.0816 3508 C:\Windows\System32\imageres.dll - ok
02:14:12.0816 3508 [ CE3B9562D997F69B330D181A8875960F ] C:\Windows\System32\dhcpcore.dll
02:14:12.0816 3508 C:\Windows\System32\dhcpcore.dll - ok
02:14:12.0826 3508 [ F993A32249B66C9D622EA5592A8B76B8 ] C:\Windows\System32\lmhsvc.dll
02:14:12.0826 3508 C:\Windows\System32\lmhsvc.dll - ok
02:14:12.0826 3508 [ FD5BA198F7190DFE9BE1947EB8710396 ] C:\Windows\System32\nrpsrv.dll
02:14:12.0826 3508 C:\Windows\System32\nrpsrv.dll - ok
02:14:12.0836 3508 [ 71C7B65B6557B75B99907E76956AE4B8 ] C:\Windows\System32\dhcpcore6.dll
02:14:12.0836 3508 C:\Windows\System32\dhcpcore6.dll - ok
02:14:12.0846 3508 [ 0298AC45D0EFFFB2DB4BAA7DD186E7BF ] C:\Windows\System32\shsvcs.dll
02:14:12.0846 3508 C:\Windows\System32\shsvcs.dll - ok
02:14:12.0846 3508 [ 624D0F5FF99428BB90A5B8A4123E918E ] C:\Windows\System32\schedsvc.dll
02:14:12.0846 3508 C:\Windows\System32\schedsvc.dll - ok
02:14:12.0856 3508 [ BC414631876B2F28B8DAB08E849C12C5 ] C:\Windows\System32\ktmw32.dll
02:14:12.0856 3508 C:\Windows\System32\ktmw32.dll - ok
02:14:12.0856 3508 [ 1B38A0F123FCF1546FACEAF1EFAFAA00 ] C:\Windows\System32\fveapi.dll
02:14:12.0856 3508 C:\Windows\System32\fveapi.dll - ok
02:14:12.0866 3508 [ 891ECFD08E2C538B7948CBC45106D697 ] C:\Windows\System32\fvecerts.dll
02:14:12.0866 3508 C:\Windows\System32\fvecerts.dll - ok
02:14:12.0866 3508 [ 694865362F0965779F92BCFE97712323 ] C:\Windows\System32\tbs.dll
02:14:12.0866 3508 C:\Windows\System32\tbs.dll - ok
02:14:12.0876 3508 [ 8269210DAF3B12BC8300631B28A2A442 ] C:\Windows\System32\wiarpc.dll
02:14:12.0876 3508 C:\Windows\System32\wiarpc.dll - ok
02:14:12.0886 3508 [ 1B547066D0A6CD40EB3BAAC6A9C7E7A9 ] C:\Windows\System32\taskcomp.dll
02:14:12.0886 3508 C:\Windows\System32\taskcomp.dll - ok
02:14:12.0886 3508 [ CEE049CAC4EFA7F4E1E4AD014414A5D4 ] C:\Windows\System32\drivers\http.sys
02:14:12.0886 3508 C:\Windows\System32\drivers\http.sys - ok
02:14:12.0896 3508 [ 567977DC43CC13C4C35ED7084C0B84D5 ] C:\Windows\System32\spoolsv.exe
02:14:12.0896 3508 C:\Windows\System32\spoolsv.exe - ok
02:14:12.0896 3508 [ 4992C609A6315671463E30F6512BC022 ] C:\Windows\System32\BFE.DLL
02:14:12.0896 3508 C:\Windows\System32\BFE.DLL - ok
02:14:12.0906 3508 [ 19D20159708E152267E53B66677A4995 ] C:\Windows\System32\drivers\bowser.sys
02:14:12.0906 3508 C:\Windows\System32\drivers\bowser.sys - ok
02:14:12.0906 3508 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] C:\Windows\System32\drivers\mpsdrv.sys
02:14:12.0906 3508 C:\Windows\System32\drivers\mpsdrv.sys - ok
02:14:12.0916 3508 [ 040D62A9D8AD28922632137ACDD984F2 ] C:\Windows\System32\drivers\mrxsmb.sys
02:14:12.0916 3508 C:\Windows\System32\drivers\mrxsmb.sys - ok
02:14:12.0916 3508 [ AECAB449567D1846DAD63ECE49E893E3 ] C:\Windows\System32\MPSSVC.dll
02:14:12.0916 3508 C:\Windows\System32\MPSSVC.dll - ok
02:14:12.0926 3508 [ F0067552F8F9B33D7C59403AB808A3CB ] C:\Windows\System32\drivers\mrxsmb10.sys
02:14:12.0926 3508 C:\Windows\System32\drivers\mrxsmb10.sys - ok
02:14:12.0926 3508 [ 3C142D31DE9F2F193218A53FE2632051 ] C:\Windows\System32\drivers\mrxsmb20.sys
02:14:12.0926 3508 C:\Windows\System32\drivers\mrxsmb20.sys - ok
02:14:12.0936 3508 [ 27026EAC8818E8A6C00A1CAD2F11D29A ] C:\Windows\System32\wkssvc.dll
02:14:12.0936 3508 C:\Windows\System32\wkssvc.dll - ok
02:14:12.0946 3508 [ 426E0E8127BAC7D5DDEE8251F104E053 ] C:\Program Files (x86)\Absolute Software\Absolute Notifier\AbsoluteNotifierService.exe
02:14:12.0946 3508 C:\Program Files (x86)\Absolute Software\Absolute Notifier\AbsoluteNotifierService.exe - ok
02:14:12.0946 3508 [ C67F8A962B2534224D5908D16D2AD3CE ] C:\Windows\System32\wfapigp.dll
02:14:12.0946 3508 C:\Windows\System32\wfapigp.dll - ok
02:14:12.0956 3508 [ 128DD9AF8640DBCC711940903C8B554F ] C:\Windows\SysWOW64\mscoree.dll
02:14:12.0956 3508 C:\Windows\SysWOW64\mscoree.dll - ok
02:14:12.0956 3508 [ 961036B3C6282C646B9ADBC8BB32C983 ] C:\Windows\System32\mscms.dll
02:14:12.0956 3508 C:\Windows\System32\mscms.dll - ok
02:14:12.0966 3508 [ 3AEAA8B561E63452C655DC0584922257 ] C:\Windows\System32\pcasvc.dll
02:14:12.0966 3508 C:\Windows\System32\pcasvc.dll - ok
02:14:12.0966 3508 [ 6313F223E817CC09AA41811DAA7F541D ] C:\Windows\System32\snmptrap.exe
02:14:12.0966 3508 C:\Windows\System32\snmptrap.exe - ok
02:14:12.0976 3508 [ F5DF6846F30E9F54EA60CCAEB3FB2055 ] C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscoreei.dll
02:14:12.0976 3508 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscoreei.dll - ok
02:14:12.0976 3508 [ EBC9F71C62296108B60A35B3A54F04FE ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorwks.dll
02:14:12.0976 3508 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorwks.dll - ok
02:14:12.0986 3508 [ 06A7422224D9865A5613710A089987DF ] C:\Windows\System32\provsvc.dll
02:14:12.0986 3508 C:\Windows\System32\provsvc.dll - ok
02:14:12.0996 3508 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] C:\Windows\System32\sstpsvc.dll
02:14:12.0996 3508 C:\Windows\System32\sstpsvc.dll - ok
02:14:12.0996 3508 [ C9564CF4976E7E96B4052737AA2492B4 ] C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcr80.dll
02:14:12.0996 3508 C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcr80.dll - ok
02:14:13.0006 3508 [ C733D233B623B7FFCE5031E4B756EE26 ] C:\Windows\SysWOW64\profapi.dll
02:14:13.0006 3508 C:\Windows\SysWOW64\profapi.dll - ok
02:14:13.0006 3508 [ 19CCF6D39E15B13D00106F9795721136 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\mscorlib\5858678a79aae31262b0214424245d06\mscorlib.ni.dll
02:14:13.0006 3508 C:\Windows\assembly\NativeImages_v2.0.50727_32\mscorlib\5858678a79aae31262b0214424245d06\mscorlib.ni.dll - ok
02:14:13.0016 3508 [ D146C378AEC2D1570A4E4F81E2B621B3 ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorjit.dll
02:14:13.0016 3508 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorjit.dll - ok
02:14:13.0026 3508 [ D84222A740EE7A135FC68AEB11121523 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System\2ebb3c259eab50af565e3a8dba6ad20e\System.ni.dll
02:14:13.0026 3508 C:\Windows\assembly\NativeImages_v2.0.50727_32\System\2ebb3c259eab50af565e3a8dba6ad20e\System.ni.dll - ok
02:14:13.0026 3508 [ BD549873895E371D4597FE7FA5D063EA ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System.ServiceProce#\8b7a7f9c607e09bfa03c07b5ff3a8ae3\System.ServiceProcess.ni.dll
02:14:13.0026 3508 C:\Windows\assembly\NativeImages_v2.0.50727_32\System.ServiceProce#\8b7a7f9c607e09bfa03c07b5ff3a8ae3\System.ServiceProcess.ni.dll - ok
02:14:13.0036 3508 [ 43748180DE16AE74E12BFA415D3E3CBA ] C:\Program Files (x86)\Absolute Software\Absolute Notifier\Com.Absolute.Common.Agent.Remoting.dll
02:14:13.0036 3508 C:\Program Files (x86)\Absolute Software\Absolute Notifier\Com.Absolute.Common.Agent.Remoting.dll - ok
02:14:13.0036 3508 [ 785DE7ABDA13309D6065305542829E76 ] C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE
02:14:13.0036 3508 C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE - ok
02:14:13.0046 3508 [ 4D5A47FD3704227CC3E6C8201F226057 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Runtime.Remo#\0c00b1a8336dd4c1bd1ebce7780f20b4\System.Runtime.Remoting.ni.dll
02:14:13.0046 3508 C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Runtime.Remo#\0c00b1a8336dd4c1bd1ebce7780f20b4\System.Runtime.Remoting.ni.dll - ok
02:14:13.0056 3508 [ 93C1B8183B7A14C05FBC4FC6EAFB57D1 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Configuration\cb079eab134fd1a752ad91db13274110\System.Configuration.ni.dll
02:14:13.0056 3508 C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Configuration\cb079eab134fd1a752ad91db13274110\System.Configuration.ni.dll - ok
02:14:13.0056 3508 [ CC9BBCFC715FBEDF7AE476106FE653E9 ] C:\Windows\SysWOW64\winhttp.dll
02:14:13.0056 3508 C:\Windows\SysWOW64\winhttp.dll - ok
02:14:13.0066 3508 [ 6F5146363FD295BAF70A1F04C591EDD2 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Xml\5c85c9c42e1b8a8760de82ecb4c7d582\System.Xml.ni.dll
02:14:13.0066 3508 C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Xml\5c85c9c42e1b8a8760de82ecb4c7d582\System.Xml.ni.dll - ok
02:14:13.0066 3508 [ A86A1C5DF1C662D1C75815BF4794F16D ] C:\Windows\SysWOW64\webio.dll
02:14:13.0076 3508 C:\Windows\SysWOW64\webio.dll - ok
02:14:13.0076 3508 [ 6F8E3B7B70E1BBA871212940C1FBDF60 ] C:\Windows\SysWOW64\SensApi.dll
02:14:13.0076 3508 C:\Windows\SysWOW64\SensApi.dll - ok
02:14:13.0086 3508 [ 6380BE4AB7AFA48BAEF321E8CA980ADD ] C:\Windows\SysWOW64\wintrust.dll
02:14:13.0086 3508 C:\Windows\SysWOW64\wintrust.dll - ok
02:14:13.0086 3508 [ FF5688D309347F2720911D8796912834 ] C:\Windows\SysWOW64\clbcatq.dll
02:14:13.0086 3508 C:\Windows\SysWOW64\clbcatq.dll - ok
02:14:13.0096 3508 [ 4DBC81CEFE9DB36856880BFB3491C100 ] C:\Windows\SysWOW64\msxml6.dll
02:14:13.0096 3508 C:\Windows\SysWOW64\msxml6.dll - ok
02:14:13.0096 3508 [ D65AA164ACD0F6706DBCFBBCC9731584 ] C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
02:14:13.0096 3508 C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe - ok
02:14:13.0106 3508 [ 7321F18D1F820612ED0E9F2D4B578A7E ] C:\Windows\SysWOW64\cryptsp.dll
02:14:13.0106 3508 C:\Windows\SysWOW64\cryptsp.dll - ok
02:14:13.0106 3508 [ 6C0BD9D59C7E97DEE2FB3407D17BF697 ] C:\Windows\SysWOW64\RpcRtRemote.dll
02:14:13.0106 3508 C:\Windows\SysWOW64\RpcRtRemote.dll - ok
02:14:13.0116 3508 [ ED8EC63F7522DF4852147C84EC62C36A ] C:\Windows\SysWOW64\rsaenh.dll
02:14:13.0116 3508 C:\Windows\SysWOW64\rsaenh.dll - ok
02:14:13.0126 3508 [ 27A2F5B4168B333E003E2AB68811D62E ] C:\Program Files\Quick Heal\Quick Heal Total Security\EMLPROXY.EXE
02:14:13.0126 3508 C:\Program Files\Quick Heal\Quick Heal Total Security\EMLPROXY.EXE - ok
02:14:13.0126 3508 [ 7D0E72093E72B8045D44DEB9384F811E ] C:\Program Files\WIDCOMM\Bluetooth Software\btins.dll
02:14:13.0126 3508 C:\Program Files\WIDCOMM\Bluetooth Software\btins.dll - ok
02:14:13.0136 3508 [ 324CC6C4A615E9B0FA97B57540357E66 ] C:\Program Files\Quick Heal\Quick Heal Total Security\EMPXCORE.DLL
02:14:13.0136 3508 C:\Program Files\Quick Heal\Quick Heal Total Security\EMPXCORE.DLL - ok
02:14:13.0136 3508 [ 7C6587B5582A271FE766DCFD5F39089A ] C:\Program Files\Quick Heal\Quick Heal Total Security\ONLNMF.DLL
02:14:13.0136 3508 C:\Program Files\Quick Heal\Quick Heal Total Security\ONLNMF.DLL - ok
02:14:13.0146 3508 [ 599EBE6C7EA52B5FF9603F203E8EC080 ] C:\Windows\System32\msi.dll
02:14:13.0146 3508 C:\Windows\System32\msi.dll - ok
02:14:13.0146 3508 [ 5FF7D057E48DA861BDBB47D314B6DA7D ] C:\Windows\winsxs\amd64_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.4926_none_08e1a05ba83fe554\msvcr90.dll
02:14:13.0146 3508 C:\Windows\winsxs\amd64_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.4926_none_08e1a05ba83fe554\msvcr90.dll - ok
02:14:13.0156 3508 [ 81FD4875FEDB56DE7F320EF40D5C946F ] C:\Program Files\Quick Heal\Quick Heal Total Security\GGSTUB.DLL
02:14:13.0156 3508 C:\Program Files\Quick Heal\Quick Heal Total Security\GGSTUB.DLL - ok
02:14:13.0166 3508 [ 335BFFC6B447C862CB181AEF447B4DAA ] C:\Program Files\Quick Heal\Quick Heal Total Security\scansts.dll
02:14:13.0166 3508 C:\Program Files\Quick Heal\Quick Heal Total Security\scansts.dll - ok
02:14:13.0166 3508 [ 1495A96BC879926807DCB3DC4B2A9883 ] C:\Program Files\Quick Heal\Quick Heal Total Security\SCANOPT.DLL
02:14:13.0166 3508 C:\Program Files\Quick Heal\Quick Heal Total Security\SCANOPT.DLL - ok
02:14:13.0176 3508 [ 7D656F994095F5CE9FB7D6709181EB90 ] C:\Program Files\Quick Heal\Quick Heal Total Security\FILEWRAP.DLL
02:14:13.0176 3508 C:\Program Files\Quick Heal\Quick Heal Total Security\FILEWRAP.DLL - ok
02:14:13.0176 3508 [ 3A387E0E973D45469A08A703407F2E6F ] C:\Windows\winsxs\amd64_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.4926_none_08e1a05ba83fe554\msvcp90.dll
02:14:13.0176 3508 C:\Windows\winsxs\amd64_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.4926_none_08e1a05ba83fe554\msvcp90.dll - ok
02:14:13.0186 3508 [ 35E46B9D2AAE75157D28D3FCB87977AC ] C:\Program Files\Quick Heal\Quick Heal Total Security\WSCORE.DLL
02:14:13.0186 3508 C:\Program Files\Quick Heal\Quick Heal Total Security\WSCORE.DLL - ok
02:14:13.0196 3508 [ 266F630A7CE7F816EC51882E3C90F8F1 ] C:\Program Files\Quick Heal\Quick Heal Total Security\WSNFAPI.DLL
02:14:13.0196 3508 C:\Program Files\Quick Heal\Quick Heal Total Security\WSNFAPI.DLL - ok
02:14:13.0196 3508 [ F66E2D90ECEFCF47A5A94968044E6B7B ] C:\Program Files\Quick Heal\Quick Heal Total Security\wstifapi.dll
02:14:13.0196 3508 C:\Program Files\Quick Heal\Quick Heal Total Security\wstifapi.dll - ok
02:14:13.0206 3508 [ 9DDF0FED0D490AEB4FCABB67181E4086 ] C:\Program Files\Quick Heal\Quick Heal Total Security\WSUTIL.DLL
02:14:13.0206 3508 C:\Program Files\Quick Heal\Quick Heal Total Security\WSUTIL.DLL - ok
02:14:13.0206 3508 [ E4D894AC04DEE084B185991D928D3F79 ] C:\Program Files\Quick Heal\Quick Heal Total Security\UIIPCITF.DLL
02:14:13.0206 3508 C:\Program Files\Quick Heal\Quick Heal Total Security\UIIPCITF.DLL - ok
02:14:13.0216 3508 [ 7489BAE75F6ACC47E22C8CBE77A845F3 ] C:\Program Files\Quick Heal\Quick Heal Total Security\INFORI.DLL
02:14:13.0216 3508 C:\Program Files\Quick Heal\Quick Heal Total Security\INFORI.DLL - ok
02:14:13.0226 3508 [ 649277BC17AB5F050AF2ED8C9D861415 ] C:\Program Files\Quick Heal\Quick Heal Total Security\REGISTRY.DLL
02:14:13.0226 3508 C:\Program Files\Quick Heal\Quick Heal Total Security\REGISTRY.DLL - ok
02:14:13.0226 3508 [ 41AD382FE491433D0A28FB4B16EB89F7 ] C:\Program Files\Quick Heal\Quick Heal Total Security\MODRES.DLL
02:14:13.0226 3508 C:\Program Files\Quick Heal\Quick Heal Total Security\MODRES.DLL - ok
02:14:13.0236 3508 [ 3D268FBD5077F41ECE4FF40567BFB492 ] C:\Program Files\Quick Heal\Quick Heal Total Security\SAPISSVC.EXE
02:14:13.0236 3508 C:\Program Files\Quick Heal\Quick Heal Total Security\SAPISSVC.EXE - ok
02:14:13.0236 3508 [ FAFAE01E889DC9C05A6CA2138CFC220B ] C:\Windows\System32\tapi32.dll
02:14:13.0236 3508 C:\Windows\System32\tapi32.dll - ok
02:14:13.0246 3508 [ 038DD7E35A7C8C89623A40E75ABC1FF6 ] C:\Program Files\WIDCOMM\Bluetooth Software\btwprofpack.dll
02:14:13.0246 3508 C:\Program Files\WIDCOMM\Bluetooth Software\btwprofpack.dll - ok
02:14:13.0256 3508 [ 69B1DCEE3FA5D6C77A44BE62CC7DE510 ] C:\Program Files\Quick Heal\Quick Heal Total Security\SAPISLIB.DLL
02:14:13.0256 3508 C:\Program Files\Quick Heal\Quick Heal Total Security\SAPISLIB.DLL - ok
02:14:13.0256 3508 [ 82D475A87849699A6B6471D34C1E3567 ] C:\Program Files\Quick Heal\Quick Heal Total Security\ITFG.DLL
02:14:13.0256 3508 C:\Program Files\Quick Heal\Quick Heal Total Security\ITFG.DLL - ok
02:14:13.0266 3508 [ F02786B66375292E58C8777082D4396D ] C:\Windows\System32\cryptsvc.dll
02:14:13.0266 3508 C:\Windows\System32\cryptsvc.dll - ok
02:14:13.0266 3508 [ C5B4683680DF085B57BC53E5EF34861F ] C:\Windows\System32\IKEEXT.DLL
02:14:13.0266 3508 C:\Windows\System32\IKEEXT.DLL - ok
02:14:13.0276 3508 [ BB9F6A68EB07C920C9975F2A0AE43FD1 ] C:\Program Files\Quick Heal\Quick Heal Total Security\OPSSVC.EXE
02:14:13.0276 3508 C:\Program Files\Quick Heal\Quick Heal Total Security\OPSSVC.EXE - ok
02:14:13.0286 3508 [ E6C941FE91F90BA31CA237D89A68A29E ] C:\Program Files\Quick Heal\Quick Heal Total Security\STRTLIB.DLL
02:14:13.0286 3508 C:\Program Files\Quick Heal\Quick Heal Total Security\STRTLIB.DLL - ok
02:14:13.0286 3508 [ 115A28C27F7B65A3252048AAA77059A7 ] C:\Program Files\Quick Heal\Quick Heal Total Security\SACINTFC.DLL
02:14:13.0286 3508 C:\Program Files\Quick Heal\Quick Heal Total Security\SACINTFC.DLL - ok
02:14:13.0296 3508 [ 098B17CDF371F7D6759766B6E1C62A8B ] C:\Program Files\Quick Heal\Quick Heal Total Security\OPSCORE.DLL
02:14:13.0296 3508 C:\Program Files\Quick Heal\Quick Heal Total Security\OPSCORE.DLL - ok
02:14:13.0296 3508 [ 2FF4C1F1E2F23BBDA84197DE779C3FB8 ] C:\Program Files\Quick Heal\Quick Heal Total Security\FNSYSITF.DLL
02:14:13.0296 3508 C:\Program Files\Quick Heal\Quick Heal Total Security\FNSYSITF.DLL - ok
02:14:13.0306 3508 [ A9658831FB91AF680CF2DE51378282AA ] C:\PROGRA~1\QUICKH~1\QUICKH~1\SCANAPI.DLL
02:14:13.0306 3508 C:\PROGRA~1\QUICKH~1\QUICKH~1\SCANAPI.DLL - ok
02:14:13.0306 3508 [ D77CD94EEB5FF5FDBFCDAA1CC70999B6 ] C:\PROGRA~1\QUICKH~1\QUICKH~1\scansdk.dll
02:14:13.0306 3508 C:\PROGRA~1\QUICKH~1\QUICKH~1\scansdk.dll - ok
02:14:13.0316 3508 [ 09DB1E1330630F8A0CE80D42CB4B7C2C ] C:\PROGRA~1\QUICKH~1\QUICKH~1\DISKAPI.DLL
02:14:13.0316 3508 C:\PROGRA~1\QUICKH~1\QUICKH~1\DISKAPI.DLL - ok
02:14:13.0326 3508 [ 1BE4D555DDC53A04881DA4AD6240EE88 ] C:\PROGRA~1\QUICKH~1\QUICKH~1\filesdk.dll
02:14:13.0326 3508 C:\PROGRA~1\QUICKH~1\QUICKH~1\filesdk.dll - ok
02:14:13.0326 3508 [ E0209F5C1B0735ED497FD51D0FBD458E ] C:\PROGRA~1\QUICKH~1\QUICKH~1\platform.dll
02:14:13.0326 3508 C:\PROGRA~1\QUICKH~1\QUICKH~1\platform.dll - ok
02:14:13.0336 3508 [ F3D202F53A222D5F6944D459B73CF967 ] C:\Windows\System32\fltLib.dll
02:14:13.0336 3508 C:\Windows\System32\fltLib.dll - ok
02:14:13.0346 3508 [ 6CEF7856A3EFAC59470F6208F0F585CE ] C:\Windows\System32\mpr.dll
02:14:13.0346 3508 C:\Windows\System32\mpr.dll - ok
02:14:13.0346 3508 [ 1727B2A2F379A32B864C096FA794AADC ] C:\Windows\System32\aepic.dll
02:14:13.0346 3508 C:\Windows\System32\aepic.dll - ok
02:14:13.0356 3508 [ C6DCD1D11ED6827F05C00773C3E7053C ] C:\Windows\System32\sfc.dll
02:14:13.0356 3508 C:\Windows\System32\sfc.dll - ok
02:14:13.0356 3508 [ 895C9AB0A855547445C4181195230757 ] C:\Windows\System32\sfc_os.dll
02:14:13.0356 3508 C:\Windows\System32\sfc_os.dll - ok
02:14:13.0366 3508 [ 8C2BA6BEA949EE6E68385F5692BAFB94 ] C:\Windows\System32\dps.dll
02:14:13.0366 3508 C:\Windows\System32\dps.dll - ok
02:14:13.0366 3508 [ DC57BAF15064ECB79F6D2CCF352E1D88 ] C:\Windows\System32\taskschd.dll
02:14:13.0366 3508 C:\Windows\System32\taskschd.dll - ok
02:14:13.0376 3508 [ 210FCACAF902B2CD47CF9FD17D846146 ] C:\Windows\System32\aeevts.dll
02:14:13.0376 3508 C:\Windows\System32\aeevts.dll - ok
02:14:13.0376 3508 [ C6D332ED6A3BD6060C0F0F5A18C1A3C0 ] C:\Windows\System32\cryptnet.dll
02:14:13.0376 3508 C:\Windows\System32\cryptnet.dll - ok
02:14:13.0386 3508 [ D9A0CE66046D6EFA0C61BAA885CBA0A8 ] C:\Windows\System32\nlasvc.dll
02:14:13.0386 3508 C:\Windows\System32\nlasvc.dll - ok
02:14:13.0386 3508 [ 107F279517E2A04DB4AC1B1FAF1D573B ] C:\Windows\System32\ncsi.dll
02:14:13.0386 3508 C:\Windows\System32\ncsi.dll - ok
02:14:13.0396 3508 [ 0116D56BB15FCAA61F452596C1E08FF4 ] C:\Program Files\Quick Heal\Quick Heal Total Security\GGCITF.DLL
02:14:13.0396 3508 C:\Program Files\Quick Heal\Quick Heal Total Security\GGCITF.DLL - ok
02:14:13.0406 3508 [ 65D66A3A780E327194DAECC573F76D7D ] C:\Program Files\Quick Heal\Quick Heal Total Security\OPSITF.DLL
02:14:13.0406 3508 C:\Program Files\Quick Heal\Quick Heal Total Security\OPSITF.DLL - ok
02:14:13.0406 3508 [ 325F9E00C8A17C1171CB6B1B5B5AFED7 ] C:\PROGRA~1\QUICKH~1\QUICKH~1\scan.dll
02:14:13.0406 3508 C:\PROGRA~1\QUICKH~1\QUICKH~1\scan.dll - ok
02:14:13.0416 3508 [ 3BEC5E229DD4E26D827D0A55F8F5979D ] C:\PROGRA~1\QUICKH~1\QUICKH~1\bootscan.dll
02:14:13.0416 3508 C:\PROGRA~1\QUICKH~1\QUICKH~1\bootscan.dll - ok
02:14:13.0416 3508 [ 2A8B506AB60B03982D8A12990CB21083 ] C:\PROGRA~1\QUICKH~1\QUICKH~1\disasm.dll
02:14:13.0416 3508 C:\PROGRA~1\QUICKH~1\QUICKH~1\disasm.dll - ok
02:14:13.0426 3508 [ 4469DCD7E1BA7BF046EC9E4B303C34F9 ] C:\PROGRA~1\QUICKH~1\QUICKH~1\VIRLIST.DLL
02:14:13.0426 3508 C:\PROGRA~1\QUICKH~1\QUICKH~1\VIRLIST.DLL - ok
02:14:13.0426 3508 [ 4D394B185BD6BBEDF26353FDFDF6268D ] C:\PROGRA~1\QUICKH~1\QUICKH~1\mltiscan.dll
02:14:13.0426 3508 C:\PROGRA~1\QUICKH~1\QUICKH~1\mltiscan.dll - ok
02:14:13.0436 3508 [ 0BF0C2A72F2CB0BA4382C392D3E331AF ] C:\Windows\System32\winhttp.dll
02:14:13.0436 3508 C:\Windows\System32\winhttp.dll - ok
02:14:13.0436 3508 [ 812D175BBBB5C0E30915EDB76B188EFB ] C:\PROGRA~1\QUICKH~1\QUICKH~1\ANPHMAIL.DLL
02:14:13.0436 3508 C:\PROGRA~1\QUICKH~1\QUICKH~1\ANPHMAIL.DLL - ok
02:14:13.0446 3508 [ 68769C3356B3BE5D1C732C97B9A80D6E ] C:\Windows\System32\drivers\PEAuth.sys
02:14:13.0446 3508 C:\Windows\System32\drivers\PEAuth.sys - ok
02:14:13.0456 3508 [ E599148A72888A009A1DC6470BC06794 ] C:\Program Files\Quick Heal\Quick Heal Total Security\QUHLPSVC.EXE
02:14:13.0456 3508 C:\Program Files\Quick Heal\Quick Heal Total Security\QUHLPSVC.EXE - ok
02:14:13.0456 3508 [ 06EEE09F266779687FAA38696857DACC ] C:\Program Files\Quick Heal\Quick Heal Total Security\QUHELPER.DLL
02:14:13.0456 3508 C:\Program Files\Quick Heal\Quick Heal Total Security\QUHELPER.DLL - ok
02:14:13.0466 3508 [ 3239AF9EDE06256DAA3CE77005A736AB ] C:\PROGRA~1\QUICKH~1\QUICKH~1\drvcomm.dll
02:14:13.0466 3508 C:\PROGRA~1\QUICKH~1\QUICKH~1\drvcomm.dll - ok
02:14:13.0466 3508 [ D5A5ED3774C963C62B7B906FB2BB4D16 ] C:\Program Files\Quick Heal\Quick Heal Total Security\UPSDSVC.DLL
02:14:13.0466 3508 C:\Program Files\Quick Heal\Quick Heal Total Security\UPSDSVC.DLL - ok
02:14:13.0476 3508 [ DDE33528F026C9F2E182A54138D42640 ] C:\Program Files\Quick Heal\Quick Heal Total Security\SCANWSCS.EXE
02:14:13.0476 3508 C:\Program Files\Quick Heal\Quick Heal Total Security\SCANWSCS.EXE - ok
02:14:13.0476 3508 [ 3EA8A16169C26AFBEB544E0E48421186 ] C:\Windows\System32\drivers\secdrv.sys
02:14:13.0476 3508 C:\Windows\System32\drivers\secdrv.sys - ok
02:14:13.0486 3508 [ F07AF60B152221472FBDB2FECEC4896D ] C:\Program Files (x86)\Skype\Updater\Updater.exe
02:14:13.0486 3508 C:\Program Files (x86)\Skype\Updater\Updater.exe - ok
02:14:13.0496 3508 [ F15B081D3FA822818018B73954BE39C4 ] C:\PROGRA~1\QUICKH~1\QUICKH~1\pescan.dll
02:14:13.0496 3508 C:\PROGRA~1\QUICKH~1\QUICKH~1\pescan.dll - ok
02:14:13.0496 3508 [ A543AC1F7138376D778D630A35FCBC4C ] C:\Windows\SysWOW64\psapi.dll
02:14:13.0496 3508 C:\Windows\SysWOW64\psapi.dll - ok
02:14:13.0506 3508 [ 9C0DC1DAAD14D443DD5A0D1EE78D775E ] C:\Windows\SysWOW64\userenv.dll
02:14:13.0506 3508 C:\Windows\SysWOW64\userenv.dll - ok
02:14:13.0506 3508 [ 702254574E7E52052DE39408457B7149 ] C:\Windows\SysWOW64\version.dll
02:14:13.0506 3508 C:\Windows\SysWOW64\version.dll - ok
02:14:13.0516 3508 [ E30E5BB0DBA49EFE5BBBAFEA440CFBD9 ] C:\Windows\SysWOW64\wtsapi32.dll
02:14:13.0516 3508 C:\Windows\SysWOW64\wtsapi32.dll - ok
02:14:13.0516 3508 [ F9C9944F80B757F0380EBA4F239C7E2D ] C:\PROGRA~1\QUICKH~1\QUICKH~1\dospoly.dll
02:14:13.0516 3508 C:\PROGRA~1\QUICKH~1\QUICKH~1\dospoly.dll - ok
02:14:13.0526 3508 [ 0AF6E19D39C70844C5CAA8FB0183C36E ] C:\Windows\System32\drivers\srvnet.sys
02:14:13.0526 3508 C:\Windows\System32\drivers\srvnet.sys - ok
02:14:13.0536 3508 [ 5552C4A8AA318C57A6035BE0F5722FA2 ] C:\PROGRA~1\QUICKH~1\QUICKH~1\pepoly.dll
02:14:13.0536 3508 C:\PROGRA~1\QUICKH~1\QUICKH~1\pepoly.dll - ok
02:14:13.0536 3508 [ 52D0E33B681BD0F33FDC08812FEE4F7D ] C:\Windows\System32\wiaservc.dll
02:14:13.0536 3508 C:\Windows\System32\wiaservc.dll - ok
02:14:13.0546 3508 [ 76D078AF6F587B162D50210F761EB9ED ] C:\Windows\System32\drivers\tcpipreg.sys
02:14:13.0546 3508 C:\Windows\System32\drivers\tcpipreg.sys - ok
02:14:13.0546 3508 [ 3C1284516A62078FB68F768DE4F1A7BE ] C:\Windows\System32\sysmain.dll
02:14:13.0546 3508 C:\Windows\System32\sysmain.dll - ok
02:14:13.0556 3508 [ 0364256B4A2A93A8C8CDA6B3B5A0EFF5 ] C:\Windows\System32\wiatrace.dll
02:14:13.0556 3508 C:\Windows\System32\wiatrace.dll - ok
02:14:13.0556 3508 [ 04459C37D7C6D989980C9CD66B24A19B ] C:\PROGRA~1\QUICKH~1\QUICKH~1\arcvsdk.dll
02:14:13.0556 3508 C:\PROGRA~1\QUICKH~1\QUICKH~1\arcvsdk.dll - ok
02:14:13.0566 3508 [ 733369BB05858922E9428EA34F48C7CB ] C:\PROGRA~1\QUICKH~1\QUICKH~1\OLESDK.DLL
02:14:13.0566 3508 C:\PROGRA~1\QUICKH~1\QUICKH~1\OLESDK.DLL - ok
02:14:13.0576 3508 [ 2196CDBFA4B99BEEDAE300FA21DFE718 ] C:\Windows\System32\webio.dll
02:14:13.0576 3508 C:\Windows\System32\webio.dll - ok
02:14:13.0576 3508 [ A261AD1FDC6D6A658A82B81AF81B215F ] C:\Windows\System32\vssapi.dll
02:14:13.0576 3508 C:\Windows\System32\vssapi.dll - ok
02:14:13.0586 3508 [ 7E7AFD841694F6AC397E99D75CEAD49D ] C:\Windows\System32\trkwks.dll
02:14:13.0586 3508 C:\Windows\System32\trkwks.dll - ok
02:14:13.0586 3508 [ 76548F7B818881B47D8D1AE1BE9C11F8 ] C:\Windows\System32\drivers\srv2.sys
02:14:13.0586 3508 C:\Windows\System32\drivers\srv2.sys - ok
02:14:13.0596 3508 [ 19B07E7E8915D701225DA41CB3877306 ] C:\Windows\System32\wbem\WMIsvc.dll
02:14:13.0596 3508 C:\Windows\System32\wbem\WMIsvc.dll - ok
02:14:13.0596 3508 [ 2408C0366D96BCDF63E8F1C78E4A29C5 ] C:\Windows\System32\drivers\srv.sys
02:14:13.0596 3508 C:\Windows\System32\drivers\srv.sys - ok
02:14:13.0606 3508 [ FAF9BA81FB0543CB4B7EFFD24CFA815F ] C:\Windows\System32\wbemcomn.dll
02:14:13.0606 3508 C:\Windows\System32\wbemcomn.dll - ok
02:14:13.0616 3508 [ 89C6263C3F1D0945A7534D7B66D9F2E1 ] C:\PROGRA~1\QUICKH~1\QUICKH~1\vbsscan.dll
02:14:13.0616 3508 C:\PROGRA~1\QUICKH~1\QUICKH~1\vbsscan.dll - ok
02:14:13.0616 3508 [ CCB73EF7E72E55C7BD63DC46FC3663A0 ] C:\PROGRA~1\QUICKH~1\QUICKH~1\wormscan.dll
02:14:13.0616 3508 C:\PROGRA~1\QUICKH~1\QUICKH~1\wormscan.dll - ok
02:14:13.0626 3508 [ F8E058D17363EC580E4B7232778B6CB5 ] C:\Windows\System32\iphlpsvc.dll
02:14:13.0626 3508 C:\Windows\System32\iphlpsvc.dll - ok
02:14:13.0626 3508 [ A7582A70802D5B9F28ED3940F6A3E9ED ] C:\Windows\System32\wbem\WmiDcPrv.dll
02:14:13.0626 3508 C:\Windows\System32\wbem\WmiDcPrv.dll - ok
02:14:13.0636 3508 [ A3F5E8EC1316C3E2562B82694A251C9E ] C:\Windows\System32\wbem\fastprox.dll
02:14:13.0636 3508 C:\Windows\System32\wbem\fastprox.dll - ok
02:14:13.0636 3508 [ 9C04115ECA8904CFD014033CECD8CCCF ] C:\PROGRA~1\QUICKH~1\QUICKH~1\bkdrscan.dll
02:14:13.0636 3508 C:\PROGRA~1\QUICKH~1\QUICKH~1\bkdrscan.dll - ok
02:14:13.0646 3508 [ 287923557447D7E4BDD7E65B1F0F5428 ] C:\Windows\System32\vsstrace.dll
02:14:13.0646 3508 C:\Windows\System32\vsstrace.dll - ok
02:14:13.0646 3508 [ 0F05EC2887BFE197AD82A13287D2F404 ] C:\Windows\System32\termsrv.dll
02:14:13.0646 3508 C:\Windows\System32\termsrv.dll - ok
02:14:13.0656 3508 [ 48A6CA43A5C921C465F70D9B42B3EF1A ] C:\Windows\System32\sqmapi.dll
02:14:13.0656 3508 C:\Windows\System32\sqmapi.dll - ok
02:14:13.0656 3508 [ 7E236CC26FF0C2513819FA453E2C5371 ] C:\Windows\System32\icaapi.dll
02:14:13.0666 3508 C:\Windows\System32\icaapi.dll - ok
02:14:13.0666 3508 [ EE26D130808D16C0E417BBBED0451B34 ] C:\Windows\System32\ntdsapi.dll
02:14:13.0666 3508 C:\Windows\System32\ntdsapi.dll - ok
02:14:13.0666 3508 [ 2BBF3FDB70B8965DFA0258CBAB41ECCE ] C:\Windows\System32\ssdpapi.dll
02:14:13.0666 3508 C:\Windows\System32\ssdpapi.dll - ok
02:14:13.0676 3508 [ 7B38D7916A7CD058C16A0A6CA5077901 ] C:\Windows\System32\wdscore.dll
02:14:13.0676 3508 C:\Windows\System32\wdscore.dll - ok
02:14:13.0686 3508 [ 666A60F6F5E719856FF6254E0966EFF7 ] C:\Windows\System32\wbem\wbemprox.dll
02:14:13.0686 3508 C:\Windows\System32\wbem\wbemprox.dll - ok
02:14:13.0686 3508 [ 81F1D04D4D0E433099365127375FD501 ] C:\Windows\System32\srvsvc.dll
02:14:13.0686 3508 C:\Windows\System32\srvsvc.dll - ok
02:14:13.0696 3508 [ 6B054C67AAA87843504E8E3C09102009 ] C:\Windows\System32\browser.dll
02:14:13.0696 3508 C:\Windows\System32\browser.dll - ok
02:14:13.0696 3508 [ CFEFA40DDE34659BE5211966EAD86437 ] C:\Windows\System32\netmsg.dll
02:14:13.0696 3508 C:\Windows\System32\netmsg.dll - ok
02:14:13.0706 3508 [ 836892094209E5D9CF403B4CF2829B5C ] C:\Windows\System32\sscore.dll
02:14:13.0706 3508 C:\Windows\System32\sscore.dll - ok
02:14:13.0706 3508 [ 4EAE37133B78A26A84EA1649D9B21A1E ] C:\Windows\System32\clusapi.dll
02:14:13.0706 3508 C:\Windows\System32\clusapi.dll - ok
02:14:13.0716 3508 [ 344FCC9850C3A8A3B4D3C65151AF8E4C ] C:\Windows\System32\resutils.dll
02:14:13.0716 3508 C:\Windows\System32\resutils.dll - ok
02:14:13.0716 3508 [ 6E03C9E362389A768E6C240933352D11 ] C:\Windows\System32\nci.dll
02:14:13.0716 3508 C:\Windows\System32\nci.dll - ok
02:14:13.0726 3508 [ 0255C22D99602534F15CBB8D9B6F152F ] C:\Windows\System32\wbem\WinMgmtR.dll
02:14:13.0726 3508 C:\Windows\System32\wbem\WinMgmtR.dll - ok
02:14:13.0736 3508 [ 3B9665D4B8C587A6014B9B8DFF5974A0 ] C:\Windows\System32\wbem\wbemcore.dll
02:14:13.0736 3508 C:\Windows\System32\wbem\wbemcore.dll - ok
02:14:13.0736 3508 [ 087D8668C71634A3A3761135ABF16EEE ] C:\Windows\System32\wbem\esscli.dll
02:14:13.0736 3508 C:\Windows\System32\wbem\esscli.dll - ok
02:14:13.0746 3508 [ 3B367397320C26DBA890B260F80D1B1B ] C:\Windows\System32\hnetcfg.dll
02:14:13.0746 3508 C:\Windows\System32\hnetcfg.dll - ok
02:14:13.0746 3508 [ 718B6F51AB7F6FE2988A36868F9AD3AB ] C:\Windows\System32\wbem\wbemsvc.dll
02:14:13.0746 3508 C:\Windows\System32\wbem\wbemsvc.dll - ok
02:14:13.0756 3508 [ 0143DB80DACFB7C2B5B7009ED9063353 ] C:\Windows\System32\wbem\wmiutils.dll
02:14:13.0756 3508 C:\Windows\System32\wbem\wmiutils.dll - ok
02:14:13.0766 3508 [ 0AB34456654C283DAA13B8D2BA21439B ] C:\Windows\System32\wbem\repdrvfs.dll
02:14:13.0766 3508 C:\Windows\System32\wbem\repdrvfs.dll - ok
02:14:13.0766 3508 [ C8A2FA2EE9241B8D66F9D7DE9AE34AEE ] C:\Program Files\Bonjour\mdnsNSP.dll
02:14:13.0766 3508 C:\Program Files\Bonjour\mdnsNSP.dll - ok
02:14:13.0776 3508 [ 88351B29B622B30962D2FEB6CA8D860B ] C:\Windows\System32\rasadhlp.dll
02:14:13.0776 3508 C:\Windows\System32\rasadhlp.dll - ok
02:14:13.0776 3508 [ 82BC97E5793DEF69691AAD5AB953A200 ] C:\Windows\System32\wbem\WmiPrvSD.dll
02:14:13.0776 3508 C:\Windows\System32\wbem\WmiPrvSD.dll - ok
02:14:13.0786 3508 [ D41FEBD098234F02485A4EA98D4730A4 ] C:\Windows\System32\ncobjapi.dll
02:14:13.0786 3508 C:\Windows\System32\ncobjapi.dll - ok
02:14:13.0786 3508 [ 6F40D6FB05E0C1E5402812B426971AF0 ] C:\Windows\System32\wbem\wbemess.dll
02:14:13.0786 3508 C:\Windows\System32\wbem\wbemess.dll - ok
02:14:13.0796 3508 [ 79AFFC7FEEA9CD2FEFEA5EF3B631A02C ] C:\Windows\System32\ndiscapCfg.dll
02:14:13.0796 3508 C:\Windows\System32\ndiscapCfg.dll - ok
02:14:13.0806 3508 [ 3D6AF45673C4B31CDECD7F80AF09D443 ] C:\Windows\System32\rascfg.dll
02:14:13.0806 3508 C:\Windows\System32\rascfg.dll - ok
02:14:13.0806 3508 [ 114429A77D935053E13A9BF98A8B8CA1 ] C:\Windows\System32\mprapi.dll
02:14:13.0806 3508 C:\Windows\System32\mprapi.dll - ok
02:14:13.0816 3508 [ 1CF21800E337F4039AAD4C94B4280EE4 ] C:\Windows\System32\mprmsg.dll
02:14:13.0816 3508 C:\Windows\System32\mprmsg.dll - ok
02:14:13.0816 3508 [ 1FCD619D8542A248D4E1FF72FFB0E56B ] C:\Windows\System32\tcpipcfg.dll
02:14:13.0816 3508 C:\Windows\System32\tcpipcfg.dll - ok
02:14:13.0826 3508 [ A8EDB86FC2A4D6D1285E4C70384AC35A ] C:\Windows\System32\dllhost.exe
02:14:13.0826 3508 C:\Windows\System32\dllhost.exe - ok
02:14:13.0826 3508 [ BC052EFAD10ACA1AD69545B629F50D99 ] C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7600.16661_none_a44e1fc257f685f6\comctl32.dll
02:14:13.0826 3508 C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7600.16661_none_a44e1fc257f685f6\comctl32.dll - ok
02:14:13.0836 3508 [ A0A2C1D812C231C9BFE119FDC68E341B ] C:\Windows\System32\IDStore.dll
02:14:13.0836 3508 C:\Windows\System32\IDStore.dll - ok
02:14:13.0836 3508 [ 3EEFB971D61EF9638FD21F14C703CA11 ] C:\Windows\System32\taskhost.exe
02:14:13.0836 3508 C:\Windows\System32\taskhost.exe - ok
02:14:13.0846 3508 [ 23566F9723771108D2E6CD768AC27407 ] C:\Windows\System32\AtBroker.exe
02:14:13.0846 3508 C:\Windows\System32\AtBroker.exe - ok
02:14:13.0856 3508 [ 60CAE1FA4888ED41B41AEE91C774E4A2 ] C:\Windows\System32\taskeng.exe
02:14:13.0856 3508 C:\Windows\System32\taskeng.exe - ok
02:14:13.0856 3508 [ 6F8F1376A13114CC10C0E69274F5A4DE ] C:\Windows\System32\userinit.exe
02:14:13.0856 3508 C:\Windows\System32\userinit.exe - ok
02:14:13.0866 3508 [ 8CFACC72081C21519676BF4AAA1A88A9 ] C:\Windows\System32\localspl.dll
02:14:13.0866 3508 C:\Windows\System32\localspl.dll - ok
02:14:13.0876 3508 [ 3285481F5C12305CA104A6C493CA5A0B ] C:\Windows\System32\spoolss.dll
02:14:13.0876 3508 C:\Windows\System32\spoolss.dll - ok
02:14:13.0876 3508 [ 20BEB8C403C6E28C9B13644787F5177D ] C:\Windows\System32\FXSMON.dll
02:14:13.0876 3508 C:\Windows\System32\FXSMON.dll - ok
02:14:13.0886 3508 [ 33CC7FFA41F6157592E1578BD253F30E ] C:\Windows\System32\PrintIsolationProxy.dll
02:14:13.0886 3508 C:\Windows\System32\PrintIsolationProxy.dll - ok
02:14:13.0886 3508 [ 32A3C8600AF124CBAAD845F13CFAE3CB ] C:\Windows\System32\tcpmon.dll
02:14:13.0886 3508 C:\Windows\System32\tcpmon.dll - ok
02:14:13.0896 3508 [ 93518C6EDE0B61BCBD02BDB02BD05FEE ] C:\Windows\System32\snmpapi.dll
02:14:13.0896 3508 C:\Windows\System32\snmpapi.dll - ok
02:14:13.0896 3508 [ AD7C70077D4C81558E909D34EF6B995E ] C:\Windows\System32\wsnmp32.dll
02:14:13.0896 3508 C:\Windows\System32\wsnmp32.dll - ok
02:14:13.0906 3508 [ DF72A9936D0C3F517083119648814B09 ] C:\Windows\System32\usbmon.dll
02:14:13.0906 3508 C:\Windows\System32\usbmon.dll - ok
02:14:13.0906 3508 [ A1D7E3ADCDB07DDB6F423862DCB1A52B ] C:\Windows\System32\WSDMon.dll
02:14:13.0906 3508 C:\Windows\System32\WSDMon.dll - ok
02:14:13.0916 3508 [ 05FE4A30177E858B51F5E1E970FE9925 ] C:\Windows\System32\WSDApi.dll
02:14:13.0916 3508 C:\Windows\System32\WSDApi.dll - ok
02:14:13.0916 3508 [ A3EA403D2B74C5F71B7E8B3DAE92DE1E ] C:\Windows\System32\webservices.dll
02:14:13.0916 3508 C:\Windows\System32\webservices.dll - ok
02:14:13.0926 3508 [ B5055B51BAA0FD0A736A88653DA3C1C0 ] C:\Windows\System32\fundisc.dll
02:14:13.0926 3508 C:\Windows\System32\fundisc.dll - ok
02:14:13.0926 3508 [ 4581716B4BF76ACFD8E167EB0B26D82A ] C:\Windows\System32\fdPnp.dll
02:14:13.0926 3508 C:\Windows\System32\fdPnp.dll - ok
02:14:13.0936 3508 [ 7EDB2BF840ECB14D6E6B11C035708719 ] C:\Windows\System32\spool\prtprocs\x64\winprint.dll
02:14:13.0936 3508 C:\Windows\System32\spool\prtprocs\x64\winprint.dll - ok
02:14:13.0946 3508 [ 2332BACC2AB09119A14637DE0CB30147 ] C:\Windows\System32\win32spl.dll
02:14:13.0946 3508 C:\Windows\System32\win32spl.dll - ok
02:14:13.0946 3508 [ 17EAB1AEA937EFFCD107EFBA94FEDB34 ] C:\Windows\System32\inetpp.dll
02:14:13.0946 3508 C:\Windows\System32\inetpp.dll - ok
02:14:13.0956 3508 [ BFEBE1E4B301F44CEA7C1B4021BD0264 ] C:\Windows\System32\cscapi.dll
02:14:13.0956 3508 C:\Windows\System32\cscapi.dll - ok
02:14:13.0966 3508 [ F162D5F5E845B9DC352DD1BAD8CEF1BC ] C:\Windows\System32\dwm.exe
02:14:13.0966 3508 C:\Windows\System32\dwm.exe - ok
02:14:13.0966 3508 [ 805A52C5AE26C28E88FDD9BCCFE6F312 ] C:\Windows\System32\TSChannel.dll
02:14:13.0966 3508 C:\Windows\System32\TSChannel.dll - ok
02:14:13.0976 3508 [ F02A533F517EB38333CB12A9E8963773 ] C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
02:14:13.0976 3508 C:\Program Files (x86)\Google\Update\GoogleUpdate.exe - ok
02:14:13.0976 3508 [ 0862495E0C825893DB75EF44FAEA8E93 ] C:\Windows\explorer.exe
02:14:13.0976 3508 C:\Windows\explorer.exe - ok
02:14:13.0986 3508 [ 94EEAC26F57811BD1AEFC164412F7FCE ] C:\Windows\System32\PlaySndSrv.dll
02:14:13.0986 3508 C:\Windows\System32\PlaySndSrv.dll - ok
02:14:13.0986 3508 [ 7F37322A489E285CFBCC02F6A53B3F1B ] C:\Windows\System32\HotStartUserAgent.dll
02:14:13.0986 3508 C:\Windows\System32\HotStartUserAgent.dll - ok
02:14:13.0996 3508 [ 1F1CA9E99DD5BF918BE0BF30B5A42FDA ] C:\Windows\System32\MsCtfMonitor.dll
02:14:13.0996 3508 C:\Windows\System32\MsCtfMonitor.dll - ok
02:14:14.0006 3508 [ F09A9A1AD21FE618C4C8B0A0D830C886 ] C:\Windows\System32\msutb.dll
02:14:14.0006 3508 C:\Windows\System32\msutb.dll - ok
02:14:14.0006 3508 [ 9FF47CD8A3787C8FD3CDFE40441C722E ] C:\Program Files (x86)\Google\Update\1.3.21.123\goopdate.dll
02:14:14.0006 3508 C:\Program Files (x86)\Google\Update\1.3.21.123\goopdate.dll - ok
02:14:14.0016 3508 [ EF184066A851E7838D5BF8C8FAE66CC4 ] C:\Windows\System32\dwmredir.dll
02:14:14.0016 3508 C:\Windows\System32\dwmredir.dll - ok
02:14:14.0016 3508 [ 1C27E145EC99F20BC1B13FD98165A83F ] C:\Windows\System32\ExplorerFrame.dll
02:14:14.0016 3508 C:\Windows\System32\ExplorerFrame.dll - ok
02:14:14.0026 3508 [ 6095266CAAF5E75F394CFD4844CC4C25 ] C:\Windows\SysWOW64\IPHLPAPI.DLL
02:14:14.0026 3508 C:\Windows\SysWOW64\IPHLPAPI.DLL - ok
02:14:14.0026 3508 [ CFF35B879D1618D42C86644C717BA947 ] C:\Windows\SysWOW64\winnsi.dll
02:14:14.0026 3508 C:\Windows\SysWOW64\winnsi.dll - ok
02:14:14.0036 3508 [ 9D8AB964CE511AF81207DF0E1205184C ] C:\Windows\System32\dwmcore.dll
02:14:14.0036 3508 C:\Windows\System32\dwmcore.dll - ok
02:14:14.0046 3508 [ 5DE691884C240227B733CC18BBFCA3D8 ] C:\Windows\SysWOW64\netapi32.dll
02:14:14.0046 3508 C:\Windows\SysWOW64\netapi32.dll - ok
02:14:14.0046 3508 [ C6BB27D9A8AC13D4A44486F528B5C884 ] C:\Windows\SysWOW64\netutils.dll
02:14:14.0046 3508 C:\Windows\SysWOW64\netutils.dll - ok
02:14:14.0056 3508 [ 89D840773C9C4358A5031DCC860449EC ] C:\Windows\SysWOW64\srvcli.dll
02:14:14.0056 3508 C:\Windows\SysWOW64\srvcli.dll - ok
02:14:14.0056 3508 [ 7AD12703039056D2A0815F85960E1FA1 ] C:\Windows\SysWOW64\wkscli.dll
02:14:14.0056 3508 C:\Windows\SysWOW64\wkscli.dll - ok
02:14:14.0066 3508 [ 4B8DD8541C0E26602005DD0137333615 ] C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_420fe3fa2b8113bd\comctl32.dll
02:14:14.0066 3508 C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_420fe3fa2b8113bd\comctl32.dll - ok
02:14:14.0066 3508 [ 58A0C212ED2ABE462B3A9626F5B96261 ] C:\Windows\System32\d3d10_1.dll
02:14:14.0066 3508 C:\Windows\System32\d3d10_1.dll - ok
02:14:14.0076 3508 [ AFBBC34687FA48A4928B99AF097C1EC0 ] C:\Windows\System32\d3d10_1core.dll
02:14:14.0076 3508 C:\Windows\System32\d3d10_1core.dll - ok
02:14:14.0086 3508 [ D95DB5C915C001F78709C17285109BDC ] C:\Windows\System32\dxgi.dll
02:14:14.0086 3508 C:\Windows\System32\dxgi.dll - ok
02:14:14.0086 3508 [ 97CCB4D737B426B200E5EF90C877DF32 ] C:\Windows\SysWOW64\imagehlp.dll
02:14:14.0086 3508 C:\Windows\SysWOW64\imagehlp.dll - ok
02:14:14.0096 3508 [ F1317678AC2FBA9F640279290B2E2988 ] C:\Windows\SysWOW64\msi.dll
02:14:14.0096 3508 C:\Windows\SysWOW64\msi.dll - ok
02:14:14.0096 3508 [ D8F0E941B1E35DEEE3EDF6DF45517607 ] C:\Windows\System32\igd10umd64.dll
02:14:14.0096 3508 C:\Windows\System32\igd10umd64.dll - ok
02:14:14.0106 3508 [ 024352FEEC9042260BB4CFB4D79A206B ] C:\Windows\System32\EhStorShell.dll
02:14:14.0106 3508 C:\Windows\System32\EhStorShell.dll - ok
02:14:14.0106 3508 [ 5F917AEEEA363B8A5DC8624795CB1D60 ] C:\Windows\System32\ntshrui.dll
02:14:14.0106 3508 C:\Windows\System32\ntshrui.dll - ok
02:14:14.0116 3508 [ 1D63F4366288B8A7595397E27010FD44 ] C:\Windows\System32\IconCodecService.dll
02:14:14.0116 3508 C:\Windows\System32\IconCodecService.dll - ok
02:14:14.0126 3508 [ 49E5753D923F1AC63B22D3DCB0B47E00 ] C:\Windows\System32\uDWM.dll
02:14:14.0126 3508 C:\Windows\System32\uDWM.dll - ok
02:14:14.0126 3508 [ ADD9D33D685DFADDFAD5AFB42CF31A70 ] C:\Windows\SysWOW64\cscapi.dll
02:14:14.0126 3508 C:\Windows\SysWOW64\cscapi.dll - ok
02:14:14.0136 3508 [ 3FD15B4611D9BDA3F8013548C0ECAECA ] C:\Windows\SysWOW64\ntmarta.dll
02:14:14.0136 3508 C:\Windows\SysWOW64\ntmarta.dll - ok
02:14:14.0146 3508 [ BFA70A99AD1434263F2DFBBA103BDEF8 ] C:\Windows\SysWOW64\Wldap32.dll
02:14:14.0146 3508 C:\Windows\SysWOW64\Wldap32.dll - ok
02:14:14.0146 3508 [ 79C7CFAEA6879A8C1A1E8B5FFE8983AA ] C:\Windows\SysWOW64\dbghelp.dll
02:14:14.0146 3508 C:\Windows\SysWOW64\dbghelp.dll - ok
02:14:14.0156 3508 [ C02E3CE20E7776C922B5C8938350B5F1 ] C:\Windows\SysWOW64\apphelp.dll
02:14:14.0156 3508 C:\Windows\SysWOW64\apphelp.dll - ok
02:14:14.0156 3508 [ AE5A69F44C1F97EDC83237FC0B29B6FB ] C:\Program Files (x86)\Google\Update\1.3.21.123\GoogleCrashHandler.exe
02:14:14.0156 3508 C:\Program Files (x86)\Google\Update\1.3.21.123\GoogleCrashHandler.exe - ok
02:14:14.0166 3508 [ 41938F2C1642459CBBA691B5DBD6395A ] C:\Program Files (x86)\Google\Update\1.3.21.123\GoogleCrashHandler64.exe
02:14:14.0166 3508 C:\Program Files (x86)\Google\Update\1.3.21.123\GoogleCrashHandler64.exe - ok
02:14:14.0166 3508 [ 0089563F324FA784DA849D6A636141E0 ] C:\Windows\SysWOW64\mstask.dll
02:14:14.0166 3508 C:\Windows\SysWOW64\mstask.dll - ok
02:14:14.0176 3508 [ A74316B5C28D94AF0825267D8715549F ] C:\Windows\System32\dbghelp.dll
02:14:14.0176 3508 C:\Windows\System32\dbghelp.dll - ok
02:14:14.0176 3508 [ FE0CA9311C897F4FFFA34BDF73A30495 ] C:\PROGRA~1\QUICKH~1\QUICKH~1\macrinfo.dll
02:14:14.0176 3508 C:\PROGRA~1\QUICKH~1\QUICKH~1\macrinfo.dll - ok
02:14:14.0186 3508 [ D2A5AD55E1BC16DE3B6A5D3FB913B2D3 ] C:\PROGRA~1\QUICKH~1\QUICKH~1\macscan.dll
02:14:14.0186 3508 C:\PROGRA~1\QUICKH~1\QUICKH~1\macscan.dll - ok
02:14:14.0196 3508 [ 8489D894F28C0AFDF92BF639857D6941 ] C:\PROGRA~1\QUICKH~1\QUICKH~1\miscscan.dll
02:14:14.0196 3508 C:\PROGRA~1\QUICKH~1\QUICKH~1\miscscan.dll - ok
02:14:14.0196 3508 [ 38535BBF631BDD297C469486345E74B2 ] C:\PROGRA~1\QUICKH~1\QUICKH~1\heurscan.dll
02:14:14.0196 3508 C:\PROGRA~1\QUICKH~1\QUICKH~1\heurscan.dll - ok
02:14:14.0206 3508 [ E7BF35AB29D2BF66EEC2F6B4E8B873A9 ] C:\PROGRA~1\QUICKH~1\QUICKH~1\pckrscan.dll
02:14:14.0206 3508 C:\PROGRA~1\QUICKH~1\QUICKH~1\pckrscan.dll - ok
02:14:14.0206 3508 [ 60521063AE2C0659930A051E894BCAE5 ] C:\PROGRA~1\QUICKH~1\QUICKH~1\lzesdk.dll
02:14:14.0206 3508 C:\PROGRA~1\QUICKH~1\QUICKH~1\lzesdk.dll - ok
02:14:14.0216 3508 [ 41DB0792547739E4F74F4F6A15C68CC7 ] C:\PROGRA~1\QUICKH~1\QUICKH~1\ARJSDK.DLL
02:14:14.0216 3508 C:\PROGRA~1\QUICKH~1\QUICKH~1\ARJSDK.DLL - ok
02:14:14.0216 3508 [ FF5745EAE0872DA7DE68569DE133BC06 ] C:\PROGRA~1\QUICKH~1\QUICKH~1\rarsdk.dll
02:14:14.0216 3508 C:\PROGRA~1\QUICKH~1\QUICKH~1\rarsdk.dll - ok
02:14:14.0226 3508 [ F5375D664B95E299DB288ACD28713326 ] C:\PROGRA~1\QUICKH~1\QUICKH~1\UNARJ32.DLL
02:14:14.0226 3508 C:\PROGRA~1\QUICKH~1\QUICKH~1\UNARJ32.DLL - ok
02:14:14.0226 3508 [ 0CEE245011164925B41ABFAFB245A4ED ] C:\Program Files\Quick Heal\Quick Heal Total Security\QUARFUN.DLL
02:14:14.0226 3508 C:\Program Files\Quick Heal\Quick Heal Total Security\QUARFUN.DLL - ok
02:14:14.0236 3508 [ BA6578ED2007BC3FD0805CD468FFFDF3 ] C:\Program Files\Quick Heal\Quick Heal Total Security\LOGFUN.DLL
02:14:14.0236 3508 C:\Program Files\Quick Heal\Quick Heal Total Security\LOGFUN.DLL - ok
02:14:14.0246 3508 [ AC74EFC8005D27A83334619784F01003 ] C:\Program Files\Quick Heal\Quick Heal Total Security\SCANEXL.DLL
02:14:14.0246 3508 C:\Program Files\Quick Heal\Quick Heal Total Security\SCANEXL.DLL - ok
02:14:14.0246 3508 [ 47CC468922624F7DD1EE66331FD3D2F9 ] C:\Program Files\Quick Heal\Quick Heal Total Security\CTRLLIB.DLL
02:14:14.0246 3508 C:\Program Files\Quick Heal\Quick Heal Total Security\CTRLLIB.DLL - ok
02:14:14.0256 3508 [ CE3F5FB670CC7DC8AB606CA7CC1C9BB5 ] C:\Program Files\Quick Heal\Quick Heal Total Security\MODSTAT.DLL
02:14:14.0256 3508 C:\Program Files\Quick Heal\Quick Heal Total Security\MODSTAT.DLL - ok
02:14:14.0256 3508 [ D81B9487C0F18A46316B50BF2E2A75F0 ] C:\Program Files\Quick Heal\Quick Heal Total Security\webcat.dll
02:14:14.0256 3508 C:\Program Files\Quick Heal\Quick Heal Total Security\webcat.dll - ok
02:14:14.0266 3508 [ 52BBD0E905E886413A9E6FBDDE8612D8 ] C:\Program Files\Quick Heal\Quick Heal Total Security\MFC90U.DLL
02:14:14.0266 3508 C:\Program Files\Quick Heal\Quick Heal Total Security\MFC90U.DLL - ok
02:14:14.0276 3508 [ CF3D0B1B2D3902552046D1BA797166B0 ] C:\Program Files\Quick Heal\Quick Heal Total Security\DPOPTS.DLL
02:14:14.0276 3508 C:\Program Files\Quick Heal\Quick Heal Total Security\DPOPTS.DLL - ok
02:14:14.0276 3508 [ BF1FC3F79B863C914687A737C2F3D681 ] C:\Windows\System32\wdi.dll
02:14:14.0276 3508 C:\Windows\System32\wdi.dll - ok
02:14:14.0286 3508 [ D065BE66822847B7F127D1F90158376E ] C:\Windows\System32\appinfo.dll
02:14:14.0286 3508 C:\Windows\System32\appinfo.dll - ok
02:14:14.0286 3508 [ 2E57DDF2880A7E52E76F41C7E96D327B ] C:\Windows\System32\wpdbusenum.dll
02:14:14.0286 3508 C:\Windows\System32\wpdbusenum.dll - ok
02:14:14.0296 3508 [ BF4AC709BE5BF64F331F5D67773A0C82 ] C:\Windows\System32\perftrack.dll
02:14:14.0296 3508 C:\Windows\System32\perftrack.dll - ok
02:14:14.0296 3508 [ D891293880F2F00AB7BA959910300EF7 ] C:\Windows\System32\diagperf.dll
02:14:14.0296 3508 C:\Windows\System32\diagperf.dll - ok
02:14:14.0306 3508 [ E1B22739C933BE33F53DB58C5393ADD3 ] C:\Windows\System32\Apphlpdm.dll
02:14:14.0306 3508 C:\Windows\System32\Apphlpdm.dll - ok
02:14:14.0306 3508 [ 9689A9C7F7C2A1A423CDA2C3B43FFF65 ] C:\Windows\System32\wer.dll
02:14:14.0316 3508 C:\Windows\System32\wer.dll - ok
02:14:14.0316 3508 [ 5DA7D8934F7AB0884A6A8FC02E8B2AA7 ] C:\Windows\System32\PortableDeviceApi.dll
02:14:14.0316 3508 C:\Windows\System32\PortableDeviceApi.dll - ok
02:14:14.0326 3508 [ F7073C962C4FB7C415565DDE109DE49F ] C:\Windows\System32\npmproxy.dll
02:14:14.0326 3508 C:\Windows\System32\npmproxy.dll - ok
02:14:14.0326 3508 [ 9719E3D834F5C8C43F56A93DFA497023 ] C:\Windows\System32\pnpts.dll
02:14:14.0326 3508 C:\Windows\System32\pnpts.dll - ok
02:14:14.0336 3508 [ 65AF044B5570D355124DCD1E099AA98F ] C:\Windows\System32\wdiasqmmodule.dll
02:14:14.0336 3508 C:\Windows\System32\wdiasqmmodule.dll - ok
02:14:14.0336 3508 [ 46863C4CC5B68EB09EA2D5EEF0F1193A ] C:\Windows\System32\radardt.dll
02:14:14.0336 3508 C:\Windows\System32\radardt.dll - ok
02:14:14.0346 3508 [ AFA79C343F9D1555F7E5D5FA70BB2A14 ] C:\Windows\System32\PortableDeviceConnectApi.dll
02:14:14.0346 3508 C:\Windows\System32\PortableDeviceConnectApi.dll - ok
02:14:14.0356 3508 [ 04EF3AB1061D3EF50AAD51FBABAF04CF ] C:\Program Files\Quick Heal\Quick Heal Total Security\asapsdk.dll
02:14:14.0356 3508 C:\Program Files\Quick Heal\Quick Heal Total Security\asapsdk.dll - ok
02:14:14.0356 3508 [ 3989BB6998C32753FDD5493879C1835A ] C:\Windows\SysWOW64\ncrypt.dll
02:14:14.0356 3508 C:\Windows\SysWOW64\ncrypt.dll - ok
02:14:14.0366 3508 [ CE71B9119A258EDD0A05B37D7B0F92E3 ] C:\Windows\SysWOW64\bcrypt.dll
02:14:14.0366 3508 C:\Windows\SysWOW64\bcrypt.dll - ok
02:14:14.0366 3508 [ E8449FE262D7406BCB2AC2A45C53EC5F ] C:\Windows\SysWOW64\bcryptprimitives.dll
02:14:14.0366 3508 C:\Windows\SysWOW64\bcryptprimitives.dll - ok
02:14:14.0376 3508 [ 1097F3035BAF46CED8B332B3564C5108 ] C:\Windows\SysWOW64\gpapi.dll
02:14:14.0376 3508 C:\Windows\SysWOW64\gpapi.dll - ok
02:14:14.0386 3508 [ 506C4E1324ABE11CEC172569F5DDAB06 ] C:\Windows\SysWOW64\cryptnet.dll
02:14:14.0386 3508 C:\Windows\SysWOW64\cryptnet.dll - ok
02:14:14.0386 3508 [ BF591B5C2CC38314518467E883AE37C5 ] C:\Windows\SysWOW64\credssp.dll
02:14:14.0386 3508 C:\Windows\SysWOW64\credssp.dll - ok
02:14:14.0396 3508 [ 11A41F17527ED75D6B758FDD7F4FD00D ] C:\Windows\SysWOW64\mswsock.dll
02:14:14.0396 3508 C:\Windows\SysWOW64\mswsock.dll - ok
02:14:14.0396 3508 [ 6AB6D4DF10EC784CF4A66CBFAF417A11 ] C:\Windows\System32\runonce.exe
02:14:14.0396 3508 C:\Windows\System32\runonce.exe - ok
02:14:14.0406 3508 [ EE5C8E27C37B79CB54A2FCEEED2DC262 ] C:\Windows\SysWOW64\WSHTCPIP.DLL
02:14:14.0406 3508 C:\Windows\SysWOW64\WSHTCPIP.DLL - ok
02:14:14.0406 3508 [ 73E8667A19FEEDD856DF2695E9E511D4 ] C:\Windows\SysWOW64\wship6.dll
02:14:14.0406 3508 C:\Windows\SysWOW64\wship6.dll - ok
02:14:14.0416 3508 [ 29CA5974FAB0E8AE4AA7814FE05CF832 ] C:\Windows\SysWOW64\dhcpcsvc6.dll
02:14:14.0416 3508 C:\Windows\SysWOW64\dhcpcsvc6.dll - ok
02:14:14.0416 3508 [ 9A85ABCE0FDD1AF8E79E731EB0B679F3 ] C:\Windows\SysWOW64\dhcpcsvc.dll
02:14:14.0416 3508 C:\Windows\SysWOW64\dhcpcsvc.dll - ok
02:14:14.0426 3508 [ 169F916EFEAA44487E65305B7D2D754B ] C:\Windows\SysWOW64\runonce.exe
02:14:14.0426 3508 C:\Windows\SysWOW64\runonce.exe - ok
02:14:14.0426 3508 [ 4585224B8FC6EBD0DE94F388ECB7FB91 ] C:\Program Files\Quick Heal\Quick Heal Total Security\WSRPT.DLL
02:14:14.0426 3508 C:\Program Files\Quick Heal\Quick Heal Total Security\WSRPT.DLL - ok
02:14:14.0436 3508 [ 2E2072EB48238FCA8FBB7A9F5FABAC45 ] C:\Windows\System32\winrnr.dll
02:14:14.0436 3508 C:\Windows\System32\winrnr.dll - ok
02:14:14.0446 3508 [ 58A0CDABEA255616827B1C22C9994466 ] C:\Windows\System32\NapiNSP.dll
02:14:14.0446 3508 C:\Windows\System32\NapiNSP.dll - ok
02:14:14.0446 3508 [ 613C8CE10A5FDE582BA5FA64C4D56AAA ] C:\Windows\System32\pnrpnsp.dll
02:14:14.0446 3508 C:\Windows\System32\pnrpnsp.dll - ok
02:14:14.0456 3508 [ E3E2E9A96E6BA95D0CF0F026C7B18654 ] C:\Windows\System32\wshbth.dll
02:14:14.0456 3508 C:\Windows\System32\wshbth.dll - ok
02:14:14.0456 3508 [ 62390F4ACE9E2B63E3CA26B7F7497897 ] C:\Windows\SysWOW64\dnsapi.dll
02:14:14.0456 3508 C:\Windows\SysWOW64\dnsapi.dll - ok
02:14:14.0466 3508 [ C69DBFA61FE3DEA653A9B83C3A2B052B ] C:\Program Files (x86)\Bonjour\mdnsNSP.dll
02:14:14.0466 3508 C:\Program Files (x86)\Bonjour\mdnsNSP.dll - ok
02:14:14.0466 3508 [ ED6EE83D61EBC683C2CD8E899EA6FEBE ] C:\Windows\SysWOW64\rasadhlp.dll
02:14:14.0466 3508 C:\Windows\SysWOW64\rasadhlp.dll - ok
02:14:14.0476 3508 [ 158117F3CF278F01C6F24E89E2141E81 ] C:\Windows\SysWOW64\FWPUCLNT.DLL
02:14:14.0476 3508 C:\Windows\SysWOW64\FWPUCLNT.DLL - ok
02:14:14.0486 3508 [ 43964FA89CCF97BA6BE34D69455AC65F ] C:\Windows\SysWOW64\uxtheme.dll
02:14:14.0486 3508 C:\Windows\SysWOW64\uxtheme.dll - ok
02:14:14.0486 3508 [ 26EAEE08CAF82AA7F03C5020F51DA541 ] C:\Windows\SysWOW64\propsys.dll
02:14:14.0486 3508 C:\Windows\SysWOW64\propsys.dll - ok
02:14:14.0496 3508 [ 30DB64D316F502558DB2380F7343C9FD ] C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll
02:14:14.0496 3508 C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll - ok
02:14:14.0496 3508 [ 207204AF80505AF51271FE164B56F662 ] C:\Program Files (x86)\Microsoft Office\Office12\GrooveUtil.dll
02:14:14.0496 3508 C:\Program Files (x86)\Microsoft Office\Office12\GrooveUtil.dll - ok
02:14:14.0506 3508 [ 30EFEBDC960A482E3E188B9960B286E2 ] C:\Program Files (x86)\Microsoft Office\Office12\GrooveNew.dll
02:14:14.0506 3508 C:\Program Files (x86)\Microsoft Office\Office12\GrooveNew.dll - ok
02:14:14.0516 3508 [ D5E459BED3DB9CF7FC6CC1455F177D2D ] C:\Windows\winsxs\x86_microsoft.vc80.atl_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d1cb102c435421de\ATL80.dll
02:14:14.0516 3508 C:\Windows\winsxs\x86_microsoft.vc80.atl_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d1cb102c435421de\ATL80.dll - ok
02:14:14.0516 3508 [ 18AB2E5A40064ED5F7791AC5946A90F3 ] C:\Windows\SysWOW64\msimg32.dll
02:14:14.0516 3508 C:\Windows\SysWOW64\msimg32.dll - ok
02:14:14.0526 3508 [ D8C2B95BC2353E1F18850D6B8F5DBA13 ] C:\Program Files (x86)\Microsoft Office\Office12\GrooveSystemServices.dll
02:14:14.0526 3508 C:\Program Files (x86)\Microsoft Office\Office12\GrooveSystemServices.dll - ok
02:14:14.0526 3508 [ 533AECD1B5356870AE2D905B4D3B42B7 ] C:\Program Files (x86)\Microsoft Office\Office12\GrooveMisc.dll
02:14:14.0526 3508 C:\Program Files (x86)\Microsoft Office\Office12\GrooveMisc.dll - ok
02:14:14.0536 3508 [ 00D1F89836927C0F2E37321E6B441FCE ] C:\Windows\SysWOW64\msxml3.dll
02:14:14.0536 3508 C:\Windows\SysWOW64\msxml3.dll - ok
02:14:14.0536 3508 [ E629F1A051C82795DDFFD3E8D4855811 ] C:\Windows\System32\dimsjob.dll
02:14:14.0536 3508 C:\Windows\System32\dimsjob.dll - ok
02:14:14.0546 3508 [ 6CC10D9FD128069DBFE476222F097616 ] C:\Windows\SysWOW64\secur32.dll
02:14:14.0546 3508 C:\Windows\SysWOW64\secur32.dll - ok
02:14:14.0556 3508 [ 76AD90A468B3F990305F22D7FC07A6B5 ] C:\Program Files (x86)\Dell DataSafe Local Backup\Components\scheduler\Launcher.exe
02:14:14.0556 3508 C:\Program Files (x86)\Dell DataSafe Local Backup\Components\scheduler\Launcher.exe - ok
02:14:14.0556 3508 [ 35CB97CBC3EDC463418ED4997AAB29B6 ] C:\Windows\System32\pautoenr.dll
02:14:14.0556 3508 C:\Windows\System32\pautoenr.dll - ok
02:14:14.0566 3508 [ CDB511309C9F31DED40C8942A74B1913 ] C:\Program Files\Quick Heal\Quick Heal Total Security\SCANRES.DLL
02:14:14.0566 3508 C:\Program Files\Quick Heal\Quick Heal Total Security\SCANRES.DLL - ok
02:14:14.0566 3508 [ AAA6D0DF7356BBA706BD67385A103AAB ] C:\Windows\System32\certcli.dll
02:14:14.0566 3508 C:\Windows\System32\certcli.dll - ok
02:14:14.0576 3508 [ 1351931877DE0C46C4D42DAA26F7B5B1 ] C:\Windows\AppPatch\AcLayers.dll
02:14:14.0576 3508 C:\Windows\AppPatch\AcLayers.dll - ok
02:14:14.0586 3508 [ B9A8CBCFCD3EC9D2EA4740AF347BF108 ] C:\Windows\SysWOW64\mpr.dll
02:14:14.0586 3508 C:\Windows\SysWOW64\mpr.dll - ok
02:14:14.0586 3508 [ 522BD073F617060AFCB9CC5707778DB1 ] C:\Windows\System32\CertEnroll.dll
02:14:14.0586 3508 C:\Windows\System32\CertEnroll.dll - ok
02:14:14.0596 3508 [ E69BF74E3122A0EC5E64ACE140D3A8CA ] C:\Program Files (x86)\Dell DataSafe Local Backup\Components\scheduler\STService.exe
02:14:14.0596 3508 C:\Program Files (x86)\Dell DataSafe Local Backup\Components\scheduler\STService.exe - ok
02:14:14.0596 3508 [ 40CAEEE0EAF1B8569F7C8DF6420F2CB9 ] C:\Windows\SysWOW64\sfc.dll
02:14:14.0596 3508 C:\Windows\SysWOW64\sfc.dll - ok
02:14:14.0606 3508 [ 84799328D87B3091A3BDD251E1AD31F9 ] C:\Windows\SysWOW64\sfc_os.dll
02:14:14.0606 3508 C:\Windows\SysWOW64\sfc_os.dll - ok
02:14:14.0616 3508 [ 11CDF138552BFEC115B60ED6DC3ACEB6 ] C:\Windows\SysWOW64\devrtl.dll
02:14:14.0616 3508 C:\Windows\SysWOW64\devrtl.dll - ok
02:14:14.0616 3508 [ 47D5756E1FA3D133FD59E3800F87CE7D ] C:\Program Files (x86)\Dell DataSafe Local Backup\ToasterLauncher.exe
02:14:14.0616 3508 C:\Program Files (x86)\Dell DataSafe Local Backup\ToasterLauncher.exe - ok
02:14:14.0626 3508 [ 8F4814B59025FB67B684BD0CBAA53100 ] C:\Program Files (x86)\Dell DataSafe Local Backup\STLog.dll
02:14:14.0626 3508 C:\Program Files (x86)\Dell DataSafe Local Backup\STLog.dll - ok
02:14:14.0626 3508 [ A717B97F574F3045E7352658F3A6C9BB ] C:\Program Files (x86)\Dell DataSafe Local Backup\CSTError.dll
02:14:14.0626 3508 C:\Program Files (x86)\Dell DataSafe Local Backup\CSTError.dll - ok
02:14:14.0636 3508 [ 9AFF6D5B41B330E85EC856A48CBEDE0C ] C:\Program Files (x86)\Dell DataSafe Local Backup\STString.dll
02:14:14.0636 3508 C:\Program Files (x86)\Dell DataSafe Local Backup\STString.dll - ok
02:14:14.0646 3508 [ F58143CB0ED2FB93747C588DC42D721B ] C:\Program Files (x86)\Dell DataSafe Local Backup\STXml.dll
02:14:14.0646 3508 C:\Program Files (x86)\Dell DataSafe Local Backup\STXml.dll - ok
02:14:14.0646 3508 [ 0D03AFDF57863F64D0953CCF0AFD6040 ] C:\Program Files (x86)\Dell DataSafe Local Backup\STStringArray.dll
02:14:14.0646 3508 C:\Program Files (x86)\Dell DataSafe Local Backup\STStringArray.dll - ok
02:14:14.0656 3508 [ BFEE026D95642EC1833E566A673F3EE0 ] C:\Program Files (x86)\Dell DataSafe Local Backup\libxml2.dll
02:14:14.0656 3508 C:\Program Files (x86)\Dell DataSafe Local Backup\libxml2.dll - ok
02:14:14.0666 3508 [ 067F9BBD6F74DD7DBA078B37205BAB2D ] C:\Program Files (x86)\Dell DataSafe Local Backup\zlib1.dll
02:14:14.0666 3508 C:\Program Files (x86)\Dell DataSafe Local Backup\zlib1.dll - ok
02:14:14.0666 3508 [ 72AB6633E9B39EC7FEBEDF083A9061E5 ] C:\Windows\System32\mscoree.dll
02:14:14.0666 3508 C:\Windows\System32\mscoree.dll - ok
02:14:14.0676 3508 [ ECDBA6B31F68EA094BB28746219042B2 ] C:\Program Files (x86)\Dell DataSafe Local Backup\STFiles.dll
02:14:14.0676 3508 C:\Program Files (x86)\Dell DataSafe Local Backup\STFiles.dll - ok
02:14:14.0676 3508 [ F2493C19AFADA330D75379C188D96EB7 ] C:\Program Files (x86)\Dell DataSafe Local Backup\STRegistry.dll
02:14:14.0676 3508 C:\Program Files (x86)\Dell DataSafe Local Backup\STRegistry.dll - ok
02:14:14.0686 3508 [ 1D35697CD3D9F87D9E343773A8519FC0 ] C:\Program Files (x86)\Dell DataSafe Local Backup\STPE.dll02:14:14.0686 3508 C:\Program Files (x86)\Dell DataSafe Local Backup\STPE.dll - ok
02:14:14.0686 3508 [ AA794B099F776B37ACCDEAD00E0FBFC9 ] C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscoreei.dll
02:14:14.0686 3508 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscoreei.dll - ok
02:14:14.0696 3508 [ 4B086B357E59EAE4444A356B5C0228BF ] C:\Program Files (x86)\Dell DataSafe Local Backup\STNLS.dll
02:14:14.0696 3508 C:\Program Files (x86)\Dell DataSafe Local Backup\STNLS.dll - ok
02:14:14.0706 3508 [ 4A159D4C1F18111C41F85915DF724024 ] C:\Program Files (x86)\Dell DataSafe Local Backup\STSystems.dll
02:14:14.0706 3508 C:\Program Files (x86)\Dell DataSafe Local Backup\STSystems.dll - ok
02:14:14.0706 3508 [ A223CF703E28CBD7E9E7982141FA403C ] C:\Windows\SysWOW64\comdlg32.dll
02:14:14.0706 3508 C:\Windows\SysWOW64\comdlg32.dll - ok
02:14:14.0716 3508 [ 3CA4ADDA47D97DDF412893F1D03EA6F6 ] C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorwks.dll
02:14:14.0716 3508 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorwks.dll - ok
02:14:14.0716 3508 [ 936F728E04ACCF3F38801CFFCF1E3F40 ] C:\Windows\SysWOW64\oledlg.dll
02:14:14.0716 3508 C:\Windows\SysWOW64\oledlg.dll - ok
02:14:14.0726 3508 [ 39C5F32747B3414D1BB216FDB1DEFC58 ] C:\Windows\SysWOW64\dwmapi.dll
02:14:14.0726 3508 C:\Windows\SysWOW64\dwmapi.dll - ok
02:14:14.0726 3508 [ F694F7A205D68D3C5AEECA0D603F0860 ] C:\Program Files (x86)\Dell DataSafe Local Backup\Components\scheduler\STSCheduler.dll
02:14:14.0726 3508 C:\Program Files (x86)\Dell DataSafe Local Backup\Components\scheduler\STSCheduler.dll - ok
02:14:14.0736 3508 [ 6A894809E68066E9D285C31D220D0175 ] C:\Program Files (x86)\Dell DataSafe Local Backup\STDisks.dll
02:14:14.0736 3508 C:\Program Files (x86)\Dell DataSafe Local Backup\STDisks.dll - ok
02:14:14.0746 3508 [ 37F0E9925B1114F1F7D01AFAE91D43F3 ] C:\Program Files (x86)\Dell DataSafe Local Backup\PSTVdsDisk.dll
02:14:14.0746 3508 C:\Program Files (x86)\Dell DataSafe Local Backup\PSTVdsDisk.dll - ok
02:14:14.0746 3508 [ D3C8C6B6DB123B0E51ECFFF0F6DF145E ] C:\Windows\assembly\NativeImages_v2.0.50727_64\mscorlib\9a7b48ad2929bc93362ec42cd4573f87\mscorlib.ni.dll
02:14:14.0746 3508 C:\Windows\assembly\NativeImages_v2.0.50727_64\mscorlib\9a7b48ad2929bc93362ec42cd4573f87\mscorlib.ni.dll - ok
02:14:14.0756 3508 [ 0A94DE4AA9864D312E60D747FD249ABE ] C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsec.dll
02:14:14.0756 3508 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsec.dll - ok
02:14:14.0756 3508 [ 4FB1F2F9B02FA1138CACD2DEA3F5AEC8 ] C:\Windows\System32\riched20.dll
02:14:14.0756 3508 C:\Windows\System32\riched20.dll - ok
02:14:14.0766 3508 [ B837D1528CE2E3CB79F09496BC08DDC6 ] C:\Windows\System32\SensApi.dll
02:14:14.0766 3508 C:\Windows\System32\SensApi.dll - ok
02:14:14.0766 3508 [ 3A2F5C8666F08B31C61DBAE9C297551C ] C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorjit.dll
02:14:14.0766 3508 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorjit.dll - ok
02:14:14.0776 3508 [ C8FE465986FE1E242C92B6B76CDFEC6F ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System\6ec488b702c100ad5d3e712db0e88554\System.ni.dll
02:14:14.0776 3508 C:\Windows\assembly\NativeImages_v2.0.50727_64\System\6ec488b702c100ad5d3e712db0e88554\System.ni.dll - ok
02:14:14.0786 3508 [ CDAD3376DFF3D9AC7FDCBE2B94B0D3C8 ] C:\Windows\System32\shfolder.dll
02:14:14.0786 3508 C:\Windows\System32\shfolder.dll - ok
02:14:14.0786 3508 [ 9C6F3CC6A3BB310D70026AF1B4561F65 ] C:\Windows\System32\ieframe.dll
02:14:14.0786 3508 C:\Windows\System32\ieframe.dll - ok
02:14:14.0796 3508 [ F4C6871B98900CA43D3D01442FF3DEB3 ] C:\Program Files (x86)\Dell DataSafe Local Backup\hstart.exe
02:14:14.0796 3508 C:\Program Files (x86)\Dell DataSafe Local Backup\hstart.exe - ok
02:14:14.0796 3508 [ AC0C9CEA1218DAB1994AF8B28E680BD9 ] C:\Windows\System32\wlaninst.dll
02:14:14.0796 3508 C:\Windows\System32\wlaninst.dll - ok
02:14:14.0806 3508 [ 5A406C9C8E0880D3EABADC5DFD1ACDAE ] C:\Windows\System32\wwaninst.dll
02:14:14.0806 3508 C:\Windows\System32\wwaninst.dll - ok
02:14:14.0816 3508 [ 8AE6DD9A6D246004DA047F704F0CC487 ] C:\Windows\SysWOW64\cmd.exe
02:14:14.0816 3508 C:\Windows\SysWOW64\cmd.exe - ok
02:14:14.0816 3508 [ 32E15ECF5854F5610BC895490BC3246A ] C:\Windows\SysWOW64\ieframe.dll
02:14:14.0816 3508 C:\Windows\SysWOW64\ieframe.dll - ok
02:14:14.0826 3508 [ F0D1646162FB07476CCCF62EDB034B8B ] C:\Windows\System32\conhost.exe
02:14:14.0826 3508 C:\Windows\System32\conhost.exe - ok
02:14:14.0836 3508 [ 326C7F76A29897A892AA7726E91C1C67 ] C:\Windows\SysWOW64\winbrand.dll
02:14:14.0836 3508 C:\Windows\SysWOW64\winbrand.dll - ok
02:14:14.0836 3508 [ 4B78B431F225FD8624C5655CB1DE7B61 ] C:\Windows\System32\aelupsvc.dll
02:14:14.0836 3508 C:\Windows\System32\aelupsvc.dll - ok
02:14:14.0846 3508 [ 3F7B9B4E099476AAA720970BA1346FE2 ] C:\Program Files (x86)\Dell DataSafe Local Backup\Toaster.exe
02:14:14.0846 3508 C:\Program Files (x86)\Dell DataSafe Local Backup\Toaster.exe - ok
02:14:14.0856 3508 [ 9A4D13244585A5F83F3074C72DF09132 ] C:\Program Files\Quick Heal\Quick Heal Total Security\WSIC.DLL
02:14:14.0856 3508 C:\Program Files\Quick Heal\Quick Heal Total Security\WSIC.DLL - ok
02:14:14.0856 3508 [ E63C516156F006DB460ADE76E0264B39 ] C:\Program Files\Quick Heal\Quick Heal Total Security\WSIU.DLL
02:14:14.0856 3508 C:\Program Files\Quick Heal\Quick Heal Total Security\WSIU.DLL - ok
02:14:14.0866 3508 [ 28DA8FF427EBA6AD7DAC798CAE10E4F8 ] C:\Program Files\Quick Heal\Quick Heal Total Security\wspoly.dll
02:14:14.0866 3508 C:\Program Files\Quick Heal\Quick Heal Total Security\wspoly.dll - ok
02:14:14.0876 3508 [ E07B77C3BDC82A024E294FB67ABFEDA0 ] C:\Windows\SysWOW64\shdocvw.dll
02:14:14.0876 3508 C:\Windows\SysWOW64\shdocvw.dll - ok
02:14:14.0876 3508 [ 9ED9F21D73F9D71E30EAB71835E656EB ] C:\Users\Dipanshu\AppData\Local\Temp\D83B5228-8995-4548-A3EF-90E1628141AC.exe
02:14:14.0876 3508 C:\Users\Dipanshu\AppData\Local\Temp\D83B5228-8995-4548-A3EF-90E1628141AC.exe - ok
02:14:14.0886 3508 [ 6E9E439517D89EDC9A6CB1E94489620A ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsec.dll
02:14:14.0886 3508 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsec.dll - ok
02:14:14.0886 3508 [ D3EAD1CF16BA729A7F7C9A5D94AA7C05 ] C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7600.16661_none_ebfb56996c72aefc\comctl32.dll
02:14:14.0886 3508 C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7600.16661_none_ebfb56996c72aefc\comctl32.dll - ok
02:14:14.0896 3508 [ 6EC594AB7EFA45EACDE65FD4040F53D9 ] C:\Windows\SysWOW64\riched20.dll
02:14:14.0896 3508 C:\Windows\SysWOW64\riched20.dll - ok
02:14:14.0906 3508 [ 691C8DFB208227F0CBB5C0897C742ACE ] C:\Windows\SysWOW64\WindowsCodecs.dll
02:14:14.0906 3508 C:\Windows\SysWOW64\WindowsCodecs.dll - ok
02:14:14.0906 3508 [ 846D0E4DB261CFAF363902E41498E961 ] C:\Windows\SysWOW64\EhStorShell.dll
02:14:14.0906 3508 C:\Windows\SysWOW64\EhStorShell.dll - ok
02:14:14.0916 3508 [ 371A6D058281FCFC2A7AD0A0ABB1ADEC ] C:\Windows\assembly\NativeImages_v2.0.50727_32\WindowsBase\b68fdf2c95b93fc5006a092c11eed07c\WindowsBase.ni.dll
02:14:14.0916 3508 C:\Windows\assembly\NativeImages_v2.0.50727_32\WindowsBase\b68fdf2c95b93fc5006a092c11eed07c\WindowsBase.ni.dll - ok
02:14:14.0916 3508 [ 9141FE8D904CE682A3BDCFAE96BB04EF ] C:\Windows\SysWOW64\ntshrui.dll
02:14:14.0916 3508 C:\Windows\SysWOW64\ntshrui.dll - ok
02:14:14.0926 3508 [ 7349C9EBA29D3D7661CA5353E613D12F ] C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationCore\e9d0ba41128f363f2390c7e630129c2b\PresentationCore.ni.dll
02:14:14.0926 3508 C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationCore\e9d0ba41128f363f2390c7e630129c2b\PresentationCore.ni.dll - ok
02:14:14.0926 3508 [ 8B74CEC6980D4816B0037AE9A27E538F ] C:\Windows\SysWOW64\slc.dll
02:14:14.0926 3508 C:\Windows\SysWOW64\slc.dll - ok
02:14:14.0936 3508 [ 827CB0D6C3F8057EA037FF271F8E9795 ] C:\Windows\SysWOW64\imageres.dll
02:14:14.0936 3508 C:\Windows\SysWOW64\imageres.dll - ok
02:14:14.0936 3508 [ F60F6F24FEF1024A64889A6D656381AE ] C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\517358eb2fd962a942dd1ea6afc5b93e\PresentationFramework.ni.dll
02:14:14.0936 3508 C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\517358eb2fd962a942dd1ea6afc5b93e\PresentationFramework.ni.dll - ok
02:14:14.0946 3508 [ 27BED235F5497DEBC6EF6EFAF4BA1D60 ] C:\Windows\assembly\GAC_32\PresentationCore\3.0.0.0__31bf3856ad364e35\PresentationCore.dll
02:14:14.0946 3508 C:\Windows\assembly\GAC_32\PresentationCore\3.0.0.0__31bf3856ad364e35\PresentationCore.dll - ok
02:14:14.0946 3508 [ 4538040E7B6B281A0468BFBD7BE6ADBB ] C:\Windows\Microsoft.NET\Framework\v3.0\WPF\wpfgfx_v0300.dll
02:14:14.0946 3508 C:\Windows\Microsoft.NET\Framework\v3.0\WPF\wpfgfx_v0300.dll - ok
02:14:14.0956 3508 [ A0617B5753E31126AD29C03154F4F329 ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\Culture.dll
02:14:14.0956 3508 C:\Windows\Microsoft.NET\Framework\v2.0.50727\Culture.dll - ok
02:14:14.0966 3508 [ 5684E84471A6234DE864F40F43BE3A15 ] C:\Program Files (x86)\Dell DataSafe Local Backup\SftBRCC.dll
02:14:14.0966 3508 C:\Program Files (x86)\Dell DataSafe Local Backup\SftBRCC.dll - ok
02:14:14.0966 3508 [ 902456D417C263AB4C230AB5C93562ED ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Drawing\ebefde27b0ef7f39bb49c493b34a602c\System.Drawing.ni.dll
02:14:14.0966 3508 C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Drawing\ebefde27b0ef7f39bb49c493b34a602c\System.Drawing.ni.dll - ok
02:14:14.0976 3508 [ E36D050722A04F4A331512F69433B5A6 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\009c50fb69919b90fb233cb4c35d0ad7\System.Windows.Forms.ni.dll
02:14:14.0976 3508 C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\009c50fb69919b90fb233cb4c35d0ad7\System.Windows.Forms.ni.dll - ok
02:14:14.0976 3508 [ 7459301D21C2E21468823F73042D9F87 ] C:\Windows\SysWOW64\d3d9.dll
02:14:14.0976 3508 C:\Windows\SysWOW64\d3d9.dll - ok
02:14:14.0986 3508 [ 77B1471A490B53B24EFE136F09F76550 ] C:\Windows\SysWOW64\d3d8thk.dll
02:14:14.0986 3508 C:\Windows\SysWOW64\d3d8thk.dll - ok
02:14:14.0996 3508 [ BA38C50F523DC053488AC3F9EF99AA0B ] C:\Windows\SysWOW64\igdumdx32.dll
02:14:14.0996 3508 C:\Windows\SysWOW64\igdumdx32.dll - ok
02:14:14.0996 3508 [ 10AB9C9ADB89816BEFB077E72659D029 ] C:\Windows\SysWOW64\igdumd32.dll
02:14:14.0996 3508 C:\Windows\SysWOW64\igdumd32.dll - ok
02:14:15.0006 3508 [ 50FDB72922B6E6C0E455E65CE67D1A74 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\fc626095c194be137bceb219934b06a7\PresentationFramework.Aero.ni.dll
02:14:15.0006 3508 C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\fc626095c194be137bceb219934b06a7\PresentationFramework.Aero.ni.dll - ok
02:14:15.0006 3508 [ FB53B45EE45AD3D3CB00FB067584E6DE ] C:\Program Files (x86)\Dell DataSafe Local Backup\SftBRCCPiped.dll
02:14:15.0006 3508 C:\Program Files (x86)\Dell DataSafe Local Backup\SftBRCCPiped.dll - ok
02:14:15.0016 3508 [ 17BA32578D32EAA9253155CF746442AA ] C:\Program Files (x86)\Dell DataSafe Local Backup\MiddleLayerCLRLib.dll
02:14:15.0016 3508 C:\Program Files (x86)\Dell DataSafe Local Backup\MiddleLayerCLRLib.dll - ok
02:14:15.0026 3508 [ 0B3595A4FF0B36D68E5FC67FD7D70FDC ] C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcp80.dll
02:14:15.0026 3508 C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcp80.dll - ok
02:14:15.0026 3508 [ 1D109ED0D660654EA7FF1574558031C4 ] C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcm80.dll
02:14:15.0026 3508 C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcm80.dll - ok
02:14:15.0036 3508 [ D85DB66D0D6E120367658E38AB1BB1FA ] C:\Program Files (x86)\Dell DataSafe Local Backup\STBRCCServCLR.dll
02:14:15.0036 3508 C:\Program Files (x86)\Dell DataSafe Local Backup\STBRCCServCLR.dll - ok
02:14:15.0036 3508 [ 98AF485FDCCCB264158995D0C04FC873 ] C:\Program Files (x86)\Dell DataSafe Local Backup\STBRCCServices.dll
02:14:15.0036 3508 C:\Program Files (x86)\Dell DataSafe Local Backup\STBRCCServices.dll - ok
02:14:15.0046 3508 [ 0ADC83218B66A6DB380C330836F3E36D ] C:\Windows\System32\drivers\fastfat.sys
02:14:15.0046 3508 C:\Windows\System32\drivers\fastfat.sys - ok
02:14:15.0056 3508 [ 2CEFF13ACE25A40BD8D97654944297CD ] C:\Windows\svchost.exe
02:14:15.0056 3508 C:\Windows\svchost.exe - ok
02:14:15.0056 3508 [ B519848DFA30AE2B306576B51321D102 ] C:\Windows\System32\ie4uinit.exe
02:14:15.0056 3508 C:\Windows\System32\ie4uinit.exe - ok
02:14:15.0066 3508 [ C3E98C42EDF7EF237A4BAB91FEAC7426 ] C:\Windows\System32\iedkcs32.dll
02:14:15.0076 3508 C:\Windows\System32\iedkcs32.dll - ok
02:14:15.0086 3508 [ 18245DC72B65D488A8B2D75A8FE088EA ] C:\Windows\System32\timedate.cpl
02:14:15.0086 3508 C:\Windows\System32\timedate.cpl - ok
02:14:15.0086 3508 [ 1E4BDDBD5A63059A97063339B4F8986F ] C:\Windows\System32\actxprxy.dll
02:14:15.0086 3508 C:\Windows\System32\actxprxy.dll - ok
02:14:15.0096 3508 [ FBE8EBF528DC49B3DEB186CA9545D97E ] C:\Windows\System32\shdocvw.dll
02:14:15.0096 3508 C:\Windows\System32\shdocvw.dll - ok
02:14:15.0096 3508 [ A0A65D306A5490D2EB8E7DE66898ECFD ] C:\Windows\System32\linkinfo.dll
02:14:15.0096 3508 C:\Windows\System32\linkinfo.dll - ok
02:14:15.0106 3508 [ 69754747274B76E7FAF287239333D7E6 ] C:\Windows\System32\msiltcfg.dll
02:14:15.0106 3508 C:\Windows\System32\msiltcfg.dll - ok
02:14:15.0106 3508 [ F146E2BA475893DD77B2370DC1211FC6 ] C:\Windows\System32\drivers\06994271.sys
02:14:15.0116 3508 C:\Windows\System32\drivers\06994271.sys - ok
02:14:15.0116 3508 [ 8898C95862D03D16B2A06DB4DB6BB6B2 ] C:\Windows\SysWOW64\ExplorerFrame.dll
02:14:15.0116 3508 C:\Windows\SysWOW64\ExplorerFrame.dll - ok
02:14:15.0126 3508 [ 6E1F8165C365D35C8E3C045AF0CDD481 ] C:\Windows\SysWOW64\duser.dll
02:14:15.0126 3508 C:\Windows\SysWOW64\duser.dll - ok
02:14:15.0126 3508 [ EE06B85BC69F18826302348A2AD089E0 ] C:\Windows\SysWOW64\dui70.dll
02:14:15.0126 3508 C:\Windows\SysWOW64\dui70.dll - ok
02:14:15.0126 3508 ============================================================
02:14:15.0126 3508 Scan finished
02:14:15.0126 3508 ============================================================
02:14:15.0146 3500 Detected object count: 9
02:14:15.0146 3500 Actual detected object count: 9
02:14:54.0286 3500 Change Modem Device Service ( UnsignedFile.Multi.Generic ) - skipped by user
02:14:54.0286 3500 Change Modem Device Service ( UnsignedFile.Multi.Generic ) - User select action: Skip
02:14:54.0286 3500 Creative ALchemy AL6 Licensing Service ( UnsignedFile.Multi.Generic ) - skipped by user
02:14:54.0286 3500 Creative ALchemy AL6 Licensing Service ( UnsignedFile.Multi.Generic ) - User select action: Skip
02:14:54.0286 3500 Creative Audio Engine Licensing Service ( UnsignedFile.Multi.Generic ) - skipped by user
02:14:54.0286 3500 Creative Audio Engine Licensing Service ( UnsignedFile.Multi.Generic ) - User select action: Skip
02:14:54.0296 3500 CTAudSvcService ( UnsignedFile.Multi.Generic ) - skipped by user
02:14:54.0296 3500 CTAudSvcService ( UnsignedFile.Multi.Generic ) - User select action: Skip
02:14:54.0296 3500 DockLoginService ( UnsignedFile.Multi.Generic ) - skipped by user
02:14:54.0296 3500 DockLoginService ( UnsignedFile.Multi.Generic ) - User select action: Skip
02:14:54.0296 3500 FLEXnet Licensing Service ( UnsignedFile.Multi.Generic ) - skipped by user
02:14:54.0296 3500 FLEXnet Licensing Service ( UnsignedFile.Multi.Generic ) - User select action: Skip
02:14:54.0306 3500 Sound Blaster X-Fi MB Licensing Service ( UnsignedFile.Multi.Generic ) - skipped by user
02:14:54.0306 3500 Sound Blaster X-Fi MB Licensing Service ( UnsignedFile.Multi.Generic ) - User select action: Skip
02:15:08.0186 3500 \Device\Harddisk0\DR0\# - copied to quarantine
02:15:08.0196 3500 \Device\Harddisk0\DR0 - copied to quarantine
02:15:08.0456 3500 \Device\Harddisk0\DR0\TDLFS\cmd.dll - copied to quarantine
02:15:08.0466 3500 \Device\Harddisk0\DR0\TDLFS\cmd64.dll - copied to quarantine
02:15:08.0496 3500 \Device\Harddisk0\DR0\TDLFS\sub.dll - copied to quarantine
02:15:08.0526 3500 \Device\Harddisk0\DR0\TDLFS\subx.dll - copied to quarantine
02:15:08.0606 3500 \Device\Harddisk0\DR0\TDLFS\drv32 - copied to quarantine
02:15:08.0636 3500 \Device\Harddisk0\DR0\TDLFS\drv64 - copied to quarantine
02:15:08.0646 3500 \Device\Harddisk0\DR0\TDLFS\servers.dat - copied to quarantine
02:15:08.0656 3500 \Device\Harddisk0\DR0\TDLFS\config.ini - copied to quarantine
02:15:08.0666 3500 \Device\Harddisk0\DR0\TDLFS\ldr16 - copied to quarantine
02:15:08.0676 3500 \Device\Harddisk0\DR0\TDLFS\ldr32 - copied to quarantine
02:15:08.0696 3500 \Device\Harddisk0\DR0\TDLFS\ldr64 - copied to quarantine
02:15:08.0696 3500 \Device\Harddisk0\DR0\TDLFS\s - copied to quarantine
02:15:08.0706 3500 \Device\Harddisk0\DR0\TDLFS\ldrm - copied to quarantine
02:15:08.0716 3500 \Device\Harddisk0\DR0\TDLFS\u - copied to quarantine
02:15:08.0776 3500 \Device\Harddisk0\DR0\TDLFS\ph.dll - copied to quarantine
02:15:08.0926 3500 \Device\Harddisk0\DR0 ( Rootkit.Boot.Pihar.c ) - will be cured on reboot
02:15:08.0926 3500 \Device\Harddisk0\DR0 - ok
02:15:08.0936 3500 \Device\Harddisk0\DR0 ( Rootkit.Boot.Pihar.c ) - User select action: Cure
02:15:08.0936 3500 \Device\Harddisk0\DR0 ( TDSS File System ) - skipped by user
02:15:08.0936 3500 \Device\Harddisk0\DR0 ( TDSS File System ) - User select action: Skip
02:15:34.0056 3348 Deinitialize success

*************************************

#5 B-boy/StyLe/

B-boy/StyLe/

    Bleeping Freestyler


  • Malware Response Team
  • 6,270 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Bulgaria
  • Local time:02:25 AM

Posted 22 September 2012 - 04:15 AM

Hi,



STEP 1



Please rerun TDSSKiller and post the log in your next reply.



STEP 2



  • Also please download ListParts64.exe to your Desktop.
  • Double click ListParts64.exe to launch the program.
  • Put check mark on List BCD.
  • Press the Scan button.
  • When finished scanning it will make a log Result.txt on your Desktop.
  • Please post me the contents of the log.


STEP 3



Please download aswMBR.exe to your desktop.

  • Double click the aswMBR.exe icon to run it.
  • The program will offers to download the latest antivirus definitions from Avast servers. Click YES to agree.
  • When it's done in the AV Scan drop down options choose C:\
    Posted Image
  • Click the Scan button to start the scan
  • On completion of the scan, click the save log button, save it to your desktop and post it in your next reply.
Note - do NOT attempt any Fix or FixMBR yet.



Regards,
Georgi

qnfKk.jpg
My help is always free of charge. If you appreciate my work, you can buy me a beer or two by clicking here - paypal.gif


#6 dappy

dappy
  • Topic Starter

  • Members
  • 39 posts
  • OFFLINE
  •  
  • Local time:03:25 PM

Posted 22 September 2012 - 05:24 PM




- I reran the TDSSKiller and attached with this post is the log file. Attached File  TDSSKiller.2.8.10.0_22.09.2012_12.42.43_log.txt   469.06KB   2 downloads

- Ran the Listparts64 and below is the related log file:-



***********
ListParts by Farbar Version: 17-09-2012
Ran by Dipanshu (administrator) on 22-09-2012 at 12:50:10
Windows 7 (X64)
Running From: C:\Users\Dipanshu\Desktop
Language: 0409
************************************************************

========================= Memory info ======================

Percentage of memory in use: 31%
Total physical RAM: 4028.86 MB
Available physical RAM: 2757.39 MB
Total Pagefile: 8055.86 MB
Available Pagefile: 6650.07 MB
Total Virtual: 8192 MB
Available Virtual: 8191.89 MB

======================= Partitions =========================

1 Drive c: (OS) (Fixed) (Total:451.07 GB) (Free:243.38 GB) NTFS

Disk ### Status Size Free Dyn Gpt
-------- ------------- ------- ------- --- ---
Disk 0 Online 465 GB 0 B

Partitions of Disk 0:
===============

Partition ### Type Size Offset
------------- ---------------- ------- -------
Partition 1 OEM 39 MB 31 KB
Partition 2 Primary 14 GB 39 MB
Partition 3 Primary 451 GB 14 GB

======================================================================================================

Disk: 0
Partition 1
Type : DE
Hidden: Yes
Active: No

There is no volume associated with this partition.

======================================================================================================

Disk: 0
Partition 2
Type : 07
Hidden: No
Active: Yes

Volume ### Ltr Label Fs Type Size Status Info
---------- --- ----------- ----- ---------- ------- --------- --------
* Volume 1 RECOVERY NTFS Partition 14 GB Healthy System (partition with boot components)

======================================================================================================

Disk: 0
Partition 3
Type : 07
Hidden: No
Active: No

Volume ### Ltr Label Fs Type Size Status Info
---------- --- ----------- ----- ---------- ------- --------- --------
* Volume 2 C OS NTFS Partition 451 GB Healthy Boot

======================================================================================================

Windows Boot Manager
--------------------
identifier {9dea862c-5cdd-4e70-acc1-f32b344d4795}
device partition=\Device\HarddiskVolume2
description Windows Boot Manager
locale en-US
inherit {7ea2e1ac-2e61-4728-aaa3-896d9d0a9f0e}
default {5b8179e8-e193-11de-bda5-0026b913347e}
resumeobject {5b8179e7-e193-11de-bda5-0026b913347e}
displayorder {5b8179e8-e193-11de-bda5-0026b913347e}
toolsdisplayorder {b2721d73-1db4-4c62-bf78-c548a880142d}
timeout 30

Windows Boot Loader
-------------------
identifier {5b8179e8-e193-11de-bda5-0026b913347e}
device partition=C:
path \Windows\system32\winload.exe
description Windows 7
locale en-US
inherit {6efb52bf-1766-41db-a6b3-0ee5eff72bd7}
recoverysequence {5b8179e9-e193-11de-bda5-0026b913347e}
recoveryenabled Yes
osdevice partition=C:
systemroot \Windows
resumeobject {5b8179e7-e193-11de-bda5-0026b913347e}
nx OptIn

Windows Boot Loader
-------------------
identifier {5b8179e9-e193-11de-bda5-0026b913347e}
device ramdisk=[\Device\HarddiskVolume2]\Recovery\WindowsRE\Winre.wim,{5b8179ea-e193-11de-bda5-0026b913347e}
path \windows\system32\winload.exe
description Windows Recovery Environment
inherit {6efb52bf-1766-41db-a6b3-0ee5eff72bd7}
osdevice ramdisk=[\Device\HarddiskVolume2]\Recovery\WindowsRE\Winre.wim,{5b8179ea-e193-11de-bda5-0026b913347e}
systemroot \windows
nx OptIn
winpe Yes
custom:46000010 Yes

Resume from Hibernate
---------------------
identifier {5b8179e7-e193-11de-bda5-0026b913347e}
device partition=C:
path \Windows\system32\winresume.exe
description Windows Resume Application
locale en-US
inherit {1afa9c49-16ab-4a5c-901b-212802da9460}
filedevice partition=C:
filepath \hiberfil.sys
debugoptionenabled No

Windows Memory Tester
---------------------
identifier {b2721d73-1db4-4c62-bf78-c548a880142d}
device partition=\Device\HarddiskVolume2
path \boot\memtest.exe
description Windows Memory Diagnostic
locale en-US
inherit {7ea2e1ac-2e61-4728-aaa3-896d9d0a9f0e}
badmemoryaccess Yes

EMS Settings
------------
identifier {0ce4991b-e6b3-4b16-b23c-5e0d9250e5d9}
bootems Yes

Debugger Settings
-----------------
identifier {4636856e-540f-4170-a130-a84776f4c654}
debugtype Serial
debugport 1
baudrate 115200

RAM Defects
-----------
identifier {5189b25c-5558-4bf2-bca4-289b11bd29e2}

Global Settings
---------------
identifier {7ea2e1ac-2e61-4728-aaa3-896d9d0a9f0e}
inherit {4636856e-540f-4170-a130-a84776f4c654}
{0ce4991b-e6b3-4b16-b23c-5e0d9250e5d9}
{5189b25c-5558-4bf2-bca4-289b11bd29e2}

Boot Loader Settings
--------------------
identifier {6efb52bf-1766-41db-a6b3-0ee5eff72bd7}
inherit {7ea2e1ac-2e61-4728-aaa3-896d9d0a9f0e}
{7ff607e0-4395-11db-b0de-0800200c9a66}

Hypervisor Settings
-------------------
identifier {7ff607e0-4395-11db-b0de-0800200c9a66}
hypervisordebugtype Serial
hypervisordebugport 1
hypervisorbaudrate 115200

Resume Loader Settings
----------------------
identifier {1afa9c49-16ab-4a5c-901b-212802da9460}
inherit {7ea2e1ac-2e61-4728-aaa3-896d9d0a9f0e}

Device options
--------------
identifier {5b8179ea-e193-11de-bda5-0026b913347e}
description Ramdisk Options
ramdisksdidevice partition=\Device\HarddiskVolume2
ramdisksdipath \Recovery\WindowsRE\boot.sdi


****** End Of Log ******
********************************


- I ran the aswMBR.exe but it crashed twice at the same location. Not sure about the problem but it crashed at "C:\Windows\SoftwareDistribution\Download\" location. In second run, I was saving the log files time by time and below is the last log file which I could save before it crashed again:-


*********************************
aswMBR version 0.9.9.1665 Copyright© 2011 AVAST Software
Run date: 2012-09-22 14:19:06
-----------------------------
14:19:06.025 OS Version: Windows x64 6.1.7600
14:19:06.025 Number of processors: 2 586 0x170A
14:19:06.025 ComputerName: DIPANSHU-PC UserName: Dipanshu
14:19:08.630 Initialize success
14:19:20.564 AVAST engine defs: 12092200
14:19:27.662 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP0T0L0-0
14:19:27.662 Disk 0 Vendor: ST9500420ASG 0004SDM1 Size: 476940MB BusType: 11
14:19:27.850 Disk 0 MBR read successfully
14:19:27.865 Disk 0 MBR scan
14:19:27.865 Disk 0 Windows VISTA default MBR code
14:19:27.865 Disk 0 Partition 1 00 DE Dell Utility Dell 8.0 39 MB offset 63
14:19:27.896 Disk 0 Partition 2 80 (A) 07 HPFS/NTFS NTFS 15000 MB offset 80325
14:19:27.959 Disk 0 Partition 3 00 07 HPFS/NTFS NTFS 461899 MB offset 30800325
14:19:28.130 Disk 0 scanning C:\Windows\system32\drivers
14:20:48.002 Service scanning
14:21:16.706 Modules scanning
14:21:16.722 Disk 0 trace - called modules:
14:21:16.816 ntoskrnl.exe CLASSPNP.SYS disk.sys ataport.SYS PCIIDEX.SYS hal.dll msahci.sys
14:21:17.330 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa8004a97060]
14:21:17.330 3 CLASSPNP.SYS[fffff880015bd43f] -> nt!IofCallDriver -> \Device\Ide\IdeDeviceP0T0L0-0[0xfffffa80046ec1f0]
14:21:19.296 AVAST engine scan C:\
14:41:06.755 Disk 0 MBR has been saved successfully to "C:\Users\Dipanshu\Desktop\MBR.dat"
14:41:06.755 The log file has been saved successfully to "C:\Users\Dipanshu\Desktop\first.txt"
15:30:29.821 File: C:\TDSSKiller_Quarantine\22.09.2012_02.10.51\mbr0000\tdlfs0000\tsk0000.dta **INFECTED** Win32:Malware-gen
15:30:29.884 File: C:\TDSSKiller_Quarantine\22.09.2012_02.10.51\mbr0000\tdlfs0000\tsk0002.dta **INFECTED** Win32:Alureon-MJ@mbr [Rtk]
15:30:29.962 File: C:\TDSSKiller_Quarantine\22.09.2012_02.10.51\mbr0000\tdlfs0000\tsk0003.dta **INFECTED** Win32:Malware-gen
15:30:39.119 File: C:\TDSSKiller_Quarantine\22.09.2012_02.10.51\mbr0000\tdlfs0000\tsk0014.dta **INFECTED** Win32:Malware-gen
15:30:54.703 Disk 0 MBR has been saved successfully to "C:\Users\Dipanshu\Desktop\MBR.dat"
15:30:54.719 The log file has been saved successfully to "C:\Users\Dipanshu\Desktop\seconf.txt"
15:34:02.175 File: C:\Users\Dipanshu\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\23\9083117-653d691b **INFECTED** Win32:MalOb-GR [Cryp]
15:34:27.135 Disk 0 MBR has been saved successfully to "C:\Users\Dipanshu\Desktop\MBR.dat"
15:34:27.166 The log file has been saved successfully to "C:\Users\Dipanshu\Desktop\third.txt"
15:49:30.002 Disk 0 MBR has been saved successfully to "C:\Users\Dipanshu\Desktop\MBR.dat"
15:49:30.018 The log file has been saved successfully to "C:\Users\Dipanshu\Desktop\fourth.txt"


*****************************

#7 B-boy/StyLe/

B-boy/StyLe/

    Bleeping Freestyler


  • Malware Response Team
  • 6,270 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Bulgaria
  • Local time:02:25 AM

Posted 23 September 2012 - 05:49 AM

Hi,



STEP 1



Please re-run TDSSKiller and delete this one:

\Device\Harddisk0\DR0 ( TDSS File System )

Attach the log to your next reply.



STEP 2



Please follow the instructions below:



  • Please download OTL from the link below:
  • Save it to your desktop/
  • Double click on the Posted Image icon on your desktop.
  • OTL should now start. Change the following settings:
    - Click on Scan All Users checkbox given at the top.Posted Image
    - Under File Scans, change File age to 90
    - Change Standard Registry to All
    - Check the boxes beside LOP Check and Purity Check
  • Copy and Paste the following code into the Posted Image textbox.
  • Don't copy the word "quoted"

    netsvcs
    msconfig
    safebootminimal
    safebootnetwork
    activex
    drivers32
    %SYSTEMDRIVE%\*.*
    %USERPROFILE%\*.*
    %USERPROFILE%\temp\*.exe
    %USERPROFILE%\AppData\Local\*.*
    %USERPROFILE%\AppData\Local\*.
    %USERPROFILE%\AppData\Local\temp\*.exe
    %USERPROFILE%\AppData\Roaming\*.*
    %USERPROFILE%\AppData\Roaming\*.
    %Public%\Documents\Softwrap\YOYOGAMESGM70FINAL\*.exe
    %Public%\Documents\Fonts\*.exe
    %Public%\Documents\Config\*.exe
    %Public%\Documents\*.*
    %ProgramData%\*.*
    %ProgramData%\*.
    %CommonProgramFiles%\*.*
    %CommonProgramFiles%\ComObjects*.exe
    %PROGRAMFILES%\*.*
    %PROGRAMFILES%\*.
    %ProgramFiles(x86)%\*.*
    %ProgramFiles(x86)%\*.
    %systemroot%\system32\config\systemprofile\AppData\Local\*.*
    %systemroot%\system32\config\systemprofile\AppData\Roaming\*.*
    %windir%\SysWOW64\config\systemprofile\AppData\Local\*.*
    %windir%\SysWOW64\config\systemprofile\AppData\Roaming\*.*
    %windir%\ServiceProfiles\LocalService\AppData\Local\Temp\*.tlb
    %windir%\ServiceProfiles\NetworkService\AppData\Local\Temp\*.tlb
    %windir%\temp\*.exe
    %windir%\minidump\*.*
    %windir%\*.
    %windir%\installer\*.
    %windir%\system32\*.
    %windir%\sysnative\*.
    %Temp%\smtmp\1\*.*
    %Temp%\smtmp\2\*.*
    %Temp%\smtmp\3\*.*
    %Temp%\smtmp\4\*.*
    %systemroot%\system32\*.dll /lockedfiles
    %systemroot%\syswow64\*.dll /lockedfiles
    %systemroot%\Tasks\*.job /lockedfiles
    %systemroot%\system32\drivers\*.sys /90
    %systemroot%\system32\drivers\*.sys /lockedfiles
    %systemroot%\syswow64\drivers\*.sys /90
    %systemroot%\syswow64\drivers\*.sys /lockedfiles
    %systemroot%\system32\Spool\prtprocs\w32x86\*.dll
    %systemroot%\*. /rp /s
    %systemroot%\assembly\tmp\*.* /S /MD5
    %systemroot%\assembly\temp\*.* /S /MD5
    %systemroot%\assembly\GAC\*.ini
    %systemroot%\assembly\GAC_32\*.ini
    %systemroot%\assembly\GAC_64\*.ini
    %SystemRoot%\assembly\GAC_MSIL\*.ini
    wsSystemRoot|l,n,u,@;True;False;True;$,{ /fn
    %systemdrive%\$Recycle.Bin|@;true;true;true /fp
    HKEY_CLASSES_ROOT\CLSID\{7C857801-7381-11CF-884D-00AA004B2E24} /s
    HKEY_CLASSES_ROOT\CLSID\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1} /s
    HKEY_CURRENT_USER\Software\Classes\CLSID\{42aedc87-2188-41fd-b9a3-0c966feabec1} /s
    HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1} /s
    HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{42aedc87-2188-41fd-b9a3-0c966feabec1} /s
    HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{a2a9545d-a0c2-42b4-9708-a0b2badd77c8} /s
    HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{7C857801-7381-11CF-884D-00AA004B2E24} /s
    HKEY_CLASSES_ROOT\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F} /s
    HKEY_CLASSES_ROOT\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9} /s
    HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9} /s
    HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{5839FCA9-774D-42A1-ACDA-D6A79037F57F} /s
    HKEY_CURRENT_USER\Software\Classes\clsid\{12d0253a-7c96-815c-11e0-3034bbd97cc0}] /s
    HKEY_CURRENT_USER\Software\MSOLoad /s
    >C:\commands.txt echo list vol /raw /hide /c
    /wait
    >C:\DiskReport.txt diskpart /s C:\commands.txt /raw /hide /c
    /wait
    type c:\diskreport.txt /c
    /wait
    erase c:\commands.txt /hide /c
    /wait
    erase c:\diskreport.txt /hide /c
    /md5start
    eventlog.dll
    scecli.dll
    netlogon.dll
    cngaudit.dll
    sceclt.dll
    ntelogon.dll
    logevent.dll
    consrv.dll
    services.exe
    explorer.exe
    lsass.exe
    svchost.exe
    wininit.exe
    winlogon.exe
    userinit.exe
    atapi.sys
    iaStor.sys
    serial.sys
    volsnap.sys
    disk.sys
    redbook.sys
    i8042prt.sys
    afd.sys
    netbt.sys
    csc.sys
    tcpip.sys
    dfsc.sys
    hlp.dat
    str.sys
    crexv.ocx
    /md5stop

  • Push the Posted Image button.
  • One report will open, copy and paste it in a reply here:
    • OTL.txt <-- Will be opened


Regards,
Georgi

qnfKk.jpg
My help is always free of charge. If you appreciate my work, you can buy me a beer or two by clicking here - paypal.gif


#8 dappy

dappy
  • Topic Starter

  • Members
  • 39 posts
  • OFFLINE
  •  
  • Local time:03:25 PM

Posted 23 September 2012 - 02:41 PM

- Ran OTL and related log file is saved at My link

- TDSSKiller file is too big to attach so posting it in the reply in next 2-3 posts:-

Log File Part 1:-

***************
11:49:57.0168 0668 TDSS rootkit removing tool 2.8.10.0 Sep 17 2012 19:23:24
11:49:57.0807 0668 ============================================================
11:49:57.0807 0668 Current date / time: 2012/09/23 11:49:57.0807
11:49:57.0807 0668 SystemInfo:
11:49:57.0807 0668
11:49:57.0807 0668 OS Version: 6.1.7600 ServicePack: 0.0
11:49:57.0807 0668 Product type: Workstation
11:49:57.0807 0668 ComputerName: DIPANSHU-PC
11:49:57.0807 0668 UserName: Dipanshu
11:49:57.0807 0668 Windows directory: C:\Windows
11:49:57.0807 0668 System windows directory: C:\Windows
11:49:57.0807 0668 Running under WOW64
11:49:57.0807 0668 Processor architecture: Intel x64
11:49:57.0807 0668 Number of processors: 2
11:49:57.0807 0668 Page size: 0x1000
11:49:57.0807 0668 Boot type: Normal boot
11:49:57.0807 0668 ============================================================
11:49:59.0539 0668 BG loaded
11:50:03.0847 0668 Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
11:50:03.0877 0668 ============================================================
11:50:03.0877 0668 \Device\Harddisk0\DR0:
11:50:03.0889 0668 MBR partitions:
11:50:03.0889 0668 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x139C5, BlocksNum 0x1D4C000
11:50:03.0889 0668 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x1D5F9C5, BlocksNum 0x38625E6B
11:50:03.0889 0668 ============================================================
11:50:04.0099 0668 C: <-> \Device\Harddisk0\DR0\Partition2
11:50:04.0099 0668 ============================================================
11:50:04.0099 0668 Initialize success
11:50:04.0099 0668 ============================================================
11:50:47.0204 3508 ============================================================
11:50:47.0204 3508 Scan started
11:50:47.0204 3508 Mode: Manual; SigCheck; TDLFS;
11:50:47.0204 3508 ============================================================
11:50:49.0420 3508 ================ Scan system memory ========================
11:50:49.0420 3508 System memory - ok
11:50:49.0420 3508 ================ Scan services =============================
11:50:50.0652 3508 [ 1B00662092F9F9568B995902F0CC40D5 ] 1394ohci C:\Windows\system32\DRIVERS\1394ohci.sys
11:50:50.0839 3508 1394ohci - ok
11:50:51.0073 3508 [ 426E0E8127BAC7D5DDEE8251F104E053 ] AbsoluteNotifier C:\Program Files (x86)\Absolute Software\Absolute Notifier\AbsoluteNotifierService.exe
11:50:51.0089 3508 AbsoluteNotifier - ok
11:50:51.0151 3508 [ 6F11E88748CDEFD2F76AA215F97DDFE5 ] ACPI C:\Windows\system32\DRIVERS\ACPI.sys
11:50:51.0182 3508 ACPI - ok
11:50:51.0214 3508 [ 63B05A0420CE4BF0E4AF6DCC7CADA254 ] AcpiPmi C:\Windows\system32\DRIVERS\acpipmi.sys
11:50:51.0354 3508 AcpiPmi - ok
11:50:51.0572 3508 [ E8FE4FCE23D2809BD88BCC1D0F8408CE ] AdobeActiveFileMonitor6.0 C:\Program Files (x86)\Adobe\Photoshop Elements 6.0\PhotoshopElementsFileAgent.exe
11:50:51.0619 3508 AdobeActiveFileMonitor6.0 - ok
11:50:51.0713 3508 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
11:50:51.0775 3508 adp94xx - ok
11:50:51.0806 3508 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
11:50:51.0853 3508 adpahci - ok
11:50:51.0916 3508 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
11:50:51.0962 3508 adpu320 - ok
11:50:52.0040 3508 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
11:50:52.0243 3508 AeLookupSvc - ok
11:50:52.0306 3508 [ DB9D6C6B2CD95A9CA414D045B627422E ] AFD C:\Windows\system32\drivers\afd.sys
11:50:52.0368 3508 AFD - ok
11:50:52.0415 3508 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\Windows\system32\DRIVERS\agp440.sys
11:50:52.0477 3508 agp440 - ok
11:50:52.0540 3508 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\Windows\System32\alg.exe
11:50:52.0633 3508 ALG - ok
11:50:52.0664 3508 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\Windows\system32\DRIVERS\aliide.sys
11:50:52.0758 3508 aliide - ok
11:50:52.0836 3508 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\Windows\system32\DRIVERS\amdide.sys
11:50:52.0914 3508 amdide - ok
11:50:52.0945 3508 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
11:50:53.0132 3508 AmdK8 - ok
11:50:53.0148 3508 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
11:50:53.0195 3508 AmdPPM - ok
11:50:53.0257 3508 [ EC7EBAB00A4D8448BAB68D1E49B4BEB9 ] amdsata C:\Windows\system32\drivers\amdsata.sys
11:50:53.0288 3508 amdsata - ok
11:50:53.0335 3508 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
11:50:53.0398 3508 amdsbs - ok
11:50:53.0429 3508 [ DB27766102C7BF7E95140A2AA81D042E ] amdxata C:\Windows\system32\drivers\amdxata.sys
11:50:53.0444 3508 amdxata - ok
11:50:53.0476 3508 [ 42FD751B27FA0E9C69BB39F39E409594 ] AppID C:\Windows\system32\drivers\appid.sys
11:50:53.0616 3508 AppID - ok
11:50:53.0647 3508 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\Windows\System32\appidsvc.dll
11:50:53.0819 3508 AppIDSvc - ok
11:50:53.0850 3508 [ D065BE66822847B7F127D1F90158376E ] Appinfo C:\Windows\System32\appinfo.dll
11:50:53.0912 3508 Appinfo - ok
11:50:54.0006 3508 [ 018857EAD9A077A56AEDFC0E5EF7A24A ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
11:50:54.0068 3508 Apple Mobile Device - ok
11:50:54.0162 3508 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\Windows\system32\DRIVERS\arc.sys
11:50:54.0240 3508 arc - ok
11:50:54.0396 3508 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
11:50:54.0443 3508 arcsas - ok
11:50:54.0490 3508 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
11:50:54.0614 3508 AsyncMac - ok
11:50:54.0661 3508 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\Windows\system32\DRIVERS\atapi.sys
11:50:54.0677 3508 atapi - ok
11:50:54.0802 3508 [ 07721A77180EDD4D39CCB865BF63C7FD ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
11:50:54.0895 3508 AudioEndpointBuilder - ok
11:50:54.0973 3508 [ 07721A77180EDD4D39CCB865BF63C7FD ] AudioSrv C:\Windows\System32\Audiosrv.dll
11:50:55.0036 3508 AudioSrv - ok
11:50:55.0129 3508 [ B20B5FA5CA050E9926E4D1DB81501B32 ] AxInstSV C:\Windows\System32\AxInstSV.dll
11:50:55.0410 3508 AxInstSV - ok
11:50:55.0535 3508 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\Windows\system32\DRIVERS\bxvbda.sys
11:50:55.0784 3508 b06bdrv - ok
11:50:55.0909 3508 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
11:50:55.0956 3508 b57nd60a - ok
11:50:56.0081 3508 [ 2ED050291BC1D7F9E322E328DB3AAECF ] BBSvc C:\Program Files (x86)\Microsoft\BingBar\BBSvc.EXE
11:50:56.0128 3508 BBSvc - ok
11:50:56.0174 3508 [ 785DE7ABDA13309D6065305542829E76 ] BBUpdate C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE
11:50:56.0190 3508 BBUpdate - ok
11:50:56.0268 3508 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\Windows\System32\bdesvc.dll
11:50:56.0315 3508 BDESVC - ok
11:50:56.0393 3508 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\Windows\system32\drivers\Beep.sys
11:50:56.0455 3508 Beep - ok
11:50:56.0486 3508 [ 4992C609A6315671463E30F6512BC022 ] BFE C:\Windows\System32\bfe.dll
11:50:56.0533 3508 BFE - ok
11:50:56.0720 3508 [ 7F0C323FE3DA28AA4AA1BDA3F575707F ] BITS C:\Windows\System32\qmgr.dll
11:50:56.0783 3508 BITS - ok
11:50:56.0814 3508 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
11:50:56.0845 3508 blbdrive - ok
11:50:56.0939 3508 [ F832F1505AD8B83474BD9A5B1B985E01 ] Bonjour Service C:\Program Files (x86)\Bonjour\mDNSResponder.exe
11:50:56.0986 3508 Bonjour Service - ok
11:50:57.0048 3508 [ 19D20159708E152267E53B66677A4995 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
11:50:57.0110 3508 bowser - ok
11:50:57.0360 3508 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
11:50:57.0422 3508 BrFiltLo - ok
11:50:57.0438 3508 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
11:50:57.0485 3508 BrFiltUp - ok
11:50:57.0532 3508 [ 6B054C67AAA87843504E8E3C09102009 ] Browser C:\Windows\System32\browser.dll
11:50:57.0547 3508 Browser - ok
11:50:57.0578 3508 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\Windows\System32\Drivers\Brserid.sys
11:50:57.0641 3508 Brserid - ok
11:50:57.0672 3508 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
11:50:57.0703 3508 BrSerWdm - ok
11:50:57.0719 3508 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
11:50:57.0766 3508 BrUsbMdm - ok
11:50:57.0781 3508 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
11:50:57.0844 3508 BrUsbSer - ok
11:50:57.0906 3508 [ CF98190A94F62E405C8CB255018B2315 ] BthEnum C:\Windows\system32\drivers\BthEnum.sys
11:50:57.0953 3508 BthEnum - ok
11:50:57.0968 3508 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
11:50:58.0015 3508 BTHMODEM - ok
11:50:58.0046 3508 [ 02DD601B708DD0667E1331FA8518E9FF ] BthPan C:\Windows\system32\DRIVERS\bthpan.sys
11:50:58.0109 3508 BthPan - ok
11:50:58.0156 3508 [ D59773C7FDD3D795D6FE402EEEA8D71E ] BTHPORT C:\Windows\system32\Drivers\BTHport.sys
11:50:58.0249 3508 BTHPORT - ok
11:50:58.0296 3508 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\Windows\system32\bthserv.dll
11:50:58.0358 3508 bthserv - ok
11:50:58.0421 3508 [ 8504842634DD144C075B6B0C982CCEC4 ] BTHUSB C:\Windows\system32\Drivers\BTHUSB.sys
11:50:58.0468 3508 BTHUSB - ok
11:50:58.0514 3508 [ 6BCFDC2B5B7F66D484486D4BD4B39A6B ] btwaudio C:\Windows\system32\drivers\btwaudio.sys
11:50:58.0546 3508 btwaudio - ok
11:50:58.0561 3508 [ 82DC8B7C626E526681C1BEBED2BC3FF9 ] btwavdt C:\Windows\system32\drivers\btwavdt.sys
11:50:58.0608 3508 btwavdt - ok
11:50:58.0717 3508 [ D65AA164ACD0F6706DBCFBBCC9731584 ] btwdins c:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
11:50:58.0748 3508 btwdins - ok
11:50:58.0795 3508 [ 6149301DC3F81D6F9667A3FBAC410975 ] btwl2cap C:\Windows\system32\DRIVERS\btwl2cap.sys
11:50:58.0842 3508 btwl2cap - ok
11:50:58.0889 3508 [ 28E105AD3B79F440BF94780F507BF66A ] btwrchid C:\Windows\system32\DRIVERS\btwrchid.sys
11:50:58.0936 3508 btwrchid - ok
11:50:58.0998 3508 [ ED7563CD3E67EE3C950A1B86818C24C3 ] catflt C:\Windows\system32\DRIVERS\catflt.sys
11:50:59.0014 3508 catflt - ok
11:50:59.0029 3508 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
11:50:59.0123 3508 cdfs - ok
11:50:59.0185 3508 [ 83D2D75E1EFB81B3450C18131443F7DB ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
11:50:59.0216 3508 cdrom - ok
11:50:59.0263 3508 [ 312E2F82AF11E79906898AC3E3D58A1F ] CertPropSvc C:\Windows\System32\certprop.dll
11:50:59.0341 3508 CertPropSvc - ok
11:50:59.0482 3508 [ 8C62EAF0FC820F2D1B32FCF1D02507BC ] Change Modem Device Service C:\Windows\SysWOW64\ChgService.exe
11:50:59.0544 3508 Change Modem Device Service ( UnsignedFile.Multi.Generic ) - warning
11:50:59.0544 3508 Change Modem Device Service - detected UnsignedFile.Multi.Generic (1)
11:50:59.0591 3508 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\Windows\system32\DRIVERS\circlass.sys
11:50:59.0669 3508 circlass - ok
11:50:59.0700 3508 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\Windows\system32\CLFS.sys
11:50:59.0716 3508 CLFS - ok
11:50:59.0872 3508 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
11:50:59.0950 3508 clr_optimization_v2.0.50727_32 - ok
11:51:00.0012 3508 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
11:51:00.0059 3508 clr_optimization_v2.0.50727_64 - ok
11:51:00.0168 3508 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
11:51:00.0262 3508 clr_optimization_v4.0.30319_32 - ok
11:51:00.0340 3508 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
11:51:00.0386 3508 clr_optimization_v4.0.30319_64 - ok
11:51:00.0449 3508 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
11:51:00.0464 3508 CmBatt - ok
11:51:00.0480 3508 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\Windows\system32\DRIVERS\cmdide.sys
11:51:00.0511 3508 cmdide - ok
11:51:00.0574 3508 [ F34031DC6D1745154F54B04AFF54F5D1 ] cmnsusbser C:\Windows\system32\DRIVERS\cmnsusbser.sys
11:51:00.0652 3508 cmnsusbser - ok
11:51:00.0698 3508 [ CA7720B73446FDDEC5C69519C1174C98 ] CNG C:\Windows\system32\Drivers\cng.sys
11:51:00.0745 3508 CNG - ok
11:51:00.0761 3508 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
11:51:00.0776 3508 Compbatt - ok
11:51:00.0808 3508 [ F26B3A86F6FA87CA360B879581AB4123 ] CompositeBus C:\Windows\system32\DRIVERS\CompositeBus.sys
11:51:00.0823 3508 CompositeBus - ok
11:51:00.0839 3508 COMSysApp - ok
11:51:00.0917 3508 [ 27A2F5B4168B333E003E2AB68811D62E ] Core Mail Protection C:\Program Files\Quick Heal\Quick Heal Total Security\EMLPROXY.EXE
11:51:01.0042 3508 Core Mail Protection - ok
11:51:01.0088 3508 [ 3D268FBD5077F41ECE4FF40567BFB492 ] Core Scanning Server C:\Program Files\Quick Heal\Quick Heal Total Security\SAPISSVC.EXE
11:51:01.0104 3508 Core Scanning Server - ok
11:51:01.0135 3508 [ 3D268FBD5077F41ECE4FF40567BFB492 ] Core Scanning ServerEx C:\Program Files\Quick Heal\Quick Heal Total Security\SAPISSVC.EXE
11:51:01.0135 3508 Core Scanning ServerEx - ok
11:51:01.0182 3508 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
11:51:01.0229 3508 crcdisk - ok
11:51:01.0307 3508 [ C8BD651E13895B93ED9EC5B4F1DF42BC ] Creative ALchemy AL6 Licensing Service C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\AL6Licensing.exe
11:51:01.0369 3508 Creative ALchemy AL6 Licensing Service ( UnsignedFile.Multi.Generic ) - warning
11:51:01.0369 3508 Creative ALchemy AL6 Licensing Service - detected UnsignedFile.Multi.Generic (1)
11:51:01.0416 3508 [ C0EAD9F8AB83D41FF07303C75589C2B8 ] Creative Audio Engine Licensing Service C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\CTAELicensing.exe
11:51:01.0432 3508 Creative Audio Engine Licensing Service ( UnsignedFile.Multi.Generic ) - warning
11:51:01.0432 3508 Creative Audio Engine Licensing Service - detected UnsignedFile.Multi.Generic (1)
11:51:01.0478 3508 [ F02786B66375292E58C8777082D4396D ] CryptSvc C:\Windows\system32\cryptsvc.dll
11:51:01.0541 3508 CryptSvc - ok
11:51:01.0619 3508 [ 07BA6D17E66879018B30B6C3F976EBED ] CTAudSvcService C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe
11:51:01.0666 3508 CTAudSvcService ( UnsignedFile.Multi.Generic ) - warning
11:51:01.0666 3508 CTAudSvcService - detected UnsignedFile.Multi.Generic (1)
11:51:01.0712 3508 [ ED5CF92396A62F4C15110DCDB5E854D9 ] CtClsFlt C:\Windows\system32\DRIVERS\CtClsFlt.sys
11:51:01.0759 3508 CtClsFlt - ok
11:51:01.0884 3508 [ 7266972E86890E2B30C0C322E906B027 ] DcomLaunch C:\Windows\system32\rpcss.dll
11:51:01.0978 3508 DcomLaunch - ok
11:51:02.0040 3508 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\Windows\System32\defragsvc.dll
11:51:02.0149 3508 defragsvc - ok
11:51:02.0180 3508 [ 9C253CE7311CA60FC11C774692A13208 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
11:51:02.0227 3508 DfsC - ok
11:51:02.0258 3508 [ CE3B9562D997F69B330D181A8875960F ] Dhcp C:\Windows\system32\dhcpcore.dll
11:51:02.0383 3508 Dhcp - ok
11:51:02.0414 3508 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\Windows\system32\drivers\discache.sys
11:51:02.0477 3508 discache - ok
11:51:02.0539 3508 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\Windows\system32\DRIVERS\disk.sys
11:51:02.0555 3508 Disk - ok
11:51:02.0617 3508 [ 85CF424C74A1D5EC33533E1DBFF9920A ] Dnscache C:\Windows\System32\dnsrslvr.dll
11:51:02.0664 3508 Dnscache - ok
11:51:02.0758 3508 [ 0840ABBBDF438691EE65A20040635CBE ] DockLoginService C:\Program Files\Dell\DellDock\DockLogin.exe
11:51:02.0836 3508 DockLoginService ( UnsignedFile.Multi.Generic ) - warning
11:51:02.0836 3508 DockLoginService - detected UnsignedFile.Multi.Generic (1)
11:51:02.0882 3508 [ 14452ACDB09B70964C8C21BF80A13ACB ] dot3svc C:\Windows\System32\dot3svc.dll
11:51:02.0960 3508 dot3svc - ok
11:51:02.0992 3508 [ 8C2BA6BEA949EE6E68385F5692BAFB94 ] DPS C:\Windows\system32\dps.dll
11:51:03.0038 3508 DPS - ok
11:51:03.0085 3508 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
11:51:03.0148 3508 drmkaud - ok
11:51:03.0210 3508 [ 1633B9ABF52784A1331476397A48CBEF ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
11:51:03.0257 3508 DXGKrnl - ok
11:51:03.0272 3508 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\Windows\System32\eapsvc.dll
11:51:03.0350 3508 EapHost - ok
11:51:03.0444 3508 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\Windows\system32\DRIVERS\evbda.sys
11:51:03.0647 3508 ebdrv - ok
11:51:03.0694 3508 [ 156F6159457D0AA7E59B62681B56EB90 ] EFS C:\Windows\System32\lsass.exe
11:51:03.0772 3508 EFS - ok
11:51:03.0896 3508 [ 47C071994C3F649F23D9CD075AC9304A ] ehRecvr C:\Windows\ehome\ehRecvr.exe
11:51:03.0990 3508 ehRecvr - ok
11:51:04.0037 3508 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\Windows\ehome\ehsched.exe
11:51:04.0130 3508 ehSched - ok
11:51:04.0193 3508 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys
11:51:04.0271 3508 elxstor - ok
11:51:04.0318 3508 [ C6FEE635EB61EEBBF960E981DC8C6CDE ] EMLSS C:\Windows\system32\drivers\emltdi.sys
11:51:04.0333 3508 EMLSS - ok
11:51:04.0349 3508 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\Windows\system32\DRIVERS\errdev.sys
11:51:04.0474 3508 ErrDev - ok
11:51:04.0520 3508 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\Windows\system32\es.dll
11:51:04.0567 3508 EventSystem - ok
11:51:04.0598 3508 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\Windows\system32\drivers\exfat.sys
11:51:04.0645 3508 exfat - ok
11:51:04.0661 3508 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\Windows\system32\drivers\fastfat.sys
11:51:04.0708 3508 fastfat - ok
11:51:04.0770 3508 [ D607B2F1BEE3992AA6C2C92C0A2F0855 ] Fax C:\Windows\system32\fxssvc.exe
11:51:04.0817 3508 Fax - ok
11:51:04.0832 3508 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\Windows\system32\DRIVERS\fdc.sys
11:51:04.0895 3508 fdc - ok
11:51:04.0910 3508 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\Windows\system32\fdPHost.dll
11:51:04.0957 3508 fdPHost - ok
11:51:04.0973 3508 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\Windows\system32\fdrespub.dll
11:51:05.0020 3508 FDResPub - ok
11:51:05.0035 3508 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
11:51:05.0051 3508 FileInfo - ok
11:51:05.0066 3508 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
11:51:05.0129 3508 Filetrace - ok
11:51:05.0207 3508 [ 227846995AFEEFA70D328BF5334A86A5 ] FLEXnet Licensing Service C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
11:51:05.0285 3508 FLEXnet Licensing Service ( UnsignedFile.Multi.Generic ) - warning
11:51:05.0285 3508 FLEXnet Licensing Service - detected UnsignedFile.Multi.Generic (1)
11:51:05.0300 3508 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
11:51:05.0347 3508 flpydisk - ok
11:51:05.0363 3508 [ F7866AF72ABBAF84B1FA5AA195378C59 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
11:51:05.0378 3508 FltMgr - ok
11:51:05.0441 3508 [ CB5E4B9C319E3C6BB363EB7E58A4A051 ] FontCache C:\Windows\system32\FntCache.dll
11:51:05.0488 3508 FontCache - ok
11:51:05.0566 3508 [ 8D89E3131C27FDD6932189CB785E1B7A ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
11:51:05.0612 3508 FontCache3.0.0.0 - ok
11:51:05.0612 3508 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
11:51:05.0644 3508 FsDepends - ok
11:51:05.0690 3508 [ D3E3F93D67821A2DB2B3D9FAC2DC2064 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
11:51:05.0706 3508 Fs_Rec - ok
11:51:05.0753 3508 [ AE87BA80D0EC3B57126ED2CDC15B24ED ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
11:51:05.0784 3508 fvevol - ok
11:51:05.0815 3508 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys
11:51:05.0846 3508 gagp30kx - ok
11:51:05.0893 3508 [ E403AACF8C7BB11375122D2464560311 ] GEARAspiWDM C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
11:51:05.0909 3508 GEARAspiWDM - ok
11:51:05.0987 3508 [ 5CAC29C48D9398ED1B99C7E16C00F96D ] ggc C:\Windows\system32\DRIVERS\ggc.sys
11:51:06.0002 3508 ggc - ok
11:51:06.0049 3508 [ D3316F6E3C011435F36E3D6E49B3196C ] GoToAssist C:\Program Files (x86)\Citrix\GoToAssist\514\g2aservice.exe
11:51:06.0096 3508 GoToAssist - ok
11:51:06.0158 3508 [ FE5AB4525BC2EC68B9119A6E5D40128B ] gpsvc C:\Windows\System32\gpsvc.dll
11:51:06.0205 3508 gpsvc - ok
11:51:06.0283 3508 [ F02A533F517EB38333CB12A9E8963773 ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
11:51:06.0314 3508 gupdate - ok
11:51:06.0346 3508 [ F02A533F517EB38333CB12A9E8963773 ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
11:51:06.0361 3508 gupdatem - ok
11:51:06.0424 3508 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
11:51:06.0486 3508 hcw85cir - ok
11:51:06.0533 3508 [ 0A49913402747A0B67DE940FB42CBDBB ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys
11:51:06.0580 3508 HDAudBus - ok
11:51:06.0580 3508 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys
11:51:06.0611 3508 HidBatt - ok
11:51:06.0626 3508 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
11:51:06.0673 3508 HidBth - ok
11:51:06.0751 3508 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
11:51:06.0814 3508 HidIr - ok
11:51:06.0860 3508 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\Windows\system32\hidserv.dll
11:51:06.0938 3508 hidserv - ok
11:51:06.0985 3508 [ B3BF6B5B50006DEF50B66306D99FCF6F ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
11:51:07.0032 3508 HidUsb - ok
11:51:07.0079 3508 [ EFA58EDE58DD74388FFD04CB32681518 ] hkmsvc C:\Windows\system32\kmsvc.dll
11:51:07.0141 3508 hkmsvc - ok
11:51:07.0157 3508 [ 046B2673767CA626E2CFB7FDF735E9E8 ] HomeGroupListener C:\Windows\system32\ListSvc.dll
11:51:07.0204 3508 HomeGroupListener - ok
11:51:07.0250 3508 [ 06A7422224D9865A5613710A089987DF ] HomeGroupProvider C:\Windows\system32\provsvc.dll
11:51:07.0282 3508 HomeGroupProvider - ok
11:51:07.0313 3508 [ 0886D440058F203EBA0E1825E4355914 ] HpSAMD C:\Windows\system32\DRIVERS\HpSAMD.sys
11:51:07.0360 3508 HpSAMD - ok
11:51:07.0391 3508 [ CEE049CAC4EFA7F4E1E4AD014414A5D4 ] HTTP C:\Windows\system32\drivers\HTTP.sys
11:51:07.0438 3508 HTTP - ok
11:51:07.0500 3508 [ CDAA8E257BB625B2387219E605DDE37D ] hwdatacard C:\Windows\system32\DRIVERS\ewusbmdm.sys
11:51:07.0547 3508 hwdatacard - ok
11:51:07.0578 3508 [ F17766A19145F111856378DF337A5D79 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
11:51:07.0578 3508 hwpolicy - ok
11:51:07.0640 3508 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\Windows\system32\DRIVERS\i8042prt.sys
11:51:07.0672 3508 i8042prt - ok
11:51:07.0718 3508 [ B75E45C564E944A2657167D197AB29DA ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
11:51:07.0765 3508 iaStorV - ok
11:51:07.0843 3508 [ 2F2BE70D3E02B6FA877921AB9516D43C ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
11:51:07.0921 3508 idsvc - ok
11:51:08.0186 3508 [ 677AA5991026A65ADA128C4B59CF2BAD ] igfx C:\Windows\system32\DRIVERS\igdkmd64.sys
11:51:08.0342 3508 igfx - ok
11:51:08.0358 3508 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys
11:51:08.0389 3508 iirsp - ok
11:51:08.0452 3508 [ C5B4683680DF085B57BC53E5EF34861F ] IKEEXT C:\Windows\System32\ikeext.dll
11:51:08.0530 3508 IKEEXT - ok
11:51:08.0576 3508 [ D485D3BD3E2179AA86853A182F70699F ] IntcHdmiAddService C:\Windows\system32\drivers\IntcHdmi.sys
11:51:08.0623 3508 IntcHdmiAddService - ok
11:51:08.0639 3508 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\Windows\system32\DRIVERS\intelide.sys
11:51:08.0670 3508 intelide - ok
11:51:08.0686 3508 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
11:51:08.0717 3508 intelppm - ok
11:51:08.0717 3508 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\Windows\system32\ipbusenum.dll
11:51:08.0795 3508 IPBusEnum - ok
11:51:08.0810 3508 [ 722DD294DF62483CECAAE6E094B4D695 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
11:51:08.0873 3508 IpFilterDriver - ok
11:51:08.0888 3508 [ F8E058D17363EC580E4B7232778B6CB5 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
11:51:08.0951 3508 iphlpsvc - ok
11:51:08.0982 3508 [ E2B4A4494DB7CB9B89B55CA268C337C5 ] IPMIDRV C:\Windows\system32\DRIVERS\IPMIDrv.sys
11:51:09.0013 3508 IPMIDRV - ok
11:51:09.0029 3508 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
11:51:09.0122 3508 IPNAT - ok
11:51:09.0185 3508 [ E94503089DF8976F5C4C9D5168E9765F ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
11:51:09.0263 3508 iPod Service - ok
11:51:09.0294 3508 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
11:51:09.0325 3508 IRENUM - ok
11:51:09.0341 3508 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\Windows\system32\DRIVERS\isapnp.sys
11:51:09.0356 3508 isapnp - ok
11:51:09.0388 3508 [ FA4D2557DE56D45B0A346F93564BE6E1 ] iScsiPrt C:\Windows\system32\DRIVERS\msiscsi.sys
11:51:09.0434 3508 iScsiPrt - ok
11:51:09.0481 3508 [ 7DBAFE10C1B777305C80BEA42FBDA710 ] k57nd60a C:\Windows\system32\DRIVERS\k57nd60a.sys
11:51:09.0512 3508 k57nd60a - ok
11:51:09.0528 3508 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
11:51:09.0544 3508 kbdclass - ok
11:51:09.0559 3508 [ 6DEF98F8541E1B5DCEB2C822A11F7323 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
11:51:09.0606 3508 kbdhid - ok
11:51:09.0637 3508 [ 156F6159457D0AA7E59B62681B56EB90 ] KeyIso C:\Windows\system32\lsass.exe
11:51:09.0653 3508 KeyIso - ok
11:51:09.0684 3508 [ 4F4B5FDE429416877DE7143044582EB5 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
11:51:09.0715 3508 KSecDD - ok
11:51:09.0731 3508 [ 6F40465A44ECDC1731BEFAFEC5BDD03C ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
11:51:09.0746 3508 KSecPkg - ok
11:51:09.0762 3508 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
11:51:09.0809 3508 ksthunk - ok
11:51:09.0856 3508 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\Windows\system32\msdtckrm.dll
11:51:09.0934 3508 KtmRm - ok
11:51:09.0996 3508 [ 81F1D04D4D0E433099365127375FD501 ] LanmanServer C:\Windows\system32\srvsvc.dll
11:51:10.0043 3508 LanmanServer - ok
11:51:10.0090 3508 [ 27026EAC8818E8A6C00A1CAD2F11D29A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
11:51:10.0168 3508 LanmanWorkstation - ok
11:51:10.0199 3508 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
11:51:10.0261 3508 lltdio - ok
11:51:10.0277 3508 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\Windows\System32\lltdsvc.dll
11:51:10.0339 3508 lltdsvc - ok
11:51:10.0386 3508 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\Windows\System32\lmhsvc.dll
11:51:10.0417 3508 lmhosts - ok
11:51:10.0433 3508 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys
11:51:10.0480 3508 LSI_FC - ok
11:51:10.0495 3508 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys
11:51:10.0526 3508 LSI_SAS - ok
11:51:10.0542 3508 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys
11:51:10.0558 3508 LSI_SAS2 - ok
11:51:10.0573 3508 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys
11:51:10.0604 3508 LSI_SCSI - ok
11:51:10.0620 3508 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\Windows\system32\drivers\luafv.sys
11:51:10.0682 3508 luafv - ok
11:51:10.0714 3508 [ F84C8F1000BC11E3B7B23CBD3BAFF111 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
11:51:10.0760 3508 Mcx2Svc - ok
11:51:10.0776 3508 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\Windows\system32\DRIVERS\megasas.sys
11:51:10.0838 3508 megasas - ok
11:51:10.0854 3508 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys
11:51:10.0948 3508 MegaSR - ok
11:51:11.0057 3508 [ 123271BD5237AB991DC5C21FDF8835EB ] Microsoft Office Groove Audit Service C:\Program Files (x86)\Microsoft Office\Office12\GrooveAuditService.exe
11:51:11.0119 3508 Microsoft Office Groove Audit Service - ok
11:51:11.0166 3508 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\Windows\system32\mmcss.dll
11:51:11.0213 3508 MMCSS - ok
11:51:11.0228 3508 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\Windows\system32\drivers\modem.sys
11:51:11.0306 3508 Modem - ok
11:51:11.0322 3508 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\Windows\system32\DRIVERS\monitor.sys
11:51:11.0353 3508 monitor - ok
11:51:11.0369 3508 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
11:51:11.0400 3508 mouclass - ok
11:51:11.0416 3508 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
11:51:11.0462 3508 mouhid - ok
11:51:11.0478 3508 [ 791AF66C4D0E7C90A3646066386FB571 ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
11:51:11.0494 3508 mountmgr - ok
11:51:11.0572 3508 [ CB8AF049AC9BE419A77ADAE288673359 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
11:51:11.0634 3508 MozillaMaintenance - ok
11:51:11.0650 3508 [ 609D1D87649ECC19796F4D76D4C15CEA ] mpio C:\Windows\system32\DRIVERS\mpio.sys
11:51:11.0681 3508 mpio - ok
11:51:11.0696 3508 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
11:51:11.0728 3508 mpsdrv - ok
11:51:11.0774 3508 [ AECAB449567D1846DAD63ECE49E893E3 ] MpsSvc C:\Windows\system32\mpssvc.dll
11:51:11.0837 3508 MpsSvc - ok
11:51:11.0852 3508 [ 30524261BB51D96D6FCBAC20C810183C ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
11:51:11.0899 3508 MRxDAV - ok
11:51:11.0946 3508 [ 040D62A9D8AD28922632137ACDD984F2 ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
11:51:11.0993 3508 mrxsmb - ok
11:51:12.0040 3508 [ F0067552F8F9B33D7C59403AB808A3CB ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
11:51:12.0071 3508 mrxsmb10 - ok
11:51:12.0086 3508 [ 3C142D31DE9F2F193218A53FE2632051 ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
11:51:12.0118 3508 mrxsmb20 - ok
11:51:12.0133 3508 [ 5C37497276E3B3A5488B23A326A754B7 ] msahci C:\Windows\system32\DRIVERS\msahci.sys
11:51:12.0149 3508 msahci - ok
11:51:12.0196 3508 [ F00512A58B7FFCBC26BB685E9016B9F0 ] mscank C:\Windows\system32\DRIVERS\mscank64.sys
11:51:12.0211 3508 mscank - ok
11:51:12.0227 3508 [ 8D27B597229AED79430FB9DB3BCBFBD0 ] msdsm C:\Windows\system32\DRIVERS\msdsm.sys
11:51:12.0258 3508 msdsm - ok
11:51:12.0523 3508 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\Windows\System32\msdtc.exe
11:51:12.0570 3508 MSDTC - ok
11:51:12.0617 3508 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\Windows\system32\drivers\Msfs.sys
11:51:12.0664 3508 Msfs - ok
11:51:12.0679 3508 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
11:51:12.0742 3508 mshidkmdf - ok
11:51:12.0757 3508 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\Windows\system32\DRIVERS\msisadrv.sys
11:51:12.0773 3508 msisadrv - ok
11:51:12.0835 3508 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
11:51:12.0913 3508 MSiSCSI - ok
11:51:12.0913 3508 msiserver - ok
11:51:12.0944 3508 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
11:51:13.0022 3508 MSKSSRV - ok
11:51:13.0038 3508 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
11:51:13.0116 3508 MSPCLOCK - ok
11:51:13.0132 3508 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
11:51:13.0178 3508 MSPQM - ok
11:51:13.0194 3508 [ 89CB141AA8616D8C6A4610FA26C60964 ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
11:51:13.0210 3508 MsRPC - ok
11:51:13.0225 3508 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\Windows\system32\DRIVERS\mssmbios.sys
11:51:13.0241 3508 mssmbios - ok
11:51:13.0256 3508 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
11:51:13.0319 3508 MSTEE - ok
11:51:13.0334 3508 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys
11:51:13.0381 3508 MTConfig - ok
11:51:13.0381 3508 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\Windows\system32\Drivers\mup.sys
11:51:13.0397 3508 Mup - ok
11:51:13.0444 3508 [ 4987E079A4530FA737A128BE54B63B12 ] napagent C:\Windows\system32\qagentRT.dll
11:51:13.0506 3508 napagent - ok
11:51:13.0537 3508 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
11:51:13.0568 3508 NativeWifiP - ok
11:51:13.0615 3508 [ CAD515DBD07D082BB317D9928CE8962C ] NDIS C:\Windows\system32\drivers\ndis.sys
11:51:13.0678 3508 NDIS - ok
11:51:13.0693 3508 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
11:51:13.0756 3508 NdisCap - ok
11:51:13.0771 3508 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
11:51:13.0818 3508 NdisTapi - ok
11:51:13.0818 3508 [ F105BA1E22BF1F2EE8F005D4305E4BEC ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
11:51:13.0865 3508 Ndisuio - ok
11:51:13.0880 3508 [ 557DFAB9CA1FCB036AC77564C010DAD3 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
11:51:13.0912 3508 NdisWan - ok
11:51:13.0927 3508 [ 659B74FB74B86228D6338D643CD3E3CF ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
11:51:13.0974 3508 NDProxy - ok
11:51:13.0990 3508 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
11:51:14.0036 3508 NetBIOS - ok
11:51:14.0052 3508 [ 9162B273A44AB9DCE5B44362731D062A ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
11:51:14.0114 3508 NetBT - ok
11:51:14.0130 3508 [ 156F6159457D0AA7E59B62681B56EB90 ] Netlogon C:\Windows\system32\lsass.exe
11:51:14.0146 3508 Netlogon - ok
11:51:14.0192 3508 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\Windows\System32\netman.dll
11:51:14.0255 3508 Netman - ok
11:51:14.0270 3508 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\Windows\System32\netprofm.dll
11:51:14.0333 3508 netprofm - ok
11:51:14.0364 3508 [ 3E5A36127E201DDF663176B66828FAFE ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
11:51:14.0411 3508 NetTcpPortSharing - ok
11:51:14.0536 3508 [ 705283C02177809CA9FA7CC58A4F1E77 ] NETw5v64 C:\Windows\system32\DRIVERS\NETw5v64.sys
11:51:14.0629 3508 NETw5v64 - ok
11:51:14.0676 3508 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys
11:51:14.0723 3508 nfrd960 - ok
11:51:14.0738 3508 [ D9A0CE66046D6EFA0C61BAA885CBA0A8 ] NlaSvc C:\Windows\System32\nlasvc.dll
11:51:14.0785 3508 NlaSvc - ok
11:51:14.0801 3508 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\Windows\system32\drivers\Npfs.sys
11:51:14.0848 3508 Npfs - ok
11:51:14.0894 3508 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\Windows\system32\nsisvc.dll
11:51:14.0941 3508 nsi - ok
11:51:14.0972 3508 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
11:51:15.0035 3508 nsiproxy - ok
11:51:15.0097 3508 [ 378E0E0DFEA67D98AE6EA53ADBBD76BC ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
11:51:15.0175 3508 Ntfs - ok
11:51:15.0191 3508 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\Windows\system32\drivers\Null.sys
11:51:15.0222 3508 Null - ok
11:51:15.0253 3508 [ A4D9C9A608A97F59307C2F2600EDC6A4 ] nvraid C:\Windows\system32\drivers\nvraid.sys
11:51:15.0300 3508 nvraid - ok
11:51:15.0347 3508 [ 6C1D5F70E7A6A3FD1C90D840EDC048B9 ] nvstor C:\Windows\system32\drivers\nvstor.sys
11:51:15.0394 3508 nvstor - ok
11:51:15.0409 3508 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\Windows\system32\DRIVERS\nv_agp.sys
11:51:15.0440 3508 nv_agp - ok
11:51:15.0534 3508 [ 785F487A64950F3CB8E9F16253BA3B7B ] odserv C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
11:51:15.0596 3508 odserv - ok
11:51:15.0628 3508 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\Windows\system32\DRIVERS\ohci1394.sys
11:51:15.0674 3508 ohci1394 - ok
11:51:15.0721 3508 [ BB9F6A68EB07C920C9975F2A0AE43FD1 ] Online Protection System C:\Program Files\Quick Heal\Quick Heal Total Security\opssvc.exe
11:51:15.0737 3508 Online Protection System - ok
11:51:15.0784 3508 [ 5A432A042DAE460ABE7199B758E8606C ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
11:51:15.0830 3508 ose - ok
11:51:15.0877 3508 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
11:51:15.0971 3508 p2pimsvc - ok
11:51:16.0002 3508 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\Windows\system32\p2psvc.dll
11:51:16.0096 3508 p2psvc - ok
11:51:16.0127 3508 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\Windows\system32\DRIVERS\parport.sys
11:51:16.0174 3508 Parport - ok
11:51:16.0220 3508 [ 90061B1ACFE8CCAA5345750FFE08D8B8 ] partmgr C:\Windows\system32\drivers\partmgr.sys
11:51:16.0252 3508 partmgr - ok
11:51:16.0267 3508 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll
11:51:16.0283 3508 PcaSvc - ok
11:51:16.0298 3508 [ F36F6504009F2FB0DFD1B17A116AD74B ] pci C:\Windows\system32\DRIVERS\pci.sys
11:51:16.0314 3508 pci - ok
11:51:16.0330 3508 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\Windows\system32\DRIVERS\pciide.sys
11:51:16.0376 3508 pciide - ok
11:51:16.0392 3508 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
11:51:16.0423 3508 pcmcia - ok
11:51:16.0439 3508 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\Windows\system32\drivers\pcw.sys
11:51:16.0470 3508 pcw - ok
11:51:16.0486 3508 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\Windows\system32\drivers\peauth.sys
11:51:16.0548 3508 PEAUTH - ok
11:51:16.0657 3508 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\Windows\SysWow64\perfhost.exe
11:51:16.0720 3508 PerfHost - ok
11:51:16.0766 3508 [ 557E9A86F65F0DE18C9B6751DFE9D3F1 ] pla C:\Windows\system32\pla.dll
11:51:16.0891 3508 pla - ok
11:51:16.0922 3508 [ 98B1721B8718164293B9701B98C52D77 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
11:51:16.0985 3508 PlugPlay - ok
11:51:17.0000 3508 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
11:51:17.0047 3508 PNRPAutoReg - ok
11:51:17.0078 3508 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
11:51:17.0110 3508 PNRPsvc - ok
11:51:17.0156 3508 [ 166EB40D1F5B47E615DE3D0FFFE5F243 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
11:51:17.0234 3508 PolicyAgent - ok
11:51:17.0281 3508 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\Windows\system32\umpo.dll
11:51:17.0344 3508 Power - ok
11:51:17.0390 3508 [ 27CC19E81BA5E3403C48302127BDA717 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
11:51:17.0453 3508 PptpMiniport - ok
11:51:17.0468 3508 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\Windows\system32\DRIVERS\processr.sys
11:51:17.0484 3508 Processor - ok
11:51:17.0531 3508 [ 97293447431311C06703368AD0F6C4BE ] ProfSvc C:\Windows\system32\profsvc.dll
11:51:17.0562 3508 ProfSvc - ok
11:51:17.0578 3508 [ 156F6159457D0AA7E59B62681B56EB90 ] ProtectedStorage C:\Windows\system32\lsass.exe
11:51:17.0609 3508 ProtectedStorage - ok
11:51:17.0624 3508 [ EE992183BD8EAEFD9973F352E587A299 ] Psched C:\Windows\system32\DRIVERS\pacer.sys
11:51:17.0671 3508 Psched - ok
11:51:17.0734 3508 [ 4712CC14E720ECCCC0AA16949D18AAF1 ] PxHlpa64 C:\Windows\system32\Drivers\PxHlpa64.sys
11:51:17.0749 3508 PxHlpa64 - ok
11:51:17.0780 3508 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys
11:51:17.0890 3508 ql2300 - ok
11:51:17.0921 3508 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys
11:51:17.0983 3508 ql40xx - ok
11:51:18.0030 3508 [ E599148A72888A009A1DC6470BC06794 ] Quick Update Service C:\Program Files\Quick Heal\Quick Heal Total Security\quhlpsvc.exe
11:51:18.0046 3508 Quick Update Service - ok
11:51:18.0092 3508 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\Windows\system32\qwave.dll
11:51:18.0139 3508 QWAVE - ok
11:51:18.0155 3508 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
11:51:18.0186 3508 QWAVEdrv - ok
11:51:18.0202 3508 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
11:51:18.0264 3508 RasAcd - ok
11:51:18.0311 3508 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
11:51:18.0358 3508 RasAgileVpn - ok
11:51:18.0373 3508 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\Windows\System32\rasauto.dll
11:51:18.0436 3508 RasAuto - ok
11:51:18.0451 3508 [ 87A6E852A22991580D6D39ADC4790463 ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
11:51:18.0498 3508 Rasl2tp - ok
11:51:18.0529 3508 [ 47394ED3D16D053F5906EFE5AB51CC83 ] RasMan C:\Windows\System32\rasmans.dll
11:51:18.0607 3508 RasMan - ok
11:51:18.0623 3508 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
11:51:18.0654 3508 RasPppoe - ok
11:51:18.0670 3508 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
11:51:18.0716 3508 RasSstp - ok
11:51:18.0732 3508 [ 3BAC8142102C15D59A87757C1D41DCE5 ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
11:51:18.0794 3508 rdbss - ok
11:51:18.0810 3508 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
11:51:18.0872 3508 rdpbus - ok
11:51:18.0888 3508 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
11:51:18.0935 3508 RDPCDD - ok
11:51:18.0966 3508 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
11:51:19.0013 3508 RDPENCDD - ok
11:51:19.0044 3508 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
11:51:19.0075 3508 RDPREFMP - ok
11:51:19.0122 3508 [ 447DE7E3DEA39D422C1504F245B668B1 ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
11:51:19.0200 3508 RDPWD - ok
11:51:19.0231 3508 [ 634B9A2181D98F15941236886164EC8B ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
11:51:19.0247 3508 rdyboost - ok
11:51:19.0278 3508 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\Windows\System32\mprdim.dll
11:51:19.0372 3508 RemoteAccess - ok
11:51:19.0403 3508 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll
11:51:19.0465 3508 RemoteRegistry - ok
11:51:19.0512 3508 [ 3DD798846E2C28102B922C56E71B7932 ] RFCOMM C:\Windows\system32\DRIVERS\rfcomm.sys
11:51:19.0574 3508 RFCOMM - ok
11:51:19.0606 3508 [ 6FAF5B04BEDC66D300D9D233B2D222F0 ] rimmptsk C:\Windows\system32\DRIVERS\rimmpx64.sys
11:51:19.0637 3508 rimmptsk - ok
11:51:19.0652 3508 [ 67F50C31713106FD1B0F286F86AA2B2E ] rimsptsk C:\Windows\system32\DRIVERS\rimspx64.sys
11:51:19.0684 3508 rimsptsk - ok
11:51:19.0715 3508 [ 4D7EF3D46346EC4C58784DB964B365DE ] rismxdp C:\Windows\system32\DRIVERS\rixdpx64.sys
11:51:19.0746 3508 rismxdp - ok
11:51:19.0762 3508 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
11:51:19.0808 3508 RpcEptMapper - ok
11:51:19.0840 3508 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\Windows\system32\locator.exe
11:51:19.0902 3508 RpcLocator - ok
11:51:19.0933 3508 [ 7266972E86890E2B30C0C322E906B027 ] RpcSs C:\Windows\system32\rpcss.dll
11:51:19.0980 3508 RpcSs - ok
11:51:20.0027 3508 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
11:51:20.0089 3508 rspndr - ok
11:51:20.0089 3508 [ 156F6159457D0AA7E59B62681B56EB90 ] SamSs C:\Windows\system32\lsass.exe
11:51:20.0105 3508 SamSs - ok
11:51:20.0120 3508 [ E3BBB89983DAF5622C1D50CF49F28227 ] sbp2port C:\Windows\system32\DRIVERS\sbp2port.sys
11:51:20.0152 3508 sbp2port - ok
11:51:20.0198 3508 [ DDE33528F026C9F2E182A54138D42640 ] ScanWscS C:\Program Files\Quick Heal\Quick Heal Total Security\SCANWSCS.EXE
11:51:20.0214 3508 ScanWscS - ok
11:51:20.0230 3508 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\Windows\System32\SCardSvr.dll
11:51:20.0292 3508 SCardSvr - ok
11:51:20.0308 3508 [ C94DA20C7E3BA1DCA269BC8460D98387 ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
11:51:20.0401 3508 scfilter - ok
11:51:20.0464 3508 [ 624D0F5FF99428BB90A5B8A4123E918E ] Schedule C:\Windows\system32\schedsvc.dll
11:51:20.0526 3508 Schedule - ok
11:51:20.0573 3508 [ 312E2F82AF11E79906898AC3E3D58A1F ] SCPolicySvc C:\Windows\System32\certprop.dll
11:51:20.0620 3508 SCPolicySvc - ok
11:51:20.0666 3508 [ 54E47AD086782D3AE9417C155CDCEB9B ] sdbus C:\Windows\system32\DRIVERS\sdbus.sys
11:51:20.0713 3508 sdbus - ok
11:51:20.0760 3508 [ 765A27C3279CE11D14CB9E4F5869FCA5 ] SDRSVC C:\Windows\System32\SDRSVC.dll
11:51:20.0854 3508 SDRSVC - ok
11:51:20.0900 3508 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys
11:51:20.0963 3508 secdrv - ok
11:51:20.0978 3508 [ 463B386EBC70F98DA5DFF85F7E654346 ] seclogon C:\Windows\system32\seclogon.dll
11:51:21.0041 3508 seclogon - ok
11:51:21.0056 3508 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\Windows\System32\sens.dll
11:51:21.0088 3508 SENS - ok
11:51:21.0088 3508 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\Windows\system32\sensrsvc.dll
11:51:21.0150 3508 SensrSvc - ok
11:51:21.0166 3508 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
11:51:21.0228 3508 Serenum - ok
11:51:21.0244 3508 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\Windows\system32\DRIVERS\serial.sys
11:51:21.0290 3508 Serial - ok
11:51:21.0306 3508 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys
11:51:21.0353 3508 sermouse - ok
11:51:21.0368 3508 [ C3BC61CE47FF6F4E88AB8A3B429A36AF ] SessionEnv C:\Windows\system32\sessenv.dll
11:51:21.0431 3508 SessionEnv - ok
11:51:21.0462 3508 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\Windows\system32\DRIVERS\sffdisk.sys
11:51:21.0524 3508 sffdisk - ok
11:51:21.0540 3508 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\Windows\system32\DRIVERS\sffp_mmc.sys
11:51:21.0649 3508 sffp_mmc - ok
11:51:21.0649 3508 [ 5588B8C6193EB1522490C122EB94DFFA ] sffp_sd C:\Windows\system32\DRIVERS\sffp_sd.sys
11:51:21.0680 3508 sffp_sd - ok
11:51:21.0696 3508 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
11:51:21.0727 3508 sfloppy - ok
11:51:21.0821 3508 [ 7F475425582163602EF1589C0071E521 ] SftService C:\Program Files (x86)\Dell DataSafe Local Backup\sftservice.EXE
11:51:21.0899 3508 SftService - ok
11:51:21.0946 3508 [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess C:\Windows\System32\ipnathlp.dll
11:51:22.0024 3508 SharedAccess - ok
11:51:22.0070 3508 [ 0298AC45D0EFFFB2DB4BAA7DD186E7BF ] ShellHWDetection C:\Windows\System32\shsvcs.dll
11:51:22.0117 3508 ShellHWDetection - ok
11:51:22.0133 3508 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys
11:51:22.0148 3508 SiSRaid2 - ok
11:51:22.0164 3508 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys
11:51:22.0195 3508 SiSRaid4 - ok
11:51:22.0273 3508 [ F07AF60B152221472FBDB2FECEC4896D ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe
11:51:22.0304 3508 SkypeUpdate - ok
11:51:22.0320 3508 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\Windows\system32\DRIVERS\smb.sys
11:51:22.0382 3508 Smb - ok
11:51:22.0414 3508 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\Windows\System32\snmptrap.exe
11:51:22.0445 3508 SNMPTRAP - ok
11:51:22.0492 3508 [ 9B24DCA429F819DB314F30EE4C6C80FD ] Sound Blaster X-Fi MB Licensing Service C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\XMBLicensing.exe
11:51:22.0507 3508 Sound Blaster X-Fi MB Licensing Service ( UnsignedFile.Multi.Generic ) - warning
11:51:22.0507 3508 Sound Blaster X-Fi MB Licensing Service - detected UnsignedFile.Multi.Generic (1)
11:51:22.0538 3508 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\Windows\system32\drivers\spldr.sys
11:51:22.0554 3508 spldr - ok
11:51:22.0601 3508 [ 567977DC43CC13C4C35ED7084C0B84D5 ] Spooler C:\Windows\System32\spoolsv.exe
11:51:22.0648 3508 Spooler - ok
11:51:22.0726 3508 [ 913D843498553A1BC8F8DBAD6358E49F ] sppsvc C:\Windows\system32\sppsvc.exe
11:51:22.0788 3508 sppsvc - ok
11:51:22.0788 3508 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\Windows\system32\sppuinotify.dll
11:51:22.0866 3508 sppuinotify - ok
11:51:22.0928 3508 [ D630B6F2E8379B6F10DC16E82A426552 ] sprtsvc_DellSupportCenter C:\Program Files (x86)\Dell Support Center\bin\sprtsvc.exe
11:51:22.0944 3508 sprtsvc_DellSupportCenter - ok
11:51:23.0006 3508 [ 2408C0366D96BCDF63E8F1C78E4A29C5 ] srv C:\Windows\system32\DRIVERS\srv.sys
11:51:23.0038 3508 srv - ok
11:51:23.0069 3508 [ 76548F7B818881B47D8D1AE1BE9C11F8 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
11:51:23.0084 3508 srv2 - ok
11:51:23.0116 3508 [ 0AF6E19D39C70844C5CAA8FB0183C36E ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
11:51:23.0131 3508 srvnet - ok
11:51:23.0178 3508 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
11:51:23.0240 3508 SSDPSRV - ok
11:51:23.0256 3508 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\Windows\system32\sstpsvc.dll
11:51:23.0318 3508 SstpSvc - ok
11:51:23.0459 3508 [ 444109453A2B87E6C16BCDA5953E81A9 ] STacSV C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_afc3018f8cfedd20\STacSV64.exe
11:51:23.0490 3508 STacSV - ok
11:51:23.0537 3508 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys
11:51:23.0584 3508 stexstor - ok
11:51:23.0630 3508 [ 02E784FA49032F84964DB90A3ED81890 ] STHDA C:\Windows\system32\DRIVERS\stwrt64.sys
11:51:23.0662 3508 STHDA - ok
11:51:23.0708 3508 [ 52D0E33B681BD0F33FDC08812FEE4F7D ] stisvc C:\Windows\System32\wiaservc.dll
11:51:23.0771 3508 stisvc - ok
11:51:23.0786 3508 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\Windows\system32\DRIVERS\swenum.sys
11:51:23.0786 3508 swenum - ok
11:51:23.0833 3508 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\Windows\System32\swprv.dll
11:51:23.0880 3508 swprv - ok
11:51:23.0911 3508 [ 1657B7442D5CE30533F5C4317716B468 ] SynTP C:\Windows\system32\DRIVERS\SynTP.sys
11:51:23.0911 3508 SynTP - ok
11:51:23.0974 3508 [ 3C1284516A62078FB68F768DE4F1A7BE ] SysMain C:\Windows\system32\sysmain.dll
11:51:24.0036 3508 SysMain - ok
11:51:24.0052 3508 [ 238935C3CF2854886DC7CBB2A0E2CC66 ] TabletInputService C:\Windows\System32\TabSvc.dll
11:51:24.0114 3508 TabletInputService - ok
11:51:24.0145 3508 [ 884264AC597B690C5707C89723BB8E7B ] TapiSrv C:\Windows\System32\tapisrv.dll
11:51:24.0192 3508 TapiSrv - ok
11:51:24.0223 3508 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\Windows\System32\tbssvc.dll
11:51:24.0286 3508 TBS - ok
11:51:24.0348 3508 [ 624C5B3AA4C99B3184BB922D9ECE3FF0 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
11:51:24.0395 3508 Tcpip - ok
11:51:24.0457 3508 [ 624C5B3AA4C99B3184BB922D9ECE3FF0 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
11:51:24.0504 3508 TCPIP6 - ok
11:51:24.0551 3508 [ 76D078AF6F587B162D50210F761EB9ED ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
11:51:24.0598 3508 tcpipreg - ok
11:51:24.0613 3508 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
11:51:24.0660 3508 TDPIPE - ok
11:51:24.0707 3508 [ 7518F7BCFD4B308ABC9192BACAF6C970 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
11:51:24.0769 3508 TDTCP - ok
11:51:24.0769 3508 [ 079125C4B17B01FCAEEBCE0BCB290C0F ] tdx C:\Windows\system32\DRIVERS\tdx.sys
11:51:24.0816 3508 tdx - ok
11:51:24.0832 3508 [ C448651339196C0E869A355171875522 ] TermDD C:\Windows\system32\DRIVERS\termdd.sys
11:51:24.0847 3508 TermDD - ok
11:51:24.0863 3508 [ 0F05EC2887BFE197AD82A13287D2F404 ] TermService C:\Windows\System32\termsrv.dll
11:51:24.0925 3508 TermService - ok
11:51:24.0941 3508 [ F0344071948D1A1FA732231785A0664C ] Themes C:\Windows\system32\themeservice.dll
11:51:24.0972 3508 Themes - ok
11:51:25.0003 3508 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\Windows\system32\mmcss.dll
11:51:25.0050 3508 THREADORDER - ok
11:51:25.0066 3508 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\Windows\System32\trkwks.dll
11:51:25.0112 3508 TrkWks - ok
11:51:25.0190 3508 [ 840F7FB849F5887A49BA18C13B2DA920 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
11:51:25.0222 3508 TrustedInstaller - ok
11:51:25.0237 3508 [ 61B96C26131E37B24E93327A0BD1FB95 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
11:51:25.0300 3508 tssecsrv - ok
11:51:25.0315 3508 [ 3836171A2CDF3AF8EF10856DB9835A70 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
11:51:25.0362 3508 tunnel - ok
11:51:25.0393 3508 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys
11:51:25.0424 3508 uagp35 - ok
11:51:25.0456 3508 [ D47BAEAD86C65D4F4069D7CE0A4EDCEB ] udfs C:\Windows\system32\DRIVERS\udfs.sys
11:51:25.0565 3508 udfs - ok
11:51:25.0580 3508 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\Windows\system32\UI0Detect.exe
11:51:25.0627 3508 UI0Detect - ok
11:51:25.0643 3508 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\Windows\system32\DRIVERS\uliagpkx.sys
11:51:25.0674 3508 uliagpkx - ok
11:51:25.0690 3508 [ EAB6C35E62B1B0DB0D1B48B671D3A117 ] umbus C:\Windows\system32\DRIVERS\umbus.sys
11:51:25.0721 3508 umbus - ok
11:51:25.0736 3508 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\Windows\system32\DRIVERS\umpass.sys
11:51:25.0783 3508 UmPass - ok
11:51:25.0814 3508 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\Windows\System32\upnphost.dll
11:51:25.0877 3508 upnphost - ok
11:51:25.0924 3508 [ F724B03C3DFAACF08D17D38BF3333583 ] USBAAPL64 C:\Windows\system32\Drivers\usbaapl64.sys
11:51:25.0986 3508 USBAAPL64 - ok
11:51:26.0048 3508 [ 77B01BC848298223A95D4EC23E1785A1 ] usbaudio C:\Windows\system32\drivers\usbaudio.sys
11:51:26.0111 3508 usbaudio - ok
11:51:26.0126 3508 [ 7B6A127C93EE590E4D79A5F2A76FE46F ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
11:51:26.0158 3508 usbccgp - ok
11:51:26.0204 3508 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\Windows\system32\DRIVERS\usbcir.sys
11:51:26.0282 3508 usbcir - ok
11:51:26.0329 3508 [ 92969BA5AC44E229C55A332864F79677 ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
11:51:26.0345 3508 usbehci - ok
11:51:26.0407 3508 [ E7DF1CFD28CA86B35EF5ADD0735CEEF3 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
11:51:26.0454 3508 usbhub - ok
11:51:26.0485 3508 [ F1BB1E55F1E7A65C5839CCC7B36D773E ] usbohci C:\Windows\system32\drivers\usbohci.sys
11:51:26.0548 3508 usbohci - ok
11:51:26.0579 3508 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
11:51:26.0610 3508 usbprint - ok
11:51:26.0657 3508 [ F39983647BC1F3E6100778DDFE9DCE29 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
11:51:26.0719 3508 USBSTOR - ok
11:51:26.0735 3508 [ BC3070350A491D84B518D7CCA9ABD36F ] usbuhci C:\Windows\system32\DRIVERS\usbuhci.sys
11:51:26.0750 3508 usbuhci - ok
11:51:26.0797 3508 [ 7CB8C573C6E4A2714402CC0A36EAB4FE ] usbvideo C:\Windows\System32\Drivers\usbvideo.sys
11:51:26.0844 3508 usbvideo - ok
11:51:26.0875 3508 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\Windows\System32\uxsms.dll
11:51:26.0953 3508 UxSms - ok
11:51:26.0969 3508 [ 156F6159457D0AA7E59B62681B56EB90 ] VaultSvc C:\Windows\system32\lsass.exe
11:51:26.0984 3508 VaultSvc - ok
11:51:27.0016 3508 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\Windows\system32\DRIVERS\vdrvroot.sys
11:51:27.0031 3508 vdrvroot - ok
11:51:27.0062 3508 [ 44D73E0BBC1D3C8981304BA15135C2F2 ] vds C:\Windows\System32\vds.exe
11:51:27.0078 3508 vds - ok
11:51:27.0109 3508 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
11:51:27.0140 3508 vga - ok
11:51:27.0156 3508 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\Windows\System32\drivers\vga.sys
11:51:27.0203 3508 VgaSave - ok
11:51:27.0218 3508 [ C82E748660F62A242B2DFAC1442F22A4 ] vhdmp C:\Windows\system32\DRIVERS\vhdmp.sys
11:51:27.0250 3508 vhdmp - ok
11:51:27.0265 3508 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\Windows\system32\DRIVERS\viaide.sys
11:51:27.0281 3508 viaide - ok
11:51:27.0312 3508 [ 2B1A3DAE2B4E70DBBA822B7A03FBD4A3 ] volmgr C:\Windows\system32\DRIVERS\volmgr.sys
11:51:27.0312 3508 volmgr - ok
11:51:27.0343 3508 [ 99B0CBB569CA79ACAED8C91461D765FB ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
11:51:27.0359 3508 volmgrx - ok
11:51:27.0406 3508 [ 58F82EED8CA24B461441F9C3E4F0BF5C ] volsnap C:\Windows\system32\DRIVERS\volsnap.sys
11:51:27.0437 3508 volsnap - ok
11:51:27.0468 3508 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys
11:51:27.0515 3508 vsmraid - ok
11:51:27.0546 3508 [ 787898BF9FB6D7BD87A36E2D95C899BA ] VSS C:\Windows\system32\vssvc.exe
11:51:27.0624 3508 VSS - ok
11:51:27.0640 3508 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\Windows\System32\drivers\vwifibus.sys
11:51:27.0718 3508 vwifibus - ok
11:51:27.0749 3508 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\Windows\system32\w32time.dll
11:51:27.0796 3508 W32Time - ok
11:51:27.0811 3508 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys
11:51:27.0842 3508 WacomPen - ok
11:51:27.0874 3508 [ 47CA49400643EFFD3F1C9A27E1D69324 ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
11:51:27.0920 3508 WANARP - ok
11:51:27.0936 3508 [ 47CA49400643EFFD3F1C9A27E1D69324 ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
11:51:27.0983 3508 Wanarpv6 - ok
11:51:28.0061 3508 [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe
11:51:28.0154 3508 WatAdminSvc - ok
11:51:28.0217 3508 [ 5AB1BB85BD8B5089CC5D64200DEDAE68 ] wbengine C:\Windows\system32\wbengine.exe
11:51:28.0326 3508 wbengine - ok
11:51:28.0357 3508 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
11:51:28.0404 3508 WbioSrvc - ok
11:51:28.0451 3508 [ DD1BAE8EBFC653824D29CCF8C9054D68 ] wcncsvc C:\Windows\System32\wcncsvc.dll
11:51:28.0529 3508 wcncsvc - ok
11:51:28.0544 3508 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
11:51:28.0591 3508 WcsPlugInService - ok
11:51:28.0622 3508 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\Windows\system32\DRIVERS\wd.sys
11:51:28.0669 3508 Wd - ok
11:51:28.0700 3508 [ 441BD2D7B4F98134C3A4F9FA570FD250 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
11:51:28.0732 3508 Wdf01000 - ok
11:51:28.0747 3508 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\Windows\system32\wdi.dll
11:51:28.0778 3508 WdiServiceHost - ok
11:51:28.0794 3508 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\Windows\system32\wdi.dll
11:51:28.0810 3508 WdiSystemHost - ok
11:51:28.0856 3508 [ 733006127F235BE7C35354EBEE7B9A7B ] WebClient C:\Windows\System32\webclnt.dll
11:51:28.0919 3508 WebClient - ok
11:51:28.0950 3508 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\Windows\system32\wecsvc.dll
11:51:29.0012 3508 Wecsvc - ok
11:51:29.0028 3508 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\Windows\System32\wercplsupport.dll
11:51:29.0075 3508 wercplsupport - ok
11:51:29.0090 3508 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\Windows\System32\WerSvc.dll
11:51:29.0153 3508 WerSvc - ok
11:51:29.0184 3508 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
11:51:29.0215 3508 WfpLwf - ok
11:51:29.0262 3508 [ B14EF15BD757FA488F9C970EEE9C0D35 ] WimFltr C:\Windows\system32\DRIVERS\wimfltr.sys
11:51:29.0309 3508 WimFltr - ok
11:51:29.0309 3508 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\Windows\system32\drivers\wimmount.sys
11:51:29.0356 3508 WIMMount - ok
11:51:29.0371 3508 WinDefend - ok
11:51:29.0387 3508 WinHttpAutoProxySvc - ok
11:51:29.0465 3508 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
11:51:29.0527 3508 Winmgmt - ok
11:51:29.0574 3508 [ 41FBB751936B387F9179E7F03A74FE29 ] WinRM C:\Windows\system32\WsmSvc.dll
11:51:29.0746 3508 WinRM - ok
11:51:29.0808 3508 [ 817EAFF5D38674EDD7713B9DFB8E9791 ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys
11:51:29.0870 3508 WinUsb - ok
11:51:29.0902 3508 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\Windows\System32\wlansvc.dll
11:51:29.0948 3508 Wlansvc - ok
11:51:29.0980 3508 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\Windows\system32\DRIVERS\wmiacpi.sys
11:51:29.0995 3508 WmiAcpi - ok
11:51:30.0026 3508 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
11:51:30.0073 3508 wmiApSrv - ok
11:51:30.0104 3508 WMPNetworkSvc - ok
11:51:30.0120 3508 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\Windows\System32\wpcsvc.dll
11:51:30.0245 3508 WPCSvc - ok
11:51:30.0276 3508 [ 2E57DDF2880A7E52E76F41C7E96D327B ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
11:51:30.0338 3508 WPDBusEnum - ok
11:51:30.0370 3508 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
11:51:30.0432 3508 ws2ifsl - ok
11:51:30.0479 3508 [ 8F9F3969933C02DA96EB0F84576DB43E ] wscsvc C:\Windows\System32\wscsvc.dll
11:51:30.0526 3508 wscsvc - ok
11:51:30.0541 3508 WSearch - ok
11:51:30.0619 3508 [ A013B692640CF71DB221A797F4676248 ] wsnf C:\Windows\system32\DRIVERS\wsnf.sys
11:51:30.0650 3508 wsnf - ok
11:51:30.0682 3508 [ A013B692640CF71DB221A797F4676248 ] wsnfmp C:\Windows\system32\DRIVERS\wsnf.sys
11:51:30.0697 3508 wsnfmp - ok
11:51:30.0744 3508 [ 344349F787555FDEF1DEE62056E6ECF0 ] wstif C:\Windows\system32\drivers\wstif.sys
11:51:30.0760 3508 wstif - ok
11:51:30.0853 3508 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv C:\Windows\system32\wuaueng.dll
11:51:30.0900 3508 wuauserv - ok
11:51:30.0916 3508 [ 7CADC74271DD6461C452C271B30BD378 ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
11:51:30.0962 3508 WudfPf - ok
11:51:30.0994 3508 [ 3B197AF0FFF08AA66B6B2241CA538D64 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
11:51:31.0072 3508 WUDFRd - ok
11:51:31.0103 3508 [ B551D6637AA0E132C18AC6E504F7B79B ] wudfsvc C:\Windows\System32\WUDFSvc.dll
11:51:31.0165 3508 wudfsvc - ok
11:51:31.0181 3508 [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc C:\Windows\System32\wwansvc.dll
11:51:31.0243 3508 WwanSvc - ok

************ Remaining part in next reply

#9 dappy

dappy
  • Topic Starter

  • Members
  • 39 posts
  • OFFLINE
  •  
  • Local time:03:25 PM

Posted 23 September 2012 - 02:52 PM

TDSSKiller Log file Part 2:-

11:51:31.0274 3508 ================ Scan global ===============================
11:51:31.0306 3508 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
11:51:31.0352 3508 [ 0CB6EBF4B461A6043353C570BD72A1E1 ] C:\Windows\system32\winsrv.dll
11:51:31.0368 3508 [ 0CB6EBF4B461A6043353C570BD72A1E1 ] C:\Windows\system32\winsrv.dll
11:51:31.0415 3508 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
11:51:31.0430 3508 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
11:51:31.0446 3508 [Global] - ok
11:51:31.0446 3508 ================ Scan MBR ==================================
11:51:31.0462 3508 [ 5C616939100B85E558DA92B899A0FC36 ] \Device\Harddisk0\DR0
11:51:31.0914 3508 \Device\Harddisk0\DR0 ( TDSS File System ) - warning
11:51:31.0914 3508 \Device\Harddisk0\DR0 - detected TDSS File System (1)
11:51:31.0914 3508 ================ Scan VBR ==================================
11:51:31.0914 3508 [ D7378BF694D12B3BE92B25933EFD13FA ] \Device\Harddisk0\DR0\Partition1
11:51:31.0914 3508 \Device\Harddisk0\DR0\Partition1 - ok
11:51:31.0945 3508 [ EBBE15E9AC9BD469CB60522A92BCC846 ] \Device\Harddisk0\DR0\Partition2
11:51:31.0961 3508 \Device\Harddisk0\DR0\Partition2 - ok
11:51:31.0961 3508 ================ Scan active images ========================
11:51:31.0961 3508 [ 3E588B60EC061686BA05D33574A344C6 ] C:\Windows\System32\drivers\crashdmp.sys
11:51:31.0961 3508 C:\Windows\System32\drivers\crashdmp.sys - ok
11:51:31.0976 3508 [ 839B5FE3D48E9F35B22C21A3D5103F6C ] C:\Windows\System32\drivers\Dumpata.sys
11:51:31.0976 3508 C:\Windows\System32\drivers\Dumpata.sys - ok
11:51:31.0976 3508 [ 5C37497276E3B3A5488B23A326A754B7 ] C:\Windows\System32\drivers\msahci.sys
11:51:31.0976 3508 C:\Windows\System32\drivers\msahci.sys - ok
11:51:31.0976 3508 [ 814DB88F2641691575A455CF25354098 ] C:\Windows\System32\drivers\dumpfve.sys
11:51:31.0976 3508 C:\Windows\System32\drivers\dumpfve.sys - ok
11:51:31.0992 3508 [ 83D2D75E1EFB81B3450C18131443F7DB ] C:\Windows\System32\drivers\cdrom.sys
11:51:31.0992 3508 C:\Windows\System32\drivers\cdrom.sys - ok
11:51:32.0008 3508 [ 16A47CE2DECC9B099349A5F840654746 ] C:\Windows\System32\drivers\beep.sys
11:51:32.0008 3508 C:\Windows\System32\drivers\beep.sys - ok
11:51:32.0008 3508 [ 5CAC29C48D9398ED1B99C7E16C00F96D ] C:\Windows\System32\drivers\ggc.sys
11:51:32.0008 3508 C:\Windows\System32\drivers\ggc.sys - ok
11:51:32.0008 3508 [ 9899284589F75FA8724FF3D16AED75C1 ] C:\Windows\System32\drivers\null.sys
11:51:32.0008 3508 C:\Windows\System32\drivers\null.sys - ok
11:51:32.0023 3508 [ 53E92A310193CB3C03BEA963DE7D9CFC ] C:\Windows\System32\drivers\vga.sys
11:51:32.0023 3508 C:\Windows\System32\drivers\vga.sys - ok
11:51:32.0023 3508 [ E7353D59C9842BC7299FAEB7E7E09340 ] C:\Windows\System32\drivers\videoprt.sys
11:51:32.0023 3508 C:\Windows\System32\drivers\videoprt.sys - ok
11:51:32.0023 3508 [ FC438D1430B28618E2D0C7C332A710AD ] C:\Windows\System32\drivers\watchdog.sys
11:51:32.0023 3508 C:\Windows\System32\drivers\watchdog.sys - ok
11:51:32.0039 3508 [ CEA6CC257FC9B7715F1C2B4849286D24 ] C:\Windows\System32\drivers\RDPCDD.sys
11:51:32.0039 3508 C:\Windows\System32\drivers\RDPCDD.sys - ok
11:51:32.0039 3508 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] C:\Windows\System32\drivers\msfs.sys
11:51:32.0039 3508 C:\Windows\System32\drivers\msfs.sys - ok
11:51:32.0039 3508 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] C:\Windows\System32\drivers\npfs.sys
11:51:32.0039 3508 C:\Windows\System32\drivers\npfs.sys - ok
11:51:32.0054 3508 [ BB5971A4F00659529A5C44831AF22365 ] C:\Windows\System32\drivers\RDPENCDD.sys
11:51:32.0054 3508 C:\Windows\System32\drivers\RDPENCDD.sys - ok
11:51:32.0054 3508 [ 216F3FA57533D98E1F74DED70113177A ] C:\Windows\System32\drivers\RDPREFMP.sys
11:51:32.0054 3508 C:\Windows\System32\drivers\RDPREFMP.sys - ok
11:51:32.0054 3508 [ 50555005E22A56AEF10BE607472D0BDC ] C:\Windows\System32\drivers\FWPKCLNT.SYS
11:51:32.0054 3508 C:\Windows\System32\drivers\FWPKCLNT.SYS - ok
11:51:32.0070 3508 [ 624C5B3AA4C99B3184BB922D9ECE3FF0 ] C:\Windows\System32\drivers\tcpip.sys
11:51:32.0070 3508 C:\Windows\System32\drivers\tcpip.sys - ok
11:51:32.0070 3508 [ 9162B273A44AB9DCE5B44362731D062A ] C:\Windows\System32\drivers\netbt.sys
11:51:32.0070 3508 C:\Windows\System32\drivers\netbt.sys - ok
11:51:32.0086 3508 [ 0CA6FE26ACC7FFEE1BD0463F40835F32 ] C:\Windows\System32\drivers\tdi.sys
11:51:32.0086 3508 C:\Windows\System32\drivers\tdi.sys - ok
11:51:32.0086 3508 [ 079125C4B17B01FCAEEBCE0BCB290C0F ] C:\Windows\System32\drivers\tdx.sys
11:51:32.0086 3508 C:\Windows\System32\drivers\tdx.sys - ok
11:51:32.0086 3508 [ 344349F787555FDEF1DEE62056E6ECF0 ] C:\Windows\System32\drivers\wstif.sys
11:51:32.0086 3508 C:\Windows\System32\drivers\wstif.sys - ok
11:51:32.0101 3508 [ DB9D6C6B2CD95A9CA414D045B627422E ] C:\Windows\System32\drivers\afd.sys
11:51:32.0101 3508 C:\Windows\System32\drivers\afd.sys - ok
11:51:32.0101 3508 [ EE992183BD8EAEFD9973F352E587A299 ] C:\Windows\System32\drivers\pacer.sys
11:51:32.0101 3508 C:\Windows\System32\drivers\pacer.sys - ok
11:51:32.0101 3508 [ 611B23304BF067451A9FDEE01FBDD725 ] C:\Windows\System32\drivers\wfplwf.sys
11:51:32.0101 3508 C:\Windows\System32\drivers\wfplwf.sys - ok
11:51:32.0117 3508 [ 86743D9F5D2B1048062B14B1D84501C4 ] C:\Windows\System32\drivers\netbios.sys
11:51:32.0117 3508 C:\Windows\System32\drivers\netbios.sys - ok
11:51:32.0117 3508 [ 47CA49400643EFFD3F1C9A27E1D69324 ] C:\Windows\System32\drivers\wanarp.sys
11:51:32.0117 3508 C:\Windows\System32\drivers\wanarp.sys - ok
11:51:32.0117 3508 [ 3BAC8142102C15D59A87757C1D41DCE5 ] C:\Windows\System32\drivers\rdbss.sys
11:51:32.0117 3508 C:\Windows\System32\drivers\rdbss.sys - ok
11:51:32.0132 3508 [ C448651339196C0E869A355171875522 ] C:\Windows\System32\drivers\termdd.sys
11:51:32.0132 3508 C:\Windows\System32\drivers\termdd.sys - ok
11:51:32.0132 3508 [ E7F5AE18AF4168178A642A9247C63001 ] C:\Windows\System32\drivers\nsiproxy.sys
11:51:32.0132 3508 C:\Windows\System32\drivers\nsiproxy.sys - ok
11:51:32.0132 3508 [ 61583EE3C3A17003C4ACD0475646B4D3 ] C:\Windows\System32\drivers\blbdrive.sys
11:51:32.0132 3508 C:\Windows\System32\drivers\blbdrive.sys - ok
11:51:32.0148 3508 [ 9C253CE7311CA60FC11C774692A13208 ] C:\Windows\System32\drivers\dfsc.sys
11:51:32.0148 3508 C:\Windows\System32\drivers\dfsc.sys - ok
11:51:32.0148 3508 [ 13096B05847EC78F0977F2C0F79E9AB3 ] C:\Windows\System32\drivers\discache.sys
11:51:32.0148 3508 C:\Windows\System32\drivers\discache.sys - ok
11:51:32.0148 3508 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] C:\Windows\System32\drivers\mssmbios.sys
11:51:32.0148 3508 C:\Windows\System32\drivers\mssmbios.sys - ok
11:51:32.0164 3508 [ 3836171A2CDF3AF8EF10856DB9835A70 ] C:\Windows\System32\drivers\tunnel.sys
11:51:32.0164 3508 C:\Windows\System32\drivers\tunnel.sys - ok
11:51:32.0164 3508 [ 68DB778AC4FD7896CE2F153353BA15C8 ] C:\Windows\System32\ntdll.dll
11:51:32.0164 3508 C:\Windows\System32\ntdll.dll - ok
11:51:32.0164 3508 [ 1911A3356FA3F77CCC825CCBAC038C2A ] C:\Windows\System32\smss.exe
11:51:32.0179 3508 C:\Windows\System32\smss.exe - ok
11:51:32.0179 3508 [ 8B7F8E882A649D81CEA1EDE9BBB68FFF ] C:\Windows\System32\autochk.exe
11:51:32.0179 3508 C:\Windows\System32\autochk.exe - ok
11:51:32.0179 3508 [ 677AA5991026A65ADA128C4B59CF2BAD ] C:\Windows\System32\drivers\igdkmd64.sys
11:51:32.0179 3508 C:\Windows\System32\drivers\igdkmd64.sys - ok
11:51:32.0195 3508 [ 1633B9ABF52784A1331476397A48CBEF ] C:\Windows\System32\drivers\dxgkrnl.sys
11:51:32.0195 3508 C:\Windows\System32\drivers\dxgkrnl.sys - ok
11:51:32.0195 3508 [ 3238B9078E0766AB5E62DC737A809ADB ] C:\Windows\System32\drivers\dxgmms1.sys
11:51:32.0195 3508 C:\Windows\System32\drivers\dxgmms1.sys - ok
11:51:32.0195 3508 [ 48CC125A6AB6C72A13E3D3E9C39AD9D9 ] C:\Windows\System32\shell32.dll
11:51:32.0195 3508 C:\Windows\System32\shell32.dll - ok
11:51:32.0210 3508 [ 7083F463788CB34FCC42F565D56F89E8 ] C:\Windows\System32\ws2_32.dll
11:51:32.0210 3508 C:\Windows\System32\ws2_32.dll - ok
11:51:32.0210 3508 [ D841F7629505EE542E26E5F0A4D20101 ] C:\Windows\System32\iertutil.dll
11:51:32.0210 3508 C:\Windows\System32\iertutil.dll - ok
11:51:32.0210 3508 [ 579F6AFC6A6561951FA2202EFC3FE485 ] C:\Windows\System32\msvcrt.dll
11:51:32.0210 3508 C:\Windows\System32\msvcrt.dll - ok
11:51:32.0226 3508 [ 6DF46D2BD74E3DA1B45F08F10D172732 ] C:\Windows\System32\advapi32.dll
11:51:32.0226 3508 C:\Windows\System32\advapi32.dll - ok
11:51:32.0226 3508 [ 044FE45FFD6AD40E3BBBE60B7F41BABE ] C:\Windows\System32\nsi.dll
11:51:32.0226 3508 C:\Windows\System32\nsi.dll - ok
11:51:32.0242 3508 [ 0A49913402747A0B67DE940FB42CBDBB ] C:\Windows\System32\drivers\hdaudbus.sys
11:51:32.0242 3508 C:\Windows\System32\drivers\hdaudbus.sys - ok
11:51:32.0242 3508 [ 92969BA5AC44E229C55A332864F79677 ] C:\Windows\System32\drivers\usbehci.sys
11:51:32.0242 3508 C:\Windows\System32\drivers\usbehci.sys - ok
11:51:32.0242 3508 [ BBF36EB7117F6B976975C9D8D877DF18 ] C:\Windows\System32\drivers\usbport.sys
11:51:32.0242 3508 C:\Windows\System32\drivers\usbport.sys - ok
11:51:32.0257 3508 [ BC3070350A491D84B518D7CCA9ABD36F ] C:\Windows\System32\drivers\usbuhci.sys
11:51:32.0257 3508 C:\Windows\System32\drivers\usbuhci.sys - ok
11:51:32.0257 3508 [ 705283C02177809CA9FA7CC58A4F1E77 ] C:\Windows\System32\drivers\NETw5v64.sys
11:51:32.0257 3508 C:\Windows\System32\drivers\NETw5v64.sys - ok
11:51:32.0257 3508 [ 7DBAFE10C1B777305C80BEA42FBDA710 ] C:\Windows\System32\drivers\k57nd60a.sys
11:51:32.0257 3508 C:\Windows\System32\drivers\k57nd60a.sys - ok
11:51:32.0273 3508 [ 1B00662092F9F9568B995902F0CC40D5 ] C:\Windows\System32\drivers\1394ohci.sys
11:51:32.0273 3508 C:\Windows\System32\drivers\1394ohci.sys - ok
11:51:32.0273 3508 [ 6FAF5B04BEDC66D300D9D233B2D222F0 ] C:\Windows\System32\drivers\rimmpx64.sys
11:51:32.0273 3508 C:\Windows\System32\drivers\rimmpx64.sys - ok
11:51:32.0273 3508 [ 54E47AD086782D3AE9417C155CDCEB9B ] C:\Windows\System32\drivers\sdbus.sys
11:51:32.0273 3508 C:\Windows\System32\drivers\sdbus.sys - ok
11:51:32.0288 3508 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] C:\Windows\System32\drivers\i8042prt.sys
11:51:32.0288 3508 C:\Windows\System32\drivers\i8042prt.sys - ok
11:51:32.0288 3508 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] C:\Windows\System32\drivers\kbdclass.sys
11:51:32.0288 3508 C:\Windows\System32\drivers\kbdclass.sys - ok
11:51:32.0288 3508 [ 67F50C31713106FD1B0F286F86AA2B2E ] C:\Windows\System32\drivers\rimspx64.sys
11:51:32.0288 3508 C:\Windows\System32\drivers\rimspx64.sys - ok
11:51:32.0304 3508 [ 4D7EF3D46346EC4C58784DB964B365DE ] C:\Windows\System32\drivers\rixdpx64.sys
11:51:32.0304 3508 C:\Windows\System32\drivers\rixdpx64.sys - ok
11:51:32.0304 3508 [ 1657B7442D5CE30533F5C4317716B468 ] C:\Windows\System32\drivers\SynTP.sys
11:51:32.0304 3508 C:\Windows\System32\drivers\SynTP.sys - ok
11:51:32.0320 3508 [ 70B5A5A7E0DDD5EBAF6E35B7257A6B9D ] C:\Windows\System32\drivers\usbd.sys
11:51:32.0320 3508 C:\Windows\System32\drivers\usbd.sys - ok
11:51:32.0320 3508 [ E403AACF8C7BB11375122D2464560311 ] C:\Windows\System32\drivers\GEARAspiWDM.sys
11:51:32.0320 3508 C:\Windows\System32\drivers\GEARAspiWDM.sys - ok
11:51:32.0320 3508 [ 7D27EA49F3C1F687D357E77A470AEA99 ] C:\Windows\System32\drivers\mouclass.sys
11:51:32.0320 3508 C:\Windows\System32\drivers\mouclass.sys - ok
11:51:32.0335 3508 [ 7ECFF9B22276B73F43A99A15A6094E90 ] C:\Windows\System32\drivers\agilevpn.sys
11:51:32.0335 3508 C:\Windows\System32\drivers\agilevpn.sys - ok
11:51:32.0335 3508 [ 0840155D0BDDF1190F84A663C284BD33 ] C:\Windows\System32\drivers\CmBatt.sys
11:51:32.0335 3508 C:\Windows\System32\drivers\CmBatt.sys - ok
11:51:32.0335 3508 [ F26B3A86F6FA87CA360B879581AB4123 ] C:\Windows\System32\drivers\CompositeBus.sys
11:51:32.0335 3508 C:\Windows\System32\drivers\CompositeBus.sys - ok
11:51:32.0351 3508 [ ADA036632C664CAA754079041CF1F8C1 ] C:\Windows\System32\drivers\intelppm.sys
11:51:32.0351 3508 C:\Windows\System32\drivers\intelppm.sys - ok
11:51:32.0351 3508 [ 87A6E852A22991580D6D39ADC4790463 ] C:\Windows\System32\drivers\rasl2tp.sys
11:51:32.0351 3508 C:\Windows\System32\drivers\rasl2tp.sys - ok
11:51:32.0351 3508 [ F6FF8944478594D0E414D3F048F0D778 ] C:\Windows\System32\drivers\wmiacpi.sys
11:51:32.0351 3508 C:\Windows\System32\drivers\wmiacpi.sys - ok
11:51:32.0366 3508 [ 30639C932D9FEF22B31268FE25A1B6E5 ] C:\Windows\System32\drivers\ndistapi.sys
11:51:32.0366 3508 C:\Windows\System32\drivers\ndistapi.sys - ok
11:51:32.0366 3508 [ 557DFAB9CA1FCB036AC77564C010DAD3 ] C:\Windows\System32\drivers\ndiswan.sys
11:51:32.0366 3508 C:\Windows\System32\drivers\ndiswan.sys - ok
11:51:32.0366 3508 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] C:\Windows\System32\drivers\raspppoe.sys
11:51:32.0366 3508 C:\Windows\System32\drivers\raspppoe.sys - ok
11:51:32.0382 3508 [ 5C7AF4A20F5BF67042B2E613D123D111 ] C:\Windows\System32\drivers\ks.sys
11:51:32.0382 3508 C:\Windows\System32\drivers\ks.sys - ok
11:51:32.0382 3508 [ 27CC19E81BA5E3403C48302127BDA717 ] C:\Windows\System32\drivers\raspptp.sys
11:51:32.0382 3508 C:\Windows\System32\drivers\raspptp.sys - ok
11:51:32.0398 3508 [ E8B1E447B008D07FF47D016C2B0EEECB ] C:\Windows\System32\drivers\rassstp.sys
11:51:32.0398 3508 C:\Windows\System32\drivers\rassstp.sys - ok
11:51:32.0398 3508 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] C:\Windows\System32\drivers\swenum.sys
11:51:32.0398 3508 C:\Windows\System32\drivers\swenum.sys - ok
11:51:32.0398 3508 [ EAB6C35E62B1B0DB0D1B48B671D3A117 ] C:\Windows\System32\drivers\umbus.sys
11:51:32.0398 3508 C:\Windows\System32\drivers\umbus.sys - ok
11:51:32.0398 3508 [ A013B692640CF71DB221A797F4676248 ] C:\Windows\System32\drivers\wsnf.sys
11:51:32.0398 3508 C:\Windows\System32\drivers\wsnf.sys - ok
11:51:32.0413 3508 [ 5F2BDCA5FA0F20A6F452CF0EE2A2B18C ] C:\Windows\System32\usp10.dll
11:51:32.0413 3508 C:\Windows\System32\usp10.dll - ok
11:51:32.0413 3508 [ F94B8644F3AFE040EC6E1B6FBC9EFAA9 ] C:\Windows\System32\comdlg32.dll
11:51:32.0413 3508 C:\Windows\System32\comdlg32.dll - ok
11:51:32.0429 3508 [ E7DF1CFD28CA86B35EF5ADD0735CEEF3 ] C:\Windows\System32\drivers\usbhub.sys
11:51:32.0429 3508 C:\Windows\System32\drivers\usbhub.sys - ok
11:51:32.0429 3508 [ E5CBF5F8623BBD1DB7B8148A66F6EBA4 ] C:\Windows\System32\Wldap32.dll
11:51:32.0429 3508 C:\Windows\System32\Wldap32.dll - ok
11:51:32.0429 3508 [ 3D165C53E40236A68B7102D1A622D4E0 ] C:\Windows\System32\wininet.dll
11:51:32.0429 3508 C:\Windows\System32\wininet.dll - ok
11:51:32.0444 3508 [ 15A54626213EBF003F7D4C9D8380A656 ] C:\Windows\System32\imagehlp.dll
11:51:32.0444 3508 C:\Windows\System32\imagehlp.dll - ok
11:51:32.0444 3508 [ 6A4EA4C29FBF78112AE20013FB71E9C1 ] C:\Windows\System32\setupapi.dll
11:51:32.0444 3508 C:\Windows\System32\setupapi.dll - ok
11:51:32.0444 3508 [ 72D7B3EA16946E8F0CF7458150031CC6 ] C:\Windows\System32\user32.dll
11:51:32.0444 3508 C:\Windows\System32\user32.dll - ok
11:51:32.0460 3508 [ E1B1255D3A4B3367FE4E9C71E62E3B5A ] C:\Windows\System32\gdi32.dll
11:51:32.0460 3508 C:\Windows\System32\gdi32.dll - ok
11:51:32.0460 3508 [ 2885A3C3148F725CDA0B4C593BA8F7CE ] C:\Windows\System32\urlmon.dll
11:51:32.0460 3508 C:\Windows\System32\urlmon.dll - ok
11:51:32.0460 3508 [ C431EAF5CAA1C82CAC2534A2EAB348A3 ] C:\Windows\System32\msctf.dll
11:51:32.0460 3508 C:\Windows\System32\msctf.dll - ok
11:51:32.0476 3508 [ 28C0B5024F5C5A438E78B188CFC81B7F ] C:\Windows\System32\normaliz.dll
11:51:32.0476 3508 C:\Windows\System32\normaliz.dll - ok
11:51:32.0476 3508 [ 2A46451EE42BCD2C842D8AA4923FAC16 ] C:\Windows\System32\oleaut32.dll
11:51:32.0476 3508 C:\Windows\System32\oleaut32.dll - ok
11:51:32.0476 3508 [ D87E1E59C73C1F98D5DED5B3850C40F5 ] C:\Windows\System32\psapi.dll
11:51:32.0476 3508 C:\Windows\System32\psapi.dll - ok
11:51:32.0491 3508 [ D202223587518B13D72D68937B7E3F70 ] C:\Windows\System32\lpk.dll
11:51:32.0491 3508 C:\Windows\System32\lpk.dll - ok
11:51:32.0491 3508 [ 15BDC173EB5FA4F92B67D9FFB269A6EA ] C:\Windows\System32\shlwapi.dll
11:51:32.0491 3508 C:\Windows\System32\shlwapi.dll - ok
11:51:32.0491 3508 [ DDBD24DC04DA5FD0EDF45CF72B7C01E2 ] C:\Windows\System32\kernel32.dll
11:51:32.0491 3508 C:\Windows\System32\kernel32.dll - ok
11:51:32.0507 3508 [ 83404DCBCE4925B6A5A77C5170F46D86 ] C:\Windows\System32\sechost.dll
11:51:32.0507 3508 C:\Windows\System32\sechost.dll - ok
11:51:32.0507 3508 [ 25983DE69B57142039AC8D95E71CD9C9 ] C:\Windows\System32\clbcatq.dll
11:51:32.0507 3508 C:\Windows\System32\clbcatq.dll - ok
11:51:32.0507 3508 [ AC8F79017C5C1FB316930EDEAD0AF517 ] C:\Windows\System32\ole32.dll
11:51:32.0507 3508 C:\Windows\System32\ole32.dll - ok
11:51:32.0522 3508 [ F7CE0C81C545364020ED8203CF0A633E ] C:\Windows\System32\difxapi.dll
11:51:32.0522 3508 C:\Windows\System32\difxapi.dll - ok
11:51:32.0522 3508 [ 48C903068B6BDAB5EF650B9CBEE85295 ] C:\Windows\System32\rpcrt4.dll
11:51:32.0522 3508 C:\Windows\System32\rpcrt4.dll - ok
11:51:32.0538 3508 [ AA2C08CE85653B1A0D2E4AB407FA176C ] C:\Windows\System32\imm32.dll
11:51:32.0538 3508 C:\Windows\System32\imm32.dll - ok
11:51:32.0538 3508 [ BC052EFAD10ACA1AD69545B629F50D99 ] C:\Windows\System32\comctl32.dll
11:51:32.0538 3508 C:\Windows\System32\comctl32.dll - ok
11:51:32.0538 3508 [ B0B310037A3A9151735E9952D4395C76 ] C:\Windows\System32\crypt32.dll
11:51:32.0538 3508 C:\Windows\System32\crypt32.dll - ok
11:51:32.0554 3508 [ D05E03C1B2824236531F5E37334B6A8A ] C:\Windows\System32\cfgmgr32.dll
11:51:32.0554 3508 C:\Windows\System32\cfgmgr32.dll - ok
11:51:32.0554 3508 [ 06FEC9E8117103BB1141A560E98077DA ] C:\Windows\System32\devobj.dll
11:51:32.0554 3508 C:\Windows\System32\devobj.dll - ok
11:51:32.0554 3508 [ 08B1BDCDF896D38C6E820B9B155E7A17 ] C:\Windows\System32\KernelBase.dll
11:51:32.0554 3508 C:\Windows\System32\KernelBase.dll - ok
11:51:32.0569 3508 [ FEC6244873AB7981326CAEEC5B5FFF11 ] C:\Windows\System32\wintrust.dll
11:51:32.0569 3508 C:\Windows\System32\wintrust.dll - ok
11:51:32.0569 3508 [ 98FB7DD3B28A92E3C0E5B4BD9D63EF01 ] C:\Windows\System32\msasn1.dll
11:51:32.0569 3508 C:\Windows\System32\msasn1.dll - ok
11:51:32.0569 3508 [ 659B74FB74B86228D6338D643CD3E3CF ] C:\Windows\System32\drivers\ndproxy.sys
11:51:32.0569 3508 C:\Windows\System32\drivers\ndproxy.sys - ok
11:51:32.0585 3508 [ 9C278785347BCC991F8EA2999D90F58D ] C:\Windows\SysWOW64\normaliz.dll
11:51:32.0585 3508 C:\Windows\SysWOW64\normaliz.dll - ok
11:51:32.0585 3508 [ 21D26064AEDB4988F785BB4A3A2C051E ] C:\Windows\System32\drivers\drmk.sys
11:51:32.0585 3508 C:\Windows\System32\drivers\drmk.sys - ok
11:51:32.0585 3508 [ 6869281E78CB31A43E969F06B57347C4 ] C:\Windows\System32\drivers\ksthunk.sys
11:51:32.0585 3508 C:\Windows\System32\drivers\ksthunk.sys - ok
11:51:32.0600 3508 [ 32E11315B5126921FFD9074840EF13D3 ] C:\Windows\System32\drivers\portcls.sys
11:51:32.0600 3508 C:\Windows\System32\drivers\portcls.sys - ok
11:51:32.0600 3508 [ 02E784FA49032F84964DB90A3ED81890 ] C:\Windows\System32\drivers\stwrt64.sys
11:51:32.0600 3508 C:\Windows\System32\drivers\stwrt64.sys - ok
11:51:32.0600 3508 [ D485D3BD3E2179AA86853A182F70699F ] C:\Windows\System32\drivers\IntcHdmi.sys
11:51:32.0600 3508 C:\Windows\System32\drivers\IntcHdmi.sys - ok
11:51:32.0616 3508 [ BF24D6F2ED97FE830BFD52B246F98E67 ] C:\Windows\System32\drivers\dxapi.sys
11:51:32.0616 3508 C:\Windows\System32\drivers\dxapi.sys - ok
11:51:32.0616 3508 [ E37C71EA972AD883E7841D07BC6D5F1C ] C:\Windows\System32\win32k.sys
11:51:32.0616 3508 C:\Windows\System32\win32k.sys - ok
11:51:32.0632 3508 [ E730EADB8F176DB06A378435BEB2E823 ] C:\Windows\System32\csrsrv.dll
11:51:32.0632 3508 C:\Windows\System32\csrsrv.dll - ok
11:51:32.0632 3508 [ 60C2862B4BF0FD9F582EF344C2B1EC72 ] C:\Windows\System32\csrss.exe
11:51:32.0632 3508 C:\Windows\System32\csrss.exe - ok
11:51:32.0632 3508 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\System32\basesrv.dll
11:51:32.0632 3508 C:\Windows\System32\basesrv.dll - ok
11:51:32.0632 3508 [ 0CB6EBF4B461A6043353C570BD72A1E1 ] C:\Windows\System32\winsrv.dll
11:51:32.0632 3508 C:\Windows\System32\winsrv.dll - ok
11:51:32.0647 3508 [ 7B6A127C93EE590E4D79A5F2A76FE46F ] C:\Windows\System32\drivers\usbccgp.sys
11:51:32.0647 3508 C:\Windows\System32\drivers\usbccgp.sys - ok
11:51:32.0647 3508 [ 7CB8C573C6E4A2714402CC0A36EAB4FE ] C:\Windows\System32\drivers\usbvideo.sys
11:51:32.0647 3508 C:\Windows\System32\drivers\usbvideo.sys - ok
11:51:32.0663 3508 [ ED5CF92396A62F4C15110DCDB5E854D9 ] C:\Windows\System32\drivers\CtClsFlt.sys
11:51:32.0663 3508 C:\Windows\System32\drivers\CtClsFlt.sys - ok
11:51:32.0663 3508 [ B03D591DC7DA45ECE20B3B467E6AADAA ] C:\Windows\System32\drivers\monitor.sys
11:51:32.0663 3508 C:\Windows\System32\drivers\monitor.sys - ok
11:51:32.0663 3508 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\System32\sxssrv.dll
11:51:32.0663 3508 C:\Windows\System32\sxssrv.dll - ok
11:51:32.0678 3508 [ F29FE765E1448EF371CFE05BFAC74ADB ] C:\Windows\System32\tsddd.dll
11:51:32.0678 3508 C:\Windows\System32\tsddd.dll - ok
11:51:32.0678 3508 [ 94355C28C1970635A31B3FE52EB7CEBA ] C:\Windows\System32\wininit.exe
11:51:32.0678 3508 C:\Windows\System32\wininit.exe - ok
11:51:32.0678 3508 [ B9A047D231D32FDF5AF2F281E4326A9D ] C:\Windows\System32\KBDUS.DLL
11:51:32.0678 3508 C:\Windows\System32\KBDUS.DLL - ok
11:51:32.0694 3508 [ 2C942733A5983DD4502219FF37C7EBC7 ] C:\Windows\System32\profapi.dll
11:51:32.0694 3508 C:\Windows\System32\profapi.dll - ok
11:51:32.0694 3508 [ F4389DA7DBDA2E7D292D360CF8E400C7 ] C:\Windows\System32\RpcRtRemote.dll
11:51:32.0694 3508 C:\Windows\System32\RpcRtRemote.dll - ok
11:51:32.0694 3508 [ 100BDF2F89D6056CEE900BB6156DA737 ] C:\Windows\System32\cdd.dll
11:51:32.0694 3508 C:\Windows\System32\cdd.dll - ok
11:51:32.0710 3508 [ 456C92A9D8DB51B9938A6234BBC65FC9 ] C:\Windows\System32\sxs.dll
11:51:32.0710 3508 C:\Windows\System32\sxs.dll - ok
11:51:32.0710 3508 [ B26B1801356760841C3BC69F9F91537F ] C:\Windows\System32\WlS0WndH.dll
11:51:32.0710 3508 C:\Windows\System32\WlS0WndH.dll - ok
11:51:32.0710 3508 [ 784FA3DF338E2E8F5F0389D6FAC428AF ] C:\Windows\System32\cryptbase.dll
11:51:32.0710 3508 C:\Windows\System32\cryptbase.dll - ok
11:51:32.0725 3508 [ 01A465AC251BCCF6037DF2EF28AA4292 ] C:\Windows\System32\apphelp.dll
11:51:32.0725 3508 C:\Windows\System32\apphelp.dll - ok
11:51:32.0725 3508 [ 04FCA22B77A2E37332CC8226187AF87B ] C:\Windows\System32\lsm.exe
11:51:32.0725 3508 C:\Windows\System32\lsm.exe - ok
11:51:32.0741 3508 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\System32\services.exe
11:51:32.0741 3508 C:\Windows\System32\services.exe - ok
11:51:32.0741 3508 [ BFA69408620587AFDEC2E8C12CA60492 ] C:\Windows\System32\lsasrv.dll
11:51:32.0741 3508 C:\Windows\System32\lsasrv.dll - ok
11:51:32.0741 3508 [ 156F6159457D0AA7E59B62681B56EB90 ] C:\Windows\System32\lsass.exe
11:51:32.0741 3508 C:\Windows\System32\lsass.exe - ok
11:51:32.0756 3508 [ 1F582C6C84D5243692F9C3E04D0A663F ] C:\Windows\System32\sspicli.dll
11:51:32.0756 3508 C:\Windows\System32\sspicli.dll - ok
11:51:32.0756 3508 [ 68EA2513CA68AD8F741FF4F5B8D8590C ] C:\Windows\System32\sspisrv.dll
11:51:32.0756 3508 C:\Windows\System32\sspisrv.dll - ok
11:51:32.0756 3508 [ 941AF3C8B0DE1B359BE22DD3288A8C8E ] C:\Windows\System32\scesrv.dll
11:51:32.0756 3508 C:\Windows\System32\scesrv.dll - ok
11:51:32.0772 3508 [ E914A50A151DFFE63D3935226DB5E2C1 ] C:\Windows\System32\scext.dll
11:51:32.0772 3508 C:\Windows\System32\scext.dll - ok
11:51:32.0772 3508 [ 74A0871810BF0F2AA3EB6681E9BECDD3 ] C:\Windows\System32\secur32.dll
11:51:32.0772 3508 C:\Windows\System32\secur32.dll - ok
11:51:32.0772 3508 [ 68083118797CAF30FB2EA3E71494D67E ] C:\Windows\System32\sysntfy.dll
11:51:32.0772 3508 C:\Windows\System32\sysntfy.dll - ok
11:51:32.0788 3508 [ DEE7267C5D232A3B816866872CE199E6 ] C:\Windows\System32\wmsgapi.dll
11:51:32.0788 3508 C:\Windows\System32\wmsgapi.dll - ok
11:51:32.0788 3508 [ B160ADAEFC76031D92C4FBAC0918B033 ] C:\Windows\System32\samsrv.dll
11:51:32.0788 3508 C:\Windows\System32\samsrv.dll - ok
11:51:32.0788 3508 [ D23371AB9607651937C7641A38CD52BC ] C:\Windows\System32\srvcli.dll
11:51:32.0788 3508 C:\Windows\System32\srvcli.dll - ok
11:51:32.0803 3508 [ 3A061472B38233BAFF9CFEFF2E49C46B ] C:\Windows\System32\cryptdll.dll
11:51:32.0803 3508 C:\Windows\System32\cryptdll.dll - ok
11:51:32.0803 3508 [ 3C073B0C596A0AF84933E7406766B040 ] C:\Windows\System32\wevtapi.dll
11:51:32.0803 3508 C:\Windows\System32\wevtapi.dll - ok
11:51:32.0803 3508 [ 7FBEBD2229EA5FD48D41B199EC2D541C ] C:\Windows\System32\authz.dll
11:51:32.0803 3508 C:\Windows\System32\authz.dll - ok
11:51:32.0819 3508 [ 86FE1B1F8FD42CD0DB641AB1CDB13093 ] C:\Windows\System32\cngaudit.dll
11:51:32.0819 3508 C:\Windows\System32\cngaudit.dll - ok
11:51:32.0819 3508 [ DA3E2A6FA9660CC75B471530CE88453A ] C:\Windows\System32\winlogon.exe
11:51:32.0819 3508 C:\Windows\System32\winlogon.exe - ok
11:51:32.0819 3508 [ E08926B4E52F92FF8852BECC0E2F358A ] C:\Windows\System32\ncrypt.dll
11:51:32.0819 3508 C:\Windows\System32\ncrypt.dll - ok
11:51:32.0834 3508 [ D8C88512BA9544AE1CC2034F50ECFA12 ] C:\Windows\System32\winsta.dll
11:51:32.0834 3508 C:\Windows\System32\winsta.dll - ok
11:51:32.0834 3508 [ B9A95365E52F421A20E1501935FADDA5 ] C:\Windows\System32\bcrypt.dll
11:51:32.0834 3508 C:\Windows\System32\bcrypt.dll - ok
11:51:32.0850 3508 [ 02B64609F865A39365FF88580DF11738 ] C:\Windows\System32\msprivs.dll
11:51:32.0850 3508 C:\Windows\System32\msprivs.dll - ok
11:51:32.0850 3508 [ B561B451320B0B40908A8BFD81705262 ] C:\Windows\System32\netjoin.dll
11:51:32.0850 3508 C:\Windows\System32\netjoin.dll - ok
11:51:32.0850 3508 [ 50532FCD7ECF02DD169CE5C485F02534 ] C:\Windows\System32\negoexts.dll
11:51:32.0850 3508 C:\Windows\System32\negoexts.dll - ok
11:51:32.0866 3508 [ 96772B584BD0E667CD7741EF96284ACB ] C:\Windows\System32\kerberos.dll
11:51:32.0866 3508 C:\Windows\System32\kerberos.dll - ok
11:51:32.0866 3508 [ D0C2FBB6D97416B0166478FC7AE2B212 ] C:\Windows\System32\cryptsp.dll
11:51:32.0866 3508 C:\Windows\System32\cryptsp.dll - ok
11:51:32.0866 3508 [ FC76FE3C1E1FDB761244D4F74EF560FD ] C:\Windows\System32\mswsock.dll
11:51:32.0866 3508 C:\Windows\System32\mswsock.dll - ok
11:51:32.0881 3508 [ FA4DB05923DDDEDE3196ABD09AE0F1E9 ] C:\Windows\System32\msv1_0.dll
11:51:32.0881 3508 C:\Windows\System32\msv1_0.dll - ok
11:51:32.0881 3508 [ EC7CBFF96B05ECF3D366355B3C64ADCF ] C:\Windows\System32\wship6.dll
11:51:32.0881 3508 C:\Windows\System32\wship6.dll - ok
11:51:32.0881 3508 [ 956D030D375F207B22FB111E06EF9C35 ] C:\Windows\System32\netlogon.dll
11:51:32.0881 3508 C:\Windows\System32\netlogon.dll - ok
11:51:32.0897 3508 [ E247E7DEB20C0CF0801A8AC39E9CE1DF ] C:\Windows\System32\dnsapi.dll
11:51:32.0897 3508 C:\Windows\System32\dnsapi.dll - ok
11:51:32.0897 3508 [ 8CE22E63F08613036DF8C7B00FBDF36B ] C:\Windows\System32\logoncli.dll
11:51:32.0897 3508 C:\Windows\System32\logoncli.dll - ok
11:51:32.0897 3508 [ 90B780886BD813882CB382FF3E90E092 ] C:\Windows\System32\schannel.dll
11:51:32.0897 3508 C:\Windows\System32\schannel.dll - ok
11:51:32.0912 3508 [ 95FB6CA4374E343DDD653FCC43F9D26B ] C:\Windows\System32\wdigest.dll
11:51:32.0912 3508 C:\Windows\System32\wdigest.dll - ok
11:51:32.0912 3508 [ E08088A97F95345E181C3DFCE2C615EF ] C:\Windows\System32\pku2u.dll
11:51:32.0912 3508 C:\Windows\System32\pku2u.dll - ok
11:51:32.0912 3508 [ 5D8874A8C11DDDDE29E12DE0E2013493 ] C:\Windows\System32\rsaenh.dll
11:51:32.0912 3508 C:\Windows\System32\rsaenh.dll - ok
11:51:32.0928 3508 [ 0DEFD5FBF801DD8F83BC0ED09861A8EC ] C:\Windows\System32\TSpkg.dll
11:51:32.0928 3508 C:\Windows\System32\TSpkg.dll - ok
11:51:32.0928 3508 [ DA090E97E57DCB48888015B5D3C749CD ] C:\Windows\System32\bcryptprimitives.dll
11:51:32.0928 3508 C:\Windows\System32\bcryptprimitives.dll - ok
11:51:32.0928 3508 [ 9301B8810B2DA4EB6AD55DB75FC1E339 ] C:\Windows\System32\credssp.dll
11:51:32.0928 3508 C:\Windows\System32\credssp.dll - ok
11:51:32.0944 3508 [ 90BDEFC5DF334E5100EAA781D798DE1A ] C:\Windows\System32\efslsaext.dll
11:51:32.0944 3508 C:\Windows\System32\efslsaext.dll - ok
11:51:32.0944 3508 [ 7CC7DF5B654DA579613F811D8C637E29 ] C:\Windows\System32\ubpm.dll
11:51:32.0944 3508 C:\Windows\System32\ubpm.dll - ok
11:51:32.0944 3508 [ 398712DDDAEFB85EDF61DF6A07B65C79 ] C:\Windows\System32\scecli.dll
11:51:32.0944 3508 C:\Windows\System32\scecli.dll - ok
11:51:32.0959 3508 [ C78655BC80301D76ED4FEF1C1EA40A7D ] C:\Windows\System32\svchost.exe
11:51:32.0959 3508 C:\Windows\System32\svchost.exe - ok
11:51:32.0959 3508 [ 98B1721B8718164293B9701B98C52D77 ] C:\Windows\System32\umpnpmgr.dll
11:51:32.0959 3508 C:\Windows\System32\umpnpmgr.dll - ok
11:51:32.0975 3508 [ E6EB44ABAAF1F330119F854856C53EBE ] C:\Windows\System32\SPInf.dll
11:51:32.0975 3508 C:\Windows\System32\SPInf.dll - ok
11:51:32.0975 3508 [ CD1B5AD07E5F7FEF30E055DCC9E96180 ] C:\Windows\System32\devrtl.dll
11:51:32.0975 3508 C:\Windows\System32\devrtl.dll - ok
11:51:32.0990 3508 [ 9C9307C95671AC962F3D6EB3A4A89BAE ] C:\Windows\System32\gpapi.dll
11:51:32.0990 3508 C:\Windows\System32\gpapi.dll - ok
11:51:32.0990 3508 [ 0776CF79590BDEF0A2728B0B9A813B96 ] C:\Windows\System32\userenv.dll
11:51:32.0990 3508 C:\Windows\System32\userenv.dll - ok
11:51:33.0006 3508 [ F6C011B46FAEEF33536B2E80F48B5CBE ] C:\Windows\System32\pcwum.dll
11:51:33.0006 3508 C:\Windows\System32\pcwum.dll - ok
11:51:33.0006 3508 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] C:\Windows\System32\umpo.dll
11:51:33.0006 3508 C:\Windows\System32\umpo.dll - ok
11:51:33.0022 3508 [ 716175021BDA290504CE434273F666BC ] C:\Windows\System32\powrprof.dll
11:51:33.0022 3508 C:\Windows\System32\powrprof.dll - ok
11:51:33.0022 3508 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] C:\Windows\System32\drivers\luafv.sys
11:51:33.0022 3508 C:\Windows\System32\drivers\luafv.sys - ok
11:51:33.0022 3508 [ ED7563CD3E67EE3C950A1B86818C24C3 ] C:\Windows\System32\drivers\catflt.sys
11:51:33.0022 3508 C:\Windows\System32\drivers\catflt.sys - ok
11:51:33.0037 3508 [ 7CADC74271DD6461C452C271B30BD378 ] C:\Windows\System32\drivers\WUDFPf.sys
11:51:33.0037 3508 C:\Windows\System32\drivers\WUDFPf.sys - ok
11:51:33.0037 3508 [ 7266972E86890E2B30C0C322E906B027 ] C:\Windows\System32\rpcss.dll
11:51:33.0037 3508 C:\Windows\System32\rpcss.dll - ok
11:51:33.0053 3508 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] C:\Windows\System32\RpcEpMap.dll
11:51:33.0053 3508 C:\Windows\System32\RpcEpMap.dll - ok
11:51:33.0053 3508 [ 16E964ABF6D1E0F0CC7822FCA9BA754D ] C:\Windows\System32\wshqos.dll
11:51:33.0053 3508 C:\Windows\System32\wshqos.dll - ok
11:51:33.0053 3508 [ 31559F3244C6BC00A52030CAA83B6B91 ] C:\Windows\System32\WSHTCPIP.DLL
11:51:33.0053 3508 C:\Windows\System32\WSHTCPIP.DLL - ok
11:51:33.0068 3508 [ 9AD9E06F8656F296D91FAE8EE5B95A27 ] C:\Windows\System32\FirewallAPI.dll
11:51:33.0068 3508 C:\Windows\System32\FirewallAPI.dll - ok
11:51:33.0068 3508 [ 94E026870A55AAEAFF7853C1754091E9 ] C:\Windows\System32\version.dll
11:51:33.0068 3508 C:\Windows\System32\version.dll - ok
11:51:33.0068 3508 [ 99ABDA9C92EC76CBAF52F00239D909C9 ] C:\Windows\System32\wevtsvc.dll
11:51:33.0068 3508 C:\Windows\System32\wevtsvc.dll - ok
11:51:33.0084 3508 [ E40E80D0304A73E8D269F7141D77250B ] C:\Windows\System32\mmcss.dll
11:51:33.0084 3508 C:\Windows\System32\mmcss.dll - ok
11:51:33.0084 3508 [ 78A1E65207484B7F8D3217507745F47C ] C:\Windows\System32\avrt.dll
11:51:33.0084 3508 C:\Windows\System32\avrt.dll - ok
11:51:33.0084 3508 [ 93E6A39B1DB898F7C949FA5567E774CF ] C:\Windows\System32\LogonUI.exe
11:51:33.0084 3508 C:\Windows\System32\LogonUI.exe - ok
11:51:33.0100 3508 [ BCF0A980D21711E47D0803BDB0E99CAD ] C:\Windows\System32\authui.dll
11:51:33.0100 3508 C:\Windows\System32\authui.dll - ok
11:51:33.0100 3508 [ 07721A77180EDD4D39CCB865BF63C7FD ] C:\Windows\System32\audiosrv.dll
11:51:33.0100 3508 C:\Windows\System32\audiosrv.dll - ok
11:51:33.0115 3508 [ 227E2C382A1E02F8D4965E664D3BBE43 ] C:\Windows\System32\MMDevAPI.dll
11:51:33.0115 3508 C:\Windows\System32\MMDevAPI.dll - ok
11:51:33.0115 3508 [ B27EA141A7E748B607600A8551A44D5A ] C:\Windows\System32\propsys.dll
11:51:33.0115 3508 C:\Windows\System32\propsys.dll - ok
11:51:33.0115 3508 [ 97293447431311C06703368AD0F6C4BE ] C:\Windows\System32\profsvc.dll
11:51:33.0115 3508 C:\Windows\System32\profsvc.dll - ok
11:51:33.0131 3508 [ FE05D03B73000CFF476E1D29109F3A84 ] C:\Program Files\Windows Defender\MpEvMsg.dll
11:51:33.0131 3508 C:\Program Files\Windows Defender\MpEvMsg.dll - ok
11:51:33.0131 3508 [ DBA90306A721FB922FDACED9E9728C28 ] C:\Windows\System32\cryptui.dll
11:51:33.0131 3508 C:\Windows\System32\cryptui.dll - ok
11:51:33.0146 3508 [ 113921FC4A80A3DDF646852998B836D0 ] C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7\comctl32.dll
11:51:33.0146 3508 C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7\comctl32.dll - ok
11:51:33.0146 3508 [ 5B3EBFC3DA142324B388DDCC4465E1FF ] C:\Windows\System32\samlib.dll
11:51:33.0146 3508 C:\Windows\System32\samlib.dll - ok
11:51:33.0146 3508 [ 84F8C8B9FB1F12532999D25F5DD7E77C ] C:\Windows\System32\shacct.dll
11:51:33.0146 3508 C:\Windows\System32\shacct.dll - ok
11:51:33.0162 3508 [ D29E998E8277666982B4F0303BF4E7AF ] C:\Windows\System32\uxtheme.dll
11:51:33.0162 3508 C:\Windows\System32\uxtheme.dll - ok
11:51:33.0162 3508 [ DD0701DE0AAA010E6EBD0F53B672DCEE ] C:\Windows\winsxs\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7600.17007_none_2b47185a719d6182\GdiPlus.dll
11:51:33.0162 3508 C:\Windows\winsxs\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7600.17007_none_2b47185a719d6182\GdiPlus.dll - ok
11:51:33.0178 3508 [ 3CB6A7286422C72C34DAB54A5DFF1A34 ] C:\Windows\System32\dui70.dll
11:51:33.0178 3508 C:\Windows\System32\dui70.dll - ok
11:51:33.0178 3508 [ 8CCDE014A4CDF84564E03ACE064CA753 ] C:\Windows\System32\duser.dll
11:51:33.0178 3508 C:\Windows\System32\duser.dll - ok
11:51:33.0178 3508 [ B2E3D4BB3389817FB5E4CD9378BC8791 ] C:\Windows\System32\SndVolSSO.dll
11:51:33.0178 3508 C:\Windows\System32\SndVolSSO.dll - ok
11:51:33.0193 3508 [ DA1B7075260F3872585BFCDD668C648B ] C:\Windows\System32\dwmapi.dll
11:51:33.0193 3508 C:\Windows\System32\dwmapi.dll - ok
11:51:33.0193 3508 [ 896F15A6434D93EDB42519D5E18E6B50 ] C:\Windows\System32\hid.dll
11:51:33.0193 3508 C:\Windows\System32\hid.dll - ok
11:51:33.0209 3508 [ 39F91A948E6017B732C4A0B3086A8E32 ] C:\Windows\System32\xmllite.dll
11:51:33.0209 3508 C:\Windows\System32\xmllite.dll - ok
11:51:33.0209 3508 [ EA99F234843BBDDA1ABD2767111ADE25 ] C:\Windows\System32\WindowsCodecs.dll
11:51:33.0209 3508 C:\Windows\System32\WindowsCodecs.dll - ok
11:51:33.0209 3508 [ C2762A57DF0EE85E63CE4893C5215313 ] C:\Windows\System32\VaultCredProvider.dll
11:51:33.0209 3508 C:\Windows\System32\VaultCredProvider.dll - ok
11:51:33.0224 3508 [ 9F2BACD5E1776A4BB7CC0EC3C3A4F96D ] C:\Windows\System32\winbrand.dll
11:51:33.0224 3508 C:\Windows\System32\winbrand.dll - ok
11:51:33.0224 3508 [ C22D2885DAFC8EB0D9E2EC3E62212FA3 ] C:\Program Files\WIDCOMM\Bluetooth Software\BtwCP.dll
11:51:33.0224 3508 C:\Program Files\WIDCOMM\Bluetooth Software\BtwCP.dll - ok
11:51:33.0240 3508 [ BD3674BE7FC9D8D3732C83E8499576ED ] C:\Windows\System32\wtsapi32.dll
11:51:33.0240 3508 C:\Windows\System32\wtsapi32.dll - ok
11:51:33.0240 3508 [ 444109453A2B87E6C16BCDA5953E81A9 ] C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_afc3018f8cfedd20\stacsv64.exe
11:51:33.0240 3508 C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_afc3018f8cfedd20\stacsv64.exe - ok
11:51:33.0256 3508 [ 9110FFAD124283F37D38771BB60556AF ] C:\Windows\System32\dsound.dll
11:51:33.0256 3508 C:\Windows\System32\dsound.dll - ok
11:51:33.0256 3508 [ EF2AE43BCD46ABB13FC3E5B2B1935C73 ] C:\Windows\System32\winmm.dll
11:51:33.0256 3508 C:\Windows\System32\winmm.dll - ok
11:51:33.0256 3508 [ 185F0A5625DB059128CF8CC9633B9C9F ] C:\Windows\System32\stapi64.dll
11:51:33.0256 3508 C:\Windows\System32\stapi64.dll - ok
11:51:33.0271 3508 [ D152EBC32A23069F8AA1D1F24B15E3F9 ] C:\Windows\System32\audiodg.exe
11:51:33.0271 3508 C:\Windows\System32\audiodg.exe - ok
11:51:33.0271 3508 [ 1F4492FE41767CDB8B89D17655847CDD ] C:\Windows\System32\ntmarta.dll
11:51:33.0271 3508 C:\Windows\System32\ntmarta.dll - ok
11:51:33.0271 3508 [ 588CD0C78A7FAAE4186B5EEA0AF3ED67 ] C:\Windows\System32\adtschema.dll
11:51:33.0271 3508 C:\Windows\System32\adtschema.dll - ok
11:51:33.0287 3508 [ 02CDEB5D8B3DD5F6770DEFFBBC0CFAD0 ] C:\Windows\System32\winspool.drv
11:51:33.0287 3508 C:\Windows\System32\winspool.drv - ok
11:51:33.0287 3508 [ 92AAF75C3EB344A098DC026BC9DDF42A ] C:\Windows\System32\bthprops.cpl
11:51:33.0287 3508 C:\Windows\System32\bthprops.cpl - ok
11:51:33.0302 3508 [ 2A381A9740165D7A1405148B6DFB3E38 ] C:\Windows\System32\SmartcardCredentialProvider.dll
11:51:33.0302 3508 C:\Windows\System32\SmartcardCredentialProvider.dll - ok
11:51:33.0302 3508 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] C:\Windows\System32\netprofm.dll
11:51:33.0302 3508 C:\Windows\System32\netprofm.dll - ok
11:51:33.0302 3508 [ 81D64E8D70E5FBF9F7ABF2D41154F54D ] C:\Windows\System32\AudioSes.dll
11:51:33.0302 3508 C:\Windows\System32\AudioSes.dll - ok
11:51:33.0318 3508 [ 5EDBB34736DD7AC1A73CF8792A835E10 ] C:\Windows\System32\AudioEng.dll
11:51:33.0318 3508 C:\Windows\System32\AudioEng.dll - ok
11:51:33.0318 3508 [ C1395286B822E306B4FE1568A8A77813 ] C:\Windows\System32\AUDIOKSE.dll
11:51:33.0318 3508 C:\Windows\System32\AUDIOKSE.dll - ok
11:51:33.0318 3508 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] C:\Windows\System32\wlansvc.dll
11:51:33.0318 3508 C:\Windows\System32\wlansvc.dll - ok
11:51:33.0334 3508 [ F7866AF72ABBAF84B1FA5AA195378C59 ] C:\Windows\System32\drivers\fltMgr.sys
11:51:33.0334 3508 C:\Windows\System32\drivers\fltMgr.sys - ok
11:51:33.0334 3508 [ 50544D04AD845C43130B70212EC05CCD ] C:\Windows\System32\microsoft-windows-kernel-power-events.dll
11:51:33.0334 3508 C:\Windows\System32\microsoft-windows-kernel-power-events.dll - ok
11:51:33.0334 3508 [ A3DB3C17EE6CAE65D53602B4E80BCCBC ] C:\Windows\System32\PSHED.DLL
11:51:33.0334 3508 C:\Windows\System32\PSHED.DLL - ok
11:51:33.0349 3508 [ B0945E538CF906BBDDC5A11C8EE868CC ] C:\Windows\System32\microsoft-windows-kernel-processor-power-events.dll
11:51:33.0349 3508 C:\Windows\System32\microsoft-windows-kernel-processor-power-events.dll - ok
11:51:33.0349 3508 [ 30F9BACA07F8251D7DD1805A9E919CE0 ] C:\Windows\System32\wdmaud.drv
11:51:33.0349 3508 C:\Windows\System32\wdmaud.drv - ok
11:51:33.0365 3508 [ 07BA6D17E66879018B30B6C3F976EBED ] C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe
11:51:33.0365 3508 C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe - ok
11:51:33.0365 3508 [ DB6DD54A93522CA3572D04B56C5DB890 ] C:\Windows\SysWOW64\ntdll.dll
11:51:33.0365 3508 C:\Windows\SysWOW64\ntdll.dll - ok
11:51:33.0365 3508 [ ADFDF57DC62AE66FE47D5AD1C838131B ] C:\Windows\System32\wow64.dll
11:51:33.0365 3508 C:\Windows\System32\wow64.dll - ok
11:51:33.0380 3508 [ C0A718C7421975E8D25FF78271A8F54A ] C:\Windows\System32\wow64cpu.dll
11:51:33.0380 3508 C:\Windows\System32\wow64cpu.dll - ok
11:51:33.0380 3508 [ E9727C5B096B0722BEBEE269ED841F37 ] C:\Windows\System32\wow64win.dll
11:51:33.0380 3508 C:\Windows\System32\wow64win.dll - ok
11:51:33.0380 3508 [ 4EA99F1644627B1EBAD99D0B93CDEE1C ] C:\Windows\SysWOW64\kernel32.dll
11:51:33.0380 3508 C:\Windows\SysWOW64\kernel32.dll - ok
11:51:33.0396 3508 [ 2BF12696F4AC8AFCFC06EAD6F8D2DB4C ] C:\Windows\SysWOW64\KernelBase.dll
11:51:33.0396 3508 C:\Windows\SysWOW64\KernelBase.dll - ok
11:51:33.0396 3508 [ E8B0FFC209E504CB7E79FC24E6C085F0 ] C:\Windows\SysWOW64\user32.dll
11:51:33.0396 3508 C:\Windows\SysWOW64\user32.dll - ok
11:51:33.0396 3508 [ FBE1E0B9EF53B5BB7C36763AA6A685CF ] C:\Windows\SysWOW64\gdi32.dll
11:51:33.0396 3508 C:\Windows\SysWOW64\gdi32.dll - ok
11:51:33.0412 3508 [ 384721EF4024890092625E20CADFAF85 ] C:\Windows\SysWOW64\lpk.dll
11:51:33.0412 3508 C:\Windows\SysWOW64\lpk.dll - ok
11:51:33.0412 3508 [ 0BA19F3198C40AC4E8CC66EE02EDA6C6 ] C:\Windows\SysWOW64\usp10.dll
11:51:33.0412 3508 C:\Windows\SysWOW64\usp10.dll - ok
11:51:33.0427 3508 [ F8A61B2E713309B4616D107919BDAB6E ] C:\Windows\SysWOW64\msvcrt.dll
11:51:33.0427 3508 C:\Windows\SysWOW64\msvcrt.dll - ok
11:51:33.0427 3508 [ 0C65FA8214D6F8378D1D3BA1CA46AF0A ] C:\Windows\SysWOW64\advapi32.dll
11:51:33.0427 3508 C:\Windows\SysWOW64\advapi32.dll - ok
11:51:33.0427 3508 [ BF352E73615F5461AA6884472435A544 ] C:\Windows\System32\BioCredProv.dll
11:51:33.0427 3508 C:\Windows\System32\BioCredProv.dll - ok
11:51:33.0443 3508 [ 8560FFFC8EB3A806DCD4F82252CFC8C6 ] C:\Windows\System32\ksuser.dll
11:51:33.0443 3508 C:\Windows\System32\ksuser.dll - ok
11:51:33.0443 3508 [ 97D38371502AA797DB14EB1FA5FCE4CD ] C:\Windows\System32\credui.dll
11:51:33.0443 3508 C:\Windows\System32\credui.dll - ok
11:51:33.0443 3508 [ 401106B4B036BA2D74BF168F22FE9400 ] C:\Windows\System32\stapo64.dll
11:51:33.0443 3508 C:\Windows\System32\stapo64.dll - ok
11:51:33.0458 3508 [ 796B8123A7859AFD3A4AE10514DBAEB5 ] C:\Windows\System32\winbio.dll
11:51:33.0458 3508 C:\Windows\System32\winbio.dll - ok
11:51:33.0458 3508 [ 3C27B50BC43D5FED43081A784DD17190 ] C:\Windows\System32\netapi32.dll
11:51:33.0458 3508 C:\Windows\System32\netapi32.dll - ok
11:51:33.0458 3508 [ 4C8C2F987FC397DCE98874D6C9C0736A ] C:\Windows\System32\netutils.dll
11:51:33.0458 3508 C:\Windows\System32\netutils.dll - ok
11:51:33.0474 3508 [ A87205FE194B239D8D96E4972B779CC1 ] C:\Windows\System32\samcli.dll
11:51:33.0474 3508 C:\Windows\System32\samcli.dll - ok
11:51:33.0474 3508 [ 44B9C66177651F3F53C87B665D58D17A ] C:\Windows\System32\vaultcli.dll
11:51:33.0474 3508 C:\Windows\System32\vaultcli.dll - ok
11:51:33.0474 3508 [ B33CBD1A8C2A33121321D0FEBD7DD870 ] C:\Windows\System32\wkscli.dll
11:51:33.0474 3508 C:\Windows\System32\wkscli.dll - ok
11:51:33.0490 3508 [ 972C3301DB3DA91AE06A95F6B4160B1B ] C:\Windows\System32\certCredProvider.dll
11:51:33.0490 3508 C:\Windows\System32\certCredProvider.dll - ok
11:51:33.0490 3508 [ 0989ECD292D373E31D6DF5EDB9B62AE1 ] C:\Windows\System32\AESTAC64.dll
11:51:33.0490 3508 C:\Windows\System32\AESTAC64.dll - ok
11:51:33.0490 3508 [ 87FA0C48C3B2E9FEE518818FE26B15B5 ] C:\Windows\System32\rasplap.dll
11:51:33.0490 3508 C:\Windows\System32\rasplap.dll - ok
11:51:33.0505 3508 [ 019CD868461B646E09BDF04474C19341 ] C:\Windows\System32\rasapi32.dll
11:51:33.0505 3508 C:\Windows\System32\rasapi32.dll - ok
11:51:33.0505 3508 [ B28DEEC597C8DEB70C744C7CF9210E3E ] C:\Windows\System32\rasman.dll
11:51:33.0505 3508 C:\Windows\System32\rasman.dll - ok
11:51:33.0521 3508 [ F5A61F0A0030C80DF319B0C14A4C8885 ] C:\Windows\System32\rtutils.dll
11:51:33.0521 3508 C:\Windows\System32\rtutils.dll - ok
11:51:33.0521 3508 [ 43E6294CC9698627627C58C6B786FB38 ] C:\Windows\System32\ctapo64.dll
11:51:33.0521 3508 C:\Windows\System32\ctapo64.dll - ok
11:51:33.0521 3508 [ 57FE2CFC2F25C200499D5D934EA24EB5 ] C:\Windows\System32\IPHLPAPI.DLL
11:51:33.0521 3508 C:\Windows\System32\IPHLPAPI.DLL - ok
11:51:33.0536 3508 [ 4C9210E8F4E052F6A4EB87716DA0C24C ] C:\Windows\System32\winnsi.dll
11:51:33.0536 3508 C:\Windows\System32\winnsi.dll - ok
11:51:33.0536 3508 [ 1B7C3A37362C7B2890168C5FC61C8D9B ] C:\Windows\System32\msacm32.drv
11:51:33.0536 3508 C:\Windows\System32\msacm32.drv - ok
11:51:33.0536 3508 [ CA2A0750ED830678997695FF61B04C30 ] C:\Windows\System32\midimap.dll
11:51:33.0536 3508 C:\Windows\System32\midimap.dll - ok
11:51:33.0552 3508 [ 10AC5CE9F78DC281A1BBD9B8CC587B8A ] C:\Windows\System32\msacm32.dll
11:51:33.0552 3508 C:\Windows\System32\msacm32.dll - ok
11:51:33.0552 3508 [ AF28348ED585539C4A33A4341FF23696 ] C:\Windows\System32\oleacc.dll
11:51:33.0552 3508 C:\Windows\System32\oleacc.dll - ok
11:51:33.0552 3508 [ 019BDD35DE269CB98B22DE8923C2AA3B ] C:\Windows\System32\UIAutomationCore.dll
11:51:33.0552 3508 C:\Windows\System32\UIAutomationCore.dll - ok
11:51:33.0568 3508 [ F568F7C08458D69E4FCD8675BBB107E4 ] C:\Windows\System32\dhcpcsvc.dll
11:51:33.0568 3508 C:\Windows\System32\dhcpcsvc.dll - ok
11:51:33.0568 3508 [ 6F3C559B82F2912354BE5B098744CC8C ] C:\Windows\System32\WMALFXGFXDSP.dll
11:51:33.0568 3508 C:\Windows\System32\WMALFXGFXDSP.dll - ok
11:51:33.0568 3508 [ 54B5DCD55B223BC5DF50B82E1E9E86B1 ] C:\Windows\System32\mfplat.dll
11:51:33.0568 3508 C:\Windows\System32\mfplat.dll - ok
11:51:33.0583 3508 [ C469893743E18BA547DB3C7ED98B32F5 ] C:\Windows\System32\AESTAR64.dll
11:51:33.0583 3508 C:\Windows\System32\AESTAR64.dll - ok
11:51:33.0583 3508 [ 3D9FC44CA93001B423F89876369F1348 ] C:\Windows\System32\SRSLabs\{176F4E15-8F7C-4833-ADED-81FAE8CCD186}\sluapo64.dll
11:51:33.0583 3508 C:\Windows\System32\SRSLabs\{176F4E15-8F7C-4833-ADED-81FAE8CCD186}\sluapo64.dll - ok
11:51:33.0583 3508 [ B6F0676FC23D543452FE81D8B71D24E7 ] C:\Windows\System32\SRSLabs\{176F4E15-8F7C-4833-ADED-81FAE8CCD186}\slcshp64.dll
11:51:33.0583 3508 C:\Windows\System32\SRSLabs\{176F4E15-8F7C-4833-ADED-81FAE8CCD186}\slcshp64.dll - ok
11:51:33.0599 3508 [ F7BA79CEFBD9DF4AF781E00356FBF48E ] C:\Windows\System32\SRSLabs\{176F4E15-8F7C-4833-ADED-81FAE8CCD186}\slh36064.dll
11:51:33.0599 3508 C:\Windows\System32\SRSLabs\{176F4E15-8F7C-4833-ADED-81FAE8CCD186}\slh36064.dll - ok
11:51:33.0599 3508 [ 79E25E0628A2FF7A74356EAEF5011C26 ] C:\Windows\System32\SRSLabs\{176F4E15-8F7C-4833-ADED-81FAE8CCD186}\sltshd64.dll
11:51:33.0599 3508 C:\Windows\System32\SRSLabs\{176F4E15-8F7C-4833-ADED-81FAE8CCD186}\sltshd64.dll - ok
11:51:33.0614 3508 [ 90385551B6B3793E949DF310A11D64E7 ] C:\Windows\SysWOW64\rpcrt4.dll
11:51:33.0614 3508 C:\Windows\SysWOW64\rpcrt4.dll - ok
11:51:33.0614 3508 [ CFC97F07904067A1E5FAE195D534DA3A ] C:\Windows\SysWOW64\sechost.dll
11:51:33.0614 3508 C:\Windows\SysWOW64\sechost.dll - ok
11:51:33.0614 3508 [ F08F6FCD09F9BE94C37ACC1B344685FF ] C:\Windows\SysWOW64\cryptbase.dll
11:51:33.0614 3508 C:\Windows\SysWOW64\cryptbase.dll - ok
11:51:33.0630 3508 [ 351F62085F1D007533B4BB159C9EFDE3 ] C:\Windows\SysWOW64\sspicli.dll
11:51:33.0630 3508 C:\Windows\SysWOW64\sspicli.dll - ok
11:51:33.0630 3508 [ 61E02CC3184B63FAFE0B83EAC8B3B8EF ] C:\Windows\SysWOW64\winspool.drv
11:51:33.0630 3508 C:\Windows\SysWOW64\winspool.drv - ok
11:51:33.0630 3508 [ 2CBC35E872BA9B46474890135B56DD66 ] C:\Windows\SysWOW64\shell32.dll
11:51:33.0630 3508 C:\Windows\SysWOW64\shell32.dll - ok
11:51:33.0646 3508 [ F037DB14CF6165C62F4A64D12A25B07C ] C:\Windows\SysWOW64\shlwapi.dll
11:51:33.0646 3508 C:\Windows\SysWOW64\shlwapi.dll - ok
11:51:33.0646 3508 [ E2C2D8C982316C8ABF800C6CE3F28FAB ] C:\Windows\SysWOW64\ole32.dll
11:51:33.0646 3508 C:\Windows\SysWOW64\ole32.dll - ok
11:51:33.0661 3508 [ 705C210EFC5564BE49EB026BD7AFF27A ] C:\Windows\SysWOW64\oleaut32.dll
11:51:33.0661 3508 C:\Windows\SysWOW64\oleaut32.dll - ok
11:51:33.0661 3508 [ 0E85C11F8850D524B02181C6E02BA9AE ] C:\Windows\SysWOW64\dsound.dll
11:51:33.0661 3508 C:\Windows\SysWOW64\dsound.dll - ok
11:51:33.0661 3508 [ 08DFDBD2FD4EA951DC46B1C7661ED35A ] C:\Windows\SysWOW64\powrprof.dll
11:51:33.0661 3508 C:\Windows\SysWOW64\powrprof.dll - ok
11:51:33.0677 3508 [ 26A634B2E0FD87F23541AD13A503CA72 ] C:\Windows\SysWOW64\winmm.dll
11:51:33.0677 3508 C:\Windows\SysWOW64\winmm.dll - ok
11:51:33.0677 3508 [ 41323AB614A2B66AD77B1121D24AC895 ] C:\Windows\SysWOW64\setupapi.dll
11:51:33.0677 3508 C:\Windows\SysWOW64\setupapi.dll - ok
11:51:33.0677 3508 [ E702ED19C332C1F12C1403D100E2F4F3 ] C:\Windows\SysWOW64\cfgmgr32.dll
11:51:33.0677 3508 C:\Windows\SysWOW64\cfgmgr32.dll - ok
11:51:33.0692 3508 [ 6C9C05D5344B9AB80E9180FC859BC45A ] C:\Windows\SysWOW64\devobj.dll
11:51:33.0692 3508 C:\Windows\SysWOW64\devobj.dll - ok
11:51:33.0692 3508 [ 4D59A5B6EF0AF6F9FDF3D157534380AF ] C:\Windows\SysWOW64\oleacc.dll
11:51:33.0692 3508 C:\Windows\SysWOW64\oleacc.dll - ok
11:51:33.0692 3508 [ 5923DB041C82BD93FE6C54114470CE17 ] C:\Windows\SysWOW64\crypt32.dll
11:51:33.0692 3508 C:\Windows\SysWOW64\crypt32.dll - ok
11:51:33.0708 3508 [ 0DE3069D6E09BA262856EF31C941BEFE ] C:\Windows\SysWOW64\imm32.dll
11:51:33.0708 3508 C:\Windows\SysWOW64\imm32.dll - ok
11:51:33.0708 3508 [ 4C04900AA8C323F5D4C316A89E976849 ] C:\Windows\SysWOW64\msasn1.dll
11:51:33.0708 3508 C:\Windows\SysWOW64\msasn1.dll - ok
11:51:33.0708 3508 [ C9618BC9B2B0FD7C1138D8774795A79B ] C:\Windows\SysWOW64\msctf.dll
11:51:33.0708 3508 C:\Windows\SysWOW64\msctf.dll - ok
11:51:33.0724 3508 [ FE5AB4525BC2EC68B9119A6E5D40128B ] C:\Windows\System32\gpsvc.dll
11:51:33.0724 3508 C:\Windows\System32\gpsvc.dll - ok
11:51:33.0724 3508 [ 58775492FFD419248B08325E583C527F ] C:\Windows\System32\atl.dll
11:51:33.0724 3508 C:\Windows\System32\atl.dll - ok
11:51:33.0724 3508 [ 86E3822A34D454032D8E88C72AE8CF2D ] C:\Windows\System32\nlaapi.dll
11:51:33.0724 3508 C:\Windows\System32\nlaapi.dll - ok
11:51:33.0739 3508 [ F0344071948D1A1FA732231785A0664C ] C:\Windows\System32\themeservice.dll
11:51:33.0739 3508 C:\Windows\System32\themeservice.dll - ok
11:51:33.0739 3508 [ A77BE7CB3222B4FB0AC6C71D1C2698D4 ] C:\Windows\System32\dsrole.dll
11:51:33.0739 3508 C:\Windows\System32\dsrole.dll - ok
11:51:33.0739 3508 [ BE097F5BB10F9079FCEB2DC4E7E20F02 ] C:\Windows\System32\slc.dll
11:51:33.0739 3508 C:\Windows\System32\slc.dll - ok
11:51:33.0755 3508 [ 4166F82BE4D24938977DD1746BE9B8A0 ] C:\Windows\System32\es.dll
11:51:33.0755 3508 C:\Windows\System32\es.dll - ok
11:51:33.0755 3508 [ 9BC8610C32C96A2983A65DC21CAFA921 ] C:\Windows\System32\UXInit.dll
11:51:33.0755 3508 C:\Windows\System32\UXInit.dll - ok
11:51:33.0755 3508 [ 1A47D52E303B7543E4E6026595B95422 ] C:\Windows\System32\comres.dll
11:51:33.0755 3508 C:\Windows\System32\comres.dll - ok
11:51:33.0770 3508 [ C32AB8FA018EF34C0F113BD501436D21 ] C:\Windows\System32\Sens.dll
11:51:33.0770 3508 C:\Windows\System32\Sens.dll - ok
11:51:33.0770 3508 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] C:\Windows\System32\uxsms.dll
11:51:33.0770 3508 C:\Windows\System32\uxsms.dll - ok
11:51:33.0770 3508 [ 37B68E458C0BC255DF2FB7454D0798D3 ] C:\Windows\System32\WUDFPlatform.dll
11:51:33.0770 3508 C:\Windows\System32\WUDFPlatform.dll - ok
11:51:33.0786 3508 [ B551D6637AA0E132C18AC6E504F7B79B ] C:\Windows\System32\WUDFSvc.dll
11:51:33.0786 3508 C:\Windows\System32\WUDFSvc.dll - ok
11:51:33.0786 3508 [ 666A60F6F5E719856FF6254E0966EFF7 ] C:\Windows\System32\wbem\wbemprox.dll
11:51:33.0786 3508 C:\Windows\System32\wbem\wbemprox.dll - ok
11:51:33.0802 3508 [ C6FEE635EB61EEBBF960E981DC8C6CDE ] C:\Windows\System32\drivers\EMLTDI.SYS
11:51:33.0802 3508 C:\Windows\System32\drivers\EMLTDI.SYS - ok
11:51:33.0802 3508 [ FAF9BA81FB0543CB4B7EFFD24CFA815F ] C:\Windows\System32\wbemcomn.dll
11:51:33.0802 3508 C:\Windows\System32\wbemcomn.dll - ok
11:51:33.0802 3508 [ 613BC4B8F4DEE3BF1D98F53A7D7AF9DB ] C:\Program Files\WIDCOMM\Bluetooth Software\btrez.dll
11:51:33.0802 3508 C:\Program Files\WIDCOMM\Bluetooth Software\btrez.dll - ok
11:51:33.0817 3508 [ 9173F70AF60C0A864EECDFB3342DC789 ] C:\Windows\winsxs\amd64_microsoft.vc80.mfc_1fc8b3b9a1e18e3b_8.0.50727.762_none_c46a533c8a667ee7\mfc80.dll
11:51:33.0817 3508 C:\Windows\winsxs\amd64_microsoft.vc80.mfc_1fc8b3b9a1e18e3b_8.0.50727.762_none_c46a533c8a667ee7\mfc80.dll - ok
11:51:33.0817 3508 [ 7B8F7848D3C65DD9589A4898CFF3757D ] C:\Windows\winsxs\amd64_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.4927_none_88dce9872fb18caf\msvcr80.dll
11:51:33.0817 3508 C:\Windows\winsxs\amd64_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.4927_none_88dce9872fb18caf\msvcr80.dll - ok
11:51:33.0817 3508 [ 9935F595C9B80BC40723042B43086549 ] C:\Windows\winsxs\amd64_microsoft.vc80.mfcloc_1fc8b3b9a1e18e3b_8.0.50727.762_none_fc42961a63b5a82b\mfc80ENU.dll
11:51:33.0817 3508 C:\Windows\winsxs\amd64_microsoft.vc80.mfcloc_1fc8b3b9a1e18e3b_8.0.50727.762_none_fc42961a63b5a82b\mfc80ENU.dll - ok
11:51:33.0833 3508 [ 5AA945234E9D4CCE4F715276B9AA712C ] C:\Windows\System32\imageres.dll
11:51:33.0833 3508 C:\Windows\System32\imageres.dll - ok
11:51:33.0833 3508 [ 1538831CF8AD2979A04C423779465827 ] C:\Windows\System32\drivers\lltdio.sys
11:51:33.0833 3508 C:\Windows\System32\drivers\lltdio.sys - ok
11:51:33.0833 3508 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] C:\Windows\System32\drivers\nwifi.sys
11:51:33.0833 3508 C:\Windows\System32\drivers\nwifi.sys - ok
11:51:33.0848 3508 [ F105BA1E22BF1F2EE8F005D4305E4BEC ] C:\Windows\System32\drivers\ndisuio.sys
11:51:33.0848 3508 C:\Windows\System32\drivers\ndisuio.sys - ok
11:51:33.0848 3508 [ DDC86E4F8E7456261E637E3552E804FF ] C:\Windows\System32\drivers\rspndr.sys
11:51:33.0848 3508 C:\Windows\System32\drivers\rspndr.sys - ok
11:51:33.0848 3508 [ F993A32249B66C9D622EA5592A8B76B8 ] C:\Windows\System32\lmhsvc.dll
11:51:33.0864 3508 C:\Windows\System32\lmhsvc.dll - ok
11:51:33.0864 3508 [ FD5BA198F7190DFE9BE1947EB8710396 ] C:\Windows\System32\nrpsrv.dll
11:51:33.0864 3508 C:\Windows\System32\nrpsrv.dll - ok
11:51:33.0864 3508 [ D54BFDF3E0C953F823B3D0BFE4732528 ] C:\Windows\System32\nsisvc.dll
11:51:33.0864 3508 C:\Windows\System32\nsisvc.dll - ok
11:51:33.0880 3508 [ CE3B9562D997F69B330D181A8875960F ] C:\Windows\System32\dhcpcore.dll
11:51:33.0880 3508 C:\Windows\System32\dhcpcore.dll - ok
11:51:33.0880 3508 [ 71C7B65B6557B75B99907E76956AE4B8 ] C:\Windows\System32\dhcpcore6.dll
11:51:33.0880 3508 C:\Windows\System32\dhcpcore6.dll - ok
11:51:33.0880 3508 [ 85CF424C74A1D5EC33533E1DBFF9920A ] C:\Windows\System32\dnsrslvr.dll
11:51:33.0880 3508 C:\Windows\System32\dnsrslvr.dll - ok
11:51:33.0895 3508 [ F9EC845C5EECF20E9A67F9F805F2EF1F ] C:\Windows\System32\keyiso.dll
11:51:33.0895 3508 C:\Windows\System32\keyiso.dll - ok
11:51:33.0895 3508 [ 4CBCC37856EA2039C27A2FB661DDA0E5 ] C:\Windows\System32\dhcpcsvc6.dll
11:51:33.0895 3508 C:\Windows\System32\dhcpcsvc6.dll - ok
11:51:33.0895 3508 [ 982F5395AD181179320083A4FA7E7CA8 ] C:\Windows\System32\eapphost.dll
11:51:33.0895 3508 C:\Windows\System32\eapphost.dll - ok
11:51:33.0911 3508 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] C:\Windows\System32\eapsvc.dll
11:51:33.0911 3508 C:\Windows\System32\eapsvc.dll - ok
11:51:33.0911 3508 [ 0040C486584A8E582C861CFB57AB5387 ] C:\Windows\System32\FWPUCLNT.DLL
11:51:33.0911 3508 C:\Windows\System32\FWPUCLNT.DLL - ok
11:51:33.0911 3508 [ 885D0942E0F28DB90919BE3129ECF279 ] C:\Windows\System32\dnsext.dll
11:51:33.0911 3508 C:\Windows\System32\dnsext.dll - ok
11:51:33.0926 3508 [ 2017BFE87CAB3D7EF632CFD2AA08D3F0 ] C:\Windows\System32\umb.dll
11:51:33.0926 3508 C:\Windows\System32\umb.dll - ok
11:51:33.0926 3508 [ 48A31B7CF046702059A86836DC21D786 ] C:\Windows\System32\wlanmsm.dll
11:51:33.0926 3508 C:\Windows\System32\wlanmsm.dll - ok
11:51:33.0926 3508 [ 06A1386B6E3A0CBC368665C1840906F4 ] C:\Windows\System32\wlansec.dll
11:51:33.0926 3508 C:\Windows\System32\wlansec.dll - ok
11:51:33.0942 3508 [ 65522E77A1360DBC8D199DA3BF5EFFE4 ] C:\Windows\System32\eappprxy.dll
11:51:33.0942 3508 C:\Windows\System32\eappprxy.dll - ok
11:51:33.0942 3508 [ D2B0D1C2BE5ECA80387F7CB8626DCAFE ] C:\Windows\System32\onex.dll
11:51:33.0942 3508 C:\Windows\System32\onex.dll - ok
11:51:33.0942 3508 [ 0D753307D274F3688BD21C377B616700 ] C:\Windows\System32\eappcfg.dll
11:51:33.0942 3508 C:\Windows\System32\eappcfg.dll - ok
11:51:33.0958 3508 [ 97E43F324BE1503CB2FFB058534688DA ] C:\Windows\System32\l2gpstore.dll
11:51:33.0958 3508 C:\Windows\System32\l2gpstore.dll - ok
11:51:33.0958 3508 [ 7F1B4C6FF3B85F9ADF74055187B8A22C ] C:\Windows\System32\wlanutil.dll
11:51:33.0958 3508 C:\Windows\System32\wlanutil.dll - ok
11:51:33.0958 3508 [ 730BF204A595D5B6D7DC57A247CC741C ] C:\Windows\System32\wlgpclnt.dll
11:51:33.0958 3508 C:\Windows\System32\wlgpclnt.dll - ok
11:51:33.0973 3508 [ 22E7431E7DAE8463AF94A79A054276E5 ] C:\Windows\System32\WinSCard.dll
11:51:33.0973 3508 C:\Windows\System32\WinSCard.dll - ok
11:51:33.0973 3508 [ 72D3D64526765C34DBFC7D895B4FBDF6 ] C:\Windows\System32\msxml6.dll
11:51:33.0973 3508 C:\Windows\System32\msxml6.dll - ok
11:51:33.0989 3508 [ 0298AC45D0EFFFB2DB4BAA7DD186E7BF ] C:\Windows\System32\shsvcs.dll
11:51:33.0989 3508 C:\Windows\System32\shsvcs.dll - ok
11:51:33.0989 3508 [ 624D0F5FF99428BB90A5B8A4123E918E ] C:\Windows\System32\schedsvc.dll
11:51:33.0989 3508 C:\Windows\System32\schedsvc.dll - ok
11:51:33.0989 3508 [ BC414631876B2F28B8DAB08E849C12C5 ] C:\Windows\System32\ktmw32.dll
11:51:33.0989 3508 C:\Windows\System32\ktmw32.dll - ok
11:51:33.0989 3508 [ 8F6D9A20F1FB06F0602A7D5A82840DBF ] C:\Windows\System32\netcfgx.dll
11:51:33.0989 3508 C:\Windows\System32\netcfgx.dll - ok
11:51:34.0004 3508 [ 1B547066D0A6CD40EB3BAAC6A9C7E7A9 ] C:\Windows\System32\taskcomp.dll
11:51:34.0004 3508 C:\Windows\System32\taskcomp.dll - ok
11:51:34.0004 3508 [ 1B38A0F123FCF1546FACEAF1EFAFAA00 ] C:\Windows\System32\fveapi.dll
11:51:34.0004 3508 C:\Windows\System32\fveapi.dll - ok
11:51:34.0004 3508 [ 694865362F0965779F92BCFE97712323 ] C:\Windows\System32\tbs.dll
11:51:34.0004 3508 C:\Windows\System32\tbs.dll - ok
11:51:34.0020 3508 [ 891ECFD08E2C538B7948CBC45106D697 ] C:\Windows\System32\fvecerts.dll
11:51:34.0020 3508 C:\Windows\System32\fvecerts.dll - ok
11:51:34.0020 3508 [ 8269210DAF3B12BC8300631B28A2A442 ] C:\Windows\System32\wiarpc.dll
11:51:34.0020 3508 C:\Windows\System32\wiarpc.dll - ok
11:51:34.0036 3508 [ CEE049CAC4EFA7F4E1E4AD014414A5D4 ] C:\Windows\System32\drivers\http.sys
11:51:34.0036 3508 C:\Windows\System32\drivers\http.sys - ok
11:51:34.0036 3508 [ 567977DC43CC13C4C35ED7084C0B84D5 ] C:\Windows\System32\spoolsv.exe
11:51:34.0036 3508 C:\Windows\System32\spoolsv.exe - ok
11:51:34.0036 3508 [ 4992C609A6315671463E30F6512BC022 ] C:\Windows\System32\BFE.DLL
11:51:34.0036 3508 C:\Windows\System32\BFE.DLL - ok
11:51:34.0051 3508 [ 19D20159708E152267E53B66677A4995 ] C:\Windows\System32\drivers\bowser.sys
11:51:34.0051 3508 C:\Windows\System32\drivers\bowser.sys - ok
11:51:34.0051 3508 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] C:\Windows\System32\drivers\mpsdrv.sys
11:51:34.0051 3508 C:\Windows\System32\drivers\mpsdrv.sys - ok
11:51:34.0051 3508 [ AECAB449567D1846DAD63ECE49E893E3 ] C:\Windows\System32\MPSSVC.dll
11:51:34.0051 3508 C:\Windows\System32\MPSSVC.dll - ok
11:51:34.0067 3508 [ C67F8A962B2534224D5908D16D2AD3CE ] C:\Windows\System32\wfapigp.dll
11:51:34.0067 3508 C:\Windows\System32\wfapigp.dll - ok
11:51:34.0067 3508 [ 040D62A9D8AD28922632137ACDD984F2 ] C:\Windows\System32\drivers\mrxsmb.sys
11:51:34.0067 3508 C:\Windows\System32\drivers\mrxsmb.sys - ok
11:51:34.0082 3508 [ F0067552F8F9B33D7C59403AB808A3CB ] C:\Windows\System32\drivers\mrxsmb10.sys
11:51:34.0082 3508 C:\Windows\System32\drivers\mrxsmb10.sys - ok
11:51:34.0082 3508 [ 3C142D31DE9F2F193218A53FE2632051 ] C:\Windows\System32\drivers\mrxsmb20.sys
11:51:34.0082 3508 C:\Windows\System32\drivers\mrxsmb20.sys - ok
11:51:34.0082 3508 [ 27026EAC8818E8A6C00A1CAD2F11D29A ] C:\Windows\System32\wkssvc.dll
11:51:34.0082 3508 C:\Windows\System32\wkssvc.dll - ok
11:51:34.0098 3508 [ 426E0E8127BAC7D5DDEE8251F104E053 ] C:\Program Files (x86)\Absolute Software\Absolute Notifier\AbsoluteNotifierService.exe
11:51:34.0098 3508 C:\Program Files (x86)\Absolute Software\Absolute Notifier\AbsoluteNotifierService.exe - ok
11:51:34.0098 3508 [ 128DD9AF8640DBCC711940903C8B554F ] C:\Windows\SysWOW64\mscoree.dll
11:51:34.0098 3508 C:\Windows\SysWOW64\mscoree.dll - ok
11:51:34.0114 3508 [ 961036B3C6282C646B9ADBC8BB32C983 ] C:\Windows\System32\mscms.dll
11:51:34.0114 3508 C:\Windows\System32\mscms.dll - ok
11:51:34.0114 3508 [ 3AEAA8B561E63452C655DC0584922257 ] C:\Windows\System32\pcasvc.dll
11:51:34.0114 3508 C:\Windows\System32\pcasvc.dll - ok
11:51:34.0129 3508 [ 6313F223E817CC09AA41811DAA7F541D ] C:\Windows\System32\snmptrap.exe
11:51:34.0129 3508 C:\Windows\System32\snmptrap.exe - ok
11:51:34.0129 3508 [ 06A7422224D9865A5613710A089987DF ] C:\Windows\System32\provsvc.dll
11:51:34.0129 3508 C:\Windows\System32\provsvc.dll - ok
11:51:34.0129 3508 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] C:\Windows\System32\sstpsvc.dll
11:51:34.0129 3508 C:\Windows\System32\sstpsvc.dll - ok
11:51:34.0145 3508 [ F5DF6846F30E9F54EA60CCAEB3FB2055 ] C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscoreei.dll
11:51:34.0145 3508 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscoreei.dll - ok
11:51:34.0145 3508 [ EBC9F71C62296108B60A35B3A54F04FE ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorwks.dll
11:51:34.0145 3508 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorwks.dll - ok
11:51:34.0145 3508 [ C9564CF4976E7E96B4052737AA2492B4 ] C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcr80.dll
11:51:34.0145 3508 C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcr80.dll - ok
11:51:34.0160 3508 [ C733D233B623B7FFCE5031E4B756EE26 ] C:\Windows\SysWOW64\profapi.dll
11:51:34.0160 3508 C:\Windows\SysWOW64\profapi.dll - ok
11:51:34.0160 3508 [ 19CCF6D39E15B13D00106F9795721136 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\mscorlib\5858678a79aae31262b0214424245d06\mscorlib.ni.dll
11:51:34.0160 3508 C:\Windows\assembly\NativeImages_v2.0.50727_32\mscorlib\5858678a79aae31262b0214424245d06\mscorlib.ni.dll - ok
11:51:34.0176 3508 [ D146C378AEC2D1570A4E4F81E2B621B3 ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorjit.dll
11:51:34.0176 3508 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorjit.dll - ok
11:51:34.0176 3508 [ D84222A740EE7A135FC68AEB11121523 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System\2ebb3c259eab50af565e3a8dba6ad20e\System.ni.dll
11:51:34.0176 3508 C:\Windows\assembly\NativeImages_v2.0.50727_32\System\2ebb3c259eab50af565e3a8dba6ad20e\System.ni.dll - ok
11:51:34.0176 3508 [ 43748180DE16AE74E12BFA415D3E3CBA ] C:\Program Files (x86)\Absolute Software\Absolute Notifier\Com.Absolute.Common.Agent.Remoting.dll
11:51:34.0176 3508 C:\Program Files (x86)\Absolute Software\Absolute Notifier\Com.Absolute.Common.Agent.Remoting.dll - ok
11:51:34.0192 3508 [ 4D5A47FD3704227CC3E6C8201F226057 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Runtime.Remo#\0c00b1a8336dd4c1bd1ebce7780f20b4\System.Runtime.Remoting.ni.dll
11:51:34.0192 3508 C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Runtime.Remo#\0c00b1a8336dd4c1bd1ebce7780f20b4\System.Runtime.Remoting.ni.dll - ok
11:51:34.0192 3508 [ BD549873895E371D4597FE7FA5D063EA ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System.ServiceProce#\8b7a7f9c607e09bfa03c07b5ff3a8ae3\System.ServiceProcess.ni.dll
11:51:34.0192 3508 C:\Windows\assembly\NativeImages_v2.0.50727_32\System.ServiceProce#\8b7a7f9c607e09bfa03c07b5ff3a8ae3\System.ServiceProcess.ni.dll - ok
11:51:34.0207 3508 [ 785DE7ABDA13309D6065305542829E76 ] C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE
11:51:34.0207 3508 C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE - ok
11:51:34.0207 3508 [ 93C1B8183B7A14C05FBC4FC6EAFB57D1 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Configuration\cb079eab134fd1a752ad91db13274110\System.Configuration.ni.dll
11:51:34.0207 3508 C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Configuration\cb079eab134fd1a752ad91db13274110\System.Configuration.ni.dll - ok
11:51:34.0207 3508 [ CC9BBCFC715FBEDF7AE476106FE653E9 ] C:\Windows\SysWOW64\winhttp.dll
11:51:34.0207 3508 C:\Windows\SysWOW64\winhttp.dll - ok
11:51:34.0223 3508 [ A86A1C5DF1C662D1C75815BF4794F16D ] C:\Windows\SysWOW64\webio.dll
11:51:34.0223 3508 C:\Windows\SysWOW64\webio.dll - ok
11:51:34.0223 3508 [ 6F8E3B7B70E1BBA871212940C1FBDF60 ] C:\Windows\SysWOW64\SensApi.dll
11:51:34.0223 3508 C:\Windows\SysWOW64\SensApi.dll - ok
11:51:34.0223 3508 [ 6380BE4AB7AFA48BAEF321E8CA980ADD ] C:\Windows\SysWOW64\wintrust.dll
11:51:34.0223 3508 C:\Windows\SysWOW64\wintrust.dll - ok
11:51:34.0238 3508 [ 6F5146363FD295BAF70A1F04C591EDD2 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Xml\5c85c9c42e1b8a8760de82ecb4c7d582\System.Xml.ni.dll
11:51:34.0238 3508 C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Xml\5c85c9c42e1b8a8760de82ecb4c7d582\System.Xml.ni.dll - ok
11:51:34.0238 3508 [ FF5688D309347F2720911D8796912834 ] C:\Windows\SysWOW64\clbcatq.dll
11:51:34.0238 3508 C:\Windows\SysWOW64\clbcatq.dll - ok
11:51:34.0238 3508 [ 4DBC81CEFE9DB36856880BFB3491C100 ] C:\Windows\SysWOW64\msxml6.dll
11:51:34.0238 3508 C:\Windows\SysWOW64\msxml6.dll - ok
11:51:34.0254 3508 [ D65AA164ACD0F6706DBCFBBCC9731584 ] C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
11:51:34.0254 3508 C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe - ok
11:51:34.0254 3508 [ 7321F18D1F820612ED0E9F2D4B578A7E ] C:\Windows\SysWOW64\cryptsp.dll
11:51:34.0254 3508 C:\Windows\SysWOW64\cryptsp.dll - ok
11:51:34.0254 3508 [ 6C0BD9D59C7E97DEE2FB3407D17BF697 ] C:\Windows\SysWOW64\RpcRtRemote.dll
11:51:34.0254 3508 C:\Windows\SysWOW64\RpcRtRemote.dll - ok
11:51:34.0270 3508 [ ED8EC63F7522DF4852147C84EC62C36A ] C:\Windows\SysWOW64\rsaenh.dll
11:51:34.0270 3508 C:\Windows\SysWOW64\rsaenh.dll - ok
11:51:34.0270 3508 [ 27A2F5B4168B333E003E2AB68811D62E ] C:\Program Files\Quick Heal\Quick Heal Total Security\EMLPROXY.EXE
11:51:34.0270 3508 C:\Program Files\Quick Heal\Quick Heal Total Security\EMLPROXY.EXE - ok
11:51:34.0270 3508 [ 7D0E72093E72B8045D44DEB9384F811E ] C:\Program Files\WIDCOMM\Bluetooth Software\btins.dll
11:51:34.0270 3508 C:\Program Files\WIDCOMM\Bluetooth Software\btins.dll - ok
11:51:34.0285 3508 [ 324CC6C4A615E9B0FA97B57540357E66 ] C:\Program Files\Quick Heal\Quick Heal Total Security\EMPXCORE.DLL
11:51:34.0285 3508 C:\Program Files\Quick Heal\Quick Heal Total Security\EMPXCORE.DLL - ok
11:51:34.0285 3508 [ 7C6587B5582A271FE766DCFD5F39089A ] C:\Program Files\Quick Heal\Quick Heal Total Security\ONLNMF.DLL
11:51:34.0285 3508 C:\Program Files\Quick Heal\Quick Heal Total Security\ONLNMF.DLL - ok
11:51:34.0301 3508 [ 5FF7D057E48DA861BDBB47D314B6DA7D ] C:\Windows\winsxs\amd64_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.4926_none_08e1a05ba83fe554\msvcr90.dll
11:51:34.0301 3508 C:\Windows\winsxs\amd64_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.4926_none_08e1a05ba83fe554\msvcr90.dll - ok
11:51:34.0301 3508 [ 81FD4875FEDB56DE7F320EF40D5C946F ] C:\Program Files\Quick Heal\Quick Heal Total Security\GGSTUB.DLL
11:51:34.0301 3508 C:\Program Files\Quick Heal\Quick Heal Total Security\GGSTUB.DLL - ok
11:51:34.0301 3508 [ 335BFFC6B447C862CB181AEF447B4DAA ] C:\Program Files\Quick Heal\Quick Heal Total Security\scansts.dll
11:51:34.0301 3508 C:\Program Files\Quick Heal\Quick Heal Total Security\scansts.dll - ok
11:51:34.0316 3508 [ 599EBE6C7EA52B5FF9603F203E8EC080 ] C:\Windows\System32\msi.dll
11:51:34.0316 3508 C:\Windows\System32\msi.dll - ok
11:51:34.0316 3508 [ 7D656F994095F5CE9FB7D6709181EB90 ] C:\Program Files\Quick Heal\Quick Heal Total Security\FILEWRAP.DLL
11:51:34.0316 3508 C:\Program Files\Quick Heal\Quick Heal Total Security\FILEWRAP.DLL - ok
11:51:34.0316 3508 [ 1495A96BC879926807DCB3DC4B2A9883 ] C:\Program Files\Quick Heal\Quick Heal Total Security\SCANOPT.DLL
11:51:34.0316 3508 C:\Program Files\Quick Heal\Quick Heal Total Security\SCANOPT.DLL - ok
11:51:34.0332 3508 [ 3A387E0E973D45469A08A703407F2E6F ] C:\Windows\winsxs\amd64_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.4926_none_08e1a05ba83fe554\msvcp90.dll
11:51:34.0332 3508 C:\Windows\winsxs\amd64_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.4926_none_08e1a05ba83fe554\msvcp90.dll - ok
11:51:34.0332 3508 [ 35E46B9D2AAE75157D28D3FCB87977AC ] C:\Program Files\Quick Heal\Quick Heal Total Security\WSCORE.DLL
11:51:34.0332 3508 C:\Program Files\Quick Heal\Quick Heal Total Security\WSCORE.DLL - ok
11:51:34.0348 3508 [ 266F630A7CE7F816EC51882E3C90F8F1 ] C:\Program Files\Quick Heal\Quick Heal Total Security\WSNFAPI.DLL
11:51:34.0348 3508 C:\Program Files\Quick Heal\Quick Heal Total Security\WSNFAPI.DLL - ok
11:51:34.0348 3508 [ F66E2D90ECEFCF47A5A94968044E6B7B ] C:\Program Files\Quick Heal\Quick Heal Total Security\wstifapi.dll
11:51:34.0348 3508 C:\Program Files\Quick Heal\Quick Heal Total Security\wstifapi.dll - ok
11:51:34.0348 3508 [ E4D894AC04DEE084B185991D928D3F79 ] C:\Program Files\Quick Heal\Quick Heal Total Security\UIIPCITF.DLL
11:51:34.0348 3508 C:\Program Files\Quick Heal\Quick Heal Total Security\UIIPCITF.DLL - ok
11:51:34.0363 3508 [ 9DDF0FED0D490AEB4FCABB67181E4086 ] C:\Program Files\Quick Heal\Quick Heal Total Security\WSUTIL.DLL
11:51:34.0363 3508 C:\Program Files\Quick Heal\Quick Heal Total Security\WSUTIL.DLL - ok
11:51:34.0363 3508 [ 7489BAE75F6ACC47E22C8CBE77A845F3 ] C:\Program Files\Quick Heal\Quick Heal Total Security\INFORI.DLL
11:51:34.0363 3508 C:\Program Files\Quick Heal\Quick Heal Total Security\INFORI.DLL - ok
11:51:34.0379 3508 [ 41AD382FE491433D0A28FB4B16EB89F7 ] C:\Program Files\Quick Heal\Quick Heal Total Security\MODRES.DLL
11:51:34.0379 3508 C:\Program Files\Quick Heal\Quick Heal Total Security\MODRES.DLL - ok
11:51:34.0379 3508 [ 649277BC17AB5F050AF2ED8C9D861415 ] C:\Program Files\Quick Heal\Quick Heal Total Security\REGISTRY.DLL
11:51:34.0379 3508 C:\Program Files\Quick Heal\Quick Heal Total Security\REGISTRY.DLL - ok
11:51:34.0379 3508 [ 3D268FBD5077F41ECE4FF40567BFB492 ] C:\Program Files\Quick Heal\Quick Heal Total Security\SAPISSVC.EXE
11:51:34.0379 3508 C:\Program Files\Quick Heal\Quick Heal Total Security\SAPISSVC.EXE - ok
11:51:34.0394 3508 [ 69B1DCEE3FA5D6C77A44BE62CC7DE510 ] C:\Program Files\Quick Heal\Quick Heal Total Security\SAPISLIB.DLL
11:51:34.0394 3508 C:\Program Files\Quick Heal\Quick Heal Total Security\SAPISLIB.DLL - ok
11:51:34.0394 3508 [ FAFAE01E889DC9C05A6CA2138CFC220B ] C:\Windows\System32\tapi32.dll
11:51:34.0394 3508 C:\Windows\System32\tapi32.dll - ok
11:51:34.0394 3508 [ 0116D56BB15FCAA61F452596C1E08FF4 ] C:\Program Files\Quick Heal\Quick Heal Total Security\GGCITF.DLL
11:51:34.0394 3508 C:\Program Files\Quick Heal\Quick Heal Total Security\GGCITF.DLL - ok
11:51:34.0410 3508 [ 82D475A87849699A6B6471D34C1E3567 ] C:\Program Files\Quick Heal\Quick Heal Total Security\ITFG.DLL
11:51:34.0410 3508 C:\Program Files\Quick Heal\Quick Heal Total Security\ITFG.DLL - ok
11:51:34.0410 3508 [ 038DD7E35A7C8C89623A40E75ABC1FF6 ] C:\Program Files\WIDCOMM\Bluetooth Software\btwprofpack.dll
11:51:34.0410 3508 C:\Program Files\WIDCOMM\Bluetooth Software\btwprofpack.dll - ok
11:51:34.0410 3508 [ BB9F6A68EB07C920C9975F2A0AE43FD1 ] C:\Program Files\Quick Heal\Quick Heal Total Security\OPSSVC.EXE
11:51:34.0426 3508 C:\Program Files\Quick Heal\Quick Heal Total Security\OPSSVC.EXE - ok
11:51:34.0426 3508 [ C6D332ED6A3BD6060C0F0F5A18C1A3C0 ] C:\Windows\System32\cryptnet.dll
11:51:34.0426 3508 C:\Windows\System32\cryptnet.dll - ok
11:51:34.0426 3508 [ F02786B66375292E58C8777082D4396D ] C:\Windows\System32\cryptsvc.dll
11:51:34.0426 3508 C:\Windows\System32\cryptsvc.dll - ok
11:51:34.0441 3508 [ 8C2BA6BEA949EE6E68385F5692BAFB94 ] C:\Windows\System32\dps.dll
11:51:34.0441 3508 C:\Windows\System32\dps.dll - ok
11:51:34.0441 3508 [ C5B4683680DF085B57BC53E5EF34861F ] C:\Windows\System32\IKEEXT.DLL
11:51:34.0441 3508 C:\Windows\System32\IKEEXT.DLL - ok
11:51:34.0441 3508 [ D9A0CE66046D6EFA0C61BAA885CBA0A8 ] C:\Windows\System32\nlasvc.dll
11:51:34.0441 3508 C:\Windows\System32\nlasvc.dll - ok
11:51:34.0457 3508 [ F3D202F53A222D5F6944D459B73CF967 ] C:\Windows\System32\fltLib.dll
11:51:34.0457 3508 C:\Windows\System32\fltLib.dll - ok
11:51:34.0457 3508 [ 2FF4C1F1E2F23BBDA84197DE779C3FB8 ] C:\Program Files\Quick Heal\Quick Heal Total Security\FNSYSITF.DLL
11:51:34.0457 3508 C:\Program Files\Quick Heal\Quick Heal Total Security\FNSYSITF.DLL - ok
11:51:34.0457 3508 [ 098B17CDF371F7D6759766B6E1C62A8B ] C:\Program Files\Quick Heal\Quick Heal Total Security\OPSCORE.DLL
11:51:34.0457 3508 C:\Program Files\Quick Heal\Quick Heal Total Security\OPSCORE.DLL - ok
11:51:34.0472 3508 [ 65D66A3A780E327194DAECC573F76D7D ] C:\Program Files\Quick Heal\Quick Heal Total Security\OPSITF.DLL
11:51:34.0472 3508 C:\Program Files\Quick Heal\Quick Heal Total Security\OPSITF.DLL - ok
11:51:34.0472 3508 [ 107F279517E2A04DB4AC1B1FAF1D573B ] C:\Windows\System32\ncsi.dll
11:51:34.0472 3508 C:\Windows\System32\ncsi.dll - ok
11:51:34.0472 3508 [ DC57BAF15064ECB79F6D2CCF352E1D88 ] C:\Windows\System32\taskschd.dll
11:51:34.0472 3508 C:\Windows\System32\taskschd.dll - ok
11:51:34.0488 3508 [ A9658831FB91AF680CF2DE51378282AA ] C:\Program Files\Quick Heal\Quick Heal Total Security\SCANAPI.DLL
11:51:34.0488 3508 C:\Program Files\Quick Heal\Quick Heal Total Security\SCANAPI.DLL - ok
11:51:34.0488 3508 [ D77CD94EEB5FF5FDBFCDAA1CC70999B6 ] C:\PROGRA~1\QUICKH~1\QUICKH~1\scansdk.dll
11:51:34.0488 3508 C:\PROGRA~1\QUICKH~1\QUICKH~1\scansdk.dll - ok
11:51:34.0504 3508 [ 0BF0C2A72F2CB0BA4382C392D3E331AF ] C:\Windows\System32\winhttp.dll
11:51:34.0504 3508 C:\Windows\System32\winhttp.dll - ok
11:51:34.0504 3508 [ 09DB1E1330630F8A0CE80D42CB4B7C2C ] C:\PROGRA~1\QUICKH~1\QUICKH~1\DISKAPI.DLL
11:51:34.0504 3508 C:\PROGRA~1\QUICKH~1\QUICKH~1\DISKAPI.DLL - ok
11:51:34.0504 3508 [ 1BE4D555DDC53A04881DA4AD6240EE88 ] C:\PROGRA~1\QUICKH~1\QUICKH~1\filesdk.dll
11:51:34.0504 3508 C:\PROGRA~1\QUICKH~1\QUICKH~1\filesdk.dll - ok
11:51:34.0519 3508 [ E0209F5C1B0735ED497FD51D0FBD458E ] C:\PROGRA~1\QUICKH~1\QUICKH~1\platform.dll
11:51:34.0519 3508 C:\PROGRA~1\QUICKH~1\QUICKH~1\platform.dll - ok
11:51:34.0519 3508 [ 6CEF7856A3EFAC59470F6208F0F585CE ] C:\Windows\System32\mpr.dll
11:51:34.0519 3508 C:\Windows\System32\mpr.dll - ok
11:51:34.0519 3508 [ 1727B2A2F379A32B864C096FA794AADC ] C:\Windows\System32\aepic.dll
11:51:34.0519 3508 C:\Windows\System32\aepic.dll - ok
11:51:34.0535 3508 [ 2196CDBFA4B99BEEDAE300FA21DFE718 ] C:\Windows\System32\webio.dll
11:51:34.0535 3508 C:\Windows\System32\webio.dll - ok
11:51:34.0535 3508 [ 68769C3356B3BE5D1C732C97B9A80D6E ] C:\Windows\System32\drivers\PEAuth.sys
11:51:34.0535 3508 C:\Windows\System32\drivers\PEAuth.sys - ok
11:51:34.0535 3508 [ C6DCD1D11ED6827F05C00773C3E7053C ] C:\Windows\System32\sfc.dll
11:51:34.0535 3508 C:\Windows\System32\sfc.dll - ok
11:51:34.0550 3508 [ 895C9AB0A855547445C4181195230757 ] C:\Windows\System32\sfc_os.dll
11:51:34.0550 3508 C:\Windows\System32\sfc_os.dll - ok
11:51:34.0550 3508 [ A261AD1FDC6D6A658A82B81AF81B215F ] C:\Windows\System32\vssapi.dll
11:51:34.0550 3508 C:\Windows\System32\vssapi.dll - ok
11:51:34.0550 3508 [ 115A28C27F7B65A3252048AAA77059A7 ] C:\Program Files\Quick Heal\Quick Heal Total Security\SACINTFC.DLL
11:51:34.0550 3508 C:\Program Files\Quick Heal\Quick Heal Total Security\SACINTFC.DLL - ok
11:51:34.0566 3508 [ E6C941FE91F90BA31CA237D89A68A29E ] C:\Program Files\Quick Heal\Quick Heal Total Security\STRTLIB.DLL
11:51:34.0566 3508 C:\Program Files\Quick Heal\Quick Heal Total Security\STRTLIB.DLL - ok
11:51:34.0566 3508 [ E599148A72888A009A1DC6470BC06794 ] C:\Program Files\Quick Heal\Quick Heal Total Security\QUHLPSVC.EXE
11:51:34.0566 3508 C:\Program Files\Quick Heal\Quick Heal Total Security\QUHLPSVC.EXE - ok
11:51:34.0566 3508 [ 06EEE09F266779687FAA38696857DACC ] C:\Program Files\Quick Heal\Quick Heal Total Security\QUHELPER.DLL
11:51:34.0566 3508 C:\Program Files\Quick Heal\Quick Heal Total Security\QUHELPER.DLL - ok
11:51:34.0582 3508 [ 812D175BBBB5C0E30915EDB76B188EFB ] C:\PROGRA~1\QUICKH~1\QUICKH~1\ANPHMAIL.DLL
11:51:34.0582 3508 C:\PROGRA~1\QUICKH~1\QUICKH~1\ANPHMAIL.DLL - ok
11:51:34.0582 3508 [ 325F9E00C8A17C1171CB6B1B5B5AFED7 ] C:\PROGRA~1\QUICKH~1\QUICKH~1\scan.dll
11:51:34.0582 3508 C:\PROGRA~1\QUICKH~1\QUICKH~1\scan.dll - ok
11:51:34.0582 3508 [ D5A5ED3774C963C62B7B906FB2BB4D16 ] C:\Program Files\Quick Heal\Quick Heal Total Security\UPSDSVC.DLL
11:51:34.0597 3508 C:\Program Files\Quick Heal\Quick Heal Total Security\UPSDSVC.DLL - ok
11:51:34.0597 3508 [ 3BEC5E229DD4E26D827D0A55F8F5979D ] C:\PROGRA~1\QUICKH~1\QUICKH~1\bootscan.dll
11:51:34.0597 3508 C:\PROGRA~1\QUICKH~1\QUICKH~1\bootscan.dll - ok
11:51:34.0597 3508 [ 2A8B506AB60B03982D8A12990CB21083 ] C:\PROGRA~1\QUICKH~1\QUICKH~1\disasm.dll
11:51:34.0597 3508 C:\PROGRA~1\QUICKH~1\QUICKH~1\disasm.dll - ok
11:51:34.0613 3508 [ 4469DCD7E1BA7BF046EC9E4B303C34F9 ] C:\PROGRA~1\QUICKH~1\QUICKH~1\VIRLIST.DLL
11:51:34.0613 3508 C:\PROGRA~1\QUICKH~1\QUICKH~1\VIRLIST.DLL - ok
11:51:34.0613 3508 [ 2BBF3FDB70B8965DFA0258CBAB41ECCE ] C:\Windows\System32\ssdpapi.dll
11:51:34.0613 3508 C:\Windows\System32\ssdpapi.dll - ok
11:51:34.0613 3508 [ 287923557447D7E4BDD7E65B1F0F5428 ] C:\Windows\System32\vsstrace.dll
11:51:34.0613 3508 C:\Windows\System32\vsstrace.dll - ok
11:51:34.0628 3508 [ 4D394B185BD6BBEDF26353FDFDF6268D ] C:\PROGRA~1\QUICKH~1\QUICKH~1\mltiscan.dll
11:51:34.0628 3508 C:\PROGRA~1\QUICKH~1\QUICKH~1\mltiscan.dll - ok
11:51:34.0628 3508 [ 3239AF9EDE06256DAA3CE77005A736AB ] C:\PROGRA~1\QUICKH~1\QUICKH~1\drvcomm.dll
11:51:34.0628 3508 C:\PROGRA~1\QUICKH~1\QUICKH~1\drvcomm.dll - ok
11:51:34.0628 3508 [ DDE33528F026C9F2E182A54138D42640 ] C:\Program Files\Quick Heal\Quick Heal Total Security\SCANWSCS.EXE
11:51:34.0628 3508 C:\Program Files\Quick Heal\Quick Heal Total Security\SCANWSCS.EXE - ok
11:51:34.0644 3508 [ 3EA8A16169C26AFBEB544E0E48421186 ] C:\Windows\System32\drivers\secdrv.sys
11:51:34.0644 3508 C:\Windows\System32\drivers\secdrv.sys - ok
11:51:34.0644 3508 [ F15B081D3FA822818018B73954BE39C4 ] C:\PROGRA~1\QUICKH~1\QUICKH~1\pescan.dll
11:51:34.0644 3508 C:\PROGRA~1\QUICKH~1\QUICKH~1\pescan.dll - ok
11:51:34.0660 3508 [ F07AF60B152221472FBDB2FECEC4896D ] C:\Program Files (x86)\Skype\Updater\Updater.exe
11:51:34.0660 3508 C:\Program Files (x86)\Skype\Updater\Updater.exe - ok
11:51:34.0660 3508 [ 210FCACAF902B2CD47CF9FD17D846146 ] C:\Windows\System32\aeevts.dll
11:51:34.0660 3508 C:\Windows\System32\aeevts.dll - ok
11:51:34.0660 3508 [ F9C9944F80B757F0380EBA4F239C7E2D ] C:\PROGRA~1\QUICKH~1\QUICKH~1\dospoly.dll
11:51:34.0660 3508 C:\PROGRA~1\QUICKH~1\QUICKH~1\dospoly.dll - ok
11:51:34.0675 3508 [ 5552C4A8AA318C57A6035BE0F5722FA2 ] C:\PROGRA~1\QUICKH~1\QUICKH~1\pepoly.dll
11:51:34.0675 3508 C:\PROGRA~1\QUICKH~1\QUICKH~1\pepoly.dll - ok
11:51:34.0675 3508 [ A543AC1F7138376D778D630A35FCBC4C ] C:\Windows\SysWOW64\psapi.dll
11:51:34.0675 3508 C:\Windows\SysWOW64\psapi.dll - ok
11:51:34.0675 3508 [ 9C0DC1DAAD14D443DD5A0D1EE78D775E ] C:\Windows\SysWOW64\userenv.dll
11:51:34.0675 3508 C:\Windows\SysWOW64\userenv.dll - ok
11:51:34.0691 3508 [ 702254574E7E52052DE39408457B7149 ] C:\Windows\SysWOW64\version.dll
11:51:34.0691 3508 C:\Windows\SysWOW64\version.dll - ok
11:51:34.0691 3508 [ E30E5BB0DBA49EFE5BBBAFEA440CFBD9 ] C:\Windows\SysWOW64\wtsapi32.dll
11:51:34.0691 3508 C:\Windows\SysWOW64\wtsapi32.dll - ok
11:51:34.0691 3508 [ 0AF6E19D39C70844C5CAA8FB0183C36E ] C:\Windows\System32\drivers\srvnet.sys
11:51:34.0691 3508 C:\Windows\System32\drivers\srvnet.sys - ok
11:51:34.0706 3508 [ 04459C37D7C6D989980C9CD66B24A19B ] C:\PROGRA~1\QUICKH~1\QUICKH~1\arcvsdk.dll
11:51:34.0706 3508 C:\PROGRA~1\QUICKH~1\QUICKH~1\arcvsdk.dll - ok
11:51:34.0706 3508 [ 52D0E33B681BD0F33FDC08812FEE4F7D ] C:\Windows\System32\wiaservc.dll
11:51:34.0706 3508 C:\Windows\System32\wiaservc.dll - ok
11:51:34.0706 3508 [ 76D078AF6F587B162D50210F761EB9ED ] C:\Windows\System32\drivers\tcpipreg.sys
11:51:34.0706 3508 C:\Windows\System32\drivers\tcpipreg.sys - ok
11:51:34.0722 3508 [ 3C1284516A62078FB68F768DE4F1A7BE ] C:\Windows\System32\sysmain.dll
11:51:34.0722 3508 C:\Windows\System32\sysmain.dll - ok
11:51:34.0722 3508 [ 0F05EC2887BFE197AD82A13287D2F404 ] C:\Windows\System32\termsrv.dll
11:51:34.0722 3508 C:\Windows\System32\termsrv.dll - ok
11:51:34.0722 3508 [ 19B07E7E8915D701225DA41CB3877306 ] C:\Windows\System32\wbem\WMIsvc.dll
11:51:34.0722 3508 C:\Windows\System32\wbem\WMIsvc.dll - ok
11:51:34.0738 3508 [ 0364256B4A2A93A8C8CDA6B3B5A0EFF5 ] C:\Windows\System32\wiatrace.dll
11:51:34.0738 3508 C:\Windows\System32\wiatrace.dll - ok
11:51:34.0738 3508 [ 0255C22D99602534F15CBB8D9B6F152F ] C:\Windows\System32\wbem\WinMgmtR.dll
11:51:34.0738 3508 C:\Windows\System32\wbem\WinMgmtR.dll - ok
11:51:34.0753 3508 [ A7582A70802D5B9F28ED3940F6A3E9ED ] C:\Windows\System32\wbem\WmiDcPrv.dll
11:51:34.0753 3508 C:\Windows\System32\wbem\WmiDcPrv.dll - ok
11:51:34.0753 3508 [ 3B9665D4B8C587A6014B9B8DFF5974A0 ] C:\Windows\System32\wbem\wbemcore.dll
11:51:34.0753 3508 C:\Windows\System32\wbem\wbemcore.dll - ok
11:51:34.0753 3508 [ 733369BB05858922E9428EA34F48C7CB ] C:\PROGRA~1\QUICKH~1\QUICKH~1\OLESDK.DLL
11:51:34.0753 3508 C:\PROGRA~1\QUICKH~1\QUICKH~1\OLESDK.DLL - ok
11:51:34.0769 3508 [ 76548F7B818881B47D8D1AE1BE9C11F8 ] C:\Windows\System32\drivers\srv2.sys
11:51:34.0769 3508 C:\Windows\System32\drivers\srv2.sys - ok
11:51:34.0769 3508 [ A3F5E8EC1316C3E2562B82694A251C9E ] C:\Windows\System32\wbem\fastprox.dll
11:51:34.0769 3508 C:\Windows\System32\wbem\fastprox.dll - ok
11:51:34.0769 3508 [ 087D8668C71634A3A3761135ABF16EEE ] C:\Windows\System32\wbem\esscli.dll
11:51:34.0769 3508 C:\Windows\System32\wbem\esscli.dll - ok
11:51:34.0784 3508 [ 7E236CC26FF0C2513819FA453E2C5371 ] C:\Windows\System32\icaapi.dll
11:51:34.0784 3508 C:\Windows\System32\icaapi.dll - ok
11:51:34.0784 3508 [ 7E7AFD841694F6AC397E99D75CEAD49D ] C:\Windows\System32\trkwks.dll
11:51:34.0784 3508 C:\Windows\System32\trkwks.dll - ok
11:51:34.0784 3508 [ 89C6263C3F1D0945A7534D7B66D9F2E1 ] C:\PROGRA~1\QUICKH~1\QUICKH~1\vbsscan.dll
11:51:34.0784 3508 C:\PROGRA~1\QUICKH~1\QUICKH~1\vbsscan.dll - ok
11:51:34.0800 3508 [ EE26D130808D16C0E417BBBED0451B34 ] C:\Windows\System32\ntdsapi.dll
11:51:34.0800 3508 C:\Windows\System32\ntdsapi.dll - ok
11:51:34.0800 3508 [ F8E058D17363EC580E4B7232778B6CB5 ] C:\Windows\System32\iphlpsvc.dll
11:51:34.0800 3508 C:\Windows\System32\iphlpsvc.dll - ok
11:51:34.0800 3508 [ 2408C0366D96BCDF63E8F1C78E4A29C5 ] C:\Windows\System32\drivers\srv.sys
11:51:34.0800 3508 C:\Windows\System32\drivers\srv.sys - ok
11:51:34.0816 3508 [ CCB73EF7E72E55C7BD63DC46FC3663A0 ] C:\PROGRA~1\QUICKH~1\QUICKH~1\wormscan.dll
11:51:34.0816 3508 C:\PROGRA~1\QUICKH~1\QUICKH~1\wormscan.dll - ok
11:51:34.0816 3508 [ 48A6CA43A5C921C465F70D9B42B3EF1A ] C:\Windows\System32\sqmapi.dll
11:51:34.0816 3508 C:\Windows\System32\sqmapi.dll - ok
11:51:34.0816 3508 [ 9C04115ECA8904CFD014033CECD8CCCF ] C:\PROGRA~1\QUICKH~1\QUICKH~1\bkdrscan.dll
11:51:34.0816 3508 C:\PROGRA~1\QUICKH~1\QUICKH~1\bkdrscan.dll - ok
11:51:34.0831 3508 [ 7B38D7916A7CD058C16A0A6CA5077901 ] C:\Windows\System32\wdscore.dll
11:51:34.0831 3508 C:\Windows\System32\wdscore.dll - ok
11:51:34.0831 3508 [ 718B6F51AB7F6FE2988A36868F9AD3AB ] C:\Windows\System32\wbem\wbemsvc.dll
11:51:34.0831 3508 C:\Windows\System32\wbem\wbemsvc.dll - ok
11:51:34.0831 3508 [ 6B054C67AAA87843504E8E3C09102009 ] C:\Windows\System32\browser.dll
11:51:34.0831 3508 C:\Windows\System32\browser.dll - ok
11:51:34.0847 3508 [ 81F1D04D4D0E433099365127375FD501 ] C:\Windows\System32\srvsvc.dll
11:51:34.0847 3508 C:\Windows\System32\srvsvc.dll - ok
11:51:34.0847 3508 [ 0143DB80DACFB7C2B5B7009ED9063353 ] C:\Windows\System32\wbem\wmiutils.dll
11:51:34.0847 3508 C:\Windows\System32\wbem\wmiutils.dll - ok
11:51:34.0862 3508 [ CFEFA40DDE34659BE5211966EAD86437 ] C:\Windows\System32\netmsg.dll
11:51:34.0862 3508 C:\Windows\System32\netmsg.dll - ok
11:51:34.0862 3508 [ 0AB34456654C283DAA13B8D2BA21439B ] C:\Windows\System32\wbem\repdrvfs.dll
11:51:34.0862 3508 C:\Windows\System32\wbem\repdrvfs.dll - ok
11:51:34.0862 3508 [ 836892094209E5D9CF403B4CF2829B5C ] C:\Windows\System32\sscore.dll
11:51:34.0862 3508 C:\Windows\System32\sscore.dll - ok
11:51:34.0878 3508 [ 4EAE37133B78A26A84EA1649D9B21A1E ] C:\Windows\System32\clusapi.dll
11:51:34.0878 3508 C:\Windows\System32\clusapi.dll - ok
11:51:34.0878 3508 [ 344FCC9850C3A8A3B4D3C65151AF8E4C ] C:\Windows\System32\resutils.dll
11:51:34.0878 3508 C:\Windows\System32\resutils.dll - ok
11:51:34.0878 3508 [ 3B367397320C26DBA890B260F80D1B1B ] C:\Windows\System32\hnetcfg.dll
11:51:34.0878 3508 C:\Windows\System32\hnetcfg.dll - ok
11:51:34.0894 3508 [ 6E03C9E362389A768E6C240933352D11 ] C:\Windows\System32\nci.dll
11:51:34.0894 3508 C:\Windows\System32\nci.dll - ok
11:51:34.0894 3508 [ C8A2FA2EE9241B8D66F9D7DE9AE34AEE ] C:\Program Files\Bonjour\mdnsNSP.dll
11:51:34.0894 3508 C:\Program Files\Bonjour\mdnsNSP.dll - ok
11:51:34.0894 3508 [ 88351B29B622B30962D2FEB6CA8D860B ] C:\Windows\System32\rasadhlp.dll
11:51:34.0894 3508 C:\Windows\System32\rasadhlp.dll - ok
11:51:34.0909 3508 [ 82BC97E5793DEF69691AAD5AB953A200 ] C:\Windows\System32\wbem\WmiPrvSD.dll
11:51:34.0909 3508 C:\Windows\System32\wbem\WmiPrvSD.dll - ok
11:51:34.0909 3508 [ D41FEBD098234F02485A4EA98D4730A4 ] C:\Windows\System32\ncobjapi.dll
11:51:34.0909 3508 C:\Windows\System32\ncobjapi.dll - ok
11:51:34.0909 3508 [ 6F40D6FB05E0C1E5402812B426971AF0 ] C:\Windows\System32\wbem\wbemess.dll
11:51:34.0909 3508 C:\Windows\System32\wbem\wbemess.dll - ok
11:51:34.0925 3508 [ 79AFFC7FEEA9CD2FEFEA5EF3B631A02C ] C:\Windows\System32\ndiscapCfg.dll
11:51:34.0925 3508 C:\Windows\System32\ndiscapCfg.dll - ok
11:51:34.0925 3508 [ 3D6AF45673C4B31CDECD7F80AF09D443 ] C:\Windows\System32\rascfg.dll
11:51:34.0925 3508 C:\Windows\System32\rascfg.dll - ok
11:51:34.0940 3508 [ 114429A77D935053E13A9BF98A8B8CA1 ] C:\Windows\System32\mprapi.dll
11:51:34.0940 3508 C:\Windows\System32\mprapi.dll - ok
11:51:34.0940 3508 [ 1CF21800E337F4039AAD4C94B4280EE4 ] C:\Windows\System32\mprmsg.dll
11:51:34.0940 3508 C:\Windows\System32\mprmsg.dll - ok
11:51:34.0940 3508 [ 1FCD619D8542A248D4E1FF72FFB0E56B ] C:\Windows\System32\tcpipcfg.dll
11:51:34.0940 3508 C:\Windows\System32\tcpipcfg.dll - ok
11:51:34.0956 3508 [ FE0CA9311C897F4FFFA34BDF73A30495 ] C:\PROGRA~1\QUICKH~1\QUICKH~1\macrinfo.dll
11:51:34.0956 3508 C:\PROGRA~1\QUICKH~1\QUICKH~1\macrinfo.dll - ok
11:51:34.0956 3508 [ D2A5AD55E1BC16DE3B6A5D3FB913B2D3 ] C:\PROGRA~1\QUICKH~1\QUICKH~1\macscan.dll
11:51:34.0956 3508 C:\PROGRA~1\QUICKH~1\QUICKH~1\macscan.dll - ok
11:51:34.0956 3508 [ 8489D894F28C0AFDF92BF639857D6941 ] C:\PROGRA~1\QUICKH~1\QUICKH~1\miscscan.dll
11:51:34.0956 3508 C:\PROGRA~1\QUICKH~1\QUICKH~1\miscscan.dll - ok
11:51:34.0972 3508 [ 38535BBF631BDD297C469486345E74B2 ] C:\PROGRA~1\QUICKH~1\QUICKH~1\heurscan.dll
11:51:34.0972 3508 C:\PROGRA~1\QUICKH~1\QUICKH~1\heurscan.dll - ok
11:51:34.0972 3508 [ E7BF35AB29D2BF66EEC2F6B4E8B873A9 ] C:\PROGRA~1\QUICKH~1\QUICKH~1\pckrscan.dll
11:51:34.0972 3508 C:\PROGRA~1\QUICKH~1\QUICKH~1\pckrscan.dll - ok
11:51:34.0972 3508 [ 41DB0792547739E4F74F4F6A15C68CC7 ] C:\PROGRA~1\QUICKH~1\QUICKH~1\ARJSDK.DLL
11:51:34.0972 3508 C:\PROGRA~1\QUICKH~1\QUICKH~1\ARJSDK.DLL - ok
11:51:34.0987 3508 [ 60521063AE2C0659930A051E894BCAE5 ] C:\PROGRA~1\QUICKH~1\QUICKH~1\lzesdk.dll
11:51:34.0987 3508 C:\PROGRA~1\QUICKH~1\QUICKH~1\lzesdk.dll - ok
11:51:34.0987 3508 [ F5375D664B95E299DB288ACD28713326 ] C:\PROGRA~1\QUICKH~1\QUICKH~1\UNARJ32.DLL
11:51:34.0987 3508 C:\PROGRA~1\QUICKH~1\QUICKH~1\UNARJ32.DLL - ok
11:51:34.0987 3508 [ FF5745EAE0872DA7DE68569DE133BC06 ] C:\PROGRA~1\QUICKH~1\QUICKH~1\rarsdk.dll
11:51:34.0987 3508 C:\PROGRA~1\QUICKH~1\QUICKH~1\rarsdk.dll - ok

TDSSKiller log file Part 3:-

11:51:35.0003 3508 [ 0CEE245011164925B41ABFAFB245A4ED ] C:\Program Files\Quick Heal\Quick Heal Total Security\QUARFUN.DLL
11:51:35.0003 3508 C:\Program Files\Quick Heal\Quick Heal Total Security\QUARFUN.DLL - ok
11:51:35.0003 3508 [ BA6578ED2007BC3FD0805CD468FFFDF3 ] C:\Program Files\Quick Heal\Quick Heal Total Security\LOGFUN.DLL
11:51:35.0003 3508 C:\Program Files\Quick Heal\Quick Heal Total Security\LOGFUN.DLL - ok
11:51:35.0018 3508 [ AC74EFC8005D27A83334619784F01003 ] C:\Program Files\Quick Heal\Quick Heal Total Security\SCANEXL.DLL
11:51:35.0018 3508 C:\Program Files\Quick Heal\Quick Heal Total Security\SCANEXL.DLL - ok
11:51:35.0018 3508 [ 47CC468922624F7DD1EE66331FD3D2F9 ] C:\Program Files\Quick Heal\Quick Heal Total Security\CTRLLIB.DLL
11:51:35.0018 3508 C:\Program Files\Quick Heal\Quick Heal Total Security\CTRLLIB.DLL - ok
11:51:35.0018 3508 [ CE3F5FB670CC7DC8AB606CA7CC1C9BB5 ] C:\Program Files\Quick Heal\Quick Heal Total Security\MODSTAT.DLL
11:51:35.0018 3508 C:\Program Files\Quick Heal\Quick Heal Total Security\MODSTAT.DLL - ok
11:51:35.0034 3508 [ 52BBD0E905E886413A9E6FBDDE8612D8 ] C:\Program Files\Quick Heal\Quick Heal Total Security\MFC90U.DLL
11:51:35.0034 3508 C:\Program Files\Quick Heal\Quick Heal Total Security\MFC90U.DLL - ok
11:51:35.0034 3508 [ D81B9487C0F18A46316B50BF2E2A75F0 ] C:\Program Files\Quick Heal\Quick Heal Total Security\webcat.dll
11:51:35.0034 3508 C:\Program Files\Quick Heal\Quick Heal Total Security\webcat.dll - ok
11:51:35.0034 3508 [ 04EF3AB1061D3EF50AAD51FBABAF04CF ] C:\Program Files\Quick Heal\Quick Heal Total Security\asapsdk.dll
11:51:35.0034 3508 C:\Program Files\Quick Heal\Quick Heal Total Security\asapsdk.dll - ok
11:51:35.0050 3508 [ BC052EFAD10ACA1AD69545B629F50D99 ] C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7600.16661_none_a44e1fc257f685f6\comctl32.dll
11:51:35.0050 3508 C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7600.16661_none_a44e1fc257f685f6\comctl32.dll - ok
11:51:35.0050 3508 [ CF3D0B1B2D3902552046D1BA797166B0 ] C:\Program Files\Quick Heal\Quick Heal Total Security\DPOPTS.DLL
11:51:35.0050 3508 C:\Program Files\Quick Heal\Quick Heal Total Security\DPOPTS.DLL - ok
11:51:35.0050 3508 [ 2E57DDF2880A7E52E76F41C7E96D327B ] C:\Windows\System32\wpdbusenum.dll
11:51:35.0050 3508 C:\Windows\System32\wpdbusenum.dll - ok
11:51:35.0065 3508 [ BF1FC3F79B863C914687A737C2F3D681 ] C:\Windows\System32\wdi.dll
11:51:35.0065 3508 C:\Windows\System32\wdi.dll - ok
11:51:35.0065 3508 [ F7073C962C4FB7C415565DDE109DE49F ] C:\Windows\System32\npmproxy.dll
11:51:35.0065 3508 C:\Windows\System32\npmproxy.dll - ok
11:51:35.0081 3508 [ E1B22739C933BE33F53DB58C5393ADD3 ] C:\Windows\System32\Apphlpdm.dll
11:51:35.0081 3508 C:\Windows\System32\Apphlpdm.dll - ok
11:51:35.0081 3508 [ 9689A9C7F7C2A1A423CDA2C3B43FFF65 ] C:\Windows\System32\wer.dll
11:51:35.0081 3508 C:\Windows\System32\wer.dll - ok
11:51:35.0081 3508 [ BF4AC709BE5BF64F331F5D67773A0C82 ] C:\Windows\System32\perftrack.dll
11:51:35.0081 3508 C:\Windows\System32\perftrack.dll - ok
11:51:35.0096 3508 [ D891293880F2F00AB7BA959910300EF7 ] C:\Windows\System32\diagperf.dll
11:51:35.0096 3508 C:\Windows\System32\diagperf.dll - ok
11:51:35.0096 3508 [ 5DA7D8934F7AB0884A6A8FC02E8B2AA7 ] C:\Windows\System32\PortableDeviceApi.dll
11:51:35.0096 3508 C:\Windows\System32\PortableDeviceApi.dll - ok
11:51:35.0096 3508 [ 9719E3D834F5C8C43F56A93DFA497023 ] C:\Windows\System32\pnpts.dll
11:51:35.0096 3508 C:\Windows\System32\pnpts.dll - ok
11:51:35.0112 3508 [ AFA79C343F9D1555F7E5D5FA70BB2A14 ] C:\Windows\System32\PortableDeviceConnectApi.dll
11:51:35.0112 3508 C:\Windows\System32\PortableDeviceConnectApi.dll - ok
11:51:35.0112 3508 [ 65AF044B5570D355124DCD1E099AA98F ] C:\Windows\System32\wdiasqmmodule.dll
11:51:35.0112 3508 C:\Windows\System32\wdiasqmmodule.dll - ok
11:51:35.0112 3508 [ 58A0CDABEA255616827B1C22C9994466 ] C:\Windows\System32\NapiNSP.dll
11:51:35.0112 3508 C:\Windows\System32\NapiNSP.dll - ok
11:51:35.0128 3508 [ 2E2072EB48238FCA8FBB7A9F5FABAC45 ] C:\Windows\System32\winrnr.dll
11:51:35.0128 3508 C:\Windows\System32\winrnr.dll - ok
11:51:35.0128 3508 [ 613C8CE10A5FDE582BA5FA64C4D56AAA ] C:\Windows\System32\pnrpnsp.dll
11:51:35.0128 3508 C:\Windows\System32\pnrpnsp.dll - ok
11:51:35.0128 3508 [ E3E2E9A96E6BA95D0CF0F026C7B18654 ] C:\Windows\System32\wshbth.dll
11:51:35.0128 3508 C:\Windows\System32\wshbth.dll - ok
11:51:35.0143 3508 [ 4585224B8FC6EBD0DE94F388ECB7FB91 ] C:\Program Files\Quick Heal\Quick Heal Total Security\WSRPT.DLL
11:51:35.0143 3508 C:\Program Files\Quick Heal\Quick Heal Total Security\WSRPT.DLL - ok
11:51:35.0143 3508 [ CDB511309C9F31DED40C8942A74B1913 ] C:\Program Files\Quick Heal\Quick Heal Total Security\SCANRES.DLL
11:51:35.0143 3508 C:\Program Files\Quick Heal\Quick Heal Total Security\SCANRES.DLL - ok
11:51:35.0159 3508 [ 9A4D13244585A5F83F3074C72DF09132 ] C:\Program Files\Quick Heal\Quick Heal Total Security\WSIC.DLL
11:51:35.0159 3508 C:\Program Files\Quick Heal\Quick Heal Total Security\WSIC.DLL - ok
11:51:35.0159 3508 [ E63C516156F006DB460ADE76E0264B39 ] C:\Program Files\Quick Heal\Quick Heal Total Security\WSIU.DLL
11:51:35.0159 3508 C:\Program Files\Quick Heal\Quick Heal Total Security\WSIU.DLL - ok
11:51:35.0159 3508 [ 28DA8FF427EBA6AD7DAC798CAE10E4F8 ] C:\Program Files\Quick Heal\Quick Heal Total Security\wspoly.dll
11:51:35.0159 3508 C:\Program Files\Quick Heal\Quick Heal Total Security\wspoly.dll - ok
11:51:35.0174 3508 [ 3EEFB971D61EF9638FD21F14C703CA11 ] C:\Windows\System32\taskhost.exe
11:51:35.0174 3508 C:\Windows\System32\taskhost.exe - ok
11:51:35.0174 3508 [ E629F1A051C82795DDFFD3E8D4855811 ] C:\Windows\System32\dimsjob.dll
11:51:35.0174 3508 C:\Windows\System32\dimsjob.dll - ok
11:51:35.0174 3508 [ 35CB97CBC3EDC463418ED4997AAB29B6 ] C:\Windows\System32\pautoenr.dll
11:51:35.0174 3508 C:\Windows\System32\pautoenr.dll - ok
11:51:35.0190 3508 [ AAA6D0DF7356BBA706BD67385A103AAB ] C:\Windows\System32\certcli.dll
11:51:35.0190 3508 C:\Windows\System32\certcli.dll - ok
11:51:35.0190 3508 [ 522BD073F617060AFCB9CC5707778DB1 ] C:\Windows\System32\CertEnroll.dll
11:51:35.0190 3508 C:\Windows\System32\CertEnroll.dll - ok
11:51:35.0190 3508 [ 3989BB6998C32753FDD5493879C1835A ] C:\Windows\SysWOW64\ncrypt.dll
11:51:35.0190 3508 C:\Windows\SysWOW64\ncrypt.dll - ok
11:51:35.0206 3508 [ CE71B9119A258EDD0A05B37D7B0F92E3 ] C:\Windows\SysWOW64\bcrypt.dll
11:51:35.0206 3508 C:\Windows\SysWOW64\bcrypt.dll - ok
11:51:35.0206 3508 [ E8449FE262D7406BCB2AC2A45C53EC5F ] C:\Windows\SysWOW64\bcryptprimitives.dll
11:51:35.0206 3508 C:\Windows\SysWOW64\bcryptprimitives.dll - ok
11:51:35.0206 3508 [ 1097F3035BAF46CED8B332B3564C5108 ] C:\Windows\SysWOW64\gpapi.dll
11:51:35.0206 3508 C:\Windows\SysWOW64\gpapi.dll - ok
11:51:35.0221 3508 [ 506C4E1324ABE11CEC172569F5DDAB06 ] C:\Windows\SysWOW64\cryptnet.dll
11:51:35.0221 3508 C:\Windows\SysWOW64\cryptnet.dll - ok
11:51:35.0221 3508 [ BFA70A99AD1434263F2DFBBA103BDEF8 ] C:\Windows\SysWOW64\Wldap32.dll
11:51:35.0221 3508 C:\Windows\SysWOW64\Wldap32.dll - ok
11:51:35.0221 3508 [ DAAE8A9B8C0ACC7F858454132553C30D ] C:\Windows\SysWOW64\ws2_32.dll
11:51:35.0221 3508 C:\Windows\SysWOW64\ws2_32.dll - ok
11:51:35.0237 3508 [ 6377051C63D5552A311935C67E9FDFDC ] C:\Windows\SysWOW64\nsi.dll
11:51:35.0237 3508 C:\Windows\SysWOW64\nsi.dll - ok
11:51:35.0237 3508 [ BF591B5C2CC38314518467E883AE37C5 ] C:\Windows\SysWOW64\credssp.dll
11:51:35.0237 3508 C:\Windows\SysWOW64\credssp.dll - ok
11:51:35.0252 3508 [ 11A41F17527ED75D6B758FDD7F4FD00D ] C:\Windows\SysWOW64\mswsock.dll
11:51:35.0252 3508 C:\Windows\SysWOW64\mswsock.dll - ok
11:51:35.0252 3508 [ 73E8667A19FEEDD856DF2695E9E511D4 ] C:\Windows\SysWOW64\wship6.dll
11:51:35.0252 3508 C:\Windows\SysWOW64\wship6.dll - ok
11:51:35.0252 3508 [ EE5C8E27C37B79CB54A2FCEEED2DC262 ] C:\Windows\SysWOW64\WSHTCPIP.DLL
11:51:35.0252 3508 C:\Windows\SysWOW64\WSHTCPIP.DLL - ok
11:51:35.0268 3508 [ 6095266CAAF5E75F394CFD4844CC4C25 ] C:\Windows\SysWOW64\IPHLPAPI.DLL
11:51:35.0268 3508 C:\Windows\SysWOW64\IPHLPAPI.DLL - ok
11:51:35.0268 3508 [ CFF35B879D1618D42C86644C717BA947 ] C:\Windows\SysWOW64\winnsi.dll
11:51:35.0268 3508 C:\Windows\SysWOW64\winnsi.dll - ok
11:51:35.0268 3508 [ 9A85ABCE0FDD1AF8E79E731EB0B679F3 ] C:\Windows\SysWOW64\dhcpcsvc.dll
11:51:35.0268 3508 C:\Windows\SysWOW64\dhcpcsvc.dll - ok
11:51:35.0284 3508 [ 29CA5974FAB0E8AE4AA7814FE05CF832 ] C:\Windows\SysWOW64\dhcpcsvc6.dll
11:51:35.0284 3508 C:\Windows\SysWOW64\dhcpcsvc6.dll - ok
11:51:35.0284 3508 [ 62390F4ACE9E2B63E3CA26B7F7497897 ] C:\Windows\SysWOW64\dnsapi.dll
11:51:35.0284 3508 C:\Windows\SysWOW64\dnsapi.dll - ok
11:51:35.0299 3508 [ C69DBFA61FE3DEA653A9B83C3A2B052B ] C:\Program Files (x86)\Bonjour\mdnsNSP.dll
11:51:35.0299 3508 C:\Program Files (x86)\Bonjour\mdnsNSP.dll - ok
11:51:35.0299 3508 [ ED6EE83D61EBC683C2CD8E899EA6FEBE ] C:\Windows\SysWOW64\rasadhlp.dll
11:51:35.0299 3508 C:\Windows\SysWOW64\rasadhlp.dll - ok
11:51:35.0299 3508 [ 158117F3CF278F01C6F24E89E2141E81 ] C:\Windows\SysWOW64\FWPUCLNT.DLL
11:51:35.0299 3508 C:\Windows\SysWOW64\FWPUCLNT.DLL - ok
11:51:35.0315 3508 [ AC0C9CEA1218DAB1994AF8B28E680BD9 ] C:\Windows\System32\wlaninst.dll
11:51:35.0315 3508 C:\Windows\System32\wlaninst.dll - ok
11:51:35.0315 3508 [ 5A406C9C8E0880D3EABADC5DFD1ACDAE ] C:\Windows\System32\wwaninst.dll
11:51:35.0315 3508 C:\Windows\System32\wwaninst.dll - ok
11:51:35.0315 3508 [ A8EDB86FC2A4D6D1285E4C70384AC35A ] C:\Windows\System32\dllhost.exe
11:51:35.0315 3508 C:\Windows\System32\dllhost.exe - ok
11:51:35.0330 3508 [ A0A2C1D812C231C9BFE119FDC68E341B ] C:\Windows\System32\IDStore.dll
11:51:35.0330 3508 C:\Windows\System32\IDStore.dll - ok
11:51:35.0330 3508 [ 23566F9723771108D2E6CD768AC27407 ] C:\Windows\System32\AtBroker.exe
11:51:35.0330 3508 C:\Windows\System32\AtBroker.exe - ok
11:51:35.0330 3508 [ 60CAE1FA4888ED41B41AEE91C774E4A2 ] C:\Windows\System32\taskeng.exe
11:51:35.0330 3508 C:\Windows\System32\taskeng.exe - ok
11:51:35.0346 3508 [ 94EEAC26F57811BD1AEFC164412F7FCE ] C:\Windows\System32\PlaySndSrv.dll
11:51:35.0346 3508 C:\Windows\System32\PlaySndSrv.dll - ok
11:51:35.0346 3508 [ 6F8F1376A13114CC10C0E69274F5A4DE ] C:\Windows\System32\userinit.exe
11:51:35.0346 3508 C:\Windows\System32\userinit.exe - ok
11:51:35.0346 3508 [ 0ADC83218B66A6DB380C330836F3E36D ] C:\Windows\System32\drivers\fastfat.sys
11:51:35.0346 3508 C:\Windows\System32\drivers\fastfat.sys - ok
11:51:35.0362 3508 [ 8CFACC72081C21519676BF4AAA1A88A9 ] C:\Windows\System32\localspl.dll
11:51:35.0362 3508 C:\Windows\System32\localspl.dll - ok
11:51:35.0362 3508 [ 7F37322A489E285CFBCC02F6A53B3F1B ] C:\Windows\System32\HotStartUserAgent.dll
11:51:35.0362 3508 C:\Windows\System32\HotStartUserAgent.dll - ok
11:51:35.0362 3508 [ F162D5F5E845B9DC352DD1BAD8CEF1BC ] C:\Windows\System32\dwm.exe
11:51:35.0362 3508 C:\Windows\System32\dwm.exe - ok
11:51:35.0377 3508 [ 1F1CA9E99DD5BF918BE0BF30B5A42FDA ] C:\Windows\System32\MsCtfMonitor.dll
11:51:35.0377 3508 C:\Windows\System32\MsCtfMonitor.dll - ok
11:51:35.0377 3508 [ 33CC7FFA41F6157592E1578BD253F30E ] C:\Windows\System32\PrintIsolationProxy.dll
11:51:35.0377 3508 C:\Windows\System32\PrintIsolationProxy.dll - ok
11:51:35.0377 3508 [ 3285481F5C12305CA104A6C493CA5A0B ] C:\Windows\System32\spoolss.dll
11:51:35.0377 3508 C:\Windows\System32\spoolss.dll - ok
11:51:35.0393 3508 [ 20BEB8C403C6E28C9B13644787F5177D ] C:\Windows\System32\FXSMON.dll
11:51:35.0393 3508 C:\Windows\System32\FXSMON.dll - ok
11:51:35.0393 3508 [ F09A9A1AD21FE618C4C8B0A0D830C886 ] C:\Windows\System32\msutb.dll
11:51:35.0393 3508 C:\Windows\System32\msutb.dll - ok
11:51:35.0393 3508 [ 32A3C8600AF124CBAAD845F13CFAE3CB ] C:\Windows\System32\tcpmon.dll
11:51:35.0393 3508 C:\Windows\System32\tcpmon.dll - ok
11:51:35.0408 3508 [ EF184066A851E7838D5BF8C8FAE66CC4 ] C:\Windows\System32\dwmredir.dll
11:51:35.0408 3508 C:\Windows\System32\dwmredir.dll - ok
11:51:35.0408 3508 [ 9D8AB964CE511AF81207DF0E1205184C ] C:\Windows\System32\dwmcore.dll
11:51:35.0408 3508 C:\Windows\System32\dwmcore.dll - ok
11:51:35.0408 3508 [ 93518C6EDE0B61BCBD02BDB02BD05FEE ] C:\Windows\System32\snmpapi.dll
11:51:35.0408 3508 C:\Windows\System32\snmpapi.dll - ok
11:51:35.0424 3508 [ AD7C70077D4C81558E909D34EF6B995E ] C:\Windows\System32\wsnmp32.dll
11:51:35.0424 3508 C:\Windows\System32\wsnmp32.dll - ok
11:51:35.0424 3508 [ DF72A9936D0C3F517083119648814B09 ] C:\Windows\System32\usbmon.dll
11:51:35.0424 3508 C:\Windows\System32\usbmon.dll - ok
11:51:35.0440 3508 [ A1D7E3ADCDB07DDB6F423862DCB1A52B ] C:\Windows\System32\WSDMon.dll
11:51:35.0440 3508 C:\Windows\System32\WSDMon.dll - ok
11:51:35.0440 3508 [ 58A0C212ED2ABE462B3A9626F5B96261 ] C:\Windows\System32\d3d10_1.dll
11:51:35.0440 3508 C:\Windows\System32\d3d10_1.dll - ok
11:51:35.0440 3508 [ AFBBC34687FA48A4928B99AF097C1EC0 ] C:\Windows\System32\d3d10_1core.dll
11:51:35.0440 3508 C:\Windows\System32\d3d10_1core.dll - ok
11:51:35.0455 3508 [ 05FE4A30177E858B51F5E1E970FE9925 ] C:\Windows\System32\WSDApi.dll
11:51:35.0455 3508 C:\Windows\System32\WSDApi.dll - ok
11:51:35.0455 3508 [ 0862495E0C825893DB75EF44FAEA8E93 ] C:\Windows\explorer.exe
11:51:35.0455 3508 C:\Windows\explorer.exe - ok
11:51:35.0455 3508 [ D95DB5C915C001F78709C17285109BDC ] C:\Windows\System32\dxgi.dll
11:51:35.0455 3508 C:\Windows\System32\dxgi.dll - ok
11:51:35.0471 3508 [ A3EA403D2B74C5F71B7E8B3DAE92DE1E ] C:\Windows\System32\webservices.dll
11:51:35.0471 3508 C:\Windows\System32\webservices.dll - ok
11:51:35.0471 3508 [ 46863C4CC5B68EB09EA2D5EEF0F1193A ] C:\Windows\System32\radardt.dll
11:51:35.0471 3508 C:\Windows\System32\radardt.dll - ok
11:51:35.0471 3508 [ D8F0E941B1E35DEEE3EDF6DF45517607 ] C:\Windows\System32\igd10umd64.dll
11:51:35.0471 3508 C:\Windows\System32\igd10umd64.dll - ok
11:51:35.0486 3508 [ B5055B51BAA0FD0A736A88653DA3C1C0 ] C:\Windows\System32\fundisc.dll
11:51:35.0486 3508 C:\Windows\System32\fundisc.dll - ok
11:51:35.0486 3508 [ 49E5753D923F1AC63B22D3DCB0B47E00 ] C:\Windows\System32\uDWM.dll
11:51:35.0486 3508 C:\Windows\System32\uDWM.dll - ok
11:51:35.0486 3508 [ 4581716B4BF76ACFD8E167EB0B26D82A ] C:\Windows\System32\fdPnp.dll
11:51:35.0486 3508 C:\Windows\System32\fdPnp.dll - ok
11:51:35.0502 3508 [ 7EDB2BF840ECB14D6E6B11C035708719 ] C:\Windows\System32\spool\prtprocs\x64\winprint.dll
11:51:35.0502 3508 C:\Windows\System32\spool\prtprocs\x64\winprint.dll - ok
11:51:35.0502 3508 [ 2332BACC2AB09119A14637DE0CB30147 ] C:\Windows\System32\win32spl.dll
11:51:35.0502 3508 C:\Windows\System32\win32spl.dll - ok
11:51:35.0502 3508 [ 1C27E145EC99F20BC1B13FD98165A83F ] C:\Windows\System32\ExplorerFrame.dll
11:51:35.0502 3508 C:\Windows\System32\ExplorerFrame.dll - ok
11:51:35.0518 3508 [ 805A52C5AE26C28E88FDD9BCCFE6F312 ] C:\Windows\System32\TSChannel.dll
11:51:35.0518 3508 C:\Windows\System32\TSChannel.dll - ok
11:51:35.0518 3508 [ F02A533F517EB38333CB12A9E8963773 ] C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
11:51:35.0518 3508 C:\Program Files (x86)\Google\Update\GoogleUpdate.exe - ok
11:51:35.0533 3508 [ 17EAB1AEA937EFFCD107EFBA94FEDB34 ] C:\Windows\System32\inetpp.dll
11:51:35.0533 3508 C:\Windows\System32\inetpp.dll - ok
11:51:35.0533 3508 [ BFEBE1E4B301F44CEA7C1B4021BD0264 ] C:\Windows\System32\cscapi.dll
11:51:35.0533 3508 C:\Windows\System32\cscapi.dll - ok
11:51:35.0533 3508 [ 9FF47CD8A3787C8FD3CDFE40441C722E ] C:\Program Files (x86)\Google\Update\1.3.21.123\goopdate.dll
11:51:35.0533 3508 C:\Program Files (x86)\Google\Update\1.3.21.123\goopdate.dll - ok
11:51:35.0549 3508 [ 5DE691884C240227B733CC18BBFCA3D8 ] C:\Windows\SysWOW64\netapi32.dll
11:51:35.0549 3508 C:\Windows\SysWOW64\netapi32.dll - ok
11:51:35.0549 3508 [ C6BB27D9A8AC13D4A44486F528B5C884 ] C:\Windows\SysWOW64\netutils.dll
11:51:35.0549 3508 C:\Windows\SysWOW64\netutils.dll - ok
11:51:35.0549 3508 [ 89D840773C9C4358A5031DCC860449EC ] C:\Windows\SysWOW64\srvcli.dll
11:51:35.0549 3508 C:\Windows\SysWOW64\srvcli.dll - ok
11:51:35.0564 3508 [ 7AD12703039056D2A0815F85960E1FA1 ] C:\Windows\SysWOW64\wkscli.dll
11:51:35.0564 3508 C:\Windows\SysWOW64\wkscli.dll - ok
11:51:35.0564 3508 [ 4B8DD8541C0E26602005DD0137333615 ] C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_420fe3fa2b8113bd\comctl32.dll
11:51:35.0564 3508 C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_420fe3fa2b8113bd\comctl32.dll - ok
11:51:35.0564 3508 [ 024352FEEC9042260BB4CFB4D79A206B ] C:\Windows\System32\EhStorShell.dll
11:51:35.0564 3508 C:\Windows\System32\EhStorShell.dll - ok
11:51:35.0580 3508 [ 5F917AEEEA363B8A5DC8624795CB1D60 ] C:\Windows\System32\ntshrui.dll
11:51:35.0580 3508 C:\Windows\System32\ntshrui.dll - ok
11:51:35.0580 3508 [ 1D63F4366288B8A7595397E27010FD44 ] C:\Windows\System32\IconCodecService.dll
11:51:35.0580 3508 C:\Windows\System32\IconCodecService.dll - ok
11:51:35.0580 3508 [ 97CCB4D737B426B200E5EF90C877DF32 ] C:\Windows\SysWOW64\imagehlp.dll
11:51:35.0580 3508 C:\Windows\SysWOW64\imagehlp.dll - ok
11:51:35.0596 3508 [ F1317678AC2FBA9F640279290B2E2988 ] C:\Windows\SysWOW64\msi.dll
11:51:35.0596 3508 C:\Windows\SysWOW64\msi.dll - ok
11:51:35.0596 3508 [ D065BE66822847B7F127D1F90158376E ] C:\Windows\System32\appinfo.dll
11:51:35.0596 3508 C:\Windows\System32\appinfo.dll - ok
11:51:35.0596 3508 [ 5553611E2F9EA6F613079177F1233068 ] C:\Windows\SysWOW64\wininet.dll
11:51:35.0596 3508 C:\Windows\SysWOW64\wininet.dll - ok
11:51:35.0611 3508 [ EB8A00E8E9931A7EC04F920B09D880D8 ] C:\Windows\SysWOW64\iertutil.dll
11:51:35.0611 3508 C:\Windows\SysWOW64\iertutil.dll - ok
11:51:35.0611 3508 [ 9FAC0F6D5F3D922DB294E30CD3F62369 ] C:\Windows\SysWOW64\urlmon.dll
11:51:35.0611 3508 C:\Windows\SysWOW64\urlmon.dll - ok
11:51:35.0611 3508 [ ADD9D33D685DFADDFAD5AFB42CF31A70 ] C:\Windows\SysWOW64\cscapi.dll
11:51:35.0611 3508 C:\Windows\SysWOW64\cscapi.dll - ok
11:51:35.0627 3508 [ 79C7CFAEA6879A8C1A1E8B5FFE8983AA ] C:\Windows\SysWOW64\dbghelp.dll
11:51:35.0627 3508 C:\Windows\SysWOW64\dbghelp.dll - ok
11:51:35.0627 3508 [ 3FD15B4611D9BDA3F8013548C0ECAECA ] C:\Windows\SysWOW64\ntmarta.dll
11:51:35.0627 3508 C:\Windows\SysWOW64\ntmarta.dll - ok
11:51:35.0642 3508 [ AE5A69F44C1F97EDC83237FC0B29B6FB ] C:\Program Files (x86)\Google\Update\1.3.21.123\GoogleCrashHandler.exe
11:51:35.0642 3508 C:\Program Files (x86)\Google\Update\1.3.21.123\GoogleCrashHandler.exe - ok
11:51:35.0642 3508 [ C02E3CE20E7776C922B5C8938350B5F1 ] C:\Windows\SysWOW64\apphelp.dll
11:51:35.0642 3508 C:\Windows\SysWOW64\apphelp.dll - ok
11:51:35.0642 3508 [ 41938F2C1642459CBBA691B5DBD6395A ] C:\Program Files (x86)\Google\Update\1.3.21.123\GoogleCrashHandler64.exe
11:51:35.0642 3508 C:\Program Files (x86)\Google\Update\1.3.21.123\GoogleCrashHandler64.exe - ok
11:51:35.0658 3508 [ 0089563F324FA784DA849D6A636141E0 ] C:\Windows\SysWOW64\mstask.dll
11:51:35.0658 3508 C:\Windows\SysWOW64\mstask.dll - ok
11:51:35.0658 3508 [ A74316B5C28D94AF0825267D8715549F ] C:\Windows\System32\dbghelp.dll
11:51:35.0658 3508 C:\Windows\System32\dbghelp.dll - ok
11:51:35.0658 3508 [ 6AB6D4DF10EC784CF4A66CBFAF417A11 ] C:\Windows\System32\runonce.exe
11:51:35.0658 3508 C:\Windows\System32\runonce.exe - ok
11:51:35.0674 3508 [ 169F916EFEAA44487E65305B7D2D754B ] C:\Windows\SysWOW64\runonce.exe
11:51:35.0674 3508 C:\Windows\SysWOW64\runonce.exe - ok
11:51:35.0674 3508 [ 43964FA89CCF97BA6BE34D69455AC65F ] C:\Windows\SysWOW64\uxtheme.dll
11:51:35.0674 3508 C:\Windows\SysWOW64\uxtheme.dll - ok
11:51:35.0674 3508 [ 26EAEE08CAF82AA7F03C5020F51DA541 ] C:\Windows\SysWOW64\propsys.dll
11:51:35.0674 3508 C:\Windows\SysWOW64\propsys.dll - ok
11:51:35.0689 3508 [ 30DB64D316F502558DB2380F7343C9FD ] C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll
11:51:35.0689 3508 C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll - ok
11:51:35.0689 3508 [ 207204AF80505AF51271FE164B56F662 ] C:\Program Files (x86)\Microsoft Office\Office12\GrooveUtil.dll
11:51:35.0689 3508 C:\Program Files (x86)\Microsoft Office\Office12\GrooveUtil.dll - ok
11:51:35.0705 3508 [ 30EFEBDC960A482E3E188B9960B286E2 ] C:\Program Files (x86)\Microsoft Office\Office12\GrooveNew.dll
11:51:35.0705 3508 C:\Program Files (x86)\Microsoft Office\Office12\GrooveNew.dll - ok
11:51:35.0705 3508 [ D5E459BED3DB9CF7FC6CC1455F177D2D ] C:\Windows\winsxs\x86_microsoft.vc80.atl_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d1cb102c435421de\ATL80.dll
11:51:35.0705 3508 C:\Windows\winsxs\x86_microsoft.vc80.atl_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d1cb102c435421de\ATL80.dll - ok
11:51:35.0705 3508 [ 18AB2E5A40064ED5F7791AC5946A90F3 ] C:\Windows\SysWOW64\msimg32.dll
11:51:35.0705 3508 C:\Windows\SysWOW64\msimg32.dll - ok
11:51:35.0720 3508 [ D8C2B95BC2353E1F18850D6B8F5DBA13 ] C:\Program Files (x86)\Microsoft Office\Office12\GrooveSystemServices.dll
11:51:35.0720 3508 C:\Program Files (x86)\Microsoft Office\Office12\GrooveSystemServices.dll - ok
11:51:35.0720 3508 [ 533AECD1B5356870AE2D905B4D3B42B7 ] C:\Program Files (x86)\Microsoft Office\Office12\GrooveMisc.dll
11:51:35.0720 3508 C:\Program Files (x86)\Microsoft Office\Office12\GrooveMisc.dll - ok
11:51:35.0720 3508 [ 00D1F89836927C0F2E37321E6B441FCE ] C:\Windows\SysWOW64\msxml3.dll
11:51:35.0720 3508 C:\Windows\SysWOW64\msxml3.dll - ok
11:51:35.0736 3508 [ 6CC10D9FD128069DBFE476222F097616 ] C:\Windows\SysWOW64\secur32.dll
11:51:35.0736 3508 C:\Windows\SysWOW64\secur32.dll - ok
11:51:35.0736 3508 [ 76AD90A468B3F990305F22D7FC07A6B5 ] C:\Program Files (x86)\Dell DataSafe Local Backup\Components\scheduler\Launcher.exe
11:51:35.0736 3508 C:\Program Files (x86)\Dell DataSafe Local Backup\Components\scheduler\Launcher.exe - ok
11:51:35.0736 3508 [ 1351931877DE0C46C4D42DAA26F7B5B1 ] C:\Windows\AppPatch\AcLayers.dll
11:51:35.0736 3508 C:\Windows\AppPatch\AcLayers.dll - ok
11:51:35.0752 3508 [ B9A8CBCFCD3EC9D2EA4740AF347BF108 ] C:\Windows\SysWOW64\mpr.dll
11:51:35.0752 3508 C:\Windows\SysWOW64\mpr.dll - ok
11:51:35.0752 3508 [ E69BF74E3122A0EC5E64ACE140D3A8CA ] C:\Program Files (x86)\Dell DataSafe Local Backup\Components\scheduler\STService.exe
11:51:35.0752 3508 C:\Program Files (x86)\Dell DataSafe Local Backup\Components\scheduler\STService.exe - ok
11:51:35.0767 3508 [ 40CAEEE0EAF1B8569F7C8DF6420F2CB9 ] C:\Windows\SysWOW64\sfc.dll
11:51:35.0767 3508 C:\Windows\SysWOW64\sfc.dll - ok
11:51:35.0767 3508 [ 84799328D87B3091A3BDD251E1AD31F9 ] C:\Windows\SysWOW64\sfc_os.dll
11:51:35.0767 3508 C:\Windows\SysWOW64\sfc_os.dll - ok
11:51:35.0767 3508 [ 11CDF138552BFEC115B60ED6DC3ACEB6 ] C:\Windows\SysWOW64\devrtl.dll
11:51:35.0767 3508 C:\Windows\SysWOW64\devrtl.dll - ok
11:51:35.0783 3508 [ 8F4814B59025FB67B684BD0CBAA53100 ] C:\Program Files (x86)\Dell DataSafe Local Backup\STLog.dll
11:51:35.0783 3508 C:\Program Files (x86)\Dell DataSafe Local Backup\STLog.dll - ok
11:51:35.0783 3508 [ A717B97F574F3045E7352658F3A6C9BB ] C:\Program Files (x86)\Dell DataSafe Local Backup\CSTError.dll
11:51:35.0783 3508 C:\Program Files (x86)\Dell DataSafe Local Backup\CSTError.dll - ok
11:51:35.0783 3508 [ 9AFF6D5B41B330E85EC856A48CBEDE0C ] C:\Program Files (x86)\Dell DataSafe Local Backup\STString.dll
11:51:35.0783 3508 C:\Program Files (x86)\Dell DataSafe Local Backup\STString.dll - ok
11:51:35.0798 3508 [ BFEE026D95642EC1833E566A673F3EE0 ] C:\Program Files (x86)\Dell DataSafe Local Backup\libxml2.dll
11:51:35.0798 3508 C:\Program Files (x86)\Dell DataSafe Local Backup\libxml2.dll - ok
11:51:35.0798 3508 [ 0D03AFDF57863F64D0953CCF0AFD6040 ] C:\Program Files (x86)\Dell DataSafe Local Backup\STStringArray.dll
11:51:35.0798 3508 C:\Program Files (x86)\Dell DataSafe Local Backup\STStringArray.dll - ok
11:51:35.0798 3508 [ F58143CB0ED2FB93747C588DC42D721B ] C:\Program Files (x86)\Dell DataSafe Local Backup\STXml.dll
11:51:35.0798 3508 C:\Program Files (x86)\Dell DataSafe Local Backup\STXml.dll - ok
11:51:35.0814 3508 [ ECDBA6B31F68EA094BB28746219042B2 ] C:\Program Files (x86)\Dell DataSafe Local Backup\STFiles.dll
11:51:35.0814 3508 C:\Program Files (x86)\Dell DataSafe Local Backup\STFiles.dll - ok
11:51:35.0814 3508 [ 067F9BBD6F74DD7DBA078B37205BAB2D ] C:\Program Files (x86)\Dell DataSafe Local Backup\zlib1.dll
11:51:35.0814 3508 C:\Program Files (x86)\Dell DataSafe Local Backup\zlib1.dll - ok
11:51:35.0830 3508 [ 1D35697CD3D9F87D9E343773A8519FC0 ] C:\Program Files (x86)\Dell DataSafe Local Backup\STPE.dll
11:51:35.0830 3508 C:\Program Files (x86)\Dell DataSafe Local Backup\STPE.dll - ok
11:51:35.0830 3508 [ F2493C19AFADA330D75379C188D96EB7 ] C:\Program Files (x86)\Dell DataSafe Local Backup\STRegistry.dll
11:51:35.0830 3508 C:\Program Files (x86)\Dell DataSafe Local Backup\STRegistry.dll - ok
11:51:35.0830 3508 [ 47D5756E1FA3D133FD59E3800F87CE7D ] C:\Program Files (x86)\Dell DataSafe Local Backup\ToasterLauncher.exe
11:51:35.0830 3508 C:\Program Files (x86)\Dell DataSafe Local Backup\ToasterLauncher.exe - ok
11:51:35.0845 3508 [ 72AB6633E9B39EC7FEBEDF083A9061E5 ] C:\Windows\System32\mscoree.dll
11:51:35.0845 3508 C:\Windows\System32\mscoree.dll - ok
11:51:35.0845 3508 [ 4B086B357E59EAE4444A356B5C0228BF ] C:\Program Files (x86)\Dell DataSafe Local Backup\STNLS.dll
11:51:35.0845 3508 C:\Program Files (x86)\Dell DataSafe Local Backup\STNLS.dll - ok
11:51:35.0845 3508 [ 4A159D4C1F18111C41F85915DF724024 ] C:\Program Files (x86)\Dell DataSafe Local Backup\STSystems.dll
11:51:35.0845 3508 C:\Program Files (x86)\Dell DataSafe Local Backup\STSystems.dll - ok
11:51:35.0861 3508 [ A223CF703E28CBD7E9E7982141FA403C ] C:\Windows\SysWOW64\comdlg32.dll
11:51:35.0861 3508 C:\Windows\SysWOW64\comdlg32.dll - ok
11:51:35.0861 3508 [ AA794B099F776B37ACCDEAD00E0FBFC9 ] C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscoreei.dll
11:51:35.0861 3508 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscoreei.dll - ok
11:51:35.0861 3508 [ 936F728E04ACCF3F38801CFFCF1E3F40 ] C:\Windows\SysWOW64\oledlg.dll
11:51:35.0861 3508 C:\Windows\SysWOW64\oledlg.dll - ok
11:51:35.0876 3508 [ 3CA4ADDA47D97DDF412893F1D03EA6F6 ] C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorwks.dll
11:51:35.0876 3508 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorwks.dll - ok
11:51:35.0876 3508 [ 39C5F32747B3414D1BB216FDB1DEFC58 ] C:\Windows\SysWOW64\dwmapi.dll
11:51:35.0876 3508 C:\Windows\SysWOW64\dwmapi.dll - ok
11:51:35.0892 3508 [ F694F7A205D68D3C5AEECA0D603F0860 ] C:\Program Files (x86)\Dell DataSafe Local Backup\Components\scheduler\STSCheduler.dll
11:51:35.0892 3508 C:\Program Files (x86)\Dell DataSafe Local Backup\Components\scheduler\STSCheduler.dll - ok
11:51:35.0892 3508 [ 6A894809E68066E9D285C31D220D0175 ] C:\Program Files (x86)\Dell DataSafe Local Backup\STDisks.dll
11:51:35.0892 3508 C:\Program Files (x86)\Dell DataSafe Local Backup\STDisks.dll - ok
11:51:35.0892 3508 [ 37F0E9925B1114F1F7D01AFAE91D43F3 ] C:\Program Files (x86)\Dell DataSafe Local Backup\PSTVdsDisk.dll
11:51:35.0892 3508 C:\Program Files (x86)\Dell DataSafe Local Backup\PSTVdsDisk.dll - ok
11:51:35.0908 3508 [ D3C8C6B6DB123B0E51ECFFF0F6DF145E ] C:\Windows\assembly\NativeImages_v2.0.50727_64\mscorlib\9a7b48ad2929bc93362ec42cd4573f87\mscorlib.ni.dll
11:51:35.0908 3508 C:\Windows\assembly\NativeImages_v2.0.50727_64\mscorlib\9a7b48ad2929bc93362ec42cd4573f87\mscorlib.ni.dll - ok
11:51:35.0908 3508 [ 0A94DE4AA9864D312E60D747FD249ABE ] C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsec.dll
11:51:35.0908 3508 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsec.dll - ok
11:51:35.0908 3508 [ 4FB1F2F9B02FA1138CACD2DEA3F5AEC8 ] C:\Windows\System32\riched20.dll
11:51:35.0908 3508 C:\Windows\System32\riched20.dll - ok
11:51:35.0923 3508 [ B837D1528CE2E3CB79F09496BC08DDC6 ] C:\Windows\System32\SensApi.dll
11:51:35.0923 3508 C:\Windows\System32\SensApi.dll - ok
11:51:35.0923 3508 [ 3A2F5C8666F08B31C61DBAE9C297551C ] C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorjit.dll
11:51:35.0923 3508 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorjit.dll - ok
11:51:35.0939 3508 [ C8FE465986FE1E242C92B6B76CDFEC6F ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System\6ec488b702c100ad5d3e712db0e88554\System.ni.dll
11:51:35.0939 3508 C:\Windows\assembly\NativeImages_v2.0.50727_64\System\6ec488b702c100ad5d3e712db0e88554\System.ni.dll - ok
11:51:35.0939 3508 [ CDAD3376DFF3D9AC7FDCBE2B94B0D3C8 ] C:\Windows\System32\shfolder.dll
11:51:35.0939 3508 C:\Windows\System32\shfolder.dll - ok
11:51:35.0939 3508 [ 4ECE12D296ED94CA2C7DD6C383A5AB66 ] C:\Windows\System32\ieframe.dll
11:51:35.0939 3508 C:\Windows\System32\ieframe.dll - ok
11:51:35.0954 3508 [ F4C6871B98900CA43D3D01442FF3DEB3 ] C:\Program Files (x86)\Dell DataSafe Local Backup\hstart.exe
11:51:35.0954 3508 C:\Program Files (x86)\Dell DataSafe Local Backup\hstart.exe - ok
11:51:35.0954 3508 [ 0BA3F31E2B4D8D99DF8DD19E81155374 ] C:\Windows\SysWOW64\ieframe.dll
11:51:35.0954 3508 C:\Windows\SysWOW64\ieframe.dll - ok
11:51:35.0954 3508 [ 8AE6DD9A6D246004DA047F704F0CC487 ] C:\Windows\SysWOW64\cmd.exe
11:51:35.0954 3508 C:\Windows\SysWOW64\cmd.exe - ok
11:51:35.0970 3508 [ F0D1646162FB07476CCCF62EDB034B8B ] C:\Windows\System32\conhost.exe
11:51:35.0970 3508 C:\Windows\System32\conhost.exe - ok
11:51:35.0970 3508 [ 326C7F76A29897A892AA7726E91C1C67 ] C:\Windows\SysWOW64\winbrand.dll
11:51:35.0970 3508 C:\Windows\SysWOW64\winbrand.dll - ok
11:51:35.0970 3508 [ 3F7B9B4E099476AAA720970BA1346FE2 ] C:\Program Files (x86)\Dell DataSafe Local Backup\Toaster.exe
11:51:35.0970 3508 C:\Program Files (x86)\Dell DataSafe Local Backup\Toaster.exe - ok
11:51:35.0986 3508 [ 6E9E439517D89EDC9A6CB1E94489620A ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsec.dll
11:51:35.0986 3508 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsec.dll - ok
11:51:35.0986 3508 [ D3EAD1CF16BA729A7F7C9A5D94AA7C05 ] C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7600.16661_none_ebfb56996c72aefc\comctl32.dll
11:51:35.0986 3508 C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7600.16661_none_ebfb56996c72aefc\comctl32.dll - ok
11:51:36.0001 3508 [ 6EC594AB7EFA45EACDE65FD4040F53D9 ] C:\Windows\SysWOW64\riched20.dll
11:51:36.0001 3508 C:\Windows\SysWOW64\riched20.dll - ok
11:51:36.0001 3508 [ 371A6D058281FCFC2A7AD0A0ABB1ADEC ] C:\Windows\assembly\NativeImages_v2.0.50727_32\WindowsBase\b68fdf2c95b93fc5006a092c11eed07c\WindowsBase.ni.dll
11:51:36.0001 3508 C:\Windows\assembly\NativeImages_v2.0.50727_32\WindowsBase\b68fdf2c95b93fc5006a092c11eed07c\WindowsBase.ni.dll - ok
11:51:36.0001 3508 [ E07B77C3BDC82A024E294FB67ABFEDA0 ] C:\Windows\SysWOW64\shdocvw.dll
11:51:36.0001 3508 C:\Windows\SysWOW64\shdocvw.dll - ok
11:51:36.0017 3508 [ 4B78B431F225FD8624C5655CB1DE7B61 ] C:\Windows\System32\aelupsvc.dll
11:51:36.0017 3508 C:\Windows\System32\aelupsvc.dll - ok
11:51:36.0017 3508 [ 9ED9F21D73F9D71E30EAB71835E656EB ] C:\Users\Dipanshu\AppData\Local\Temp\BF7A8858-56BC-429D-AA44-628FDF4E075B.exe
11:51:36.0017 3508 C:\Users\Dipanshu\AppData\Local\Temp\BF7A8858-56BC-429D-AA44-628FDF4E075B.exe - ok
11:51:36.0017 3508 [ 7349C9EBA29D3D7661CA5353E613D12F ] C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationCore\e9d0ba41128f363f2390c7e630129c2b\PresentationCore.ni.dll
11:51:36.0017 3508 C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationCore\e9d0ba41128f363f2390c7e630129c2b\PresentationCore.ni.dll - ok
11:51:36.0032 3508 [ F60F6F24FEF1024A64889A6D656381AE ] C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\517358eb2fd962a942dd1ea6afc5b93e\PresentationFramework.ni.dll
11:51:36.0032 3508 C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\517358eb2fd962a942dd1ea6afc5b93e\PresentationFramework.ni.dll - ok
11:51:36.0032 3508 [ 691C8DFB208227F0CBB5C0897C742ACE ] C:\Windows\SysWOW64\WindowsCodecs.dll
11:51:36.0032 3508 C:\Windows\SysWOW64\WindowsCodecs.dll - ok
11:51:36.0032 3508 [ 846D0E4DB261CFAF363902E41498E961 ] C:\Windows\SysWOW64\EhStorShell.dll
11:51:36.0032 3508 C:\Windows\SysWOW64\EhStorShell.dll - ok
11:51:36.0048 3508 [ 9141FE8D904CE682A3BDCFAE96BB04EF ] C:\Windows\SysWOW64\ntshrui.dll
11:51:36.0048 3508 C:\Windows\SysWOW64\ntshrui.dll - ok
11:51:36.0048 3508 [ 8B74CEC6980D4816B0037AE9A27E538F ] C:\Windows\SysWOW64\slc.dll
11:51:36.0048 3508 C:\Windows\SysWOW64\slc.dll - ok
11:51:36.0064 3508 [ 827CB0D6C3F8057EA037FF271F8E9795 ] C:\Windows\SysWOW64\imageres.dll
11:51:36.0064 3508 C:\Windows\SysWOW64\imageres.dll - ok
11:51:36.0064 3508 [ 27BED235F5497DEBC6EF6EFAF4BA1D60 ] C:\Windows\assembly\GAC_32\PresentationCore\3.0.0.0__31bf3856ad364e35\PresentationCore.dll
11:51:36.0064 3508 C:\Windows\assembly\GAC_32\PresentationCore\3.0.0.0__31bf3856ad364e35\PresentationCore.dll - ok
11:51:36.0064 3508 [ 4538040E7B6B281A0468BFBD7BE6ADBB ] C:\Windows\Microsoft.NET\Framework\v3.0\WPF\wpfgfx_v0300.dll
11:51:36.0064 3508 C:\Windows\Microsoft.NET\Framework\v3.0\WPF\wpfgfx_v0300.dll - ok
11:51:36.0079 3508 [ A0617B5753E31126AD29C03154F4F329 ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\Culture.dll
11:51:36.0079 3508 C:\Windows\Microsoft.NET\Framework\v2.0.50727\Culture.dll - ok
11:51:36.0079 3508 [ 5684E84471A6234DE864F40F43BE3A15 ] C:\Program Files (x86)\Dell DataSafe Local Backup\SftBRCC.dll
11:51:36.0079 3508 C:\Program Files (x86)\Dell DataSafe Local Backup\SftBRCC.dll - ok
11:51:36.0079 3508 [ 902456D417C263AB4C230AB5C93562ED ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Drawing\ebefde27b0ef7f39bb49c493b34a602c\System.Drawing.ni.dll
11:51:36.0079 3508 C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Drawing\ebefde27b0ef7f39bb49c493b34a602c\System.Drawing.ni.dll - ok
11:51:36.0095 3508 [ E36D050722A04F4A331512F69433B5A6 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\009c50fb69919b90fb233cb4c35d0ad7\System.Windows.Forms.ni.dll
11:51:36.0095 3508 C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\009c50fb69919b90fb233cb4c35d0ad7\System.Windows.Forms.ni.dll - ok
11:51:36.0095 3508 [ 7459301D21C2E21468823F73042D9F87 ] C:\Windows\SysWOW64\d3d9.dll
11:51:36.0095 3508 C:\Windows\SysWOW64\d3d9.dll - ok
11:51:36.0110 3508 [ 77B1471A490B53B24EFE136F09F76550 ] C:\Windows\SysWOW64\d3d8thk.dll
11:51:36.0110 3508 C:\Windows\SysWOW64\d3d8thk.dll - ok
11:51:36.0110 3508 [ BA38C50F523DC053488AC3F9EF99AA0B ] C:\Windows\SysWOW64\igdumdx32.dll
11:51:36.0110 3508 C:\Windows\SysWOW64\igdumdx32.dll - ok
11:51:36.0110 3508 [ 10AB9C9ADB89816BEFB077E72659D029 ] C:\Windows\SysWOW64\igdumd32.dll
11:51:36.0110 3508 C:\Windows\SysWOW64\igdumd32.dll - ok
11:51:36.0126 3508 [ 50FDB72922B6E6C0E455E65CE67D1A74 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\fc626095c194be137bceb219934b06a7\PresentationFramework.Aero.ni.dll
11:51:36.0126 3508 C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\fc626095c194be137bceb219934b06a7\PresentationFramework.Aero.ni.dll - ok
11:51:36.0126 3508 [ FB53B45EE45AD3D3CB00FB067584E6DE ] C:\Program Files (x86)\Dell DataSafe Local Backup\SftBRCCPiped.dll
11:51:36.0126 3508 C:\Program Files (x86)\Dell DataSafe Local Backup\SftBRCCPiped.dll - ok
11:51:36.0126 3508 [ 17BA32578D32EAA9253155CF746442AA ] C:\Program Files (x86)\Dell DataSafe Local Backup\MiddleLayerCLRLib.dll
11:51:36.0126 3508 C:\Program Files (x86)\Dell DataSafe Local Backup\MiddleLayerCLRLib.dll - ok
11:51:36.0142 3508 [ 0B3595A4FF0B36D68E5FC67FD7D70FDC ] C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcp80.dll
11:51:36.0142 3508 C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcp80.dll - ok
11:51:36.0142 3508 [ 1D109ED0D660654EA7FF1574558031C4 ] C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcm80.dll
11:51:36.0142 3508 C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcm80.dll - ok
11:51:36.0142 3508 [ D85DB66D0D6E120367658E38AB1BB1FA ] C:\Program Files (x86)\Dell DataSafe Local Backup\STBRCCServCLR.dll
11:51:36.0142 3508 C:\Program Files (x86)\Dell DataSafe Local Backup\STBRCCServCLR.dll - ok
11:51:36.0157 3508 [ 98AF485FDCCCB264158995D0C04FC873 ] C:\Program Files (x86)\Dell DataSafe Local Backup\STBRCCServices.dll
11:51:36.0157 3508 C:\Program Files (x86)\Dell DataSafe Local Backup\STBRCCServices.dll - ok
11:51:36.0157 3508 [ B519848DFA30AE2B306576B51321D102 ] C:\Windows\System32\ie4uinit.exe
11:51:36.0157 3508 C:\Windows\System32\ie4uinit.exe - ok
11:51:36.0173 3508 [ C3E98C42EDF7EF237A4BAB91FEAC7426 ] C:\Windows\System32\iedkcs32.dll
11:51:36.0173 3508 C:\Windows\System32\iedkcs32.dll - ok
11:51:36.0173 3508 [ 18245DC72B65D488A8B2D75A8FE088EA ] C:\Windows\System32\timedate.cpl
11:51:36.0173 3508 C:\Windows\System32\timedate.cpl - ok
11:51:36.0173 3508 [ 1E4BDDBD5A63059A97063339B4F8986F ] C:\Windows\System32\actxprxy.dll
11:51:36.0173 3508 C:\Windows\System32\actxprxy.dll - ok
11:51:36.0188 3508 [ FBE8EBF528DC49B3DEB186CA9545D97E ] C:\Windows\System32\shdocvw.dll
11:51:36.0188 3508 C:\Windows\System32\shdocvw.dll - ok
11:51:36.0188 3508 [ A0A65D306A5490D2EB8E7DE66898ECFD ] C:\Windows\System32\linkinfo.dll
11:51:36.0188 3508 C:\Windows\System32\linkinfo.dll - ok
11:51:36.0188 3508 [ 69754747274B76E7FAF287239333D7E6 ] C:\Windows\System32\msiltcfg.dll
11:51:36.0188 3508 C:\Windows\System32\msiltcfg.dll - ok
11:51:36.0204 3508 [ 46EDD0A6B42BA5D2044FA0909BE4BE95 ] C:\Windows\System32\msftedit.dll
11:51:36.0204 3508 C:\Windows\System32\msftedit.dll - ok
11:51:36.0204 3508 [ 7FCAB194F01E3403C300EB034E480B36 ] C:\Windows\System32\msls31.dll
11:51:36.0204 3508 C:\Windows\System32\msls31.dll - ok
11:51:36.0204 3508 [ 14F5C0DB4B2C47874D6C937A5A1B367C ] C:\Windows\System32\gameux.dll
11:51:36.0204 3508 C:\Windows\System32\gameux.dll - ok
11:51:36.0220 3508 [ F146E2BA475893DD77B2370DC1211FC6 ] C:\Windows\System32\drivers\42215762.sys
11:51:36.0220 3508 C:\Windows\System32\drivers\42215762.sys - ok
11:51:36.0220 3508 [ 17A7998CB5DA92020A291B85FF7B3681 ] C:\Program Files\Common Files\Microsoft Shared\ink\tiptsf.dll
11:51:36.0220 3508 C:\Program Files\Common Files\Microsoft Shared\ink\tiptsf.dll - ok
11:51:36.0220 3508 [ DD76912E8D165C68659D9875256710A3 ] C:\Windows\System32\DeviceCenter.dll
11:51:36.0220 3508 C:\Windows\System32\DeviceCenter.dll - ok
11:51:36.0235 3508 [ AC7867BC8D567B8490744287BAB0CFBD ] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
11:51:36.0235 3508 C:\Program Files\Synaptics\SynTP\SynTPEnh.exe - ok
11:51:36.0235 3508 [ 5F3D8F0243E653BEDEB9AC6F04B7CF79 ] C:\Program Files\IDT\WDM\sttray64.exe
11:51:36.0235 3508 C:\Program Files\IDT\WDM\sttray64.exe - ok
11:51:36.0235 3508 [ B60457F40BBF5EAE380FC110B21C4978 ] C:\Program Files\Dell\QuickSet\quickset.exe
11:51:36.0235 3508 C:\Program Files\Dell\QuickSet\quickset.exe - ok
11:51:36.0251 3508 [ F468C806267D46B68DB7EB32FBF0A103 ] C:\Windows\System32\thumbcache.dll
11:51:36.0251 3508 C:\Windows\System32\thumbcache.dll - ok
11:51:36.0251 3508 [ DD81D91FF3B0763C392422865C9AC12E ] C:\Windows\System32\rundll32.exe
11:51:36.0251 3508 C:\Windows\System32\rundll32.exe - ok
11:51:36.0251 3508 [ 8942FD2FC4FD4898F9BE5915F577FFF1 ] C:\Windows\System32\AmbRunE.dll
11:51:36.0251 3508 C:\Windows\System32\AmbRunE.dll - ok
11:51:36.0266 3508 [ 2F16207A65B62001FC73E6798D0B8F2A ] C:\Windows\System32\hkcmd.exe
11:51:36.0266 3508 C:\Windows\System32\hkcmd.exe - ok
11:51:36.0266 3508 [ B51DC06D6CAD4F48203605F2B6011D3E ] C:\Program Files\Quick Heal\Quick Heal Total Security\STRTUPAP.EXE
11:51:36.0266 3508 C:\Program Files\Quick Heal\Quick Heal Total Security\STRTUPAP.EXE - ok
11:51:36.0282 3508 [ 0ABCA5A037A8B4D744991544B286D847 ] C:\Windows\System32\mfc42u.dll
11:51:36.0282 3508 C:\Windows\System32\mfc42u.dll - ok
11:51:36.0282 3508 [ 7D994395A7D62E7A4EEAD38FFE833522 ] C:\Program Files\Quick Heal\Quick Heal Total Security\REMIND.EXE
11:51:36.0282 3508 C:\Program Files\Quick Heal\Quick Heal Total Security\REMIND.EXE - ok
11:51:36.0282 3508 [ 05EA520BFB1D3085CB12A4355598081D ] C:\Windows\System32\hccutils.dll
11:51:36.0282 3508 C:\Windows\System32\hccutils.dll - ok
11:51:36.0298 3508 [ C673F3CE4993B0967DF64EB864640F4A ] C:\Program Files\Quick Heal\Quick Heal Total Security\ONLINENT.EXE
11:51:36.0298 3508 C:\Program Files\Quick Heal\Quick Heal Total Security\ONLINENT.EXE - ok
11:51:36.0298 3508 [ 326ABDADEDA287ED0348763AA5879B5A ] C:\PROGRA~1\QUICKH~1\QUICKH~1\EMLPROUI.EXE
11:51:36.0298 3508 C:\PROGRA~1\QUICKH~1\QUICKH~1\EMLPROUI.EXE - ok
11:51:36.0298 3508 [ E8320BF356510F39CAEF3DBD25505CD9 ] C:\Program Files\Quick Heal\Quick Heal Total Security\MODLOG.DLL
11:51:36.0298 3508 C:\Program Files\Quick Heal\Quick Heal Total Security\MODLOG.DLL - ok
11:51:36.0313 3508 [ 21BA1FCC51710D13B28C613948470688 ] C:\Program Files\Quick Heal\Quick Heal Total Security\SCANMSG.EXE
11:51:36.0313 3508 C:\Program Files\Quick Heal\Quick Heal Total Security\SCANMSG.EXE - ok
11:51:36.0313 3508 [ D890EDDD0528E04049C9D524FBA1C506 ] C:\Windows\System32\igfxsrvc.exe
11:51:36.0313 3508 C:\Windows\System32\igfxsrvc.exe - ok
11:51:36.0329 3508 [ 6D58E5815C560041A68228AF45CA9541 ] C:\Program Files\Quick Heal\Quick Heal Total Security\INETSDK.DLL
11:51:36.0329 3508 C:\Program Files\Quick Heal\Quick Heal Total Security\INETSDK.DLL - ok
11:51:36.0329 3508 [ E58D12F3A1BDBC7C5429606EA6F2B8AD ] C:\PROGRA~1\QUICKH~1\QUICKH~1\SMFLTR.DLL
11:51:36.0329 3508 C:\PROGRA~1\QUICKH~1\QUICKH~1\SMFLTR.DLL - ok
11:51:36.0329 3508 [ 296107D58DBCD63AA59E431176CA5494 ] C:\PROGRA~1\QUICKH~1\QUICKH~1\ASPCORE.DLL
11:51:36.0329 3508 C:\PROGRA~1\QUICKH~1\QUICKH~1\ASPCORE.DLL - ok
11:51:36.0344 3508 [ DFF4993094A11275601E7ADBF1D1BD25 ] C:\Windows\System32\odbc32.dll
11:51:36.0344 3508 C:\Windows\System32\odbc32.dll - ok
11:51:36.0344 3508 [ 27347D10624CC5E0BAB3887F032AE8E5 ] C:\Program Files\Quick Heal\Quick Heal Total Security\CONTACT.EXE
11:51:36.0344 3508 C:\Program Files\Quick Heal\Quick Heal Total Security\CONTACT.EXE - ok
11:51:36.0344 3508 [ A1F878D78E736632EF2120E17FD9C4A6 ] C:\Program Files\Quick Heal\Quick Heal Total Security\ONLNALRT.DLL
11:51:36.0344 3508 C:\Program Files\Quick Heal\Quick Heal Total Security\ONLNALRT.DLL - ok
11:51:36.0360 3508 [ C08F1F47FE1A742C95C3B820E5F65572 ] C:\Program Files\Quick Heal\Quick Heal Total Security\QUAR.DLL
11:51:36.0360 3508 C:\Program Files\Quick Heal\Quick Heal Total Security\QUAR.DLL - ok
11:51:36.0360 3508 [ AA26F685222B5F1D87CF9860D4FA2A34 ] C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
11:51:36.0360 3508 C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe - ok
11:51:36.0360 3508 [ 357BE883C5236BFC7341CB9E82308908 ] C:\Windows\System32\wlanapi.dll
11:51:36.0360 3508 C:\Windows\System32\wlanapi.dll - ok
11:51:36.0376 3508 [ 263E9A047D17CD50BAA9D3C02910D18D ] C:\Windows\System32\oledlg.dll
11:51:36.0376 3508 C:\Windows\System32\oledlg.dll - ok
11:51:36.0376 3508 [ 80B62FF105908EC9E4B072AFB1CFC824 ] C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\WebcamDell2.exe
11:51:36.0376 3508 C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\WebcamDell2.exe - ok
11:51:36.0376 3508 [ 4D2D88E6530572C4923F47CF6525E365 ] C:\Windows\System32\SynCOM.dll
11:51:36.0376 3508 C:\Windows\System32\SynCOM.dll - ok
11:51:36.0391 3508 [ 326F070B9C4FC40CCD6058C07F3E2B23 ] C:\Windows\System32\SynTPAPI.dll
11:51:36.0391 3508 C:\Windows\System32\SynTPAPI.dll - ok
11:51:36.0391 3508 [ 43A4F52F7A38ED9EE0AACA36FE6DAC5D ] C:\Program Files (x86)\Creative\SB X-Fi MB\Volume Panel\VolPanlu.exe
11:51:36.0391 3508 C:\Program Files (x86)\Creative\SB X-Fi MB\Volume Panel\VolPanlu.exe - ok
11:51:36.0391 3508 [ 8BC7AE7E16458355508ECF5EC3A04E72 ] C:\Windows\System32\networkexplorer.dll
11:51:36.0391 3508 C:\Windows\System32\networkexplorer.dll - ok
11:51:36.0407 3508 [ 9AEC3D056A54178EBDCDDAB48583E90A ] C:\Program Files\Synaptics\SynTP\DellTpad.exe
11:51:36.0407 3508 C:\Program Files\Synaptics\SynTP\DellTpad.exe - ok
11:51:36.0407 3508 [ 2E5193EAF0317764B454DE2C5C27BD80 ] C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
11:51:36.0407 3508 C:\Program Files\Synaptics\SynTP\SynTPHelper.exe - ok
11:51:36.0422 3508 [ F51059EE3C543CB364A069CAFB252031 ] C:\Windows\System32\igfxdev.dll
11:51:36.0422 3508 C:\Windows\System32\igfxdev.dll - ok
11:51:36.0422 3508 [ 31A6D4B8803CCBA44271F05E08C4955A ] C:\Windows\System32\igfxsrvc.dll
11:51:36.0422 3508 C:\Windows\System32\igfxsrvc.dll - ok
11:51:36.0422 3508 [ C419DF63E0121D72411285780C2FC6CC ] C:\Windows\Updreg.EXE
11:51:36.0422 3508 C:\Windows\Updreg.EXE - ok
11:51:36.0438 3508 [ 00D1FB0073B4A8BD2989EA8FF4CC792B ] C:\Program Files (x86)\Dell Support Center\bin\sprtcmd.exe
11:51:36.0438 3508 C:\Program Files (x86)\Dell Support Center\bin\sprtcmd.exe - ok
11:51:36.0438 3508 [ 55A8AEEC6FF65797A92A6EB1D904D5E6 ] C:\Program Files\WIDCOMM\Bluetooth Software\Btwapi.dll
11:51:36.0438 3508 C:\Program Files\WIDCOMM\Bluetooth Software\Btwapi.dll - ok
11:51:36.0438 3508 [ 9E60922B6F9D810C757D0991E54D3281 ] C:\Program Files (x86)\Absolute Software\Absolute Notifier\AbsoluteNotifier.exe
11:51:36.0438 3508 C:\Program Files (x86)\Absolute Software\Absolute Notifier\AbsoluteNotifier.exe - ok
11:51:36.0454 3508 [ BCCB77572408155F984A02F9BFFDF225 ] C:\Program Files (x86)\Adobe\Photoshop Elements 6.0\apdproxy.exe
11:51:36.0454 3508 C:\Program Files (x86)\Adobe\Photoshop Elements 6.0\apdproxy.exe - ok
11:51:36.0454 3508 [ C4D79A6ABC6665D83F83DBBA88B79382 ] C:\Program Files\WIDCOMM\Bluetooth Software\btosif.dll
11:51:36.0454 3508 C:\Program Files\WIDCOMM\Bluetooth Software\btosif.dll - ok
11:51:36.0454 3508 [ 0E34B7BB1FCF22BCC1E394D16F9E992B ] C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe
11:51:36.0454 3508 C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe - ok
11:51:36.0469 3508 [ F24A3379567365B1CD4E9167ADF4B763 ] C:\Program Files (x86)\Creative\SB X-Fi MB\Volume Panel\CTAudSeu.dll
11:51:36.0469 3508 C:\Program Files (x86)\Creative\SB X-Fi MB\Volume Panel\CTAudSeu.dll - ok
11:51:36.0469 3508 [ 64D757051B5B273E55C93E4503EA4F3E ] C:\Windows\System32\wbem\WmiPrvSE.exe
11:51:36.0469 3508 C:\Windows\System32\wbem\WmiPrvSE.exe - ok
11:51:36.0485 3508 [ EA360CA8F2E24D5AAF90C925DAAFA60B ] C:\Program Files\IDT\WDM\stlang64.dll
11:51:36.0485 3508 C:\Program Files\IDT\WDM\stlang64.dll - ok
11:51:36.0485 3508 [ A0A42BB19E085F4B3367F5057307C194 ] C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\CTLoadRs.dll
11:51:36.0485 3508 C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\CTLoadRs.dll - ok
11:51:36.0485 3508 [ B675CE9E67EE43628F181B8B6CF60BB9 ] C:\Program Files\WIDCOMM\Bluetooth Software\btwhidcs.dll
11:51:36.0485 3508 C:\Program Files\WIDCOMM\Bluetooth Software\btwhidcs.dll - ok
11:51:36.0500 3508 [ 75838AB28CC1318345DA62B6C339068C ] C:\Windows\System32\GfxUI.exe
11:51:36.0500 3508 C:\Windows\System32\GfxUI.exe - ok
11:51:36.0500 3508 [ 352C7C2470C03AFD41889236D849D75C ] C:\Windows\System32\igfxrenu.lrc
11:51:36.0500 3508 C:\Windows\System32\igfxrenu.lrc - ok
11:51:36.0500 3508 [ 930B0366EF3089C422C132F649EDFD42 ] C:\Program Files (x86)\Adobe\Photoshop Elements 6.0\apdboot.dll
11:51:36.0500 3508 C:\Program Files (x86)\Adobe\Photoshop Elements 6.0\apdboot.dll - ok
11:51:36.0516 3508 [ 539C49CEBB3C50957AC8A09D95ECD880 ] C:\Windows\SysWOW64\shfolder.dll
11:51:36.0516 3508 C:\Windows\SysWOW64\shfolder.dll - ok
11:51:36.0516 3508 [ 5046E55184021406C27E8D48A1B2C9D2 ] C:\Windows\System32\l3codeca.acm
11:51:36.0516 3508 C:\Windows\System32\l3codeca.acm - ok
11:51:36.0516 3508 [ F5BCE1C11BA2F018E07C3BB6CA4EC3F6 ] C:\Program Files (x86)\Creative\SB X-Fi MB\Volume Panel\CTAudEp.dll
11:51:36.0516 3508 C:\Program Files (x86)\Creative\SB X-Fi MB\Volume Panel\CTAudEp.dll - ok
11:51:36.0532 3508 [ 21EE912784A013DC44071ECC4F932388 ] C:\Windows\winsxs\amd64_microsoft.vc80.mfc_1fc8b3b9a1e18e3b_8.0.50727.762_none_c46a533c8a667ee7\mfc80u.dll
11:51:36.0532 3508 C:\Windows\winsxs\amd64_microsoft.vc80.mfc_1fc8b3b9a1e18e3b_8.0.50727.762_none_c46a533c8a667ee7\mfc80u.dll - ok
11:51:36.0532 3508 [ DBEC7D9F979CE492B0BA3103F37AB2D1 ] C:\Windows\assembly\GAC_MSIL\System.Windows.Forms\2.0.0.0__b77a5c561934e089\System.Windows.Forms.dll
11:51:36.0532 3508 C:\Windows\assembly\GAC_MSIL\System.Windows.Forms\2.0.0.0__b77a5c561934e089\System.Windows.Forms.dll - ok
11:51:36.0547 3508 [ D458B563613E898EE7C627359AF5973D ] C:\Windows\SysWOW64\Nlsdl.dll
11:51:36.0547 3508 C:\Windows\SysWOW64\Nlsdl.dll - ok
11:51:36.0547 3508 [ ABAAC2BDA49E97F2682E777036E02DB0 ] C:\Program Files (x86)\Creative\SB X-Fi MB\Volume Panel\CTIniFu.dll
11:51:36.0547 3508 C:\Program Files (x86)\Creative\SB X-Fi MB\Volume Panel\CTIniFu.dll - ok
11:51:36.0547 3508 [ 87B8A6A5B7BB3BA7E15C2937ABF49563 ] C:\Program Files (x86)\Adobe\Photoshop Elements 6.0\moxplugins\NOKIAManager.mox
11:51:36.0547 3508 C:\Program Files (x86)\Adobe\Photoshop Elements 6.0\moxplugins\NOKIAManager.mox - ok
11:51:36.0563 3508 [ E748D0B8F4060F4F7A7ABB705E289890 ] C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\mfc42u.dll
11:51:36.0563 3508 C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\mfc42u.dll - ok
11:51:36.0563 3508 [ 11BE2933DA0600DE6A644C3A492675F4 ] C:\Windows\System32\irprops.cpl
11:51:36.0563 3508 C:\Windows\System32\irprops.cpl - ok
11:51:36.0563 3508 [ 2EEEF8544DCAFE322301B68AA7F1D989 ] C:\Program Files (x86)\Dell Support Center\bin\sprtmessage.dll
11:51:36.0563 3508 C:\Program Files (x86)\Dell Support Center\bin\sprtmessage.dll - ok
11:51:36.0578 3508 [ 11456E7C78A6C3D43E5D81CE8A899FA6 ] C:\Program Files (x86)\Dell Support Center\bin\sprtsched.dll
11:51:36.0578 3508 C:\Program Files (x86)\Dell Support Center\bin\sprtsched.dll - ok
11:51:36.0578 3508 [ 031C6782F2D50336FC2C72F8D14A4C13 ] C:\Windows\System32\wbem\wmiprov.dll
11:51:36.0578 3508 C:\Windows\System32\wbem\wmiprov.dll - ok
11:51:36.0578 3508 [ 3E466073C3B1033FF92ADE9031E3D4A2 ] C:\Windows\System32\odbcint.dll
11:51:36.0578 3508 C:\Windows\System32\odbcint.dll - ok
11:51:36.0594 3508 [ E36112A8A6C7F840169A7E92C12F4203 ] C:\Windows\System32\wsock32.dll
11:51:36.0594 3508 C:\Windows\System32\wsock32.dll - ok
11:51:36.0594 3508 [ EFFB8EC0A41B0E74AD1555248F5EB0D6 ] C:\Windows\winsxs\amd64_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.4927_none_88dce9872fb18caf\msvcp80.dll
11:51:36.0594 3508 C:\Windows\winsxs\amd64_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.4927_none_88dce9872fb18caf\msvcp80.dll - ok
11:51:36.0610 3508 [ AF9B7F55AAB8229241E29FB82177DB30 ] C:\Program Files (x86)\Dell Support Center\bin\sprtevent.dll
11:51:36.0610 3508 C:\Program Files (x86)\Dell Support Center\bin\sprtevent.dll - ok11:51:36.0610 3508 [ 9A95D747564222F9DEAA57A09CB6714F ] C:\Program Files (x86)\Dell Support Center\bin\sprtfod.dll
11:51:36.0610 3508 C:\Program Files (x86)\Dell Support Center\bin\sprtfod.dll - ok
11:51:36.0610 3508 [ 8930FD94DC2955D1740E3A14F438AA92 ] C:\Program Files\WIDCOMM\Bluetooth Software\BtBalloon.dll
11:51:36.0610 3508 C:\Program Files\WIDCOMM\Bluetooth Software\BtBalloon.dll - ok
11:51:36.0625 3508 [ 27DF2E313052DB2270972AD7CB15C8DB ] C:\Program Files (x86)\Dell Support Center\bin\sprtsync.dll
11:51:36.0625 3508 C:\Program Files (x86)\Dell Support Center\bin\sprtsync.dll - ok
11:51:36.0625 3508 [ 88FBE86112DB7E4FEB77A4A15C95EBEF ] C:\Windows\SysWOW64\mfc42u.dll
11:51:36.0625 3508 C:\Windows\SysWOW64\mfc42u.dll - ok
11:51:36.0625 3508 [ DD6C73502C5CE772ACA11BF1FE9389DB ] C:\Windows\assembly\NativeImages_v2.0.50727_64\WindowsBase\7cdb4f5d0ff25c672e52a333ee394bb8\WindowsBase.ni.dll
11:51:36.0625 3508 C:\Windows\assembly\NativeImages_v2.0.50727_64\WindowsBase\7cdb4f5d0ff25c672e52a333ee394bb8\WindowsBase.ni.dll - ok
11:51:36.0641 3508 [ 17095F4A4021A702887C86CFA28CEEAA ] C:\Program Files\WIDCOMM\Bluetooth Software\BtwRSupport.dll
11:51:36.0641 3508 C:\Program Files\WIDCOMM\Bluetooth Software\BtwRSupport.dll - ok
11:51:36.0641 3508 [ F3E06B350048CF40DC99342C05278A59 ] C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\en-US\WebcamDell2.crl
11:51:36.0641 3508 C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\en-US\WebcamDell2.crl - ok
11:51:36.0641 3508 [ A395ABC175604A4F863A0ECF9EE794CA ] C:\Program Files (x86)\Dell Support Center\bin\sprtui.dll
11:51:36.0641 3508 C:\Program Files (x86)\Dell Support Center\bin\sprtui.dll - ok
11:51:36.0656 3508 [ B942EC78C708BF51BADDAB5F8E67DBC0 ] C:\Program Files\WIDCOMM\Bluetooth Software\BTKeyInd.dll
11:51:36.0656 3508 C:\Program Files\WIDCOMM\Bluetooth Software\BTKeyInd.dll - ok
11:51:36.0656 3508 [ E7F5A4F781B3E59FD11D97184453EDF0 ] C:\Program Files\WIDCOMM\Bluetooth Software\BtMmHook.dll
11:51:36.0656 3508 C:\Program Files\WIDCOMM\Bluetooth Software\BtMmHook.dll - ok
11:51:36.0672 3508 [ C5B0324DB461559ADD070E632A6919FA ] C:\Windows\SysWOW64\wbem\wbemprox.dll
11:51:36.0672 3508 C:\Windows\SysWOW64\wbem\wbemprox.dll - ok
11:51:36.0672 3508 [ 96F3F676B4D0DF4DA9C4081358C4662F ] C:\Windows\SysWOW64\wbemcomn.dll
11:51:36.0672 3508 C:\Windows\SysWOW64\wbemcomn.dll - ok
11:51:36.0672 3508 [ 5764C381949147EBCFB9A7134E2ABF06 ] C:\Windows\SysWOW64\odbc32.dll
11:51:36.0672 3508 C:\Windows\SysWOW64\odbc32.dll - ok
11:51:36.0688 3508 [ 8898C95862D03D16B2A06DB4DB6BB6B2 ] C:\Windows\SysWOW64\ExplorerFrame.dll
11:51:36.0688 3508 C:\Windows\SysWOW64\ExplorerFrame.dll - ok
11:51:36.0688 3508 [ 36010F875E8AAE70646186EB8D7C78ED ] C:\Program Files (x86)\Absolute Software\Absolute Notifier\Com.Absolute.Common.Agent.dll
11:51:36.0688 3508 C:\Program Files (x86)\Absolute Software\Absolute Notifier\Com.Absolute.Common.Agent.dll - ok
11:51:36.0688 3508 [ 5C5209B04B1942A534259C2AB7BB1EEA ] C:\Program Files (x86)\Dell Support Center\bin\libeay32.dll
11:51:36.0688 3508 C:\Program Files (x86)\Dell Support Center\bin\libeay32.dll - ok
11:51:36.0703 3508 [ DF13A51A5C591887D2EC6AE64CEED0FA ] C:\Windows\SysWOW64\wsock32.dll
11:51:36.0703 3508 C:\Windows\SysWOW64\wsock32.dll - ok
11:51:36.0703 3508 [ 46A6BA9274D075A2C30025C4E96D875A ] C:\Windows\SysWOW64\msvcp60.dll
11:51:36.0703 3508 C:\Windows\SysWOW64\msvcp60.dll - ok
11:51:36.0703 3508 [ 60CC15392FF14DCB9C29C69B3233741B ] C:\Windows\System32\stobject.dll
11:51:36.0703 3508 C:\Windows\System32\stobject.dll - ok
11:51:36.0719 3508 [ 776AE0564F8B1C282E331FD95A1BDC5F ] C:\Windows\SysWOW64\wbem\wbemsvc.dll
11:51:36.0719 3508 C:\Windows\SysWOW64\wbem\wbemsvc.dll - ok
11:51:36.0719 3508 [ 58C3BD4C98675370E3DFF70B8E9566A9 ] C:\Program Files\Quick Heal\Quick Heal Total Security\WSITF.DLL
11:51:36.0719 3508 C:\Program Files\Quick Heal\Quick Heal Total Security\WSITF.DLL - ok
11:51:36.0719 3508 [ ABA457BFC7EC0B5E130B2F1E0F549DFF ] C:\Windows\SysWOW64\odbcint.dll
11:51:36.0719 3508 C:\Windows\SysWOW64\odbcint.dll - ok
11:51:36.0734 3508 [ 95ED57DA07F80EC98D27E64B797E05E9 ] C:\Program Files (x86)\Absolute Software\Absolute Notifier\Agent.dll
11:51:36.0734 3508 C:\Program Files (x86)\Absolute Software\Absolute Notifier\Agent.dll - ok
11:51:36.0734 3508 [ 86B6AC0FD2881B3D20B80F51C7152AE0 ] C:\Windows\System32\batmeter.dll
11:51:36.0734 3508 C:\Windows\System32\batmeter.dll - ok
11:51:36.0750 3508 [ 0B7E85364CB878E2AD531DB7B601A9E5 ] C:\Windows\SysWOW64\NapiNSP.dll
11:51:36.0750 3508 C:\Windows\SysWOW64\NapiNSP.dll - ok
11:51:36.0750 3508 [ 045DB4EAB4FBD23210E85ECC3F464A2E ] C:\Windows\SysWOW64\nlaapi.dll
11:51:36.0750 3508 C:\Windows\SysWOW64\nlaapi.dll - ok
11:51:36.0750 3508 [ 5CF640EDDB1E40A5AB1BB743BCDEC610 ] C:\Windows\SysWOW64\pnrpnsp.dll
11:51:36.0750 3508 C:\Windows\SysWOW64\pnrpnsp.dll - ok
11:51:36.0766 3508 [ 5DF5D8CFD9B9573FA3B2C89D9061A240 ] C:\Windows\SysWOW64\winrnr.dll
11:51:36.0766 3508 C:\Windows\SysWOW64\winrnr.dll - ok
11:51:36.0766 3508 [ 3A2BB97D54A2189C9900A735C0531B59 ] C:\Windows\SysWOW64\wshbth.dll
11:51:36.0766 3508 C:\Windows\SysWOW64\wshbth.dll - ok
11:51:36.0766 3508 [ A151EF45E062C71B0CA34054C40BC6E4 ] C:\Program Files (x86)\Dell Support Center\bin\SupportSoft.Agent.Sprocket.SupportMessage.dll
11:51:36.0766 3508 C:\Program Files (x86)\Dell Support Center\bin\SupportSoft.Agent.Sprocket.SupportMessage.dll - ok
11:51:36.0781 3508 [ 1CEDFE91F527858CACA1B08B04666BC0 ] C:\Windows\SysWOW64\wbem\fastprox.dll
11:51:36.0781 3508 C:\Windows\SysWOW64\wbem\fastprox.dll - ok
11:51:36.0781 3508 [ 6E1F8165C365D35C8E3C045AF0CDD481 ] C:\Windows\SysWOW64\duser.dll
11:51:36.0781 3508 C:\Windows\SysWOW64\duser.dll - ok
11:51:36.0781 3508 [ D5EB3F151B8F28F0A5C8BBB7E13ECD6A ] C:\Windows\assembly\NativeImages_v2.0.50727_64\PresentationCore\ea90a194614680a484a25b6ccc4df754\PresentationCore.ni.dll
11:51:36.0781 3508 C:\Windows\assembly\NativeImages_v2.0.50727_64\PresentationCore\ea90a194614680a484a25b6ccc4df754\PresentationCore.ni.dll - ok
11:51:36.0797 3508 [ E3E811471DE781900FF21C1FD84E941E ] C:\Windows\SysWOW64\ntdsapi.dll
11:51:36.0797 3508 C:\Windows\SysWOW64\ntdsapi.dll - ok
11:51:36.0797 3508 [ EE06B85BC69F18826302348A2AD089E0 ] C:\Windows\SysWOW64\dui70.dll
11:51:36.0797 3508 C:\Windows\SysWOW64\dui70.dll - ok
11:51:36.0797 3508 [ 651F169718CC46C8A9264880C538D5FF ] C:\Windows\System32\prnfldr.dll
11:51:36.0812 3508 C:\Windows\System32\prnfldr.dll - ok
11:51:36.0812 3508 [ 7F0C323FE3DA28AA4AA1BDA3F575707F ] C:\Windows\System32\qmgr.dll
11:51:36.0812 3508 C:\Windows\System32\qmgr.dll - ok
11:51:36.0812 3508 [ 228786AFBD47B78F237938F04D34AA8F ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Web\84fbf353f91385690a3e4e982aa6930e\System.Web.ni.dll
11:51:36.0812 3508 C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Web\84fbf353f91385690a3e4e982aa6930e\System.Web.ni.dll - ok
11:51:36.0828 3508 [ 98947A11E0EB117C8E503DE3EBD3955D ] C:\Program Files (x86)\Dell Support Center\bin\SupportSoft.Agent.Sprocket.dll
11:51:36.0828 3508 C:\Program Files (x86)\Dell Support Center\bin\SupportSoft.Agent.Sprocket.dll - ok
11:51:36.0828 3508 [ 4E75477E8BFA55C6F1F2688FB553F0C5 ] C:\Windows\System32\bitsperf.dll
11:51:36.0828 3508 C:\Windows\System32\bitsperf.dll - ok
11:51:36.0828 3508 [ EE8E76761A4AEE5685D92A770A3B4B1F ] C:\Program Files (x86)\Dell Support Center\gs_agent\dsc.exe
11:51:36.0828 3508 C:\Program Files (x86)\Dell Support Center\gs_agent\dsc.exe - ok
11:51:36.0844 3508 [ D32EE82DA63D39D337D5AEEA2928B1DE ] C:\Windows\System32\consent.exe
11:51:36.0844 3508 C:\Windows\System32\consent.exe - ok
11:51:36.0844 3508 [ D9431DCF90B0253773F51FDEFE7FD42F ] C:\Windows\System32\bitsigd.dll
11:51:36.0844 3508 C:\Windows\System32\bitsigd.dll - ok
11:51:36.0844 3508 [ 913C2E4A03201644FC986EDEB5F8A390 ] C:\Windows\System32\DXP.dll
11:51:36.0844 3508 C:\Windows\System32\DXP.dll - ok
11:51:36.0859 3508 [ 31CCC031D386BE734C1502766491050A ] C:\Program Files\Dell\QuickSet\dadkeyb.dll
11:51:36.0859 3508 C:\Program Files\Dell\QuickSet\dadkeyb.dll - ok
11:51:36.0859 3508 [ C836175870E00ACC546066632E15BD10 ] C:\Windows\ehome\ehSSO.dll
11:51:36.0859 3508 C:\Windows\ehome\ehSSO.dll - ok
11:51:36.0859 3508 [ 2BC7C9FD0A9F2C9AFC373F3AD1EE3891 ] C:\Windows\System32\Syncreg.dll
11:51:36.0859 3508 C:\Windows\System32\Syncreg.dll - ok
11:51:36.0875 3508 [ A065296FD966048B3F5394360E983768 ] C:\Program Files\Quick Heal\Quick Heal Total Security\OPSUIIPC.DLL
11:51:36.0875 3508 C:\Program Files\Quick Heal\Quick Heal Total Security\OPSUIIPC.DLL - ok
11:51:36.0875 3508 [ 9E29BC11A70165635CC10D42E64CFEE1 ] C:\Windows\System32\upnp.dll
11:51:36.0875 3508 C:\Windows\System32\upnp.dll - ok
11:51:36.0890 3508 [ E7368F0A8D19445EAF5C5D0DBB8B8DAB ] C:\Windows\System32\AltTab.dll
11:51:36.0890 3508 C:\Windows\System32\AltTab.dll - ok
11:51:36.0890 3508 [ 66920354B984D4A3848A84B4E66745EA ] C:\Windows\System32\netshell.dll
11:51:36.0890 3508 C:\Windows\System32\netshell.dll - ok
11:51:36.0890 3508 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] C:\Windows\System32\ssdpsrv.dll
11:51:36.0890 3508 C:\Windows\System32\ssdpsrv.dll - ok
11:51:36.0906 3508 [ FD4F95ABDE5603478C929B6CB0BDCFFF ] C:\Windows\System32\pnidui.dll
11:51:36.0906 3508 C:\Windows\System32\pnidui.dll - ok
11:51:36.0906 3508 [ 2C64AF297F12582BD95D7D94C18E464C ] C:\Windows\System32\esent.dll
11:51:36.0906 3508 C:\Windows\System32\esent.dll - ok
11:51:36.0906 3508 [ AC5DF873913B00E554D8F553459BC431 ] C:\Windows\System32\qmgrprxy.dll
11:51:36.0906 3508 C:\Windows\System32\qmgrprxy.dll - ok
11:51:36.0906 3508 [ BD03C64C4B1F34D1F330BF6C4AC8113D ] C:\Windows\System32\QUTIL.DLL
11:51:36.0906 3508 C:\Windows\System32\QUTIL.DLL - ok
11:51:36.0922 3508 [ AB01C36BCC34CCFE5B0BB5FFB2605135 ] C:\Windows\System32\WPDShServiceObj.dll
11:51:36.0922 3508 C:\Windows\System32\WPDShServiceObj.dll - ok
11:51:36.0922 3508 [ EE24C42561D40F7AD7C2A7A460287090 ] C:\Windows\System32\wbem\cimwin32.dll
11:51:36.0922 3508 C:\Windows\System32\wbem\cimwin32.dll - ok
11:51:36.0937 3508 [ 3819AD4329303EAC88480CA16A650735 ] C:\Windows\System32\UIAnimation.dll
11:51:36.0937 3508 C:\Windows\System32\UIAnimation.dll - ok
11:51:36.0937 3508 [ 8BC00C736E67A75D936E5B440917359B ] C:\Windows\System32\ActionCenter.dll
11:51:36.0937 3508 C:\Windows\System32\ActionCenter.dll - ok
11:51:36.0937 3508 [ 85B45B4B285B159ACDB355FC8C1E8925 ] C:\Windows\SysWOW64\qmgrprxy.dll
11:51:36.0937 3508 C:\Windows\SysWOW64\qmgrprxy.dll - ok
11:51:36.0953 3508 [ 4F3CD1C59EA71401E155C432BCECE180 ] C:\Windows\System32\PortableDeviceTypes.dll
11:51:36.0953 3508 C:\Windows\System32\PortableDeviceTypes.dll - ok
11:51:36.0953 3508 [ 2C5B8A680A90E96B1EC0D6DA0505E685 ] C:\Windows\System32\srchadmin.dll
11:51:36.0953 3508 C:\Windows\System32\srchadmin.dll - ok
11:51:36.0953 3508 [ 8CD2A697B18069A62A035E756E51E934 ] C:\Windows\System32\SearchIndexer.exe
11:51:36.0953 3508 C:\Windows\System32\SearchIndexer.exe - ok
11:51:36.0968 3508 [ 5D89D063A4CB036C258685C8E057E768 ] C:\Windows\System32\framedynos.dll
11:51:36.0968 3508 C:\Windows\System32\framedynos.dll - ok
11:51:36.0968 3508 [ 220159496484D34009DE71CA1A68E0D4 ] C:\Windows\System32\wbem\NCProv.dll
11:51:36.0968 3508 C:\Windows\System32\wbem\NCProv.dll - ok
11:51:36.0968 3508 [ CAF01663BA1865FBBB1958D060B5D514 ] C:\Program Files\WIDCOMM\Bluetooth Software\BTNCopy.dll
11:51:36.0968 3508 C:\Program Files\WIDCOMM\Bluetooth Software\BTNCopy.dll - ok
11:51:36.0984 3508 [ C373124A5CA723B53C0948B6343E4C87 ] C:\Windows\System32\igfxext.exe
11:51:36.0984 3508 C:\Windows\System32\igfxext.exe - ok
11:51:36.0984 3508 [ 76DC9F4FE66BC3867615F142766B4C50 ] C:\Windows\System32\wmi.dll
11:51:36.0984 3508 C:\Windows\System32\wmi.dll - ok
11:51:36.0984 3508 [ 14C6A59904D397C6D85DADA9ACBB6FAB ] C:\Windows\System32\browcli.dll
11:51:36.0984 3508 C:\Windows\System32\browcli.dll - ok
11:51:37.0000 3508 [ 28142AAF1565736CE0E5D7EFCE3CC0F8 ] C:\Windows\System32\schedcli.dll
11:51:37.0000 3508 C:\Windows\System32\schedcli.dll - ok
11:51:37.0000 3508 [ 5BB8C06EB5EA4BA22EE8A678F2D79B25 ] C:\Windows\SysWOW64\devenum.dll
11:51:37.0000 3508 C:\Windows\SysWOW64\devenum.dll - ok
11:51:37.0015 3508 [ E24FE90E9DE8D8AE70E59F7B01675DEF ] C:\Windows\SysWOW64\avicap32.dll
11:51:37.0015 3508 C:\Windows\SysWOW64\avicap32.dll - ok
11:51:37.0015 3508 [ 2DEEB96A0957BD058753FF250E85EF49 ] C:\Windows\SysWOW64\msvfw32.dll
11:51:37.0015 3508 C:\Windows\SysWOW64\msvfw32.dll - ok
11:51:37.0015 3508 [ E32B288B38C3182D9F890F45B067A5DB ] C:\Windows\SysWOW64\vfwwdm32.dll
11:51:37.0015 3508 C:\Windows\SysWOW64\vfwwdm32.dll - ok
11:51:37.0031 3508 [ 14A1301778D69A64A0E79C4EF97BA42C ] C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\CtPinMgr.dll
11:51:37.0031 3508 C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\CtPinMgr.dll - ok
11:51:37.0031 3508 [ 2763D61D132BB47028BA7A6D67E54998 ] C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\CTPControl.dll
11:51:37.0031 3508 C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\CTPControl.dll - ok
11:51:37.0031 3508 [ 8BF179E9513F70EA95DE2D539650EAF0 ] C:\Windows\SysWOW64\ksproxy.ax
11:51:37.0031 3508 C:\Windows\SysWOW64\ksproxy.ax - ok
11:51:37.0046 3508 [ 9C67F6BBDA3881CFD02095160CF91576 ] C:\Windows\SysWOW64\ksuser.dll
11:51:37.0046 3508 C:\Windows\SysWOW64\ksuser.dll - ok
11:51:37.0046 3508 [ E424B3EF666B184CEE0B6871AAA8C9F6 ] C:\Windows\System32\msimg32.dll
11:51:37.0046 3508 C:\Windows\System32\msimg32.dll - ok
11:51:37.0046 3508 [ F8F532C7509C3238C9827BAE861A48D7 ] C:\Windows\System32\tquery.dll
11:51:37.0046 3508 C:\Windows\System32\tquery.dll - ok
11:51:37.0062 3508 [ C746F3BF98E92FB137B5BD2B8B5925BD ] C:\Windows\System32\FXSST.dll
11:51:37.0062 3508 C:\Windows\System32\FXSST.dll - ok
11:51:37.0062 3508 [ 34E6D8C67E7FD7C917BECFECA326B168 ] C:\Windows\System32\FXSAPI.dll
11:51:37.0062 3508 C:\Windows\System32\FXSAPI.dll - ok
11:51:37.0062 3508 [ 70F03B29A62194E69911952B3640D9D2 ] C:\Windows\SysWOW64\msdmo.dll
11:51:37.0062 3508 C:\Windows\SysWOW64\msdmo.dll - ok
11:51:37.0078 3508 [ 0C35A42D35B5655A503EE5EC05E28881 ] C:\Windows\System32\igfxexps.dll
11:51:37.0078 3508 C:\Windows\System32\igfxexps.dll - ok
11:51:37.0078 3508 [ 4DDACA8A66B95ABA02812FF3C13DE198 ] C:\Windows\SysWOW64\vidcap.ax
11:51:37.0078 3508 C:\Windows\SysWOW64\vidcap.ax - ok
11:51:37.0093 3508 [ 3F41165F3F56547D0BACA826C2651A77 ] C:\Windows\SysWOW64\Kswdmcap.ax
11:51:37.0093 3508 C:\Windows\SysWOW64\Kswdmcap.ax - ok
11:51:37.0093 3508 [ C8E8B8239FCF17BEA10E751BE5854631 ] C:\Windows\System32\FXSRESM.dll
11:51:37.0093 3508 C:\Windows\System32\FXSRESM.dll - ok
11:51:37.0093 3508 [ 74C76BB54B26CE50C4BC755F92687C63 ] C:\Windows\SysWOW64\mfc42.dll
11:51:37.0093 3508 C:\Windows\SysWOW64\mfc42.dll - ok
11:51:37.0109 3508 [ D607B2F1BEE3992AA6C2C92C0A2F0855 ] C:\Windows\System32\FXSSVC.exe
11:51:37.0109 3508 C:\Windows\System32\FXSSVC.exe - ok
11:51:37.0109 3508 [ 6A6B1DF229DB655EFDF83F936710D84C ] C:\Windows\assembly\NativeImages_v2.0.50727_64\PresentationFramewo#\916af5e5c39e1226e0b87a80e3a979f2\PresentationFramework.ni.dll
11:51:37.0109 3508 C:\Windows\assembly\NativeImages_v2.0.50727_64\PresentationFramewo#\916af5e5c39e1226e0b87a80e3a979f2\PresentationFramework.ni.dll - ok
11:51:37.0109 3508 [ BA4A19DE93FBDFE6DB5F0EBC99732A06 ] C:\Windows\System32\mssrch.dll
11:51:37.0109 3508 C:\Windows\System32\mssrch.dll - ok
11:51:37.0124 3508 [ 847D3AE376C0817161A14A82C8922A9E ] C:\Windows\System32\netman.dll
11:51:37.0124 3508 C:\Windows\System32\netman.dll - ok
11:51:37.0124 3508 [ 3121A79D13A61562BE9CC902CD46B542 ] C:\Windows\System32\msidle.dll
11:51:37.0124 3508 C:\Windows\System32\msidle.dll - ok
11:51:37.0124 3508 [ ACE1BB07E0377E37A2C514CD2EC119B1 ] C:\Windows\System32\mssprxy.dll
11:51:37.0124 3508 C:\Windows\System32\mssprxy.dll - ok
11:51:37.0140 3508 [ D2155709E336C3BC15729EB87FEC6064 ] C:\Windows\System32\rasdlg.dll
11:51:37.0140 3508 C:\Windows\System32\rasdlg.dll - ok
11:51:37.0140 3508 [ BB68579E181956E37EB11F9083C01CF3 ] C:\Windows\System32\dot3api.dll
11:51:37.0140 3508 C:\Windows\System32\dot3api.dll - ok
11:51:37.0156 3508 [ E4FCA0F99A41E460C84016DEFD31E6EF ] C:\Windows\System32\wlanhlp.dll
11:51:37.0156 3508 C:\Windows\System32\wlanhlp.dll - ok
11:51:37.0156 3508 [ 884264AC597B690C5707C89723BB8E7B ] C:\Windows\System32\tapisrv.dll
11:51:37.0156 3508 C:\Windows\System32\tapisrv.dll - ok
11:51:37.0156 3508 [ 4509387963DF66A6401752A0C631F6E8 ] C:\Windows\System32\httpapi.dll
11:51:37.0156 3508 C:\Windows\System32\httpapi.dll - ok
11:51:37.0171 3508 [ 47394ED3D16D053F5906EFE5AB51CC83 ] C:\Windows\System32\rasmans.dll
11:51:37.0171 3508 C:\Windows\System32\rasmans.dll - ok
11:51:37.0171 3508 [ 44C96B48112EB24AE7764EBF1C527000 ] C:\Windows\System32\rastapi.dll
11:51:37.0171 3508 C:\Windows\System32\rastapi.dll - ok
11:51:37.0171 3508 [ C9FB9038B15036CA28CF0B4BE2BED9BD ] C:\Windows\System32\en-US\tquery.dll.mui
11:51:37.0171 3508 C:\Windows\System32\en-US\tquery.dll.mui - ok
11:51:37.0171 3508 [ EE25B470C39126B08055A7CB71A67A58 ] C:\Windows\System32\unimdm.tsp
11:51:37.0171 3508 C:\Windows\System32\unimdm.tsp - ok
11:51:37.0187 3508 [ 94B7DF336815B47236724019FAB24B7C ] C:\Windows\System32\uniplat.dll
11:51:37.0187 3508 C:\Windows\System32\uniplat.dll - ok
11:51:37.0187 3508 [ 41326DD08ACC0CDC5F8177AF96C066E8 ] C:\Windows\System32\kmddsp.tsp
11:51:37.0187 3508 C:\Windows\System32\kmddsp.tsp - ok
11:51:37.0202 3508 [ 1D6BC2769DA66C1145F4DA5A65F52E61 ] C:\Windows\System32\ndptsp.tsp
11:51:37.0202 3508 C:\Windows\System32\ndptsp.tsp - ok
11:51:37.0202 3508 [ 7C1BAE7D23D4874FEE256A2B9C00E019 ] C:\Windows\System32\hidphone.tsp
11:51:37.0202 3508 C:\Windows\System32\hidphone.tsp - ok
11:51:37.0202 3508 [ DF627325D25191236BABA895D5A51EF6 ] C:\Windows\System32\rasppp.dll
11:51:37.0202 3508 C:\Windows\System32\rasppp.dll - ok
11:51:37.0218 3508 [ 1482CC99F7E2DA2FECF59C6A774FED0A ] C:\Windows\System32\raschap.dll
11:51:37.0218 3508 C:\Windows\System32\raschap.dll - ok
11:51:37.0218 3508 [ E3DA135D4DD0D34512D4FEBCB6ED760E ] C:\Windows\System32\vpnike.dll
11:51:37.0218 3508 C:\Windows\System32\vpnike.dll - ok
11:51:37.0218 3508 [ 5DA219F57A9076FB6FBD3C9C3713A672 ] C:\Windows\System32\WWanAPI.dll
11:51:37.0218 3508 C:\Windows\System32\WWanAPI.dll - ok
11:51:37.0234 3508 [ 62C7AACC746C9723468A8F2169ED3E85 ] C:\Windows\System32\wwapi.dll
11:51:37.0234 3508 C:\Windows\System32\wwapi.dll - ok
11:51:37.0234 3508 [ 0B9F7D42D745038437FAE70D97F9AD5A ] C:\Windows\System32\QAGENT.DLL
11:51:37.0234 3508 C:\Windows\System32\QAGENT.DLL - ok
11:51:37.0234 3508 [ 81E9339611B22ACE2E2D7B42F76C0F34 ] C:\Windows\assembly\GAC_64\PresentationCore\3.0.0.0__31bf3856ad364e35\PresentationCore.dll
11:51:37.0234 3508 C:\Windows\assembly\GAC_64\PresentationCore\3.0.0.0__31bf3856ad364e35\PresentationCore.dll - ok
11:51:37.0249 3508 [ 27AB587E5F0696590EF8B83A52952B7B ] C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\wpfgfx_v0300.dll
11:51:37.0249 3508 C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\wpfgfx_v0300.dll - ok
11:51:37.0249 3508 [ D64D99EC088B54FFE8EE67A480386C20 ] C:\Windows\Microsoft.NET\Framework64\v2.0.50727\Culture.dll
11:51:37.0249 3508 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\Culture.dll - ok
11:51:37.0249 3508 [ 0EC4190B22A0E37010CC69371432FC0C ] C:\Windows\System32\gfxSrvc.dll
11:51:37.0249 3508 C:\Windows\System32\gfxSrvc.dll - ok
11:51:37.0265 3508 [ 58957A04853F47B791D68B960258043C ] C:\Windows\System32\IGFXDEVLib.dll
11:51:37.0265 3508 C:\Windows\System32\IGFXDEVLib.dll - ok
11:51:37.0265 3508 [ 318285F1590C4484E3253BA2B189D2DF ] C:\Windows\System32\d3d9.dll
11:51:37.0265 3508 C:\Windows\System32\d3d9.dll - ok
11:51:37.0280 3508 [ 3044D07ABDF4BBEA27E2EE7B1E0C0C65 ] C:\Windows\System32\d3d8thk.dll
11:51:37.0280 3508 C:\Windows\System32\d3d8thk.dll - ok
11:51:37.0280 3508 [ 9C253164E7016B42591F08BEB90FB494 ] C:\Windows\System32\igdumd64.dll
11:51:37.0280 3508 C:\Windows\System32\igdumd64.dll - ok
11:51:37.0280 3508 [ A0C69A8661CCEB20DB60A4FA35A2FBE4 ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Xml\c40cbbdf7af03daedb16f4d9ef1b6f5f\System.Xml.ni.dll
11:51:37.0280 3508 C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Xml\c40cbbdf7af03daedb16f4d9ef1b6f5f\System.Xml.ni.dll - ok
11:51:37.0296 3508 [ D7CEAEDD5F75D2C8A2E80887D7C114CE ] C:\Windows\System32\webcheck.dll
11:51:37.0296 3508 C:\Windows\System32\webcheck.dll - ok
11:51:37.0296 3508 [ 8494E126F0B10180F3293AF861CE1F7A ] C:\Windows\System32\mlang.dll
11:51:37.0296 3508 C:\Windows\System32\mlang.dll - ok
11:51:37.0296 3508 [ E6F66F31422C44EDC00D9C9329E7DF60 ] C:\Windows\System32\SyncCenter.dll
11:51:37.0296 3508 C:\Windows\System32\SyncCenter.dll - ok
11:51:37.0312 3508 [ 8541447303958819ADB46B557ADD3750 ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Configuration\dcadcfb938ccdd3f70859fdcdd329ec5\System.Configuration.ni.dll
11:51:37.0312 3508 C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Configuration\dcadcfb938ccdd3f70859fdcdd329ec5\System.Configuration.ni.dll - ok
11:51:37.0312 3508 [ 80C834BA6B844C4B717F2465C4E8EC0F ] C:\Windows\System32\WindowsCodecsExt.dll
11:51:37.0312 3508 C:\Windows\System32\WindowsCodecsExt.dll - ok
11:51:37.0312 3508 [ 8B886A0AC14EAA8599142887991A5A2E ] C:\Windows\System32\imapi2.dll
11:51:37.0312 3508 C:\Windows\System32\imapi2.dll - ok
11:51:37.0327 3508 [ 1D296F090ED401967B30BD2B970DC306 ] C:\Windows\System32\icm32.dll
11:51:37.0327 3508 C:\Windows\System32\icm32.dll - ok
11:51:37.0327 3508 [ F0AAB2A76A7AF04C70A818E96BAF3E64 ] C:\Windows\System32\hgcpl.dll
11:51:37.0327 3508 C:\Windows\System32\hgcpl.dll - ok
11:51:37.0327 3508 [ 9FD42184CC2CE481207D6AF62D08828C ] C:\Windows\assembly\NativeImages_v2.0.50727_64\WindowsFormsIntegra#\0599e722d086c85c54a6dc71de5781f5\WindowsFormsIntegration.ni.dll
11:51:37.0327 3508 C:\Windows\assembly\NativeImages_v2.0.50727_64\WindowsFormsIntegra#\0599e722d086c85c54a6dc71de5781f5\WindowsFormsIntegration.ni.dll - ok
11:51:37.0343 3508 [ 9E3D77B249DBB8C116BD060992C06D01 ] C:\Windows\assembly\NativeImages_v2.0.50727_64\PresentationFramewo#\5a95213214431ffa96c6e4dbfa36345e\PresentationFramework.Aero.ni.dll
11:51:37.0343 3508 C:\Windows\assembly\NativeImages_v2.0.50727_64\PresentationFramewo#\5a95213214431ffa96c6e4dbfa36345e\PresentationFramework.Aero.ni.dll - ok
11:51:37.0343 3508 [ EFEA483CB72A27915FA97AF700FDA05C ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Drawing\6ea40f2da0e2321428a7bdd387e475fd\System.Drawing.ni.dll
11:51:37.0343 3508 C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Drawing\6ea40f2da0e2321428a7bdd387e475fd\System.Drawing.ni.dll - ok
11:51:37.0358 3508 [ ACCBA604D34842844133A731F8045B32 ] C:\Windows\SysWOW64\sxs.dll
11:51:37.0358 3508 C:\Windows\SysWOW64\sxs.dll - ok
11:51:37.0358 3508 [ BB197F54A8F69EEA8356B7F70E6D3A20 ] C:\Windows\SysWOW64\mshtml.dll
11:51:37.0358 3508 C:\Windows\SysWOW64\mshtml.dll - ok
11:51:37.0358 3508 [ 5225207BDE8C090CE92A18C61180650C ] C:\Windows\System32\vdsldr.exe
11:51:37.0358 3508 C:\Windows\System32\vdsldr.exe - ok
11:51:37.0374 3508 [ 40E6719D69AAB9B0841F92AEC6E75DD1 ] C:\Windows\System32\vdsutil.dll
11:51:37.0374 3508 C:\Windows\System32\vdsutil.dll - ok
11:51:37.0374 3508 [ 94082E1E52D8BC63F4D6F57E8CD4E4F9 ] C:\Windows\System32\vds_ps.dll
11:51:37.0374 3508 C:\Windows\System32\vds_ps.dll - ok
11:51:37.0374 3508 [ F509B44D94DB9C832CA26297BE0CC04D ] C:\Windows\SysWOW64\vds_ps.dll
11:51:37.0374 3508 C:\Windows\SysWOW64\vds_ps.dll - ok
11:51:37.0390 3508 [ 44D73E0BBC1D3C8981304BA15135C2F2 ] C:\Windows\System32\vds.exe
11:51:37.0390 3508 C:\Windows\System32\vds.exe - ok
11:51:37.0390 3508 [ 020DDBA420E020F84BDEDCC8C65B3A56 ] C:\Windows\System32\osuninst.dll
11:51:37.0390 3508 C:\Windows\System32\osuninst.dll - ok
11:51:37.0390 3508 [ 3D1AE0543DD9FBA55409BF0A5103CA3D ] C:\Windows\System32\uexfat.dll
11:51:37.0390 3508 C:\Windows\System32\uexfat.dll - ok
11:51:37.0405 3508 [ EE11A3F03D8B801B721BC6D0089BDD9C ] C:\Windows\System32\ulib.dll
11:51:37.0405 3508 C:\Windows\System32\ulib.dll - ok
11:51:37.0405 3508 [ 1751E9EB7974C728F7445C10C3E175AD ] C:\Windows\System32\ifsutil.dll
11:51:37.0405 3508 C:\Windows\System32\ifsutil.dll - ok
11:51:37.0405 3508 [ C3804346CDF9A8744084EEBA6BA739AF ] C:\Windows\System32\uudf.dll
11:51:37.0405 3508 C:\Windows\System32\uudf.dll - ok
11:51:37.0421 3508 [ C26A17C8F15495DAE02907FC4E449977 ] C:\Windows\System32\untfs.dll
11:51:37.0421 3508 C:\Windows\System32\untfs.dll - ok
11:51:37.0421 3508 [ CC37D9A25FF8D8CF12FC2F512C100F45 ] C:\Windows\System32\ufat.dll
11:51:37.0421 3508 C:\Windows\System32\ufat.dll - ok
11:51:37.0436 3508 [ 491DA8248209835532DAABF18B0215DA ] C:\Windows\System32\fmifs.dll
11:51:37.0436 3508 C:\Windows\System32\fmifs.dll - ok
11:51:37.0436 3508 [ 1D1EAA16D193C6A2D45981ED3914D22A ] C:\Windows\SysWOW64\msimtf.dll
11:51:37.0436 3508 C:\Windows\SysWOW64\msimtf.dll - ok
11:51:37.0436 3508 [ 35AAE2E841AA1A949775168E119482C9 ] C:\Windows\SysWOW64\msls31.dll
11:51:37.0436 3508 C:\Windows\SysWOW64\msls31.dll - ok
11:51:37.0436 3508 [ 394373142655ACCF49D64AAD466C86FF ] C:\Windows\SysWOW64\jscript9.dll
11:51:37.0436 3508 C:\Windows\SysWOW64\jscript9.dll - ok
11:51:37.0452 3508 [ 86F8145F5FD182F8C36337A351889F92 ] C:\Windows\System32\vdsdyn.dll
11:51:37.0452 3508 C:\Windows\System32\vdsdyn.dll - ok
11:51:37.0452 3508 [ D6A7F54D035FAAA0B13D38CF17789144 ] C:\Windows\System32\vdsbas.dll
11:51:37.0452 3508 C:\Windows\System32\vdsbas.dll - ok
11:51:37.0468 3508 [ 9FDF43178419CB0D4B50373C50396BDF ] C:\Windows\SysWOW64\d2d1.dll
11:51:37.0468 3508 C:\Windows\SysWOW64\d2d1.dll - ok
11:51:37.0468 3508 [ D2D154D1842219A0620459C3C34EFD9D ] C:\Windows\System32\vdsvd.dll
11:51:37.0468 3508 C:\Windows\System32\vdsvd.dll - ok
11:51:37.0468 3508 [ 9F9B0AD8804ECFF8CBD279992DCF7210 ] C:\Windows\SysWOW64\DWrite.dll
11:51:37.0468 3508 C:\Windows\SysWOW64\DWrite.dll - ok
11:51:37.0483 3508 [ BBB44E9207E7F5A8D931AA6C74962C77 ] C:\Windows\System32\virtdisk.dll
11:51:37.0483 3508 C:\Windows\System32\virtdisk.dll - ok
11:51:37.0483 3508 [ 89A680191F2DD811BBD435D12B0D54E4 ] C:\Windows\System32\hbaapi.dll
11:51:37.0483 3508 C:\Windows\System32\hbaapi.dll - ok
11:51:37.0483 3508 [ E11E3F3BBEFDC5C0C160BE13B65E25E4 ] C:\Windows\System32\iscsidsc.dll
11:51:37.0483 3508 C:\Windows\System32\iscsidsc.dll - ok
11:51:37.0499 3508 [ CB5E4B9C319E3C6BB363EB7E58A4A051 ] C:\Windows\System32\FntCache.dll
11:51:37.0499 3508 C:\Windows\System32\FntCache.dll - ok
11:51:37.0499 3508 [ D152B2BDCFA6A220493582EC1F2B8416 ] C:\Windows\System32\iscsium.dll
11:51:37.0499 3508 C:\Windows\System32\iscsium.dll - ok
11:51:37.0499 3508 [ DD76301614636306414EFA94A9AC5A03 ] C:\Windows\SysWOW64\dxgi.dll
11:51:37.0499 3508 C:\Windows\SysWOW64\dxgi.dll - ok
11:51:37.0514 3508 [ AD8F6914F7A9AC28047389BE7AF56EBF ] C:\Windows\SysWOW64\d3d10_1.dll
11:51:37.0514 3508 C:\Windows\SysWOW64\d3d10_1.dll - ok
11:51:37.0514 3508 [ 9103E020906FC7A166F380EF2D2516B2 ] C:\Windows\SysWOW64\d3d10_1core.dll
11:51:37.0514 3508 C:\Windows\SysWOW64\d3d10_1core.dll - ok
11:51:37.0514 3508 [ BEADABADC909D2C7F59CD3DEA77EE67E ] C:\Windows\SysWOW64\d3d10warp.dll
11:51:37.0514 3508 C:\Windows\SysWOW64\d3d10warp.dll - ok
11:51:37.0530 3508 [ C5A75EB48E2344ABDC162BDA79E16841 ] C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
11:51:37.0530 3508 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe - ok
11:51:37.0530 3508 [ E5F7C30EDF0892667933BE879F067D67 ] C:\Windows\SysWOW64\msvcr100_clr0400.dll
11:51:37.0530 3508 C:\Windows\SysWOW64\msvcr100_clr0400.dll - ok
11:51:37.0530 3508 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
11:51:37.0530 3508 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe - ok
11:51:37.0546 3508 [ CB21CD39637AC13F3455454B2F648257 ] C:\Windows\System32\msvcr100_clr0400.dll
11:51:37.0546 3508 C:\Windows\System32\msvcr100_clr0400.dll - ok
11:51:37.0546 3508 [ E4024CCF225A936207294DE50925D4F6 ] C:\Program Files (x86)\Google\Update\1.3.21.123\goopdateres_en.dll
11:51:37.0546 3508 C:\Program Files (x86)\Google\Update\1.3.21.123\goopdateres_en.dll - ok
11:51:37.0546 3508 ============================================================
11:51:37.0546 3508 Scan finished
11:51:37.0546 3508 ============================================================
11:51:37.0561 3896 Detected object count: 8
11:51:37.0561 3896 Actual detected object count: 8
11:51:54.0753 3896 Change Modem Device Service ( UnsignedFile.Multi.Generic ) - skipped by user
11:51:54.0753 3896 Change Modem Device Service ( UnsignedFile.Multi.Generic ) - User select action: Skip
11:51:54.0753 3896 Creative ALchemy AL6 Licensing Service ( UnsignedFile.Multi.Generic ) - skipped by user
11:51:54.0753 3896 Creative ALchemy AL6 Licensing Service ( UnsignedFile.Multi.Generic ) - User select action: Skip
11:51:54.0768 3896 Creative Audio Engine Licensing Service ( UnsignedFile.Multi.Generic ) - skipped by user
11:51:54.0768 3896 Creative Audio Engine Licensing Service ( UnsignedFile.Multi.Generic ) - User select action: Skip
11:51:54.0768 3896 CTAudSvcService ( UnsignedFile.Multi.Generic ) - skipped by user
11:51:54.0768 3896 CTAudSvcService ( UnsignedFile.Multi.Generic ) - User select action: Skip
11:51:54.0768 3896 DockLoginService ( UnsignedFile.Multi.Generic ) - skipped by user
11:51:54.0768 3896 DockLoginService ( UnsignedFile.Multi.Generic ) - User select action: Skip
11:51:54.0768 3896 FLEXnet Licensing Service ( UnsignedFile.Multi.Generic ) - skipped by user
11:51:54.0768 3896 FLEXnet Licensing Service ( UnsignedFile.Multi.Generic ) - User select action: Skip
11:51:54.0768 3896 Sound Blaster X-Fi MB Licensing Service ( UnsignedFile.Multi.Generic ) - skipped by user
11:51:54.0768 3896 Sound Blaster X-Fi MB Licensing Service ( UnsignedFile.Multi.Generic ) - User select action: Skip
11:51:54.0924 3896 \Device\Harddisk0\DR0\TDLFS\cmd.dll - copied to quarantine
11:51:54.0940 3896 \Device\Harddisk0\DR0\TDLFS\cmd64.dll - copied to quarantine
11:51:54.0971 3896 \Device\Harddisk0\DR0\TDLFS\sub.dll - copied to quarantine
11:51:55.0002 3896 \Device\Harddisk0\DR0\TDLFS\subx.dll - copied to quarantine
11:51:55.0127 3896 \Device\Harddisk0\DR0\TDLFS\drv32 - copied to quarantine
11:51:55.0189 3896 \Device\Harddisk0\DR0\TDLFS\drv64 - copied to quarantine
11:51:55.0189 3896 \Device\Harddisk0\DR0\TDLFS\servers.dat - copied to quarantine
11:51:55.0205 3896 \Device\Harddisk0\DR0\TDLFS\config.ini - copied to quarantine
11:51:55.0205 3896 \Device\Harddisk0\DR0\TDLFS\ldr16 - copied to quarantine
11:51:55.0252 3896 \Device\Harddisk0\DR0\TDLFS\ldr32 - copied to quarantine
11:51:55.0267 3896 \Device\Harddisk0\DR0\TDLFS\ldr64 - copied to quarantine
11:51:55.0283 3896 \Device\Harddisk0\DR0\TDLFS\s - copied to quarantine
11:51:55.0299 3896 \Device\Harddisk0\DR0\TDLFS\ldrm - copied to quarantine
11:51:55.0314 3896 \Device\Harddisk0\DR0\TDLFS\u - copied to quarantine
11:51:55.0408 3896 \Device\Harddisk0\DR0\TDLFS\ph.dll - copied to quarantine
11:51:55.0408 3896 \Device\Harddisk0\DR0\TDLFS - deleted
11:51:55.0408 3896 \Device\Harddisk0\DR0 ( TDSS File System ) - User select action: Delete
11:52:09.0814 1016 Deinitialize success

#10 B-boy/StyLe/

B-boy/StyLe/

    Bleeping Freestyler


  • Malware Response Team
  • 6,270 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Bulgaria
  • Local time:02:25 AM

Posted 23 September 2012 - 06:22 PM

Hi,


We need to run an OTL Fix



  • Please reopen Posted Image on your desktop.
  • Copy and Paste the following code into the Posted Image textbox. Do not include the word "Code"

    :OTL
    O3:64bit: - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found.
    O3 - HKLM\..\Toolbar: (no name) - - No CLSID value found.
    O3 - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found.
    O3 - HKU\S-1-5-21-2590862872-1370631997-422254541-1000\..\Toolbar\WebBrowser: (no name) - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - No CLSID value found.
    [2012/09/16 10:46:09 | 000,020,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\svchost.exe
    [2012/01/02 03:06:31 | 000,002,828 | -HS- | C] () -- C:\Users\Dipanshu\AppData\Local\sqg56hj70vr8cyswsocq611864y4eqp516v88pljkc7
    [2012/01/02 03:06:31 | 000,002,828 | -HS- | C] () -- C:\ProgramData\sqg56hj70vr8cyswsocq611864y4eqp516v88pljkc7
    [2012/01/02 03:06:54 | 000,000,000 | ---D | M] -- C:\Users\Dipanshu\AppData\Roaming\B8457
    :files
    dir /s /a "C:\ProgramData\mN01300GbElO01300" /c
    :reg
    [HKEY_CLASSES_ROOT\CLSID\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InprocServer32]
    ""="%systemroot%\system32\wbem\wbemess.dll"
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InprocServer32]
    ""="%systemroot%\system32\wbem\wbemess.dll"
    :commands
    [emptytemp]

  • Push Posted Image
  • OTL may ask to reboot the machine. Please do so if asked.
  • Click Posted Image.
  • A report will open. Copy and Paste that report in your next reply.
  • If a report is not shown please navigate to the C:\_OTL\MovedFiles folder, and open the newest .log file present.
  • Copy/paste the content of the log back here in your next post.


Also please rerun TDSSKiller and attach the log to your next reply.


Regards,
Georgi

qnfKk.jpg
My help is always free of charge. If you appreciate my work, you can buy me a beer or two by clicking here - paypal.gif


#11 dappy

dappy
  • Topic Starter

  • Members
  • 39 posts
  • OFFLINE
  •  
  • Local time:03:25 PM

Posted 23 September 2012 - 07:06 PM

- Ran OTL with given script and below is the related log file content

***************
All processes killed
========== OTL ==========
64bit-Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\Locked deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\ deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\Locked deleted successfully.
Registry value HKEY_USERS\S-1-5-21-2590862872-1370631997-422254541-1000\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{21FA44EF-376D-4D53-9B0F-8A89D3229068} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{21FA44EF-376D-4D53-9B0F-8A89D3229068}\ not found.
C:\Windows\svchost.exe moved successfully.
C:\Users\Dipanshu\AppData\Local\sqg56hj70vr8cyswsocq611864y4eqp516v88pljkc7 moved successfully.
C:\ProgramData\sqg56hj70vr8cyswsocq611864y4eqp516v88pljkc7 moved successfully.
C:\Users\Dipanshu\AppData\Roaming\B8457 folder moved successfully.
Folder EY_CLASSES_ROOT\CLSID\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InprocServer32]\ not found.
Folder EY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InprocServer32]\ not found.
File ptytemp] not found.

OTL by OldTimer - Version 3.2.66.0 log created on 09232012_174914

Files\Folders moved on Reboot...

PendingFileRenameOperations files...

Registry entries deleted on Reboot...

***************


- Ran TDSSKiller file and related log file content is give below (in 2/3 parts)

TDSSKiller Log Part 1:-

*********
17:57:49.0278 1620 TDSS rootkit removing tool 2.8.10.0 Sep 17 2012 19:23:24
17:57:49.0856 1620 ============================================================
17:57:49.0856 1620 Current date / time: 2012/09/23 17:57:49.0856
17:57:49.0856 1620 SystemInfo:
17:57:49.0856 1620
17:57:49.0856 1620 OS Version: 6.1.7600 ServicePack: 0.0
17:57:49.0856 1620 Product type: Workstation
17:57:49.0856 1620 ComputerName: DIPANSHU-PC
17:57:49.0856 1620 UserName: Dipanshu
17:57:49.0856 1620 Windows directory: C:\Windows
17:57:49.0856 1620 System windows directory: C:\Windows
17:57:49.0856 1620 Running under WOW64
17:57:49.0856 1620 Processor architecture: Intel x64
17:57:49.0856 1620 Number of processors: 2
17:57:49.0856 1620 Page size: 0x1000
17:57:49.0856 1620 Boot type: Normal boot
17:57:49.0856 1620 ============================================================
17:57:50.0979 1620 BG loaded
17:57:51.0930 1620 Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
17:57:51.0946 1620 ============================================================
17:57:51.0946 1620 \Device\Harddisk0\DR0:
17:57:51.0946 1620 MBR partitions:
17:57:51.0946 1620 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x139C5, BlocksNum 0x1D4C000
17:57:51.0946 1620 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x1D5F9C5, BlocksNum 0x38625E6B
17:57:51.0946 1620 ============================================================
17:57:52.0008 1620 C: <-> \Device\Harddisk0\DR0\Partition2
17:57:52.0008 1620 ============================================================
17:57:52.0008 1620 Initialize success
17:57:52.0008 1620 ============================================================
17:58:34.0775 0568 ============================================================
17:58:34.0775 0568 Scan started
17:58:34.0775 0568 Mode: Manual; SigCheck; TDLFS;
17:58:34.0775 0568 ============================================================
17:58:36.0272 0568 ================ Scan system memory ========================
17:58:36.0272 0568 System memory - ok
17:58:36.0272 0568 ================ Scan services =============================
17:58:36.0506 0568 [ 1B00662092F9F9568B995902F0CC40D5 ] 1394ohci C:\Windows\system32\DRIVERS\1394ohci.sys
17:58:36.0647 0568 1394ohci - ok
17:58:36.0756 0568 [ 426E0E8127BAC7D5DDEE8251F104E053 ] AbsoluteNotifier C:\Program Files (x86)\Absolute Software\Absolute Notifier\AbsoluteNotifierService.exe
17:58:36.0772 0568 AbsoluteNotifier - ok
17:58:36.0818 0568 [ 6F11E88748CDEFD2F76AA215F97DDFE5 ] ACPI C:\Windows\system32\DRIVERS\ACPI.sys
17:58:36.0850 0568 ACPI - ok
17:58:36.0881 0568 [ 63B05A0420CE4BF0E4AF6DCC7CADA254 ] AcpiPmi C:\Windows\system32\DRIVERS\acpipmi.sys
17:58:37.0052 0568 AcpiPmi - ok
17:58:37.0271 0568 [ E8FE4FCE23D2809BD88BCC1D0F8408CE ] AdobeActiveFileMonitor6.0 C:\Program Files (x86)\Adobe\Photoshop Elements 6.0\PhotoshopElementsFileAgent.exe
17:58:37.0318 0568 AdobeActiveFileMonitor6.0 - ok
17:58:37.0380 0568 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
17:58:37.0458 0568 adp94xx - ok
17:58:37.0489 0568 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
17:58:37.0536 0568 adpahci - ok
17:58:37.0567 0568 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
17:58:37.0598 0568 adpu320 - ok
17:58:37.0645 0568 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
17:58:37.0801 0568 AeLookupSvc - ok
17:58:37.0864 0568 [ DB9D6C6B2CD95A9CA414D045B627422E ] AFD C:\Windows\system32\drivers\afd.sys
17:58:37.0926 0568 AFD - ok
17:58:37.0942 0568 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\Windows\system32\DRIVERS\agp440.sys
17:58:37.0988 0568 agp440 - ok
17:58:38.0004 0568 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\Windows\System32\alg.exe
17:58:38.0098 0568 ALG - ok
17:58:38.0113 0568 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\Windows\system32\DRIVERS\aliide.sys
17:58:38.0160 0568 aliide - ok
17:58:38.0176 0568 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\Windows\system32\DRIVERS\amdide.sys
17:58:38.0222 0568 amdide - ok
17:58:38.0238 0568 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
17:58:38.0441 0568 AmdK8 - ok
17:58:38.0472 0568 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
17:58:38.0534 0568 AmdPPM - ok
17:58:38.0597 0568 [ EC7EBAB00A4D8448BAB68D1E49B4BEB9 ] amdsata C:\Windows\system32\drivers\amdsata.sys
17:58:38.0628 0568 amdsata - ok
17:58:38.0644 0568 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
17:58:38.0690 0568 amdsbs - ok
17:58:38.0690 0568 [ DB27766102C7BF7E95140A2AA81D042E ] amdxata C:\Windows\system32\drivers\amdxata.sys
17:58:38.0706 0568 amdxata - ok
17:58:38.0753 0568 [ 42FD751B27FA0E9C69BB39F39E409594 ] AppID C:\Windows\system32\drivers\appid.sys
17:58:38.0878 0568 AppID - ok
17:58:38.0924 0568 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\Windows\System32\appidsvc.dll
17:58:39.0034 0568 AppIDSvc - ok
17:58:39.0065 0568 [ D065BE66822847B7F127D1F90158376E ] Appinfo C:\Windows\System32\appinfo.dll
17:58:39.0112 0568 Appinfo - ok
17:58:39.0190 0568 [ 018857EAD9A077A56AEDFC0E5EF7A24A ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
17:58:39.0236 0568 Apple Mobile Device - ok
17:58:39.0252 0568 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\Windows\system32\DRIVERS\arc.sys
17:58:39.0314 0568 arc - ok
17:58:39.0361 0568 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
17:58:39.0392 0568 arcsas - ok
17:58:39.0424 0568 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
17:58:39.0517 0568 AsyncMac - ok
17:58:39.0517 0568 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\Windows\system32\DRIVERS\atapi.sys
17:58:39.0548 0568 atapi - ok
17:58:39.0673 0568 [ 07721A77180EDD4D39CCB865BF63C7FD ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
17:58:39.0736 0568 AudioEndpointBuilder - ok
17:58:39.0767 0568 [ 07721A77180EDD4D39CCB865BF63C7FD ] AudioSrv C:\Windows\System32\Audiosrv.dll
17:58:39.0798 0568 AudioSrv - ok
17:58:39.0829 0568 [ B20B5FA5CA050E9926E4D1DB81501B32 ] AxInstSV C:\Windows\System32\AxInstSV.dll
17:58:39.0954 0568 AxInstSV - ok
17:58:40.0001 0568 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\Windows\system32\DRIVERS\bxvbda.sys
17:58:40.0110 0568 b06bdrv - ok
17:58:40.0172 0568 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
17:58:40.0219 0568 b57nd60a - ok
17:58:40.0328 0568 [ 2ED050291BC1D7F9E322E328DB3AAECF ] BBSvc C:\Program Files (x86)\Microsoft\BingBar\BBSvc.EXE
17:58:40.0375 0568 BBSvc - ok
17:58:40.0453 0568 [ 785DE7ABDA13309D6065305542829E76 ] BBUpdate C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE
17:58:40.0484 0568 BBUpdate - ok
17:58:40.0531 0568 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\Windows\System32\bdesvc.dll
17:58:40.0609 0568 BDESVC - ok
17:58:40.0640 0568 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\Windows\system32\drivers\Beep.sys
17:58:40.0718 0568 Beep - ok
17:58:40.0781 0568 [ 4992C609A6315671463E30F6512BC022 ] BFE C:\Windows\System32\bfe.dll
17:58:40.0843 0568 BFE - ok
17:58:40.0906 0568 [ 7F0C323FE3DA28AA4AA1BDA3F575707F ] BITS C:\Windows\System32\qmgr.dll
17:58:41.0015 0568 BITS - ok
17:58:41.0030 0568 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
17:58:41.0062 0568 blbdrive - ok
17:58:41.0155 0568 [ F832F1505AD8B83474BD9A5B1B985E01 ] Bonjour Service C:\Program Files (x86)\Bonjour\mDNSResponder.exe
17:58:41.0202 0568 Bonjour Service - ok
17:58:41.0233 0568 [ 19D20159708E152267E53B66677A4995 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
17:58:41.0280 0568 bowser - ok
17:58:41.0311 0568 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
17:58:41.0374 0568 BrFiltLo - ok
17:58:41.0389 0568 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
17:58:41.0452 0568 BrFiltUp - ok
17:58:41.0498 0568 [ 6B054C67AAA87843504E8E3C09102009 ] Browser C:\Windows\System32\browser.dll
17:58:41.0530 0568 Browser - ok
17:58:41.0545 0568 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\Windows\System32\Drivers\Brserid.sys
17:58:41.0654 0568 Brserid - ok
17:58:41.0670 0568 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
17:58:41.0717 0568 BrSerWdm - ok
17:58:41.0732 0568 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
17:58:41.0779 0568 BrUsbMdm - ok
17:58:41.0795 0568 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
17:58:41.0842 0568 BrUsbSer - ok
17:58:41.0920 0568 [ CF98190A94F62E405C8CB255018B2315 ] BthEnum C:\Windows\system32\drivers\BthEnum.sys
17:58:41.0982 0568 BthEnum - ok
17:58:41.0998 0568 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
17:58:42.0044 0568 BTHMODEM - ok
17:58:42.0091 0568 [ 02DD601B708DD0667E1331FA8518E9FF ] BthPan C:\Windows\system32\DRIVERS\bthpan.sys
17:58:42.0154 0568 BthPan - ok
17:58:42.0200 0568 [ D59773C7FDD3D795D6FE402EEEA8D71E ] BTHPORT C:\Windows\system32\Drivers\BTHport.sys
17:58:42.0310 0568 BTHPORT - ok
17:58:42.0356 0568 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\Windows\system32\bthserv.dll
17:58:42.0450 0568 bthserv - ok
17:58:42.0497 0568 [ 8504842634DD144C075B6B0C982CCEC4 ] BTHUSB C:\Windows\system32\Drivers\BTHUSB.sys
17:58:42.0575 0568 BTHUSB - ok
17:58:42.0606 0568 [ 6BCFDC2B5B7F66D484486D4BD4B39A6B ] btwaudio C:\Windows\system32\drivers\btwaudio.sys
17:58:42.0668 0568 btwaudio - ok
17:58:42.0700 0568 [ 82DC8B7C626E526681C1BEBED2BC3FF9 ] btwavdt C:\Windows\system32\drivers\btwavdt.sys
17:58:42.0746 0568 btwavdt - ok
17:58:42.0871 0568 [ D65AA164ACD0F6706DBCFBBCC9731584 ] btwdins c:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
17:58:42.0902 0568 btwdins - ok
17:58:42.0918 0568 [ 6149301DC3F81D6F9667A3FBAC410975 ] btwl2cap C:\Windows\system32\DRIVERS\btwl2cap.sys
17:58:42.0949 0568 btwl2cap - ok
17:58:42.0965 0568 [ 28E105AD3B79F440BF94780F507BF66A ] btwrchid C:\Windows\system32\DRIVERS\btwrchid.sys
17:58:42.0996 0568 btwrchid - ok
17:58:43.0058 0568 [ ED7563CD3E67EE3C950A1B86818C24C3 ] catflt C:\Windows\system32\DRIVERS\catflt.sys
17:58:43.0074 0568 catflt - ok
17:58:43.0090 0568 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
17:58:43.0199 0568 cdfs - ok
17:58:43.0261 0568 [ 83D2D75E1EFB81B3450C18131443F7DB ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
17:58:43.0308 0568 cdrom - ok
17:58:43.0355 0568 [ 312E2F82AF11E79906898AC3E3D58A1F ] CertPropSvc C:\Windows\System32\certprop.dll
17:58:43.0464 0568 CertPropSvc - ok
17:58:43.0604 0568 [ 8C62EAF0FC820F2D1B32FCF1D02507BC ] Change Modem Device Service C:\Windows\SysWOW64\ChgService.exe
17:58:43.0667 0568 Change Modem Device Service ( UnsignedFile.Multi.Generic ) - warning
17:58:43.0667 0568 Change Modem Device Service - detected UnsignedFile.Multi.Generic (1)
17:58:43.0714 0568 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\Windows\system32\DRIVERS\circlass.sys
17:58:43.0807 0568 circlass - ok
17:58:43.0870 0568 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\Windows\system32\CLFS.sys
17:58:43.0885 0568 CLFS - ok
17:58:43.0979 0568 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
17:58:44.0041 0568 clr_optimization_v2.0.50727_32 - ok
17:58:44.0119 0568 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
17:58:44.0166 0568 clr_optimization_v2.0.50727_64 - ok
17:58:44.0275 0568 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
17:58:44.0384 0568 clr_optimization_v4.0.30319_32 - ok
17:58:44.0462 0568 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
17:58:44.0509 0568 clr_optimization_v4.0.30319_64 - ok
17:58:44.0572 0568 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
17:58:44.0603 0568 CmBatt - ok
17:58:44.0618 0568 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\Windows\system32\DRIVERS\cmdide.sys
17:58:44.0650 0568 cmdide - ok
17:58:44.0712 0568 [ F34031DC6D1745154F54B04AFF54F5D1 ] cmnsusbser C:\Windows\system32\DRIVERS\cmnsusbser.sys
17:58:44.0774 0568 cmnsusbser - ok
17:58:44.0837 0568 [ CA7720B73446FDDEC5C69519C1174C98 ] CNG C:\Windows\system32\Drivers\cng.sys
17:58:44.0884 0568 CNG - ok
17:58:44.0915 0568 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
17:58:44.0930 0568 Compbatt - ok
17:58:44.0946 0568 [ F26B3A86F6FA87CA360B879581AB4123 ] CompositeBus C:\Windows\system32\DRIVERS\CompositeBus.sys
17:58:44.0977 0568 CompositeBus - ok
17:58:44.0977 0568 COMSysApp - ok
17:58:45.0071 0568 [ 27A2F5B4168B333E003E2AB68811D62E ] Core Mail Protection C:\Program Files\Quick Heal\Quick Heal Total Security\EMLPROXY.EXE
17:58:45.0149 0568 Core Mail Protection - ok
17:58:45.0211 0568 [ 3D268FBD5077F41ECE4FF40567BFB492 ] Core Scanning Server C:\Program Files\Quick Heal\Quick Heal Total Security\SAPISSVC.EXE
17:58:45.0227 0568 Core Scanning Server - ok
17:58:45.0258 0568 [ 3D268FBD5077F41ECE4FF40567BFB492 ] Core Scanning ServerEx C:\Program Files\Quick Heal\Quick Heal Total Security\SAPISSVC.EXE
17:58:45.0289 0568 Core Scanning ServerEx - ok
17:58:45.0336 0568 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
17:58:45.0430 0568 crcdisk - ok
17:58:45.0523 0568 [ C8BD651E13895B93ED9EC5B4F1DF42BC ] Creative ALchemy AL6 Licensing Service C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\AL6Licensing.exe
17:58:45.0586 0568 Creative ALchemy AL6 Licensing Service ( UnsignedFile.Multi.Generic ) - warning
17:58:45.0586 0568 Creative ALchemy AL6 Licensing Service - detected UnsignedFile.Multi.Generic (1)
17:58:45.0648 0568 [ C0EAD9F8AB83D41FF07303C75589C2B8 ] Creative Audio Engine Licensing Service C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\CTAELicensing.exe
17:58:45.0664 0568 Creative Audio Engine Licensing Service ( UnsignedFile.Multi.Generic ) - warning
17:58:45.0664 0568 Creative Audio Engine Licensing Service - detected UnsignedFile.Multi.Generic (1)
17:58:45.0726 0568 [ F02786B66375292E58C8777082D4396D ] CryptSvc C:\Windows\system32\cryptsvc.dll
17:58:45.0773 0568 CryptSvc - ok
17:58:45.0866 0568 [ 07BA6D17E66879018B30B6C3F976EBED ] CTAudSvcService C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe
17:58:45.0913 0568 CTAudSvcService ( UnsignedFile.Multi.Generic ) - warning
17:58:45.0913 0568 CTAudSvcService - detected UnsignedFile.Multi.Generic (1)
17:58:45.0976 0568 [ ED5CF92396A62F4C15110DCDB5E854D9 ] CtClsFlt C:\Windows\system32\DRIVERS\CtClsFlt.sys
17:58:46.0022 0568 CtClsFlt - ok
17:58:46.0085 0568 [ 7266972E86890E2B30C0C322E906B027 ] DcomLaunch C:\Windows\system32\rpcss.dll
17:58:46.0147 0568 DcomLaunch - ok
17:58:46.0210 0568 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\Windows\System32\defragsvc.dll
17:58:46.0334 0568 defragsvc - ok
17:58:46.0350 0568 [ 9C253CE7311CA60FC11C774692A13208 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
17:58:46.0428 0568 DfsC - ok
17:58:46.0459 0568 [ CE3B9562D997F69B330D181A8875960F ] Dhcp C:\Windows\system32\dhcpcore.dll
17:58:46.0568 0568 Dhcp - ok
17:58:46.0615 0568 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\Windows\system32\drivers\discache.sys
17:58:46.0693 0568 discache - ok
17:58:46.0740 0568 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\Windows\system32\DRIVERS\disk.sys
17:58:46.0771 0568 Disk - ok
17:58:46.0818 0568 [ 85CF424C74A1D5EC33533E1DBFF9920A ] Dnscache C:\Windows\System32\dnsrslvr.dll
17:58:46.0865 0568 Dnscache - ok
17:58:46.0958 0568 [ 0840ABBBDF438691EE65A20040635CBE ] DockLoginService C:\Program Files\Dell\DellDock\DockLogin.exe
17:58:47.0021 0568 DockLoginService ( UnsignedFile.Multi.Generic ) - warning
17:58:47.0021 0568 DockLoginService - detected UnsignedFile.Multi.Generic (1)
17:58:47.0068 0568 [ 14452ACDB09B70964C8C21BF80A13ACB ] dot3svc C:\Windows\System32\dot3svc.dll
17:58:47.0208 0568 dot3svc - ok
17:58:47.0270 0568 [ 8C2BA6BEA949EE6E68385F5692BAFB94 ] DPS C:\Windows\system32\dps.dll
17:58:47.0380 0568 DPS - ok
17:58:47.0458 0568 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
17:58:47.0536 0568 drmkaud - ok
17:58:47.0785 0568 [ 1633B9ABF52784A1331476397A48CBEF ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
17:58:47.0816 0568 DXGKrnl - ok
17:58:47.0894 0568 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\Windows\System32\eapsvc.dll
17:58:47.0972 0568 EapHost - ok
17:58:48.0347 0568 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\Windows\system32\DRIVERS\evbda.sys
17:58:48.0628 0568 ebdrv - ok
17:58:48.0674 0568 [ 156F6159457D0AA7E59B62681B56EB90 ] EFS C:\Windows\System32\lsass.exe
17:58:48.0815 0568 EFS - ok
17:58:49.0127 0568 [ 47C071994C3F649F23D9CD075AC9304A ] ehRecvr C:\Windows\ehome\ehRecvr.exe
17:58:49.0314 0568 ehRecvr - ok
17:58:49.0361 0568 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\Windows\ehome\ehsched.exe
17:58:49.0454 0568 ehSched - ok
17:58:49.0517 0568 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys
17:58:49.0548 0568 elxstor - ok
17:58:49.0595 0568 [ C6FEE635EB61EEBBF960E981DC8C6CDE ] EMLSS C:\Windows\system32\drivers\emltdi.sys
17:58:49.0610 0568 EMLSS - ok
17:58:49.0626 0568 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\Windows\system32\DRIVERS\errdev.sys
17:58:49.0751 0568 ErrDev - ok
17:58:49.0813 0568 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\Windows\system32\es.dll
17:58:49.0860 0568 EventSystem - ok
17:58:49.0876 0568 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\Windows\system32\drivers\exfat.sys
17:58:49.0938 0568 exfat - ok
17:58:49.0954 0568 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\Windows\system32\drivers\fastfat.sys
17:58:50.0000 0568 fastfat - ok
17:58:50.0063 0568 [ D607B2F1BEE3992AA6C2C92C0A2F0855 ] Fax C:\Windows\system32\fxssvc.exe
17:58:50.0125 0568 Fax - ok
17:58:50.0141 0568 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\Windows\system32\DRIVERS\fdc.sys
17:58:50.0203 0568 fdc - ok
17:58:50.0234 0568 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\Windows\system32\fdPHost.dll
17:58:50.0297 0568 fdPHost - ok
17:58:50.0312 0568 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\Windows\system32\fdrespub.dll
17:58:50.0359 0568 FDResPub - ok
17:58:50.0390 0568 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
17:58:50.0406 0568 FileInfo - ok
17:58:50.0422 0568 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
17:58:50.0500 0568 Filetrace - ok
17:58:50.0578 0568 [ 227846995AFEEFA70D328BF5334A86A5 ] FLEXnet Licensing Service C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
17:58:50.0656 0568 FLEXnet Licensing Service ( UnsignedFile.Multi.Generic ) - warning
17:58:50.0656 0568 FLEXnet Licensing Service - detected UnsignedFile.Multi.Generic (1)
17:58:50.0687 0568 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
17:58:50.0765 0568 flpydisk - ok
17:58:50.0780 0568 [ F7866AF72ABBAF84B1FA5AA195378C59 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
17:58:50.0812 0568 FltMgr - ok
17:58:50.0874 0568 [ CB5E4B9C319E3C6BB363EB7E58A4A051 ] FontCache C:\Windows\system32\FntCache.dll
17:58:50.0936 0568 FontCache - ok
17:58:51.0014 0568 [ 8D89E3131C27FDD6932189CB785E1B7A ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
17:58:51.0061 0568 FontCache3.0.0.0 - ok
17:58:51.0077 0568 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
17:58:51.0108 0568 FsDepends - ok
17:58:51.0139 0568 [ D3E3F93D67821A2DB2B3D9FAC2DC2064 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
17:58:51.0170 0568 Fs_Rec - ok
17:58:51.0233 0568 [ AE87BA80D0EC3B57126ED2CDC15B24ED ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
17:58:51.0264 0568 fvevol - ok
17:58:51.0280 0568 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys
17:58:51.0311 0568 gagp30kx - ok
17:58:51.0358 0568 [ E403AACF8C7BB11375122D2464560311 ] GEARAspiWDM C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
17:58:51.0373 0568 GEARAspiWDM - ok
17:58:51.0482 0568 [ 5CAC29C48D9398ED1B99C7E16C00F96D ] ggc C:\Windows\system32\DRIVERS\ggc.sys
17:58:51.0498 0568 ggc - ok
17:58:51.0545 0568 [ D3316F6E3C011435F36E3D6E49B3196C ] GoToAssist C:\Program Files (x86)\Citrix\GoToAssist\514\g2aservice.exe
17:58:51.0576 0568 GoToAssist - ok
17:58:51.0623 0568 [ FE5AB4525BC2EC68B9119A6E5D40128B ] gpsvc C:\Windows\System32\gpsvc.dll
17:58:51.0685 0568 gpsvc - ok
17:58:51.0763 0568 [ F02A533F517EB38333CB12A9E8963773 ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
17:58:51.0779 0568 gupdate - ok
17:58:51.0826 0568 [ F02A533F517EB38333CB12A9E8963773 ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
17:58:51.0841 0568 gupdatem - ok
17:58:51.0872 0568 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
17:58:51.0950 0568 hcw85cir - ok
17:58:51.0997 0568 [ 0A49913402747A0B67DE940FB42CBDBB ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys
17:58:52.0044 0568 HDAudBus - ok
17:58:52.0044 0568 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys
17:58:52.0075 0568 HidBatt - ok
17:58:52.0106 0568 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
17:58:52.0153 0568 HidBth - ok
17:58:52.0153 0568 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
17:58:52.0216 0568 HidIr - ok
17:58:52.0247 0568 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\Windows\system32\hidserv.dll
17:58:52.0325 0568 hidserv - ok
17:58:52.0387 0568 [ B3BF6B5B50006DEF50B66306D99FCF6F ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
17:58:52.0434 0568 HidUsb - ok
17:58:52.0450 0568 [ EFA58EDE58DD74388FFD04CB32681518 ] hkmsvc C:\Windows\system32\kmsvc.dll
17:58:52.0512 0568 hkmsvc - ok
17:58:52.0512 0568 [ 046B2673767CA626E2CFB7FDF735E9E8 ] HomeGroupListener C:\Windows\system32\ListSvc.dll
17:58:52.0574 0568 HomeGroupListener - ok
17:58:52.0606 0568 [ 06A7422224D9865A5613710A089987DF ] HomeGroupProvider C:\Windows\system32\provsvc.dll
17:58:52.0621 0568 HomeGroupProvider - ok
17:58:52.0699 0568 [ 0886D440058F203EBA0E1825E4355914 ] HpSAMD C:\Windows\system32\DRIVERS\HpSAMD.sys
17:58:52.0746 0568 HpSAMD - ok
17:58:52.0824 0568 [ CEE049CAC4EFA7F4E1E4AD014414A5D4 ] HTTP C:\Windows\system32\drivers\HTTP.sys
17:58:52.0871 0568 HTTP - ok
17:58:52.0949 0568 [ CDAA8E257BB625B2387219E605DDE37D ] hwdatacard C:\Windows\system32\DRIVERS\ewusbmdm.sys
17:58:53.0058 0568 hwdatacard - ok
17:58:53.0074 0568 [ F17766A19145F111856378DF337A5D79 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
17:58:53.0089 0568 hwpolicy - ok
17:58:53.0152 0568 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\Windows\system32\DRIVERS\i8042prt.sys
17:58:53.0183 0568 i8042prt - ok
17:58:53.0261 0568 [ B75E45C564E944A2657167D197AB29DA ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
17:58:53.0339 0568 iaStorV - ok
17:58:53.0448 0568 [ 2F2BE70D3E02B6FA877921AB9516D43C ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
17:58:53.0557 0568 idsvc - ok
17:58:54.0290 0568 [ 677AA5991026A65ADA128C4B59CF2BAD ] igfx C:\Windows\system32\DRIVERS\igdkmd64.sys
17:58:54.0462 0568 igfx - ok
17:58:54.0509 0568 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys
17:58:54.0556 0568 iirsp - ok
17:58:54.0618 0568 [ C5B4683680DF085B57BC53E5EF34861F ] IKEEXT C:\Windows\System32\ikeext.dll
17:58:54.0696 0568 IKEEXT - ok
17:58:54.0743 0568 [ D485D3BD3E2179AA86853A182F70699F ] IntcHdmiAddService C:\Windows\system32\drivers\IntcHdmi.sys
17:58:54.0790 0568 IntcHdmiAddService - ok
17:58:54.0805 0568 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\Windows\system32\DRIVERS\intelide.sys
17:58:54.0836 0568 intelide - ok
17:58:54.0883 0568 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
17:58:54.0899 0568 intelppm - ok
17:58:54.0914 0568 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\Windows\system32\ipbusenum.dll
17:58:54.0992 0568 IPBusEnum - ok
17:58:55.0008 0568 [ 722DD294DF62483CECAAE6E094B4D695 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
17:58:55.0086 0568 IpFilterDriver - ok
17:58:55.0211 0568 [ F8E058D17363EC580E4B7232778B6CB5 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
17:58:55.0304 0568 iphlpsvc - ok
17:58:55.0320 0568 [ E2B4A4494DB7CB9B89B55CA268C337C5 ] IPMIDRV C:\Windows\system32\DRIVERS\IPMIDrv.sys
17:58:55.0351 0568 IPMIDRV - ok
17:58:55.0382 0568 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
17:58:55.0445 0568 IPNAT - ok
17:58:55.0507 0568 [ E94503089DF8976F5C4C9D5168E9765F ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
17:58:55.0601 0568 iPod Service - ok
17:58:55.0616 0568 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
17:58:55.0663 0568 IRENUM - ok
17:58:55.0694 0568 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\Windows\system32\DRIVERS\isapnp.sys
17:58:55.0710 0568 isapnp - ok
17:58:55.0741 0568 [ FA4D2557DE56D45B0A346F93564BE6E1 ] iScsiPrt C:\Windows\system32\DRIVERS\msiscsi.sys
17:58:55.0788 0568 iScsiPrt - ok
17:58:55.0850 0568 [ 7DBAFE10C1B777305C80BEA42FBDA710 ] k57nd60a C:\Windows\system32\DRIVERS\k57nd60a.sys
17:58:55.0882 0568 k57nd60a - ok
17:58:55.0882 0568 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
17:58:55.0897 0568 kbdclass - ok
17:58:55.0913 0568 [ 6DEF98F8541E1B5DCEB2C822A11F7323 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
17:58:55.0975 0568 kbdhid - ok
17:58:55.0991 0568 [ 156F6159457D0AA7E59B62681B56EB90 ] KeyIso C:\Windows\system32\lsass.exe
17:58:56.0006 0568 KeyIso - ok
17:58:56.0038 0568 [ 4F4B5FDE429416877DE7143044582EB5 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
17:58:56.0069 0568 KSecDD - ok
17:58:56.0100 0568 [ 6F40465A44ECDC1731BEFAFEC5BDD03C ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
17:58:56.0116 0568 KSecPkg - ok
17:58:56.0131 0568 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
17:58:56.0178 0568 ksthunk - ok
17:58:56.0225 0568 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\Windows\system32\msdtckrm.dll
17:58:56.0365 0568 KtmRm - ok
17:58:56.0443 0568 [ 81F1D04D4D0E433099365127375FD501 ] LanmanServer C:\Windows\system32\srvsvc.dll
17:58:56.0490 0568 LanmanServer - ok
17:58:56.0537 0568 [ 27026EAC8818E8A6C00A1CAD2F11D29A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
17:58:56.0615 0568 LanmanWorkstation - ok
17:58:56.0677 0568 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
17:58:56.0740 0568 lltdio - ok
17:58:56.0771 0568 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\Windows\System32\lltdsvc.dll
17:58:56.0880 0568 lltdsvc - ok
17:58:56.0942 0568 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\Windows\System32\lmhsvc.dll
17:58:57.0005 0568 lmhosts - ok
17:58:57.0052 0568 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys
17:58:57.0098 0568 LSI_FC - ok
17:58:57.0114 0568 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys
17:58:57.0145 0568 LSI_SAS - ok
17:58:57.0161 0568 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys
17:58:57.0176 0568 LSI_SAS2 - ok
17:58:57.0192 0568 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys
17:58:57.0223 0568 LSI_SCSI - ok
17:58:57.0223 0568 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\Windows\system32\drivers\luafv.sys
17:58:57.0286 0568 luafv - ok
17:58:57.0317 0568 [ F84C8F1000BC11E3B7B23CBD3BAFF111 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
17:58:57.0379 0568 Mcx2Svc - ok
17:58:57.0395 0568 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\Windows\system32\DRIVERS\megasas.sys
17:58:57.0442 0568 megasas - ok
17:58:57.0457 0568 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys
17:58:57.0504 0568 MegaSR - ok
17:58:57.0707 0568 [ 123271BD5237AB991DC5C21FDF8835EB ] Microsoft Office Groove Audit Service C:\Program Files (x86)\Microsoft Office\Office12\GrooveAuditService.exe
17:58:57.0738 0568 Microsoft Office Groove Audit Service - ok
17:58:57.0816 0568 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\Windows\system32\mmcss.dll
17:58:57.0894 0568 MMCSS - ok
17:58:57.0941 0568 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\Windows\system32\drivers\modem.sys
17:58:58.0081 0568 Modem - ok
17:58:58.0112 0568 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\Windows\system32\DRIVERS\monitor.sys
17:58:58.0144 0568 monitor - ok
17:58:58.0175 0568 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
17:58:58.0190 0568 mouclass - ok
17:58:58.0222 0568 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
17:58:58.0284 0568 mouhid - ok
17:58:58.0300 0568 [ 791AF66C4D0E7C90A3646066386FB571 ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
17:58:58.0315 0568 mountmgr - ok
17:58:58.0393 0568 [ CB8AF049AC9BE419A77ADAE288673359 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
17:58:58.0440 0568 MozillaMaintenance - ok
17:58:58.0456 0568 [ 609D1D87649ECC19796F4D76D4C15CEA ] mpio C:\Windows\system32\DRIVERS\mpio.sys
17:58:58.0534 0568 mpio - ok
17:58:58.0534 0568 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
17:58:58.0580 0568 mpsdrv - ok
17:58:58.0721 0568 [ AECAB449567D1846DAD63ECE49E893E3 ] MpsSvc C:\Windows\system32\mpssvc.dll
17:58:58.0799 0568 MpsSvc - ok
17:58:58.0830 0568 [ 30524261BB51D96D6FCBAC20C810183C ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
17:58:58.0877 0568 MRxDAV - ok
17:58:58.0908 0568 [ 040D62A9D8AD28922632137ACDD984F2 ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
17:58:58.0970 0568 mrxsmb - ok
17:58:59.0033 0568 [ F0067552F8F9B33D7C59403AB808A3CB ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
17:58:59.0064 0568 mrxsmb10 - ok
17:58:59.0080 0568 [ 3C142D31DE9F2F193218A53FE2632051 ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
17:58:59.0111 0568 mrxsmb20 - ok
17:58:59.0158 0568 [ 5C37497276E3B3A5488B23A326A754B7 ] msahci C:\Windows\system32\DRIVERS\msahci.sys
17:58:59.0189 0568 msahci - ok
17:58:59.0251 0568 [ F00512A58B7FFCBC26BB685E9016B9F0 ] mscank C:\Windows\system32\DRIVERS\mscank64.sys
17:58:59.0267 0568 mscank - ok
17:58:59.0298 0568 [ 8D27B597229AED79430FB9DB3BCBFBD0 ] msdsm C:\Windows\system32\DRIVERS\msdsm.sys
17:58:59.0345 0568 msdsm - ok
17:58:59.0376 0568 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\Windows\System32\msdtc.exe
17:58:59.0438 0568 MSDTC - ok
17:58:59.0454 0568 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\Windows\system32\drivers\Msfs.sys
17:58:59.0501 0568 Msfs - ok
17:58:59.0516 0568 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
17:58:59.0579 0568 mshidkmdf - ok
17:58:59.0594 0568 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\Windows\system32\DRIVERS\msisadrv.sys
17:58:59.0594 0568 msisadrv - ok
17:58:59.0641 0568 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
17:58:59.0735 0568 MSiSCSI - ok
17:58:59.0735 0568 msiserver - ok
17:58:59.0766 0568 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
17:58:59.0828 0568 MSKSSRV - ok
17:58:59.0844 0568 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
17:58:59.0922 0568 MSPCLOCK - ok
17:58:59.0938 0568 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
17:58:59.0984 0568 MSPQM - ok
17:59:00.0000 0568 [ 89CB141AA8616D8C6A4610FA26C60964 ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
17:59:00.0016 0568 MsRPC - ok
17:59:00.0031 0568 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\Windows\system32\DRIVERS\mssmbios.sys
17:59:00.0047 0568 mssmbios - ok
17:59:00.0062 0568 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
17:59:00.0140 0568 MSTEE - ok
17:59:00.0156 0568 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys
17:59:00.0187 0568 MTConfig - ok
17:59:00.0218 0568 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\Windows\system32\Drivers\mup.sys
17:59:00.0218 0568 Mup - ok
17:59:00.0281 0568 [ 4987E079A4530FA737A128BE54B63B12 ] napagent C:\Windows\system32\qagentRT.dll
17:59:00.0374 0568 napagent - ok
17:59:00.0406 0568 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
17:59:00.0452 0568 NativeWifiP - ok
17:59:00.0484 0568 [ CAD515DBD07D082BB317D9928CE8962C ] NDIS C:\Windows\system32\drivers\ndis.sys
17:59:00.0530 0568 NDIS - ok
17:59:00.0562 0568 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
17:59:00.0655 0568 NdisCap - ok
17:59:00.0686 0568 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
17:59:00.0718 0568 NdisTapi - ok
17:59:00.0733 0568 [ F105BA1E22BF1F2EE8F005D4305E4BEC ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
17:59:00.0796 0568 Ndisuio - ok
17:59:00.0811 0568 [ 557DFAB9CA1FCB036AC77564C010DAD3 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
17:59:00.0842 0568 NdisWan - ok
17:59:00.0889 0568 [ 659B74FB74B86228D6338D643CD3E3CF ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
17:59:00.0952 0568 NDProxy - ok
17:59:00.0983 0568 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
17:59:01.0045 0568 NetBIOS - ok
17:59:01.0061 0568 [ 9162B273A44AB9DCE5B44362731D062A ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
17:59:01.0139 0568 NetBT - ok
17:59:01.0154 0568 [ 156F6159457D0AA7E59B62681B56EB90 ] Netlogon C:\Windows\system32\lsass.exe
17:59:01.0170 0568 Netlogon - ok
17:59:01.0217 0568 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\Windows\System32\netman.dll
17:59:01.0264 0568 Netman - ok
17:59:01.0279 0568 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\Windows\System32\netprofm.dll
17:59:01.0342 0568 netprofm - ok
17:59:01.0388 0568 [ 3E5A36127E201DDF663176B66828FAFE ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
17:59:01.0420 0568 NetTcpPortSharing - ok
17:59:01.0560 0568 [ 705283C02177809CA9FA7CC58A4F1E77 ] NETw5v64 C:\Windows\system32\DRIVERS\NETw5v64.sys
17:59:01.0669 0568 NETw5v64 - ok
17:59:01.0716 0568 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys
17:59:01.0747 0568 nfrd960 - ok
17:59:01.0794 0568 [ D9A0CE66046D6EFA0C61BAA885CBA0A8 ] NlaSvc C:\Windows\System32\nlasvc.dll
17:59:01.0841 0568 NlaSvc - ok
17:59:01.0856 0568 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\Windows\system32\drivers\Npfs.sys
17:59:01.0903 0568 Npfs - ok
17:59:01.0919 0568 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\Windows\system32\nsisvc.dll
17:59:01.0950 0568 nsi - ok
17:59:01.0966 0568 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
17:59:02.0012 0568 nsiproxy - ok
17:59:02.0106 0568 [ 378E0E0DFEA67D98AE6EA53ADBBD76BC ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
17:59:02.0184 0568 Ntfs - ok
17:59:02.0200 0568 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\Windows\system32\drivers\Null.sys
17:59:02.0262 0568 Null - ok
17:59:02.0293 0568 [ A4D9C9A608A97F59307C2F2600EDC6A4 ] nvraid C:\Windows\system32\drivers\nvraid.sys
17:59:02.0340 0568 nvraid - ok
17:59:02.0387 0568 [ 6C1D5F70E7A6A3FD1C90D840EDC048B9 ] nvstor C:\Windows\system32\drivers\nvstor.sys
17:59:02.0434 0568 nvstor - ok
17:59:02.0449 0568 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\Windows\system32\DRIVERS\nv_agp.sys
17:59:02.0480 0568 nv_agp - ok
17:59:02.0621 0568 [ 785F487A64950F3CB8E9F16253BA3B7B ] odserv C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
17:59:02.0699 0568 odserv - ok
17:59:02.0746 0568 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\Windows\system32\DRIVERS\ohci1394.sys
17:59:02.0792 0568 ohci1394 - ok
17:59:02.0839 0568 [ BB9F6A68EB07C920C9975F2A0AE43FD1 ] Online Protection System C:\Program Files\Quick Heal\Quick Heal Total Security\opssvc.exe
17:59:02.0855 0568 Online Protection System - ok
17:59:02.0902 0568 [ 5A432A042DAE460ABE7199B758E8606C ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
17:59:02.0964 0568 ose - ok
17:59:02.0995 0568 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
17:59:03.0089 0568 p2pimsvc - ok
17:59:03.0104 0568 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\Windows\system32\p2psvc.dll
17:59:03.0229 0568 p2psvc - ok
17:59:03.0260 0568 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\Windows\system32\DRIVERS\parport.sys
17:59:03.0307 0568 Parport - ok
17:59:03.0354 0568 [ 90061B1ACFE8CCAA5345750FFE08D8B8 ] partmgr C:\Windows\system32\drivers\partmgr.sys
17:59:03.0370 0568 partmgr - ok
17:59:03.0401 0568 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll
17:59:03.0463 0568 PcaSvc - ok
17:59:03.0479 0568 [ F36F6504009F2FB0DFD1B17A116AD74B ] pci C:\Windows\system32\DRIVERS\pci.sys
17:59:03.0494 0568 pci - ok
17:59:03.0510 0568 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\Windows\system32\DRIVERS\pciide.sys
17:59:03.0557 0568 pciide - ok
17:59:03.0572 0568 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
17:59:03.0604 0568 pcmcia - ok
17:59:03.0619 0568 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\Windows\system32\drivers\pcw.sys
17:59:03.0635 0568 pcw - ok
17:59:03.0666 0568 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\Windows\system32\drivers\peauth.sys
17:59:03.0713 0568 PEAUTH - ok
17:59:04.0867 0568 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\Windows\SysWow64\perfhost.exe
17:59:04.0930 0568 PerfHost - ok
17:59:05.0101 0568 [ 557E9A86F65F0DE18C9B6751DFE9D3F1 ] pla C:\Windows\system32\pla.dll
17:59:05.0257 0568 pla - ok
17:59:05.0304 0568 [ 98B1721B8718164293B9701B98C52D77 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
17:59:05.0351 0568 PlugPlay - ok
17:59:05.0366 0568 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
17:59:05.0429 0568 PNRPAutoReg - ok
17:59:05.0444 0568 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
17:59:05.0460 0568 PNRPsvc - ok
17:59:05.0538 0568 [ 166EB40D1F5B47E615DE3D0FFFE5F243 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
17:59:05.0647 0568 PolicyAgent - ok
17:59:05.0741 0568 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\Windows\system32\umpo.dll
17:59:05.0819 0568 Power - ok
17:59:05.0881 0568 [ 27CC19E81BA5E3403C48302127BDA717 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
17:59:06.0115 0568 PptpMiniport - ok
17:59:06.0630 0568 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\Windows\system32\DRIVERS\processr.sys
17:59:06.0724 0568 Processor - ok
17:59:06.0802 0568 [ 97293447431311C06703368AD0F6C4BE ] ProfSvc C:\Windows\system32\profsvc.dll
17:59:06.0848 0568 ProfSvc - ok
17:59:06.0880 0568 [ 156F6159457D0AA7E59B62681B56EB90 ] ProtectedStorage C:\Windows\system32\lsass.exe
17:59:06.0895 0568 ProtectedStorage - ok
17:59:06.0926 0568 [ EE992183BD8EAEFD9973F352E587A299 ] Psched C:\Windows\system32\DRIVERS\pacer.sys
17:59:06.0958 0568 Psched - ok
17:59:07.0036 0568 [ 4712CC14E720ECCCC0AA16949D18AAF1 ] PxHlpa64 C:\Windows\system32\Drivers\PxHlpa64.sys
17:59:07.0051 0568 PxHlpa64 - ok
17:59:07.0145 0568 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys
17:59:07.0270 0568 ql2300 - ok
17:59:07.0348 0568 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys
17:59:07.0379 0568 ql40xx - ok
17:59:07.0472 0568 [ E599148A72888A009A1DC6470BC06794 ] Quick Update Service C:\Program Files\Quick Heal\Quick Heal Total Security\quhlpsvc.exe
17:59:07.0472 0568 Quick Update Service - ok
17:59:07.0519 0568 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\Windows\system32\qwave.dll
17:59:07.0566 0568 QWAVE - ok
17:59:07.0597 0568 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
17:59:07.0613 0568 QWAVEdrv - ok
17:59:07.0660 0568 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
17:59:07.0738 0568 RasAcd - ok
17:59:07.0784 0568 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
17:59:07.0831 0568 RasAgileVpn - ok
17:59:07.0847 0568 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\Windows\System32\rasauto.dll
17:59:07.0925 0568 RasAuto - ok
17:59:07.0972 0568 [ 87A6E852A22991580D6D39ADC4790463 ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
17:59:08.0034 0568 Rasl2tp - ok
17:59:08.0065 0568 [ 47394ED3D16D053F5906EFE5AB51CC83 ] RasMan C:\Windows\System32\rasmans.dll
17:59:08.0128 0568 RasMan - ok
17:59:08.0143 0568 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
17:59:08.0190 0568 RasPppoe - ok
17:59:08.0206 0568 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
17:59:08.0252 0568 RasSstp - ok
17:59:08.0455 0568 [ 3BAC8142102C15D59A87757C1D41DCE5 ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
17:59:08.0533 0568 rdbss - ok
17:59:08.0549 0568 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
17:59:08.0596 0568 rdpbus - ok
17:59:08.0611 0568 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
17:59:08.0642 0568 RDPCDD - ok
17:59:08.0674 0568 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
17:59:08.0736 0568 RDPENCDD - ok
17:59:08.0752 0568 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
17:59:08.0798 0568 RDPREFMP - ok
17:59:08.0845 0568 [ 447DE7E3DEA39D422C1504F245B668B1 ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
17:59:08.0923 0568 RDPWD - ok
17:59:08.0939 0568 [ 634B9A2181D98F15941236886164EC8B ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
17:59:08.0954 0568 rdyboost - ok
17:59:09.0001 0568 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\Windows\System32\mprdim.dll
17:59:09.0157 0568 RemoteAccess - ok
17:59:09.0344 0568 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll
17:59:09.0407 0568 RemoteRegistry - ok
17:59:09.0454 0568 [ 3DD798846E2C28102B922C56E71B7932 ] RFCOMM C:\Windows\system32\DRIVERS\rfcomm.sys
17:59:09.0500 0568 RFCOMM - ok
17:59:09.0532 0568 [ 6FAF5B04BEDC66D300D9D233B2D222F0 ] rimmptsk C:\Windows\system32\DRIVERS\rimmpx64.sys
17:59:09.0594 0568 rimmptsk - ok
17:59:09.0610 0568 [ 67F50C31713106FD1B0F286F86AA2B2E ] rimsptsk C:\Windows\system32\DRIVERS\rimspx64.sys
17:59:09.0641 0568 rimsptsk - ok
17:59:09.0672 0568 [ 4D7EF3D46346EC4C58784DB964B365DE ] rismxdp C:\Windows\system32\DRIVERS\rixdpx64.sys
17:59:09.0703 0568 rismxdp - ok
17:59:09.0750 0568 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
17:59:09.0844 0568 RpcEptMapper - ok
17:59:09.0953 0568 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\Windows\system32\locator.exe
17:59:10.0031 0568 RpcLocator - ok
17:59:10.0062 0568 [ 7266972E86890E2B30C0C322E906B027 ] RpcSs C:\Windows\system32\rpcss.dll
17:59:10.0093 0568 RpcSs - ok
17:59:10.0140 0568 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
17:59:10.0218 0568 rspndr - ok
17:59:10.0234 0568 [ 156F6159457D0AA7E59B62681B56EB90 ] SamSs C:\Windows\system32\lsass.exe
17:59:10.0249 0568 SamSs - ok
17:59:10.0265 0568 [ E3BBB89983DAF5622C1D50CF49F28227 ] sbp2port C:\Windows\system32\DRIVERS\sbp2port.sys
17:59:10.0296 0568 sbp2port - ok
17:59:10.0343 0568 [ DDE33528F026C9F2E182A54138D42640 ] ScanWscS C:\Program Files\Quick Heal\Quick Heal Total Security\SCANWSCS.EXE
17:59:10.0343 0568 ScanWscS - ok
17:59:10.0405 0568 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\Windows\System32\SCardSvr.dll
17:59:10.0499 0568 SCardSvr - ok
17:59:10.0530 0568 [ C94DA20C7E3BA1DCA269BC8460D98387 ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
17:59:10.0624 0568 scfilter - ok
17:59:10.0686 0568 [ 624D0F5FF99428BB90A5B8A4123E918E ] Schedule C:\Windows\system32\schedsvc.dll
17:59:10.0748 0568 Schedule - ok
17:59:10.0795 0568 [ 312E2F82AF11E79906898AC3E3D58A1F ] SCPolicySvc C:\Windows\System32\certprop.dll
17:59:10.0842 0568 SCPolicySvc - ok
17:59:10.0904 0568 [ 54E47AD086782D3AE9417C155CDCEB9B ] sdbus C:\Windows\system32\DRIVERS\sdbus.sys
17:59:10.0936 0568 sdbus - ok
17:59:10.0982 0568 [ 765A27C3279CE11D14CB9E4F5869FCA5 ] SDRSVC C:\Windows\System32\SDRSVC.dll
17:59:11.0076 0568 SDRSVC - ok
17:59:11.0138 0568 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys
17:59:11.0185 0568 secdrv - ok
17:59:11.0216 0568 [ 463B386EBC70F98DA5DFF85F7E654346 ] seclogon C:\Windows\system32\seclogon.dll
17:59:11.0263 0568 seclogon - ok
17:59:11.0279 0568 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\Windows\System32\sens.dll
17:59:11.0310 0568 SENS - ok
17:59:11.0326 0568 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\Windows\system32\sensrsvc.dll
17:59:11.0419 0568 SensrSvc - ok
17:59:11.0435 0568 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
17:59:11.0466 0568 Serenum - ok
17:59:11.0482 0568 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\Windows\system32\DRIVERS\serial.sys
17:59:11.0513 0568 Serial - ok
17:59:11.0528 0568 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys
17:59:11.0591 0568 sermouse - ok
17:59:11.0606 0568 [ C3BC61CE47FF6F4E88AB8A3B429A36AF ] SessionEnv C:\Windows\system32\sessenv.dll
17:59:11.0669 0568 SessionEnv - ok
17:59:11.0700 0568 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\Windows\system32\DRIVERS\sffdisk.sys
17:59:11.0762 0568 sffdisk - ok
17:59:11.0778 0568 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\Windows\system32\DRIVERS\sffp_mmc.sys
17:59:11.0903 0568 sffp_mmc - ok
17:59:11.0918 0568 [ 5588B8C6193EB1522490C122EB94DFFA ] sffp_sd C:\Windows\system32\DRIVERS\sffp_sd.sys
17:59:11.0934 0568 sffp_sd - ok
17:59:11.0950 0568 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
17:59:12.0012 0568 sfloppy - ok
17:59:12.0090 0568 [ 7F475425582163602EF1589C0071E521 ] SftService C:\Program Files (x86)\Dell DataSafe Local Backup\sftservice.EXE
17:59:12.0168 0568 SftService - ok
17:59:12.0246 0568 [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess C:\Windows\System32\ipnathlp.dll
17:59:12.0355 0568 SharedAccess - ok
17:59:12.0418 0568 [ 0298AC45D0EFFFB2DB4BAA7DD186E7BF ] ShellHWDetection C:\Windows\System32\shsvcs.dll
17:59:12.0480 0568 ShellHWDetection - ok
17:59:12.0527 0568 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys
17:59:12.0558 0568 SiSRaid2 - ok
17:59:12.0589 0568 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys
17:59:12.0620 0568 SiSRaid4 - ok
17:59:12.0698 0568 [ F07AF60B152221472FBDB2FECEC4896D ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe
17:59:12.0714 0568 SkypeUpdate - ok
17:59:12.0792 0568 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\Windows\system32\DRIVERS\smb.sys
17:59:12.0886 0568 Smb - ok
17:59:12.0917 0568 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\Windows\System32\snmptrap.exe
17:59:12.0948 0568 SNMPTRAP - ok
17:59:13.0010 0568 [ 9B24DCA429F819DB314F30EE4C6C80FD ] Sound Blaster X-Fi MB Licensing Service C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\XMBLicensing.exe
17:59:13.0026 0568 Sound Blaster X-Fi MB Licensing Service ( UnsignedFile.Multi.Generic ) - warning
17:59:13.0026 0568 Sound Blaster X-Fi MB Licensing Service - detected UnsignedFile.Multi.Generic (1)
17:59:13.0042 0568 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\Windows\system32\drivers\spldr.sys
17:59:13.0073 0568 spldr - ok
17:59:13.0213 0568 [ 567977DC43CC13C4C35ED7084C0B84D5 ] Spooler C:\Windows\System32\spoolsv.exe
17:59:13.0291 0568 Spooler - ok
17:59:13.0385 0568 [ 913D843498553A1BC8F8DBAD6358E49F ] sppsvc C:\Windows\system32\sppsvc.exe
17:59:13.0494 0568 sppsvc - ok
17:59:13.0510 0568 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\Windows\system32\sppuinotify.dll
17:59:13.0588 0568 sppuinotify - ok
17:59:13.0650 0568 [ D630B6F2E8379B6F10DC16E82A426552 ] sprtsvc_DellSupportCenter C:\Program Files (x86)\Dell Support Center\bin\sprtsvc.exe
17:59:13.0681 0568 sprtsvc_DellSupportCenter - ok
17:59:13.0728 0568 [ 2408C0366D96BCDF63E8F1C78E4A29C5 ] srv C:\Windows\system32\DRIVERS\srv.sys
17:59:13.0775 0568 srv - ok
17:59:13.0822 0568 [ 76548F7B818881B47D8D1AE1BE9C11F8 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
17:59:13.0868 0568 srv2 - ok
17:59:13.0900 0568 [ 0AF6E19D39C70844C5CAA8FB0183C36E ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
17:59:13.0946 0568 srvnet - ok
17:59:13.0993 0568 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
17:59:14.0087 0568 SSDPSRV - ok
17:59:14.0102 0568 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\Windows\system32\sstpsvc.dll
17:59:14.0165 0568 SstpSvc - ok
17:59:14.0680 0568 [ 444109453A2B87E6C16BCDA5953E81A9 ] STacSV C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_afc3018f8cfedd20\STacSV64.exe
17:59:14.0711 0568 STacSV - ok
17:59:14.0758 0568 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys
17:59:14.0820 0568 stexstor - ok
17:59:14.0882 0568 [ 02E784FA49032F84964DB90A3ED81890 ] STHDA C:\Windows\system32\DRIVERS\stwrt64.sys
17:59:14.0914 0568 STHDA - ok
17:59:15.0070 0568 [ 52D0E33B681BD0F33FDC08812FEE4F7D ] stisvc C:\Windows\System32\wiaservc.dll
17:59:15.0132 0568 stisvc - ok
17:59:15.0148 0568 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\Windows\system32\DRIVERS\swenum.sys
17:59:15.0148 0568 swenum - ok
17:59:15.0210 0568 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\Windows\System32\swprv.dll
17:59:15.0288 0568 swprv - ok
17:59:15.0335 0568 [ 1657B7442D5CE30533F5C4317716B468 ] SynTP C:\Windows\system32\DRIVERS\SynTP.sys
17:59:15.0366 0568 SynTP - ok
17:59:15.0506 0568 [ 3C1284516A62078FB68F768DE4F1A7BE ] SysMain C:\Windows\system32\sysmain.dll
17:59:15.0538 0568 SysMain - ok
17:59:15.0569 0568 [ 238935C3CF2854886DC7CBB2A0E2CC66 ] TabletInputService C:\Windows\System32\TabSvc.dll
17:59:15.0662 0568 TabletInputService - ok
17:59:15.0756 0568 [ 884264AC597B690C5707C89723BB8E7B ] TapiSrv C:\Windows\System32\tapisrv.dll
17:59:15.0818 0568 TapiSrv - ok
17:59:15.0865 0568 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\Windows\System32\tbssvc.dll
17:59:15.0928 0568 TBS - ok
17:59:16.0021 0568 [ 624C5B3AA4C99B3184BB922D9ECE3FF0 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
17:59:16.0068 0568 Tcpip - ok
17:59:16.0146 0568 [ 624C5B3AA4C99B3184BB922D9ECE3FF0 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
17:59:16.0193 0568 TCPIP6 - ok
17:59:16.0224 0568 [ 76D078AF6F587B162D50210F761EB9ED ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
17:59:16.0271 0568 tcpipreg - ok
17:59:16.0302 0568 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
17:59:16.0396 0568 TDPIPE - ok
17:59:16.0427 0568 [ 7518F7BCFD4B308ABC9192BACAF6C970 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
17:59:16.0489 0568 TDTCP - ok
17:59:16.0520 0568 [ 079125C4B17B01FCAEEBCE0BCB290C0F ] tdx C:\Windows\system32\DRIVERS\tdx.sys
17:59:16.0583 0568 tdx - ok
17:59:16.0598 0568 [ C448651339196C0E869A355171875522 ] TermDD C:\Windows\system32\DRIVERS\termdd.sys
17:59:16.0598 0568 TermDD - ok
17:59:16.0801 0568 [ 0F05EC2887BFE197AD82A13287D2F404 ] TermService C:\Windows\System32\termsrv.dll
17:59:16.0864 0568 TermService - ok
17:59:16.0879 0568 [ F0344071948D1A1FA732231785A0664C ] Themes C:\Windows\system32\themeservice.dll
17:59:16.0895 0568 Themes - ok
17:59:16.0942 0568 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\Windows\system32\mmcss.dll
17:59:16.0988 0568 THREADORDER - ok
17:59:17.0004 0568 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\Windows\System32\trkwks.dll
17:59:17.0082 0568 TrkWks - ok
17:59:17.0207 0568 [ 840F7FB849F5887A49BA18C13B2DA920 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
17:59:17.0222 0568 TrustedInstaller - ok
17:59:17.0254 0568 [ 61B96C26131E37B24E93327A0BD1FB95 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
17:59:17.0316 0568 tssecsrv - ok
17:59:17.0363 0568 [ 3836171A2CDF3AF8EF10856DB9835A70 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
17:59:17.0410 0568 tunnel - ok
17:59:17.0456 0568 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys
17:59:17.0503 0568 uagp35 - ok
17:59:17.0519 0568 [ D47BAEAD86C65D4F4069D7CE0A4EDCEB ] udfs C:\Windows\system32\DRIVERS\udfs.sys
17:59:17.0628 0568 udfs - ok
17:59:17.0675 0568 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\Windows\system32\UI0Detect.exe
17:59:17.0753 0568 UI0Detect - ok
17:59:17.0784 0568 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\Windows\system32\DRIVERS\uliagpkx.sys
17:59:17.0815 0568 uliagpkx - ok
17:59:17.0862 0568 [ EAB6C35E62B1B0DB0D1B48B671D3A117 ] umbus C:\Windows\system32\DRIVERS\umbus.sys
17:59:17.0893 0568 umbus - ok
17:59:17.0924 0568 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\Windows\system32\DRIVERS\umpass.sys
17:59:17.0987 0568 UmPass - ok
17:59:18.0018 0568 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\Windows\System32\upnphost.dll
17:59:18.0158 0568 upnphost - ok
17:59:18.0221 0568 [ F724B03C3DFAACF08D17D38BF3333583 ] USBAAPL64 C:\Windows\system32\Drivers\usbaapl64.sys
17:59:18.0299 0568 USBAAPL64 - ok
17:59:18.0361 0568 [ 77B01BC848298223A95D4EC23E1785A1 ] usbaudio C:\Windows\system32\drivers\usbaudio.sys
17:59:18.0439 0568 usbaudio - ok
17:59:18.0455 0568 [ 7B6A127C93EE590E4D79A5F2A76FE46F ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
17:59:18.0502 0568 usbccgp - ok
17:59:18.0548 0568 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\Windows\system32\DRIVERS\usbcir.sys
17:59:18.0642 0568 usbcir - ok
17:59:18.0673 0568 [ 92969BA5AC44E229C55A332864F79677 ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
17:59:18.0704 0568 usbehci - ok
17:59:18.0767 0568 [ E7DF1CFD28CA86B35EF5ADD0735CEEF3 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
17:59:18.0814 0568 usbhub - ok
17:59:18.0876 0568 [ F1BB1E55F1E7A65C5839CCC7B36D773E ] usbohci C:\Windows\system32\drivers\usbohci.sys
17:59:18.0954 0568 usbohci - ok
17:59:18.0970 0568 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
17:59:19.0001 0568 usbprint - ok
17:59:19.0063 0568 [ F39983647BC1F3E6100778DDFE9DCE29 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
17:59:19.0110 0568 USBSTOR - ok
17:59:19.0126 0568 [ BC3070350A491D84B518D7CCA9ABD36F ] usbuhci C:\Windows\system32\DRIVERS\usbuhci.sys
17:59:19.0157 0568 usbuhci - ok
17:59:19.0204 0568 [ 7CB8C573C6E4A2714402CC0A36EAB4FE ] usbvideo C:\Windows\System32\Drivers\usbvideo.sys
17:59:19.0250 0568 usbvideo - ok
17:59:19.0297 0568 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\Windows\System32\uxsms.dll
17:59:19.0375 0568 UxSms - ok
17:59:19.0391 0568 [ 156F6159457D0AA7E59B62681B56EB90 ] VaultSvc C:\Windows\system32\lsass.exe
17:59:19.0406 0568 VaultSvc - ok
17:59:19.0469 0568 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\Windows\system32\DRIVERS\vdrvroot.sys
17:59:19.0484 0568 vdrvroot - ok
17:59:19.0516 0568 [ 44D73E0BBC1D3C8981304BA15135C2F2 ] vds C:\Windows\System32\vds.exe
17:59:19.0578 0568 vds - ok
17:59:19.0625 0568 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
17:59:19.0687 0568 vga - ok
17:59:19.0703 0568 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\Windows\System32\drivers\vga.sys
17:59:19.0765 0568 VgaSave - ok
17:59:19.0812 0568 [ C82E748660F62A242B2DFAC1442F22A4 ] vhdmp C:\Windows\system32\DRIVERS\vhdmp.sys
17:59:19.0859 0568 vhdmp - ok
17:59:19.0890 0568 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\Windows\system32\DRIVERS\viaide.sys
17:59:19.0906 0568 viaide - ok
17:59:19.0937 0568 [ 2B1A3DAE2B4E70DBBA822B7A03FBD4A3 ] volmgr C:\Windows\system32\DRIVERS\volmgr.sys
17:59:19.0952 0568 volmgr - ok
17:59:19.0968 0568 [ 99B0CBB569CA79ACAED8C91461D765FB ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
17:59:20.0015 0568 volmgrx - ok
17:59:20.0046 0568 [ 58F82EED8CA24B461441F9C3E4F0BF5C ] volsnap C:\Windows\system32\DRIVERS\volsnap.sys
17:59:20.0077 0568 volsnap - ok
17:59:20.0108 0568 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys
17:59:20.0155 0568 vsmraid - ok
17:59:20.0264 0568 [ 787898BF9FB6D7BD87A36E2D95C899BA ] VSS C:\Windows\system32\vssvc.exe
17:59:20.0358 0568 VSS - ok
17:59:20.0389 0568 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\Windows\System32\drivers\vwifibus.sys
17:59:20.0467 0568 vwifibus - ok
17:59:20.0514 0568 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\Windows\system32\w32time.dll
17:59:20.0576 0568 W32Time - ok
17:59:20.0592 0568 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys
17:59:20.0623 0568 WacomPen - ok
17:59:20.0670 0568 [ 47CA49400643EFFD3F1C9A27E1D69324 ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
17:59:20.0701 0568 WANARP - ok
17:59:20.0732 0568 [ 47CA49400643EFFD3F1C9A27E1D69324 ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
17:59:20.0764 0568 Wanarpv6 - ok
17:59:20.0842 0568 [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe
17:59:20.0935 0568 WatAdminSvc - ok
17:59:20.0998 0568 [ 5AB1BB85BD8B5089CC5D64200DEDAE68 ] wbengine C:\Windows\system32\wbengine.exe
17:59:21.0107 0568 wbengine - ok
17:59:21.0138 0568 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
17:59:21.0185 0568 WbioSrvc - ok
17:59:21.0232 0568 [ DD1BAE8EBFC653824D29CCF8C9054D68 ] wcncsvc C:\Windows\System32\wcncsvc.dll
17:59:21.0294 0568 wcncsvc - ok
17:59:21.0310 0568 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
17:59:21.0356 0568 WcsPlugInService - ok
17:59:21.0388 0568 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\Windows\system32\DRIVERS\wd.sys
17:59:21.0434 0568 Wd - ok
17:59:21.0450 0568 [ 441BD2D7B4F98134C3A4F9FA570FD250 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
17:59:21.0481 0568 Wdf01000 - ok
17:59:21.0512 0568 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\Windows\system32\wdi.dll
17:59:21.0544 0568 WdiServiceHost - ok
17:59:21.0559 0568 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\Windows\system32\wdi.dll
17:59:21.0575 0568 WdiSystemHost - ok
17:59:21.0622 0568 [ 733006127F235BE7C35354EBEE7B9A7B ] WebClient C:\Windows\System32\webclnt.dll
17:59:21.0653 0568 WebClient - ok
17:59:21.0668 0568 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\Windows\system32\wecsvc.dll
17:59:21.0746 0568 Wecsvc - ok
17:59:21.0762 0568 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\Windows\System32\wercplsupport.dll
17:59:21.0809 0568 wercplsupport - ok
17:59:21.0824 0568 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\Windows\System32\WerSvc.dll
17:59:21.0887 0568 WerSvc - ok
17:59:21.0918 0568 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
17:59:21.0949 0568 WfpLwf - ok
17:59:22.0012 0568 [ B14EF15BD757FA488F9C970EEE9C0D35 ] WimFltr C:\Windows\system32\DRIVERS\wimfltr.sys
17:59:22.0043 0568 WimFltr - ok
17:59:22.0058 0568 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\Windows\system32\drivers\wimmount.sys
17:59:22.0121 0568 WIMMount - ok
17:59:22.0121 0568 WinDefend - ok
17:59:22.0136 0568 WinHttpAutoProxySvc - ok
17:59:22.0214 0568 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
17:59:22.0277 0568 Winmgmt - ok
17:59:22.0355 0568 [ 41FBB751936B387F9179E7F03A74FE29 ] WinRM C:\Windows\system32\WsmSvc.dll
17:59:22.0480 0568 WinRM - ok
17:59:22.0542 0568 [ 817EAFF5D38674EDD7713B9DFB8E9791 ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys
17:59:22.0589 0568 WinUsb - ok
17:59:22.0604 0568 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\Windows\System32\wlansvc.dll
17:59:22.0651 0568 Wlansvc - ok
17:59:22.0682 0568 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\Windows\system32\DRIVERS\wmiacpi.sys
17:59:22.0698 0568 WmiAcpi - ok
17:59:22.0745 0568 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
17:59:22.0807 0568 wmiApSrv - ok
17:59:22.0838 0568 WMPNetworkSvc - ok
17:59:22.0838 0568 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\Windows\System32\wpcsvc.dll
17:59:22.0948 0568 WPCSvc - ok
17:59:22.0963 0568 [ 2E57DDF2880A7E52E76F41C7E96D327B ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
17:59:23.0026 0568 WPDBusEnum - ok
17:59:23.0057 0568 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
17:59:23.0119 0568 ws2ifsl - ok
17:59:23.0150 0568 [ 8F9F3969933C02DA96EB0F84576DB43E ] wscsvc C:\Windows\System32\wscsvc.dll
17:59:23.0182 0568 wscsvc - ok
17:59:23.0182 0568 WSearch - ok
17:59:23.0275 0568 [ A013B692640CF71DB221A797F4676248 ] wsnf C:\Windows\system32\DRIVERS\wsnf.sys
17:59:23.0291 0568 wsnf - ok
17:59:23.0338 0568 [ A013B692640CF71DB221A797F4676248 ] wsnfmp C:\Windows\system32\DRIVERS\wsnf.sys
17:59:23.0338 0568 wsnfmp - ok
17:59:23.0384 0568 [ 344349F787555FDEF1DEE62056E6ECF0 ] wstif C:\Windows\system32\drivers\wstif.sys
17:59:23.0400 0568 wstif - ok
17:59:23.0462 0568 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv C:\Windows\system32\wuaueng.dll
17:59:23.0525 0568 wuauserv - ok
17:59:23.0540 0568 [ 7CADC74271DD6461C452C271B30BD378 ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
17:59:23.0587 0568 WudfPf - ok
17:59:23.0618 0568 [ 3B197AF0FFF08AA66B6B2241CA538D64 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
17:59:23.0681 0568 WUDFRd - ok
17:59:23.0712 0568 [ B551D6637AA0E132C18AC6E504F7B79B ] wudfsvc C:\Windows\System32\WUDFSvc.dll
17:59:23.0759 0568 wudfsvc - ok
17:59:23.0774 0568 [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc C:\Windows\System32\wwansvc.dll
17:59:23.0821 0568 WwanSvc - ok
17:59:23.0852 0568 ================ Scan global ===============================
17:59:23.0899 0568 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
17:59:23.0930 0568 [ 0CB6EBF4B461A6043353C570BD72A1E1 ] C:\Windows\system32\winsrv.dll
17:59:23.0946 0568 [ 0CB6EBF4B461A6043353C570BD72A1E1 ] C:\Windows\system32\winsrv.dll
17:59:23.0993 0568 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
17:59:24.0024 0568 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
17:59:24.0024 0568 [Global] - ok
17:59:24.0024 0568 ================ Scan MBR ==================================
17:59:24.0040 0568 [ 5C616939100B85E558DA92B899A0FC36 ] \Device\Harddisk0\DR0
17:59:24.0383 0568 \Device\Harddisk0\DR0 - ok
17:59:24.0383 0568 ================ Scan VBR ==================================
17:59:24.0383 0568 [ D7378BF694D12B3BE92B25933EFD13FA ] \Device\Harddisk0\DR0\Partition1
17:59:24.0398 0568 \Device\Harddisk0\DR0\Partition1 - ok
17:59:24.0430 0568 [ EBBE15E9AC9BD469CB60522A92BCC846 ] \Device\Harddisk0\DR0\Partition2
17:59:24.0430 0568 \Device\Harddisk0\DR0\Partition2 - ok
17:59:24.0430 0568 ================ Scan active images ========================
17:59:24.0445 0568 [ 3E588B60EC061686BA05D33574A344C6 ] C:\Windows\System32\drivers\crashdmp.sys
17:59:24.0445 0568 C:\Windows\System32\drivers\crashdmp.sys - ok
17:59:24.0445 0568 [ 839B5FE3D48E9F35B22C21A3D5103F6C ] C:\Windows\System32\drivers\Dumpata.sys
17:59:24.0445 0568 C:\Windows\System32\drivers\Dumpata.sys - ok
17:59:24.0445 0568 [ 814DB88F2641691575A455CF25354098 ] C:\Windows\System32\drivers\dumpfve.sys
17:59:24.0445 0568 C:\Windows\System32\drivers\dumpfve.sys - ok
17:59:24.0461 0568 [ 5C37497276E3B3A5488B23A326A754B7 ] C:\Windows\System32\drivers\msahci.sys
17:59:24.0461 0568 C:\Windows\System32\drivers\msahci.sys - ok
17:59:24.0461 0568 [ 83D2D75E1EFB81B3450C18131443F7DB ] C:\Windows\System32\drivers\cdrom.sys
17:59:24.0461 0568 C:\Windows\System32\drivers\cdrom.sys - ok
17:59:24.0476 0568 [ 5CAC29C48D9398ED1B99C7E16C00F96D ] C:\Windows\System32\drivers\ggc.sys
17:59:24.0476 0568 C:\Windows\System32\drivers\ggc.sys - ok
17:59:24.0476 0568 [ 16A47CE2DECC9B099349A5F840654746 ] C:\Windows\System32\drivers\beep.sys
17:59:24.0476 0568 C:\Windows\System32\drivers\beep.sys - ok
17:59:24.0492 0568 [ 9899284589F75FA8724FF3D16AED75C1 ] C:\Windows\System32\drivers\null.sys
17:59:24.0492 0568 C:\Windows\System32\drivers\null.sys - ok
17:59:24.0492 0568 [ FC438D1430B28618E2D0C7C332A710AD ] C:\Windows\System32\drivers\watchdog.sys
17:59:24.0492 0568 C:\Windows\System32\drivers\watchdog.sys - ok
17:59:24.0508 0568 [ 53E92A310193CB3C03BEA963DE7D9CFC ] C:\Windows\System32\drivers\vga.sys
17:59:24.0508 0568 C:\Windows\System32\drivers\vga.sys - ok
17:59:24.0508 0568 [ E7353D59C9842BC7299FAEB7E7E09340 ] C:\Windows\System32\drivers\videoprt.sys
17:59:24.0508 0568 C:\Windows\System32\drivers\videoprt.sys - ok
17:59:24.0523 0568 [ CEA6CC257FC9B7715F1C2B4849286D24 ] C:\Windows\System32\drivers\RDPCDD.sys
17:59:24.0523 0568 C:\Windows\System32\drivers\RDPCDD.sys - ok
17:59:24.0523 0568 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] C:\Windows\System32\drivers\msfs.sys
17:59:24.0523 0568 C:\Windows\System32\drivers\msfs.sys - ok
17:59:24.0539 0568 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] C:\Windows\System32\drivers\npfs.sys
17:59:24.0539 0568 C:\Windows\System32\drivers\npfs.sys - ok
17:59:24.0539 0568 [ BB5971A4F00659529A5C44831AF22365 ] C:\Windows\System32\drivers\RDPENCDD.sys
17:59:24.0539 0568 C:\Windows\System32\drivers\RDPENCDD.sys - ok
17:59:24.0554 0568 [ 216F3FA57533D98E1F74DED70113177A ] C:\Windows\System32\drivers\RDPREFMP.sys
17:59:24.0554 0568 C:\Windows\System32\drivers\RDPREFMP.sys - ok
17:59:24.0554 0568 [ 50555005E22A56AEF10BE607472D0BDC ] C:\Windows\System32\drivers\FWPKCLNT.SYS
17:59:24.0554 0568 C:\Windows\System32\drivers\FWPKCLNT.SYS - ok
17:59:24.0570 0568 [ 624C5B3AA4C99B3184BB922D9ECE3FF0 ] C:\Windows\System32\drivers\tcpip.sys
17:59:24.0570 0568 C:\Windows\System32\drivers\tcpip.sys - ok
17:59:24.0570 0568 [ 0CA6FE26ACC7FFEE1BD0463F40835F32 ] C:\Windows\System32\drivers\tdi.sys
17:59:24.0570 0568 C:\Windows\System32\drivers\tdi.sys - ok
17:59:24.0570 0568 [ 079125C4B17B01FCAEEBCE0BCB290C0F ] C:\Windows\System32\drivers\tdx.sys
17:59:24.0570 0568 C:\Windows\System32\drivers\tdx.sys - ok
17:59:24.0586 0568 [ 9162B273A44AB9DCE5B44362731D062A ] C:\Windows\System32\drivers\netbt.sys
17:59:24.0586 0568 C:\Windows\System32\drivers\netbt.sys - ok
17:59:24.0586 0568 [ 344349F787555FDEF1DEE62056E6ECF0 ] C:\Windows\System32\drivers\wstif.sys
17:59:24.0586 0568 C:\Windows\System32\drivers\wstif.sys - ok
17:59:24.0601 0568 [ DB9D6C6B2CD95A9CA414D045B627422E ] C:\Windows\System32\drivers\afd.sys
17:59:24.0601 0568 C:\Windows\System32\drivers\afd.sys - ok
17:59:24.0601 0568 [ 86743D9F5D2B1048062B14B1D84501C4 ] C:\Windows\System32\drivers\netbios.sys
17:59:24.0601 0568 C:\Windows\System32\drivers\netbios.sys - ok
17:59:24.0601 0568 [ EE992183BD8EAEFD9973F352E587A299 ] C:\Windows\System32\drivers\pacer.sys
17:59:24.0601 0568 C:\Windows\System32\drivers\pacer.sys - ok
17:59:24.0617 0568 [ 47CA49400643EFFD3F1C9A27E1D69324 ] C:\Windows\System32\drivers\wanarp.sys
17:59:24.0617 0568 C:\Windows\System32\drivers\wanarp.sys - ok
17:59:24.0617 0568 [ 611B23304BF067451A9FDEE01FBDD725 ] C:\Windows\System32\drivers\wfplwf.sys
17:59:24.0617 0568 C:\Windows\System32\drivers\wfplwf.sys - ok
17:59:24.0617 0568 [ C448651339196C0E869A355171875522 ] C:\Windows\System32\drivers\termdd.sys
17:59:24.0617 0568 C:\Windows\System32\drivers\termdd.sys - ok
17:59:24.0617 0568 [ 61583EE3C3A17003C4ACD0475646B4D3 ] C:\Windows\System32\drivers\blbdrive.sys
17:59:24.0617 0568 C:\Windows\System32\drivers\blbdrive.sys - ok
17:59:24.0632 0568 [ 9C253CE7311CA60FC11C774692A13208 ] C:\Windows\System32\drivers\dfsc.sys
17:59:24.0632 0568 C:\Windows\System32\drivers\dfsc.sys - ok
17:59:24.0632 0568 [ 13096B05847EC78F0977F2C0F79E9AB3 ] C:\Windows\System32\drivers\discache.sys
17:59:24.0632 0568 C:\Windows\System32\drivers\discache.sys - ok
17:59:24.0648 0568 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] C:\Windows\System32\drivers\mssmbios.sys
17:59:24.0648 0568 C:\Windows\System32\drivers\mssmbios.sys - ok
17:59:24.0648 0568 [ E7F5AE18AF4168178A642A9247C63001 ] C:\Windows\System32\drivers\nsiproxy.sys
17:59:24.0648 0568 C:\Windows\System32\drivers\nsiproxy.sys - ok
17:59:24.0648 0568 [ 3BAC8142102C15D59A87757C1D41DCE5 ] C:\Windows\System32\drivers\rdbss.sys
17:59:24.0648 0568 C:\Windows\System32\drivers\rdbss.sys - ok
17:59:24.0664 0568 [ 3836171A2CDF3AF8EF10856DB9835A70 ] C:\Windows\System32\drivers\tunnel.sys
17:59:24.0664 0568 C:\Windows\System32\drivers\tunnel.sys - ok
17:59:24.0664 0568 [ 68DB778AC4FD7896CE2F153353BA15C8 ] C:\Windows\System32\ntdll.dll
17:59:24.0664 0568 C:\Windows\System32\ntdll.dll - ok
17:59:24.0664 0568 [ 1911A3356FA3F77CCC825CCBAC038C2A ] C:\Windows\System32\smss.exe
17:59:24.0664 0568 C:\Windows\System32\smss.exe - ok
17:59:24.0679 0568 [ 8B7F8E882A649D81CEA1EDE9BBB68FFF ] C:\Windows\System32\autochk.exe
17:59:24.0679 0568 C:\Windows\System32\autochk.exe - ok
17:59:24.0679 0568 [ 677AA5991026A65ADA128C4B59CF2BAD ] C:\Windows\System32\drivers\igdkmd64.sys
17:59:24.0679 0568 C:\Windows\System32\drivers\igdkmd64.sys - ok
17:59:24.0679 0568 [ 1633B9ABF52784A1331476397A48CBEF ] C:\Windows\System32\drivers\dxgkrnl.sys
17:59:24.0679 0568 C:\Windows\System32\drivers\dxgkrnl.sys - ok
17:59:24.0695 0568 [ 3238B9078E0766AB5E62DC737A809ADB ] C:\Windows\System32\drivers\dxgmms1.sys
17:59:24.0695 0568 C:\Windows\System32\drivers\dxgmms1.sys - ok
17:59:24.0695 0568 [ 6A4EA4C29FBF78112AE20013FB71E9C1 ] C:\Windows\System32\setupapi.dll
17:59:24.0695 0568 C:\Windows\System32\setupapi.dll - ok
17:59:24.0695 0568 [ 0A49913402747A0B67DE940FB42CBDBB ] C:\Windows\System32\drivers\hdaudbus.sys
17:59:24.0695 0568 C:\Windows\System32\drivers\hdaudbus.sys - ok
17:59:24.0710 0568 [ 92969BA5AC44E229C55A332864F79677 ] C:\Windows\System32\drivers\usbehci.sys
17:59:24.0710 0568 C:\Windows\System32\drivers\usbehci.sys - ok
17:59:24.0710 0568 [ BBF36EB7117F6B976975C9D8D877DF18 ] C:\Windows\System32\drivers\usbport.sys
17:59:24.0710 0568 C:\Windows\System32\drivers\usbport.sys - ok
17:59:24.0726 0568 [ BC3070350A491D84B518D7CCA9ABD36F ] C:\Windows\System32\drivers\usbuhci.sys
17:59:24.0726 0568 C:\Windows\System32\drivers\usbuhci.sys - ok
17:59:24.0726 0568 [ 705283C02177809CA9FA7CC58A4F1E77 ] C:\Windows\System32\drivers\NETw5v64.sys
17:59:24.0726 0568 C:\Windows\System32\drivers\NETw5v64.sys - ok
17:59:24.0726 0568 [ 7DBAFE10C1B777305C80BEA42FBDA710 ] C:\Windows\System32\drivers\k57nd60a.sys
17:59:24.0726 0568 C:\Windows\System32\drivers\k57nd60a.sys - ok
17:59:24.0742 0568 [ 1B00662092F9F9568B995902F0CC40D5 ] C:\Windows\System32\drivers\1394ohci.sys
17:59:24.0742 0568 C:\Windows\System32\drivers\1394ohci.sys - ok
17:59:24.0742 0568 [ 54E47AD086782D3AE9417C155CDCEB9B ] C:\Windows\System32\drivers\sdbus.sys
17:59:24.0742 0568 C:\Windows\System32\drivers\sdbus.sys - ok
17:59:24.0742 0568 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] C:\Windows\System32\drivers\i8042prt.sys
17:59:24.0742 0568 C:\Windows\System32\drivers\i8042prt.sys - ok
17:59:24.0757 0568 [ 6FAF5B04BEDC66D300D9D233B2D222F0 ] C:\Windows\System32\drivers\rimmpx64.sys
17:59:24.0757 0568 C:\Windows\System32\drivers\rimmpx64.sys - ok
17:59:24.0757 0568 [ 67F50C31713106FD1B0F286F86AA2B2E ] C:\Windows\System32\drivers\rimspx64.sys
17:59:24.0757 0568 C:\Windows\System32\drivers\rimspx64.sys - ok
17:59:24.0757 0568 [ 4D7EF3D46346EC4C58784DB964B365DE ] C:\Windows\System32\drivers\rixdpx64.sys
17:59:24.0757 0568 C:\Windows\System32\drivers\rixdpx64.sys - ok
17:59:24.0773 0568 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] C:\Windows\System32\drivers\kbdclass.sys
17:59:24.0773 0568 C:\Windows\System32\drivers\kbdclass.sys - ok
17:59:24.0773 0568 [ 1657B7442D5CE30533F5C4317716B468 ] C:\Windows\System32\drivers\SynTP.sys
17:59:24.0773 0568 C:\Windows\System32\drivers\SynTP.sys - ok
17:59:24.0773 0568 [ 70B5A5A7E0DDD5EBAF6E35B7257A6B9D ] C:\Windows\System32\drivers\usbd.sys
17:59:24.0773 0568 C:\Windows\System32\drivers\usbd.sys - ok
17:59:24.0788 0568 [ E1B1255D3A4B3367FE4E9C71E62E3B5A ] C:\Windows\System32\gdi32.dll
17:59:24.0788 0568 C:\Windows\System32\gdi32.dll - ok
17:59:24.0788 0568 [ 28C0B5024F5C5A438E78B188CFC81B7F ] C:\Windows\System32\normaliz.dll
17:59:24.0788 0568 C:\Windows\System32\normaliz.dll - ok
17:59:24.0804 0568 [ 044FE45FFD6AD40E3BBBE60B7F41BABE ] C:\Windows\System32\nsi.dll
17:59:24.0804 0568 C:\Windows\System32\nsi.dll - ok
17:59:24.0804 0568 [ 15BDC173EB5FA4F92B67D9FFB269A6EA ] C:\Windows\System32\shlwapi.dll
17:59:24.0804 0568 C:\Windows\System32\shlwapi.dll - ok
17:59:24.0804 0568 [ 7D27EA49F3C1F687D357E77A470AEA99 ] C:\Windows\System32\drivers\mouclass.sys
17:59:24.0804 0568 C:\Windows\System32\drivers\mouclass.sys - ok
17:59:24.0820 0568 [ 7ECFF9B22276B73F43A99A15A6094E90 ] C:\Windows\System32\drivers\agilevpn.sys
17:59:24.0820 0568 C:\Windows\System32\drivers\agilevpn.sys - ok
17:59:24.0820 0568 [ 0840155D0BDDF1190F84A663C284BD33 ] C:\Windows\System32\drivers\CmBatt.sys
17:59:24.0820 0568 C:\Windows\System32\drivers\CmBatt.sys - ok
17:59:24.0820 0568 [ F26B3A86F6FA87CA360B879581AB4123 ] C:\Windows\System32\drivers\CompositeBus.sys
17:59:24.0820 0568 C:\Windows\System32\drivers\CompositeBus.sys - ok
17:59:24.0835 0568 [ E403AACF8C7BB11375122D2464560311 ] C:\Windows\System32\drivers\GEARAspiWDM.sys
17:59:24.0835 0568 C:\Windows\System32\drivers\GEARAspiWDM.sys - ok
17:59:24.0835 0568 [ ADA036632C664CAA754079041CF1F8C1 ] C:\Windows\System32\drivers\intelppm.sys
17:59:24.0835 0568 C:\Windows\System32\drivers\intelppm.sys - ok
17:59:24.0835 0568 [ F6FF8944478594D0E414D3F048F0D778 ] C:\Windows\System32\drivers\wmiacpi.sys
17:59:24.0835 0568 C:\Windows\System32\drivers\wmiacpi.sys - ok
17:59:24.0851 0568 [ 30639C932D9FEF22B31268FE25A1B6E5 ] C:\Windows\System32\drivers\ndistapi.sys
17:59:24.0851 0568 C:\Windows\System32\drivers\ndistapi.sys - ok
17:59:24.0851 0568 [ 557DFAB9CA1FCB036AC77564C010DAD3 ] C:\Windows\System32\drivers\ndiswan.sys
17:59:24.0851 0568 C:\Windows\System32\drivers\ndiswan.sys - ok
17:59:24.0866 0568 [ 87A6E852A22991580D6D39ADC4790463 ] C:\Windows\System32\drivers\rasl2tp.sys
17:59:24.0866 0568 C:\Windows\System32\drivers\rasl2tp.sys - ok
17:59:24.0866 0568 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] C:\Windows\System32\drivers\raspppoe.sys
17:59:24.0866 0568 C:\Windows\System32\drivers\raspppoe.sys - ok
17:59:24.0866 0568 [ 5C7AF4A20F5BF67042B2E613D123D111 ] C:\Windows\System32\drivers\ks.sys
17:59:24.0866 0568 C:\Windows\System32\drivers\ks.sys - ok
17:59:24.0882 0568 [ 27CC19E81BA5E3403C48302127BDA717 ] C:\Windows\System32\drivers\raspptp.sys
17:59:24.0882 0568 C:\Windows\System32\drivers\raspptp.sys - ok
17:59:24.0882 0568 [ E8B1E447B008D07FF47D016C2B0EEECB ] C:\Windows\System32\drivers\rassstp.sys
17:59:24.0882 0568 C:\Windows\System32\drivers\rassstp.sys - ok
17:59:24.0882 0568 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] C:\Windows\System32\drivers\swenum.sys
17:59:24.0882 0568 C:\Windows\System32\drivers\swenum.sys - ok
17:59:24.0882 0568 [ EAB6C35E62B1B0DB0D1B48B671D3A117 ] C:\Windows\System32\drivers\umbus.sys
17:59:24.0882 0568 C:\Windows\System32\drivers\umbus.sys - ok
17:59:24.0898 0568 [ A013B692640CF71DB221A797F4676248 ] C:\Windows\System32\drivers\wsnf.sys
17:59:24.0898 0568 C:\Windows\System32\drivers\wsnf.sys - ok
17:59:24.0898 0568 [ AC8F79017C5C1FB316930EDEAD0AF517 ] C:\Windows\System32\ole32.dll
17:59:24.0898 0568 C:\Windows\System32\ole32.dll - ok
17:59:24.0898 0568 [ E7DF1CFD28CA86B35EF5ADD0735CEEF3 ] C:\Windows\System32\drivers\usbhub.sys
17:59:24.0898 0568 C:\Windows\System32\drivers\usbhub.sys - ok
17:59:24.0913 0568 [ 25983DE69B57142039AC8D95E71CD9C9 ] C:\Windows\System32\clbcatq.dll
17:59:24.0913 0568 C:\Windows\System32\clbcatq.dll - ok
17:59:24.0913 0568 [ 72D7B3EA16946E8F0CF7458150031CC6 ] C:\Windows\System32\user32.dll
17:59:24.0913 0568 C:\Windows\System32\user32.dll - ok
17:59:24.0929 0568 [ 5F2BDCA5FA0F20A6F452CF0EE2A2B18C ] C:\Windows\System32\usp10.dll
17:59:24.0929 0568 C:\Windows\System32\usp10.dll - ok
17:59:24.0929 0568 [ E5CBF5F8623BBD1DB7B8148A66F6EBA4 ] C:\Windows\System32\Wldap32.dll
17:59:24.0929 0568 C:\Windows\System32\Wldap32.dll - ok
17:59:24.0929 0568 [ 83404DCBCE4925B6A5A77C5170F46D86 ] C:\Windows\System32\sechost.dll
17:59:24.0929 0568 C:\Windows\System32\sechost.dll - ok
17:59:24.0944 0568 [ AA2C08CE85653B1A0D2E4AB407FA176C ] C:\Windows\System32\imm32.dll
17:59:24.0944 0568 C:\Windows\System32\imm32.dll - ok
17:59:24.0944 0568 [ 579F6AFC6A6561951FA2202EFC3FE485 ] C:\Windows\System32\msvcrt.dll
17:59:24.0944 0568 C:\Windows\System32\msvcrt.dll - ok
17:59:24.0944 0568 [ C431EAF5CAA1C82CAC2534A2EAB348A3 ] C:\Windows\System32\msctf.dll
17:59:24.0944 0568 C:\Windows\System32\msctf.dll - ok
17:59:24.0960 0568 [ 3D165C53E40236A68B7102D1A622D4E0 ] C:\Windows\System32\wininet.dll
17:59:24.0960 0568 C:\Windows\System32\wininet.dll - ok
17:59:24.0960 0568 [ DDBD24DC04DA5FD0EDF45CF72B7C01E2 ] C:\Windows\System32\kernel32.dll
17:59:24.0960 0568 C:\Windows\System32\kernel32.dll - ok
17:59:24.0960 0568 [ 2A46451EE42BCD2C842D8AA4923FAC16 ] C:\Windows\System32\oleaut32.dll
17:59:24.0960 0568 C:\Windows\System32\oleaut32.dll - ok
17:59:24.0976 0568 [ 48C903068B6BDAB5EF650B9CBEE85295 ] C:\Windows\System32\rpcrt4.dll
17:59:24.0976 0568 C:\Windows\System32\rpcrt4.dll - ok
17:59:24.0976 0568 [ F94B8644F3AFE040EC6E1B6FBC9EFAA9 ] C:\Windows\System32\comdlg32.dll
17:59:24.0976 0568 C:\Windows\System32\comdlg32.dll - ok
17:59:24.0976 0568 [ D87E1E59C73C1F98D5DED5B3850C40F5 ] C:\Windows\System32\psapi.dll
17:59:24.0976 0568 C:\Windows\System32\psapi.dll - ok
17:59:24.0991 0568 [ F7CE0C81C545364020ED8203CF0A633E ] C:\Windows\System32\difxapi.dll
17:59:24.0991 0568 C:\Windows\System32\difxapi.dll - ok
17:59:24.0991 0568 [ 15A54626213EBF003F7D4C9D8380A656 ] C:\Windows\System32\imagehlp.dll
17:59:24.0991 0568 C:\Windows\System32\imagehlp.dll - ok
17:59:24.0991 0568 [ D202223587518B13D72D68937B7E3F70 ] C:\Windows\System32\lpk.dll
17:59:24.0991 0568 C:\Windows\System32\lpk.dll - ok
*************

#12 dappy

dappy
  • Topic Starter

  • Members
  • 39 posts
  • OFFLINE
  •  
  • Local time:03:25 PM

Posted 23 September 2012 - 07:08 PM

TDSSKiller Log Part 2:-

*****************************


17:59:25.0007 0568 [ 7083F463788CB34FCC42F565D56F89E8 ] C:\Windows\System32\ws2_32.dll
17:59:25.0007 0568 C:\Windows\System32\ws2_32.dll - ok
17:59:25.0007 0568 [ 2885A3C3148F725CDA0B4C593BA8F7CE ] C:\Windows\System32\urlmon.dll
17:59:25.0007 0568 C:\Windows\System32\urlmon.dll - ok
17:59:25.0007 0568 [ 48CC125A6AB6C72A13E3D3E9C39AD9D9 ] C:\Windows\System32\shell32.dll
17:59:25.0007 0568 C:\Windows\System32\shell32.dll - ok
17:59:25.0022 0568 [ D841F7629505EE542E26E5F0A4D20101 ] C:\Windows\System32\iertutil.dll
17:59:25.0022 0568 C:\Windows\System32\iertutil.dll - ok
17:59:25.0022 0568 [ 6DF46D2BD74E3DA1B45F08F10D172732 ] C:\Windows\System32\advapi32.dll
17:59:25.0022 0568 C:\Windows\System32\advapi32.dll - ok
17:59:25.0022 0568 [ 08B1BDCDF896D38C6E820B9B155E7A17 ] C:\Windows\System32\KernelBase.dll
17:59:25.0038 0568 C:\Windows\System32\KernelBase.dll - ok
17:59:25.0038 0568 [ BC052EFAD10ACA1AD69545B629F50D99 ] C:\Windows\System32\comctl32.dll
17:59:25.0038 0568 C:\Windows\System32\comctl32.dll - ok
17:59:25.0038 0568 [ D05E03C1B2824236531F5E37334B6A8A ] C:\Windows\System32\cfgmgr32.dll
17:59:25.0038 0568 C:\Windows\System32\cfgmgr32.dll - ok
17:59:25.0054 0568 [ B0B310037A3A9151735E9952D4395C76 ] C:\Windows\System32\crypt32.dll
17:59:25.0054 0568 C:\Windows\System32\crypt32.dll - ok
17:59:25.0054 0568 [ 06FEC9E8117103BB1141A560E98077DA ] C:\Windows\System32\devobj.dll
17:59:25.0054 0568 C:\Windows\System32\devobj.dll - ok
17:59:25.0054 0568 [ FEC6244873AB7981326CAEEC5B5FFF11 ] C:\Windows\System32\wintrust.dll
17:59:25.0054 0568 C:\Windows\System32\wintrust.dll - ok
17:59:25.0069 0568 [ 98FB7DD3B28A92E3C0E5B4BD9D63EF01 ] C:\Windows\System32\msasn1.dll
17:59:25.0069 0568 C:\Windows\System32\msasn1.dll - ok
17:59:25.0069 0568 [ 659B74FB74B86228D6338D643CD3E3CF ] C:\Windows\System32\drivers\ndproxy.sys
17:59:25.0069 0568 C:\Windows\System32\drivers\ndproxy.sys - ok
17:59:25.0069 0568 [ 21D26064AEDB4988F785BB4A3A2C051E ] C:\Windows\System32\drivers\drmk.sys
17:59:25.0069 0568 C:\Windows\System32\drivers\drmk.sys - ok
17:59:25.0085 0568 [ 6869281E78CB31A43E969F06B57347C4 ] C:\Windows\System32\drivers\ksthunk.sys
17:59:25.0085 0568 C:\Windows\System32\drivers\ksthunk.sys - ok
17:59:25.0085 0568 [ 32E11315B5126921FFD9074840EF13D3 ] C:\Windows\System32\drivers\portcls.sys
17:59:25.0085 0568 C:\Windows\System32\drivers\portcls.sys - ok
17:59:25.0085 0568 [ 02E784FA49032F84964DB90A3ED81890 ] C:\Windows\System32\drivers\stwrt64.sys
17:59:25.0085 0568 C:\Windows\System32\drivers\stwrt64.sys - ok
17:59:25.0100 0568 [ D485D3BD3E2179AA86853A182F70699F ] C:\Windows\System32\drivers\IntcHdmi.sys
17:59:25.0100 0568 C:\Windows\System32\drivers\IntcHdmi.sys - ok
17:59:25.0100 0568 [ 9C278785347BCC991F8EA2999D90F58D ] C:\Windows\SysWOW64\normaliz.dll
17:59:25.0100 0568 C:\Windows\SysWOW64\normaliz.dll - ok
17:59:25.0100 0568 [ BF24D6F2ED97FE830BFD52B246F98E67 ] C:\Windows\System32\drivers\dxapi.sys
17:59:25.0100 0568 C:\Windows\System32\drivers\dxapi.sys - ok
17:59:25.0116 0568 [ E37C71EA972AD883E7841D07BC6D5F1C ] C:\Windows\System32\win32k.sys
17:59:25.0116 0568 C:\Windows\System32\win32k.sys - ok
17:59:25.0116 0568 [ E730EADB8F176DB06A378435BEB2E823 ] C:\Windows\System32\csrsrv.dll
17:59:25.0116 0568 C:\Windows\System32\csrsrv.dll - ok
17:59:25.0116 0568 [ 60C2862B4BF0FD9F582EF344C2B1EC72 ] C:\Windows\System32\csrss.exe
17:59:25.0132 0568 C:\Windows\System32\csrss.exe - ok
17:59:25.0132 0568 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\System32\basesrv.dll
17:59:25.0132 0568 C:\Windows\System32\basesrv.dll - ok
17:59:25.0132 0568 [ 0CB6EBF4B461A6043353C570BD72A1E1 ] C:\Windows\System32\winsrv.dll
17:59:25.0132 0568 C:\Windows\System32\winsrv.dll - ok
17:59:25.0147 0568 [ 7B6A127C93EE590E4D79A5F2A76FE46F ] C:\Windows\System32\drivers\usbccgp.sys
17:59:25.0147 0568 C:\Windows\System32\drivers\usbccgp.sys - ok
17:59:25.0147 0568 [ 7CB8C573C6E4A2714402CC0A36EAB4FE ] C:\Windows\System32\drivers\usbvideo.sys
17:59:25.0147 0568 C:\Windows\System32\drivers\usbvideo.sys - ok
17:59:25.0147 0568 [ ED5CF92396A62F4C15110DCDB5E854D9 ] C:\Windows\System32\drivers\CtClsFlt.sys
17:59:25.0147 0568 C:\Windows\System32\drivers\CtClsFlt.sys - ok
17:59:25.0163 0568 [ B03D591DC7DA45ECE20B3B467E6AADAA ] C:\Windows\System32\drivers\monitor.sys
17:59:25.0163 0568 C:\Windows\System32\drivers\monitor.sys - ok
17:59:25.0163 0568 [ F29FE765E1448EF371CFE05BFAC74ADB ] C:\Windows\System32\tsddd.dll
17:59:25.0163 0568 C:\Windows\System32\tsddd.dll - ok
17:59:25.0163 0568 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\System32\sxssrv.dll
17:59:25.0163 0568 C:\Windows\System32\sxssrv.dll - ok
17:59:25.0178 0568 [ 94355C28C1970635A31B3FE52EB7CEBA ] C:\Windows\System32\wininit.exe
17:59:25.0178 0568 C:\Windows\System32\wininit.exe - ok
17:59:25.0178 0568 [ 100BDF2F89D6056CEE900BB6156DA737 ] C:\Windows\System32\cdd.dll
17:59:25.0178 0568 C:\Windows\System32\cdd.dll - ok
17:59:25.0178 0568 [ 2C942733A5983DD4502219FF37C7EBC7 ] C:\Windows\System32\profapi.dll
17:59:25.0178 0568 C:\Windows\System32\profapi.dll - ok
17:59:25.0194 0568 [ B9A047D231D32FDF5AF2F281E4326A9D ] C:\Windows\System32\KBDUS.DLL
17:59:25.0194 0568 C:\Windows\System32\KBDUS.DLL - ok
17:59:25.0194 0568 [ F4389DA7DBDA2E7D292D360CF8E400C7 ] C:\Windows\System32\RpcRtRemote.dll
17:59:25.0194 0568 C:\Windows\System32\RpcRtRemote.dll - ok
17:59:25.0194 0568 [ DA3E2A6FA9660CC75B471530CE88453A ] C:\Windows\System32\winlogon.exe
17:59:25.0194 0568 C:\Windows\System32\winlogon.exe - ok
17:59:25.0210 0568 [ B26B1801356760841C3BC69F9F91537F ] C:\Windows\System32\WlS0WndH.dll
17:59:25.0210 0568 C:\Windows\System32\WlS0WndH.dll - ok
17:59:25.0210 0568 [ 784FA3DF338E2E8F5F0389D6FAC428AF ] C:\Windows\System32\cryptbase.dll
17:59:25.0210 0568 C:\Windows\System32\cryptbase.dll - ok
17:59:25.0225 0568 [ 456C92A9D8DB51B9938A6234BBC65FC9 ] C:\Windows\System32\sxs.dll
17:59:25.0225 0568 C:\Windows\System32\sxs.dll - ok
17:59:25.0225 0568 [ D8C88512BA9544AE1CC2034F50ECFA12 ] C:\Windows\System32\winsta.dll
17:59:25.0225 0568 C:\Windows\System32\winsta.dll - ok
17:59:25.0225 0568 [ 01A465AC251BCCF6037DF2EF28AA4292 ] C:\Windows\System32\apphelp.dll
17:59:25.0225 0568 C:\Windows\System32\apphelp.dll - ok
17:59:25.0225 0568 [ 156F6159457D0AA7E59B62681B56EB90 ] C:\Windows\System32\lsass.exe
17:59:25.0225 0568 C:\Windows\System32\lsass.exe - ok
17:59:25.0241 0568 [ 04FCA22B77A2E37332CC8226187AF87B ] C:\Windows\System32\lsm.exe
17:59:25.0241 0568 C:\Windows\System32\lsm.exe - ok
17:59:25.0241 0568 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\System32\services.exe
17:59:25.0241 0568 C:\Windows\System32\services.exe - ok
17:59:25.0256 0568 [ 68083118797CAF30FB2EA3E71494D67E ] C:\Windows\System32\sysntfy.dll
17:59:25.0256 0568 C:\Windows\System32\sysntfy.dll - ok
17:59:25.0256 0568 [ BFA69408620587AFDEC2E8C12CA60492 ] C:\Windows\System32\lsasrv.dll
17:59:25.0256 0568 C:\Windows\System32\lsasrv.dll - ok
17:59:25.0256 0568 [ 68EA2513CA68AD8F741FF4F5B8D8590C ] C:\Windows\System32\sspisrv.dll
17:59:25.0256 0568 C:\Windows\System32\sspisrv.dll - ok
17:59:25.0272 0568 [ B160ADAEFC76031D92C4FBAC0918B033 ] C:\Windows\System32\samsrv.dll
17:59:25.0272 0568 C:\Windows\System32\samsrv.dll - ok
17:59:25.0272 0568 [ E914A50A151DFFE63D3935226DB5E2C1 ] C:\Windows\System32\scext.dll
17:59:25.0272 0568 C:\Windows\System32\scext.dll - ok
17:59:25.0272 0568 [ 1F582C6C84D5243692F9C3E04D0A663F ] C:\Windows\System32\sspicli.dll
17:59:25.0272 0568 C:\Windows\System32\sspicli.dll - ok
17:59:25.0288 0568 [ 941AF3C8B0DE1B359BE22DD3288A8C8E ] C:\Windows\System32\scesrv.dll
17:59:25.0288 0568 C:\Windows\System32\scesrv.dll - ok
17:59:25.0288 0568 [ 74A0871810BF0F2AA3EB6681E9BECDD3 ] C:\Windows\System32\secur32.dll
17:59:25.0288 0568 C:\Windows\System32\secur32.dll - ok
17:59:25.0288 0568 [ D23371AB9607651937C7641A38CD52BC ] C:\Windows\System32\srvcli.dll
17:59:25.0288 0568 C:\Windows\System32\srvcli.dll - ok
17:59:25.0303 0568 [ DEE7267C5D232A3B816866872CE199E6 ] C:\Windows\System32\wmsgapi.dll
17:59:25.0303 0568 C:\Windows\System32\wmsgapi.dll - ok
17:59:25.0303 0568 [ 3A061472B38233BAFF9CFEFF2E49C46B ] C:\Windows\System32\cryptdll.dll
17:59:25.0303 0568 C:\Windows\System32\cryptdll.dll - ok
17:59:25.0303 0568 [ 3C073B0C596A0AF84933E7406766B040 ] C:\Windows\System32\wevtapi.dll
17:59:25.0303 0568 C:\Windows\System32\wevtapi.dll - ok
17:59:25.0319 0568 [ 86FE1B1F8FD42CD0DB641AB1CDB13093 ] C:\Windows\System32\cngaudit.dll
17:59:25.0319 0568 C:\Windows\System32\cngaudit.dll - ok
17:59:25.0319 0568 [ 7FBEBD2229EA5FD48D41B199EC2D541C ] C:\Windows\System32\authz.dll
17:59:25.0319 0568 C:\Windows\System32\authz.dll - ok
17:59:25.0319 0568 [ E08926B4E52F92FF8852BECC0E2F358A ] C:\Windows\System32\ncrypt.dll
17:59:25.0319 0568 C:\Windows\System32\ncrypt.dll - ok
17:59:25.0334 0568 [ B9A95365E52F421A20E1501935FADDA5 ] C:\Windows\System32\bcrypt.dll
17:59:25.0334 0568 C:\Windows\System32\bcrypt.dll - ok
17:59:25.0334 0568 [ 02B64609F865A39365FF88580DF11738 ] C:\Windows\System32\msprivs.dll
17:59:25.0334 0568 C:\Windows\System32\msprivs.dll - ok
17:59:25.0334 0568 [ B561B451320B0B40908A8BFD81705262 ] C:\Windows\System32\netjoin.dll
17:59:25.0334 0568 C:\Windows\System32\netjoin.dll - ok
17:59:25.0350 0568 [ 96772B584BD0E667CD7741EF96284ACB ] C:\Windows\System32\kerberos.dll
17:59:25.0350 0568 C:\Windows\System32\kerberos.dll - ok
17:59:25.0350 0568 [ 50532FCD7ECF02DD169CE5C485F02534 ] C:\Windows\System32\negoexts.dll
17:59:25.0350 0568 C:\Windows\System32\negoexts.dll - ok
17:59:25.0366 0568 [ D0C2FBB6D97416B0166478FC7AE2B212 ] C:\Windows\System32\cryptsp.dll
17:59:25.0366 0568 C:\Windows\System32\cryptsp.dll - ok
17:59:25.0366 0568 [ FC76FE3C1E1FDB761244D4F74EF560FD ] C:\Windows\System32\mswsock.dll
17:59:25.0366 0568 C:\Windows\System32\mswsock.dll - ok
17:59:25.0366 0568 [ FA4DB05923DDDEDE3196ABD09AE0F1E9 ] C:\Windows\System32\msv1_0.dll
17:59:25.0366 0568 C:\Windows\System32\msv1_0.dll - ok
17:59:25.0381 0568 [ EC7CBFF96B05ECF3D366355B3C64ADCF ] C:\Windows\System32\wship6.dll
17:59:25.0381 0568 C:\Windows\System32\wship6.dll - ok
17:59:25.0381 0568 [ 956D030D375F207B22FB111E06EF9C35 ] C:\Windows\System32\netlogon.dll
17:59:25.0381 0568 C:\Windows\System32\netlogon.dll - ok
17:59:25.0381 0568 [ E247E7DEB20C0CF0801A8AC39E9CE1DF ] C:\Windows\System32\dnsapi.dll
17:59:25.0381 0568 C:\Windows\System32\dnsapi.dll - ok
17:59:25.0397 0568 [ 8CE22E63F08613036DF8C7B00FBDF36B ] C:\Windows\System32\logoncli.dll
17:59:25.0397 0568 C:\Windows\System32\logoncli.dll - ok
17:59:25.0397 0568 [ 90B780886BD813882CB382FF3E90E092 ] C:\Windows\System32\schannel.dll
17:59:25.0397 0568 C:\Windows\System32\schannel.dll - ok
17:59:25.0397 0568 [ 95FB6CA4374E343DDD653FCC43F9D26B ] C:\Windows\System32\wdigest.dll
17:59:25.0397 0568 C:\Windows\System32\wdigest.dll - ok
17:59:25.0412 0568 [ 5D8874A8C11DDDDE29E12DE0E2013493 ] C:\Windows\System32\rsaenh.dll
17:59:25.0412 0568 C:\Windows\System32\rsaenh.dll - ok
17:59:25.0412 0568 [ E08088A97F95345E181C3DFCE2C615EF ] C:\Windows\System32\pku2u.dll
17:59:25.0412 0568 C:\Windows\System32\pku2u.dll - ok
17:59:25.0412 0568 [ 0DEFD5FBF801DD8F83BC0ED09861A8EC ] C:\Windows\System32\TSpkg.dll
17:59:25.0412 0568 C:\Windows\System32\TSpkg.dll - ok
17:59:25.0412 0568 [ DA090E97E57DCB48888015B5D3C749CD ] C:\Windows\System32\bcryptprimitives.dll
17:59:25.0412 0568 C:\Windows\System32\bcryptprimitives.dll - ok
17:59:25.0428 0568 [ 9301B8810B2DA4EB6AD55DB75FC1E339 ] C:\Windows\System32\credssp.dll
17:59:25.0428 0568 C:\Windows\System32\credssp.dll - ok
17:59:25.0428 0568 [ 90BDEFC5DF334E5100EAA781D798DE1A ] C:\Windows\System32\efslsaext.dll
17:59:25.0428 0568 C:\Windows\System32\efslsaext.dll - ok
17:59:25.0428 0568 [ 7CC7DF5B654DA579613F811D8C637E29 ] C:\Windows\System32\ubpm.dll
17:59:25.0428 0568 C:\Windows\System32\ubpm.dll - ok
17:59:25.0444 0568 [ 398712DDDAEFB85EDF61DF6A07B65C79 ] C:\Windows\System32\scecli.dll
17:59:25.0444 0568 C:\Windows\System32\scecli.dll - ok
17:59:25.0444 0568 [ C78655BC80301D76ED4FEF1C1EA40A7D ] C:\Windows\System32\svchost.exe
17:59:25.0444 0568 C:\Windows\System32\svchost.exe - ok
17:59:25.0444 0568 [ 98B1721B8718164293B9701B98C52D77 ] C:\Windows\System32\umpnpmgr.dll
17:59:25.0459 0568 C:\Windows\System32\umpnpmgr.dll - ok
17:59:25.0459 0568 [ CD1B5AD07E5F7FEF30E055DCC9E96180 ] C:\Windows\System32\devrtl.dll
17:59:25.0459 0568 C:\Windows\System32\devrtl.dll - ok
17:59:25.0459 0568 [ 9C9307C95671AC962F3D6EB3A4A89BAE ] C:\Windows\System32\gpapi.dll
17:59:25.0459 0568 C:\Windows\System32\gpapi.dll - ok
17:59:25.0475 0568 [ E6EB44ABAAF1F330119F854856C53EBE ] C:\Windows\System32\SPInf.dll
17:59:25.0475 0568 C:\Windows\System32\SPInf.dll - ok
17:59:25.0475 0568 [ 0776CF79590BDEF0A2728B0B9A813B96 ] C:\Windows\System32\userenv.dll
17:59:25.0475 0568 C:\Windows\System32\userenv.dll - ok
17:59:25.0475 0568 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] C:\Windows\System32\umpo.dll
17:59:25.0475 0568 C:\Windows\System32\umpo.dll - ok
17:59:25.0490 0568 [ F6C011B46FAEEF33536B2E80F48B5CBE ] C:\Windows\System32\pcwum.dll
17:59:25.0490 0568 C:\Windows\System32\pcwum.dll - ok
17:59:25.0490 0568 [ 716175021BDA290504CE434273F666BC ] C:\Windows\System32\powrprof.dll
17:59:25.0490 0568 C:\Windows\System32\powrprof.dll - ok
17:59:25.0490 0568 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] C:\Windows\System32\drivers\luafv.sys
17:59:25.0490 0568 C:\Windows\System32\drivers\luafv.sys - ok
17:59:25.0506 0568 [ ED7563CD3E67EE3C950A1B86818C24C3 ] C:\Windows\System32\drivers\catflt.sys
17:59:25.0506 0568 C:\Windows\System32\drivers\catflt.sys - ok
17:59:25.0506 0568 [ 7CADC74271DD6461C452C271B30BD378 ] C:\Windows\System32\drivers\WUDFPf.sys
17:59:25.0506 0568 C:\Windows\System32\drivers\WUDFPf.sys - ok
17:59:25.0506 0568 [ 7266972E86890E2B30C0C322E906B027 ] C:\Windows\System32\rpcss.dll
17:59:25.0506 0568 C:\Windows\System32\rpcss.dll - ok
17:59:25.0522 0568 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] C:\Windows\System32\RpcEpMap.dll
17:59:25.0522 0568 C:\Windows\System32\RpcEpMap.dll - ok
17:59:25.0522 0568 [ 31559F3244C6BC00A52030CAA83B6B91 ] C:\Windows\System32\WSHTCPIP.DLL
17:59:25.0522 0568 C:\Windows\System32\WSHTCPIP.DLL - ok
17:59:25.0522 0568 [ 16E964ABF6D1E0F0CC7822FCA9BA754D ] C:\Windows\System32\wshqos.dll
17:59:25.0522 0568 C:\Windows\System32\wshqos.dll - ok
17:59:25.0537 0568 [ 9AD9E06F8656F296D91FAE8EE5B95A27 ] C:\Windows\System32\FirewallAPI.dll
17:59:25.0537 0568 C:\Windows\System32\FirewallAPI.dll - ok
17:59:25.0537 0568 [ 93E6A39B1DB898F7C949FA5567E774CF ] C:\Windows\System32\LogonUI.exe
17:59:25.0537 0568 C:\Windows\System32\LogonUI.exe - ok
17:59:25.0537 0568 [ 94E026870A55AAEAFF7853C1754091E9 ] C:\Windows\System32\version.dll
17:59:25.0537 0568 C:\Windows\System32\version.dll - ok
17:59:25.0553 0568 [ 99ABDA9C92EC76CBAF52F00239D909C9 ] C:\Windows\System32\wevtsvc.dll
17:59:25.0553 0568 C:\Windows\System32\wevtsvc.dll - ok
17:59:25.0553 0568 [ 78A1E65207484B7F8D3217507745F47C ] C:\Windows\System32\avrt.dll
17:59:25.0553 0568 C:\Windows\System32\avrt.dll - ok
17:59:25.0553 0568 [ E40E80D0304A73E8D269F7141D77250B ] C:\Windows\System32\mmcss.dll
17:59:25.0553 0568 C:\Windows\System32\mmcss.dll - ok
17:59:25.0568 0568 [ 07721A77180EDD4D39CCB865BF63C7FD ] C:\Windows\System32\audiosrv.dll
17:59:25.0568 0568 C:\Windows\System32\audiosrv.dll - ok
17:59:25.0568 0568 [ 227E2C382A1E02F8D4965E664D3BBE43 ] C:\Windows\System32\MMDevAPI.dll
17:59:25.0568 0568 C:\Windows\System32\MMDevAPI.dll - ok
17:59:25.0584 0568 [ B27EA141A7E748B607600A8551A44D5A ] C:\Windows\System32\propsys.dll
17:59:25.0584 0568 C:\Windows\System32\propsys.dll - ok
17:59:25.0584 0568 [ 444109453A2B87E6C16BCDA5953E81A9 ] C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_afc3018f8cfedd20\stacsv64.exe
17:59:25.0584 0568 C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_afc3018f8cfedd20\stacsv64.exe - ok
17:59:25.0584 0568 [ 9110FFAD124283F37D38771BB60556AF ] C:\Windows\System32\dsound.dll
17:59:25.0584 0568 C:\Windows\System32\dsound.dll - ok
17:59:25.0600 0568 [ EF2AE43BCD46ABB13FC3E5B2B1935C73 ] C:\Windows\System32\winmm.dll
17:59:25.0600 0568 C:\Windows\System32\winmm.dll - ok
17:59:25.0600 0568 [ 185F0A5625DB059128CF8CC9633B9C9F ] C:\Windows\System32\stapi64.dll
17:59:25.0600 0568 C:\Windows\System32\stapi64.dll - ok
17:59:25.0600 0568 [ D152EBC32A23069F8AA1D1F24B15E3F9 ] C:\Windows\System32\audiodg.exe
17:59:25.0600 0568 C:\Windows\System32\audiodg.exe - ok
17:59:25.0615 0568 [ 1F4492FE41767CDB8B89D17655847CDD ] C:\Windows\System32\ntmarta.dll
17:59:25.0615 0568 C:\Windows\System32\ntmarta.dll - ok
17:59:25.0615 0568 [ 81D64E8D70E5FBF9F7ABF2D41154F54D ] C:\Windows\System32\AudioSes.dll
17:59:25.0615 0568 C:\Windows\System32\AudioSes.dll - ok
17:59:25.0615 0568 [ 07BA6D17E66879018B30B6C3F976EBED ] C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe
17:59:25.0615 0568 C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe - ok
17:59:25.0631 0568 [ DB6DD54A93522CA3572D04B56C5DB890 ] C:\Windows\SysWOW64\ntdll.dll
17:59:25.0631 0568 C:\Windows\SysWOW64\ntdll.dll - ok
17:59:25.0631 0568 [ 5EDBB34736DD7AC1A73CF8792A835E10 ] C:\Windows\System32\AudioEng.dll
17:59:25.0631 0568 C:\Windows\System32\AudioEng.dll - ok
17:59:25.0631 0568 [ C1395286B822E306B4FE1568A8A77813 ] C:\Windows\System32\AUDIOKSE.dll
17:59:25.0631 0568 C:\Windows\System32\AUDIOKSE.dll - ok
17:59:25.0646 0568 [ ADFDF57DC62AE66FE47D5AD1C838131B ] C:\Windows\System32\wow64.dll
17:59:25.0646 0568 C:\Windows\System32\wow64.dll - ok
17:59:25.0646 0568 [ E9727C5B096B0722BEBEE269ED841F37 ] C:\Windows\System32\wow64win.dll
17:59:25.0646 0568 C:\Windows\System32\wow64win.dll - ok
17:59:25.0646 0568 [ 8560FFFC8EB3A806DCD4F82252CFC8C6 ] C:\Windows\System32\ksuser.dll
17:59:25.0646 0568 C:\Windows\System32\ksuser.dll - ok
17:59:25.0662 0568 [ C0A718C7421975E8D25FF78271A8F54A ] C:\Windows\System32\wow64cpu.dll
17:59:25.0662 0568 C:\Windows\System32\wow64cpu.dll - ok
17:59:25.0662 0568 [ 4EA99F1644627B1EBAD99D0B93CDEE1C ] C:\Windows\SysWOW64\kernel32.dll
17:59:25.0662 0568 C:\Windows\SysWOW64\kernel32.dll - ok
17:59:25.0662 0568 [ 401106B4B036BA2D74BF168F22FE9400 ] C:\Windows\System32\stapo64.dll
17:59:25.0662 0568 C:\Windows\System32\stapo64.dll - ok
17:59:25.0678 0568 [ 2BF12696F4AC8AFCFC06EAD6F8D2DB4C ] C:\Windows\SysWOW64\KernelBase.dll
17:59:25.0678 0568 C:\Windows\SysWOW64\KernelBase.dll - ok
17:59:25.0678 0568 [ E8B0FFC209E504CB7E79FC24E6C085F0 ] C:\Windows\SysWOW64\user32.dll
17:59:25.0678 0568 C:\Windows\SysWOW64\user32.dll - ok
17:59:25.0678 0568 [ FBE1E0B9EF53B5BB7C36763AA6A685CF ] C:\Windows\SysWOW64\gdi32.dll
17:59:25.0678 0568 C:\Windows\SysWOW64\gdi32.dll - ok
17:59:25.0693 0568 [ 384721EF4024890092625E20CADFAF85 ] C:\Windows\SysWOW64\lpk.dll
17:59:25.0693 0568 C:\Windows\SysWOW64\lpk.dll - ok
17:59:25.0693 0568 [ 0BA19F3198C40AC4E8CC66EE02EDA6C6 ] C:\Windows\SysWOW64\usp10.dll
17:59:25.0693 0568 C:\Windows\SysWOW64\usp10.dll - ok
17:59:25.0693 0568 [ F8A61B2E713309B4616D107919BDAB6E ] C:\Windows\SysWOW64\msvcrt.dll
17:59:25.0693 0568 C:\Windows\SysWOW64\msvcrt.dll - ok
17:59:25.0709 0568 [ 0989ECD292D373E31D6DF5EDB9B62AE1 ] C:\Windows\System32\AESTAC64.dll
17:59:25.0709 0568 C:\Windows\System32\AESTAC64.dll - ok
17:59:25.0709 0568 [ 0C65FA8214D6F8378D1D3BA1CA46AF0A ] C:\Windows\SysWOW64\advapi32.dll
17:59:25.0709 0568 C:\Windows\SysWOW64\advapi32.dll - ok
17:59:25.0709 0568 [ 90385551B6B3793E949DF310A11D64E7 ] C:\Windows\SysWOW64\rpcrt4.dll
17:59:25.0709 0568 C:\Windows\SysWOW64\rpcrt4.dll - ok
17:59:25.0724 0568 [ CFC97F07904067A1E5FAE195D534DA3A ] C:\Windows\SysWOW64\sechost.dll
17:59:25.0724 0568 C:\Windows\SysWOW64\sechost.dll - ok
17:59:25.0724 0568 [ 351F62085F1D007533B4BB159C9EFDE3 ] C:\Windows\SysWOW64\sspicli.dll
17:59:25.0724 0568 C:\Windows\SysWOW64\sspicli.dll - ok
17:59:25.0724 0568 [ F08F6FCD09F9BE94C37ACC1B344685FF ] C:\Windows\SysWOW64\cryptbase.dll
17:59:25.0724 0568 C:\Windows\SysWOW64\cryptbase.dll - ok
17:59:25.0740 0568 [ 61E02CC3184B63FAFE0B83EAC8B3B8EF ] C:\Windows\SysWOW64\winspool.drv
17:59:25.0740 0568 C:\Windows\SysWOW64\winspool.drv - ok
17:59:25.0740 0568 [ 2CBC35E872BA9B46474890135B56DD66 ] C:\Windows\SysWOW64\shell32.dll
17:59:25.0740 0568 C:\Windows\SysWOW64\shell32.dll - ok
17:59:25.0756 0568 [ 43E6294CC9698627627C58C6B786FB38 ] C:\Windows\System32\ctapo64.dll
17:59:25.0756 0568 C:\Windows\System32\ctapo64.dll - ok
17:59:25.0756 0568 [ 57FE2CFC2F25C200499D5D934EA24EB5 ] C:\Windows\System32\IPHLPAPI.DLL
17:59:25.0756 0568 C:\Windows\System32\IPHLPAPI.DLL - ok
17:59:25.0756 0568 [ 4C9210E8F4E052F6A4EB87716DA0C24C ] C:\Windows\System32\winnsi.dll
17:59:25.0756 0568 C:\Windows\System32\winnsi.dll - ok
17:59:25.0771 0568 [ F568F7C08458D69E4FCD8675BBB107E4 ] C:\Windows\System32\dhcpcsvc.dll
17:59:25.0771 0568 C:\Windows\System32\dhcpcsvc.dll - ok
17:59:25.0771 0568 [ 6F3C559B82F2912354BE5B098744CC8C ] C:\Windows\System32\WMALFXGFXDSP.dll
17:59:25.0771 0568 C:\Windows\System32\WMALFXGFXDSP.dll - ok
17:59:25.0771 0568 [ 54B5DCD55B223BC5DF50B82E1E9E86B1 ] C:\Windows\System32\mfplat.dll
17:59:25.0771 0568 C:\Windows\System32\mfplat.dll - ok
17:59:25.0787 0568 [ C469893743E18BA547DB3C7ED98B32F5 ] C:\Windows\System32\AESTAR64.dll
17:59:25.0787 0568 C:\Windows\System32\AESTAR64.dll - ok
17:59:25.0787 0568 [ 3D9FC44CA93001B423F89876369F1348 ] C:\Windows\System32\SRSLabs\{176F4E15-8F7C-4833-ADED-81FAE8CCD186}\sluapo64.dll
17:59:25.0787 0568 C:\Windows\System32\SRSLabs\{176F4E15-8F7C-4833-ADED-81FAE8CCD186}\sluapo64.dll - ok
17:59:25.0787 0568 [ BCF0A980D21711E47D0803BDB0E99CAD ] C:\Windows\System32\authui.dll
17:59:25.0787 0568 C:\Windows\System32\authui.dll - ok
17:59:25.0802 0568 [ F037DB14CF6165C62F4A64D12A25B07C ] C:\Windows\SysWOW64\shlwapi.dll
17:59:25.0802 0568 C:\Windows\SysWOW64\shlwapi.dll - ok
17:59:25.0802 0568 [ E2C2D8C982316C8ABF800C6CE3F28FAB ] C:\Windows\SysWOW64\ole32.dll
17:59:25.0802 0568 C:\Windows\SysWOW64\ole32.dll - ok
17:59:25.0802 0568 [ 705C210EFC5564BE49EB026BD7AFF27A ] C:\Windows\SysWOW64\oleaut32.dll
17:59:25.0802 0568 C:\Windows\SysWOW64\oleaut32.dll - ok
17:59:25.0818 0568 [ 0E85C11F8850D524B02181C6E02BA9AE ] C:\Windows\SysWOW64\dsound.dll
17:59:25.0818 0568 C:\Windows\SysWOW64\dsound.dll - ok
17:59:25.0818 0568 [ 26A634B2E0FD87F23541AD13A503CA72 ] C:\Windows\SysWOW64\winmm.dll
17:59:25.0818 0568 C:\Windows\SysWOW64\winmm.dll - ok
17:59:25.0818 0568 [ 08DFDBD2FD4EA951DC46B1C7661ED35A ] C:\Windows\SysWOW64\powrprof.dll
17:59:25.0818 0568 C:\Windows\SysWOW64\powrprof.dll - ok
17:59:25.0834 0568 [ 41323AB614A2B66AD77B1121D24AC895 ] C:\Windows\SysWOW64\setupapi.dll
17:59:25.0834 0568 C:\Windows\SysWOW64\setupapi.dll - ok
17:59:25.0834 0568 [ E702ED19C332C1F12C1403D100E2F4F3 ] C:\Windows\SysWOW64\cfgmgr32.dll
17:59:25.0834 0568 C:\Windows\SysWOW64\cfgmgr32.dll - ok
17:59:25.0834 0568 [ 6C9C05D5344B9AB80E9180FC859BC45A ] C:\Windows\SysWOW64\devobj.dll
17:59:25.0834 0568 C:\Windows\SysWOW64\devobj.dll - ok
17:59:25.0849 0568 [ 5923DB041C82BD93FE6C54114470CE17 ] C:\Windows\SysWOW64\crypt32.dll
17:59:25.0849 0568 C:\Windows\SysWOW64\crypt32.dll - ok
17:59:25.0849 0568 [ 4D59A5B6EF0AF6F9FDF3D157534380AF ] C:\Windows\SysWOW64\oleacc.dll
17:59:25.0849 0568 C:\Windows\SysWOW64\oleacc.dll - ok
17:59:25.0849 0568 [ 0DE3069D6E09BA262856EF31C941BEFE ] C:\Windows\SysWOW64\imm32.dll
17:59:25.0849 0568 C:\Windows\SysWOW64\imm32.dll - ok
17:59:25.0865 0568 [ 4C04900AA8C323F5D4C316A89E976849 ] C:\Windows\SysWOW64\msasn1.dll
17:59:25.0865 0568 C:\Windows\SysWOW64\msasn1.dll - ok
17:59:25.0865 0568 [ C9618BC9B2B0FD7C1138D8774795A79B ] C:\Windows\SysWOW64\msctf.dll
17:59:25.0865 0568 C:\Windows\SysWOW64\msctf.dll - ok
17:59:25.0865 0568 [ FE5AB4525BC2EC68B9119A6E5D40128B ] C:\Windows\System32\gpsvc.dll
17:59:25.0865 0568 C:\Windows\System32\gpsvc.dll - ok
17:59:25.0880 0568 [ 86E3822A34D454032D8E88C72AE8CF2D ] C:\Windows\System32\nlaapi.dll
17:59:25.0880 0568 C:\Windows\System32\nlaapi.dll - ok
17:59:25.0880 0568 [ F0344071948D1A1FA732231785A0664C ] C:\Windows\System32\themeservice.dll
17:59:25.0880 0568 C:\Windows\System32\themeservice.dll - ok
17:59:25.0880 0568 [ 97293447431311C06703368AD0F6C4BE ] C:\Windows\System32\profsvc.dll
17:59:25.0896 0568 C:\Windows\System32\profsvc.dll - ok
17:59:25.0896 0568 [ 58775492FFD419248B08325E583C527F ] C:\Windows\System32\atl.dll
17:59:25.0896 0568 C:\Windows\System32\atl.dll - ok
17:59:25.0896 0568 [ A77BE7CB3222B4FB0AC6C71D1C2698D4 ] C:\Windows\System32\dsrole.dll
17:59:25.0896 0568 C:\Windows\System32\dsrole.dll - ok
17:59:25.0912 0568 [ BE097F5BB10F9079FCEB2DC4E7E20F02 ] C:\Windows\System32\slc.dll
17:59:25.0912 0568 C:\Windows\System32\slc.dll - ok
17:59:25.0912 0568 [ 4166F82BE4D24938977DD1746BE9B8A0 ] C:\Windows\System32\es.dll
17:59:25.0912 0568 C:\Windows\System32\es.dll - ok
17:59:25.0912 0568 [ 1A47D52E303B7543E4E6026595B95422 ] C:\Windows\System32\comres.dll
17:59:25.0912 0568 C:\Windows\System32\comres.dll - ok
17:59:25.0927 0568 [ C32AB8FA018EF34C0F113BD501436D21 ] C:\Windows\System32\Sens.dll
17:59:25.0927 0568 C:\Windows\System32\Sens.dll - ok
17:59:25.0927 0568 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] C:\Windows\System32\uxsms.dll
17:59:25.0927 0568 C:\Windows\System32\uxsms.dll - ok
17:59:25.0927 0568 [ BD3674BE7FC9D8D3732C83E8499576ED ] C:\Windows\System32\wtsapi32.dll
17:59:25.0927 0568 C:\Windows\System32\wtsapi32.dll - ok
17:59:25.0943 0568 [ B551D6637AA0E132C18AC6E504F7B79B ] C:\Windows\System32\WUDFSvc.dll
17:59:25.0943 0568 C:\Windows\System32\WUDFSvc.dll - ok
17:59:25.0943 0568 [ 37B68E458C0BC255DF2FB7454D0798D3 ] C:\Windows\System32\WUDFPlatform.dll
17:59:25.0943 0568 C:\Windows\System32\WUDFPlatform.dll - ok
17:59:25.0943 0568 [ C6FEE635EB61EEBBF960E981DC8C6CDE ] C:\Windows\System32\drivers\EMLTDI.SYS
17:59:25.0943 0568 C:\Windows\System32\drivers\EMLTDI.SYS - ok
17:59:25.0958 0568 [ 1538831CF8AD2979A04C423779465827 ] C:\Windows\System32\drivers\lltdio.sys
17:59:25.0958 0568 C:\Windows\System32\drivers\lltdio.sys - ok
17:59:25.0958 0568 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] C:\Windows\System32\drivers\nwifi.sys
17:59:25.0958 0568 C:\Windows\System32\drivers\nwifi.sys - ok
17:59:25.0958 0568 [ F105BA1E22BF1F2EE8F005D4305E4BEC ] C:\Windows\System32\drivers\ndisuio.sys
17:59:25.0958 0568 C:\Windows\System32\drivers\ndisuio.sys - ok
17:59:25.0974 0568 [ DDC86E4F8E7456261E637E3552E804FF ] C:\Windows\System32\drivers\rspndr.sys
17:59:25.0974 0568 C:\Windows\System32\drivers\rspndr.sys - ok
17:59:25.0974 0568 [ F993A32249B66C9D622EA5592A8B76B8 ] C:\Windows\System32\lmhsvc.dll
17:59:25.0974 0568 C:\Windows\System32\lmhsvc.dll - ok
17:59:25.0974 0568 [ FD5BA198F7190DFE9BE1947EB8710396 ] C:\Windows\System32\nrpsrv.dll
17:59:25.0974 0568 C:\Windows\System32\nrpsrv.dll - ok
17:59:25.0990 0568 [ CE3B9562D997F69B330D181A8875960F ] C:\Windows\System32\dhcpcore.dll
17:59:25.0990 0568 C:\Windows\System32\dhcpcore.dll - ok
17:59:25.0990 0568 [ D54BFDF3E0C953F823B3D0BFE4732528 ] C:\Windows\System32\nsisvc.dll
17:59:25.0990 0568 C:\Windows\System32\nsisvc.dll - ok
17:59:25.0990 0568 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] C:\Windows\System32\eapsvc.dll
17:59:25.0990 0568 C:\Windows\System32\eapsvc.dll - ok
17:59:26.0005 0568 [ F9EC845C5EECF20E9A67F9F805F2EF1F ] C:\Windows\System32\keyiso.dll
17:59:26.0005 0568 C:\Windows\System32\keyiso.dll - ok
17:59:26.0005 0568 [ 85CF424C74A1D5EC33533E1DBFF9920A ] C:\Windows\System32\dnsrslvr.dll
17:59:26.0005 0568 C:\Windows\System32\dnsrslvr.dll - ok
17:59:26.0005 0568 [ 982F5395AD181179320083A4FA7E7CA8 ] C:\Windows\System32\eapphost.dll
17:59:26.0005 0568 C:\Windows\System32\eapphost.dll - ok
17:59:26.0021 0568 [ 71C7B65B6557B75B99907E76956AE4B8 ] C:\Windows\System32\dhcpcore6.dll
17:59:26.0021 0568 C:\Windows\System32\dhcpcore6.dll - ok
17:59:26.0021 0568 [ 885D0942E0F28DB90919BE3129ECF279 ] C:\Windows\System32\dnsext.dll
17:59:26.0021 0568 C:\Windows\System32\dnsext.dll - ok
17:59:26.0021 0568 [ 0040C486584A8E582C861CFB57AB5387 ] C:\Windows\System32\FWPUCLNT.DLL
17:59:26.0021 0568 C:\Windows\System32\FWPUCLNT.DLL - ok
17:59:26.0036 0568 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] C:\Windows\System32\wlansvc.dll
17:59:26.0036 0568 C:\Windows\System32\wlansvc.dll - ok
17:59:26.0036 0568 [ 4CBCC37856EA2039C27A2FB661DDA0E5 ] C:\Windows\System32\dhcpcsvc6.dll
17:59:26.0036 0568 C:\Windows\System32\dhcpcsvc6.dll - ok
17:59:26.0052 0568 [ 2017BFE87CAB3D7EF632CFD2AA08D3F0 ] C:\Windows\System32\umb.dll
17:59:26.0052 0568 C:\Windows\System32\umb.dll - ok
17:59:26.0052 0568 [ 48A31B7CF046702059A86836DC21D786 ] C:\Windows\System32\wlanmsm.dll
17:59:26.0052 0568 C:\Windows\System32\wlanmsm.dll - ok
17:59:26.0052 0568 [ 588CD0C78A7FAAE4186B5EEA0AF3ED67 ] C:\Windows\System32\adtschema.dll
17:59:26.0052 0568 C:\Windows\System32\adtschema.dll - ok
17:59:26.0068 0568 [ 06A1386B6E3A0CBC368665C1840906F4 ] C:\Windows\System32\wlansec.dll
17:59:26.0068 0568 C:\Windows\System32\wlansec.dll - ok
17:59:26.0068 0568 [ D2B0D1C2BE5ECA80387F7CB8626DCAFE ] C:\Windows\System32\onex.dll
17:59:26.0068 0568 C:\Windows\System32\onex.dll - ok
17:59:26.0068 0568 [ 65522E77A1360DBC8D199DA3BF5EFFE4 ] C:\Windows\System32\eappprxy.dll
17:59:26.0068 0568 C:\Windows\System32\eappprxy.dll - ok
17:59:26.0083 0568 [ 0D753307D274F3688BD21C377B616700 ] C:\Windows\System32\eappcfg.dll
17:59:26.0083 0568 C:\Windows\System32\eappcfg.dll - ok
17:59:26.0083 0568 [ 730BF204A595D5B6D7DC57A247CC741C ] C:\Windows\System32\wlgpclnt.dll
17:59:26.0083 0568 C:\Windows\System32\wlgpclnt.dll - ok
17:59:26.0083 0568 [ 97E43F324BE1503CB2FFB058534688DA ] C:\Windows\System32\l2gpstore.dll
17:59:26.0083 0568 C:\Windows\System32\l2gpstore.dll - ok
17:59:26.0099 0568 [ 22E7431E7DAE8463AF94A79A054276E5 ] C:\Windows\System32\WinSCard.dll
17:59:26.0099 0568 C:\Windows\System32\WinSCard.dll - ok
17:59:26.0099 0568 [ 7F1B4C6FF3B85F9ADF74055187B8A22C ] C:\Windows\System32\wlanutil.dll
17:59:26.0099 0568 C:\Windows\System32\wlanutil.dll - ok
17:59:26.0099 0568 [ 72D3D64526765C34DBFC7D895B4FBDF6 ] C:\Windows\System32\msxml6.dll
17:59:26.0099 0568 C:\Windows\System32\msxml6.dll - ok
17:59:26.0114 0568 [ 0298AC45D0EFFFB2DB4BAA7DD186E7BF ] C:\Windows\System32\shsvcs.dll
17:59:26.0114 0568 C:\Windows\System32\shsvcs.dll - ok
17:59:26.0114 0568 [ 624D0F5FF99428BB90A5B8A4123E918E ] C:\Windows\System32\schedsvc.dll
17:59:26.0114 0568 C:\Windows\System32\schedsvc.dll - ok
17:59:26.0114 0568 [ 8F6D9A20F1FB06F0602A7D5A82840DBF ] C:\Windows\System32\netcfgx.dll
17:59:26.0114 0568 C:\Windows\System32\netcfgx.dll - ok
17:59:26.0130 0568 [ 3C27B50BC43D5FED43081A784DD17190 ] C:\Windows\System32\netapi32.dll
17:59:26.0130 0568 C:\Windows\System32\netapi32.dll - ok
17:59:26.0130 0568 [ 4C8C2F987FC397DCE98874D6C9C0736A ] C:\Windows\System32\netutils.dll
17:59:26.0130 0568 C:\Windows\System32\netutils.dll - ok
17:59:26.0130 0568 [ BC414631876B2F28B8DAB08E849C12C5 ] C:\Windows\System32\ktmw32.dll
17:59:26.0130 0568 C:\Windows\System32\ktmw32.dll - ok
17:59:26.0146 0568 [ B33CBD1A8C2A33121321D0FEBD7DD870 ] C:\Windows\System32\wkscli.dll
17:59:26.0146 0568 C:\Windows\System32\wkscli.dll - ok
17:59:26.0146 0568 [ DBA90306A721FB922FDACED9E9728C28 ] C:\Windows\System32\cryptui.dll
17:59:26.0146 0568 C:\Windows\System32\cryptui.dll - ok
17:59:26.0161 0568 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] C:\Windows\System32\netprofm.dll
17:59:26.0161 0568 C:\Windows\System32\netprofm.dll - ok
17:59:26.0161 0568 [ 39F91A948E6017B732C4A0B3086A8E32 ] C:\Windows\System32\xmllite.dll
17:59:26.0161 0568 C:\Windows\System32\xmllite.dll - ok
17:59:26.0161 0568 [ 113921FC4A80A3DDF646852998B836D0 ] C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7\comctl32.dll
17:59:26.0161 0568 C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7\comctl32.dll - ok
17:59:26.0177 0568 [ 1B38A0F123FCF1546FACEAF1EFAFAA00 ] C:\Windows\System32\fveapi.dll
17:59:26.0177 0568 C:\Windows\System32\fveapi.dll - ok
17:59:26.0177 0568 [ 694865362F0965779F92BCFE97712323 ] C:\Windows\System32\tbs.dll
17:59:26.0177 0568 C:\Windows\System32\tbs.dll - ok
17:59:26.0177 0568 [ 891ECFD08E2C538B7948CBC45106D697 ] C:\Windows\System32\fvecerts.dll
17:59:26.0177 0568 C:\Windows\System32\fvecerts.dll - ok
17:59:26.0192 0568 [ 5B3EBFC3DA142324B388DDCC4465E1FF ] C:\Windows\System32\samlib.dll
17:59:26.0192 0568 C:\Windows\System32\samlib.dll - ok
17:59:26.0192 0568 [ 84F8C8B9FB1F12532999D25F5DD7E77C ] C:\Windows\System32\shacct.dll
17:59:26.0192 0568 C:\Windows\System32\shacct.dll - ok
17:59:26.0192 0568 [ 8269210DAF3B12BC8300631B28A2A442 ] C:\Windows\System32\wiarpc.dll
17:59:26.0192 0568 C:\Windows\System32\wiarpc.dll - ok
17:59:26.0208 0568 [ D29E998E8277666982B4F0303BF4E7AF ] C:\Windows\System32\uxtheme.dll
17:59:26.0208 0568 C:\Windows\System32\uxtheme.dll - ok
17:59:26.0208 0568 [ 1B547066D0A6CD40EB3BAAC6A9C7E7A9 ] C:\Windows\System32\taskcomp.dll
17:59:26.0208 0568 C:\Windows\System32\taskcomp.dll - ok
17:59:26.0208 0568 [ DD0701DE0AAA010E6EBD0F53B672DCEE ] C:\Windows\winsxs\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7600.17007_none_2b47185a719d6182\GdiPlus.dll
17:59:26.0208 0568 C:\Windows\winsxs\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7600.17007_none_2b47185a719d6182\GdiPlus.dll - ok
17:59:26.0208 0568 [ 3CB6A7286422C72C34DAB54A5DFF1A34 ] C:\Windows\System32\dui70.dll
17:59:26.0224 0568 C:\Windows\System32\dui70.dll - ok
17:59:26.0224 0568 [ CEE049CAC4EFA7F4E1E4AD014414A5D4 ] C:\Windows\System32\drivers\http.sys
17:59:26.0224 0568 C:\Windows\System32\drivers\http.sys - ok
17:59:26.0224 0568 [ 8CCDE014A4CDF84564E03ACE064CA753 ] C:\Windows\System32\duser.dll
17:59:26.0224 0568 C:\Windows\System32\duser.dll - ok
17:59:26.0239 0568 [ B2E3D4BB3389817FB5E4CD9378BC8791 ] C:\Windows\System32\SndVolSSO.dll
17:59:26.0239 0568 C:\Windows\System32\SndVolSSO.dll - ok
17:59:26.0239 0568 [ 896F15A6434D93EDB42519D5E18E6B50 ] C:\Windows\System32\hid.dll
17:59:26.0239 0568 C:\Windows\System32\hid.dll - ok
17:59:26.0239 0568 [ 567977DC43CC13C4C35ED7084C0B84D5 ] C:\Windows\System32\spoolsv.exe
17:59:26.0239 0568 C:\Windows\System32\spoolsv.exe - ok
17:59:26.0255 0568 [ 4992C609A6315671463E30F6512BC022 ] C:\Windows\System32\BFE.DLL
17:59:26.0255 0568 C:\Windows\System32\BFE.DLL - ok
17:59:26.0255 0568 [ 19D20159708E152267E53B66677A4995 ] C:\Windows\System32\drivers\bowser.sys
17:59:26.0255 0568 C:\Windows\System32\drivers\bowser.sys - ok
17:59:26.0255 0568 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] C:\Windows\System32\drivers\mpsdrv.sys
17:59:26.0255 0568 C:\Windows\System32\drivers\mpsdrv.sys - ok
17:59:26.0270 0568 [ 040D62A9D8AD28922632137ACDD984F2 ] C:\Windows\System32\drivers\mrxsmb.sys
17:59:26.0270 0568 C:\Windows\System32\drivers\mrxsmb.sys - ok
17:59:26.0270 0568 [ F0067552F8F9B33D7C59403AB808A3CB ] C:\Windows\System32\drivers\mrxsmb10.sys
17:59:26.0270 0568 C:\Windows\System32\drivers\mrxsmb10.sys - ok
17:59:26.0270 0568 [ 3C142D31DE9F2F193218A53FE2632051 ] C:\Windows\System32\drivers\mrxsmb20.sys
17:59:26.0270 0568 C:\Windows\System32\drivers\mrxsmb20.sys - ok
17:59:26.0286 0568 [ 30F9BACA07F8251D7DD1805A9E919CE0 ] C:\Windows\System32\wdmaud.drv
17:59:26.0286 0568 C:\Windows\System32\wdmaud.drv - ok
17:59:26.0286 0568 [ FE05D03B73000CFF476E1D29109F3A84 ] C:\Program Files\Windows Defender\MpEvMsg.dll
17:59:26.0286 0568 C:\Program Files\Windows Defender\MpEvMsg.dll - ok
17:59:26.0286 0568 [ DA1B7075260F3872585BFCDD668C648B ] C:\Windows\System32\dwmapi.dll
17:59:26.0286 0568 C:\Windows\System32\dwmapi.dll - ok
17:59:26.0302 0568 [ F7866AF72ABBAF84B1FA5AA195378C59 ] C:\Windows\System32\drivers\fltMgr.sys
17:59:26.0302 0568 C:\Windows\System32\drivers\fltMgr.sys - ok
17:59:26.0302 0568 [ 50544D04AD845C43130B70212EC05CCD ] C:\Windows\System32\microsoft-windows-kernel-power-events.dll
17:59:26.0302 0568 C:\Windows\System32\microsoft-windows-kernel-power-events.dll - ok
17:59:26.0317 0568 [ A3DB3C17EE6CAE65D53602B4E80BCCBC ] C:\Windows\System32\PSHED.DLL
17:59:26.0317 0568 C:\Windows\System32\PSHED.DLL - ok
17:59:26.0317 0568 [ AECAB449567D1846DAD63ECE49E893E3 ] C:\Windows\System32\MPSSVC.dll
17:59:26.0317 0568 C:\Windows\System32\MPSSVC.dll - ok
17:59:26.0317 0568 [ B0945E538CF906BBDDC5A11C8EE868CC ] C:\Windows\System32\microsoft-windows-kernel-processor-power-events.dll
17:59:26.0317 0568 C:\Windows\System32\microsoft-windows-kernel-processor-power-events.dll - ok
17:59:26.0333 0568 [ 27026EAC8818E8A6C00A1CAD2F11D29A ] C:\Windows\System32\wkssvc.dll
17:59:26.0333 0568 C:\Windows\System32\wkssvc.dll - ok
17:59:26.0333 0568 [ C67F8A962B2534224D5908D16D2AD3CE ] C:\Windows\System32\wfapigp.dll
17:59:26.0333 0568 C:\Windows\System32\wfapigp.dll - ok
17:59:26.0333 0568 [ 426E0E8127BAC7D5DDEE8251F104E053 ] C:\Program Files (x86)\Absolute Software\Absolute Notifier\AbsoluteNotifierService.exe
17:59:26.0333 0568 C:\Program Files (x86)\Absolute Software\Absolute Notifier\AbsoluteNotifierService.exe - ok
17:59:26.0348 0568 [ 128DD9AF8640DBCC711940903C8B554F ] C:\Windows\SysWOW64\mscoree.dll
17:59:26.0348 0568 C:\Windows\SysWOW64\mscoree.dll - ok
17:59:26.0348 0568 [ 961036B3C6282C646B9ADBC8BB32C983 ] C:\Windows\System32\mscms.dll
17:59:26.0348 0568 C:\Windows\System32\mscms.dll - ok
17:59:26.0348 0568 [ F5DF6846F30E9F54EA60CCAEB3FB2055 ] C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscoreei.dll
17:59:26.0348 0568 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscoreei.dll - ok
17:59:26.0364 0568 [ 3AEAA8B561E63452C655DC0584922257 ] C:\Windows\System32\pcasvc.dll
17:59:26.0364 0568 C:\Windows\System32\pcasvc.dll - ok
17:59:26.0364 0568 [ 6313F223E817CC09AA41811DAA7F541D ] C:\Windows\System32\snmptrap.exe
17:59:26.0364 0568 C:\Windows\System32\snmptrap.exe - ok
17:59:26.0380 0568 [ 06A7422224D9865A5613710A089987DF ] C:\Windows\System32\provsvc.dll
17:59:26.0380 0568 C:\Windows\System32\provsvc.dll - ok
17:59:26.0395 0568 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] C:\Windows\System32\sstpsvc.dll
17:59:26.0395 0568 C:\Windows\System32\sstpsvc.dll - ok
17:59:26.0395 0568 [ EBC9F71C62296108B60A35B3A54F04FE ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorwks.dll
17:59:26.0395 0568 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorwks.dll - ok
17:59:26.0395 0568 [ C9564CF4976E7E96B4052737AA2492B4 ] C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcr80.dll
17:59:26.0395 0568 C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcr80.dll - ok
17:59:26.0411 0568 [ C733D233B623B7FFCE5031E4B756EE26 ] C:\Windows\SysWOW64\profapi.dll
17:59:26.0411 0568 C:\Windows\SysWOW64\profapi.dll - ok
17:59:26.0411 0568 [ 19CCF6D39E15B13D00106F9795721136 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\mscorlib\5858678a79aae31262b0214424245d06\mscorlib.ni.dll
17:59:26.0411 0568 C:\Windows\assembly\NativeImages_v2.0.50727_32\mscorlib\5858678a79aae31262b0214424245d06\mscorlib.ni.dll - ok
17:59:26.0426 0568 [ D146C378AEC2D1570A4E4F81E2B621B3 ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorjit.dll
17:59:26.0426 0568 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorjit.dll - ok
17:59:26.0426 0568 [ D84222A740EE7A135FC68AEB11121523 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System\2ebb3c259eab50af565e3a8dba6ad20e\System.ni.dll
17:59:26.0426 0568 C:\Windows\assembly\NativeImages_v2.0.50727_32\System\2ebb3c259eab50af565e3a8dba6ad20e\System.ni.dll - ok
17:59:26.0442 0568 [ BD549873895E371D4597FE7FA5D063EA ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System.ServiceProce#\8b7a7f9c607e09bfa03c07b5ff3a8ae3\System.ServiceProcess.ni.dll
17:59:26.0442 0568 C:\Windows\assembly\NativeImages_v2.0.50727_32\System.ServiceProce#\8b7a7f9c607e09bfa03c07b5ff3a8ae3\System.ServiceProcess.ni.dll - ok
17:59:26.0442 0568 [ 43748180DE16AE74E12BFA415D3E3CBA ] C:\Program Files (x86)\Absolute Software\Absolute Notifier\Com.Absolute.Common.Agent.Remoting.dll
17:59:26.0442 0568 C:\Program Files (x86)\Absolute Software\Absolute Notifier\Com.Absolute.Common.Agent.Remoting.dll - ok
17:59:26.0442 0568 [ 4D5A47FD3704227CC3E6C8201F226057 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Runtime.Remo#\0c00b1a8336dd4c1bd1ebce7780f20b4\System.Runtime.Remoting.ni.dll
17:59:26.0442 0568 C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Runtime.Remo#\0c00b1a8336dd4c1bd1ebce7780f20b4\System.Runtime.Remoting.ni.dll - ok
17:59:26.0458 0568 [ 785DE7ABDA13309D6065305542829E76 ] C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE
17:59:26.0458 0568 C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE - ok
17:59:26.0458 0568 [ CC9BBCFC715FBEDF7AE476106FE653E9 ] C:\Windows\SysWOW64\winhttp.dll
17:59:26.0458 0568 C:\Windows\SysWOW64\winhttp.dll - ok
17:59:26.0473 0568 [ 93C1B8183B7A14C05FBC4FC6EAFB57D1 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Configuration\cb079eab134fd1a752ad91db13274110\System.Configuration.ni.dll
17:59:26.0473 0568 C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Configuration\cb079eab134fd1a752ad91db13274110\System.Configuration.ni.dll - ok
17:59:26.0473 0568 [ A86A1C5DF1C662D1C75815BF4794F16D ] C:\Windows\SysWOW64\webio.dll
17:59:26.0473 0568 C:\Windows\SysWOW64\webio.dll - ok
17:59:26.0473 0568 [ 6F8E3B7B70E1BBA871212940C1FBDF60 ] C:\Windows\SysWOW64\SensApi.dll
17:59:26.0473 0568 C:\Windows\SysWOW64\SensApi.dll - ok
17:59:26.0489 0568 [ 6380BE4AB7AFA48BAEF321E8CA980ADD ] C:\Windows\SysWOW64\wintrust.dll
17:59:26.0489 0568 C:\Windows\SysWOW64\wintrust.dll - ok
17:59:26.0489 0568 [ FF5688D309347F2720911D8796912834 ] C:\Windows\SysWOW64\clbcatq.dll
17:59:26.0489 0568 C:\Windows\SysWOW64\clbcatq.dll - ok
17:59:26.0489 0568 [ 6F5146363FD295BAF70A1F04C591EDD2 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Xml\5c85c9c42e1b8a8760de82ecb4c7d582\System.Xml.ni.dll
17:59:26.0489 0568 C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Xml\5c85c9c42e1b8a8760de82ecb4c7d582\System.Xml.ni.dll - ok
17:59:26.0504 0568 [ 4DBC81CEFE9DB36856880BFB3491C100 ] C:\Windows\SysWOW64\msxml6.dll
17:59:26.0504 0568 C:\Windows\SysWOW64\msxml6.dll - ok
17:59:26.0504 0568 [ CA2A0750ED830678997695FF61B04C30 ] C:\Windows\System32\midimap.dll
17:59:26.0504 0568 C:\Windows\System32\midimap.dll - ok
17:59:26.0504 0568 [ 10AC5CE9F78DC281A1BBD9B8CC587B8A ] C:\Windows\System32\msacm32.dll
17:59:26.0504 0568 C:\Windows\System32\msacm32.dll - ok
17:59:26.0520 0568 [ 1B7C3A37362C7B2890168C5FC61C8D9B ] C:\Windows\System32\msacm32.drv
17:59:26.0520 0568 C:\Windows\System32\msacm32.drv - ok
17:59:26.0520 0568 [ EA99F234843BBDDA1ABD2767111ADE25 ] C:\Windows\System32\WindowsCodecs.dll
17:59:26.0520 0568 C:\Windows\System32\WindowsCodecs.dll - ok
17:59:26.0520 0568 [ D65AA164ACD0F6706DBCFBBCC9731584 ] C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
17:59:26.0520 0568 C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe - ok
17:59:26.0536 0568 [ 7321F18D1F820612ED0E9F2D4B578A7E ] C:\Windows\SysWOW64\cryptsp.dll
17:59:26.0536 0568 C:\Windows\SysWOW64\cryptsp.dll - ok
17:59:26.0536 0568 [ B6F0676FC23D543452FE81D8B71D24E7 ] C:\Windows\System32\SRSLabs\{176F4E15-8F7C-4833-ADED-81FAE8CCD186}\slcshp64.dll
17:59:26.0536 0568 C:\Windows\System32\SRSLabs\{176F4E15-8F7C-4833-ADED-81FAE8CCD186}\slcshp64.dll - ok
17:59:26.0551 0568 [ F7BA79CEFBD9DF4AF781E00356FBF48E ] C:\Windows\System32\SRSLabs\{176F4E15-8F7C-4833-ADED-81FAE8CCD186}\slh36064.dll
17:59:26.0551 0568 C:\Windows\System32\SRSLabs\{176F4E15-8F7C-4833-ADED-81FAE8CCD186}\slh36064.dll - ok
17:59:26.0551 0568 [ ED8EC63F7522DF4852147C84EC62C36A ] C:\Windows\SysWOW64\rsaenh.dll
17:59:26.0551 0568 C:\Windows\SysWOW64\rsaenh.dll - ok
17:59:26.0551 0568 [ 79E25E0628A2FF7A74356EAEF5011C26 ] C:\Windows\System32\SRSLabs\{176F4E15-8F7C-4833-ADED-81FAE8CCD186}\sltshd64.dll
17:59:26.0551 0568 C:\Windows\System32\SRSLabs\{176F4E15-8F7C-4833-ADED-81FAE8CCD186}\sltshd64.dll - ok
17:59:26.0567 0568 [ 6C0BD9D59C7E97DEE2FB3407D17BF697 ] C:\Windows\SysWOW64\RpcRtRemote.dll
17:59:26.0567 0568 C:\Windows\SysWOW64\RpcRtRemote.dll - ok
17:59:26.0567 0568 [ 92AAF75C3EB344A098DC026BC9DDF42A ] C:\Windows\System32\bthprops.cpl
17:59:26.0567 0568 C:\Windows\System32\bthprops.cpl - ok
17:59:26.0582 0568 [ 9F2BACD5E1776A4BB7CC0EC3C3A4F96D ] C:\Windows\System32\winbrand.dll
17:59:26.0582 0568 C:\Windows\System32\winbrand.dll - ok
17:59:26.0582 0568 [ 7D0E72093E72B8045D44DEB9384F811E ] C:\Program Files\WIDCOMM\Bluetooth Software\btins.dll
17:59:26.0582 0568 C:\Program Files\WIDCOMM\Bluetooth Software\btins.dll - ok
17:59:26.0582 0568 [ C2762A57DF0EE85E63CE4893C5215313 ] C:\Windows\System32\VaultCredProvider.dll
17:59:26.0582 0568 C:\Windows\System32\VaultCredProvider.dll - ok
17:59:26.0598 0568 [ C22D2885DAFC8EB0D9E2EC3E62212FA3 ] C:\Program Files\WIDCOMM\Bluetooth Software\BtwCP.dll
17:59:26.0598 0568 C:\Program Files\WIDCOMM\Bluetooth Software\BtwCP.dll - ok
17:59:26.0598 0568 [ 02CDEB5D8B3DD5F6770DEFFBBC0CFAD0 ] C:\Windows\System32\winspool.drv
17:59:26.0598 0568 C:\Windows\System32\winspool.drv - ok
17:59:26.0614 0568 [ 27A2F5B4168B333E003E2AB68811D62E ] C:\Program Files\Quick Heal\Quick Heal Total Security\EMLPROXY.EXE
17:59:26.0614 0568 C:\Program Files\Quick Heal\Quick Heal Total Security\EMLPROXY.EXE - ok
17:59:26.0614 0568 [ 324CC6C4A615E9B0FA97B57540357E66 ] C:\Program Files\Quick Heal\Quick Heal Total Security\EMPXCORE.DLL
17:59:26.0614 0568 C:\Program Files\Quick Heal\Quick Heal Total Security\EMPXCORE.DLL - ok
17:59:26.0629 0568 [ 2A381A9740165D7A1405148B6DFB3E38 ] C:\Windows\System32\SmartcardCredentialProvider.dll
17:59:26.0629 0568 C:\Windows\System32\SmartcardCredentialProvider.dll - ok
17:59:26.0629 0568 [ BF352E73615F5461AA6884472435A544 ] C:\Windows\System32\BioCredProv.dll
17:59:26.0629 0568 C:\Windows\System32\BioCredProv.dll - ok
17:59:26.0645 0568 [ 7C6587B5582A271FE766DCFD5F39089A ] C:\Program Files\Quick Heal\Quick Heal Total Security\ONLNMF.DLL
17:59:26.0645 0568 C:\Program Files\Quick Heal\Quick Heal Total Security\ONLNMF.DLL - ok
17:59:26.0645 0568 [ 97D38371502AA797DB14EB1FA5FCE4CD ] C:\Windows\System32\credui.dll
17:59:26.0645 0568 C:\Windows\System32\credui.dll - ok
17:59:26.0645 0568 [ 796B8123A7859AFD3A4AE10514DBAEB5 ] C:\Windows\System32\winbio.dll
17:59:26.0645 0568 C:\Windows\System32\winbio.dll - ok
17:59:26.0660 0568 [ A87205FE194B239D8D96E4972B779CC1 ] C:\Windows\System32\samcli.dll
17:59:26.0660 0568 C:\Windows\System32\samcli.dll - ok
17:59:26.0660 0568 [ 44B9C66177651F3F53C87B665D58D17A ] C:\Windows\System32\vaultcli.dll
17:59:26.0660 0568 C:\Windows\System32\vaultcli.dll - ok
17:59:26.0676 0568 [ 972C3301DB3DA91AE06A95F6B4160B1B ] C:\Windows\System32\certCredProvider.dll
17:59:26.0676 0568 C:\Windows\System32\certCredProvider.dll - ok
17:59:26.0676 0568 [ 5FF7D057E48DA861BDBB47D314B6DA7D ] C:\Windows\winsxs\amd64_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.4926_none_08e1a05ba83fe554\msvcr90.dll
17:59:26.0676 0568 C:\Windows\winsxs\amd64_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.4926_none_08e1a05ba83fe554\msvcr90.dll - ok
17:59:26.0676 0568 [ 87FA0C48C3B2E9FEE518818FE26B15B5 ] C:\Windows\System32\rasplap.dll
17:59:26.0676 0568 C:\Windows\System32\rasplap.dll - ok
17:59:26.0692 0568 [ 599EBE6C7EA52B5FF9603F203E8EC080 ] C:\Windows\System32\msi.dll
17:59:26.0692 0568 C:\Windows\System32\msi.dll - ok
17:59:26.0692 0568 [ 019CD868461B646E09BDF04474C19341 ] C:\Windows\System32\rasapi32.dll
17:59:26.0692 0568 C:\Windows\System32\rasapi32.dll - ok
17:59:26.0707 0568 [ 81FD4875FEDB56DE7F320EF40D5C946F ] C:\Program Files\Quick Heal\Quick Heal Total Security\GGSTUB.DLL
17:59:26.0707 0568 C:\Program Files\Quick Heal\Quick Heal Total Security\GGSTUB.DLL - ok
17:59:26.0707 0568 [ B28DEEC597C8DEB70C744C7CF9210E3E ] C:\Windows\System32\rasman.dll
17:59:26.0707 0568 C:\Windows\System32\rasman.dll - ok
17:59:26.0707 0568 [ F5A61F0A0030C80DF319B0C14A4C8885 ] C:\Windows\System32\rtutils.dll
17:59:26.0707 0568 C:\Windows\System32\rtutils.dll - ok
17:59:26.0723 0568 [ 335BFFC6B447C862CB181AEF447B4DAA ] C:\Program Files\Quick Heal\Quick Heal Total Security\scansts.dll
17:59:26.0723 0568 C:\Program Files\Quick Heal\Quick Heal Total Security\scansts.dll - ok
17:59:26.0723 0568 [ 9BC8610C32C96A2983A65DC21CAFA921 ] C:\Windows\System32\UXInit.dll
17:59:26.0723 0568 C:\Windows\System32\UXInit.dll - ok
17:59:26.0738 0568 [ 666A60F6F5E719856FF6254E0966EFF7 ] C:\Windows\System32\wbem\wbemprox.dll
17:59:26.0738 0568 C:\Windows\System32\wbem\wbemprox.dll - ok
17:59:26.0738 0568 [ FAF9BA81FB0543CB4B7EFFD24CFA815F ] C:\Windows\System32\wbemcomn.dll
17:59:26.0738 0568 C:\Windows\System32\wbemcomn.dll - ok
17:59:26.0738 0568 [ AF28348ED585539C4A33A4341FF23696 ] C:\Windows\System32\oleacc.dll
17:59:26.0738 0568 C:\Windows\System32\oleacc.dll - ok
17:59:26.0754 0568 [ 019BDD35DE269CB98B22DE8923C2AA3B ] C:\Windows\System32\UIAutomationCore.dll
17:59:26.0754 0568 C:\Windows\System32\UIAutomationCore.dll - ok
17:59:26.0754 0568 [ 1495A96BC879926807DCB3DC4B2A9883 ] C:\Program Files\Quick Heal\Quick Heal Total Security\SCANOPT.DLL
17:59:26.0754 0568 C:\Program Files\Quick Heal\Quick Heal Total Security\SCANOPT.DLL - ok
17:59:26.0754 0568 [ 7D656F994095F5CE9FB7D6709181EB90 ] C:\Program Files\Quick Heal\Quick Heal Total Security\FILEWRAP.DLL
17:59:26.0754 0568 C:\Program Files\Quick Heal\Quick Heal Total Security\FILEWRAP.DLL - ok
17:59:26.0770 0568 [ 3A387E0E973D45469A08A703407F2E6F ] C:\Windows\winsxs\amd64_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.4926_none_08e1a05ba83fe554\msvcp90.dll
17:59:26.0770 0568 C:\Windows\winsxs\amd64_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.4926_none_08e1a05ba83fe554\msvcp90.dll - ok
17:59:26.0770 0568 [ 35E46B9D2AAE75157D28D3FCB87977AC ] C:\Program Files\Quick Heal\Quick Heal Total Security\WSCORE.DLL
17:59:26.0770 0568 C:\Program Files\Quick Heal\Quick Heal Total Security\WSCORE.DLL - ok
17:59:26.0785 0568 [ 266F630A7CE7F816EC51882E3C90F8F1 ] C:\Program Files\Quick Heal\Quick Heal Total Security\WSNFAPI.DLL
17:59:26.0785 0568 C:\Program Files\Quick Heal\Quick Heal Total Security\WSNFAPI.DLL - ok
17:59:26.0785 0568 [ FAFAE01E889DC9C05A6CA2138CFC220B ] C:\Windows\System32\tapi32.dll
17:59:26.0785 0568 C:\Windows\System32\tapi32.dll - ok
17:59:26.0785 0568 [ F66E2D90ECEFCF47A5A94968044E6B7B ] C:\Program Files\Quick Heal\Quick Heal Total Security\wstifapi.dll
17:59:26.0785 0568 C:\Program Files\Quick Heal\Quick Heal Total Security\wstifapi.dll - ok
17:59:26.0801 0568 [ 9DDF0FED0D490AEB4FCABB67181E4086 ] C:\Program Files\Quick Heal\Quick Heal Total Security\WSUTIL.DLL
17:59:26.0801 0568 C:\Program Files\Quick Heal\Quick Heal Total Security\WSUTIL.DLL - ok
17:59:26.0801 0568 [ 038DD7E35A7C8C89623A40E75ABC1FF6 ] C:\Program Files\WIDCOMM\Bluetooth Software\btwprofpack.dll
17:59:26.0801 0568 C:\Program Files\WIDCOMM\Bluetooth Software\btwprofpack.dll - ok
17:59:26.0801 0568 [ E4D894AC04DEE084B185991D928D3F79 ] C:\Program Files\Quick Heal\Quick Heal Total Security\UIIPCITF.DLL
17:59:26.0801 0568 C:\Program Files\Quick Heal\Quick Heal Total Security\UIIPCITF.DLL - ok
17:59:26.0816 0568 [ 7489BAE75F6ACC47E22C8CBE77A845F3 ] C:\Program Files\Quick Heal\Quick Heal Total Security\INFORI.DLL
17:59:26.0816 0568 C:\Program Files\Quick Heal\Quick Heal Total Security\INFORI.DLL - ok
17:59:26.0816 0568 [ 649277BC17AB5F050AF2ED8C9D861415 ] C:\Program Files\Quick Heal\Quick Heal Total Security\REGISTRY.DLL
17:59:26.0816 0568 C:\Program Files\Quick Heal\Quick Heal Total Security\REGISTRY.DLL - ok
17:59:26.0832 0568 [ 3D268FBD5077F41ECE4FF40567BFB492 ] C:\Program Files\Quick Heal\Quick Heal Total Security\SAPISSVC.EXE
17:59:26.0832 0568 C:\Program Files\Quick Heal\Quick Heal Total Security\SAPISSVC.EXE - ok
17:59:26.0832 0568 [ 41AD382FE491433D0A28FB4B16EB89F7 ] C:\Program Files\Quick Heal\Quick Heal Total Security\MODRES.DLL
17:59:26.0832 0568 C:\Program Files\Quick Heal\Quick Heal Total Security\MODRES.DLL - ok
17:59:26.0832 0568 [ 69B1DCEE3FA5D6C77A44BE62CC7DE510 ] C:\Program Files\Quick Heal\Quick Heal Total Security\SAPISLIB.DLL
17:59:26.0832 0568 C:\Program Files\Quick Heal\Quick Heal Total Security\SAPISLIB.DLL - ok
17:59:26.0848 0568 [ E6C941FE91F90BA31CA237D89A68A29E ] C:\Program Files\Quick Heal\Quick Heal Total Security\STRTLIB.DLL
17:59:26.0848 0568 C:\Program Files\Quick Heal\Quick Heal Total Security\STRTLIB.DLL - ok
17:59:26.0848 0568 [ F02786B66375292E58C8777082D4396D ] C:\Windows\System32\cryptsvc.dll
17:59:26.0848 0568 C:\Windows\System32\cryptsvc.dll - ok
17:59:26.0863 0568 [ C6D332ED6A3BD6060C0F0F5A18C1A3C0 ] C:\Windows\System32\cryptnet.dll
17:59:26.0863 0568 C:\Windows\System32\cryptnet.dll - ok
17:59:26.0863 0568 [ C5B4683680DF085B57BC53E5EF34861F ] C:\Windows\System32\IKEEXT.DLL
17:59:26.0863 0568 C:\Windows\System32\IKEEXT.DLL - ok
17:59:26.0863 0568 [ 8C2BA6BEA949EE6E68385F5692BAFB94 ] C:\Windows\System32\dps.dll
17:59:26.0863 0568 C:\Windows\System32\dps.dll - ok
17:59:26.0879 0568 [ D9A0CE66046D6EFA0C61BAA885CBA0A8 ] C:\Windows\System32\nlasvc.dll
17:59:26.0879 0568 C:\Windows\System32\nlasvc.dll - ok
17:59:26.0879 0568 [ 82D475A87849699A6B6471D34C1E3567 ] C:\Program Files\Quick Heal\Quick Heal Total Security\ITFG.DLL
17:59:26.0879 0568 C:\Program Files\Quick Heal\Quick Heal Total Security\ITFG.DLL - ok
17:59:26.0879 0568 [ BB9F6A68EB07C920C9975F2A0AE43FD1 ] C:\Program Files\Quick Heal\Quick Heal Total Security\OPSSVC.EXE
17:59:26.0879 0568 C:\Program Files\Quick Heal\Quick Heal Total Security\OPSSVC.EXE - ok
17:59:26.0894 0568 [ DC57BAF15064ECB79F6D2CCF352E1D88 ] C:\Windows\System32\taskschd.dll
17:59:26.0894 0568 C:\Windows\System32\taskschd.dll - ok
17:59:26.0894 0568 [ 107F279517E2A04DB4AC1B1FAF1D573B ] C:\Windows\System32\ncsi.dll
17:59:26.0894 0568 C:\Windows\System32\ncsi.dll - ok
17:59:26.0894 0568 [ 098B17CDF371F7D6759766B6E1C62A8B ] C:\Program Files\Quick Heal\Quick Heal Total Security\OPSCORE.DLL
17:59:26.0894 0568 C:\Program Files\Quick Heal\Quick Heal Total Security\OPSCORE.DLL - ok
17:59:26.0910 0568 [ 0116D56BB15FCAA61F452596C1E08FF4 ] C:\Program Files\Quick Heal\Quick Heal Total Security\GGCITF.DLL
17:59:26.0910 0568 C:\Program Files\Quick Heal\Quick Heal Total Security\GGCITF.DLL - ok
17:59:26.0910 0568 [ 115A28C27F7B65A3252048AAA77059A7 ] C:\Program Files\Quick Heal\Quick Heal Total Security\SACINTFC.DLL
17:59:26.0910 0568 C:\Program Files\Quick Heal\Quick Heal Total Security\SACINTFC.DLL - ok
17:59:26.0926 0568 [ 2FF4C1F1E2F23BBDA84197DE779C3FB8 ] C:\Program Files\Quick Heal\Quick Heal Total Security\FNSYSITF.DLL
17:59:26.0926 0568 C:\Program Files\Quick Heal\Quick Heal Total Security\FNSYSITF.DLL - ok
17:59:26.0926 0568 [ A9658831FB91AF680CF2DE51378282AA ] C:\PROGRA~1\QUICKH~1\QUICKH~1\SCANAPI.DLL
17:59:26.0926 0568 C:\PROGRA~1\QUICKH~1\QUICKH~1\SCANAPI.DLL - ok
17:59:26.0926 0568 [ 0BF0C2A72F2CB0BA4382C392D3E331AF ] C:\Windows\System32\winhttp.dll
17:59:26.0926 0568 C:\Windows\System32\winhttp.dll - ok
17:59:26.0941 0568 [ F3D202F53A222D5F6944D459B73CF967 ] C:\Windows\System32\fltLib.dll
17:59:26.0941 0568 C:\Windows\System32\fltLib.dll - ok
17:59:26.0941 0568 [ 6CEF7856A3EFAC59470F6208F0F585CE ] C:\Windows\System32\mpr.dll
17:59:26.0941 0568 C:\Windows\System32\mpr.dll - ok
17:59:26.0941 0568 [ 65D66A3A780E327194DAECC573F76D7D ] C:\Program Files\Quick Heal\Quick Heal Total Security\OPSITF.DLL
17:59:26.0941 0568 C:\Program Files\Quick Heal\Quick Heal Total Security\OPSITF.DLL - ok
17:59:26.0957 0568 [ 1727B2A2F379A32B864C096FA794AADC ] C:\Windows\System32\aepic.dll
17:59:26.0957 0568 C:\Windows\System32\aepic.dll - ok
17:59:26.0957 0568 [ D77CD94EEB5FF5FDBFCDAA1CC70999B6 ] C:\PROGRA~1\QUICKH~1\QUICKH~1\scansdk.dll
17:59:26.0957 0568 C:\PROGRA~1\QUICKH~1\QUICKH~1\scansdk.dll - ok
17:59:26.0972 0568 [ C6DCD1D11ED6827F05C00773C3E7053C ] C:\Windows\System32\sfc.dll
17:59:26.0972 0568 C:\Windows\System32\sfc.dll - ok
17:59:26.0972 0568 [ 2196CDBFA4B99BEEDAE300FA21DFE718 ] C:\Windows\System32\webio.dll
17:59:26.0972 0568 C:\Windows\System32\webio.dll - ok
17:59:26.0972 0568 [ 895C9AB0A855547445C4181195230757 ] C:\Windows\System32\sfc_os.dll
17:59:26.0972 0568 C:\Windows\System32\sfc_os.dll - ok
17:59:26.0988 0568 [ E0209F5C1B0735ED497FD51D0FBD458E ] C:\PROGRA~1\QUICKH~1\QUICKH~1\platform.dll
17:59:26.0988 0568 C:\PROGRA~1\QUICKH~1\QUICKH~1\platform.dll - ok
17:59:26.0988 0568 [ 1BE4D555DDC53A04881DA4AD6240EE88 ] C:\PROGRA~1\QUICKH~1\QUICKH~1\filesdk.dll
17:59:26.0988 0568 C:\PROGRA~1\QUICKH~1\QUICKH~1\filesdk.dll - ok
17:59:26.0988 0568 [ 68769C3356B3BE5D1C732C97B9A80D6E ] C:\Windows\System32\drivers\PEAuth.sys
17:59:26.0988 0568 C:\Windows\System32\drivers\PEAuth.sys - ok
17:59:27.0004 0568 [ A261AD1FDC6D6A658A82B81AF81B215F ] C:\Windows\System32\vssapi.dll
17:59:27.0004 0568 C:\Windows\System32\vssapi.dll - ok
17:59:27.0004 0568 [ 09DB1E1330630F8A0CE80D42CB4B7C2C ] C:\PROGRA~1\QUICKH~1\QUICKH~1\DISKAPI.DLL
17:59:27.0004 0568 C:\PROGRA~1\QUICKH~1\QUICKH~1\DISKAPI.DLL - ok
17:59:27.0004 0568 [ E599148A72888A009A1DC6470BC06794 ] C:\Program Files\Quick Heal\Quick Heal Total Security\QUHLPSVC.EXE
17:59:27.0004 0568 C:\Program Files\Quick Heal\Quick Heal Total Security\QUHLPSVC.EXE - ok
17:59:27.0019 0568 [ 06EEE09F266779687FAA38696857DACC ] C:\Program Files\Quick Heal\Quick Heal Total Security\QUHELPER.DLL
17:59:27.0019 0568 C:\Program Files\Quick Heal\Quick Heal Total Security\QUHELPER.DLL - ok
17:59:27.0019 0568 [ D5A5ED3774C963C62B7B906FB2BB4D16 ] C:\Program Files\Quick Heal\Quick Heal Total Security\UPSDSVC.DLL
17:59:27.0019 0568 C:\Program Files\Quick Heal\Quick Heal Total Security\UPSDSVC.DLL - ok
17:59:27.0019 0568 [ DDE33528F026C9F2E182A54138D42640 ] C:\Program Files\Quick Heal\Quick Heal Total Security\SCANWSCS.EXE
17:59:27.0019 0568 C:\Program Files\Quick Heal\Quick Heal Total Security\SCANWSCS.EXE - ok
17:59:27.0035 0568 [ 287923557447D7E4BDD7E65B1F0F5428 ] C:\Windows\System32\vsstrace.dll
17:59:27.0035 0568 C:\Windows\System32\vsstrace.dll - ok
17:59:27.0035 0568 [ 2BBF3FDB70B8965DFA0258CBAB41ECCE ] C:\Windows\System32\ssdpapi.dll
17:59:27.0035 0568 C:\Windows\System32\ssdpapi.dll - ok
17:59:27.0035 0568 [ 3EA8A16169C26AFBEB544E0E48421186 ] C:\Windows\System32\drivers\secdrv.sys
17:59:27.0035 0568 C:\Windows\System32\drivers\secdrv.sys - ok
17:59:27.0050 0568 [ F07AF60B152221472FBDB2FECEC4896D ] C:\Program Files (x86)\Skype\Updater\Updater.exe
17:59:27.0050 0568 C:\Program Files (x86)\Skype\Updater\Updater.exe - ok
17:59:27.0050 0568 [ A543AC1F7138376D778D630A35FCBC4C ] C:\Windows\SysWOW64\psapi.dll
17:59:27.0050 0568 C:\Windows\SysWOW64\psapi.dll - ok
17:59:27.0050 0568 [ 9C0DC1DAAD14D443DD5A0D1EE78D775E ] C:\Windows\SysWOW64\userenv.dll
17:59:27.0050 0568 C:\Windows\SysWOW64\userenv.dll - ok
17:59:27.0066 0568 [ 702254574E7E52052DE39408457B7149 ] C:\Windows\SysWOW64\version.dll
17:59:27.0066 0568 C:\Windows\SysWOW64\version.dll - ok
17:59:27.0066 0568 [ E30E5BB0DBA49EFE5BBBAFEA440CFBD9 ] C:\Windows\SysWOW64\wtsapi32.dll
17:59:27.0066 0568 C:\Windows\SysWOW64\wtsapi32.dll - ok
17:59:27.0082 0568 [ 812D175BBBB5C0E30915EDB76B188EFB ] C:\PROGRA~1\QUICKH~1\QUICKH~1\ANPHMAIL.DLL
17:59:27.0082 0568 C:\PROGRA~1\QUICKH~1\QUICKH~1\ANPHMAIL.DLL - ok
17:59:27.0082 0568 [ 0AF6E19D39C70844C5CAA8FB0183C36E ] C:\Windows\System32\drivers\srvnet.sys
17:59:27.0082 0568 C:\Windows\System32\drivers\srvnet.sys - ok
17:59:27.0082 0568 [ 613BC4B8F4DEE3BF1D98F53A7D7AF9DB ] C:\Program Files\WIDCOMM\Bluetooth Software\btrez.dll
17:59:27.0082 0568 C:\Program Files\WIDCOMM\Bluetooth Software\btrez.dll - ok
17:59:27.0097 0568 [ 325F9E00C8A17C1171CB6B1B5B5AFED7 ] C:\PROGRA~1\QUICKH~1\QUICKH~1\scan.dll
17:59:27.0097 0568 C:\PROGRA~1\QUICKH~1\QUICKH~1\scan.dll - ok
17:59:27.0097 0568 [ 3239AF9EDE06256DAA3CE77005A736AB ] C:\PROGRA~1\QUICKH~1\QUICKH~1\drvcomm.dll
17:59:27.0097 0568 C:\PROGRA~1\QUICKH~1\QUICKH~1\drvcomm.dll - ok
17:59:27.0097 0568 [ 4469DCD7E1BA7BF046EC9E4B303C34F9 ] C:\PROGRA~1\QUICKH~1\QUICKH~1\VIRLIST.DLL
17:59:27.0097 0568 C:\PROGRA~1\QUICKH~1\QUICKH~1\VIRLIST.DLL - ok
17:59:27.0113 0568 [ 76D078AF6F587B162D50210F761EB9ED ] C:\Windows\System32\drivers\tcpipreg.sys
17:59:27.0113 0568 C:\Windows\System32\drivers\tcpipreg.sys - ok
17:59:27.0113 0568 [ 52D0E33B681BD0F33FDC08812FEE4F7D ] C:\Windows\System32\wiaservc.dll
17:59:27.0113 0568 C:\Windows\System32\wiaservc.dll - ok
17:59:27.0113 0568 [ 0F05EC2887BFE197AD82A13287D2F404 ] C:\Windows\System32\termsrv.dll
17:59:27.0113 0568 C:\Windows\System32\termsrv.dll - ok
17:59:27.0128 0568 [ 19B07E7E8915D701225DA41CB3877306 ] C:\Windows\System32\wbem\WMIsvc.dll
17:59:27.0128 0568 C:\Windows\System32\wbem\WMIsvc.dll - ok
17:59:27.0128 0568 [ 3C1284516A62078FB68F768DE4F1A7BE ] C:\Windows\System32\sysmain.dll
17:59:27.0128 0568 C:\Windows\System32\sysmain.dll - ok
17:59:27.0128 0568 [ 0364256B4A2A93A8C8CDA6B3B5A0EFF5 ] C:\Windows\System32\wiatrace.dll
17:59:27.0128 0568 C:\Windows\System32\wiatrace.dll - ok
17:59:27.0144 0568 [ 76548F7B818881B47D8D1AE1BE9C11F8 ] C:\Windows\System32\drivers\srv2.sys
17:59:27.0144 0568 C:\Windows\System32\drivers\srv2.sys - ok
17:59:27.0144 0568 [ 0255C22D99602534F15CBB8D9B6F152F ] C:\Windows\System32\wbem\WinMgmtR.dll
17:59:27.0144 0568 C:\Windows\System32\wbem\WinMgmtR.dll - ok
17:59:27.0160 0568 [ A7582A70802D5B9F28ED3940F6A3E9ED ] C:\Windows\System32\wbem\WmiDcPrv.dll
17:59:27.0160 0568 C:\Windows\System32\wbem\WmiDcPrv.dll - ok
17:59:27.0160 0568 [ 3B9665D4B8C587A6014B9B8DFF5974A0 ] C:\Windows\System32\wbem\wbemcore.dll
17:59:27.0160 0568 C:\Windows\System32\wbem\wbemcore.dll - ok
17:59:27.0160 0568 [ 7E236CC26FF0C2513819FA453E2C5371 ] C:\Windows\System32\icaapi.dll
17:59:27.0160 0568 C:\Windows\System32\icaapi.dll - ok
17:59:27.0175 0568 [ 210FCACAF902B2CD47CF9FD17D846146 ] C:\Windows\System32\aeevts.dll
17:59:27.0175 0568 C:\Windows\System32\aeevts.dll - ok
17:59:27.0175 0568 [ 3BEC5E229DD4E26D827D0A55F8F5979D ] C:\PROGRA~1\QUICKH~1\QUICKH~1\bootscan.dll
17:59:27.0175 0568 C:\PROGRA~1\QUICKH~1\QUICKH~1\bootscan.dll - ok
17:59:27.0175 0568 [ 2A8B506AB60B03982D8A12990CB21083 ] C:\PROGRA~1\QUICKH~1\QUICKH~1\disasm.dll
17:59:27.0175 0568 C:\PROGRA~1\QUICKH~1\QUICKH~1\disasm.dll - ok
17:59:27.0191 0568 [ 2408C0366D96BCDF63E8F1C78E4A29C5 ] C:\Windows\System32\drivers\srv.sys
17:59:27.0191 0568 C:\Windows\System32\drivers\srv.sys - ok
17:59:27.0191 0568 [ 087D8668C71634A3A3761135ABF16EEE ] C:\Windows\System32\wbem\esscli.dll
17:59:27.0191 0568 C:\Windows\System32\wbem\esscli.dll - ok
17:59:27.0191 0568 [ 4D394B185BD6BBEDF26353FDFDF6268D ] C:\PROGRA~1\QUICKH~1\QUICKH~1\mltiscan.dll
17:59:27.0191 0568 C:\PROGRA~1\QUICKH~1\QUICKH~1\mltiscan.dll - ok
17:59:27.0206 0568 [ 7E7AFD841694F6AC397E99D75CEAD49D ] C:\Windows\System32\trkwks.dll
17:59:27.0206 0568 C:\Windows\System32\trkwks.dll - ok
17:59:27.0206 0568 [ A3F5E8EC1316C3E2562B82694A251C9E ] C:\Windows\System32\wbem\fastprox.dll
17:59:27.0206 0568 C:\Windows\System32\wbem\fastprox.dll - ok
17:59:27.0206 0568 [ EE26D130808D16C0E417BBBED0451B34 ] C:\Windows\System32\ntdsapi.dll
17:59:27.0206 0568 C:\Windows\System32\ntdsapi.dll - ok
17:59:27.0222 0568 [ 718B6F51AB7F6FE2988A36868F9AD3AB ] C:\Windows\System32\wbem\wbemsvc.dll
17:59:27.0222 0568 C:\Windows\System32\wbem\wbemsvc.dll - ok
17:59:27.0222 0568 [ 81F1D04D4D0E433099365127375FD501 ] C:\Windows\System32\srvsvc.dll
17:59:27.0222 0568 C:\Windows\System32\srvsvc.dll - ok
17:59:27.0222 0568 [ 6B054C67AAA87843504E8E3C09102009 ] C:\Windows\System32\browser.dll
17:59:27.0222 0568 C:\Windows\System32\browser.dll - ok
17:59:27.0238 0568 [ F8E058D17363EC580E4B7232778B6CB5 ] C:\Windows\System32\iphlpsvc.dll
17:59:27.0238 0568 C:\Windows\System32\iphlpsvc.dll - ok
17:59:27.0238 0568 [ 48A6CA43A5C921C465F70D9B42B3EF1A ] C:\Windows\System32\sqmapi.dll
17:59:27.0238 0568 C:\Windows\System32\sqmapi.dll - ok
17:59:27.0253 0568 [ 7B38D7916A7CD058C16A0A6CA5077901 ] C:\Windows\System32\wdscore.dll
17:59:27.0253 0568 C:\Windows\System32\wdscore.dll - ok
17:59:27.0253 0568 [ F15B081D3FA822818018B73954BE39C4 ] C:\PROGRA~1\QUICKH~1\QUICKH~1\pescan.dll
17:59:27.0253 0568 C:\PROGRA~1\QUICKH~1\QUICKH~1\pescan.dll - ok
17:59:27.0253 0568 [ 0143DB80DACFB7C2B5B7009ED9063353 ] C:\Windows\System32\wbem\wmiutils.dll
17:59:27.0253 0568 C:\Windows\System32\wbem\wmiutils.dll - ok
17:59:27.0269 0568 [ CFEFA40DDE34659BE5211966EAD86437 ] C:\Windows\System32\netmsg.dll
17:59:27.0269 0568 C:\Windows\System32\netmsg.dll - ok
17:59:27.0269 0568 [ F9C9944F80B757F0380EBA4F239C7E2D ] C:\PROGRA~1\QUICKH~1\QUICKH~1\dospoly.dll
17:59:27.0269 0568 C:\PROGRA~1\QUICKH~1\QUICKH~1\dospoly.dll - ok
17:59:27.0269 0568 [ 0AB34456654C283DAA13B8D2BA21439B ] C:\Windows\System32\wbem\repdrvfs.dll
17:59:27.0269 0568 C:\Windows\System32\wbem\repdrvfs.dll - ok
17:59:27.0269 0568 [ 5552C4A8AA318C57A6035BE0F5722FA2 ] C:\PROGRA~1\QUICKH~1\QUICKH~1\pepoly.dll
17:59:27.0269 0568 C:\PROGRA~1\QUICKH~1\QUICKH~1\pepoly.dll - ok
17:59:27.0284 0568 [ 836892094209E5D9CF403B4CF2829B5C ] C:\Windows\System32\sscore.dll
17:59:27.0284 0568 C:\Windows\System32\sscore.dll - ok
17:59:27.0284 0568 [ 4EAE37133B78A26A84EA1649D9B21A1E ] C:\Windows\System32\clusapi.dll
17:59:27.0284 0568 C:\Windows\System32\clusapi.dll - ok
17:59:27.0300 0568 [ 344FCC9850C3A8A3B4D3C65151AF8E4C ] C:\Windows\System32\resutils.dll
17:59:27.0300 0568 C:\Windows\System32\resutils.dll - ok
17:59:27.0300 0568 [ 6E03C9E362389A768E6C240933352D11 ] C:\Windows\System32\nci.dll
17:59:27.0300 0568 C:\Windows\System32\nci.dll - ok
17:59:27.0300 0568 [ 3B367397320C26DBA890B260F80D1B1B ] C:\Windows\System32\hnetcfg.dll
17:59:27.0300 0568 C:\Windows\System32\hnetcfg.dll - ok
17:59:27.0316 0568 [ C8A2FA2EE9241B8D66F9D7DE9AE34AEE ] C:\Program Files\Bonjour\mdnsNSP.dll
17:59:27.0316 0568 C:\Program Files\Bonjour\mdnsNSP.dll - ok
17:59:27.0316 0568 [ 88351B29B622B30962D2FEB6CA8D860B ] C:\Windows\System32\rasadhlp.dll
17:59:27.0316 0568 C:\Windows\System32\rasadhlp.dll - ok
17:59:27.0316 0568 [ 04459C37D7C6D989980C9CD66B24A19B ] C:\PROGRA~1\QUICKH~1\QUICKH~1\arcvsdk.dll
17:59:27.0316 0568 C:\PROGRA~1\QUICKH~1\QUICKH~1\arcvsdk.dll - ok
17:59:27.0331 0568 [ 733369BB05858922E9428EA34F48C7CB ] C:\PROGRA~1\QUICKH~1\QUICKH~1\OLESDK.DLL
17:59:27.0331 0568 C:\PROGRA~1\QUICKH~1\QUICKH~1\OLESDK.DLL - ok
17:59:27.0331 0568 [ 82BC97E5793DEF69691AAD5AB953A200 ] C:\Windows\System32\wbem\WmiPrvSD.dll
17:59:27.0331 0568 C:\Windows\System32\wbem\WmiPrvSD.dll - ok
17:59:27.0347 0568 [ D41FEBD098234F02485A4EA98D4730A4 ] C:\Windows\System32\ncobjapi.dll
17:59:27.0347 0568 C:\Windows\System32\ncobjapi.dll - ok
17:59:27.0347 0568 [ 6F40D6FB05E0C1E5402812B426971AF0 ] C:\Windows\System32\wbem\wbemess.dll
17:59:27.0347 0568 C:\Windows\System32\wbem\wbemess.dll - ok
17:59:27.0347 0568 [ 9173F70AF60C0A864EECDFB3342DC789 ] C:\Windows\winsxs\amd64_microsoft.vc80.mfc_1fc8b3b9a1e18e3b_8.0.50727.762_none_c46a533c8a667ee7\mfc80.dll
17:59:27.0347 0568 C:\Windows\winsxs\amd64_microsoft.vc80.mfc_1fc8b3b9a1e18e3b_8.0.50727.762_none_c46a533c8a667ee7\mfc80.dll - ok
17:59:27.0362 0568 [ 89C6263C3F1D0945A7534D7B66D9F2E1 ] C:\PROGRA~1\QUICKH~1\QUICKH~1\vbsscan.dll
17:59:27.0362 0568 C:\PROGRA~1\QUICKH~1\QUICKH~1\vbsscan.dll - ok
17:59:27.0362 0568 [ CCB73EF7E72E55C7BD63DC46FC3663A0 ] C:\PROGRA~1\QUICKH~1\QUICKH~1\wormscan.dll
17:59:27.0362 0568 C:\PROGRA~1\QUICKH~1\QUICKH~1\wormscan.dll - ok
17:59:27.0378 0568 [ 7B8F7848D3C65DD9589A4898CFF3757D ] C:\Windows\winsxs\amd64_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.4927_none_88dce9872fb18caf\msvcr80.dll
17:59:27.0378 0568 C:\Windows\winsxs\amd64_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.4927_none_88dce9872fb18caf\msvcr80.dll - ok
17:59:27.0378 0568 [ 9C04115ECA8904CFD014033CECD8CCCF ] C:\PROGRA~1\QUICKH~1\QUICKH~1\bkdrscan.dll
17:59:27.0378 0568 C:\PROGRA~1\QUICKH~1\QUICKH~1\bkdrscan.dll - ok
17:59:27.0394 0568 [ 9935F595C9B80BC40723042B43086549 ] C:\Windows\winsxs\amd64_microsoft.vc80.mfcloc_1fc8b3b9a1e18e3b_8.0.50727.762_none_fc42961a63b5a82b\mfc80ENU.dll
17:59:27.0394 0568 C:\Windows\winsxs\amd64_microsoft.vc80.mfcloc_1fc8b3b9a1e18e3b_8.0.50727.762_none_fc42961a63b5a82b\mfc80ENU.dll - ok
17:59:27.0394 0568 [ 5AA945234E9D4CCE4F715276B9AA712C ] C:\Windows\System32\imageres.dll
17:59:27.0394 0568 C:\Windows\System32\imageres.dll - ok
17:59:27.0394 0568 [ 79AFFC7FEEA9CD2FEFEA5EF3B631A02C ] C:\Windows\System32\ndiscapCfg.dll
17:59:27.0394 0568 C:\Windows\System32\ndiscapCfg.dll - ok
17:59:27.0409 0568 [ 114429A77D935053E13A9BF98A8B8CA1 ] C:\Windows\System32\mprapi.dll
17:59:27.0409 0568 C:\Windows\System32\mprapi.dll - ok
17:59:27.0409 0568 [ 3D6AF45673C4B31CDECD7F80AF09D443 ] C:\Windows\System32\rascfg.dll
17:59:27.0409 0568 C:\Windows\System32\rascfg.dll - ok
17:59:27.0425 0568 [ 1CF21800E337F4039AAD4C94B4280EE4 ] C:\Windows\System32\mprmsg.dll
17:59:27.0425 0568 C:\Windows\System32\mprmsg.dll - ok
17:59:27.0425 0568 [ 1FCD619D8542A248D4E1FF72FFB0E56B ] C:\Windows\System32\tcpipcfg.dll
17:59:27.0425 0568 C:\Windows\System32\tcpipcfg.dll - ok
17:59:27.0425 0568 [ D2A5AD55E1BC16DE3B6A5D3FB913B2D3 ] C:\PROGRA~1\QUICKH~1\QUICKH~1\macscan.dll
17:59:27.0425 0568 C:\PROGRA~1\QUICKH~1\QUICKH~1\macscan.dll - ok
17:59:27.0440 0568 [ FE0CA9311C897F4FFFA34BDF73A30495 ] C:\PROGRA~1\QUICKH~1\QUICKH~1\macrinfo.dll
17:59:27.0440 0568 C:\PROGRA~1\QUICKH~1\QUICKH~1\macrinfo.dll - ok
17:59:27.0440 0568 [ 8489D894F28C0AFDF92BF639857D6941 ] C:\PROGRA~1\QUICKH~1\QUICKH~1\miscscan.dll
17:59:27.0440 0568 C:\PROGRA~1\QUICKH~1\QUICKH~1\miscscan.dll - ok
17:59:27.0440 0568 [ 38535BBF631BDD297C469486345E74B2 ] C:\PROGRA~1\QUICKH~1\QUICKH~1\heurscan.dll
17:59:27.0440 0568 C:\PROGRA~1\QUICKH~1\QUICKH~1\heurscan.dll - ok
17:59:27.0456 0568 [ E7BF35AB29D2BF66EEC2F6B4E8B873A9 ] C:\PROGRA~1\QUICKH~1\QUICKH~1\pckrscan.dll
17:59:27.0456 0568 C:\PROGRA~1\QUICKH~1\QUICKH~1\pckrscan.dll - ok
17:59:27.0456 0568 [ 60521063AE2C0659930A051E894BCAE5 ] C:\PROGRA~1\QUICKH~1\QUICKH~1\lzesdk.dll
17:59:27.0456 0568 C:\PROGRA~1\QUICKH~1\QUICKH~1\lzesdk.dll - ok
17:59:27.0456 0568 [ 41DB0792547739E4F74F4F6A15C68CC7 ] C:\PROGRA~1\QUICKH~1\QUICKH~1\ARJSDK.DLL
17:59:27.0456 0568 C:\PROGRA~1\QUICKH~1\QUICKH~1\ARJSDK.DLL - ok
17:59:27.0472 0568 [ FF5745EAE0872DA7DE68569DE133BC06 ] C:\PROGRA~1\QUICKH~1\QUICKH~1\rarsdk.dll
17:59:27.0472 0568 C:\PROGRA~1\QUICKH~1\QUICKH~1\rarsdk.dll - ok
17:59:27.0472 0568 [ F5375D664B95E299DB288ACD28713326 ] C:\PROGRA~1\QUICKH~1\QUICKH~1\UNARJ32.DLL
17:59:27.0472 0568 C:\PROGRA~1\QUICKH~1\QUICKH~1\UNARJ32.DLL - ok
17:59:27.0472 0568 [ BA6578ED2007BC3FD0805CD468FFFDF3 ] C:\Program Files\Quick Heal\Quick Heal Total Security\LOGFUN.DLL
17:59:27.0472 0568 C:\Program Files\Quick Heal\Quick Heal Total Security\LOGFUN.DLL - ok
17:59:27.0487 0568 [ 0CEE245011164925B41ABFAFB245A4ED ] C:\Program Files\Quick Heal\Quick Heal Total Security\QUARFUN.DLL
17:59:27.0487 0568 C:\Program Files\Quick Heal\Quick Heal Total Security\QUARFUN.DLL - ok
17:59:27.0487 0568 [ AC74EFC8005D27A83334619784F01003 ] C:\Program Files\Quick Heal\Quick Heal Total Security\SCANEXL.DLL
17:59:27.0487 0568 C:\Program Files\Quick Heal\Quick Heal Total Security\SCANEXL.DLL - ok
17:59:27.0503 0568 [ 47CC468922624F7DD1EE66331FD3D2F9 ] C:\Program Files\Quick Heal\Quick Heal Total Security\CTRLLIB.DLL
17:59:27.0503 0568 C:\Program Files\Quick Heal\Quick Heal Total Security\CTRLLIB.DLL - ok
17:59:27.0503 0568 [ CE3F5FB670CC7DC8AB606CA7CC1C9BB5 ] C:\Program Files\Quick Heal\Quick Heal Total Security\MODSTAT.DLL
17:59:27.0503 0568 C:\Program Files\Quick Heal\Quick Heal Total Security\MODSTAT.DLL - ok
17:59:27.0503 0568 [ 52BBD0E905E886413A9E6FBDDE8612D8 ] C:\Program Files\Quick Heal\Quick Heal Total Security\MFC90U.DLL
17:59:27.0503 0568 C:\Program Files\Quick Heal\Quick Heal Total Security\MFC90U.DLL - ok
17:59:27.0518 0568 [ D81B9487C0F18A46316B50BF2E2A75F0 ] C:\Program Files\Quick Heal\Quick Heal Total Security\webcat.dll
17:59:27.0518 0568 C:\Program Files\Quick Heal\Quick Heal Total Security\webcat.dll - ok
17:59:27.0518 0568 [ 04EF3AB1061D3EF50AAD51FBABAF04CF ] C:\Program Files\Quick Heal\Quick Heal Total Security\asapsdk.dll
17:59:27.0518 0568 C:\Program Files\Quick Heal\Quick Heal Total Security\asapsdk.dll - ok
17:59:27.0518 0568 [ BC052EFAD10ACA1AD69545B629F50D99 ] C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7600.16661_none_a44e1fc257f685f6\comctl32.dll
17:59:27.0518 0568 C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7600.16661_none_a44e1fc257f685f6\comctl32.dll - ok
17:59:27.0534 0568 [ CF3D0B1B2D3902552046D1BA797166B0 ] C:\Program Files\Quick Heal\Quick Heal Total Security\DPOPTS.DLL
17:59:27.0534 0568 C:\Program Files\Quick Heal\Quick Heal Total Security\DPOPTS.DLL - ok
17:59:27.0534 0568 [ 2E57DDF2880A7E52E76F41C7E96D327B ] C:\Windows\System32\wpdbusenum.dll
17:59:27.0534 0568 C:\Windows\System32\wpdbusenum.dll - ok
17:59:27.0534 0568 [ BF1FC3F79B863C914687A737C2F3D681 ] C:\Windows\System32\wdi.dll
17:59:27.0534 0568 C:\Windows\System32\wdi.dll - ok
17:59:27.0550 0568 [ F7073C962C4FB7C415565DDE109DE49F ] C:\Windows\System32\npmproxy.dll
17:59:27.0550 0568 C:\Windows\System32\npmproxy.dll - ok
17:59:27.0550 0568 [ 5DA7D8934F7AB0884A6A8FC02E8B2AA7 ] C:\Windows\System32\PortableDeviceApi.dll
17:59:27.0550 0568 C:\Windows\System32\PortableDeviceApi.dll - ok
17:59:27.0550 0568 [ D891293880F2F00AB7BA959910300EF7 ] C:\Windows\System32\diagperf.dll
17:59:27.0550 0568 C:\Windows\System32\diagperf.dll - ok
17:59:27.0565 0568 [ BF4AC709BE5BF64F331F5D67773A0C82 ] C:\Windows\System32\perftrack.dll
17:59:27.0565 0568 C:\Windows\System32\perftrack.dll - ok
17:59:27.0565 0568 [ E1B22739C933BE33F53DB58C5393ADD3 ] C:\Windows\System32\Apphlpdm.dll
17:59:27.0565 0568 C:\Windows\System32\Apphlpdm.dll - ok
17:59:27.0581 0568 [ 9689A9C7F7C2A1A423CDA2C3B43FFF65 ] C:\Windows\System32\wer.dll
17:59:27.0581 0568 C:\Windows\System32\wer.dll - ok
17:59:27.0581 0568 [ AFA79C343F9D1555F7E5D5FA70BB2A14 ] C:\Windows\System32\PortableDeviceConnectApi.dll
17:59:27.0581 0568 C:\Windows\System32\PortableDeviceConnectApi.dll - ok
17:59:27.0581 0568 [ 9719E3D834F5C8C43F56A93DFA497023 ] C:\Windows\System32\pnpts.dll
17:59:27.0581 0568 C:\Windows\System32\pnpts.dll - ok
17:59:27.0596 0568 [ 65AF044B5570D355124DCD1E099AA98F ] C:\Windows\System32\wdiasqmmodule.dll
17:59:27.0596 0568 C:\Windows\System32\wdiasqmmodule.dll - ok
17:59:27.0596 0568 [ 58A0CDABEA255616827B1C22C9994466 ] C:\Windows\System32\NapiNSP.dll
17:59:27.0596 0568 C:\Windows\System32\NapiNSP.dll - ok
17:59:27.0596 0568 [ 2E2072EB48238FCA8FBB7A9F5FABAC45 ] C:\Windows\System32\winrnr.dll
17:59:27.0596 0568 C:\Windows\System32\winrnr.dll - ok
17:59:27.0612 0568 [ 613C8CE10A5FDE582BA5FA64C4D56AAA ] C:\Windows\System32\pnrpnsp.dll
17:59:27.0612 0568 C:\Windows\System32\pnrpnsp.dll - ok
17:59:27.0612 0568 [ E3E2E9A96E6BA95D0CF0F026C7B18654 ] C:\Windows\System32\wshbth.dll
17:59:27.0612 0568 C:\Windows\System32\wshbth.dll - ok
17:59:27.0612 0568 [ 4585224B8FC6EBD0DE94F388ECB7FB91 ] C:\Program Files\Quick Heal\Quick Heal Total Security\WSRPT.DLL
17:59:27.0612 0568 C:\Program Files\Quick Heal\Quick Heal Total Security\WSRPT.DLL - ok
17:59:27.0628 0568 [ CDB511309C9F31DED40C8942A74B1913 ] C:\Program Files\Quick Heal\Quick Heal Total Security\SCANRES.DLL
17:59:27.0628 0568 C:\Program Files\Quick Heal\Quick Heal Total Security\SCANRES.DLL - ok
17:59:27.0628 0568 [ 9A4D13244585A5F83F3074C72DF09132 ] C:\Program Files\Quick Heal\Quick Heal Total Security\WSIC.DLL
17:59:27.0628 0568 C:\Program Files\Quick Heal\Quick Heal Total Security\WSIC.DLL - ok
17:59:27.0628 0568 [ E63C516156F006DB460ADE76E0264B39 ] C:\Program Files\Quick Heal\Quick Heal Total Security\WSIU.DLL
17:59:27.0628 0568 C:\Program Files\Quick Heal\Quick Heal Total Security\WSIU.DLL - ok
17:59:27.0643 0568 [ 28DA8FF427EBA6AD7DAC798CAE10E4F8 ] C:\Program Files\Quick Heal\Quick Heal Total Security\wspoly.dll
17:59:27.0643 0568 C:\Program Files\Quick Heal\Quick Heal Total Security\wspoly.dll - ok
17:59:27.0643 0568 [ 3989BB6998C32753FDD5493879C1835A ] C:\Windows\SysWOW64\ncrypt.dll
17:59:27.0643 0568 C:\Windows\SysWOW64\ncrypt.dll - ok
17:59:27.0659 0568 [ CE71B9119A258EDD0A05B37D7B0F92E3 ] C:\Windows\SysWOW64\bcrypt.dll
17:59:27.0659 0568 C:\Windows\SysWOW64\bcrypt.dll - ok
17:59:27.0659 0568 [ E8449FE262D7406BCB2AC2A45C53EC5F ] C:\Windows\SysWOW64\bcryptprimitives.dll
17:59:27.0659 0568 C:\Windows\SysWOW64\bcryptprimitives.dll - ok
17:59:27.0659 0568 [ 1097F3035BAF46CED8B332B3564C5108 ] C:\Windows\SysWOW64\gpapi.dll
17:59:27.0659 0568 C:\Windows\SysWOW64\gpapi.dll - ok
17:59:27.0674 0568 [ 506C4E1324ABE11CEC172569F5DDAB06 ] C:\Windows\SysWOW64\cryptnet.dll
17:59:27.0674 0568 C:\Windows\SysWOW64\cryptnet.dll - ok
17:59:27.0674 0568 [ BFA70A99AD1434263F2DFBBA103BDEF8 ] C:\Windows\SysWOW64\Wldap32.dll
17:59:27.0674 0568 C:\Windows\SysWOW64\Wldap32.dll - ok
17:59:27.0674 0568 [ DAAE8A9B8C0ACC7F858454132553C30D ] C:\Windows\SysWOW64\ws2_32.dll
17:59:27.0674 0568 C:\Windows\SysWOW64\ws2_32.dll - ok
17:59:27.0690 0568 [ 6377051C63D5552A311935C67E9FDFDC ] C:\Windows\SysWOW64\nsi.dll
17:59:27.0690 0568 C:\Windows\SysWOW64\nsi.dll - ok
17:59:27.0690 0568 [ BF591B5C2CC38314518467E883AE37C5 ] C:\Windows\SysWOW64\credssp.dll
17:59:27.0690 0568 C:\Windows\SysWOW64\credssp.dll - ok
17:59:27.0690 0568 [ 11A41F17527ED75D6B758FDD7F4FD00D ] C:\Windows\SysWOW64\mswsock.dll
17:59:27.0690 0568 C:\Windows\SysWOW64\mswsock.dll - ok
17:59:27.0706 0568 [ 6095266CAAF5E75F394CFD4844CC4C25 ] C:\Windows\SysWOW64\IPHLPAPI.DLL
17:59:27.0706 0568 C:\Windows\SysWOW64\IPHLPAPI.DLL - ok
17:59:27.0706 0568 [ 73E8667A19FEEDD856DF2695E9E511D4 ] C:\Windows\SysWOW64\wship6.dll
17:59:27.0706 0568 C:\Windows\SysWOW64\wship6.dll - ok
17:59:27.0706 0568 [ EE5C8E27C37B79CB54A2FCEEED2DC262 ] C:\Windows\SysWOW64\WSHTCPIP.DLL
17:59:27.0706 0568 C:\Windows\SysWOW64\WSHTCPIP.DLL - ok
17:59:27.0721 0568 [ 9A85ABCE0FDD1AF8E79E731EB0B679F3 ] C:\Windows\SysWOW64\dhcpcsvc.dll
17:59:27.0721 0568 C:\Windows\SysWOW64\dhcpcsvc.dll - ok
17:59:27.0721 0568 [ 29CA5974FAB0E8AE4AA7814FE05CF832 ] C:\Windows\SysWOW64\dhcpcsvc6.dll
17:59:27.0721 0568 C:\Windows\SysWOW64\dhcpcsvc6.dll - ok
17:59:27.0721 0568 [ CFF35B879D1618D42C86644C717BA947 ] C:\Windows\SysWOW64\winnsi.dll
17:59:27.0721 0568 C:\Windows\SysWOW64\winnsi.dll - ok
17:59:27.0737 0568 [ 3EEFB971D61EF9638FD21F14C703CA11 ] C:\Windows\System32\taskhost.exe
17:59:27.0737 0568 C:\Windows\System32\taskhost.exe - ok
17:59:27.0737 0568 [ 62390F4ACE9E2B63E3CA26B7F7497897 ] C:\Windows\SysWOW64\dnsapi.dll
17:59:27.0737 0568 C:\Windows\SysWOW64\dnsapi.dll - ok
17:59:27.0752 0568 [ C69DBFA61FE3DEA653A9B83C3A2B052B ] C:\Program Files (x86)\Bonjour\mdnsNSP.dll
17:59:27.0752 0568 C:\Program Files (x86)\Bonjour\mdnsNSP.dll - ok
17:59:27.0752 0568 [ ED6EE83D61EBC683C2CD8E899EA6FEBE ] C:\Windows\SysWOW64\rasadhlp.dll
17:59:27.0752 0568 C:\Windows\SysWOW64\rasadhlp.dll - ok
17:59:27.0752 0568 [ 158117F3CF278F01C6F24E89E2141E81 ] C:\Windows\SysWOW64\FWPUCLNT.DLL
17:59:27.0752 0568 C:\Windows\SysWOW64\FWPUCLNT.DLL - ok
17:59:27.0768 0568 [ E629F1A051C82795DDFFD3E8D4855811 ] C:\Windows\System32\dimsjob.dll
17:59:27.0768 0568 C:\Windows\System32\dimsjob.dll - ok
17:59:27.0768 0568 [ 35CB97CBC3EDC463418ED4997AAB29B6 ] C:\Windows\System32\pautoenr.dll
17:59:27.0768 0568 C:\Windows\System32\pautoenr.dll - ok
17:59:27.0768 0568 [ AAA6D0DF7356BBA706BD67385A103AAB ] C:\Windows\System32\certcli.dll
17:59:27.0768 0568 C:\Windows\System32\certcli.dll - ok
17:59:27.0784 0568 [ 522BD073F617060AFCB9CC5707778DB1 ] C:\Windows\System32\CertEnroll.dll
17:59:27.0784 0568 C:\Windows\System32\CertEnroll.dll - ok
17:59:27.0784 0568 [ 46863C4CC5B68EB09EA2D5EEF0F1193A ] C:\Windows\System32\radardt.dll
17:59:27.0784 0568 C:\Windows\System32\radardt.dll - ok
17:59:27.0784 0568 [ A8EDB86FC2A4D6D1285E4C70384AC35A ] C:\Windows\System32\dllhost.exe
17:59:27.0784 0568 C:\Windows\System32\dllhost.exe - ok
17:59:27.0799 0568 [ A0A2C1D812C231C9BFE119FDC68E341B ] C:\Windows\System32\IDStore.dll
17:59:27.0799 0568 C:\Windows\System32\IDStore.dll - ok
17:59:27.0799 0568 [ 23566F9723771108D2E6CD768AC27407 ] C:\Windows\System32\AtBroker.exe
17:59:27.0799 0568 C:\Windows\System32\AtBroker.exe - ok
17:59:27.0799 0568 [ 6F8F1376A13114CC10C0E69274F5A4DE ] C:\Windows\System32\userinit.exe
17:59:27.0799 0568 C:\Windows\System32\userinit.exe - ok
17:59:27.0815 0568 [ 94EEAC26F57811BD1AEFC164412F7FCE ] C:\Windows\System32\PlaySndSrv.dll
17:59:27.0815 0568 C:\Windows\System32\PlaySndSrv.dll - ok
17:59:27.0815 0568 [ 60CAE1FA4888ED41B41AEE91C774E4A2 ] C:\Windows\System32\taskeng.exe
17:59:27.0815 0568 C:\Windows\System32\taskeng.exe - ok
17:59:27.0815 0568 [ F162D5F5E845B9DC352DD1BAD8CEF1BC ] C:\Windows\System32\dwm.exe
17:59:27.0815 0568 C:\Windows\System32\dwm.exe - ok
17:59:27.0830 0568 [ 8CFACC72081C21519676BF4AAA1A88A9 ] C:\Windows\System32\localspl.dll
17:59:27.0830 0568 C:\Windows\System32\localspl.dll - ok
17:59:27.0830 0568 [ 9D8AB964CE511AF81207DF0E1205184C ] C:\Windows\System32\dwmcore.dll
17:59:27.0830 0568 C:\Windows\System32\dwmcore.dll - ok
17:59:27.0830 0568 [ EF184066A851E7838D5BF8C8FAE66CC4 ] C:\Windows\System32\dwmredir.dll
17:59:27.0830 0568 C:\Windows\System32\dwmredir.dll - ok
17:59:27.0846 0568 [ 3285481F5C12305CA104A6C493CA5A0B ] C:\Windows\System32\spoolss.dll
17:59:27.0846 0568 C:\Windows\System32\spoolss.dll - ok
17:59:27.0846 0568 [ 1F1CA9E99DD5BF918BE0BF30B5A42FDA ] C:\Windows\System32\MsCtfMonitor.dll
17:59:27.0846 0568 C:\Windows\System32\MsCtfMonitor.dll - ok
17:59:27.0846 0568 [ 58A0C212ED2ABE462B3A9626F5B96261 ] C:\Windows\System32\d3d10_1.dll
17:59:27.0846 0568 C:\Windows\System32\d3d10_1.dll - ok
17:59:27.0862 0568 [ 20BEB8C403C6E28C9B13644787F5177D ] C:\Windows\System32\FXSMON.dll
17:59:27.0862 0568 C:\Windows\System32\FXSMON.dll - ok
17:59:27.0862 0568 [ 33CC7FFA41F6157592E1578BD253F30E ] C:\Windows\System32\PrintIsolationProxy.dll
17:59:27.0862 0568 C:\Windows\System32\PrintIsolationProxy.dll - ok
17:59:27.0877 0568 [ AFBBC34687FA48A4928B99AF097C1EC0 ] C:\Windows\System32\d3d10_1core.dll
17:59:27.0877 0568 C:\Windows\System32\d3d10_1core.dll - ok
17:59:27.0877 0568 [ F09A9A1AD21FE618C4C8B0A0D830C886 ] C:\Windows\System32\msutb.dll
17:59:27.0877 0568 C:\Windows\System32\msutb.dll - ok
17:59:27.0877 0568 [ 32A3C8600AF124CBAAD845F13CFAE3CB ] C:\Windows\System32\tcpmon.dll
17:59:27.0877 0568 C:\Windows\System32\tcpmon.dll - ok
17:59:27.0893 0568 [ D95DB5C915C001F78709C17285109BDC ] C:\Windows\System32\dxgi.dll
17:59:27.0893 0568 C:\Windows\System32\dxgi.dll - ok
17:59:27.0893 0568 [ 93518C6EDE0B61BCBD02BDB02BD05FEE ] C:\Windows\System32\snmpapi.dll
17:59:27.0893 0568 C:\Windows\System32\snmpapi.dll - ok
17:59:27.0893 0568 [ AD7C70077D4C81558E909D34EF6B995E ] C:\Windows\System32\wsnmp32.dll
17:59:27.0893 0568 C:\Windows\System32\wsnmp32.dll - ok
17:59:27.0908 0568 [ DF72A9936D0C3F517083119648814B09 ] C:\Windows\System32\usbmon.dll
17:59:27.0908 0568 C:\Windows\System32\usbmon.dll - ok
17:59:27.0908 0568 [ 0862495E0C825893DB75EF44FAEA8E93 ] C:\Windows\explorer.exe
17:59:27.0908 0568 C:\Windows\explorer.exe - ok
17:59:27.0908 0568 [ 7F37322A489E285CFBCC02F6A53B3F1B ] C:\Windows\System32\HotStartUserAgent.dll
17:59:27.0908 0568 C:\Windows\System32\HotStartUserAgent.dll - ok
17:59:27.0924 0568 [ A1D7E3ADCDB07DDB6F423862DCB1A52B ] C:\Windows\System32\WSDMon.dll
17:59:27.0924 0568 C:\Windows\System32\WSDMon.dll - ok
17:59:27.0924 0568 [ 05FE4A30177E858B51F5E1E970FE9925 ] C:\Windows\System32\WSDApi.dll
17:59:27.0924 0568 C:\Windows\System32\WSDApi.dll - ok
17:59:27.0924 0568 [ A3EA403D2B74C5F71B7E8B3DAE92DE1E ] C:\Windows\System32\webservices.dll
17:59:27.0924 0568 C:\Windows\System32\webservices.dll - ok
17:59:27.0940 0568 [ 1C27E145EC99F20BC1B13FD98165A83F ] C:\Windows\System32\ExplorerFrame.dll
17:59:27.0940 0568 C:\Windows\System32\ExplorerFrame.dll - ok
17:59:27.0940 0568 [ D8F0E941B1E35DEEE3EDF6DF45517607 ] C:\Windows\System32\igd10umd64.dll
17:59:27.0940 0568 C:\Windows\System32\igd10umd64.dll - ok
17:59:27.0940 0568 [ B5055B51BAA0FD0A736A88653DA3C1C0 ] C:\Windows\System32\fundisc.dll
17:59:27.0940 0568 C:\Windows\System32\fundisc.dll - ok
17:59:27.0955 0568 [ 4581716B4BF76ACFD8E167EB0B26D82A ] C:\Windows\System32\fdPnp.dll
17:59:27.0955 0568 C:\Windows\System32\fdPnp.dll - ok
17:59:27.0955 0568 [ 49E5753D923F1AC63B22D3DCB0B47E00 ] C:\Windows\System32\uDWM.dll
17:59:27.0955 0568 C:\Windows\System32\uDWM.dll - ok
17:59:27.0955 0568 [ 7EDB2BF840ECB14D6E6B11C035708719 ] C:\Windows\System32\spool\prtprocs\x64\winprint.dll
17:59:27.0955 0568 C:\Windows\System32\spool\prtprocs\x64\winprint.dll - ok
17:59:27.0971 0568 [ 2332BACC2AB09119A14637DE0CB30147 ] C:\Windows\System32\win32spl.dll
17:59:27.0971 0568 C:\Windows\System32\win32spl.dll - ok
17:59:27.0971 0568 [ 17EAB1AEA937EFFCD107EFBA94FEDB34 ] C:\Windows\System32\inetpp.dll
17:59:27.0971 0568 C:\Windows\System32\inetpp.dll - ok
17:59:27.0971 0568 [ 805A52C5AE26C28E88FDD9BCCFE6F312 ] C:\Windows\System32\TSChannel.dll
17:59:27.0971 0568 C:\Windows\System32\TSChannel.dll - ok
17:59:27.0986 0568 [ BFEBE1E4B301F44CEA7C1B4021BD0264 ] C:\Windows\System32\cscapi.dll
17:59:27.0986 0568 C:\Windows\System32\cscapi.dll - ok
17:59:27.0986 0568 [ F02A533F517EB38333CB12A9E8963773 ] C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
17:59:27.0986 0568 C:\Program Files (x86)\Google\Update\GoogleUpdate.exe - ok

****************

TDSSKiller Log part 3 :-

***************************************

17:59:28.0002 0568 [ 024352FEEC9042260BB4CFB4D79A206B ] C:\Windows\System32\EhStorShell.dll
17:59:28.0002 0568 C:\Windows\System32\EhStorShell.dll - ok
17:59:28.0002 0568 [ 5F917AEEEA363B8A5DC8624795CB1D60 ] C:\Windows\System32\ntshrui.dll
17:59:28.0002 0568 C:\Windows\System32\ntshrui.dll - ok
17:59:28.0002 0568 [ 1D63F4366288B8A7595397E27010FD44 ] C:\Windows\System32\IconCodecService.dll
17:59:28.0002 0568 C:\Windows\System32\IconCodecService.dll - ok
17:59:28.0018 0568 [ D065BE66822847B7F127D1F90158376E ] C:\Windows\System32\appinfo.dll
17:59:28.0018 0568 C:\Windows\System32\appinfo.dll - ok
17:59:28.0018 0568 [ 9FF47CD8A3787C8FD3CDFE40441C722E ] C:\Program Files (x86)\Google\Update\1.3.21.123\goopdate.dll
17:59:28.0018 0568 C:\Program Files (x86)\Google\Update\1.3.21.123\goopdate.dll - ok
17:59:28.0018 0568 [ 5DE691884C240227B733CC18BBFCA3D8 ] C:\Windows\SysWOW64\netapi32.dll
17:59:28.0018 0568 C:\Windows\SysWOW64\netapi32.dll - ok
17:59:28.0033 0568 [ C6BB27D9A8AC13D4A44486F528B5C884 ] C:\Windows\SysWOW64\netutils.dll
17:59:28.0033 0568 C:\Windows\SysWOW64\netutils.dll - ok
17:59:28.0033 0568 [ 89D840773C9C4358A5031DCC860449EC ] C:\Windows\SysWOW64\srvcli.dll
17:59:28.0033 0568 C:\Windows\SysWOW64\srvcli.dll - ok
17:59:28.0033 0568 [ 7AD12703039056D2A0815F85960E1FA1 ] C:\Windows\SysWOW64\wkscli.dll
17:59:28.0033 0568 C:\Windows\SysWOW64\wkscli.dll - ok
17:59:28.0049 0568 [ 4B8DD8541C0E26602005DD0137333615 ] C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_420fe3fa2b8113bd\comctl32.dll
17:59:28.0049 0568 C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_420fe3fa2b8113bd\comctl32.dll - ok
17:59:28.0049 0568 [ 97CCB4D737B426B200E5EF90C877DF32 ] C:\Windows\SysWOW64\imagehlp.dll
17:59:28.0049 0568 C:\Windows\SysWOW64\imagehlp.dll - ok
17:59:28.0064 0568 [ F1317678AC2FBA9F640279290B2E2988 ] C:\Windows\SysWOW64\msi.dll
17:59:28.0064 0568 C:\Windows\SysWOW64\msi.dll - ok
17:59:28.0064 0568 [ 6AB6D4DF10EC784CF4A66CBFAF417A11 ] C:\Windows\System32\runonce.exe
17:59:28.0064 0568 C:\Windows\System32\runonce.exe - ok
17:59:28.0064 0568 [ 169F916EFEAA44487E65305B7D2D754B ] C:\Windows\SysWOW64\runonce.exe
17:59:28.0064 0568 C:\Windows\SysWOW64\runonce.exe - ok
17:59:28.0080 0568 [ 5553611E2F9EA6F613079177F1233068 ] C:\Windows\SysWOW64\wininet.dll
17:59:28.0080 0568 C:\Windows\SysWOW64\wininet.dll - ok
17:59:28.0080 0568 [ EB8A00E8E9931A7EC04F920B09D880D8 ] C:\Windows\SysWOW64\iertutil.dll
17:59:28.0080 0568 C:\Windows\SysWOW64\iertutil.dll - ok
17:59:28.0080 0568 [ 43964FA89CCF97BA6BE34D69455AC65F ] C:\Windows\SysWOW64\uxtheme.dll
17:59:28.0080 0568 C:\Windows\SysWOW64\uxtheme.dll - ok
17:59:28.0096 0568 [ 9FAC0F6D5F3D922DB294E30CD3F62369 ] C:\Windows\SysWOW64\urlmon.dll
17:59:28.0096 0568 C:\Windows\SysWOW64\urlmon.dll - ok
17:59:28.0096 0568 [ 26EAEE08CAF82AA7F03C5020F51DA541 ] C:\Windows\SysWOW64\propsys.dll
17:59:28.0096 0568 C:\Windows\SysWOW64\propsys.dll - ok
17:59:28.0096 0568 [ ADD9D33D685DFADDFAD5AFB42CF31A70 ] C:\Windows\SysWOW64\cscapi.dll
17:59:28.0096 0568 C:\Windows\SysWOW64\cscapi.dll - ok
17:59:28.0111 0568 [ 3FD15B4611D9BDA3F8013548C0ECAECA ] C:\Windows\SysWOW64\ntmarta.dll
17:59:28.0111 0568 C:\Windows\SysWOW64\ntmarta.dll - ok
17:59:28.0111 0568 [ 79C7CFAEA6879A8C1A1E8B5FFE8983AA ] C:\Windows\SysWOW64\dbghelp.dll
17:59:28.0111 0568 C:\Windows\SysWOW64\dbghelp.dll - ok
17:59:28.0111 0568 [ C02E3CE20E7776C922B5C8938350B5F1 ] C:\Windows\SysWOW64\apphelp.dll
17:59:28.0111 0568 C:\Windows\SysWOW64\apphelp.dll - ok
17:59:28.0127 0568 [ AE5A69F44C1F97EDC83237FC0B29B6FB ] C:\Program Files (x86)\Google\Update\1.3.21.123\GoogleCrashHandler.exe
17:59:28.0127 0568 C:\Program Files (x86)\Google\Update\1.3.21.123\GoogleCrashHandler.exe - ok
17:59:28.0127 0568 [ 30DB64D316F502558DB2380F7343C9FD ] C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll
17:59:28.0127 0568 C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll - ok
17:59:28.0142 0568 [ 41938F2C1642459CBBA691B5DBD6395A ] C:\Program Files (x86)\Google\Update\1.3.21.123\GoogleCrashHandler64.exe
17:59:28.0142 0568 C:\Program Files (x86)\Google\Update\1.3.21.123\GoogleCrashHandler64.exe - ok
17:59:28.0142 0568 [ 0089563F324FA784DA849D6A636141E0 ] C:\Windows\SysWOW64\mstask.dll
17:59:28.0142 0568 C:\Windows\SysWOW64\mstask.dll - ok
17:59:28.0142 0568 [ A74316B5C28D94AF0825267D8715549F ] C:\Windows\System32\dbghelp.dll
17:59:28.0142 0568 C:\Windows\System32\dbghelp.dll - ok
17:59:28.0158 0568 [ 207204AF80505AF51271FE164B56F662 ] C:\Program Files (x86)\Microsoft Office\Office12\GrooveUtil.dll
17:59:28.0158 0568 C:\Program Files (x86)\Microsoft Office\Office12\GrooveUtil.dll - ok
17:59:28.0158 0568 [ 30EFEBDC960A482E3E188B9960B286E2 ] C:\Program Files (x86)\Microsoft Office\Office12\GrooveNew.dll
17:59:28.0158 0568 C:\Program Files (x86)\Microsoft Office\Office12\GrooveNew.dll - ok
17:59:28.0158 0568 [ D5E459BED3DB9CF7FC6CC1455F177D2D ] C:\Windows\winsxs\x86_microsoft.vc80.atl_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d1cb102c435421de\ATL80.dll
17:59:28.0158 0568 C:\Windows\winsxs\x86_microsoft.vc80.atl_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d1cb102c435421de\ATL80.dll - ok
17:59:28.0174 0568 [ 18AB2E5A40064ED5F7791AC5946A90F3 ] C:\Windows\SysWOW64\msimg32.dll
17:59:28.0174 0568 C:\Windows\SysWOW64\msimg32.dll - ok
17:59:28.0174 0568 [ D8C2B95BC2353E1F18850D6B8F5DBA13 ] C:\Program Files (x86)\Microsoft Office\Office12\GrooveSystemServices.dll
17:59:28.0174 0568 C:\Program Files (x86)\Microsoft Office\Office12\GrooveSystemServices.dll - ok
17:59:28.0174 0568 [ 533AECD1B5356870AE2D905B4D3B42B7 ] C:\Program Files (x86)\Microsoft Office\Office12\GrooveMisc.dll
17:59:28.0174 0568 C:\Program Files (x86)\Microsoft Office\Office12\GrooveMisc.dll - ok
17:59:28.0189 0568 [ 00D1F89836927C0F2E37321E6B441FCE ] C:\Windows\SysWOW64\msxml3.dll
17:59:28.0189 0568 C:\Windows\SysWOW64\msxml3.dll - ok
17:59:28.0189 0568 [ 6CC10D9FD128069DBFE476222F097616 ] C:\Windows\SysWOW64\secur32.dll
17:59:28.0189 0568 C:\Windows\SysWOW64\secur32.dll - ok
17:59:28.0189 0568 [ 76AD90A468B3F990305F22D7FC07A6B5 ] C:\Program Files (x86)\Dell DataSafe Local Backup\Components\scheduler\Launcher.exe
17:59:28.0189 0568 C:\Program Files (x86)\Dell DataSafe Local Backup\Components\scheduler\Launcher.exe - ok
17:59:28.0205 0568 [ 1351931877DE0C46C4D42DAA26F7B5B1 ] C:\Windows\AppPatch\AcLayers.dll
17:59:28.0205 0568 C:\Windows\AppPatch\AcLayers.dll - ok
17:59:28.0205 0568 [ B9A8CBCFCD3EC9D2EA4740AF347BF108 ] C:\Windows\SysWOW64\mpr.dll
17:59:28.0205 0568 C:\Windows\SysWOW64\mpr.dll - ok
17:59:28.0220 0568 [ E69BF74E3122A0EC5E64ACE140D3A8CA ] C:\Program Files (x86)\Dell DataSafe Local Backup\Components\scheduler\STService.exe
17:59:28.0220 0568 C:\Program Files (x86)\Dell DataSafe Local Backup\Components\scheduler\STService.exe - ok
17:59:28.0220 0568 [ 11CDF138552BFEC115B60ED6DC3ACEB6 ] C:\Windows\SysWOW64\devrtl.dll
17:59:28.0220 0568 C:\Windows\SysWOW64\devrtl.dll - ok
17:59:28.0220 0568 [ 40CAEEE0EAF1B8569F7C8DF6420F2CB9 ] C:\Windows\SysWOW64\sfc.dll
17:59:28.0220 0568 C:\Windows\SysWOW64\sfc.dll - ok
17:59:28.0236 0568 [ 84799328D87B3091A3BDD251E1AD31F9 ] C:\Windows\SysWOW64\sfc_os.dll
17:59:28.0236 0568 C:\Windows\SysWOW64\sfc_os.dll - ok
17:59:28.0236 0568 [ 8F4814B59025FB67B684BD0CBAA53100 ] C:\Program Files (x86)\Dell DataSafe Local Backup\STLog.dll
17:59:28.0236 0568 C:\Program Files (x86)\Dell DataSafe Local Backup\STLog.dll - ok
17:59:28.0236 0568 [ A717B97F574F3045E7352658F3A6C9BB ] C:\Program Files (x86)\Dell DataSafe Local Backup\CSTError.dll
17:59:28.0236 0568 C:\Program Files (x86)\Dell DataSafe Local Backup\CSTError.dll - ok
17:59:28.0252 0568 [ 9AFF6D5B41B330E85EC856A48CBEDE0C ] C:\Program Files (x86)\Dell DataSafe Local Backup\STString.dll
17:59:28.0252 0568 C:\Program Files (x86)\Dell DataSafe Local Backup\STString.dll - ok
17:59:28.0252 0568 [ 47D5756E1FA3D133FD59E3800F87CE7D ] C:\Program Files (x86)\Dell DataSafe Local Backup\ToasterLauncher.exe
17:59:28.0252 0568 C:\Program Files (x86)\Dell DataSafe Local Backup\ToasterLauncher.exe - ok
17:59:28.0252 0568 [ 72AB6633E9B39EC7FEBEDF083A9061E5 ] C:\Windows\System32\mscoree.dll
17:59:28.0252 0568 C:\Windows\System32\mscoree.dll - ok
17:59:28.0267 0568 [ F58143CB0ED2FB93747C588DC42D721B ] C:\Program Files (x86)\Dell DataSafe Local Backup\STXml.dll
17:59:28.0267 0568 C:\Program Files (x86)\Dell DataSafe Local Backup\STXml.dll - ok
17:59:28.0267 0568 [ BFEE026D95642EC1833E566A673F3EE0 ] C:\Program Files (x86)\Dell DataSafe Local Backup\libxml2.dll
17:59:28.0267 0568 C:\Program Files (x86)\Dell DataSafe Local Backup\libxml2.dll - ok
17:59:28.0283 0568 [ 0D03AFDF57863F64D0953CCF0AFD6040 ] C:\Program Files (x86)\Dell DataSafe Local Backup\STStringArray.dll
17:59:28.0283 0568 C:\Program Files (x86)\Dell DataSafe Local Backup\STStringArray.dll - ok
17:59:28.0283 0568 [ AA794B099F776B37ACCDEAD00E0FBFC9 ] C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscoreei.dll
17:59:28.0283 0568 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscoreei.dll - ok
17:59:28.0283 0568 [ ECDBA6B31F68EA094BB28746219042B2 ] C:\Program Files (x86)\Dell DataSafe Local Backup\STFiles.dll
17:59:28.0283 0568 C:\Program Files (x86)\Dell DataSafe Local Backup\STFiles.dll - ok
17:59:28.0298 0568 [ 067F9BBD6F74DD7DBA078B37205BAB2D ] C:\Program Files (x86)\Dell DataSafe Local Backup\zlib1.dll
17:59:28.0298 0568 C:\Program Files (x86)\Dell DataSafe Local Backup\zlib1.dll - ok
17:59:28.0298 0568 [ 3CA4ADDA47D97DDF412893F1D03EA6F6 ] C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorwks.dll
17:59:28.0298 0568 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorwks.dll - ok
17:59:28.0298 0568 [ 1D35697CD3D9F87D9E343773A8519FC0 ] C:\Program Files (x86)\Dell DataSafe Local Backup\STPE.dll
17:59:28.0298 0568 C:\Program Files (x86)\Dell DataSafe Local Backup\STPE.dll - ok
17:59:28.0314 0568 [ F2493C19AFADA330D75379C188D96EB7 ] C:\Program Files (x86)\Dell DataSafe Local Backup\STRegistry.dll
17:59:28.0314 0568 C:\Program Files (x86)\Dell DataSafe Local Backup\STRegistry.dll - ok
17:59:28.0314 0568 [ 4B086B357E59EAE4444A356B5C0228BF ] C:\Program Files (x86)\Dell DataSafe Local Backup\STNLS.dll
17:59:28.0314 0568 C:\Program Files (x86)\Dell DataSafe Local Backup\STNLS.dll - ok
17:59:28.0314 0568 [ 4A159D4C1F18111C41F85915DF724024 ] C:\Program Files (x86)\Dell DataSafe Local Backup\STSystems.dll
17:59:28.0314 0568 C:\Program Files (x86)\Dell DataSafe Local Backup\STSystems.dll - ok
17:59:28.0330 0568 [ A223CF703E28CBD7E9E7982141FA403C ] C:\Windows\SysWOW64\comdlg32.dll
17:59:28.0330 0568 C:\Windows\SysWOW64\comdlg32.dll - ok
17:59:28.0330 0568 [ 936F728E04ACCF3F38801CFFCF1E3F40 ] C:\Windows\SysWOW64\oledlg.dll
17:59:28.0330 0568 C:\Windows\SysWOW64\oledlg.dll - ok
17:59:28.0330 0568 [ F694F7A205D68D3C5AEECA0D603F0860 ] C:\Program Files (x86)\Dell DataSafe Local Backup\Components\scheduler\STSCheduler.dll
17:59:28.0330 0568 C:\Program Files (x86)\Dell DataSafe Local Backup\Components\scheduler\STSCheduler.dll - ok
17:59:28.0345 0568 [ 39C5F32747B3414D1BB216FDB1DEFC58 ] C:\Windows\SysWOW64\dwmapi.dll
17:59:28.0345 0568 C:\Windows\SysWOW64\dwmapi.dll - ok
17:59:28.0345 0568 [ 6A894809E68066E9D285C31D220D0175 ] C:\Program Files (x86)\Dell DataSafe Local Backup\STDisks.dll
17:59:28.0345 0568 C:\Program Files (x86)\Dell DataSafe Local Backup\STDisks.dll - ok
17:59:28.0361 0568 [ 37F0E9925B1114F1F7D01AFAE91D43F3 ] C:\Program Files (x86)\Dell DataSafe Local Backup\PSTVdsDisk.dll
17:59:28.0361 0568 C:\Program Files (x86)\Dell DataSafe Local Backup\PSTVdsDisk.dll - ok
17:59:28.0361 0568 [ D3C8C6B6DB123B0E51ECFFF0F6DF145E ] C:\Windows\assembly\NativeImages_v2.0.50727_64\mscorlib\9a7b48ad2929bc93362ec42cd4573f87\mscorlib.ni.dll
17:59:28.0361 0568 C:\Windows\assembly\NativeImages_v2.0.50727_64\mscorlib\9a7b48ad2929bc93362ec42cd4573f87\mscorlib.ni.dll - ok
17:59:28.0361 0568 [ 0A94DE4AA9864D312E60D747FD249ABE ] C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsec.dll
17:59:28.0361 0568 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsec.dll - ok
17:59:28.0376 0568 [ 4FB1F2F9B02FA1138CACD2DEA3F5AEC8 ] C:\Windows\System32\riched20.dll
17:59:28.0376 0568 C:\Windows\System32\riched20.dll - ok
17:59:28.0376 0568 [ AC0C9CEA1218DAB1994AF8B28E680BD9 ] C:\Windows\System32\wlaninst.dll
17:59:28.0376 0568 C:\Windows\System32\wlaninst.dll - ok
17:59:28.0376 0568 [ 5A406C9C8E0880D3EABADC5DFD1ACDAE ] C:\Windows\System32\wwaninst.dll
17:59:28.0376 0568 C:\Windows\System32\wwaninst.dll - ok
17:59:28.0392 0568 [ B837D1528CE2E3CB79F09496BC08DDC6 ] C:\Windows\System32\SensApi.dll
17:59:28.0392 0568 C:\Windows\System32\SensApi.dll - ok
17:59:28.0392 0568 [ 3A2F5C8666F08B31C61DBAE9C297551C ] C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorjit.dll
17:59:28.0392 0568 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorjit.dll - ok
17:59:28.0392 0568 [ C8FE465986FE1E242C92B6B76CDFEC6F ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System\6ec488b702c100ad5d3e712db0e88554\System.ni.dll
17:59:28.0392 0568 C:\Windows\assembly\NativeImages_v2.0.50727_64\System\6ec488b702c100ad5d3e712db0e88554\System.ni.dll - ok
17:59:28.0408 0568 [ CDAD3376DFF3D9AC7FDCBE2B94B0D3C8 ] C:\Windows\System32\shfolder.dll
17:59:28.0408 0568 C:\Windows\System32\shfolder.dll - ok
17:59:28.0408 0568 [ 4ECE12D296ED94CA2C7DD6C383A5AB66 ] C:\Windows\System32\ieframe.dll
17:59:28.0408 0568 C:\Windows\System32\ieframe.dll - ok
17:59:28.0423 0568 [ F4C6871B98900CA43D3D01442FF3DEB3 ] C:\Program Files (x86)\Dell DataSafe Local Backup\hstart.exe
17:59:28.0423 0568 C:\Program Files (x86)\Dell DataSafe Local Backup\hstart.exe - ok
17:59:28.0423 0568 [ 8AE6DD9A6D246004DA047F704F0CC487 ] C:\Windows\SysWOW64\cmd.exe
17:59:28.0423 0568 C:\Windows\SysWOW64\cmd.exe - ok
17:59:28.0423 0568 [ F0D1646162FB07476CCCF62EDB034B8B ] C:\Windows\System32\conhost.exe
17:59:28.0423 0568 C:\Windows\System32\conhost.exe - ok
17:59:28.0439 0568 [ 4B78B431F225FD8624C5655CB1DE7B61 ] C:\Windows\System32\aelupsvc.dll
17:59:28.0439 0568 C:\Windows\System32\aelupsvc.dll - ok
17:59:28.0439 0568 [ 326C7F76A29897A892AA7726E91C1C67 ] C:\Windows\SysWOW64\winbrand.dll
17:59:28.0439 0568 C:\Windows\SysWOW64\winbrand.dll - ok
17:59:28.0439 0568 [ 0BA3F31E2B4D8D99DF8DD19E81155374 ] C:\Windows\SysWOW64\ieframe.dll
17:59:28.0439 0568 C:\Windows\SysWOW64\ieframe.dll - ok
17:59:28.0454 0568 [ 3F7B9B4E099476AAA720970BA1346FE2 ] C:\Program Files (x86)\Dell DataSafe Local Backup\Toaster.exe
17:59:28.0454 0568 C:\Program Files (x86)\Dell DataSafe Local Backup\Toaster.exe - ok
17:59:28.0454 0568 [ E07B77C3BDC82A024E294FB67ABFEDA0 ] C:\Windows\SysWOW64\shdocvw.dll
17:59:28.0454 0568 C:\Windows\SysWOW64\shdocvw.dll - ok
17:59:28.0454 0568 [ 9ED9F21D73F9D71E30EAB71835E656EB ] C:\Users\Dipanshu\AppData\Local\Temp\B5749046-A46C-4DCE-8555-43287B0A4128.exe
17:59:28.0454 0568 C:\Users\Dipanshu\AppData\Local\Temp\B5749046-A46C-4DCE-8555-43287B0A4128.exe - ok
17:59:28.0470 0568 [ 6E9E439517D89EDC9A6CB1E94489620A ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsec.dll
17:59:28.0470 0568 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsec.dll - ok
17:59:28.0470 0568 [ D3EAD1CF16BA729A7F7C9A5D94AA7C05 ] C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7600.16661_none_ebfb56996c72aefc\comctl32.dll
17:59:28.0470 0568 C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7600.16661_none_ebfb56996c72aefc\comctl32.dll - ok
17:59:28.0470 0568 [ 6EC594AB7EFA45EACDE65FD4040F53D9 ] C:\Windows\SysWOW64\riched20.dll
17:59:28.0470 0568 C:\Windows\SysWOW64\riched20.dll - ok
17:59:28.0486 0568 [ 691C8DFB208227F0CBB5C0897C742ACE ] C:\Windows\SysWOW64\WindowsCodecs.dll
17:59:28.0486 0568 C:\Windows\SysWOW64\WindowsCodecs.dll - ok
17:59:28.0486 0568 [ 846D0E4DB261CFAF363902E41498E961 ] C:\Windows\SysWOW64\EhStorShell.dll
17:59:28.0486 0568 C:\Windows\SysWOW64\EhStorShell.dll - ok
17:59:28.0501 0568 [ 9141FE8D904CE682A3BDCFAE96BB04EF ] C:\Windows\SysWOW64\ntshrui.dll
17:59:28.0501 0568 C:\Windows\SysWOW64\ntshrui.dll - ok
17:59:28.0501 0568 [ 8B74CEC6980D4816B0037AE9A27E538F ] C:\Windows\SysWOW64\slc.dll
17:59:28.0501 0568 C:\Windows\SysWOW64\slc.dll - ok
17:59:28.0501 0568 [ 371A6D058281FCFC2A7AD0A0ABB1ADEC ] C:\Windows\assembly\NativeImages_v2.0.50727_32\WindowsBase\b68fdf2c95b93fc5006a092c11eed07c\WindowsBase.ni.dll
17:59:28.0501 0568 C:\Windows\assembly\NativeImages_v2.0.50727_32\WindowsBase\b68fdf2c95b93fc5006a092c11eed07c\WindowsBase.ni.dll - ok
17:59:28.0517 0568 [ 7349C9EBA29D3D7661CA5353E613D12F ] C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationCore\e9d0ba41128f363f2390c7e630129c2b\PresentationCore.ni.dll
17:59:28.0517 0568 C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationCore\e9d0ba41128f363f2390c7e630129c2b\PresentationCore.ni.dll - ok
17:59:28.0517 0568 [ F60F6F24FEF1024A64889A6D656381AE ] C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\517358eb2fd962a942dd1ea6afc5b93e\PresentationFramework.ni.dll
17:59:28.0517 0568 C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\517358eb2fd962a942dd1ea6afc5b93e\PresentationFramework.ni.dll - ok
17:59:28.0517 0568 [ 27BED235F5497DEBC6EF6EFAF4BA1D60 ] C:\Windows\assembly\GAC_32\PresentationCore\3.0.0.0__31bf3856ad364e35\PresentationCore.dll
17:59:28.0517 0568 C:\Windows\assembly\GAC_32\PresentationCore\3.0.0.0__31bf3856ad364e35\PresentationCore.dll - ok
17:59:28.0532 0568 [ 4538040E7B6B281A0468BFBD7BE6ADBB ] C:\Windows\Microsoft.NET\Framework\v3.0\WPF\wpfgfx_v0300.dll
17:59:28.0532 0568 C:\Windows\Microsoft.NET\Framework\v3.0\WPF\wpfgfx_v0300.dll - ok
17:59:28.0532 0568 [ A0617B5753E31126AD29C03154F4F329 ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\Culture.dll
17:59:28.0532 0568 C:\Windows\Microsoft.NET\Framework\v2.0.50727\Culture.dll - ok
17:59:28.0548 0568 [ 5684E84471A6234DE864F40F43BE3A15 ] C:\Program Files (x86)\Dell DataSafe Local Backup\SftBRCC.dll
17:59:28.0548 0568 C:\Program Files (x86)\Dell DataSafe Local Backup\SftBRCC.dll - ok
17:59:28.0548 0568 [ 902456D417C263AB4C230AB5C93562ED ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Drawing\ebefde27b0ef7f39bb49c493b34a602c\System.Drawing.ni.dll
17:59:28.0548 0568 C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Drawing\ebefde27b0ef7f39bb49c493b34a602c\System.Drawing.ni.dll - ok
17:59:28.0548 0568 [ E36D050722A04F4A331512F69433B5A6 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\009c50fb69919b90fb233cb4c35d0ad7\System.Windows.Forms.ni.dll
17:59:28.0548 0568 C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\009c50fb69919b90fb233cb4c35d0ad7\System.Windows.Forms.ni.dll - ok
17:59:28.0564 0568 [ 7459301D21C2E21468823F73042D9F87 ] C:\Windows\SysWOW64\d3d9.dll
17:59:28.0564 0568 C:\Windows\SysWOW64\d3d9.dll - ok
17:59:28.0564 0568 [ 77B1471A490B53B24EFE136F09F76550 ] C:\Windows\SysWOW64\d3d8thk.dll
17:59:28.0564 0568 C:\Windows\SysWOW64\d3d8thk.dll - ok
17:59:28.0564 0568 [ BA38C50F523DC053488AC3F9EF99AA0B ] C:\Windows\SysWOW64\igdumdx32.dll
17:59:28.0564 0568 C:\Windows\SysWOW64\igdumdx32.dll - ok
17:59:28.0579 0568 [ 10AB9C9ADB89816BEFB077E72659D029 ] C:\Windows\SysWOW64\igdumd32.dll
17:59:28.0579 0568 C:\Windows\SysWOW64\igdumd32.dll - ok
17:59:28.0579 0568 [ 50FDB72922B6E6C0E455E65CE67D1A74 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\fc626095c194be137bceb219934b06a7\PresentationFramework.Aero.ni.dll
17:59:28.0579 0568 C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\fc626095c194be137bceb219934b06a7\PresentationFramework.Aero.ni.dll - ok
17:59:28.0579 0568 [ FB53B45EE45AD3D3CB00FB067584E6DE ] C:\Program Files (x86)\Dell DataSafe Local Backup\SftBRCCPiped.dll
17:59:28.0579 0568 C:\Program Files (x86)\Dell DataSafe Local Backup\SftBRCCPiped.dll - ok
17:59:28.0595 0568 [ 17BA32578D32EAA9253155CF746442AA ] C:\Program Files (x86)\Dell DataSafe Local Backup\MiddleLayerCLRLib.dll
17:59:28.0595 0568 C:\Program Files (x86)\Dell DataSafe Local Backup\MiddleLayerCLRLib.dll - ok
17:59:28.0595 0568 [ 0B3595A4FF0B36D68E5FC67FD7D70FDC ] C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcp80.dll
17:59:28.0595 0568 C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcp80.dll - ok
17:59:28.0595 0568 [ 1D109ED0D660654EA7FF1574558031C4 ] C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcm80.dll
17:59:28.0595 0568 C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcm80.dll - ok
17:59:28.0610 0568 [ 827CB0D6C3F8057EA037FF271F8E9795 ] C:\Windows\SysWOW64\imageres.dll
17:59:28.0610 0568 C:\Windows\SysWOW64\imageres.dll - ok
17:59:28.0610 0568 [ D85DB66D0D6E120367658E38AB1BB1FA ] C:\Program Files (x86)\Dell DataSafe Local Backup\STBRCCServCLR.dll
17:59:28.0610 0568 C:\Program Files (x86)\Dell DataSafe Local Backup\STBRCCServCLR.dll - ok
17:59:28.0626 0568 [ 98AF485FDCCCB264158995D0C04FC873 ] C:\Program Files (x86)\Dell DataSafe Local Backup\STBRCCServices.dll
17:59:28.0626 0568 C:\Program Files (x86)\Dell DataSafe Local Backup\STBRCCServices.dll - ok
17:59:28.0626 0568 [ 0ADC83218B66A6DB380C330836F3E36D ] C:\Windows\System32\drivers\fastfat.sys
17:59:28.0626 0568 C:\Windows\System32\drivers\fastfat.sys - ok
17:59:28.0626 0568 [ B519848DFA30AE2B306576B51321D102 ] C:\Windows\System32\ie4uinit.exe
17:59:28.0626 0568 C:\Windows\System32\ie4uinit.exe - ok
17:59:28.0642 0568 [ C3E98C42EDF7EF237A4BAB91FEAC7426 ] C:\Windows\System32\iedkcs32.dll
17:59:28.0642 0568 C:\Windows\System32\iedkcs32.dll - ok
17:59:28.0642 0568 [ 18245DC72B65D488A8B2D75A8FE088EA ] C:\Windows\System32\timedate.cpl
17:59:28.0642 0568 C:\Windows\System32\timedate.cpl - ok
17:59:28.0642 0568 [ 1E4BDDBD5A63059A97063339B4F8986F ] C:\Windows\System32\actxprxy.dll
17:59:28.0642 0568 C:\Windows\System32\actxprxy.dll - ok
17:59:28.0657 0568 [ FBE8EBF528DC49B3DEB186CA9545D97E ] C:\Windows\System32\shdocvw.dll
17:59:28.0657 0568 C:\Windows\System32\shdocvw.dll - ok
17:59:28.0657 0568 [ A0A65D306A5490D2EB8E7DE66898ECFD ] C:\Windows\System32\linkinfo.dll
17:59:28.0657 0568 C:\Windows\System32\linkinfo.dll - ok
17:59:28.0657 0568 [ 69754747274B76E7FAF287239333D7E6 ] C:\Windows\System32\msiltcfg.dll
17:59:28.0657 0568 C:\Windows\System32\msiltcfg.dll - ok
17:59:28.0673 0568 [ F146E2BA475893DD77B2370DC1211FC6 ] C:\Windows\System32\drivers\13410375.sys
17:59:28.0673 0568 C:\Windows\System32\drivers\13410375.sys - ok
17:59:28.0673 0568 [ 8898C95862D03D16B2A06DB4DB6BB6B2 ] C:\Windows\SysWOW64\ExplorerFrame.dll
17:59:28.0673 0568 C:\Windows\SysWOW64\ExplorerFrame.dll - ok
17:59:28.0673 0568 [ 6E1F8165C365D35C8E3C045AF0CDD481 ] C:\Windows\SysWOW64\duser.dll
17:59:28.0673 0568 C:\Windows\SysWOW64\duser.dll - ok
17:59:28.0688 0568 [ EE06B85BC69F18826302348A2AD089E0 ] C:\Windows\SysWOW64\dui70.dll
17:59:28.0688 0568 C:\Windows\SysWOW64\dui70.dll - ok
17:59:28.0688 0568 [ 46EDD0A6B42BA5D2044FA0909BE4BE95 ] C:\Windows\System32\msftedit.dll
17:59:28.0688 0568 C:\Windows\System32\msftedit.dll - ok
17:59:28.0688 0568 [ 7FCAB194F01E3403C300EB034E480B36 ] C:\Windows\System32\msls31.dll
17:59:28.0688 0568 C:\Windows\System32\msls31.dll - ok
17:59:28.0704 0568 [ 14F5C0DB4B2C47874D6C937A5A1B367C ] C:\Windows\System32\gameux.dll
17:59:28.0704 0568 C:\Windows\System32\gameux.dll - ok
17:59:28.0704 0568 [ 17A7998CB5DA92020A291B85FF7B3681 ] C:\Program Files\Common Files\Microsoft Shared\ink\tiptsf.dll
17:59:28.0704 0568 C:\Program Files\Common Files\Microsoft Shared\ink\tiptsf.dll - ok
17:59:28.0704 0568 [ DD76912E8D165C68659D9875256710A3 ] C:\Windows\System32\DeviceCenter.dll
17:59:28.0704 0568 C:\Windows\System32\DeviceCenter.dll - ok
17:59:28.0720 0568 [ AC7867BC8D567B8490744287BAB0CFBD ] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
17:59:28.0720 0568 C:\Program Files\Synaptics\SynTP\SynTPEnh.exe - ok
17:59:28.0720 0568 [ 5F3D8F0243E653BEDEB9AC6F04B7CF79 ] C:\Program Files\IDT\WDM\sttray64.exe
17:59:28.0720 0568 C:\Program Files\IDT\WDM\sttray64.exe - ok
17:59:28.0735 0568 [ F468C806267D46B68DB7EB32FBF0A103 ] C:\Windows\System32\thumbcache.dll
17:59:28.0735 0568 C:\Windows\System32\thumbcache.dll - ok
17:59:28.0735 0568 [ 4D2D88E6530572C4923F47CF6525E365 ] C:\Windows\System32\SynCOM.dll
17:59:28.0735 0568 C:\Windows\System32\SynCOM.dll - ok
17:59:28.0735 0568 [ 326F070B9C4FC40CCD6058C07F3E2B23 ] C:\Windows\System32\SynTPAPI.dll
17:59:28.0735 0568 C:\Windows\System32\SynTPAPI.dll - ok
17:59:28.0751 0568 [ B60457F40BBF5EAE380FC110B21C4978 ] C:\Program Files\Dell\QuickSet\quickset.exe
17:59:28.0751 0568 C:\Program Files\Dell\QuickSet\quickset.exe - ok
17:59:28.0751 0568 [ 9AEC3D056A54178EBDCDDAB48583E90A ] C:\Program Files\Synaptics\SynTP\DellTpad.exe
17:59:28.0751 0568 C:\Program Files\Synaptics\SynTP\DellTpad.exe - ok
17:59:28.0751 0568 [ 8BC7AE7E16458355508ECF5EC3A04E72 ] C:\Windows\System32\networkexplorer.dll
17:59:28.0751 0568 C:\Windows\System32\networkexplorer.dll - ok
17:59:28.0766 0568 [ 0ABCA5A037A8B4D744991544B286D847 ] C:\Windows\System32\mfc42u.dll
17:59:28.0766 0568 C:\Windows\System32\mfc42u.dll - ok
17:59:28.0766 0568 [ DFF4993094A11275601E7ADBF1D1BD25 ] C:\Windows\System32\odbc32.dll
17:59:28.0766 0568 C:\Windows\System32\odbc32.dll - ok
17:59:28.0766 0568 [ DD81D91FF3B0763C392422865C9AC12E ] C:\Windows\System32\rundll32.exe
17:59:28.0766 0568 C:\Windows\System32\rundll32.exe - ok
17:59:28.0782 0568 [ 2F16207A65B62001FC73E6798D0B8F2A ] C:\Windows\System32\hkcmd.exe
17:59:28.0782 0568 C:\Windows\System32\hkcmd.exe - ok
17:59:28.0782 0568 [ B51DC06D6CAD4F48203605F2B6011D3E ] C:\Program Files\Quick Heal\Quick Heal Total Security\STRTUPAP.EXE
17:59:28.0782 0568 C:\Program Files\Quick Heal\Quick Heal Total Security\STRTUPAP.EXE - ok
17:59:28.0782 0568 [ 357BE883C5236BFC7341CB9E82308908 ] C:\Windows\System32\wlanapi.dll
17:59:28.0782 0568 C:\Windows\System32\wlanapi.dll - ok
17:59:28.0798 0568 [ EA360CA8F2E24D5AAF90C925DAAFA60B ] C:\Program Files\IDT\WDM\stlang64.dll
17:59:28.0798 0568 C:\Program Files\IDT\WDM\stlang64.dll - ok
17:59:28.0798 0568 [ 263E9A047D17CD50BAA9D3C02910D18D ] C:\Windows\System32\oledlg.dll
17:59:28.0798 0568 C:\Windows\System32\oledlg.dll - ok
17:59:28.0798 0568 [ 8942FD2FC4FD4898F9BE5915F577FFF1 ] C:\Windows\System32\AmbRunE.dll
17:59:28.0798 0568 C:\Windows\System32\AmbRunE.dll - ok
17:59:28.0813 0568 [ 05EA520BFB1D3085CB12A4355598081D ] C:\Windows\System32\hccutils.dll
17:59:28.0813 0568 C:\Windows\System32\hccutils.dll - ok
17:59:28.0813 0568 [ 80B62FF105908EC9E4B072AFB1CFC824 ] C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\WebcamDell2.exe
17:59:28.0813 0568 C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\WebcamDell2.exe - ok
17:59:28.0829 0568 [ D890EDDD0528E04049C9D524FBA1C506 ] C:\Windows\System32\igfxsrvc.exe
17:59:28.0829 0568 C:\Windows\System32\igfxsrvc.exe - ok
17:59:28.0829 0568 [ 7D994395A7D62E7A4EEAD38FFE833522 ] C:\Program Files\Quick Heal\Quick Heal Total Security\REMIND.EXE
17:59:28.0829 0568 C:\Program Files\Quick Heal\Quick Heal Total Security\REMIND.EXE - ok
17:59:28.0829 0568 [ 3E466073C3B1033FF92ADE9031E3D4A2 ] C:\Windows\System32\odbcint.dll
17:59:28.0829 0568 C:\Windows\System32\odbcint.dll - ok
17:59:28.0844 0568 [ A0A42BB19E085F4B3367F5057307C194 ] C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\CTLoadRs.dll
17:59:28.0844 0568 C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\CTLoadRs.dll - ok
17:59:28.0844 0568 [ C673F3CE4993B0967DF64EB864640F4A ] C:\Program Files\Quick Heal\Quick Heal Total Security\ONLINENT.EXE
17:59:28.0844 0568 C:\Program Files\Quick Heal\Quick Heal Total Security\ONLINENT.EXE - ok
17:59:28.0844 0568 [ 326ABDADEDA287ED0348763AA5879B5A ] C:\Program Files\Quick Heal\Quick Heal Total Security\EMLPROUI.EXE
17:59:28.0844 0568 C:\Program Files\Quick Heal\Quick Heal Total Security\EMLPROUI.EXE - ok
17:59:28.0860 0568 [ 64D757051B5B273E55C93E4503EA4F3E ] C:\Windows\System32\wbem\WmiPrvSE.exe
17:59:28.0860 0568 C:\Windows\System32\wbem\WmiPrvSE.exe - ok
17:59:28.0860 0568 [ AA26F685222B5F1D87CF9860D4FA2A34 ] C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
17:59:28.0860 0568 C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe - ok
17:59:28.0860 0568 [ D458B563613E898EE7C627359AF5973D ] C:\Windows\SysWOW64\Nlsdl.dll
17:59:28.0860 0568 C:\Windows\SysWOW64\Nlsdl.dll - ok
17:59:28.0876 0568 [ 43A4F52F7A38ED9EE0AACA36FE6DAC5D ] C:\Program Files (x86)\Creative\SB X-Fi MB\Volume Panel\VolPanlu.exe
17:59:28.0876 0568 C:\Program Files (x86)\Creative\SB X-Fi MB\Volume Panel\VolPanlu.exe - ok
17:59:28.0876 0568 [ 5046E55184021406C27E8D48A1B2C9D2 ] C:\Windows\System32\l3codeca.acm
17:59:28.0876 0568 C:\Windows\System32\l3codeca.acm - ok
17:59:28.0876 0568 [ E748D0B8F4060F4F7A7ABB705E289890 ] C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\mfc42u.dll
17:59:28.0876 0568 C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\mfc42u.dll - ok
17:59:28.0891 0568 [ 21BA1FCC51710D13B28C613948470688 ] C:\Program Files\Quick Heal\Quick Heal Total Security\SCANMSG.EXE
17:59:28.0891 0568 C:\Program Files\Quick Heal\Quick Heal Total Security\SCANMSG.EXE - ok
17:59:28.0891 0568 [ C419DF63E0121D72411285780C2FC6CC ] C:\Windows\Updreg.EXE
17:59:28.0891 0568 C:\Windows\Updreg.EXE - ok
17:59:28.0907 0568 [ F3E06B350048CF40DC99342C05278A59 ] C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\en-US\WebcamDell2.crl
17:59:28.0907 0568 C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\en-US\WebcamDell2.crl - ok
17:59:28.0907 0568 [ 31A6D4B8803CCBA44271F05E08C4955A ] C:\Windows\System32\igfxsrvc.dll
17:59:28.0907 0568 C:\Windows\System32\igfxsrvc.dll - ok
17:59:28.0907 0568 [ 00D1FB0073B4A8BD2989EA8FF4CC792B ] C:\Program Files (x86)\Dell Support Center\bin\sprtcmd.exe
17:59:28.0907 0568 C:\Program Files (x86)\Dell Support Center\bin\sprtcmd.exe - ok
17:59:28.0922 0568 [ F51059EE3C543CB364A069CAFB252031 ] C:\Windows\System32\igfxdev.dll
17:59:28.0922 0568 C:\Windows\System32\igfxdev.dll - ok
17:59:28.0922 0568 [ 9E60922B6F9D810C757D0991E54D3281 ] C:\Program Files (x86)\Absolute Software\Absolute Notifier\AbsoluteNotifier.exe
17:59:28.0922 0568 C:\Program Files (x86)\Absolute Software\Absolute Notifier\AbsoluteNotifier.exe - ok
17:59:28.0922 0568 [ 60CC15392FF14DCB9C29C69B3233741B ] C:\Windows\System32\stobject.dll
17:59:28.0922 0568 C:\Windows\System32\stobject.dll - ok
17:59:28.0938 0568 [ 75838AB28CC1318345DA62B6C339068C ] C:\Windows\System32\GfxUI.exe
17:59:28.0938 0568 C:\Windows\System32\GfxUI.exe - ok
17:59:28.0938 0568 [ 27347D10624CC5E0BAB3887F032AE8E5 ] C:\Program Files\Quick Heal\Quick Heal Total Security\CONTACT.EXE
17:59:28.0938 0568 C:\Program Files\Quick Heal\Quick Heal Total Security\CONTACT.EXE - ok
17:59:28.0938 0568 [ 352C7C2470C03AFD41889236D849D75C ] C:\Windows\System32\igfxrenu.lrc
17:59:28.0938 0568 C:\Windows\System32\igfxrenu.lrc - ok
17:59:28.0954 0568 [ C5B0324DB461559ADD070E632A6919FA ] C:\Windows\SysWOW64\wbem\wbemprox.dll
17:59:28.0954 0568 C:\Windows\SysWOW64\wbem\wbemprox.dll - ok
17:59:28.0954 0568 [ BCCB77572408155F984A02F9BFFDF225 ] C:\Program Files (x86)\Adobe\Photoshop Elements 6.0\apdproxy.exe
17:59:28.0954 0568 C:\Program Files (x86)\Adobe\Photoshop Elements 6.0\apdproxy.exe - ok
17:59:28.0954 0568 [ 86B6AC0FD2881B3D20B80F51C7152AE0 ] C:\Windows\System32\batmeter.dll
17:59:28.0969 0568 C:\Windows\System32\batmeter.dll - ok
17:59:28.0969 0568 [ E8320BF356510F39CAEF3DBD25505CD9 ] C:\Program Files\Quick Heal\Quick Heal Total Security\MODLOG.DLL
17:59:28.0969 0568 C:\Program Files\Quick Heal\Quick Heal Total Security\MODLOG.DLL - ok
17:59:28.0969 0568 [ 55A8AEEC6FF65797A92A6EB1D904D5E6 ] C:\Program Files\WIDCOMM\Bluetooth Software\Btwapi.dll
17:59:28.0969 0568 C:\Program Files\WIDCOMM\Bluetooth Software\Btwapi.dll - ok
17:59:28.0985 0568 [ 0E34B7BB1FCF22BCC1E394D16F9E992B ] C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe
17:59:28.0985 0568 C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe - ok
17:59:28.0985 0568 [ 96F3F676B4D0DF4DA9C4081358C4662F ] C:\Windows\SysWOW64\wbemcomn.dll
17:59:28.0985 0568 C:\Windows\SysWOW64\wbemcomn.dll - ok
17:59:28.0985 0568 [ 031C6782F2D50336FC2C72F8D14A4C13 ] C:\Windows\System32\wbem\wmiprov.dll
17:59:28.0985 0568 C:\Windows\System32\wbem\wmiprov.dll - ok
17:59:29.0000 0568 [ A1F878D78E736632EF2120E17FD9C4A6 ] C:\Program Files\Quick Heal\Quick Heal Total Security\ONLNALRT.DLL
17:59:29.0000 0568 C:\Program Files\Quick Heal\Quick Heal Total Security\ONLNALRT.DLL - ok
17:59:29.0000 0568 [ 2E5193EAF0317764B454DE2C5C27BD80 ] C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
17:59:29.0000 0568 C:\Program Files\Synaptics\SynTP\SynTPHelper.exe - ok
17:59:29.0000 0568 [ 539C49CEBB3C50957AC8A09D95ECD880 ] C:\Windows\SysWOW64\shfolder.dll
17:59:29.0000 0568 C:\Windows\SysWOW64\shfolder.dll - ok
17:59:29.0016 0568 [ C4D79A6ABC6665D83F83DBBA88B79382 ] C:\Program Files\WIDCOMM\Bluetooth Software\btosif.dll
17:59:29.0016 0568 C:\Program Files\WIDCOMM\Bluetooth Software\btosif.dll - ok
17:59:29.0016 0568 [ 776AE0564F8B1C282E331FD95A1BDC5F ] C:\Windows\SysWOW64\wbem\wbemsvc.dll
17:59:29.0016 0568 C:\Windows\SysWOW64\wbem\wbemsvc.dll - ok
17:59:29.0016 0568 [ C08F1F47FE1A742C95C3B820E5F65572 ] C:\Program Files\Quick Heal\Quick Heal Total Security\QUAR.DLL
17:59:29.0016 0568 C:\Program Files\Quick Heal\Quick Heal Total Security\QUAR.DLL - ok
17:59:29.0032 0568 [ 913C2E4A03201644FC986EDEB5F8A390 ] C:\Windows\System32\DXP.dll
17:59:29.0032 0568 C:\Windows\System32\DXP.dll - ok
17:59:29.0032 0568 [ F24A3379567365B1CD4E9167ADF4B763 ] C:\Program Files (x86)\Creative\SB X-Fi MB\Volume Panel\CTAudSeu.dll
17:59:29.0032 0568 C:\Program Files (x86)\Creative\SB X-Fi MB\Volume Panel\CTAudSeu.dll - ok
17:59:29.0047 0568 [ DBEC7D9F979CE492B0BA3103F37AB2D1 ] C:\Windows\assembly\GAC_MSIL\System.Windows.Forms\2.0.0.0__b77a5c561934e089\System.Windows.Forms.dll
17:59:29.0047 0568 C:\Windows\assembly\GAC_MSIL\System.Windows.Forms\2.0.0.0__b77a5c561934e089\System.Windows.Forms.dll - ok
17:59:29.0047 0568 [ E58D12F3A1BDBC7C5429606EA6F2B8AD ] C:\Program Files\Quick Heal\Quick Heal Total Security\SMFLTR.DLL
17:59:29.0047 0568 C:\Program Files\Quick Heal\Quick Heal Total Security\SMFLTR.DLL - ok
17:59:29.0047 0568 [ 1CEDFE91F527858CACA1B08B04666BC0 ] C:\Windows\SysWOW64\wbem\fastprox.dll
17:59:29.0047 0568 C:\Windows\SysWOW64\wbem\fastprox.dll - ok
17:59:29.0063 0568 [ F5BCE1C11BA2F018E07C3BB6CA4EC3F6 ] C:\Program Files (x86)\Creative\SB X-Fi MB\Volume Panel\CTAudEp.dll
17:59:29.0063 0568 C:\Program Files (x86)\Creative\SB X-Fi MB\Volume Panel\CTAudEp.dll - ok
17:59:29.0063 0568 [ 296107D58DBCD63AA59E431176CA5494 ] C:\Program Files\Quick Heal\Quick Heal Total Security\ASPCORE.DLL
17:59:29.0063 0568 C:\Program Files\Quick Heal\Quick Heal Total Security\ASPCORE.DLL - ok
17:59:29.0063 0568 [ DD6C73502C5CE772ACA11BF1FE9389DB ] C:\Windows\assembly\NativeImages_v2.0.50727_64\WindowsBase\7cdb4f5d0ff25c672e52a333ee394bb8\WindowsBase.ni.dll
17:59:29.0063 0568 C:\Windows\assembly\NativeImages_v2.0.50727_64\WindowsBase\7cdb4f5d0ff25c672e52a333ee394bb8\WindowsBase.ni.dll - ok
17:59:29.0078 0568 [ ABAAC2BDA49E97F2682E777036E02DB0 ] C:\Program Files (x86)\Creative\SB X-Fi MB\Volume Panel\CTIniFu.dll
17:59:29.0078 0568 C:\Program Files (x86)\Creative\SB X-Fi MB\Volume Panel\CTIniFu.dll - ok
17:59:29.0078 0568 [ 651F169718CC46C8A9264880C538D5FF ] C:\Windows\System32\prnfldr.dll
17:59:29.0078 0568 C:\Windows\System32\prnfldr.dll - ok
17:59:29.0094 0568 [ B675CE9E67EE43628F181B8B6CF60BB9 ] C:\Program Files\WIDCOMM\Bluetooth Software\btwhidcs.dll
17:59:29.0094 0568 C:\Program Files\WIDCOMM\Bluetooth Software\btwhidcs.dll - ok
17:59:29.0094 0568 [ E3E811471DE781900FF21C1FD84E941E ] C:\Windows\SysWOW64\ntdsapi.dll
17:59:29.0094 0568 C:\Windows\SysWOW64\ntdsapi.dll - ok
17:59:29.0094 0568 [ 21EE912784A013DC44071ECC4F932388 ] C:\Windows\winsxs\amd64_microsoft.vc80.mfc_1fc8b3b9a1e18e3b_8.0.50727.762_none_c46a533c8a667ee7\mfc80u.dll
17:59:29.0094 0568 C:\Windows\winsxs\amd64_microsoft.vc80.mfc_1fc8b3b9a1e18e3b_8.0.50727.762_none_c46a533c8a667ee7\mfc80u.dll - ok
17:59:29.0110 0568 [ 88FBE86112DB7E4FEB77A4A15C95EBEF ] C:\Windows\SysWOW64\mfc42u.dll
17:59:29.0110 0568 C:\Windows\SysWOW64\mfc42u.dll - ok
17:59:29.0110 0568 [ 6D58E5815C560041A68228AF45CA9541 ] C:\Program Files\Quick Heal\Quick Heal Total Security\INETSDK.DLL
17:59:29.0110 0568 C:\Program Files\Quick Heal\Quick Heal Total Security\INETSDK.DLL - ok
17:59:29.0110 0568 [ D32EE82DA63D39D337D5AEEA2928B1DE ] C:\Windows\System32\consent.exe
17:59:29.0110 0568 C:\Windows\System32\consent.exe - ok
17:59:29.0125 0568 [ 8BC00C736E67A75D936E5B440917359B ] C:\Windows\System32\ActionCenter.dll
17:59:29.0125 0568 C:\Windows\System32\ActionCenter.dll - ok
17:59:29.0125 0568 [ 2BC7C9FD0A9F2C9AFC373F3AD1EE3891 ] C:\Windows\System32\Syncreg.dll
17:59:29.0125 0568 C:\Windows\System32\Syncreg.dll - ok
17:59:29.0125 0568 [ E7368F0A8D19445EAF5C5D0DBB8B8DAB ] C:\Windows\System32\AltTab.dll
17:59:29.0125 0568 C:\Windows\System32\AltTab.dll - ok
17:59:29.0141 0568 [ 5764C381949147EBCFB9A7134E2ABF06 ] C:\Windows\SysWOW64\odbc32.dll
17:59:29.0141 0568 C:\Windows\SysWOW64\odbc32.dll - ok
17:59:29.0141 0568 [ 930B0366EF3089C422C132F649EDFD42 ] C:\Program Files (x86)\Adobe\Photoshop Elements 6.0\apdboot.dll
17:59:29.0141 0568 C:\Program Files (x86)\Adobe\Photoshop Elements 6.0\apdboot.dll - ok
17:59:29.0141 0568 [ 11BE2933DA0600DE6A644C3A492675F4 ] C:\Windows\System32\irprops.cpl
17:59:29.0141 0568 C:\Windows\System32\irprops.cpl - ok
17:59:29.0156 0568 [ FD4F95ABDE5603478C929B6CB0BDCFFF ] C:\Windows\System32\pnidui.dll
17:59:29.0156 0568 C:\Windows\System32\pnidui.dll - ok
17:59:29.0156 0568 [ E36112A8A6C7F840169A7E92C12F4203 ] C:\Windows\System32\wsock32.dll
17:59:29.0156 0568 C:\Windows\System32\wsock32.dll - ok
17:59:29.0156 0568 [ 46A6BA9274D075A2C30025C4E96D875A ] C:\Windows\SysWOW64\msvcp60.dll
17:59:29.0156 0568 C:\Windows\SysWOW64\msvcp60.dll - ok
17:59:29.0172 0568 [ ABA457BFC7EC0B5E130B2F1E0F549DFF ] C:\Windows\SysWOW64\odbcint.dll
17:59:29.0172 0568 C:\Windows\SysWOW64\odbcint.dll - ok
17:59:29.0172 0568 [ EFFB8EC0A41B0E74AD1555248F5EB0D6 ] C:\Windows\winsxs\amd64_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.4927_none_88dce9872fb18caf\msvcp80.dll
17:59:29.0172 0568 C:\Windows\winsxs\amd64_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.4927_none_88dce9872fb18caf\msvcp80.dll - ok
17:59:29.0188 0568 [ 87B8A6A5B7BB3BA7E15C2937ABF49563 ] C:\Program Files (x86)\Adobe\Photoshop Elements 6.0\moxplugins\NOKIAManager.mox
17:59:29.0188 0568 C:\Program Files (x86)\Adobe\Photoshop Elements 6.0\moxplugins\NOKIAManager.mox - ok
17:59:29.0188 0568 [ E424B3EF666B184CEE0B6871AAA8C9F6 ] C:\Windows\System32\msimg32.dll
17:59:29.0188 0568 C:\Windows\System32\msimg32.dll - ok
17:59:29.0188 0568 [ BD03C64C4B1F34D1F330BF6C4AC8113D ] C:\Windows\System32\QUTIL.DLL
17:59:29.0188 0568 C:\Windows\System32\QUTIL.DLL - ok
17:59:29.0203 0568 [ 2EEEF8544DCAFE322301B68AA7F1D989 ] C:\Program Files (x86)\Dell Support Center\bin\sprtmessage.dll
17:59:29.0203 0568 C:\Program Files (x86)\Dell Support Center\bin\sprtmessage.dll - ok
17:59:29.0203 0568 [ 36010F875E8AAE70646186EB8D7C78ED ] C:\Program Files (x86)\Absolute Software\Absolute Notifier\Com.Absolute.Common.Agent.dll
17:59:29.0203 0568 C:\Program Files (x86)\Absolute Software\Absolute Notifier\Com.Absolute.Common.Agent.dll - ok
17:59:29.0203 0568 [ 58C3BD4C98675370E3DFF70B8E9566A9 ] C:\Program Files\Quick Heal\Quick Heal Total Security\WSITF.DLL
17:59:29.0203 0568 C:\Program Files\Quick Heal\Quick Heal Total Security\WSITF.DLL - ok
17:59:29.0219 0568 [ 11456E7C78A6C3D43E5D81CE8A899FA6 ] C:\Program Files (x86)\Dell Support Center\bin\sprtsched.dll
17:59:29.0219 0568 C:\Program Files (x86)\Dell Support Center\bin\sprtsched.dll - ok
17:59:29.0219 0568 [ 8930FD94DC2955D1740E3A14F438AA92 ] C:\Program Files\WIDCOMM\Bluetooth Software\BtBalloon.dll
17:59:29.0219 0568 C:\Program Files\WIDCOMM\Bluetooth Software\BtBalloon.dll - ok
17:59:29.0219 0568 [ C836175870E00ACC546066632E15BD10 ] C:\Windows\ehome\ehSSO.dll
17:59:29.0219 0568 C:\Windows\ehome\ehSSO.dll - ok
17:59:29.0234 0568 [ 95ED57DA07F80EC98D27E64B797E05E9 ] C:\Program Files (x86)\Absolute Software\Absolute Notifier\Agent.dll
17:59:29.0234 0568 C:\Program Files (x86)\Absolute Software\Absolute Notifier\Agent.dll - ok
17:59:29.0234 0568 [ AF9B7F55AAB8229241E29FB82177DB30 ] C:\Program Files (x86)\Dell Support Center\bin\sprtevent.dll
17:59:29.0234 0568 C:\Program Files (x86)\Dell Support Center\bin\sprtevent.dll - ok
17:59:29.0250 0568 [ EE24C42561D40F7AD7C2A7A460287090 ] C:\Windows\System32\wbem\cimwin32.dll
17:59:29.0250 0568 C:\Windows\System32\wbem\cimwin32.dll - ok
17:59:29.0250 0568 [ 17095F4A4021A702887C86CFA28CEEAA ] C:\Program Files\WIDCOMM\Bluetooth Software\BtwRSupport.dll
17:59:29.0250 0568 C:\Program Files\WIDCOMM\Bluetooth Software\BtwRSupport.dll - ok
17:59:29.0250 0568 [ D5EB3F151B8F28F0A5C8BBB7E13ECD6A ] C:\Windows\assembly\NativeImages_v2.0.50727_64\PresentationCore\ea90a194614680a484a25b6ccc4df754\PresentationCore.ni.dll
17:59:29.0250 0568 C:\Windows\assembly\NativeImages_v2.0.50727_64\PresentationCore\ea90a194614680a484a25b6ccc4df754\PresentationCore.ni.dll - ok
17:59:29.0266 0568 [ 66920354B984D4A3848A84B4E66745EA ] C:\Windows\System32\netshell.dll
17:59:29.0266 0568 C:\Windows\System32\netshell.dll - ok
17:59:29.0266 0568 [ 5D89D063A4CB036C258685C8E057E768 ] C:\Windows\System32\framedynos.dll
17:59:29.0266 0568 C:\Windows\System32\framedynos.dll - ok
17:59:29.0266 0568 [ 228786AFBD47B78F237938F04D34AA8F ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Web\84fbf353f91385690a3e4e982aa6930e\System.Web.ni.dll
17:59:29.0266 0568 C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Web\84fbf353f91385690a3e4e982aa6930e\System.Web.ni.dll - ok
17:59:29.0281 0568 [ B942EC78C708BF51BADDAB5F8E67DBC0 ] C:\Program Files\WIDCOMM\Bluetooth Software\BTKeyInd.dll
17:59:29.0281 0568 C:\Program Files\WIDCOMM\Bluetooth Software\BTKeyInd.dll - ok
17:59:29.0281 0568 [ 76DC9F4FE66BC3867615F142766B4C50 ] C:\Windows\System32\wmi.dll
17:59:29.0281 0568 C:\Windows\System32\wmi.dll - ok
17:59:29.0281 0568 [ 9A95D747564222F9DEAA57A09CB6714F ] C:\Program Files (x86)\Dell Support Center\bin\sprtfod.dll
17:59:29.0281 0568 C:\Program Files (x86)\Dell Support Center\bin\sprtfod.dll - ok
17:59:29.0297 0568 [ 31CCC031D386BE734C1502766491050A ] C:\Program Files\Dell\QuickSet\dadkeyb.dll
17:59:29.0297 0568 C:\Program Files\Dell\QuickSet\dadkeyb.dll - ok
17:59:29.0297 0568 [ A065296FD966048B3F5394360E983768 ] C:\Program Files\Quick Heal\Quick Heal Total Security\OPSUIIPC.DLL
17:59:29.0297 0568 C:\Program Files\Quick Heal\Quick Heal Total Security\OPSUIIPC.DLL - ok
17:59:29.0312 0568 [ E7F5A4F781B3E59FD11D97184453EDF0 ] C:\Program Files\WIDCOMM\Bluetooth Software\BtMmHook.dll
17:59:29.0312 0568 C:\Program Files\WIDCOMM\Bluetooth Software\BtMmHook.dll - ok
17:59:29.0312 0568 [ 14C6A59904D397C6D85DADA9ACBB6FAB ] C:\Windows\System32\browcli.dll
17:59:29.0312 0568 C:\Windows\System32\browcli.dll - ok
17:59:29.0312 0568 [ 28142AAF1565736CE0E5D7EFCE3CC0F8 ] C:\Windows\System32\schedcli.dll
17:59:29.0312 0568 C:\Windows\System32\schedcli.dll - ok
17:59:29.0328 0568 [ 27DF2E313052DB2270972AD7CB15C8DB ] C:\Program Files (x86)\Dell Support Center\bin\sprtsync.dll
17:59:29.0328 0568 C:\Program Files (x86)\Dell Support Center\bin\sprtsync.dll - ok
17:59:29.0328 0568 [ 5BB8C06EB5EA4BA22EE8A678F2D79B25 ] C:\Windows\SysWOW64\devenum.dll
17:59:29.0328 0568 C:\Windows\SysWOW64\devenum.dll - ok
17:59:29.0328 0568 [ A395ABC175604A4F863A0ECF9EE794CA ] C:\Program Files (x86)\Dell Support Center\bin\sprtui.dll
17:59:29.0328 0568 C:\Program Files (x86)\Dell Support Center\bin\sprtui.dll - ok
17:59:29.0344 0568 [ AB01C36BCC34CCFE5B0BB5FFB2605135 ] C:\Windows\System32\WPDShServiceObj.dll
17:59:29.0344 0568 C:\Windows\System32\WPDShServiceObj.dll - ok
17:59:29.0344 0568 [ E24FE90E9DE8D8AE70E59F7B01675DEF ] C:\Windows\SysWOW64\avicap32.dll
17:59:29.0344 0568 C:\Windows\SysWOW64\avicap32.dll - ok
17:59:29.0344 0568 [ C746F3BF98E92FB137B5BD2B8B5925BD ] C:\Windows\System32\FXSST.dll
17:59:29.0344 0568 C:\Windows\System32\FXSST.dll - ok
17:59:29.0359 0568 [ 2DEEB96A0957BD058753FF250E85EF49 ] C:\Windows\SysWOW64\msvfw32.dll
17:59:29.0359 0568 C:\Windows\SysWOW64\msvfw32.dll - ok
17:59:29.0359 0568 [ E32B288B38C3182D9F890F45B067A5DB ] C:\Windows\SysWOW64\vfwwdm32.dll
17:59:29.0359 0568 C:\Windows\SysWOW64\vfwwdm32.dll - ok
17:59:29.0359 0568 [ DF13A51A5C591887D2EC6AE64CEED0FA ] C:\Windows\SysWOW64\wsock32.dll
17:59:29.0359 0568 C:\Windows\SysWOW64\wsock32.dll - ok
17:59:29.0375 0568 [ 14A1301778D69A64A0E79C4EF97BA42C ] C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\CtPinMgr.dll
17:59:29.0375 0568 C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\CtPinMgr.dll - ok
17:59:29.0375 0568 [ 34E6D8C67E7FD7C917BECFECA326B168 ] C:\Windows\System32\FXSAPI.dll
17:59:29.0375 0568 C:\Windows\System32\FXSAPI.dll - ok
17:59:29.0390 0568 [ 2763D61D132BB47028BA7A6D67E54998 ] C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\CTPControl.dll
17:59:29.0390 0568 C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\CTPControl.dll - ok
17:59:29.0390 0568 [ 220159496484D34009DE71CA1A68E0D4 ] C:\Windows\System32\wbem\NCProv.dll
17:59:29.0390 0568 C:\Windows\System32\wbem\NCProv.dll - ok
17:59:29.0390 0568 [ 4F3CD1C59EA71401E155C432BCECE180 ] C:\Windows\System32\PortableDeviceTypes.dll
17:59:29.0390 0568 C:\Windows\System32\PortableDeviceTypes.dll - ok
17:59:29.0406 0568 [ 5C5209B04B1942A534259C2AB7BB1EEA ] C:\Program Files (x86)\Dell Support Center\bin\libeay32.dll
17:59:29.0406 0568 C:\Program Files (x86)\Dell Support Center\bin\libeay32.dll - ok
17:59:29.0406 0568 [ 8BF179E9513F70EA95DE2D539650EAF0 ] C:\Windows\SysWOW64\ksproxy.ax
17:59:29.0406 0568 C:\Windows\SysWOW64\ksproxy.ax - ok
17:59:29.0406 0568 [ 9C67F6BBDA3881CFD02095160CF91576 ] C:\Windows\SysWOW64\ksuser.dll
17:59:29.0406 0568 C:\Windows\SysWOW64\ksuser.dll - ok
17:59:29.0422 0568 [ C8E8B8239FCF17BEA10E751BE5854631 ] C:\Windows\System32\FXSRESM.dll
17:59:29.0422 0568 C:\Windows\System32\FXSRESM.dll - ok
17:59:29.0422 0568 [ C373124A5CA723B53C0948B6343E4C87 ] C:\Windows\System32\igfxext.exe
17:59:29.0422 0568 C:\Windows\System32\igfxext.exe - ok
17:59:29.0422 0568 [ 045DB4EAB4FBD23210E85ECC3F464A2E ] C:\Windows\SysWOW64\nlaapi.dll
17:59:29.0422 0568 C:\Windows\SysWOW64\nlaapi.dll - ok
17:59:29.0437 0568 [ A151EF45E062C71B0CA34054C40BC6E4 ] C:\Program Files (x86)\Dell Support Center\bin\SupportSoft.Agent.Sprocket.SupportMessage.dll
17:59:29.0437 0568 C:\Program Files (x86)\Dell Support Center\bin\SupportSoft.Agent.Sprocket.SupportMessage.dll - ok
17:59:29.0437 0568 [ 0C35A42D35B5655A503EE5EC05E28881 ] C:\Windows\System32\igfxexps.dll
17:59:29.0437 0568 C:\Windows\System32\igfxexps.dll - ok
17:59:29.0437 0568 [ 2C5B8A680A90E96B1EC0D6DA0505E685 ] C:\Windows\System32\srchadmin.dll
17:59:29.0437 0568 C:\Windows\System32\srchadmin.dll - ok
17:59:29.0453 0568 [ 5DF5D8CFD9B9573FA3B2C89D9061A240 ] C:\Windows\SysWOW64\winrnr.dll
17:59:29.0453 0568 C:\Windows\SysWOW64\winrnr.dll - ok
17:59:29.0453 0568 [ 70F03B29A62194E69911952B3640D9D2 ] C:\Windows\SysWOW64\msdmo.dll
17:59:29.0453 0568 C:\Windows\SysWOW64\msdmo.dll - ok
17:59:29.0453 0568 [ 4DDACA8A66B95ABA02812FF3C13DE198 ] C:\Windows\SysWOW64\vidcap.ax
17:59:29.0453 0568 C:\Windows\SysWOW64\vidcap.ax - ok
17:59:29.0468 0568 [ D607B2F1BEE3992AA6C2C92C0A2F0855 ] C:\Windows\System32\FXSSVC.exe
17:59:29.0468 0568 C:\Windows\System32\FXSSVC.exe - ok
17:59:29.0468 0568 [ 0B7E85364CB878E2AD531DB7B601A9E5 ] C:\Windows\SysWOW64\NapiNSP.dll
17:59:29.0468 0568 C:\Windows\SysWOW64\NapiNSP.dll - ok
17:59:29.0468 0568 [ 8CD2A697B18069A62A035E756E51E934 ] C:\Windows\System32\SearchIndexer.exe
17:59:29.0468 0568 C:\Windows\System32\SearchIndexer.exe - ok
17:59:29.0484 0568 [ 3F41165F3F56547D0BACA826C2651A77 ] C:\Windows\SysWOW64\Kswdmcap.ax
17:59:29.0484 0568 C:\Windows\SysWOW64\Kswdmcap.ax - ok
17:59:29.0484 0568 [ 5CF640EDDB1E40A5AB1BB743BCDEC610 ] C:\Windows\SysWOW64\pnrpnsp.dll
17:59:29.0484 0568 C:\Windows\SysWOW64\pnrpnsp.dll - ok
17:59:29.0484 0568 [ 74C76BB54B26CE50C4BC755F92687C63 ] C:\Windows\SysWOW64\mfc42.dll
17:59:29.0484 0568 C:\Windows\SysWOW64\mfc42.dll - ok
17:59:29.0500 0568 [ 3A2BB97D54A2189C9900A735C0531B59 ] C:\Windows\SysWOW64\wshbth.dll
17:59:29.0500 0568 C:\Windows\SysWOW64\wshbth.dll - ok
17:59:29.0500 0568 [ 3819AD4329303EAC88480CA16A650735 ] C:\Windows\System32\UIAnimation.dll
17:59:29.0500 0568 C:\Windows\System32\UIAnimation.dll - ok
17:59:29.0500 0568 [ CAF01663BA1865FBBB1958D060B5D514 ] C:\Program Files\WIDCOMM\Bluetooth Software\BTNCopy.dll
17:59:29.0500 0568 C:\Program Files\WIDCOMM\Bluetooth Software\BTNCopy.dll - ok
17:59:29.0515 0568 [ 98947A11E0EB117C8E503DE3EBD3955D ] C:\Program Files (x86)\Dell Support Center\bin\SupportSoft.Agent.Sprocket.dll
17:59:29.0515 0568 C:\Program Files (x86)\Dell Support Center\bin\SupportSoft.Agent.Sprocket.dll - ok
17:59:29.0515 0568 [ EE8E76761A4AEE5685D92A770A3B4B1F ] C:\Program Files (x86)\Dell Support Center\gs_agent\dsc.exe
17:59:29.0515 0568 C:\Program Files (x86)\Dell Support Center\gs_agent\dsc.exe - ok
17:59:29.0531 0568 [ 6A6B1DF229DB655EFDF83F936710D84C ] C:\Windows\assembly\NativeImages_v2.0.50727_64\PresentationFramewo#\916af5e5c39e1226e0b87a80e3a979f2\PresentationFramework.ni.dll
17:59:29.0531 0568 C:\Windows\assembly\NativeImages_v2.0.50727_64\PresentationFramewo#\916af5e5c39e1226e0b87a80e3a979f2\PresentationFramework.ni.dll - ok
17:59:29.0531 0568 [ F8F532C7509C3238C9827BAE861A48D7 ] C:\Windows\System32\tquery.dll
17:59:29.0531 0568 C:\Windows\System32\tquery.dll - ok
17:59:29.0531 0568 [ BA4A19DE93FBDFE6DB5F0EBC99732A06 ] C:\Windows\System32\mssrch.dll
17:59:29.0531 0568 C:\Windows\System32\mssrch.dll - ok
17:59:29.0546 0568 [ 81E9339611B22ACE2E2D7B42F76C0F34 ] C:\Windows\assembly\GAC_64\PresentationCore\3.0.0.0__31bf3856ad364e35\PresentationCore.dll
17:59:29.0546 0568 C:\Windows\assembly\GAC_64\PresentationCore\3.0.0.0__31bf3856ad364e35\PresentationCore.dll - ok
17:59:29.0546 0568 [ 2C64AF297F12582BD95D7D94C18E464C ] C:\Windows\System32\esent.dll
17:59:29.0546 0568 C:\Windows\System32\esent.dll - ok
17:59:29.0546 0568 [ 3121A79D13A61562BE9CC902CD46B542 ] C:\Windows\System32\msidle.dll
17:59:29.0546 0568 C:\Windows\System32\msidle.dll - ok
17:59:29.0562 0568 [ ACE1BB07E0377E37A2C514CD2EC119B1 ] C:\Windows\System32\mssprxy.dll
17:59:29.0562 0568 C:\Windows\System32\mssprxy.dll - ok
17:59:29.0562 0568 [ 847D3AE376C0817161A14A82C8922A9E ] C:\Windows\System32\netman.dll
17:59:29.0562 0568 C:\Windows\System32\netman.dll - ok
17:59:29.0562 0568 [ 27AB587E5F0696590EF8B83A52952B7B ] C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\wpfgfx_v0300.dll
17:59:29.0562 0568 C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\wpfgfx_v0300.dll - ok
17:59:29.0578 0568 [ 7F0C323FE3DA28AA4AA1BDA3F575707F ] C:\Windows\System32\qmgr.dll
17:59:29.0578 0568 C:\Windows\System32\qmgr.dll - ok
17:59:29.0578 0568 [ C9FB9038B15036CA28CF0B4BE2BED9BD ] C:\Windows\System32\en-US\tquery.dll.mui
17:59:29.0578 0568 C:\Windows\System32\en-US\tquery.dll.mui - ok
17:59:29.0578 0568 [ D2155709E336C3BC15729EB87FEC6064 ] C:\Windows\System32\rasdlg.dll
17:59:29.0578 0568 C:\Windows\System32\rasdlg.dll - ok
17:59:29.0593 0568 [ 4E75477E8BFA55C6F1F2688FB553F0C5 ] C:\Windows\System32\bitsperf.dll
17:59:29.0593 0568 C:\Windows\System32\bitsperf.dll - ok
17:59:29.0593 0568 [ BB68579E181956E37EB11F9083C01CF3 ] C:\Windows\System32\dot3api.dll
17:59:29.0593 0568 C:\Windows\System32\dot3api.dll - ok
17:59:29.0593 0568 [ D64D99EC088B54FFE8EE67A480386C20 ] C:\Windows\Microsoft.NET\Framework64\v2.0.50727\Culture.dll
17:59:29.0593 0568 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\Culture.dll - ok
17:59:29.0609 0568 [ D9431DCF90B0253773F51FDEFE7FD42F ] C:\Windows\System32\bitsigd.dll
17:59:29.0609 0568 C:\Windows\System32\bitsigd.dll - ok
17:59:29.0609 0568 [ E4FCA0F99A41E460C84016DEFD31E6EF ] C:\Windows\System32\wlanhlp.dll
17:59:29.0609 0568 C:\Windows\System32\wlanhlp.dll - ok
17:59:29.0624 0568 [ 0EC4190B22A0E37010CC69371432FC0C ] C:\Windows\System32\gfxSrvc.dll
17:59:29.0624 0568 C:\Windows\System32\gfxSrvc.dll - ok
17:59:29.0624 0568 [ 9E29BC11A70165635CC10D42E64CFEE1 ] C:\Windows\System32\upnp.dll
17:59:29.0624 0568 C:\Windows\System32\upnp.dll - ok
17:59:29.0624 0568 [ 58957A04853F47B791D68B960258043C ] C:\Windows\System32\IGFXDEVLib.dll
17:59:29.0624 0568 C:\Windows\System32\IGFXDEVLib.dll - ok
17:59:29.0640 0568 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] C:\Windows\System32\ssdpsrv.dll
17:59:29.0640 0568 C:\Windows\System32\ssdpsrv.dll - ok
17:59:29.0640 0568 [ 4509387963DF66A6401752A0C631F6E8 ] C:\Windows\System32\httpapi.dll
17:59:29.0640 0568 C:\Windows\System32\httpapi.dll - ok
17:59:29.0640 0568 [ 884264AC597B690C5707C89723BB8E7B ] C:\Windows\System32\tapisrv.dll
17:59:29.0640 0568 C:\Windows\System32\tapisrv.dll - ok
17:59:29.0656 0568 [ D7CEAEDD5F75D2C8A2E80887D7C114CE ] C:\Windows\System32\webcheck.dll
17:59:29.0656 0568 C:\Windows\System32\webcheck.dll - ok
17:59:29.0656 0568 [ 5225207BDE8C090CE92A18C61180650C ] C:\Windows\System32\vdsldr.exe
17:59:29.0656 0568 C:\Windows\System32\vdsldr.exe - ok
17:59:29.0656 0568 [ 318285F1590C4484E3253BA2B189D2DF ] C:\Windows\System32\d3d9.dll
17:59:29.0656 0568 C:\Windows\System32\d3d9.dll - ok
17:59:29.0671 0568 [ 47394ED3D16D053F5906EFE5AB51CC83 ] C:\Windows\System32\rasmans.dll
17:59:29.0671 0568 C:\Windows\System32\rasmans.dll - ok
17:59:29.0671 0568 [ 8494E126F0B10180F3293AF861CE1F7A ] C:\Windows\System32\mlang.dll
17:59:29.0671 0568 C:\Windows\System32\mlang.dll - ok
17:59:29.0671 0568 [ 44C96B48112EB24AE7764EBF1C527000 ] C:\Windows\System32\rastapi.dll
17:59:29.0671 0568 C:\Windows\System32\rastapi.dll - ok
17:59:29.0687 0568 [ E6F66F31422C44EDC00D9C9329E7DF60 ] C:\Windows\System32\SyncCenter.dll
17:59:29.0687 0568 C:\Windows\System32\SyncCenter.dll - ok
17:59:29.0687 0568 [ 40E6719D69AAB9B0841F92AEC6E75DD1 ] C:\Windows\System32\vdsutil.dll
17:59:29.0687 0568 C:\Windows\System32\vdsutil.dll - ok
17:59:29.0687 0568 [ 94082E1E52D8BC63F4D6F57E8CD4E4F9 ] C:\Windows\System32\vds_ps.dll
17:59:29.0687 0568 C:\Windows\System32\vds_ps.dll - ok
17:59:29.0702 0568 [ 3044D07ABDF4BBEA27E2EE7B1E0C0C65 ] C:\Windows\System32\d3d8thk.dll
17:59:29.0702 0568 C:\Windows\System32\d3d8thk.dll - ok
17:59:29.0702 0568 [ AC5DF873913B00E554D8F553459BC431 ] C:\Windows\System32\qmgrprxy.dll
17:59:29.0702 0568 C:\Windows\System32\qmgrprxy.dll - ok
17:59:29.0702 0568 [ EE25B470C39126B08055A7CB71A67A58 ] C:\Windows\System32\unimdm.tsp
17:59:29.0702 0568 C:\Windows\System32\unimdm.tsp - ok
17:59:29.0718 0568 [ 9C253164E7016B42591F08BEB90FB494 ] C:\Windows\System32\igdumd64.dll
17:59:29.0718 0568 C:\Windows\System32\igdumd64.dll - ok
17:59:29.0718 0568 [ F509B44D94DB9C832CA26297BE0CC04D ] C:\Windows\SysWOW64\vds_ps.dll
17:59:29.0718 0568 C:\Windows\SysWOW64\vds_ps.dll - ok
17:59:29.0718 0568 [ 94B7DF336815B47236724019FAB24B7C ] C:\Windows\System32\uniplat.dll
17:59:29.0718 0568 C:\Windows\System32\uniplat.dll - ok
17:59:29.0734 0568 [ 44D73E0BBC1D3C8981304BA15135C2F2 ] C:\Windows\System32\vds.exe
17:59:29.0734 0568 C:\Windows\System32\vds.exe - ok
17:59:29.0734 0568 [ 41326DD08ACC0CDC5F8177AF96C066E8 ] C:\Windows\System32\kmddsp.tsp
17:59:29.0734 0568 C:\Windows\System32\kmddsp.tsp - ok
17:59:29.0734 0568 [ 85B45B4B285B159ACDB355FC8C1E8925 ] C:\Windows\SysWOW64\qmgrprxy.dll
17:59:29.0734 0568 C:\Windows\SysWOW64\qmgrprxy.dll - ok
17:59:29.0749 0568 [ 1D6BC2769DA66C1145F4DA5A65F52E61 ] C:\Windows\System32\ndptsp.tsp
17:59:29.0749 0568 C:\Windows\System32\ndptsp.tsp - ok
17:59:29.0749 0568 [ 7C1BAE7D23D4874FEE256A2B9C00E019 ] C:\Windows\System32\hidphone.tsp
17:59:29.0749 0568 C:\Windows\System32\hidphone.tsp - ok
17:59:29.0765 0568 [ 8B886A0AC14EAA8599142887991A5A2E ] C:\Windows\System32\imapi2.dll
17:59:29.0765 0568 C:\Windows\System32\imapi2.dll - ok
17:59:29.0765 0568 [ DF627325D25191236BABA895D5A51EF6 ] C:\Windows\System32\rasppp.dll
17:59:29.0765 0568 C:\Windows\System32\rasppp.dll - ok
17:59:29.0765 0568 [ E3DA135D4DD0D34512D4FEBCB6ED760E ] C:\Windows\System32\vpnike.dll
17:59:29.0765 0568 C:\Windows\System32\vpnike.dll - ok
17:59:29.0780 0568 [ 1482CC99F7E2DA2FECF59C6A774FED0A ] C:\Windows\System32\raschap.dll
17:59:29.0780 0568 C:\Windows\System32\raschap.dll - ok
17:59:29.0780 0568 [ F0AAB2A76A7AF04C70A818E96BAF3E64 ] C:\Windows\System32\hgcpl.dll
17:59:29.0780 0568 C:\Windows\System32\hgcpl.dll - ok
17:59:29.0780 0568 [ 5DA219F57A9076FB6FBD3C9C3713A672 ] C:\Windows\System32\WWanAPI.dll
17:59:29.0780 0568 C:\Windows\System32\WWanAPI.dll - ok
17:59:29.0796 0568 [ 62C7AACC746C9723468A8F2169ED3E85 ] C:\Windows\System32\wwapi.dll
17:59:29.0796 0568 C:\Windows\System32\wwapi.dll - ok
17:59:29.0796 0568 [ 0B9F7D42D745038437FAE70D97F9AD5A ] C:\Windows\System32\QAGENT.DLL
17:59:29.0796 0568 C:\Windows\System32\QAGENT.DLL - ok
17:59:29.0796 0568 [ A0C69A8661CCEB20DB60A4FA35A2FBE4 ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Xml\c40cbbdf7af03daedb16f4d9ef1b6f5f\System.Xml.ni.dll
17:59:29.0796 0568 C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Xml\c40cbbdf7af03daedb16f4d9ef1b6f5f\System.Xml.ni.dll - ok
17:59:29.0812 0568 [ 8541447303958819ADB46B557ADD3750 ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Configuration\dcadcfb938ccdd3f70859fdcdd329ec5\System.Configuration.ni.dll
17:59:29.0812 0568 C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Configuration\dcadcfb938ccdd3f70859fdcdd329ec5\System.Configuration.ni.dll - ok
17:59:29.0812 0568 [ 80C834BA6B844C4B717F2465C4E8EC0F ] C:\Windows\System32\WindowsCodecsExt.dll
17:59:29.0812 0568 C:\Windows\System32\WindowsCodecsExt.dll - ok
17:59:29.0812 0568 [ 1D296F090ED401967B30BD2B970DC306 ] C:\Windows\System32\icm32.dll
17:59:29.0812 0568 C:\Windows\System32\icm32.dll - ok
17:59:29.0827 0568 [ 020DDBA420E020F84BDEDCC8C65B3A56 ] C:\Windows\System32\osuninst.dll
17:59:29.0827 0568 C:\Windows\System32\osuninst.dll - ok
17:59:29.0827 0568 [ 3D1AE0543DD9FBA55409BF0A5103CA3D ] C:\Windows\System32\uexfat.dll
17:59:29.0827 0568 C:\Windows\System32\uexfat.dll - ok
17:59:29.0827 0568 [ EE11A3F03D8B801B721BC6D0089BDD9C ] C:\Windows\System32\ulib.dll
17:59:29.0827 0568 C:\Windows\System32\ulib.dll - ok
17:59:29.0843 0568 [ 1751E9EB7974C728F7445C10C3E175AD ] C:\Windows\System32\ifsutil.dll
17:59:29.0843 0568 C:\Windows\System32\ifsutil.dll - ok
17:59:29.0843 0568 [ C3804346CDF9A8744084EEBA6BA739AF ] C:\Windows\System32\uudf.dll
17:59:29.0843 0568 C:\Windows\System32\uudf.dll - ok
17:59:29.0843 0568 [ C26A17C8F15495DAE02907FC4E449977 ] C:\Windows\System32\untfs.dll
17:59:29.0843 0568 C:\Windows\System32\untfs.dll - ok
17:59:29.0858 0568 [ CC37D9A25FF8D8CF12FC2F512C100F45 ] C:\Windows\System32\ufat.dll
17:59:29.0858 0568 C:\Windows\System32\ufat.dll - ok
17:59:29.0858 0568 [ 491DA8248209835532DAABF18B0215DA ] C:\Windows\System32\fmifs.dll
17:59:29.0858 0568 C:\Windows\System32\fmifs.dll - ok
17:59:29.0874 0568 [ 9FD42184CC2CE481207D6AF62D08828C ] C:\Windows\assembly\NativeImages_v2.0.50727_64\WindowsFormsIntegra#\0599e722d086c85c54a6dc71de5781f5\WindowsFormsIntegration.ni.dll
17:59:29.0874 0568 C:\Windows\assembly\NativeImages_v2.0.50727_64\WindowsFormsIntegra#\0599e722d086c85c54a6dc71de5781f5\WindowsFormsIntegration.ni.dll - ok
17:59:29.0874 0568 [ 9E3D77B249DBB8C116BD060992C06D01 ] C:\Windows\assembly\NativeImages_v2.0.50727_64\PresentationFramewo#\5a95213214431ffa96c6e4dbfa36345e\PresentationFramework.Aero.ni.dll
17:59:29.0874 0568 C:\Windows\assembly\NativeImages_v2.0.50727_64\PresentationFramewo#\5a95213214431ffa96c6e4dbfa36345e\PresentationFramework.Aero.ni.dll - ok
17:59:29.0874 0568 [ 86F8145F5FD182F8C36337A351889F92 ] C:\Windows\System32\vdsdyn.dll
17:59:29.0874 0568 C:\Windows\System32\vdsdyn.dll - ok
17:59:29.0890 0568 [ D6A7F54D035FAAA0B13D38CF17789144 ] C:\Windows\System32\vdsbas.dll
17:59:29.0890 0568 C:\Windows\System32\vdsbas.dll - ok
17:59:29.0890 0568 [ EFEA483CB72A27915FA97AF700FDA05C ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Drawing\6ea40f2da0e2321428a7bdd387e475fd\System.Drawing.ni.dll
17:59:29.0890 0568 C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Drawing\6ea40f2da0e2321428a7bdd387e475fd\System.Drawing.ni.dll - ok
17:59:29.0890 0568 [ ACCBA604D34842844133A731F8045B32 ] C:\Windows\SysWOW64\sxs.dll
17:59:29.0890 0568 C:\Windows\SysWOW64\sxs.dll - ok
17:59:29.0905 0568 [ D2D154D1842219A0620459C3C34EFD9D ] C:\Windows\System32\vdsvd.dll
17:59:29.0905 0568 C:\Windows\System32\vdsvd.dll - ok
17:59:29.0905 0568 [ BBB44E9207E7F5A8D931AA6C74962C77 ] C:\Windows\System32\virtdisk.dll
17:59:29.0905 0568 C:\Windows\System32\virtdisk.dll - ok
17:59:29.0905 0568 [ BB197F54A8F69EEA8356B7F70E6D3A20 ] C:\Windows\SysWOW64\mshtml.dll
17:59:29.0905 0568 C:\Windows\SysWOW64\mshtml.dll - ok
17:59:29.0921 0568 [ 89A680191F2DD811BBD435D12B0D54E4 ] C:\Windows\System32\hbaapi.dll
17:59:29.0921 0568 C:\Windows\System32\hbaapi.dll - ok
17:59:29.0921 0568 [ E11E3F3BBEFDC5C0C160BE13B65E25E4 ] C:\Windows\System32\iscsidsc.dll
17:59:29.0921 0568 C:\Windows\System32\iscsidsc.dll - ok
17:59:29.0921 0568 [ D152B2BDCFA6A220493582EC1F2B8416 ] C:\Windows\System32\iscsium.dll
17:59:29.0921 0568 C:\Windows\System32\iscsium.dll - ok
17:59:29.0936 0568 [ 1D1EAA16D193C6A2D45981ED3914D22A ] C:\Windows\SysWOW64\msimtf.dll
17:59:29.0936 0568 C:\Windows\SysWOW64\msimtf.dll - ok
17:59:29.0936 0568 [ 35AAE2E841AA1A949775168E119482C9 ] C:\Windows\SysWOW64\msls31.dll
17:59:29.0936 0568 C:\Windows\SysWOW64\msls31.dll - ok
17:59:29.0936 0568 [ 394373142655ACCF49D64AAD466C86FF ] C:\Windows\SysWOW64\jscript9.dll
17:59:29.0936 0568 C:\Windows\SysWOW64\jscript9.dll - ok
17:59:29.0952 0568 [ 9FDF43178419CB0D4B50373C50396BDF ] C:\Windows\SysWOW64\d2d1.dll
17:59:29.0952 0568 C:\Windows\SysWOW64\d2d1.dll - ok
17:59:29.0952 0568 [ 9F9B0AD8804ECFF8CBD279992DCF7210 ] C:\Windows\SysWOW64\DWrite.dll
17:59:29.0952 0568 C:\Windows\SysWOW64\DWrite.dll - ok
17:59:29.0952 0568 [ CB5E4B9C319E3C6BB363EB7E58A4A051 ] C:\Windows\System32\FntCache.dll
17:59:29.0952 0568 C:\Windows\System32\FntCache.dll - ok
17:59:29.0968 0568 [ DD76301614636306414EFA94A9AC5A03 ] C:\Windows\SysWOW64\dxgi.dll
17:59:29.0968 0568 C:\Windows\SysWOW64\dxgi.dll - ok
17:59:29.0968 0568 [ AD8F6914F7A9AC28047389BE7AF56EBF ] C:\Windows\SysWOW64\d3d10_1.dll
17:59:29.0968 0568 C:\Windows\SysWOW64\d3d10_1.dll - ok
17:59:29.0983 0568 [ 9103E020906FC7A166F380EF2D2516B2 ] C:\Windows\SysWOW64\d3d10_1core.dll
17:59:29.0983 0568 C:\Windows\SysWOW64\d3d10_1core.dll - ok
17:59:29.0983 0568 [ BEADABADC909D2C7F59CD3DEA77EE67E ] C:\Windows\SysWOW64\d3d10warp.dll
17:59:29.0983 0568 C:\Windows\SysWOW64\d3d10warp.dll - ok
17:59:29.0983 0568 ============================================================
17:59:29.0983 0568 Scan finished
17:59:29.0983 0568 ============================================================
17:59:29.0999 3716 Detected object count: 7
17:59:29.0999 3716 Actual detected object count: 7
17:59:59.0784 3716 Change Modem Device Service ( UnsignedFile.Multi.Generic ) - skipped by user
17:59:59.0784 3716 Change Modem Device Service ( UnsignedFile.Multi.Generic ) - User select action: Skip
17:59:59.0784 3716 Creative ALchemy AL6 Licensing Service ( UnsignedFile.Multi.Generic ) - skipped by user
17:59:59.0784 3716 Creative ALchemy AL6 Licensing Service ( UnsignedFile.Multi.Generic ) - User select action: Skip
17:59:59.0784 3716 Creative Audio Engine Licensing Service ( UnsignedFile.Multi.Generic ) - skipped by user
17:59:59.0784 3716 Creative Audio Engine Licensing Service ( UnsignedFile.Multi.Generic ) - User select action: Skip
17:59:59.0784 3716 CTAudSvcService ( UnsignedFile.Multi.Generic ) - skipped by user
17:59:59.0784 3716 CTAudSvcService ( UnsignedFile.Multi.Generic ) - User select action: Skip
17:59:59.0794 3716 DockLoginService ( UnsignedFile.Multi.Generic ) - skipped by user
17:59:59.0794 3716 DockLoginService ( UnsignedFile.Multi.Generic ) - User select action: Skip
17:59:59.0794 3716 FLEXnet Licensing Service ( UnsignedFile.Multi.Generic ) - skipped by user
17:59:59.0794 3716 FLEXnet Licensing Service ( UnsignedFile.Multi.Generic ) - User select action: Skip
17:59:59.0794 3716 Sound Blaster X-Fi MB Licensing Service ( UnsignedFile.Multi.Generic ) - skipped by user
17:59:59.0794 3716 Sound Blaster X-Fi MB Licensing Service ( UnsignedFile.Multi.Generic ) - User select action: Skip
18:00:12.0230 0368 Deinitialize success

********************

#13 B-boy/StyLe/

B-boy/StyLe/

    Bleeping Freestyler


  • Malware Response Team
  • 6,270 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Bulgaria
  • Local time:02:25 AM

Posted 24 September 2012 - 05:37 AM

Hi,



Let's check for leftovers.
The most of them should take no more than 5 minutes each.
Eset could take up to an hour or two depending on the size of your hard drive and the speed of your computer.
You can run these scans at night when you are not there and the computer is idle.



STEP 1


  • Please download RogueKiller and save to the desktop.
  • Close all windows and browsers
  • Right-click the program and select 'Run as Administrator'
  • Press the scan button.
  • A report opens on the desktop named - RKreport.txt
  • Please post it in your next reply.




STEP 2


  • Please download the newest version of Malwarebytes' Anti-Malware and install it.
  • Please start the application by double-click on it's icon.
  • Once the program has loaded go to the UPDATE tab and check for updates.
  • When the update is complete, select the Scanner tab
  • Select Perform quick scan, then click Scan.
  • When the scan is complete, click OK, then Show Results to view the results.
  • Be sure that everything is checked, and click Remove Selected.
  • When completed, a log will open in Notepad.
  • Please save it to a convenient location and post the results in your next reply.



STEP 3


I'd like us to scan your machine with ESET OnlineScan


  • Hold down Control and click on the following link to open ESET OnlineScan in a new window.
    ESET OnlineScan
  • Click the Run ESET Online Scanner button.
  • For alternate browsers only: (Microsoft Internet Explorer users can skip these steps)
    • Click on Posted Image to download the ESET Smart Installer. Save it to your desktop.
    • Double click on the Posted Image icon on your desktop.
  • Check Posted Image
  • Click the Posted Image button.
  • Accept any security warnings from your browser.
  • Make sure that the option Remove found threats is NOT checked, and the option Scan archives is checked.
  • Now click on Advanced Settings and select the following:
    • Scan for potentially unwanted applications
    • Scan for potentially unsafe applications
    • Enable Anti-Stealth Technology
  • Push the Start button.
  • ESET will then download updates for itself, install itself, and begin scanning your computer. Please be patient as this can take some time.
  • When the scan completes, push Posted Image
  • Push Posted Image, and save the file to your desktop using a unique name, such as ESETScan. Include the contents of this report in your next reply.
  • Push the Posted Image button.
  • Push Posted Image


STEP 4



Download the adwCleaner
  • Run the Tool
    Windows Vista and Windows 7 users:
    Right click in the adwCleaner.exe and select the option
    Posted Image
  • Select the Search button.
  • When the scan completes, it will open a notepad windows.
  • Please, copy the content of this file in your next reply.


STEP 5



Please download Farbar Service Scanner and run it on the computer with the issue.
  • Make sure that all options are checked.
  • Press "Scan".
  • It will create a log (FSS.txt) in the same directory the tool is run.
  • Please copy and paste the log to your reply.


STEP 6



Download Security Check by screen317 from here.
  • Save it to your Desktop.
  • Double click SecurityCheck.exe and follow the onscreen instructions inside of the black box.
  • A Notepad document should open automatically called checkup.txt; please post the contents of that document.



Regards,
Georgi

qnfKk.jpg
My help is always free of charge. If you appreciate my work, you can buy me a beer or two by clicking here - paypal.gif


#14 dappy

dappy
  • Topic Starter

  • Members
  • 39 posts
  • OFFLINE
  •  
  • Local time:03:25 PM

Posted 24 September 2012 - 11:07 PM

- Results of Rougekiller:-

****************

RogueKiller V8.0.5 [09/23/2012] by Tigzy
mail: tigzyRK<at>gmail<dot>com
Feedback: http://www.geekstogo.com/forum/files/file/413-roguekiller/
Blog: http://tigzyrk.blogspot.com

Operating System: Windows 7 (6.1.7600 ) 64 bits version
Started in : Normal mode
User : Dipanshu [Admin rights]
Mode : Scan -- Date : 09/24/2012 18:11:22

Bad processes : 0

Registry Entries : 7
[RUN][BLACKLIST DLL] HKLM\[...]\Run : RunDLLEntry (C:\Windows\system32\RunDLL32.exe C:\Windows\system32\AmbRunE.dll,RunDLLEntry) -> FOUND
[HJ DESK] HKCU\[...]\ClassicStartMenu : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> FOUND
[HJ DESK] HKCU\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> FOUND
[HJ DESK] HKCU\[...]\ClassicStartMenu : {645FF040-5081-101B-9F08-00AA002F954E} (1) -> FOUND
[HJ DESK] HKCU\[...]\NewStartPanel : {645FF040-5081-101B-9F08-00AA002F954E} (1) -> FOUND
[HJ DESK] HKLM\[...]\NewStartPanel : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1) -> FOUND
[HJ DESK] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> FOUND

Particular Files / Folders:

Driver : [NOT LOADED]

Extern Hives:

Infection :

HOSTS File:
--> C:\Windows\system32\drivers\etc\hosts



MBR Check:

+++++ PhysicalDrive0: ST9500420ASG ATA Device +++++
--- User ---
[MBR] 3ce60f2ecc714aecbd20a628559e91a2
[BSP] 0c44dbe6976e4a0886d743521bcc9912 : Windows Vista MBR Code
Partition table:
0 - [XXXXXX] DELL-UTIL (0xde) [VISIBLE] Offset (sectors): 63 | Size: 39 Mo
1 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 80325 | Size: 15000 Mo
2 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 30800325 | Size: 461899 Mo
User = LL1 ... OK!
User = LL2 ... OK!

Finished : << RKreport[1].txt >>
RKreport[1].txt

**********************


- Result of Malwarebyte:-


**********************

Malwarebytes Anti-Malware 1.65.0.1400
www.malwarebytes.org

Database version: v2012.09.25.01

Windows 7 x64 NTFS
Internet Explorer 9.0.8112.16421
Dipanshu :: DIPANSHU-PC [administrator]

9/24/2012 6:16:26 PM
mbam-log-2012-09-24 (18-16-26).txt

Scan type: Quick scan
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 200540
Time elapsed: 4 minute(s), 10 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 0
(No malicious items detected)

(end)

************************

- Results of ESETOnline Scan


************************
C:\Program Files (x86)\Dell DataSafe Local Backup\hstart.exe a variant of Win32/HiddenStart.A application
C:\Program Files (x86)\Dell DataSafe Local Backup\Components\DSUpdate\hstart.exe a variant of Win32/HiddenStart.A application
C:\TDSSKiller_Quarantine\22.09.2012_02.10.51\mbr0000\tdlfs0000\tsk0000.dta Win32/Olmarik.AYI trojan
C:\TDSSKiller_Quarantine\22.09.2012_02.10.51\mbr0000\tdlfs0000\tsk0001.dta Win64/Olmarik.AK trojan
C:\TDSSKiller_Quarantine\22.09.2012_02.10.51\mbr0000\tdlfs0000\tsk0002.dta Win32/Olmarik.AYH trojan
C:\TDSSKiller_Quarantine\22.09.2012_02.10.51\mbr0000\tdlfs0000\tsk0003.dta Win64/Olmarik.AL trojan
C:\TDSSKiller_Quarantine\22.09.2012_02.10.51\mbr0000\tdlfs0000\tsk0004.dta a variant of Win32/Rootkit.Kryptik.MY trojan
C:\TDSSKiller_Quarantine\22.09.2012_02.10.51\mbr0000\tdlfs0000\tsk0005.dta Win64/Olmarik.AK trojan
C:\TDSSKiller_Quarantine\22.09.2012_02.10.51\mbr0000\tdlfs0000\tsk0009.dta Win32/Olmarik.AFK trojan
C:\TDSSKiller_Quarantine\22.09.2012_02.10.51\mbr0000\tdlfs0000\tsk0010.dta Win64/Olmarik.AK trojan
C:\TDSSKiller_Quarantine\22.09.2012_02.10.51\mbr0000\tdlfs0000\tsk0014.dta Win32/Olmarik.AYI trojan
C:\TDSSKiller_Quarantine\23.09.2012_11.49.57\tdlfs0000\tsk0000.dta Win32/Olmarik.AYI trojan
C:\TDSSKiller_Quarantine\23.09.2012_11.49.57\tdlfs0000\tsk0001.dta Win64/Olmarik.AK trojan
C:\TDSSKiller_Quarantine\23.09.2012_11.49.57\tdlfs0000\tsk0002.dta Win32/Olmarik.AYH trojan
C:\TDSSKiller_Quarantine\23.09.2012_11.49.57\tdlfs0000\tsk0003.dta Win64/Olmarik.AL trojan
C:\TDSSKiller_Quarantine\23.09.2012_11.49.57\tdlfs0000\tsk0004.dta a variant of Win32/Rootkit.Kryptik.MY trojan
C:\TDSSKiller_Quarantine\23.09.2012_11.49.57\tdlfs0000\tsk0005.dta Win64/Olmarik.AK trojan
C:\TDSSKiller_Quarantine\23.09.2012_11.49.57\tdlfs0000\tsk0009.dta Win32/Olmarik.AFK trojan
C:\TDSSKiller_Quarantine\23.09.2012_11.49.57\tdlfs0000\tsk0010.dta Win64/Olmarik.AK trojan
C:\TDSSKiller_Quarantine\23.09.2012_11.49.57\tdlfs0000\tsk0014.dta Win32/Olmarik.AYI trojan
C:\Users\Dipanshu\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\14\39acf28e-56cc852e Java/TrojanDownloader.Agent.NCX trojan
C:\Users\Dipanshu\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\23\9083117-653d691b a variant of Win32/Kryptik.YHK trojan
C:\Users\Dipanshu\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\28\25b4199c-6d0a417c multiple threats
C:\Users\Dipanshu\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\3\62651383-62939dd6 probably a variant of Java/Exploit.Agent.NCV trojan
C:\Users\Dipanshu\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\33\5fdee1-712ad1de multiple threats
C:\Users\Dipanshu\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\40\34584228-2bb479b6 multiple threats
C:\Users\Dipanshu\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\43\731292ab-66b81175 Java/TrojanDownloader.Agent.NCI trojan
C:\Users\Dipanshu\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\47\61d4602f-376e1d7a a variant of Java/Rowindal.A trojan
C:\Users\Dipanshu\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\5\58af6cc5-3b0b9974 Win32/Cycbot.AK trojan
C:\Users\Dipanshu\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\52\10c13db4-7b5c13f4 a variant of Java/Exploit.CVE-2009-2843.B trojan
C:\Users\Dipanshu\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\53\5e185af5-12c42aaa Java/Exploit.CVE-2010-3562.A trojan
C:\Users\Dipanshu\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\63\7cc1ceff-2c7cd20e a variant of Java/Rowindal.A trojan
C:\Users\Dipanshu\Downloads\Adobe Photoshop Elements 9.0\keygen.exe a variant of Win32/Keygen.BR application

************************

- Results of ADWClean

************************

# AdwCleaner v2.003 - Logfile created 09/24/2012 at 20:50:42
# Updated 23/09/2012 by Xplode
# Operating system : Windows 7 Home Premium (64 bits)
# User : Dipanshu - DIPANSHU-PC
# Boot Mode : Normal
# Running from : C:\Users\Dipanshu\Desktop\adwcleaner.exe
# Option [Search]


***** [Services] *****


***** [Files / Folders] *****


***** [Registry] *****


***** [Internet Browsers] *****

-\\ Internet Explorer v9.0.8112.16421

[OK] Registry is clean.

-\\ Mozilla Firefox v15.0.1 (en-US)

Profile name : default
File : C:\Users\Dipanshu\AppData\Roaming\Mozilla\Firefox\Profiles\g6vacamy.default\prefs.js

[OK] File is clean.

-\\ Google Chrome v21.0.1180.89

File : C:\Users\Dipanshu\AppData\Local\Google\Chrome\User Data\Default\Preferences

[OK] File is clean.

*************************

AdwCleaner[R1].txt - [836 octets] - [24/09/2012 20:50:42]

########## EOF - C:\AdwCleaner[R1].txt - [895 octets] ##########

**********************************

- Result of FSS :-

**********************************

Farbar Service Scanner Version: 19-09-2012
Ran by Dipanshu (administrator) on 24-09-2012 at 20:53:09
Running from "C:\Users\Dipanshu\Desktop"
Microsoft Windows 7 Home Premium (X64)
Boot Mode: Normal
****************************************************************

Internet Services:
============

Connection Status:
==============
Localhost is accessible.
LAN connected.
Google IP is accessible.
Google.com is accessible.
Yahoo IP is accessible.
Yahoo.com is accessible.


Windows Firewall:
=============

Firewall Disabled Policy:
==================


System Restore:
============

System Restore Disabled Policy:
========================


Action Center:
============

Windows Update:
============

Windows Autoupdate Disabled Policy:
============================


Windows Defender:
==============

Other Services:
==============


File Check:
========
C:\Windows\System32\nsisvc.dll => MD5 is legit
C:\Windows\System32\drivers\nsiproxy.sys => MD5 is legit
C:\Windows\System32\dhcpcore.dll => MD5 is legit
C:\Windows\System32\drivers\afd.sys
[2012-02-15 20:56] - [2011-12-27 20:59] - 0499200 ____A (Microsoft Corporation) DB9D6C6B2CD95A9CA414D045B627422E

C:\Windows\System32\drivers\tdx.sys => MD5 is legit
C:\Windows\System32\Drivers\tcpip.sys
[2012-05-12 01:04] - [2012-03-30 04:09] - 1895280 ____A (Microsoft Corporation) 624C5B3AA4C99B3184BB922D9ECE3FF0

C:\Windows\System32\dnsrslvr.dll => MD5 is legit
C:\Windows\System32\mpssvc.dll
[2009-07-13 17:09] - [2009-07-13 18:41] - 0824832 ____A (Microsoft Corporation) AECAB449567D1846DAD63ECE49E893E3

C:\Windows\System32\bfe.dll => MD5 is legit
C:\Windows\System32\drivers\mpsdrv.sys => MD5 is legit
C:\Windows\System32\SDRSVC.dll
[2009-07-13 16:36] - [2009-07-13 18:41] - 0170496 ____A (Microsoft Corporation) 765A27C3279CE11D14CB9E4F5869FCA5

C:\Windows\System32\vssvc.exe => MD5 is legit
C:\Windows\System32\wscsvc.dll => MD5 is legit
C:\Windows\System32\wbem\WMIsvc.dll => MD5 is legit
C:\Windows\System32\wuaueng.dll => MD5 is legit
C:\Windows\System32\qmgr.dll => MD5 is legit
C:\Windows\System32\es.dll => MD5 is legit
C:\Windows\System32\cryptsvc.dll
[2012-06-13 06:45] - [2012-04-23 22:59] - 0182272 ____A (Microsoft Corporation) F02786B66375292E58C8777082D4396D

C:\Program Files\Windows Defender\MpSvc.dll => MD5 is legit
C:\Windows\System32\ipnathlp.dll => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit


**** End of log ****

***********************************

- Results of SecurityCheck :-

************************
Results of screen317's Security Check version 0.99.51
Windows 7 x64 (UAC is enabled)
Out of date service pack!!
Internet Explorer 9
``````````````Antivirus/Firewall Check:``````````````
Windows Firewall Enabled!
Quick Heal Total Security 13.00
Antivirus out of date!
`````````Anti-malware/Other Utilities Check:`````````
Malwarebytes Anti-Malware version 1.65.0.1400
Java™ 6 Update 26
Java version out of Date!
Adobe Reader 9 Adobe Reader out of Date!
Mozilla Firefox (15.0.1)
Google Chrome 21.0.1180.89
````````Process Check: objlist.exe by Laurent````````
Quick Heal Quick Heal Total Security onlinent.exe
`````````````````System Health check`````````````````
Total Fragmentation on Drive C: 0%
````````````````````End of Log``````````````````````


**************************************

#15 B-boy/StyLe/

B-boy/StyLe/

    Bleeping Freestyler


  • Malware Response Team
  • 6,270 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Bulgaria
  • Local time:02:25 AM

Posted 25 September 2012 - 04:56 PM

Hi,



STEP 1

We need to run an OTL Fix



  • Please reopen Posted Image on your desktop.
  • Copy and Paste the following code into the Posted Image textbox. Do not include the word "Code"
    :files
    C:\Users\Dipanshu\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\14\39acf28e-56cc852e
    C:\Users\Dipanshu\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\23\9083117-653d691b
    C:\Users\Dipanshu\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\28\25b4199c-6d0a417c
    C:\Users\Dipanshu\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\3\62651383-62939dd6
    C:\Users\Dipanshu\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\33\5fdee1-712ad1de
    C:\Users\Dipanshu\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\40\34584228-2bb479b6
    C:\Users\Dipanshu\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\43\731292ab-66b81175
    C:\Users\Dipanshu\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\47\61d4602f-376e1d7a
    C:\Users\Dipanshu\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\5\58af6cc5-3b0b9974
    C:\Users\Dipanshu\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\52\10c13db4-7b5c13f4
    C:\Users\Dipanshu\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\53\5e185af5-12c42aaa
    C:\Users\Dipanshu\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\63\7cc1ceff-2c7cd20e
    C:\Users\Dipanshu\Downloads\Adobe Photoshop Elements 9.0\keygen.exe
    dir /s /a "C:\ProgramData\mN01300GbElO01300" /c
    :reg
    [HKEY_CLASSES_ROOT\CLSID\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InprocServer32]
    ""="%systemroot%\system32\wbem\wbemess.dll"
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InprocServer32]
    ""="%systemroot%\system32\wbem\wbemess.dll"
    :commands
    [emptytemp]
    
  • Push Posted Image
  • OTL may ask to reboot the machine. Please do so if asked.
  • Click Posted Image.
  • A report will open. Copy and Paste that report in your next reply.
  • If a report is not shown please navigate to the C:\_OTL\MovedFiles folder, and open the newest .log file present.
  • Copy/paste the content of the log back here in your next post.


STEP 2


I want you to run this for me

:Run JavaRa

  • Please download JavaRa and unzip it to your desktop.
  • Double-click on JavaRa.exe to start the program.
  • Click on Settings and Place a checkmark beside Create a log file. Click on Back.
  • Click on Update JavaRa Definitions. Click on download. When this is done click on Back.
  • Choose Remove JRE, since you already uninstalled Java, please click on Next.
  • Now click on Perform Removal Routine to remove the older versions of Java installed on your computer.
  • When that's succesfully done, please click OK to close the message.
  • Click on Next. Since you already downloaded the latest version of Java, please click on Next.
  • Now click on Close this wizard and click Finish.
  • From the main menu please choose Additional tasks
  • Place a checkmark beside Remove Outdated JRE Firefox Extentions and click Run. Mozilla Firefox should be closed before running this task.
  • When that's succesfully done you will see a message at the top saying: "Selected tasks completed successfully".
  • A log file should be created in the same directory as JavaRa.
  • Please post the log in your next Reply.
  • Close JavaRa by clicking the red cross button.



Also please let me know how are things now.



Regards,
Georgi

qnfKk.jpg
My help is always free of charge. If you appreciate my work, you can buy me a beer or two by clicking here - paypal.gif





0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users