Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Server 2003 system process contantly Uploading


  • Please log in to reply
18 replies to this topic

#1 pnasty101

pnasty101

  • Members
  • 11 posts
  • OFFLINE
  •  
  • Local time:02:16 PM

Posted 07 September 2012 - 02:04 PM

We have a Server 2003 and it is constantly uploading data. It is maxing out our bandwidth making are internet very slow with extremely high ping times. I've downloaded Netbalancer and it says its coming from "System", which then says unknown as its path. It also happens randomly. It'll be gone for 3 days, then show up for a day, and sometimes it'll start/stop 6-7 times throughout any given workday.

I've scanned the server with Sophos antivirus, Malwarebytes, and Spybot. The only thing found was a couple cookies by Spybot which did not solve the problem. I'm going to tun a Microsoft Safety Scanner test tonight and see if that turns up anything.

For now; I have limited the system process using Netbalancer.

Below is a screen shot of the process and massive upload!

Posted Image

BC AdBot (Login to Remove)

 


#2 dev00790

dev00790

    Bleeping Chocoholic


  • Members
  • 5,037 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:UK
  • Local time:06:16 PM

Posted 08 September 2012 - 12:03 PM

Is this a server used at work, or is it a personal (e.g. at home) server?

Regards, dev00790

---------------------------------------

Marge: "Homer, the plant called. They said if you don't show up tomorrow don't bother showing up on Monday." Homer: "Woo-hoo! Four-day weekend!"I do not reply to Private Messages (PMs) asking for assistance - please use the forums instead. If I have been helping you, and I have not replied to your latest post in 48 hours please send me a PM. My Blog


#3 pnasty101

pnasty101
  • Topic Starter

  • Members
  • 11 posts
  • OFFLINE
  •  
  • Local time:02:16 PM

Posted 08 September 2012 - 09:58 PM

It's our main server at a small business. About 14 employees and it's configured with exchange, AD, DHCP, DNS, Sophos control center.

I ran a Microsoft Safety Scanner test tonight and it said there is 7 infected files. However in the infected list only 1 executable file came in. It was something within Dameware/MiniRemoteControl/......./xxxxx.exe

Dameware is installed on the server however I have never used it, I'm going to check with my co-workers to see if they know anything about it. If not then it will be uninstalled and I will then remove the file/s the safety scanner has found.

Any ideas?

After doing some google searching I found that Dameware has many vulnerbilities below v3.73 and they can be exploited to gain access to the server. Not good.

Edited by pnasty101, 08 September 2012 - 10:12 PM.


#4 dev00790

dev00790

    Bleeping Chocoholic


  • Members
  • 5,037 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:UK
  • Local time:06:16 PM

Posted 09 September 2012 - 01:28 AM

Does the business have an IT department?
- If yes, we recommend you seeking their advice first.
- If no, then please let us know and I'll look into the available options for you at BC.

Regards, dev00790

---------------------------------------

Marge: "Homer, the plant called. They said if you don't show up tomorrow don't bother showing up on Monday." Homer: "Woo-hoo! Four-day weekend!"I do not reply to Private Messages (PMs) asking for assistance - please use the forums instead. If I have been helping you, and I have not replied to your latest post in 48 hours please send me a PM. My Blog


#5 pnasty101

pnasty101
  • Topic Starter

  • Members
  • 11 posts
  • OFFLINE
  •  
  • Local time:02:16 PM

Posted 10 September 2012 - 11:30 AM

Yes, I am the IT department. We are a small company so we all have multiple duties.

I've called the business who originally set up this server for us, and they seemed to have no idea on what to do.
Is this not the right place for enterprise questions?

#6 dev00790

dev00790

    Bleeping Chocoholic


  • Members
  • 5,037 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:UK
  • Local time:06:16 PM

Posted 10 September 2012 - 03:16 PM

:exclame: Company Computers

Since this is a company computer, you may need to obtain permission to carry out the steps I give to you. We will be making system-wide changes to this computer which may be against your company's IT policy. Such action may result in disciplinary action being taken against you. I must stress that I, in no way, accept liability for this or for any unforeseen eventuality as a result of the instructions I give you (including, but not limited to, data loss).

In addition, if your company has an IT support infrastructure I urge you to contact them to resolve your issue - it's what they're paid to do; whereas I volunteer.

In order to continue to receive my help I would like you to confirm that you have the authority to work on the PC and that you accept my conditions.

Regards, dev00790

---------------------------------------

Marge: "Homer, the plant called. They said if you don't show up tomorrow don't bother showing up on Monday." Homer: "Woo-hoo! Four-day weekend!"I do not reply to Private Messages (PMs) asking for assistance - please use the forums instead. If I have been helping you, and I have not replied to your latest post in 48 hours please send me a PM. My Blog


#7 pnasty101

pnasty101
  • Topic Starter

  • Members
  • 11 posts
  • OFFLINE
  •  
  • Local time:02:16 PM

Posted 10 September 2012 - 03:20 PM

I confirm that I have the authority to work on the PC and I accept your conditions.

Thanks for your help!

#8 dev00790

dev00790

    Bleeping Chocoholic


  • Members
  • 5,037 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:UK
  • Local time:06:16 PM

Posted 10 September 2012 - 03:38 PM

Ok thank you.

Some of the following tools (in the instructions below) may not run (due to these mainly being applied to non-sever versions), or produce a log file (where applicable).
- If either of these happens, please tell me how far you got with each one.

----------

Hello,

I will be helping you with your problems. Please be patient while I assist you.

Some points for you to keep in mind while I am helping you to make things go easier and faster for both of us

  • Please do NOT run, install or uninstall any programs, unless instructed to do so.
    • We ask you to run different tools in a specific order to ensure the malware is completely removed from your machine, and running any additional tools may detect false positives, interfere with our tools, or cause unforeseen damage or system instability.
  • Please do not attach logs or use code boxes, just copy and paste the text.
    • Due to the high volume of logs we receive it helps to receive everything in the same format, and code boxes make the logs very difficult to read. Also, attachments require us to download and open the reports when it is easier to just read the reports in your post.
  • Please read every post completely before doing anything.
    • Pay special attention to the NOTE: lines, these entries identify an individual issue or important step in the cleanup process.
  • Please provide feedback about your experience as we go.
    • A short statement describing how the computer is working helps us understand where to go next, for example: I am still getting redirected, the computer is running normally, etc. Please do not describe the computer as "the same", this requires the extra step of looking back at your previous post.

NOTE: At the top of your post, click on the Watch Topic Button, select Immediate Notification, and click on Proceed. This will send you an e-mail as soon as I reply to your topic, allowing us to resolve the issue faster.

NOTE: Backup any files that cannot be replaced. Removing malware can be unpredictable and this step can save a lot of heartaches if things don't go as planed. You can put them on a CD/DVD, external drive or a pen drive, anywhere except on the computer.

NOTE: It is good practice to copy and paste the instructions into notepad and print them in case it is necessary for you to go offline during the cleanup process. To open notepad, navigate to Start Menu > All Programs > Accessories > Notepad. Please remember to copy the entire post so you do not miss any instructions.

----------------------------------------------

Please do the following:

:step1:

Please download the TDSS Rootkit Removing Tool (TDSSKiller.exe) and save it to your Desktop. <-Important!!!
  • Double-click on TDSSKiller.exe on your desktop to run the tool for known TDSS variants.
    Vista/Windows 7 users right-click and select Run As Administrator.
  • If TDSSKiller does not run, try renaming it.
  • To do this, right-click on TDSSKiller.exe, select Rename and give it a random name with the .com file extension (i.e. 123abc.com). If you do not see the file extension, please refer to How to change the file extension.
  • Click on change parameters
  • Under Objects to scan, check the box next to Loaded modules
  • If you are asked to reboot, then click Yes.

Next

  • Check the boxes next to Loaded modules, Verify file digital signatures, Detect TDLFS file system, then click OK.
  • Click the Start Scan button.
  • Do not use the computer during the scan
  • If the scan completes with nothing found, click Close to exit.
  • If malicious objects are found, they will show in the Scan results - Select action for found objects and offer three options.
  • Ensure Cure (default) is selected, then click Continue > Reboot now to finish the cleaning process.
    Note: If Cure is not an option, Skip instead, do NOT choose Delete or Quarantine unless instructed.
  • A log file named TDSSKiller_version_date_time_log.txt (i.e. TDSSKiller.2.4.0.0_27.07.2010_09.o7.26_log.txt) will be created and saved to the root directory (usually Local Disk C:).
  • Copy and paste the full contents of that file in your next reply.

:step2:

Download Security Check by screen317 from here.
  • Save it to your Desktop.
  • Double click SecurityCheck.exe and follow the onscreen instructions inside of the black box.
  • A Notepad document should open automatically called checkup.txt; please post the full contents of that document.


:step3:

Please download Farbar Service Scanner and run it on the computer with the issue.
  • Make sure the following options are checked:
    • Internet Services
    • Windows Firewall
    • System Restore
    • Security Center/Action Center
    • Windows Update
    • Windows Defender
    • Other Services
  • Press Scan.
  • It will create a log (FSS.txt) in the same directory the tool is run.
  • Please copy and paste the full contents of the log in your next reply.


:step4:

Please download MiniToolBox, save it to your desktop and run it.

Checkmark the following checkboxes:
  • Flush DNS
  • Report IE Proxy Settings
  • Reset IE Proxy Settings
  • Report FF Proxy Settings
  • Reset FF Proxy Settings
  • List content of Hosts
  • List IP configuration
  • List Winsock Entries
  • List last 10 Event Viewer log
  • List Installed Programs
  • List Devices (Only Problems)
  • List Users, Partitions and Memory size.
  • List Minidump Files
  • List Restore points
NOTE: When using "Reset FF Proxy Settings" option Firefox should be closed.

Click Go and post the full contents of the result (Result.txt). A copy of Result.txt will be saved in the same directory the tool is run.

Regards, dev00790

---------------------------------------

Marge: "Homer, the plant called. They said if you don't show up tomorrow don't bother showing up on Monday." Homer: "Woo-hoo! Four-day weekend!"I do not reply to Private Messages (PMs) asking for assistance - please use the forums instead. If I have been helping you, and I have not replied to your latest post in 48 hours please send me a PM. My Blog


#9 pnasty101

pnasty101
  • Topic Starter

  • Members
  • 11 posts
  • OFFLINE
  •  
  • Local time:02:16 PM

Posted 13 September 2012 - 01:42 PM

Thanks for you guidance dev! I just saw this and will be going through these steps shortly.

However after doing some research i have downloaded and ran GMER on the server. GMER BROUGHT THE SERVER DOWN.

During the scan it crashed the server and rebooted. After it rebooted i got this" System Failure: Stop error

0x000000d1 (0x00000000, 0xd0000002, 0x00000008, 0x00000000)"


We had a pro IT guy come in this morning. Of course the problem wasn't occuring and he could not find anything out of the usual. However he did not perform any scans of such. He would like to work from our cable modem back next time the problem occurs., and view the traffic on our firewall to determine where the chatter is coming from.

However i believe i've already tracked it down to this server 2003 (server01). It crashing during GMER just validates my thoughts. What do you think>?

Edited by pnasty101, 13 September 2012 - 02:13 PM.


#10 dev00790

dev00790

    Bleeping Chocoholic


  • Members
  • 5,037 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:UK
  • Local time:06:16 PM

Posted 13 September 2012 - 02:58 PM

Hi

Please follow the steps in my previous post.

Please bear in mind the following also..

Please do NOT run, install or uninstall any programs, unless instructed to do so.

We ask you to run different tools in a specific order to ensure the malware is completely removed from your machine, and running any additional tools may detect false positives, interfere with our tools, or cause unforeseen damage or system instability.


Regards, dev00790

---------------------------------------

Marge: "Homer, the plant called. They said if you don't show up tomorrow don't bother showing up on Monday." Homer: "Woo-hoo! Four-day weekend!"I do not reply to Private Messages (PMs) asking for assistance - please use the forums instead. If I have been helping you, and I have not replied to your latest post in 48 hours please send me a PM. My Blog


#11 pnasty101

pnasty101
  • Topic Starter

  • Members
  • 11 posts
  • OFFLINE
  •  
  • Local time:02:16 PM

Posted 15 September 2012 - 07:21 PM

OK had some time to run the programs in the steps you provided above. Here are the generated reports.

TDSS Killer

19:51:27.0395 7832 TDSS rootkit removing tool 2.8.8.0 Aug 24 2012 13:27:48
19:51:28.0255 7832 ============================================================
19:51:28.0255 7832 Current date / time: 2012/09/15 19:51:28.0255
19:51:28.0255 7832 SystemInfo:
19:51:28.0255 7832
19:51:28.0255 7832 OS Version: 5.2.3790 ServicePack: 2.0
19:51:28.0255 7832 Product type: Domain controller
19:51:28.0255 7832 ComputerName: SERVER01
19:51:28.0255 7832 UserName: npalinchik
19:51:28.0255 7832 Windows directory: C:\WINDOWS
19:51:28.0255 7832 System windows directory: C:\WINDOWS
19:51:28.0255 7832 Processor architecture: Intel x86
19:51:28.0255 7832 Number of processors: 8
19:51:28.0255 7832 Page size: 0x1000
19:51:28.0255 7832 Boot type: Normal boot
19:51:28.0255 7832 ============================================================
19:51:28.0302 7832 BG loaded
19:51:28.0770 7832 Drive \Device\Harddisk0\DR0 - Size: 0xAE30000000 (696.75 Gb), SectorSize: 0x200, Cylinders: 0x1634A, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
19:51:28.0770 7832 ============================================================
19:51:28.0770 7832 \Device\Harddisk0\DR0:
19:51:28.0770 7832 MBR partitions:
19:51:28.0770 7832 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x2B24B, BlocksNum 0x5715147F
19:51:28.0770 7832 ============================================================
19:51:28.0770 7832 C: <-> \Device\Harddisk0\DR0\Partition1
19:51:28.0770 7832 ============================================================
19:51:28.0770 7832 Initialize success
19:51:28.0770 7832 ============================================================
19:52:32.0412 7080 ============================================================
19:52:32.0412 7080 Scan started
19:52:32.0412 7080 Mode: Manual;
19:52:32.0412 7080 ============================================================
19:52:32.0475 7080 ================ Scan system memory ========================
19:52:36.0381 7080 System memory - ok
19:52:36.0381 7080 ================ Scan services =============================
19:52:36.0506 7080 Abiosdsk - ok
19:52:36.0522 7080 [ A0A850BAC6F8A88AD0FC964C6BEA170D ] ACPI C:\WINDOWS\system32\DRIVERS\ACPI.sys
19:52:36.0522 7080 ACPI - ok
19:52:36.0537 7080 [ 043C89CC533FF546D835CB998B95B198 ] ACPIEC C:\WINDOWS\system32\drivers\ACPIEC.sys
19:52:36.0537 7080 ACPIEC - ok
19:52:36.0553 7080 [ BBE35985C5E9E5ED87B8C1DAD5B7D725 ] adpu160m C:\WINDOWS\system32\DRIVERS\adpu160m.sys
19:52:36.0584 7080 adpu160m - ok
19:52:36.0600 7080 [ 5A23754571BBFA93564C04E7A20B1762 ] adpu320 C:\WINDOWS\system32\DRIVERS\adpu320.sys
19:52:36.0616 7080 adpu320 - ok
19:52:36.0631 7080 [ D01968EDEBF1DC11E4C93517C98CDF7C ] AeLookupSvc C:\WINDOWS\System32\aelupsvc.dll
19:52:36.0631 7080 AeLookupSvc - ok
19:52:36.0647 7080 [ 2DAD567D6C05B12DB4567860A6256AC2 ] afcnt C:\WINDOWS\system32\DRIVERS\afcnt.sys
19:52:36.0694 7080 afcnt - ok
19:52:36.0741 7080 [ 1352E45B12732172655C445A57E20991 ] AFD C:\WINDOWS\System32\drivers\afd.sys
19:52:36.0741 7080 AFD - ok
19:52:36.0772 7080 [ B9985042687A43685FC64B282B627653 ] agp440 C:\WINDOWS\system32\DRIVERS\agp440.sys
19:52:36.0803 7080 agp440 - ok
19:52:36.0819 7080 [ 4139C312858D6050489ADE2984CEB648 ] agpCPQ C:\WINDOWS\system32\DRIVERS\agpCPQ.sys
19:52:36.0819 7080 agpCPQ - ok
19:52:36.0834 7080 [ B06E2A2A7CEB0EF894520CAFC2F1FEAF ] aic78u2 C:\WINDOWS\system32\DRIVERS\aic78u2.sys
19:52:36.0850 7080 aic78u2 - ok
19:52:36.0850 7080 [ EC7D7F96E97BAD83A0B8A96969D19F2D ] aic78xx C:\WINDOWS\system32\DRIVERS\aic78xx.sys
19:52:36.0881 7080 aic78xx - ok
19:52:36.0881 7080 [ 055318E373B45AD6C3F518732809EF4E ] Alerter C:\WINDOWS\system32\alrsvc.dll
19:52:36.0897 7080 Alerter - ok
19:52:36.0912 7080 [ 8E89CB0283D7DED092D76AE53D123C40 ] ALG C:\WINDOWS\System32\alg.exe
19:52:36.0944 7080 ALG - ok
19:52:36.0944 7080 [ 4790A743B00358C186E19F6B49791D6A ] AliIde C:\WINDOWS\system32\DRIVERS\aliide.sys
19:52:36.0959 7080 AliIde - ok
19:52:36.0975 7080 [ 91B0A16EF9FC504865A94BBDB4623A1F ] alim1541 C:\WINDOWS\system32\DRIVERS\alim1541.sys
19:52:36.0991 7080 alim1541 - ok
19:52:36.0991 7080 [ 557EAEA1343554571456DC363FEED2EE ] amdagp C:\WINDOWS\system32\DRIVERS\amdagp.sys
19:52:37.0006 7080 amdagp - ok
19:52:37.0006 7080 [ D175D3C400A412B9CB2095E452AFBBB0 ] AmdIde C:\WINDOWS\system32\DRIVERS\amdide.sys
19:52:37.0022 7080 AmdIde - ok
19:52:37.0053 7080 [ 8A5AD4CFE2D84371ABADFCF9E21954F6 ] AppMgmt C:\WINDOWS\System32\appmgmts.dll
19:52:37.0053 7080 AppMgmt - ok
19:52:37.0053 7080 [ A9C7273645A06A01AC2CA070D7D7EC87 ] arc C:\WINDOWS\system32\DRIVERS\arc.sys
19:52:37.0069 7080 arc - ok
19:52:37.0162 7080 [ 776ACEFA0CA9DF0FAA51A5FB2F435705 ] aspnet_state C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe
19:52:37.0256 7080 aspnet_state - ok
19:52:37.0256 7080 [ A35B971F631D4DFDEB68D71E770D2CE9 ] AsyncMac C:\WINDOWS\system32\DRIVERS\asyncmac.sys
19:52:37.0272 7080 AsyncMac - ok
19:52:37.0287 7080 [ FF953A8F08CA3F822127654375786BBE ] atapi C:\WINDOWS\system32\DRIVERS\atapi.sys
19:52:37.0303 7080 atapi - ok
19:52:37.0303 7080 Atdisk - ok
19:52:37.0366 7080 [ FB61579B321953E2DFC92A1CC12BE2C6 ] ati2mtag C:\WINDOWS\system32\DRIVERS\ati2mtag.sys
19:52:37.0397 7080 ati2mtag - ok
19:52:37.0412 7080 [ D12DAD5032285343CE3AA4906F661181 ] Atmarpc C:\WINDOWS\system32\DRIVERS\atmarpc.sys
19:52:37.0428 7080 Atmarpc - ok
19:52:37.0475 7080 [ 754A448D5B87CBEDE41A0F0E0B237B03 ] AudioSrv C:\WINDOWS\System32\audiosrv.dll
19:52:37.0475 7080 AudioSrv - ok
19:52:37.0491 7080 [ 5BFD980C2107D88101D1DC14055526FC ] audstub C:\WINDOWS\system32\DRIVERS\audstub.sys
19:52:37.0506 7080 audstub - ok
19:52:37.0537 7080 [ 781CB2EF3AFECEED195A56D9E5EFD718 ] b06bdrv C:\WINDOWS\system32\DRIVERS\bxvbdx.sys
19:52:37.0537 7080 b06bdrv - ok
19:52:37.0584 7080 [ D72BD3B45FD651EAE412B246CC6FDD39 ] bbagent C:\Program Files\Barracuda\Barracuda Backup Agent\win\x86\bbwinsdr.exe
19:52:37.0584 7080 bbagent - ok
19:52:37.0600 7080 [ 99572503E15A3D10239B7B9887CBAF89 ] Beep C:\WINDOWS\system32\drivers\Beep.sys
19:52:37.0616 7080 Beep - ok
19:52:37.0631 7080 [ 9D7A318B2C7AE51E9D5374F8EEDE856C ] BITS C:\WINDOWS\system32\qmgr.dll
19:52:37.0694 7080 BITS - ok
19:52:37.0725 7080 [ 5251A868FB1C6C8B774DA42F3C107C82 ] Browser C:\WINDOWS\System32\browser.dll
19:52:37.0725 7080 Browser - ok
19:52:37.0741 7080 [ 1342877DE604A5A6BFF986E288E3A8A7 ] cbidf C:\WINDOWS\system32\DRIVERS\cbidf2k.sys
19:52:37.0756 7080 cbidf - ok
19:52:37.0772 7080 [ 1342877DE604A5A6BFF986E288E3A8A7 ] cbidf2k C:\WINDOWS\system32\drivers\cbidf2k.sys
19:52:37.0772 7080 cbidf2k - ok
19:52:37.0772 7080 [ 431D1B3DC3DE617DA27055C87B424A21 ] cd20xrnt C:\WINDOWS\system32\DRIVERS\cd20xrnt.sys
19:52:37.0803 7080 cd20xrnt - ok
19:52:37.0819 7080 [ E6D72780C957B69C48BFC66BC3ECDAD4 ] Cdfs C:\WINDOWS\system32\drivers\Cdfs.sys
19:52:37.0834 7080 Cdfs - ok
19:52:37.0850 7080 [ 825AA877A852ECC731FA0C39C8C37744 ] Cdrom C:\WINDOWS\system32\DRIVERS\cdrom.sys
19:52:37.0850 7080 Cdrom - ok
19:52:37.0866 7080 Changer - ok
19:52:37.0912 7080 [ 934EE973E9EE6AC414E9A0F07AB73D6E ] CiSvc C:\WINDOWS\system32\cisvc.exe
19:52:37.0912 7080 CiSvc - ok
19:52:37.0928 7080 [ E53196BA56081F154E2D7A9E50A1D33F ] ClipSrv C:\WINDOWS\system32\clipsrv.exe
19:52:37.0959 7080 ClipSrv - ok
19:52:37.0975 7080 [ D87ACAED61E417BBA546CED5E7E36D9C ] clr_optimization_v2.0.50727_32 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
19:52:38.0069 7080 clr_optimization_v2.0.50727_32 - ok
19:52:38.0084 7080 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
19:52:38.0147 7080 clr_optimization_v4.0.30319_32 - ok
19:52:38.0178 7080 [ 54308CDF97622FAE1620BB1EC39EF014 ] ClusDisk C:\WINDOWS\system32\DRIVERS\ClusDisk.sys
19:52:38.0178 7080 ClusDisk - ok
19:52:38.0194 7080 [ C40FB2610969B282CB0873CA8030A884 ] CmdIde C:\WINDOWS\system32\DRIVERS\cmdide.sys
19:52:38.0209 7080 CmdIde - ok
19:52:38.0209 7080 COMSysApp - ok
19:52:38.0225 7080 [ 126D049A6E6B6CB8DF1C69D3E2A8C0C4 ] Cpqarray C:\WINDOWS\system32\DRIVERS\cpqarray.sys
19:52:38.0241 7080 Cpqarray - ok
19:52:38.0256 7080 [ D31CB94A4ACAD58ABB6CF74B7EF1CE1F ] cpqarry2 C:\WINDOWS\system32\DRIVERS\cpqarry2.sys
19:52:38.0287 7080 cpqarry2 - ok
19:52:38.0287 7080 [ 0C5DCC2DF112B7352B9427D943CF56BC ] cpqcissm C:\WINDOWS\system32\DRIVERS\cpqcissm.sys
19:52:38.0303 7080 cpqcissm - ok
19:52:38.0303 7080 [ FED86C9F250FC641B37C933E4C214A8A ] cpqfcalm C:\WINDOWS\system32\DRIVERS\cpqfcalm.sys
19:52:38.0334 7080 cpqfcalm - ok
19:52:38.0397 7080 cpuz135 - ok
19:52:38.0412 7080 [ 0EE27D9DBB208C13314F3C60F66AED26 ] crcdisk C:\WINDOWS\system32\DRIVERS\crcdisk.sys
19:52:38.0428 7080 crcdisk - ok
19:52:38.0459 7080 [ FEB85DA744DD3F41A427CF6D2BC04FE4 ] CryptSvc C:\WINDOWS\System32\cryptsvc.dll
19:52:38.0459 7080 CryptSvc - ok
19:52:38.0459 7080 [ 8CE90C5C311592273AB0FB39A2D23896 ] dac2w2k C:\WINDOWS\system32\DRIVERS\dac2w2k.sys
19:52:38.0491 7080 dac2w2k - ok
19:52:38.0506 7080 [ 19B8202934B660C4EC2E64354437A854 ] dac960nt C:\WINDOWS\system32\DRIVERS\dac960nt.sys
19:52:38.0522 7080 dac960nt - ok
19:52:38.0553 7080 [ 2E1499B98177D93552E8971E63F01E9A ] dcdbas C:\WINDOWS\system32\DRIVERS\dcdbas32.sys
19:52:38.0569 7080 dcdbas - ok
19:52:38.0584 7080 [ 0DD50B633418EA7A463C1F9A4046A20C ] dcevt32 C:\Program Files\Dell\SysMgt\dataeng\bin\dsm_sa_eventmgr32.exe
19:52:38.0584 7080 dcevt32 - ok
19:52:38.0631 7080 [ 305A8757D66B5D416B47C497C27A01FE ] DcomLaunch C:\WINDOWS\system32\rpcss.dll
19:52:38.0631 7080 DcomLaunch - ok
19:52:38.0647 7080 [ 82AA01CCE9E5DD89DF26700BD1EDD36F ] dcstor32 C:\Program Files\Dell\SysMgt\dataeng\bin\dsm_sa_datamgr32.exe
19:52:38.0647 7080 dcstor32 - ok
19:52:38.0647 7080 [ 264E592A99801B682C98984588A7D7B5 ] dellcerc C:\WINDOWS\system32\DRIVERS\dellcerc.sys
19:52:38.0678 7080 dellcerc - ok
19:52:38.0694 7080 [ 6217AA084EF7E052F3B5D7C3F67F68AF ] Dfs C:\WINDOWS\system32\Dfssvc.exe
19:52:38.0694 7080 Dfs - ok
19:52:38.0694 7080 [ 444726B01C31D29C70E60F7C35DE43E5 ] DfsDriver C:\WINDOWS\system32\drivers\Dfs.sys
19:52:38.0709 7080 DfsDriver - ok
19:52:38.0741 7080 [ 1201DF9A11FBB0F69EBD22E503D3BC87 ] Dhcp C:\WINDOWS\System32\dhcpcsvc.dll
19:52:38.0741 7080 Dhcp - ok
19:52:38.0756 7080 [ E0BE3E7F71415351F90AF4CE21ED9DD7 ] DHCPServer C:\WINDOWS\system32\tcpsvcs.exe
19:52:38.0772 7080 DHCPServer - ok
19:52:38.0772 7080 [ 98433302C02F1168EFB7364F8111A179 ] Disk C:\WINDOWS\system32\DRIVERS\disk.sys
19:52:38.0787 7080 Disk - ok
19:52:38.0787 7080 dmadmin - ok
19:52:38.0803 7080 [ 89FA376D83042F6F1AED505106A5719D ] dmboot C:\WINDOWS\system32\drivers\dmboot.sys
19:52:38.0819 7080 dmboot - ok
19:52:38.0819 7080 [ 15081421EE62DC1C95ABB387D9081571 ] dmio C:\WINDOWS\system32\drivers\dmio.sys
19:52:38.0834 7080 dmio - ok
19:52:38.0866 7080 [ 3D9BFA13B6F1CD2D91C50C52B32E91A2 ] dmload C:\WINDOWS\system32\drivers\dmload.sys
19:52:38.0881 7080 dmload - ok
19:52:38.0897 7080 [ 78A11666307820AF94B5712D53DECC55 ] dmserver C:\WINDOWS\System32\dmserver.dll
19:52:38.0897 7080 dmserver - ok
19:52:38.0944 7080 [ 2A1614828BE1E1558D06D3B2D6BEAF9B ] DNS C:\WINDOWS\System32\dns.exe
19:52:38.0944 7080 DNS - ok
19:52:38.0975 7080 [ E927F3B46F85D934C8F420FE08593D1B ] Dnscache C:\WINDOWS\System32\dnsrslvr.dll
19:52:38.0975 7080 Dnscache - ok
19:52:38.0975 7080 [ 110406BC22A72E2DCBB0A86E0542AB1C ] dpti2o C:\WINDOWS\system32\DRIVERS\dpti2o.sys
19:52:38.0991 7080 dpti2o - ok
19:52:38.0991 7080 elxstor - ok
19:52:39.0022 7080 [ 6F09AE902663735B6BD24198D25F453A ] ERSvc C:\WINDOWS\System32\ersvc.dll
19:52:39.0022 7080 ERSvc - ok
19:52:39.0037 7080 [ CF500580CDD83B145646A4DCFCE1CF3C ] Eventlog C:\WINDOWS\system32\services.exe
19:52:39.0069 7080 Eventlog - ok
19:52:39.0084 7080 [ C17C56E91045E14DF45D62DD89AED50C ] EventSystem C:\WINDOWS\system32\es.dll
19:52:39.0084 7080 EventSystem - ok
19:52:39.0131 7080 [ 65D15D220CC427E2915C1682CEFE604B ] EXIFS C:\WINDOWS\system32\drivers\exifs.sys
19:52:39.0147 7080 EXIFS - ok
19:52:39.0178 7080 [ E792A18ABDC32286212DCE8E75BAA124 ] Fastfat C:\WINDOWS\system32\drivers\Fastfat.sys
19:52:39.0178 7080 Fastfat - ok
19:52:39.0178 7080 [ 5090CD3F6AB1D71AD507953CFF556EA9 ] Fdc C:\WINDOWS\system32\DRIVERS\fdc.sys
19:52:39.0194 7080 Fdc - ok
19:52:39.0194 7080 [ B485AC2EDC466C538BDFF32BC3F2E506 ] Fips C:\WINDOWS\system32\drivers\Fips.sys
19:52:39.0209 7080 Fips - ok
19:52:39.0225 7080 [ C621A51F415419A3145A5939ABDE39FA ] Flpydisk C:\WINDOWS\system32\DRIVERS\flpydisk.sys
19:52:39.0241 7080 Flpydisk - ok
19:52:39.0256 7080 [ F978277EF786532195CDD9F88E908632 ] FltMgr C:\WINDOWS\system32\DRIVERS\fltMgr.sys
19:52:39.0272 7080 FltMgr - ok
19:52:39.0303 7080 [ 8BA7C024070F2B7FDD98ED8A4BA41789 ] FontCache3.0.0.0 c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
19:52:39.0334 7080 FontCache3.0.0.0 - ok
19:52:39.0350 7080 [ AEBFF3D810B74971B91B2B77B289A98B ] Fs_Rec C:\WINDOWS\system32\drivers\Fs_Rec.sys
19:52:39.0366 7080 Fs_Rec - ok
19:52:39.0366 7080 [ 4C533B70AFA917416AEC57FCBEECB57D ] Ftdisk C:\WINDOWS\system32\DRIVERS\ftdisk.sys
19:52:39.0381 7080 Ftdisk - ok
19:52:39.0412 7080 [ 30B1653A955F548352024A5FEE203CC3 ] Gpc C:\WINDOWS\system32\DRIVERS\msgpc.sys
19:52:39.0412 7080 Gpc - ok
19:52:39.0459 7080 [ 40CA39DBA80372ED8EC34C4BECE68495 ] helpsvc C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll
19:52:39.0459 7080 helpsvc - ok
19:52:39.0475 7080 [ 4828C4244081EB4132868EA3E93456BB ] HidServ C:\WINDOWS\System32\hidserv.dll
19:52:39.0475 7080 HidServ - ok
19:52:39.0491 7080 [ 90A325E14F9B95F17712707B1A7181B5 ] HidUsb C:\WINDOWS\system32\DRIVERS\hidusb.sys
19:52:39.0506 7080 HidUsb - ok
19:52:39.0506 7080 [ 8A445379D6E73731A6A37318DBB0C880 ] hpcisss C:\WINDOWS\system32\DRIVERS\hpcisss.sys
19:52:39.0522 7080 hpcisss - ok
19:52:39.0522 7080 [ CF54B5F4192FA5F669D13EE700FC9DCE ] hpn C:\WINDOWS\system32\DRIVERS\hpn.sys
19:52:39.0553 7080 hpn - ok
19:52:39.0553 7080 [ D3704DA43183412DFA0DC1F31051D447 ] hpt3xx C:\WINDOWS\system32\DRIVERS\hpt3xx.sys
19:52:39.0584 7080 hpt3xx - ok
19:52:39.0600 7080 [ 7A5D176C4B43F0A47DA4051C96C56439 ] HTTP C:\WINDOWS\system32\Drivers\HTTP.sys
19:52:39.0616 7080 HTTP - ok
19:52:39.0631 7080 [ D4B61A935670C57A0DEA81B4F4A12169 ] HTTPFilter C:\WINDOWS\system32\lsass.exe
19:52:39.0631 7080 HTTPFilter - ok
19:52:39.0631 7080 [ F198C5BA41CD0F3983DDAD09EAF77300 ] i2omgmt C:\WINDOWS\system32\drivers\i2omgmt.sys
19:52:39.0647 7080 i2omgmt - ok
19:52:39.0647 7080 [ 615395FC46EEEA7E7E822D4BE8006862 ] i2omp C:\WINDOWS\system32\DRIVERS\i2omp.sys
19:52:39.0678 7080 i2omp - ok
19:52:39.0678 7080 [ 68E8FF9EEAF8B37A66CAC2C57835FFBD ] i8042prt C:\WINDOWS\system32\DRIVERS\i8042prt.sys
19:52:39.0694 7080 i8042prt - ok
19:52:39.0756 7080 [ C01AC32DC5C03076CFB852CB5DA5229C ] idsvc c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
19:52:39.0897 7080 idsvc - ok
19:52:39.0912 7080 [ AA9AB3B793401463BB938ADEF5FA8266 ] iirsp C:\WINDOWS\system32\DRIVERS\iirsp.sys
19:52:39.0928 7080 iirsp - ok
19:52:39.0991 7080 [ 58AC18BC908A78FBA5430D23066D183A ] IISADMIN C:\WINDOWS\system32\inetsrv\inetinfo.exe
19:52:39.0991 7080 IISADMIN - ok
19:52:40.0006 7080 [ 58AC18BC908A78FBA5430D23066D183A ] IMAP4Svc C:\WINDOWS\system32\inetsrv\inetinfo.exe
19:52:40.0006 7080 IMAP4Svc - ok
19:52:40.0022 7080 [ 44C132B35921B54B4A9AC64369D86D83 ] imapi C:\WINDOWS\system32\DRIVERS\imapi.sys
19:52:40.0037 7080 imapi - ok
19:52:40.0053 7080 [ 5DA3013244229422C9CBD91A16A477C4 ] ImapiService C:\WINDOWS\system32\imapi.exe
19:52:40.0100 7080 ImapiService - ok
19:52:40.0162 7080 [ 1690A4BE249BA6195BA7258943CADA58 ] IntelIde C:\WINDOWS\system32\DRIVERS\intelide.sys
19:52:40.0178 7080 IntelIde - ok
19:52:40.0194 7080 [ E696E1E8032DEF1FA5BBC6C8F9E5A9F6 ] intelppm C:\WINDOWS\system32\DRIVERS\intelppm.sys
19:52:40.0209 7080 intelppm - ok
19:52:40.0225 7080 [ D7E7E7898A05C53DD862B49828747C1E ] Ip6Fw C:\WINDOWS\system32\DRIVERS\Ip6Fw.sys
19:52:40.0241 7080 Ip6Fw - ok
19:52:40.0272 7080 [ 5A41F207B7C39EE4918F7496A4F19B14 ] IpFilterDriver C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
19:52:40.0272 7080 IpFilterDriver - ok
19:52:40.0287 7080 IpInIp - ok
19:52:40.0303 7080 [ 890E7A14A63AEC2EA9257A79A88BE784 ] IpNat C:\WINDOWS\system32\DRIVERS\ipnat.sys
19:52:40.0319 7080 IpNat - ok
19:52:40.0334 7080 [ 1A9AEAC49683B32DF55B7FB1516F3028 ] IPSec C:\WINDOWS\system32\DRIVERS\ipsec.sys
19:52:40.0350 7080 IPSec - ok
19:52:40.0366 7080 [ C8594550880B16A31C99EC42B106E14F ] ipsraidn C:\WINDOWS\system32\DRIVERS\ipsraidn.sys
19:52:40.0381 7080 ipsraidn - ok
19:52:40.0381 7080 [ 11407EE682A2D5B0248DE8AF0F1A6996 ] IRENUM C:\WINDOWS\system32\DRIVERS\irenum.sys
19:52:40.0397 7080 IRENUM - ok
19:52:40.0412 7080 [ B71BA04A3B5D4404225CCDBF1969078F ] isapnp C:\WINDOWS\system32\DRIVERS\isapnp.sys
19:52:40.0412 7080 isapnp - ok
19:52:40.0459 7080 [ 1B1A2084540CC1F2E9A297A263D69D23 ] IsmServ C:\WINDOWS\System32\ismserv.exe
19:52:40.0459 7080 IsmServ - ok
19:52:40.0491 7080 [ E5097A07E14F36ABC21FA18D88F93655 ] Kbdclass C:\WINDOWS\system32\DRIVERS\kbdclass.sys
19:52:40.0506 7080 Kbdclass - ok
19:52:40.0522 7080 [ 665F2AE9286DBB05B045CCC02F7BC2F8 ] kbdhid C:\WINDOWS\system32\DRIVERS\kbdhid.sys
19:52:40.0537 7080 kbdhid - ok
19:52:40.0553 7080 [ D4B61A935670C57A0DEA81B4F4A12169 ] kdc C:\WINDOWS\System32\lsass.exe
19:52:40.0553 7080 kdc - ok
19:52:40.0584 7080 [ 7516B5F53A258BF152901554A005B7C4 ] KSecDD C:\WINDOWS\system32\drivers\KSecDD.sys
19:52:40.0662 7080 KSecDD - ok
19:52:40.0662 7080 Scan interrupted by user!
19:52:40.0662 7080 ================ Scan global ===============================
19:52:40.0662 7080 Scan interrupted by user!
19:52:40.0662 7080 ================ Scan MBR ==================================
19:52:40.0662 7080 Scan interrupted by user!
19:52:40.0662 7080 ================ Scan VBR ==================================
19:52:40.0662 7080 Scan interrupted by user!
19:52:40.0662 7080 ================ Scan active images ========================
19:52:40.0662 7080 Scan interrupted by user!
19:52:40.0662 7080 ============================================================
19:52:40.0662 7080 Scan finished
19:52:40.0662 7080 ============================================================
19:52:40.0662 8036 Detected object count: 0
19:52:40.0662 8036 Actual detected object count: 0
19:52:46.0897 7888 ============================================================
19:52:46.0897 7888 Scan started
19:52:46.0897 7888 Mode: Manual; SigCheck; TDLFS;
19:52:46.0897 7888 ============================================================
19:52:46.0975 7888 ================ Scan system memory ========================
19:52:50.0319 7888 System memory - ok
19:52:50.0319 7888 ================ Scan services =============================
19:52:50.0647 7888 Abiosdsk - ok
19:52:50.0694 7888 [ A0A850BAC6F8A88AD0FC964C6BEA170D ] ACPI C:\WINDOWS\system32\DRIVERS\ACPI.sys
19:52:52.0022 7888 ACPI - ok
19:52:52.0037 7888 [ 043C89CC533FF546D835CB998B95B198 ] ACPIEC C:\WINDOWS\system32\drivers\ACPIEC.sys
19:52:52.0131 7888 ACPIEC - ok
19:52:52.0147 7888 [ BBE35985C5E9E5ED87B8C1DAD5B7D725 ] adpu160m C:\WINDOWS\system32\DRIVERS\adpu160m.sys
19:52:52.0225 7888 adpu160m - ok
19:52:52.0241 7888 [ 5A23754571BBFA93564C04E7A20B1762 ] adpu320 C:\WINDOWS\system32\DRIVERS\adpu320.sys
19:52:52.0334 7888 adpu320 - ok
19:52:52.0366 7888 [ D01968EDEBF1DC11E4C93517C98CDF7C ] AeLookupSvc C:\WINDOWS\System32\aelupsvc.dll
19:52:52.0459 7888 AeLookupSvc - ok
19:52:52.0491 7888 [ 2DAD567D6C05B12DB4567860A6256AC2 ] afcnt C:\WINDOWS\system32\DRIVERS\afcnt.sys
19:52:52.0537 7888 afcnt - ok
19:52:52.0569 7888 [ 1352E45B12732172655C445A57E20991 ] AFD C:\WINDOWS\System32\drivers\afd.sys
19:52:52.0928 7888 AFD - ok
19:52:52.0944 7888 [ B9985042687A43685FC64B282B627653 ] agp440 C:\WINDOWS\system32\DRIVERS\agp440.sys
19:52:53.0022 7888 agp440 - ok
19:52:53.0053 7888 [ 4139C312858D6050489ADE2984CEB648 ] agpCPQ C:\WINDOWS\system32\DRIVERS\agpCPQ.sys
19:52:53.0131 7888 agpCPQ - ok
19:52:53.0131 7888 [ B06E2A2A7CEB0EF894520CAFC2F1FEAF ] aic78u2 C:\WINDOWS\system32\DRIVERS\aic78u2.sys
19:52:53.0225 7888 aic78u2 - ok
19:52:53.0241 7888 [ EC7D7F96E97BAD83A0B8A96969D19F2D ] aic78xx C:\WINDOWS\system32\DRIVERS\aic78xx.sys
19:52:53.0319 7888 aic78xx - ok
19:52:53.0334 7888 [ 055318E373B45AD6C3F518732809EF4E ] Alerter C:\WINDOWS\system32\alrsvc.dll
19:52:53.0428 7888 Alerter - ok
19:52:53.0459 7888 [ 8E89CB0283D7DED092D76AE53D123C40 ] ALG C:\WINDOWS\System32\alg.exe
19:52:53.0569 7888 ALG - ok
19:52:53.0584 7888 [ 4790A743B00358C186E19F6B49791D6A ] AliIde C:\WINDOWS\system32\DRIVERS\aliide.sys
19:52:53.0662 7888 AliIde - ok
19:52:53.0694 7888 [ 91B0A16EF9FC504865A94BBDB4623A1F ] alim1541 C:\WINDOWS\system32\DRIVERS\alim1541.sys
19:52:53.0772 7888 alim1541 - ok
19:52:53.0787 7888 [ 557EAEA1343554571456DC363FEED2EE ] amdagp C:\WINDOWS\system32\DRIVERS\amdagp.sys
19:52:53.0881 7888 amdagp - ok
19:52:53.0881 7888 [ D175D3C400A412B9CB2095E452AFBBB0 ] AmdIde C:\WINDOWS\system32\DRIVERS\amdide.sys
19:52:53.0959 7888 AmdIde - ok
19:52:53.0975 7888 [ 8A5AD4CFE2D84371ABADFCF9E21954F6 ] AppMgmt C:\WINDOWS\System32\appmgmts.dll
19:52:54.0037 7888 AppMgmt - ok
19:52:54.0053 7888 [ A9C7273645A06A01AC2CA070D7D7EC87 ] arc C:\WINDOWS\system32\DRIVERS\arc.sys
19:52:54.0131 7888 arc - ok
19:52:54.0225 7888 [ 776ACEFA0CA9DF0FAA51A5FB2F435705 ] aspnet_state C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe
19:52:54.0241 7888 aspnet_state - ok
19:52:54.0272 7888 [ A35B971F631D4DFDEB68D71E770D2CE9 ] AsyncMac C:\WINDOWS\system32\DRIVERS\asyncmac.sys
19:52:54.0366 7888 AsyncMac - ok
19:52:54.0381 7888 [ FF953A8F08CA3F822127654375786BBE ] atapi C:\WINDOWS\system32\DRIVERS\atapi.sys
19:52:54.0459 7888 atapi - ok
19:52:54.0475 7888 Atdisk - ok
19:52:54.0537 7888 [ FB61579B321953E2DFC92A1CC12BE2C6 ] ati2mtag C:\WINDOWS\system32\DRIVERS\ati2mtag.sys
19:52:54.0600 7888 ati2mtag - ok
19:52:54.0616 7888 [ D12DAD5032285343CE3AA4906F661181 ] Atmarpc C:\WINDOWS\system32\DRIVERS\atmarpc.sys
19:52:54.0694 7888 Atmarpc - ok
19:52:54.0741 7888 [ 754A448D5B87CBEDE41A0F0E0B237B03 ] AudioSrv C:\WINDOWS\System32\audiosrv.dll
19:52:54.0819 7888 AudioSrv - ok
19:52:54.0866 7888 [ 5BFD980C2107D88101D1DC14055526FC ] audstub C:\WINDOWS\system32\DRIVERS\audstub.sys
19:52:55.0147 7888 audstub - ok
19:52:55.0194 7888 [ 781CB2EF3AFECEED195A56D9E5EFD718 ] b06bdrv C:\WINDOWS\system32\DRIVERS\bxvbdx.sys
19:52:56.0600 7888 b06bdrv - ok
19:52:56.0678 7888 [ D72BD3B45FD651EAE412B246CC6FDD39 ] bbagent C:\Program Files\Barracuda\Barracuda Backup Agent\win\x86\bbwinsdr.exe
19:52:56.0678 7888 bbagent ( UnsignedFile.Multi.Generic ) - warning
19:52:56.0678 7888 bbagent - detected UnsignedFile.Multi.Generic (1)
19:52:56.0741 7888 [ 99572503E15A3D10239B7B9887CBAF89 ] Beep C:\WINDOWS\system32\drivers\Beep.sys
19:52:56.0834 7888 Beep - ok
19:52:56.0866 7888 [ 9D7A318B2C7AE51E9D5374F8EEDE856C ] BITS C:\WINDOWS\system32\qmgr.dll
19:52:56.0959 7888 BITS - ok
19:52:56.0975 7888 [ 5251A868FB1C6C8B774DA42F3C107C82 ] Browser C:\WINDOWS\System32\browser.dll
19:52:57.0022 7888 Browser - ok
19:52:57.0053 7888 [ 1342877DE604A5A6BFF986E288E3A8A7 ] cbidf C:\WINDOWS\system32\DRIVERS\cbidf2k.sys
19:52:57.0131 7888 cbidf - ok
19:52:57.0131 7888 [ 1342877DE604A5A6BFF986E288E3A8A7 ] cbidf2k C:\WINDOWS\system32\drivers\cbidf2k.sys
19:52:57.0209 7888 cbidf2k - ok
19:52:57.0225 7888 [ 431D1B3DC3DE617DA27055C87B424A21 ] cd20xrnt C:\WINDOWS\system32\DRIVERS\cd20xrnt.sys
19:52:57.0272 7888 cd20xrnt - ok
19:52:57.0287 7888 [ E6D72780C957B69C48BFC66BC3ECDAD4 ] Cdfs C:\WINDOWS\system32\drivers\Cdfs.sys
19:52:57.0381 7888 Cdfs - ok
19:52:57.0397 7888 [ 825AA877A852ECC731FA0C39C8C37744 ] Cdrom C:\WINDOWS\system32\DRIVERS\cdrom.sys
19:52:57.0491 7888 Cdrom - ok
19:52:57.0491 7888 Changer - ok
19:52:57.0522 7888 [ 934EE973E9EE6AC414E9A0F07AB73D6E ] CiSvc C:\WINDOWS\system32\cisvc.exe
19:52:57.0600 7888 CiSvc - ok
19:52:57.0616 7888 [ E53196BA56081F154E2D7A9E50A1D33F ] ClipSrv C:\WINDOWS\system32\clipsrv.exe
19:52:57.0694 7888 ClipSrv - ok
19:52:57.0725 7888 [ D87ACAED61E417BBA546CED5E7E36D9C ] clr_optimization_v2.0.50727_32 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
19:52:57.0741 7888 clr_optimization_v2.0.50727_32 - ok
19:52:57.0772 7888 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
19:52:57.0787 7888 clr_optimization_v4.0.30319_32 - ok
19:52:57.0819 7888 [ 54308CDF97622FAE1620BB1EC39EF014 ] ClusDisk C:\WINDOWS\system32\DRIVERS\ClusDisk.sys
19:52:57.0866 7888 ClusDisk - ok
19:52:57.0897 7888 [ C40FB2610969B282CB0873CA8030A884 ] CmdIde C:\WINDOWS\system32\DRIVERS\cmdide.sys
19:52:57.0991 7888 CmdIde - ok
19:52:57.0991 7888 COMSysApp - ok
19:52:58.0022 7888 [ 126D049A6E6B6CB8DF1C69D3E2A8C0C4 ] Cpqarray C:\WINDOWS\system32\DRIVERS\cpqarray.sys
19:52:58.0100 7888 Cpqarray - ok
19:52:58.0100 7888 [ D31CB94A4ACAD58ABB6CF74B7EF1CE1F ] cpqarry2 C:\WINDOWS\system32\DRIVERS\cpqarry2.sys
19:52:58.0147 7888 cpqarry2 - ok
19:52:58.0162 7888 [ 0C5DCC2DF112B7352B9427D943CF56BC ] cpqcissm C:\WINDOWS\system32\DRIVERS\cpqcissm.sys
19:52:58.0225 7888 cpqcissm - ok
19:52:58.0241 7888 [ FED86C9F250FC641B37C933E4C214A8A ] cpqfcalm C:\WINDOWS\system32\DRIVERS\cpqfcalm.sys
19:52:58.0272 7888 cpqfcalm - ok
19:52:58.0397 7888 cpuz135 - ok
19:52:58.0428 7888 [ 0EE27D9DBB208C13314F3C60F66AED26 ] crcdisk C:\WINDOWS\system32\DRIVERS\crcdisk.sys
19:52:58.0506 7888 crcdisk - ok
19:52:58.0537 7888 [ FEB85DA744DD3F41A427CF6D2BC04FE4 ] CryptSvc C:\WINDOWS\System32\cryptsvc.dll
19:52:58.0616 7888 CryptSvc - ok
19:52:58.0647 7888 [ 8CE90C5C311592273AB0FB39A2D23896 ] dac2w2k C:\WINDOWS\system32\DRIVERS\dac2w2k.sys
19:52:58.0709 7888 dac2w2k - ok
19:52:58.0725 7888 [ 19B8202934B660C4EC2E64354437A854 ] dac960nt C:\WINDOWS\system32\DRIVERS\dac960nt.sys
19:52:58.0803 7888 dac960nt - ok
19:52:58.0850 7888 [ 2E1499B98177D93552E8971E63F01E9A ] dcdbas C:\WINDOWS\system32\DRIVERS\dcdbas32.sys
19:52:58.0866 7888 dcdbas - ok
19:52:58.0897 7888 [ 0DD50B633418EA7A463C1F9A4046A20C ] dcevt32 C:\Program Files\Dell\SysMgt\dataeng\bin\dsm_sa_eventmgr32.exe
19:52:58.0912 7888 dcevt32 - ok
19:52:58.0944 7888 [ 305A8757D66B5D416B47C497C27A01FE ] DcomLaunch C:\WINDOWS\system32\rpcss.dll
19:52:58.0959 7888 DcomLaunch - ok
19:52:58.0975 7888 [ 82AA01CCE9E5DD89DF26700BD1EDD36F ] dcstor32 C:\Program Files\Dell\SysMgt\dataeng\bin\dsm_sa_datamgr32.exe
19:52:58.0975 7888 dcstor32 - ok
19:52:58.0991 7888 [ 264E592A99801B682C98984588A7D7B5 ] dellcerc C:\WINDOWS\system32\DRIVERS\dellcerc.sys
19:52:59.0069 7888 dellcerc - ok
19:52:59.0100 7888 [ 6217AA084EF7E052F3B5D7C3F67F68AF ] Dfs C:\WINDOWS\system32\Dfssvc.exe
19:52:59.0147 7888 Dfs - ok
19:52:59.0147 7888 [ 444726B01C31D29C70E60F7C35DE43E5 ] DfsDriver C:\WINDOWS\system32\drivers\Dfs.sys
19:52:59.0194 7888 DfsDriver - ok
19:52:59.0241 7888 [ 1201DF9A11FBB0F69EBD22E503D3BC87 ] Dhcp C:\WINDOWS\System32\dhcpcsvc.dll
19:52:59.0319 7888 Dhcp - ok
19:52:59.0366 7888 [ E0BE3E7F71415351F90AF4CE21ED9DD7 ] DHCPServer C:\WINDOWS\system32\tcpsvcs.exe
19:52:59.0475 7888 DHCPServer - ok
19:52:59.0506 7888 [ 98433302C02F1168EFB7364F8111A179 ] Disk C:\WINDOWS\system32\DRIVERS\disk.sys
19:52:59.0584 7888 Disk - ok
19:52:59.0600 7888 dmadmin - ok
19:52:59.0616 7888 [ 89FA376D83042F6F1AED505106A5719D ] dmboot C:\WINDOWS\system32\drivers\dmboot.sys
19:52:59.0694 7888 dmboot - ok
19:52:59.0709 7888 [ 15081421EE62DC1C95ABB387D9081571 ] dmio C:\WINDOWS\system32\drivers\dmio.sys
19:52:59.0819 7888 dmio - ok
19:52:59.0819 7888 [ 3D9BFA13B6F1CD2D91C50C52B32E91A2 ] dmload C:\WINDOWS\system32\drivers\dmload.sys
19:52:59.0912 7888 dmload - ok
19:52:59.0928 7888 [ 78A11666307820AF94B5712D53DECC55 ] dmserver C:\WINDOWS\System32\dmserver.dll
19:53:00.0022 7888 dmserver - ok
19:53:00.0084 7888 [ 2A1614828BE1E1558D06D3B2D6BEAF9B ] DNS C:\WINDOWS\System32\dns.exe
19:53:00.0116 7888 DNS - ok
19:53:00.0147 7888 [ E927F3B46F85D934C8F420FE08593D1B ] Dnscache C:\WINDOWS\System32\dnsrslvr.dll
19:53:00.0162 7888 Dnscache - ok
19:53:00.0162 7888 [ 110406BC22A72E2DCBB0A86E0542AB1C ] dpti2o C:\WINDOWS\system32\DRIVERS\dpti2o.sys
19:53:00.0256 7888 dpti2o - ok
19:53:00.0272 7888 elxstor - ok
19:53:00.0303 7888 [ 6F09AE902663735B6BD24198D25F453A ] ERSvc C:\WINDOWS\System32\ersvc.dll
19:53:00.0397 7888 ERSvc - ok
19:53:00.0412 7888 [ CF500580CDD83B145646A4DCFCE1CF3C ] Eventlog C:\WINDOWS\system32\services.exe
19:53:00.0428 7888 Eventlog - ok
19:53:00.0459 7888 [ C17C56E91045E14DF45D62DD89AED50C ] EventSystem C:\WINDOWS\system32\es.dll
19:53:00.0475 7888 EventSystem - ok
19:53:00.0506 7888 [ 65D15D220CC427E2915C1682CEFE604B ] EXIFS C:\WINDOWS\system32\drivers\exifs.sys
19:53:00.0506 7888 EXIFS ( UnsignedFile.Multi.Generic ) - warning
19:53:00.0506 7888 EXIFS - detected UnsignedFile.Multi.Generic (1)
19:53:00.0553 7888 [ E792A18ABDC32286212DCE8E75BAA124 ] Fastfat C:\WINDOWS\system32\drivers\Fastfat.sys
19:53:00.0631 7888 Fastfat - ok
19:53:00.0631 7888 [ 5090CD3F6AB1D71AD507953CFF556EA9 ] Fdc C:\WINDOWS\system32\DRIVERS\fdc.sys
19:53:00.0709 7888 Fdc - ok
19:53:00.0741 7888 [ B485AC2EDC466C538BDFF32BC3F2E506 ] Fips C:\WINDOWS\system32\drivers\Fips.sys
19:53:00.0819 7888 Fips - ok
19:53:00.0834 7888 [ C621A51F415419A3145A5939ABDE39FA ] Flpydisk C:\WINDOWS\system32\DRIVERS\flpydisk.sys
19:53:00.0912 7888 Flpydisk - ok
19:53:00.0928 7888 [ F978277EF786532195CDD9F88E908632 ] FltMgr C:\WINDOWS\system32\DRIVERS\fltMgr.sys
19:53:01.0006 7888 FltMgr - ok
19:53:01.0037 7888 [ 8BA7C024070F2B7FDD98ED8A4BA41789 ] FontCache3.0.0.0 c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
19:53:01.0037 7888 FontCache3.0.0.0 - ok
19:53:01.0053 7888 [ AEBFF3D810B74971B91B2B77B289A98B ] Fs_Rec C:\WINDOWS\system32\drivers\Fs_Rec.sys
19:53:01.0131 7888 Fs_Rec - ok
19:53:01.0147 7888 [ 4C533B70AFA917416AEC57FCBEECB57D ] Ftdisk C:\WINDOWS\system32\DRIVERS\ftdisk.sys
19:53:01.0225 7888 Ftdisk - ok
19:53:01.0225 7888 [ 30B1653A955F548352024A5FEE203CC3 ] Gpc C:\WINDOWS\system32\DRIVERS\msgpc.sys
19:53:01.0319 7888 Gpc - ok
19:53:01.0366 7888 [ 40CA39DBA80372ED8EC34C4BECE68495 ] helpsvc C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll
19:53:01.0444 7888 helpsvc - ok
19:53:01.0475 7888 [ 4828C4244081EB4132868EA3E93456BB ] HidServ C:\WINDOWS\System32\hidserv.dll
19:53:01.0553 7888 HidServ - ok
19:53:01.0569 7888 [ 90A325E14F9B95F17712707B1A7181B5 ] HidUsb C:\WINDOWS\system32\DRIVERS\hidusb.sys
19:53:01.0662 7888 HidUsb - ok
19:53:01.0694 7888 [ 8A445379D6E73731A6A37318DBB0C880 ] hpcisss C:\WINDOWS\system32\DRIVERS\hpcisss.sys
19:53:01.0772 7888 hpcisss - ok
19:53:01.0787 7888 [ CF54B5F4192FA5F669D13EE700FC9DCE ] hpn C:\WINDOWS\system32\DRIVERS\hpn.sys
19:53:01.0866 7888 hpn - ok
19:53:01.0881 7888 [ D3704DA43183412DFA0DC1F31051D447 ] hpt3xx C:\WINDOWS\system32\DRIVERS\hpt3xx.sys
19:53:01.0959 7888 hpt3xx - ok
19:53:01.0991 7888 [ 7A5D176C4B43F0A47DA4051C96C56439 ] HTTP C:\WINDOWS\system32\Drivers\HTTP.sys
19:53:02.0022 7888 HTTP - ok
19:53:02.0037 7888 [ D4B61A935670C57A0DEA81B4F4A12169 ] HTTPFilter C:\WINDOWS\system32\lsass.exe
19:53:02.0116 7888 HTTPFilter - ok
19:53:02.0131 7888 [ F198C5BA41CD0F3983DDAD09EAF77300 ] i2omgmt C:\WINDOWS\system32\drivers\i2omgmt.sys
19:53:02.0194 7888 i2omgmt - ok
19:53:02.0225 7888 [ 615395FC46EEEA7E7E822D4BE8006862 ] i2omp C:\WINDOWS\system32\DRIVERS\i2omp.sys
19:53:02.0303 7888 i2omp - ok
19:53:02.0334 7888 [ 68E8FF9EEAF8B37A66CAC2C57835FFBD ] i8042prt C:\WINDOWS\system32\DRIVERS\i8042prt.sys
19:53:02.0412 7888 i8042prt - ok
19:53:02.0553 7888 [ C01AC32DC5C03076CFB852CB5DA5229C ] idsvc c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
19:53:02.0569 7888 idsvc - ok
19:53:02.0600 7888 [ AA9AB3B793401463BB938ADEF5FA8266 ] iirsp C:\WINDOWS\system32\DRIVERS\iirsp.sys
19:53:02.0678 7888 iirsp - ok
19:53:02.0694 7888 [ 58AC18BC908A78FBA5430D23066D183A ] IISADMIN C:\WINDOWS\system32\inetsrv\inetinfo.exe
19:53:02.0756 7888 IISADMIN - ok
19:53:02.0772 7888 [ 58AC18BC908A78FBA5430D23066D183A ] IMAP4Svc C:\WINDOWS\system32\inetsrv\inetinfo.exe
19:53:02.0803 7888 IMAP4Svc - ok
19:53:02.0850 7888 [ 44C132B35921B54B4A9AC64369D86D83 ] imapi C:\WINDOWS\system32\DRIVERS\imapi.sys
19:53:02.0928 7888 imapi - ok
19:53:02.0959 7888 [ 5DA3013244229422C9CBD91A16A477C4 ] ImapiService C:\WINDOWS\system32\imapi.exe
19:53:03.0037 7888 ImapiService - ok
19:53:03.0053 7888 [ 1690A4BE249BA6195BA7258943CADA58 ] IntelIde C:\WINDOWS\system32\DRIVERS\intelide.sys
19:53:03.0131 7888 IntelIde - ok
19:53:03.0147 7888 [ E696E1E8032DEF1FA5BBC6C8F9E5A9F6 ] intelppm C:\WINDOWS\system32\DRIVERS\intelppm.sys
19:53:03.0162 7888 intelppm - ok
19:53:03.0178 7888 [ D7E7E7898A05C53DD862B49828747C1E ] Ip6Fw C:\WINDOWS\system32\DRIVERS\Ip6Fw.sys
19:53:03.0256 7888 Ip6Fw - ok
19:53:03.0256 7888 [ 5A41F207B7C39EE4918F7496A4F19B14 ] IpFilterDriver C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
19:53:03.0334 7888 IpFilterDriver - ok
19:53:03.0334 7888 IpInIp - ok
19:53:03.0350 7888 [ 890E7A14A63AEC2EA9257A79A88BE784 ] IpNat C:\WINDOWS\system32\DRIVERS\ipnat.sys
19:53:03.0444 7888 IpNat - ok
19:53:03.0444 7888 [ 1A9AEAC49683B32DF55B7FB1516F3028 ] IPSec C:\WINDOWS\system32\DRIVERS\ipsec.sys
19:53:03.0537 7888 IPSec - ok
19:53:03.0537 7888 [ C8594550880B16A31C99EC42B106E14F ] ipsraidn C:\WINDOWS\system32\DRIVERS\ipsraidn.sys
19:53:03.0584 7888 ipsraidn - ok
19:53:03.0600 7888 [ 11407EE682A2D5B0248DE8AF0F1A6996 ] IRENUM C:\WINDOWS\system32\DRIVERS\irenum.sys
19:53:03.0647 7888 IRENUM - ok
19:53:03.0662 7888 [ B71BA04A3B5D4404225CCDBF1969078F ] isapnp C:\WINDOWS\system32\DRIVERS\isapnp.sys
19:53:03.0756 7888 isapnp - ok
19:53:03.0787 7888 [ 1B1A2084540CC1F2E9A297A263D69D23 ] IsmServ C:\WINDOWS\System32\ismserv.exe
19:53:03.0834 7888 IsmServ - ok
19:53:03.0881 7888 [ E5097A07E14F36ABC21FA18D88F93655 ] Kbdclass C:\WINDOWS\system32\DRIVERS\kbdclass.sys
19:53:03.0959 7888 Kbdclass - ok
19:53:03.0975 7888 [ 665F2AE9286DBB05B045CCC02F7BC2F8 ] kbdhid C:\WINDOWS\system32\DRIVERS\kbdhid.sys
19:53:04.0069 7888 kbdhid - ok
19:53:04.0069 7888 [ D4B61A935670C57A0DEA81B4F4A12169 ] kdc C:\WINDOWS\System32\lsass.exe
19:53:04.0147 7888 kdc - ok
19:53:04.0178 7888 [ 7516B5F53A258BF152901554A005B7C4 ] KSecDD C:\WINDOWS\system32\drivers\KSecDD.sys
19:53:04.0303 7888 KSecDD - ok
19:53:04.0334 7888 [ 836EF0055FE63FAD9BD2B899014F9631 ] l2nd C:\WINDOWS\system32\DRIVERS\bxnd52x.sys
19:53:04.0350 7888 l2nd - ok
19:53:04.0381 7888 [ DFC5B13F931461ACC025D76D39AFEC0D ] lanmanserver C:\WINDOWS\System32\srvsvc.dll
19:53:04.0412 7888 lanmanserver - ok
19:53:04.0459 7888 [ 5E8A9C4673B194DD1181B3F003D4F996 ] lanmanworkstation C:\WINDOWS\System32\wkssvc.dll
19:53:04.0506 7888 lanmanworkstation - ok
19:53:04.0553 7888 [ 647945B72994E7B4A07F6DA10F1DCD79 ] LicenseService C:\WINDOWS\System32\llssrv.exe
19:53:04.0616 7888 LicenseService - ok
19:53:04.0631 7888 [ 1916D44188853A53DB93AECC6E6197D0 ] LmHosts C:\WINDOWS\System32\lmhsvc.dll
19:53:04.0709 7888 LmHosts - ok
19:53:04.0741 7888 [ FDD8BA3317E07F2E5AF608468821A093 ] lp6nds35 C:\WINDOWS\system32\DRIVERS\lp6nds35.sys
19:53:04.0819 7888 lp6nds35 - ok
19:53:05.0100 7888 [ 84663E46D4700BAD1455566AD6C7F63E ] LTService C:\WINDOWS\LTSvc\LTSVC.exe
19:53:05.0287 7888 LTService ( UnsignedFile.Multi.Generic ) - warning
19:53:05.0287 7888 LTService - detected UnsignedFile.Multi.Generic (1)
19:53:05.0334 7888 [ 880B96625544C4C34AEA975A68756C91 ] LTSvcMon C:\WINDOWS\LTsvc\LTSvcMon.exe
19:53:05.0350 7888 LTSvcMon ( UnsignedFile.Multi.Generic ) - warning
19:53:05.0350 7888 LTSvcMon - detected UnsignedFile.Multi.Generic (1)
19:53:05.0381 7888 [ 7CE5BA9DD4BEAFA48DD099564046C6DE ] Messenger C:\WINDOWS\System32\msgsvc.dll
19:53:05.0491 7888 Messenger - ok
19:53:05.0569 7888 [ B645C53365FCCF8FD000E2CAE909C811 ] MMRot C:\Program Files\Sophos\PureMessage\Bin\MMRot.exe
19:53:05.0569 7888 MMRot ( UnsignedFile.Multi.Generic ) - warning
19:53:05.0569 7888 MMRot - detected UnsignedFile.Multi.Generic (1)
19:53:05.0600 7888 [ C35BB38904D843C0465858195B30DAB7 ] mnmdd C:\WINDOWS\system32\drivers\mnmdd.sys
19:53:05.0709 7888 mnmdd - ok
19:53:05.0725 7888 [ E2D859FA2E90FD1F12CA0806DF8A4B3E ] mnmsrvc C:\WINDOWS\system32\mnmsrvc.exe
19:53:05.0834 7888 mnmsrvc - ok
19:53:05.0834 7888 [ 81EC1C6D3798B36A92A6D7A355BA2C62 ] Modem C:\WINDOWS\system32\drivers\Modem.sys
19:53:05.0928 7888 Modem - ok
19:53:05.0944 7888 [ AA50DA5AB638CE0BAB5F7D5D633110C2 ] Mouclass C:\WINDOWS\system32\DRIVERS\mouclass.sys
19:53:06.0022 7888 Mouclass - ok
19:53:06.0053 7888 [ 6824B20127716121B53A2EC2BD6739B7 ] mouhid C:\WINDOWS\system32\DRIVERS\mouhid.sys
19:53:06.0131 7888 mouhid - ok
19:53:06.0147 7888 [ FC43A7A34309C750B9DAEADF2F6EC9B9 ] MountMgr C:\WINDOWS\system32\drivers\MountMgr.sys
19:53:06.0225 7888 MountMgr - ok
19:53:06.0287 7888 [ C0F5378F099696A134A325C8A74A9A19 ] MQAC C:\WINDOWS\system32\drivers\mqac.sys
19:53:06.0334 7888 MQAC - ok
19:53:06.0381 7888 [ 91EBE05CA28A514FD563E79DC5466F5E ] mr2kserv C:\Program Files\Dell\SysMgt\sm\mr2kserv.exe
19:53:06.0381 7888 mr2kserv ( UnsignedFile.Multi.Generic ) - warning
19:53:06.0381 7888 mr2kserv - detected UnsignedFile.Multi.Generic (1)
19:53:06.0381 7888 [ 4FA93BA7AE719FB6C0A2BE09AC357863 ] mraid35x C:\WINDOWS\system32\DRIVERS\mraid35x.sys
19:53:06.0475 7888 mraid35x - ok
19:53:06.0522 7888 [ AB6DB63A1791F8E86B085291686464FD ] MRxDAV C:\WINDOWS\system32\DRIVERS\mrxdav.sys
19:53:06.0553 7888 MRxDAV - ok
19:53:06.0616 7888 [ 16936142FA1D989CF63FD22C8B9D4A6D ] MRxSmb C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
19:53:06.0678 7888 MRxSmb - ok
19:53:06.0725 7888 [ 2EAA1763A77BE385B9A71A843C7F159E ] MSDTC C:\WINDOWS\system32\msdtc.exe
19:53:06.0787 7888 MSDTC - ok
19:53:06.0881 7888 [ B3A81FDBCBE84136AB5ABDC7B802683D ] MSExchangeES C:\Program Files\Exchsrvr\bin\events.exe
19:53:06.0928 7888 MSExchangeES ( UnsignedFile.Multi.Generic ) - warning
19:53:06.0928 7888 MSExchangeES - detected UnsignedFile.Multi.Generic (1)
19:53:07.0225 7888 [ CD650A26B7257488B352AC9B27CA2126 ] MSExchangeIS C:\Program Files\Exchsrvr\bin\store.exe
19:53:07.0303 7888 MSExchangeIS ( UnsignedFile.Multi.Generic ) - warning
19:53:07.0303 7888 MSExchangeIS - detected UnsignedFile.Multi.Generic (1)
19:53:07.0412 7888 [ B4CDB17C573E06DDBFA700CF99158515 ] MSExchangeMGMT C:\Program Files\Exchsrvr\bin\exmgmt.exe
19:53:07.0459 7888 MSExchangeMGMT ( UnsignedFile.Multi.Generic ) - warning
19:53:07.0459 7888 MSExchangeMGMT - detected UnsignedFile.Multi.Generic (1)
19:53:07.0678 7888 [ CB328AD88808F6F1FB2B1E76EFFBD42C ] MSExchangeMTA C:\Program Files\Exchsrvr\bin\emsmta.exe
19:53:07.0725 7888 MSExchangeMTA ( UnsignedFile.Multi.Generic ) - warning
19:53:07.0725 7888 MSExchangeMTA - detected UnsignedFile.Multi.Generic (1)
19:53:07.0991 7888 [ 32C13ADADC481636F0B157BAA8EAA800 ] MSExchangeSA C:\Program Files\Exchsrvr\bin\mad.exe
19:53:08.0116 7888 MSExchangeSA ( UnsignedFile.Multi.Generic ) - warning
19:53:08.0116 7888 MSExchangeSA - detected UnsignedFile.Multi.Generic (1)
19:53:08.0178 7888 [ 2D952BA8DF9B5F3C13F92BAFB0EF5122 ] MSExchangeSRS C:\Program Files\Exchsrvr\bin\srsmain.exe
19:53:08.0272 7888 MSExchangeSRS ( UnsignedFile.Multi.Generic ) - warning
19:53:08.0272 7888 MSExchangeSRS - detected UnsignedFile.Multi.Generic (1)
19:53:08.0303 7888 [ 8F50B87361585763841C6B603D23260C ] Msfs C:\WINDOWS\system32\drivers\Msfs.sys
19:53:08.0381 7888 Msfs - ok
19:53:08.0397 7888 MSIServer - ok
19:53:08.0412 7888 [ 08F7749138452E61620064897969C96A ] MSMQ C:\WINDOWS\system32\mqsvc.exe
19:53:08.0428 7888 MSMQ - ok
19:53:08.0491 7888 [ 5C7157451DA94116443B96C4D59D059C ] MSSEARCH C:\Program Files\Common Files\System\MSSearch\Bin\mssearch.exe
19:53:08.0506 7888 MSSEARCH ( UnsignedFile.Multi.Generic ) - warning
19:53:08.0506 7888 MSSEARCH - detected UnsignedFile.Multi.Generic (1)
19:53:08.0522 7888 [ 92AFAB2F216CE8FFBAD3BC510FCF4A33 ] mssmbios C:\WINDOWS\system32\DRIVERS\mssmbios.sys
19:53:08.0616 7888 mssmbios - ok
19:53:08.0631 7888 MSSQL$SOPHOS - ok
19:53:08.0678 7888 [ 1D89EB4E2A99CABD4E81225F4F4C4B25 ] MSSQLServerADHelper C:\Program Files\Microsoft SQL Server\90\Shared\sqladhlp90.exe
19:53:08.0709 7888 MSSQLServerADHelper - ok
19:53:08.0741 7888 [ 834560ABEE4EAE62620F4026263AA051 ] Mup C:\WINDOWS\system32\drivers\Mup.sys
19:53:08.0787 7888 Mup - ok
19:53:08.0819 7888 [ C9DEAC695B5107C31B451F254DF7E3A4 ] Nbdrv C:\WINDOWS\system32\DRIVERS\nbdrv.sys
19:53:08.0850 7888 Nbdrv - ok
19:53:08.0866 7888 [ 33739AB31D36184772AF1EE132D5C2E2 ] NDIS C:\WINDOWS\system32\drivers\NDIS.sys
19:53:08.0959 7888 NDIS - ok
19:53:08.0991 7888 [ 888B08F81B7D8428A37439D15C27F419 ] NdisTapi C:\WINDOWS\system32\DRIVERS\ndistapi.sys
19:53:09.0037 7888 NdisTapi - ok
19:53:09.0053 7888 [ 8B8E682B03483092E17AB9DFE70FEDFF ] Ndisuio C:\WINDOWS\system32\DRIVERS\ndisuio.sys
19:53:09.0131 7888 Ndisuio - ok
19:53:09.0147 7888 [ 1B397EEF4614419BE5679E0209F7848B ] NdisWan C:\WINDOWS\system32\DRIVERS\ndiswan.sys
19:53:09.0241 7888 NdisWan - ok
19:53:09.0272 7888 [ 5298ED90BBE5C5EEEDC363EED2888A25 ] NDProxy C:\WINDOWS\system32\drivers\NDProxy.sys
19:53:09.0319 7888 NDProxy - ok
19:53:09.0366 7888 [ 145950AD525F8ECE3D1B9D9A583C3D6C ] NetBalancerService C:\Program Files\NetBalancer\SeriousBit.NetBalancer.Service.exe
19:53:09.0381 7888 NetBalancerService ( UnsignedFile.Multi.Generic ) - warning
19:53:09.0381 7888 NetBalancerService - detected UnsignedFile.Multi.Generic (1)
19:53:09.0381 7888 [ A0D5D6AE530CA78A062FC0471F1E6F78 ] NetBIOS C:\WINDOWS\system32\DRIVERS\netbios.sys
19:53:09.0522 7888 NetBIOS - ok
19:53:09.0569 7888 [ 75AB3CA3F9343CA877FD3FF1900BF5BB ] NetBT C:\WINDOWS\system32\DRIVERS\netbt.sys
19:53:09.0600 7888 NetBT - ok
19:53:09.0616 7888 [ 13D9A8B63A2A99A88339C0E00B702C92 ] NetDDE C:\WINDOWS\system32\netdde.exe
19:53:09.0725 7888 NetDDE - ok
19:53:09.0741 7888 [ 13D9A8B63A2A99A88339C0E00B702C92 ] NetDDEdsdm C:\WINDOWS\system32\netdde.exe
19:53:09.0819 7888 NetDDEdsdm - ok
19:53:09.0834 7888 [ D4B61A935670C57A0DEA81B4F4A12169 ] Netlogon C:\WINDOWS\system32\lsass.exe
19:53:09.0912 7888 Netlogon - ok
19:53:09.0928 7888 [ 12BCFB57162AD17CEA545E362CD886A8 ] Netman C:\WINDOWS\System32\netman.dll
19:53:10.0022 7888 Netman - ok
19:53:10.0084 7888 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpPortSharing C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
19:53:10.0303 7888 NetTcpPortSharing - ok
19:53:10.0334 7888 [ 802AB2E85621288FE716A8C91DF733FB ] nfrd960 C:\WINDOWS\system32\DRIVERS\nfrd960.sys
19:53:10.0397 7888 nfrd960 - ok
19:53:10.0428 7888 [ 2FCC6D31B7CED67E659B7C629CEC89D4 ] Nla C:\WINDOWS\System32\mswsock.dll
19:53:10.0475 7888 Nla - ok
19:53:10.0491 7888 [ 58AC18BC908A78FBA5430D23066D183A ] NntpSvc C:\WINDOWS\system32\inetsrv\inetinfo.exe
19:53:10.0537 7888 NntpSvc - ok
19:53:10.0537 7888 [ D5BB605F6DCBDFE0129670C8DE57913E ] Npfs C:\WINDOWS\system32\drivers\Npfs.sys
19:53:10.0647 7888 Npfs - ok
19:53:10.0709 7888 [ 981756F0532439AA3A1A4AE9DA9F930E ] NtFrs C:\WINDOWS\system32\ntfrs.exe
19:53:10.0772 7888 NtFrs - ok
19:53:10.0834 7888 [ 482EA51AADB8763A0F67588C394EC693 ] Ntfs C:\WINDOWS\system32\drivers\Ntfs.sys
19:53:10.0959 7888 Ntfs - ok
19:53:10.0975 7888 [ D4B61A935670C57A0DEA81B4F4A12169 ] NtLmSsp C:\WINDOWS\system32\lsass.exe
19:53:11.0053 7888 NtLmSsp - ok
19:53:11.0069 7888 [ FEA5225EF80D5930B86D7A6570BCBBDF ] NtmsSvc C:\WINDOWS\system32\ntmssvc.dll
19:53:11.0241 7888 NtmsSvc - ok
19:53:11.0241 7888 [ 5DB0EDE7AAF3A7BC9110D18C12524BE0 ] Null C:\WINDOWS\system32\drivers\Null.sys
19:53:11.0350 7888 Null - ok
19:53:11.0381 7888 [ 238114D2B9DA5A26CD4F6AA7C7687B29 ] nv_agp C:\WINDOWS\system32\DRIVERS\nv_agp.sys
19:53:11.0491 7888 nv_agp - ok
19:53:11.0569 7888 [ D52FA9AF66F997057734194CD64E6A85 ] omsad C:\Program Files\Dell\SysMgt\oma\bin\dsm_om_shrsvc32.exe
19:53:11.0569 7888 omsad - ok
19:53:11.0616 7888 [ 7A56CF3E3F12E8AF599963B16F50FB6A ] ose C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
19:53:11.0647 7888 ose - ok
19:53:11.0694 7888 [ EE3333B36DEB86A0D472F037172DA10A ] Parport C:\WINDOWS\system32\DRIVERS\parport.sys
19:53:11.0787 7888 Parport - ok
19:53:11.0819 7888 [ 4EB6F7418959444A06D3C51EB81BFF04 ] PartMgr C:\WINDOWS\system32\drivers\PartMgr.sys
19:53:11.0928 7888 PartMgr - ok
19:53:11.0928 7888 [ A9D29F3D7AE71B7EA721B53A0C436C66 ] Parvdm C:\WINDOWS\system32\DRIVERS\parvdm.sys
19:53:12.0022 7888 Parvdm - ok
19:53:12.0022 7888 [ 8217000E5C53CE823B3111F339E47C41 ] PCI C:\WINDOWS\system32\DRIVERS\pci.sys
19:53:12.0116 7888 PCI - ok
19:53:12.0131 7888 [ 7E3FB50AA22D4ED883C6ABDD40E9C60B ] PCIIde C:\WINDOWS\system32\DRIVERS\pciide.sys
19:53:12.0241 7888 PCIIde - ok
19:53:12.0256 7888 [ FC9F4C9C73E9698357C836BE4628A299 ] Pcmcia C:\WINDOWS\system32\drivers\Pcmcia.sys
19:53:12.0350 7888 Pcmcia - ok
19:53:12.0366 7888 PDCOMP - ok
19:53:12.0366 7888 PDFRAME - ok
19:53:12.0381 7888 PDRELI - ok
19:53:12.0381 7888 PDRFRAME - ok
19:53:12.0397 7888 [ 3472492C0F61F4C5E5E79EE5617ACF31 ] perc2 C:\WINDOWS\system32\DRIVERS\perc2.sys
19:53:12.0506 7888 perc2 - ok
19:53:12.0537 7888 [ F7A93284FD163F337C931863C95BDD23 ] perc2hib C:\WINDOWS\system32\DRIVERS\perc2hib.sys
19:53:12.0678 7888 perc2hib - ok
19:53:12.0741 7888 [ 96124310E8749146D4C121CCE93B2F71 ] percsas C:\WINDOWS\system32\DRIVERS\percsas.sys
19:53:12.0772 7888 percsas - ok
19:53:12.0803 7888 [ CF500580CDD83B145646A4DCFCE1CF3C ] PlugPlay C:\WINDOWS\system32\services.exe
19:53:12.0819 7888 PlugPlay - ok
19:53:12.0850 7888 [ 6305A77FCEE22859CDA1B2B406203373 ] PMScanner C:\Program Files\Sophos\PureMessage\Bin\PMScanner.exe
19:53:12.0866 7888 PMScanner ( UnsignedFile.Multi.Generic ) - warning
19:53:12.0866 7888 PMScanner - detected UnsignedFile.Multi.Generic (1)
19:53:12.0881 7888 [ D4B61A935670C57A0DEA81B4F4A12169 ] PolicyAgent C:\WINDOWS\system32\lsass.exe
19:53:12.0959 7888 PolicyAgent - ok
19:53:12.0975 7888 [ 58AC18BC908A78FBA5430D23066D183A ] POP3Svc C:\WINDOWS\system32\inetsrv\inetinfo.exe
19:53:13.0006 7888 POP3Svc - ok
19:53:13.0022 7888 PORTACCESSOR_1 - ok
19:53:13.0084 7888 [ 4454F2639BCCA93BE86A45137E427277 ] PptpMiniport C:\WINDOWS\system32\DRIVERS\raspptp.sys
19:53:13.0194 7888 PptpMiniport - ok
19:53:13.0194 7888 [ D4B61A935670C57A0DEA81B4F4A12169 ] ProtectedStorage C:\WINDOWS\system32\lsass.exe
19:53:13.0272 7888 ProtectedStorage - ok
19:53:13.0272 7888 [ 0320FD91FB5ED4298355977CECFC0EB4 ] Ptilink C:\WINDOWS\system32\DRIVERS\ptilink.sys
19:53:13.0366 7888 Ptilink - ok
19:53:13.0397 7888 [ 8485BD4C7A781FD1754FF42B1DC36A9A ] ql1080 C:\WINDOWS\system32\DRIVERS\ql1080.sys
19:53:13.0491 7888 ql1080 - ok
19:53:13.0506 7888 [ FE6256E7714E96DF9E8DF44A9F3DB791 ] Ql10wnt C:\WINDOWS\system32\DRIVERS\ql10wnt.sys
19:53:13.0616 7888 Ql10wnt - ok
19:53:13.0631 7888 [ CA811EAEB772D19A8D37DB71564368F9 ] ql12160 C:\WINDOWS\system32\DRIVERS\ql12160.sys
19:53:13.0741 7888 ql12160 - ok
19:53:13.0756 7888 [ 7E88FD1BAA8B3E6510E83A62040582D6 ] ql1240 C:\WINDOWS\system32\DRIVERS\ql1240.sys
19:53:13.0866 7888 ql1240 - ok
19:53:13.0881 7888 [ D78E91DACE023A05FAAF5EE6CE7F289C ] ql1280 C:\WINDOWS\system32\DRIVERS\ql1280.sys
19:53:13.0975 7888 ql1280 - ok
19:53:13.0991 7888 [ E6BDB78D0F8108487709EAD87AC848DA ] ql2100 C:\WINDOWS\system32\DRIVERS\ql2100.sys
19:53:14.0053 7888 ql2100 - ok
19:53:14.0069 7888 [ C6587711B694FEB0521AE2639307CF59 ] ql2200 C:\WINDOWS\system32\DRIVERS\ql2200.sys
19:53:14.0147 7888 ql2200 - ok
19:53:14.0194 7888 [ 5D60B4DB95D1A85FE102217F815696A3 ] ql2300 C:\WINDOWS\system32\DRIVERS\ql2300.sys
19:53:14.0256 7888 ql2300 - ok
19:53:14.0303 7888 [ 48EE7B6802C0306F9A66F34DB7E9EF75 ] RasAcd C:\WINDOWS\system32\DRIVERS\rasacd.sys
19:53:14.0397 7888 RasAcd - ok
19:53:14.0412 7888 [ ED67FA5DC9CE0BFC5CCCE4296C684A57 ] RasAuto C:\WINDOWS\System32\rasauto.dll
19:53:14.0522 7888 RasAuto - ok
19:53:14.0537 7888 [ 3633175613E052ECB41776DEE2777A89 ] Rasl2tp C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
19:53:14.0631 7888 Rasl2tp - ok
19:53:14.0647 7888 [ 02BC610CC90CA5415EB2C9409E77D583 ] RasMan C:\WINDOWS\System32\rasmans.dll
19:53:14.0725 7888 RasMan - ok
19:53:14.0741 7888 [ 59842F0A22216A71CADE6F89FE84C973 ] RasPppoe C:\WINDOWS\system32\DRIVERS\raspppoe.sys
19:53:14.0834 7888 RasPppoe - ok
19:53:14.0866 7888 [ 5B11871DE804D3ED28BBDCC65FE14EDE ] Raspti C:\WINDOWS\system32\DRIVERS\raspti.sys
19:53:14.0959 7888 Raspti - ok
19:53:14.0975 7888 [ 4496B15C44CCB703FBC54F2CF5B67F15 ] Rdbss C:\WINDOWS\system32\DRIVERS\rdbss.sys
19:53:15.0037 7888 Rdbss - ok
19:53:15.0053 7888 [ AC5BB528ECD2BEA4FF4BFF9DF9BAF749 ] RDPCDD C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
19:53:15.0162 7888 RDPCDD - ok
19:53:15.0194 7888 [ FF678596B761E1CCBA79F49981EF51BC ] rdpdr C:\WINDOWS\system32\DRIVERS\rdpdr.sys
19:53:15.0303 7888 rdpdr - ok
19:53:15.0350 7888 [ 28FDAB66B0378842522FA693B60B6234 ] RDPWD C:\WINDOWS\system32\drivers\RDPWD.sys
19:53:15.0381 7888 RDPWD - ok
19:53:15.0412 7888 [ 81F1CF0ED96E58A391FF83F792C87F3E ] RDSessMgr C:\WINDOWS\system32\sessmgr.exe
19:53:15.0537 7888 RDSessMgr - ok
19:53:15.0553 7888 [ C6F8751F3263603935866E71629CFAE4 ] redbook C:\WINDOWS\system32\DRIVERS\redbook.sys
19:53:15.0647 7888 redbook - ok
19:53:15.0662 7888 [ D8F172C1CA72666D8193E226DA7225F4 ] RemoteAccess C:\WINDOWS\System32\mprdim.dll
19:53:15.0772 7888 RemoteAccess - ok
19:53:15.0772 7888 [ 55EFA91D1C0DE44C22D2D83413B06510 ] RemoteRegistry C:\WINDOWS\system32\regsvc.dll
19:53:15.0866 7888 RemoteRegistry - ok
19:53:15.0881 7888 [ 58AC18BC908A78FBA5430D23066D183A ] RESvc C:\WINDOWS\system32\inetsrv\inetinfo.exe
19:53:15.0928 7888 RESvc - ok
19:53:15.0944 7888 [ 96AB54F5914FAEF9708008E2763F3A0E ] RMCAST C:\WINDOWS\system32\DRIVERS\RMCAST.sys
19:53:15.0975 7888 RMCAST - ok
19:53:15.0991 7888 [ A83414D7A45555274E99793AA22D54AB ] RpcLocator C:\WINDOWS\system32\locator.exe
19:53:16.0100 7888 RpcLocator - ok
19:53:16.0116 7888 [ 305A8757D66B5D416B47C497C27A01FE ] RpcSs C:\WINDOWS\system32\rpcss.dll
19:53:16.0131 7888 RpcSs - ok
19:53:16.0162 7888 [ 3357C6EDD71E73110C83F54E35ECDE4D ] RSoPProv C:\WINDOWS\system32\RSoPProv.exe
19:53:16.0209 7888 RSoPProv - ok
19:53:16.0225 7888 [ 34D79729D6E4D1289E08322405045085 ] sacdrv C:\WINDOWS\system32\drivers\sacdrv.sys
19:53:16.0287 7888 sacdrv - ok
19:53:16.0303 7888 [ 77919394900DEC12C8E65CB35D6272FE ] sacsvr C:\WINDOWS\system32\sacsvr.dll
19:53:16.0350 7888 sacsvr - ok
19:53:16.0366 7888 [ D4B61A935670C57A0DEA81B4F4A12169 ] SamSs C:\WINDOWS\system32\lsass.exe
19:53:16.0428 7888 SamSs - ok
19:53:16.0506 7888 [ CA7D665C871026AE6EAD6E52F141F92A ] SAVAdminService C:\Program Files\Sophos\Sophos Anti-Virus\SAVAdminService.exe
19:53:16.0522 7888 SAVAdminService - ok
19:53:16.0537 7888 [ 8FEA397834DDC35DCA940BF4E6B07522 ] SavexSrvc C:\Program Files\Sophos\PureMessage\Bin\SavexSrvc.exe
19:53:16.0537 7888 SavexSrvc ( UnsignedFile.Multi.Generic ) - warning
19:53:16.0537 7888 SavexSrvc - detected UnsignedFile.Multi.Generic (1)
19:53:16.0569 7888 [ 737FD3EBC87BA44998E0C5A5AEC8272F ] SavexWebAgent C:\Program Files\Sophos\PureMessage\Bin\SavexWebAgent.exe
19:53:16.0569 7888 SavexWebAgent ( UnsignedFile.Multi.Generic ) - warning
19:53:16.0569 7888 SavexWebAgent - detected UnsignedFile.Multi.Generic (1)
19:53:16.0616 7888 [ 8BCF84AEC77AEB4567116502D105162F ] SAVOnAccessControl C:\WINDOWS\system32\DRIVERS\savonaccesscontrol.sys
19:53:16.0662 7888 SAVOnAccessControl - ok
19:53:16.0694 7888 [ 8DFE54F1965C3B49C599CBB186C1EE8F ] SAVOnAccessFilter C:\WINDOWS\system32\DRIVERS\savonaccessfilter.sys
19:53:16.0725 7888 SAVOnAccessFilter - ok
19:53:16.0741 7888 [ B8A272D4E91EFB366E16BEA0FA42D7EE ] SAVService C:\Program Files\Sophos\Sophos Anti-Virus\SavService.exe
19:53:16.0772 7888 SAVService - ok
19:53:16.0787 7888 [ EDF6B1852A55581ECC6BA18B4E2C6E8E ] SCardSvr C:\WINDOWS\System32\SCardSvr.exe
19:53:16.0881 7888 SCardSvr - ok
19:53:16.0897 7888 [ 7E60F04AE424401A14D153CA6E851A85 ] Schedule C:\WINDOWS\system32\schedsvc.dll
19:53:16.0975 7888 Schedule - ok
19:53:17.0006 7888 [ 4F21774E1259A546B992D9EAACDFD778 ] sdcfilter C:\WINDOWS\system32\DRIVERS\sdcfilter.sys
19:53:17.0053 7888 sdcfilter - ok
19:53:17.0084 7888 [ 90A3935D05B494A5A39D37E71F09A677 ] Secdrv C:\WINDOWS\system32\DRIVERS\secdrv.sys
19:53:17.0131 7888 Secdrv - ok
19:53:17.0147 7888 [ 03911D9A5D15A80301E767F787C0B015 ] seclogon C:\WINDOWS\System32\seclogon.dll
19:53:17.0319 7888 seclogon - ok
19:53:17.0350 7888 [ 97B6172283112AF7451E4ABE83DD6F24 ] SENS C:\WINDOWS\system32\sens.dll
19:53:17.0428 7888 SENS - ok
19:53:17.0428 7888 [ B261D4597BF9A2723B7020207260C72A ] serenum C:\WINDOWS\system32\DRIVERS\serenum.sys
19:53:17.0522 7888 serenum - ok
19:53:17.0537 7888 [ 95768FDE08DD34089AA90DCCB5537704 ] Serial C:\WINDOWS\system32\DRIVERS\serial.sys
19:53:17.0631 7888 Serial - ok
19:53:17.0662 7888 [ B5A2859FAA8D8D37D24D4F3D6E95D9C2 ] Server Administrator C:\Program Files\Dell\SysMgt\iws\bin\win32\dsm_om_connsvc32.exe
19:53:17.0662 7888 Server Administrator - ok
19:53:17.0694 7888 [ 831826DC54FA225F0B654EF2F1E13AF9 ] Sfloppy C:\WINDOWS\system32\drivers\Sfloppy.sys
19:53:17.0772 7888 Sfloppy - ok
19:53:17.0787 7888 [ 27C6B8C2AFED21C10429A56DB95735F6 ] SharedAccess C:\WINDOWS\system32\ipnathlp.dll
19:53:17.0897 7888 SharedAccess - ok
19:53:17.0928 7888 [ 0AF6401BDBD41A8B7AED5C923B8FDF4D ] ShellHWDetection C:\WINDOWS\System32\shsvcs.dll
19:53:17.0975 7888 ShellHWDetection - ok
19:53:17.0975 7888 Simbad - ok
19:53:17.0991 7888 [ E7A36BE30C0BD75EEEFC4099CA5429AA ] sisagp C:\WINDOWS\system32\DRIVERS\sisagp.sys
19:53:18.0069 7888 sisagp - ok
19:53:18.0084 7888 [ E407A8EEA2FD4BF560C05C0EBF1793B3 ] SKMScan C:\WINDOWS\system32\DRIVERS\skmscan.sys
19:53:18.0116 7888 SKMScan - ok
19:53:18.0116 7888 [ 58AC18BC908A78FBA5430D23066D183A ] SMTPSVC C:\WINDOWS\system32\inetsrv\inetinfo.exe
19:53:18.0162 7888 SMTPSVC - ok
19:53:18.0241 7888 [ 1DD15CBAE4AA7B2F5166D0C2700AEF94 ] Sophos Agent C:\Program Files\Sophos\SCC\Remote Management System\ManagementAgentNT.exe
19:53:18.0241 7888 Sophos Agent ( UnsignedFile.Multi.Generic ) - warning
19:53:18.0241 7888 Sophos Agent - detected UnsignedFile.Multi.Generic (1)
19:53:18.0272 7888 [ 8A12AB5DE877B8F97D5EE70E16A5C9B2 ] Sophos AutoUpdate Service C:\Program Files\Sophos\AutoUpdate\ALsvc.exe
19:53:18.0287 7888 Sophos AutoUpdate Service - ok
19:53:18.0303 7888 [ 4CD761A31B1C95F8AA70A86549FA48C4 ] Sophos Certification Manager C:\Program Files\Sophos\SCC\CertificationManagerServiceNT.exe
19:53:18.0319 7888 Sophos Certification Manager ( UnsignedFile.Multi.Generic ) - warning
19:53:18.0319 7888 Sophos Certification Manager - detected UnsignedFile.Multi.Generic (1)
19:53:18.0397 7888 [ 61F8DDB696596DFE8318DDCB4433C9EF ] Sophos Management Service C:\Program Files\Sophos\SCC\MgntSvc.exe
19:53:18.0491 7888 Sophos Management Service ( UnsignedFile.Multi.Generic ) - warning
19:53:18.0491 7888 Sophos Management Service - detected UnsignedFile.Multi.Generic (1)
19:53:18.0522 7888 [ 65F816D7534D25623DA909911FF7E7D8 ] Sophos Message Router C:\Program Files\Sophos\SCC\Remote Management System\RouterNT.exe
19:53:18.0537 7888 Sophos Message Router ( UnsignedFile.Multi.Generic ) - warning
19:53:18.0537 7888 Sophos Message Router - detected UnsignedFile.Multi.Generic (1)
19:53:18.0600 7888 [ BD03374253F79CE7A716A870DC85BD84 ] Sophos Web Control Service C:\Program Files\Sophos\Sophos Anti-Virus\Web Control\swc_service.exe
19:53:18.0616 7888 Sophos Web Control Service - ok
19:53:18.0647 7888 [ 3BDF94E0827D13E44249A646F6C0EB7C ] SophosBootDriver C:\WINDOWS\system32\DRIVERS\SophosBootDriver.sys
19:53:18.0709 7888 SophosBootDriver - ok
19:53:18.0725 7888 [ 30B32E3127D9BBAA1E32394134718070 ] Spooler C:\WINDOWS\system32\spoolsv.exe
19:53:18.0741 7888 Spooler - ok
19:53:18.0787 7888 [ 86EBD8B1F23E743AAD21F4D5B4D40985 ] SQLBrowser C:\Program Files\Microsoft SQL Server\90\Shared\sqlbrowser.exe
19:53:18.0803 7888 SQLBrowser - ok
19:53:18.0850 7888 [ D89083C4EB02DACA8F944B0E05E57F9D ] SQLWriter C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
19:53:18.0850 7888 SQLWriter - ok
19:53:18.0881 7888 [ E8B1A07774A9E4FEC3105CBAD49BF289 ] Srv C:\WINDOWS\system32\DRIVERS\srv.sys
19:53:18.0897 7888 Srv - ok
19:53:18.0928 7888 [ 0DF3C24094F68A5E5FA77A681E438A46 ] stisvc C:\WINDOWS\system32\wiaservc.dll
19:53:19.0053 7888 stisvc - ok
19:53:19.0131 7888 [ 57948A76BEB7BDF8683F978D8701AA69 ] SUM C:\Program Files\Sophos\SCC\SUM\SUMService.exe
19:53:19.0147 7888 SUM - ok
19:53:19.0178 7888 [ 93965919785102BA847545AB460CE2DF ] swenum C:\WINDOWS\system32\DRIVERS\swenum.sys
19:53:19.0272 7888 swenum - ok
19:53:19.0381 7888 [ 6D092C11A8D706F0A0F6791B4C6FC59B ] swi_service C:\Program Files\Sophos\Sophos Anti-Virus\Web Intelligence\swi_service.exe
19:53:19.0444 7888 swi_service - ok
19:53:19.0553 7888 [ B4882758DFBF19E33E50F503AD3C26B9 ] swi_update C:\Documents and Settings\All Users\Application Data\Sophos\Web Intelligence\swi_update.exe
19:53:19.0616 7888 swi_update - ok
19:53:19.0631 7888 [ 0BA2F4D23D62F7475A70D1988142D6BD ] swprv C:\WINDOWS\System32\swprv.dll
19:53:19.0709 7888 swprv - ok
19:53:19.0725 7888 [ 3D05BFDAEF2D2D7EED998BA126FB3466 ] symc810 C:\WINDOWS\system32\DRIVERS\symc810.sys
19:53:19.0819 7888 symc810 - ok
19:53:19.0834 7888 [ 57F992062E8FF2D37572EC5823F956E7 ] symc8xx C:\WINDOWS\system32\DRIVERS\symc8xx.sys
19:53:19.0928 7888 symc8xx - ok
19:53:19.0944 7888 [ 868204832E011E2D64281D7EABEE572E ] symmpi C:\WINDOWS\system32\DRIVERS\symmpi.sys
19:53:20.0037 7888 symmpi - ok
19:53:20.0037 7888 [ 1FBDDF0DC4583922C904195823EBD795 ] sym_hi C:\WINDOWS\system32\DRIVERS\sym_hi.sys
19:53:20.0131 7888 sym_hi - ok
19:53:20.0131 7888 [ EBD31469527AFA05814B3D1A140C24E2 ] sym_u3 C:\WINDOWS\system32\DRIVERS\sym_u3.sys
19:53:20.0225 7888 sym_u3 - ok
19:53:20.0241 7888 [ CC8610D2FFAFF19D5C9CF8CE9FFAD71A ] SysmonLog C:\WINDOWS\system32\smlogsvc.exe
19:53:20.0319 7888 SysmonLog - ok
19:53:20.0334 7888 [ CE1FCAF92F06BB8549C9E1B8605B90CC ] TapiSrv C:\WINDOWS\System32\tapisrv.dll
19:53:20.0412 7888 TapiSrv - ok
19:53:20.0444 7888 [ 2617E35A208F1570D6928C13E63019FF ] Tcpip C:\WINDOWS\system32\DRIVERS\tcpip.sys
19:53:20.0475 7888 Tcpip - ok
19:53:20.0506 7888 [ 45D49FB800463DE84D1CC2E231319AD5 ] TDPIPE C:\WINDOWS\system32\drivers\TDPIPE.sys
19:53:20.0631 7888 TDPIPE - ok
19:53:20.0631 7888 [ D7C31008DE209B8B11CED207580E9C91 ] TDTCP C:\WINDOWS\system32\drivers\TDTCP.sys
19:53:20.0709 7888 TDTCP - ok
19:53:20.0741 7888 [ A01E46FFF445A38D35DB188C5458582C ] TermDD C:\WINDOWS\system32\DRIVERS\termdd.sys
19:53:20.0819 7888 TermDD - ok
19:53:20.0850 7888 [ 5F0BD29CBD95465A3AA3CA319BC591A9 ] TermService C:\WINDOWS\System32\termsrv.dll
19:53:20.0928 7888 TermService - ok
19:53:20.0944 7888 [ 0AF6401BDBD41A8B7AED5C923B8FDF4D ] Themes C:\WINDOWS\System32\shsvcs.dll
19:53:20.0959 7888 Themes - ok
19:53:20.0959 7888 [ FE7FF05A90C1A24855B1CDC066B959E0 ] TlntSvr C:\WINDOWS\system32\tlntsvr.exe
19:53:21.0100 7888 TlntSvr - ok
19:53:21.0116 7888 [ D5A95A19CA6E79633AFDE86FB8D039FD ] TosIde C:\WINDOWS\system32\DRIVERS\toside.sys
19:53:21.0194 7888 TosIde - ok
19:53:21.0194 7888 [ 2EE42ACED5FD4E1988116EDECED90E93 ] TrkSvr C:\WINDOWS\system32\trksvr.dll
19:53:21.0256 7888 TrkSvr - ok
19:53:21.0272 7888 [ 671FC35E995FFDBCED00202771C6D169 ] TrkWks C:\WINDOWS\system32\trkwks.dll
19:53:21.0350 7888 TrkWks - ok
19:53:21.0381 7888 [ 43992245309838EACD05506B474985E5 ] Tssdis C:\WINDOWS\System32\tssdis.exe
19:53:21.0444 7888 Tssdis - ok
19:53:21.0459 7888 [ C26024265A7523312A5D06FC33AA57AA ] Udfs C:\WINDOWS\system32\drivers\Udfs.sys
19:53:21.0553 7888 Udfs - ok
19:53:21.0569 7888 [ CBA54E96B4F5BA978B325AE4CC58D392 ] uliagpkx C:\WINDOWS\system32\DRIVERS\uliagpkx.sys
19:53:21.0647 7888 uliagpkx - ok
19:53:21.0662 7888 [ B4BFEE4AE295853065F1695A196D9790 ] ultra C:\WINDOWS\system32\DRIVERS\ultra.sys
19:53:21.0725 7888 ultra - ok
19:53:21.0741 7888 [ 997FE835C85D0FB0501DF6664D6FD072 ] UMWdf C:\WINDOWS\system32\wdfmgr.exe
19:53:21.0834 7888 UMWdf - ok
19:53:21.0866 7888 [ B0E133858E63940755B496761834F334 ] Update C:\WINDOWS\system32\DRIVERS\update.sys
19:53:21.0928 7888 Update - ok
19:53:21.0944 7888 [ 92C3A632E963A8224FE62AA37C9508F6 ] UPS C:\WINDOWS\System32\ups.exe
19:53:22.0053 7888 UPS - ok
19:53:22.0069 7888 [ 185959A7FCCFD38AA71A274AE6252B88 ] usbccgp C:\WINDOWS\system32\DRIVERS\usbccgp.sys
19:53:22.0163 7888 usbccgp - ok
19:53:22.0178 7888 [ 47A3A958375907B460ADCA9346F61AD3 ] usbehci C:\WINDOWS\system32\DRIVERS\usbehci.sys
19:53:22.0209 7888 usbehci - ok
19:53:22.0225 7888 [ 5B938480456D22531E3D4B5E0CB3A45D ] usbhub C:\WINDOWS\system32\DRIVERS\usbhub.sys
19:53:22.0256 7888 usbhub - ok
19:53:22.0288 7888 [ D0740FF9F7E819486E88096826B4DC37 ] USBSTOR C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
19:53:22.0381 7888 USBSTOR - ok
19:53:22.0397 7888 [ 94FBD89F5B60E4060823F88A84007114 ] usbuhci C:\WINDOWS\system32\DRIVERS\usbuhci.sys
19:53:22.0428 7888 usbuhci - ok
19:53:22.0459 7888 [ 5CE9331DC4C9E3B1FA4AAEF1B212701F ] vds C:\WINDOWS\System32\vds.exe
19:53:22.0538 7888 vds - ok
19:53:22.0553 7888 [ 2EB062B434792BB6BB614F107DD3A5CF ] vga C:\WINDOWS\system32\DRIVERS\vgapnp.sys
19:53:22.0647 7888 vga - ok
19:53:22.0663 7888 [ 062FBC10147FD837D819F94AA394E661 ] VgaSave C:\WINDOWS\System32\drivers\vga.sys
19:53:22.0741 7888 VgaSave - ok
19:53:22.0756 7888 [ 8F411DF1FC53E2F8581F125B40674EE1 ] viaagp C:\WINDOWS\system32\DRIVERS\viaagp.sys
19:53:22.0850 7888 viaagp - ok
19:53:22.0850 7888 [ 19A9A290823D0FDF7316440922DA175E ] ViaIde C:\WINDOWS\system32\DRIVERS\viaide.sys
19:53:22.0928 7888 ViaIde - ok
19:53:22.0959 7888 [ 45AE67C387A640EC6E228F30D421F088 ] VolSnap C:\WINDOWS\system32\DRIVERS\volsnap.sys
19:53:23.0053 7888 VolSnap - ok
19:53:23.0084 7888 [ 74A6820792E5BCA5EE4D0CC4595C6916 ] VSS C:\WINDOWS\System32\vssvc.exe
19:53:23.0131 7888 VSS - ok
19:53:23.0147 7888 [ 42CDAE64DA5BEABB51C0C0F613658545 ] W32Time C:\WINDOWS\system32\w32time.dll
19:53:23.0225 7888 W32Time - ok
19:53:23.0241 7888 [ DB0E023EE673896AD1780ACAD3BAB393 ] W3SVC C:\WINDOWS\system32\inetsrv\iisw3adm.dll
19:53:23.0288 7888 W3SVC - ok
19:53:23.0303 7888 [ CE030B1D05A01FA012D32F2D25676B1C ] Wanarp C:\WINDOWS\system32\DRIVERS\wanarp.sys
19:53:23.0381 7888 Wanarp - ok
19:53:23.0428 7888 [ FD47474BD21794508AF449D9D91AF6E6 ] Wdf01000 C:\WINDOWS\system32\DRIVERS\Wdf01000.sys
19:53:23.0506 7888 Wdf01000 - ok
19:53:23.0522 7888 WDICA - ok
19:53:23.0553 7888 [ 6F66E66AB1C25C0BD363F2252DB04360 ] WebClient C:\WINDOWS\System32\webclnt.dll
19:53:23.0647 7888 WebClient - ok
19:53:23.0678 7888 [ 52B7C88EE18C31AEA1078671CAEC5FED ] Wecsvc C:\WINDOWS\system32\wecsvc.dll
19:53:23.0741 7888 Wecsvc - ok
19:53:23.0756 7888 WinHttpAutoProxySvc - ok
19:53:23.0788 7888 [ F8D5B9C1A26C933B9EA7740BAB35BCF5 ] winmgmt C:\WINDOWS\system32\wbem\WMIsvc.dll
19:53:23.0866 7888 winmgmt - ok
19:53:23.0913 7888 [ CE2D930B9B80F16EA0BF7C177B5F4F2D ] WinRM C:\WINDOWS\system32\WsmSvc.dll
19:53:23.0959 7888 WinRM - ok
19:53:24.0006 7888 [ D346E2F289F23E557DDFB9132D1DAB35 ] WLBS C:\WINDOWS\system32\DRIVERS\wlbs.sys
19:53:24.0069 7888 WLBS - ok
19:53:24.0084 7888 [ 4D32F7BDBF325792AE28D5380DDF6BCF ] WmdmPmSN C:\WINDOWS\system32\mspmsnsv.dll
19:53:24.0178 7888 WmdmPmSN - ok
19:53:24.0225 7888 [ 2085B957FB56927A8F3768DE740612C4 ] Wmi C:\WINDOWS\System32\advapi32.dll
19:53:24.0303 7888 Wmi - ok
19:53:24.0350 7888 [ 796D30C693F7B8A717499A9ABEB3AF39 ] WmiApSrv C:\WINDOWS\system32\wbem\wmiapsrv.exe
19:53:24.0459 7888 WmiApSrv - ok
19:53:24.0522 7888 [ DCF3E3EDF5109EE8BC02FE6E1F045795 ] WPFFontCache_v0400 C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
19:53:24.0631 7888 WPFFontCache_v0400 - ok
19:53:24.0647 7888 WSearch - ok
19:53:24.0678 7888 [ 996CEC79B1662044E8462E130A65739E ] wuauserv C:\WINDOWS\system32\wuauserv.dll
19:53:24.0756 7888 wuauserv - ok
19:53:24.0788 7888 [ E21B2D0A0D4AB1D2441FE9FCC961C392 ] WZCSVC C:\WINDOWS\System32\wzcsvc.dll
19:53:24.0881 7888 WZCSVC - ok
19:53:24.0897 7888 [ C5B83F9A09A3EBFE8A931472F6DA4E38 ] xmlprov C:\WINDOWS\System32\xmlprov.dll
19:53:24.0991 7888 xmlprov - ok
19:53:25.0006 7888 ================ Scan global ===============================
19:53:25.0038 7888 [ CF34734715FAADCF38BFDAA9E65DCC57 ] C:\WINDOWS\system32\basesrv.dll
19:53:25.0069 7888 [ 829491617349A73A68A4BAD75C4E7AE2 ] C:\WINDOWS\system32\winsrv.dll
19:53:25.0084 7888 [ 829491617349A73A68A4BAD75C4E7AE2 ] C:\WINDOWS\system32\winsrv.dll
19:53:25.0100 7888 [ CF500580CDD83B145646A4DCFCE1CF3C ] C:\WINDOWS\system32\services.exe
19:53:25.0100 7888 [Global] - ok
19:53:25.0100 7888 ================ Scan MBR ==================================
19:53:25.0116 7888 [ 5C616939100B85E558DA92B899A0FC36 ] \Device\Harddisk0\DR0
19:53:25.0428 7888 \Device\Harddisk0\DR0 - ok
19:53:25.0428 7888 ================ Scan VBR ==================================
19:53:25.0428 7888 [ 1F6D5EA95FF1A8A9D53EEFCBAC4F9945 ] \Device\Harddisk0\DR0\Partition1
19:53:25.0428 7888 \Device\Harddisk0\DR0\Partition1 - ok
19:53:25.0428 7888 ================ Scan active images ========================
19:53:25.0428 7888 [ E696E1E8032DEF1FA5BBC6C8F9E5A9F6 ] C:\WINDOWS\system32\drivers\intelppm.sys
19:53:25.0428 7888 C:\WINDOWS\system32\drivers\intelppm.sys - ok
19:53:25.0444 7888 [ 836EF0055FE63FAD9BD2B899014F9631 ] C:\WINDOWS\system32\drivers\bxnd52x.sys
19:53:25.0444 7888 C:\WINDOWS\system32\drivers\bxnd52x.sys - ok
19:53:25.0444 7888 [ 47A3A958375907B460ADCA9346F61AD3 ] C:\WINDOWS\system32\drivers\usbehci.sys
19:53:25.0444 7888 C:\WINDOWS\system32\drivers\usbehci.sys - ok
19:53:25.0459 7888 [ 2AE1896E3CC2F133404FEB7B7790888F ] C:\WINDOWS\system32\drivers\usbport.sys
19:53:25.0459 7888 C:\WINDOWS\system32\drivers\usbport.sys - ok
19:53:25.0459 7888 [ 94FBD89F5B60E4060823F88A84007114 ] C:\WINDOWS\system32\drivers\usbuhci.sys
19:53:25.0459 7888 C:\WINDOWS\system32\drivers\usbuhci.sys - ok
19:53:25.0491 7888 [ 45D0FCF155316EEC6731563F55EA2349 ] C:\WINDOWS\system32\drivers\videoprt.sys
19:53:25.0491 7888 C:\WINDOWS\system32\drivers\videoprt.sys - ok
19:53:25.0491 7888 [ 1F0C648C684F25BDC6A156D2A690E91E ] C:\WINDOWS\system32\drivers\watchdog.sys
19:53:25.0491 7888 C:\WINDOWS\system32\drivers\watchdog.sys - ok
19:53:25.0506 7888 [ FB61579B321953E2DFC92A1CC12BE2C6 ] C:\WINDOWS\system32\drivers\ati2mtag.sys
19:53:25.0506 7888 C:\WINDOWS\system32\drivers\ati2mtag.sys - ok
19:53:25.0506 7888 [ 5090CD3F6AB1D71AD507953CFF556EA9 ] C:\WINDOWS\system32\drivers\fdc.sys
19:53:25.0506 7888 C:\WINDOWS\system32\drivers\fdc.sys - ok
19:53:25.0506 7888 [ 5BFD980C2107D88101D1DC14055526FC ] C:\WINDOWS\system32\drivers\audstub.sys
19:53:25.0506 7888 C:\WINDOWS\system32\drivers\audstub.sys - ok
19:53:25.0522 7888 [ 825AA877A852ECC731FA0C39C8C37744 ] C:\WINDOWS\system32\drivers\cdrom.sys
19:53:25.0522 7888 C:\WINDOWS\system32\drivers\cdrom.sys - ok
19:53:25.0553 7888 [ 44C132B35921B54B4A9AC64369D86D83 ] C:\WINDOWS\system32\drivers\imapi.sys
19:53:25.0553 7888 C:\WINDOWS\system32\drivers\imapi.sys - ok
19:53:25.0553 7888 [ 94EE60937AF6ECDB38A6FCF4328F8804 ] C:\WINDOWS\system32\drivers\ks.sys
19:53:25.0553 7888 C:\WINDOWS\system32\drivers\ks.sys - ok
19:53:25.0569 7888 [ C6F8751F3263603935866E71629CFAE4 ] C:\WINDOWS\system32\drivers\redbook.sys
19:53:25.0569 7888 C:\WINDOWS\system32\drivers\redbook.sys - ok
19:53:25.0569 7888 [ B261D4597BF9A2723B7020207260C72A ] C:\WINDOWS\system32\drivers\serenum.sys
19:53:25.0569 7888 C:\WINDOWS\system32\drivers\serenum.sys - ok
19:53:25.0569 7888 [ 95768FDE08DD34089AA90DCCB5537704 ] C:\WINDOWS\system32\drivers\serial.sys
19:53:25.0569 7888 C:\WINDOWS\system32\drivers\serial.sys - ok
19:53:25.0584 7888 [ 3633175613E052ECB41776DEE2777A89 ] C:\WINDOWS\system32\drivers\rasl2tp.sys
19:53:25.0584 7888 C:\WINDOWS\system32\drivers\rasl2tp.sys - ok
19:53:25.0600 7888 [ 888B08F81B7D8428A37439D15C27F419 ] C:\WINDOWS\system32\drivers\ndistapi.sys
19:53:25.0600 7888 C:\WINDOWS\system32\drivers\ndistapi.sys - ok
19:53:25.0616 7888 [ 1B397EEF4614419BE5679E0209F7848B ] C:\WINDOWS\system32\drivers\ndiswan.sys
19:53:25.0616 7888 C:\WINDOWS\system32\drivers\ndiswan.sys - ok
19:53:25.0616 7888 [ 0320FD91FB5ED4298355977CECFC0EB4 ] C:\WINDOWS\system32\drivers\ptilink.sys
19:53:25.0616 7888 C:\WINDOWS\system32\drivers\ptilink.sys - ok
19:53:25.0631 7888 [ 59842F0A22216A71CADE6F89FE84C973 ] C:\WINDOWS\system32\drivers\raspppoe.sys
19:53:25.0631 7888 C:\WINDOWS\system32\drivers\raspppoe.sys - ok
19:53:25.0631 7888 [ 4454F2639BCCA93BE86A45137E427277 ] C:\WINDOWS\system32\drivers\raspptp.sys
19:53:25.0631 7888 C:\WINDOWS\system32\drivers\raspptp.sys - ok
19:53:25.0631 7888 [ C9CAA4CD76F86D12A994EAD4883BE276 ] C:\WINDOWS\system32\drivers\tdi.sys
19:53:25.0631 7888 C:\WINDOWS\system32\drivers\tdi.sys - ok
19:53:25.0663 7888 [ 5B11871DE804D3ED28BBDCC65FE14EDE ] C:\WINDOWS\system32\drivers\raspti.sys
19:53:25.0663 7888 C:\WINDOWS\system32\drivers\raspti.sys - ok
19:53:25.0663 7888 [ FF678596B761E1CCBA79F49981EF51BC ] C:\WINDOWS\system32\drivers\rdpdr.sys
19:53:25.0663 7888 C:\WINDOWS\system32\drivers\rdpdr.sys - ok
19:53:25.0678 7888 [ E5097A07E14F36ABC21FA18D88F93655 ] C:\WINDOWS\system32\drivers\kbdclass.sys
19:53:25.0678 7888 C:\WINDOWS\system32\drivers\kbdclass.sys - ok
19:53:25.0678 7888 [ AA50DA5AB638CE0BAB5F7D5D633110C2 ] C:\WINDOWS\system32\drivers\mouclass.sys
19:53:25.0678 7888 C:\WINDOWS\system32\drivers\mouclass.sys - ok
19:53:25.0694 7888 [ C9DEAC695B5107C31B451F254DF7E3A4 ] C:\WINDOWS\system32\drivers\nbdrv.sys
19:53:25.0694 7888 C:\WINDOWS\system32\drivers\nbdrv.sys - ok
19:53:25.0694 7888 [ 93965919785102BA847545AB460CE2DF ] C:\WINDOWS\system32\drivers\swenum.sys
19:53:25.0694 7888 C:\WINDOWS\system32\drivers\swenum.sys - ok
19:53:25.0725 7888 [ A01E46FFF445A38D35DB188C5458582C ] C:\WINDOWS\system32\drivers\termdd.sys
19:53:25.0725 7888 C:\WINDOWS\system32\drivers\termdd.sys - ok
19:53:25.0725 7888 [ B0E133858E63940755B496761834F334 ] C:\WINDOWS\system32\drivers\update.sys
19:53:25.0725 7888 C:\WINDOWS\system32\drivers\update.sys - ok
19:53:25.0725 7888 [ 92AFAB2F216CE8FFBAD3BC510FCF4A33 ] C:\WINDOWS\system32\drivers\mssmbios.sys
19:53:25.0725 7888 C:\WINDOWS\system32\drivers\mssmbios.sys - ok
19:53:25.0741 7888 [ 2E1499B98177D93552E8971E63F01E9A ] C:\WINDOWS\system32\drivers\dcdbas32.sys
19:53:25.0741 7888 C:\WINDOWS\system32\drivers\dcdbas32.sys - ok
19:53:25.0741 7888 [ 5298ED90BBE5C5EEEDC363EED2888A25 ] C:\WINDOWS\system32\drivers\ndproxy.sys
19:53:25.0741 7888 C:\WINDOWS\system32\drivers\ndproxy.sys - ok
19:53:25.0756 7888 [ 9D714494DC0A9E16A7758B9543286CB8 ] C:\WINDOWS\system32\drivers\usbd.sys
19:53:25.0756 7888 C:\WINDOWS\system32\drivers\usbd.sys - ok
19:53:25.0756 7888 [ 5B938480456D22531E3D4B5E0CB3A45D ] C:\WINDOWS\system32\drivers\usbhub.sys
19:53:25.0756 7888 C:\WINDOWS\system32\drivers\usbhub.sys - ok
19:53:25.0772 7888 [ C621A51F415419A3145A5939ABDE39FA ] C:\WINDOWS\system32\drivers\flpydisk.sys
19:53:25.0772 7888 C:\WINDOWS\system32\drivers\flpydisk.sys - ok
19:53:25.0772 7888 [ 831826DC54FA225F0B654EF2F1E13AF9 ] C:\WINDOWS\system32\drivers\sfloppy.sys
19:53:25.0772 7888 C:\WINDOWS\system32\drivers\sfloppy.sys - ok
19:53:25.0772 7888 [ F198C5BA41CD0F3983DDAD09EAF77300 ] C:\WINDOWS\system32\drivers\i2omgmt.sys
19:53:25.0772 7888 C:\WINDOWS\system32\drivers\i2omgmt.sys - ok
19:53:25.0788 7888 [ 8BCF84AEC77AEB4567116502D105162F ] C:\WINDOWS\system32\drivers\savonaccesscontrol.sys
19:53:25.0788 7888 C:\WINDOWS\system32\drivers\savonaccesscontrol.sys - ok
19:53:25.0788 7888 [ 8DFE54F1965C3B49C599CBB186C1EE8F ] C:\WINDOWS\system32\drivers\savonaccessfilter.sys
19:53:25.0788 7888 C:\WINDOWS\system32\drivers\savonaccessfilter.sys - ok
19:53:25.0819 7888 [ AEBFF3D810B74971B91B2B77B289A98B ] C:\WINDOWS\system32\drivers\fs_rec.sys
19:53:25.0819 7888 C:\WINDOWS\system32\drivers\fs_rec.sys - ok
19:53:25.0819 7888 [ 5DB0EDE7AAF3A7BC9110D18C12524BE0 ] C:\WINDOWS\system32\drivers\null.sys
19:53:25.0819 7888 C:\WINDOWS\system32\drivers\null.sys - ok
19:53:25.0834 7888 [ 99572503E15A3D10239B7B9887CBAF89 ] C:\WINDOWS\system32\drivers\beep.sys
19:53:25.0834 7888 C:\WINDOWS\system32\drivers\beep.sys - ok
19:53:25.0834 7888 [ 68E8FF9EEAF8B37A66CAC2C57835FFBD ] C:\WINDOWS\system32\drivers\i8042prt.sys
19:53:25.0834 7888 C:\WINDOWS\system32\drivers\i8042prt.sys - ok
19:53:25.0834 7888 [ 7D5C69EEC828A400AE4414CEB9DAA335 ] C:\WINDOWS\system32\drivers\hidparse.sys
19:53:25.0834 7888 C:\WINDOWS\system32\drivers\hidparse.sys - ok
19:53:25.0850 7888 [ 665F2AE9286DBB05B045CCC02F7BC2F8 ] C:\WINDOWS\system32\drivers\kbdhid.sys
19:53:25.0850 7888 C:\WINDOWS\system32\drivers\kbdhid.sys - ok
19:53:25.0850 7888 [ 062FBC10147FD837D819F94AA394E661 ] C:\WINDOWS\system32\drivers\vga.sys
19:53:25.0850 7888 C:\WINDOWS\system32\drivers\vga.sys - ok
19:53:25.0866 7888 [ C35BB38904D843C0465858195B30DAB7 ] C:\WINDOWS\system32\drivers\mnmdd.sys
19:53:25.0866 7888 C:\WINDOWS\system32\drivers\mnmdd.sys - ok
19:53:25.0866 7888 [ 8F50B87361585763841C6B603D23260C ] C:\WINDOWS\system32\drivers\msfs.sys
19:53:25.0866 7888 C:\WINDOWS\system32\drivers\msfs.sys - ok
19:53:25.0866 7888 [ AC5BB528ECD2BEA4FF4BFF9DF9BAF749 ] C:\WINDOWS\system32\drivers\rdpcdd.sys
19:53:25.0866 7888 C:\WINDOWS\system32\drivers\rdpcdd.sys - ok
19:53:25.0881 7888 [ D5BB605F6DCBDFE0129670C8DE57913E ] C:\WINDOWS\system32\drivers\npfs.sys
19:53:25.0881 7888 C:\WINDOWS\system32\drivers\npfs.sys - ok
19:53:25.0881 7888 [ 48EE7B6802C0306F9A66F34DB7E9EF75 ] C:\WINDOWS\system32\drivers\rasacd.sys
19:53:25.0881 7888 C:\WINDOWS\system32\drivers\rasacd.sys - ok
19:53:25.0897 7888 [ 1A9AEAC49683B32DF55B7FB1516F3028 ] C:\WINDOWS\system32\drivers\ipsec.sys
19:53:25.0897 7888 C:\WINDOWS\system32\drivers\ipsec.sys - ok
19:53:25.0913 7888 [ 30B1653A955F548352024A5FEE203CC3 ] C:\WINDOWS\system32\drivers\msgpc.sys
19:53:25.0913 7888 C:\WINDOWS\system32\drivers\msgpc.sys - ok
19:53:25.0928 7888 [ 2617E35A208F1570D6928C13E63019FF ] C:\WINDOWS\system32\drivers\tcpip.sys
19:53:25.0928 7888 C:\WINDOWS\system32\drivers\tcpip.sys - ok
19:53:25.0928 7888 [ 75AB3CA3F9343CA877FD3FF1900BF5BB ] C:\WINDOWS\system32\drivers\netbt.sys
19:53:25.0928 7888 C:\WINDOWS\system32\drivers\netbt.sys - ok
19:53:25.0928 7888 [ CE030B1D05A01FA012D32F2D25676B1C ] C:\WINDOWS\system32\drivers\wanarp.sys
19:53:25.0928 7888 C:\WINDOWS\system32\drivers\wanarp.sys - ok
19:53:25.0944 7888 [ 1352E45B12732172655C445A57E20991 ] C:\WINDOWS\system32\drivers\afd.sys
19:53:25.0944 7888 C:\WINDOWS\system32\drivers\afd.sys - ok
19:53:25.0944 7888 [ A0D5D6AE530CA78A062FC0471F1E6F78 ] C:\WINDOWS\system32\drivers\netbios.sys
19:53:25.0944 7888 C:\WINDOWS\system32\drivers\netbios.sys - ok
19:53:25.0975 7888 [ 4496B15C44CCB703FBC54F2CF5B67F15 ] C:\WINDOWS\system32\drivers\rdbss.sys
19:53:25.0975 7888 C:\WINDOWS\system32\drivers\rdbss.sys - ok
19:53:25.0975 7888 [ E407A8EEA2FD4BF560C05C0EBF1793B3 ] C:\WINDOWS\system32\drivers\skmscan.sys
19:53:25.0975 7888 C:\WINDOWS\system32\drivers\skmscan.sys - ok
19:53:25.0975 7888 [ 16936142FA1D989CF63FD22C8B9D4A6D ] C:\WINDOWS\system32\drivers\mrxsmb.sys
19:53:25.0975 7888 C:\WINDOWS\system32\drivers\mrxsmb.sys - ok
19:53:25.0991 7888 [ B485AC2EDC466C538BDFF32BC3F2E506 ] C:\WINDOWS\system32\drivers\fips.sys
19:53:25.0991 7888 C:\WINDOWS\system32\drivers\fips.sys - ok
19:53:25.0991 7888 [ 97E9B4A202E645E7826BE7597B335C47 ] C:\WINDOWS\system32\smss.exe
19:53:25.0991 7888 C:\WINDOWS\system32\smss.exe - ok
19:53:26.0006 7888 [ D2CC61892D88C3DD273CD8A3E3572FE8 ] C:\WINDOWS\system32\ntdll.dll
19:53:26.0006 7888 C:\WINDOWS\system32\ntdll.dll - ok
19:53:26.0022 7888 [ 39ECC326D3F5531A13A1C0F0B43A8EDD ] C:\WINDOWS\system32\autochk.exe
19:53:26.0022 7888 C:\WINDOWS\system32\autochk.exe - ok
19:53:26.0022 7888 [ E6D72780C957B69C48BFC66BC3ECDAD4 ] C:\WINDOWS\system32\drivers\cdfs.sys
19:53:26.0022 7888 C:\WINDOWS\system32\drivers\cdfs.sys - ok
19:53:26.0038 7888 [ 69F18F0F9AA59602869A48F0A70EB210 ] C:\WINDOWS\system32\drivers\hidclass.sys
19:53:26.0038 7888 C:\WINDOWS\system32\drivers\hidclass.sys - ok
19:53:26.0038 7888 [ 90A325E14F9B95F17712707B1A7181B5 ] C:\WINDOWS\system32\drivers\hidusb.sys
19:53:26.0038 7888 C:\WINDOWS\system32\drivers\hidusb.sys - ok
19:53:26.0053 7888 [ 6824B20127716121B53A2EC2BD6739B7 ] C:\WINDOWS\system32\drivers\mouhid.sys
19:53:26.0053 7888 C:\WINDOWS\system32\drivers\mouhid.sys - ok
19:53:26.0084 7888 [ 5FDA10727DE8AEDD786542CC237544EB ] C:\WINDOWS\system32\drivers\diskdump.sys
19:53:26.0084 7888 C:\WINDOWS\system32\drivers\diskdump.sys - ok
19:53:26.0084 7888 [ 96124310E8749146D4C121CCE93B2F71 ] C:\WINDOWS\system32\drivers\percsas.sys
19:53:26.0084 7888 C:\WINDOWS\system32\drivers\percsas.sys - ok
19:53:26.0084 7888 [ 9635D8791790482BC533BB447F5DEBC5 ] C:\WINDOWS\system32\drivers\dxapi.sys
19:53:26.0084 7888 C:\WINDOWS\system32\drivers\dxapi.sys - ok
19:53:26.0100 7888 [ F48A2368B099E9EA65EA59990E1981CB ] C:\WINDOWS\system32\win32k.sys
19:53:26.0100 7888 C:\WINDOWS\system32\win32k.sys - ok
19:53:26.0100 7888 [ CF34734715FAADCF38BFDAA9E65DCC57 ] C:\WINDOWS\system32\basesrv.dll
19:53:26.0100 7888 C:\WINDOWS\system32\basesrv.dll - ok
19:53:26.0116 7888 [ 273BFDE4BA97F0F47B57BF795D0A641C ] C:\WINDOWS\system32\csrsrv.dll
19:53:26.0116 7888 C:\WINDOWS\system32\csrsrv.dll - ok
19:53:26.0131 7888 [ 7FD73B26623E4AFF9D233E2F87BDD650 ] C:\WINDOWS\system32\csrss.exe
19:53:26.0131 7888 C:\WINDOWS\system32\csrss.exe - ok
19:53:26.0131 7888 [ 829491617349A73A68A4BAD75C4E7AE2 ] C:\WINDOWS\system32\winsrv.dll
19:53:26.0131 7888 C:\WINDOWS\system32\winsrv.dll - ok
19:53:26.0147 7888 [ 1959150096B010BA953A78B0D6B0B4E4 ] C:\WINDOWS\system32\user32.dll
19:53:26.0147 7888 C:\WINDOWS\system32\user32.dll - ok
19:53:26.0147 7888 [ 1D9A52E6EC83701464959078868295D4 ] C:\WINDOWS\system32\kernel32.dll
19:53:26.0147 7888 C:\WINDOWS\system32\kernel32.dll - ok
19:53:26.0147 7888 [ 284A13EBBFDE5F31A3C40505474C66DD ] C:\WINDOWS\system32\gdi32.dll
19:53:26.0147 7888 C:\WINDOWS\system32\gdi32.dll - ok
19:53:26.0163 7888 [ 2085B957FB56927A8F3768DE740612C4 ] C:\WINDOWS\system32\advapi32.dll
19:53:26.0163 7888 C:\WINDOWS\system32\advapi32.dll - ok
19:53:26.0178 7888 [ 834C667480F2B831789916B2327E2BCC ] C:\WINDOWS\system32\rpcrt4.dll
19:53:26.0178 7888 C:\WINDOWS\system32\rpcrt4.dll - ok
19:53:26.0194 7888 [ E31C0503AF7E7E578C27A9AD36D90991 ] C:\WINDOWS\system32\secur32.dll
19:53:26.0194 7888 C:\WINDOWS\system32\secur32.dll - ok
19:53:26.0194 7888 [ 2B34133204F219775AFE58AD102EC6EE ] C:\WINDOWS\system32\drivers\dxgthk.sys
19:53:26.0194 7888 C:\WINDOWS\system32\drivers\dxgthk.sys - ok
19:53:26.0194 7888 [ 3C5F365D5B43A6EC7EE688957A31C885 ] C:\WINDOWS\system32\drivers\dxg.sys
19:53:26.0194 7888 C:\WINDOWS\system32\drivers\dxg.sys - ok
19:53:26.0209 7888 [ 7234F20B9E051C1966CFECEA36D063D0 ] C:\WINDOWS\system32\ati2dvag.dll
19:53:26.0209 7888 C:\WINDOWS\system32\ati2dvag.dll - ok
19:53:26.0225 7888 [ 6DFA713A2B026A46DB41C1EFE6D6D32B ] C:\WINDOWS\system32\ati2cqag.dll
19:53:26.0225 7888 C:\WINDOWS\system32\ati2cqag.dll - ok
19:53:26.0241 7888 [ EB6D0B15458D9BEB8222F488685BDC0D ] C:\WINDOWS\system32\atikvmag.dll
19:53:26.0241 7888 C:\WINDOWS\system32\atikvmag.dll - ok
19:53:26.0241 7888 [ DB25CF277435D44FC15CCBF21AA1C5A2 ] C:\WINDOWS\system32\vga.dll
19:53:26.0241 7888 C:\WINDOWS\system32\vga.dll - ok
19:53:26.0256 7888 [ D8AE62D87BB342E76604E2C721C58943 ] C:\WINDOWS\system32\ati3duag.dll
19:53:26.0256 7888 C:\WINDOWS\system32\ati3duag.dll - ok
19:53:26.0256 7888 [ 18B454452F5269BAD9C89167F3B97A2B ] C:\WINDOWS\system32\ativvaxx.dll
19:53:26.0256 7888 C:\WINDOWS\system32\ativvaxx.dll - ok
19:53:26.0256 7888 [ B4AA8AE0F18E5DFCF99A671A181D3EDC ] C:\WINDOWS\system32\winlogon.exe
19:53:26.0256 7888 C:\WINDOWS\system32\winlogon.exe - ok
19:53:26.0288 7888 [ 1C14676A93C9853774A3B29E13D61C37 ] C:\WINDOWS\system32\crypt32.dll
19:53:26.0288 7888 C:\WINDOWS\system32\crypt32.dll - ok
19:53:26.0288 7888 [ 1511446A6A7CD453299815575C92E5C6 ] C:\WINDOWS\system32\msvcrt.dll
19:53:26.0288 7888 C:\WINDOWS\system32\msvcrt.dll - ok
19:53:26.0303 7888 [ 4A893D3AF4EB07FC10EF93495FE3027B ] C:\WINDOWS\system32\msasn1.dll
19:53:26.0303 7888 C:\WINDOWS\system32\msasn1.dll - ok
19:53:26.0303 7888 [ 470978E3506185738377728AE1C3DE35 ] C:\WINDOWS\system32\nddeapi.dll
19:53:26.0303 7888 C:\WINDOWS\system32\nddeapi.dll - ok
19:53:26.0319 7888 [ F80B80E6FA077103748F6FD78D66B468 ] C:\WINDOWS\system32\profmap.dll
19:53:26.0319 7888 C:\WINDOWS\system32\profmap.dll - ok
19:53:26.0334 7888 [ 770E7B1D6374C727D5AA74676E349854 ] C:\WINDOWS\system32\netapi32.dll
19:53:26.0334 7888 C:\WINDOWS\system32\netapi32.dll - ok
19:53:26.0334 7888 [ CDC5D1E1631183ED34A273A713446325 ] C:\WINDOWS\system32\psapi.dll
19:53:26.0334 7888 C:\WINDOWS\system32\psapi.dll - ok
19:53:26.0350 7888 [ 12AD0E89C2A2227A871696EC2708ACB1 ] C:\WINDOWS\system32\regapi.dll
19:53:26.0350 7888 C:\WINDOWS\system32\regapi.dll - ok
19:53:26.0350 7888 [ 13C5F34C2DBECEA629AFD37169C32E90 ] C:\WINDOWS\system32\userenv.dll
19:53:26.0350 7888 C:\WINDOWS\system32\userenv.dll - ok
19:53:26.0366 7888 [ 41F85BADF2D6AE56C380EFC9EAB609B4 ] C:\WINDOWS\system32\setupapi.dll
19:53:26.0366 7888 C:\WINDOWS\system32\setupapi.dll - ok
19:53:26.0366 7888 [ 2AAAA7E2A78E49EF17F09012DF440A6B ] C:\WINDOWS\system32\version.dll
19:53:26.0366 7888 C:\WINDOWS\system32\version.dll - ok
19:53:26.0381 7888 [ CE89456EFFC4DE48BF513FDA735C1A00 ] C:\PROGRA~1\Sophos\SOPHOS~1\SOPHOS~1.DLL
19:53:26.0381 7888 C:\PROGRA~1\Sophos\SOPHOS~1\SOPHOS~1.DLL - ok
19:53:26.0397 7888 [ E6B01492682B799479456A8E45C6A7B1 ] C:\WINDOWS\system32\imm32.dll
19:53:26.0397 7888 C:\WINDOWS\system32\imm32.dll - ok
19:53:26.0397 7888 [ C26F09825053405920FE2852E47BE3EC ] C:\WINDOWS\system32\winsta.dll
19:53:26.0397 7888 C:\WINDOWS\system32\winsta.dll - ok
19:53:26.0397 7888 [ A50CBBA72209B75B3E8D538190A0C155 ] C:\WINDOWS\system32\ws2help.dll
19:53:26.0397 7888 C:\WINDOWS\system32\ws2help.dll - ok
19:53:26.0413 7888 [ 5C34F97D87B2A8C9CB4422E67F2DAB61 ] C:\WINDOWS\system32\ws2_32.dll
19:53:26.0413 7888 C:\WINDOWS\system32\ws2_32.dll - ok
19:53:26.0413 7888 [ A123192C4F65B9B1846F502255244916 ] C:\WINDOWS\system32\sxs.dll
19:53:26.0413 7888 C:\WINDOWS\system32\sxs.dll - ok
19:53:26.0444 7888 [ 86633AA495A08B6087BDF632ED0B9144 ] C:\WINDOWS\system32\kbdus.dll
19:53:26.0444 7888 C:\WINDOWS\system32\kbdus.dll - ok
19:53:26.0459 7888 [ 43F29E3117BF50DF24812C37E547004F ] C:\WINDOWS\system32\msgina.dll
19:53:26.0459 7888 C:\WINDOWS\system32\msgina.dll - ok
19:53:26.0459 7888 [ B92B131426401E68C4D060F35A1D0961 ] C:\WINDOWS\system32\shlwapi.dll
19:53:26.0459 7888 C:\WINDOWS\system32\shlwapi.dll - ok
19:53:26.0475 7888 [ 0AF6401BDBD41A8B7AED5C923B8FDF4D ] C:\WINDOWS\system32\shsvcs.dll
19:53:26.0475 7888 C:\WINDOWS\system32\shsvcs.dll - ok
19:53:26.0475 7888 [ F4952C19DAE81A8720D6E72DFFD7C60A ] C:\WINDOWS\system32\sfc.dll
19:53:26.0475 7888 C:\WINDOWS\system32\sfc.dll - ok
19:53:26.0506 7888 [ 4D99C6FADF8107388F1C987CE3608A35 ] C:\WINDOWS\system32\sfc_os.dll
19:53:26.0506 7888 C:\WINDOWS\system32\sfc_os.dll - ok
19:53:26.0506 7888 [ 55990300D1686F5CC0C2AB806E4BC7BB ] C:\WINDOWS\system32\wintrust.dll
19:53:26.0506 7888 C:\WINDOWS\system32\wintrust.dll - ok
19:53:26.0506 7888 [ 5D31655AC46CC82952568FEFBA3D8BFC ] C:\WINDOWS\system32\imagehlp.dll
19:53:26.0506 7888 C:\WINDOWS\system32\imagehlp.dll - ok
19:53:26.0522 7888 [ 77C6EF161D8B1868372B39A35599F3E4 ] C:\WINDOWS\system32\ole32.dll
19:53:26.0522 7888 C:\WINDOWS\system32\ole32.dll - ok
19:53:26.0522 7888 [ D4B61A935670C57A0DEA81B4F4A12169 ] C:\WINDOWS\system32\lsass.exe
19:53:26.0522 7888 C:\WINDOWS\system32\lsass.exe - ok
19:53:26.0538 7888 [ CF500580CDD83B145646A4DCFCE1CF3C ] C:\WINDOWS\system32\services.exe
19:53:26.0538 7888 C:\WINDOWS\system32\services.exe - ok
19:53:26.0553 7888 [ 8D0F93261000C924ADBAE1D1AA43CEA9 ] C:\WINDOWS\system32\lsasrv.dll
19:53:26.0553 7888 C:\WINDOWS\system32\lsasrv.dll - ok
19:53:26.0569 7888 [ 4D177F9E21280D1CD4CDE7BAF3E6BF08 ] C:\WINDOWS\system32\scesrv.dll
19:53:26.0569 7888 C:\WINDOWS\system32\scesrv.dll - ok
19:53:26.0569 7888 [ 830A9878424DD0FB82DB6AD3C3C3D11A ] C:\WINDOWS\system32\authz.dll
19:53:26.0569 7888 C:\WINDOWS\system32\authz.dll - ok
19:53:26.0584 7888 [ E529E586507546A490E61B03B4E8CABD ] C:\WINDOWS\system32\umpnpmgr.dll
19:53:26.0584 7888 C:\WINDOWS\system32\umpnpmgr.dll - ok
19:53:26.0584 7888 [ 1E4132A36A73E850A595574F3BFCF325 ] C:\WINDOWS\system32\samsrv.dll
19:53:26.0584 7888 C:\WINDOWS\system32\samsrv.dll - ok
19:53:26.0584 7888 [ C255E48FAAA3C841AB1EA23FD90A49BB ] C:\WINDOWS\system32\msvcp60.dll
19:53:26.0584 7888 C:\WINDOWS\system32\msvcp60.dll - ok
19:53:26.0616 7888 [ B4B43F726817B1A4C58136DF5AFDF174 ] C:\WINDOWS\system32\ncobjapi.dll
19:53:26.0616 7888 C:\WINDOWS\system32\ncobjapi.dll - ok
19:53:26.0616 7888 [ 1BC7938A46B1133678401EDBC35C7548 ] C:\WINDOWS\system32\cryptdll.dll
19:53:26.0616 7888 C:\WINDOWS\system32\cryptdll.dll - ok
19:53:26.0631 7888 [ 91D67B7EA55438518AACA99B89DA8D78 ] C:\WINDOWS\system32\dnsapi.dll
19:53:26.0631 7888 C:\WINDOWS\system32\dnsapi.dll - ok
19:53:26.0631 7888 [ 835FDD56050347A0EA39CA3627D51AFC ] C:\WINDOWS\system32\mpr.dll
19:53:26.0631 7888 C:\WINDOWS\system32\mpr.dll - ok
19:53:26.0631 7888 [ A831D21416F830DB8541B55DBD3D628B ] C:\WINDOWS\system32\ntdsapi.dll
19:53:26.0631 7888 C:\WINDOWS\system32\ntdsapi.dll - ok
19:53:26.0647 7888 [ C67F484C82858D9DFE6D9EF471706289 ] C:\WINDOWS\system32\samlib.dll
19:53:26.0647 7888 C:\WINDOWS\system32\samlib.dll - ok
19:53:26.0663 7888 [ 384C93BEBACA1336E930EF713EDE2511 ] C:\WINDOWS\system32\wldap32.dll
19:53:26.0663 7888 C:\WINDOWS\system32\wldap32.dll - ok
19:53:26.0678 7888 [ 220703A02446760973C0C96CC250EDCA ] C:\WINDOWS\system32\msapsspc.dll
19:53:26.0678 7888 C:\WINDOWS\system32\msapsspc.dll - ok
19:53:26.0678 7888 [ 3EE7A96CC9D56C54E85E772B3E40C562 ] C:\WINDOWS\system32\msvcrt40.dll
19:53:26.0678 7888 C:\WINDOWS\system32\msvcrt40.dll - ok
19:53:26.0694 7888 [ 4E8825943C1FCA374C5D8AA5E56B4493 ] C:\WINDOWS\system32\digest.dll
19:53:26.0694 7888 C:\WINDOWS\system32\digest.dll - ok
19:53:26.0694 7888 [ E55DBE91EC018297B4998965CBDF1F6B ] C:\WINDOWS\system32\msnsspc.dll
19:53:26.0694 7888 C:\WINDOWS\system32\msnsspc.dll - ok
19:53:26.0725 7888 [ 0DEA21DFDDD4A7DDBE5F0C4909C2A753 ] C:\WINDOWS\system32\msprivs.dll
19:53:26.0725 7888 C:\WINDOWS\system32\msprivs.dll - ok
19:53:26.0725 7888 [ 83D7C1976E87976DF4FEDD191C6A4E84 ] C:\WINDOWS\system32\pwdssp.dll
19:53:26.0725 7888 C:\WINDOWS\system32\pwdssp.dll - ok
19:53:26.0741 7888 [ 78B996F329625860736F4C2D8A021ED4 ] C:\WINDOWS\system32\schannel.dll
19:53:26.0741 7888 C:\WINDOWS\system32\schannel.dll - ok
19:53:26.0741 7888 [ 994F75CE2D6E26029D7C4BE3B5224B5C ] C:\WINDOWS\system32\kerberos.dll
19:53:26.0741 7888 C:\WINDOWS\system32\kerberos.dll - ok
19:53:26.0756 7888 [ 090E3B6C7E32EDB0390CDEEF24CCBF56 ] C:\WINDOWS\system32\apphelp.dll
19:53:26.0756 7888 C:\WINDOWS\system32\apphelp.dll - ok
19:53:26.0756 7888 [ 082F75CA00C67549CA7B51967D1EF3DD ] C:\WINDOWS\system32\msv1_0.dll
19:53:26.0756 7888 C:\WINDOWS\system32\msv1_0.dll - ok
19:53:26.0772 7888 [ 697982224FEEC30A85844B0048AE80A8 ] C:\WINDOWS\system32\iphlpapi.dll
19:53:26.0772 7888 C:\WINDOWS\system32\iphlpapi.dll - ok
19:53:26.0788 7888 [ CF9FD4D848945951A2468BD85EBFBE23 ] C:\WINDOWS\system32\MSCTFIME.IME
19:53:26.0788 7888 C:\WINDOWS\system32\MSCTFIME.IME - ok
19:53:26.0788 7888 [ C8F165A9D1A2A9B375096F1B165D8558 ] C:\WINDOWS\system32\netlogon.dll
19:53:26.0788 7888 C:\WINDOWS\system32\netlogon.dll - ok
19:53:26.0803 7888 [ 67BE14F048F09F0D197AC4D2459AD1EE ] C:\WINDOWS\system32\sfcfiles.dll
19:53:26.0803 7888 C:\WINDOWS\system32\sfcfiles.dll - ok
19:53:26.0803 7888 [ DE3A40AF05E577D702CDC89121F2F353 ] C:\WINDOWS\system32\atmfd.dll
19:53:26.0803 7888 C:\WINDOWS\system32\atmfd.dll - ok
19:53:26.0834 7888 [ 42CDAE64DA5BEABB51C0C0F613658545 ] C:\WINDOWS\system32\w32time.dll
19:53:26.0834 7888 C:\WINDOWS\system32\w32time.dll - ok
19:53:26.0834 7888 [ AE524D9BE4DE1C57A2FDF14E6C1E2A25 ] C:\WINDOWS\system32\wdigest.dll
19:53:26.0834 7888 C:\WINDOWS\system32\wdigest.dll - ok
19:53:26.0850 7888 [ 5E53A12831A18BB4BD5F65912C2A3624 ] C:\WINDOWS\system32\rsaenh.dll
19:53:26.0850 7888 C:\WINDOWS\system32\rsaenh.dll - ok
19:53:26.0850 7888 [ 83667E0CC74E65FEFC481511B05EF2B6 ] C:\WINDOWS\system32\ntdsa.dll
19:53:26.0850 7888 C:\WINDOWS\system32\ntdsa.dll - ok
19:53:26.0850 7888 [ ED870A44064799B7DCEA3F9B674D0077 ] C:\WINDOWS\system32\winscard.dll
19:53:26.0850 7888 C:\WINDOWS\system32\winscard.dll - ok
19:53:26.0881 7888 [ D93593B1DF820339F0FBD291D533169D ] C:\WINDOWS\system32\wtsapi32.dll
19:53:26.0881 7888 C:\WINDOWS\system32\wtsapi32.dll - ok
19:53:26.0913 7888 [ E0DBA3632AA154BF78BA7473EE853FC9 ] C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.3790.4770_x-ww_05FDF087\comctl32.dll
19:53:26.0913 7888 C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.3790.4770_x-ww_05FDF087\comctl32.dll - ok
19:53:26.0913 7888 [ DF6D35338B5D66C5299EC1352AED57DE ] C:\WINDOWS\system32\ntdsatq.dll
19:53:26.0913 7888 C:\WINDOWS\system32\ntdsatq.dll - ok
19:53:26.0928 7888 [ C6510C0A8F561C1E33E7DEEBB7EE9330 ] C:\WINDOWS\system32\esent.dll
19:53:26.0928 7888 C:\WINDOWS\system32\esent.dll - ok
19:53:26.0928 7888 [ 2FCC6D31B7CED67E659B7C629CEC89D4 ] C:\WINDOWS\system32\mswsock.dll
19:53:26.0928 7888 C:\WINDOWS\system32\mswsock.dll - ok
19:53:26.0944 7888 [ 6DF19F7EFBD2D8FADD0D3C0E23E05F02 ] C:\WINDOWS\system32\ntdsmsg.dll
19:53:26.0944 7888 C:\WINDOWS\system32\ntdsmsg.dll - ok
19:53:26.0944 7888 [ 9F5C60A0BDADCF0BB94C83692EF33A90 ] C:\WINDOWS\system32\r2brand.dll
19:53:26.0944 7888 C:\WINDOWS\system32\r2brand.dll - ok
19:53:26.0975 7888 [ 65D15D220CC427E2915C1682CEFE604B ] C:\WINDOWS\system32\drivers\exifs.sys
19:53:26.0975 7888 C:\WINDOWS\system32\drivers\exifs.sys - ok
19:53:26.0975 7888 [ 133FB1BF6ED7F29E4182708F597DCAA3 ] C:\WINDOWS\system32\ws03res.dll
19:53:26.0975 7888 C:\WINDOWS\system32\ws03res.dll - ok
19:53:26.0975 7888 [ C09CCFE81DEC9B162533D7184D705682 ] C:\WINDOWS\system32\svchost.exe
19:53:26.0975 7888 C:\WINDOWS\system32\svchost.exe - ok
19:53:26.0991 7888 [ 305A8757D66B5D416B47C497C27A01FE ] C:\WINDOWS\system32\rpcss.dll
19:53:26.0991 7888 C:\WINDOWS\system32\rpcss.dll - ok
19:53:26.0991 7888 [ B73CF0297B596A4E4FED2014F8799E0A ] C:\WINDOWS\system32\xpsp2res.dll
19:53:26.0991 7888 C:\WINDOWS\system32\xpsp2res.dll - ok
19:53:27.0038 7888 [ B4882758DFBF19E33E50F503AD3C26B9 ] C:\Documents and Settings\All Users\Application Data\Sophos\Web Intelligence\swi_update.exe
19:53:27.0038 7888 C:\Documents and Settings\All Users\Application Data\Sophos\Web Intelligence\swi_update.exe - ok
19:53:27.0038 7888 [ 3AAB2418271343FE97F98AEF93F50E5F ] C:\WINDOWS\system32\eventlog.dll
19:53:27.0038 7888 C:\WINDOWS\system32\eventlog.dll - ok
19:53:27.0038 7888 [ BC092F869F22FFFCBDD8C2AF5E87EC33 ] C:\WINDOWS\system32\ntdsbsrv.dll
19:53:27.0038 7888 C:\WINDOWS\system32\ntdsbsrv.dll - ok
19:53:27.0053 7888 [ 0449D95992D5FF49360F3593AF30B29C ] C:\WINDOWS\system32\vssapi.dll
19:53:27.0053 7888 C:\WINDOWS\system32\vssapi.dll - ok
19:53:27.0053 7888 [ B4C9644244A88B82A5466E5D11851B20 ] C:\WINDOWS\system32\wsock32.dll
19:53:27.0053 7888 C:\WINDOWS\system32\wsock32.dll - ok
19:53:27.0069 7888 [ 4529FA58A8D34CD40CE82413E2CF638A ] C:\WINDOWS\system32\shell32.dll
19:53:27.0069 7888 C:\WINDOWS\system32\shell32.dll - ok
19:53:27.0100 7888 [ 62C86FF0CECAAE3EE4C4CF43D4223842 ] C:\WINDOWS\system32\atl.dll
19:53:27.0100 7888 C:\WINDOWS\system32\atl.dll - ok
19:53:27.0116 7888 [ 05BF13C2C924D9DC9F6C7CDA7DAA5BD6 ] C:\WINDOWS\system32\oleaut32.dll
19:53:27.0116 7888 C:\WINDOWS\system32\oleaut32.dll - ok
19:53:27.0116 7888 [ E66C386BF0D04BCBB47CA98FF71A3753 ] C:\WINDOWS\system32\kdcsvc.dll
19:53:27.0116 7888 C:\WINDOWS\system32\kdcsvc.dll - ok
19:53:27.0131 7888 [ 1A58CAEC12B6CF36E0F19AB0FB8537A3 ] C:\WINDOWS\system32\rassfm.dll
19:53:27.0131 7888 C:\WINDOWS\system32\rassfm.dll - ok
19:53:27.0131 7888 [ E7B7FD7D8907DADED4928E922608887F ] C:\WINDOWS\system32\scecli.dll
19:53:27.0131 7888 C:\WINDOWS\system32\scecli.dll - ok
19:53:27.0131 7888 [ 0EA1FF8E004FF580D3B26EF299A56657 ] C:\Documents and Settings\All Users\Application Data\Sophos\Web Intelligence\swi_ifslsp.dll
19:53:27.0131 7888 C:\Documents and Settings\All Users\Application Data\Sophos\Web Intelligence\swi_ifslsp.dll - ok
19:53:27.0163 7888 [ CA233ECFADD51241ACACE76003A88649 ] C:\WINDOWS\system32\hnetcfg.dll
19:53:27.0163 7888 C:\WINDOWS\system32\hnetcfg.dll - ok
19:53:27.0178 7888 [ 6CA76A0DFC08819F617E312F32411A4F ] C:\WINDOWS\system32\wshtcpip.dll
19:53:27.0178 7888 C:\WINDOWS\system32\wshtcpip.dll - ok
19:53:27.0178 7888 [ B8A272D4E91EFB366E16BEA0FA42D7EE ] C:\Program Files\Sophos\Sophos Anti-Virus\SavService.exe
19:53:27.0178 7888 C:\Program Files\Sophos\Sophos Anti-Virus\SavService.exe - ok
19:53:27.0194 7888 [ D5E459BED3DB9CF7FC6CC1455F177D2D ] C:\WINDOWS\WinSxS\x86_Microsoft.VC80.ATL_1fc8b3b9a1e18e3b_8.0.50727.6195_x-ww_a4c618fa\ATL80.dll
19:53:27.0194 7888 C:\WINDOWS\WinSxS\x86_Microsoft.VC80.ATL_1fc8b3b9a1e18e3b_8.0.50727.6195_x-ww_a4c618fa\ATL80.dll - ok
19:53:27.0194 7888 [ 0B3595A4FF0B36D68E5FC67FD7D70FDC ] C:\WINDOWS\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.6195_x-ww_44262b86\msvcp80.dll
19:53:27.0194 7888 C:\WINDOWS\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.6195_x-ww_44262b86\msvcp80.dll - ok
19:53:27.0225 7888 [ C9564CF4976E7E96B4052737AA2492B4 ] C:\WINDOWS\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.6195_x-ww_44262b86\msvcr80.dll
19:53:27.0225 7888 C:\WINDOWS\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.6195_x-ww_44262b86\msvcr80.dll - ok
19:53:27.0225 7888 [ 02BA600E0ED7DC936EDBE54EFC797B4D ] C:\Program Files\Sophos\Sophos Anti-Virus\ComponentManager.dll
19:53:27.0225 7888 C:\Program Files\Sophos\Sophos Anti-Virus\ComponentManager.dll - ok
19:53:27.0241 7888 [ 3FF89B57AF2CED2DD4E6049DA16A5157 ] C:\WINDOWS\system32\clbcatq.dll
19:53:27.0241 7888 C:\WINDOWS\system32\clbcatq.dll - ok
19:53:27.0241 7888 [ 4E7911DB570813C1AAF64A9F0D92A94B ] C:\WINDOWS\system32\comres.dll
19:53:27.0241 7888 C:\WINDOWS\system32\comres.dll - ok
19:53:27.0241 7888 [ DD496EC3DE4C1C741391CD5367E84AC3 ] C:\WINDOWS\system32\ntmarta.dll
19:53:27.0241 7888 C:\WINDOWS\system32\ntmarta.dll - ok
19:53:27.0272 7888 [ E86CCB2E7CF27A7FBD7BB1C5A257C759 ] C:\Program Files\Sophos\Sophos Anti-Virus\AuthorisedLists.dll
19:53:27.0272 7888 C:\Program Files\Sophos\Sophos Anti-Virus\AuthorisedLists.dll - ok
19:53:27.0272 7888 [ F97A82A0BEE83C2006F38923758E7125 ] C:\Program Files\Sophos\Sophos Anti-Virus\BackgroundScanning.dll
19:53:27.0272 7888 C:\Program Files\Sophos\Sophos Anti-Virus\BackgroundScanning.dll - ok
19:53:27.0288 7888 [ DD1BFD0BD09DE03DDFB6B6323744976E ] C:\WINDOWS\system32\msi.dll
19:53:27.0288 7888 C:\WINDOWS\system32\msi.dll - ok
19:53:27.0288 7888 [ B650F06045ACEFE3EE478B42437A6185 ] C:\Program Files\Sophos\Sophos Anti-Virus\BHOManagement.dll
19:53:27.0288 7888 C:\Program Files\Sophos\Sophos Anti-Virus\BHOManagement.dll - ok
19:53:27.0303 7888 [ 203C0D372EAFF14E1B430878735EDCD2 ] C:\Program Files\Sophos\Sophos Anti-Virus\Configuration.dll
19:53:27.0303 7888 C:\Program Files\Sophos\Sophos Anti-Virus\Configuration.dll - ok
19:53:27.0303 7888 [ 13168169CA0739E51FA6669CEB767A34 ] C:\Program Files\Sophos\Sophos Anti-Virus\Localisation.dll
19:53:27.0303 7888 C:\Program Files\Sophos\Sophos Anti-Virus\Localisation.dll - ok
19:53:27.0334 7888 [ D83AAABEF32F626BB359810F3480C678 ] C:\Program Files\Sophos\Sophos Anti-Virus\Logging.dll
19:53:27.0334 7888 C:\Program Files\Sophos\Sophos Anti-Virus\Logging.dll - ok
19:53:27.0334 7888 [ C40F096181D1CF4CC74EAFE6E3CC64ED ] C:\Program Files\Sophos\Sophos Anti-Virus\ThreatManagement.dll
19:53:27.0334 7888 C:\Program Files\Sophos\Sophos Anti-Virus\ThreatManagement.dll - ok
19:53:27.0334 7888 [ 8D479DA8CA66201B8627CFCEF81972C2 ] C:\Program Files\Sophos\Sophos Anti-Virus\DCManagement.dll
19:53:27.0334 7888 C:\Program Files\Sophos\Sophos Anti-Virus\DCManagement.dll - ok
19:53:27.0350 7888 [ 655F7C55893473E3C844657D768087D1 ] C:\Program Files\Sophos\Sophos Anti-Virus\DetectionFeedback.dll
19:53:27.0350 7888 C:\Program Files\Sophos\Sophos Anti-Virus\DetectionFeedback.dll - ok
19:53:27.0350 7888 [ FB175CDC3E6FEC1C6FA86B15096D51B6 ] C:\WINDOWS\WinSxS\x86_Microsoft.Windows.WinHTTP_6595b64144ccf1df_5.1.3790.4929_x-ww_00269083\winhttp.dll
19:53:27.0350 7888 C:\WINDOWS\WinSxS\x86_Microsoft.Windows.WinHTTP_6595b64144ccf1df_5.1.3790.4929_x-ww_00269083\winhttp.dll - ok
19:53:27.0381 7888 [ B030902BB476C82DE91FFC19BF9105A7 ] C:\Program Files\Sophos\Sophos Anti-Virus\DriveProcessor.dll
19:53:27.0381 7888 C:\Program Files\Sophos\Sophos Anti-Virus\DriveProcessor.dll - ok
19:53:27.0397 7888 [ B3895B0A49FA149119C4D46006F23EF2 ] C:\Program Files\Sophos\Sophos Anti-Virus\ICProcessors.dll
19:53:27.0397 7888 C:\Program Files\Sophos\Sophos Anti-Virus\ICProcessors.dll - ok
19:53:27.0397 7888 [ FF97808292329199DE12D91298CAE083 ] C:\Program Files\Sophos\Sophos Anti-Virus\FilterProcessors.dll
19:53:27.0397 7888 C:\Program Files\Sophos\Sophos Anti-Virus\FilterProcessors.dll - ok
19:53:27.0397 7888 [ B63120792BF88D73ED54A0BDB5C13516 ] C:\Program Files\Sophos\Sophos Anti-Virus\FSDecomposer.dll
19:53:27.0397 7888 C:\Program Files\Sophos\Sophos Anti-Virus\FSDecomposer.dll - ok
19:53:27.0413 7888 [ A5C04AFDA8010A6250411FCF78B8FA19 ] C:\Program Files\Sophos\Sophos Anti-Virus\ICManagement.dll
19:53:27.0413 7888 C:\Program Files\Sophos\Sophos Anti-Virus\ICManagement.dll - ok
19:53:27.0413 7888 [ 30005B6587B095334F95400EB074C9B2 ] C:\Program Files\Sophos\Sophos Anti-Virus\ScanManagement.dll
19:53:27.0413 7888 C:\Program Files\Sophos\Sophos Anti-Virus\ScanManagement.dll - ok
19:53:27.0428 7888 [ FF35F5696FFF05EC0FE4B68DD1FF6EB4 ] C:\Program Files\Sophos\Sophos Anti-Virus\Persistance.dll
19:53:27.0428 7888 C:\Program Files\Sophos\Sophos Anti-Virus\Persistance.dll - ok
19:53:27.0459 7888 [ 742017EC8F93AA913241417C29178961 ] C:\Program Files\Sophos\Sophos Anti-Virus\VirusDetection.dll
19:53:27.0459 7888 C:\Program Files\Sophos\Sophos Anti-Virus\VirusDetection.dll - ok
19:53:27.0459 7888 [ 08EE392E6F5C63F19C4979A6AE88F274 ] C:\Program Files\Sophos\Sophos Anti-Virus\ScanEditFacade.dll
19:53:27.0459 7888 C:\Program Files\Sophos\Sophos Anti-Virus\ScanEditFacade.dll - ok
19:53:27.0459 7888 [ CC8E984FF704828C6BBF4B244EECF3E6 ] C:\Program Files\Sophos\Sophos Anti-Virus\ThreatDetection.dll
19:53:27.0459 7888 C:\Program Files\Sophos\Sophos Anti-Virus\ThreatDetection.dll - ok
19:53:27.0475 7888 [ 33305D971786E73234615C631053E8F6 ] C:\Program Files\Sophos\Sophos Anti-Virus\SIPSManagement.dll
19:53:27.0475 7888 C:\Program Files\Sophos\Sophos Anti-Virus\SIPSManagement.dll - ok
19:53:27.0475 7888 [ 0F47B33EAB0B0C74AC6CF45FE2BE7679 ] C:\Program Files\Sophos\Sophos Anti-Virus\SWIManagement.dll
19:53:27.0475 7888 C:\Program Files\Sophos\Sophos Anti-Virus\SWIManagement.dll - ok
19:53:27.0491 7888 [ 6776D6A18903409EF2568ABE8D616FB3 ] C:\Program Files\Sophos\Sophos Anti-Virus\SystemInformation.dll
19:53:27.0491 7888 C:\Program Files\Sophos\Sophos Anti-Virus\SystemInformation.dll - ok
19:53:27.0506 7888 [ 521A2479030DE379B0397DB623123905 ] C:\Program Files\Sophos\Sophos Anti-Virus\TamperProtectionManagement.dll
19:53:27.0506 7888 C:\Program Files\Sophos\Sophos Anti-Virus\TamperProtectionManagement.dll - ok
19:53:27.0522 7888 [ 11B3B127A1BB20CD4AFD74A6DC2A1BEF ] C:\Program Files\Sophos\Sophos Anti-Virus\Translators.dll
19:53:27.0522 7888 C:\Program Files\Sophos\Sophos Anti-Virus\Translators.dll - ok
19:53:27.0522 7888 [ 1DAC5AF6A791090E75A1A45C42C732D8 ] C:\WINDOWS\system32\msxml6.dll
19:53:27.0522 7888 C:\WINDOWS\system32\msxml6.dll - ok
19:53:27.0538 7888 [ 795267F71C712F6488DCD72E5D9698EE ] C:\Program Files\Sophos\Sophos Anti-Virus\Security.dll
19:53:27.0538 7888 C:\Program Files\Sophos\Sophos Anti-Virus\Security.dll - ok
19:53:27.0538 7888 [ 5BD7A8101F4A51C25CBE3901919D57BC ] C:\Program Files\Sophos\Sophos Anti-Virus\EEConsumer.dll
19:53:27.0538 7888 C:\Program Files\Sophos\Sophos Anti-Virus\EEConsumer.dll - ok
19:53:27.0569 7888 [ 030BBF6B0304ABC1E54E710B618A451A ] C:\Program Files\Sophos\Sophos Anti-Virus\LegacyConsumers.dll
19:53:27.0569 7888 C:\Program Files\Sophos\Sophos Anti-Virus\LegacyConsumers.dll - ok
19:53:27.0569 7888 [ ECBD789A40480A296F89228811D7A5B7 ] C:\WINDOWS\system32\wsnmp32.dll
19:53:27.0569 7888 C:\WINDOWS\system32\wsnmp32.dll - ok
19:53:27.0584 7888 [ 86DF25A34DA0575BBB35A0ACFC0C74C6 ] C:\Program Files\Sophos\Sophos Anti-Virus\SAVI0.dll
19:53:27.0584 7888 C:\Program Files\Sophos\Sophos Anti-Virus\SAVI0.dll - ok
19:53:27.0584 7888 [ EC5B86DBEF51C42E73598DF2031B25F4 ] C:\WINDOWS\system32\winmm.dll
19:53:27.0584 7888 C:\WINDOWS\system32\winmm.dll - ok
19:53:27.0600 7888 [ 9CF0558B41CAB02E7D6F81BC59CD21A7 ] C:\WINDOWS\system32\winspool.drv
19:53:27.0600 7888 C:\WINDOWS\system32\winspool.drv - ok
19:53:27.0600 7888 [ 0DD9DEE0121096CA239285D49C71207D ] C:\WINDOWS\system32\comdlg32.dll
19:53:27.0600 7888 C:\WINDOWS\system32\comdlg32.dll - ok
19:53:27.0631 7888 [ 7F08936D9A18BAAA5AA41FB8E9754D3E ] C:\WINDOWS\system32\oleacc.dll
19:53:27.0631 7888 C:\WINDOWS\system32\oleacc.dll - ok
19:53:27.0631 7888 [ 2265C068CA09C9F8DAE811BC0753C96A ] C:\Program Files\Sophos\Sophos Anti-Virus\osdp.dll
19:53:27.0631 7888 C:\Program Files\Sophos\Sophos Anti-Virus\osdp.dll - ok
19:53:27.0631 7888 [ DDF37110B1CDB9A049D883363CA58107 ] C:\Program Files\Sophos\Sophos Anti-Virus\veex.dll
19:53:27.0631 7888 C:\Program Files\Sophos\Sophos Anti-Virus\veex.dll - ok
19:53:27.0647 7888 [ A23EE74DA19F7FA45B32F026C9513243 ] C:\Program Files\Sophos\Sophos Anti-Virus\ICAdapter.dll
19:53:27.0647 7888 C:\Program Files\Sophos\Sophos Anti-Virus\ICAdapter.dll - ok
19:53:27.0647 7888 [ 14BC1BEC0C62A1FA977F606C1BCD7EB8 ] C:\Program Files\Sophos\Sophos Anti-Virus\SophtainerAdapter.dll
19:53:27.0647 7888 C:\Program Files\Sophos\Sophos Anti-Virus\SophtainerAdapter.dll - ok
19:53:27.0663 7888 [ 0CC9D2E181D2D7EED5EA0305011FBC3D ] C:\Program Files\Sophos\Sophos Anti-Virus\sophtlib.dll
19:53:27.0663 7888 C:\Program Files\Sophos\Sophos Anti-Virus\sophtlib.dll - ok
19:53:27.0678 7888 [ 8B8E682B03483092E17AB9DFE70FEDFF ] C:\WINDOWS\system32\drivers\ndisuio.sys
19:53:27.0678 7888 C:\WINDOWS\system32\drivers\ndisuio.sys - ok
19:53:27.0694 7888 [ 96AB54F5914FAEF9708008E2763F3A0E ] C:\WINDOWS\system32\drivers\rmcast.sys
19:53:27.0694 7888 C:\WINDOWS\system32\drivers\rmcast.sys - ok
19:53:27.0694 7888 [ 1201DF9A11FBB0F69EBD22E503D3BC87 ] C:\WINDOWS\system32\dhcpcsvc.dll
19:53:27.0694 7888 C:\WINDOWS\system32\dhcpcsvc.dll - ok
19:53:27.0709 7888 [ E927F3B46F85D934C8F420FE08593D1B ] C:\WINDOWS\system32\dnsrslvr.dll
19:53:27.0709 7888 C:\WINDOWS\system32\dnsrslvr.dll - ok
19:53:27.0709 7888 [ 1916D44188853A53DB93AECC6E6197D0 ] C:\WINDOWS\system32\lmhsvc.dll
19:53:27.0709 7888 C:\WINDOWS\system32\lmhsvc.dll - ok
19:53:27.0741 7888 [ 59FB028AD88828D14EB5E9F1105F1516 ] C:\WINDOWS\system32\rtutils.dll
19:53:27.0741 7888 C:\WINDOWS\system32\rtutils.dll - ok
19:53:27.0741 7888 [ E21B2D0A0D4AB1D2441FE9FCC961C392 ] C:\WINDOWS\system32\wzcsvc.dll
19:53:27.0741 7888 C:\WINDOWS\system32\wzcsvc.dll - ok
19:53:27.0741 7888 [ 2263977648895C2E8C7010CA75D9D697 ] C:\WINDOWS\system32\wmi.dll
19:53:27.0741 7888 C:\WINDOWS\system32\wmi.dll - ok
19:53:27.0756 7888 [ B77FC2EFADAB898BF2F774D3A11F95B7 ] C:\WINDOWS\system32\rastls.dll
19:53:27.0756 7888 C:\WINDOWS\system32\rastls.dll - ok
19:53:27.0756 7888 [ 7228E6963AF8558251FE977D03FB20F9 ] C:\WINDOWS\system32\cryptui.dll
19:53:27.0756 7888 C:\WINDOWS\system32\cryptui.dll - ok
19:53:27.0772 7888 [ 890AF1349B12F73AA0A7A6E14E04D661 ] C:\WINDOWS\system32\mprapi.dll
19:53:27.0772 7888 C:\WINDOWS\system32\mprapi.dll - ok
19:53:27.0788 7888 [ FA8FFF7D70AB15CBCC70B557F3BAD6E5 ] C:\WINDOWS\system32\activeds.dll
19:53:27.0788 7888 C:\WINDOWS\system32\activeds.dll - ok
19:53:27.0803 7888 [ 4C572B73BA8C76331B6EE463BAC0B1D3 ] C:\WINDOWS\system32\adsldpc.dll
19:53:27.0803 7888 C:\WINDOWS\system32\adsldpc.dll - ok
19:53:27.0803 7888 [ 84BE46947A039241DCBF3363E0BF6EE5 ] C:\WINDOWS\system32\credui.dll
19:53:27.0803 7888 C:\WINDOWS\system32\credui.dll - ok
19:53:27.0803 7888 [ 296D342FC053114958EC0147A210E4A0 ] C:\WINDOWS\system32\rasapi32.dll
19:53:27.0803 7888 C:\WINDOWS\system32\rasapi32.dll - ok
19:53:27.0819 7888 [ A37808260417C047FC6C64F7939550C3 ] C:\WINDOWS\system32\rasman.dll
19:53:27.0819 7888 C:\WINDOWS\system32\rasman.dll - ok
19:53:27.0850 7888 [ D2FD21334CECD8D98566643FBD9E8DDA ] C:\WINDOWS\system32\tapi32.dll
19:53:27.0850 7888 C:\WINDOWS\system32\tapi32.dll - ok
19:53:27.0850 7888 [ 3A90979648E2414136B40884BE824E91 ] C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_5.82.3790.4770_x-ww_A689AB02\comctl32.dll

#12 pnasty101

pnasty101
  • Topic Starter

  • Members
  • 11 posts
  • OFFLINE
  •  
  • Local time:02:16 PM

Posted 15 September 2012 - 07:22 PM

19:53:27.0850 7888 C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_5.82.3790.4770_x-ww_A689AB02\comctl32.dll - ok
19:53:27.0866 7888 [ E634E7CF5C311589C82412E3363EF04D ] C:\WINDOWS\system32\riched20.dll
19:53:27.0866 7888 C:\WINDOWS\system32\riched20.dll - ok
19:53:27.0866 7888 [ D005BBACA1309EC89A7FC364E310B4F1 ] C:\WINDOWS\system32\raschap.dll
19:53:27.0866 7888 C:\WINDOWS\system32\raschap.dll - ok
19:53:27.0866 7888 [ 7E60F04AE424401A14D153CA6E851A85 ] C:\WINDOWS\system32\schedsvc.dll
19:53:27.0866 7888 C:\WINDOWS\system32\schedsvc.dll - ok
19:53:27.0881 7888 [ 84F246E49ADE8C26F9B1C7B4D3F03547 ] C:\WINDOWS\system32\msidle.dll
19:53:27.0881 7888 C:\WINDOWS\system32\msidle.dll - ok
19:53:27.0913 7888 [ 754A448D5B87CBEDE41A0F0E0B237B03 ] C:\WINDOWS\system32\audiosrv.dll
19:53:27.0913 7888 C:\WINDOWS\system32\audiosrv.dll - ok
19:53:27.0913 7888 [ 5E8A9C4673B194DD1181B3F003D4F996 ] C:\WINDOWS\system32\wkssvc.dll
19:53:27.0913 7888 C:\WINDOWS\system32\wkssvc.dll - ok
19:53:27.0928 7888 [ 0436AE7A3A77AE238F8D6478DD9817B8 ] C:\WINDOWS\system32\wiarpc.dll
19:53:27.0928 7888 C:\WINDOWS\system32\wiarpc.dll - ok
19:53:27.0928 7888 [ 446DC43DB5FBF3EC654D77456523DD7E ] C:\WINDOWS\system32\ntdskcc.dll
19:53:27.0928 7888 C:\WINDOWS\system32\ntdskcc.dll - ok
19:53:27.0928 7888 [ 2852D4A53D41DE34FD39E9FE182CC308 ] C:\WINDOWS\system32\w32topl.dll
19:53:27.0928 7888 C:\WINDOWS\system32\w32topl.dll - ok
19:53:27.0944 7888 [ 758AC49381166FEF254680F2A6890363 ] C:\Program Files\Sophos\PureMessage\Bin\FireJob.exe
19:53:27.0944 7888 C:\Program Files\Sophos\PureMessage\Bin\FireJob.exe - ok
19:53:27.0959 7888 [ 4108062FD06F2B835D4E7A184C5318D1 ] C:\WINDOWS\system32\clusapi.dll
19:53:27.0959 7888 C:\WINDOWS\system32\clusapi.dll - ok
19:53:27.0975 7888 [ 3562AD69F1FA80F6C5AADDC44C8E73A3 ] C:\WINDOWS\system32\msclus.dll
19:53:27.0975 7888 C:\WINDOWS\system32\msclus.dll - ok
19:53:27.0975 7888 [ 12BCFB57162AD17CEA545E362CD886A8 ] C:\WINDOWS\system32\netman.dll
19:53:27.0975 7888 C:\WINDOWS\system32\netman.dll - ok
19:53:27.0991 7888 [ 03FED5F5BCA1605F76517E8A485CF360 ] C:\WINDOWS\system32\netshell.dll
19:53:27.0991 7888 C:\WINDOWS\system32\netshell.dll - ok
19:53:27.0991 7888 [ 3D2E5B90058E04491C7C54F6975BD1F1 ] C:\WINDOWS\system32\wininet.dll
19:53:27.0991 7888 C:\WINDOWS\system32\wininet.dll - ok
19:53:28.0022 7888 [ 10753A3ADC3E39A3B10CC3F08E98E6B4 ] C:\WINDOWS\system32\normaliz.dll
19:53:28.0022 7888 C:\WINDOWS\system32\normaliz.dll - ok
19:53:28.0022 7888 [ D2D3E99AD615125D1DD4F7E3C4B9B30C ] C:\WINDOWS\system32\urlmon.dll
19:53:28.0022 7888 C:\WINDOWS\system32\urlmon.dll - ok
19:53:28.0038 7888 [ 56F468DF4E8609863BC31AD42BFF6BBC ] C:\WINDOWS\system32\iertutil.dll
19:53:28.0038 7888 C:\WINDOWS\system32\iertutil.dll - ok
19:53:28.0038 7888 [ 04D17D6159DF4582E292961B1E8E51D6 ] C:\WINDOWS\system32\wzcsapi.dll
19:53:28.0038 7888 C:\WINDOWS\system32\wzcsapi.dll - ok
19:53:28.0038 7888 [ DFC5B13F931461ACC025D76D39AFEC0D ] C:\WINDOWS\system32\srvsvc.dll
19:53:28.0038 7888 C:\WINDOWS\system32\srvsvc.dll - ok
19:53:28.0053 7888 [ AC289780FA6188E4ACC11EC6508A3948 ] C:\WINDOWS\system32\netmsg.dll
19:53:28.0053 7888 C:\WINDOWS\system32\netmsg.dll - ok
19:53:28.0084 7888 [ E8B1A07774A9E4FEC3105CBAD49BF289 ] C:\WINDOWS\system32\drivers\srv.sys
19:53:28.0084 7888 C:\WINDOWS\system32\drivers\srv.sys - ok
19:53:28.0084 7888 [ 30B32E3127D9BBAA1E32394134718070 ] C:\WINDOWS\system32\spoolsv.exe
19:53:28.0084 7888 C:\WINDOWS\system32\spoolsv.exe - ok
19:53:28.0084 7888 [ 2EAA1763A77BE385B9A71A843C7F159E ] C:\WINDOWS\system32\msdtc.exe
19:53:28.0084 7888 C:\WINDOWS\system32\msdtc.exe - ok
19:53:28.0100 7888 [ AA098AE80092CE59760B140E3231B90D ] C:\WINDOWS\system32\spoolss.dll
19:53:28.0100 7888 C:\WINDOWS\system32\spoolss.dll - ok
19:53:28.0100 7888 [ E1BF8CC528797A15A66933C1A36917C5 ] C:\WINDOWS\system32\msdtctm.dll
19:53:28.0100 7888 C:\WINDOWS\system32\msdtctm.dll - ok
19:53:28.0116 7888 [ F53F67DF7AF9C273DC877946E4641243 ] C:\WINDOWS\system32\msdtcprx.dll
19:53:28.0116 7888 C:\WINDOWS\system32\msdtcprx.dll - ok
19:53:28.0131 7888 [ A4827BE436FC4EE5E256CBA76BA8595A ] C:\WINDOWS\system32\mtxclu.dll
19:53:28.0131 7888 C:\WINDOWS\system32\mtxclu.dll - ok
19:53:28.0147 7888 [ 7492881D01546C353732747A9D9D13D2 ] C:\WINDOWS\system32\msdtclog.dll
19:53:28.0147 7888 C:\WINDOWS\system32\msdtclog.dll - ok
19:53:28.0147 7888 [ F895E0A11C68E6BC2D33E83EA1B37FD0 ] C:\WINDOWS\system32\xolehlp.dll
19:53:28.0147 7888 C:\WINDOWS\system32\xolehlp.dll - ok
19:53:28.0163 7888 [ B21DB062AC5EEC7F46B88B747626409A ] C:\WINDOWS\system32\resutils.dll
19:53:28.0163 7888 C:\WINDOWS\system32\resutils.dll - ok
19:53:28.0163 7888 [ 706873677DDC028C650603EA5B468D1E ] C:\WINDOWS\system32\mtxoci.dll
19:53:28.0163 7888 C:\WINDOWS\system32\mtxoci.dll - ok
19:53:28.0163 7888 [ D01968EDEBF1DC11E4C93517C98CDF7C ] C:\WINDOWS\system32\aelupsvc.dll
19:53:28.0163 7888 C:\WINDOWS\system32\aelupsvc.dll - ok
19:53:28.0194 7888 [ 5251A868FB1C6C8B774DA42F3C107C82 ] C:\WINDOWS\system32\browser.dll
19:53:28.0194 7888 C:\WINDOWS\system32\browser.dll - ok
19:53:28.0209 7888 [ C5A75EB48E2344ABDC162BDA79E16841 ] C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
19:53:28.0209 7888 C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe - ok
19:53:28.0209 7888 [ E5F7C30EDF0892667933BE879F067D67 ] C:\WINDOWS\system32\msvcr100_clr0400.dll
19:53:28.0209 7888 C:\WINDOWS\system32\msvcr100_clr0400.dll - ok
19:53:28.0209 7888 [ 08A73B0E7EE6E32983B5F9E540A8E380 ] C:\WINDOWS\system32\mscoree.dll
19:53:28.0209 7888 C:\WINDOWS\system32\mscoree.dll - ok
19:53:28.0225 7888 [ 3043EA582498DB11FBA475B511917902 ] C:\WINDOWS\system32\rasadhlp.dll
19:53:28.0225 7888 C:\WINDOWS\system32\rasadhlp.dll - ok
19:53:28.0256 7888 [ FEB85DA744DD3F41A427CF6D2BC04FE4 ] C:\WINDOWS\system32\cryptsvc.dll
19:53:28.0256 7888 C:\WINDOWS\system32\cryptsvc.dll - ok
19:53:28.0256 7888 [ 5359B9782855A367F37BBB0B966C710B ] C:\WINDOWS\system32\certcli.dll
19:53:28.0256 7888 C:\WINDOWS\system32\certcli.dll - ok
19:53:28.0256 7888 [ 0DD50B633418EA7A463C1F9A4046A20C ] C:\Program Files\Dell\SysMgt\dataeng\bin\dsm_sa_eventmgr32.exe
19:53:28.0256 7888 C:\Program Files\Dell\SysMgt\dataeng\bin\dsm_sa_eventmgr32.exe - ok
19:53:28.0272 7888 [ 994BAEA947CA91773BDEB8660D073B51 ] C:\Program Files\Dell\SysMgt\shared\bin\dcsupt32.dll
19:53:28.0272 7888 C:\Program Files\Dell\SysMgt\shared\bin\dcsupt32.dll - ok
19:53:28.0272 7888 [ 82AA01CCE9E5DD89DF26700BD1EDD36F ] C:\Program Files\Dell\SysMgt\dataeng\bin\dsm_sa_datamgr32.exe
19:53:28.0272 7888 C:\Program Files\Dell\SysMgt\dataeng\bin\dsm_sa_datamgr32.exe - ok
19:53:28.0288 7888 [ 1515D93B5C2AD4A3076EBD337003565E ] C:\Program Files\Dell\SysMgt\omsa\bin\dcisep32.dll
19:53:28.0288 7888 C:\Program Files\Dell\SysMgt\omsa\bin\dcisep32.dll - ok
19:53:28.0303 7888 [ 6217AA084EF7E052F3B5D7C3F67F68AF ] C:\WINDOWS\system32\dfssvc.exe
19:53:28.0303 7888 C:\WINDOWS\system32\dfssvc.exe - ok
19:53:28.0319 7888 [ 07DDFBC49498E17206D8DC8AB38520D9 ] C:\Program Files\Dell\SysMgt\dataeng\bin\dcsgen32.dll
19:53:28.0319 7888 C:\Program Files\Dell\SysMgt\dataeng\bin\dcsgen32.dll - ok
19:53:28.0319 7888 [ 056BCAC3777439D8F610E8D05305F894 ] C:\Program Files\Dell\SysMgt\omsa\bin\dcadpt32.dll
19:53:28.0319 7888 C:\Program Files\Dell\SysMgt\omsa\bin\dcadpt32.dll - ok
19:53:28.0334 7888 [ 78A11666307820AF94B5712D53DECC55 ] C:\WINDOWS\system32\dmserver.dll
19:53:28.0334 7888 C:\WINDOWS\system32\dmserver.dll - ok
19:53:28.0334 7888 [ B328AB05FEFF548893C65118DCA469C1 ] C:\Program Files\Dell\SysMgt\dataeng\bin\dcsmil32.dll
19:53:28.0334 7888 C:\Program Files\Dell\SysMgt\dataeng\bin\dcsmil32.dll - ok
19:53:28.0366 7888 [ F6333C960FD1770EE4AB2405040AB9B2 ] C:\Program Files\Dell\SysMgt\oma\bin\omaep32.dll
19:53:28.0366 7888 C:\Program Files\Dell\SysMgt\oma\bin\omaep32.dll - ok
19:53:28.0366 7888 [ 2A1614828BE1E1558D06D3B2D6BEAF9B ] C:\WINDOWS\system32\dns.exe
19:53:28.0366 7888 C:\WINDOWS\system32\dns.exe - ok
19:53:28.0381 7888 [ 3940241000D7041F6C518D025BE75D5B ] C:\Program Files\Dell\SysMgt\shared\bin\BMAPI.dll
19:53:28.0381 7888 C:\Program Files\Dell\SysMgt\shared\bin\BMAPI.dll - ok
19:53:28.0381 7888 [ 3EC5439305D90347DBEA3CB2EDFD915D ] C:\Program Files\Dell\SysMgt\oma\bin\omacs32.dll
19:53:28.0381 7888 C:\Program Files\Dell\SysMgt\oma\bin\omacs32.dll - ok
19:53:28.0381 7888 [ 5F7ED214A65F608830C967B438B11B69 ] C:\WINDOWS\system32\cfgmgr32.dll
19:53:28.0381 7888 C:\WINDOWS\system32\cfgmgr32.dll - ok
19:53:28.0397 7888 [ 89ECD343A04A937771849C5AFDEC0D16 ] C:\Program Files\Dell\SysMgt\oma\bin\dsupt32.dll
19:53:28.0397 7888 C:\Program Files\Dell\SysMgt\oma\bin\dsupt32.dll - ok
19:53:28.0413 7888 [ 5AF5E1BA8593E9C7A0B0A84C499BBFD7 ] C:\WINDOWS\system32\shimeng.dll
19:53:28.0413 7888 C:\WINDOWS\system32\shimeng.dll - ok
19:53:28.0428 7888 [ 4B7FE55372DD060083AB47D14A8CA620 ] C:\Program Files\Dell\SysMgt\omsa\bin\dccoop32.dll
19:53:28.0428 7888 C:\Program Files\Dell\SysMgt\omsa\bin\dccoop32.dll - ok
19:53:28.0428 7888 [ 6F09AE902663735B6BD24198D25F453A ] C:\WINDOWS\system32\ersvc.dll
19:53:28.0428 7888 C:\WINDOWS\system32\ersvc.dll - ok
19:53:28.0444 7888 [ C17C56E91045E14DF45D62DD89AED50C ] C:\WINDOWS\system32\es.dll
19:53:28.0444 7888 C:\WINDOWS\system32\es.dll - ok
19:53:28.0444 7888 [ 686F19C1E3EB4645DBBD6719D862F909 ] C:\Program Files\Dell\SysMgt\omsa\bin\dciemp32.dll
19:53:28.0444 7888 C:\Program Files\Dell\SysMgt\omsa\bin\dciemp32.dll - ok
19:53:28.0444 7888 [ 7A5D176C4B43F0A47DA4051C96C56439 ] C:\WINDOWS\system32\drivers\http.sys
19:53:28.0444 7888 C:\WINDOWS\system32\drivers\http.sys - ok
19:53:28.0475 7888 [ 40CA39DBA80372ED8EC34C4BECE68495 ] C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll
19:53:28.0475 7888 C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll - ok
19:53:28.0475 7888 [ CA4B91B94EBE5402E4B268F259D96CFF ] C:\Program Files\Dell\SysMgt\sm\dsm_sm_dcsipe32.dll
19:53:28.0475 7888 C:\Program Files\Dell\SysMgt\sm\dsm_sm_dcsipe32.dll - ok
19:53:28.0491 7888 [ 58AC18BC908A78FBA5430D23066D183A ] C:\WINDOWS\system32\inetsrv\inetinfo.exe
19:53:28.0491 7888 C:\WINDOWS\system32\inetsrv\inetinfo.exe - ok
19:53:28.0491 7888 [ 4828C4244081EB4132868EA3E93456BB ] C:\WINDOWS\system32\hidserv.dll
19:53:28.0491 7888 C:\WINDOWS\system32\hidserv.dll - ok
19:53:28.0491 7888 [ 4AFDD2A575C6C53CB42C9CA2D2C1A129 ] C:\WINDOWS\system32\dchipm32.dll
19:53:28.0491 7888 C:\WINDOWS\system32\dchipm32.dll - ok
19:53:28.0522 7888 [ 7039B6E93209D3FD19E0C7AA897B3ACB ] C:\Program Files\Dell\SysMgt\sm\dsm_sm_evtmsg32.dll
19:53:28.0522 7888 C:\Program Files\Dell\SysMgt\sm\dsm_sm_evtmsg32.dll - ok
19:53:28.0522 7888 [ F13AE44717386D8018B95357E9700D05 ] C:\WINDOWS\system32\hid.dll
19:53:28.0522 7888 C:\WINDOWS\system32\hid.dll - ok
19:53:28.0538 7888 [ 947D28BDD6DED6EA16C83CF2865AE68D ] C:\WINDOWS\system32\inetsrv\iisutil.dll
19:53:28.0538 7888 C:\WINDOWS\system32\inetsrv\iisutil.dll - ok
19:53:28.0538 7888 [ 5FCF7F80EBE1AD32E01F9B83FE2941AB ] C:\WINDOWS\system32\inetsrv\rpcref.dll
19:53:28.0538 7888 C:\WINDOWS\system32\inetsrv\rpcref.dll - ok
19:53:28.0553 7888 [ 3E0C740C517898130A81370B950643C0 ] C:\WINDOWS\system32\dcwipm32.dll
19:53:28.0553 7888 C:\WINDOWS\system32\dcwipm32.dll - ok
19:53:28.0553 7888 [ 0D66B32A5944BF16127454A427DB8AA0 ] C:\WINDOWS\system32\iisRtl.dll
19:53:28.0553 7888 C:\WINDOWS\system32\iisRtl.dll - ok
19:53:28.0569 7888 [ 2C64B7334091C2A01C2A2FF5A84B519D ] C:\WINDOWS\system32\inetsrv\iisadmin.dll
19:53:28.0569 7888 C:\WINDOWS\system32\inetsrv\iisadmin.dll - ok
19:53:28.0584 7888 [ 8A4582BC33611E39F9BAB19C62CD598E ] C:\WINDOWS\system32\inetsrv\coadmin.dll
19:53:28.0584 7888 C:\WINDOWS\system32\inetsrv\coadmin.dll - ok
19:53:28.0584 7888 [ 1B1A2084540CC1F2E9A297A263D69D23 ] C:\WINDOWS\system32\ismserv.exe
19:53:28.0584 7888 C:\WINDOWS\system32\ismserv.exe - ok
19:53:28.0600 7888 [ 6D890B345C59432EBC13A084A1456EAB ] C:\Program Files\Dell\SysMgt\oma\bin\xmlsup32.dll
19:53:28.0600 7888 C:\Program Files\Dell\SysMgt\oma\bin\xmlsup32.dll - ok
19:53:28.0600 7888 [ F7EC84C0971A2465B942254A61555838 ] C:\WINDOWS\system32\admwprox.dll
19:53:28.0600 7888 C:\WINDOWS\system32\admwprox.dll - ok
19:53:28.0616 7888 [ 2E90B917FD53FC685249FAA3B66BE4F7 ] C:\WINDOWS\system32\dchbas32.dll
19:53:28.0616 7888 C:\WINDOWS\system32\dchbas32.dll - ok
19:53:28.0631 7888 [ 372097347142B42A6DD0DB68E20C37B2 ] C:\WINDOWS\system32\winrnr.dll
19:53:28.0631 7888 C:\WINDOWS\system32\winrnr.dll - ok
19:53:28.0631 7888 [ 42CB27388D3760D9031EBDD4E2958394 ] C:\Program Files\Dell\SysMgt\sm\dsm_sm_queue.dll
19:53:28.0631 7888 C:\Program Files\Dell\SysMgt\sm\dsm_sm_queue.dll - ok
19:53:28.0631 7888 [ 3A4DD1F9D437690B7D69899673874F45 ] C:\WINDOWS\system32\inetsrv\iiscfg.dll
19:53:28.0631 7888 C:\WINDOWS\system32\inetsrv\iiscfg.dll - ok
19:53:28.0647 7888 [ 59B540FEF44D7572E7F4775A5ECB7E6E ] C:\WINDOWS\system32\ismip.dll
19:53:28.0647 7888 C:\WINDOWS\system32\ismip.dll - ok
19:53:28.0647 7888 [ 2629C0254B24EE140828607745729954 ] C:\Program Files\Dell\SysMgt\omsa\bin\dcienv32.dll
19:53:28.0647 7888 C:\Program Files\Dell\SysMgt\omsa\bin\dcienv32.dll - ok
19:53:28.0678 7888 [ 620341B4E98D21002B5F275FEE18CE2E ] C:\WINDOWS\system32\ismsmtp.dll
19:53:28.0678 7888 C:\WINDOWS\system32\ismsmtp.dll - ok
19:53:28.0678 7888 [ 84663E46D4700BAD1455566AD6C7F63E ] C:\WINDOWS\LTSvc\LTSVC.exe
19:53:28.0678 7888 C:\WINDOWS\LTSvc\LTSVC.exe - ok
19:53:28.0694 7888 [ 7B63B078868E9D73D63D526F4631ED36 ] C:\WINDOWS\system32\inetsrv\metadata.dll
19:53:28.0694 7888 C:\WINDOWS\system32\inetsrv\metadata.dll - ok
19:53:28.0694 7888 [ 44A74EC070659BF127CAA0365A945D39 ] C:\WINDOWS\system32\comsvcs.dll
19:53:28.0694 7888 C:\WINDOWS\system32\comsvcs.dll - ok
19:53:28.0694 7888 [ 9A70739896DB18DFDD21280F1AD2A361 ] C:\WINDOWS\system32\msxml3.dll
19:53:28.0694 7888 C:\WINDOWS\system32\msxml3.dll - ok
19:53:28.0709 7888 [ F5DF6846F30E9F54EA60CCAEB3FB2055 ] C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscoreei.dll
19:53:28.0709 7888 C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscoreei.dll - ok
19:53:28.0725 7888 [ 45F65EE9117FC719CC28A3506AB2CCB2 ] C:\WINDOWS\system32\inetsrv\svcext.dll
19:53:28.0725 7888 C:\WINDOWS\system32\inetsrv\svcext.dll - ok
19:53:28.0741 7888 [ B9A9FFF33680113BB7E91BDFA8F6C9E3 ] C:\WINDOWS\system32\security.dll
19:53:28.0741 7888 C:\WINDOWS\system32\security.dll - ok
19:53:28.0741 7888 [ 4F34B8265BE23FEDA9DE3D4D1C4BAD7B ] C:\WINDOWS\system32\iismap.dll
19:53:28.0741 7888 C:\WINDOWS\system32\iismap.dll - ok
19:53:28.0756 7888 [ 06ACF22371E322B152B442A1DE780F9F ] C:\WINDOWS\system32\inetsrv\wamreg.dll
19:53:28.0756 7888 C:\WINDOWS\system32\inetsrv\wamreg.dll - ok
19:53:28.0756 7888 [ 1C88CF5977C016A37BFAC1178DAA7822 ] C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorwks.dll
19:53:28.0756 7888 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorwks.dll - ok
19:53:28.0788 7888 [ F971EA13F0E6AF638516E1833E3D73A4 ] C:\Program Files\Dell\SysMgt\omsa\bin\dcesmp32.dll
19:53:28.0788 7888 C:\Program Files\Dell\SysMgt\omsa\bin\dcesmp32.dll - ok
19:53:28.0788 7888 [ 1BFAB7D8C3EBD1CABAD4A3D0A6AFD580 ] C:\Program Files\Dell\SysMgt\omsa\bin\dcipm932.dll
19:53:28.0788 7888 C:\Program Files\Dell\SysMgt\omsa\bin\dcipm932.dll - ok
19:53:28.0788 7888 [ C000FF75AC1D053333D1FA5B3CD6AFD7 ] C:\Program Files\Dell\SysMgt\omsa\bin\dcip1032.dll
19:53:28.0788 7888 C:\Program Files\Dell\SysMgt\omsa\bin\dcip1032.dll - ok
19:53:28.0803 7888 [ D00920F6DF9B9DCEB3424237B7E3B094 ] C:\Program Files\Dell\SysMgt\omsa\bin\dclra32.dll
19:53:28.0803 7888 C:\Program Files\Dell\SysMgt\omsa\bin\dclra32.dll - ok
19:53:28.0803 7888 [ 37E563D230D870C7E3DA5EE78E3C35FF ] C:\Program Files\Dell\SysMgt\omsa\bin\dcosp32.dll
19:53:28.0803 7888 C:\Program Files\Dell\SysMgt\omsa\bin\dcosp32.dll - ok
19:53:28.0819 7888 [ BA152B71D04C34843D99ACD7BB77ACBA ] C:\WINDOWS\system32\pdh.dll
19:53:28.0819 7888 C:\WINDOWS\system32\pdh.dll - ok
19:53:28.0834 7888 [ 0F7BA831974532F0FA4456FC2C7B5A76 ] C:\WINDOWS\system32\odbc32.dll
19:53:28.0834 7888 C:\WINDOWS\system32\odbc32.dll - ok
19:53:28.0834 7888 [ B313953DA4474CB1CD66BD4EE3AAB672 ] C:\WINDOWS\system32\odbcbcp.dll
19:53:28.0834 7888 C:\WINDOWS\system32\odbcbcp.dll - ok
19:53:28.0850 7888 [ 43BD69F74C54E5A11DAEFEDCB2AF083C ] C:\WINDOWS\system32\odbcint.dll
19:53:28.0850 7888 C:\WINDOWS\system32\odbcint.dll - ok
19:53:28.0850 7888 [ DEC7885B2EF0966EA285C9A40E7AFBA4 ] C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\mscorlib\e337c89bc9f81b69d7237aa70e935900\mscorlib.ni.dll
19:53:28.0850 7888 C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\mscorlib\e337c89bc9f81b69d7237aa70e935900\mscorlib.ni.dll - ok
19:53:28.0866 7888 [ 974B3771F714F817EAC61CDB02FF2F00 ] C:\WINDOWS\system32\perfos.dll
19:53:28.0866 7888 C:\WINDOWS\system32\perfos.dll - ok
19:53:28.0866 7888 [ 105B53C0CAB8F40F66F9AD3E55E39415 ] C:\Program Files\Dell\SysMgt\omsa\bin\dcsecp32.dll
19:53:28.0866 7888 C:\Program Files\Dell\SysMgt\omsa\bin\dcsecp32.dll - ok
19:53:28.0897 7888 [ 2997544962A0C57EFBFB5BBFC00F8EC3 ] C:\Program Files\Dell\SysMgt\omsa\bin\dctvm32.dll
19:53:28.0897 7888 C:\Program Files\Dell\SysMgt\omsa\bin\dctvm32.dll - ok
19:53:28.0897 7888 [ ECE59F5060D1EB94D161426EF2511D56 ] C:\Program Files\Dell\SysMgt\omsa\bin\dcwfm32.dll
19:53:28.0897 7888 C:\Program Files\Dell\SysMgt\omsa\bin\dcwfm32.dll - ok
19:53:28.0897 7888 [ 72CADF7EE0722DAE4A6B98EEFEAC06BC ] C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System\e4b5afc4da43b1c576f9322f9f2e1bfe\System.ni.dll
19:53:28.0897 7888 C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System\e4b5afc4da43b1c576f9322f9f2e1bfe\System.ni.dll - ok
19:53:28.0913 7888 [ 2ECB180C94842AD05420DC65D7B0B596 ] C:\WINDOWS\system32\ntlsapi.dll
19:53:28.0913 7888 C:\WINDOWS\system32\ntlsapi.dll - ok
19:53:28.0913 7888 [ 14AEF76809304DEE25AAADE666A6FC2B ] C:\WINDOWS\system32\icmp.dll
19:53:28.0913 7888 C:\WINDOWS\system32\icmp.dll - ok
19:53:28.0959 7888 [ B7A48556EB302CD02A725D2D425F2D0C ] C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.ServiceProce#\8b84bb74d7724e147a642a1d5358feb7\System.ServiceProcess.ni.dll
19:53:28.0959 7888 C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.ServiceProce#\8b84bb74d7724e147a642a1d5358feb7\System.ServiceProcess.ni.dll - ok
19:53:28.0959 7888 [ B560A085EED4D5D72B039929F9AE4991 ] C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorjit.dll
19:53:28.0959 7888 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorjit.dll - ok
19:53:28.0975 7888 [ C39201F534B188AAD472CDBBBB044322 ] C:\WINDOWS\system32\winsrpc.dll
19:53:28.0975 7888 C:\WINDOWS\system32\winsrpc.dll - ok
19:53:28.0975 7888 [ 5838A2A53AFCEE26794BAB9D7B8F1D71 ] C:\Program Files\Dell\SysMgt\omsa\bin\dcifru32.dll
19:53:28.0975 7888 C:\Program Files\Dell\SysMgt\omsa\bin\dcifru32.dll - ok
19:53:28.0975 7888 [ C05A4D494C3096782F80CFDF7F4AEFA8 ] C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Drawing\d86f2038209a4cf0d0f5b30f6375c9b2\System.Drawing.ni.dll
19:53:28.0975 7888 C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Drawing\d86f2038209a4cf0d0f5b30f6375c9b2\System.Drawing.ni.dll - ok
19:53:29.0006 7888 [ E1975C5AF55242ADAF18E5FE195515D1 ] C:\WINDOWS\system32\inetsrv\adsiis.dll
19:53:29.0006 7888 C:\WINDOWS\system32\inetsrv\adsiis.dll - ok
19:53:29.0006 7888 [ 0036A580326CEA0C27AD020EC467925A ] C:\WINDOWS\system32\inetsrv\smtpadm.dll
19:53:29.0006 7888 C:\WINDOWS\system32\inetsrv\smtpadm.dll - ok
19:53:29.0022 7888 [ D9A8E23362E7A9EF55604E10A79595E8 ] C:\WINDOWS\system32\smtpapi.dll
19:53:29.0022 7888 C:\WINDOWS\system32\smtpapi.dll - ok
19:53:29.0022 7888 [ 1B46CA79089BC24BDE4E214EC5D37253 ] C:\WINDOWS\system32\exstrace.dll
19:53:29.0022 7888 C:\WINDOWS\system32\exstrace.dll - ok
19:53:29.0038 7888 [ 42279A3BEA59B6D2A3B5743E9F013AD3 ] C:\WINDOWS\system32\staxmem.dll
19:53:29.0038 7888 C:\WINDOWS\system32\staxmem.dll - ok
19:53:29.0038 7888 [ C7ADB19D02C1B4BE5A9AD4189807673D ] C:\WINDOWS\system32\inetsrv\seo.dll
19:53:29.0038 7888 C:\WINDOWS\system32\inetsrv\seo.dll - ok
19:53:29.0069 7888 [ D194A20E51A1FA8CF1A841A503F001C6 ] C:\WINDOWS\system32\rwnh.dll
19:53:29.0069 7888 C:\WINDOWS\system32\rwnh.dll - ok
19:53:29.0069 7888 [ A0AEB1EA957C6C12FE7873CA58DA8D73 ] C:\Program Files\Dell\SysMgt\sm\dsm_sm_ral32.dll
19:53:29.0069 7888 C:\Program Files\Dell\SysMgt\sm\dsm_sm_ral32.dll - ok
19:53:29.0069 7888 [ A7E9D45B18A13DC18E3C0311D1CF620F ] C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\01abbadafaf265d9f4ac9bbb247acb98\System.Windows.Forms.ni.dll
19:53:29.0069 7888 C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\01abbadafaf265d9f4ac9bbb247acb98\System.Windows.Forms.ni.dll - ok
19:53:29.0084 7888 [ A90B3A45DBFC6E7435AD380467AA7964 ] C:\Program Files\Dell\SysMgt\sm\dsm_sm_val.dll
19:53:29.0084 7888 C:\Program Files\Dell\SysMgt\sm\dsm_sm_val.dll - ok
19:53:29.0084 7888 [ 669AEF5E13E865B9B85B571D792DF0DC ] C:\Program Files\Dell\SysMgt\sm\dellvl\dsm_sm_lsivil.dll
19:53:29.0084 7888 C:\Program Files\Dell\SysMgt\sm\dellvl\dsm_sm_lsivil.dll - ok
19:53:29.0131 7888 [ ED5A2E6D92635FD6DF7F199D4241C8B1 ] C:\Program Files\Dell\SysMgt\sm\megalib.dll
19:53:29.0131 7888 C:\Program Files\Dell\SysMgt\sm\megalib.dll - ok
19:53:29.0147 7888 [ 2F0539BFF032D35BA47C341A988BE1FF ] C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Microsoft.VisualBas#\359fd69eb60e9844ffd497e92345178c\Microsoft.VisualBasic.ni.dll
19:53:29.0147 7888 C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Microsoft.VisualBas#\359fd69eb60e9844ffd497e92345178c\Microsoft.VisualBasic.ni.dll - ok
19:53:29.0147 7888 [ 880B96625544C4C34AEA975A68756C91 ] C:\WINDOWS\LTSvc\LTSvcMon.exe
19:53:29.0147 7888 C:\WINDOWS\LTSvc\LTSvcMon.exe - ok
19:53:29.0147 7888 [ B645C53365FCCF8FD000E2CAE909C811 ] C:\Program Files\Sophos\PureMessage\Bin\MMRot.exe
19:53:29.0147 7888 C:\Program Files\Sophos\PureMessage\Bin\MMRot.exe - ok
19:53:29.0163 7888 [ 4DA6843E52F8128156130B6D3679FD06 ] C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Runtime.Remo#\92d58f840f549f9bd880783d43db7e3c\System.Runtime.Remoting.ni.dll
19:53:29.0163 7888 C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Runtime.Remo#\92d58f840f549f9bd880783d43db7e3c\System.Runtime.Remoting.ni.dll - ok
19:53:29.0163 7888 [ E1E0FBEE1932749FE4EAC59136D4CA94 ] C:\Program Files\Dell\SysMgt\sm\dellvl\dsm_sm_afavil.dll
19:53:29.0163 7888 C:\Program Files\Dell\SysMgt\sm\dellvl\dsm_sm_afavil.dll - ok
19:53:29.0194 7888 [ C0F5378F099696A134A325C8A74A9A19 ] C:\WINDOWS\system32\drivers\mqac.sys
19:53:29.0194 7888 C:\WINDOWS\system32\drivers\mqac.sys - ok
19:53:29.0194 7888 [ 91EBE05CA28A514FD563E79DC5466F5E ] C:\Program Files\Dell\SysMgt\sm\mr2kserv.exe
19:53:29.0194 7888 C:\Program Files\Dell\SysMgt\sm\mr2kserv.exe - ok
19:53:29.0209 7888 [ EB863A06F146AC1CC909BC862A279746 ] C:\Program Files\Dell\SysMgt\sm\afaapi.dll
19:53:29.0209 7888 C:\Program Files\Dell\SysMgt\sm\afaapi.dll - ok
19:53:29.0209 7888 [ 1D52BCAF65EC439C735ED109431D1C09 ] C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Configuration\3d5b7368bde0f65aa15d9f46b498cc89\System.Configuration.ni.dll
19:53:29.0209 7888 C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Configuration\3d5b7368bde0f65aa15d9f46b498cc89\System.Configuration.ni.dll - ok
19:53:29.0209 7888 [ 9CE7996043175ABB6FA241149F0E72FB ] C:\Program Files\Dell\SysMgt\sm\afaappse.dll
19:53:29.0209 7888 C:\Program Files\Dell\SysMgt\sm\afaappse.dll - ok
19:53:29.0225 7888 [ CAA341DF00B1069BCAE897691AA77B6C ] C:\WINDOWS\system32\rpcns4.dll
19:53:29.0225 7888 C:\WINDOWS\system32\rpcns4.dll - ok
19:53:29.0256 7888 [ 268358EE0D7709FA190BE6AF280731D4 ] C:\Program Files\Dell\SysMgt\sm\dellvl\dsm_sm_enclvil.dll
19:53:29.0256 7888 C:\Program Files\Dell\SysMgt\sm\dellvl\dsm_sm_enclvil.dll - ok
19:53:29.0256 7888 [ D274B0C2C68EA559417F7F737B31E71A ] C:\Program Files\Dell\SysMgt\sm\dellvl\dsm_sm_nrsvil.dll
19:53:29.0256 7888 C:\Program Files\Dell\SysMgt\sm\dellvl\dsm_sm_nrsvil.dll - ok
19:53:29.0272 7888 [ C806ABDA2754C1B52F1C4C03EDF44EC0 ] C:\Program Files\Dell\SysMgt\sm\dsm_sm_hel.dll
19:53:29.0272 7888 C:\Program Files\Dell\SysMgt\sm\dsm_sm_hel.dll - ok
19:53:29.0272 7888 [ C167E9DA7DE778751B0B81904B0735BB ] C:\Program Files\Dell\SysMgt\sm\dellvl\dsm_sm_sasvil.dll
19:53:29.0272 7888 C:\Program Files\Dell\SysMgt\sm\dellvl\dsm_sm_sasvil.dll - ok
19:53:29.0272 7888 [ 8563F5A4F6342BA64E7C398F7EFCC350 ] C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Xml\3bba1b8b0b5ef0be238b011cc7a0575e\System.Xml.ni.dll
19:53:29.0272 7888 C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Xml\3bba1b8b0b5ef0be238b011cc7a0575e\System.Xml.ni.dll - ok
19:53:29.0303 7888 [ F5706EF5AB06C66CB46668E804E8E8F4 ] C:\Program Files\Dell\SysMgt\sm\storelib.dll
19:53:29.0303 7888 C:\Program Files\Dell\SysMgt\sm\storelib.dll - ok
19:53:29.0319 7888 [ 02A2F7BB70A269C094F70D4D1B6ED6D9 ] C:\Program Files\Dell\SysMgt\sm\storelibir.dll
19:53:29.0319 7888 C:\Program Files\Dell\SysMgt\sm\storelibir.dll - ok
19:53:29.0319 7888 [ 18F93B0375060DC637BFC40C3FA622A5 ] C:\Program Files\Dell\SysMgt\sm\dellvl\dsm_sm_sasenclvil.dll
19:53:29.0319 7888 C:\Program Files\Dell\SysMgt\sm\dellvl\dsm_sm_sasenclvil.dll - ok
19:53:29.0319 7888 [ C1F4C52DE37595D90D876ADF9E6288F2 ] C:\Program Files\Dell\SysMgt\RAC5\bin\dcrac532.dll
19:53:29.0319 7888 C:\Program Files\Dell\SysMgt\RAC5\bin\dcrac532.dll - ok
19:53:29.0334 7888 [ 837608240884733792DDAE81E50B802A ] C:\Program Files\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\sqlservr.exe
19:53:29.0334 7888 C:\Program Files\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\sqlservr.exe - ok
19:53:29.0334 7888 [ 1E5A9E180C2632361B38D4208828A843 ] C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Web\dbc413807cb7360b3e26ef3ca1d54f9a\System.Web.ni.dll
19:53:29.0334 7888 C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Web\dbc413807cb7360b3e26ef3ca1d54f9a\System.Web.ni.dll - ok
19:53:29.0366 7888 [ D6D4130C0BBC0D18C2DA703CC38260A9 ] C:\Program Files\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\sqlos.dll
19:53:29.0366 7888 C:\Program Files\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\sqlos.dll - ok
19:53:29.0366 7888 [ E111CED19D6A9FF9BBA5C219D0C5A3CE ] C:\Program Files\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\opends60.dll
19:53:29.0366 7888 C:\Program Files\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\opends60.dll - ok
19:53:29.0381 7888 [ 9D506993BDFA57AF4191B486E977BA5D ] C:\Program Files\Dell\SysMgt\omsa\bin\dcship32.dll
19:53:29.0381 7888 C:\Program Files\Dell\SysMgt\omsa\bin\dcship32.dll - ok
19:53:29.0381 7888 [ 28A8A5C333BF3F54212105F85D80D7CD ] C:\WINDOWS\system32\wbem\wbemprox.dll
19:53:29.0381 7888 C:\WINDOWS\system32\wbem\wbemprox.dll - ok
19:53:29.0397 7888 [ 59CC44AB97C3992E228FAEF4E2CE06A7 ] C:\WINDOWS\system32\wbem\wbemcomn.dll
19:53:29.0397 7888 C:\WINDOWS\system32\wbem\wbemcomn.dll - ok
19:53:29.0413 7888 [ 219AF0F9A54EBEEB3E7E20025D801034 ] C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\Culture.dll
19:53:29.0413 7888 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\Culture.dll - ok
19:53:29.0413 7888 [ 7B193BA3F0245D5867B71AD1CF631474 ] C:\Program Files\Microsoft SQL Server\90\Shared\instapi.dll
19:53:29.0413 7888 C:\Program Files\Microsoft SQL Server\90\Shared\instapi.dll - ok
19:53:29.0428 7888 [ 145950AD525F8ECE3D1B9D9A583C3D6C ] C:\Program Files\NetBalancer\SeriousBit.NetBalancer.Service.exe
19:53:29.0428 7888 C:\Program Files\NetBalancer\SeriousBit.NetBalancer.Service.exe - ok
19:53:29.0428 7888 [ 1AF54261C283BAFB021B3D84A7BAE978 ] C:\Program Files\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\SQLBOOT.dll
19:53:29.0428 7888 C:\Program Files\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\SQLBOOT.dll - ok
19:53:29.0444 7888 [ A07924FE584049EC989A2820203A5E09 ] C:\Program Files\NetBalancer\BugReporting.dll
19:53:29.0444 7888 C:\Program Files\NetBalancer\BugReporting.dll - ok
19:53:29.0444 7888 [ 247FE8DEFBB95A4319C7B4B215F92891 ] C:\Program Files\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\Resources\1033\sqlevn70.rll
19:53:29.0444 7888 C:\Program Files\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\Resources\1033\sqlevn70.rll - ok
19:53:29.0475 7888 [ C866B68ABEEFF83CAC6B82F102290D84 ] C:\Program Files\NetBalancer\SeriousBit.Licensing.dll
19:53:29.0475 7888 C:\Program Files\NetBalancer\SeriousBit.Licensing.dll - ok
19:53:29.0475 7888 [ 54F59144F65F863F54FBB8BB3B07F56B ] C:\Program Files\NetBalancer\PacketDotNet.dll
19:53:29.0475 7888 C:\Program Files\NetBalancer\PacketDotNet.dll - ok
19:53:29.0491 7888 [ A1EDC4786E8FF02B6EF78605521B5BA9 ] C:\Program Files\NetBalancer\Ionic.Zip.dll
19:53:29.0491 7888 C:\Program Files\NetBalancer\Ionic.Zip.dll - ok
19:53:29.0491 7888 [ 7D8432E8DED8AB1C34F1F31C04DE70F1 ] C:\Program Files\NetBalancer\Localizator.dll
19:53:29.0491 7888 C:\Program Files\NetBalancer\Localizator.dll - ok
19:53:29.0506 7888 [ A07EFB9757A8308DCEEFA171CE78AA46 ] C:\WINDOWS\LTSvc\wodVPN.dll
19:53:29.0506 7888 C:\WINDOWS\LTSvc\wodVPN.dll - ok
19:53:29.0522 7888 [ DAF79E8CAFD90333D61A61F632A5B4CD ] C:\WINDOWS\system32\snmpapi.dll
19:53:29.0522 7888 C:\WINDOWS\system32\snmpapi.dll - ok
19:53:29.0538 7888 [ D0D8353894653274622C745EF4E2E582 ] C:\Program Files\NetBalancer\SeriousBit.NetBalancer.Core.dll
19:53:29.0538 7888 C:\Program Files\NetBalancer\SeriousBit.NetBalancer.Core.dll - ok
19:53:29.0538 7888 [ 8BFD605F4B06F9E542264F4545624B18 ] C:\WINDOWS\system32\inetmib1.dll
19:53:29.0538 7888 C:\WINDOWS\system32\inetmib1.dll - ok
19:53:29.0538 7888 [ 0E2350337EB4BFA121ABFA9023897469 ] C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\SeriousBit.NetBalan#\0fd7ec64359ddc0cb31b8c8baae319ad\SeriousBit.NetBalancer.Service.ni.exe
19:53:29.0538 7888 C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\SeriousBit.NetBalan#\0fd7ec64359ddc0cb31b8c8baae319ad\SeriousBit.NetBalancer.Service.ni.exe - ok
19:53:29.0553 7888 [ 6703A9A106057AA4A41B1DB612D7D959 ] C:\Program Files\NetBalancer\LinqBridge.dll
19:53:29.0553 7888 C:\Program Files\NetBalancer\LinqBridge.dll - ok
19:53:29.0553 7888 [ 397D3EF4842D6454FA68218438165A5D ] C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Management\9080c8e8e7b6dfb502c1328673d636f8\System.Management.ni.dll
19:53:29.0553 7888 C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Management\9080c8e8e7b6dfb502c1328673d636f8\System.Management.ni.dll - ok
19:53:29.0584 7888 [ C813B197B577159B80C3D53DE950551F ] C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\SeriousBit.NetBalan#\b9aee821f2420bb15ace25493e57c960\SeriousBit.NetBalancer.Core.ni.dll
19:53:29.0584 7888 C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\SeriousBit.NetBalan#\b9aee821f2420bb15ace25493e57c960\SeriousBit.NetBalancer.Core.ni.dll - ok
19:53:29.0600 7888 [ 35A936C7C029A5B705D3FFD40518D660 ] C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\WMINet_Utils.dll
19:53:29.0600 7888 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\WMINet_Utils.dll - ok
19:53:29.0600 7888 [ B8BB619B5CEBE7F4035274F197121CA3 ] C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Localizator\5abe0edc68d2425d3fc42d4f1df3721f\Localizator.ni.dll
19:53:29.0600 7888 C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Localizator\5abe0edc68d2425d3fc42d4f1df3721f\Localizator.ni.dll - ok
19:53:29.0600 7888 [ 953972A83BBADFDA72F133FA8D7DF193 ] C:\WINDOWS\system32\wbem\wmiutils.dll
19:53:29.0600 7888 C:\WINDOWS\system32\wbem\wmiutils.dll - ok
19:53:29.0616 7888 [ A94567CD9FAB0D782FEC49A5D1E3FFCC ] C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Ionic.Zip\36b24b9882f859d5805d0e9e221b57bc\Ionic.Zip.ni.dll
19:53:29.0616 7888 C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Ionic.Zip\36b24b9882f859d5805d0e9e221b57bc\Ionic.Zip.ni.dll - ok
19:53:29.0647 7888 [ EB675900AFABF01B7DD2FECFDFF4BB04 ] C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\PacketDotNet\4d7a0fe1cbedd5c9b7466624f05bd202\PacketDotNet.ni.dll
19:53:29.0647 7888 C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\PacketDotNet\4d7a0fe1cbedd5c9b7466624f05bd202\PacketDotNet.ni.dll - ok
19:53:29.0647 7888 [ F8418234226A1FF7F52E04D75104F56C ] C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\SeriousBit.Licensing\ea19d8923adf76851b950a027fa0029a\SeriousBit.Licensing.ni.dll
19:53:29.0647 7888 C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\SeriousBit.Licensing\ea19d8923adf76851b950a027fa0029a\SeriousBit.Licensing.ni.dll - ok
19:53:29.0647 7888 [ 59F2ED02C550696AB0E68E9EB8D465FD ] C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\BugReporting\feceb251db5f803a74380b94d6593b1c\BugReporting.ni.dll
19:53:29.0647 7888 C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\BugReporting\feceb251db5f803a74380b94d6593b1c\BugReporting.ni.dll - ok
19:53:29.0663 7888 [ F70E342E180436100F3797F046CCF660 ] C:\WINDOWS\system32\shfolder.dll
19:53:29.0663 7888 C:\WINDOWS\system32\shfolder.dll - ok
19:53:29.0663 7888 [ AA7A72F3BBC371D268ACABEE1B732E27 ] C:\WINDOWS\system32\dssenh.dll
19:53:29.0663 7888 C:\WINDOWS\system32\dssenh.dll - ok
19:53:29.0694 7888 [ 981756F0532439AA3A1A4AE9DA9F930E ] C:\WINDOWS\system32\ntfrs.exe
19:53:29.0694 7888 C:\WINDOWS\system32\ntfrs.exe - ok
19:53:29.0709 7888 [ EAA5A7F7985DE8E5D6BC1AC41970C2DC ] C:\WINDOWS\system32\dbghelp.dll
19:53:29.0709 7888 C:\WINDOWS\system32\dbghelp.dll - ok
19:53:29.0709 7888 [ 1E827CD1D8668978C5DA738468F2D562 ] C:\WINDOWS\system32\ntfrsapi.dll
19:53:29.0709 7888 C:\WINDOWS\system32\ntfrsapi.dll - ok
19:53:29.0709 7888 [ 425F1B51B891A078EE70A9A07A3D7CAE ] C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\LinqBridge\1387c25315272e8cf6ec7264c275a713\LinqBridge.ni.dll
19:53:29.0709 7888 C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\LinqBridge\1387c25315272e8cf6ec7264c275a713\LinqBridge.ni.dll - ok
19:53:29.0725 7888 [ D52FA9AF66F997057734194CD64E6A85 ] C:\Program Files\Dell\SysMgt\oma\bin\dsm_om_shrsvc32.exe
19:53:29.0725 7888 C:\Program Files\Dell\SysMgt\oma\bin\dsm_om_shrsvc32.exe - ok
19:53:29.0725 7888 [ E2BC095CE73EEAAA7990C7361F3A2843 ] C:\Program Files\Dell\SysMgt\oma\bin\omsas32.dll
19:53:29.0725 7888 C:\Program Files\Dell\SysMgt\oma\bin\omsas32.dll - ok
19:53:29.0756 7888 [ 4247B950A00BFCAF55ACC465357F2EEB ] C:\Program Files\Dell\SysMgt\oma\bin\dnet32.dll
19:53:29.0756 7888 C:\Program Files\Dell\SysMgt\oma\bin\dnet32.dll - ok
19:53:29.0772 7888 [ 2F402D1269B0A60EB92388D97097ACE9 ] C:\Program Files\Dell\SysMgt\oma\bin\dweb32.dll
19:53:29.0772 7888 C:\Program Files\Dell\SysMgt\oma\bin\dweb32.dll - ok
19:53:29.0772 7888 [ 24E64B9764F8A274787835642866F0ED ] C:\Program Files\Dell\SysMgt\oma\bin\devent32.dll
19:53:29.0772 7888 C:\Program Files\Dell\SysMgt\oma\bin\devent32.dll - ok
19:53:29.0788 7888 [ 0FE1B66675C27216BCC022D0A62B5E4C ] C:\Program Files\Dell\SysMgt\oma\bin\omintf32.dll
19:53:29.0788 7888 C:\Program Files\Dell\SysMgt\oma\bin\omintf32.dll - ok
19:53:29.0788 7888 [ 6305A77FCEE22859CDA1B2B406203373 ] C:\Program Files\Sophos\PureMessage\Bin\PMScanner.exe
19:53:29.0788 7888 C:\Program Files\Sophos\PureMessage\Bin\PMScanner.exe - ok
19:53:29.0819 7888 [ B605D9698A2DE4EF517BE874A1B8CA24 ] C:\Program Files\Exchsrvr\bin\pop3svc.dll
19:53:29.0819 7888 C:\Program Files\Exchsrvr\bin\pop3svc.dll - ok
19:53:29.0834 7888 [ E1DFF5B0C444912074381634BD38E3EF ] C:\WINDOWS\system32\ipsecsvc.dll
19:53:29.0834 7888 C:\WINDOWS\system32\ipsecsvc.dll - ok
19:53:29.0834 7888 [ 55EFA91D1C0DE44C22D2D83413B06510 ] C:\WINDOWS\system32\regsvc.dll
19:53:29.0834 7888 C:\WINDOWS\system32\regsvc.dll - ok
19:53:29.0850 7888 [ CA7D665C871026AE6EAD6E52F141F92A ] C:\Program Files\Sophos\Sophos Anti-Virus\SAVAdminService.exe
19:53:29.0850 7888 C:\Program Files\Sophos\Sophos Anti-Virus\SAVAdminService.exe - ok
19:53:29.0850 7888 [ 8F0CE983F620A4970F956B1F4CE024B7 ] C:\WINDOWS\system32\oakley.dll
19:53:29.0850 7888 C:\WINDOWS\system32\oakley.dll - ok
19:53:29.0866 7888 [ 575879F6C4CBF30FD2FCF572717E87E4 ] C:\Program Files\Exchsrvr\bin\dsaccess.dll
19:53:29.0866 7888 C:\Program Files\Exchsrvr\bin\dsaccess.dll - ok
19:53:29.0881 7888 [ 91166D5AA7E09299E0768C71D11B65CC ] C:\Program Files\Exchsrvr\bin\epoxy.dll
19:53:29.0881 7888 C:\Program Files\Exchsrvr\bin\epoxy.dll - ok
19:53:29.0881 7888 [ 1E3CEABF63C7D5559FAF4AEF9266D221 ] C:\WINDOWS\system32\winipsec.dll
19:53:29.0881 7888 C:\WINDOWS\system32\winipsec.dll - ok
19:53:29.0897 7888 [ 8FEA397834DDC35DCA940BF4E6B07522 ] C:\Program Files\Sophos\PureMessage\Bin\SavexSrvc.exe
19:53:29.0897 7888 C:\Program Files\Sophos\PureMessage\Bin\SavexSrvc.exe - ok
19:53:29.0897 7888 [ AA459E8A9F8C0C04244CC35B1446AE9F ] C:\WINDOWS\system32\pstorsvc.dll
19:53:29.0897 7888 C:\WINDOWS\system32\pstorsvc.dll - ok
19:53:29.0897 7888 [ 96C9C7448F5F4A5E56AECDF2BA704834 ] C:\Program Files\Exchsrvr\bin\exchmem.dll
19:53:29.0897 7888 C:\Program Files\Exchsrvr\bin\exchmem.dll - ok
19:53:29.0913 7888 [ 735D13AD222F85D0AD9CD7CFF07E3178 ] C:\Program Files\Exchsrvr\bin\pttrace.dll
19:53:29.0913 7888 C:\Program Files\Exchsrvr\bin\pttrace.dll - ok
19:53:29.0928 7888 [ 93FF3D1B00626714A47D6EFB01C71C9C ] C:\WINDOWS\system32\fcachdll.dll
19:53:29.0928 7888 C:\WINDOWS\system32\fcachdll.dll - ok
19:53:29.0928 7888 [ 7066EC0020478833D83F25A163FF2C20 ] C:\Program Files\Exchsrvr\bin\iisif.dll
19:53:29.0928 7888 C:\Program Files\Exchsrvr\bin\iisif.dll - ok
19:53:29.0944 7888 [ 737FD3EBC87BA44998E0C5A5AEC8272F ] C:\Program Files\Sophos\PureMessage\Bin\SavexWebAgent.exe
19:53:29.0944 7888 C:\Program Files\Sophos\PureMessage\Bin\SavexWebAgent.exe - ok
19:53:29.0944 7888 [ F6555489160ED195B5BA218E20843108 ] C:\WINDOWS\system32\wlbsctrl.dll
19:53:29.0944 7888 C:\WINDOWS\system32\wlbsctrl.dll - ok
19:53:29.0959 7888 [ D67E8A65EEBB504FA041A4565131E18D ] C:\Program Files\Sophos\PureMessage\Bin\ConfigManager.dll
19:53:29.0959 7888 C:\Program Files\Sophos\PureMessage\Bin\ConfigManager.dll - ok
19:53:29.0959 7888 [ E6DCD997989393D27C8D0B0D749B2CEF ] C:\WINDOWS\system32\psbase.dll
19:53:29.0959 7888 C:\WINDOWS\system32\psbase.dll - ok
19:53:29.0991 7888 [ 73DA8A6C8FE1B55DE893C4FD6FC01085 ] C:\Program Files\Exchsrvr\bin\lsatq.dll
19:53:29.0991 7888 C:\Program Files\Exchsrvr\bin\lsatq.dll - ok
19:53:29.0991 7888 [ B5A2859FAA8D8D37D24D4F3D6E95D9C2 ] C:\Program Files\Dell\SysMgt\iws\bin\win32\dsm_om_connsvc32.exe
19:53:29.0991 7888 C:\Program Files\Dell\SysMgt\iws\bin\win32\dsm_om_connsvc32.exe - ok
19:53:29.0991 7888 [ 1975453ADAC43727E5400E2BCE92EEC5 ] C:\Program Files\Dell\SysMgt\cm\invcol\invcol.exe
19:53:29.0991 7888 C:\Program Files\Dell\SysMgt\cm\invcol\invcol.exe - ok
19:53:30.0006 7888 [ 03911D9A5D15A80301E767F787C0B015 ] C:\WINDOWS\system32\seclogon.dll
19:53:30.0006 7888 C:\WINDOWS\system32\seclogon.dll - ok
19:53:30.0006 7888 [ 97B6172283112AF7451E4ABE83DD6F24 ] C:\WINDOWS\system32\sens.dll
19:53:30.0006 7888 C:\WINDOWS\system32\sens.dll - ok
19:53:30.0038 7888 [ 54DFA275871C5782B7DD027186BBE12A ] C:\Program Files\Exchsrvr\bin\lisrtl.dll
19:53:30.0038 7888 C:\Program Files\Exchsrvr\bin\lisrtl.dll - ok
19:53:30.0038 7888 [ 5C05197C6C9DD567D52383C1990E8D5B ] C:\Program Files\Dell\SysMgt\jre\bin\client\jvm.dll
19:53:30.0038 7888 C:\Program Files\Dell\SysMgt\jre\bin\client\jvm.dll - ok
19:53:30.0038 7888 [ E343497C8EC71A3068A030D447751B13 ] C:\Program Files\Exchsrvr\bin\iisproto.dll
19:53:30.0038 7888 C:\Program Files\Exchsrvr\bin\iisproto.dll - ok
19:53:30.0053 7888 [ 8968971DA2784B2103798068B2107760 ] C:\Program Files\Exchsrvr\bin\febecfg.dll
19:53:30.0053 7888 C:\Program Files\Exchsrvr\bin\febecfg.dll - ok
19:53:30.0053 7888 [ 1DD15CBAE4AA7B2F5166D0C2700AEF94 ] C:\Program Files\Sophos\SCC\Remote Management System\ManagementAgentNT.exe
19:53:30.0053 7888 C:\Program Files\Sophos\SCC\Remote Management System\ManagementAgentNT.exe - ok
19:53:30.0069 7888 [ A977C5BD1CA52B6399E62C0FCD744481 ] C:\Program Files\Exchsrvr\bin\lnfocomm.dll
19:53:30.0069 7888 C:\Program Files\Exchsrvr\bin\lnfocomm.dll - ok
19:53:30.0084 7888 [ 6B40329F2001018E74D4074BE1A5D36B ] C:\Program Files\Exchsrvr\bin\lisfecnv.dll
19:53:30.0084 7888 C:\Program Files\Exchsrvr\bin\lisfecnv.dll - ok
19:53:30.0100 7888 [ 86F1895AE8C5E8B17D99ECE768A70732 ] C:\WINDOWS\system32\msvcr71.dll
19:53:30.0100 7888 C:\WINDOWS\system32\msvcr71.dll - ok
19:53:30.0100 7888 [ 05EFD42AD2F2E941FAB329E6FC146592 ] C:\Program Files\Exchsrvr\bin\mdbevent.dll
19:53:30.0100 7888 C:\Program Files\Exchsrvr\bin\mdbevent.dll - ok
19:53:30.0100 7888 [ 7126C31E65C043009BB7FC5493B1F43F ] C:\Program Files\Sophos\PureMessage\Bin\autoconfig.dll
19:53:30.0100 7888 C:\Program Files\Sophos\PureMessage\Bin\autoconfig.dll - ok
19:53:30.0116 7888 [ 1CFC1BBB70161D3D204A2280F83CC605 ] C:\Program Files\Sophos\SCC\Remote Management System\ace.dll
19:53:30.0116 7888 C:\Program Files\Sophos\SCC\Remote Management System\ace.dll - ok
19:53:30.0131 7888 [ 59DB46C188F560927767BB77A5E3954A ] C:\Program Files\Exchsrvr\bin\exosal.dll
19:53:30.0131 7888 C:\Program Files\Exchsrvr\bin\exosal.dll - ok
19:53:30.0147 7888 [ 37014F45F696B7D4A3AB4BF509C0B80A ] C:\Program Files\Sophos\PureMessage\Bin\DbConfig.dll
19:53:30.0147 7888 C:\Program Files\Sophos\PureMessage\Bin\DbConfig.dll - ok
19:53:30.0147 7888 [ 561FA2ABB31DFA8FAB762145F81667C2 ] C:\Program Files\Sophos\SCC\Remote Management System\msvcp71.dll
19:53:30.0147 7888 C:\Program Files\Sophos\SCC\Remote Management System\msvcp71.dll - ok
19:53:30.0163 7888 [ AD0C3038848568C360744235BE4075A0 ] C:\Program Files\Dell\SysMgt\jre\bin\hpi.dll
19:53:30.0163 7888 C:\Program Files\Dell\SysMgt\jre\bin\hpi.dll - ok
19:53:30.0163 7888 [ 86F1895AE8C5E8B17D99ECE768A70732 ] C:\Program Files\Sophos\SCC\Remote Management System\msvcr71.dll
19:53:30.0163 7888 C:\Program Files\Sophos\SCC\Remote Management System\msvcr71.dll - ok
19:53:30.0163 7888 [ ACE02DF0E6708E58E0BC5FB73A8283EE ] C:\Program Files\Common Files\System\ado\msado15.dll
19:53:30.0163 7888 C:\Program Files\Common Files\System\ado\msado15.dll - ok
19:53:30.0194 7888 [ D8A343B762115439FA01041479A95ACF ] C:\Program Files\Dell\SysMgt\jre\bin\verify.dll
19:53:30.0194 7888 C:\Program Files\Dell\SysMgt\jre\bin\verify.dll - ok
19:53:30.0209 7888 [ 4E2F918997ABF8517172E87BEF66C4B8 ] C:\WINDOWS\system32\inetsrv\smtpsvc.dll
19:53:30.0209 7888 C:\WINDOWS\system32\inetsrv\smtpsvc.dll - ok
19:53:30.0209 7888 [ 1FBA752049218C86E733099F1988ABB1 ] C:\WINDOWS\system32\msdart.dll
19:53:30.0209 7888 C:\WINDOWS\system32\msdart.dll - ok
19:53:30.0209 7888 [ B2FB5D091C698BBD518D3D2E2DC741B0 ] C:\Program Files\Dell\SysMgt\jre\bin\java.dll
19:53:30.0209 7888 C:\Program Files\Dell\SysMgt\jre\bin\java.dll - ok
19:53:30.0225 7888 [ F107E628AE08BEE987AE17C65E616780 ] C:\WINDOWS\system32\inetsrv\infocomm.dll
19:53:30.0225 7888 C:\WINDOWS\system32\inetsrv\infocomm.dll - ok
19:53:30.0225 7888 [ 41AFC274C7539D87B1AA59610E79D96C ] C:\Program Files\Dell\SysMgt\jre\bin\zip.dll
19:53:30.0225 7888 C:\Program Files\Dell\SysMgt\jre\bin\zip.dll - ok
19:53:30.0256 7888 [ 1A19CE4B7DA369DBBEDBED167263830A ] C:\Program Files\Sophos\SCC\Remote Management System\TAO.dll
19:53:30.0256 7888 C:\Program Files\Sophos\SCC\Remote Management System\TAO.dll - ok
19:53:30.0272 7888 [ 43FBB28A6C7CD72D15DCB5AA5F80B0EB ] C:\Program Files\Common Files\System\Ole DB\oledb32.dll
19:53:30.0272 7888 C:\Program Files\Common Files\System\Ole DB\oledb32.dll - ok
19:53:30.0272 7888 [ 3E2E5BB489B8555C2A5DA27A3B616E83 ] C:\WINDOWS\system32\inetsrv\isatq.dll
19:53:30.0272 7888 C:\WINDOWS\system32\inetsrv\isatq.dll - ok
19:53:30.0288 7888 [ 70BC0FB0BEE7C1836BB161CADA239CF5 ] C:\WINDOWS\Temp\inv1_tmp\invcol.exe
19:53:30.0288 7888 C:\WINDOWS\Temp\inv1_tmp\invcol.exe - ok
19:53:30.0288 7888 [ 0138FF51E88AAE4977FA804DD3AF0400 ] C:\WINDOWS\Temp\inv1_tmp\icsvc32.dll
19:53:30.0288 7888 C:\WINDOWS\Temp\inv1_tmp\icsvc32.dll - ok
19:53:30.0303 7888 [ 89ECD343A04A937771849C5AFDEC0D16 ] C:\WINDOWS\Temp\inv1_tmp\dsupt32.dll
19:53:30.0303 7888 C:\WINDOWS\Temp\inv1_tmp\dsupt32.dll - ok
19:53:30.0334 7888 [ DA8234DA775F30845F6E978ECA700A5B ] C:\Program Files\Sophos\SCC\Remote Management System\TAO_DynamicAny.dll
19:53:30.0334 7888 C:\Program Files\Sophos\SCC\Remote Management System\TAO_DynamicAny.dll - ok
19:53:30.0334 7888 [ 69F09CCB07415806931F5E6218C77387 ] C:\Program Files\Sophos\SCC\Remote Management System\CertificationClientLibrary.dll
19:53:30.0334 7888 C:\Program Files\Sophos\SCC\Remote Management System\CertificationClientLibrary.dll - ok
19:53:30.0334 7888 [ F170A06611F002AD065A0D20744F37DE ] C:\Program Files\Common Files\System\Ole DB\oledb32r.dll
19:53:30.0334 7888 C:\Program Files\Common Files\System\Ole DB\oledb32r.dll - ok
19:53:30.0350 7888 [ 49A5F0A9A539780BA5A1A202416915A0 ] C:\WINDOWS\system32\cmd.exe
19:53:30.0350 7888 C:\WINDOWS\system32\cmd.exe - ok
19:53:30.0350 7888 [ 9051A0D11AADA06ED57FE01B4295E8FB ] C:\Program Files\Exchsrvr\bin\resvc.dll
19:53:30.0350 7888 C:\Program Files\Exchsrvr\bin\resvc.dll - ok
19:53:30.0381 7888 [ C07F44031BEC93627D5433EA8F119028 ] C:\Program Files\Sophos\SCC\Remote Management System\libeay32.dll
19:53:30.0381 7888 C:\Program Files\Sophos\SCC\Remote Management System\libeay32.dll - ok
19:53:30.0397 7888 [ 6E5CBE152C9962372CB035B819CD033D ] C:\Program Files\Common Files\System\Ole DB\sqloledb.dll
19:53:30.0397 7888 C:\Program Files\Common Files\System\Ole DB\sqloledb.dll - ok
19:53:30.0397 7888 [ BABA284F2A406D0AD6A5C6357999D84A ] C:\Program Files\Sophos\SCC\Remote Management System\CertificationLib.dll
19:53:30.0397 7888 C:\Program Files\Sophos\SCC\Remote Management System\CertificationLib.dll - ok
19:53:30.0397 7888 [ 0AAB38D85DD259ED4D53AC6C3D36AC32 ] C:\Program Files\Common Files\System\Ole DB\msdatl3.dll
19:53:30.0397 7888 C:\Program Files\Common Files\System\Ole DB\msdatl3.dll - ok
19:53:30.0413 7888 [ 64F393D79A00CEDE6D19605550C83846 ] C:\Program Files\Exchsrvr\bin\reapi.dll
19:53:30.0413 7888 C:\Program Files\Exchsrvr\bin\reapi.dll - ok
19:53:30.0413 7888 [ 62F8CDBD73B551224882D1AE277D06B0 ] C:\Program Files\Exchsrvr\bin\gwart.dll
19:53:30.0413 7888 C:\Program Files\Exchsrvr\bin\gwart.dll - ok
19:53:30.0444 7888 [ 470A27A23517F8EE1AF6FE228A359C1B ] C:\Program Files\Sophos\SCC\Remote Management System\ssleay32.dll
19:53:30.0444 7888 C:\Program Files\Sophos\SCC\Remote Management System\ssleay32.dll - ok
19:53:30.0444 7888 [ 6A414774F20036B8A1E16BE09DA3DC0C ] C:\WINDOWS\system32\dbnetlib.dll
19:53:30.0444 7888 C:\WINDOWS\system32\dbnetlib.dll - ok
19:53:30.0459 7888 [ 2F56FC879481C4A8917BAC0D91B5820D ] C:\WINDOWS\system32\DBmsLPCn.dll
19:53:30.0459 7888 C:\WINDOWS\system32\DBmsLPCn.dll - ok
19:53:30.0459 7888 [ 7EDF2E2F0763305A0CB5C6747178DBA8 ] C:\Program Files\Exchsrvr\bin\tranmsg.dll
19:53:30.0459 7888 C:\Program Files\Exchsrvr\bin\tranmsg.dll - ok
19:53:30.0475 7888 [ 1455D383AFB5F9644726A5A9381542DB ] C:\WINDOWS\system32\inetsrv\lonsint.dll
19:53:30.0475 7888 C:\WINDOWS\system32\inetsrv\lonsint.dll - ok
19:53:30.0491 7888 [ CCCBF657AF56BC5974C8DB8F5E7D9F91 ] C:\Program Files\Sophos\SCC\Remote Management System\MSClientLib.dll
19:53:30.0491 7888 C:\Program Files\Sophos\SCC\Remote Management System\MSClientLib.dll - ok
19:53:30.0506 7888 [ A4EBECD3060F7BD81D233143BB2EB6EF ] C:\Program Files\Sophos\SCC\Remote Management System\ACE_SSL.dll
19:53:30.0506 7888 C:\Program Files\Sophos\SCC\Remote Management System\ACE_SSL.dll - ok
19:53:30.0506 7888 [ 3BD1947AF3EC51C8F9AB8CBF80F93178 ] C:\Program Files\Exchsrvr\bin\letadata.dll
19:53:30.0506 7888 C:\Program Files\Exchsrvr\bin\letadata.dll - ok
19:53:30.0522 7888 [ A2C29A47A3BF24E554C15EA71744ACDB ] C:\Program Files\Sophos\SCC\Remote Management System\TAO_PortableServer.dll
19:53:30.0522 7888 C:\Program Files\Sophos\SCC\Remote Management System\TAO_PortableServer.dll - ok
19:53:30.0522 7888 [ 03E08B0B62D19320D527649505012E15 ] C:\WINDOWS\system32\inetsrv\iscomlog.dll
19:53:30.0522 7888 C:\WINDOWS\system32\inetsrv\iscomlog.dll - ok
19:53:30.0553 7888 [ 7DB1794A38AC456FFE04C97558381F43 ] C:\WINDOWS\system32\sqlncli.dll
19:53:30.0553 7888 C:\WINDOWS\system32\sqlncli.dll - ok
19:53:30.0569 7888 [ 852FB019A1FF7B2E469F35EC57BF3AA3 ] C:\Program Files\Exchsrvr\bin\phatq.dll
19:53:30.0569 7888 C:\Program Files\Exchsrvr\bin\phatq.dll - ok
19:53:30.0569 7888 [ 19E8E01FA6BFEDD71F92E2ADF3725D50 ] C:\WINDOWS\system32\sqlnclir.rll
19:53:30.0569 7888 C:\WINDOWS\system32\sqlnclir.rll - ok
19:53:30.0569 7888 [ 6126581C19ECDB773B0E4C53E3784F84 ] C:\Program Files\Common Files\System\msadc\msadce.dll
19:53:30.0569 7888 C:\Program Files\Common Files\System\msadc\msadce.dll - ok
19:53:30.0584 7888 [ 2EC360F0ABA3F3BC8B7946B241F3C1BC ] C:\Program Files\Exchsrvr\bin\ifsproxy.dll
19:53:30.0584 7888 C:\Program Files\Exchsrvr\bin\ifsproxy.dll - ok
19:53:30.0584 7888 [ A8AD38BDA296FD5347276F0C92E0B38A ] C:\Program Files\Common Files\System\msadc\msadcer.dll
19:53:30.0584 7888 C:\Program Files\Common Files\System\msadc\msadcer.dll - ok
19:53:30.0616 7888 [ AD8FA237EEF5666F94CE037AF6F079AF ] C:\Program Files\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\xplog70.dll
19:53:30.0616 7888 C:\Program Files\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\xplog70.dll - ok
19:53:30.0616 7888 [ 7A7758E3FD722974C48E36C2FEB7AA82 ] C:\Program Files\Exchsrvr\bin\pop3be.dll
19:53:30.0616 7888 C:\Program Files\Exchsrvr\bin\pop3be.dll - ok
19:53:30.0631 7888 [ 0B738A7D3513BC1499DA42516E7AB3DB ] C:\Program Files\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\Resources\1033\xplog70.rll
19:53:30.0631 7888 C:\Program Files\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\Resources\1033\xplog70.rll - ok
19:53:30.0631 7888 [ 71513B4FD3B65D875B36E8CD8143EF97 ] C:\Program Files\Exchsrvr\bin\drviis.dll
19:53:30.0631 7888 C:\Program Files\Exchsrvr\bin\drviis.dll - ok
19:53:30.0647 7888 [ 7CEC05BCAD45B02D2C36A3156418DD4D ] C:\WINDOWS\Temp\inv1_tmp\OMSA\OmsaInv.exe
19:53:30.0647 7888 C:\WINDOWS\Temp\inv1_tmp\OMSA\OmsaInv.exe - ok
19:53:30.0647 7888 [ B29392BE1D67F131B56374857EC9C8EC ] C:\WINDOWS\Temp\inv1_tmp\OMSA\OmsaInv.dll
19:53:30.0647 7888 C:\WINDOWS\Temp\inv1_tmp\OMSA\OmsaInv.dll - ok
19:53:30.0663 7888 [ 8A12AB5DE877B8F97D5EE70E16A5C9B2 ] C:\Program Files\Sophos\AutoUpdate\ALsvc.exe
19:53:30.0663 7888 C:\Program Files\Sophos\AutoUpdate\ALsvc.exe - ok
19:53:30.0678 7888 [ 931FAB48DA4208ED2DD26023046A6854 ] C:\WINDOWS\Temp\inv1_tmp\OSINV\osinv.exe
19:53:30.0678 7888 C:\WINDOWS\Temp\inv1_tmp\OSINV\osinv.exe - ok
19:53:30.0678 7888 [ A94DC60A90EFD7A35C36D971E3EE7470 ] C:\Program Files\Sophos\AutoUpdate\msvcp71.dll
19:53:30.0678 7888 C:\Program Files\Sophos\AutoUpdate\msvcp71.dll - ok
19:53:30.0694 7888 [ D629C65386561A44460EB9375AE0D458 ] C:\Program Files\Sophos\AutoUpdate\AUAdapter.dll
19:53:30.0694 7888 C:\Program Files\Sophos\AutoUpdate\AUAdapter.dll - ok
19:53:30.0694 7888 [ CE5C4E5B2D5D1CE9E13F894C5265AEF5 ] C:\Program Files\Sophos\PureMessage\Bin\SophosLogger.dll
19:53:30.0694 7888 C:\Program Files\Sophos\PureMessage\Bin\SophosLogger.dll - ok
19:53:30.0709 7888 [ 8E2EE518A32DA1B8AD051C99074FD717 ] C:\Program Files\Sophos\PureMessage\Bin\MailSending.dll
19:53:30.0709 7888 C:\Program Files\Sophos\PureMessage\Bin\MailSending.dll - ok
19:53:30.0725 7888 [ CA2F560921B7B8BE1CF555A5A18D54C3 ] C:\Program Files\Sophos\AutoUpdate\msvcr71.dll
19:53:30.0725 7888 C:\Program Files\Sophos\AutoUpdate\msvcr71.dll - ok
19:53:30.0741 7888 [ 170503CB1422CF998C1E940964EA6330 ] C:\WINDOWS\system32\mstask.dll
19:53:30.0741 7888 C:\WINDOWS\system32\mstask.dll - ok
19:53:30.0741 7888 [ 04B36D75E4819787E17EB999901B7F28 ] C:\Program Files\Sophos\SCC\Remote Management System\TAO_SSLIOP.dll
19:53:30.0741 7888 C:\Program Files\Sophos\SCC\Remote Management System\TAO_SSLIOP.dll - ok
19:53:30.0756 7888 [ 4CD761A31B1C95F8AA70A86549FA48C4 ] C:\Program Files\Sophos\SCC\CertificationManagerServiceNT.exe
19:53:30.0756 7888 C:\Program Files\Sophos\SCC\CertificationManagerServiceNT.exe - ok
19:53:30.0756 7888 [ A2FEC9ADF6E90686617C8ABA98AABFBA ] C:\Program Files\Sophos\PureMessage\Bin\PMAlerter.dll
19:53:30.0756 7888 C:\Program Files\Sophos\PureMessage\Bin\PMAlerter.dll - ok
19:53:30.0788 7888 [ A45763906186517A78D1D491D1BF9B9C ] C:\Program Files\Sophos\AutoUpdate\config.dll
19:53:30.0788 7888 C:\Program Files\Sophos\AutoUpdate\config.dll - ok
19:53:30.0788 7888 [ 9B91DC948F5627F88DA0DB2395CE2F1B ] C:\Program Files\Sophos\PureMessage\Bin\ReportManager.dll
19:53:30.0788 7888 C:\Program Files\Sophos\PureMessage\Bin\ReportManager.dll - ok
19:53:30.0803 7888 [ 726792A1A1771C757CAEE3DAAA369DFF ] C:\Program Files\Sophos\SCC\Remote Management System\TAO_Security.dll
19:53:30.0803 7888 C:\Program Files\Sophos\SCC\Remote Management System\TAO_Security.dll - ok
19:53:30.0803 7888 [ ED971EB4AB5A774F207370B482408F77 ] C:\Program Files\Sophos\SCC\Remote Management System\TAO_Valuetype.dll
19:53:30.0803 7888 C:\Program Files\Sophos\SCC\Remote Management System\TAO_Valuetype.dll - ok
19:53:30.0819 7888 [ 82C337BAAE277D7C42C962BC0D5AF5FC ] C:\Program Files\Sophos\PureMessage\Bin\QuarantineManager.dll
19:53:30.0819 7888 C:\Program Files\Sophos\PureMessage\Bin\QuarantineManager.dll - ok
19:53:30.0834 7888 [ 7CFDA3AFDCDB724B1D0C80B07985880E ] C:\Program Files\Sophos\SCC\ace.dll
19:53:30.0834 7888 C:\Program Files\Sophos\SCC\ace.dll - ok
19:53:30.0850 7888 [ 561FA2ABB31DFA8FAB762145F81667C2 ] C:\WINDOWS\system32\msvcp71.dll
19:53:30.0850 7888 C:\WINDOWS\system32\msvcp71.dll - ok
19:53:30.0850 7888 [ 24D4B91BB28B66A7733E972C3BB0A569 ] C:\Program Files\Sophos\Sophos Anti-Virus\SavAdapter.dll
19:53:30.0850 7888 C:\Program Files\Sophos\Sophos Anti-Virus\SavAdapter.dll - ok
19:53:30.0866 7888 [ C9E8F12EFADE9A81D76EDBF0B66EFF18 ] C:\Program Files\Sophos\SCC\CertificationManagerDLL.dll
19:53:30.0866 7888 C:\Program Files\Sophos\SCC\CertificationManagerDLL.dll - ok
19:53:30.0866 7888 [ 451021EDD4D9AFBA61729372D64901D4 ] C:\Program Files\Dell\SysMgt\oma\bin\omajdb32.dll
19:53:30.0866 7888 C:\Program Files\Dell\SysMgt\oma\bin\omajdb32.dll - ok
19:53:30.0866 7888 [ 97405113E5850BA5946799049A530352 ] C:\Program Files\Sophos\PureMessage\Bin\PMDirectory.dll
19:53:30.0866 7888 C:\Program Files\Sophos\PureMessage\Bin\PMDirectory.dll - ok
19:53:30.0897 7888 [ 8EB52B3CE8C459959CB19EF3DF5C46BA ] C:\Program Files\Dell\SysMgt\oma\bin\omadb32.dll
19:53:30.0897 7888 C:\Program Files\Dell\SysMgt\oma\bin\omadb32.dll - ok
19:53:30.0897 7888 [ 3668788CB29F2ECF0E48C70081CD234D ] C:\Program Files\Sophos\SCC\TAO.dll
19:53:30.0897 7888 C:\Program Files\Sophos\SCC\TAO.dll - ok
19:53:30.0913 7888 [ 58449475548BC13E4D17F6C210F7112F ] C:\Program Files\Sophos\SCC\SUM\SUMAdapter.dll
19:53:30.0913 7888 C:\Program Files\Sophos\SCC\SUM\SUMAdapter.dll - ok
19:53:30.0913 7888 [ C596E48F5AF054B1756D956D8E316B31 ] C:\Program Files\Dell\SysMgt\oma\bin\csda32.dll
19:53:30.0913 7888 C:\Program Files\Dell\SysMgt\oma\bin\csda32.dll - ok
19:53:30.0928 7888 [ EFF4BDE2C5ED7D62D566479AF7692B00 ] C:\Program Files\Common Files\System\Ole DB\sqloledb.rll
19:53:30.0928 7888 C:\Program Files\Common Files\System\Ole DB\sqloledb.rll - ok
19:53:30.0928 7888 [ 7C48B667F884BE9BE147C1DF7DB1ED0F ] C:\Program Files\Sophos\SCC\TAO_PortableServer.dll
19:53:30.0928 7888 C:\Program Files\Sophos\SCC\TAO_PortableServer.dll - ok
19:53:30.0959 7888 [ 266B14FC4A4DBA014893C6FC8834BD04 ] C:\Program Files\Dell\SysMgt\RAC5\bin\drsda32.dll
19:53:30.0959 7888 C:\Program Files\Dell\SysMgt\RAC5\bin\drsda32.dll - ok
19:53:30.0959 7888 [ CD14C88C788780E89333EE2CF834A461 ] C:\Program Files\Dell\SysMgt\oma\bin\hipda32.dll
19:53:30.0959 7888 C:\Program Files\Dell\SysMgt\oma\bin\hipda32.dll - ok
19:53:30.0975 7888 [ 091EA18C41268D9EBB7D4715EDD4F19C ] C:\Program Files\Sophos\SCC\libeay32.dll
19:53:30.0975 7888 C:\Program Files\Sophos\SCC\libeay32.dll - ok
19:53:30.0975 7888 [ 00BFEC84F9CCA8783C91185401E3C9C2 ] C:\Program Files\Dell\SysMgt\dataeng\bin\dcecfl32.dll
19:53:30.0975 7888 C:\Program Files\Dell\SysMgt\dataeng\bin\dcecfl32.dll - ok
19:53:30.0991 7888 [ A743873DBAB785D08290CF1643D4F77C ] C:\Program Files\Sophos\SCC\CertificationClientLibrary.dll
19:53:30.0991 7888 C:\Program Files\Sophos\SCC\CertificationClientLibrary.dll - ok
19:53:30.0991 7888 [ 59AE3F00174D937DCE5CC38BCD4732CA ] C:\Program Files\Sophos\SCC\CertificationLib.dll
19:53:30.0991 7888 C:\Program Files\Sophos\SCC\CertificationLib.dll - ok
19:53:31.0022 7888 [ C9804C189CDDC8CD0DF9DCFA43457431 ] C:\Program Files\Sophos\SCC\ssleay32.dll
19:53:31.0022 7888 C:\Program Files\Sophos\SCC\ssleay32.dll - ok
19:53:31.0038 7888 [ 251FDBE38DC9603C7943F5BB40618507 ] C:\Program Files\Sophos\SCC\MSClientLib.dll
19:53:31.0038 7888 C:\Program Files\Sophos\SCC\MSClientLib.dll - ok
19:53:31.0038 7888 [ ADB9FBC6CCAFD345075F3FE5E3AAAA5D ] C:\Program Files\Sophos\SCC\ACE_SSL.dll
19:53:31.0038 7888 C:\Program Files\Sophos\SCC\ACE_SSL.dll - ok
19:53:31.0053 7888 [ C6C81E7E30626BDCB34916F923C023CB ] C:\Program Files\Dell\SysMgt\jre\bin\sunmscapi.dll
19:53:31.0053 7888 C:\Program Files\Dell\SysMgt\jre\bin\sunmscapi.dll - ok
19:53:31.0053 7888 [ C1835FD8078DE051154FBFCEC9EC71A9 ] C:\Program Files\Dell\SysMgt\jre\bin\net.dll
19:53:31.0053 7888 C:\Program Files\Dell\SysMgt\jre\bin\net.dll - ok
19:53:31.0084 7888 [ D137C2FF69339B3B76E49F8DC8C7E5A9 ] C:\Program Files\Sophos\Sophos Anti-Virus\Web Control\SWCAdapter.dll
19:53:31.0084 7888 C:\Program Files\Sophos\Sophos Anti-Virus\Web Control\SWCAdapter.dll - ok
19:53:31.0084 7888 [ 61F8DDB696596DFE8318DDCB4433C9EF ] C:\Program Files\Sophos\SCC\MgntSvc.exe
19:53:31.0084 7888 C:\Program Files\Sophos\SCC\MgntSvc.exe - ok
19:53:31.0100 7888 [ 813C55CFB80590E0FD0D5858601DAC28 ] C:\WINDOWS\system32\inetsrv\ntfsdrv.dll
19:53:31.0100 7888 C:\WINDOWS\system32\inetsrv\ntfsdrv.dll - ok
19:53:31.0100 7888 [ 5DB833AE87A71A77A3FDCC9921CA385E ] C:\WINDOWS\system32\inetsrv\mailmsg.dll
19:53:31.0100 7888 C:\WINDOWS\system32\inetsrv\mailmsg.dll - ok
19:53:31.0116 7888 [ C435C55F9B95642316D9B6BAD104616E ] C:\Program Files\Sophos\SCC\EMTrace.dll
19:53:31.0116 7888 C:\Program Files\Sophos\SCC\EMTrace.dll - ok
19:53:31.0116 7888 [ 28A6D91CD822A30DA86FE5079EA9991D ] C:\Program Files\Sophos\SCC\EmErr.dll
19:53:31.0116 7888 C:\Program Files\Sophos\SCC\EmErr.dll - ok
19:53:31.0163 7888 [ D6192CDDC82EC1954D62F9B659BC89B0 ] C:\WINDOWS\system32\mgmtapi.dll
19:53:31.0163 7888 C:\WINDOWS\system32\mgmtapi.dll - ok
19:53:31.0163 7888 [ 1D109ED0D660654EA7FF1574558031C4 ] C:\WINDOWS\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.6195_x-ww_44262b86\msvcm80.dll
19:53:31.0163 7888 C:\WINDOWS\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.6195_x-ww_44262b86\msvcm80.dll - ok
19:53:31.0163 7888 [ 70FE95243247209227CCFE3B3D22466D ] C:\Program Files\Sophos\SCC\TAO_SSLIOP.dll
19:53:31.0163 7888 C:\Program Files\Sophos\SCC\TAO_SSLIOP.dll - ok
19:53:31.0178 7888 [ C73E66E26BB3F727739F74D2DB2D1EC2 ] C:\Program Files\Sophos\SCC\TAO_Security.dll
19:53:31.0178 7888 C:\Program Files\Sophos\SCC\TAO_Security.dll - ok
19:53:31.0178 7888 [ 3856F54FB21315937760A1DD60647655 ] C:\Program Files\Sophos\SCC\TAO_Valuetype.dll
19:53:31.0178 7888 C:\Program Files\Sophos\SCC\TAO_Valuetype.dll - ok
19:53:31.0194 7888 [ 65F816D7534D25623DA909911FF7E7D8 ] C:\Program Files\Sophos\SCC\Remote Management System\RouterNT.exe
19:53:31.0194 7888 C:\Program Files\Sophos\SCC\Remote Management System\RouterNT.exe - ok
19:53:31.0225 7888 [ BD03374253F79CE7A716A870DC85BD84 ] C:\Program Files\Sophos\Sophos Anti-Virus\Web Control\swc_service.exe
19:53:31.0225 7888 C:\Program Files\Sophos\Sophos Anti-Virus\Web Control\swc_service.exe - ok
19:53:31.0225 7888 [ 86EBD8B1F23E743AAD21F4D5B4D40985 ] C:\Program Files\Microsoft SQL Server\90\Shared\sqlbrowser.exe
19:53:31.0225 7888 C:\Program Files\Microsoft SQL Server\90\Shared\sqlbrowser.exe - ok
19:53:31.0241 7888 [ D89083C4EB02DACA8F944B0E05E57F9D ] C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
19:53:31.0241 7888 C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe - ok
19:53:31.0241 7888 [ 57948A76BEB7BDF8683F978D8701AA69 ] C:\Program Files\Sophos\SCC\SUM\SUMService.exe
19:53:31.0241 7888 C:\Program Files\Sophos\SCC\SUM\SUMService.exe - ok
19:53:31.0241 7888 [ 0D77436DA61BE7338BC600F0D8773331 ] C:\Program Files\Microsoft SQL Server\90\Shared\sqlwvss.dll
19:53:31.0241 7888 C:\Program Files\Microsoft SQL Server\90\Shared\sqlwvss.dll - ok
19:53:31.0256 7888 [ EFF4717C6B15E5C3BFC77F95AEF05E28 ] C:\Program Files\Sophos\SCC\SUM\SophosUpdateMgr.exe
19:53:31.0256 7888 C:\Program Files\Sophos\SCC\SUM\SophosUpdateMgr.exe - ok
19:53:31.0272 7888 [ 61158F9521FB59F45D8F6D04FAB93E8B ] C:\Program Files\Sophos\SCC\SUM\crypto.dll
19:53:31.0272 7888 C:\Program Files\Sophos\SCC\SUM\crypto.dll - ok
19:53:31.0288 7888 [ E8C31B3FE37A92ABCA17EB7D677D5F80 ] C:\Program Files\Sophos\SCC\SUM\retailer.dll
19:53:31.0288 7888 C:\Program Files\Sophos\SCC\SUM\retailer.dll - ok
19:53:31.0288 7888 [ 6D092C11A8D706F0A0F6791B4C6FC59B ] C:\Program Files\Sophos\Sophos Anti-Virus\Web Intelligence\swi_service.exe
19:53:31.0288 7888 C:\Program Files\Sophos\Sophos Anti-Virus\Web Intelligence\swi_service.exe - ok
19:53:31.0288 7888 [ FA4CAF2963F30B41BFC2B7EE7D5A0F4D ] C:\Program Files\Sophos\SCC\SUM\libcurl.dll
19:53:31.0288 7888 C:\Program Files\Sophos\SCC\SUM\libcurl.dll - ok
19:53:31.0303 7888 [ 012B0D2FE384BAED7EE3514282B96797 ] C:\Program Files\Sophos\SCC\SUM\libeay32.dll
19:53:31.0303 7888 C:\Program Files\Sophos\SCC\SUM\libeay32.dll - ok
19:53:31.0303 7888 [ CC8610D2FFAFF19D5C9CF8CE9FFAD71A ] C:\WINDOWS\system32\smlogsvc.exe
19:53:31.0303 7888 C:\WINDOWS\system32\smlogsvc.exe - ok
19:53:31.0319 7888 [ 4672F7A9E15A07A3F41BD9181DF84ABF ] C:\Program Files\Sophos\SCC\SUM\ssleay32.dll
19:53:31.0319 7888 C:\Program Files\Sophos\SCC\SUM\ssleay32.dll - ok
19:53:31.0334 7888 [ 5F0BD29CBD95465A3AA3CA319BC591A9 ] C:\WINDOWS\system32\termsrv.dll
19:53:31.0334 7888 C:\WINDOWS\system32\termsrv.dll - ok
19:53:31.0334 7888 [ F8D5B9C1A26C933B9EA7740BAB35BCF5 ] C:\WINDOWS\system32\wbem\wmisvc.dll
19:53:31.0334 7888 C:\WINDOWS\system32\wbem\wmisvc.dll - ok
19:53:31.0350 7888 [ 52B7C88EE18C31AEA1078671CAEC5FED ] C:\WINDOWS\system32\wecsvc.dll
19:53:31.0350 7888 C:\WINDOWS\system32\wecsvc.dll - ok
19:53:31.0350 7888 [ B9B16E1DA0BC0C3319385E447021CCBF ] C:\WINDOWS\system32\icaapi.dll
19:53:31.0350 7888 C:\WINDOWS\system32\icaapi.dll - ok
19:53:31.0381 7888 [ 6B287743BDD04DFF5B584E3DFEB96979 ] C:\Program Files\Sophos\SCC\SUM\zlib1.dll
19:53:31.0381 7888 C:\Program Files\Sophos\SCC\SUM\zlib1.dll - ok
19:53:31.0381 7888 [ E4CC26951AA209A95179EA46194FAE69 ] C:\WINDOWS\system32\mstlsapi.dll
19:53:31.0381 7888 C:\WINDOWS\system32\mstlsapi.dll - ok
19:53:31.0397 7888 [ 996CEC79B1662044E8462E130A65739E ] C:\WINDOWS\system32\wuauserv.dll
19:53:31.0397 7888 C:\WINDOWS\system32\wuauserv.dll - ok
19:53:31.0397 7888 [ EB835CEA766ACCEE59D668E23DE5D331 ] C:\Program Files\Sophos\SCC\SUM\xmlcpp.dll
19:53:31.0397 7888 C:\Program Files\Sophos\SCC\SUM\xmlcpp.dll - ok
19:53:31.0413 7888 [ FC3EC24FCE372C89423E015A2AC1A31E ] C:\WINDOWS\system32\wuaueng.dll
19:53:31.0413 7888 C:\WINDOWS\system32\wuaueng.dll - ok
19:53:31.0413 7888 [ CE2D930B9B80F16EA0BF7C177B5F4F2D ] C:\WINDOWS\system32\WsmSvc.dll
19:53:31.0413 7888 C:\WINDOWS\system32\WsmSvc.dll - ok
19:53:31.0428 7888 [ 994AD0D8550B8B26990A6E3AA0791502 ] C:\Program Files\Windows Desktop Search\MsnlNamespaceMgr.dll
19:53:31.0428 7888 C:\Program Files\Windows Desktop Search\MsnlNamespaceMgr.dll - ok
19:53:31.0444 7888 [ 0F28EA02F74A0D960E04ABBD7ACB0C60 ] C:\WINDOWS\system32\cabinet.dll
19:53:31.0444 7888 C:\WINDOWS\system32\cabinet.dll - ok
19:53:31.0444 7888 [ A1C45464B8E52332F0A21A6926128D6F ] C:\WINDOWS\system32\drprov.dll
19:53:31.0444 7888 C:\WINDOWS\system32\drprov.dll - ok
19:53:31.0459 7888 [ 4CEBCA95DDA91A62798591A294ABA09A ] C:\WINDOWS\system32\mspatcha.dll
19:53:31.0459 7888 C:\WINDOWS\system32\mspatcha.dll - ok
19:53:31.0459 7888 [ 2FF2718BB559277E7FA96774F3B41836 ] C:\WINDOWS\system32\ntlanman.dll
19:53:31.0459 7888 C:\WINDOWS\system32\ntlanman.dll - ok
19:53:31.0475 7888 [ E0BE3E7F71415351F90AF4CE21ED9DD7 ] C:\WINDOWS\system32\tcpsvcs.exe
19:53:31.0475 7888 C:\WINDOWS\system32\tcpsvcs.exe - ok
19:53:31.0491 7888 [ 3DF5224AF8455A00C85831DDB8C7FB9A ] C:\WINDOWS\system32\netui0.dll
19:53:31.0491 7888 C:\WINDOWS\system32\netui0.dll - ok
19:53:31.0506 7888 [ 570A1E2B2B6CD632224B4CA5D89A18E5 ] C:\WINDOWS\system32\rdpwsx.dll
19:53:31.0506 7888 C:\WINDOWS\system32\rdpwsx.dll - ok
19:53:31.0506 7888 [ 17759080BF2E35ECE530D9AA9A6BF818 ] C:\WINDOWS\system32\w3ssl.dll
19:53:31.0506 7888 C:\WINDOWS\system32\w3ssl.dll - ok
19:53:31.0522 7888 [ 347B302EF30D95E7A54EF75FB82AE699 ] C:\WINDOWS\system32\netui1.dll
19:53:31.0522 7888 C:\WINDOWS\system32\netui1.dll - ok
19:53:31.0522 7888 [ 3458EDA96E30FBD0477A2800D3FB1909 ] C:\WINDOWS\system32\wups.dll
19:53:31.0522 7888 C:\WINDOWS\system32\wups.dll - ok
19:53:31.0553 7888 [ 7FA1B4B6A826CFCF7B272D15DF2F801A ] C:\WINDOWS\system32\dhcpssvc.dll
19:53:31.0553 7888 C:\WINDOWS\system32\dhcpssvc.dll - ok
19:53:31.0553 7888 [ 570B814D5812EE6950BCC8614E431229 ] C:\WINDOWS\system32\strmfilt.dll
19:53:31.0553 7888 C:\WINDOWS\system32\strmfilt.dll - ok
19:53:31.0553 7888 [ BDC0C99E472176C8C2C853A68ADC5073 ] C:\WINDOWS\system32\wups2.dll
19:53:31.0553 7888 C:\WINDOWS\system32\wups2.dll - ok
19:53:31.0569 7888 [ 0781EC59CA5FBC42E7CD0B84C7CF976C ] C:\WINDOWS\system32\httpapi.dll
19:53:31.0569 7888 C:\WINDOWS\system32\httpapi.dll - ok
19:53:31.0569 7888 [ 3FC116008C7BB2A00CF6E4778006C578 ] C:\WINDOWS\system32\localspl.dll
19:53:31.0569 7888 C:\WINDOWS\system32\localspl.dll - ok
19:53:31.0584 7888 [ 31B0467F079EEA0C2FFD11835527C1B2 ] C:\WINDOWS\system32\dsauth.dll
19:53:31.0584 7888 C:\WINDOWS\system32\dsauth.dll - ok
19:53:31.0600 7888 [ 90D2CEFFCFA6B5095F0088A90831D836 ] C:\WINDOWS\system32\davclnt.dll
19:53:31.0600 7888 C:\WINDOWS\system32\davclnt.dll - ok
19:53:31.0600 7888 [ D1761A5D710660A81E842E38C710B56C ] C:\WINDOWS\system32\cnbjmon.dll
19:53:31.0600 7888 C:\WINDOWS\system32\cnbjmon.dll - ok
19:53:31.0616 7888 [ DE812E5DD932078D23C23105374AC5F5 ] C:\WINDOWS\system32\pjlmon.dll
19:53:31.0616 7888 C:\WINDOWS\system32\pjlmon.dll - ok
19:53:31.0616 7888 [ B4CDB17C573E06DDBFA700CF99158515 ] C:\Program Files\Exchsrvr\bin\exmgmt.exe
19:53:31.0616 7888 C:\Program Files\Exchsrvr\bin\exmgmt.exe - ok
19:53:31.0631 7888 [ 790940B356BB8338FE2943FBDA4DFB94 ] C:\WINDOWS\system32\binlsvc.dll
19:53:31.0631 7888 C:\WINDOWS\system32\binlsvc.dll - ok
19:53:31.0647 7888 [ 1C7171C557142F62D0FB1A535378A2F8 ] C:\WINDOWS\system32\tcpmon.dll
19:53:31.0647 7888 C:\WINDOWS\system32\tcpmon.dll - ok
19:53:31.0663 7888 [ 80801D9454F5C6094919CF4B605BF83E ] C:\WINDOWS\system32\tcpmib.dll
19:53:31.0663 7888 C:\WINDOWS\system32\tcpmib.dll - ok
19:53:31.0663 7888 [ 447A3877378667D264B39C8C9A77672E ] C:\WINDOWS\system32\usbmon.dll
19:53:31.0663 7888 C:\WINDOWS\system32\usbmon.dll - ok
19:53:31.0663 7888 [ EEE7F12D9FF46F68FBC0DA059A359E9E ] C:\WINDOWS\system32\spool\prtprocs\w32x86\filterpipelineprintproc.dll
19:53:31.0663 7888 C:\WINDOWS\system32\spool\prtprocs\w32x86\filterpipelineprintproc.dll - ok
19:53:31.0678 7888 [ 858BD1F8C85F80CAA6CECB893C42EF0C ] C:\WINDOWS\system32\win32spl.dll
19:53:31.0678 7888 C:\WINDOWS\system32\win32spl.dll - ok
19:53:31.0678 7888 [ E664251E0C5399FCBEF71661C1228BF5 ] C:\WINDOWS\system32\netrap.dll
19:53:31.0678 7888 C:\WINDOWS\system32\netrap.dll - ok
19:53:31.0709 7888 [ A84B4E3A6F7A81971CC9E87AF16C3EAB ] C:\WINDOWS\system32\inetpp.dll
19:53:31.0709 7888 C:\WINDOWS\system32\inetpp.dll - ok
19:53:31.0709 7888 [ 746DD636A93FEAF2DB925061F7974C83 ] C:\Program Files\Exchsrvr\bin\mapi32.dll
19:53:31.0709 7888 C:\Program Files\Exchsrvr\bin\mapi32.dll - ok
19:53:31.0725 7888 [ B4882758DFBF19E33E50F503AD3C26B9 ] C:\Program Files\Sophos\Sophos Anti-Virus\Web Intelligence\swi_update.exe
19:53:31.0725 7888 C:\Program Files\Sophos\Sophos Anti-Virus\Web Intelligence\swi_update.exe - ok
19:53:31.0725 7888 [ 19591F8B56849A4E0770D6ECF833EA56 ] C:\Program Files\Exchsrvr\bin\protomsg.dll
19:53:31.0725 7888 C:\Program Files\Exchsrvr\bin\protomsg.dll - ok
19:53:31.0725 7888 [ E7E3A7F4F28F93FE1C8C58036A11AF03 ] C:\Program Files\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag.exe
19:53:31.0725 7888 C:\Program Files\Sophos\Sophos Anti-Virus\Web Intelligence\swi_lspdiag.exe - ok
19:53:31.0741 7888 [ 32C13ADADC481636F0B157BAA8EAA800 ] C:\Program Files\Exchsrvr\bin\mad.exe
19:53:31.0741 7888 C:\Program Files\Exchsrvr\bin\mad.exe - ok
19:53:31.0772 7888 [ 066855969A02A2D971BDF73BFC3B847A ] C:\Documents and Settings\All Users\Application Data\Sophos\Web Intelligence\swi_filter.dll
19:53:31.0772 7888 C:\Documents and Settings\All Users\Application Data\Sophos\Web Intelligence\swi_filter.dll - ok
19:53:31.0772 7888 [ 1C07377BEA6EC4DD2FFE93E94983D2D7 ] C:\Program Files\Sophos\SCC\SUM\SophosReport.dll
19:53:31.0772 7888 C:\Program Files\Sophos\SCC\SUM\SophosReport.dll - ok
19:53:31.0788 7888 [ FFD1B9C57C71FED6C36EED3900BD2A37 ] C:\Program Files\Exchsrvr\bin\address.dll
19:53:31.0788 7888 C:\Program Files\Exchsrvr\bin\address.dll - ok
19:53:31.0788 7888 [ DE8D4D5A510CA31ECFB0DE4B48C85557 ] C:\Program Files\Exchsrvr\bin\escprint.dll
19:53:31.0788 7888 C:\Program Files\Exchsrvr\bin\escprint.dll - ok
19:53:31.0788 7888 [ CEBA140105B465FE9ACCE508CC27A29A ] C:\Program Files\Sophos\SCC\SUM\cidgen.dll
19:53:31.0788 7888 C:\Program Files\Sophos\SCC\SUM\cidgen.dll - ok
19:53:31.0834 7888 [ D077EE3E81CF0880882DBB4A09128D5F ] C:\Program Files\Exchsrvr\bin\ese.dll
19:53:31.0834 7888 C:\Program Files\Exchsrvr\bin\ese.dll - ok
19:53:31.0834 7888 [ 08F7749138452E61620064897969C96A ] C:\WINDOWS\system32\mqsvc.exe
19:53:31.0834 7888 C:\WINDOWS\system32\mqsvc.exe - ok
19:53:31.0850 7888 [ 6CDE911FFEF0671DE3B3928D6FEF8882 ] C:\WINDOWS\system32\mqqm.dll
19:53:31.0850 7888 C:\WINDOWS\system32\mqqm.dll - ok
19:53:31.0850 7888 [ E15E8126AD3EAE012B30DF7D0B6ABDE1 ] C:\WINDOWS\system32\adsldp.dll
19:53:31.0850 7888 C:\WINDOWS\system32\adsldp.dll - ok
19:53:31.0850 7888 [ 06606C14A3C3FEE242A7CAA790108F59 ] C:\WINDOWS\system32\mqutil.dll
19:53:31.0850 7888 C:\WINDOWS\system32\mqutil.dll - ok
19:53:31.0866 7888 [ 5B63393EE3FDFEF8AC7EDB3DC856FBC3 ] C:\WINDOWS\system32\mqsec.dll
19:53:31.0866 7888 C:\WINDOWS\system32\mqsec.dll - ok
19:53:31.0881 7888 [ 5597FF191AC6E2C4EB2ECE1415731FE7 ] C:\Program Files\Exchsrvr\bin\dsproxy.dll
19:53:31.0881 7888 C:\Program Files\Exchsrvr\bin\dsproxy.dll - ok
19:53:31.0897 7888 [ 4915390E03A7091C66136C0D45B43D91 ] C:\Program Files\Sophos\PureMessage\Bin\PmIisTransport.dll
19:53:31.0897 7888 C:\Program Files\Sophos\PureMessage\Bin\PmIisTransport.dll - ok
19:53:31.0897 7888 [ F98949A2445E8E3D57EAF9122582874E ] C:\Program Files\Exchsrvr\bin\abv_dg.dll
19:53:31.0897 7888 C:\Program Files\Exchsrvr\bin\abv_dg.dll - ok
19:53:31.0897 7888 [ 25683E02290A2FB456EA9281508288DE ] C:\Program Files\Sophos\PureMessage\Bin\SavexSrvcPS.dll
19:53:31.0897 7888 C:\Program Files\Sophos\PureMessage\Bin\SavexSrvcPS.dll - ok
19:53:31.0913 7888 [ 5C7157451DA94116443B96C4D59D059C ] C:\Program Files\Common Files\System\MSSearch\Bin\mssearch.exe
19:53:31.0913 7888 C:\Program Files\Common Files\System\MSSearch\Bin\mssearch.exe - ok
19:53:31.0913 7888 [ 27675AEDF3C8CCFB0CD8F978E01CD377 ] C:\Program Files\Sophos\PureMessage\Bin\PMProtocolEngine.dll
19:53:31.0913 7888 C:\Program Files\Sophos\PureMessage\Bin\PMProtocolEngine.dll - ok
19:53:31.0944 7888 [ 0ABEAC622E666F79D1E5D8949C493D45 ] C:\Program Files\Common Files\System\MSSearch\Bin\mssws.dll
19:53:31.0944 7888 C:\Program Files\Common Files\System\MSSearch\Bin\mssws.dll - ok
19:53:31.0944 7888 [ 097F718C70D26B1DB71B2CB8EACC7722 ] C:\Program Files\Sophos\PureMessage\Bin\SophosLoggerPS.dll
19:53:31.0944 7888 C:\Program Files\Sophos\PureMessage\Bin\SophosLoggerPS.dll - ok
19:53:31.0944 7888 [ C7E695BD555D09F5E9300D2B697A9D93 ] C:\WINDOWS\system32\mqlogmgr.dll
19:53:31.0944 7888 C:\WINDOWS\system32\mqlogmgr.dll - ok
19:53:31.0959 7888 [ B56D272F66B554B1840CB1BE446B54C7 ] C:\Program Files\Exchsrvr\res\msallog.dll
19:53:31.0959 7888 C:\Program Files\Exchsrvr\res\msallog.dll - ok
19:53:31.0959 7888 [ 29C761B35E4A7433C992886DFF299E8A ] C:\Program Files\Exchsrvr\bin\ds2mb.dll
19:53:31.0959 7888 C:\Program Files\Exchsrvr\bin\ds2mb.dll - ok
19:53:31.0975 7888 [ FBBF904164BC5D7F73D248CCC8665021 ] C:\WINDOWS\system32\mqad.dll
19:53:31.0975 7888 C:\WINDOWS\system32\mqad.dll - ok
19:53:31.0991 7888 [ BF68C86AD6BC7EB42119EB1700836FE1 ] C:\PROGRA~1\COMMON~1\System\MSSearch\Bin\mssrch.dll
19:53:31.0991 7888 C:\PROGRA~1\COMMON~1\System\MSSearch\Bin\mssrch.dll - ok
19:53:32.0006 7888 [ 543AE802A8BE62C633D582F9A8283800 ] C:\Program Files\Sophos\PureMessage\Bin\PMIisCmdWrapper.dll
19:53:32.0006 7888 C:\Program Files\Sophos\PureMessage\Bin\PMIisCmdWrapper.dll - ok
19:53:32.0006 7888 [ EFA146DEE1DD75AFA4EE777775FA2356 ] C:\Program Files\Sophos\SCC\ESAppLogic.dll
19:53:32.0006 7888 C:\Program Files\Sophos\SCC\ESAppLogic.dll - ok
19:53:32.0022 7888 [ A252B663FC6C181610DC64F62AAD9A74 ] C:\Program Files\Exchsrvr\bin\MADFB.dll
19:53:32.0022 7888 C:\Program Files\Exchsrvr\bin\MADFB.dll - ok
19:53:32.0022 7888 [ 15D2020EEB552BA611F5E2E05AF8CD7E ] C:\Program Files\Exchsrvr\bin\oabgen.dll
19:53:32.0022 7888 C:\Program Files\Exchsrvr\bin\oabgen.dll - ok
19:53:32.0053 7888 [ 5E1D6DB4EC8B82844A3C9A00593B7752 ] C:\Program Files\Sophos\SCC\Sophos.Management.Services.dll
19:53:32.0053 7888 C:\Program Files\Sophos\SCC\Sophos.Management.Services.dll - ok
19:53:32.0053 7888 [ A6279F4C73A6D883C2DE885C5F161E80 ] C:\Program Files\Exchsrvr\bin\exsetdata.dll
19:53:32.0053 7888 C:\Program Files\Exchsrvr\bin\exsetdata.dll - ok
19:53:32.0069 7888 [ DB0E023EE673896AD1780ACAD3BAB393 ] C:\WINDOWS\system32\inetsrv\iisw3adm.dll
19:53:32.0069 7888 C:\WINDOWS\system32\inetsrv\iisw3adm.dll - ok
19:53:32.0069 7888 [ C4C57B84106DBE0517E0226AD0D271C3 ] C:\Program Files\Common Files\System\MSSearch\Bin\tquery.dll
19:53:32.0069 7888 C:\Program Files\Common Files\System\MSSearch\Bin\tquery.dll - ok
19:53:32.0084 7888 [ B89CB7F3F1A1E2807E708F5435DEB13D ] C:\Program Files\Sophos\SCC\log4net.dll
19:53:32.0084 7888 C:\Program Files\Sophos\SCC\log4net.dll - ok
19:53:32.0084 7888 [ DF865613A3B48D64828E6775DAB5A9E0 ] C:\WINDOWS\system32\inetsrv\w3cache.dll
19:53:32.0084 7888 C:\WINDOWS\system32\inetsrv\w3cache.dll - ok
19:53:32.0131 7888 [ E2D0D50D5E6D4E3804DF08478B094C71 ] C:\WINDOWS\system32\inetsrv\w3tp.dll
19:53:32.0131 7888 C:\WINDOWS\system32\inetsrv\w3tp.dll - ok
19:53:32.0131 7888 [ 7778BDFA3F6F6FBA0E75B9594098F737 ] C:\WINDOWS\system32\searchindexer.exe
19:53:32.0131 7888 C:\WINDOWS\system32\searchindexer.exe - ok
19:53:32.0147 7888 [ 7F6CB0DBBA312805362AD6BB3A703E04 ] C:\PROGRA~1\COMMON~1\System\MSSearch\Bin\propdefs.dll
19:53:32.0147 7888 C:\PROGRA~1\COMMON~1\System\MSSearch\Bin\propdefs.dll - ok
19:53:32.0147 7888 [ 4605FF356934C255DA3FC61B63AE1623 ] C:\WINDOWS\system32\libxds.dll
19:53:32.0147 7888 C:\WINDOWS\system32\libxds.dll - ok
19:53:32.0147 7888 [ 0CBD1906F74BEB539FCEF6493095B933 ] C:\WINDOWS\system32\tquery.dll
19:53:32.0147 7888 C:\WINDOWS\system32\tquery.dll - ok
19:53:32.0163 7888 [ FD87B4C66DA2A84CC7BA0857F6C5832E ] C:\Program Files\Exchsrvr\bin\dsintegchk.dll
19:53:32.0163 7888 C:\Program Files\Exchsrvr\bin\dsintegchk.dll - ok
19:53:32.0194 7888 [ 89D74683C859B7982056D15938BACA3E ] C:\WINDOWS\system32\propsys.dll
19:53:32.0194 7888 C:\WINDOWS\system32\propsys.dll - ok
19:53:32.0209 7888 [ D7C31008DE209B8B11CED207580E9C91 ] C:\WINDOWS\system32\drivers\tdtcp.sys
19:53:32.0209 7888 C:\WINDOWS\system32\drivers\tdtcp.sys - ok
19:53:32.0209 7888 [ 28FDAB66B0378842522FA693B60B6234 ] C:\WINDOWS\system32\drivers\rdpwd.sys
19:53:32.0209 7888 C:\WINDOWS\system32\drivers\rdpwd.sys - ok
19:53:32.0209 7888 [ FD89ED3E1B78D6D26CF37D9917387A9E ] C:\Program Files\Exchsrvr\bin\exsp.dll
19:53:32.0209 7888 C:\Program Files\Exchsrvr\bin\exsp.dll - ok
19:53:32.0225 7888 [ E65C5F612400B39D7AA83E7057D798C2 ] C:\WINDOWS\system32\mssrch.dll
19:53:32.0225 7888 C:\WINDOWS\system32\mssrch.dll - ok
19:53:32.0256 7888 [ C5E6DD28488C8FC58FC4BE009CD6D6A1 ] C:\Program Files\Exchsrvr\address\smtp\i386\inproxy.dll
19:53:32.0256 7888 C:\Program Files\Exchsrvr\address\smtp\i386\inproxy.dll - ok
19:53:32.0256 7888 [ 904892E99040D5847701970413F73C29 ] C:\Program Files\Exchsrvr\address\x400\i386\x400prox.dll
19:53:32.0256 7888 C:\Program Files\Exchsrvr\address\x400\i386\x400prox.dll - ok
19:53:32.0256 7888 [ 155ED60E1561B8A33F5768BC05D90E7B ] C:\PROGRA~1\COMMON~1\System\MSSearch\Bin\srchidx.dll
19:53:32.0256 7888 C:\PROGRA~1\COMMON~1\System\MSSearch\Bin\srchidx.dll - ok
19:53:32.0272 7888 [ CA8EBEEDD18A52B9700022064175E6C6 ] C:\Program Files\Sophos\SCC\Sophos.Management.dll
19:53:32.0272 7888 C:\Program Files\Sophos\SCC\Sophos.Management.dll - ok
19:53:32.0272 7888 [ 01CEEB9E08224EA54CE545FFA7FCF9A9 ] C:\WINDOWS\system32\iprop.dll
19:53:32.0272 7888 C:\WINDOWS\system32\iprop.dll - ok
19:53:32.0288 7888 [ D72BD3B45FD651EAE412B246CC6FDD39 ] C:\Program Files\Barracuda\Barracuda Backup Agent\win\x86\bbwinsdr.exe
19:53:32.0288 7888 C:\Program Files\Barracuda\Barracuda Backup Agent\win\x86\bbwinsdr.exe - ok
19:53:32.0303 7888 [ 7C8B1B5865C606077925F697CA082049 ] C:\Program Files\Exchsrvr\bin\exps.dll
19:53:32.0303 7888 C:\Program Files\Exchsrvr\bin\exps.dll - ok
19:53:32.0319 7888 [ 756A7E7BB2AF4307583DD28C99BF2D35 ] C:\WINDOWS\system32\query.dll
19:53:32.0319 7888 C:\WINDOWS\system32\query.dll - ok
19:53:32.0319 7888 [ 5CEC1054801C1437D46F7D0EB630C2C1 ] C:\PROGRA~1\Exchsrvr\bin\xlsasink.dll
19:53:32.0319 7888 C:\PROGRA~1\Exchsrvr\bin\xlsasink.dll - ok
19:53:32.0334 7888 [ E3C1C965406C85EC31FFF66A12AAF275 ] C:\PROGRA~1\Exchsrvr\bin\peexch50.dll
19:53:32.0334 7888 C:\PROGRA~1\Exchsrvr\bin\peexch50.dll - ok
19:53:32.0334 7888 [ B24A4BD03744F73F9BC9974D2B7FA1B2 ] C:\Program Files\Exchsrvr\bin\protolog.dll
19:53:32.0334 7888 C:\Program Files\Exchsrvr\bin\protolog.dll - ok
19:53:32.0366 7888 [ 34AA48CBA083F16EB0DDC295B6E011D8 ] C:\Program Files\Sophos\SCC\Spring.Core.dll
19:53:32.0366 7888 C:\Program Files\Sophos\SCC\Spring.Core.dll - ok
19:53:32.0366 7888 [ 435F4AB74D77C03A91B920A6170A0DB9 ] C:\Program Files\Barracuda\Barracuda Backup Agent\win\x86\bbwinsup.dll
19:53:32.0366 7888 C:\Program Files\Barracuda\Barracuda Backup Agent\win\x86\bbwinsup.dll - ok
19:53:32.0366 7888 [ 860FAD57B4668A9F5F350A9D5444AE89 ] C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\diasymreader.dll
19:53:32.0366 7888 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\diasymreader.dll - ok
19:53:32.0381 7888 [ E3C817F7FE44CC870ECDBCBC3EA36132 ] C:\Program Files\Barracuda\Barracuda Backup Agent\win\x86\msvcp100.dll
19:53:32.0381 7888 C:\Program Files\Barracuda\Barracuda Backup Agent\win\x86\msvcp100.dll - ok
19:53:32.0381 7888 [ BF38660A9125935658CFA3E53FDC7D65 ] C:\Program Files\Barracuda\Barracuda Backup Agent\win\x86\msvcr100.dll
19:53:32.0381 7888 C:\Program Files\Barracuda\Barracuda Backup Agent\win\x86\msvcr100.dll - ok
19:53:32.0413 7888 [ FFB3115AA757ABEFBA7FBA90BAD5DD0A ] C:\WINDOWS\system32\en-US\tquery.dll.mui
19:53:32.0413 7888 C:\WINDOWS\system32\en-US\tquery.dll.mui - ok
19:53:32.0413 7888 [ 8F580BCC5296ECC9DC8A649D75BE6BA5 ] C:\WINDOWS\system32\msscb.dll
19:53:32.0413 7888 C:\WINDOWS\system32\msscb.dll - ok
19:53:32.0428 7888 [ 4E2856B684ABC3781266853FA853F623 ] C:\PROGRA~1\Exchsrvr\bin\turflist.dll
19:53:32.0428 7888 C:\PROGRA~1\Exchsrvr\bin\turflist.dll - ok
19:53:32.0428 7888 [ 13D05A239C685A0AD080A19DB1CFDC32 ] C:\PROGRA~1\Exchsrvr\bin\bin\exsmime.dll
19:53:32.0428 7888 C:\PROGRA~1\Exchsrvr\bin\bin\exsmime.dll - ok
19:53:32.0428 7888 [ E6CBD588C71C577679A096B15EAD3D48 ] C:\WINDOWS\system32\fmifs.dll
19:53:32.0428 7888 C:\WINDOWS\system32\fmifs.dll - ok
19:53:32.0444 7888 [ D5DDDF30A0D4B6D5BDCF3E7C4B3C28B3 ] C:\WINDOWS\system32\ulib.dll
19:53:32.0444 7888 C:\WINDOWS\system32\ulib.dll - ok
19:53:32.0475 7888 [ 959E1DC9AE280D011F24BAF1C13310FD ] C:\WINDOWS\system32\ifsutil.dll
19:53:32.0475 7888 C:\WINDOWS\system32\ifsutil.dll - ok
19:53:32.0475 7888 [ 43577DFF9A0C59606F9F92AAD91E9B78 ] C:\Program Files\Sophos\SCC\Common.Logging.dll
19:53:32.0475 7888 C:\Program Files\Sophos\SCC\Common.Logging.dll - ok
19:53:32.0475 7888 [ CD650A26B7257488B352AC9B27CA2126 ] C:\Program Files\Exchsrvr\bin\store.exe
19:53:32.0475 7888 C:\Program Files\Exchsrvr\bin\store.exe - ok
19:53:32.0491 7888 [ F2A088A8EF1D385FDB669BBBE6144AFE ] C:\Program Files\Barracuda\Barracuda Backup Agent\win\x86\bbwindtb.dll
19:53:32.0491 7888 C:\Program Files\Barracuda\Barracuda Backup Agent\win\x86\bbwindtb.dll - ok
19:53:32.0491 7888 [ 02F06AD9A27EB2EA30235792DA7464AD ] C:\Program Files\Exchsrvr\bin\jcb.dll
19:53:32.0491 7888 C:\Program Files\Exchsrvr\bin\jcb.dll - ok
19:53:32.0506 7888 [ 66545C25AB4CB3DFB43DD347365E50D3 ] C:\Program Files\Exchsrvr\bin\mdbrole.dll
19:53:32.0506 7888 C:\Program Files\Exchsrvr\bin\mdbrole.dll - ok
19:53:32.0538 7888 [ F08EDBC30DEA825877A318F737F92CB2 ] C:\Program Files\Sophos\SCC\Common.Logging.Log4Net.dll
19:53:32.0538 7888 C:\Program Files\Sophos\SCC\Common.Logging.Log4Net.dll - ok
19:53:32.0538 7888 [ 28A58BAE338530F73AB2984378CDBBE9 ] C:\Program Files\Exchsrvr\bin\mdbsz.dll
19:53:32.0538 7888 C:\Program Files\Exchsrvr\bin\mdbsz.dll - ok
19:53:32.0538 7888 [ C27CDA5FCB2EB07311077649F4CB26EB ] C:\WINDOWS\system32\inetsrv\w3wp.exe
19:53:32.0538 7888 C:\WINDOWS\system32\inetsrv\w3wp.exe - ok
19:53:32.0553 7888 [ 184C58F604EC44ECF71261824768990C ] C:\Program Files\Exchsrvr\bin\mdbtask.dll
19:53:32.0553 7888 C:\Program Files\Exchsrvr\bin\mdbtask.dll - ok
19:53:32.0553 7888 [ 8D747BD7B48BE2633170ECCB4298E958 ] C:\WINDOWS\system32\wbem\wbemcore.dll
19:53:32.0553 7888 C:\WINDOWS\system32\wbem\wbemcore.dll - ok
19:53:32.0569 7888 [ 52760F044029801F774DF83A4B53356F ] C:\Program Files\Barracuda\Barracuda Backup Agent\win\x86\bbwinods.dll
19:53:32.0569 7888 C:\Program Files\Barracuda\Barracuda Backup Agent\win\x86\bbwinods.dll - ok
19:53:32.0584 7888 [ CB69FC400D01FB7616255891C4A2334A ] C:\WINDOWS\system32\inetsrv\w3core.dll
19:53:32.0584 7888 C:\WINDOWS\system32\inetsrv\w3core.dll - ok
19:53:32.0584 7888 [ 695D60DB9C776A4693F60945ED5404AF ] C:\WINDOWS\system32\inetsrv\w3dt.dll
19:53:32.0584 7888 C:\WINDOWS\system32\inetsrv\w3dt.dll - ok
19:53:32.0600 7888 [ 021D97E92F8DFB8AC38366DAD99BEF1A ] C:\Program Files\Barracuda\Barracuda Backup Agent\win\x86\bbwinv52.dll
19:53:32.0600 7888 C:\Program Files\Barracuda\Barracuda Backup Agent\win\x86\bbwinv52.dll - ok
19:53:32.0600 7888 [ F7F41A715DB3F7CF89AC0946ABD4BE13 ] C:\WINDOWS\system32\wbem\esscli.dll
19:53:32.0600 7888 C:\WINDOWS\system32\wbem\esscli.dll - ok
19:53:32.0616 7888 [ 3972802A605C14DD086380F9A070573E ] C:\WINDOWS\system32\inetsrv\w3comlog.dll
19:53:32.0616 7888 C:\WINDOWS\system32\inetsrv\w3comlog.dll - ok
19:53:32.0616 7888 [ 6B9F5901D7B9E40E4E584A2BEE619C38 ] C:\WINDOWS\system32\inetsrv\iisres.dll
19:53:32.0616 7888 C:\WINDOWS\system32\inetsrv\iisres.dll - ok
19:53:32.0647 7888 [ 865C99FB847C136EDDA6DBA1AC6842B3 ] C:\WINDOWS\system32\wbem\fastprox.dll
19:53:32.0647 7888 C:\WINDOWS\system32\wbem\fastprox.dll - ok
19:53:32.0647 7888 [ 9B609463552D4413B4E37C9F0870F386 ] C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\aspnet_filter.dll
19:53:32.0647 7888 C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\aspnet_filter.dll - ok
19:53:32.0663 7888 [ C02D7D6FCCF29CCD0384F82DACC0696F ] C:\Program Files\Sophos\PureMessage\Bin\ReportManagerPS.dll
19:53:32.0663 7888 C:\Program Files\Sophos\PureMessage\Bin\ReportManagerPS.dll - ok
19:53:32.0663 7888 [ E8C48D0E2D84FB3BDF07A4CD6A4A1E98 ] C:\WINDOWS\system32\inetsrv\w3isapi.dll
19:53:32.0663 7888 C:\WINDOWS\system32\inetsrv\w3isapi.dll - ok
19:53:32.0663 7888 [ AED3C8448A6C4F12981DCCCC1F818285 ] C:\WINDOWS\system32\wbem\wbemsvc.dll
19:53:32.0663 7888 C:\WINDOWS\system32\wbem\wbemsvc.dll - ok
19:53:32.0678 7888 [ CB328AD88808F6F1FB2B1E76EFFBD42C ] C:\Program Files\Exchsrvr\bin\emsmta.exe
19:53:32.0678 7888 C:\Program Files\Exchsrvr\bin\emsmta.exe - ok
19:53:32.0709 7888 [ E24E3DCB4C9128A5ECDBA23903874A44 ] C:\WINDOWS\system32\inetsrv\gzip.dll
19:53:32.0709 7888 C:\WINDOWS\system32\inetsrv\gzip.dll - ok
19:53:32.0709 7888 [ 25D5B65AB4FB3992FA043AA10C65F980 ] C:\WINDOWS\system32\wbem\repdrvfs.dll
19:53:32.0709 7888 C:\WINDOWS\system32\wbem\repdrvfs.dll - ok
19:53:32.0709 7888 [ 8551294FBD7F047295649BAF8567FC5B ] C:\Program Files\Barracuda\Barracuda Backup Agent\win\x86\bbwinsql.dll
19:53:32.0709 7888 C:\Program Files\Barracuda\Barracuda Backup Agent\win\x86\bbwinsql.dll - ok
19:53:32.0725 7888 [ AF866BD999D912E90856A29A49D0E2C5 ] C:\WINDOWS\system32\sqlsrv32.dll
19:53:32.0725 7888 C:\WINDOWS\system32\sqlsrv32.dll - ok
19:53:32.0725 7888 [ B28AE1BFDEA143F3C250BB545A6BE2EA ] C:\Program Files\Exchsrvr\bin\gapi32.dll
19:53:32.0725 7888 C:\Program Files\Exchsrvr\bin\gapi32.dll - ok
19:53:32.0756 7888 [ ECD2504BA0810F406A3A0F0FB50FDDC0 ] C:\WINDOWS\system32\wbem\wmiprvsd.dll
19:53:32.0756 7888 C:\WINDOWS\system32\wbem\wmiprvsd.dll - ok
19:53:32.0756 7888 [ D8BC32C5EBCC1A65E03015F6176EDE84 ] C:\WINDOWS\system32\sqlunirl.dll
19:53:32.0756 7888 C:\WINDOWS\system32\sqlunirl.dll - ok
19:53:32.0772 7888 [ 2221CB6024D5B51693605D719430EDA5 ] C:\Program Files\Exchsrvr\bin\mtaroute.dll
19:53:32.0772 7888 C:\Program Files\Exchsrvr\bin\mtaroute.dll - ok
19:53:32.0772 7888 [ 37137C748EA22C8C3385D323AA79A540 ] C:\Program Files\Exchsrvr\bin\mtaaqsvr.dll
19:53:32.0772 7888 C:\Program Files\Exchsrvr\bin\mtaaqsvr.dll - ok
19:53:32.0772 7888 [ EDABA19F422C127DF2D2D0A6186D3558 ] C:\WINDOWS\system32\wbem\wbemess.dll
19:53:32.0772 7888 C:\WINDOWS\system32\wbem\wbemess.dll - ok
19:53:32.0788 7888 [ 2F3063A735CED6F5D719712F7A811EC4 ] C:\Program Files\Exchsrvr\bin\tokenm.dll
19:53:32.0788 7888 C:\Program Files\Exchsrvr\bin\tokenm.dll - ok
19:53:32.0819 7888 [ F6D6F55880FAD40AF0E22E4A0B950AB0 ] C:\WINDOWS\system32\sqlsrv32.rll
19:53:32.0819 7888 C:\WINDOWS\system32\sqlsrv32.rll - ok
19:53:32.0834 7888 [ 1FB08F35ED4A9C7C8A37C8791E144DCE ] C:\Program Files\Exchsrvr\bin\mtxapiv1.dll
19:53:32.0834 7888 C:\Program Files\Exchsrvr\bin\mtxapiv1.dll - ok
19:53:32.0834 7888 [ E70FA6BC550022A1637FD17794F79889 ] C:\Program Files\Sophos\SCC\antlr.runtime.dll
19:53:32.0834 7888 C:\Program Files\Sophos\SCC\antlr.runtime.dll - ok
19:53:32.0834 7888 [ 931AA8DC82287DB1EE92691CA8A4D860 ] C:\Program Files\Exchsrvr\bin\x400OMV1.dll
19:53:32.0834 7888 C:\Program Files\Exchsrvr\bin\x400OMV1.dll - ok
19:53:32.0850 7888 [ 5394ABE74EDA3765B1A5F8CBF39ED25A ] C:\WINDOWS\system32\odbccp32.dll
19:53:32.0850 7888 C:\WINDOWS\system32\odbccp32.dll - ok
19:53:32.0850 7888 [ 10AE40AFBD7CF56E378B9396B5530EA2 ] C:\Program Files\Exchsrvr\bin\maxapiv1.dll
19:53:32.0850 7888 C:\Program Files\Exchsrvr\bin\maxapiv1.dll - ok
19:53:32.0881 7888 [ F601E6697ED6DAC9BA6E09BD1FA05140 ] C:\Program Files\Sophos\SCC\Sophos.Management.Services.Sddma.dll
19:53:32.0881 7888 C:\Program Files\Sophos\SCC\Sophos.Management.Services.Sddma.dll - ok
19:53:32.0881 7888 [ D236B3B21CCC8C849C80B69C3EBDC5BC ] C:\Program Files\Sophos\SCC\Sophos.Management.Sddma.dll
19:53:32.0881 7888 C:\Program Files\Sophos\SCC\Sophos.Management.Sddma.dll - ok
19:53:32.0897 7888 [ C484D6625785B449630583A3138ADA3A ] C:\WINDOWS\system32\perfproc.dll
19:53:32.0897 7888 C:\WINDOWS\system32\perfproc.dll - ok
19:53:32.0897 7888 [ ECEB12EF27FDADE98D24A74888E5A134 ] C:\Program Files\Exchsrvr\bin\exmime.dll
19:53:32.0897 7888 C:\Program Files\Exchsrvr\bin\exmime.dll - ok
19:53:32.0897 7888 [ B89C16B89CB9ADCA2836D0CB388C6E24 ] C:\Program Files\Sophos\SCC\Sophos.Management.Common.dll
19:53:32.0897 7888 C:\Program Files\Sophos\SCC\Sophos.Management.Common.dll - ok
19:53:32.0913 7888 [ 0F7D55845789CA25066B1E6C1B36287E ] C:\WINDOWS\system32\mlang.dll
19:53:32.0913 7888 C:\WINDOWS\system32\mlang.dll - ok
19:53:32.0928 7888 [ C0BB7C2D4659B0A7733D1DCFAB56191C ] C:\Program Files\Sophos\SCC\Sophos.Management.Services.SubEstates.dll
19:53:32.0928 7888 C:\Program Files\Sophos\SCC\Sophos.Management.Services.SubEstates.dll - ok
19:53:32.0944 7888 [ AD834D31B515AF92BCA80416EEA34BE6 ] C:\Program Files\Sophos\SCC\Sophos.Management.SubEstates.dll
19:53:32.0944 7888 C:\Program Files\Sophos\SCC\Sophos.Management.SubEstates.dll - ok
19:53:32.0944 7888 [ CB9D080D65531637F9A8587200780B66 ] C:\Program Files\Sophos\SCC\Sophos.Management.DeviceControl.dll
19:53:32.0944 7888 C:\Program Files\Sophos\SCC\Sophos.Management.DeviceControl.dll - ok
19:53:32.0944 7888 [ 6724A57151379514E99643BCA8E38DCB ] C:\WINDOWS\system32\usp10.dll
19:53:32.0944 7888 C:\WINDOWS\system32\usp10.dll - ok
19:53:32.0959 7888 [ 332124357850EB5429E41FA85C82AF0F ] C:\WINDOWS\system32\wbem\wmiprvse.exe
19:53:32.0959 7888 C:\WINDOWS\system32\wbem\wmiprvse.exe - ok
19:53:32.0991 7888 [ 4401E0455CCC53AFBF74C1CCC8588C2F ] C:\Program Files\Sophos\SCC\Sophos.Management.DataControl.dll
19:53:32.0991 7888 C:\Program Files\Sophos\SCC\Sophos.Management.DataControl.dll - ok
19:53:32.0991 7888 [ 0AF29172C8E85658A5293602B8C0065B ] C:\WINDOWS\system32\faultrep.dll
19:53:32.0991 7888 C:\WINDOWS\system32\faultrep.dll - ok
19:53:32.0991 7888 [ 305CE0C6A41F404030E2D1D0E76886C2 ] C:\Program Files\Sophos\SCC\Sophos.Management.DynamicData.dll
19:53:32.0991 7888 C:\Program Files\Sophos\SCC\Sophos.Management.DynamicData.dll - ok
19:53:33.0006 7888 [ EB26EA18446AC5E0BB1FDB84D7054839 ] C:\Program Files\Exchsrvr\bin\expop3.dll
19:53:33.0006 7888 C:\Program Files\Exchsrvr\bin\expop3.dll - ok
19:53:33.0006 7888 [ E98B4BD27371579ECE883D11C34FE4BF ] C:\Program Files\Exchsrvr\bin\exproto.dll
19:53:33.0006 7888 C:\Program Files\Exchsrvr\bin\exproto.dll - ok
19:53:33.0022 7888 [ 23D6AE94298088CA6CFA84650346030C ] C:\WINDOWS\system32\wbem\cimwin32.dll
19:53:33.0022 7888 C:\WINDOWS\system32\wbem\cimwin32.dll - ok
19:53:33.0053 7888 [ 9A69E8EE2FD26CAD0DFD75DA6843AE97 ] C:\Program Files\Sophos\SCC\Sophos.Management.Protocol.dll
19:53:33.0053 7888 C:\Program Files\Sophos\SCC\Sophos.Management.Protocol.dll - ok
19:53:33.0053 7888 [ F4B68181031AC72195D91BF19CE25E53 ] C:\Program Files\Exchsrvr\bin\eximap4.dll
19:53:33.0053 7888 C:\Program Files\Exchsrvr\bin\eximap4.dll - ok
19:53:33.0053 7888 [ 5272CB4BADFB34C32B6259945C98A4C7 ] C:\WINDOWS\system32\wbem\framedyn.dll
19:53:33.0053 7888 C:\WINDOWS\system32\wbem\framedyn.dll - ok
19:53:33.0069 7888 [ 80BC9352943134661D240D7C71E0AF3B ] C:\Program Files\Exchsrvr\bin\exoledb.dll
19:53:33.0069 7888 C:\Program Files\Exchsrvr\bin\exoledb.dll - ok
19:53:33.0069 7888 [ 028B3497FD5F48E9EB75047E0EAF5820 ] C:\Program Files\Sophos\SCC\Sophos.Management.Data.dll
19:53:33.0069 7888 C:\Program Files\Sophos\SCC\Sophos.Management.Data.dll - ok
19:53:33.0084 7888 [ 7F8A80FD50A7A7282BB3967BFBA83566 ] C:\WINDOWS\system32\tscfgwmi.dll
19:53:33.0084 7888 C:\WINDOWS\system32\tscfgwmi.dll - ok
19:53:33.0116 7888 [ A9F121B67D25CC60F6B45FA35C9C00FD ] C:\Program Files\Exchsrvr\bin\exwmi.dll
19:53:33.0116 7888 C:\Program Files\Exchsrvr\bin\exwmi.dll - ok
19:53:33.0131 7888 [ BC9D6CD1A31B1FEE07091E60C5809D49 ] C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Data.SqlXml\982b508698278c6ffb3d143bbe1e8bb8\System.Data.SqlXml.ni.dll
19:53:33.0131 7888 C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Data.SqlXml\982b508698278c6ffb3d143bbe1e8bb8\System.Data.SqlXml.ni.dll - ok
19:53:33.0131 7888 [ 29B35A999E341A37BE67771BE01CC275 ] C:\WINDOWS\assembly\GAC_32\ISymWrapper\2.0.0.0__b03f5f7f11d50a3a\ISymWrapper.dll
19:53:33.0131 7888 C:\WINDOWS\assembly\GAC_32\ISymWrapper\2.0.0.0__b03f5f7f11d50a3a\ISymWrapper.dll - ok
19:53:33.0131 7888 [ 2C067BDBE4CE00920505996261EFA6B5 ] C:\WINDOWS\system32\vdsldr.exe
19:53:33.0131 7888 C:\WINDOWS\system32\vdsldr.exe - ok
19:53:33.0147 7888 [ 2F06CF86EE784C37F4EF815106E79B2F ] C:\WINDOWS\system32\vdsutil.dll
19:53:33.0147 7888 C:\WINDOWS\system32\vdsutil.dll - ok
19:53:33.0178 7888 [ B5A21CDD0E913119FF5E0D312308A70C ] C:\WINDOWS\system32\vds_ps.dll
19:53:33.0178 7888 C:\WINDOWS\system32\vds_ps.dll - ok
19:53:33.0178 7888 [ 19B3C87412E971717E71C6E7730905B0 ] C:\Program Files\Sophos\SCC\Sophos.Management.Protocol.XmlSerializers.dll
19:53:33.0178 7888 C:\Program Files\Sophos\SCC\Sophos.Management.Protocol.XmlSerializers.dll - ok
19:53:33.0178 7888 [ 03596BF91F1CD095F61A56E74DA05054 ] C:\Program Files\Sophos\SCC\Sophos.Management.Data.Sddma.dll
19:53:33.0178 7888 C:\Program Files\Sophos\SCC\Sophos.Management.Data.Sddma.dll - ok
19:53:33.0194 7888 [ CCF28CB5DAA3843EBF0121EFCDB42D9D ] C:\Program Files\Exchsrvr\bin\excdo.dll
19:53:33.0194 7888 C:\Program Files\Exchsrvr\bin\excdo.dll - ok
19:53:33.0194 7888 [ 64CE6E887C8567ADAE613FD1B21D2BD6 ] C:\Program Files\Exchsrvr\bin\exnntp.dll
19:53:33.0194 7888 C:\Program Files\Exchsrvr\bin\exnntp.dll - ok
19:53:33.0194 7888 [ 88F0C369A517FB29D6D4B84FCA5ECC4C ] C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Data\12c6fe8d4dd78f9bddf847d3b2821c03\System.Data.ni.dll
19:53:33.0194 7888 C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Data\12c6fe8d4dd78f9bddf847d3b2821c03\System.Data.ni.dll - ok
19:53:33.0225 7888 [ B3158D000001F9E452C6F6B94E15DF98 ] C:\Program Files\Exchsrvr\bin\exsmtp.dll
19:53:33.0225 7888 C:\Program Files\Exchsrvr\bin\exsmtp.dll - ok
19:53:33.0241 7888 [ 79CE64CBF3DE17E116969AC8FDAA7942 ] C:\Program Files\Exchsrvr\bin\exwin32.dll
19:53:33.0241 7888 C:\Program Files\Exchsrvr\bin\exwin32.dll - ok
19:53:33.0241 7888 [ F4BED0A12847B65515C2A3469C4C79AD ] C:\Program Files\Exchsrvr\bin\exwriter.dll
19:53:33.0241 7888 C:\Program Files\Exchsrvr\bin\exwriter.dll - ok
19:53:33.0256 7888 [ 47A8DCD9338DBE7EA0809018E2E5AD43 ] C:\Program Files\Sophos\PureMessage\Bin\RTStore.dll
19:53:33.0256 7888 C:\Program Files\Sophos\PureMessage\Bin\RTStore.dll - ok
19:53:33.0256 7888 [ 4CC2D9C2F58BB0D18608A0393A93361C ] C:\Program Files\Sophos\PureMessage\Bin\PMStoreScanner.dll
19:53:33.0256 7888 C:\Program Files\Sophos\PureMessage\Bin\PMStoreScanner.dll - ok
19:53:33.0256 7888 [ 16F96C1496CBD0965285AB19A9271D02 ] C:\WINDOWS\assembly\GAC_32\System.Data\2.0.0.0__b77a5c561934e089\System.Data.dll
19:53:33.0256 7888 C:\WINDOWS\assembly\GAC_32\System.Data\2.0.0.0__b77a5c561934e089\System.Data.dll - ok
19:53:33.0288 7888 [ C5E18EEB2287DDA6E3EE41705C26178F ] C:\Program Files\Exchsrvr\bin\eseback2.dll
19:53:33.0288 7888 C:\Program Files\Exchsrvr\bin\eseback2.dll - ok
19:53:33.0288 7888 [ F0308CEE0E59329F7446797DA0E0FC75 ] C:\Program Files\Exchsrvr\bin\mdbrest.dll
19:53:33.0288 7888 C:\Program Files\Exchsrvr\bin\mdbrest.dll - ok
19:53:33.0303 7888 [ 1C9AC9B768B63D2489875F0A5E6368A9 ] C:\Program Files\Sophos\SCC\Sophos.Management.RBAC.Core.dll
19:53:33.0303 7888 C:\Program Files\Sophos\SCC\Sophos.Management.RBAC.Core.dll - ok
19:53:33.0303 7888 [ 17F178E166DB05459414CA343AAC7665 ] C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Transactions\41f6f6dd0c8427d4a8e6fd3915505a6b\System.Transactions.ni.dll
19:53:33.0303 7888 C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Transactions\41f6f6dd0c8427d4a8e6fd3915505a6b\System.Transactions.ni.dll - ok
19:53:33.0319 7888 [ F054572A92573CA32D5F3AA8C15D2BAC ] C:\WINDOWS\assembly\GAC_32\System.Transactions\2.0.0.0__b77a5c561934e089\System.Transactions.dll
19:53:33.0319 7888 C:\WINDOWS\assembly\GAC_32\System.Transactions\2.0.0.0__b77a5c561934e089\System.Transactions.dll - ok
19:53:33.0350 7888 [ 3B347F16CB6CB646BFB1F1558F013DF2 ] C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.EnterpriseSe#\29bce0113d611084a9329349e33528ac\System.EnterpriseServices.ni.dll
19:53:33.0350 7888 C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.EnterpriseSe#\29bce0113d611084a9329349e33528ac\System.EnterpriseServices.ni.dll - ok
19:53:33.0350 7888 [ 0E4F8C99B5E9A5285CBAE49285943D40 ] C:\PROGRA~1\Exchsrvr\bin\exodbprx.dll
19:53:33.0350 7888 C:\PROGRA~1\Exchsrvr\bin\exodbprx.dll - ok
19:53:33.0350 7888 [ 51301ACC5E5FDA65CFA1968395E5D951 ] C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\csc.exe
19:53:33.0350 7888 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\csc.exe - ok
19:53:33.0366 7888 [ 98B17BDA1D0BEA2FC8313DB218C0139F ] C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\cscomp.dll
19:53:33.0366 7888 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\cscomp.dll - ok
19:53:33.0366 7888 [ 30B5A2254561E21CCC7BA21F80165D0B ] C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\alink.dll
19:53:33.0366 7888 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\alink.dll - ok
19:53:33.0381 7888 [ D8AE03467A7E17837F9602127F12B1E6 ] C:\Program Files\Sophos\PureMessage\Bin\QuarantineManagerPS.dll
19:53:33.0381 7888 C:\Program Files\Sophos\PureMessage\Bin\QuarantineManagerPS.dll - ok
19:53:33.0413 7888 [ FD8E6DB1F22668D7FAD02567388D1E0D ] C:\PROGRA~1\Exchsrvr\bin\msgtrack.dll
19:53:33.0413 7888 C:\PROGRA~1\Exchsrvr\bin\msgtrack.dll - ok
19:53:33.0413 7888 [ 5BB6FB09F20E9B6239D53D0CE7C72B45 ] C:\Program Files\Sophos\PureMessage\Bin\PMPolicyEngine.dll
19:53:33.0413 7888 C:\Program Files\Sophos\PureMessage\Bin\PMPolicyEngine.dll - ok
19:53:33.0413 7888 [ 344F4306AA0A4DC11F47F8CC97C9F755 ] C:\Program Files\Sophos\PureMessage\Bin\PMCDOWrapper.dll
19:53:33.0413 7888 C:\Program Files\Sophos\PureMessage\Bin\PMCDOWrapper.dll - ok
19:53:33.0428 7888 [ 44DE39CB56D1919346C09C92A4B57C69 ] C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorpe.dll
19:53:33.0428 7888 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorpe.dll - ok
19:53:33.0428 7888 [ 88E05F3B2031980A48D458EB78C67659 ] C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\cvtres.exe
19:53:33.0428 7888 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\cvtres.exe - ok
19:53:33.0428 7888 [ 2ECDE2AECB82CCBA10F792EB70F0667A ] C:\PROGRA~1\COMMON~1\MICROS~1\CDO\cdoex.dll
19:53:33.0428 7888 C:\PROGRA~1\COMMON~1\MICROS~1\CDO\cdoex.dll - ok
19:53:33.0459 7888 [ FF74B93EC137D0F82AFFA6AE90227916 ] C:\WINDOWS\system32\inetcomm.dll
19:53:33.0459 7888 C:\WINDOWS\system32\inetcomm.dll - ok
19:53:33.0459 7888 [ 158348518ED8F0317E3ED5DA0FF1BD3D ] C:\WINDOWS\system32\msoert2.dll
19:53:33.0459 7888 C:\WINDOWS\system32\msoert2.dll - ok
19:53:33.0475 7888 [ 9BECFC61654D3D1F3D611524B52BE6E5 ] C:\WINDOWS\system32\inetres.dll
19:53:33.0475 7888 C:\WINDOWS\system32\inetres.dll - ok
19:53:33.0475 7888 [ D9172FBC7E62EFE59387BD86F800B4DA ] C:\WINDOWS\system32\msoeacct.dll
19:53:33.0475 7888 C:\WINDOWS\system32\msoeacct.dll - ok
19:53:33.0491 7888 [ 8D7C12F8E85A9F91C670A74D4001B35F ] C:\WINDOWS\system32\acctres.dll
19:53:33.0491 7888 C:\WINDOWS\system32\acctres.dll - ok
19:53:33.0506 7888 [ E2694BAC63F0A920E979964035C0D2CA ] C:\WINDOWS\system32\msident.dll
19:53:33.0506 7888 C:\WINDOWS\system32\msident.dll - ok
19:53:33.0506 7888 [ B49589902FA250D301A4A9C200BA50D4 ] C:\WINDOWS\system32\msidntld.dll
19:53:33.0506 7888 C:\WINDOWS\system32\msidntld.dll - ok
19:53:33.0522 7888 [ 97EE8F6CCF621BC69B510ABCADCAF962 ] C:\WINDOWS\system32\pstorec.dll
19:53:33.0522 7888 C:\WINDOWS\system32\pstorec.dll - ok
19:53:33.0522 7888 [ 430CDC94A706C56D6C65B0E588C8D947 ] C:\Program Files\Sophos\PureMessage\Bin\PMDirectoryPS.dll
19:53:33.0522 7888 C:\Program Files\Sophos\PureMessage\Bin\PMDirectoryPS.dll - ok
19:53:33.0538 7888 [ 12CECCFE309BB64E1BD63FD2544E2149 ] C:\Program Files\Sophos\PureMessage\Bin\SavexContent.dll
19:53:33.0538 7888 C:\Program Files\Sophos\PureMessage\Bin\SavexContent.dll - ok
19:53:33.0538 7888 [ BEAD16946619FFF5BDDA14D60D0B218A ] C:\Program Files\Sophos\SCC\Sophos.Management.Data.SubEstates.dll
19:53:33.0538 7888 C:\Program Files\Sophos\SCC\Sophos.Management.Data.SubEstates.dll - ok
19:53:33.0569 7888 [ 1B8C1F5E43A61FEDF61FF704EDF5360F ] C:\Program Files\Sophos\PureMessage\Bin\TnefFilter.dll
19:53:33.0569 7888 C:\Program Files\Sophos\PureMessage\Bin\TnefFilter.dll - ok
19:53:33.0569 7888 [ 5CDFEA4A09A4E5EC152A72BF77DE1D42 ] C:\Program Files\Sophos\PureMessage\Bin\RtfFilter.dll
19:53:33.0569 7888 C:\Program Files\Sophos\PureMessage\Bin\RtfFilter.dll - ok
19:53:33.0584 7888 [ 26FEB5A2009C6E6AF483020CB6FBBFF6 ] C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\CustomMarshalers\bb26dd100d656605c576881a1a823667\CustomMarshalers.ni.dll
19:53:33.0584 7888 C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\CustomMarshalers\bb26dd100d656605c576881a1a823667\CustomMarshalers.ni.dll - ok
19:53:33.0584 7888 [ E3AED3BB837A61E12BE2A628852F70DA ] C:\Program Files\Sophos\PureMessage\Bin\pmx_engine.dll
19:53:33.0584 7888 C:\Program Files\Sophos\PureMessage\Bin\pmx_engine.dll - ok
19:53:33.0584 7888 [ DC426A365577F27187F99EB506ECD5D1 ] C:\WINDOWS\assembly\GAC_32\CustomMarshalers\2.0.0.0__b03f5f7f11d50a3a\CustomMarshalers.dll
19:53:33.0584 7888 C:\WINDOWS\assembly\GAC_32\CustomMarshalers\2.0.0.0__b03f5f7f11d50a3a\CustomMarshalers.dll - ok
19:53:33.0616 7888 [ B5D398395F8E2658551A12DB0E2E07CC ] C:\WINDOWS\Temp\pdk-SYSTEM\b5d398395f8e2658551a12db0e2e07cc\perl56.dll
19:53:33.0616 7888 C:\WINDOWS\Temp\pdk-SYSTEM\b5d398395f8e2658551a12db0e2e07cc\perl56.dll - ok
19:53:33.0631 7888 [ B1BE277C5C2620620DE14D1D8D60B81A ] C:\WINDOWS\Temp\pdk-SYSTEM\b1be277c5c2620620de14d1d8d60b81a.dll
19:53:33.0631 7888 C:\WINDOWS\Temp\pdk-SYSTEM\b1be277c5c2620620de14d1d8d60b81a.dll - ok
19:53:33.0631 7888 [ C406B6B9900A51F2133D6E05C89A9009 ] C:\WINDOWS\Temp\pdk-SYSTEM\c406b6b9900a51f2133d6e05c89a9009.dll
19:53:33.0631 7888 C:\WINDOWS\Temp\pdk-SYSTEM\c406b6b9900a51f2133d6e05c89a9009.dll - ok
19:53:33.0647 7888 [ 964C66E9A7B50AAABBFDD76448063DC0 ] C:\WINDOWS\Temp\pdk-SYSTEM\964c66e9a7b50aaabbfdd76448063dc0.dll
19:53:33.0647 7888 C:\WINDOWS\Temp\pdk-SYSTEM\964c66e9a7b50aaabbfdd76448063dc0.dll - ok
19:53:33.0647 7888 [ 3966BE1940B36B6BCA86590C5EF71885 ] C:\WINDOWS\Temp\pdk-SYSTEM\3966be1940b36b6bca86590c5ef71885.dll
19:53:33.0647 7888 C:\WINDOWS\Temp\pdk-SYSTEM\3966be1940b36b6bca86590c5ef71885.dll - ok
19:53:33.0678 7888 [ DA173ABBC91935ABB578E0CDC10AE8F0 ] C:\WINDOWS\Temp\pdk-SYSTEM\da173abbc91935abb578e0cdc10ae8f0.dll
19:53:33.0678 7888 C:\WINDOWS\Temp\pdk-SYSTEM\da173abbc91935abb578e0cdc10ae8f0.dll - ok
19:53:33.0678 7888 [ AAF5780DD1487D94921FB65415F4F00B ] C:\WINDOWS\Temp\pdk-SYSTEM\aaf5780dd1487d94921fb65415f4f00b.dll
19:53:33.0678 7888 C:\WINDOWS\Temp\pdk-SYSTEM\aaf5780dd1487d94921fb65415f4f00b.dll - ok
19:53:33.0694 7888 [ D48809600CF9DF7AB3445A681F723252 ] C:\WINDOWS\Temp\pdk-SYSTEM\d48809600cf9df7ab3445a681f723252.dll
19:53:33.0694 7888 C:\WINDOWS\Temp\pdk-SYSTEM\d48809600cf9df7ab3445a681f723252.dll - ok
19:53:33.0694 7888 [ 0DBFE5A3E14B6039D207E388E78B6528 ] C:\WINDOWS\Temp\pdk-SYSTEM\0dbfe5a3e14b6039d207e388e78b6528.dll
19:53:33.0694 7888 C:\WINDOWS\Temp\pdk-SYSTEM\0dbfe5a3e14b6039d207e388e78b6528.dll - ok
19:53:33.0709 7888 [ 1BBE135FBAFADBB83C3E5485605E5354 ] C:\WINDOWS\Temp\pdk-SYSTEM\1bbe135fbafadbb83c3e5485605e5354.dll
19:53:33.0709 7888 C:\WINDOWS\Temp\pdk-SYSTEM\1bbe135fbafadbb83c3e5485605e5354.dll - ok
19:53:33.0741 7888 [ 6C861A8C070E21E827078F0CC1476B07 ] C:\WINDOWS\Temp\pdk-SYSTEM\6c861a8c070e21e827078f0cc1476b07.dll
19:53:33.0741 7888 C:\WINDOWS\Temp\pdk-SYSTEM\6c861a8c070e21e827078f0cc1476b07.dll - ok
19:53:33.0741 7888 [ 90C96AF4A323DB12C297BE4474FD3E15 ] C:\Program Files\Sophos\SCC\Messaging.dll
19:53:33.0741 7888 C:\Program Files\Sophos\SCC\Messaging.dll - ok
19:53:33.0756 7888 [ 2A773D9B3281DA868E2BFD857A5FFBFB ] C:\WINDOWS\Temp\pdk-SYSTEM\2a773d9b3281da868e2bfd857a5ffbfb.dll
19:53:33.0756 7888 C:\WINDOWS\Temp\pdk-SYSTEM\2a773d9b3281da868e2bfd857a5ffbfb.dll - ok
19:53:33.0756 7888 [ D0A81C914B562AE173F9B382F53023CB ] C:\WINDOWS\Temp\pdk-SYSTEM\d0a81c914b562ae173f9b382f53023cb.dll
19:53:33.0756 7888 C:\WINDOWS\Temp\pdk-SYSTEM\d0a81c914b562ae173f9b382f53023cb.dll - ok
19:53:33.0772 7888 [ C5466118D4FBEF03AB9DC3AA4FA9E7E5 ] C:\WINDOWS\Temp\pdk-SYSTEM\c5466118d4fbef03ab9dc3aa4fa9e7e5.dll
19:53:33.0772 7888 C:\WINDOWS\Temp\pdk-SYSTEM\c5466118d4fbef03ab9dc3aa4fa9e7e5.dll - ok
19:53:33.0803 7888 [ 6CF08B44712C40644102BC16135317E0 ] C:\WINDOWS\Temp\pdk-SYSTEM\6cf08b44712c40644102bc16135317e0.dll
19:53:33.0803 7888 C:\WINDOWS\Temp\pdk-SYSTEM\6cf08b44712c40644102bc16135317e0.dll - ok
19:53:33.0803 7888 [ 4F0F4E75813AEC0624F9B060AF035247 ] C:\WINDOWS\Temp\pdk-SYSTEM\4f0f4e75813aec0624f9b060af035247.dll
19:53:33.0803 7888 C:\WINDOWS\Temp\pdk-SYSTEM\4f0f4e75813aec0624f9b060af035247.dll - ok
19:53:33.0803 7888 [ 1AA987C5AAA52F5BEBC6178D28E6B92A ] C:\WINDOWS\Temp\pdk-SYSTEM\1aa987c5aaa52f5bebc6178d28e6b92a.dll
19:53:33.0803 7888 C:\WINDOWS\Temp\pdk-SYSTEM\1aa987c5aaa52f5bebc6178d28e6b92a.dll - ok
19:53:33.0819 7888 [ EF7507AD918AAA093698D4B96EEFB925 ] C:\WINDOWS\Temp\pdk-SYSTEM\ef7507ad918aaa093698d4b96eefb925.dll
19:53:33.0819 7888 C:\WINDOWS\Temp\pdk-SYSTEM\ef7507ad918aaa093698d4b96eefb925.dll - ok
19:53:33.0819 7888 [ 1B2C35C3B9213153857D0E8E544DFCBD ] C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Security\129b15861e200613ff78ae15581f9093\System.Security.ni.dll
19:53:33.0819 7888 C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Security\129b15861e200613ff78ae15581f9093\System.Security.ni.dll - ok
19:53:33.0850 7888 [ DCD8BC524FF57DF2B0DDA328081C23D2 ] C:\WINDOWS\Temp\pdk-SYSTEM\dcd8bc524ff57df2b0dda328081c23d2.dll
19:53:33.0850 7888 C:\WINDOWS\Temp\pdk-SYSTEM\dcd8bc524ff57df2b0dda328081c23d2.dll - ok
19:53:33.0866 7888 [ 588AD4298504124A5B95AC2E3689F72E ] C:\WINDOWS\LTSvc\cpuidsdk.dll
19:53:33.0866 7888 C:\WINDOWS\LTSvc\cpuidsdk.dll - ok
19:53:33.0866 7888 [ 92DE49720D6B726C3644AC5906463091 ] C:\Program Files\NetBalancer\ndisapi.dll
19:53:33.0866 7888 C:\Program Files\NetBalancer\ndisapi.dll - ok
19:53:33.0881 7888 [ 5804A28D60A8CD6D093F0BEFC83356AA ] C:\WINDOWS\system32\wbem\wmipcima.dll
19:53:33.0881 7888 C:\WINDOWS\system32\wbem\wmipcima.dll - ok
19:53:33.0881 7888 [ 959E55B2BAD718C3C283CAADF9104A2C ] C:\PROGRA~1\Exchsrvr\bin\bin\e2kdsn.dll
19:53:33.0881 7888 C:\PROGRA~1\Exchsrvr\bin\bin\e2kdsn.dll - ok
19:53:33.0897 7888 [ B0F0901998FC6BDEEA5DA15FE783438C ] C:\WINDOWS\system32\xactsrv.dll
19:53:33.0897 7888 C:\WINDOWS\system32\xactsrv.dll - ok
19:53:33.0913 7888 [ C25422AD6EF68DE9DB94BA3C1FEC8A21 ] C:\Program Files\Microsoft SQL Server\90\Shared\msxmlsql.dll
19:53:33.0913 7888 C:\Program Files\Microsoft SQL Server\90\Shared\msxmlsql.dll - ok
19:53:33.0913 7888 [ 2C4D84C105502C9E95A37A4DA5EAE666 ] C:\WINDOWS\system32\msxml2.dll
19:53:33.0913 7888 C:\WINDOWS\system32\msxml2.dll - ok
19:53:33.0928 7888 [ C4894B3B448B647BEDC9E916D181BDBE ] C:\WINDOWS\system32\searchprotocolhost.exe
19:53:33.0928 7888 C:\WINDOWS\system32\searchprotocolhost.exe - ok
19:53:33.0928 7888 [ 4774D83BE60B7F47C612E25D6FE0F010 ] C:\WINDOWS\system32\msshooks.dll
19:53:33.0928 7888 C:\WINDOWS\system32\msshooks.dll - ok
19:53:33.0928 7888 [ 6E914EEDD145C5ACCE56F4D5F3D606FC ] C:\WINDOWS\system32\mssph.dll
19:53:33.0928 7888 C:\WINDOWS\system32\mssph.dll - ok
19:53:33.0944 7888 [ 746DD636A93FEAF2DB925061F7974C83 ] C:\WINDOWS\system32\mapi32.dll
19:53:33.0944 7888 C:\WINDOWS\system32\mapi32.dll - ok
19:53:33.0975 7888 [ D59A7119054D70FC745A1BF9C06DCC65 ] C:\WINDOWS\system32\oeph.dll
19:53:33.0975 7888 C:\WINDOWS\system32\oeph.dll - ok
19:53:33.0975 7888 [ 79ED352549EB6D5B1A454916C37D2E85 ] C:\WINDOWS\system32\UncPH.dll
19:53:33.0975 7888 C:\WINDOWS\system32\UncPH.dll - ok
19:53:33.0991 7888 [ F7567742B731F9B4CC7797C039AC1FDD ] C:\WINDOWS\system32\ieframe.dll
19:53:33.0991 7888 C:\WINDOWS\system32\ieframe.dll - ok
19:53:33.0991 7888 [ DAB5F6B6DFAF50D26CC189A776EC9EB8 ] C:\WINDOWS\system32\msfeeds.dll
19:53:33.0991 7888 C:\WINDOWS\system32\msfeeds.dll - ok
19:53:33.0991 7888 [ 87889A983C015080FA813D7E32910D1E ] C:\WINDOWS\system32\searchfilterhost.exe
19:53:33.0991 7888 C:\WINDOWS\system32\searchfilterhost.exe - ok
19:53:34.0022 7888 [ 8BEAF2B4BCDE405AF7EC46A9E03B2D65 ] C:\WINDOWS\system32\mssprxy.dll
19:53:34.0022 7888 C:\WINDOWS\system32\mssprxy.dll - ok
19:53:34.0022 7888 [ 7291C25CF53D35C4DEE2B1A55BA026F5 ] C:\WINDOWS\system32\emsabp32.dll
19:53:34.0022 7888 C:\WINDOWS\system32\emsabp32.dll - ok
19:53:34.0038 7888 [ 771E62A2269745DDFD6CA76DC28FAB8A ] C:\WINDOWS\system32\emsmdb32.dll
19:53:34.0038 7888 C:\WINDOWS\system32\emsmdb32.dll - ok
19:53:34.0038 7888 [ 719B95D7266BFE58C1481C45BB0D66B1 ] C:\WINDOWS\system32\wshnetbs.dll
19:53:34.0038 7888 C:\WINDOWS\system32\wshnetbs.dll - ok
19:53:34.0053 7888 [ E99EBB7F4AAB4E32E7FB611A1B4B5D43 ] C:\WINDOWS\system32\wshqos.dll
19:53:34.0053 7888 C:\WINDOWS\system32\wshqos.dll - ok
19:53:34.0053 7888 [ AAB3F7A15A1194D717847B08D75FAC61 ] C:\WINDOWS\system32\WshRm.dll
19:53:34.0053 7888 C:\WINDOWS\system32\WshRm.dll - ok
19:53:34.0085 7888 [ F4E0763830CE8A39F338BFAF7059BD13 ] C:\WINDOWS\system32\rdpdd.dll
19:53:34.0085 7888 C:\WINDOWS\system32\rdpdd.dll - ok
19:53:34.0085 7888 [ 42584F6F9D5AA8EE6A3C330B183E99A0 ] C:\WINDOWS\system32\langwrbk.dll
19:53:34.0085 7888 C:\WINDOWS\system32\langwrbk.dll - ok
19:53:34.0100 7888 [ 275205E7A796740B6C1BA852469016DE ] C:\WINDOWS\system32\infosoft.dll
19:53:34.0100 7888 C:\WINDOWS\system32\infosoft.dll - ok
19:53:34.0100 7888 [ 574B057513A55C3FC32B4E651F59F84D ] C:\WINDOWS\system32\cscdll.dll
19:53:34.0100 7888 C:\WINDOWS\system32\cscdll.dll - ok
19:53:34.0100 7888 [ B47D57F756C1E03CFD0807A0151B9D7F ] C:\WINDOWS\system32\dimsntfy.dll
19:53:34.0100 7888 C:\WINDOWS\system32\dimsntfy.dll - ok
19:53:34.0131 7888 [ F13E693DAA887305D64B08BE1A92B073 ] C:\WINDOWS\system32\wlnotify.dll
19:53:34.0131 7888 C:\WINDOWS\system32\wlnotify.dll - ok
19:53:34.0147 7888 [ 43849BA31D8A939685A05F37104DA3A3 ] C:\WINDOWS\system32\rdpsnd.dll
19:53:34.0147 7888 C:\WINDOWS\system32\rdpsnd.dll - ok
19:53:34.0147 7888 [ DADEEC3B6FD2F760D9BCB8654524D8D0 ] C:\WINDOWS\system32\uxtheme.dll
19:53:34.0147 7888 C:\WINDOWS\system32\uxtheme.dll - ok
19:53:34.0163 7888 [ 5257B68E6A5C02A415C50380EF109B0D ] C:\WINDOWS\system32\scredir.dll
19:53:34.0163 7888 C:\WINDOWS\system32\scredir.dll - ok
19:53:34.0163 7888 [ 728878EAF57754D4893AF979C4BEB80B ] C:\WINDOWS\system32\netevent.dll
19:53:34.0163 7888 C:\WINDOWS\system32\netevent.dll - ok
19:53:34.0163 7888 [ 5CE9331DC4C9E3B1FA4AAEF1B212701F ] C:\WINDOWS\system32\vds.exe
19:53:34.0163 7888 C:\WINDOWS\system32\vds.exe - ok
19:53:34.0194 7888 [ C45477F2891A5CA14C2F2F79052F5067 ] C:\WINDOWS\Temp\inv1_tmp\hapi\hapinst.exe
19:53:34.0194 7888 C:\WINDOWS\Temp\inv1_tmp\hapi\hapinst.exe - ok
19:53:34.0194 7888 [ ED4BA3652E85A426F956F842BDD094CE ] C:\WINDOWS\system32\osuninst.dll
19:53:34.0194 7888 C:\WINDOWS\system32\osuninst.dll - ok
19:53:34.0210 7888 [ A31F6DFDC2E16974B2D2290CBF804DA4 ] C:\WINDOWS\system32\wbem\wmiprov.dll
19:53:34.0210 7888 C:\WINDOWS\system32\wbem\wmiprov.dll - ok
19:53:34.0210 7888 [ BA1360F927227D434CC6AC65CA941E3D ] C:\WINDOWS\system32\vdsbas.dll
19:53:34.0210 7888 C:\WINDOWS\system32\vdsbas.dll - ok
19:53:34.0225 7888 [ 74A6820792E5BCA5EE4D0CC4595C6916 ] C:\WINDOWS\system32\vssvc.exe
19:53:34.0225 7888 C:\WINDOWS\system32\vssvc.exe - ok
19:53:34.0225 7888 [ 328BA58DEE44084710CB6A597284E824 ] C:\WINDOWS\Temp\inv1_tmp\libsmbios\smbiosinfo.exe
19:53:34.0225 7888 C:\WINDOWS\Temp\inv1_tmp\libsmbios\smbiosinfo.exe - ok
19:53:34.0256 7888 [ 95C0A92F3BC70EDC9A8E5A5DB88FD5CE ] C:\WINDOWS\system32\vdsdyndr.dll
19:53:34.0256 7888 C:\WINDOWS\system32\vdsdyndr.dll - ok
19:53:34.0256 7888 [ 3411FDF098AA20193EEE5FFA36BA43B2 ] C:\WINDOWS\Temp\cpuz135\cpuz135_x32.sys
19:53:34.0256 7888 C:\WINDOWS\Temp\cpuz135\cpuz135_x32.sys - ok
19:53:34.0272 7888 [ 7C4065AD8588B2E78AE4DEAA7AFCC48C ] C:\WINDOWS\system32\vss_ps.dll
19:53:34.0272 7888 C:\WINDOWS\system32\vss_ps.dll - ok
19:53:34.0272 7888 [ 8A5AD4CFE2D84371ABADFCF9E21954F6 ] C:\WINDOWS\system32\appmgmts.dll
19:53:34.0272 7888 C:\WINDOWS\system32\appmgmts.dll - ok
19:53:34.0272 7888 [ BA7F4906FD06BF8DC0145D75E13AD46E ] C:\WINDOWS\system32\dmadmin.exe
19:53:34.0272 7888 C:\WINDOWS\system32\dmadmin.exe - ok
19:53:34.0303 7888 [ F1C44687C2231BE3CCB76DB33864E4A5 ] C:\WINDOWS\system32\dmutil.dll
19:53:34.0303 7888 C:\WINDOWS\system32\dmutil.dll - ok
19:53:34.0303 7888 [ B5FEB3B971A8B8C81CE9DE65031A87E5 ] C:\WINDOWS\system32\userinit.exe
19:53:34.0303 7888 C:\WINDOWS\system32\userinit.exe - ok
19:53:34.0319 7888 [ 0DDC8090E99B8B79937AF6151C10AEF5 ] C:\WINDOWS\system32\dmintf.dll
19:53:34.0319 7888 C:\WINDOWS\system32\dmintf.dll - ok
19:53:34.0319 7888 [ D64D8F76B54214FBCED3AE0ECDFBF30A ] C:\WINDOWS\system32\dpcdll.dll
19:53:34.0319 7888 C:\WINDOWS\system32\dpcdll.dll - ok
19:53:34.0335 7888 [ B0D15E61DAE304056B6F34CF93241FB0 ] C:\WINDOWS\system32\pautoenr.dll
19:53:34.0335 7888 C:\WINDOWS\system32\pautoenr.dll - ok
19:53:34.0335 7888 [ 82DF6F425D34607F78357B69C969DB04 ] C:\WINDOWS\system32\dxdiagn.dll
19:53:34.0335 7888 C:\WINDOWS\system32\dxdiagn.dll - ok
19:53:34.0366 7888 [ 33CDA56C16AF899F0E3F3089B842BA5E ] C:\WINDOWS\Temp\inv1_tmp\BMC\duputil.exe
19:53:34.0366 7888 C:\WINDOWS\Temp\inv1_tmp\BMC\duputil.exe - ok
19:53:34.0366 7888 [ A45A8AB7BAF598FD4261EE46E98E22AA ] C:\WINDOWS\system32\cscui.dll
19:53:34.0366 7888 C:\WINDOWS\system32\cscui.dll - ok
19:53:34.0381 7888 [ E792A18ABDC32286212DCE8E75BAA124 ] C:\WINDOWS\system32\drivers\fastfat.sys
19:53:34.0381 7888 C:\WINDOWS\system32\drivers\fastfat.sys - ok
19:53:34.0381 7888 [ FF625176D25AA2CB543DD42A76BEAF71 ] C:\WINDOWS\system32\hbaapi.dll
19:53:34.0381 7888 C:\WINDOWS\system32\hbaapi.dll - ok
19:53:34.0381 7888 [ BBD78A4E2827E3A3C99A49C3DBF1A98E ] C:\WINDOWS\system32\rdpclip.exe
19:53:34.0381 7888 C:\WINDOWS\system32\rdpclip.exe - ok
19:53:34.0413 7888 [ 3B1A1DD4DC4457685CAA0394C679C7E6 ] C:\WINDOWS\Temp\inv1_tmp\BMC\ipmichecks.exe
19:53:34.0413 7888 C:\WINDOWS\Temp\inv1_tmp\BMC\ipmichecks.exe - ok
19:53:34.0413 7888 [ F5E58BEB16304B96BCD756C475FF6CA4 ] C:\WINDOWS\system32\xenroll.dll
19:53:34.0413 7888 C:\WINDOWS\system32\xenroll.dll - ok
19:53:34.0428 7888 [ B85DB25323EB9B99FE1F4FE6A5263FE6 ] C:\WINDOWS\system32\msacm32.dll
19:53:34.0428 7888 C:\WINDOWS\system32\msacm32.dll - ok
19:53:34.0428 7888 [ 219355B84C38B2F6596271730FC4EB9E ] C:\WINDOWS\system32\msacm32.drv
19:53:34.0428 7888 C:\WINDOWS\system32\msacm32.drv - ok
19:53:34.0444 7888 [ 62AEC4DE4B78771D0C2DAAC8F42D4A22 ] C:\WINDOWS\system32\imaadp32.acm
19:53:34.0444 7888 C:\WINDOWS\system32\imaadp32.acm - ok
19:53:34.0444 7888 [ E5CC3A78F0646C52825F7AC6C114850A ] C:\WINDOWS\system32\msadp32.acm
19:53:34.0444 7888 C:\WINDOWS\system32\msadp32.acm - ok
19:53:34.0475 7888 [ 6FEA296828AC22D11EA03CF5B9F13498 ] C:\WINDOWS\Temp\inv1_tmp\BMC\bmcfl32w.exe
19:53:34.0475 7888 C:\WINDOWS\Temp\inv1_tmp\BMC\bmcfl32w.exe - ok
19:53:34.0475 7888 [ 5BBA317FF7AE77737642D86375834806 ] C:\WINDOWS\system32\msg711.acm
19:53:34.0475 7888 C:\WINDOWS\system32\msg711.acm - ok
19:53:34.0475 7888 [ A26C39540F8BE3729846E360E2C57344 ] C:\WINDOWS\explorer.exe
19:53:34.0475 7888 C:\WINDOWS\explorer.exe - ok
19:53:34.0491 7888 [ 991405153BDA4F9FC14709EE7422D3EE ] C:\WINDOWS\system32\printui.dll
19:53:34.0491 7888 C:\WINDOWS\system32\printui.dll - ok
19:53:34.0491 7888 [ 0B491D2832D23404ADE6D1D8E20690F5 ] C:\WINDOWS\system32\msgsm32.acm
19:53:34.0491 7888 C:\WINDOWS\system32\msgsm32.acm - ok
19:53:34.0506 7888 [ 4435851D9C553023C1185F5C0D457FF9 ] C:\WINDOWS\system32\browseui.dll
19:53:34.0506 7888 C:\WINDOWS\system32\browseui.dll - ok
19:53:34.0538 7888 [ 80C27169FCC4D200A04FC311E8D395C3 ] C:\WINDOWS\system32\tssoft32.acm
19:53:34.0538 7888 C:\WINDOWS\system32\tssoft32.acm - ok
19:53:34.0538 7888 [ DBE34D9C3073E28C032F0ED29C721F0A ] C:\WINDOWS\system32\shdocvw.dll
19:53:34.0538 7888 C:\WINDOWS\system32\shdocvw.dll - ok
19:53:34.0538 7888 [ D957A25C39A9BD9EB104DC9EEDD2BBB7 ] C:\WINDOWS\system32\tsd32.dll
19:53:34.0538 7888 C:\WINDOWS\system32\tsd32.dll - ok
19:53:34.0553 7888 [ 94D21B9A33ABB6DA82A1C5B955A9B83E ] C:\WINDOWS\system32\msg723.acm
19:53:34.0553 7888 C:\WINDOWS\system32\msg723.acm - ok
19:53:34.0553 7888 [ 0A9F49D6D06EF65F5C4DA3A1E5A86F54 ] C:\WINDOWS\Temp\inv1_tmp\driver\driverie.exe
19:53:34.0553 7888 C:\WINDOWS\Temp\inv1_tmp\driver\driverie.exe - ok
19:53:34.0585 7888 [ 80822A8160D845C6BDC8AE3FF484220A ] C:\WINDOWS\Temp\inv1_tmp\driver\duputil.dll
19:53:34.0585 7888 C:\WINDOWS\Temp\inv1_tmp\driver\duputil.dll - ok
19:53:34.0600 7888 [ 8248B57405B0BE0EF35B869EFCF80827 ] C:\WINDOWS\system32\msaud32.acm
19:53:34.0600 7888 C:\WINDOWS\system32\msaud32.acm - ok
19:53:34.0600 7888 [ A778DD12B344DBE55D2B80707485E9C7 ] C:\WINDOWS\system32\sl_anet.acm
19:53:34.0600 7888 C:\WINDOWS\system32\sl_anet.acm - ok
19:53:34.0600 7888 [ 06317CF2FFA7D14C5A59773E84D6AC3D ] C:\WINDOWS\system32\l3codeca.acm
19:53:34.0600 7888 C:\WINDOWS\system32\l3codeca.acm - ok
19:53:34.0616 7888 [ FD1657041DEDCA30559E4D72E9ABA67C ] C:\WINDOWS\system32\desk.cpl
19:53:34.0616 7888 C:\WINDOWS\system32\desk.cpl - ok
19:53:34.0616 7888 [ 249D2A167FEF11DBB6F246CA738F7CAA ] C:\WINDOWS\Temp\inv1_tmp\MPTLSI\U320DUPIE.exe
19:53:34.0616 7888 C:\WINDOWS\Temp\inv1_tmp\MPTLSI\U320DUPIE.exe - ok
19:53:34.0647 7888 [ 9B8F165AE086346FDDE6EC85643A5C13 ] C:\WINDOWS\system32\themeui.dll
19:53:34.0647 7888 C:\WINDOWS\system32\themeui.dll - ok
19:53:34.0663 7888 [ 48E734A088CBA995DCED4557E2DD3111 ] C:\WINDOWS\system32\msimg32.dll
19:53:34.0663 7888 C:\WINDOWS\system32\msimg32.dll - ok
19:53:34.0663 7888 [ 0227E12D4EFCF61FEB20DAEEB0623E40 ] C:\WINDOWS\Temp\inv1_tmp\PERC4LSI\LSIPIE.exe
19:53:34.0663 7888 C:\WINDOWS\Temp\inv1_tmp\PERC4LSI\LSIPIE.exe - ok
19:53:34.0663 7888 [ 6E06CBF4483FA9E80B37DD52B5437B17 ] C:\Program Files\Barracuda\Barracuda Backup Agent\win\x86\bbwinsqw.dll
19:53:34.0663 7888 C:\Program Files\Barracuda\Barracuda Backup Agent\win\x86\bbwinsqw.dll - ok
19:53:34.0678 7888 [ 1561781FC841CF2EE42D9756068F587B ] C:\WINDOWS\system32\actxprxy.dll
19:53:34.0678 7888 C:\WINDOWS\system32\actxprxy.dll - ok
19:53:34.0694 7888 [ A59F8B83C0EA64D16BA72F04B694DCE3 ] C:\Program Files\Barracuda\Barracuda Backup Agent\win\x86\bbwinexw.dll
19:53:34.0694 7888 C:\Program Files\Barracuda\Barracuda Backup Agent\win\x86\bbwinexw.dll - ok
19:53:34.0694 7888 [ ED5A2E6D92635FD6DF7F199D4241C8B1 ] C:\WINDOWS\Temp\inv1_tmp\PERC4LSI\MegaLib.dll
19:53:34.0694 7888 C:\WINDOWS\Temp\inv1_tmp\PERC4LSI\MegaLib.dll - ok
19:53:34.0710 7888 [ 2DAF803FC0FA8DE1A0E9960D06ADA268 ] C:\Program Files\Barracuda\Barracuda Backup Agent\win\x86\bbwinex2.dll
19:53:34.0710 7888 C:\Program Files\Barracuda\Barracuda Backup Agent\win\x86\bbwinex2.dll - ok
19:53:34.0710 7888 [ 6CA560D7C082CB3F5DDD95E7428A634F ] C:\Program Files\Exchsrvr\bin\esebcli2.dll
19:53:34.0710 7888 C:\Program Files\Exchsrvr\bin\esebcli2.dll - ok
19:53:34.0725 7888 [ DAA08BE3D56AD4EDD3BE597DB918B8FE ] C:\WINDOWS\system32\powrprof.dll
19:53:34.0725 7888 C:\WINDOWS\system32\powrprof.dll - ok
19:53:34.0725 7888 [ 04209087E6240751999F73A74D0F6D2E ] C:\WINDOWS\Temp\inv1_tmp\PERCADA\AdaptecPIE.exe
19:53:34.0725 7888 C:\WINDOWS\Temp\inv1_tmp\PERCADA\AdaptecPIE.exe - ok
19:53:34.0756 7888 [ 3A04C0C7B0B0E0835DCEE75FF5291114 ] C:\WINDOWS\Temp\inv1_tmp\PERCADA\afaapi.dll
19:53:34.0756 7888 C:\WINDOWS\Temp\inv1_tmp\PERCADA\afaapi.dll - ok
19:53:34.0756 7888 [ F18588D19910DEAE624D29153F577DB2 ] C:\WINDOWS\Temp\inv1_tmp\PERCADA\afaappse.dll
19:53:34.0756 7888 C:\WINDOWS\Temp\inv1_tmp\PERCADA\afaappse.dll - ok
19:53:34.0756 7888 [ 034DDC8C8991BB8FCC0E1EEE0C36069A ] C:\WINDOWS\Temp\inv1_tmp\zappa\PV2XX.exe
19:53:34.0756 7888 C:\WINDOWS\Temp\inv1_tmp\zappa\PV2XX.exe - ok
19:53:34.0772 7888 [ EF5D2F3AC3B2F85109262C28620834CD ] C:\WINDOWS\Temp\inv1_tmp\zappa\DiagFramework.dll
19:53:34.0772 7888 C:\WINDOWS\Temp\inv1_tmp\zappa\DiagFramework.dll - ok
19:53:34.0772 7888 [ F7A366738A235BA080F6172CACE58ABE ] C:\WINDOWS\Temp\inv1_tmp\zappa\AdpRaidDevDiag.dll
19:53:34.0772 7888 C:\WINDOWS\Temp\inv1_tmp\zappa\AdpRaidDevDiag.dll - ok
19:53:34.0788 7888 [ F1E06FD752DF9BA849C152D81E338FB5 ] C:\WINDOWS\Temp\inv1_tmp\zappa\LSIDevDiag.dll
19:53:34.0788 7888 C:\WINDOWS\Temp\inv1_tmp\zappa\LSIDevDiag.dll - ok
19:53:34.0803 7888 [ 580E15C54380A032C3DC10250D46E1B5 ] C:\WINDOWS\Temp\inv1_tmp\zappa\ScsiDevDiag.dll
19:53:34.0803 7888 C:\WINDOWS\Temp\inv1_tmp\zappa\ScsiDevDiag.dll - ok
19:53:34.0819 7888 [ ED5A2E6D92635FD6DF7F199D4241C8B1 ] C:\WINDOWS\Temp\inv1_tmp\zappa\MegaLib.dll
19:53:34.0819 7888 C:\WINDOWS\Temp\inv1_tmp\zappa\MegaLib.dll - ok
19:53:34.0819 7888 [ 7B7D52AB4113AFEDF23C300ED77A5D09 ] C:\WINDOWS\system32\atipdlxx.dll
19:53:34.0819 7888 C:\WINDOWS\system32\atipdlxx.dll - ok
19:53:34.0819 7888 [ 273E1C3ECFAC7BA9B1FF706C1BE892FB ] C:\WINDOWS\LTSvc\tvnserver.exe
19:53:34.0819 7888 C:\WINDOWS\LTSvc\tvnserver.exe - ok
19:53:34.0835 7888 [ C1D43494757D6A6D05DF057FF0749A97 ] C:\WINDOWS\system32\net1.exe
19:53:34.0835 7888 C:\WINDOWS\system32\net1.exe - ok
19:53:34.0866 7888 [ 5694172B4275401748F74B70650A0B31 ] C:\WINDOWS\Temp\inv1_tmp\zappa\afaapi.dll
19:53:34.0866 7888 C:\WINDOWS\Temp\inv1_tmp\zappa\afaapi.dll - ok
19:53:34.0866 7888 [ 05A2A2C007DD1F73F3476C7E1579BA80 ] C:\WINDOWS\Temp\inv1_tmp\zappa\afaappse.dll
19:53:34.0866 7888 C:\WINDOWS\Temp\inv1_tmp\zappa\afaappse.dll - ok
19:53:34.0881 7888 [ D4AD121346D46EA39E360C3F7559E965 ] C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\InstallUtil.exe
19:53:34.0881 7888 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\InstallUtil.exe - ok
19:53:34.0881 7888 [ ABBA57E1E6AD1F3F8E7287C045185A06 ] C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Configuratio#\badd66e1d2b8416e9bb868ad059203c6\System.Configuration.Install.ni.dll
19:53:34.0881 7888 C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Configuratio#\badd66e1d2b8416e9bb868ad059203c6\System.Configuration.Install.ni.dll - ok
19:53:34.0881 7888 [ E4262A5A422915B9B26DBFD3532CE77A ] C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Runtime.Seri#\a644ec04e18202b60f9d828bc207972b\System.Runtime.Serialization.Formatters.Soap.ni.dll
19:53:34.0881 7888 C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Runtime.Seri#\a644ec04e18202b60f9d828bc207972b\System.Runtime.Serialization.Formatters.Soap.ni.dll - ok
19:53:34.0897 7888 [ 33CDA56C16AF899F0E3F3089B842BA5E ] C:\WINDOWS\Temp\inv1_tmp\RAC5\duputil.exe
19:53:34.0897 7888 C:\WINDOWS\Temp\inv1_tmp\RAC5\duputil.exe - ok
19:53:34.0928 7888 [ 3B1A1DD4DC4457685CAA0394C679C7E6 ] C:\WINDOWS\Temp\inv1_tmp\RAC5\ipmichecks.exe
19:53:34.0928 7888 C:\WINDOWS\Temp\inv1_tmp\RAC5\ipmichecks.exe - ok
19:53:34.0928 7888 [ EFC806A1C4C6CE9F69AECE0AB72C1E34 ] C:\WINDOWS\assembly\GAC_MSIL\Microsoft.VisualBasic\8.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualBasic.dll
19:53:34.0928 7888 C:\WINDOWS\assembly\GAC_MSIL\Microsoft.VisualBasic\8.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualBasic.dll - ok
19:53:34.0944 7888 [ 50D2943D426BA91771AD87FDEC802AC3 ] C:\WINDOWS\assembly\GAC_MSIL\System.ServiceProcess\2.0.0.0__b03f5f7f11d50a3a\System.ServiceProcess.dll
19:53:34.0944 7888 C:\WINDOWS\assembly\GAC_MSIL\System.ServiceProcess\2.0.0.0__b03f5f7f11d50a3a\System.ServiceProcess.dll - ok
19:53:34.0944 7888 [ 15EAFC5E4D3302E0FBB35CC010E77185 ] C:\WINDOWS\Temp\inv1_tmp\RAC5\racsvm.exe
19:53:34.0944 7888 C:\WINDOWS\Temp\inv1_tmp\RAC5\racsvm.exe - ok
19:53:34.0944 7888 [ 57FDE9D97A641399B8CA051D8AC4DD84 ] C:\WINDOWS\Temp\inv1_tmp\SAS\SASDUPIE.exe
19:53:34.0944 7888 C:\WINDOWS\Temp\inv1_tmp\SAS\SASDUPIE.exe - ok
19:53:34.0960 7888 [ 8C9ED118C76B076495E7D5F46C8932C7 ] C:\WINDOWS\system32\net.exe
19:53:34.0960 7888 C:\WINDOWS\system32\net.exe - ok
19:53:34.0975 7888 [ F5706EF5AB06C66CB46668E804E8E8F4 ] C:\WINDOWS\Temp\inv1_tmp\SAS\storelib.dll
19:53:34.0975 7888 C:\WINDOWS\Temp\inv1_tmp\SAS\storelib.dll - ok
19:53:34.0991 7888 [ 906C1BDA9D3DAEBFB670BAC6C22EBE83 ] C:\WINDOWS\Temp\inv1_tmp\SAS\storelibir.dll
19:53:34.0991 7888 C:\WINDOWS\Temp\inv1_tmp\SAS\storelibir.dll - ok
19:53:34.0991 7888 [ 90A24249B7CC646E5BB5ABECCE6CD45E ] C:\WINDOWS\Temp\inv1_tmp\Tape_IBM\IbmDup.exe
19:53:34.0991 7888 C:\WINDOWS\Temp\inv1_tmp\Tape_IBM\IbmDup.exe - ok
19:53:35.0006 7888 [ D59C83F67B57BDD898E308B0FCE16895 ] C:\WINDOWS\Temp\inv1_tmp\Tape_IBM\libibmltodup-1.dll
19:53:35.0006 7888 C:\WINDOWS\Temp\inv1_tmp\Tape_IBM\libibmltodup-1.dll - ok
19:53:35.0006 7888 [ D0405183777DF831092B4FBEE63F5C25 ] C:\WINDOWS\Temp\inv1_tmp\Tape_Tandberg\dups.exe
19:53:35.0006 7888 C:\WINDOWS\Temp\inv1_tmp\Tape_Tandberg\dups.exe - ok
19:53:35.0022 7888 [ 16BB960EC49637F709A679764C99B3A0 ] C:\WINDOWS\Temp\inv1_tmp\Tape_Tandberg\Win32SCSI.dll
19:53:35.0022 7888 C:\WINDOWS\Temp\inv1_tmp\Tape_Tandberg\Win32SCSI.dll - ok
19:53:35.0038 7888 [ 711B6DFF75396338267DC1C4C7EDFEE7 ] C:\WINDOWS\LTSvc\LTTray.exe
19:53:35.0038 7888 C:\WINDOWS\LTSvc\LTTray.exe - ok
19:53:35.0038 7888 [ F282D4EDD85D53E20D902CC92190C5F5 ] C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsec.dll
19:53:35.0038 7888 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsec.dll - ok
19:53:35.0053 7888 [ BA76E4878DDD1FD3802949177028E18D ] C:\WINDOWS\system32\cryptnet.dll
19:53:35.0053 7888 C:\WINDOWS\system32\cryptnet.dll - ok
19:53:35.0053 7888 [ CFAE18C5C50B53AA63F0434D27EFE0EC ] C:\WINDOWS\system32\sensapi.dll
19:53:35.0053 7888 C:\WINDOWS\system32\sensapi.dll - ok
19:53:35.0069 7888 [ 34857498029DBC7B0BF617EE5C4DEC7A ] C:\WINDOWS\Temp\inv1_tmp\Tape_Quantum\pvtapeupg.exe
19:53:35.0069 7888 C:\WINDOWS\Temp\inv1_tmp\Tape_Quantum\pvtapeupg.exe - ok
19:53:35.0100 7888 [ 3050F5A2FA6F705A6D803DA9194525B4 ] C:\WINDOWS\Temp\inv1_tmp\Tape_Quantum\QntmScsi.DLL
19:53:35.0100 7888 C:\WINDOWS\Temp\inv1_tmp\Tape_Quantum\QntmScsi.DLL - ok
19:53:35.0116 7888 [ 651C3FCF71E221D29A397F53507A3420 ] C:\WINDOWS\Temp\inv1_tmp\Tape_Prostor\DUP.exe
19:53:35.0116 7888 C:\WINDOWS\Temp\inv1_tmp\Tape_Prostor\DUP.exe - ok
19:53:35.0116 7888 [ 39A592F9CEEE34DA955FFA7694A2DF5B ] C:\WINDOWS\WinSxS\x86_Microsoft.Windows.GdiPlus_6595b64144ccf1df_1.0.6002.22791_x-ww_C8DFF154\GdiPlus.dll
19:53:35.0116 7888 C:\WINDOWS\WinSxS\x86_Microsoft.Windows.GdiPlus_6595b64144ccf1df_1.0.6002.22791_x-ww_C8DFF154\GdiPlus.dll - ok
19:53:35.0131 7888 [ D934C874343449FBF8BE8F621B084A59 ] C:\WINDOWS\system32\cscript.exe
19:53:35.0131 7888 C:\WINDOWS\system32\cscript.exe - ok
19:53:35.0131 7888 [ 3B0B450C71597375B4F796C20586190D ] C:\WINDOWS\system32\vbscript.dll
19:53:35.0131 7888 C:\WINDOWS\system32\vbscript.dll - ok
19:53:35.0163 7888 [ C70382FDC253239CB423A68D8A10BF71 ] C:\WINDOWS\system32\msisip.dll
19:53:35.0163 7888 C:\WINDOWS\system32\msisip.dll - ok
19:53:35.0163 7888 [ E8DF8A19CEA4FED4286814C90D0A45D4 ] C:\WINDOWS\system32\wshext.dll
19:53:35.0163 7888 C:\WINDOWS\system32\wshext.dll - ok
19:53:35.0178 7888 [ 8AE6929D502FB4748ED09AE79D3D13FE ] C:\WINDOWS\system32\scrobj.dll
19:53:35.0178 7888 C:\WINDOWS\system32\scrobj.dll - ok
19:53:35.0178 7888 [ AD7ECFDA166C97B270DCD05C205130EE ] C:\WINDOWS\system32\wshom.ocx
19:53:35.0178 7888 C:\WINDOWS\system32\wshom.ocx - ok
19:53:35.0178 7888 [ A52DCC48EF4B7056A1F82EC6EC31B263 ] C:\WINDOWS\system32\scrrun.dll
19:53:35.0178 7888 C:\WINDOWS\system32\scrrun.dll - ok
19:53:35.0194 7888 [ F3AF16F9EFFE18B74A6860AB3990E31E ] C:\WINDOWS\system32\mfc42.dll
19:53:35.0194 7888 C:\WINDOWS\system32\mfc42.dll - ok
19:53:35.0210 7888 [ 73001820343881C2F19583FAFA98EC8F ] C:\WINDOWS\system32\wbem\wbemdisp.dll
19:53:35.0210 7888 C:\WINDOWS\system32\wbem\wbemdisp.dll - ok
19:53:35.0225 7888 [ 7A9D9707855294CBC6D59DD240B1B0A3 ] C:\WINDOWS\system32\wbem\stdprov.dll
19:53:35.0225 7888 C:\WINDOWS\system32\wbem\stdprov.dll - ok
19:53:35.0225 7888 [ 319611C6466BCA80FB4B74A8518946DF ] C:\WINDOWS\LTSvc\Interfaces.dll
19:53:35.0225 7888 C:\WINDOWS\LTSvc\Interfaces.dll - ok
19:53:35.0241 7888 [ 68F103240FD98F64C895BB5E46E17953 ] C:\WINDOWS\Temp\inv1_tmp\NIC_Broadcom_FW_5708\32\BMAPI.dll
19:53:35.0241 7888 C:\WINDOWS\Temp\inv1_tmp\NIC_Broadcom_FW_5708\32\BMAPI.dll - ok
19:53:35.0241 7888 [ 57D50946744D795CAFC626B2A4E0C210 ] C:\WINDOWS\Temp\inv1_tmp\NIC_Broadcom_FW_5708\32\fwInvn32.exe
19:53:35.0241 7888 C:\WINDOWS\Temp\inv1_tmp\NIC_Broadcom_FW_5708\32\fwInvn32.exe - ok
19:53:35.0288 7888 [ 68F103240FD98F64C895BB5E46E17953 ] C:\WINDOWS\Temp\inv1_tmp\NIC_Broadcom_FW_5709\32\BMAPI.dll
19:53:35.0288 7888 C:\WINDOWS\Temp\inv1_tmp\NIC_Broadcom_FW_5709\32\BMAPI.dll - ok
19:53:35.0288 7888 [ 57D50946744D795CAFC626B2A4E0C210 ] C:\WINDOWS\Temp\inv1_tmp\NIC_Broadcom_FW_5709\32\fwInvn32.exe
19:53:35.0288 7888 C:\WINDOWS\Temp\inv1_tmp\NIC_Broadcom_FW_5709\32\fwInvn32.exe - ok
19:53:35.0303 7888 [ 68F103240FD98F64C895BB5E46E17953 ] C:\WINDOWS\Temp\inv1_tmp\NIC_Broadcom_FW_5722\32\BMAPI.dll
19:53:35.0303 7888 C:\WINDOWS\Temp\inv1_tmp\NIC_Broadcom_FW_5722\32\BMAPI.dll - ok
19:53:35.0303 7888 [ 57D50946744D795CAFC626B2A4E0C210 ] C:\WINDOWS\Temp\inv1_tmp\NIC_Broadcom_FW_5722\32\fwInvn32.exe
19:53:35.0303 7888 C:\WINDOWS\Temp\inv1_tmp\NIC_Broadcom_FW_5722\32\fwInvn32.exe - ok
19:53:35.0303 7888 [ 68F103240FD98F64C895BB5E46E17953 ] C:\WINDOWS\Temp\inv1_tmp\NIC_Broadcom_FW_577710\32\BMAPI.dll
19:53:35.0303 7888 C:\WINDOWS\Temp\inv1_tmp\NIC_Broadcom_FW_577710\32\BMAPI.dll - ok
19:53:35.0319 7888 [ 57D50946744D795CAFC626B2A4E0C210 ] C:\WINDOWS\Temp\inv1_tmp\NIC_Broadcom_FW_577710\32\fwInvn32.exe
19:53:35.0319 7888 C:\WINDOWS\Temp\inv1_tmp\NIC_Broadcom_FW_577710\32\fwInvn32.exe - ok
19:53:35.0335 7888 [ E5B9005532437BA6AB73DE1642D3CA4D ] C:\WINDOWS\system32\msutb.dll
19:53:35.0335 7888 C:\WINDOWS\system32\msutb.dll - ok
19:53:35.0350 7888 [ 449CEE6ED95B047C5E115E3594FE0C61 ] C:\WINDOWS\system32\MSCTF.dll
19:53:35.0350 7888 C:\WINDOWS\system32\MSCTF.dll - ok
19:53:35.0350 7888 [ 3DE20625F32BDC81E73C430E07F1CEB0 ] C:\WINDOWS\system32\linkinfo.dll
19:53:35.0350 7888 C:\WINDOWS\system32\linkinfo.dll - ok
19:53:35.0366 7888 [ 8ABAD57604371E5975D631242173D947 ] C:\WINDOWS\system32\ntshrui.dll
19:53:35.0366 7888 C:\WINDOWS\system32\ntshrui.dll - ok
19:53:35.0366 7888 [ 72B03076520DDA78C2AAA1C71464683B ] C:\Program Files\Broadcom\BACS\BacsTray.exe
19:53:35.0366 7888 C:\Program Files\Broadcom\BACS\BacsTray.exe - ok
19:53:35.0397 7888 [ 742AE2BD690416D825B6C0C2A1F99663 ] C:\WINDOWS\system32\regsvr32.exe
19:53:35.0397 7888 C:\WINDOWS\system32\regsvr32.exe - ok
19:53:35.0413 7888 [ 0140CAFA98802591EC932CFE6AB32306 ] C:\WINDOWS\system32\mqrt.dll
19:53:35.0413 7888 C:\WINDOWS\system32\mqrt.dll - ok
19:53:35.0413 7888 [ 0751C82143C6DFCFE01A2C479DCC461B ] C:\Program Files\Sophos\AutoUpdate\ALMon.exe
19:53:35.0413 7888 C:\Program Files\Sophos\AutoUpdate\ALMon.exe - ok
19:53:35.0428 7888 [ 6D787FDF93DE266CE25378FB362DF011 ] C:\PROGRA~1\COMMON~1\MICROS~1\DW\DWTRIG20.EXE
19:53:35.0428 7888 C:\PROGRA~1\COMMON~1\MICROS~1\DW\DWTRIG20.EXE - ok
19:53:35.0428 7888 [ F35A584E947A5B401FEB0FE01DB4A0D7 ] C:\Program Files\Sophos\AutoUpdate\MFC71.dll
19:53:35.0428 7888 C:\Program Files\Sophos\AutoUpdate\MFC71.dll - ok
19:53:35.0428 7888 [ 3A7B9D235519F50E1105C783949B0F70 ] C:\WINDOWS\system32\ctfmon.exe
19:53:35.0428 7888 C:\WINDOWS\system32\ctfmon.exe - ok
19:53:35.0460 7888 [ 0B58E8A2383BAF95E26E505DAFB00240 ] C:\Program Files\Sophos\AutoUpdate\swlocale.dll
19:53:35.0460 7888 C:\Program Files\Sophos\AutoUpdate\swlocale.dll - ok
19:53:35.0460 7888 [ EF84E179DF3B66B824743986BE967D6D ] C:\WINDOWS\system32\oobechk.exe
19:53:35.0460 7888 C:\WINDOWS\system32\oobechk.exe - ok
19:53:35.0475 7888 [ 061B331D0EA7B905B9929E22E2CB4636 ] C:\WINDOWS\ime\SPTIP.dll
19:53:35.0475 7888 C:\WINDOWS\ime\SPTIP.dll - ok
19:53:35.0475 7888 [ 8E0AFEDDCDEB64C40C7434C90636D01E ] C:\Program Files\Sophos\AutoUpdate\en\almonres.dll
19:53:35.0475 7888 C:\Program Files\Sophos\AutoUpdate\en\almonres.dll - ok
19:53:35.0491 7888 [ 15EEFAD4953E1665B9F8947C79EA35E8 ] C:\Program Files\Sophos\Sophos Anti-Virus\DesktopMessaging.dll
19:53:35.0491 7888 C:\Program Files\Sophos\Sophos Anti-Virus\DesktopMessaging.dll - ok
19:53:35.0491 7888 [ 0DF6CA15DAEDECA84E22704557801307 ] C:\Program Files\Sophos\Sophos Anti-Virus\SavNeutralRes.dll
19:53:35.0491 7888 C:\Program Files\Sophos\Sophos Anti-Virus\SavNeutralRes.dll - ok
19:53:35.0522 7888 [ 673CBC1DD9B5926F8EFD82C69302B258 ] C:\Program Files\Sophos\Sophos Anti-Virus\SavResEng.dll
19:53:35.0522 7888 C:\Program Files\Sophos\Sophos Anti-Virus\SavResEng.dll - ok
19:53:35.0522 7888 [ 9EB4074100B34048B3766DB9379BCC5E ] C:\Program Files\Sophos\Sophos Anti-Virus\Web Control\WebControlMessaging.dll
19:53:35.0522 7888 C:\Program Files\Sophos\Sophos Anti-Virus\Web Control\WebControlMessaging.dll - ok
19:53:35.0538 7888 [ 6F3714313478EEC0AEC8D2255EAC80BA ] C:\Program Files\Sophos\Sophos Anti-Virus\SavProxy.exe
19:53:35.0538 7888 C:\Program Files\Sophos\Sophos Anti-Virus\SavProxy.exe - ok
19:53:35.0538 7888 [ CC8915DB4E33E8FB29CA0D2DBF75306E ] C:\WINDOWS\system32\webcheck.dll
19:53:35.0538 7888 C:\WINDOWS\system32\webcheck.dll - ok
19:53:35.0553 7888 [ 52688140113D976A131EE616CAEF59AF ] C:\WINDOWS\system32\stobject.dll
19:53:35.0553 7888 C:\WINDOWS\system32\stobject.dll - ok
19:53:35.0585 7888 [ 41CADD076268C89A2A0EEF448F824FFD ] C:\WINDOWS\system32\batmeter.dll
19:53:35.0585 7888 C:\WINDOWS\system32\batmeter.dll - ok
19:53:35.0585 7888 [ A0866ABBB4F00E221D25F2FACE03367E ] C:\WINDOWS\system32\netcfgx.dll
19:53:35.0585 7888 C:\WINDOWS\system32\netcfgx.dll - ok
19:53:35.0585 7888 [ E2B2ADB1DDEED35D9075AFCCD0E61DD1 ] C:\WINDOWS\system32\rasdlg.dll
19:53:35.0585 7888 C:\WINDOWS\system32\rasdlg.dll - ok
19:53:35.0600 7888 [ CE1FCAF92F06BB8549C9E1B8605B90CC ] C:\WINDOWS\system32\tapisrv.dll
19:53:35.0600 7888 C:\WINDOWS\system32\tapisrv.dll - ok
19:53:35.0600 7888 [ 02BC610CC90CA5415EB2C9409E77D583 ] C:\WINDOWS\system32\rasmans.dll
19:53:35.0600 7888 C:\WINDOWS\system32\rasmans.dll - ok
19:53:35.0616 7888 [ 98698A99AFE684C7AAFB1C11E617F47C ] C:\WINDOWS\system32\rasmontr.dll
19:53:35.0616 7888 C:\WINDOWS\system32\rasmontr.dll - ok
19:53:35.0647 7888 [ 50915857E9B5B34F152C99D10ED878B7 ] C:\WINDOWS\system32\netsh.exe
19:53:35.0647 7888 C:\WINDOWS\system32\netsh.exe - ok
19:53:35.0647 7888 [ 8C79F3C2C8586D4BD997E6EC0BDC56E0 ] C:\WINDOWS\system32\rastapi.dll
19:53:35.0647 7888 C:\WINDOWS\system32\rastapi.dll - ok
19:53:35.0647 7888 [ 02C41CCB1EFD4A36533ECB69CE7C81C2 ] C:\WINDOWS\system32\unimdm.tsp
19:53:35.0647 7888 C:\WINDOWS\system32\unimdm.tsp - ok
19:53:35.0663 7888 [ C69BA3B6A75ADBD20946E87387D11874 ] C:\WINDOWS\system32\uniplat.dll
19:53:35.0663 7888 C:\WINDOWS\system32\uniplat.dll - ok
19:53:35.0663 7888 [ DC9F79A6B1A8EB1D3056E70933BF1DF0 ] C:\WINDOWS\system32\kmddsp.tsp
19:53:35.0663 7888 C:\WINDOWS\system32\kmddsp.tsp - ok
19:53:35.0694 7888 [ 23BECE03051B8B9A4B16F61B4436C21B ] C:\WINDOWS\system32\ndptsp.tsp
19:53:35.0694 7888 C:\WINDOWS\system32\ndptsp.tsp - ok
19:53:35.0694 7888 [ 4AC52211F602E64FB9C6B6FACC32FC51 ] C:\WINDOWS\system32\ipconf.tsp
19:53:35.0694 7888 C:\WINDOWS\system32\ipconf.tsp - ok
19:53:35.0710 7888 [ 2EF11AEA425FC61FF1DAFC1F0969C8B7 ] C:\WINDOWS\system32\h323.tsp
19:53:35.0710 7888 C:\WINDOWS\system32\h323.tsp - ok
19:53:35.0710 7888 [ E4825AEF9A47B82B5514521180E10FFF ] C:\WINDOWS\system32\hidphone.tsp
19:53:35.0710 7888 C:\WINDOWS\system32\hidphone.tsp - ok
19:53:35.0725 7888 [ DC84E1BDD28EBC80B7AD183E78025578 ] C:\WINDOWS\system32\rasppp.dll
19:53:35.0725 7888 C:\WINDOWS\system32\rasppp.dll - ok
19:53:35.0725 7888 [ 8813BC13AE958D6D10F5ACC0EE32418B ] C:\WINDOWS\system32\ipbootp.dll
19:53:35.0725 7888 C:\WINDOWS\system32\ipbootp.dll - ok
19:53:35.0756 7888 [ 2094BC9A0FC9C0E15EEA5F4A9581DD14 ] C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\pdfshell.dll
19:53:35.0756 7888 C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\pdfshell.dll - ok
19:53:35.0756 7888 [ AD6B1A69B0CCCF27A792F4C00740D24D ] C:\Documents and Settings\npalinchik\Desktop\tdsskiller.exe
19:53:35.0756 7888 C:\Documents and Settings\npalinchik\Desktop\tdsskiller.exe - ok
19:53:35.0756 7888 [ 2A8681AEA24003040CA7D677BE9F1702 ] C:\WINDOWS\system32\drivers\49977686.sys
19:53:35.0756 7888 C:\WINDOWS\system32\drivers\49977686.sys - ok
19:53:35.0772 7888 [ 695A76BEE07F8EB8BC035ADB8EB9F0D9 ] C:\Program Files\Exchsrvr\bin\msgfilter.dll
19:53:35.0772 7888 C:\Program Files\Exchsrvr\bin\msgfilter.dll - ok
19:53:35.0772 7888 [ AD813DA08EC1FEF5BA1A0F86B418E591 ] C:\Program Files\Exchsrvr\bin\bin\MSCFV2\MSExchange.UceContentFilter.Dll
19:53:35.0772 7888 C:\Program Files\Exchsrvr\bin\bin\MSCFV2\MSExchange.UceContentFilter.Dll - ok
19:53:35.0819 7888 [ BC1F43C735F5B26216818E34704F593D ] C:\PROGRA~1\Exchsrvr\bin\onsubmit.dll
19:53:35.0819 7888 C:\PROGRA~1\Exchsrvr\bin\onsubmit.dll - ok
19:53:35.0819 7888 [ 7992ABD6EFBFC18E667C64C2951C3BD5 ] C:\PROGRA~1\Exchsrvr\bin\MiscAt.dll
19:53:35.0819 7888 C:\PROGRA~1\Exchsrvr\bin\MiscAt.dll - ok
19:53:35.0819 7888 [ F0061DF8408A262359174DB5D6C39AEB ] C:\PROGRA~1\Exchsrvr\bin\phatcat.dll
19:53:35.0819 7888 C:\PROGRA~1\Exchsrvr\bin\phatcat.dll - ok
19:53:35.0835 7888 [ CCF737C055959A796710B126A5973FF2 ] C:\Program Files\Sophos\AutoUpdate\inetconn.dll
19:53:35.0835 7888 C:\Program Files\Sophos\AutoUpdate\inetconn.dll - ok
19:53:35.0835 7888 [ 1A98438FDF13B6ADB9D16F1EF39EB9CB ] C:\Program Files\Sophos\AutoUpdate\Cache\sophos_autoupdate1.dir\ALUpdate.exe
19:53:35.0835 7888 C:\Program Files\Sophos\AutoUpdate\Cache\sophos_autoupdate1.dir\ALUpdate.exe - ok
19:53:35.0850 7888 [ E1AB947335F81E396BF8FB242F576108 ] C:\Program Files\Sophos\AutoUpdate\Cache\sophos_autoupdate1.dir\crypto.dll
19:53:35.0850 7888 C:\Program Files\Sophos\AutoUpdate\Cache\sophos_autoupdate1.dir\crypto.dll - ok
19:53:35.0866 7888 [ A94DC60A90EFD7A35C36D971E3EE7470 ] C:\Program Files\Sophos\AutoUpdate\Cache\sophos_autoupdate1.dir\MSVCP71.DLL
19:53:35.0866 7888 C:\Program Files\Sophos\AutoUpdate\Cache\sophos_autoupdate1.dir\MSVCP71.DLL - ok
19:53:35.0881 7888 [ CA2F560921B7B8BE1CF555A5A18D54C3 ] C:\Program Files\Sophos\AutoUpdate\Cache\sophos_autoupdate1.dir\MSVCR71.DLL
19:53:35.0881 7888 C:\Program Files\Sophos\AutoUpdate\Cache\sophos_autoupdate1.dir\MSVCR71.DLL - ok
19:53:35.0881 7888 [ 30268A5464306C1BA92FABA37AF32D5E ] C:\Program Files\Sophos\AutoUpdate\Cache\sophos_autoupdate1.dir\ChannelUpdater.dll
19:53:35.0881 7888 C:\Program Files\Sophos\AutoUpdate\Cache\sophos_autoupdate1.dir\ChannelUpdater.dll - ok
19:53:35.0897 7888 [ 17614C687D390517D09C21BA9FA067D9 ] C:\Program Files\Sophos\AutoUpdate\Cache\sophos_autoupdate1.dir\retailer.dll
19:53:35.0897 7888 C:\Program Files\Sophos\AutoUpdate\Cache\sophos_autoupdate1.dir\retailer.dll - ok
19:53:35.0897 7888 [ E3BE9B03716FE33E0402D9B29FD8B0E0 ] C:\Program Files\Sophos\AutoUpdate\Cache\sophos_autoupdate1.dir\xmlcpp.dll
19:53:35.0897 7888 C:\Program Files\Sophos\AutoUpdate\Cache\sophos_autoupdate1.dir\xmlcpp.dll - ok
19:53:35.0928 7888 [ D53B5743E6428563F45BF33B14BFD8CE ] C:\Program Files\Sophos\AutoUpdate\Cache\sophos_autoupdate1.dir\libeay32.dll
19:53:35.0928 7888 C:\Program Files\Sophos\AutoUpdate\Cache\sophos_autoupdate1.dir\libeay32.dll - ok
19:53:35.0928 7888 [ AE9DA64F046B851239D47ECBE865C4ED ] C:\Program Files\Sophos\AutoUpdate\Cache\sophos_autoupdate1.dir\SharedRes.dll
19:53:35.0928 7888 C:\Program Files\Sophos\AutoUpdate\Cache\sophos_autoupdate1.dir\SharedRes.dll - ok
19:53:35.0944 7888 [ 896A370327447A24D9233905893652D3 ] C:\Program Files\Sophos\AutoUpdate\Cache\sophos_autoupdate1.dir\libcurl.dll
19:53:35.0944 7888 C:\Program Files\Sophos\AutoUpdate\Cache\sophos_autoupdate1.dir\libcurl.dll - ok
19:53:35.0944 7888 [ EBFD098DD4891FAFC0437AEF48A45906 ] C:\Program Files\Sophos\AutoUpdate\Cache\sophos_autoupdate1.dir\CidSync.dll
19:53:35.0944 7888 C:\Program Files\Sophos\AutoUpdate\Cache\sophos_autoupdate1.dir\CidSync.dll - ok
19:53:35.0944 7888 ============================================================
19:53:35.0944 7888 Scan finished
19:53:35.0944 7888 ============================================================
19:53:36.0053 4448 Detected object count: 21
19:53:36.0053 4448 Actual detected object count: 21
19:55:37.0839 4448 bbagent ( UnsignedFile.Multi.Generic ) - skipped by user
19:55:37.0839 4448 bbagent ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:55:37.0854 4448 EXIFS ( UnsignedFile.Multi.Generic ) - skipped by user
19:55:37.0854 4448 EXIFS ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:55:37.0854 4448 LTService ( UnsignedFile.Multi.Generic ) - skipped by user
19:55:37.0854 4448 LTService ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:55:37.0854 4448 LTSvcMon ( UnsignedFile.Multi.Generic ) - skipped by user
19:55:37.0854 4448 LTSvcMon ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:55:37.0854 4448 MMRot ( UnsignedFile.Multi.Generic ) - skipped by user
19:55:37.0854 4448 MMRot ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:55:37.0854 4448 mr2kserv ( UnsignedFile.Multi.Generic ) - skipped by user
19:55:37.0854 4448 mr2kserv ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:55:37.0854 4448 MSExchangeES ( UnsignedFile.Multi.Generic ) - skipped by user
19:55:37.0854 4448 MSExchangeES ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:55:37.0854 4448 MSExchangeIS ( UnsignedFile.Multi.Generic ) - skipped by user
19:55:37.0854 4448 MSExchangeIS ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:55:37.0870 4448 MSExchangeMGMT ( UnsignedFile.Multi.Generic ) - skipped by user
19:55:37.0870 4448 MSExchangeMGMT ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:55:37.0901 4448 MSExchangeMTA ( UnsignedFile.Multi.Generic ) - skipped by user
19:55:37.0901 4448 MSExchangeMTA ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:55:37.0901 4448 MSExchangeSA ( UnsignedFile.Multi.Generic ) - skipped by user
19:55:37.0901 4448 MSExchangeSA ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:55:37.0901 4448 MSExchangeSRS ( UnsignedFile.Multi.Generic ) - skipped by user
19:55:37.0901 4448 MSExchangeSRS ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:55:37.0917 4448 MSSEARCH ( UnsignedFile.Multi.Generic ) - skipped by user
19:55:37.0917 4448 MSSEARCH ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:55:37.0917 4448 NetBalancerService ( UnsignedFile.Multi.Generic ) - skipped by user
19:55:37.0917 4448 NetBalancerService ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:55:37.0917 4448 PMScanner ( UnsignedFile.Multi.Generic ) - skipped by user
19:55:37.0917 4448 PMScanner ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:55:37.0917 4448 SavexSrvc ( UnsignedFile.Multi.Generic ) - skipped by user
19:55:37.0917 4448 SavexSrvc ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:55:37.0917 4448 SavexWebAgent ( UnsignedFile.Multi.Generic ) - skipped by user
19:55:37.0917 4448 SavexWebAgent ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:55:37.0917 4448 Sophos Agent ( UnsignedFile.Multi.Generic ) - skipped by user
19:55:37.0917 4448 Sophos Agent ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:55:37.0948 4448 Sophos Certification Manager ( UnsignedFile.Multi.Generic ) - skipped by user
19:55:37.0948 4448 Sophos Certification Manager ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:55:37.0948 4448 Sophos Management Service ( UnsignedFile.Multi.Generic ) - skipped by user
19:55:37.0948 4448 Sophos Management Service ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:55:37.0948 4448 Sophos Message Router ( UnsignedFile.Multi.Generic ) - skipped by user
19:55:37.0948 4448 Sophos Message Router ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:55:47.0025 6956 Deinitialize success

#13 pnasty101

pnasty101
  • Topic Starter

  • Members
  • 11 posts
  • OFFLINE
  •  
  • Local time:02:16 PM

Posted 15 September 2012 - 07:23 PM

Security Check

Results of screen317's Security Check version 0.99.50
Service Pack 2 x86
Internet Explorer 8 Out of date!
``````````````Antivirus/Firewall Check:``````````````
Windows Security Center service is not running! This report may not be accurate!
Please wait while WMIC is being installed.
WMI entry may not exist for antivirus; attempting automatic update.
`````````Anti-malware/Other Utilities Check:`````````
MVPS Hosts File
CCleaner
Adobe Reader 8 Adobe Reader out of Date!
````````Process Check: objlist.exe by Laurent````````
Sophos Sophos Anti-Virus SAVAdminService.exe
Sophos Sophos Anti-Virus Web Control swc_service.exe
Sophos Sophos Anti-Virus Web Intelligence swi_service.exe
`````````````````System Health check`````````````````
Total Fragmentation on Drive C:: 38% Defragment your hard drive soon! (Do NOT defrag if SSD!)
````````````````````End of Log``````````````````````



Farbar Service Scanner

Farbar Service Scanner Version: 06-08-2012
Ran by npalinchik (administrator) on 15-09-2012 at 19:59:21
Running from "C:\Documents and Settings\npalinchik\Desktop"
Microsoft® Windows® Server 2003, Standard Edition Service Pack 2 (X86)
Boot Mode: Normal
****************************************************************

Internet Services:
============
Nsi Service is not running. Checking service configuration:
Checking Start type: ATTENTION!=====> Unable to open Nsi registry key. The service key does not exist.
Checking ImagePath: ATTENTION!=====> Unable to open Nsi registry key. The service key does not exist.
Checking ServiceDll: ATTENTION!=====> Unable to open Nsi registry key. The service key does not exist.

nsiproxy Service is not running. Checking service configuration:
Checking Start type: ATTENTION!=====> Unable to open nsiproxy registry key. The service key does not exist.
Checking ImagePath: ATTENTION!=====> Unable to open nsiproxy registry key. The service key does not exist.

tdx Service is not running. Checking service configuration:
Checking Start type: ATTENTION!=====> Unable to open tdx registry key. The service key does not exist.
Checking ImagePath: ATTENTION!=====> Unable to open tdx registry key. The service key does not exist.


Connection Status:
==============
Localhost is accessible.
LAN connected.
Google IP is accessible.
Google.com is accessible.
Yahoo IP is accessible.
Yahoo.com is accessible.


Windows Firewall:
=============
mpsdrv Service is not running. Checking service configuration:
Checking Start type: ATTENTION!=====> Unable to open mpsdrv registry key. The service key does not exist.
Checking ImagePath: ATTENTION!=====> Unable to open mpsdrv registry key. The service key does not exist.

MpsSvc Service is not running. Checking service configuration:
Checking Start type: ATTENTION!=====> Unable to open MpsSvc registry key. The service key does not exist.
Checking ImagePath: ATTENTION!=====> Unable to open MpsSvc registry key. The service key does not exist.
Checking ServiceDll: ATTENTION!=====> Unable to open MpsSvc registry key. The service key does not exist.

bfe Service is not running. Checking service configuration:
Checking Start type: ATTENTION!=====> Unable to open bfe registry key. The service key does not exist.
Checking ImagePath: ATTENTION!=====> Unable to open bfe registry key. The service key does not exist.
Checking ServiceDll: ATTENTION!=====> Unable to open bfe registry key. The service key does not exist.


Firewall Disabled Policy:
==================
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall"=DWORD:0


System Restore:
============
SDRSVC Service is not running. Checking service configuration:
Checking Start type: ATTENTION!=====> Unable to open SDRSVC registry key. The service key does not exist.
Checking ImagePath: ATTENTION!=====> Unable to open SDRSVC registry key. The service key does not exist.
Checking ServiceDll: ATTENTION!=====> Unable to open SDRSVC registry key. The service key does not exist.


System Restore Disabled Policy:
========================


Security Center:
============
wscsvc Service is not running. Checking service configuration:
Checking Start type: ATTENTION!=====> Unable to open wscsvc registry key. The service key does not exist.
Checking ImagePath: ATTENTION!=====> Unable to open wscsvc registry key. The service key does not exist.
Checking ServiceDll: ATTENTION!=====> Unable to open wscsvc registry key. The service key does not exist.


Windows Update:
============

Windows Autoupdate Disabled Policy:
============================
[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate\AU]
"NoAutoUpdate"=DWORD:1


Windows Defender:
==============
WinDefend Service is not running. Checking service configuration:
Checking Start type: ATTENTION!=====> Unable to open WinDefend registry key. The service key does not exist.
Checking ImagePath: ATTENTION!=====> Unable to open WinDefend registry key. The service key does not exist.
Checking ServiceDll: ATTENTION!=====> Unable to open WinDefend registry key. The service key does not exist.


Other Services:
==============


File Check:
========

ATTENTION!=====> C:\WINDOWS\system32\nsisvc.dll FILE IS MISSING AND SHOULD BE RESTORED.


ATTENTION!=====> C:\WINDOWS\system32\Drivers\nsiproxy.sys FILE IS MISSING AND SHOULD BE RESTORED.

C:\WINDOWS\system32\Drivers\afd.sys
[2007-03-22 16:28] - [2011-12-27 10:27] - 0150528 ____A (Microsoft Corporation) 1352E45B12732172655C445A57E20991


ATTENTION!=====> C:\WINDOWS\system32\Drivers\tdx.sys FILE IS MISSING AND SHOULD BE RESTORED.

C:\WINDOWS\system32\Drivers\tcpip.sys
[2007-03-22 16:29] - [2009-08-15 04:27] - 0400896 ____A (Microsoft Corporation) 2617E35A208F1570D6928C13E63019FF

C:\WINDOWS\system32\dnsrslvr.dll
[2009-04-20 14:38] - [2009-04-20 14:38] - 0045568 ____A (Microsoft Corporation) E927F3B46F85D934C8F420FE08593D1B


ATTENTION!=====> C:\WINDOWS\system32\mpssvc.dll FILE IS MISSING AND SHOULD BE RESTORED.


ATTENTION!=====> C:\WINDOWS\system32\bfe.dll FILE IS MISSING AND SHOULD BE RESTORED.


ATTENTION!=====> C:\WINDOWS\system32\Drivers\mpsdrv.sys FILE IS MISSING AND SHOULD BE RESTORED.


ATTENTION!=====> C:\WINDOWS\system32\SDRSVC.dll FILE IS MISSING AND SHOULD BE RESTORED.

C:\WINDOWS\system32\vssvc.exe
[2007-03-22 16:29] - [2007-02-18 08:00] - 0836096 ____A (Microsoft Corporation) 74A6820792E5BCA5EE4D0CC4595C6916


ATTENTION!=====> C:\WINDOWS\system32\wscsvc.dll FILE IS MISSING AND SHOULD BE RESTORED.

C:\WINDOWS\system32\wbem\WMIsvc.dll
[2007-03-22 17:38] - [2007-02-18 08:00] - 0143360 ____A (Microsoft Corporation) F8D5B9C1A26C933B9EA7740BAB35BCF5

C:\WINDOWS\system32\wuaueng.dll => MD5 is legit
C:\WINDOWS\system32\qmgr.dll
[2007-03-22 17:40] - [2007-02-18 08:00] - 0380928 ____A (Microsoft Corporation) 9D7A318B2C7AE51E9D5374F8EEDE856C

C:\WINDOWS\system32\es.dll
[2009-01-21 02:28] - [2008-04-29 17:33] - 0247296 ____A (Microsoft Corporation) C17C56E91045E14DF45D62DD89AED50C

C:\WINDOWS\system32\cryptsvc.dll
[2007-03-22 16:28] - [2007-02-18 08:00] - 0056320 ____A (Microsoft Corporation) FEB85DA744DD3F41A427CF6D2BC04FE4


ATTENTION!=====> C:\Program Files\Windows Defender\MpSvc.dll FILE IS MISSING AND SHOULD BE RESTORED.

C:\WINDOWS\system32\ipnathlp.dll
[2007-03-22 16:28] - [2007-02-18 08:00] - 0343552 ____A (Microsoft Corporation) 27C6B8C2AFED21C10429A56DB95735F6

C:\WINDOWS\system32\svchost.exe
[2007-03-22 16:29] - [2007-02-18 08:00] - 0014848 ____A (Microsoft Corporation) C09CCFE81DEC9B162533D7184D705682

C:\WINDOWS\system32\rpcss.dll
[2009-04-15 23:53] - [2009-02-09 07:02] - 0486912 ____A (Microsoft Corporation) 305A8757D66B5D416B47C497C27A01FE



**** End of log ****


MiniToolBox

MiniToolBox by Farbar Version: 23-07-2012
Ran by npalinchik (administrator) on 15-09-2012 at 20:00:55
Microsoft® Windows® Server 2003, Standard Edition Service Pack 2 (X86)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================


Windows IP Configuration



Successfully flushed the DNS Resolver Cache.


========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.
========================= Hosts content: =================================


127.0.0.1 localhost
127.0.0.1 www.007guard.com
127.0.0.1 007guard.com
127.0.0.1 008i.com
127.0.0.1 www.008k.com
127.0.0.1 008k.com
127.0.0.1 www.00hq.com
127.0.0.1 00hq.com
127.0.0.1 010402.com
127.0.0.1 www.032439.com
127.0.0.1 032439.com
127.0.0.1 www.0scan.com
127.0.0.1 0scan.com
127.0.0.1 www.1000gratisproben.com
127.0.0.1 1000gratisproben.com
127.0.0.1 1001namen.com
127.0.0.1 www.1001namen.com
127.0.0.1 100888290cs.com
127.0.0.1 www.100888290cs.com

There are 15256 more lines starting with "127.0.0.1"

========================= IP Configuration: ================================

Broadcom BCM5708C NetXtreme II GigE (NDIS VBD Client) = Local Area Connection (Connected)
Broadcom BCM5708C NetXtreme II GigE (NDIS VBD Client) = Local Area Connection 2 (Media disconnected)


# ----------------------------------
# Interface IP Configuration
# ----------------------------------
pushd interface ip


# Interface IP Configuration for "Local Area Connection"

set address name="Local Area Connection" source=static addr=192.168.254.13 mask=255.255.255.0
set address name="Local Area Connection" gateway=192.168.254.250 gwmetric=0
set dns name="Local Area Connection" source=static addr=192.168.254.13 register=PRIMARY
set wins name="Local Area Connection" source=static addr=none

# Interface IP Configuration for "Local Area Connection 2"

set address name="Local Area Connection 2" source=dhcp
set dns name="Local Area Connection 2" source=dhcp register=PRIMARY
set wins name="Local Area Connection 2" source=dhcp


popd
# End of interface IP configuration




Windows IP Configuration



Host Name . . . . . . . . . . . . : SERVER01

Primary Dns Suffix . . . . . . . : PDS2000.local

Node Type . . . . . . . . . . . . : Unknown

IP Routing Enabled. . . . . . . . : No

WINS Proxy Enabled. . . . . . . . : No

DNS Suffix Search List. . . . . . : PDS2000.local



Ethernet adapter Local Area Connection:



Connection-specific DNS Suffix . :

Description . . . . . . . . . . . : Broadcom BCM5708C NetXtreme II GigE (NDIS VBD Client)

Physical Address. . . . . . . . . : 00-22-19-AA-AB-DC

DHCP Enabled. . . . . . . . . . . : No

IP Address. . . . . . . . . . . . : 192.168.254.13

Subnet Mask . . . . . . . . . . . : 255.255.255.0

Default Gateway . . . . . . . . . : 192.168.254.250

DNS Servers . . . . . . . . . . . : 192.168.254.13



Ethernet adapter Local Area Connection 2:



Connection-specific DNS Suffix . :

Description . . . . . . . . . . . : Broadcom BCM5708C NetXtreme II GigE (NDIS VBD Client) #2

Physical Address. . . . . . . . . : 00-22-19-AA-AB-DE

DHCP Enabled. . . . . . . . . . . : Yes

Autoconfiguration Enabled . . . . : Yes

Autoconfiguration IP Address. . . : 169.254.124.123

Subnet Mask . . . . . . . . . . . : 255.255.0.0

Default Gateway . . . . . . . . . :

Server: server01.pds2000.local
Address: 192.168.254.13

Name: google.com
Addresses: 74.125.225.2, 74.125.225.6, 74.125.225.8, 74.125.225.5
74.125.225.14, 74.125.225.4, 74.125.225.1, 74.125.225.3, 74.125.225.9
74.125.225.0, 74.125.225.7



Pinging google.com [74.125.225.6] with 32 bytes of data:



Reply from 74.125.225.6: bytes=32 time=27ms TTL=55

Reply from 74.125.225.6: bytes=32 time=23ms TTL=55



Ping statistics for 74.125.225.6:

Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

Minimum = 23ms, Maximum = 27ms, Average = 25ms

Server: server01.pds2000.local
Address: 192.168.254.13

Name: yahoo.com
Addresses: 72.30.38.140, 98.139.183.24, 98.138.253.109



Pinging yahoo.com [98.139.183.24] with 32 bytes of data:



Reply from 98.139.183.24: bytes=32 time=81ms TTL=51

Reply from 98.139.183.24: bytes=32 time=74ms TTL=51



Ping statistics for 98.139.183.24:

Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

Minimum = 74ms, Maximum = 81ms, Average = 77ms

Server: server01.pds2000.local
Address: 192.168.254.13

Name: bleepingcomputer.com
Address: 208.43.87.2



Pinging bleepingcomputer.com [208.43.87.2] with 32 bytes of data:



Request timed out.

Request timed out.



Ping statistics for 208.43.87.2:

Packets: Sent = 2, Received = 0, Lost = 2 (100% loss),



Pinging 127.0.0.1 with 32 bytes of data:



Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

Reply from 127.0.0.1: bytes=32 time<1ms TTL=128



Ping statistics for 127.0.0.1:

Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

Minimum = 0ms, Maximum = 0ms, Average = 0ms


IPv4 Route Table
===========================================================================
Interface List
0x1 ........................... MS TCP Loopback interface
0x10003 ...00 22 19 aa ab dc ...... Broadcom BCM5708C NetXtreme II GigE (NDIS VBD Client) - NetBalancer Miniport
0x10004 ...00 22 19 aa ab de ...... Broadcom BCM5708C NetXtreme II GigE (NDIS VBD Client) #2 - NetBalancer Miniport
===========================================================================
===========================================================================
Active Routes:
Network Destination Netmask Gateway Interface Metric
0.0.0.0 0.0.0.0 192.168.254.250 192.168.254.13 10
127.0.0.0 255.0.0.0 127.0.0.1 127.0.0.1 1
169.254.0.0 255.255.0.0 169.254.124.123 169.254.124.123 10
169.254.124.123 255.255.255.255 127.0.0.1 127.0.0.1 10
169.254.255.255 255.255.255.255 169.254.124.123 169.254.124.123 10
192.168.254.0 255.255.255.0 192.168.254.13 192.168.254.13 10
192.168.254.13 255.255.255.255 127.0.0.1 127.0.0.1 10
192.168.254.255 255.255.255.255 192.168.254.13 192.168.254.13 10
224.0.0.0 240.0.0.0 169.254.124.123 169.254.124.123 10
224.0.0.0 240.0.0.0 192.168.254.13 192.168.254.13 10
255.255.255.255 255.255.255.255 169.254.124.123 169.254.124.123 1
255.255.255.255 255.255.255.255 192.168.254.13 192.168.254.13 1
Default Gateway: 192.168.254.250
===========================================================================
Persistent Routes:
None
========================= Winsock entries =====================================

Catalog5 01 C:\Windows\System32\mswsock.dll [257024] (Microsoft Corporation)
Catalog5 02 C:\Windows\System32\winrnr.dll [17408] (Microsoft Corporation)
Catalog5 03 C:\Windows\System32\mswsock.dll [257024] (Microsoft Corporation)
ATTENTION: The LibraryPath should be "%SystemRoot%\system32\NLAapi.dll"

Catalog9 01 C:\Documents and Settings\All Users\Application Data\Sophos\Web Intelligence\swi_ifslsp.dll [87104] (Sophos Limited)
Catalog9 02 C:\Documents and Settings\All Users\Application Data\Sophos\Web Intelligence\swi_ifslsp.dll [87104] (Sophos Limited)
Catalog9 03 C:\Windows\system32\mswsock.dll [257024] (Microsoft Corporation)
Catalog9 04 C:\Windows\system32\mswsock.dll [257024] (Microsoft Corporation)
Catalog9 05 C:\Windows\system32\mswsock.dll [257024] (Microsoft Corporation)
Catalog9 06 C:\Windows\system32\mswsock.dll [257024] (Microsoft Corporation)
Catalog9 07 C:\Windows\system32\mswsock.dll [257024] (Microsoft Corporation)
Catalog9 08 C:\Windows\system32\mswsock.dll [257024] (Microsoft Corporation)
Catalog9 09 C:\Windows\system32\mswsock.dll [257024] (Microsoft Corporation)
Catalog9 10 C:\Windows\system32\mswsock.dll [257024] (Microsoft Corporation)
Catalog9 11 C:\Windows\system32\mswsock.dll [257024] (Microsoft Corporation)
Catalog9 12 C:\Windows\system32\mswsock.dll [257024] (Microsoft Corporation)
Catalog9 13 C:\Windows\system32\mswsock.dll [257024] (Microsoft Corporation)
Catalog9 14 C:\Windows\system32\mswsock.dll [257024] (Microsoft Corporation)
Catalog9 15 C:\Windows\system32\mswsock.dll [257024] (Microsoft Corporation)
Catalog9 16 C:\Windows\system32\mswsock.dll [257024] (Microsoft Corporation)
Catalog9 17 C:\Windows\system32\mswsock.dll [257024] (Microsoft Corporation)
Catalog9 18 C:\Documents and Settings\All Users\Application Data\Sophos\Web Intelligence\swi_ifslsp.dll [87104] (Sophos Limited)

========================= Event log errors: ===============================

Application errors:
==================
Error: (09/15/2012 07:51:36 PM) (Source: MSExchangeTransport) (User: )
Description: Sender Id must be configured with a list of trusted mail servers before it can be enabled.

Error: (09/15/2012 07:47:50 PM) (Source: Microsoft Search) (User: )
Description: Performance monitoring for the Gatherer service cannot be initialized, because the counters are not loaded or the shared memory object cannot be opened. This only affects availability of the perfmon counters. Rebooting the system may fix the problem.

Error: (09/15/2012 07:39:33 PM) (Source: MSExchangeAL) (User: )
Description: The Win32 API call 'DsGetDCNameW' returned error code [0x862] The specified component could not be found in the configuration information. The service could not be initialized.
Make sure that the operating system was installed properly.


For more information, click http://www.microsoft.com/contentredirect.asp.

Error: (09/15/2012 07:39:33 PM) (Source: MSExchangeAL) (User: )
Description: The Win32 API call 'DsGetDCNameW' returned error code [0x862] The specified component could not be found in the configuration information. The service could not be initialized.
Make sure that the operating system was installed properly.


For more information, click http://www.microsoft.com/contentredirect.asp.

Error: (09/15/2012 07:39:33 PM) (Source: MSExchangeAL) (User: )
Description: LDAP Bind was unsuccessful on directory SERVER01.PDS2000.local for distinguished name ''. Directory returned error:[0x51] Server Down.



For more information, click http://www.microsoft.com/contentredirect.asp.

Error: (09/15/2012 07:39:32 PM) (Source: MSExchangeAL) (User: )
Description: LDAP Bind was unsuccessful on directory SERVER01.PDS2000.local for distinguished name ''. Directory returned error:[0x51] Server Down.



For more information, click http://www.microsoft.com/contentredirect.asp.

Error: (09/15/2012 07:39:31 PM) (Source: MSExchangeAL) (User: )
Description: LDAP Bind was unsuccessful on directory SERVER01.PDS2000.local for distinguished name ''. Directory returned error:[0x51] Server Down.



For more information, click http://www.microsoft.com/contentredirect.asp.

Error: (09/15/2012 07:39:29 PM) (Source: MSExchangeAL) (User: )
Description: The Win32 API call 'DsGetDCNameW' returned error code [0x862] The specified component could not be found in the configuration information. The service could not be initialized.
Make sure that the operating system was installed properly.


For more information, click http://www.microsoft.com/contentredirect.asp.

Error: (09/15/2012 07:39:29 PM) (Source: MSExchangeAL) (User: )
Description: LDAP Bind was unsuccessful on directory SERVER01.PDS2000.local for distinguished name ''. Directory returned error:[0x51] Server Down.



For more information, click http://www.microsoft.com/contentredirect.asp.

Error: (09/15/2012 07:39:28 PM) (Source: MSExchangeAL) (User: )
Description: LDAP Bind was unsuccessful on directory SERVER01.PDS2000.local for distinguished name ''. Directory returned error:[0x51] Server Down.



For more information, click http://www.microsoft.com/contentredirect.asp.


System errors:
=============
Error: (09/15/2012 07:54:25 PM) (Source: NETLOGON) (User: )
Description: The session setup from the computer JERETHPC failed to authenticate.
The name(s) of the account(s) referenced in the security database is
JERETHPC$. The following error occurred:
%%5

Error: (09/15/2012 07:47:51 PM) (Source: WinRM) (User: )
Description: The WinRM service is unable to start because of a failure during initialization.

Additional Data
The error code is 1300.

Error: (09/15/2012 06:43:07 PM) (Source: NETLOGON) (User: )
Description: The session setup from the computer JERETHPC failed to authenticate.
The name(s) of the account(s) referenced in the security database is
JERETHPC$. The following error occurred:
%%5

Error: (09/15/2012 02:43:06 PM) (Source: NETLOGON) (User: )
Description: The session setup from the computer JERETHPC failed to authenticate.
The name(s) of the account(s) referenced in the security database is
JERETHPC$. The following error occurred:
%%5

Error: (09/15/2012 10:43:06 AM) (Source: NETLOGON) (User: )
Description: The session setup from the computer JERETHPC failed to authenticate.
The name(s) of the account(s) referenced in the security database is
JERETHPC$. The following error occurred:
%%5

Error: (09/15/2012 06:43:06 AM) (Source: NETLOGON) (User: )
Description: The session setup from the computer JERETHPC failed to authenticate.
The name(s) of the account(s) referenced in the security database is
JERETHPC$. The following error occurred:
%%5

Error: (09/15/2012 02:43:06 AM) (Source: NETLOGON) (User: )
Description: The session setup from the computer JERETHPC failed to authenticate.
The name(s) of the account(s) referenced in the security database is
JERETHPC$. The following error occurred:
%%5

Error: (09/14/2012 10:36:01 PM) (Source: NETLOGON) (User: )
Description: The session setup from the computer JERETHPC failed to authenticate.
The name(s) of the account(s) referenced in the security database is
JERETHPC$. The following error occurred:
%%5

Error: (09/14/2012 06:28:05 PM) (Source: NETLOGON) (User: )
Description: The session setup from the computer JERETHPC failed to authenticate.
The name(s) of the account(s) referenced in the security database is
JERETHPC$. The following error occurred:
%%5

Error: (09/14/2012 03:19:27 PM) (Source: System Error) (User: )
Description: Error code 000000d1, parameter1 00000000, parameter2 d0000002, parameter3 00000008, parameter4 00000000.


Microsoft Office Sessions:
=========================
Error: (09/15/2012 07:51:36 PM) (Source: MSExchangeTransport)(User: )
Description:

Error: (09/15/2012 07:47:50 PM) (Source: Microsoft Search)(User: )
Description:

Error: (09/15/2012 07:39:33 PM) (Source: MSExchangeAL)(User: )
Description: DsGetDCNameW862The specified component could not be found in the configuration information

Error: (09/15/2012 07:39:33 PM) (Source: MSExchangeAL)(User: )
Description: DsGetDCNameW862The specified component could not be found in the configuration information

Error: (09/15/2012 07:39:33 PM) (Source: MSExchangeAL)(User: )
Description: SERVER01.PDS2000.local51Server Down

Error: (09/15/2012 07:39:32 PM) (Source: MSExchangeAL)(User: )
Description: SERVER01.PDS2000.local51Server Down

Error: (09/15/2012 07:39:31 PM) (Source: MSExchangeAL)(User: )
Description: SERVER01.PDS2000.local51Server Down

Error: (09/15/2012 07:39:29 PM) (Source: MSExchangeAL)(User: )
Description: DsGetDCNameW862The specified component could not be found in the configuration information

Error: (09/15/2012 07:39:29 PM) (Source: MSExchangeAL)(User: )
Description: SERVER01.PDS2000.local51Server Down

Error: (09/15/2012 07:39:28 PM) (Source: MSExchangeAL)(User: )
Description: SERVER01.PDS2000.local51Server Down


=========================== Installed Programs ============================

Adobe Flash Player 11 ActiveX (Version: 11.1.102.62)
Adobe Reader 8.1.2 (Version: 8.1.2)
ATI Display Driver (Version: 8.24.3-060405a-041210C-Dell)
Barracuda Backup Agent (Version: 4.3.00-rel)
Broadcom Drivers and Management Applications (Version: 10.89.04)
CCleaner (Version: 3.22)
DameWare NT Utilities (Version: 5.1.3.0)
Dell OpenManage Server Administrator (Version: 5.5.0)
Microsoft .NET Framework 1.1 -- Device Update 4.0 (Version: 1.1.4322)
Microsoft .NET Framework 2.0 Service Pack 2 (Version: 2.2.30729)
Microsoft .NET Framework 3.0 Service Pack 2 (Version: 3.2.30729)
Microsoft .NET Framework 3.5 SP1
Microsoft .NET Framework 3.5 SP1 (Version: 3.5.30729)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft .NET Framework 4 Extended (Version: 4.0.30319)
Microsoft Application Error Reporting (Version: 11.0.5228.1)
Microsoft Application Error Reporting (Version: 11.0.5614.0)
Microsoft Exchange
Microsoft Internationalized Domain Names Mitigation APIs
Microsoft Kernel-Mode Driver Framework Feature Pack 1.5
Microsoft National Language Support Downlevel APIs
Microsoft Office Excel Viewer (Version: 12.0.6612.1000)
Microsoft Office Word Viewer 2003 (Version: 11.0.8173.0)
Microsoft Silverlight (Version: 5.1.10411.0)
Microsoft SQL Server 2005
Microsoft SQL Server 2005 Express Edition (SOPHOS) (Version: 9.4.5000.00)
Microsoft SQL Server Native Client (Version: 9.00.5000.00)
Microsoft SQL Server Setup Support Files (English) (Version: 9.00.5000.00)
Microsoft SQL Server VSS Writer (Version: 9.00.5000.00)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft XML Parser (Version: 8.40.9419.2)
Microsoft XML Parser (Version: 8.50.2162.6)
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0)
MSXML 6 Service Pack 2 (KB2721693) (Version: 6.20.2012.0)
NetBalancer
Sophos Anti-Virus (Version: 10.0.7)
Sophos AutoUpdate (Version: 2.7.4.317)
Sophos Control Center (Version: 4.0.0)
Sophos PureMessage (Version: 3.0.2)
Sophos Remote Management System (Version: 3.4.0)
Sophos Update Manager (Version: 1.3.2.176)
Sophos Virus Removal Tool (Version: 2.1)
Update for Exchange Server 2003 (KB924334) (Version: 2)
Update for Exchange Server 2003 (KB926666) (Version: 2)
Update for Microsoft .NET Framework 3.5 SP1 (KB963707) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2600217) (Version: 1)
Update for Windows Internet Explorer 7 (KB976749) (Version: 1)
Update for Windows Internet Explorer 7 (KB980182) (Version: 1)
Update for Windows Internet Explorer 8 (KB2632503) (Version: 1)
Update for Windows Internet Explorer 8 (KB982632) (Version: 1)
Update for Windows Server 2003 (KB2141007) (Version: 1)
Update for Windows Server 2003 (KB2345886) (Version: 1)
Update for Windows Server 2003 (KB2467659) (Version: 1)
Update for Windows Server 2003 (KB2492386) (Version: 1)
Update for Windows Server 2003 (KB2607712) (Version: 1)
Update for Windows Server 2003 (KB2616676) (Version: 1)
Update for Windows Server 2003 (KB2641690-v2) (Version: 2)
Update for Windows Server 2003 (KB2718704) (Version: 1)
Update for Windows Server 2003 (KB2736233) (Version: 1)
Update for Windows Server 2003 (KB925876) (Version: 2)
Update for Windows Server 2003 (KB927891) (Version: 5)
Update for Windows Server 2003 (KB933360) (Version: 1)
Update for Windows Server 2003 (KB936357) (Version: 1)
Update for Windows Server 2003 (KB943729)
Update for Windows Server 2003 (KB951072) (Version: 1)
Update for Windows Server 2003 (KB955759) (Version: 1)
Update for Windows Server 2003 (KB955839) (Version: 1)
Update for Windows Server 2003 (KB967715) (Version: 1)
Update for Windows Server 2003 (KB968389) (Version: 1)
Update for Windows Server 2003 (KB971029) (Version: 1)
Update for Windows Server 2003 (KB971737) (Version: 1)
Update for Windows Server 2003 (KB973687) (Version: 1)
Update for Windows Server 2003 (KB973815) (Version: 1)
Update for Windows Server 2003 (KB973825) (Version: 1)
Update for Windows Server 2003 (KB973917-v2) (Version: 2)
Update for Windows Server 2003 (KB973917) (Version: 1)
Update for Windows Server 2003 (KB977165) (Version: 1)
Windows Imaging Component (Version: 3.0.0.0)
Windows Internet Explorer 7 (Version: 20070813.185237)
Windows Internet Explorer 8 (Version: 20090308.140743)
Windows Management Framework Core
Windows Search 4.0 (Version: 04.00.6001.503)
Windows Support Tools (Version: 5.2.3790.3959)
WinZip (Version: 8.1 SR-1 (5266))

========================= Devices: ================================


========================= Memory info: ===================================

Percentage of memory in use: 30%
Total physical RAM: 4090.64 MB
Available physical RAM: 2840.07 MB
Total Pagefile: 10058.33 MB
Available Pagefile: 8238.62 MB
Total Virtual: 2047.88 MB
Available Virtual: 1974.4 MB

========================= Partitions: =====================================

2 Drive c: (OS) (Fixed) (Total:696.66 GB) (Free:611.82 GB) NTFS
4 Drive s: (Share1) (Network) (Total:695.61 GB) (Free:82.04 GB) NTFS

========================= Users: ========================================

User accounts for \\SERVER01

3279108C-6504-41D8-A AP
ASPNET

bounce


info IUSR_PARAGON2 IUSR_PARAGONDC1
IUSR_SERVER01 IUSR_TRMSRV IWAM_PARAGON2
IWAM_PARAGONDC1 IWAM_SERVER01 IWAM_TRMSRV




Lomel
pds
pdsguest PDSServices
Receptionist
Safebaby SCDSSQL sciadmin
serviceAlert ship
Sophos_AU_Client Sophos_AU_Server SOPHOS_IUSER
SophosSAUPARAGON10 SophosSAUPARAGON20 SophosSAUSERVER010
SophosUpdateMgr Support
Tribune TsInternetUser
unsubscribe web

========================= Minidump Files ==================================

C:\WINDOWS\Minidump\Mini050712-01.dmp
C:\WINDOWS\Minidump\Mini091312-01.dmp
========================= Restore Points ==================================


**** End of log ****

Edited by pnasty101, 15 September 2012 - 09:28 PM.


#14 dev00790

dev00790

    Bleeping Chocoholic


  • Members
  • 5,037 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:UK
  • Local time:06:16 PM

Posted 16 September 2012 - 02:42 PM

Hi

I've asked for a colleague who is more familiar with Windows Servers to take over this topic from me.
Someone should be with you soon.

Regards, dev00790

---------------------------------------

Marge: "Homer, the plant called. They said if you don't show up tomorrow don't bother showing up on Monday." Homer: "Woo-hoo! Four-day weekend!"I do not reply to Private Messages (PMs) asking for assistance - please use the forums instead. If I have been helping you, and I have not replied to your latest post in 48 hours please send me a PM. My Blog


#15 pnasty101

pnasty101
  • Topic Starter

  • Members
  • 11 posts
  • OFFLINE
  •  
  • Local time:02:16 PM

Posted 20 September 2012 - 10:12 AM

Just wanted to update you on this....

We have not had any problems since the 13th. The "System (Unknown)" process I have not seen upload either.




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users