Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

TDSSKiller recognizes system drivers as suspicious


  • Please log in to reply
4 replies to this topic

#1 t4bzz

t4bzz

  • Members
  • 8 posts
  • OFFLINE
  •  
  • Local time:06:57 AM

Posted 21 September 2012 - 04:28 AM

Here's the log:

10:15:53.0562 2544  TDSS rootkit removing tool 2.8.10.0 Sep 17 2012 19:23:24
10:15:53.0750 2544  ============================================================
10:15:53.0750 2544  Current date / time: 2012/09/21 10:15:53.0750
10:15:53.0750 2544  SystemInfo:
10:15:53.0750 2544  
10:15:53.0750 2544  OS Version: 5.1.2600 ServicePack: 3.0
10:15:53.0750 2544  Product type: Workstation
10:15:53.0750 2544  ComputerName: RYNDOWS
10:15:53.0750 2544  UserName: T4bzZ
10:15:53.0750 2544  Windows directory: C:\WINDOWS
10:15:53.0750 2544  System windows directory: C:\WINDOWS
10:15:53.0765 2544  Processor architecture: Intel x86
10:15:53.0765 2544  Number of processors: 2
10:15:53.0765 2544  Page size: 0x1000
10:15:53.0765 2544  Boot type: Normal boot
10:15:53.0765 2544  ============================================================
10:15:58.0921 2544  BG loaded
10:15:59.0656 2544  Drive \Device\Harddisk0\DR0 - Size: 0x4A85C4DE00 (298.09 Gb), SectorSize: 0x200, Cylinders: 0x9801, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000054
10:15:59.0656 2544  ============================================================
10:15:59.0656 2544  \Device\Harddisk0\DR0:
10:15:59.0656 2544  MBR partitions:
10:15:59.0656 2544  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x82D6E1D
10:15:59.0656 2544  \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x82D6E5C, BlocksNum 0xE6BB1D4
10:15:59.0687 2544  \Device\Harddisk0\DR0\Partition3: MBR, Type 0x7, StartLBA 0x1699206F, BlocksNum 0x8009226
10:15:59.0734 2544  \Device\Harddisk0\DR0\Partition4: MBR, Type 0x7, StartLBA 0x1E99B2D4, BlocksNum 0x6A923ED
10:15:59.0734 2544  ============================================================
10:16:00.0093 2544  C: <-> \Device\Harddisk0\DR0\Partition1
10:16:00.0953 2544  D: <-> \Device\Harddisk0\DR0\Partition3
10:16:01.0046 2544  E: <-> \Device\Harddisk0\DR0\Partition4
10:16:01.0468 2544  F: <-> \Device\Harddisk0\DR0\Partition2
10:16:01.0468 2544  ============================================================
10:16:01.0468 2544  Initialize success
10:16:01.0468 2544  ============================================================
10:16:09.0046 2972  ============================================================
10:16:09.0046 2972  Scan started
10:16:09.0046 2972  Mode: Manual; SigCheck; TDLFS; 
10:16:09.0046 2972  ============================================================
10:16:12.0156 2972  ================ Scan system memory ========================
10:16:12.0156 2972  System memory - ok
10:16:12.0203 2972  ================ Scan services =============================
10:16:12.0546 2972  Abiosdsk - ok
10:16:12.0546 2972  abp480n5 - ok
10:16:12.0578 2972  [ 05118282F5D039595A2B92B4A4AFE197 ] ACPI            C:\WINDOWS\system32\DRIVERS\ACPI.sys
10:16:23.0125 2972  ACPI - ok
10:16:23.0296 2972  [ 66A42B7DB194E24B973BBCCE840A0F3F ] ACPIEC          C:\WINDOWS\system32\drivers\ACPIEC.sys
10:16:25.0953 2972  ACPIEC - ok
10:16:26.0359 2972  adpu160m - ok
10:16:26.0453 2972  [ 8BED39E3C35D6A489438B8141717A557 ] aec             C:\WINDOWS\system32\drivers\aec.sys
10:16:27.0234 2972  aec - ok
10:16:27.0312 2972  [ 1E44BC1E83D8FD2305F8D452DB109CF9 ] AFD             C:\WINDOWS\System32\drivers\afd.sys
10:16:27.0515 2972  AFD ( UnsignedFile.Multi.Generic ) - warning
10:16:27.0515 2972  AFD - detected UnsignedFile.Multi.Generic (1)
10:16:27.0703 2972  Aha154x - ok
10:16:27.0781 2972  aic78u2 - ok
10:16:27.0796 2972  aic78xx - ok
10:16:27.0828 2972  [ 27AF056D8C42F0AB3CF1DFDCBBEB3243 ] Alerter         C:\WINDOWS\system32\alrsvc.dll
10:16:29.0093 2972  Alerter - ok
10:16:29.0125 2972  [ D1738DDDFF196C5CEE6D867C136AF745 ] ALG             C:\WINDOWS\System32\alg.exe
10:16:29.0250 2972  ALG - ok
10:16:29.0250 2972  AliIde - ok
10:16:29.0375 2972  [ 267FC636801EDC5AB28E14036349E3BE ] Ambfilt         C:\WINDOWS\system32\drivers\Ambfilt.sys
10:16:29.0687 2972  Ambfilt - ok
10:16:29.0687 2972  amsint - ok
10:16:29.0703 2972  [ 1561430DA2F2AB81CC0CE71AF95A778D ] AppMgmt         C:\WINDOWS\System32\appmgmts.dll
10:16:29.0796 2972  AppMgmt - ok
10:16:29.0796 2972  asc - ok
10:16:29.0796 2972  asc3350p - ok
10:16:29.0812 2972  asc3550 - ok
10:16:29.0859 2972  [ B153AFFAC761E7F5FCFA822B9C4E97BC ] AsyncMac        C:\WINDOWS\system32\DRIVERS\asyncmac.sys
10:16:30.0015 2972  AsyncMac - ok
10:16:30.0031 2972  [ 9F3A2F5AA6875C72BF062C712CFA2674 ] atapi           C:\WINDOWS\system32\DRIVERS\atapi.sys
10:16:30.0187 2972  atapi - ok
10:16:30.0187 2972  Atdisk - ok
10:16:30.0234 2972  [ 9916C1225104BA14794209CFA8012159 ] Atmarpc         C:\WINDOWS\system32\DRIVERS\atmarpc.sys
10:16:30.0453 2972  Atmarpc - ok
10:16:30.0500 2972  [ 3A28D3E7BAD0EED3810CD918B2525B54 ] AudioSrv        C:\WINDOWS\System32\audiosrv.dll
10:16:30.0656 2972  AudioSrv - ok
10:16:30.0687 2972  [ D9F724AA26C010A217C97606B160ED68 ] audstub         C:\WINDOWS\system32\DRIVERS\audstub.sys
10:16:30.0828 2972  audstub - ok
10:16:31.0031 2972  [ 1D7D0D5D33D8B1507EC5FBFE332E5657 ] AVGIDSAgent     C:\Program Files\AVG\AVG2013\avgidsagent.exe
10:16:31.0250 2972  AVGIDSAgent - ok
10:16:31.0312 2972  [ 9E42E8B6BB7FD68F840003A9FC8F24C8 ] AVGIDSDriver    C:\WINDOWS\system32\DRIVERS\avgidsdriverx.sys
10:16:31.0359 2972  AVGIDSDriver - ok
10:16:31.0390 2972  [ CB77A9743A033E33F8409D235C683D99 ] AVGIDSHX        C:\WINDOWS\system32\DRIVERS\avgidshx.sys
10:16:31.0468 2972  AVGIDSHX - ok
10:16:31.0484 2972  [ 240F106B07CD9B522E2CD9E621618367 ] AVGIDSShim      C:\WINDOWS\system32\DRIVERS\avgidsshimx.sys
10:16:31.0531 2972  AVGIDSShim - ok
10:16:31.0609 2972  [ 7023142C545896D3538C9D36DDC57406 ] Avgldx86        C:\WINDOWS\system32\DRIVERS\avgldx86.sys
10:16:31.0687 2972  Avgldx86 - ok
10:16:31.0703 2972  [ 87E88A36279C8E5869270CC87F5BB7CD ] Avglogx         C:\WINDOWS\system32\DRIVERS\avglogx.sys
10:16:31.0765 2972  Avglogx - ok
10:16:31.0796 2972  [ DACC0743F5313045D5CCA23F8A7CDF68 ] Avgmfx86        C:\WINDOWS\system32\DRIVERS\avgmfx86.sys
10:16:31.0843 2972  Avgmfx86 - ok
10:16:31.0859 2972  [ B8392B63D795A3DE866793220D3559EF ] Avgrkx86        C:\WINDOWS\system32\DRIVERS\avgrkx86.sys
10:16:31.0906 2972  Avgrkx86 - ok
10:16:31.0937 2972  [ 69A4DF4CD2A15AACC0E8D2005D6A04BA ] Avgtdix         C:\WINDOWS\system32\DRIVERS\avgtdix.sys
10:16:32.0078 2972  Avgtdix - ok
10:16:32.0125 2972  [ 3001E24F340D400BFF85935E5777FC5B ] avgtp           C:\WINDOWS\system32\drivers\avgtpx86.sys
10:16:32.0156 2972  avgtp - ok
10:16:32.0171 2972  [ 42F11F37CC06D9AB6528AF2E215B8799 ] avgwd           C:\Program Files\AVG\AVG2013\avgwdsvc.exe
10:16:32.0218 2972  avgwd - ok
10:16:32.0265 2972  [ DA1F27D85E0D1525F6621372E7B685E9 ] Beep            C:\WINDOWS\system32\drivers\Beep.sys
10:16:32.0406 2972  Beep - ok
10:16:32.0437 2972  [ 78200FAA6FD9C69394134C238C87FB7F ] BITS            C:\WINDOWS\system32\qmgr.dll
10:16:32.0656 2972  BITS - ok
10:16:32.0671 2972  [ 9D6788EFFB9972C28C38D9C5E67249D5 ] Browser         C:\WINDOWS\System32\browser.dll
10:16:32.0703 2972  Browser ( UnsignedFile.Multi.Generic ) - warning
10:16:32.0703 2972  Browser - detected UnsignedFile.Multi.Generic (1)
10:16:32.0734 2972  [ 90A673FC8E12A79AFBED2576F6A7AAF9 ] cbidf2k         C:\WINDOWS\system32\drivers\cbidf2k.sys
10:16:32.0968 2972  cbidf2k - ok
10:16:32.0968 2972  cd20xrnt - ok
10:16:32.0984 2972  [ C1B486A7658353D33A10CC15211A873B ] Cdaudio         C:\WINDOWS\system32\drivers\Cdaudio.sys
10:16:33.0109 2972  Cdaudio - ok
10:16:33.0125 2972  [ C885B02847F5D2FD45A24E219ED93B32 ] Cdfs            C:\WINDOWS\system32\drivers\Cdfs.sys
10:16:33.0281 2972  Cdfs - ok
10:16:33.0312 2972  [ 4B0A100EAF5C49EF3CCA8C641431EACC ] Cdrom           C:\WINDOWS\system32\DRIVERS\cdrom.sys
10:16:33.0343 2972  Cdrom ( UnsignedFile.Multi.Generic ) - warning
10:16:33.0343 2972  Cdrom - detected UnsignedFile.Multi.Generic (1)
10:16:33.0343 2972  Changer - ok
10:16:33.0375 2972  [ 45B63DF2FB498D219FCBB4425CADE676 ] CiSvc           C:\WINDOWS\system32\cisvc.exe
10:16:33.0500 2972  CiSvc - ok
10:16:33.0531 2972  [ C94F1B6F61858D6389C0FA06954FB9C4 ] ClipSrv         C:\WINDOWS\system32\clipsrv.exe
10:16:33.0671 2972  ClipSrv - ok
10:16:33.0671 2972  CmdIde - ok
10:16:33.0671 2972  COMSysApp - ok
10:16:33.0687 2972  Cpqarray - ok
10:16:33.0703 2972  [ 6B105FE95F2E9F0B6346044BA59D41C9 ] CryptSvc        C:\WINDOWS\System32\cryptsvc.dll
10:16:33.0843 2972  CryptSvc - ok
10:16:33.0843 2972  dac2w2k - ok
10:16:33.0843 2972  dac960nt - ok
10:16:33.0875 2972  [ A37311D9D628C1042A2836731787F0F3 ] DcomLaunch      C:\WINDOWS\system32\rpcss.dll
10:16:33.0906 2972  DcomLaunch ( UnsignedFile.Multi.Generic ) - warning
10:16:33.0906 2972  DcomLaunch - detected UnsignedFile.Multi.Generic (1)
10:16:33.0937 2972  [ 6B4AFE7C676CFF3EFF2DC06A4EE945F7 ] Dhcp            C:\WINDOWS\System32\dhcpcsvc.dll
10:16:34.0062 2972  Dhcp - ok
10:16:34.0093 2972  [ 044452051F3E02E7963599FC8F4F3E25 ] Disk            C:\WINDOWS\system32\DRIVERS\disk.sys
10:16:34.0218 2972  Disk - ok
10:16:34.0234 2972  dmadmin - ok
10:16:34.0265 2972  [ BC9219ABC5696942E6F9AC8A9B28670F ] dmboot          C:\WINDOWS\system32\drivers\dmboot.sys
10:16:34.0421 2972  dmboot - ok
10:16:34.0421 2972  [ 5FA232E3BA6E1346F9F5A7E519320CB0 ] dmio            C:\WINDOWS\system32\drivers\dmio.sys
10:16:34.0578 2972  dmio - ok
10:16:34.0578 2972  [ E9317282A63CA4D188C0DF5E09C6AC5F ] dmload          C:\WINDOWS\system32\drivers\dmload.sys
10:16:34.0718 2972  dmload - ok
10:16:34.0734 2972  [ D858920A05076914D34B0388E8D96CC0 ] dmserver        C:\WINDOWS\System32\dmserver.dll
10:16:34.0875 2972  dmserver - ok
10:16:34.0906 2972  [ 8A208DFCF89792A484E76C40E5F50B45 ] DMusic          C:\WINDOWS\system32\drivers\DMusic.sys
10:16:35.0015 2972  DMusic - ok
10:16:35.0062 2972  [ 082BE13166A3354F25F78E0B2601012B ] Dnscache        C:\WINDOWS\System32\dnsrslvr.dll
10:16:35.0078 2972  Dnscache ( UnsignedFile.Multi.Generic ) - warning
10:16:35.0078 2972  Dnscache - detected UnsignedFile.Multi.Generic (1)
10:16:35.0109 2972  [ E0B7D66CF29D9ADCCF873C77821CD4CA ] Dot3svc         C:\WINDOWS\System32\dot3svc.dll
10:16:35.0234 2972  Dot3svc - ok
10:16:35.0234 2972  dpti2o - ok
10:16:35.0265 2972  [ 8F5FCFF8E8848AFAC920905FBD9D33C8 ] drmkaud         C:\WINDOWS\system32\drivers\drmkaud.sys
10:16:35.0390 2972  drmkaud - ok
10:16:35.0390 2972  [ 5F256C1AD50FEFDC442CD5AAB58C7DD8 ] EapHost         C:\WINDOWS\System32\eapsvc.dll
10:16:35.0546 2972  EapHost - ok
10:16:35.0562 2972  [ ED1B71382C31FD2CF3CDC4672EFAD6EA ] ERSvc           C:\WINDOWS\System32\ersvc.dll
10:16:35.0687 2972  ERSvc - ok
10:16:35.0718 2972  [ 02A467E27AF55F7064C5B251E587315F ] Eventlog        C:\WINDOWS\system32\services.exe
10:16:35.0781 2972  Eventlog ( UnsignedFile.Multi.Generic ) - warning
10:16:35.0781 2972  Eventlog - detected UnsignedFile.Multi.Generic (1)
10:16:35.0828 2972  [ 6AFF804839C85859E0247164FBE5F5BB ] EventSystem     C:\WINDOWS\system32\es.dll
10:16:35.0921 2972  EventSystem ( UnsignedFile.Multi.Generic ) - warning
10:16:35.0921 2972  EventSystem - detected UnsignedFile.Multi.Generic (1)
10:16:35.0953 2972  [ 38D332A6D56AF32635675F132548343E ] Fastfat         C:\WINDOWS\system32\drivers\Fastfat.sys
10:16:36.0437 2972  Fastfat - ok
10:16:36.0453 2972  [ 55AAE86C7C2CADF6972ACD1D76C24A98 ] FastUserSwitchingCompatibility C:\WINDOWS\System32\shsvcs.dll
10:16:36.0484 2972  FastUserSwitchingCompatibility ( UnsignedFile.Multi.Generic ) - warning
10:16:36.0484 2972  FastUserSwitchingCompatibility - detected UnsignedFile.Multi.Generic (1)
10:16:36.0500 2972  [ 92CDD60B6730B9F50F6A1A0C1F8CDC81 ] Fdc             C:\WINDOWS\system32\DRIVERS\fdc.sys
10:16:36.0640 2972  Fdc - ok
10:16:36.0671 2972  [ 09E2A4D33F81A06A8AAB2BA0A0B5D235 ] Fips            C:\WINDOWS\system32\drivers\Fips.sys
10:16:36.0812 2972  Fips - ok
10:16:36.0843 2972  [ 9D27E7B80BFCDF1CDD9B555862D5E7F0 ] Flpydisk        C:\WINDOWS\system32\DRIVERS\flpydisk.sys
10:16:36.0984 2972  Flpydisk - ok
10:16:37.0031 2972  [ B2CF4B0786F8212CB92ED2B50C6DB6B0 ] FltMgr          C:\WINDOWS\system32\drivers\fltmgr.sys
10:16:37.0218 2972  FltMgr - ok
10:16:37.0234 2972  [ 3E1E2BD4F39B0E2B7DC4F4D2BCC2779A ] Fs_Rec          C:\WINDOWS\system32\drivers\Fs_Rec.sys
10:16:37.0406 2972  Fs_Rec - ok
10:16:37.0437 2972  [ ED6D921D8AB423138FB35BEEE6D6A6CB ] Ftdisk          C:\WINDOWS\system32\DRIVERS\ftdisk.sys
10:16:37.0656 2972  Ftdisk - ok
10:16:37.0703 2972  [ 0A02C63C8B144BD8C86B103DEE7C86A2 ] Gpc             C:\WINDOWS\system32\DRIVERS\msgpc.sys
10:16:37.0859 2972  Gpc - ok
10:16:37.0890 2972  [ 573C7D0A32852B48F3058CFD8026F511 ] HDAudBus        C:\WINDOWS\system32\DRIVERS\HDAudBus.sys
10:16:38.0046 2972  HDAudBus - ok
10:16:38.0171 2972  [ AF752014F7EB61542E3F35B9374D7E76 ] helpsvc         C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll
10:16:38.0390 2972  helpsvc - ok
10:16:38.0437 2972  [ 1776C3B6069EEECC8042535296C1866A ] HidServ         C:\WINDOWS\System32\hidserv.dll
10:16:38.0890 2972  HidServ - ok
10:16:38.0937 2972  [ CCF82C5EC8A7326C3066DE870C06DAF1 ] hidusb          C:\WINDOWS\system32\DRIVERS\hidusb.sys
10:16:39.0078 2972  hidusb - ok
10:16:39.0109 2972  [ F0273916DA6FB64CC88E0BD77619554F ] hkmsvc          C:\WINDOWS\System32\kmsvc.dll
10:16:39.0250 2972  hkmsvc - ok
10:16:39.0265 2972  hpn - ok
10:16:39.0281 2972  [ F80A415EF82CD06FFAF0D971528EAD38 ] HTTP            C:\WINDOWS\system32\Drivers\HTTP.sys
10:16:39.0312 2972  HTTP ( UnsignedFile.Multi.Generic ) - warning
10:16:39.0312 2972  HTTP - detected UnsignedFile.Multi.Generic (1)
10:16:39.0343 2972  [ AA268079AC119F3A596E5E27AEE4BD17 ] HTTPFilter      C:\WINDOWS\System32\w3ssl.dll
10:16:39.0500 2972  HTTPFilter - ok
10:16:39.0500 2972  i2omgmt - ok
10:16:39.0500 2972  i2omp - ok
10:16:39.0515 2972  [ 177B372AF55C4460D0968B5F1D02AA1C ] i8042prt        C:\WINDOWS\system32\drivers\i8042prt.sys
10:16:39.0656 2972  i8042prt - ok
10:16:39.0671 2972  [ 083A052659F5310DD8B6A6CB05EDCF8E ] Imapi           C:\WINDOWS\system32\DRIVERS\imapi.sys
10:16:39.0812 2972  Imapi - ok
10:16:39.0828 2972  [ 9125AF650608A921F98A789E5C5BA864 ] ImapiService    C:\WINDOWS\system32\imapi.exe
10:16:39.0968 2972  ImapiService - ok
10:16:39.0984 2972  ini910u - ok
10:16:40.0140 2972  [ 58DABDEF7A35F9E3AB1FABD2CBAF3D13 ] IntcAzAudAddService C:\WINDOWS\system32\drivers\RtkHDAud.sys
10:16:40.0375 2972  IntcAzAudAddService - ok
10:16:40.0375 2972  IntelIde - ok
10:16:40.0406 2972  [ DA153EDC09DE8C4F846C085CAA39D1CC ] intelppm        C:\WINDOWS\system32\DRIVERS\intelppm.sys
10:16:40.0546 2972  intelppm - ok
10:16:40.0562 2972  [ 3BB22519A194418D5FEC05D800A19AD0 ] Ip6Fw           C:\WINDOWS\system32\drivers\ip6fw.sys
10:16:40.0687 2972  Ip6Fw - ok
10:16:40.0703 2972  [ 731F22BA402EE4B62748ADAF6363C182 ] IpFilterDriver  C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
10:16:40.0843 2972  IpFilterDriver - ok
10:16:40.0859 2972  [ B87AB476DCF76E72010632B5550955F5 ] IpInIp          C:\WINDOWS\system32\DRIVERS\ipinip.sys
10:16:40.0984 2972  IpInIp - ok
10:16:41.0000 2972  [ CC748EA12C6EFFDE940EE98098BF96BB ] IpNat           C:\WINDOWS\system32\DRIVERS\ipnat.sys
10:16:41.0140 2972  IpNat - ok
10:16:41.0156 2972  [ 23C74D75E36E7158768DD63D92789A91 ] IPSec           C:\WINDOWS\system32\DRIVERS\ipsec.sys
10:16:41.0312 2972  IPSec - ok
10:16:41.0328 2972  [ C93C9FF7B04D772627A3646D89F7BF89 ] IRENUM          C:\WINDOWS\system32\DRIVERS\irenum.sys
10:16:41.0406 2972  IRENUM - ok
10:16:41.0437 2972  [ C8EEF2E93835B81BD335DE2123121283 ] isapnp          C:\WINDOWS\system32\DRIVERS\isapnp.sys
10:16:41.0562 2972  isapnp - ok
10:16:41.0578 2972  [ 2AECA45D4AEAACBDCB77AD11184E4601 ] Kbdclass        C:\WINDOWS\system32\DRIVERS\kbdclass.sys
10:16:41.0734 2972  Kbdclass - ok
10:16:41.0734 2972  [ F718DCDDAC2544BC693F22977D06F78B ] kbdhid          C:\WINDOWS\system32\DRIVERS\kbdhid.sys
10:16:41.0859 2972  kbdhid - ok
10:16:41.0890 2972  [ 692BCF44383D056AED41B045A323D378 ] kmixer          C:\WINDOWS\system32\drivers\kmixer.sys
10:16:42.0015 2972  kmixer - ok
10:16:42.0015 2972  [ B467646C54CC746128904E1654C750C1 ] KSecDD          C:\WINDOWS\system32\drivers\KSecDD.sys
10:16:42.0046 2972  KSecDD ( UnsignedFile.Multi.Generic ) - warning
10:16:42.0046 2972  KSecDD - detected UnsignedFile.Multi.Generic (1)
10:16:42.0062 2972  [ 061A4BB67C324AC8C176E0D77923B212 ] lanmanserver    C:\WINDOWS\System32\srvsvc.dll
10:16:42.0093 2972  lanmanserver ( UnsignedFile.Multi.Generic ) - warning
10:16:42.0093 2972  lanmanserver - detected UnsignedFile.Multi.Generic (1)
10:16:42.0125 2972  [ FA17019DA45C5D6464776A639A5A9ABB ] lanmanworkstation C:\WINDOWS\System32\wkssvc.dll
10:16:42.0250 2972  lanmanworkstation ( UnsignedFile.Multi.Generic ) - warning
10:16:42.0250 2972  lanmanworkstation - detected UnsignedFile.Multi.Generic (1)
10:16:42.0250 2972  lbrtfdc - ok
10:16:42.0265 2972  [ 437AA83D68F9FAC234CA68DBD40DB705 ] LmHosts         C:\WINDOWS\System32\lmhsvc.dll
10:16:42.0390 2972  LmHosts - ok
10:16:42.0406 2972  [ 36F3AB18B1BE303DA51DE90A67DE3942 ] Messenger       C:\WINDOWS\System32\msgsvc.dll
10:16:42.0546 2972  Messenger - ok
10:16:42.0562 2972  [ 4AE068242760A1FB6E1A44BF4E16AFA6 ] mnmdd           C:\WINDOWS\system32\drivers\mnmdd.sys
10:16:42.0687 2972  mnmdd - ok
10:16:42.0718 2972  [ 845814A8CB9D704D030F076E1BCE83F3 ] mnmsrvc         C:\WINDOWS\system32\mnmsrvc.exe
10:16:42.0843 2972  mnmsrvc - ok
10:16:42.0859 2972  [ 4A068DB7DC37D5AFEDB6512D2931D7B3 ] Modem           C:\WINDOWS\system32\drivers\Modem.sys
10:16:43.0000 2972  Modem - ok
10:16:43.0031 2972  [ C7D9F9717916B34C1B00DD4834AF485C ] Monfilt         C:\WINDOWS\system32\drivers\Monfilt.sys
10:16:43.0125 2972  Monfilt - ok
10:16:43.0140 2972  [ FBED3DF6B884F8CF00447B73507F2C48 ] Mouclass        C:\WINDOWS\system32\DRIVERS\mouclass.sys
10:16:43.0265 2972  Mouclass - ok
10:16:43.0281 2972  [ ECEC1E6CD558AB80F944F31326E9D3B5 ] mouhid          C:\WINDOWS\system32\DRIVERS\mouhid.sys
10:16:43.0421 2972  mouhid - ok
10:16:43.0421 2972  [ A80B9A0BAD1B73637DBCBBA7DF72D3FD ] MountMgr        C:\WINDOWS\system32\drivers\MountMgr.sys
10:16:43.0562 2972  MountMgr - ok
10:16:43.0562 2972  mraid35x - ok
10:16:43.0578 2972  [ 11D42BB6206F33FBB3BA0288D3EF81BD ] MRxDAV          C:\WINDOWS\system32\DRIVERS\mrxdav.sys
10:16:43.0703 2972  MRxDAV - ok
10:16:43.0734 2972  [ 7D304A5EB4344EBEEAB53A2FE3FFB9F0 ] MRxSmb          C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
10:16:43.0765 2972  MRxSmb ( UnsignedFile.Multi.Generic ) - warning
10:16:43.0765 2972  MRxSmb - detected UnsignedFile.Multi.Generic (1)
10:16:43.0765 2972  [ A54C5EECC7D3424824410BAE0AA6C371 ] MSDTC           C:\WINDOWS\system32\msdtc.exe
10:16:43.0906 2972  MSDTC - ok
10:16:43.0906 2972  [ C941EA2454BA8350021D774DAF0F1027 ] Msfs            C:\WINDOWS\system32\drivers\Msfs.sys
10:16:44.0046 2972  Msfs - ok
10:16:44.0046 2972  MSIServer - ok
10:16:44.0062 2972  [ D1575E71568F4D9E14CA56B7B0453BF1 ] MSKSSRV         C:\WINDOWS\system32\drivers\MSKSSRV.sys
10:16:44.0203 2972  MSKSSRV - ok
10:16:44.0234 2972  [ 325BB26842FC7CCC1FCCE2C457317F3E ] MSPCLOCK        C:\WINDOWS\system32\drivers\MSPCLOCK.sys
10:16:44.0375 2972  MSPCLOCK - ok
10:16:44.0375 2972  [ BAD59648BA099DA4A17680B39730CB3D ] MSPQM           C:\WINDOWS\system32\drivers\MSPQM.sys
10:16:44.0515 2972  MSPQM - ok
10:16:44.0531 2972  [ AF5F4F3F14A8EA2C26DE30F7A1E17136 ] mssmbios        C:\WINDOWS\system32\DRIVERS\mssmbios.sys
10:16:44.0656 2972  mssmbios - ok
10:16:44.0671 2972  [ DE6A75F5C270E756C5508D94B6CF68F5 ] Mup             C:\WINDOWS\system32\drivers\Mup.sys
10:16:44.0687 2972  Mup ( UnsignedFile.Multi.Generic ) - warning
10:16:44.0687 2972  Mup - detected UnsignedFile.Multi.Generic (1)
10:16:44.0718 2972  [ 14CB8528E17D1221C50FC8CA88B1795F ] napagent        C:\WINDOWS\System32\qagentrt.dll
10:16:44.0875 2972  napagent - ok
10:16:44.0906 2972  [ 1DF7F42665C94B825322FAE71721130D ] NDIS            C:\WINDOWS\system32\drivers\NDIS.sys
10:16:45.0046 2972  NDIS - ok
10:16:45.0046 2972  [ 0109C4F3850DFBAB279542515386AE22 ] NdisTapi        C:\WINDOWS\system32\DRIVERS\ndistapi.sys
10:16:45.0062 2972  NdisTapi ( UnsignedFile.Multi.Generic ) - warning
10:16:45.0062 2972  NdisTapi - detected UnsignedFile.Multi.Generic (1)
10:16:45.0078 2972  [ F927A4434C5028758A842943EF1A3849 ] Ndisuio         C:\WINDOWS\system32\DRIVERS\ndisuio.sys
10:16:45.0203 2972  Ndisuio - ok
10:16:45.0218 2972  [ EDC1531A49C80614B2CFDA43CA8659AB ] NdisWan         C:\WINDOWS\system32\DRIVERS\ndiswan.sys
10:16:45.0343 2972  NdisWan - ok
10:16:45.0359 2972  [ 9282BD12DFB069D3889EB3FCC1000A9B ] NDProxy         C:\WINDOWS\system32\drivers\NDProxy.sys
10:16:45.0375 2972  NDProxy ( UnsignedFile.Multi.Generic ) - warning
10:16:45.0375 2972  NDProxy - detected UnsignedFile.Multi.Generic (1)
10:16:45.0375 2972  [ 5D81CF9A2F1A3A756B66CF684911CDF0 ] NetBIOS         C:\WINDOWS\system32\DRIVERS\netbios.sys
10:16:45.0500 2972  NetBIOS - ok
10:16:45.0531 2972  [ 74B2B2F5BEA5E9A3DC021D685551BD3D ] NetBT           C:\WINDOWS\system32\DRIVERS\netbt.sys
10:16:45.0656 2972  NetBT - ok
10:16:45.0687 2972  [ CBB409B314309FCFFCE5E682E91338C6 ] NetDDE          C:\WINDOWS\system32\netdde.exe
10:16:45.0828 2972  NetDDE - ok
10:16:45.0843 2972  [ CBB409B314309FCFFCE5E682E91338C6 ] NetDDEdsdm      C:\WINDOWS\system32\netdde.exe
10:16:45.0984 2972  NetDDEdsdm - ok
10:16:46.0000 2972  [ 88296F7943F30A1EE3AF735440B92268 ] Netlogon        C:\WINDOWS\system32\lsass.exe
10:16:46.0125 2972  Netlogon - ok
10:16:46.0156 2972  [ 4FE97D0B1B182DF2A9BDD4C02155EF5E ] Netman          C:\WINDOWS\System32\netman.dll
10:16:46.0296 2972  Netman - ok
10:16:46.0328 2972  [ 9D1F13706FB5F02D0E8795FB2D03971D ] Nla             C:\WINDOWS\System32\mswsock.dll
10:16:46.0359 2972  Nla ( UnsignedFile.Multi.Generic ) - warning
10:16:46.0359 2972  Nla - detected UnsignedFile.Multi.Generic (1)
10:16:46.0359 2972  [ 3182D64AE053D6FB034F44B6DEF8034A ] Npfs            C:\WINDOWS\system32\drivers\Npfs.sys
10:16:46.0500 2972  Npfs - ok
10:16:46.0515 2972  [ 78A08DD6A8D65E697C18E1DB01C5CDCA ] Ntfs            C:\WINDOWS\system32\drivers\Ntfs.sys
10:16:46.0687 2972  Ntfs - ok
10:16:46.0687 2972  [ 88296F7943F30A1EE3AF735440B92268 ] NtLmSsp         C:\WINDOWS\system32\lsass.exe
10:16:46.0828 2972  NtLmSsp - ok
10:16:46.0890 2972  [ 3FB5399DBB7001A80D58EDAD64C98225 ] NtmsSvc         C:\WINDOWS\system32\ntmssvc.dll
10:16:47.0109 2972  NtmsSvc - ok
10:16:47.0125 2972  [ 73C1E1F395918BC2C6DD67AF7591A3AD ] Null            C:\WINDOWS\system32\drivers\Null.sys
10:16:47.0250 2972  Null - ok
10:16:47.0656 2972  [ 7B5A17BD54BB9142843DBE99A1CAAED8 ] nv              C:\WINDOWS\system32\DRIVERS\nv4_mini.sys
10:16:48.0093 2972  nv ( UnsignedFile.Multi.Generic ) - warning
10:16:48.0093 2972  nv - detected UnsignedFile.Multi.Generic (1)
10:16:48.0125 2972  [ 5150B108EA88831E1C599603D8B89621 ] NVSvc           C:\WINDOWS\system32\nvsvc32.exe
10:16:48.0312 2972  NVSvc - ok
10:16:48.0343 2972  [ B305F3FAD35083837EF46A0BBCE2FC57 ] NwlnkFlt        C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
10:16:48.0468 2972  NwlnkFlt - ok
10:16:48.0468 2972  [ C99B3415198D1AAB7227F2C88FD664B9 ] NwlnkFwd        C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
10:16:48.0609 2972  NwlnkFwd - ok
10:16:48.0640 2972  [ 2D4CDAEBCED17743AA9E25D3016DC229 ] Parport         C:\WINDOWS\system32\DRIVERS\parport.sys
10:16:48.0781 2972  Parport - ok
10:16:48.0796 2972  [ BEB3BA25197665D82EC7065B724171C6 ] PartMgr         C:\WINDOWS\system32\drivers\PartMgr.sys
10:16:48.0937 2972  PartMgr - ok
10:16:48.0953 2972  [ 453EC2C2A20A1382F564541918520EEB ] ParVdm          C:\WINDOWS\system32\drivers\ParVdm.sys
10:16:49.0078 2972  ParVdm - ok
10:16:49.0078 2972  [ 6862C69168D787B85A7D95CCD33C694E ] PCI             C:\WINDOWS\system32\DRIVERS\pci.sys
10:16:49.0203 2972  PCI - ok
10:16:49.0218 2972  PCIDump - ok
10:16:49.0218 2972  [ 548CF2D6369EAE441A4C6BAA75BC4F0A ] PCIIde          C:\WINDOWS\system32\DRIVERS\pciide.sys
10:16:49.0359 2972  PCIIde - ok
10:16:49.0375 2972  [ 8DB27F1AE9593C94095485305A583862 ] Pcmcia          C:\WINDOWS\system32\drivers\Pcmcia.sys
10:16:49.0515 2972  Pcmcia - ok
10:16:49.0515 2972  PDCOMP - ok
10:16:49.0515 2972  PDFRAME - ok
10:16:49.0531 2972  PDRELI - ok
10:16:49.0531 2972  PDRFRAME - ok
10:16:49.0531 2972  perc2 - ok
10:16:49.0531 2972  perc2hib - ok
10:16:49.0562 2972  [ 02A467E27AF55F7064C5B251E587315F ] PlugPlay        C:\WINDOWS\system32\services.exe
10:16:49.0593 2972  PlugPlay ( UnsignedFile.Multi.Generic ) - warning
10:16:49.0593 2972  PlugPlay - detected UnsignedFile.Multi.Generic (1)
10:16:49.0593 2972  [ 88296F7943F30A1EE3AF735440B92268 ] PolicyAgent     C:\WINDOWS\system32\lsass.exe
10:16:49.0734 2972  PolicyAgent - ok
10:16:49.0750 2972  [ EFEEC01B1D3CF84F16DDD24D9D9D8F99 ] PptpMiniport    C:\WINDOWS\system32\DRIVERS\raspptp.sys
10:16:49.0875 2972  PptpMiniport - ok
10:16:49.0875 2972  [ 88296F7943F30A1EE3AF735440B92268 ] ProtectedStorage C:\WINDOWS\system32\lsass.exe
10:16:50.0015 2972  ProtectedStorage - ok
10:16:50.0015 2972  [ 09298EC810B07E5D582CB3A3F9255424 ] PSched          C:\WINDOWS\system32\DRIVERS\psched.sys
10:16:50.0156 2972  PSched - ok
10:16:50.0156 2972  [ 80D317BD1C3DBC5D4FE7B1678C60CADD ] Ptilink         C:\WINDOWS\system32\DRIVERS\ptilink.sys
10:16:50.0296 2972  Ptilink - ok
10:16:50.0296 2972  ql1080 - ok
10:16:50.0296 2972  Ql10wnt - ok
10:16:50.0312 2972  ql12160 - ok
10:16:50.0312 2972  ql1240 - ok
10:16:50.0312 2972  ql1280 - ok
10:16:50.0328 2972  [ FE0D99D6F31E4FAD8159F690D68DED9C ] RasAcd          C:\WINDOWS\system32\DRIVERS\rasacd.sys
10:16:50.0468 2972  RasAcd - ok
10:16:50.0484 2972  [ BC22C5E1238D4D36D65679E249C483C3 ] RasAuto         C:\WINDOWS\System32\rasauto.dll
10:16:50.0625 2972  RasAuto - ok
10:16:50.0625 2972  [ 11B4A627BC9614B885C4969BFA5FF8A6 ] Rasl2tp         C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
10:16:50.0765 2972  Rasl2tp - ok
10:16:50.0781 2972  [ 0C392E397B8D34AAAF19EC6119CBB788 ] RasMan          C:\WINDOWS\System32\rasmans.dll
10:16:50.0921 2972  RasMan - ok
10:16:50.0921 2972  [ 5BC962F2654137C9909C3D4603587DEE ] RasPppoe        C:\WINDOWS\system32\DRIVERS\raspppoe.sys
10:16:51.0046 2972  RasPppoe - ok
10:16:51.0062 2972  [ FDBB1D60066FCFBB7452FD8F9829B242 ] Raspti          C:\WINDOWS\system32\DRIVERS\raspti.sys
10:16:51.0187 2972  Raspti - ok
10:16:51.0203 2972  [ 7AD224AD1A1437FE28D89CF22B17780A ] Rdbss           C:\WINDOWS\system32\DRIVERS\rdbss.sys
10:16:51.0328 2972  Rdbss - ok
10:16:51.0328 2972  [ 4912D5B403614CE99C28420F75353332 ] RDPCDD          C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
10:16:51.0468 2972  RDPCDD - ok
10:16:51.0468 2972  [ 15CABD0F7C00C47C70124907916AF3F1 ] rdpdr           C:\WINDOWS\system32\DRIVERS\rdpdr.sys
10:16:51.0609 2972  rdpdr - ok
10:16:51.0640 2972  [ 43AF5212BD8FB5BA6EED9754358BD8F7 ] RDPWD           C:\WINDOWS\system32\drivers\RDPWD.sys
10:16:51.0656 2972  RDPWD ( UnsignedFile.Multi.Generic ) - warning
10:16:51.0656 2972  RDPWD - detected UnsignedFile.Multi.Generic (1)
10:16:51.0671 2972  [ F83907A9A038DB2E35329B039628D293 ] RDSessMgr       C:\WINDOWS\system32\sessmgr.exe
10:16:51.0812 2972  RDSessMgr - ok
10:16:51.0828 2972  [ E0C7BBD18040B58651BAC700C804861D ] redbook         C:\WINDOWS\system32\DRIVERS\redbook.sys
10:16:51.0968 2972  redbook - ok
10:16:52.0000 2972  [ B3F57E6115BCD4DBADE9874F300655E3 ] RemoteAccess    C:\WINDOWS\System32\mprdim.dll
10:16:52.0140 2972  RemoteAccess - ok
10:16:52.0156 2972  [ B472B59EF98469C91651B751D3442CB8 ] RemoteRegistry  C:\WINDOWS\system32\regsvc.dll
10:16:52.0281 2972  RemoteRegistry - ok
10:16:52.0296 2972  [ 6BC4D5A70F46EA27DDC14E5414C862A5 ] RpcLocator      C:\WINDOWS\system32\locator.exe
10:16:52.0437 2972  RpcLocator - ok
10:16:52.0468 2972  [ A37311D9D628C1042A2836731787F0F3 ] RpcSs           C:\WINDOWS\system32\rpcss.dll
10:16:52.0500 2972  RpcSs ( UnsignedFile.Multi.Generic ) - warning
10:16:52.0500 2972  RpcSs - detected UnsignedFile.Multi.Generic (1)
10:16:52.0515 2972  [ 9ACEE3313020A01235336C2A483AFD1A ] RSVP            C:\WINDOWS\system32\rsvp.exe
10:16:54.0265 2972  RSVP - ok
10:16:54.0296 2972  [ EB6CAF7C5FCCB50C3E62F878640E082E ] RTLE8023xp      C:\WINDOWS\system32\DRIVERS\Rtenicxp.sys
10:16:54.0343 2972  RTLE8023xp - ok
10:16:54.0359 2972  [ 88296F7943F30A1EE3AF735440B92268 ] SamSs           C:\WINDOWS\system32\lsass.exe
10:16:54.0484 2972  SamSs - ok
10:16:54.0500 2972  [ C6F479218E94896738C06AF5BA6AB3D3 ] SCardSvr        C:\WINDOWS\System32\SCardSvr.exe
10:16:54.0640 2972  SCardSvr - ok
10:16:54.0656 2972  [ DD73C11A5C4D14945846384B90A61A4B ] Schedule        C:\WINDOWS\system32\schedsvc.dll
10:16:54.0812 2972  Schedule - ok
10:16:54.0843 2972  [ 90A3935D05B494A5A39D37E71F09A677 ] Secdrv          C:\WINDOWS\system32\DRIVERS\secdrv.sys
10:16:54.0906 2972  Secdrv - ok
10:16:54.0937 2972  [ 2AAD9026648120FFFE2A8D871BB2BBC7 ] seclogon        C:\WINDOWS\System32\seclogon.dll
10:16:55.0078 2972  seclogon - ok
10:16:55.0156 2972  [ 9044795E9D1A912D5F1B8DF6211850FD ] Secunia PSI Agent C:\Program Files\Secunia\PSI\psia.exe
10:16:55.0390 2972  Secunia PSI Agent - ok
10:16:55.0421 2972  [ 8B1A72E4FB63A9C068B08E1F9B70482A ] Secunia Update Agent C:\Program Files\Secunia\PSI\sua.exe
10:16:55.0687 2972  Secunia Update Agent - ok
10:16:55.0703 2972  [ 9D01E29D59723EB73B72107B208DAFE6 ] SENS            C:\WINDOWS\system32\sens.dll
10:16:55.0843 2972  SENS - ok
10:16:55.0843 2972  [ 0F29512CCD6BEAD730039FB4BD2C85CE ] serenum         C:\WINDOWS\system32\DRIVERS\serenum.sys
10:16:55.0984 2972  serenum - ok
10:16:55.0984 2972  [ D07B02F88165E69B9F17162CF592C8A6 ] Serial          C:\WINDOWS\system32\DRIVERS\serial.sys
10:16:56.0125 2972  Serial - ok
10:16:56.0125 2972  [ 8E6B8C671615D126FDC553D1E2DE5562 ] Sfloppy         C:\WINDOWS\system32\drivers\Sfloppy.sys
10:16:56.0250 2972  Sfloppy - ok
10:16:56.0281 2972  [ DA5C015911F68F22ED821E9EE49AB233 ] SharedAccess    C:\WINDOWS\System32\ipnathlp.dll
10:16:56.0421 2972  SharedAccess - ok
10:16:56.0437 2972  [ 55AAE86C7C2CADF6972ACD1D76C24A98 ] ShellHWDetection C:\WINDOWS\System32\shsvcs.dll
10:16:56.0468 2972  ShellHWDetection ( UnsignedFile.Multi.Generic ) - warning
10:16:56.0468 2972  ShellHWDetection - detected UnsignedFile.Multi.Generic (1)
10:16:56.0468 2972  Simbad - ok
10:16:56.0468 2972  Sparrow - ok
10:16:56.0500 2972  [ AB8B92451ECB048A4D1DE7C3FFCB4A9F ] splitter        C:\WINDOWS\system32\drivers\splitter.sys
10:16:56.0609 2972  splitter - ok
10:16:56.0640 2972  [ 60784F891563FB1B767F70117FC2428F ] Spooler         C:\WINDOWS\system32\spoolsv.exe
10:16:56.0671 2972  Spooler ( UnsignedFile.Multi.Generic ) - warning
10:16:56.0671 2972  Spooler - detected UnsignedFile.Multi.Generic (1)
10:16:56.0687 2972  [ EB032822BE406EF220D546DDFFCF0002 ] sr              C:\WINDOWS\system32\DRIVERS\sr.sys
10:16:56.0828 2972  sr - ok
10:16:56.0843 2972  [ 316D0E66074AE4CDE641C50D3A1C5148 ] srservice       C:\WINDOWS\system32\srsvc.dll
10:16:56.0937 2972  srservice - ok
10:16:56.0968 2972  [ 47DDFC2F003F7F9F0592C6874962A2E7 ] Srv             C:\WINDOWS\system32\DRIVERS\srv.sys
10:16:57.0000 2972  Srv ( UnsignedFile.Multi.Generic ) - warning
10:16:57.0000 2972  Srv - detected UnsignedFile.Multi.Generic (1)
10:16:57.0015 2972  [ 2C0B1224AA36B4CA1753302BAA855882 ] SSDPSRV         C:\WINDOWS\System32\ssdpsrv.dll
10:16:57.0093 2972  SSDPSRV - ok
10:16:57.0125 2972  [ 41508EA375C97DC2B56E5F1AFC067187 ] stisvc          C:\WINDOWS\system32\wiaservc.dll
10:16:57.0250 2972  stisvc - ok
10:16:57.0281 2972  [ 3941D127AEF12E93ADDF6FE6EE027E0F ] swenum          C:\WINDOWS\system32\DRIVERS\swenum.sys
10:16:57.0406 2972  swenum - ok
10:16:57.0437 2972  [ 8CE882BCC6CF8A62F2B2323D95CB3D01 ] swmidi          C:\WINDOWS\system32\drivers\swmidi.sys
10:16:57.0562 2972  swmidi - ok
10:16:57.0562 2972  SwPrv - ok
10:16:57.0562 2972  symc810 - ok
10:16:57.0578 2972  symc8xx - ok
10:16:57.0578 2972  sym_hi - ok
10:16:57.0578 2972  sym_u3 - ok
10:16:57.0593 2972  [ 8B83F3ED0F1688B4958F77CD6D2BF290 ] sysaudio        C:\WINDOWS\system32\drivers\sysaudio.sys
10:16:57.0718 2972  sysaudio - ok
10:16:57.0734 2972  [ E42048198518F9162027A9984CBB7B5C ] SysmonLog       C:\WINDOWS\system32\smlogsvc.exe
10:16:57.0875 2972  SysmonLog - ok
10:16:57.0890 2972  [ 2340E6977548038C88E39A9ECBB3FADC ] TapiSrv         C:\WINDOWS\System32\tapisrv.dll
10:16:58.0015 2972  TapiSrv - ok
10:16:58.0046 2972  [ 9AEFA14BD6B182D61E3119FA5F436D3D ] Tcpip           C:\WINDOWS\system32\DRIVERS\tcpip.sys
10:16:58.0078 2972  Tcpip ( UnsignedFile.Multi.Generic ) - warning
10:16:58.0078 2972  Tcpip - detected UnsignedFile.Multi.Generic (1)
10:16:58.0093 2972  [ 6471A66807F5E104E4885F5B67349397 ] TDPIPE          C:\WINDOWS\system32\drivers\TDPIPE.sys
10:16:58.0218 2972  TDPIPE - ok
10:16:58.0234 2972  [ C56B6D0402371CF3700EB322EF3AAF61 ] TDTCP           C:\WINDOWS\system32\drivers\TDTCP.sys
10:16:58.0359 2972  TDTCP - ok
10:16:58.0375 2972  [ 88155247177638048422893737429D9E ] TermDD          C:\WINDOWS\system32\DRIVERS\termdd.sys
10:16:58.0515 2972  TermDD - ok
10:16:58.0531 2972  [ 52E0505408EDD4AB5CCC7F83B67B4299 ] TermService     C:\WINDOWS\System32\termsrv.dll
10:16:58.0671 2972  TermService - ok
10:16:58.0687 2972  [ 55AAE86C7C2CADF6972ACD1D76C24A98 ] Themes          C:\WINDOWS\System32\shsvcs.dll
10:16:58.0703 2972  Themes ( UnsignedFile.Multi.Generic ) - warning
10:16:58.0703 2972  Themes - detected UnsignedFile.Multi.Generic (1)
10:16:58.0734 2972  [ B17551AB6EAA71DCA530632C15FA3D9A ] TlntSvr         C:\WINDOWS\system32\tlntsvr.exe
10:16:58.0828 2972  TlntSvr - ok
10:16:58.0828 2972  TosIde - ok
10:16:58.0859 2972  [ 9E70EB419D7785C286DC458A019BAB9B ] TrkWks          C:\WINDOWS\system32\trkwks.dll
10:16:58.0984 2972  TrkWks - ok
10:16:59.0015 2972  [ 5787B80C2E3C5E2F56C2A233D91FA2C9 ] Udfs            C:\WINDOWS\system32\drivers\Udfs.sys
10:16:59.0171 2972  Udfs - ok
10:16:59.0171 2972  ultra - ok
10:16:59.0203 2972  [ 402DDC88356B1BAC0EE3DD1580C76A31 ] Update          C:\WINDOWS\system32\DRIVERS\update.sys
10:16:59.0328 2972  Update - ok
10:16:59.0343 2972  [ E96A6BAEE0B2A14A38B45830D6E30697 ] upnphost        C:\WINDOWS\System32\upnphost.dll
10:16:59.0437 2972  upnphost - ok
10:16:59.0453 2972  [ EB90E28B28541EC845E5345609355CA7 ] UPS             C:\WINDOWS\System32\ups.exe
10:16:59.0578 2972  UPS - ok
10:16:59.0578 2972  [ 173F317CE0DB8E21322E71B7E60A27E8 ] usbccgp         C:\WINDOWS\system32\DRIVERS\usbccgp.sys
10:16:59.0718 2972  usbccgp - ok
10:16:59.0734 2972  [ 65DCF09D0E37D4C6B11B5B0B76D470A7 ] usbehci         C:\WINDOWS\system32\DRIVERS\usbehci.sys
10:16:59.0859 2972  usbehci - ok
10:16:59.0875 2972  [ 1AB3CDDE553B6E064D2E754EFE20285C ] usbhub          C:\WINDOWS\system32\DRIVERS\usbhub.sys
10:17:00.0000 2972  usbhub - ok
10:17:00.0031 2972  [ A32426D9B14A089EAA1D922E0C5801A9 ] USBSTOR         C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
10:17:00.0187 2972  USBSTOR - ok
10:17:00.0203 2972  [ 26496F9DEE2D787FC3E61AD54821FFE6 ] usbuhci         C:\WINDOWS\system32\DRIVERS\usbuhci.sys
10:17:00.0328 2972  usbuhci - ok
10:17:00.0343 2972  [ B3651DC7694AAB9AD03BA2297A54250E ] VBoxDrv         C:\WINDOWS\system32\DRIVERS\VBoxDrv.sys
10:17:00.0390 2972  VBoxDrv - ok
10:17:00.0406 2972  [ 24BEDF99D0F2D7E3E83D81A661A17DD4 ] VBoxNetAdp      C:\WINDOWS\system32\DRIVERS\VBoxNetAdp.sys
10:17:00.0437 2972  VBoxNetAdp - ok
10:17:00.0468 2972  [ 45DA32AC57713AF336FAC399DBD7D3EA ] VBoxNetFlt      C:\WINDOWS\system32\DRIVERS\VBoxNetFlt.sys
10:17:00.0500 2972  VBoxNetFlt - ok
10:17:00.0515 2972  [ 3DD91CB172F3F02D877A641E95D8AC89 ] VBoxUSBMon      C:\WINDOWS\system32\DRIVERS\VBoxUSBMon.sys
10:17:00.0546 2972  VBoxUSBMon - ok
10:17:00.0562 2972  [ 0D3A8FAFCEACD8B7625CD549757A7DF1 ] VgaSave         C:\WINDOWS\System32\drivers\vga.sys
10:17:00.0687 2972  VgaSave - ok
10:17:00.0687 2972  ViaIde - ok
10:17:00.0703 2972  [ 56B191AC5FC0DF219949C95A6C87AFE7 ] VolSnap         C:\WINDOWS\system32\drivers\VolSnap.sys
10:17:00.0828 2972  VolSnap - ok
10:17:00.0859 2972  [ 7F2D7BFFC4554E1C742DD3629FD1FB1B ] VSS             C:\WINDOWS\System32\vssvc.exe
10:17:00.0953 2972  VSS - ok
10:17:01.0015 2972  [ 40DBA03782BCC10685A8C200C5EBDCD0 ] vToolbarUpdater12.2.6 C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\12.2.6\ToolbarUpdater.exe
10:17:01.0093 2972  vToolbarUpdater12.2.6 - ok
10:17:01.0109 2972  [ A672CA3981352F8E9C30FEA056E80A62 ] W32Time         C:\WINDOWS\system32\w32time.dll
10:17:01.0265 2972  W32Time - ok
10:17:01.0312 2972  [ E20B95BAEDB550F32DD489265C1DA1F6 ] Wanarp          C:\WINDOWS\system32\DRIVERS\wanarp.sys
10:17:01.0468 2972  Wanarp - ok
10:17:01.0468 2972  WDICA - ok
10:17:01.0484 2972  [ 6768ACF64B18196494413695F0C3A00F ] wdmaud          C:\WINDOWS\system32\drivers\wdmaud.sys
10:17:01.0656 2972  wdmaud - ok
10:17:01.0671 2972  [ 81FB88B975E25D76E00B69879D8A434C ] WebClient       C:\WINDOWS\System32\webclnt.dll
10:17:01.0828 2972  WebClient - ok
10:17:01.0875 2972  [ 70C22297534A88B0AD0568900AB5A6D9 ] winmgmt         C:\WINDOWS\system32\wbem\WMIsvc.dll
10:17:02.0031 2972  winmgmt - ok
10:17:02.0078 2972  [ C51B4A5C05A5475708E3C81C7765B71D ] WmdmPmSN        C:\WINDOWS\system32\mspmsnsv.dll
10:17:02.0156 2972  WmdmPmSN ( UnsignedFile.Multi.Generic ) - warning
10:17:02.0156 2972  WmdmPmSN - detected UnsignedFile.Multi.Generic (1)
10:17:02.0234 2972  [ AFCE55C392A9676BD24A287D5ED1C777 ] Wmi             C:\WINDOWS\System32\advapi32.dll
10:17:02.0296 2972  Wmi ( UnsignedFile.Multi.Generic ) - warning
10:17:02.0296 2972  Wmi - detected UnsignedFile.Multi.Generic (1)
10:17:02.0328 2972  [ A2B12D80A1670511B047A7D8BB647598 ] WmiApSrv        C:\WINDOWS\system32\wbem\wmiapsrv.exe
10:17:02.0484 2972  WmiApSrv - ok
10:17:02.0515 2972  [ B6669F49D42E09BC0F9889FAA0F3336D ] wscsvc          C:\WINDOWS\system32\wscsvc.dll
10:17:02.0687 2972  wscsvc - ok
10:17:02.0703 2972  [ 04550D5EB7EE82C115DB547C01DF09FD ] wuauserv        C:\WINDOWS\system32\wuauserv.dll
10:17:03.0015 2972  wuauserv - ok
10:17:03.0171 2972  [ C2842273AAA77AC031EDB87FA19A2147 ] WZCSVC          C:\WINDOWS\System32\wzcsvc.dll
10:17:03.0343 2972  WZCSVC - ok
10:17:03.0390 2972  [ 24ED6935771359A5AEF1FE8BF0C56F39 ] xmlprov         C:\WINDOWS\System32\xmlprov.dll
10:17:03.0734 2972  xmlprov - ok
10:17:03.0750 2972  ================ Scan global ===============================
10:17:04.0046 2972  [ 65C782F8CFC1BEBCC58E1532F44B6408 ] C:\WINDOWS\system32\basesrv.dll
10:17:04.0296 2972  [ 19FEEF6CEDD18ADE51092B947DBBCB02 ] C:\WINDOWS\system32\winsrv.dll
10:17:04.0312 2972  [ 19FEEF6CEDD18ADE51092B947DBBCB02 ] C:\WINDOWS\system32\winsrv.dll
10:17:04.0406 2972  [ 02A467E27AF55F7064C5B251E587315F ] C:\WINDOWS\system32\services.exe
10:17:04.0453 2972  [Global] - ok
10:17:04.0453 2972  ================ Scan MBR ==================================
10:17:04.0484 2972  [ 671B81004FDD1588FA9ED1331C9CECA9 ] \Device\Harddisk0\DR0
10:17:05.0906 2972  \Device\Harddisk0\DR0 - ok
10:17:05.0906 2972  ================ Scan VBR ==================================
10:17:05.0921 2972  [ CB1396044346CA578A70511D133675A7 ] \Device\Harddisk0\DR0\Partition1
10:17:05.0921 2972  \Device\Harddisk0\DR0\Partition1 - ok
10:17:05.0953 2972  [ 83557F086CC1EE2F2CEA8EA873B32BD2 ] \Device\Harddisk0\DR0\Partition2
10:17:05.0953 2972  \Device\Harddisk0\DR0\Partition2 - ok
10:17:05.0968 2972  [ E52E748A66CDA0CE0C9FC5CDD7268EF8 ] \Device\Harddisk0\DR0\Partition3
10:17:05.0984 2972  \Device\Harddisk0\DR0\Partition3 - ok
10:17:06.0000 2972  [ B412FF5B4DC2502A605FFB57ECD80B06 ] \Device\Harddisk0\DR0\Partition4
10:17:06.0015 2972  \Device\Harddisk0\DR0\Partition4 - ok
10:17:06.0015 2972  ================ Scan active images ========================
10:17:06.0015 2972  [ DA153EDC09DE8C4F846C085CAA39D1CC ] C:\WINDOWS\system32\drivers\intelppm.sys
10:17:06.0015 2972  C:\WINDOWS\system32\drivers\intelppm.sys - ok
10:17:06.0015 2972  [ E28726B72C46821A28830E077D39A55B ] C:\WINDOWS\system32\drivers\videoprt.sys
10:17:06.0015 2972  C:\WINDOWS\system32\drivers\videoprt.sys - ok
10:17:06.0031 2972  [ 7B5A17BD54BB9142843DBE99A1CAAED8 ] C:\WINDOWS\system32\drivers\nv4_mini.sys
10:17:06.0031 2972  C:\WINDOWS\system32\drivers\nv4_mini.sys - ok
10:17:06.0031 2972  [ 573C7D0A32852B48F3058CFD8026F511 ] C:\WINDOWS\system32\drivers\hdaudbus.sys
10:17:06.0031 2972  C:\WINDOWS\system32\drivers\hdaudbus.sys - ok
10:17:06.0031 2972  [ EB6CAF7C5FCCB50C3E62F878640E082E ] C:\WINDOWS\system32\drivers\Rtenicxp.sys
10:17:06.0031 2972  C:\WINDOWS\system32\drivers\Rtenicxp.sys - ok
10:17:06.0031 2972  [ 791912E524CC2CC6F50B5F2B52D1EB71 ] C:\WINDOWS\system32\drivers\usbport.sys
10:17:06.0031 2972  C:\WINDOWS\system32\drivers\usbport.sys - ok
10:17:06.0031 2972  [ 26496F9DEE2D787FC3E61AD54821FFE6 ] C:\WINDOWS\system32\drivers\usbuhci.sys
10:17:06.0031 2972  C:\WINDOWS\system32\drivers\usbuhci.sys - ok
10:17:06.0031 2972  [ 65DCF09D0E37D4C6B11B5B0B76D470A7 ] C:\WINDOWS\system32\drivers\usbehci.sys
10:17:06.0031 2972  C:\WINDOWS\system32\drivers\usbehci.sys - ok
10:17:06.0046 2972  [ 92CDD60B6730B9F50F6A1A0C1F8CDC81 ] C:\WINDOWS\system32\drivers\fdc.sys
10:17:06.0046 2972  C:\WINDOWS\system32\drivers\fdc.sys - ok
10:17:06.0046 2972  [ 083A052659F5310DD8B6A6CB05EDCF8E ] C:\WINDOWS\system32\drivers\imapi.sys
10:17:06.0046 2972  C:\WINDOWS\system32\drivers\imapi.sys - ok
10:17:06.0046 2972  [ 2D4CDAEBCED17743AA9E25D3016DC229 ] C:\WINDOWS\system32\drivers\parport.sys
10:17:06.0046 2972  C:\WINDOWS\system32\drivers\parport.sys - ok
10:17:06.0046 2972  [ 0F29512CCD6BEAD730039FB4BD2C85CE ] C:\WINDOWS\system32\drivers\serenum.sys
10:17:06.0046 2972  C:\WINDOWS\system32\drivers\serenum.sys - ok
10:17:06.0046 2972  [ D07B02F88165E69B9F17162CF592C8A6 ] C:\WINDOWS\system32\drivers\serial.sys
10:17:06.0046 2972  C:\WINDOWS\system32\drivers\serial.sys - ok
10:17:06.0046 2972  [ 4B0A100EAF5C49EF3CCA8C641431EACC ] C:\WINDOWS\system32\drivers\cdrom.sys
10:17:06.0046 2972  C:\WINDOWS\system32\drivers\cdrom.sys - ok
10:17:06.0062 2972  [ 0753515F78DF7F271A5E61C20BCD36A1 ] C:\WINDOWS\system32\drivers\ks.sys
10:17:06.0062 2972  C:\WINDOWS\system32\drivers\ks.sys - ok
10:17:06.0078 2972  [ D9F724AA26C010A217C97606B160ED68 ] C:\WINDOWS\system32\drivers\audstub.sys
10:17:06.0078 2972  C:\WINDOWS\system32\drivers\audstub.sys - ok
10:17:06.0078 2972  [ E0C7BBD18040B58651BAC700C804861D ] C:\WINDOWS\system32\drivers\redbook.sys
10:17:06.0078 2972  C:\WINDOWS\system32\drivers\redbook.sys - ok
10:17:06.0078 2972  [ 11B4A627BC9614B885C4969BFA5FF8A6 ] C:\WINDOWS\system32\drivers\rasl2tp.sys
10:17:06.0078 2972  C:\WINDOWS\system32\drivers\rasl2tp.sys - ok
10:17:06.0078 2972  [ 0109C4F3850DFBAB279542515386AE22 ] C:\WINDOWS\system32\drivers\ndistapi.sys
10:17:06.0078 2972  C:\WINDOWS\system32\drivers\ndistapi.sys - ok
10:17:06.0093 2972  [ EDC1531A49C80614B2CFDA43CA8659AB ] C:\WINDOWS\system32\drivers\ndiswan.sys
10:17:06.0093 2972  C:\WINDOWS\system32\drivers\ndiswan.sys - ok
10:17:06.0093 2972  [ 5BC962F2654137C9909C3D4603587DEE ] C:\WINDOWS\system32\drivers\raspppoe.sys
10:17:06.0093 2972  C:\WINDOWS\system32\drivers\raspppoe.sys - ok
10:17:06.0093 2972  [ EFEEC01B1D3CF84F16DDD24D9D9D8F99 ] C:\WINDOWS\system32\drivers\raspptp.sys
10:17:06.0093 2972  C:\WINDOWS\system32\drivers\raspptp.sys - ok
10:17:06.0093 2972  [ 0539D5E53587F82D1B4FD74C5BE205CF ] C:\WINDOWS\system32\drivers\tdi.sys
10:17:06.0093 2972  C:\WINDOWS\system32\drivers\tdi.sys - ok
10:17:06.0093 2972  [ 09298EC810B07E5D582CB3A3F9255424 ] C:\WINDOWS\system32\drivers\psched.sys
10:17:06.0093 2972  C:\WINDOWS\system32\drivers\psched.sys - ok
10:17:06.0109 2972  [ 0A02C63C8B144BD8C86B103DEE7C86A2 ] C:\WINDOWS\system32\drivers\msgpc.sys
10:17:06.0109 2972  C:\WINDOWS\system32\drivers\msgpc.sys - ok
10:17:06.0109 2972  [ 80D317BD1C3DBC5D4FE7B1678C60CADD ] C:\WINDOWS\system32\drivers\ptilink.sys
10:17:06.0109 2972  C:\WINDOWS\system32\drivers\ptilink.sys - ok
10:17:06.0109 2972  [ FDBB1D60066FCFBB7452FD8F9829B242 ] C:\WINDOWS\system32\drivers\raspti.sys
10:17:06.0109 2972  C:\WINDOWS\system32\drivers\raspti.sys - ok
10:17:06.0125 2972  [ 15CABD0F7C00C47C70124907916AF3F1 ] C:\WINDOWS\system32\drivers\rdpdr.sys
10:17:06.0125 2972  C:\WINDOWS\system32\drivers\rdpdr.sys - ok
10:17:06.0125 2972  [ 24BEDF99D0F2D7E3E83D81A661A17DD4 ] C:\WINDOWS\system32\drivers\VBoxNetAdp.sys
10:17:06.0125 2972  C:\WINDOWS\system32\drivers\VBoxNetAdp.sys - ok
10:17:06.0125 2972  [ 2AECA45D4AEAACBDCB77AD11184E4601 ] C:\WINDOWS\system32\drivers\kbdclass.sys
10:17:06.0125 2972  C:\WINDOWS\system32\drivers\kbdclass.sys - ok
10:17:06.0125 2972  [ FBED3DF6B884F8CF00447B73507F2C48 ] C:\WINDOWS\system32\drivers\mouclass.sys
10:17:06.0125 2972  C:\WINDOWS\system32\drivers\mouclass.sys - ok
10:17:06.0140 2972  [ 88155247177638048422893737429D9E ] C:\WINDOWS\system32\drivers\termdd.sys
10:17:06.0140 2972  C:\WINDOWS\system32\drivers\termdd.sys - ok
10:17:06.0140 2972  [ 45DA32AC57713AF336FAC399DBD7D3EA ] C:\WINDOWS\system32\drivers\VBoxNetFlt.sys
10:17:06.0140 2972  C:\WINDOWS\system32\drivers\VBoxNetFlt.sys - ok
10:17:06.0140 2972  [ 3941D127AEF12E93ADDF6FE6EE027E0F ] C:\WINDOWS\system32\drivers\swenum.sys
10:17:06.0140 2972  C:\WINDOWS\system32\drivers\swenum.sys - ok
10:17:06.0140 2972  [ 402DDC88356B1BAC0EE3DD1580C76A31 ] C:\WINDOWS\system32\drivers\update.sys
10:17:06.0140 2972  C:\WINDOWS\system32\drivers\update.sys - ok
10:17:06.0140 2972  [ AF5F4F3F14A8EA2C26DE30F7A1E17136 ] C:\WINDOWS\system32\drivers\mssmbios.sys
10:17:06.0140 2972  C:\WINDOWS\system32\drivers\mssmbios.sys - ok
10:17:06.0156 2972  [ 9282BD12DFB069D3889EB3FCC1000A9B ] C:\WINDOWS\system32\drivers\ndproxy.sys
10:17:06.0156 2972  C:\WINDOWS\system32\drivers\ndproxy.sys - ok
10:17:06.0156 2972  [ 6CB08593487F5701D2D2254E693EAFCE ] C:\WINDOWS\system32\drivers\drmk.sys
10:17:06.0156 2972  C:\WINDOWS\system32\drivers\drmk.sys - ok
10:17:06.0156 2972  [ E82A496C3961EFC6828B508C310CE98F ] C:\WINDOWS\system32\drivers\portcls.sys
10:17:06.0156 2972  C:\WINDOWS\system32\drivers\portcls.sys - ok
10:17:06.0156 2972  [ 58DABDEF7A35F9E3AB1FABD2CBAF3D13 ] C:\WINDOWS\system32\drivers\RtkHDAud.sys
10:17:06.0156 2972  C:\WINDOWS\system32\drivers\RtkHDAud.sys - ok
10:17:06.0156 2972  [ 596EB39B50D6EBD9B734DC4AE0544693 ] C:\WINDOWS\system32\drivers\usbd.sys
10:17:06.0156 2972  C:\WINDOWS\system32\drivers\usbd.sys - ok
10:17:06.0171 2972  [ 1AB3CDDE553B6E064D2E754EFE20285C ] C:\WINDOWS\system32\drivers\usbhub.sys
10:17:06.0171 2972  C:\WINDOWS\system32\drivers\usbhub.sys - ok
10:17:06.0171 2972  [ 9D27E7B80BFCDF1CDD9B555862D5E7F0 ] C:\WINDOWS\system32\drivers\flpydisk.sys
10:17:06.0171 2972  C:\WINDOWS\system32\drivers\flpydisk.sys - ok
10:17:06.0171 2972  [ C1B486A7658353D33A10CC15211A873B ] C:\WINDOWS\system32\drivers\cdaudio.sys
10:17:06.0171 2972  C:\WINDOWS\system32\drivers\cdaudio.sys - ok
10:17:06.0171 2972  [ 8E6B8C671615D126FDC553D1E2DE5562 ] C:\WINDOWS\system32\drivers\sfloppy.sys
10:17:06.0171 2972  C:\WINDOWS\system32\drivers\sfloppy.sys - ok
10:17:06.0171 2972  [ 3001E24F340D400BFF85935E5777FC5B ] C:\WINDOWS\system32\drivers\avgtpx86.sys
10:17:06.0171 2972  C:\WINDOWS\system32\drivers\avgtpx86.sys - ok
10:17:06.0187 2972  [ DA1F27D85E0D1525F6621372E7B685E9 ] C:\WINDOWS\system32\drivers\beep.sys
10:17:06.0187 2972  C:\WINDOWS\system32\drivers\beep.sys - ok
10:17:06.0187 2972  [ 3E1E2BD4F39B0E2B7DC4F4D2BCC2779A ] C:\WINDOWS\system32\drivers\fs_rec.sys
10:17:06.0187 2972  C:\WINDOWS\system32\drivers\fs_rec.sys - ok
10:17:06.0187 2972  [ 73C1E1F395918BC2C6DD67AF7591A3AD ] C:\WINDOWS\system32\drivers\null.sys
10:17:06.0187 2972  C:\WINDOWS\system32\drivers\null.sys - ok
10:17:06.0187 2972  [ 96ECCF28FDBF1B2CC12725818A63628D ] C:\WINDOWS\system32\drivers\hidparse.sys
10:17:06.0187 2972  C:\WINDOWS\system32\drivers\hidparse.sys - ok
10:17:06.0187 2972  [ 177B372AF55C4460D0968B5F1D02AA1C ] C:\WINDOWS\system32\drivers\i8042prt.sys
10:17:06.0187 2972  C:\WINDOWS\system32\drivers\i8042prt.sys - ok
10:17:06.0203 2972  [ F718DCDDAC2544BC693F22977D06F78B ] C:\WINDOWS\system32\drivers\kbdhid.sys
10:17:06.0203 2972  C:\WINDOWS\system32\drivers\kbdhid.sys - ok
10:17:06.0203 2972  [ 4AE068242760A1FB6E1A44BF4E16AFA6 ] C:\WINDOWS\system32\drivers\mnmdd.sys
10:17:06.0203 2972  C:\WINDOWS\system32\drivers\mnmdd.sys - ok
10:17:06.0203 2972  [ 0D3A8FAFCEACD8B7625CD549757A7DF1 ] C:\WINDOWS\system32\drivers\vga.sys
10:17:06.0203 2972  C:\WINDOWS\system32\drivers\vga.sys - ok
10:17:06.0203 2972  [ C941EA2454BA8350021D774DAF0F1027 ] C:\WINDOWS\system32\drivers\msfs.sys
10:17:06.0203 2972  C:\WINDOWS\system32\drivers\msfs.sys - ok
10:17:06.0203 2972  [ 4912D5B403614CE99C28420F75353332 ] C:\WINDOWS\system32\drivers\rdpcdd.sys
10:17:06.0203 2972  C:\WINDOWS\system32\drivers\rdpcdd.sys - ok
10:17:06.0218 2972  [ 23C74D75E36E7158768DD63D92789A91 ] C:\WINDOWS\system32\drivers\ipsec.sys
10:17:06.0218 2972  C:\WINDOWS\system32\drivers\ipsec.sys - ok
10:17:06.0218 2972  [ 3182D64AE053D6FB034F44B6DEF8034A ] C:\WINDOWS\system32\drivers\npfs.sys
10:17:06.0218 2972  C:\WINDOWS\system32\drivers\npfs.sys - ok
10:17:06.0218 2972  [ FE0D99D6F31E4FAD8159F690D68DED9C ] C:\WINDOWS\system32\drivers\rasacd.sys
10:17:06.0218 2972  C:\WINDOWS\system32\drivers\rasacd.sys - ok
10:17:06.0218 2972  [ 9AEFA14BD6B182D61E3119FA5F436D3D ] C:\WINDOWS\system32\drivers\tcpip.sys
10:17:06.0218 2972  C:\WINDOWS\system32\drivers\tcpip.sys - ok
10:17:06.0218 2972  [ 69A4DF4CD2A15AACC0E8D2005D6A04BA ] C:\WINDOWS\system32\drivers\avgtdix.sys
10:17:06.0218 2972  C:\WINDOWS\system32\drivers\avgtdix.sys - ok
10:17:06.0234 2972  [ CC748EA12C6EFFDE940EE98098BF96BB ] C:\WINDOWS\system32\drivers\ipnat.sys
10:17:06.0234 2972  C:\WINDOWS\system32\drivers\ipnat.sys - ok
10:17:06.0234 2972  [ 74B2B2F5BEA5E9A3DC021D685551BD3D ] C:\WINDOWS\system32\drivers\netbt.sys
10:17:06.0234 2972  C:\WINDOWS\system32\drivers\netbt.sys - ok
10:17:06.0234 2972  [ E20B95BAEDB550F32DD489265C1DA1F6 ] C:\WINDOWS\system32\drivers\wanarp.sys
10:17:06.0234 2972  C:\WINDOWS\system32\drivers\wanarp.sys - ok
10:17:06.0234 2972  [ 1E44BC1E83D8FD2305F8D452DB109CF9 ] C:\WINDOWS\system32\drivers\afd.sys
10:17:06.0234 2972  C:\WINDOWS\system32\drivers\afd.sys - ok
10:17:06.0250 2972  [ 5D81CF9A2F1A3A756B66CF684911CDF0 ] C:\WINDOWS\system32\drivers\netbios.sys
10:17:06.0250 2972  C:\WINDOWS\system32\drivers\netbios.sys - ok
10:17:06.0250 2972  [ B3651DC7694AAB9AD03BA2297A54250E ] C:\WINDOWS\system32\drivers\VBoxDrv.sys
10:17:06.0250 2972  C:\WINDOWS\system32\drivers\VBoxDrv.sys - ok
10:17:06.0250 2972  [ 3DD91CB172F3F02D877A641E95D8AC89 ] C:\WINDOWS\system32\drivers\VBoxUSBMon.sys
10:17:06.0250 2972  C:\WINDOWS\system32\drivers\VBoxUSBMon.sys - ok
10:17:06.0250 2972  [ 7AD224AD1A1437FE28D89CF22B17780A ] C:\WINDOWS\system32\drivers\rdbss.sys
10:17:06.0250 2972  C:\WINDOWS\system32\drivers\rdbss.sys - ok
10:17:06.0250 2972  [ 09E2A4D33F81A06A8AAB2BA0A0B5D235 ] C:\WINDOWS\system32\drivers\fips.sys
10:17:06.0250 2972  C:\WINDOWS\system32\drivers\fips.sys - ok
10:17:06.0265 2972  [ 7D304A5EB4344EBEEAB53A2FE3FFB9F0 ] C:\WINDOWS\system32\drivers\mrxsmb.sys
10:17:06.0265 2972  C:\WINDOWS\system32\drivers\mrxsmb.sys - ok
10:17:06.0265 2972  [ 7023142C545896D3538C9D36DDC57406 ] C:\WINDOWS\system32\drivers\avgldx86.sys
10:17:06.0265 2972  C:\WINDOWS\system32\drivers\avgldx86.sys - ok
10:17:06.0265 2972  [ 173F317CE0DB8E21322E71B7E60A27E8 ] C:\WINDOWS\system32\drivers\usbccgp.sys
10:17:06.0265 2972  C:\WINDOWS\system32\drivers\usbccgp.sys - ok
10:17:06.0265 2972  [ 1AF592532532A402ED7C060F6954004F ] C:\WINDOWS\system32\drivers\hidclass.sys
10:17:06.0265 2972  C:\WINDOWS\system32\drivers\hidclass.sys - ok
10:17:06.0265 2972  [ CCF82C5EC8A7326C3066DE870C06DAF1 ] C:\WINDOWS\system32\drivers\hidusb.sys
10:17:06.0265 2972  C:\WINDOWS\system32\drivers\hidusb.sys - ok
10:17:06.0281 2972  [ ECEC1E6CD558AB80F944F31326E9D3B5 ] C:\WINDOWS\system32\drivers\mouhid.sys
10:17:06.0281 2972  C:\WINDOWS\system32\drivers\mouhid.sys - ok
10:17:06.0281 2972  [ DACC0743F5313045D5CCA23F8A7CDF68 ] C:\WINDOWS\system32\drivers\avgmfx86.sys
10:17:06.0281 2972  C:\WINDOWS\system32\drivers\avgmfx86.sys - ok
10:17:06.0281 2972  [ 9E42E8B6BB7FD68F840003A9FC8F24C8 ] C:\WINDOWS\system32\drivers\avgidsdriverx.sys
10:17:06.0281 2972  C:\WINDOWS\system32\drivers\avgidsdriverx.sys - ok
10:17:06.0281 2972  [ 240F106B07CD9B522E2CD9E621618367 ] C:\WINDOWS\system32\drivers\avgidsshimx.sys
10:17:06.0281 2972  C:\WINDOWS\system32\drivers\avgidsshimx.sys - ok
10:17:06.0281 2972  [ 059568113B0940BCDFD5F17B698CE9E9 ] C:\WINDOWS\system32\smss.exe
10:17:06.0281 2972  C:\WINDOWS\system32\smss.exe - ok
10:17:06.0296 2972  [ 0EE6546CDEF5F387AD0D23D4EBF798A8 ] C:\WINDOWS\system32\ntdll.dll
10:17:06.0296 2972  C:\WINDOWS\system32\ntdll.dll - ok
10:17:06.0296 2972  [ 4C51FACD394B6E4E3C3B745BDFBE2E33 ] C:\WINDOWS\system32\autochk.exe
10:17:06.0296 2972  C:\WINDOWS\system32\autochk.exe - ok
10:17:06.0296 2972  [ 8D06625F44615F093E5BE930F93C5732 ] C:\PROGRA~1\AVG\AVG2013\avgrsx.exe
10:17:06.0296 2972  C:\PROGRA~1\AVG\AVG2013\avgrsx.exe - ok
10:17:06.0296 2972  [ 530B316C6B11F05979E84709F124B942 ] C:\Program Files\AVG\AVG2013\avgsysx.dll
10:17:06.0296 2972  C:\Program Files\AVG\AVG2013\avgsysx.dll - ok
10:17:06.0296 2972  [ 070228BB4F6D6794C2CEC8DD9EEE48F5 ] C:\Program Files\AVG\AVG2013\avgntopensslx.dll
10:17:06.0296 2972  C:\Program Files\AVG\AVG2013\avgntopensslx.dll - ok
10:17:06.0312 2972  [ B878CFB59724B52931043DF69075DB5C ] C:\Program Files\AVG\AVG2013\avglogx.dll
10:17:06.0312 2972  C:\Program Files\AVG\AVG2013\avglogx.dll - ok
10:17:06.0312 2972  [ C885B02847F5D2FD45A24E219ED93B32 ] C:\WINDOWS\system32\drivers\cdfs.sys
10:17:06.0312 2972  C:\WINDOWS\system32\drivers\cdfs.sys - ok
10:17:06.0312 2972  [ 38D332A6D56AF32635675F132548343E ] C:\WINDOWS\system32\drivers\fastfat.sys
10:17:06.0312 2972  C:\WINDOWS\system32\drivers\fastfat.sys - ok
10:17:06.0312 2972  [ 42F11F37CC06D9AB6528AF2E215B8799 ] C:\Program Files\AVG\AVG2013\avgwdsvc.exe
10:17:06.0312 2972  C:\Program Files\AVG\AVG2013\avgwdsvc.exe - ok
10:17:06.0328 2972  [ 758D8ADFE8D674740FBF90F643ECACA0 ] C:\Program Files\AVG\AVG2013\avgwdwsc.dll
10:17:06.0328 2972  C:\Program Files\AVG\AVG2013\avgwdwsc.dll - ok
10:17:06.0328 2972  [ 459E24037A188F55FFCEB52C3049168A ] C:\WINDOWS\system32\ntoskrnl.exe
10:17:06.0328 2972  C:\WINDOWS\system32\ntoskrnl.exe - ok
10:17:06.0328 2972  [ A414ED40E29D86C275D8EA66944886F6 ] C:\WINDOWS\system32\csrss.exe
10:17:06.0328 2972  C:\WINDOWS\system32\csrss.exe - ok
10:17:06.0328 2972  [ D199B05901C2407FC0F87444A24A4F3C ] C:\WINDOWS\system32\kbdpl.dll
10:17:06.0328 2972  C:\WINDOWS\system32\kbdpl.dll - ok
10:17:06.0343 2972  [ 897663C8606357A8E86E57CDEA8EE219 ] C:\WINDOWS\system32\kbdpl1.dll
10:17:06.0343 2972  C:\WINDOWS\system32\kbdpl1.dll - ok
10:17:06.0343 2972  [ 56C5B179FE3308B655EB6208C3256FEC ] C:\WINDOWS\system32\kbdus.dll
10:17:06.0343 2972  C:\WINDOWS\system32\kbdus.dll - ok
10:17:06.0343 2972  [ 60446A3F10ECBA750127C8B21E30E9F1 ] C:\WINDOWS\system32\lz32.dll
10:17:06.0343 2972  C:\WINDOWS\system32\lz32.dll - ok
10:17:06.0343 2972  [ 71C6AB6EB8CF1190BAC7075F82BD8F05 ] C:\WINDOWS\system32\sfc.dll
10:17:06.0343 2972  C:\WINDOWS\system32\sfc.dll - ok
10:17:06.0343 2972  [ FF5D39FF73DDDAE56FE177A88894E3B4 ] C:\WINDOWS\system32\vga.dll
10:17:06.0343 2972  C:\WINDOWS\system32\vga.dll - ok
10:17:06.0359 2972  [ 317A54F96E2CC08792655FCAC2FFFC95 ] C:\WINDOWS\system32\imagehlp.dll
10:17:06.0359 2972  C:\WINDOWS\system32\imagehlp.dll - ok
10:17:06.0359 2972  [ 88296F7943F30A1EE3AF735440B92268 ] C:\WINDOWS\system32\lsass.exe
10:17:06.0359 2972  C:\WINDOWS\system32\lsass.exe - ok
10:17:06.0359 2972  [ 9845B55438CD6A71E1F14F175A2BAAE5 ] C:\WINDOWS\system32\msidle.dll
10:17:06.0359 2972  C:\WINDOWS\system32\msidle.dll - ok
10:17:06.0359 2972  [ 20E2F2943D19E99590157874A0C92BD0 ] C:\WINDOWS\system32\msimg32.dll
10:17:06.0359 2972  C:\WINDOWS\system32\msimg32.dll - ok
10:17:06.0359 2972  [ EE5E78BC35F664B5BDEDA4ACC0710FE8 ] C:\WINDOWS\system32\nddeapi.dll
10:17:06.0359 2972  C:\WINDOWS\system32\nddeapi.dll - ok
10:17:06.0375 2972  [ 10753A3ADC3E39A3B10CC3F08E98E6B4 ] C:\WINDOWS\system32\normaliz.dll
10:17:06.0375 2972  C:\WINDOWS\system32\normaliz.dll - ok
10:17:06.0375 2972  [ 3A5952EA643EB251A7B48DEC33FBC25D ] C:\WINDOWS\system32\olecli32.dll
10:17:06.0375 2972  C:\WINDOWS\system32\olecli32.dll - ok
10:17:06.0375 2972  [ B6ED5D957434434BD7991A36F457E024 ] C:\WINDOWS\system32\olecnv32.dll
10:17:06.0375 2972  C:\WINDOWS\system32\olecnv32.dll - ok
10:17:06.0375 2972  [ 634C41877848644BCBA2B43571F0F02B ] C:\WINDOWS\system32\olesvr32.dll
10:17:06.0375 2972  C:\WINDOWS\system32\olesvr32.dll - ok
10:17:06.0375 2972  [ 259918DFDE5CF53A5106793059E14A6B ] C:\WINDOWS\system32\olethk32.dll
10:17:06.0375 2972  C:\WINDOWS\system32\olethk32.dll - ok
10:17:06.0390 2972  [ D6804AD9DBDF13DF147A371EB881020F ] C:\WINDOWS\system32\rasadhlp.dll
10:17:06.0390 2972  C:\WINDOWS\system32\rasadhlp.dll - ok
10:17:06.0390 2972  [ D045201E07C6F55A7A6F29B4309745B5 ] C:\WINDOWS\system32\sensapi.dll
10:17:06.0390 2972  C:\WINDOWS\system32\sensapi.dll - ok
10:17:06.0390 2972  [ 5B9FC235221DC3F48DA7318CB0BD4888 ] C:\WINDOWS\system32\version.dll
10:17:06.0390 2972  C:\WINDOWS\system32\version.dll - ok
10:17:06.0390 2972  [ 3582A0E511CBC43FB1A669201D6AFE0A ] C:\WINDOWS\system32\mpr.dll
10:17:06.0390 2972  C:\WINDOWS\system32\mpr.dll - ok
10:17:06.0390 2972  [ 032682EED124BCFDB8F8625AC17D1A65 ] C:\WINDOWS\system32\psapi.dll
10:17:06.0390 2972  C:\WINDOWS\system32\psapi.dll - ok
10:17:06.0406 2972  [ 8607D35D92528E2DF386F19A960D23CE ] C:\WINDOWS\system32\svchost.exe
10:17:06.0406 2972  C:\WINDOWS\system32\svchost.exe - ok
10:17:06.0406 2972  [ BFBB14093B23124CA342C7DACB4C7215 ] C:\WINDOWS\system32\url.dll
10:17:06.0406 2972  C:\WINDOWS\system32\url.dll - ok
10:17:06.0406 2972  [ 3546C60D4201DF8BB517A7E72BF71BE1 ] C:\WINDOWS\system32\wmi.dll
10:17:06.0406 2972  C:\WINDOWS\system32\wmi.dll - ok
10:17:06.0406 2972  [ F43B5623C5CA5BF6D9678FCF19642422 ] C:\WINDOWS\system32\ws2help.dll
10:17:06.0406 2972  C:\WINDOWS\system32\ws2help.dll - ok
10:17:06.0406 2972  [ 04550D5EB7EE82C115DB547C01DF09FD ] C:\WINDOWS\system32\wuauserv.dll
10:17:06.0406 2972  C:\WINDOWS\system32\wuauserv.dll - ok
10:17:06.0406 2972  [ 5E6D485B4BA2FD043AA5D473C79F5DF6 ] C:\WINDOWS\system32\comdlg32.dll
10:17:06.0406 2972  C:\WINDOWS\system32\comdlg32.dll - ok
10:17:06.0421 2972  [ DD983E35EB2ED20F168526C2944AB8F7 ] C:\WINDOWS\system32\csrsrv.dll
10:17:06.0421 2972  C:\WINDOWS\system32\csrsrv.dll - ok
10:17:06.0421 2972  [ 6009FCD8960D6B51016A82D3463EA02E ] C:\WINDOWS\system32\dot3dlg.dll
10:17:06.0421 2972  C:\WINDOWS\system32\dot3dlg.dll - ok
10:17:06.0421 2972  [ 9407B1AB6D6B2C7B850B00A2ECEA8782 ] C:\WINDOWS\system32\gdi32.dll
10:17:06.0421 2972  C:\WINDOWS\system32\gdi32.dll - ok
10:17:06.0421 2972  [ 795BCF6FF2656486E11D1C240500BA07 ] C:\WINDOWS\system32\profmap.dll
10:17:06.0421 2972  C:\WINDOWS\system32\profmap.dll - ok
10:17:06.0421 2972  [ 6078A51097F548BEDAAF107AC9072A2A ] C:\WINDOWS\AppPatch\acadproc.dll
10:17:06.0421 2972  C:\WINDOWS\AppPatch\acadproc.dll - ok
10:17:06.0437 2972  [ 65C782F8CFC1BEBCC58E1532F44B6408 ] C:\WINDOWS\system32\basesrv.dll
10:17:06.0437 2972  C:\WINDOWS\system32\basesrv.dll - ok
10:17:06.0437 2972  [ B19E7772B4083735E61FA4EE038BFFCC ] C:\WINDOWS\system32\cryptdll.dll
10:17:06.0437 2972  C:\WINDOWS\system32\cryptdll.dll - ok
10:17:06.0437 2972  [ 437AA83D68F9FAC234CA68DBD40DB705 ] C:\WINDOWS\system32\lmhsvc.dll
10:17:06.0437 2972  C:\WINDOWS\system32\lmhsvc.dll - ok
10:17:06.0437 2972  [ 61732500448B78B3EAE07701BD577904 ] C:\WINDOWS\system32\ncobjapi.dll
10:17:06.0437 2972  C:\WINDOWS\system32\ncobjapi.dll - ok
10:17:06.0437 2972  [ 1F798EB0B495FEC8476A1D5AD1A3DDEF ] C:\WINDOWS\system32\regapi.dll
10:17:06.0437 2972  C:\WINDOWS\system32\regapi.dll - ok
10:17:06.0453 2972  [ 5144B639F899014B0C6F5595BC552048 ] C:\WINDOWS\system32\secur32.dll
10:17:06.0453 2972  C:\WINDOWS\system32\secur32.dll - ok
10:17:06.0453 2972  [ B39AE93E06F87C364ACF12B4D5DF907D ] C:\WINDOWS\system32\winrnr.dll
10:17:06.0453 2972  C:\WINDOWS\system32\winrnr.dll - ok
10:17:06.0453 2972  [ 03F727DFB0E242428AB7A20434ACF652 ] C:\WINDOWS\system32\wshtcpip.dll
10:17:06.0453 2972  C:\WINDOWS\system32\wshtcpip.dll - ok
10:17:06.0453 2972  [ B10D32E78339E69909D6C82877F48E91 ] C:\WINDOWS\system32\wtsapi32.dll
10:17:06.0453 2972  C:\WINDOWS\system32\wtsapi32.dll - ok
10:17:06.0453 2972  [ 80B008CF47C3D8AFFE350B310F4A98C1 ] C:\WINDOWS\system32\dimsntfy.dll
10:17:06.0453 2972  C:\WINDOWS\system32\dimsntfy.dll - ok
10:17:06.0468 2972  [ D858920A05076914D34B0388E8D96CC0 ] C:\WINDOWS\system32\dmserver.dll
10:17:06.0468 2972  C:\WINDOWS\system32\dmserver.dll - ok
10:17:06.0468 2972  [ 2990FED0931074655F77069751FCC614 ] C:\WINDOWS\system32\msasn1.dll
10:17:06.0468 2972  C:\WINDOWS\system32\msasn1.dll - ok
10:17:06.0468 2972  [ C6BB1D1500DB4A0E224CB65E6C7E8A80 ] C:\WINDOWS\system32\msprivs.dll
10:17:06.0468 2972  C:\WINDOWS\system32\msprivs.dll - ok
10:17:06.0468 2972  [ 57BCFEAA16F4C2513AED9545B6EDD2C9 ] C:\WINDOWS\system32\oleaccrc.dll
10:17:06.0468 2972  C:\WINDOWS\system32\oleaccrc.dll - ok
10:17:06.0468 2972  [ 414C17A2958AEDAC700BBAAFBF999F94 ] C:\WINDOWS\system32\powrprof.dll
10:17:06.0468 2972  C:\WINDOWS\system32\powrprof.dll - ok
10:17:06.0484 2972  [ 2AAD9026648120FFFE2A8D871BB2BBC7 ] C:\WINDOWS\system32\seclogon.dll
10:17:06.0484 2972  C:\WINDOWS\system32\seclogon.dll - ok
10:17:06.0484 2972  [ B0DF4266C503BB2E9372601A4526AE1A ] C:\WINDOWS\system32\wbem\wbemprox.dll
10:17:06.0484 2972  C:\WINDOWS\system32\wbem\wbemprox.dll - ok
10:17:06.0484 2972  [ 08CA57CA108D2CFF23D9B7CF90EBFFF4 ] C:\WINDOWS\system32\wldap32.dll
10:17:06.0484 2972  C:\WINDOWS\system32\wldap32.dll - ok
10:17:06.0484 2972  [ BBA7293851697233A599C9506F886489 ] C:\WINDOWS\system32\apphelp.dll
10:17:06.0484 2972  C:\WINDOWS\system32\apphelp.dll - ok
10:17:06.0484 2972  [ 0A09F14B5EC7B6349F2A98C9E3E0F8A7 ] C:\WINDOWS\system32\authz.dll
10:17:06.0484 2972  C:\WINDOWS\system32\authz.dll - ok
10:17:06.0500 2972  [ ED1B71382C31FD2CF3CDC4672EFAD6EA ] C:\WINDOWS\system32\ersvc.dll
10:17:06.0500 2972  C:\WINDOWS\system32\ersvc.dll - ok
10:17:06.0500 2972  [ AB63C8D754D90E3F93CD5F76F85C60D2 ] C:\WINDOWS\system32\winsta.dll
10:17:06.0500 2972  C:\WINDOWS\system32\winsta.dll - ok
10:17:06.0500 2972  [ 8EE03B46ABBDA6CB89823E6E7C151E12 ] C:\WINDOWS\system32\wow32.dll
10:17:06.0500 2972  C:\WINDOWS\system32\wow32.dll - ok
10:17:06.0500 2972  [ DD1756F2C53D34F0E33A0D73F9B43444 ] C:\WINDOWS\system32\hid.dll
10:17:06.0500 2972  C:\WINDOWS\system32\hid.dll - ok
10:17:06.0500 2972  [ 1776C3B6069EEECC8042535296C1866A ] C:\WINDOWS\system32\hidserv.dll
10:17:06.0500 2972  C:\WINDOWS\system32\hidserv.dll - ok
10:17:06.0515 2972  [ C0AA2AB856680C44739B41E01F5BD4E9 ] C:\WINDOWS\system32\ws2_32.dll
10:17:06.0515 2972  C:\WINDOWS\system32\ws2_32.dll - ok
10:17:06.0515 2972  [ 16C770A49551AD5CBADC746E83372C09 ] C:\WINDOWS\system32\ntdsapi.dll
10:17:06.0515 2972  C:\WINDOWS\system32\ntdsapi.dll - ok
10:17:06.0515 2972  [ 6A6F663038DDF560EEC565A929FBFCFE ] C:\WINDOWS\system32\shimeng.dll
10:17:06.0515 2972  C:\WINDOWS\system32\shimeng.dll - ok
10:17:06.0515 2972  [ F4D9ACD9768DA75A8491E8C3B18ECA94 ] C:\WINDOWS\system32\wsock32.dll
10:17:06.0515 2972  C:\WINDOWS\system32\wsock32.dll - ok
10:17:06.0515 2972  [ 2E9A03268E609917B83921EE16FD9CFB ] C:\WINDOWS\system32\imm32.dll
10:17:06.0515 2972  C:\WINDOWS\system32\imm32.dll - ok
10:17:06.0531 2972  [ 411864012AC39F2B57319AEF64D336DF ] C:\WINDOWS\system32\msvcrt.dll
10:17:06.0531 2972  C:\WINDOWS\system32\msvcrt.dll - ok
10:17:06.0531 2972  [ A1C80F6AED9C63A8230D4A35A40F93F3 ] C:\WINDOWS\system32\samlib.dll
10:17:06.0531 2972  C:\WINDOWS\system32\samlib.dll - ok
10:17:06.0531 2972  [ 8500CF90B6305A547C9EFB3A862EB92F ] C:\WINDOWS\system32\wintrust.dll
10:17:06.0531 2972  C:\WINDOWS\system32\wintrust.dll - ok
10:17:06.0531 2972  [ 57377451E9551E7EABF1E410CA97A5A3 ] C:\WINDOWS\system32\dot3api.dll
10:17:06.0531 2972  C:\WINDOWS\system32\dot3api.dll - ok
10:17:06.0531 2972  [ 59299D8474353D297D482BA4B558FC07 ] C:\WINDOWS\system32\msacm32.dll
10:17:06.0531 2972  C:\WINDOWS\system32\msacm32.dll - ok
10:17:06.0546 2972  [ E7306BF4E841FD76EFE6276BE2617128 ] C:\WINDOWS\system32\ntvdm.exe
10:17:06.0546 2972  C:\WINDOWS\system32\ntvdm.exe - ok
10:17:06.0546 2972  [ 8324B8CB7B8811E42B0A61716AD2AD07 ] C:\WINDOWS\system32\rtutils.dll
10:17:06.0546 2972  C:\WINDOWS\system32\rtutils.dll - ok
10:17:06.0546 2972  [ 19FEEF6CEDD18ADE51092B947DBBCB02 ] C:\WINDOWS\system32\winsrv.dll
10:17:06.0546 2972  C:\WINDOWS\system32\winsrv.dll - ok
10:17:06.0546 2972  [ 9D6788EFFB9972C28C38D9C5E67249D5 ] C:\WINDOWS\system32\browser.dll
10:17:06.0546 2972  C:\WINDOWS\system32\browser.dll - ok
10:17:06.0546 2972  [ 082BE13166A3354F25F78E0B2601012B ] C:\WINDOWS\system32\dnsrslvr.dll
10:17:06.0546 2972  C:\WINDOWS\system32\dnsrslvr.dll - ok
10:17:06.0562 2972  [ B40C782A08B8BF33DECF3D41194711E6 ] C:\WINDOWS\system32\eapolqec.dll
10:17:06.0562 2972  C:\WINDOWS\system32\eapolqec.dll - ok
10:17:06.0562 2972  [ 2EA0B6965A7A384133D5A9BA07BD57B4 ] C:\WINDOWS\system32\odbcint.dll
10:17:06.0562 2972  C:\WINDOWS\system32\odbcint.dll - ok
10:17:06.0562 2972  [ 55AAE86C7C2CADF6972ACD1D76C24A98 ] C:\WINDOWS\system32\shsvcs.dll
10:17:06.0562 2972  C:\WINDOWS\system32\shsvcs.dll - ok
10:17:06.0562 2972  [ CF38114CBE438942412518CC35A3F8AA ] C:\WINDOWS\system32\wdigest.dll
10:17:06.0562 2972  C:\WINDOWS\system32\wdigest.dll - ok
10:17:06.0562 2972  [ AFCE55C392A9676BD24A287D5ED1C777 ] C:\WINDOWS\system32\advapi32.dll
10:17:06.0562 2972  C:\WINDOWS\system32\advapi32.dll - ok
10:17:06.0578 2972  [ 3A28D3E7BAD0EED3810CD918B2525B54 ] C:\WINDOWS\system32\audiosrv.dll
10:17:06.0578 2972  C:\WINDOWS\system32\audiosrv.dll - ok
10:17:06.0578 2972  [ 7A660EDC0757849DF5F8706FB6E9F740 ] C:\WINDOWS\system32\msvcrt40.dll
10:17:06.0578 2972  C:\WINDOWS\system32\msvcrt40.dll - ok
10:17:06.0578 2972  [ 04069EE1DCB67F184E268210AA138E5D ] C:\WINDOWS\system32\sfc_os.dll
10:17:06.0578 2972  C:\WINDOWS\system32\sfc_os.dll - ok
10:17:06.0578 2972  [ FA0EA4E9F2458423F6883FD36FE1F097 ] C:\WINDOWS\system32\oleaut32.dll
10:17:06.0578 2972  C:\WINDOWS\system32\oleaut32.dll - ok
10:17:06.0593 2972  [ 43F910F8015193931FAC3CD6F3992867 ] C:\WINDOWS\system32\digest.dll
10:17:06.0593 2972  C:\WINDOWS\system32\digest.dll - ok
10:17:06.0593 2972  [ 35FCCFD093582FA9098762E6F84EE119 ] C:\WINDOWS\system32\eventlog.dll
10:17:06.0593 2972  C:\WINDOWS\system32\eventlog.dll - ok
10:17:06.0593 2972  [ D5331E4129DF4C58F351CA46BFE46BDC ] C:\WINDOWS\system32\msapsspc.dll
10:17:06.0593 2972  C:\WINDOWS\system32\msapsspc.dll - ok
10:17:06.0593 2972  [ 99B519A35DE2380D20EEE16E7A8BD9FB ] C:\WINDOWS\system32\msxml3r.dll
10:17:06.0593 2972  C:\WINDOWS\system32\msxml3r.dll - ok
10:17:06.0593 2972  [ 02A467E27AF55F7064C5B251E587315F ] C:\WINDOWS\system32\services.exe
10:17:06.0593 2972  C:\WINDOWS\system32\services.exe - ok
10:17:06.0609 2972  [ A9ED600F08A92143253C10EDB5651ECF ] C:\WINDOWS\system32\sfcfiles.dll
10:17:06.0609 2972  C:\WINDOWS\system32\sfcfiles.dll - ok
10:17:06.0609 2972  [ 43D6B02E67AAB8FFA3858E04265F85EA ] C:\WINDOWS\system32\rpcrt4.dll
10:17:06.0609 2972  C:\WINDOWS\system32\rpcrt4.dll - ok
10:17:06.0609 2972  [ D7C9B20DA163EC9B23E4D65BA508132D ] C:\WINDOWS\system32\atl.dll
10:17:06.0609 2972  C:\WINDOWS\system32\atl.dll - ok
10:17:06.0609 2972  [ 77C951B64413E80EEC0359426DCA938B ] C:\WINDOWS\system32\kernel32.dll
10:17:06.0609 2972  C:\WINDOWS\system32\kernel32.dll - ok
10:17:06.0609 2972  [ F14A58B29848DE1E9272AE834F0025B0 ] C:\WINDOWS\system32\rasman.dll
10:17:06.0609 2972  C:\WINDOWS\system32\rasman.dll - ok
10:17:06.0625 2972  [ 9934B613EB7E082A177D1F51242636A0 ] C:\WINDOWS\system32\shlwapi.dll
10:17:06.0625 2972  C:\WINDOWS\system32\shlwapi.dll - ok
10:17:06.0625 2972  [ CD5309E23443E954579604DA758827CA ] C:\WINDOWS\system32\ole32.dll
10:17:06.0625 2972  C:\WINDOWS\system32\ole32.dll - ok
10:17:06.0625 2972  [ CBE33B90B00D6CB8B6FD6B8E512BDA48 ] C:\WINDOWS\system32\iphlpapi.dll
10:17:06.0625 2972  C:\WINDOWS\system32\iphlpapi.dll - ok
10:17:06.0625 2972  [ 633284ED9DA6AAD993C7D3AFB17104B8 ] C:\WINDOWS\system32\netapi32.dll
10:17:06.0625 2972  C:\WINDOWS\system32\netapi32.dll - ok
10:17:06.0625 2972  [ AAF4DFEC45B41BF07A02D92AFDB5CA79 ] C:\WINDOWS\system32\umpnpmgr.dll
10:17:06.0625 2972  C:\WINDOWS\system32\umpnpmgr.dll - ok
10:17:06.0640 2972  [ A435C5C069AFD901751AC323AD238793 ] C:\WINDOWS\system32\user32.dll
10:17:06.0640 2972  C:\WINDOWS\system32\user32.dll - ok
10:17:06.0640 2972  [ 6599CFCB40329C37282E4E80E813E799 ] C:\WINDOWS\system32\dnsapi.dll
10:17:06.0640 2972  C:\WINDOWS\system32\dnsapi.dll - ok
10:17:06.0640 2972  [ 602530F05331F55D70C853159CC0530A ] C:\WINDOWS\system32\urlmon.dll
10:17:06.0640 2972  C:\WINDOWS\system32\urlmon.dll - ok
10:17:06.0640 2972  [ 58C3F37DC7614FF927CB70C5AE56AAE0 ] C:\WINDOWS\system32\wininet.dll
10:17:06.0640 2972  C:\WINDOWS\system32\wininet.dll - ok
10:17:06.0656 2972  [ 8B9ED4A686777261B9AFADD2A6D981A0 ] C:\WINDOWS\system32\comctl32.dll
10:17:06.0656 2972  C:\WINDOWS\system32\comctl32.dll - ok
10:17:06.0656 2972  [ D1A94973B6A25493035069C6F30DB1E2 ] C:\WINDOWS\system32\odbc32.dll
10:17:06.0656 2972  C:\WINDOWS\system32\odbc32.dll - ok
10:17:06.0656 2972  [ 51FD2E13D723857B9CA239AE77150F48 ] C:\WINDOWS\system32\winlogon.exe
10:17:06.0656 2972  C:\WINDOWS\system32\winlogon.exe - ok
10:17:06.0656 2972  [ C204B914A4CB73575B6CA57A44FB54F6 ] C:\WINDOWS\system32\winscard.dll
10:17:06.0656 2972  C:\WINDOWS\system32\winscard.dll - ok
10:17:06.0656 2972  [ 360084821D02D27973299360EBA41CAD ] C:\WINDOWS\system32\schannel.dll
10:17:06.0656 2972  C:\WINDOWS\system32\schannel.dll - ok
10:17:06.0671 2972  [ 692CBEDB45B6812564B6CA50324FDDF8 ] C:\WINDOWS\system32\userenv.dll
10:17:06.0671 2972  C:\WINDOWS\system32\userenv.dll - ok
10:17:06.0671 2972  [ AF752014F7EB61542E3F35B9374D7E76 ] C:\WINDOWS\pchealth\helpctr\binaries\pchsvc.dll
10:17:06.0671 2972  C:\WINDOWS\pchealth\helpctr\binaries\pchsvc.dll - ok
10:17:06.0671 2972  [ 83C18E89B6507B6980293DBE8890F262 ] C:\WINDOWS\system32\crypt32.dll
10:17:06.0671 2972  C:\WINDOWS\system32\crypt32.dll - ok
10:17:06.0671 2972  [ 092E8E704A37EBA79E5AFCC1FEFFDD9A ] C:\WINDOWS\system32\ntmarta.dll
10:17:06.0671 2972  C:\WINDOWS\system32\ntmarta.dll - ok
10:17:06.0671 2972  [ 1D74ED582A9BAF69BBCA08E8739A30BE ] C:\WINDOWS\system32\winmm.dll
10:17:06.0671 2972  C:\WINDOWS\system32\winmm.dll - ok
10:17:06.0687 2972  [ 6B105FE95F2E9F0B6346044BA59D41C9 ] C:\WINDOWS\system32\cryptsvc.dll
10:17:06.0687 2972  C:\WINDOWS\system32\cryptsvc.dll - ok
10:17:06.0687 2972  [ FF21C41699302A4EF0E2F49EA6430B88 ] C:\WINDOWS\system32\msv1_0.dll
10:17:06.0687 2972  C:\WINDOWS\system32\msv1_0.dll - ok
10:17:06.0687 2972  [ A672CA3981352F8E9C30FEA056E80A62 ] C:\WINDOWS\system32\w32time.dll
10:17:06.0687 2972  C:\WINDOWS\system32\w32time.dll - ok
10:17:06.0687 2972  [ E66E8A83038AB7EBF7CAFA219001DDF2 ] C:\WINDOWS\system32\eappprxy.dll
10:17:06.0687 2972  C:\WINDOWS\system32\eappprxy.dll - ok
10:17:06.0687 2972  [ 51D44AAF018DC3F45CF9B284443A923A ] C:\WINDOWS\system32\mspatcha.dll
10:17:06.0687 2972  C:\WINDOWS\system32\mspatcha.dll - ok
10:17:06.0703 2972  [ 6D2FEEF1125599AE7D458D7765023D5A ] C:\WINDOWS\system32\pstorsvc.dll
10:17:06.0703 2972  C:\WINDOWS\system32\pstorsvc.dll - ok
10:17:06.0703 2972  [ 3F74B6B4E2721272A117D25990141F73 ] C:\WINDOWS\system32\scecli.dll
10:17:06.0703 2972  C:\WINDOWS\system32\scecli.dll - ok
10:17:06.0703 2972  [ 60784F891563FB1B767F70117FC2428F ] C:\WINDOWS\system32\spoolsv.exe
10:17:06.0703 2972  C:\WINDOWS\system32\spoolsv.exe - ok
10:17:06.0703 2972  [ FAD720B0B24001EFB7DFF71C9DAC125E ] C:\WINDOWS\system32\winipsec.dll
10:17:06.0703 2972  C:\WINDOWS\system32\winipsec.dll - ok
10:17:06.0703 2972  [ E5E594F8B47D6F7021685F848C859599 ] C:\WINDOWS\system32\wzcsapi.dll
10:17:06.0703 2972  C:\WINDOWS\system32\wzcsapi.dll - ok
10:17:06.0703 2972  [ 0AC731A0956AF6092F76E8F5159D00C1 ] C:\Program Files\Common Files\Logishrd\Bluetooth\LBTWLgn.dll
10:17:06.0703 2972  C:\Program Files\Common Files\Logishrd\Bluetooth\LBTWLgn.dll - ok
10:17:06.0718 2972  [ 6B4AFE7C676CFF3EFF2DC06A4EE945F7 ] C:\WINDOWS\system32\dhcpcsvc.dll
10:17:06.0718 2972  C:\WINDOWS\system32\dhcpcsvc.dll - ok
10:17:06.0718 2972  [ 9D01E29D59723EB73B72107B208DAFE6 ] C:\WINDOWS\system32\sens.dll
10:17:06.0718 2972  C:\WINDOWS\system32\sens.dll - ok
10:17:06.0718 2972  [ 64D424E55ABDE20215DA189B769BD69E ] C:\WINDOWS\system32\shgina.dll
10:17:06.0718 2972  C:\WINDOWS\system32\shgina.dll - ok
10:17:06.0718 2972  [ 3458EDA96E30FBD0477A2800D3FB1909 ] C:\WINDOWS\system32\wups.dll
10:17:06.0718 2972  C:\WINDOWS\system32\wups.dll - ok
10:17:06.0718 2972  [ ACBE34470D4643958C9D865EBD4ABF92 ] C:\WINDOWS\system32\cabinet.dll
10:17:06.0718 2972  C:\WINDOWS\system32\cabinet.dll - ok
10:17:06.0734 2972  [ DA81B500BC537CE5A0C0D313CDB6BB52 ] C:\WINDOWS\system32\scesrv.dll
10:17:06.0734 2972  C:\WINDOWS\system32\scesrv.dll - ok
10:17:06.0734 2972  [ FA17019DA45C5D6464776A639A5A9ABB ] C:\WINDOWS\system32\wkssvc.dll
10:17:06.0734 2972  C:\WINDOWS\system32\wkssvc.dll - ok
10:17:06.0734 2972  [ BDC0C99E472176C8C2C853A68ADC5073 ] C:\WINDOWS\system32\wups2.dll
10:17:06.0734 2972  C:\WINDOWS\system32\wups2.dll - ok
10:17:06.0734 2972  [ B7085B68112DCE44779CD3B9FAF82B5D ] C:\WINDOWS\system32\setupapi.dll
10:17:06.0734 2972  C:\WINDOWS\system32\setupapi.dll - ok
10:17:06.0750 2972  [ 60FA49F6682F1DF13673E36A24E2E209 ] C:\WINDOWS\system32\wbem\wbemsvc.dll
10:17:06.0750 2972  C:\WINDOWS\system32\wbem\wbemsvc.dll - ok
10:17:06.0750 2972  [ 10B2B747B013FD1EE648B8A0A4E51318 ] C:\WINDOWS\system32\uxtheme.dll
10:17:06.0750 2972  C:\WINDOWS\system32\uxtheme.dll - ok
10:17:06.0750 2972  [ 81FB88B975E25D76E00B69879D8A434C ] C:\WINDOWS\system32\webclnt.dll
10:17:06.0750 2972  C:\WINDOWS\system32\webclnt.dll - ok
10:17:06.0750 2972  [ F4D5BAF5CBEF44386ABA2FA25642BC5A ] C:\WINDOWS\system32\wlnotify.dll
10:17:06.0750 2972  C:\WINDOWS\system32\wlnotify.dll - ok
10:17:06.0750 2972  [ 9DD90A28F72D623C064EE8CC8A889431 ] C:\WINDOWS\system32\cscdll.dll
10:17:06.0750 2972  C:\WINDOWS\system32\cscdll.dll - ok
10:17:06.0765 2972  [ 57AEF9205A2682ADF86713F73C69C60C ] C:\WINDOWS\system32\msvcp60.dll
10:17:06.0765 2972  C:\WINDOWS\system32\msvcp60.dll - ok
10:17:06.0765 2972  [ 21B3D731907B06132B1701772CCE60F8 ] C:\WINDOWS\system32\tapi32.dll
10:17:06.0765 2972  C:\WINDOWS\system32\tapi32.dll - ok
10:17:06.0765 2972  [ E09A6F7C02906151E34DE893682519E4 ] C:\WINDOWS\system32\sxs.dll
10:17:06.0765 2972  C:\WINDOWS\system32\sxs.dll - ok
10:17:06.0765 2972  [ 245FBC52FD65DCD3FA5DF0B3AFC0F97B ] C:\WINDOWS\system32\clusapi.dll
10:17:06.0765 2972  C:\WINDOWS\system32\clusapi.dll - ok
10:17:06.0781 2972  [ 29991D2286F86BCF613E72A172DF0F0B ] C:\WINDOWS\system32\colbact.dll
10:17:06.0781 2972  C:\WINDOWS\system32\colbact.dll - ok
10:17:06.0781 2972  [ 16F2D8F9DB362D0551DEAFBE7EA50AAF ] C:\WINDOWS\system32\mprapi.dll
10:17:06.0781 2972  C:\WINDOWS\system32\mprapi.dll - ok
10:17:06.0781 2972  [ 5B40F6C33789AC477BD337EC1DBCAB75 ] C:\WINDOWS\system32\mtxclu.dll
10:17:06.0781 2972  C:\WINDOWS\system32\mtxclu.dll - ok
10:17:06.0781 2972  [ 5D8BE068E108F8E3C675D7504CBACA91 ] C:\WINDOWS\system32\qutil.dll
10:17:06.0781 2972  C:\WINDOWS\system32\qutil.dll - ok
10:17:06.0781 2972  [ 2E0B0A051FFAA86E358465BB0880D453 ] C:\WINDOWS\system32\wuauclt.exe
10:17:06.0781 2972  C:\WINDOWS\system32\wuauclt.exe - ok
10:17:06.0796 2972  [ 384BB8B43AF0FAB08B6E2D5775097375 ] C:\WINDOWS\system32\samsrv.dll
10:17:06.0796 2972  C:\WINDOWS\system32\samsrv.dll - ok
10:17:06.0796 2972  [ C01362151BA986044FE22E22118E9038 ] C:\WINDOWS\system32\wbem\ncprov.dll
10:17:06.0796 2972  C:\WINDOWS\system32\wbem\ncprov.dll - ok
10:17:06.0796 2972  [ 26F2D74363EC3A05F8B35711177B8BCD ] C:\WINDOWS\system32\msgina.dll
10:17:06.0796 2972  C:\WINDOWS\system32\msgina.dll - ok
10:17:06.0796 2972  [ C219D1ACC647BE8BD426D4435A232BD0 ] C:\WINDOWS\system32\resutils.dll
10:17:06.0796 2972  C:\WINDOWS\system32\resutils.dll - ok
10:17:06.0812 2972  [ 199F3AAFA4B5FF66F0593A8686D94BDA ] C:\WINDOWS\system32\msnsspc.dll
10:17:06.0812 2972  C:\WINDOWS\system32\msnsspc.dll - ok
10:17:06.0812 2972  [ 54DAE3EA34802B4ED9AE1C6B1209FA56 ] C:\WINDOWS\system32\rsaenh.dll
10:17:06.0812 2972  C:\WINDOWS\system32\rsaenh.dll - ok
10:17:06.0812 2972  [ B6669F49D42E09BC0F9889FAA0F3336D ] C:\WINDOWS\system32\wscsvc.dll
10:17:06.0812 2972  C:\WINDOWS\system32\wscsvc.dll - ok
10:17:06.0812 2972  [ 0436EFEA0230700CCF7E1EF37F0D33A1 ] C:\WINDOWS\system32\adsldpc.dll
10:17:06.0812 2972  C:\WINDOWS\system32\adsldpc.dll - ok
10:17:06.0812 2972  [ D1738DDDFF196C5CEE6D867C136AF745 ] C:\WINDOWS\system32\alg.exe
10:17:06.0812 2972  C:\WINDOWS\system32\alg.exe - ok
10:17:06.0828 2972  [ 1E644E3533DCE2B580A663AE1ACBD539 ] C:\WINDOWS\system32\atmfd.dll
10:17:06.0828 2972  C:\WINDOWS\system32\atmfd.dll - ok
10:17:06.0828 2972  [ 5CEE16014C8B066B98FCEF3E64E4CAFC ] C:\WINDOWS\system32\kerberos.dll
10:17:06.0828 2972  C:\WINDOWS\system32\kerberos.dll - ok
10:17:06.0828 2972  [ 9858AD0A3FCD83C3B100EDD5852DE540 ] C:\WINDOWS\system32\netlogon.dll
10:17:06.0828 2972  C:\WINDOWS\system32\netlogon.dll - ok
10:17:06.0828 2972  [ B472B59EF98469C91651B751D3442CB8 ] C:\WINDOWS\system32\regsvc.dll
10:17:06.0828 2972  C:\WINDOWS\system32\regsvc.dll - ok
10:17:06.0843 2972  [ 2DF415A0F6D9CED645477A2ADACD2FDD ] C:\WINDOWS\system32\wbem\wbemcons.dll
10:17:06.0843 2972  C:\WINDOWS\system32\wbem\wbemcons.dll - ok
10:17:06.0843 2972  [ 34DB423408A6E6B8A81EFB8703773B9F ] C:\WINDOWS\system32\lsasrv.dll
10:17:06.0843 2972  C:\WINDOWS\system32\lsasrv.dll - ok
10:17:06.0843 2972  [ B63B4810CB102E9D443885C33EB701C9 ] C:\WINDOWS\system32\netevent.dll
10:17:06.0843 2972  C:\WINDOWS\system32\netevent.dll - ok
10:17:06.0843 2972  [ B9B6167E82D4F14C50222E0C4490BB6F ] C:\WINDOWS\system32\msctf.dll
10:17:06.0843 2972  C:\WINDOWS\system32\msctf.dll - ok
10:17:06.0859 2972  [ 9D1F13706FB5F02D0E8795FB2D03971D ] C:\WINDOWS\system32\mswsock.dll
10:17:06.0859 2972  C:\WINDOWS\system32\mswsock.dll - ok
10:17:06.0859 2972  [ 924F7BF6CB1EB3E9E56B4A0D9ABC499C ] C:\WINDOWS\system32\certcli.dll
10:17:06.0859 2972  C:\WINDOWS\system32\certcli.dll - ok
10:17:06.0859 2972  [ 0C90F73685139517CDFB0C44375A7755 ] C:\WINDOWS\system32\eappcfg.dll
10:17:06.0859 2972  C:\WINDOWS\system32\eappcfg.dll - ok
10:17:06.0859 2972  [ 31B948C99215470B737661EBBBA9A638 ] C:\WINDOWS\system32\credui.dll
10:17:06.0859 2972  C:\WINDOWS\system32\credui.dll - ok
10:17:06.0859 2972  [ F78B9C42122FF3C2D1CDD47A80E24259 ] C:\WINDOWS\system32\psbase.dll
10:17:06.0859 2972  C:\WINDOWS\system32\psbase.dll - ok
10:17:06.0875 2972  [ A37311D9D628C1042A2836731787F0F3 ] C:\WINDOWS\system32\rpcss.dll
10:17:06.0875 2972  C:\WINDOWS\system32\rpcss.dll - ok
10:17:06.0875 2972  [ C29639BA7410BCEF8898CBCB07A59CB1 ] C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.6028_x-ww_61e65202\comctl32.dll
10:17:06.0875 2972  C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.6028_x-ww_61e65202\comctl32.dll - ok
10:17:06.0875 2972  [ 20200EE3CFE10E9F0C028D8653BE11C6 ] C:\WINDOWS\system32\oleacc.dll
10:17:06.0875 2972  C:\WINDOWS\system32\oleacc.dll - ok
10:17:06.0875 2972  [ 5557230C5EDA5FBFBD621BCDC1327695 ] C:\WINDOWS\system32\onex.dll
10:17:06.0875 2972  C:\WINDOWS\system32\onex.dll - ok
10:17:06.0875 2972  [ 9E70EB419D7785C286DC458A019BAB9B ] C:\WINDOWS\system32\trkwks.dll
10:17:06.0890 2972  C:\WINDOWS\system32\trkwks.dll - ok
10:17:06.0890 2972  [ 1E4D92FED17224E9FB85040DA7763560 ] C:\WINDOWS\system32\wbem\wbemcomn.dll
10:17:06.0890 2972  C:\WINDOWS\system32\wbem\wbemcomn.dll - ok
10:17:06.0890 2972  [ FDADA437B8839FE0BC2509E13FC4AAD3 ] C:\WINDOWS\system32\mtxoci.dll
10:17:06.0890 2972  C:\WINDOWS\system32\mtxoci.dll - ok
10:17:06.0890 2972  [ 18B9DBAF83C368EF0E5E134A547ECA7D ] C:\WINDOWS\system32\raschap.dll
10:17:06.0890 2972  C:\WINDOWS\system32\raschap.dll - ok
10:17:06.0890 2972  [ DD73C11A5C4D14945846384B90A61A4B ] C:\WINDOWS\system32\schedsvc.dll
10:17:06.0890 2972  C:\WINDOWS\system32\schedsvc.dll - ok
10:17:06.0906 2972  [ 2DEE3DC6EB17D7BB774CE05695BA26D6 ] C:\WINDOWS\system32\hnetcfg.dll
10:17:06.0906 2972  C:\WINDOWS\system32\hnetcfg.dll - ok
10:17:06.0906 2972  [ 4FE97D0B1B182DF2A9BDD4C02155EF5E ] C:\WINDOWS\system32\netman.dll
10:17:06.0906 2972  C:\WINDOWS\system32\netman.dll - ok
10:17:06.0906 2972  [ 178F2C1CB9B06EBD5CCE2C60721DEBD4 ] C:\WINDOWS\AppPatch\acgenral.dll
10:17:06.0906 2972  C:\WINDOWS\AppPatch\acgenral.dll - ok
10:17:06.0906 2972  [ D92C8F9FAABCC2E59A1C2E19B2B8A7B0 ] C:\WINDOWS\system32\rasapi32.dll
10:17:06.0906 2972  C:\WINDOWS\system32\rasapi32.dll - ok
10:17:06.0906 2972  [ 15F00898ED7D7832FDC047E11510460F ] C:\WINDOWS\system32\wbem\wmiutils.dll
10:17:06.0906 2972  C:\WINDOWS\system32\wbem\wmiutils.dll - ok
10:17:06.0921 2972  [ 061A4BB67C324AC8C176E0D77923B212 ] C:\WINDOWS\system32\srvsvc.dll
10:17:06.0921 2972  C:\WINDOWS\system32\srvsvc.dll - ok
10:17:06.0921 2972  [ BC5C29BDBD51843405344244559F0EF3 ] C:\WINDOWS\system32\clbcatq.dll
10:17:06.0921 2972  C:\WINDOWS\system32\clbcatq.dll - ok
10:17:06.0921 2972  [ FEDE68BF80052BAD393AFD5C2E60DCB0 ] C:\WINDOWS\system32\dssenh.dll
10:17:06.0921 2972  C:\WINDOWS\system32\dssenh.dll - ok
10:17:06.0921 2972  [ 6AFF804839C85859E0247164FBE5F5BB ] C:\WINDOWS\system32\es.dll
10:17:06.0921 2972  C:\WINDOWS\system32\es.dll - ok
10:17:06.0921 2972  [ C018E7D2F223B8C0FFAEE44E6E1992F9 ] C:\WINDOWS\system32\xpsp2res.dll
10:17:06.0921 2972  C:\WINDOWS\system32\xpsp2res.dll - ok
10:17:06.0937 2972  [ A50CDA62E41316711D37CCE572E47D33 ] C:\WINDOWS\system32\duser.dll
10:17:06.0937 2972  C:\WINDOWS\system32\duser.dll - ok
10:17:06.0937 2972  [ 3CF90825076F8C32075C7A5B8FE5580A ] C:\WINDOWS\system32\riched20.dll
10:17:06.0937 2972  C:\WINDOWS\system32\riched20.dll - ok
10:17:06.0937 2972  [ 3549C1E17780A648153CA7F6D5DB4375 ] C:\WINDOWS\system32\cryptui.dll
10:17:06.0937 2972  C:\WINDOWS\system32\cryptui.dll - ok
10:17:06.0937 2972  [ ABF1962C902E85AD36761956BDE72325 ] C:\WINDOWS\system32\msi.dll
10:17:06.0937 2972  C:\WINDOWS\system32\msi.dll - ok
10:17:06.0937 2972  [ 8A7426E69FFA30EE4DC76CA3E3999121 ] C:\WINDOWS\system32\comres.dll
10:17:06.0937 2972  C:\WINDOWS\system32\comres.dll - ok
10:17:06.0953 2972  [ 70C22297534A88B0AD0568900AB5A6D9 ] C:\WINDOWS\system32\wbem\wmisvc.dll
10:17:06.0953 2972  C:\WINDOWS\system32\wbem\wmisvc.dll - ok
10:17:06.0953 2972  [ 4C96E1BDB6D254FA3F6CD3BD2D4B234A ] C:\WINDOWS\system32\WgaLogon.dll
10:17:06.0953 2972  C:\WINDOWS\system32\WgaLogon.dll - ok
10:17:06.0953 2972  [ 33863522CA0A63A2FB1E30E59392E1B1 ] C:\WINDOWS\system32\esent.dll
10:17:06.0953 2972  C:\WINDOWS\system32\esent.dll - ok
10:17:06.0953 2972  [ 7A18EAE605733D9DC572F6F501D30AC1 ] C:\WINDOWS\system32\logonui.exe
10:17:06.0953 2972  C:\WINDOWS\system32\logonui.exe - ok
10:17:06.0953 2972  [ 5E7BFF9EEE89BBAB9C83F0121DC51345 ] C:\WINDOWS\system32\activeds.dll
10:17:06.0953 2972  C:\WINDOWS\system32\activeds.dll - ok
10:17:06.0968 2972  [ 5B46CD86361F1932C929B8A0DFE1B158 ] C:\WINDOWS\system32\ipsecsvc.dll
10:17:06.0968 2972  C:\WINDOWS\system32\ipsecsvc.dll - ok
10:17:06.0968 2972  [ 02CC10AFE7DB4D8470A36C25AAA64FB9 ] C:\WINDOWS\system32\netmsg.dll
10:17:06.0968 2972  C:\WINDOWS\system32\netmsg.dll - ok
10:17:06.0968 2972  [ D95D5ABB82B1BD6BBD2D42F2830BBE44 ] C:\WINDOWS\system32\oakley.dll
10:17:06.0968 2972  C:\WINDOWS\system32\oakley.dll - ok
10:17:06.0968 2972  [ 5150B108EA88831E1C599603D8B89621 ] C:\WINDOWS\system32\nvsvc32.exe
10:17:06.0968 2972  C:\WINDOWS\system32\nvsvc32.exe - ok
10:17:06.0968 2972  [ C651154660B957ADFC414A467117B11A ] C:\WINDOWS\system32\rastls.dll
10:17:06.0968 2972  C:\WINDOWS\system32\rastls.dll - ok
10:17:06.0984 2972  [ 316D0E66074AE4CDE641C50D3A1C5148 ] C:\WINDOWS\system32\srsvc.dll
10:17:06.0984 2972  C:\WINDOWS\system32\srsvc.dll - ok
10:17:06.0984 2972  [ E2C6D562BD35352B73C00A744E9C07C6 ] C:\Documents and Settings\T4bzZ\Pulpit\fciv.exe
10:17:06.0984 2972  C:\Documents and Settings\T4bzZ\Pulpit\fciv.exe - ok
10:17:06.0984 2972  [ 8B1E785DF14D328DEA9BD5D40BC751A9 ] C:\WINDOWS\system32\msxml3.dll
10:17:06.0984 2972  C:\WINDOWS\system32\msxml3.dll - ok
10:17:06.0984 2972  [ 98EBC8382AA5F46D3F9031FDC581E718 ] C:\WINDOWS\system32\winhttp.dll
10:17:06.0984 2972  C:\WINDOWS\system32\winhttp.dll - ok
10:17:06.0984 2972  [ C2842273AAA77AC031EDB87FA19A2147 ] C:\WINDOWS\system32\wzcsvc.dll
10:17:06.0984 2972  C:\WINDOWS\system32\wzcsvc.dll - ok
10:17:07.0000 2972  [ EA6F264C4003E33B6B1C8DF177D2C09C ] C:\WINDOWS\system32\netshell.dll
10:17:07.0000 2972  C:\WINDOWS\system32\netshell.dll - ok
10:17:07.0015 2972  [ BA21648BBC4C028636F70DBDEC6BB551 ] C:\WINDOWS\system32\wbem\repdrvfs.dll
10:17:07.0015 2972  C:\WINDOWS\system32\wbem\repdrvfs.dll - ok
10:17:07.0015 2972  [ 6A4CB36AF9F060ED0D6046096429283C ] C:\WINDOWS\system32\shell32.dll
10:17:07.0015 2972  C:\WINDOWS\system32\shell32.dll - ok
10:17:07.0015 2972  [ 7B933DD7129B4C6B13C2B5FA3C391EC0 ] C:\WINDOWS\system32\wbem\esscli.dll
10:17:07.0015 2972  C:\WINDOWS\system32\wbem\esscli.dll - ok
10:17:07.0015 2972  [ 2AF5FF9701E1DC9B2AA4C258C4F1C832 ] C:\WINDOWS\system32\vssapi.dll
10:17:07.0015 2972  C:\WINDOWS\system32\vssapi.dll - ok
10:17:07.0015 2972  [ DA5C015911F68F22ED821E9EE49AB233 ] C:\WINDOWS\system32\ipnathlp.dll
10:17:07.0015 2972  C:\WINDOWS\system32\ipnathlp.dll - ok
10:17:07.0015 2972  [ 202295D0EF37B8440B1490EEC99A9FBE ] C:\WINDOWS\system32\wbem\fastprox.dll
10:17:07.0015 2972  C:\WINDOWS\system32\wbem\fastprox.dll - ok
10:17:07.0031 2972  [ 496CEA8DA5CA6E2B7C33453814ECA70D ] C:\WINDOWS\system32\wbem\wbemcore.dll
10:17:07.0031 2972  C:\WINDOWS\system32\wbem\wbemcore.dll - ok
10:17:07.0031 2972  [ 45D466CEA73F55C3A80F2D032726212D ] C:\WINDOWS\system32\wbem\wbemess.dll
10:17:07.0031 2972  C:\WINDOWS\system32\wbem\wbemess.dll - ok
10:17:07.0031 2972  [ 2183C3159F574B928AD8CAAB10BA7F43 ] C:\WINDOWS\system32\wbem\wmiprvsd.dll
10:17:07.0031 2972  C:\WINDOWS\system32\wbem\wmiprvsd.dll - ok
10:17:07.0031 2972  [ 0574E174EE4A95FF91ABC1B6C44D2DD1 ] C:\WINDOWS\system32\ntkrnlpa.exe
10:17:07.0031 2972  C:\WINDOWS\system32\ntkrnlpa.exe - ok
10:17:07.0031 2972  [ BC83108B18756547013ED443B8CDB31B ] C:\WINDOWS\system32\msvcp100.dll
10:17:07.0031 2972  C:\WINDOWS\system32\msvcp100.dll - ok
10:17:07.0031 2972  [ 05EC997E7933210DB48BA577FAE13FD9 ] C:\Program Files\AVG\AVG2013\avgcommx.dll
10:17:07.0031 2972  C:\Program Files\AVG\AVG2013\avgcommx.dll - ok
10:17:07.0046 2972  [ 1A617835452EEE5060976C9B9F5FE635 ] C:\WINDOWS\system32\wuapi.dll
10:17:07.0046 2972  C:\WINDOWS\system32\wuapi.dll - ok
10:17:07.0046 2972  [ FC3EC24FCE372C89423E015A2AC1A31E ] C:\WINDOWS\system32\wuaueng.dll
10:17:07.0046 2972  C:\WINDOWS\system32\wuaueng.dll - ok
10:17:07.0046 2972  [ ED239F16E15A719EC351A0E7A1F912F6 ] C:\WINDOWS\system32\nvrspl.dll
10:17:07.0046 2972  C:\WINDOWS\system32\nvrspl.dll - ok
10:17:07.0046 2972  [ 82C6825663F5DD11F4ECD7B8E9657771 ] C:\WINDOWS\system32\comsvcs.dll
10:17:07.0046 2972  C:\WINDOWS\system32\comsvcs.dll - ok
10:17:07.0062 2972  [ B1B81CBC689125B27809DD12EA8DD5F6 ] C:\WINDOWS\WinSxS\x86_Microsoft.Windows.GdiPlus_6595b64144ccf1df_1.0.6002.22791_x-ww_c8dff154\GdiPlus.dll
10:17:07.0062 2972  C:\WINDOWS\WinSxS\x86_Microsoft.Windows.GdiPlus_6595b64144ccf1df_1.0.6002.22791_x-ww_c8dff154\GdiPlus.dll - ok
10:17:07.0062 2972  [ AA64CF0341FDA11D086324A252723C55 ] C:\WINDOWS\system32\netcfgx.dll
10:17:07.0062 2972  C:\WINDOWS\system32\netcfgx.dll - ok
10:17:07.0062 2972  [ 84A2A30E066A4AAF9362DE749A18B6C9 ] C:\WINDOWS\system32\iertutil.dll
10:17:07.0062 2972  C:\WINDOWS\system32\iertutil.dll - ok
10:17:07.0062 2972  [ 40DBA03782BCC10685A8C200C5EBDCD0 ] C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\12.2.6\ToolbarUpdater.exe
10:17:07.0062 2972  C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\12.2.6\ToolbarUpdater.exe - ok
10:17:07.0062 2972  [ 3EA6F91F02FB4845A9372BA56F0E7B88 ] C:\WINDOWS\system32\nvapi.dll
10:17:07.0062 2972  C:\WINDOWS\system32\nvapi.dll - ok
10:17:07.0078 2972  [ 446AC0B81A8A0DE4097A740BFE6067EF ] C:\Program Files\AVG\AVG2013\avgntsqlitex.dll
10:17:07.0078 2972  C:\Program Files\AVG\AVG2013\avgntsqlitex.dll - ok
10:17:07.0078 2972  [ 0E37FBFA79D349D672456923EC5FBBE3 ] C:\WINDOWS\system32\msvcr100.dll
10:17:07.0078 2972  C:\WINDOWS\system32\msvcr100.dll - ok
10:17:07.0078 2972  [ B3427B458A0AC705FB48A2562F52922A ] C:\WINDOWS\system32\nv4_disp.dll
10:17:07.0078 2972  C:\WINDOWS\system32\nv4_disp.dll - ok
10:17:07.0078 2972  [ 8881A14051D739A8422C521A83D614DA ] C:\WINDOWS\system32\d3d9.dll
10:17:07.0078 2972  C:\WINDOWS\system32\d3d9.dll - ok
10:17:07.0078 2972  [ E5F6FE39CDCD29D8755986F10CEE8D6C ] C:\Program Files\AVG\AVG2013\avgsecapix.dll
10:17:07.0078 2972  C:\Program Files\AVG\AVG2013\avgsecapix.dll - ok
10:17:07.0078 2972  [ B758F2639B009676530A42B146062816 ] C:\WINDOWS\system32\ieframe.dll
10:17:07.0078 2972  C:\WINDOWS\system32\ieframe.dll - ok
10:17:07.0093 2972  [ 1D7D0D5D33D8B1507EC5FBFE332E5657 ] C:\Program Files\AVG\AVG2013\avgidsagent.exe
10:17:07.0093 2972  C:\Program Files\AVG\AVG2013\avgidsagent.exe - ok
10:17:07.0093 2972  [ 226E86BACE85893A00AE26F317D4BBD1 ] C:\Program Files\NVIDIA Corporation\Display\nvdisps.dll
10:17:07.0093 2972  C:\Program Files\NVIDIA Corporation\Display\nvdisps.dll - ok
10:17:07.0093 2972  [ B57B1EB2583AB15F3217E33EDD974C42 ] C:\WINDOWS\system32\nvcpl.dll
10:17:07.0093 2972  C:\WINDOWS\system32\nvcpl.dll - ok
10:17:07.0093 2972  [ 8BA85EADB0D7B261C6EB83B583B00A6D ] C:\Program Files\NVIDIA Corporation\Update Common\NvUpdt.dll
10:17:07.0093 2972  C:\Program Files\NVIDIA Corporation\Update Common\NvUpdt.dll - ok
10:17:07.0093 2972  [ 5358B4A3A6BDC9A4DB00F1DD282A798A ] C:\Program Files\AVG\AVG2013\avgcslx.dll
10:17:07.0093 2972  C:\Program Files\AVG\AVG2013\avgcslx.dll - ok
10:17:07.0093 2972  [ DA573BA72D27ECCA06C89DC60E58C9EE ] C:\Program Files\AVG\AVG2013\avgsched.dll
10:17:07.0093 2972  C:\Program Files\AVG\AVG2013\avgsched.dll - ok
10:17:07.0109 2972  [ 431A6E42D9BCEF94E1C4DC795AAB95AC ] C:\Program Files\AVG\AVG2013\avgnsx.exe
10:17:07.0109 2972  C:\Program Files\AVG\AVG2013\avgnsx.exe - ok
10:17:07.0109 2972  [ 0B4CCFA681113C39E920F4311BB41130 ] C:\Program Files\AVG\AVG2013\avgcmgr.exe
10:17:07.0109 2972  C:\Program Files\AVG\AVG2013\avgcmgr.exe - ok
10:17:07.0109 2972  [ 3C770050B51B31324203970E59E32A0B ] C:\Program Files\AVG\AVG2013\avgclitx.dll
10:17:07.0109 2972  C:\Program Files\AVG\AVG2013\avgclitx.dll - ok
10:17:07.0109 2972  [ 1C5D6A9A55A8DDC99921295704DFBAD7 ] C:\Program Files\AVG\AVG2013\avgwd.dll
10:17:07.0109 2972  C:\Program Files\AVG\AVG2013\avgwd.dll - ok
10:17:07.0109 2972  [ FEBC54C98DF46AED606CE9FD79469DA4 ] C:\Program Files\AVG\AVG2013\avgxpl.dll
10:17:07.0109 2972  C:\Program Files\AVG\AVG2013\avgxpl.dll - ok
10:17:07.0109 2972  [ EC5645562E634A27269A5365B8B19681 ] C:\Program Files\AVG\AVG2013\avgcfgx.dll
10:17:07.0109 2972  C:\Program Files\AVG\AVG2013\avgcfgx.dll - ok
10:17:07.0125 2972  [ 83C3D4AB586C0E160AD0FC7B063E9A68 ] C:\Program Files\AVG\AVG2013\avgemcx.exe
10:17:07.0125 2972  C:\Program Files\AVG\AVG2013\avgemcx.exe - ok
10:17:07.0125 2972  [ E4BC0E54C61FF1715DEA5D8243FE9749 ] C:\Program Files\AVG\AVG2013\avgcorex.dll
10:17:07.0125 2972  C:\Program Files\AVG\AVG2013\avgcorex.dll - ok
10:17:07.0125 2972  [ F8EB4752EC3453532391AD95AA1A84CF ] C:\Program Files\AVG\AVG2013\avgidpsdkx.dll
10:17:07.0125 2972  C:\Program Files\AVG\AVG2013\avgidpsdkx.dll - ok
10:17:07.0125 2972  [ C3DB8269D7A3E8291708B61159A6DA99 ] C:\PROGRA~1\AVG\AVG2013\avgchjwx.dll
10:17:07.0125 2972  C:\PROGRA~1\AVG\AVG2013\avgchjwx.dll - ok
10:17:07.0125 2972  [ A79277FE6F9A5438A3374BB839278E63 ] C:\PROGRA~1\AVG\AVG2013\avgcclix.dll
10:17:07.0125 2972  C:\PROGRA~1\AVG\AVG2013\avgcclix.dll - ok
10:17:07.0125 2972  [ CC85644660DA2ABD3528CB3497130C7D ] C:\Program Files\AVG\AVG2013\avgcsrvx.exe
10:17:07.0125 2972  C:\Program Files\AVG\AVG2013\avgcsrvx.exe - ok
10:17:07.0140 2972  [ FBE4B88109AE280DC589215977F6B40E ] C:\Program Files\AVG\AVG2013\avgcertx.dll
10:17:07.0140 2972  C:\Program Files\AVG\AVG2013\avgcertx.dll - ok
10:17:07.0140 2972  [ 0EC0432AC51B24B1D0D5A3852378886E ] C:\Program Files\AVG\AVG2013\avgchclx.dll
10:17:07.0140 2972  C:\Program Files\AVG\AVG2013\avgchclx.dll - ok
10:17:07.0140 2972  [ 2F31B7F954BED437F2C75026C65CAF7B ] C:\WINDOWS\system32\drivers\wmilib.sys
10:17:07.0140 2972  C:\WINDOWS\system32\drivers\wmilib.sys - ok
10:17:07.0140 2972  [ 9F3A2F5AA6875C72BF062C712CFA2674 ] C:\WINDOWS\system32\drivers\atapi.sys
10:17:07.0140 2972  C:\WINDOWS\system32\drivers\atapi.sys - ok
10:17:07.0140 2972  [ FE97D0343ACFDEBDD578FC67CC91FA87 ] C:\WINDOWS\system32\drivers\dxapi.sys
10:17:07.0140 2972  C:\WINDOWS\system32\drivers\dxapi.sys - ok
10:17:07.0156 2972  [ 9A10AACBFDC4922715375FB4065EC930 ] C:\WINDOWS\system32\watchdog.sys
10:17:07.0156 2972  C:\WINDOWS\system32\watchdog.sys - ok
10:17:07.0156 2972  [ 1EF8926021E77C863E265213F61E4FB4 ] C:\WINDOWS\system32\win32k.sys
10:17:07.0156 2972  C:\WINDOWS\system32\win32k.sys - ok
10:17:07.0156 2972  [ AC7280566A7BB85CB3291F04DDC1198E ] C:\WINDOWS\system32\drivers\dxg.sys
10:17:07.0156 2972  C:\WINDOWS\system32\drivers\dxg.sys - ok
10:17:07.0156 2972  [ A73F5D6705B1D820C19B18782E176EFD ] C:\WINDOWS\system32\drivers\dxgthk.sys
10:17:07.0156 2972  C:\WINDOWS\system32\drivers\dxgthk.sys - ok
10:17:07.0156 2972  [ 0201E0AE0CA44225A8706C7483BF5D9F ] C:\WINDOWS\system32\msctfime.ime
10:17:07.0156 2972  C:\WINDOWS\system32\msctfime.ime - ok
10:17:07.0156 2972  [ F927A4434C5028758A842943EF1A3849 ] C:\WINDOWS\system32\drivers\ndisuio.sys
10:17:07.0156 2972  C:\WINDOWS\system32\drivers\ndisuio.sys - ok
10:17:07.0171 2972  [ 0B3794294C3272E2736544708705B7F6 ] C:\WINDOWS\system32\winspool.drv
10:17:07.0171 2972  C:\WINDOWS\system32\winspool.drv - ok
10:17:07.0171 2972  [ 11D42BB6206F33FBB3BA0288D3EF81BD ] C:\WINDOWS\system32\drivers\mrxdav.sys
10:17:07.0171 2972  C:\WINDOWS\system32\drivers\mrxdav.sys - ok
10:17:07.0171 2972  [ 453EC2C2A20A1382F564541918520EEB ] C:\WINDOWS\system32\drivers\parvdm.sys
10:17:07.0171 2972  C:\WINDOWS\system32\drivers\parvdm.sys - ok
10:17:07.0171 2972  [ 6E7F9D539526085F770CB61C63A8DBB4 ] C:\Program Files\AVG\AVG2013\avgopensslx.dll
10:17:07.0171 2972  C:\Program Files\AVG\AVG2013\avgopensslx.dll - ok
10:17:07.0171 2972  [ 67837FAEE4ADF464A04E42E34EA22DCE ] C:\WINDOWS\system32\cscui.dll
10:17:07.0171 2972  C:\WINDOWS\system32\cscui.dll - ok
10:17:07.0171 2972  [ 456133D15AB5579AC87888062C8253DB ] C:\WINDOWS\system32\dpcdll.dll
10:17:07.0171 2972  C:\WINDOWS\system32\dpcdll.dll - ok
10:17:07.0187 2972  [ 0AE567E9542BD98A67E41DED5EDCE3A4 ] C:\WINDOWS\system32\wdmaud.drv
10:17:07.0187 2972  C:\WINDOWS\system32\wdmaud.drv - ok
10:17:07.0187 2972  [ 6768ACF64B18196494413695F0C3A00F ] C:\WINDOWS\system32\drivers\wdmaud.sys
10:17:07.0187 2972  C:\WINDOWS\system32\drivers\wdmaud.sys - ok
10:17:07.0187 2972  [ 8B83F3ED0F1688B4958F77CD6D2BF290 ] C:\WINDOWS\system32\drivers\sysaudio.sys
10:17:07.0187 2972  C:\WINDOWS\system32\drivers\sysaudio.sys - ok
10:17:07.0187 2972  [ AB8B92451ECB048A4D1DE7C3FFCB4A9F ] C:\WINDOWS\system32\drivers\splitter.sys
10:17:07.0187 2972  C:\WINDOWS\system32\drivers\splitter.sys - ok
10:17:07.0187 2972  [ 8BED39E3C35D6A489438B8141717A557 ] C:\WINDOWS\system32\drivers\aec.sys
10:17:07.0187 2972  C:\WINDOWS\system32\drivers\aec.sys - ok
10:17:07.0187 2972  [ 2A5B37D520508BE6570A3EA79695F5B5 ] C:\WINDOWS\system32\userinit.exe
10:17:07.0187 2972  C:\WINDOWS\system32\userinit.exe - ok
10:17:07.0203 2972  [ 8CE882BCC6CF8A62F2B2323D95CB3D01 ] C:\WINDOWS\system32\drivers\swmidi.sys
10:17:07.0203 2972  C:\WINDOWS\system32\drivers\swmidi.sys - ok
10:17:07.0203 2972  [ 0D008C582ECC7598385D17264682B80D ] C:\WINDOWS\system32\WgaTray.exe
10:17:07.0203 2972  C:\WINDOWS\system32\WgaTray.exe - ok
10:17:07.0203 2972  [ 8A208DFCF89792A484E76C40E5F50B45 ] C:\WINDOWS\system32\drivers\DMusic.sys
10:17:07.0203 2972  C:\WINDOWS\system32\drivers\DMusic.sys - ok
10:17:07.0203 2972  [ 692BCF44383D056AED41B045A323D378 ] C:\WINDOWS\system32\drivers\kmixer.sys
10:17:07.0203 2972  C:\WINDOWS\system32\drivers\kmixer.sys - ok
10:17:07.0203 2972  [ 8F5FCFF8E8848AFAC920905FBD9D33C8 ] C:\WINDOWS\system32\drivers\drmkaud.sys
10:17:07.0203 2972  C:\WINDOWS\system32\drivers\drmkaud.sys - ok
10:17:07.0203 2972  [ C791ED9EAC5E76D9525E157B1D7A599A ] C:\WINDOWS\explorer.exe
10:17:07.0203 2972  C:\WINDOWS\explorer.exe - ok
10:17:07.0218 2972  [ 3F84E919E8D2B703C76203EEC5516552 ] C:\WINDOWS\system32\msacm32.drv
10:17:07.0218 2972  C:\WINDOWS\system32\msacm32.drv - ok
10:17:07.0218 2972  [ 30A2A72C04597972CF325F2A28410B63 ] C:\WINDOWS\system32\midimap.dll
10:17:07.0218 2972  C:\WINDOWS\system32\midimap.dll - ok
10:17:07.0218 2972  [ 7A05AEF0FB27648B61BE488ACA5B85AA ] C:\WINDOWS\system32\browseui.dll
10:17:07.0218 2972  C:\WINDOWS\system32\browseui.dll - ok
10:17:07.0218 2972  [ 35B697B94AC676A792D211CB712E97B4 ] C:\WINDOWS\system32\shdocvw.dll
10:17:07.0218 2972  C:\WINDOWS\system32\shdocvw.dll - ok
10:17:07.0218 2972  [ 389E6205E0F2AC102B22918D65E969CF ] C:\WINDOWS\system32\cryptnet.dll
10:17:07.0218 2972  C:\WINDOWS\system32\cryptnet.dll - ok
10:17:07.0234 2972  [ 47DDFC2F003F7F9F0592C6874962A2E7 ] C:\WINDOWS\system32\drivers\srv.sys
10:17:07.0234 2972  C:\WINDOWS\system32\drivers\srv.sys - ok
10:17:07.0234 2972  [ 3307A07B81206F354F0D4BEFEE922437 ] C:\WINDOWS\system32\LegitCheckControl.DLL
10:17:07.0234 2972  C:\WINDOWS\system32\LegitCheckControl.DLL - ok
10:17:07.0234 2972  [ 8B1A72E4FB63A9C068B08E1F9B70482A ] C:\Program Files\Secunia\PSI\sua.exe
10:17:07.0234 2972  C:\Program Files\Secunia\PSI\sua.exe - ok
10:17:07.0234 2972  [ 6D74290856347CF8682277A54B433D4B ] C:\Documents and Settings\T4bzZ\Dane aplikacji\Dropbox\bin\DropboxExt.14.dll
10:17:07.0234 2972  C:\Documents and Settings\T4bzZ\Dane aplikacji\Dropbox\bin\DropboxExt.14.dll - ok
10:17:07.0234 2972  [ 81D1CE12E830059B2990514BF66BFB5D ] C:\WINDOWS\system32\dbghelp.dll
10:17:07.0234 2972  C:\WINDOWS\system32\dbghelp.dll - ok
10:17:07.0234 2972  [ 561FA2ABB31DFA8FAB762145F81667C2 ] C:\Documents and Settings\T4bzZ\Dane aplikacji\Dropbox\bin\msvcp71.dll
10:17:07.0234 2972  C:\Documents and Settings\T4bzZ\Dane aplikacji\Dropbox\bin\msvcp71.dll - ok
10:17:07.0250 2972  [ 86F1895AE8C5E8B17D99ECE768A70732 ] C:\Documents and Settings\T4bzZ\Dane aplikacji\Dropbox\bin\msvcr71.dll
10:17:07.0250 2972  C:\Documents and Settings\T4bzZ\Dane aplikacji\Dropbox\bin\msvcr71.dll - ok
10:17:07.0250 2972  [ 442118A7565F7391CD88A17A88F7FDC5 ] C:\WINDOWS\system32\rundll32.exe
10:17:07.0250 2972  C:\WINDOWS\system32\rundll32.exe - ok
10:17:07.0250 2972  [ 0C8C3200825823285A0EBFC94F4E7158 ] C:\Program Files\Google\Drive\googledrivesync32.dll
10:17:07.0250 2972  C:\Program Files\Google\Drive\googledrivesync32.dll - ok
10:17:07.0250 2972  [ 4C39358EBDD2FFCD9132A30E1EC31E16 ] C:\WINDOWS\WinSxS\x86_Microsoft.VC90.CRT_1fc8b3b9a1e18e3b_9.0.30729.6161_x-ww_31a54e43\msvcp90.dll
10:17:07.0250 2972  C:\WINDOWS\WinSxS\x86_Microsoft.VC90.CRT_1fc8b3b9a1e18e3b_9.0.30729.6161_x-ww_31a54e43\msvcp90.dll - ok
10:17:07.0250 2972  [ CDBE9690CF2B8409FACAD94FAC9479C9 ] C:\WINDOWS\WinSxS\x86_Microsoft.VC90.CRT_1fc8b3b9a1e18e3b_9.0.30729.6161_x-ww_31a54e43\msvcr90.dll
10:17:07.0250 2972  C:\WINDOWS\WinSxS\x86_Microsoft.VC90.CRT_1fc8b3b9a1e18e3b_9.0.30729.6161_x-ww_31a54e43\msvcr90.dll - ok
10:17:07.0250 2972  [ 45C8B4D46769521F54ACD88A83878FF7 ] C:\WINDOWS\system32\desk.cpl
10:17:07.0250 2972  C:\WINDOWS\system32\desk.cpl - ok
10:17:07.0265 2972  [ 9F319078F35FCAC5CB27E517DBEC9B52 ] C:\WINDOWS\system32\themeui.dll
10:17:07.0265 2972  C:\WINDOWS\system32\themeui.dll - ok
10:17:07.0265 2972  [ 68AF19C46588192EBAC6FCF83A2006EA ] C:\WINDOWS\system32\actxprxy.dll
10:17:07.0265 2972  C:\WINDOWS\system32\actxprxy.dll - ok
10:17:07.0265 2972  [ 994AD0D8550B8B26990A6E3AA0791502 ] C:\Program Files\Windows Desktop Search\MsnlNamespaceMgr.dll
10:17:07.0265 2972  C:\Program Files\Windows Desktop Search\MsnlNamespaceMgr.dll - ok
10:17:07.0265 2972  [ 665371E0E53858A160B813B72F1E1B0B ] C:\WINDOWS\system32\cmd.exe
10:17:07.0265 2972  C:\WINDOWS\system32\cmd.exe - ok
10:17:07.0265 2972  [ 3AB4D2569CDC9948A5EEE9F0EBBCCCA0 ] C:\Program Files\AVG\AVG2013\avgkrnlapix.dll
10:17:07.0265 2972  C:\Program Files\AVG\AVG2013\avgkrnlapix.dll - ok
10:17:07.0265 2972  [ 9ED9F21D73F9D71E30EAB71835E656EB ] C:\DOCUME~1\T4bzZ\USTAWI~1\temp\23CBC91A-A853-42CE-8E14-52E188196197.exe
10:17:07.0265 2972  C:\DOCUME~1\T4bzZ\USTAWI~1\temp\23CBC91A-A853-42CE-8E14-52E188196197.exe - ok
10:17:07.0281 2972  [ 14C5398F3F5A0DB68213FFFD591E1254 ] C:\WINDOWS\system32\msutb.dll
10:17:07.0281 2972  C:\WINDOWS\system32\msutb.dll - ok
10:17:07.0281 2972  [ 52E0505408EDD4AB5CCC7F83B67B4299 ] C:\WINDOWS\system32\termsrv.dll
10:17:07.0281 2972  C:\WINDOWS\system32\termsrv.dll - ok
10:17:07.0281 2972  [ 124C811C547D06E2BBB0265DFE3F6022 ] C:\WINDOWS\system32\icaapi.dll
10:17:07.0281 2972  C:\WINDOWS\system32\icaapi.dll - ok
10:17:07.0281 2972  [ 5E6CDA654BBB011B7E73A2AC1496C65B ] C:\WINDOWS\system32\mstlsapi.dll
10:17:07.0281 2972  C:\WINDOWS\system32\mstlsapi.dll - ok
10:17:07.0281 2972  [ 798A9E6828997EEF4517ADA8A2259831 ] C:\WINDOWS\system32\wbem\wmiprvse.exe
10:17:07.0281 2972  C:\WINDOWS\system32\wbem\wmiprvse.exe - ok
10:17:07.0281 2972  [ 4ED45E242145952893B60D08D1CEF821 ] C:\WINDOWS\system32\licwmi.dll
10:17:07.0281 2972  C:\WINDOWS\system32\licwmi.dll - ok
10:17:07.0296 2972  [ 2C4E6A96AA43398149DC4703E92BBE19 ] C:\WINDOWS\system32\wbem\framedyn.dll
10:17:07.0296 2972  C:\WINDOWS\system32\wbem\framedyn.dll - ok
10:17:07.0296 2972  [ 92936E1528E573E7D24D729ACA5F8D56 ] C:\WINDOWS\system32\licdll.dll
10:17:07.0296 2972  C:\WINDOWS\system32\licdll.dll - ok
10:17:07.0296 2972  [ 636B32C538CC647997B2295382945FB7 ] C:\WINDOWS\system32\ntshrui.dll
10:17:07.0296 2972  C:\WINDOWS\system32\ntshrui.dll - ok
10:17:07.0296 2972  [ 922D0A231D241C90D2BC57FF0A932F3A ] C:\WINDOWS\system32\msxml6.dll
10:17:07.0296 2972  C:\WINDOWS\system32\msxml6.dll - ok
10:17:07.0296 2972  [ 1425485F4A884BD311A531167E7B6AD8 ] C:\WINDOWS\system32\verclsid.exe
10:17:07.0296 2972  C:\WINDOWS\system32\verclsid.exe - ok
10:17:07.0296 2972  [ DB56F88ACEE5D611A519A6A4F5825D17 ] C:\WINDOWS\system32\spoolss.dll
10:17:07.0296 2972  C:\WINDOWS\system32\spoolss.dll - ok
10:17:07.0312 2972  [ 2A8681AEA24003040CA7D677BE9F1702 ] C:\WINDOWS\system32\drivers\51486412.sys
10:17:07.0312 2972  C:\WINDOWS\system32\drivers\51486412.sys - ok
10:17:07.0312 2972  [ 75F9884B6C038DC96AED131D2E2898E4 ] C:\WINDOWS\system32\wbem\cimwin32.dll
10:17:07.0312 2972  C:\WINDOWS\system32\wbem\cimwin32.dll - ok
10:17:07.0312 2972  [ 01FB72B0CE22C88F83ACAA6F42FDF5AB ] C:\WINDOWS\system32\stobject.dll
10:17:07.0312 2972  C:\WINDOWS\system32\stobject.dll - ok
10:17:07.0312 2972  [ 852D56CE8F4D718FCCF39B1884C7D0EA ] C:\WINDOWS\system32\localspl.dll
10:17:07.0312 2972  C:\WINDOWS\system32\localspl.dll - ok
10:17:07.0312 2972  [ D25E3412F15F7CB780F4C01B941CB72E ] C:\WINDOWS\system32\batmeter.dll
10:17:07.0312 2972  C:\WINDOWS\system32\batmeter.dll - ok
10:17:07.0312 2972  [ 5A0F9DC34D4FA1C49B6BC6F4ACFE2FB1 ] C:\WINDOWS\system32\cnbjmon.dll
10:17:07.0312 2972  C:\WINDOWS\system32\cnbjmon.dll - ok
10:17:07.0328 2972  [ 045E228F71C31901084B64BE59093499 ] C:\WINDOWS\system32\WPDShServiceObj.dll
10:17:07.0328 2972  C:\WINDOWS\system32\WPDShServiceObj.dll - ok
10:17:07.0328 2972  [ 609D8311B50B0B2E425F44F4B7F220B5 ] C:\WINDOWS\system32\pjlmon.dll
10:17:07.0328 2972  C:\WINDOWS\system32\pjlmon.dll - ok
10:17:07.0328 2972  [ 22358578CB321F3325496A3723029409 ] C:\WINDOWS\system32\PortableDeviceTypes.dll
10:17:07.0328 2972  C:\WINDOWS\system32\PortableDeviceTypes.dll - ok
10:17:07.0328 2972  [ BCAACC9170B17CF908BA3A4C92EA0D53 ] C:\WINDOWS\system32\tcpmon.dll
10:17:07.0328 2972  C:\WINDOWS\system32\tcpmon.dll - ok
10:17:07.0328 2972  [ 6AE8E0279A7DB44CB38250611362FCAD ] C:\WINDOWS\system32\cfgmgr32.dll
10:17:07.0328 2972  C:\WINDOWS\system32\cfgmgr32.dll - ok
10:17:07.0328 2972  [ 056A13265E1E20B49187113CBF13B129 ] C:\WINDOWS\system32\usbmon.dll
10:17:07.0328 2972  C:\WINDOWS\system32\usbmon.dll - ok
10:17:07.0343 2972  [ EA8DF0AF49E2616F55BF327549E44368 ] C:\WINDOWS\system32\linkinfo.dll
10:17:07.0343 2972  C:\WINDOWS\system32\linkinfo.dll - ok
10:17:07.0343 2972  [ 9D45B2201D0ECF9F42136C7B99DEB8B2 ] C:\WINDOWS\system32\PortableDeviceApi.dll
10:17:07.0343 2972  C:\WINDOWS\system32\PortableDeviceApi.dll - ok
10:17:07.0343 2972  [ 97CED423A1ED78D8F5F3DB64C5A24A91 ] C:\WINDOWS\system32\upnp.dll
10:17:07.0343 2972  C:\WINDOWS\system32\upnp.dll - ok
10:17:07.0343 2972  [ 70006D9E0D9558F858BCB86D5331BEDB ] C:\WINDOWS\system32\win32spl.dll
10:17:07.0343 2972  C:\WINDOWS\system32\win32spl.dll - ok
10:17:07.0343 2972  [ 5300552AC15F1A877C4B6BB6512AD1FD ] F:\PROGRAMY\Logitech SetPoint\SetPointP\SetPoint.exe
10:17:07.0343 2972  F:\PROGRAMY\Logitech SetPoint\SetPointP\SetPoint.exe - ok
10:17:07.0343 2972  [ 80E1F7486F3DA25F5060DD21463F1F4C ] C:\WINDOWS\system32\netrap.dll
10:17:07.0343 2972  C:\WINDOWS\system32\netrap.dll - ok
10:17:07.0359 2972  [ BC287D753191A5699D24BD94D4F794FF ] C:\WINDOWS\system32\ssdpapi.dll
10:17:07.0359 2972  C:\WINDOWS\system32\ssdpapi.dll - ok
10:17:07.0359 2972  [ B63E5C7807334A3A8F731062F15462CC ] C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
10:17:07.0359 2972  C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe - ok
10:17:07.0359 2972  [ 001FDDCA950AAA14D822DA238832732B ] C:\WINDOWS\system32\mlang.dll
10:17:07.0359 2972  C:\WINDOWS\system32\mlang.dll - ok
10:17:07.0359 2972  [ F80A415EF82CD06FFAF0D971528EAD38 ] C:\WINDOWS\system32\drivers\http.sys
10:17:07.0359 2972  C:\WINDOWS\system32\drivers\http.sys - ok
10:17:07.0359 2972  [ 113069A938126FB994670E99D143D34E ] C:\WINDOWS\system32\inetpp.dll
10:17:07.0359 2972  C:\WINDOWS\system32\inetpp.dll - ok
10:17:07.0375 2972  [ 22C0BA8AC6B73470F29078ABFF5E8D7C ] F:\PROGRAMY\Logitech SetPoint\SetPointP\khalwrapper.dll
10:17:07.0375 2972  F:\PROGRAMY\Logitech SetPoint\SetPointP\khalwrapper.dll - ok
10:17:07.0375 2972  [ 2C0B1224AA36B4CA1753302BAA855882 ] C:\WINDOWS\system32\ssdpsrv.dll
10:17:07.0375 2972  C:\WINDOWS\system32\ssdpsrv.dll - ok
10:17:07.0375 2972  [ B006FFEDDBBE9171B1DCA755B0E05D60 ] F:\PROGRAMY\Logitech SetPoint\SetPointP\KemUtil.dll
10:17:07.0375 2972  F:\PROGRAMY\Logitech SetPoint\SetPointP\KemUtil.dll - ok
10:17:07.0375 2972  [ CA6ADE4F7761BB15B3325356DC3B82BB ] C:\WINDOWS\WinSxS\x86_Microsoft.VC90.MFC_1fc8b3b9a1e18e3b_9.0.30729.6161_x-ww_028bc148\mfc90u.dll
10:17:07.0375 2972  C:\WINDOWS\WinSxS\x86_Microsoft.VC90.MFC_1fc8b3b9a1e18e3b_9.0.30729.6161_x-ww_028bc148\mfc90u.dll - ok
10:17:07.0375 2972  [ BD0B74F23E3F3218E6AC230249586E05 ] C:\WINDOWS\system32\rasdlg.dll
10:17:07.0375 2972  C:\WINDOWS\system32\rasdlg.dll - ok
10:17:07.0375 2972  [ A14FAB60B6D501E2896458394245BE21 ] C:\WINDOWS\RTHDCPL.EXE
10:17:07.0375 2972  C:\WINDOWS\RTHDCPL.EXE - ok
10:17:07.0390 2972  [ AA9EA6572CA47FAD883CBD37BDDF359B ] C:\Program Files\AVG\AVG2013\avgui.exe
10:17:07.0390 2972  C:\Program Files\AVG\AVG2013\avgui.exe - ok
10:17:07.0390 2972  [ 2C1B935D1E56B226202FAEB0B844E15F ] C:\Program Files\AVG Secure Search\vprot.exe
10:17:07.0390 2972  C:\Program Files\AVG Secure Search\vprot.exe - ok
10:17:07.0390 2972  [ 8A96FF6C6F5996A323954E2AE6DECA79 ] C:\WINDOWS\system32\nvmctray.dll
10:17:07.0390 2972  C:\WINDOWS\system32\nvmctray.dll - ok
10:17:07.0390 2972  [ 50232DE086D9B6DE4B98791F99E2A077 ] C:\Program Files\NVIDIA Corporation\Update Common\EasyDaemonAPIU.dll
10:17:07.0390 2972  C:\Program Files\NVIDIA Corporation\Update Common\EasyDaemonAPIU.dll - ok
10:17:07.0390 2972  [ BF9103F362D7E38CDDF1279F8BD3D318 ] C:\Program Files\AVG Secure Search\ROC_ROC_NT.exe
10:17:07.0390 2972  C:\Program Files\AVG Secure Search\ROC_ROC_NT.exe - ok
10:17:07.0390 2972  [ A1F86A5A0DA1BEC12B7DD19C6234BB15 ] C:\Documents and Settings\T4bzZ\Local Settings\Apps\F.lux\flux.exe
10:17:07.0390 2972  C:\Documents and Settings\T4bzZ\Local Settings\Apps\F.lux\flux.exe - ok
10:17:07.0406 2972  [ 3C6FA2F4D58611579B21798E0568F548 ] F:\PROGRAMY\Adobe Reader X\Reader\reader_sl.exe
10:17:07.0406 2972  F:\PROGRAMY\Adobe Reader X\Reader\reader_sl.exe - ok
10:17:07.0406 2972  [ 1BD41EDA5B869AFC99895C39A8DE36E1 ] C:\WINDOWS\system32\ctfmon.exe
10:17:07.0406 2972  C:\WINDOWS\system32\ctfmon.exe - ok
10:17:07.0406 2972  [ 2424231BBD703A677D115C29983B4293 ] C:\PROGRA~1\COMMON~1\MICROS~1\OFFICE12\MSOXMLMF.DLL
10:17:07.0406 2972  C:\PROGRA~1\COMMON~1\MICROS~1\OFFICE12\MSOXMLMF.DLL - ok
10:17:07.0406 2972  [ F2FDBF57DE8FA4FEC89C4F3CCB510130 ] C:\WINDOWS\system32\oledlg.dll
10:17:07.0406 2972  C:\WINDOWS\system32\oledlg.dll - ok
10:17:07.0406 2972  [ 8FB186EACE7AB5DA6B6D66D26DDCA1B6 ] F:\PROGRAMY\Adobe Reader X\Reader\logsession.dll
10:17:07.0406 2972  F:\PROGRAMY\Adobe Reader X\Reader\logsession.dll - ok
10:17:07.0406 2972  [ B4E46102C04B68F63A9F8B024F32927A ] C:\WINDOWS\system32\msisip.dll
10:17:07.0406 2972  C:\WINDOWS\system32\msisip.dll - ok
10:17:07.0421 2972  [ 7748AEE10774B95E74CAF618CAEE3DE0 ] C:\WINDOWS\ime\sptip.dll
10:17:07.0421 2972  C:\WINDOWS\ime\sptip.dll - ok
10:17:07.0421 2972  [ F3DE10AABD5C7A1A186C9966F037D0C0 ] C:\WINDOWS\system32\mfc100u.dll
10:17:07.0421 2972  C:\WINDOWS\system32\mfc100u.dll - ok
10:17:07.0421 2972  [ 2340E6977548038C88E39A9ECBB3FADC ] C:\WINDOWS\system32\tapisrv.dll
10:17:07.0421 2972  C:\WINDOWS\system32\tapisrv.dll - ok
10:17:07.0421 2972  [ D594146446E9961B7774D1F2E7359619 ] C:\WINDOWS\system32\wshext.dll
10:17:07.0421 2972  C:\WINDOWS\system32\wshext.dll - ok
10:17:07.0421 2972  [ C9564CF4976E7E96B4052737AA2492B4 ] C:\WINDOWS\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.6195_x-ww_44262b86\msvcr80.dll
10:17:07.0421 2972  C:\WINDOWS\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.6195_x-ww_44262b86\msvcr80.dll - ok
10:17:07.0437 2972  [ B2BDAD3310E8223601322396E5CBDA92 ] C:\Program Files\NVIDIA Corporation\Update Common\NvUpdtr.dll
10:17:07.0437 2972  C:\Program Files\NVIDIA Corporation\Update Common\NvUpdtr.dll - ok
10:17:07.0437 2972  [ 4F2DA211B394AF150F00254F346857CD ] C:\WINDOWS\system32\dsound.dll
10:17:07.0437 2972  C:\WINDOWS\system32\dsound.dll - ok
10:17:07.0437 2972  [ 501ECB1FBF530D293CCB53B96BE0571C ] F:\PROGRAMY\Logitech SetPoint\SetPointP\KemXML.dll
10:17:07.0437 2972  F:\PROGRAMY\Logitech SetPoint\SetPointP\KemXML.dll - ok
10:17:07.0437 2972  [ AB0C8C57F06908F413E7D6B3367CE8F3 ] F:\PROGRAMY\Logitech SetPoint\SetPointP\kemutb.dll
10:17:07.0437 2972  F:\PROGRAMY\Logitech SetPoint\SetPointP\kemutb.dll - ok
10:17:07.0437 2972  [ 0C392E397B8D34AAAF19EC6119CBB788 ] C:\WINDOWS\system32\rasmans.dll
10:17:07.0437 2972  C:\WINDOWS\system32\rasmans.dll - ok
10:17:07.0437 2972  [ 7943A80F1A6FD37969AACD411B511F91 ] C:\WINDOWS\system32\WindowsPowerShell\v1.0\pwrshsip.dll
10:17:07.0437 2972  C:\WINDOWS\system32\WindowsPowerShell\v1.0\pwrshsip.dll - ok
10:17:07.0453 2972  [ ABEEF2A1DCEE165943F1A85EF4A1F5F7 ] C:\Program Files\AVG\AVG2013\avgidpmx.dll
10:17:07.0453 2972  C:\Program Files\AVG\AVG2013\avgidpmx.dll - ok
10:17:07.0453 2972  [ D8CC7803237B00698384625AEC7E56F0 ] F:\PROGRAMY\Logitech SetPoint\SetPointP\KemWnd.dll
10:17:07.0453 2972  F:\PROGRAMY\Logitech SetPoint\SetPointP\KemWnd.dll - ok
10:17:07.0453 2972  [ 872995719DD767E782F5DC6FACF7DB45 ] C:\WINDOWS\system32\hhctrl.ocx
10:17:07.0453 2972  C:\WINDOWS\system32\hhctrl.ocx - ok
10:17:07.0453 2972  [ 559D9CBFC29DEE2773B28D38851683BA ] C:\Program Files\Microsoft Silverlight\xapauthenticodesip.dll
10:17:07.0453 2972  C:\Program Files\Microsoft Silverlight\xapauthenticodesip.dll - ok
10:17:07.0453 2972  [ 7A17149BC366C2F75C3A843CA79113C0 ] F:\PROGRAMY\Logitech SetPoint\SetPointP\SetPointCOM.dll
10:17:07.0453 2972  F:\PROGRAMY\Logitech SetPoint\SetPointP\SetPointCOM.dll - ok
10:17:07.0453 2972  [ F279180728E6E4B038C1776AD6296AA8 ] C:\WINDOWS\system32\rastapi.dll
10:17:07.0453 2972  C:\WINDOWS\system32\rastapi.dll - ok
10:17:07.0468 2972  [ B5C9F63C01FCFEC3F64EC6A0940A1825 ] C:\Program Files\Windows Desktop Search\WindowsSearch.exe
10:17:07.0468 2972  C:\Program Files\Windows Desktop Search\WindowsSearch.exe - ok
10:17:07.0468 2972  [ C701E1C8799A8AE4518C08993312559E ] C:\WINDOWS\system32\unimdm.tsp
10:17:07.0468 2972  C:\WINDOWS\system32\unimdm.tsp - ok
10:17:07.0468 2972  [ 9265E4CC0095A3BE6CD2B0229A66574F ] C:\Program Files\AVG\AVG2013\avgdiagex.exe
10:17:07.0468 2972  C:\Program Files\AVG\AVG2013\avgdiagex.exe - ok
10:17:07.0468 2972  [ DD409BA59D8A95C74EDE8997E1749E47 ] C:\WINDOWS\system32\mui\0015\hhctrlui.dll
10:17:07.0468 2972  C:\WINDOWS\system32\mui\0015\hhctrlui.dll - ok
10:17:07.0468 2972  [ 70EC2F479DA374210A69B9BBC5FDBE6C ] F:\PROGRAMY\Logitech SetPoint\SetPointP\Macros\MacroCore.dll
10:17:07.0468 2972  F:\PROGRAMY\Logitech SetPoint\SetPointP\Macros\MacroCore.dll - ok
10:17:07.0468 2972  [ 53A5CE73BE46B79F07245F83955EC885 ] C:\WINDOWS\system32\uniplat.dll
10:17:07.0468 2972  C:\WINDOWS\system32\uniplat.dll - ok
10:17:07.0484 2972  [ 277389C269541D4B474BA72CA98A39E4 ] C:\WINDOWS\system32\ddraw.dll
10:17:07.0484 2972  C:\WINDOWS\system32\ddraw.dll - ok
10:17:07.0484 2972  [ C692926E6FA67597D64A88AE636D3E10 ] C:\WINDOWS\system32\dciman32.dll
10:17:07.0484 2972  C:\WINDOWS\system32\dciman32.dll - ok
10:17:07.0484 2972  [ 11544C7C541EE771D3C8629515367CDE ] C:\WINDOWS\system32\d3d8thk.dll
10:17:07.0484 2972  C:\WINDOWS\system32\d3d8thk.dll - ok
10:17:07.0484 2972  [ 73285811E889F7DE4EC708868CD7C09D ] C:\Program Files\AVG\AVG2013\avglngx.dll
10:17:07.0484 2972  C:\Program Files\AVG\AVG2013\avglngx.dll - ok
10:17:07.0484 2972  [ 29C5375CE613B40EB4869C8B03FD1010 ] C:\Documents and Settings\T4bzZ\Dane aplikacji\Dropbox\bin\Dropbox.exe
10:17:07.0484 2972  C:\Documents and Settings\T4bzZ\Dane aplikacji\Dropbox\bin\Dropbox.exe - ok
10:17:07.0484 2972  [ 6B5A7FF6B84845CC21A097D9BC91009A ] C:\WINDOWS\system32\pdh.dll
10:17:07.0484 2972  C:\WINDOWS\system32\pdh.dll - ok
10:17:07.0500 2972  [ BA8FDF82D0B1316D5EAF60F5A0498DE1 ] C:\WINDOWS\system32\UncDMS.dll
10:17:07.0500 2972  C:\WINDOWS\system32\UncDMS.dll - ok
10:17:07.0500 2972  [ 5AA398794588826DDB2DE0AE61658456 ] F:\PROGRAMY\Logitech SetPoint\SetPointP\WebBrowserSupport.dll
10:17:07.0500 2972  F:\PROGRAMY\Logitech SetPoint\SetPointP\WebBrowserSupport.dll - ok
10:17:07.0500 2972  [ 93F073842CEDE0444A7EC377C9017A2C ] C:\WINDOWS\system32\odbcbcp.dll
10:17:07.0500 2972  C:\WINDOWS\system32\odbcbcp.dll - ok
10:17:07.0500 2972  ============================================================
10:17:07.0500 2972  Scan finished
10:17:07.0500 2972  ============================================================
10:17:07.0609 2964  Detected object count: 28
10:17:07.0609 2964  Actual detected object count: 28
10:19:19.0281 2964  AFD ( UnsignedFile.Multi.Generic ) - skipped by user
10:19:19.0281 2964  AFD ( UnsignedFile.Multi.Generic ) - User select action: Skip 
10:19:19.0296 2964  Browser ( UnsignedFile.Multi.Generic ) - skipped by user
10:19:19.0296 2964  Browser ( UnsignedFile.Multi.Generic ) - User select action: Skip 
10:19:19.0296 2964  Cdrom ( UnsignedFile.Multi.Generic ) - skipped by user
10:19:19.0296 2964  Cdrom ( UnsignedFile.Multi.Generic ) - User select action: Skip 
10:19:19.0296 2964  DcomLaunch ( UnsignedFile.Multi.Generic ) - skipped by user
10:19:19.0296 2964  DcomLaunch ( UnsignedFile.Multi.Generic ) - User select action: Skip 
10:19:19.0296 2964  Dnscache ( UnsignedFile.Multi.Generic ) - skipped by user
10:19:19.0296 2964  Dnscache ( UnsignedFile.Multi.Generic ) - User select action: Skip 
10:19:19.0296 2964  Eventlog ( UnsignedFile.Multi.Generic ) - skipped by user
10:19:19.0296 2964  Eventlog ( UnsignedFile.Multi.Generic ) - User select action: Skip 
10:19:19.0296 2964  EventSystem ( UnsignedFile.Multi.Generic ) - skipped by user
10:19:19.0296 2964  EventSystem ( UnsignedFile.Multi.Generic ) - User select action: Skip 
10:19:19.0296 2964  FastUserSwitchingCompatibility ( UnsignedFile.Multi.Generic ) - skipped by user
10:19:19.0296 2964  FastUserSwitchingCompatibility ( UnsignedFile.Multi.Generic ) - User select action: Skip 
10:19:19.0296 2964  HTTP ( UnsignedFile.Multi.Generic ) - skipped by user
10:19:19.0296 2964  HTTP ( UnsignedFile.Multi.Generic ) - User select action: Skip 
10:19:19.0296 2964  KSecDD ( UnsignedFile.Multi.Generic ) - skipped by user
10:19:19.0296 2964  KSecDD ( UnsignedFile.Multi.Generic ) - User select action: Skip 
10:19:19.0296 2964  lanmanserver ( UnsignedFile.Multi.Generic ) - skipped by user
10:19:19.0296 2964  lanmanserver ( UnsignedFile.Multi.Generic ) - User select action: Skip 
10:19:19.0296 2964  lanmanworkstation ( UnsignedFile.Multi.Generic ) - skipped by user
10:19:19.0296 2964  lanmanworkstation ( UnsignedFile.Multi.Generic ) - User select action: Skip 
10:19:19.0296 2964  MRxSmb ( UnsignedFile.Multi.Generic ) - skipped by user
10:19:19.0296 2964  MRxSmb ( UnsignedFile.Multi.Generic ) - User select action: Skip 
10:19:19.0296 2964  Mup ( UnsignedFile.Multi.Generic ) - skipped by user
10:19:19.0296 2964  Mup ( UnsignedFile.Multi.Generic ) - User select action: Skip 
10:19:19.0296 2964  NdisTapi ( UnsignedFile.Multi.Generic ) - skipped by user
10:19:19.0296 2964  NdisTapi ( UnsignedFile.Multi.Generic ) - User select action: Skip 
10:19:19.0296 2964  NDProxy ( UnsignedFile.Multi.Generic ) - skipped by user
10:19:19.0296 2964  NDProxy ( UnsignedFile.Multi.Generic ) - User select action: Skip 
10:19:19.0296 2964  Nla ( UnsignedFile.Multi.Generic ) - skipped by user
10:19:19.0296 2964  Nla ( UnsignedFile.Multi.Generic ) - User select action: Skip 
10:19:19.0296 2964  nv ( UnsignedFile.Multi.Generic ) - skipped by user
10:19:19.0296 2964  nv ( UnsignedFile.Multi.Generic ) - User select action: Skip 
10:19:19.0312 2964  PlugPlay ( UnsignedFile.Multi.Generic ) - skipped by user
10:19:19.0312 2964  PlugPlay ( UnsignedFile.Multi.Generic ) - User select action: Skip 
10:19:19.0312 2964  RDPWD ( UnsignedFile.Multi.Generic ) - skipped by user
10:19:19.0312 2964  RDPWD ( UnsignedFile.Multi.Generic ) - User select action: Skip 
10:19:19.0312 2964  RpcSs ( UnsignedFile.Multi.Generic ) - skipped by user
10:19:19.0312 2964  RpcSs ( UnsignedFile.Multi.Generic ) - User select action: Skip 
10:19:19.0312 2964  ShellHWDetection ( UnsignedFile.Multi.Generic ) - skipped by user
10:19:19.0312 2964  ShellHWDetection ( UnsignedFile.Multi.Generic ) - User select action: Skip 
10:19:19.0312 2964  Spooler ( UnsignedFile.Multi.Generic ) - skipped by user
10:19:19.0312 2964  Spooler ( UnsignedFile.Multi.Generic ) - User select action: Skip 
10:19:19.0312 2964  Srv ( UnsignedFile.Multi.Generic ) - skipped by user
10:19:19.0312 2964  Srv ( UnsignedFile.Multi.Generic ) - User select action: Skip 
10:19:19.0312 2964  Tcpip ( UnsignedFile.Multi.Generic ) - skipped by user
10:19:19.0312 2964  Tcpip ( UnsignedFile.Multi.Generic ) - User select action: Skip 
10:19:19.0312 2964  Themes ( UnsignedFile.Multi.Generic ) - skipped by user
10:19:19.0312 2964  Themes ( UnsignedFile.Multi.Generic ) - User select action: Skip 
10:19:19.0312 2964  WmdmPmSN ( UnsignedFile.Multi.Generic ) - skipped by user
10:19:19.0312 2964  WmdmPmSN ( UnsignedFile.Multi.Generic ) - User select action: Skip 
10:19:19.0312 2964  Wmi ( UnsignedFile.Multi.Generic ) - skipped by user
10:19:19.0312 2964  Wmi ( UnsignedFile.Multi.Generic ) - User select action: Skip 

Those drivers aren't malware, but can be used by malware. So that's why TDSSKiller recognizes them as suspicious?

Also, i made this steps, just to search through hidden devices list:

Instructions - Go to "Start", "Programs", "Accessories" and select "Command Prompt". At the command prompt, type "set devmgr_show_nonpresent_devices=1" and press Enter. At the command prompt, type "start devmgmt.msc" and press Enter. Select "View" and Show hidden devices. You can see devices that are not connected to the computer.

And saw this:

Posted Image

("Sterowniki niezgodne z Plug and Play" means "Drivers incompatible with Plug and Play")

I found few hidden drivers: 81711960, bninsk, dlhynz, eexbuk, nrawhm, uawosu and vthzjp, which cannot be found in system using standard search assistant. Also, Google neither returns any info, and they look suspicious to me. So it's malware for sure.

I think that TDSSKiller thinks those drivers are malicious, because they were before used by malware on my system, right? Just look at the attached image, those unknown drivers are for sure malware.

Is it still possible, to make some dumps/copies of those malware drivers?

BC AdBot (Login to Remove)

 


#2 t4bzz

t4bzz
  • Topic Starter

  • Members
  • 8 posts
  • OFFLINE
  •  
  • Local time:06:57 AM

Posted 21 September 2012 - 10:11 AM

No one can't help?

#3 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,490 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:12:57 AM

Posted 23 September 2012 - 07:59 PM

Hello, these look OK, as in not malware. do you have malware symptoms??
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#4 t4bzz

t4bzz
  • Topic Starter

  • Members
  • 8 posts
  • OFFLINE
  •  
  • Local time:06:57 AM

Posted 24 September 2012 - 10:07 AM

Yes i have.
Just look at this photo, i posted above:

Posted Image

I found few hidden drivers: 81711960, bninsk, dlhynz, eexbuk, nrawhm, uawosu and vthzjp, which cannot be found in system using standard search assistant. Also, Google neither returns any info, and they look suspicious to me. So it's malware for sure.


Few minutes ago i found those drivers:

Posted Image

also, none of them is known - can't find in Google nothing about these drivers. It's malware for sure..

The most important i want to know: can i find somehow those hidden drivers and make copy of them? I tried find using ubuntu livecd, but nothing was found. Must i assume then, that those drivers were already deleted (by malware for example, in self-destruct procedure) and what i see on this list, is just undeleted entry?

#5 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,490 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:12:57 AM

Posted 24 September 2012 - 11:35 AM

Running Unhide should show all the hidden files.

To make your files visible again, please download the following program to your desktop:

Unhide.exe

Once the program has been downloaded, double-click on the Unhide.exe icon on your desktop and allow the program to run. This program will remove the +H, or hidden, attribute from all the files on your hard drives. If there are any files that were purposely hidden by you, you will need to hide them again after this tool is run.


But I feel it would be better to get a deeper look at the system.

Please go here....Preparation Guide ,do steps 6-9.

Create a DDS log and post it in the new topic explained in step 9 which is here Virus, Trojan, Spyware, and Malware Removal Logs and not in this topic,thanks.
If GMER won't run (it may not on a 64 bit system) skip it and move on.

Let me know if that went well.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users