Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Infected with Broswer Hijack- Firefox


  • This topic is locked This topic is locked
13 replies to this topic

#1 gamegeek1995

gamegeek1995

  • Members
  • 8 posts
  • OFFLINE
  •  
  • Local time:07:10 AM

Posted 24 September 2012 - 09:13 PM

Repeatedly, I've been trying to use Google and I have to click on the same link 2 or 3 times in order to actually get to the page I want. It's redirected me to things like "click-getmoreresults" or something along those lines, or unrelated websites entirely. I primarily use Firefox, Windows 7 64-bit. However, my girlfriend uses IE (whatever version happens to be on my computer) whenever she comes over. If there's anything else I need to post, please tell me. I tried my best to follow the Preparation Guide.

Attached Files



BC AdBot (Login to Remove)

 


#2 fireman4it

fireman4it

    Bleepin' Fireman


  • Malware Response Team
  • 13,512 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Greenup, Ill USA
  • Local time:06:10 AM

Posted 24 September 2012 - 09:59 PM

Hello gamegeek1995,
  • Welcome to Bleeping Computer.
  • My name is fireman4it and I will be helping you with your Malware problem.

    Please take note of some guidelines for this fix:
  • Refrain from making any changes to your computer including installing/uninstall programs, deleting files, modifying the registry, and running scanners or tools.
  • If you do not understand any step(s) provided, please do not hesitate to ask before continuing.
  • Even if things appear to be better, it might not mean we are finished. Please continue to follow my instructions and reply back until I give you the "all clean".
  • In the upper right hand corner of the topic you will see a button called Watch Topic.I suggest you click it and select Immediate E-Mail notification and click on Proceed. This way you will be advised when we respond to your topic and facilitate the cleaning of your machine.

  • Finally, please reply using the ADD REPLY button in the lower right hand corner of your screen. Do not start a new topic. The logs that you post should be pasted directly into the reply, unless they do not fit into the post.


Do you have a USB Flash Drive you can use?

" Extinguishing Malware from the world"

The Virus, Trojan, Spyware, and Malware Removal forum is very busy. If I'm helping you and I've not posted back within 24 hrs., send a PM with your topic link. Thank you.

ALL OTHER HELP REQUESTS VIA THE PM SYSTEM WILL BE IGNORED. The Forums are there for a reason!
Thanks-


  userbar_eis_500.gif

If I have helped you, consider making a donation to help me continue the fight against Malware! Just click btn_donate_LG.gif


#3 gamegeek1995

gamegeek1995
  • Topic Starter

  • Members
  • 8 posts
  • OFFLINE
  •  
  • Local time:07:10 AM

Posted 25 September 2012 - 03:22 PM

Hello! Yes, I have a couple of different ones. What would you have me use them for?

#4 fireman4it

fireman4it

    Bleepin' Fireman


  • Malware Response Team
  • 13,512 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Greenup, Ill USA
  • Local time:06:10 AM

Posted 25 September 2012 - 04:11 PM

For x64 bit systems download Farbar Recovery Scan Tool x64 and save it to a flash drive.

Plug the flashdrive into the infected PC.

Enter System Recovery Options.

To enter System Recovery Options from the Advanced Boot Options:
  • Restart the computer.
  • As soon as the BIOS is loaded begin tapping the F8 key until Advanced Boot Options appears.
  • Use the arrow keys to select the Repair your computer menu item.
  • Select US as the keyboard language settings, and then click Next.
  • Select the operating system you want to repair, and then click Next.
  • Select your user account an click Next.

To enter System Recovery Options by using Windows installation disc:
  • Insert the installation disc.
  • Restart your computer.
  • If prompted, press any key to start Windows from the installation disc. If your computer is not configured to start from a CD or DVD, check your BIOS settings.
  • Click Repair your computer.
  • Select US as the keyboard language settings, and then click Next.
  • Select the operating system you want to repair, and then click Next.
  • Select your user account and click Next.

On the System Recovery Options menu you will get the following options:Startup Repair
System Restore
Windows Complete PC Restore
Windows Memory Diagnostic Tool
Command Prompt
[*]Select Command Prompt[*]In the command window type in notepad and press Enter.[*]The notepad opens. Under File menu select Open.[*]Select "Computer" and find your flash drive letter and close the notepad.[*]In the command window type e:\frst.exe (for x64 bit version type e:\frst64) and press Enter
Note: Replace letter e with the drive letter of your flash drive.[*]The tool will start to run.[*]When the tool opens click Yes to disclaimer.[*]Press Scan button.[*]It will make a log (FRST.txt) on the flash drive. Please copy and paste it to your reply.[/list][/quote]

" Extinguishing Malware from the world"

The Virus, Trojan, Spyware, and Malware Removal forum is very busy. If I'm helping you and I've not posted back within 24 hrs., send a PM with your topic link. Thank you.

ALL OTHER HELP REQUESTS VIA THE PM SYSTEM WILL BE IGNORED. The Forums are there for a reason!
Thanks-


  userbar_eis_500.gif

If I have helped you, consider making a donation to help me continue the fight against Malware! Just click btn_donate_LG.gif


#5 gamegeek1995

gamegeek1995
  • Topic Starter

  • Members
  • 8 posts
  • OFFLINE
  •  
  • Local time:07:10 AM

Posted 25 September 2012 - 05:33 PM

Hi, sorry it took so long. I'm copy and pasting the log, and posting the original Notepad file as an attachment.

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 25-09-2012
Ran by SYSTEM at 25-09-2012 18:27:52
Running from E:\
Windows 7 Home Premium (X64) OS Language: English(US)
The current controlset is ControlSet001

==================== Registry (Whitelisted) ===================

HKLM\...\Run: [XboxStat] "C:\Program Files\Microsoft Xbox 360 Accessories\XboxStat.exe" silentrun [825184 2009-09-30] (Microsoft Corporation)
HKLM-x32\...\Run: [avgnt] "C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe" /min [348664 2012-08-08] (Avira Operations GmbH & Co. KG)
HKLM-x32\...\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [919008 2012-07-27] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [AMD AVT] Cmd.exe /c start "AMD Accelerated Video Transcoding device initialization" /min "C:\Program Files (x86)\AMD AVT\bin\kdbsync.exe" aml [10752 2012-01-31] ()
HKLM-x32\...\Run: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe" [59240 2012-02-20] (Apple Inc.)
HKLM-x32\...\Run: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime [421888 2012-04-18] (Apple Inc.)
HKLM-x32\...\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun [642216 2012-08-06] (Advanced Micro Devices, Inc.)
HKU\Malachi\...\Run: [Google Update] "C:\Users\Malachi\AppData\Local\Google\Update\GoogleUpdate.exe" /c [136176 2012-03-17] (Google Inc.)
HKU\Malachi\...\Run: [Facebook Update] "C:\Users\Malachi\AppData\Local\Facebook\Update\FacebookUpdate.exe" /c /nocrashserver [138096 2012-07-11] (Facebook Inc.)
HKU\Malachi\...\Run: [EA Core] "C:\Program Files (x86)\Electronic Arts\EADM\Core.exe" -silent [x]
HKU\Malachi\...\Run: [Apple] rundll32.exe ",winampGetInModule2W [x]
Tcpip\Parameters: [DhcpNameServer] 75.75.75.75 75.75.76.76

==================== Services (Whitelisted) ===================

2 AntiVirSchedulerService; "C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe" [86224 2012-05-08] (Avira Operations GmbH & Co. KG)
2 AntiVirService; "C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe" [110032 2012-05-08] (Avira Operations GmbH & Co. KG)
3 aspnet_state; C:\Windows\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [x]
3 OverwolfUpdaterService; C:\Program Files (x86)\Overwolf\OverwolfUpdater.exe [x]

==================== Drivers (Whitelisted) =====================

2 AODDriver4.01; \??\C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [53888 2012-03-05] (Advanced Micro Devices)
2 AODDriver4.1; \??\C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [53888 2012-03-05] (Advanced Micro Devices)
2 avgntflt; C:\Windows\System32\Drivers\avgntflt.sys [98848 2012-05-08] (Avira GmbH)
1 avipbb; C:\Windows\System32\Drivers\avipbb.sys [132832 2012-05-08] (Avira GmbH)
1 avkmgr; C:\Windows\System32\Drivers\avkmgr.sys [27760 2011-09-15] (Avira GmbH)
3 AX88772; C:\Windows\System32\Drivers\AX88772.sys [79360 2011-06-01] (ASIX Electronics Corp.)
3 WinRing0_1_2_0; \??\C:\Program Files (x86)\IObit\Game Booster 3\Driver\WinRing0x64.sys [14544 2010-11-01] (OpenLibSys.org)
3 EagleX64; \??\C:\Windows\system32\drivers\EagleX64.sys [x]
3 esgiguard; \??\C:\Program Files\Enigma Software Group\SpyHunter\esgiguard.sys [x]

==================== NetSvcs (Whitelisted) ====================


==================== One Month Created Files and Folders ========

2012-09-25 14:25 - 2012-09-25 18:27 - 00000000 ____D C:\FRST
2012-09-25 14:25 - 2012-09-25 14:25 - 01455249 ____A (Farbar) C:\Users\Malachi\Downloads\FRST64.exe
2012-09-24 18:09 - 2012-09-24 18:09 - 00006140 ____A C:\Users\Malachi\Documents\Attach.txt
2012-09-24 18:08 - 2012-09-24 18:08 - 00019469 ____A C:\Users\Malachi\Documents\DDS.txt
2012-09-24 18:04 - 2012-09-24 18:04 - 00607260 ____R (Swearware) C:\Users\Malachi\Downloads\dds.com
2012-09-24 17:57 - 2012-09-24 17:57 - 00008648 ____A C:\Users\Malachi\Documents\hijackthis run 1
2012-09-24 17:52 - 2012-09-24 17:52 - 00388608 ____A (Trend Micro Inc.) C:\Users\Malachi\Downloads\HijackThis.exe
2012-09-23 16:49 - 2012-09-23 16:49 - 00000197 ____A C:\Users\Malachi\Desktop\Super Crate Box.url
2012-09-21 23:01 - 2012-08-24 02:31 - 02312704 ____A (Microsoft Corporation) C:\Windows\System32\jscript9.dll
2012-09-21 23:01 - 2012-08-24 02:22 - 01346048 ____A (Microsoft Corporation) C:\Windows\System32\urlmon.dll
2012-09-21 23:01 - 2012-08-24 02:21 - 01392128 ____A (Microsoft Corporation) C:\Windows\System32\wininet.dll
2012-09-21 23:01 - 2012-08-24 02:20 - 01494528 ____A (Microsoft Corporation) C:\Windows\System32\inetcpl.cpl
2012-09-21 23:01 - 2012-08-24 02:18 - 00237056 ____A (Microsoft Corporation) C:\Windows\System32\url.dll
2012-09-21 23:01 - 2012-08-24 02:17 - 00085504 ____A (Microsoft Corporation) C:\Windows\System32\jsproxy.dll
2012-09-21 23:01 - 2012-08-24 02:14 - 00173056 ____A (Microsoft Corporation) C:\Windows\System32\ieUnatt.exe
2012-09-21 23:01 - 2012-08-24 02:13 - 00599040 ____A (Microsoft Corporation) C:\Windows\System32\vbscript.dll
2012-09-21 23:01 - 2012-08-24 02:11 - 00729088 ____A (Microsoft Corporation) C:\Windows\System32\msfeeds.dll
2012-09-21 23:01 - 2012-08-24 02:10 - 00096768 ____A (Microsoft Corporation) C:\Windows\System32\mshtmled.dll
2012-09-21 23:01 - 2012-08-24 02:09 - 02382848 ____A (Microsoft Corporation) C:\Windows\System32\mshtml.tlb
2012-09-21 23:01 - 2012-08-24 02:04 - 00248320 ____A (Microsoft Corporation) C:\Windows\System32\ieui.dll
2012-09-21 23:01 - 2012-08-23 22:59 - 01800704 ____A (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2012-09-21 23:01 - 2012-08-23 22:51 - 01427968 ____A (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2012-09-21 23:01 - 2012-08-23 22:51 - 01129472 ____A (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2012-09-21 23:01 - 2012-08-23 22:51 - 01103872 ____A (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2012-09-21 23:01 - 2012-08-23 22:49 - 00231936 ____A (Microsoft Corporation) C:\Windows\SysWOW64\url.dll
2012-09-21 23:01 - 2012-08-23 22:47 - 00717824 ____A (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2012-09-21 23:01 - 2012-08-23 22:47 - 00420864 ____A (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2012-09-21 23:01 - 2012-08-23 22:47 - 00142848 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2012-09-21 23:01 - 2012-08-23 22:45 - 00607744 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2012-09-21 23:01 - 2012-08-23 22:44 - 00073216 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2012-09-21 23:01 - 2012-08-23 22:43 - 02382848 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2012-09-21 23:01 - 2012-08-23 22:40 - 00176640 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2012-09-21 23:00 - 2012-08-24 03:15 - 17810944 ____A (Microsoft Corporation) C:\Windows\System32\mshtml.dll
2012-09-21 23:00 - 2012-08-24 02:39 - 10925568 ____A (Microsoft Corporation) C:\Windows\System32\ieframe.dll
2012-09-21 23:00 - 2012-08-24 02:14 - 00816640 ____A (Microsoft Corporation) C:\Windows\System32\jscript.dll
2012-09-21 23:00 - 2012-08-24 02:12 - 02144768 ____A (Microsoft Corporation) C:\Windows\System32\iertutil.dll
2012-09-21 23:00 - 2012-08-23 23:27 - 12319744 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2012-09-21 23:00 - 2012-08-23 23:03 - 09738240 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2012-09-21 23:00 - 2012-08-23 22:48 - 00065024 ____A (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2012-09-21 23:00 - 2012-08-23 22:44 - 01793024 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2012-09-19 17:43 - 2012-09-20 01:38 - 00000000 ____D C:\Windows\8C5C34C7BC6B48318B2C6535FE63E502.TMP
2012-09-19 17:43 - 2012-09-19 17:43 - 00000000 ____D C:\Program Files\Enigma Software Group
2012-09-19 17:42 - 2012-09-19 17:42 - 00725440 ____A (Enigma Software Group USA, LLC.) C:\Users\Malachi\Downloads\SpyHunter-Installer.exe
2012-09-19 16:30 - 2012-09-19 16:30 - 00003584 ____A C:\Users\Malachi\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2012-09-19 16:29 - 2012-09-19 16:29 - 03566884 ____A C:\Users\Malachi\Desktop\Bard's Song Ending.wav
2012-09-19 16:28 - 2012-09-19 16:28 - 01620428 ____A C:\Users\Malachi\Desktop\The Bard`s Song.wav
2012-09-19 13:07 - 2012-09-19 13:07 - 00001082 ____A C:\Users\Malachi\Downloads\James.rar
2012-09-13 14:05 - 2012-09-13 14:05 - 00411818 ____A C:\Users\Malachi\Documents\Christian Siriano feature artist.pptx
2012-09-12 16:39 - 2012-08-22 10:12 - 01913200 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\tcpip.sys
2012-09-12 16:39 - 2012-08-22 10:12 - 00950128 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\ndis.sys
2012-09-12 16:39 - 2012-08-22 10:12 - 00376688 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\netio.sys
2012-09-12 16:39 - 2012-08-22 10:12 - 00288624 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\FWPKCLNT.SYS
2012-09-12 16:39 - 2012-08-02 09:58 - 00574464 ____A (Microsoft Corporation) C:\Windows\System32\d3d10level9.dll
2012-09-12 16:39 - 2012-08-02 08:57 - 00490496 ____A (Microsoft Corporation) C:\Windows\SysWOW64\d3d10level9.dll
2012-09-12 16:39 - 2012-07-04 12:26 - 00041472 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\RNDISMP.sys
2012-09-11 15:42 - 2012-09-15 08:14 - 00000000 ____D C:\Users\Malachi\Documents\New Unity Project
2012-09-11 15:28 - 2012-09-11 15:31 - 00000000 ____D C:\Users\Malachi\AppData\Roaming\Unity
2012-09-11 15:27 - 2012-09-11 15:28 - 00000000 ____D C:\Users\All Users\PACE Anti-Piracy
2012-09-11 15:27 - 2012-09-11 15:27 - 00000000 ____D C:\Users\Malachi\AppData\Local\PACE Anti-Piracy
2012-09-11 15:17 - 2012-09-11 15:28 - 00000000 ____D C:\Users\Malachi\AppData\Local\Unity
2012-09-11 15:12 - 2012-09-11 15:12 - 00001108 ____A C:\Users\Public\Desktop\Unity.lnk
2012-09-11 15:12 - 2012-09-11 15:12 - 00000000 ____D C:\Users\Public\Documents\Unity Projects
2012-09-11 15:08 - 2012-09-11 15:17 - 00000000 ____D C:\Program Files (x86)\Unity
2012-09-11 14:31 - 2012-09-11 15:06 - 533970712 ____A (Unity Technologies ApS) C:\Users\Malachi\Downloads\UnitySetup-3.5.5.exe
2012-09-10 14:07 - 2012-09-10 14:07 - 00000014 ____A C:\Users\Malachi\IMPORTANT PIN DO NOT ERASE.txt
2012-09-09 14:14 - 2012-09-09 14:14 - 00075785 ____A C:\Users\Malachi\Documents\Generic Shirts Company.pptx
2012-09-07 19:41 - 2012-09-07 19:41 - 167308640 ____A C:\Users\Malachi\Downloads\video-2012-09-07-23-33-36.mp4
2012-09-06 17:07 - 2012-09-06 17:07 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2012-09-05 16:20 - 2012-09-05 16:25 - 40054143 ____A C:\Users\Malachi\Documents\Sphax PureBDCraft 128x.zip
2012-09-05 16:02 - 2012-09-05 16:02 - 00001232 ____A C:\Users\Malachi\Desktop\TechnicLauncher - Shortcut.lnk
2012-09-05 16:01 - 2012-09-05 16:01 - 00052736 ____A (Technic) C:\Users\Malachi\Downloads\TechnicLauncher.exe
2012-09-05 12:39 - 2012-09-05 14:49 - 00000000 ____D C:\Users\Malachi\Desktop\SD Contents
2012-09-04 15:20 - 2012-09-04 15:43 - 00000000 ____D C:\Users\Malachi\Desktop\Virtuamp121
2012-09-04 15:20 - 2012-09-04 15:20 - 00769133 ____A C:\Users\Malachi\Downloads\virtuamp121.zip
2012-09-03 18:51 - 2012-09-03 18:51 - 00017803 ____A C:\Users\Malachi\Downloads\mod_TalkerPatch.zip
2012-08-30 17:39 - 2012-08-30 17:41 - 00000000 ____D C:\Users\Malachi\Desktop\VSTi
2012-08-30 17:35 - 2012-08-30 17:37 - 48981821 ____A C:\Users\Malachi\Downloads\srg.zip
2012-08-30 17:35 - 2012-08-30 17:37 - 01648168 ____A (Dream Vortex Studio ) C:\Users\Malachi\Downloads\Guitar.exe
2012-08-30 17:35 - 2012-08-30 17:35 - 02134040 ____A C:\Users\Malachi\Downloads\vsthostx64.zip
2012-08-30 17:25 - 2012-08-30 17:25 - 21415874 ____A (Audacity Team ) C:\Users\Malachi\Downloads\audacity-win-2.0.2.exe
2012-08-30 17:25 - 2012-08-30 17:25 - 00000995 ____A C:\Users\Malachi\Desktop\Audacity.lnk
2012-08-30 17:25 - 2012-08-30 17:25 - 00000000 ____D C:\Program Files (x86)\Audacity
2012-08-30 17:21 - 2007-12-21 11:48 - 01835008 ____A C:\Users\Malachi\FA3_Full.dll
2012-08-30 17:14 - 2012-08-30 17:14 - 01795102 ____A C:\Users\Malachi\Downloads\FreeAmp3.zip
2012-08-30 17:13 - 2012-08-30 17:13 - 00342045 ____A ( ) C:\Users\Malachi\Downloads\vst-bridge-1.1.exe
2012-08-26 10:45 - 2012-08-26 10:45 - 00000000 ____D C:\Users\All Users\ATI
2012-08-26 10:45 - 2012-08-26 10:45 - 00000000 ____D C:\Program Files (x86)\AMD APP

==================== 3 Months Modified Files ==================

2012-09-25 14:26 - 2009-07-13 20:45 - 00015152 ___AH C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2012-09-25 14:26 - 2009-07-13 20:45 - 00015152 ___AH C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2012-09-25 14:25 - 2012-09-25 14:25 - 01455249 ____A (Farbar) C:\Users\Malachi\Downloads\FRST64.exe
2012-09-25 14:23 - 2012-02-19 09:23 - 00121860 ____A C:\Windows\PFRO.log
2012-09-25 14:23 - 2009-07-13 21:08 - 00000006 ___AH C:\Windows\Tasks\SA.DAT
2012-09-25 14:23 - 2009-07-13 20:51 - 00069130 ____A C:\Windows\setupact.log
2012-09-25 14:15 - 2012-05-29 17:05 - 00000936 ____A C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-2156748711-4041543716-3312418740-1000UA.job
2012-09-25 14:15 - 2012-05-29 17:05 - 00000914 ____A C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-2156748711-4041543716-3312418740-1000Core.job
2012-09-25 14:15 - 2012-02-17 20:28 - 01145666 ____A C:\Windows\WindowsUpdate.log
2012-09-25 13:37 - 2012-03-17 10:10 - 00000916 ____A C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2156748711-4041543716-3312418740-1000UA.job
2012-09-25 13:18 - 2012-04-02 16:51 - 00000830 ____A C:\Windows\Tasks\Adobe Flash Player Updater.job
2012-09-24 18:09 - 2012-09-24 18:09 - 00006140 ____A C:\Users\Malachi\Documents\Attach.txt
2012-09-24 18:08 - 2012-09-24 18:08 - 00019469 ____A C:\Users\Malachi\Documents\DDS.txt
2012-09-24 18:04 - 2012-09-24 18:04 - 00607260 ____R (Swearware) C:\Users\Malachi\Downloads\dds.com
2012-09-24 17:57 - 2012-09-24 17:57 - 00008648 ____A C:\Users\Malachi\Documents\hijackthis run 1
2012-09-24 17:52 - 2012-09-24 17:52 - 00388608 ____A (Trend Micro Inc.) C:\Users\Malachi\Downloads\HijackThis.exe
2012-09-24 17:37 - 2012-03-17 10:10 - 00000864 ____A C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2156748711-4041543716-3312418740-1000Core.job
2012-09-23 16:49 - 2012-09-23 16:49 - 00000197 ____A C:\Users\Malachi\Desktop\Super Crate Box.url
2012-09-20 16:18 - 2012-04-02 16:51 - 00696240 ____A (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2012-09-20 16:18 - 2012-02-17 18:22 - 00073136 ____A (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2012-09-19 17:42 - 2012-09-19 17:42 - 00725440 ____A (Enigma Software Group USA, LLC.) C:\Users\Malachi\Downloads\SpyHunter-Installer.exe
2012-09-19 17:19 - 2009-07-13 21:13 - 00739918 ____A C:\Windows\System32\PerfStringBackup.INI
2012-09-19 16:30 - 2012-09-19 16:30 - 00003584 ____A C:\Users\Malachi\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2012-09-19 16:29 - 2012-09-19 16:29 - 03566884 ____A C:\Users\Malachi\Desktop\Bard's Song Ending.wav
2012-09-19 16:28 - 2012-09-19 16:28 - 01620428 ____A C:\Users\Malachi\Desktop\The Bard`s Song.wav
2012-09-19 13:07 - 2012-09-19 13:07 - 00001082 ____A C:\Users\Malachi\Downloads\James.rar
2012-09-13 14:05 - 2012-09-13 14:05 - 00411818 ____A C:\Users\Malachi\Documents\Christian Siriano feature artist.pptx
2012-09-12 23:00 - 2012-02-20 06:48 - 64462936 ____A (Microsoft Corporation) C:\Windows\System32\MRT.exe
2012-09-11 15:12 - 2012-09-11 15:12 - 00001108 ____A C:\Users\Public\Desktop\Unity.lnk
2012-09-11 15:06 - 2012-09-11 14:31 - 533970712 ____A (Unity Technologies ApS) C:\Users\Malachi\Downloads\UnitySetup-3.5.5.exe
2012-09-10 16:22 - 2012-05-18 14:32 - 00000841 ____A C:\Users\Public\Desktop\GameFly.lnk
2012-09-10 14:07 - 2012-09-10 14:07 - 00000014 ____A C:\Users\Malachi\IMPORTANT PIN DO NOT ERASE.txt
2012-09-09 14:14 - 2012-09-09 14:14 - 00075785 ____A C:\Users\Malachi\Documents\Generic Shirts Company.pptx
2012-09-07 19:41 - 2012-09-07 19:41 - 167308640 ____A C:\Users\Malachi\Downloads\video-2012-09-07-23-33-36.mp4
2012-09-05 16:25 - 2012-09-05 16:20 - 40054143 ____A C:\Users\Malachi\Documents\Sphax PureBDCraft 128x.zip
2012-09-05 16:02 - 2012-09-05 16:02 - 00001232 ____A C:\Users\Malachi\Desktop\TechnicLauncher - Shortcut.lnk
2012-09-05 16:01 - 2012-09-05 16:01 - 00052736 ____A (Technic) C:\Users\Malachi\Downloads\TechnicLauncher.exe
2012-09-04 15:20 - 2012-09-04 15:20 - 00769133 ____A C:\Users\Malachi\Downloads\virtuamp121.zip
2012-09-03 18:51 - 2012-09-03 18:51 - 00017803 ____A C:\Users\Malachi\Downloads\mod_TalkerPatch.zip
2012-08-30 17:37 - 2012-08-30 17:35 - 48981821 ____A C:\Users\Malachi\Downloads\srg.zip
2012-08-30 17:37 - 2012-08-30 17:35 - 01648168 ____A (Dream Vortex Studio ) C:\Users\Malachi\Downloads\Guitar.exe
2012-08-30 17:35 - 2012-08-30 17:35 - 02134040 ____A C:\Users\Malachi\Downloads\vsthostx64.zip
2012-08-30 17:25 - 2012-08-30 17:25 - 21415874 ____A (Audacity Team ) C:\Users\Malachi\Downloads\audacity-win-2.0.2.exe
2012-08-30 17:25 - 2012-08-30 17:25 - 00000995 ____A C:\Users\Malachi\Desktop\Audacity.lnk
2012-08-30 17:14 - 2012-08-30 17:14 - 01795102 ____A C:\Users\Malachi\Downloads\FreeAmp3.zip
2012-08-30 17:13 - 2012-08-30 17:13 - 00342045 ____A ( ) C:\Users\Malachi\Downloads\vst-bridge-1.1.exe
2012-08-25 21:52 - 2012-08-25 21:52 - 00164688 ____A C:\Users\Malachi\Documents\bookmarks1.html
2012-08-25 21:45 - 2012-08-25 21:44 - 23765929 ____A (Igor Pavlov) C:\Users\Malachi\Downloads\tor-browser-2.2.38-1_en-US.exe
2012-08-25 20:54 - 2012-08-25 20:54 - 00001313 ____A C:\Users\Malachi\Desktop\fnv4gb - Shortcut.lnk
2012-08-24 09:55 - 2012-08-24 09:55 - 00002045 ____A C:\Users\Public\Desktop\NetBeans IDE 7.2.lnk
2012-08-24 09:52 - 2012-08-24 09:52 - 00289768 ____A (Oracle Corporation) C:\Windows\System32\javaws.exe
2012-08-24 09:52 - 2012-08-24 09:52 - 00189416 ____A (Oracle Corporation) C:\Windows\System32\javaw.exe
2012-08-24 09:52 - 2012-08-24 09:52 - 00188904 ____A (Oracle Corporation) C:\Windows\System32\java.exe
2012-08-24 09:52 - 2012-08-24 09:52 - 00108008 ____A (Oracle Corporation) C:\Windows\System32\WindowsAccessBridge-64.dll
2012-08-24 09:52 - 2012-03-24 13:30 - 01034216 ____A (Oracle Corporation) C:\Windows\System32\npdeployJava1.dll
2012-08-24 09:52 - 2012-03-24 13:30 - 00916456 ____A (Oracle Corporation) C:\Windows\System32\deployJava1.dll
2012-08-24 09:47 - 2012-08-24 09:45 - 94385632 ____A (Oracle Corporation) C:\Users\Malachi\Downloads\jdk-7u6-windows-x64.exe
2012-08-24 09:43 - 2012-08-24 09:38 - 273490888 ____A C:\Users\Malachi\Downloads\netbeans-7.2-ml-windows.exe
2012-08-24 03:15 - 2012-09-21 23:00 - 17810944 ____A (Microsoft Corporation) C:\Windows\System32\mshtml.dll
2012-08-24 02:39 - 2012-09-21 23:00 - 10925568 ____A (Microsoft Corporation) C:\Windows\System32\ieframe.dll
2012-08-24 02:31 - 2012-09-21 23:01 - 02312704 ____A (Microsoft Corporation) C:\Windows\System32\jscript9.dll
2012-08-24 02:22 - 2012-09-21 23:01 - 01346048 ____A (Microsoft Corporation) C:\Windows\System32\urlmon.dll
2012-08-24 02:21 - 2012-09-21 23:01 - 01392128 ____A (Microsoft Corporation) C:\Windows\System32\wininet.dll
2012-08-24 02:20 - 2012-09-21 23:01 - 01494528 ____A (Microsoft Corporation) C:\Windows\System32\inetcpl.cpl
2012-08-24 02:18 - 2012-09-21 23:01 - 00237056 ____A (Microsoft Corporation) C:\Windows\System32\url.dll
2012-08-24 02:17 - 2012-09-21 23:01 - 00085504 ____A (Microsoft Corporation) C:\Windows\System32\jsproxy.dll
2012-08-24 02:14 - 2012-09-21 23:01 - 00173056 ____A (Microsoft Corporation) C:\Windows\System32\ieUnatt.exe
2012-08-24 02:14 - 2012-09-21 23:00 - 00816640 ____A (Microsoft Corporation) C:\Windows\System32\jscript.dll
2012-08-24 02:13 - 2012-09-21 23:01 - 00599040 ____A (Microsoft Corporation) C:\Windows\System32\vbscript.dll
2012-08-24 02:12 - 2012-09-21 23:00 - 02144768 ____A (Microsoft Corporation) C:\Windows\System32\iertutil.dll
2012-08-24 02:11 - 2012-09-21 23:01 - 00729088 ____A (Microsoft Corporation) C:\Windows\System32\msfeeds.dll
2012-08-24 02:10 - 2012-09-21 23:01 - 00096768 ____A (Microsoft Corporation) C:\Windows\System32\mshtmled.dll
2012-08-24 02:09 - 2012-09-21 23:01 - 02382848 ____A (Microsoft Corporation) C:\Windows\System32\mshtml.tlb
2012-08-24 02:04 - 2012-09-21 23:01 - 00248320 ____A (Microsoft Corporation) C:\Windows\System32\ieui.dll
2012-08-23 23:27 - 2012-09-21 23:00 - 12319744 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2012-08-23 23:03 - 2012-09-21 23:00 - 09738240 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2012-08-23 22:59 - 2012-09-21 23:01 - 01800704 ____A (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2012-08-23 22:51 - 2012-09-21 23:01 - 01427968 ____A (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2012-08-23 22:51 - 2012-09-21 23:01 - 01129472 ____A (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2012-08-23 22:51 - 2012-09-21 23:01 - 01103872 ____A (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2012-08-23 22:49 - 2012-09-21 23:01 - 00231936 ____A (Microsoft Corporation) C:\Windows\SysWOW64\url.dll
2012-08-23 22:48 - 2012-09-21 23:00 - 00065024 ____A (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2012-08-23 22:47 - 2012-09-21 23:01 - 00717824 ____A (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2012-08-23 22:47 - 2012-09-21 23:01 - 00420864 ____A (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2012-08-23 22:47 - 2012-09-21 23:01 - 00142848 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2012-08-23 22:45 - 2012-09-21 23:01 - 00607744 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2012-08-23 22:44 - 2012-09-21 23:01 - 00073216 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2012-08-23 22:44 - 2012-09-21 23:00 - 01793024 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2012-08-23 22:43 - 2012-09-21 23:01 - 02382848 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2012-08-23 22:40 - 2012-09-21 23:01 - 00176640 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2012-08-22 10:12 - 2012-09-12 16:39 - 01913200 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\tcpip.sys
2012-08-22 10:12 - 2012-09-12 16:39 - 00950128 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\ndis.sys
2012-08-22 10:12 - 2012-09-12 16:39 - 00376688 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\netio.sys
2012-08-22 10:12 - 2012-09-12 16:39 - 00288624 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\FWPKCLNT.SYS
2012-08-15 11:20 - 2009-07-13 20:45 - 00292728 ____A C:\Windows\System32\FNTCACHE.DAT
2012-08-14 16:54 - 2012-08-14 16:54 - 05951292 ____A C:\Users\Malachi\Downloads\Final Fantasy 6 Advance.zip
2012-08-14 16:54 - 2012-08-14 16:53 - 11493091 ____A C:\Users\Malachi\Downloads\Fire Emblem.zip
2012-08-08 14:23 - 2012-08-08 14:23 - 00002392 ____A C:\Users\Public\Desktop\The Sims™ 2 Double Deluxe.lnk
2012-08-02 09:58 - 2012-09-12 16:39 - 00574464 ____A (Microsoft Corporation) C:\Windows\System32\d3d10level9.dll
2012-08-02 08:57 - 2012-09-12 16:39 - 00490496 ____A (Microsoft Corporation) C:\Windows\SysWOW64\d3d10level9.dll
2012-07-29 10:33 - 2012-07-29 10:33 - 00000896 ____A C:\Users\Malachi\.recently-used.xbel
2012-07-27 20:09 - 2012-07-27 20:09 - 05538984 ____A (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiumdag.dll
2012-07-27 20:07 - 2012-07-27 20:07 - 10278912 ____A (Advanced Micro Devices, Inc.) C:\Windows\System32\Drivers\atikmdag.sys
2012-07-27 19:43 - 2012-07-27 19:43 - 00070144 ____A (AMD) C:\Windows\System32\coinst_8.982.dll
2012-07-27 19:19 - 2012-07-27 19:19 - 24935424 ____A (Advanced Micro Devices, Inc.) C:\Windows\System32\atio6axx.dll
2012-07-27 18:50 - 2012-07-27 18:50 - 20546560 ____A (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\atioglxx.dll
2012-07-27 18:47 - 2012-07-27 18:47 - 00187392 ____A C:\Windows\System32\clinfo.exe
2012-07-27 18:47 - 2012-07-27 18:47 - 00075776 ____A (Advanced Micro Devices Inc.) C:\Windows\System32\OpenVideo64.dll
2012-07-27 18:47 - 2012-07-27 18:47 - 00065024 ____A (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\OpenVideo.dll
2012-07-27 18:47 - 2012-07-27 18:47 - 00063488 ____A (Advanced Micro Devices Inc.) C:\Windows\System32\OVDecode64.dll
2012-07-27 18:47 - 2012-07-27 18:47 - 00056320 ____A (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\OVDecode.dll
2012-07-27 18:46 - 2012-07-27 18:46 - 16464896 ____A (Advanced Micro Devices Inc.) C:\Windows\System32\amdocl64.dll
2012-07-27 18:46 - 2012-07-27 18:46 - 13013504 ____A (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\amdocl.dll
2012-07-27 18:17 - 2012-07-27 18:17 - 00268728 ____A C:\Windows\SysWOW64\atiapfxx.blb
2012-07-27 18:17 - 2012-07-27 18:17 - 00268728 ____A C:\Windows\System32\atiapfxx.blb
2012-07-27 18:15 - 2012-07-27 18:15 - 00163840 ____A (Advanced Micro Devices, Inc.) C:\Windows\System32\atiapfxx.exe
2012-07-27 18:15 - 2011-12-05 19:17 - 00931328 ____A (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\aticfx32.dll
2012-07-27 18:13 - 2011-12-05 19:16 - 01100288 ____A (Advanced Micro Devices, Inc. ) C:\Windows\System32\aticfx64.dll
2012-07-27 18:10 - 2012-07-27 18:10 - 00534528 ____A (AMD) C:\Windows\System32\atieclxx.exe
2012-07-27 18:10 - 2012-07-27 18:10 - 00442368 ____A (Advanced Micro Devices, Inc.) C:\Windows\System32\ATIDEMGX.dll
2012-07-27 18:09 - 2012-07-27 18:09 - 00239616 ____A (AMD) C:\Windows\System32\atiesrxx.exe
2012-07-27 18:08 - 2012-07-27 18:08 - 00120320 ____A (AMD) C:\Windows\System32\atitmm64.dll
2012-07-27 18:08 - 2012-07-27 18:08 - 00021504 ____A (AMD) C:\Windows\System32\atimuixx.dll
2012-07-27 18:07 - 2012-07-27 18:07 - 00059392 ____A (ATI Technologies, Inc.) C:\Windows\System32\atiedu64.dll
2012-07-27 18:07 - 2012-07-27 18:07 - 00043520 ____A (ATI Technologies, Inc.) C:\Windows\SysWOW64\ati2edxx.dll
2012-07-27 18:07 - 2011-12-05 19:06 - 06430208 ____A (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atidxx32.dll
2012-07-27 17:51 - 2011-12-05 18:51 - 07052288 ____A (Advanced Micro Devices, Inc. ) C:\Windows\System32\atidxx64.dll
2012-07-27 17:41 - 2012-07-27 17:41 - 04266496 ____A (Advanced Micro Devices, Inc. ) C:\Windows\System32\atiumd6a.dll
2012-07-27 17:39 - 2012-07-27 17:39 - 03150560 ____A C:\Windows\System32\atiumd6a.cap
2012-07-27 17:35 - 2012-07-27 17:35 - 00051200 ____A (Advanced Micro Devices Inc.) C:\Windows\System32\aticalrt64.dll
2012-07-27 17:35 - 2012-07-27 17:35 - 00046080 ____A (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\aticalrt.dll
2012-07-27 17:35 - 2012-07-27 17:35 - 00044544 ____A (Advanced Micro Devices Inc.) C:\Windows\System32\aticalcl64.dll
2012-07-27 17:35 - 2012-07-27 17:35 - 00044032 ____A (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\aticalcl.dll
2012-07-27 17:34 - 2012-07-27 17:34 - 16034304 ____A (Advanced Micro Devices Inc.) C:\Windows\System32\aticaldd64.dll
2012-07-27 17:32 - 2012-07-27 17:32 - 04751872 ____A (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiumdva.dll
2012-07-27 17:30 - 2012-07-27 17:30 - 13605888 ____A (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\aticaldd.dll
2012-07-27 17:30 - 2012-07-27 17:30 - 03187136 ____A C:\Windows\SysWOW64\atiumdva.cap
2012-07-27 17:25 - 2012-07-27 17:25 - 06676480 ____A (Advanced Micro Devices, Inc. ) C:\Windows\System32\atiumd64.dll
2012-07-27 17:15 - 2012-07-27 17:15 - 00540160 ____A (Advanced Micro Devices, Inc.) C:\Windows\System32\atiadlxx.dll
2012-07-27 17:15 - 2012-07-27 17:15 - 00368640 ____A (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\atiadlxy.dll
2012-07-27 17:15 - 2012-07-27 17:15 - 00041984 ____A (Advanced Micro Devices, Inc. ) C:\Windows\System32\atig6txx.dll
2012-07-27 17:15 - 2012-07-27 17:15 - 00017920 ____A (Advanced Micro Devices, Inc. ) C:\Windows\System32\atig6pxx.dll
2012-07-27 17:15 - 2012-07-27 17:15 - 00014848 ____A (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiglpxx.dll
2012-07-27 17:15 - 2012-07-27 17:15 - 00014848 ____A (Advanced Micro Devices, Inc. ) C:\Windows\System32\atiglpxx.dll
2012-07-27 17:14 - 2012-07-27 17:14 - 00368640 ____A (Advanced Micro Devices, Inc.) C:\Windows\System32\Drivers\atikmpag.sys
2012-07-27 17:14 - 2012-07-27 17:14 - 00033280 ____A (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atigktxx.dll
2012-07-27 17:13 - 2012-07-27 17:13 - 00103936 ____A (Advanced Micro Devices, Inc. ) C:\Windows\System32\atiu9p64.dll
2012-07-27 17:13 - 2012-07-27 17:13 - 00083456 ____A (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiu9pag.dll
2012-07-27 17:13 - 2011-12-05 18:11 - 00129536 ____A (Advanced Micro Devices, Inc. ) C:\Windows\System32\atiuxp64.dll
2012-07-27 17:13 - 2011-12-05 18:11 - 00109568 ____A (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiuxpag.dll
2012-07-27 17:12 - 2012-07-27 17:12 - 00053248 ____A (Advanced Micro Devices, Inc.) C:\Windows\System32\Drivers\ati2erec.dll
2012-07-27 17:08 - 2012-07-27 17:08 - 00056832 ____A (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atimpc32.dll
2012-07-27 17:08 - 2012-07-27 17:08 - 00056832 ____A (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdpcom32.dll
2012-07-27 17:08 - 2012-07-27 17:08 - 00056320 ____A (Advanced Micro Devices, Inc. ) C:\Windows\System32\atimpc64.dll
2012-07-27 17:08 - 2012-07-27 17:08 - 00056320 ____A (Advanced Micro Devices, Inc. ) C:\Windows\System32\amdpcom64.dll
2012-07-27 10:32 - 2012-07-27 10:32 - 00000220 ____A C:\Users\Malachi\Desktop\Killing Floor.url
2012-07-21 06:51 - 2012-07-21 06:51 - 00001318 ____A C:\Users\Malachi\Desktop\common - Shortcut.lnk
2012-07-20 14:41 - 2012-02-18 04:43 - 00430014 ____A C:\Windows\DirectX.log
2012-07-19 13:00 - 2012-07-19 13:00 - 00001906 ____A C:\Users\Public\Desktop\DOSBox 0.74.lnk
2012-07-18 16:49 - 2012-07-18 16:49 - 00000219 ____A C:\Users\Malachi\Desktop\Left 4 Dead 2.url
2012-07-18 10:15 - 2012-08-15 02:25 - 03148800 ____A (Microsoft Corporation) C:\Windows\System32\win32k.sys
2012-07-16 01:33 - 2012-07-16 01:33 - 00038557 ____A C:\Windows\atiogl.xml
2012-07-14 07:00 - 2012-07-14 07:00 - 00000414 ____A C:\Users\Malachi\Desktop\Psychonauts - Shortcut.lnk
2012-07-13 13:05 - 2012-07-13 13:05 - 00000221 ____A C:\Users\Malachi\Desktop\PAYDAY The Heist.url
2012-07-04 14:16 - 2012-08-15 02:25 - 00073216 ____A (Microsoft Corporation) C:\Windows\System32\netapi32.dll
2012-07-04 14:13 - 2012-08-15 02:25 - 00136704 ____A (Microsoft Corporation) C:\Windows\System32\browser.dll
2012-07-04 14:13 - 2012-08-15 02:25 - 00059392 ____A (Microsoft Corporation) C:\Windows\System32\browcli.dll
2012-07-04 13:16 - 2012-08-15 02:25 - 00057344 ____A (Microsoft Corporation) C:\Windows\SysWOW64\netapi32.dll
2012-07-04 13:14 - 2012-08-15 02:25 - 00041984 ____A (Microsoft Corporation) C:\Windows\SysWOW64\browcli.dll
2012-07-04 12:26 - 2012-09-12 16:39 - 00041472 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\RNDISMP.sys
2012-06-29 11:06 - 2012-06-29 11:06 - 00001244 ____A C:\Users\Malachi\Desktop\TeamSpeak 3 Client.lnk
2012-06-28 13:29 - 2012-06-27 23:22 - 00001837 ____A C:\Users\Public\Desktop\Bastion.lnk
2012-06-28 12:38 - 2012-06-28 12:38 - 00000219 ____A C:\Users\Malachi\Desktop\Team Fortress 2.url

==================== Known DLLs (Whitelisted) =================


==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit

==================== EXE ASSOCIATION =====================

HKLM\...\.exe: exefile => OK
HKLM\...\exefile\DefaultIcon: %1 => OK
HKLM\...\exefile\open\command: "%1" %* => OK

==================== Restore Points =========================

Restore point made on: 2012-09-18 16:30:41
Restore point made on: 2012-09-19 17:43:28
Restore point made on: 2012-09-19 18:14:37
Restore point made on: 2012-09-20 01:34:14
Restore point made on: 2012-09-21 23:00:38
Restore point made on: 2012-09-22 03:29:06
Restore point made on: 2012-09-25 12:29:47

==================== Memory info ===========================

Percentage of memory in use: 9%
Total physical RAM: 8191.24 MB
Available physical RAM: 7444.73 MB
Total Pagefile: 8189.39 MB
Available Pagefile: 7439.23 MB
Total Virtual: 8192 MB
Available Virtual: 8191.91 MB

==================== Partitions =============================

1 Drive c: (TeamSuperCoolVikingsNick) (Fixed) (Total:1397.26 GB) (Free:951.36 GB) NTFS ==>[Drive with boot components (obtained from BCD)]
2 Drive d: (Sims2UniversityLife) (CDROM) (Total:2.75 GB) (Free:0 GB) UDF
3 Drive e: (UPGRADE) (Removable) (Total:0.95 GB) (Free:0.91 GB) FAT32
8 Drive x: (Boot) (Fixed) (Total:0.03 GB) (Free:0.03 GB) NTFS

Disk ### Status Size Free Dyn Gpt
-------- ------------- ------- ------- --- ---
Disk 0 Online 1397 GB 1024 KB
Disk 1 Online 983 MB 0 B
Disk 2 No Media 0 B 0 B
Disk 3 No Media 0 B 0 B
Disk 4 No Media 0 B 0 B
Disk 5 No Media 0 B 0 B

Partitions of Disk 0:
===============

Partition ### Type Size Offset
------------- ---------------- ------- -------
Partition 1 Primary 1397 GB 31 KB

==================================================================================

Disk: 0
Partition 1
Type : 07
Hidden: No
Active: Yes

Volume ### Ltr Label Fs Type Size Status Info
---------- --- ----------- ----- ---------- ------- --------- --------
* Volume 1 C TeamSuperCo NTFS Partition 1397 GB Healthy

=========================================================

Partitions of Disk 1:
===============

Partition ### Type Size Offset
------------- ---------------- ------- -------
Partition 1 Primary 980 MB 31 KB

==================================================================================

Disk: 1
Partition 1
Type : 0B
Hidden: No
Active: Yes

Volume ### Ltr Label Fs Type Size Status Info
---------- --- ----------- ----- ---------- ------- --------- --------
* Volume 2 E UPGRADE FAT32 Removable 980 MB Healthy

=========================================================

Last Boot: 2012-09-15 21:39

==================== End Of Log =============================

Attached Files

  • Attached File  FRST.txt   34.88KB   0 downloads


#6 fireman4it

fireman4it

    Bleepin' Fireman


  • Malware Response Team
  • 13,512 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Greenup, Ill USA
  • Local time:06:10 AM

Posted 25 September 2012 - 06:57 PM

1.
Please download the latest version of TDSSKiller from here and save it to your Desktop.
  • Doubleclick on TDSSKiller.exe to run the application, then click on Change parameters.
    Posted Image
  • Put a checkmark beside loaded modules.
    Posted Image
  • A reboot will be needed to apply the changes. Do it.
  • TDSSKiller will launch automatically after the reboot. Also your computer may seem very slow and unusable. This is normal. Give it enough time to load your background programs.
  • Then click on Change parameters in TDSSKiller.
  • Check all boxes then click OK.
    Posted Image
  • Click the Start Scan button.
    Posted Image
  • The scan should take no longer than 2 minutes.
  • If a suspicious object is detected, the default action will be Skip, click on Continue.
    Posted Image
  • If malicious objects are found, they will show in the Scan results - Select action for found objects and offer three options.
    Ensure Cure (default) is selected, then click Continue > Reboot now to finish the cleaning process.
    Posted Image
    Note: If Cure is not available, please choose Skip instead, do not choose Delete unless instructed.
  • A report will be created in your root directory, (usually C:\ folder) in the form of "TDSSKiller.[Version]_[Date]_[Time]_log.txt". Please copy and paste the contents of that file here.

2.
Install Recovery Console and Run ComboFix

This tool is not a toy. If used the wrong way you could trash your computer. Please use only under direction of a Helper. If you decide to do so anyway, please do not blame me or ComboFix.

Download Combofix from any of the links below, and save it to your desktop.

Link 1
Link 2
  • Close/disable all anti-virus and anti-malware programs so they do not interfere with the running of ComboFix. Refer to this page if you are not sure how.
  • Close any open windows, including this one.
  • Double click on ComboFix.exe & follow the prompts.
  • As part of it's process, ComboFix will check to see if the Microsoft Windows Recovery Console is installed. With malware infections being as they are today, it's strongly recommended to have this pre-installed on your machine before doing any malware removal. It will allow you to boot up into a special recovery/repair mode that will allow us to more easily help you should your computer have a problem after an attempted removal of malware.
  • If you did not have it installed, you will see the prompt below. Choose YES.
  • Posted Image
  • Follow the prompts to allow ComboFix to download and install the Microsoft Windows Recovery Console, and when prompted, agree to the End-User License Agreement to install the Microsoft Windows Recovery Console.
**Please note: If the Microsoft Windows Recovery Console is already installed, ComboFix will continue it's malware removal procedures.

Note:The Windows Recovery Console will allow you to boot up into a special recovery (repair) mode. This allows us to more easily help you
should your computer have a problem after an attempted removal of malware. It is a simple procedure that will only take a few moments of your time.

  • Once the Microsoft Windows Recovery Console is installed using ComboFix, you should see the following message:

    Posted Image
  • Click on Yes, to continue scanning for malware.
  • When finished, it will produce a report for you. Please post the contents of the log (C:\ComboFix.txt).
Leave your computer alone while ComboFix is running.
ComboFix will restart your computer if malware is found; allow it to do so.


Note: Please Do NOT mouseclick combofix's window while its running because it may cause it to stall.



Things to include in your next reply:;
TdssKiller log
Combofix.txt
How is your machine running now?

" Extinguishing Malware from the world"

The Virus, Trojan, Spyware, and Malware Removal forum is very busy. If I'm helping you and I've not posted back within 24 hrs., send a PM with your topic link. Thank you.

ALL OTHER HELP REQUESTS VIA THE PM SYSTEM WILL BE IGNORED. The Forums are there for a reason!
Thanks-


  userbar_eis_500.gif

If I have helped you, consider making a donation to help me continue the fight against Malware! Just click btn_donate_LG.gif


#7 gamegeek1995

gamegeek1995
  • Topic Starter

  • Members
  • 8 posts
  • OFFLINE
  •  
  • Local time:07:10 AM

Posted 27 September 2012 - 05:31 PM

Hi! Ran both of them. Said that the TDSS file was too large to upload, so I'm posting TDSS's contents. I'll make a second post for them, since I can't seem to upload them. ComboFix's notepad file is attached, however.

I opened 10 files using Google. All 10 opened correctly. (4 wikipedia opens, a cnn.com open, and 4 Killing Floor wiki opens. 10/10 is much better than it was before this fix. If anything is working now, I want to say thank you very much to the people at BleepingComputer.com, and I will certainly recommend all my friends here!)

Attached Files



#8 gamegeek1995

gamegeek1995
  • Topic Starter

  • Members
  • 8 posts
  • OFFLINE
  •  
  • Local time:07:10 AM

Posted 27 September 2012 - 05:32 PM

I don't have enough upload room to upload my TDSS text file. It's a meg. Do you have an email I can send it to you at or something?

#9 fireman4it

fireman4it

    Bleepin' Fireman


  • Malware Response Team
  • 13,512 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Greenup, Ill USA
  • Local time:06:10 AM

Posted 27 September 2012 - 05:50 PM

Use multiple posts to post the TDss Log if you have to.

" Extinguishing Malware from the world"

The Virus, Trojan, Spyware, and Malware Removal forum is very busy. If I'm helping you and I've not posted back within 24 hrs., send a PM with your topic link. Thank you.

ALL OTHER HELP REQUESTS VIA THE PM SYSTEM WILL BE IGNORED. The Forums are there for a reason!
Thanks-


  userbar_eis_500.gif

If I have helped you, consider making a donation to help me continue the fight against Malware! Just click btn_donate_LG.gif


#10 gamegeek1995

gamegeek1995
  • Topic Starter

  • Members
  • 8 posts
  • OFFLINE
  •  
  • Local time:07:10 AM

Posted 27 September 2012 - 05:56 PM

17:28:42.0487 3188 TDSS rootkit removing tool 2.8.10.0 Sep 17 2012 19:23:24
17:28:43.0065 3188 ============================================================
17:28:43.0065 3188 Current date / time: 2012/09/27 17:28:43.0065
17:28:43.0065 3188 SystemInfo:
17:28:43.0065 3188
17:28:43.0065 3188 OS Version: 6.1.7601 ServicePack: 1.0
17:28:43.0065 3188 Product type: Workstation
17:28:43.0065 3188 ComputerName: MALACHI-HAL
17:28:43.0065 3188 UserName: Malachi
17:28:43.0065 3188 Windows directory: C:\Windows
17:28:43.0065 3188 System windows directory: C:\Windows
17:28:43.0065 3188 Running under WOW64
17:28:43.0065 3188 Processor architecture: Intel x64
17:28:43.0065 3188 Number of processors: 4
17:28:43.0065 3188 Page size: 0x1000
17:28:43.0065 3188 Boot type: Normal boot
17:28:43.0065 3188 ============================================================
17:28:43.0377 3188 BG loaded
17:28:43.0751 3188 Drive \Device\Harddisk0\DR0 - Size: 0x15D50F66000 (1397.27 Gb), SectorSize: 0x200, Cylinders: 0x2C881, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
17:28:43.0767 3188 Drive \Device\Harddisk5\DR5 - Size: 0x3D7FFE00 (0.96 Gb), SectorSize: 0x200, Cylinders: 0x7D, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
17:28:43.0782 3188 ============================================================
17:28:43.0782 3188 \Device\Harddisk0\DR0:
17:28:43.0782 3188 MBR partitions:
17:28:43.0782 3188 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0xAEA86702
17:28:43.0782 3188 \Device\Harddisk5\DR5:
17:28:43.0782 3188 MBR partitions:
17:28:43.0782 3188 \Device\Harddisk5\DR5\Partition1: MBR, Type 0xB, StartLBA 0x3F, BlocksNum 0x1EA3FE
17:28:43.0782 3188 ============================================================
17:28:43.0860 3188 C: <-> \Device\Harddisk0\DR0\Partition1
17:28:43.0860 3188 ============================================================
17:28:43.0860 3188 Initialize success
17:28:43.0860 3188 ============================================================
17:28:53.0938 2420 ============================================================
17:28:53.0938 2420 Scan started
17:28:53.0938 2420 Mode: Manual; SigCheck; TDLFS;
17:28:53.0938 2420 ============================================================
17:28:54.0375 2420 ================ Scan system memory ========================
17:28:54.0375 2420 System memory - ok
17:28:54.0375 2420 ================ Scan services =============================
17:28:54.0546 2420 [ A87D604AEA360176311474C87A63BB88 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
17:28:54.0624 2420 1394ohci - ok
17:28:54.0640 2420 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI C:\Windows\system32\drivers\ACPI.sys
17:28:54.0655 2420 ACPI - ok
17:28:54.0655 2420 [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
17:28:54.0702 2420 AcpiPmi - ok
17:28:54.0890 2420 [ D19C4EE2AC7C47B8F5F84FFF1A789D8A ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
17:28:54.0905 2420 AdobeARMservice - ok
17:28:55.0046 2420 [ E12CFCF1DDBFC50948A75E6E38793225 ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
17:28:55.0061 2420 AdobeFlashPlayerUpdateSvc - ok
17:28:55.0124 2420 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
17:28:55.0155 2420 adp94xx - ok
17:28:55.0170 2420 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
17:28:55.0186 2420 adpahci - ok
17:28:55.0217 2420 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
17:28:55.0217 2420 adpu320 - ok
17:28:55.0264 2420 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
17:28:55.0311 2420 AeLookupSvc - ok
17:28:55.0389 2420 [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD C:\Windows\system32\drivers\afd.sys
17:28:55.0420 2420 AFD - ok
17:28:55.0451 2420 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\Windows\system32\drivers\agp440.sys
17:28:55.0467 2420 agp440 - ok
17:28:55.0467 2420 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\Windows\System32\alg.exe
17:28:55.0545 2420 ALG - ok
17:28:55.0560 2420 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\Windows\system32\drivers\aliide.sys
17:28:55.0592 2420 aliide - ok
17:28:55.0623 2420 [ B3B263B419FC9E7B1D41E61FDAE45BD9 ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe
17:28:55.0685 2420 AMD External Events Utility - ok
17:28:55.0810 2420 AMD FUEL Service - ok
17:28:55.0841 2420 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\Windows\system32\drivers\amdide.sys
17:28:55.0888 2420 amdide - ok
17:28:55.0904 2420 [ 6A2EEB0C4133B20773BB3DD0B7B377B4 ] amdiox64 C:\Windows\system32\DRIVERS\amdiox64.sys
17:28:55.0919 2420 amdiox64 - ok
17:28:55.0997 2420 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
17:28:56.0060 2420 AmdK8 - ok
17:28:56.0278 2420 [ 9A6E9363F7A5E5A06629D9DDC76EE6B5 ] amdkmdag C:\Windows\system32\DRIVERS\atikmdag.sys
17:28:56.0387 2420 amdkmdag - ok
17:28:56.0434 2420 [ 957A4C13E1981B1701E600EF1E823C68 ] amdkmdap C:\Windows\system32\DRIVERS\atikmpag.sys
17:28:56.0496 2420 amdkmdap - ok
17:28:56.0528 2420 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
17:28:56.0559 2420 AmdPPM - ok
17:28:56.0621 2420 [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata C:\Windows\system32\drivers\amdsata.sys
17:28:56.0668 2420 amdsata - ok
17:28:56.0668 2420 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
17:28:56.0699 2420 amdsbs - ok
17:28:56.0715 2420 [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata C:\Windows\system32\drivers\amdxata.sys
17:28:56.0715 2420 amdxata - ok
17:28:56.0746 2420 [ 4DE0D5D747A73797C95A97DCCE5018B5 ] androidusb C:\Windows\system32\Drivers\ssadadb.sys
17:28:56.0793 2420 androidusb - ok
17:28:56.0855 2420 [ 0A1CC583E8147004E4AD4625D7FBF88C ] AntiVirSchedulerService C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
17:28:56.0886 2420 AntiVirSchedulerService - ok
17:28:56.0902 2420 [ C9A36EF935ACED86AEDF93E97E606911 ] AntiVirService C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
17:28:56.0918 2420 AntiVirService - ok
17:28:56.0964 2420 [ 5B25D1A753CC3A3EDB909BB759AC1098 ] AODDriver4.01 C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys
17:28:56.0996 2420 AODDriver4.01 - ok
17:28:57.0074 2420 [ 5B25D1A753CC3A3EDB909BB759AC1098 ] AODDriver4.1 C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys
17:28:57.0089 2420 AODDriver4.1 - ok
17:28:57.0136 2420 [ 89A69C3F2F319B43379399547526D952 ] AppID C:\Windows\system32\drivers\appid.sys
17:28:57.0214 2420 AppID - ok
17:28:57.0245 2420 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\Windows\System32\appidsvc.dll
17:28:57.0323 2420 AppIDSvc - ok
17:28:57.0386 2420 [ 3977D4A871CA0D4F2ED1E7DB46829731 ] Appinfo C:\Windows\System32\appinfo.dll
17:28:57.0479 2420 Appinfo - ok
17:28:57.0510 2420 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\Windows\system32\DRIVERS\arc.sys
17:28:57.0526 2420 arc - ok
17:28:57.0542 2420 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
17:28:57.0557 2420 arcsas - ok
17:28:57.0682 2420 aspnet_state - ok
17:28:57.0713 2420 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
17:28:57.0791 2420 AsyncMac - ok
17:28:57.0807 2420 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\Windows\system32\drivers\atapi.sys
17:28:57.0822 2420 atapi - ok
17:28:57.0885 2420 [ B0790FF0E25B7A2674296052F2162C1A ] AtiHDAudioService C:\Windows\system32\drivers\AtihdW76.sys
17:28:57.0916 2420 AtiHDAudioService - ok
17:28:57.0978 2420 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
17:28:58.0072 2420 AudioEndpointBuilder - ok
17:28:58.0072 2420 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv C:\Windows\System32\Audiosrv.dll
17:28:58.0103 2420 AudioSrv - ok
17:28:58.0119 2420 [ 26E38B5A58C6C55FAFBC563EEDDB0867 ] avgntflt C:\Windows\system32\DRIVERS\avgntflt.sys
17:28:58.0119 2420 avgntflt - ok
17:28:58.0166 2420 [ 9D1F00BEFF84CBBF46D7F052BC7E0565 ] avipbb C:\Windows\system32\DRIVERS\avipbb.sys
17:28:58.0212 2420 avipbb - ok
17:28:58.0228 2420 [ 248DB59FC86DE44D2779F4C7FB1A567D ] avkmgr C:\Windows\system32\DRIVERS\avkmgr.sys
17:28:58.0228 2420 avkmgr - ok
17:28:58.0275 2420 [ 803B9A93C8D8B72414D7D05DC1A47F34 ] AX88772 C:\Windows\system32\DRIVERS\ax88772.sys
17:28:58.0306 2420 AX88772 - ok
17:28:58.0384 2420 [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV C:\Windows\System32\AxInstSV.dll
17:28:58.0478 2420 AxInstSV - ok
17:28:58.0524 2420 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\Windows\system32\DRIVERS\bxvbda.sys
17:28:58.0618 2420 b06bdrv - ok
17:28:58.0680 2420 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
17:28:58.0743 2420 b57nd60a - ok
17:28:58.0790 2420 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\Windows\System32\bdesvc.dll
17:28:58.0852 2420 BDESVC - ok
17:28:58.0852 2420 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\Windows\system32\drivers\Beep.sys
17:28:58.0930 2420 Beep - ok
17:28:59.0039 2420 [ 82974D6A2FD19445CC5171FC378668A4 ] BFE C:\Windows\System32\bfe.dll
17:28:59.0117 2420 BFE - ok
17:28:59.0148 2420 [ 1EA7969E3271CBC59E1730697DC74682 ] BITS C:\Windows\System32\qmgr.dll
17:28:59.0226 2420 BITS - ok
17:28:59.0258 2420 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
17:28:59.0273 2420 blbdrive - ok
17:28:59.0367 2420 [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
17:28:59.0382 2420 bowser - ok
17:28:59.0414 2420 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
17:28:59.0460 2420 BrFiltLo - ok
17:28:59.0476 2420 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
17:28:59.0523 2420 BrFiltUp - ok
17:28:59.0554 2420 [ 5C2F352A4E961D72518261257AAE204B ] Bridge C:\Windows\system32\DRIVERS\bridge.sys
17:28:59.0648 2420 Bridge - ok
17:28:59.0679 2420 [ 5C2F352A4E961D72518261257AAE204B ] BridgeMP C:\Windows\system32\DRIVERS\bridge.sys
17:28:59.0710 2420 BridgeMP - ok
17:28:59.0741 2420 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser C:\Windows\System32\browser.dll
17:28:59.0772 2420 Browser - ok
17:28:59.0788 2420 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\Windows\System32\Drivers\Brserid.sys
17:28:59.0850 2420 Brserid - ok
17:28:59.0882 2420 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
17:28:59.0928 2420 BrSerWdm - ok
17:28:59.0960 2420 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
17:29:00.0006 2420 BrUsbMdm - ok
17:29:00.0022 2420 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
17:29:00.0038 2420 BrUsbSer - ok
17:29:00.0038 2420 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
17:29:00.0100 2420 BTHMODEM - ok
17:29:00.0178 2420 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\Windows\system32\bthserv.dll
17:29:00.0272 2420 bthserv - ok
17:29:00.0303 2420 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
17:29:00.0350 2420 cdfs - ok
17:29:00.0396 2420 [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom C:\Windows\system32\drivers\cdrom.sys
17:29:00.0443 2420 cdrom - ok
17:29:00.0537 2420 [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc C:\Windows\System32\certprop.dll
17:29:00.0599 2420 CertPropSvc - ok
17:29:00.0630 2420 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\Windows\system32\DRIVERS\circlass.sys
17:29:00.0646 2420 circlass - ok
17:29:00.0662 2420 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\Windows\system32\CLFS.sys
17:29:00.0677 2420 CLFS - ok
17:29:00.0708 2420 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
17:29:00.0740 2420 clr_optimization_v2.0.50727_32 - ok
17:29:00.0849 2420 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
17:29:00.0880 2420 clr_optimization_v2.0.50727_64 - ok
17:29:00.0974 2420 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
17:29:01.0005 2420 clr_optimization_v4.0.30319_32 - ok
17:29:01.0020 2420 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
17:29:01.0036 2420 clr_optimization_v4.0.30319_64 - ok
17:29:01.0052 2420 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
17:29:01.0067 2420 CmBatt - ok
17:29:01.0098 2420 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\Windows\system32\drivers\cmdide.sys
17:29:01.0145 2420 cmdide - ok
17:29:01.0223 2420 [ 9AC4F97C2D3E93367E2148EA940CD2CD ] CNG C:\Windows\system32\Drivers\cng.sys
17:29:01.0254 2420 CNG - ok
17:29:01.0270 2420 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
17:29:01.0286 2420 Compbatt - ok
17:29:01.0301 2420 [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus C:\Windows\system32\drivers\CompositeBus.sys
17:29:01.0348 2420 CompositeBus - ok
17:29:01.0364 2420 COMSysApp - ok
17:29:01.0364 2420 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
17:29:01.0379 2420 crcdisk - ok
17:29:01.0442 2420 [ 4F5414602E2544A4554D95517948B705 ] CryptSvc C:\Windows\system32\cryptsvc.dll
17:29:01.0520 2420 CryptSvc - ok
17:29:01.0582 2420 [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch C:\Windows\system32\rpcss.dll
17:29:01.0644 2420 DcomLaunch - ok
17:29:01.0691 2420 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\Windows\System32\defragsvc.dll
17:29:01.0769 2420 defragsvc - ok
17:29:01.0832 2420 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
17:29:01.0894 2420 DfsC - ok
17:29:01.0925 2420 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp C:\Windows\system32\dhcpcore.dll
17:29:02.0034 2420 Dhcp - ok
17:29:02.0050 2420 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\Windows\system32\drivers\discache.sys
17:29:02.0097 2420 discache - ok
17:29:02.0144 2420 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\Windows\system32\DRIVERS\disk.sys
17:29:02.0159 2420 Disk - ok
17:29:02.0206 2420 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache C:\Windows\System32\dnsrslvr.dll
17:29:02.0222 2420 Dnscache - ok
17:29:02.0253 2420 [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc C:\Windows\System32\dot3svc.dll
17:29:02.0300 2420 dot3svc - ok
17:29:02.0331 2420 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS C:\Windows\system32\dps.dll
17:29:02.0409 2420 DPS - ok
17:29:02.0456 2420 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
17:29:02.0518 2420 drmkaud - ok
17:29:02.0534 2420 [ F5BEE30450E18E6B83A5012C100616FD ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
17:29:02.0565 2420 DXGKrnl - ok
17:29:02.0612 2420 EagleX64 - ok
17:29:02.0674 2420 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\Windows\System32\eapsvc.dll
17:29:02.0721 2420 EapHost - ok
17:29:02.0846 2420 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\Windows\system32\DRIVERS\evbda.sys
17:29:02.0955 2420 ebdrv - ok
17:29:02.0986 2420 [ C118A82CD78818C29AB228366EBF81C3 ] EFS C:\Windows\System32\lsass.exe
17:29:03.0080 2420 EFS - ok
17:29:03.0126 2420 [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
17:29:03.0236 2420 ehRecvr - ok
17:29:03.0267 2420 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\Windows\ehome\ehsched.exe
17:29:03.0360 2420 ehSched - ok
17:29:03.0407 2420 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys
17:29:03.0454 2420 elxstor - ok
17:29:03.0470 2420 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\Windows\system32\drivers\errdev.sys
17:29:03.0501 2420 ErrDev - ok
17:29:03.0563 2420 esgiguard - ok
17:29:03.0610 2420 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\Windows\system32\es.dll
17:29:03.0672 2420 EventSystem - ok
17:29:03.0704 2420 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\Windows\system32\drivers\exfat.sys
17:29:03.0766 2420 exfat - ok
17:29:03.0782 2420 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\Windows\system32\drivers\fastfat.sys
17:29:03.0860 2420 fastfat - ok
17:29:03.0906 2420 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax C:\Windows\system32\fxssvc.exe
17:29:03.0969 2420 Fax - ok
17:29:04.0000 2420 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\Windows\system32\DRIVERS\fdc.sys
17:29:04.0047 2420 fdc - ok
17:29:04.0062 2420 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\Windows\system32\fdPHost.dll
17:29:04.0125 2420 fdPHost - ok
17:29:04.0140 2420 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\Windows\system32\fdrespub.dll
17:29:04.0218 2420 FDResPub - ok
17:29:04.0250 2420 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
17:29:04.0281 2420 FileInfo - ok
17:29:04.0296 2420 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
17:29:04.0406 2420 Filetrace - ok
17:29:04.0421 2420 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
17:29:04.0437 2420 flpydisk - ok
17:29:04.0468 2420 [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
17:29:04.0468 2420 FltMgr - ok
17:29:04.0530 2420 [ 5C4CB4086FB83115B153E47ADD961A0C ] FontCache C:\Windows\system32\FntCache.dll
17:29:04.0655 2420 FontCache - ok
17:29:04.0749 2420 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
17:29:04.0764 2420 FontCache3.0.0.0 - ok
17:29:04.0796 2420 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
17:29:04.0827 2420 FsDepends - ok
17:29:04.0874 2420 [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
17:29:04.0920 2420 Fs_Rec - ok
17:29:04.0952 2420 [ 1F7B25B858FA27015169FE95E54108ED ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
17:29:04.0983 2420 fvevol - ok
17:29:04.0998 2420 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys
17:29:05.0014 2420 gagp30kx - ok
17:29:05.0076 2420 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc C:\Windows\System32\gpsvc.dll
17:29:05.0139 2420 gpsvc - ok
17:29:05.0154 2420 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
17:29:05.0217 2420 hcw85cir - ok
17:29:05.0279 2420 [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
17:29:05.0326 2420 HdAudAddService - ok
17:29:05.0357 2420 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus C:\Windows\system32\drivers\HDAudBus.sys
17:29:05.0420 2420 HDAudBus - ok
17:29:05.0435 2420 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys
17:29:05.0482 2420 HidBatt - ok
17:29:05.0513 2420 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
17:29:05.0544 2420 HidBth - ok
17:29:05.0560 2420 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
17:29:05.0576 2420 HidIr - ok
17:29:05.0622 2420 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\Windows\system32\hidserv.dll
17:29:05.0685 2420 hidserv - ok
17:29:05.0700 2420 [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
17:29:05.0716 2420 HidUsb - ok
17:29:05.0825 2420 [ A68E6B53BBA0F546821E1586DD4F1CDF ] HiPatchService C:\Program Files (x86)\Hi-Rez Studios\HiPatchService.exe
17:29:05.0841 2420 HiPatchService ( UnsignedFile.Multi.Generic ) - warning
17:29:05.0841 2420 HiPatchService - detected UnsignedFile.Multi.Generic (1)
17:29:05.0872 2420 [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc C:\Windows\system32\kmsvc.dll
17:29:05.0966 2420 hkmsvc - ok
17:29:06.0028 2420 [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll
17:29:06.0106 2420 HomeGroupListener - ok
17:29:06.0153 2420 [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
17:29:06.0215 2420 HomeGroupProvider - ok
17:29:06.0262 2420 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
17:29:06.0309 2420 HpSAMD - ok
17:29:06.0371 2420 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP C:\Windows\system32\drivers\HTTP.sys
17:29:06.0434 2420 HTTP - ok
17:29:06.0449 2420 [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
17:29:06.0465 2420 hwpolicy - ok
17:29:06.0496 2420 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\Windows\system32\drivers\i8042prt.sys
17:29:06.0543 2420 i8042prt - ok
17:29:06.0574 2420 [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
17:29:06.0621 2420 iaStorV - ok
17:29:06.0668 2420 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
17:29:06.0699 2420 idsvc - ok
17:29:06.0746 2420 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys
17:29:06.0777 2420 iirsp - ok
17:29:06.0824 2420 [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT C:\Windows\System32\ikeext.dll
17:29:06.0870 2420 IKEEXT - ok
17:29:06.0902 2420 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\Windows\system32\drivers\intelide.sys
17:29:06.0917 2420 intelide - ok
17:29:06.0933 2420 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
17:29:06.0964 2420 intelppm - ok
17:29:06.0995 2420 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\Windows\system32\ipbusenum.dll
17:29:07.0089 2420 IPBusEnum - ok
17:29:07.0120 2420 [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
17:29:07.0182 2420 IpFilterDriver - ok
17:29:07.0229 2420 [ A34A587FFFD45FA649FBA6D03784D257 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
17:29:07.0338 2420 iphlpsvc - ok
17:29:07.0354 2420 [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
17:29:07.0385 2420 IPMIDRV - ok
17:29:07.0416 2420 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
17:29:07.0479 2420 IPNAT - ok
17:29:07.0510 2420 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
17:29:07.0572 2420 IRENUM - ok
17:29:07.0604 2420 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\Windows\system32\drivers\isapnp.sys
17:29:07.0650 2420 isapnp - ok
17:29:07.0666 2420 [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
17:29:07.0682 2420 iScsiPrt - ok
17:29:07.0713 2420 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\Windows\system32\drivers\kbdclass.sys
17:29:07.0728 2420 kbdclass - ok
17:29:07.0760 2420 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid C:\Windows\system32\drivers\kbdhid.sys
17:29:07.0775 2420 kbdhid - ok
17:29:07.0853 2420 [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso C:\Windows\system32\lsass.exe
17:29:07.0884 2420 KeyIso - ok
17:29:07.0931 2420 [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
17:29:07.0962 2420 KSecDD - ok
17:29:07.0978 2420 [ 26C43A7C2862447EC59DEDA188D1DA07 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
17:29:07.0994 2420 KSecPkg - ok
17:29:07.0994 2420 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
17:29:08.0056 2420 ksthunk - ok
17:29:08.0087 2420 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\Windows\system32\msdtckrm.dll
17:29:08.0196 2420 KtmRm - ok
17:29:08.0228 2420 [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer C:\Windows\system32\srvsvc.dll
17:29:08.0274 2420 LanmanServer - ok
17:29:08.0321 2420 [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
17:29:08.0352 2420 LanmanWorkstation - ok
17:29:08.0384 2420 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
17:29:08.0477 2420 lltdio - ok
17:29:08.0493 2420 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\Windows\System32\lltdsvc.dll
17:29:08.0586 2420 lltdsvc - ok
17:29:08.0602 2420 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\Windows\System32\lmhsvc.dll
17:29:08.0633 2420 lmhosts - ok
17:29:08.0664 2420 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys
17:29:08.0680 2420 LSI_FC - ok
17:29:08.0696 2420 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys
17:29:08.0711 2420 LSI_SAS - ok
17:29:08.0727 2420 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys
17:29:08.0742 2420 LSI_SAS2 - ok
17:29:08.0805 2420 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys
17:29:08.0852 2420 LSI_SCSI - ok
17:29:08.0867 2420 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\Windows\system32\drivers\luafv.sys
17:29:08.0914 2420 luafv - ok
17:29:08.0945 2420 [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
17:29:08.0976 2420 Mcx2Svc - ok
17:29:08.0992 2420 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\Windows\system32\DRIVERS\megasas.sys
17:29:09.0008 2420 megasas - ok
17:29:09.0023 2420 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys
17:29:09.0054 2420 MegaSR - ok
17:29:09.0054 2420 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\Windows\system32\mmcss.dll
17:29:09.0117 2420 MMCSS - ok
17:29:09.0117 2420 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\Windows\system32\drivers\modem.sys
17:29:09.0148 2420 Modem - ok
17:29:09.0210 2420 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\Windows\system32\DRIVERS\monitor.sys
17:29:09.0257 2420 monitor - ok
17:29:09.0304 2420 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\Windows\system32\drivers\mouclass.sys
17:29:09.0351 2420 mouclass - ok
17:29:09.0382 2420 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
17:29:09.0429 2420 mouhid - ok
17:29:09.0491 2420 [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
17:29:09.0522 2420 mountmgr - ok
17:29:09.0585 2420 [ CB8AF049AC9BE419A77ADAE288673359 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
17:29:09.0632 2420 MozillaMaintenance - ok
17:29:09.0647 2420 [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio C:\Windows\system32\drivers\mpio.sys
17:29:09.0710 2420 mpio - ok
17:29:09.0710 2420 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
17:29:09.0741 2420 mpsdrv - ok
17:29:09.0788 2420 [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc C:\Windows\system32\mpssvc.dll
17:29:09.0819 2420 MpsSvc - ok
17:29:09.0866 2420 [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
17:29:09.0944 2420 MRxDAV - ok
17:29:09.0990 2420 [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
17:29:10.0022 2420 mrxsmb - ok
17:29:10.0053 2420 [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
17:29:10.0084 2420 mrxsmb10 - ok
17:29:10.0115 2420 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
17:29:10.0131 2420 mrxsmb20 - ok
17:29:10.0146 2420 [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci C:\Windows\system32\drivers\msahci.sys
17:29:10.0162 2420 msahci - ok
17:29:10.0209 2420 [ DB801A638D011B9633829EB6F663C900 ] msdsm C:\Windows\system32\drivers\msdsm.sys
17:29:10.0224 2420 msdsm - ok
17:29:10.0240 2420 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\Windows\System32\msdtc.exe
17:29:10.0271 2420 MSDTC - ok
17:29:10.0287 2420 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\Windows\system32\drivers\Msfs.sys
17:29:10.0318 2420 Msfs - ok
17:29:10.0334 2420 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
17:29:10.0380 2420 mshidkmdf - ok
17:29:10.0412 2420 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
17:29:10.0427 2420 msisadrv - ok
17:29:10.0458 2420 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
17:29:10.0505 2420 MSiSCSI - ok
17:29:10.0521 2420 msiserver - ok
17:29:10.0536 2420 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
17:29:10.0630 2420 MSKSSRV - ok
17:29:10.0646 2420 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
17:29:10.0724 2420 MSPCLOCK - ok
17:29:10.0739 2420 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
17:29:10.0755 2420 MSPQM - ok
17:29:10.0802 2420 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
17:29:10.0833 2420 MsRPC - ok
17:29:10.0848 2420 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\Windows\system32\drivers\mssmbios.sys
17:29:10.0864 2420 mssmbios - ok
17:29:10.0895 2420 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
17:29:10.0973 2420 MSTEE - ok
17:29:11.0004 2420 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys
17:29:11.0020 2420 MTConfig - ok
17:29:11.0036 2420 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\Windows\system32\Drivers\mup.sys
17:29:11.0036 2420 Mup - ok
17:29:11.0082 2420 [ 582AC6D9873E31DFA28A4547270862DD ] napagent C:\Windows\system32\qagentRT.dll
17:29:11.0145 2420 napagent - ok
17:29:11.0176 2420 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
17:29:11.0238 2420 NativeWifiP - ok
17:29:11.0285 2420 [ 760E38053BF56E501D562B70AD796B88 ] NDIS C:\Windows\system32\drivers\ndis.sys
17:29:11.0316 2420 NDIS - ok
17:29:11.0332 2420 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
17:29:11.0379 2420 NdisCap - ok
17:29:11.0394 2420 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
17:29:11.0472 2420 NdisTapi - ok
17:29:11.0504 2420 [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
17:29:11.0566 2420 Ndisuio - ok
17:29:11.0582 2420 [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
17:29:11.0660 2420 NdisWan - ok
17:29:11.0691 2420 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
17:29:11.0753 2420 NDProxy - ok
17:29:11.0784 2420 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
17:29:11.0862 2420 NetBIOS - ok
17:29:11.0878 2420 [ 09594D1089C523423B32A4229263F068 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
17:29:11.0909 2420 NetBT - ok
17:29:11.0940 2420 [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon C:\Windows\system32\lsass.exe
17:29:11.0940 2420 Netlogon - ok
17:29:12.0018 2420 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\Windows\System32\netman.dll
17:29:12.0096 2420 Netman - ok
17:29:12.0112 2420 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\Windows\System32\netprofm.dll
17:29:12.0143 2420 netprofm - ok
17:29:12.0174 2420 [ 3E5A36127E201DDF663176B66828FAFE ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
17:29:12.0190 2420 NetTcpPortSharing - ok
17:29:12.0221 2420 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys
17:29:12.0221 2420 nfrd960 - ok
17:29:12.0252 2420 [ 1EE99A89CC788ADA662441D1E9830529 ] NlaSvc C:\Windows\System32\nlasvc.dll
17:29:12.0284 2420 NlaSvc - ok
17:29:12.0299 2420 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\Windows\system32\drivers\Npfs.sys
17:29:12.0330 2420 Npfs - ok
17:29:12.0330 2420 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\Windows\system32\nsisvc.dll
17:29:12.0377 2420 nsi - ok
17:29:12.0424 2420 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
17:29:12.0455 2420 nsiproxy - ok
17:29:12.0549 2420 [ A2F74975097F52A00745F9637451FDD8 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
17:29:12.0611 2420 Ntfs - ok
17:29:12.0627 2420 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\Windows\system32\drivers\Null.sys
17:29:12.0642 2420 Null - ok
17:29:12.0689 2420 [ 8EBCB9165EE7F1571842F4D9D624A74C ] nusb3hub C:\Windows\system32\DRIVERS\nusb3hub.sys
17:29:12.0720 2420 nusb3hub - ok
17:29:12.0767 2420 [ 5D54DBB12BBFE07CC283FD39F2CD6D63 ] nusb3xhc C:\Windows\system32\DRIVERS\nusb3xhc.sys
17:29:12.0814 2420 nusb3xhc - ok
17:29:12.0861 2420 [ 0A92CB65770442ED0DC44834632F66AD ] nvraid C:\Windows\system32\drivers\nvraid.sys
17:29:12.0908 2420 nvraid - ok
17:29:12.0923 2420 [ DAB0E87525C10052BF65F06152F37E4A ] nvstor C:\Windows\system32\drivers\nvstor.sys
17:29:12.0939 2420 nvstor - ok
17:29:12.0954 2420 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
17:29:12.0970 2420 nv_agp - ok
17:29:13.0001 2420 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
17:29:13.0032 2420 ohci1394 - ok
17:29:13.0095 2420 OverwolfUpdaterService - ok
17:29:13.0110 2420 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
17:29:13.0157 2420 p2pimsvc - ok
17:29:13.0173 2420 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\Windows\system32\p2psvc.dll
17:29:13.0204 2420 p2psvc - ok
17:29:13.0220 2420 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\Windows\system32\DRIVERS\parport.sys
17:29:13.0235 2420 Parport - ok
17:29:13.0266 2420 [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr C:\Windows\system32\drivers\partmgr.sys
17:29:13.0282 2420 partmgr - ok
17:29:13.0282 2420 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll
17:29:13.0313 2420 PcaSvc - ok
17:29:13.0344 2420 [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci C:\Windows\system32\drivers\pci.sys
17:29:13.0344 2420 pci - ok
17:29:13.0360 2420 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\Windows\system32\drivers\pciide.sys
17:29:13.0376 2420 pciide - ok
17:29:13.0376 2420 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
17:29:13.0391 2420 pcmcia - ok
17:29:13.0422 2420 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\Windows\system32\drivers\pcw.sys
17:29:13.0454 2420 pcw - ok
17:29:13.0485 2420 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\Windows\system32\drivers\peauth.sys
17:29:13.0578 2420 PEAUTH - ok
17:29:13.0672 2420 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\Windows\SysWow64\perfhost.exe
17:29:13.0734 2420 PerfHost - ok
17:29:13.0828 2420 [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla C:\Windows\system32\pla.dll
17:29:13.0953 2420 pla - ok
17:29:13.0984 2420 [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
17:29:14.0078 2420 PlugPlay - ok
17:29:14.0093 2420 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
17:29:14.0156 2420 PNRPAutoReg - ok
17:29:14.0202 2420 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
17:29:14.0218 2420 PNRPsvc - ok
17:29:14.0234 2420 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
17:29:14.0280 2420 PolicyAgent - ok
17:29:14.0312 2420 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\Windows\system32\umpo.dll
17:29:14.0405 2420 Power - ok
17:29:14.0436 2420 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
17:29:14.0468 2420 PptpMiniport - ok
17:29:14.0499 2420 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\Windows\system32\DRIVERS\processr.sys
17:29:14.0546 2420 Processor - ok
17:29:14.0592 2420 [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc C:\Windows\system32\profsvc.dll
17:29:14.0670 2420 ProfSvc - ok
17:29:14.0686 2420 [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe
17:29:14.0717 2420 ProtectedStorage - ok
17:29:14.0764 2420 [ 0557CF5A2556BD58E26384169D72438D ] Psched C:\Windows\system32\DRIVERS\pacer.sys
17:29:14.0811 2420 Psched - ok
17:29:14.0858 2420 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys
17:29:14.0936 2420 ql2300 - ok
17:29:14.0951 2420 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys
17:29:14.0967 2420 ql40xx - ok
17:29:14.0998 2420 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\Windows\system32\qwave.dll
17:29:15.0029 2420 QWAVE - ok
17:29:15.0045 2420 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
17:29:15.0045 2420 QWAVEdrv - ok
17:29:15.0060 2420 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
17:29:15.0138 2420 RasAcd - ok
17:29:15.0185 2420 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
17:29:15.0279 2420 RasAgileVpn - ok
17:29:15.0279 2420 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\Windows\System32\rasauto.dll
17:29:15.0310 2420 RasAuto - ok
17:29:15.0341 2420 [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
17:29:15.0419 2420 Rasl2tp - ok
17:29:15.0450 2420 [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan C:\Windows\System32\rasmans.dll
17:29:15.0497 2420 RasMan - ok
17:29:15.0528 2420 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
17:29:15.0575 2420 RasPppoe - ok
17:29:15.0606 2420 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
17:29:15.0638 2420 RasSstp - ok
17:29:15.0669 2420 [ 77F665941019A1594D887A74F301FA2F ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
17:29:15.0700 2420 rdbss - ok
17:29:15.0716 2420 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
17:29:15.0747 2420 rdpbus - ok
17:29:15.0762 2420 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
17:29:15.0778 2420 RDPCDD - ok
17:29:15.0809 2420 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
17:29:15.0840 2420 RDPENCDD - ok
17:29:15.0856 2420 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
17:29:15.0887 2420 RDPREFMP - ok
17:29:15.0918 2420 [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
17:29:16.0012 2420 RDPWD - ok
17:29:16.0059 2420 [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
17:29:16.0090 2420 rdyboost - ok
17:29:16.0137 2420 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\Windows\System32\mprdim.dll
17:29:16.0215 2420 RemoteAccess - ok
17:29:16.0246 2420 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll
17:29:16.0308 2420 RemoteRegistry - ok
17:29:16.0324 2420 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
17:29:16.0371 2420 RpcEptMapper - ok
17:29:16.0386 2420 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\Windows\system32\locator.exe
17:29:16.0433 2420 RpcLocator - ok
17:29:16.0480 2420 [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs C:\Windows\system32\rpcss.dll
17:29:16.0542 2420 RpcSs - ok
17:29:16.0558 2420 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
17:29:16.0574 2420 rspndr - ok
17:29:16.0636 2420 [ 7EA8D2EB9BBFD2AB8A3117A1E96D3B3A ] RTL8167 C:\Windows\system32\DRIVERS\Rt64win7.sys
17:29:16.0683 2420 RTL8167 - ok
17:29:16.0683 2420 [ C118A82CD78818C29AB228366EBF81C3 ] SamSs C:\Windows\system32\lsass.exe
17:29:16.0698 2420 SamSs - ok
17:29:16.0730 2420 [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
17:29:16.0776 2420 sbp2port - ok
17:29:16.0776 2420 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\Windows\System32\SCardSvr.dll
17:29:16.0870 2420 SCardSvr - ok
17:29:16.0901 2420 [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
17:29:16.0979 2420 scfilter - ok
17:29:17.0010 2420 [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule C:\Windows\system32\schedsvc.dll
17:29:17.0088 2420 Schedule - ok
17:29:17.0120 2420 [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc C:\Windows\System32\certprop.dll
17:29:17.0166 2420 SCPolicySvc - ok
17:29:17.0198 2420 [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC C:\Windows\System32\SDRSVC.dll
17:29:17.0291 2420 SDRSVC - ok
17:29:17.0338 2420 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys
17:29:17.0385 2420 secdrv - ok
17:29:17.0400 2420 [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon C:\Windows\system32\seclogon.dll
17:29:17.0432 2420 seclogon - ok
17:29:17.0447 2420 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\Windows\System32\sens.dll
17:29:17.0478 2420 SENS - ok
17:29:17.0478 2420 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\Windows\system32\sensrsvc.dll
17:29:17.0556 2420 SensrSvc - ok
17:29:17.0572 2420 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
17:29:17.0634 2420 Serenum - ok
17:29:17.0650 2420 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\Windows\system32\DRIVERS\serial.sys
17:29:17.0666 2420 Serial - ok
17:29:17.0712 2420 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys
17:29:17.0790 2420 sermouse - ok
17:29:17.0837 2420 [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv C:\Windows\system32\sessenv.dll
17:29:17.0900 2420 SessionEnv - ok
17:29:17.0915 2420 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
17:29:17.0946 2420 sffdisk - ok
17:29:17.0962 2420 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
17:29:18.0024 2420 sffp_mmc - ok
17:29:18.0024 2420 [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
17:29:18.0087 2420 sffp_sd - ok
17:29:18.0102 2420 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
17:29:18.0149 2420 sfloppy - ok
17:29:18.0212 2420 [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess C:\Windows\System32\ipnathlp.dll
17:29:18.0305 2420 SharedAccess - ok
17:29:18.0321 2420 [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
17:29:18.0399 2420 ShellHWDetection - ok
17:29:18.0414 2420 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys
17:29:18.0430 2420 SiSRaid2 - ok
17:29:18.0446 2420 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys
17:29:18.0461 2420 SiSRaid4 - ok
17:29:18.0524 2420 [ EA396139541706B4B433641D62EA53CE ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe
17:29:18.0617 2420 SkypeUpdate - ok
17:29:18.0648 2420 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\Windows\system32\DRIVERS\smb.sys
17:29:18.0726 2420 Smb - ok
17:29:18.0773 2420 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\Windows\System32\snmptrap.exe
17:29:18.0820 2420 SNMPTRAP - ok
17:29:18.0836 2420 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\Windows\system32\drivers\spldr.sys
17:29:18.0851 2420 spldr - ok
17:29:18.0914 2420 [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler C:\Windows\System32\spoolsv.exe
17:29:18.0960 2420 Spooler - ok
17:29:19.0070 2420 [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc C:\Windows\system32\sppsvc.exe
17:29:19.0148 2420 sppsvc - ok
17:29:19.0179 2420 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\Windows\system32\sppuinotify.dll
17:29:19.0241 2420 sppuinotify - ok
17:29:19.0288 2420 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv C:\Windows\system32\DRIVERS\srv.sys
17:29:19.0319 2420 srv - ok
17:29:19.0350 2420 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
17:29:19.0382 2420 srv2 - ok
17:29:19.0413 2420 [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
17:29:19.0413 2420 srvnet - ok
17:29:19.0460 2420 [ 8F8324ED1DE63FFC7B1A02CD2D963C72 ] ssadbus C:\Windows\system32\DRIVERS\ssadbus.sys
17:29:19.0538 2420 ssadbus - ok
17:29:19.0553 2420 [ 58221EFCB74167B73667F0024C661CE0 ] ssadmdfl C:\Windows\system32\DRIVERS\ssadmdfl.sys
17:29:19.0631 2420 ssadmdfl - ok
17:29:19.0678 2420 [ 4DA7C71BFAC5AD71255B7E4CAB980163 ] ssadmdm C:\Windows\system32\DRIVERS\ssadmdm.sys
17:29:19.0725 2420 ssadmdm - ok
17:29:19.0772 2420 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
17:29:19.0865 2420 SSDPSRV - ok
17:29:19.0896 2420 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\Windows\system32\sstpsvc.dll
17:29:19.0959 2420 SstpSvc - ok
17:29:20.0006 2420 Steam Client Service - ok
17:29:20.0021 2420 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys
17:29:20.0068 2420 stexstor - ok
17:29:20.0115 2420 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc C:\Windows\System32\wiaservc.dll
17:29:20.0193 2420 stisvc - ok
17:29:20.0224 2420 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\Windows\system32\drivers\swenum.sys
17:29:20.0255 2420 swenum - ok
17:29:20.0318 2420 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\Windows\System32\swprv.dll
17:29:20.0380 2420 swprv - ok
17:29:20.0442 2420 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain C:\Windows\system32\sysmain.dll
17:29:20.0489 2420 SysMain - ok
17:29:20.0505 2420 [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
17:29:20.0520 2420 TabletInputService - ok
17:29:20.0552 2420 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv C:\Windows\System32\tapisrv.dll
17:29:20.0630 2420 TapiSrv - ok
17:29:20.0661 2420 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\Windows\System32\tbssvc.dll
17:29:20.0739 2420 TBS - ok
17:29:20.0817 2420 [ F782CAD3CEDBB3F9FFE3BF2775D92DDC ] Tcpip C:\Windows\system32\drivers\tcpip.sys
17:29:20.0895 2420 Tcpip - ok
17:29:20.0926 2420 [ F782CAD3CEDBB3F9FFE3BF2775D92DDC ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
17:29:20.0957 2420 TCPIP6 - ok
17:29:20.0988 2420 [ DF687E3D8836BFB04FCC0615BF15A519 ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
17:29:21.0066 2420 tcpipreg - ok
17:29:21.0098 2420 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
17:29:21.0129 2420 TDPIPE - ok
17:29:21.0176 2420 [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
17:29:21.0207 2420 TDTCP - ok
17:29:21.0207 2420 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
17:29:21.0254 2420 tdx - ok
17:29:21.0269 2420 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD C:\Windows\system32\drivers\termdd.sys
17:29:21.0285 2420 TermDD - ok
17:29:21.0300 2420 [ 2E648163254233755035B46DD7B89123 ] TermService C:\Windows\System32\termsrv.dll
17:29:21.0363 2420 TermService - ok
17:29:21.0410 2420 [ F0344071948D1A1FA732231785A0664C ] Themes C:\Windows\system32\themeservice.dll
17:29:21.0472 2420 Themes - ok
17:29:21.0503 2420 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\Windows\system32\mmcss.dll
17:29:21.0550 2420 THREADORDER - ok
17:29:21.0597 2420 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\Windows\System32\trkwks.dll
17:29:21.0690 2420 TrkWks - ok
17:29:21.0784 2420 [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
17:29:21.0831 2420 TrustedInstaller - ok
17:29:21.0878 2420 [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
17:29:21.0956 2420 tssecsrv - ok
17:29:22.0002 2420 [ D11C783E3EF9A3C52C0EBE83CC5000E9 ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
17:29:22.0065 2420 TsUsbFlt - ok
17:29:22.0127 2420 [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
17:29:22.0205 2420 tunnel - ok
17:29:22.0236 2420 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys
17:29:22.0268 2420 uagp35 - ok
17:29:22.0314 2420 [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
17:29:22.0361 2420 udfs - ok
17:29:22.0392 2420 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\Windows\system32\UI0Detect.exe
17:29:22.0424 2420 UI0Detect - ok
17:29:22.0455 2420 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
17:29:22.0470 2420 uliagpkx - ok
17:29:22.0502 2420 [ DC54A574663A895C8763AF0FA1FF7561 ] umbus C:\Windows\system32\drivers\umbus.sys
17:29:22.0548 2420 umbus - ok
17:29:22.0595 2420 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\Windows\system32\DRIVERS\umpass.sys
17:29:22.0626 2420 UmPass - ok
17:29:22.0673 2420 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\Windows\System32\upnphost.dll
17:29:22.0736 2420 upnphost - ok
17:29:22.0751 2420 [ 82E8F44688E6FAC57B5B7C6FC7ADBC2A ] usbaudio C:\Windows\system32\drivers\usbaudio.sys
17:29:22.0782 2420 usbaudio - ok
17:29:22.0798 2420 [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
17:29:22.0814 2420 usbccgp - ok
17:29:22.0829 2420 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\Windows\system32\drivers\usbcir.sys
17:29:22.0876 2420 usbcir - ok
17:29:22.0876 2420 [ C025055FE7B87701EB042095DF1A2D7B ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
17:29:22.0923 2420 usbehci - ok
17:29:22.0954 2420 [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
17:29:23.0032 2420 usbhub - ok
17:29:23.0048 2420 [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci C:\Windows\system32\DRIVERS\usbohci.sys
17:29:23.0110 2420 usbohci - ok
17:29:23.0126 2420 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
17:29:23.0141 2420 usbprint - ok
17:29:23.0172 2420 [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
17:29:23.0188 2420 USBSTOR - ok
17:29:23.0204 2420 [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci C:\Windows\system32\drivers\usbuhci.sys
17:29:23.0219 2420 usbuhci - ok
17:29:23.0235 2420 [ 454800C2BC7F3927CE030141EE4F4C50 ] usbvideo C:\Windows\system32\Drivers\usbvideo.sys
17:29:23.0266 2420 usbvideo - ok
17:29:23.0297 2420 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\Windows\System32\uxsms.dll
17:29:23.0375 2420 UxSms - ok
17:29:23.0391 2420 [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc C:\Windows\system32\lsass.exe
17:29:23.0391 2420 VaultSvc - ok
17:29:23.0422 2420 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
17:29:23.0422 2420 vdrvroot - ok
17:29:23.0469 2420 [ 8D6B481601D01A456E75C3210F1830BE ] vds C:\Windows\System32\vds.exe
17:29:23.0531 2420 vds - ok
17:29:23.0562 2420 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
17:29:23.0562 2420 vga - ok
17:29:23.0594 2420 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\Windows\System32\drivers\vga.sys
17:29:23.0656 2420 VgaSave - ok
17:29:23.0656 2420 [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
17:29:23.0672 2420 vhdmp - ok
17:29:23.0703 2420 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\Windows\system32\drivers\viaide.sys
17:29:23.0718 2420 viaide - ok
17:29:23.0734 2420 [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr C:\Windows\system32\drivers\volmgr.sys
17:29:23.0734 2420 volmgr - ok
17:29:23.0781 2420 [ A255814907C89BE58B79EF2F189B843B ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
17:29:23.0812 2420 volmgrx - ok
17:29:23.0828 2420 [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap C:\Windows\system32\drivers\volsnap.sys
17:29:23.0843 2420 volsnap - ok
17:29:23.0874 2420 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys
17:29:23.0890 2420 vsmraid - ok
17:29:23.0968 2420 [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS C:\Windows\system32\vssvc.exe
17:29:24.0015 2420 VSS - ok
17:29:24.0046 2420 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\Windows\System32\drivers\vwifibus.sys
17:29:24.0093 2420 vwifibus - ok
17:29:24.0155 2420 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\Windows\system32\w32time.dll
17:29:24.0249 2420 W32Time - ok
17:29:24.0264 2420 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys
17:29:24.0280 2420 WacomPen - ok
17:29:24.0296 2420 [ 356AFD78A6ED4457169241AC3965230C ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
17:29:24.0327 2420 WANARP - ok
17:29:24.0358 2420 [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
17:29:24.0374 2420 Wanarpv6 - ok
17:29:24.0452 2420 [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe
17:29:24.0530 2420 WatAdminSvc - ok
17:29:24.0561 2420 [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine C:\Windows\system32\wbengine.exe
17:29:24.0608 2420 wbengine - ok
17:29:24.0639 2420 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
17:29:24.0701 2420 WbioSrvc - ok
17:29:24.0748 2420 [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc C:\Windows\System32\wcncsvc.dll
17:29:24.0826 2420 wcncsvc - ok
17:29:24.0857 2420 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
17:29:24.0904 2420 WcsPlugInService - ok
17:29:24.0904 2420 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\Windows\system32\DRIVERS\wd.sys
17:29:24.0920 2420 Wd - ok
17:29:24.0951 2420 [ 441BD2D7B4F98134C3A4F9FA570FD250 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
17:29:24.0966 2420 Wdf01000 - ok
17:29:24.0982 2420 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\Windows\system32\wdi.dll
17:29:25.0060 2420 WdiServiceHost - ok
17:29:25.0076 2420 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\Windows\system32\wdi.dll
17:29:25.0091 2420 WdiSystemHost - ok
17:29:25.0122 2420 [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient C:\Windows\System32\webclnt.dll
17:29:25.0200 2420 WebClient - ok
17:29:25.0232 2420 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\Windows\system32\wecsvc.dll
17:29:25.0294 2420 Wecsvc - ok
17:29:25.0325 2420 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\Windows\System32\wercplsupport.dll
17:29:25.0403 2420 wercplsupport - ok
17:29:25.0450 2420 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\Windows\System32\WerSvc.dll
17:29:25.0512 2420 WerSvc - ok
17:29:25.0559 2420 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
17:29:25.0606 2420 WfpLwf - ok
17:29:25.0622 2420 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\Windows\system32\drivers\wimmount.sys
17:29:25.0637 2420 WIMMount - ok
17:29:25.0668 2420 WinDefend - ok
17:29:25.0668 2420 WinHttpAutoProxySvc - ok
17:29:25.0731 2420 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
17:29:25.0809 2420 Winmgmt - ok
17:29:25.0887 2420 [ 0C0195C48B6B8582FA6F6373032118DA ] WinRing0_1_2_0 C:\Program Files (x86)\IObit\Game Booster 3\Driver\WinRing0x64.sys
17:29:25.0934 2420 WinRing0_1_2_0 - ok

17:29:26.0012 2420 [ BCB1310604AA415C4508708975B3931E ] WinRM C:\Windows\system32\WsmSvc.dll
17:29:26.0121 2420 WinRM - ok
17:29:26.0199 2420 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\Windows\System32\wlansvc.dll
17:29:26.0308 2420 Wlansvc - ok
17:29:26.0448 2420 [ 2BACD71123F42CEA603F4E205E1AE337 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
17:29:26.0480 2420 wlidsvc - ok
17:29:26.0526 2420 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
17:29:26.0558 2420 WmiAcpi - ok
17:29:26.0604 2420 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
17:29:26.0651 2420 wmiApSrv - ok
17:29:26.0682 2420 WMPNetworkSvc - ok
17:29:26.0729 2420 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\Windows\System32\wpcsvc.dll
17:29:26.0776 2420 WPCSvc - ok
17:29:26.0807 2420 [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
17:29:26.0870 2420 WPDBusEnum - ok
17:29:26.0901 2420 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
17:29:26.0963 2420 ws2ifsl - ok
17:29:27.0010 2420 [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc C:\Windows\System32\wscsvc.dll
17:29:27.0104 2420 wscsvc - ok
17:29:27.0119 2420 WSearch - ok
17:29:27.0275 2420 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv C:\Windows\system32\wuaueng.dll
17:29:27.0322 2420 wuauserv - ok
17:29:27.0369 2420 [ D3381DC54C34D79B22CEE0D65BA91B7C ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
17:29:27.0447 2420 WudfPf - ok
17:29:27.0478 2420 [ CF8D590BE3373029D57AF80914190682 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
17:29:27.0572 2420 WUDFRd - ok
17:29:27.0603 2420 [ 7A95C95B6C4CF292D689106BCAE49543 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
17:29:27.0650 2420 wudfsvc - ok
17:29:27.0681 2420 [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc C:\Windows\System32\wwansvc.dll
17:29:27.0743 2420 WwanSvc - ok
17:29:27.0806 2420 [ 2EE48CFCE7CA8E0DB4C44C7476C0943B ] xusb21 C:\Windows\system32\DRIVERS\xusb21.sys
17:29:27.0868 2420 xusb21 - ok
17:29:27.0884 2420 ================ Scan global ===============================
17:29:27.0915 2420 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
17:29:27.0962 2420 [ EB6A48CC998E1090E44E8E7F1009A640 ] C:\Windows\system32\winsrv.dll
17:29:27.0977 2420 [ EB6A48CC998E1090E44E8E7F1009A640 ] C:\Windows\system32\winsrv.dll
17:29:28.0008 2420 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
17:29:28.0008 2420 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
17:29:28.0024 2420 [Global] - ok
17:29:28.0024 2420 ================ Scan MBR ==================================
17:29:28.0024 2420 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
17:29:28.0492 2420 \Device\Harddisk0\DR0 - ok
17:29:28.0508 2420 [ BAC499EDCFD1FB3F16C203162F3ABA48 ] \Device\Harddisk5\DR5
17:29:33.0156 2420 \Device\Harddisk5\DR5 - ok
17:29:33.0156 2420 ================ Scan VBR ==================================
17:29:33.0156 2420 [ 36EF3ED9E2D281D1E36CC7B38774C52F ] \Device\Harddisk0\DR0\Partition1
17:29:33.0156 2420 \Device\Harddisk0\DR0\Partition1 - ok
17:29:33.0172 2420 [ 1EE18892D12DDD4B5AF607495BCB0432 ] \Device\Harddisk5\DR5\Partition1
17:29:33.0172 2420 \Device\Harddisk5\DR5\Partition1 - ok
17:29:33.0172 2420 ================ Scan active images ========================
17:29:33.0172 2420 [ 3E588B60EC061686BA05D33574A344C6 ] C:\Windows\System32\drivers\crashdmp.sys
17:29:33.0188 2420 C:\Windows\System32\drivers\crashdmp.sys - ok
17:29:33.0188 2420 [ 839B5FE3D48E9F35B22C21A3D5103F6C ] C:\Windows\System32\drivers\Dumpata.sys
17:29:33.0188 2420 C:\Windows\System32\drivers\Dumpata.sys - ok
17:29:33.0203 2420 [ 02062C0B390B7729EDC9E69C680A6F3C ] C:\Windows\System32\drivers\atapi.sys
17:29:33.0203 2420 C:\Windows\System32\drivers\atapi.sys - ok
17:29:33.0203 2420 [ 814DB88F2641691575A455CF25354098 ] C:\Windows\System32\drivers\dumpfve.sys
17:29:33.0203 2420 C:\Windows\System32\drivers\dumpfve.sys - ok
17:29:33.0203 2420 [ F036CE71586E93D94DAB220D7BDF4416 ] C:\Windows\System32\drivers\cdrom.sys
17:29:33.0203 2420 C:\Windows\System32\drivers\cdrom.sys - ok
17:29:33.0219 2420 [ 9899284589F75FA8724FF3D16AED75C1 ] C:\Windows\System32\drivers\null.sys
17:29:33.0219 2420 C:\Windows\System32\drivers\null.sys - ok
17:29:33.0219 2420 [ 16A47CE2DECC9B099349A5F840654746 ] C:\Windows\System32\drivers\beep.sys
17:29:33.0219 2420 C:\Windows\System32\drivers\beep.sys - ok
17:29:33.0219 2420 [ CEA6CC257FC9B7715F1C2B4849286D24 ] C:\Windows\System32\drivers\RDPCDD.sys
17:29:33.0219 2420 C:\Windows\System32\drivers\RDPCDD.sys - ok
17:29:33.0219 2420 [ 53E92A310193CB3C03BEA963DE7D9CFC ] C:\Windows\System32\drivers\vga.sys
17:29:33.0219 2420 C:\Windows\System32\drivers\vga.sys - ok
17:29:33.0234 2420 [ E7353D59C9842BC7299FAEB7E7E09340 ] C:\Windows\System32\drivers\videoprt.sys
17:29:33.0234 2420 C:\Windows\System32\drivers\videoprt.sys - ok
17:29:33.0234 2420 [ FC438D1430B28618E2D0C7C332A710AD ] C:\Windows\System32\drivers\watchdog.sys
17:29:33.0234 2420 C:\Windows\System32\drivers\watchdog.sys - ok
17:29:33.0234 2420 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] C:\Windows\System32\drivers\msfs.sys
17:29:33.0234 2420 C:\Windows\System32\drivers\msfs.sys - ok
17:29:33.0234 2420 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] C:\Windows\System32\drivers\npfs.sys
17:29:33.0234 2420 C:\Windows\System32\drivers\npfs.sys - ok
17:29:33.0250 2420 [ BB5971A4F00659529A5C44831AF22365 ] C:\Windows\System32\drivers\RDPENCDD.sys
17:29:33.0250 2420 C:\Windows\System32\drivers\RDPENCDD.sys - ok
17:29:33.0250 2420 [ 216F3FA57533D98E1F74DED70113177A ] C:\Windows\System32\drivers\RDPREFMP.sys
17:29:33.0250 2420 C:\Windows\System32\drivers\RDPREFMP.sys - ok
17:29:33.0250 2420 [ 6F020A220388ECA0AB6062DC27BD16B6 ] C:\Windows\System32\drivers\tdi.sys
17:29:33.0250 2420 C:\Windows\System32\drivers\tdi.sys - ok
17:29:33.0250 2420 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] C:\Windows\System32\drivers\tdx.sys
17:29:33.0250 2420 C:\Windows\System32\drivers\tdx.sys - ok
17:29:33.0266 2420 [ 1C7857B62DE5994A75B054A9FD4C3825 ] C:\Windows\System32\drivers\afd.sys
17:29:33.0266 2420 C:\Windows\System32\drivers\afd.sys - ok
17:29:33.0266 2420 [ 09594D1089C523423B32A4229263F068 ] C:\Windows\System32\drivers\netbt.sys
17:29:33.0266 2420 C:\Windows\System32\drivers\netbt.sys - ok
17:29:33.0266 2420 [ 611B23304BF067451A9FDEE01FBDD725 ] C:\Windows\System32\drivers\wfplwf.sys
17:29:33.0266 2420 C:\Windows\System32\drivers\wfplwf.sys - ok
17:29:33.0266 2420 [ 86743D9F5D2B1048062B14B1D84501C4 ] C:\Windows\System32\drivers\netbios.sys
17:29:33.0266 2420 C:\Windows\System32\drivers\netbios.sys - ok
17:29:33.0266 2420 [ 0557CF5A2556BD58E26384169D72438D ] C:\Windows\System32\drivers\pacer.sys
17:29:33.0266 2420 C:\Windows\System32\drivers\pacer.sys - ok
17:29:33.0281 2420 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] C:\Windows\System32\drivers\serial.sys
17:29:33.0281 2420 C:\Windows\System32\drivers\serial.sys - ok
17:29:33.0281 2420 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] C:\Windows\System32\drivers\termdd.sys
17:29:33.0281 2420 C:\Windows\System32\drivers\termdd.sys - ok
17:29:33.0281 2420 [ 356AFD78A6ED4457169241AC3965230C ] C:\Windows\System32\drivers\wanarp.sys
17:29:33.0281 2420 C:\Windows\System32\drivers\wanarp.sys - ok
17:29:33.0281 2420 [ 248DB59FC86DE44D2779F4C7FB1A567D ] C:\Windows\System32\drivers\avkmgr.sys
17:29:33.0281 2420 C:\Windows\System32\drivers\avkmgr.sys - ok
17:29:33.0297 2420 [ 61583EE3C3A17003C4ACD0475646B4D3 ] C:\Windows\System32\drivers\blbdrive.sys
17:29:33.0297 2420 C:\Windows\System32\drivers\blbdrive.sys - ok
17:29:33.0297 2420 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] C:\Windows\System32\drivers\dfsc.sys
17:29:33.0297 2420 C:\Windows\System32\drivers\dfsc.sys - ok
17:29:33.0297 2420 [ 13096B05847EC78F0977F2C0F79E9AB3 ] C:\Windows\System32\drivers\discache.sys
17:29:33.0297 2420 C:\Windows\System32\drivers\discache.sys - ok
17:29:33.0297 2420 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] C:\Windows\System32\drivers\mssmbios.sys
17:29:33.0297 2420 C:\Windows\System32\drivers\mssmbios.sys - ok
17:29:33.0297 2420 [ E7F5AE18AF4168178A642A9247C63001 ] C:\Windows\System32\drivers\nsiproxy.sys
17:29:33.0297 2420 C:\Windows\System32\drivers\nsiproxy.sys - ok
17:29:33.0312 2420 [ 77F665941019A1594D887A74F301FA2F ] C:\Windows\System32\drivers\rdbss.sys
17:29:33.0312 2420 C:\Windows\System32\drivers\rdbss.sys - ok
17:29:33.0312 2420 [ 9D1F00BEFF84CBBF46D7F052BC7E0565 ] C:\Windows\System32\drivers\avipbb.sys
17:29:33.0312 2420 C:\Windows\System32\drivers\avipbb.sys - ok
17:29:33.0312 2420 [ 1E56388B3FE0D031C44144EB8C4D6217 ] C:\Windows\System32\drivers\amdppm.sys
17:29:33.0312 2420 C:\Windows\System32\drivers\amdppm.sys - ok
17:29:33.0312 2420 [ 957A4C13E1981B1701E600EF1E823C68 ] C:\Windows\System32\drivers\atikmpag.sys
17:29:33.0312 2420 C:\Windows\System32\drivers\atikmpag.sys - ok
17:29:33.0328 2420 [ 3566A8DAAFA27AF944F5D705EAA64894 ] C:\Windows\System32\drivers\tunnel.sys
17:29:33.0328 2420 C:\Windows\System32\drivers\tunnel.sys - ok
17:29:33.0328 2420 [ 9A6E9363F7A5E5A06629D9DDC76EE6B5 ] C:\Windows\System32\drivers\atikmdag.sys
17:29:33.0328 2420 C:\Windows\System32\drivers\atikmdag.sys - ok
17:29:33.0328 2420 [ F5BEE30450E18E6B83A5012C100616FD ] C:\Windows\System32\drivers\dxgkrnl.sys
17:29:33.0328 2420 C:\Windows\System32\drivers\dxgkrnl.sys - ok
17:29:33.0328 2420 [ 9CD68BDDF322535C02ADC8331013D13D ] C:\Windows\System32\drivers\dxgmms1.sys
17:29:33.0328 2420 C:\Windows\System32\drivers\dxgmms1.sys - ok
17:29:33.0344 2420 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] C:\Windows\System32\drivers\hdaudbus.sys
17:29:33.0344 2420 C:\Windows\System32\drivers\hdaudbus.sys - ok
17:29:33.0344 2420 [ CF95B85FF8D128385ABD411C8CA74DED ] C:\Windows\System32\ntdll.dll
17:29:33.0344 2420 C:\Windows\System32\ntdll.dll - ok
17:29:33.0344 2420 [ 1911A3356FA3F77CCC825CCBAC038C2A ] C:\Windows\System32\smss.exe
17:29:33.0344 2420 C:\Windows\System32\smss.exe - ok
17:29:33.0344 2420 [ 3B536A8BEC3B4F23FFDFD78B11A2AB93 ] C:\Windows\System32\autochk.exe
17:29:33.0344 2420 C:\Windows\System32\autochk.exe - ok
17:29:33.0344 2420 [ CCA2AB1752A61F29C3C941CD79D78CEA ] C:\Windows\System32\drivers\usbd.sys
17:29:33.0344 2420 C:\Windows\System32\drivers\usbd.sys - ok
17:29:33.0359 2420 [ 5D54DBB12BBFE07CC283FD39F2CD6D63 ] C:\Windows\System32\drivers\nusb3xhc.sys
17:29:33.0359 2420 C:\Windows\System32\drivers\nusb3xhc.sys - ok
17:29:33.0359 2420 [ 7EA8D2EB9BBFD2AB8A3117A1E96D3B3A ] C:\Windows\System32\drivers\Rt64win7.sys
17:29:33.0359 2420 C:\Windows\System32\drivers\Rt64win7.sys - ok
17:29:33.0359 2420 [ AE259C75F9A0B057B6BF9E9695632B09 ] C:\Windows\System32\drivers\usbport.sys
17:29:33.0359 2420 C:\Windows\System32\drivers\usbport.sys - ok
17:29:33.0359 2420 [ 9840FC418B4CBD632D3D0A667A725C31 ] C:\Windows\System32\drivers\usbohci.sys
17:29:33.0359 2420 C:\Windows\System32\drivers\usbohci.sys - ok
17:29:33.0375 2420 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] C:\Windows\System32\drivers\i8042prt.sys
17:29:33.0375 2420 C:\Windows\System32\drivers\i8042prt.sys - ok
17:29:33.0375 2420 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] C:\Windows\System32\drivers\kbdclass.sys
17:29:33.0375 2420 C:\Windows\System32\drivers\kbdclass.sys - ok
17:29:33.0375 2420 [ CB624C0035412AF0DEBEC78C41F5CA1B ] C:\Windows\System32\drivers\serenum.sys
17:29:33.0375 2420 C:\Windows\System32\drivers\serenum.sys - ok
17:29:33.0375 2420 [ C025055FE7B87701EB042095DF1A2D7B ] C:\Windows\System32\drivers\usbehci.sys
17:29:33.0375 2420 C:\Windows\System32\drivers\usbehci.sys - ok
17:29:33.0375 2420 [ A87D604AEA360176311474C87A63BB88 ] C:\Windows\System32\drivers\1394ohci.sys
17:29:33.0375 2420 C:\Windows\System32\drivers\1394ohci.sys - ok
17:29:33.0390 2420 [ 7ECFF9B22276B73F43A99A15A6094E90 ] C:\Windows\System32\drivers\agilevpn.sys
17:29:33.0390 2420 C:\Windows\System32\drivers\agilevpn.sys - ok
17:29:33.0390 2420 [ 5C2F352A4E961D72518261257AAE204B ] C:\Windows\System32\drivers\bridge.sys
17:29:33.0390 2420 C:\Windows\System32\drivers\bridge.sys - ok
17:29:33.0390 2420 [ 03EDB043586CCEBA243D689BDDA370A8 ] C:\Windows\System32\drivers\CompositeBus.sys
17:29:33.0390 2420 C:\Windows\System32\drivers\CompositeBus.sys - ok
17:29:33.0390 2420 [ F6FF8944478594D0E414D3F048F0D778 ] C:\Windows\System32\drivers\wmiacpi.sys
17:29:33.0390 2420 C:\Windows\System32\drivers\wmiacpi.sys - ok
17:29:33.0406 2420 [ 7D27EA49F3C1F687D357E77A470AEA99 ] C:\Windows\System32\drivers\mouclass.sys
17:29:33.0406 2420 C:\Windows\System32\drivers\mouclass.sys - ok
17:29:33.0406 2420 [ 30639C932D9FEF22B31268FE25A1B6E5 ] C:\Windows\System32\drivers\ndistapi.sys
17:29:33.0406 2420 C:\Windows\System32\drivers\ndistapi.sys - ok
17:29:33.0406 2420 [ 53F7305169863F0A2BDDC49E116C2E11 ] C:\Windows\System32\drivers\ndiswan.sys
17:29:33.0406 2420 C:\Windows\System32\drivers\ndiswan.sys - ok
17:29:33.0406 2420 [ 471815800AE33E6F1C32FB1B97C490CA ] C:\Windows\System32\drivers\rasl2tp.sys
17:29:33.0406 2420 C:\Windows\System32\drivers\rasl2tp.sys - ok
17:29:33.0422 2420 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] C:\Windows\System32\drivers\raspppoe.sys
17:29:33.0422 2420 C:\Windows\System32\drivers\raspppoe.sys - ok
17:29:33.0422 2420 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] C:\Windows\System32\drivers\raspptp.sys
17:29:33.0422 2420 C:\Windows\System32\drivers\raspptp.sys - ok
17:29:33.0422 2420 [ E8B1E447B008D07FF47D016C2B0EEECB ] C:\Windows\System32\drivers\rassstp.sys
17:29:33.0422 2420 C:\Windows\System32\drivers\rassstp.sys - ok
17:29:33.0422 2420 [ 24FBF5CC5C04150073C315A7C83521EE ] C:\Windows\System32\drivers\ks.sys
17:29:33.0422 2420 C:\Windows\System32\drivers\ks.sys - ok
17:29:33.0422 2420 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] C:\Windows\System32\drivers\swenum.sys
17:29:33.0422 2420 C:\Windows\System32\drivers\swenum.sys - ok
17:29:33.0437 2420 [ 6A2EEB0C4133B20773BB3DD0B7B377B4 ] C:\Windows\System32\drivers\amdiox64.sys
17:29:33.0437 2420 C:\Windows\System32\drivers\amdiox64.sys - ok
17:29:33.0437 2420 [ DC54A574663A895C8763AF0FA1FF7561 ] C:\Windows\System32\drivers\umbus.sys
17:29:33.0437 2420 C:\Windows\System32\drivers\umbus.sys - ok
17:29:33.0437 2420 [ 8EBCB9165EE7F1571842F4D9D624A74C ] C:\Windows\System32\drivers\nusb3hub.sys
17:29:33.0437 2420 C:\Windows\System32\drivers\nusb3hub.sys - ok
17:29:33.0437 2420 [ 287C6C9410B111B68B52CA298F7B8C24 ] C:\Windows\System32\drivers\usbhub.sys
17:29:33.0437 2420 C:\Windows\System32\drivers\usbhub.sys - ok
17:29:33.0437 2420 [ B9B42A302325537D7B9DC52D47F33A73 ] C:\Windows\System32\kernel32.dll
17:29:33.0437 2420 C:\Windows\System32\kernel32.dll - ok
17:29:33.0453 2420 [ 2885A3C3148F725CDA0B4C593BA8F7CE ] C:\Windows\System32\urlmon.dll
17:29:33.0453 2420 C:\Windows\System32\urlmon.dll - ok
17:29:33.0453 2420 [ D841F7629505EE542E26E5F0A4D20101 ] C:\Windows\System32\iertutil.dll
17:29:33.0453 2420 C:\Windows\System32\iertutil.dll - ok
17:29:33.0453 2420 [ 4BBFA57F594F7E8A8EDC8F377184C3F0 ] C:\Windows\System32\ws2_32.dll
17:29:33.0453 2420 C:\Windows\System32\ws2_32.dll - ok
17:29:33.0453 2420 [ C391FC68282A000CDF953F8B6B55D2EF ] C:\Windows\System32\msvcrt.dll
17:29:33.0453 2420 C:\Windows\System32\msvcrt.dll - ok
17:29:33.0468 2420 [ 0611473C1AD9E2D991CD9482068417F7 ] C:\Windows\System32\rpcrt4.dll
17:29:33.0468 2420 C:\Windows\System32\rpcrt4.dll - ok
17:29:33.0468 2420 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] C:\Windows\System32\drivers\ndproxy.sys
17:29:33.0468 2420 C:\Windows\System32\drivers\ndproxy.sys - ok
17:29:33.0468 2420 [ 21D26064AEDB4988F785BB4A3A2C051E ] C:\Windows\System32\drivers\drmk.sys
17:29:33.0468 2420 C:\Windows\System32\drivers\drmk.sys - ok
17:29:33.0468 2420 [ B0790FF0E25B7A2674296052F2162C1A ] C:\Windows\System32\drivers\AtihdW76.sys
17:29:33.0468 2420 C:\Windows\System32\drivers\AtihdW76.sys - ok
17:29:33.0468 2420 [ 6869281E78CB31A43E969F06B57347C4 ] C:\Windows\System32\drivers\ksthunk.sys
17:29:33.0468 2420 C:\Windows\System32\drivers\ksthunk.sys - ok
17:29:33.0484 2420 [ 32E11315B5126921FFD9074840EF13D3 ] C:\Windows\System32\drivers\portcls.sys
17:29:33.0484 2420 C:\Windows\System32\drivers\portcls.sys - ok
17:29:33.0484 2420 [ 975761C778E33CD22498059B91E7373A ] C:\Windows\System32\drivers\HdAudio.sys
17:29:33.0484 2420 C:\Windows\System32\drivers\HdAudio.sys - ok
17:29:33.0484 2420 [ FF4232A1A64012BAA1FD97C7B67DF593 ] C:\Windows\System32\drivers\udfs.sys
17:29:33.0484 2420 C:\Windows\System32\drivers\udfs.sys - ok
17:29:33.0484 2420 [ 6DF46D2BD74E3DA1B45F08F10D172732 ] C:\Windows\System32\advapi32.dll
17:29:33.0484 2420 C:\Windows\System32\advapi32.dll - ok
17:29:33.0484 2420 [ A1BE6A720D02E37F72E9CD89AE9CB3CF ] C:\Windows\System32\imagehlp.dll
17:29:33.0484 2420 C:\Windows\System32\imagehlp.dll - ok
17:29:33.0500 2420 [ FE70103391A64039A921DBFFF9C7AB1B ] C:\Windows\System32\user32.dll
17:29:33.0500 2420 C:\Windows\System32\user32.dll - ok
17:29:33.0500 2420 [ 2F8B1E3EE3545D3B5A8D56FA1AE07B65 ] C:\Windows\System32\usp10.dll
17:29:33.0500 2420 C:\Windows\System32\usp10.dll - ok
17:29:33.0500 2420 [ 4E4FFB09D895AA000DD56D1404F69A7E ] C:\Windows\System32\Wldap32.dll
17:29:33.0500 2420 C:\Windows\System32\Wldap32.dll - ok
17:29:33.0500 2420 [ FED648B01349A3C8395A5169DB5FB7D6 ] C:\Windows\System32\drivers\USBSTOR.SYS
17:29:33.0500 2420 C:\Windows\System32\drivers\USBSTOR.SYS - ok
17:29:33.0515 2420 [ 6F1A3157A1C89435352CEB543CDB359C ] C:\Windows\System32\drivers\usbccgp.sys
17:29:33.0515 2420 C:\Windows\System32\drivers\usbccgp.sys - ok
17:29:33.0515 2420 [ 454800C2BC7F3927CE030141EE4F4C50 ] C:\Windows\System32\drivers\usbvideo.sys
17:29:33.0515 2420 C:\Windows\System32\drivers\usbvideo.sys - ok
17:29:33.0515 2420 [ 82E8F44688E6FAC57B5B7C6FC7ADBC2A ] C:\Windows\System32\drivers\USBAUDIO.sys
17:29:33.0515 2420 C:\Windows\System32\drivers\USBAUDIO.sys - ok
17:29:33.0515 2420 [ 49EE2E52E6CD03947DAD72F65367BE06 ] C:\Windows\System32\drivers\hidparse.sys
17:29:33.0515 2420 C:\Windows\System32\drivers\hidparse.sys - ok
17:29:33.0515 2420 [ 8B0E40E7E8BBF5ACF390465609D89FF1 ] C:\Windows\System32\drivers\hidclass.sys
17:29:33.0515 2420 C:\Windows\System32\drivers\hidclass.sys - ok
17:29:33.0531 2420 [ 9592090A7E2B61CD582B612B6DF70536 ] C:\Windows\System32\drivers\hidusb.sys
17:29:33.0531 2420 C:\Windows\System32\drivers\hidusb.sys - ok
17:29:33.0531 2420 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] C:\Windows\System32\drivers\mouhid.sys
17:29:33.0531 2420 C:\Windows\System32\drivers\mouhid.sys - ok
17:29:33.0531 2420 [ F7CE0C81C545364020ED8203CF0A633E ] C:\Windows\System32\difxapi.dll
17:29:33.0531 2420 C:\Windows\System32\difxapi.dll - ok
17:29:33.0531 2420 [ D202223587518B13D72D68937B7E3F70 ] C:\Windows\System32\lpk.dll
17:29:33.0531 2420 C:\Windows\System32\lpk.dll - ok
17:29:33.0546 2420 [ 83404DCBCE4925B6A5A77C5170F46D86 ] C:\Windows\System32\sechost.dll
17:29:33.0546 2420 C:\Windows\System32\sechost.dll - ok
17:29:33.0546 2420 [ C431EAF5CAA1C82CAC2534A2EAB348A3 ] C:\Windows\System32\msctf.dll
17:29:33.0546 2420 C:\Windows\System32\msctf.dll - ok
17:29:33.0546 2420 [ 28C0B5024F5C5A438E78B188CFC81B7F ] C:\Windows\System32\normaliz.dll
17:29:33.0546 2420 C:\Windows\System32\normaliz.dll - ok
17:29:33.0546 2420 [ 5D8E6C95156ED1F79A63D1EADE6F9ED5 ] C:\Windows\System32\setupapi.dll
17:29:33.0546 2420 C:\Windows\System32\setupapi.dll - ok
17:29:33.0546 2420 [ 9835E63E09F824D22B689D2BB789BAB9 ] C:\Windows\System32\comdlg32.dll
17:29:33.0546 2420 C:\Windows\System32\comdlg32.dll - ok
17:29:33.0562 2420 [ C6689007B3A749C49A5438DCF36E0CE4 ] C:\Windows\System32\shell32.dll
17:29:33.0562 2420 C:\Windows\System32\shell32.dll - ok
17:29:33.0562 2420 [ 3D165C53E40236A68B7102D1A622D4E0 ] C:\Windows\System32\wininet.dll
17:29:33.0562 2420 C:\Windows\System32\wininet.dll - ok
17:29:33.0562 2420 [ 25983DE69B57142039AC8D95E71CD9C9 ] C:\Windows\System32\clbcatq.dll
17:29:33.0562 2420 C:\Windows\System32\clbcatq.dll - ok
17:29:33.0562 2420 [ 1084AA52CCC324EA54C7121FA24C2221 ] C:\Windows\System32\gdi32.dll
17:29:33.0562 2420 C:\Windows\System32\gdi32.dll - ok
17:29:33.0578 2420 [ AA2C08CE85653B1A0D2E4AB407FA176C ] C:\Windows\System32\imm32.dll
17:29:33.0578 2420 C:\Windows\System32\imm32.dll - ok
17:29:33.0578 2420 [ D87E1E59C73C1F98D5DED5B3850C40F5 ] C:\Windows\System32\psapi.dll
17:29:33.0578 2420 C:\Windows\System32\psapi.dll - ok
17:29:33.0578 2420 [ 6C60B5ACA7442EFB794082CDACFC001C ] C:\Windows\System32\ole32.dll
17:29:33.0578 2420 C:\Windows\System32\ole32.dll - ok
17:29:33.0578 2420 [ 803B9A93C8D8B72414D7D05DC1A47F34 ] C:\Windows\System32\drivers\ax88772.sys
17:29:33.0578 2420 C:\Windows\System32\drivers\ax88772.sys - ok
17:29:33.0578 2420 [ 044FE45FFD6AD40E3BBBE60B7F41BABE ] C:\Windows\System32\nsi.dll
17:29:33.0578 2420 C:\Windows\System32\nsi.dll - ok
17:29:33.0593 2420 [ C06B32165E23A72A898B7A89679AD754 ] C:\Windows\System32\oleaut32.dll
17:29:33.0593 2420 C:\Windows\System32\oleaut32.dll - ok
17:29:33.0593 2420 [ FAF1BA660F84789CCCE747CE6F9D055A ] C:\Windows\System32\crypt32.dll
17:29:33.0593 2420 C:\Windows\System32\crypt32.dll - ok
17:29:33.0593 2420 [ EAF32CB8C1F810E4715B4DFBE785C7FF ] C:\Windows\System32\shlwapi.dll
17:29:33.0593 2420 C:\Windows\System32\shlwapi.dll - ok
17:29:33.0593 2420 [ 14DFDEAF4E589ED3F1FF187A86B9408C ] C:\Windows\System32\comctl32.dll
17:29:33.0593 2420 C:\Windows\System32\comctl32.dll - ok
17:29:33.0593 2420 [ 2477A28081BDAEE622CF045ACF8EE124 ] C:\Windows\System32\cfgmgr32.dll
17:29:33.0593 2420 C:\Windows\System32\cfgmgr32.dll - ok
17:29:33.0609 2420 [ 6B5174702343BD955E174FDFEFA2A1A3 ] C:\Windows\System32\KernelBase.dll
17:29:33.0609 2420 C:\Windows\System32\KernelBase.dll - ok
17:29:33.0609 2420 [ 06FEC9E8117103BB1141A560E98077DA ] C:\Windows\System32\devobj.dll
17:29:33.0609 2420 C:\Windows\System32\devobj.dll - ok
17:29:33.0609 2420 [ 884415BD4269C02EAF8E2613BF85500D ] C:\Windows\System32\msasn1.dll
17:29:33.0609 2420 C:\Windows\System32\msasn1.dll - ok
17:29:33.0609 2420 [ 53238D99636BBA85F491C3E8FD22AB00 ] C:\Windows\System32\wintrust.dll
17:29:33.0609 2420 C:\Windows\System32\wintrust.dll - ok
17:29:33.0624 2420 [ 9C278785347BCC991F8EA2999D90F58D ] C:\Windows\SysWOW64\normaliz.dll
17:29:33.0624 2420 C:\Windows\SysWOW64\normaliz.dll - ok
17:29:33.0624 2420 [ BF24D6F2ED97FE830BFD52B246F98E67 ] C:\Windows\System32\drivers\dxapi.sys
17:29:33.0624 2420 C:\Windows\System32\drivers\dxapi.sys - ok
17:29:33.0624 2420 [ F0D6864A7D52CE137E0A9D24795C3F0E ] C:\Windows\System32\win32k.sys
17:29:33.0624 2420 C:\Windows\System32\win32k.sys - ok
17:29:33.0624 2420 [ 96F587CA26A6AA894BD8CACE4540CFFC ] C:\Windows\System32\csrsrv.dll
17:29:33.0624 2420 C:\Windows\System32\csrsrv.dll - ok
17:29:33.0624 2420 [ 60C2862B4BF0FD9F582EF344C2B1EC72 ] C:\Windows\System32\csrss.exe
17:29:33.0624 2420 C:\Windows\System32\csrss.exe - ok
17:29:33.0640 2420 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\System32\basesrv.dll
17:29:33.0640 2420 C:\Windows\System32\basesrv.dll - ok
17:29:33.0640 2420 [ EB6A48CC998E1090E44E8E7F1009A640 ] C:\Windows\System32\winsrv.dll
17:29:33.0640 2420 C:\Windows\System32\winsrv.dll - ok
17:29:33.0640 2420 [ B03D591DC7DA45ECE20B3B467E6AADAA ] C:\Windows\System32\drivers\monitor.sys
17:29:33.0640 2420 C:\Windows\System32\drivers\monitor.sys - ok
17:29:33.0640 2420 [ 78523A26F5604C0568FE9D1CE86E36F4 ] C:\Windows\System32\KBDUS.DLL
17:29:33.0640 2420 C:\Windows\System32\KBDUS.DLL - ok
17:29:33.0656 2420 [ 2C942733A5983DD4502219FF37C7EBC7 ] C:\Windows\System32\profapi.dll
17:29:33.0656 2420 C:\Windows\System32\profapi.dll - ok
17:29:33.0656 2420 [ C2A8CB1275ECB85D246A9ECC02A728E3 ] C:\Windows\System32\RpcRtRemote.dll
17:29:33.0656 2420 C:\Windows\System32\RpcRtRemote.dll - ok
17:29:33.0656 2420 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\System32\sxssrv.dll
17:29:33.0656 2420 C:\Windows\System32\sxssrv.dll - ok
17:29:33.0656 2420 [ F29FE765E1448EF371CFE05BFAC74ADB ] C:\Windows\System32\tsddd.dll
17:29:33.0656 2420 C:\Windows\System32\tsddd.dll - ok
17:29:33.0656 2420 [ 94355C28C1970635A31B3FE52EB7CEBA ] C:\Windows\System32\wininit.exe
17:29:33.0656 2420 C:\Windows\System32\wininit.exe - ok
17:29:33.0671 2420 [ 05569A79BF4693670B709144382D02D4 ] C:\Windows\System32\cdd.dll
17:29:33.0671 2420 C:\Windows\System32\cdd.dll - ok
17:29:33.0671 2420 [ 9CEAD32E79A62150FE9F8557E58E008B ] C:\Windows\System32\sxs.dll
17:29:33.0671 2420 C:\Windows\System32\sxs.dll - ok
17:29:33.0671 2420 [ B26B1801356760841C3BC69F9F91537F ] C:\Windows\System32\WlS0WndH.dll
17:29:33.0671 2420 C:\Windows\System32\WlS0WndH.dll - ok
17:29:33.0671 2420 [ 784FA3DF338E2E8F5F0389D6FAC428AF ] C:\Windows\System32\cryptbase.dll
17:29:33.0671 2420 C:\Windows\System32\cryptbase.dll - ok
17:29:33.0671 2420 [ 90499F3163A9F815CF196A205EA3CD5D ] C:\Windows\System32\apphelp.dll
17:29:33.0671 2420 C:\Windows\System32\apphelp.dll - ok
17:29:33.0687 2420 [ C118A82CD78818C29AB228366EBF81C3 ] C:\Windows\System32\lsass.exe
17:29:33.0687 2420 C:\Windows\System32\lsass.exe - ok
17:29:33.0687 2420 [ 9662EE182644511439F1C53745DC1C88 ] C:\Windows\System32\lsm.exe
17:29:33.0687 2420 C:\Windows\System32\lsm.exe - ok
17:29:33.0687 2420 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\System32\services.exe
17:29:33.0687 2420 C:\Windows\System32\services.exe - ok
17:29:33.0687 2420 [ B66BC8B20B7F33975865B1DF99783FD8 ] C:\Windows\System32\sspicli.dll
17:29:33.0687 2420 C:\Windows\System32\sspicli.dll - ok
17:29:33.0702 2420 [ 3A0CE5FE781708CD6ABD55313607EC8B ] C:\Windows\System32\sspisrv.dll
17:29:33.0702 2420 C:\Windows\System32\sspisrv.dll - ok
17:29:33.0702 2420 [ 66A6063D0BAAD3F7B2B9868859E0743B ] C:\Windows\System32\lsasrv.dll
17:29:33.0702 2420 C:\Windows\System32\lsasrv.dll - ok
17:29:33.0702 2420 [ BBCDF350817BA86416C0F06B6981BE8D ] C:\Windows\System32\scesrv.dll
17:29:33.0702 2420 C:\Windows\System32\scesrv.dll - ok
17:29:33.0702 2420 [ E914A50A151DFFE63D3935226DB5E2C1 ] C:\Windows\System32\scext.dll
17:29:33.0702 2420 C:\Windows\System32\scext.dll - ok
17:29:33.0702 2420 [ 0144D8D75A0B12938AEEE859E3310A46 ] C:\Windows\System32\secur32.dll
17:29:33.0702 2420 C:\Windows\System32\secur32.dll - ok
17:29:33.0718 2420 [ 68083118797CAF30FB2EA3E71494D67E ] C:\Windows\System32\sysntfy.dll
17:29:33.0718 2420 C:\Windows\System32\sysntfy.dll - ok
17:29:33.0718 2420 [ DEE7267C5D232A3B816866872CE199E6 ] C:\Windows\System32\wmsgapi.dll
17:29:33.0718 2420 C:\Windows\System32\wmsgapi.dll - ok
17:29:33.0718 2420 [ A744BA6E04C8AA4592818178DBF89521 ] C:\Windows\System32\samsrv.dll
17:29:33.0718 2420 C:\Windows\System32\samsrv.dll - ok
17:29:33.0718 2420 [ 3A9C9BAF610B0DD4967086040B3B62A9 ] C:\Windows\System32\srvcli.dll
17:29:33.0718 2420 C:\Windows\System32\srvcli.dll - ok
17:29:33.0718 2420 [ 3A061472B38233BAFF9CFEFF2E49C46B ] C:\Windows\System32\cryptdll.dll
17:29:33.0718 2420 C:\Windows\System32\cryptdll.dll - ok
17:29:33.0734 2420 [ 3C073B0C596A0AF84933E7406766B040 ] C:\Windows\System32\wevtapi.dll
17:29:33.0734 2420 C:\Windows\System32\wevtapi.dll - ok
17:29:33.0734 2420 [ 7FBEBD2229EA5FD48D41B199EC2D541C ] C:\Windows\System32\authz.dll
17:29:33.0734 2420 C:\Windows\System32\authz.dll - ok
17:29:33.0734 2420 [ 86FE1B1F8FD42CD0DB641AB1CDB13093 ] C:\Windows\System32\cngaudit.dll
17:29:33.0734 2420 C:\Windows\System32\cngaudit.dll - ok
17:29:33.0734 2420 [ 400645085A91BF3EB0271329B95AE0BE ] C:\Windows\System32\ncrypt.dll
17:29:33.0734 2420 C:\Windows\System32\ncrypt.dll - ok
17:29:33.0749 2420 [ 1151B1BAA6F350B1DB6598E0FEA7C457 ] C:\Windows\System32\winlogon.exe
17:29:33.0749 2420 C:\Windows\System32\winlogon.exe - ok
17:29:33.0749 2420 [ 0D9764D58C5EFD672B7184854B152E5E ] C:\Windows\System32\winsta.dll
17:29:33.0749 2420 C:\Windows\System32\winsta.dll - ok
17:29:33.0749 2420 [ B9A95365E52F421A20E1501935FADDA5 ] C:\Windows\System32\bcrypt.dll
17:29:33.0749 2420 C:\Windows\System32\bcrypt.dll - ok
17:29:33.0749 2420 [ 02B64609F865A39365FF88580DF11738 ] C:\Windows\System32\msprivs.dll
17:29:33.0749 2420 C:\Windows\System32\msprivs.dll - ok
17:29:33.0749 2420 [ 50532FCD7ECF02DD169CE5C485F02534 ] C:\Windows\System32\negoexts.dll
17:29:33.0749 2420 C:\Windows\System32\negoexts.dll - ok
17:29:33.0765 2420 [ C6505DE3561537BA1004D638C2F93F2F ] C:\Windows\System32\netjoin.dll
17:29:33.0765 2420 C:\Windows\System32\netjoin.dll - ok
17:29:33.0765 2420 [ D0C2FBB6D97416B0166478FC7AE2B212 ] C:\Windows\System32\cryptsp.dll
17:29:33.0765 2420 C:\Windows\System32\cryptsp.dll - ok
17:29:33.0765 2420 [ 16ECE8BD6734CC170B9AE74176E89A9B ] C:\Windows\System32\kerberos.dll
17:29:33.0765 2420 C:\Windows\System32\kerberos.dll - ok
17:29:33.0765 2420 [ EF12B8385AA2849999008A977918F96B ] C:\Windows\System32\msv1_0.dll
17:29:33.0765 2420 C:\Windows\System32\msv1_0.dll - ok
17:29:33.0765 2420 [ 1D5185A4C7E6695431AE4B55C3D7D333 ] C:\Windows\System32\mswsock.dll
17:29:33.0765 2420 C:\Windows\System32\mswsock.dll - ok
17:29:33.0780 2420 [ EC7CBFF96B05ECF3D366355B3C64ADCF ] C:\Windows\System32\wship6.dll
17:29:33.0780 2420 C:\Windows\System32\wship6.dll - ok
17:29:33.0780 2420 [ AA339DD8BB128EF66660DFBBB59043D3 ] C:\Windows\System32\netlogon.dll
17:29:33.0780 2420 C:\Windows\System32\netlogon.dll - ok
17:29:33.0780 2420 [ 492D07D79E7024CA310867B526D9636D ] C:\Windows\System32\dnsapi.dll
17:29:33.0780 2420 C:\Windows\System32\dnsapi.dll - ok
17:29:33.0780 2420 [ 8FFE297B8449386E7B6851458B6E474E ] C:\Windows\System32\logoncli.dll
17:29:33.0780 2420 C:\Windows\System32\logoncli.dll - ok
17:29:33.0796 2420 [ 1573C45E65DE32B1BC3572634F8F1E8E ] C:\Windows\System32\schannel.dll
17:29:33.0796 2420 C:\Windows\System32\schannel.dll - ok
17:29:33.0796 2420 [ 95FB6CA4374E343DDD653FCC43F9D26B ] C:\Windows\System32\wdigest.dll
17:29:33.0796 2420 C:\Windows\System32\wdigest.dll - ok
17:29:33.0796 2420 [ 5D8874A8C11DDDDE29E12DE0E2013493 ] C:\Windows\System32\rsaenh.dll
17:29:33.0796 2420 C:\Windows\System32\rsaenh.dll - ok
17:29:33.0796 2420 [ 8A25506B6948EFBD5A7F37E53CCD36D9 ] C:\Windows\System32\TSpkg.dll
17:29:33.0796 2420 C:\Windows\System32\TSpkg.dll - ok
17:29:33.0796 2420 [ E08088A97F95345E181C3DFCE2C615EF ] C:\Windows\System32\pku2u.dll
17:29:33.0796 2420 C:\Windows\System32\pku2u.dll - ok
17:29:33.0812 2420 [ 7DBA64AD70C2E2481C68D9E0F7CD7840 ] C:\Windows\System32\LIVESSP.DLL
17:29:33.0812 2420 C:\Windows\System32\LIVESSP.DLL - ok
17:29:33.0812 2420 [ D6C7780A364C6BBACFA796BAB9F1B374 ] C:\Windows\System32\bcryptprimitives.dll
17:29:33.0812 2420 C:\Windows\System32\bcryptprimitives.dll - ok
17:29:33.0812 2420 [ 52D3D5E3586988D4D9E34ACAAC33105C ] C:\Windows\System32\credssp.dll
17:29:33.0812 2420 C:\Windows\System32\credssp.dll - ok
17:29:33.0812 2420 [ 90BDEFC5DF334E5100EAA781D798DE1A ] C:\Windows\System32\efslsaext.dll
17:29:33.0812 2420 C:\Windows\System32\efslsaext.dll - ok
17:29:33.0812 2420 [ ED78427259134C63ED69804D2132B86C ] C:\Windows\System32\scecli.dll
17:29:33.0812 2420 C:\Windows\System32\scecli.dll - ok
17:29:33.0827 2420 [ 7CC7DF5B654DA579613F811D8C637E29 ] C:\Windows\System32\ubpm.dll
17:29:33.0827 2420 C:\Windows\System32\ubpm.dll - ok
17:29:33.0827 2420 [ C78655BC80301D76ED4FEF1C1EA40A7D ] C:\Windows\System32\svchost.exe
17:29:33.0827 2420 C:\Windows\System32\svchost.exe - ok
17:29:33.0827 2420 [ 25FBDEF06C4D92815B353F6E792C8129 ] C:\Windows\System32\umpnpmgr.dll
17:29:33.0827 2420 C:\Windows\System32\umpnpmgr.dll - ok
17:29:33.0827 2420 [ CD1B5AD07E5F7FEF30E055DCC9E96180 ] C:\Windows\System32\devrtl.dll
17:29:33.0827 2420 C:\Windows\System32\devrtl.dll - ok
17:29:33.0843 2420 [ 9C9307C95671AC962F3D6EB3A4A89BAE ] C:\Windows\System32\gpapi.dll
17:29:33.0843 2420 C:\Windows\System32\gpapi.dll - ok
17:29:33.0843 2420 [ E6EB44ABAAF1F330119F854856C53EBE ] C:\Windows\System32\SPInf.dll
17:29:33.0843 2420 C:\Windows\System32\SPInf.dll - ok
17:29:33.0843 2420 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] C:\Windows\System32\umpo.dll
17:29:33.0843 2420 C:\Windows\System32\umpo.dll - ok
17:29:33.0843 2420 [ 7A17485DC7D8A7AC81321A42CD034519 ] C:\Windows\System32\userenv.dll
17:29:33.0843 2420 C:\Windows\System32\userenv.dll - ok
17:29:33.0843 2420 [ F6C011B46FAEEF33536B2E80F48B5CBE ] C:\Windows\System32\pcwum.dll
17:29:33.0843 2420 C:\Windows\System32\pcwum.dll - ok
17:29:33.0858 2420 [ 716175021BDA290504CE434273F666BC ] C:\Windows\System32\powrprof.dll
17:29:33.0858 2420 C:\Windows\System32\powrprof.dll - ok
17:29:33.0858 2420 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] C:\Windows\System32\drivers\luafv.sys
17:29:33.0858 2420 C:\Windows\System32\drivers\luafv.sys - ok
17:29:33.0858 2420 [ 26E38B5A58C6C55FAFBC563EEDDB0867 ] C:\Windows\System32\drivers\avgntflt.sys
17:29:33.0858 2420 C:\Windows\System32\drivers\avgntflt.sys - ok
17:29:33.0858 2420 [ D3381DC54C34D79B22CEE0D65BA91B7C ] C:\Windows\System32\drivers\WUDFPf.sys
17:29:33.0858 2420 C:\Windows\System32\drivers\WUDFPf.sys - ok
17:29:33.0874 2420 [ 5C627D1B1138676C0A7AB2C2C190D123 ] C:\Windows\System32\rpcss.dll
17:29:33.0874 2420 C:\Windows\System32\rpcss.dll - ok
17:29:33.0874 2420 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] C:\Windows\System32\RpcEpMap.dll
17:29:33.0874 2420 C:\Windows\System32\RpcEpMap.dll - ok
17:29:33.0874 2420 [ B3B263B419FC9E7B1D41E61FDAE45BD9 ] C:\Windows\System32\atiesrxx.exe
17:29:33.0874 2420 C:\Windows\System32\atiesrxx.exe - ok
17:29:33.0874 2420 [ 16E964ABF6D1E0F0CC7822FCA9BA754D ] C:\Windows\System32\wshqos.dll
17:29:33.0874 2420 C:\Windows\System32\wshqos.dll - ok
17:29:33.0874 2420 [ 31559F3244C6BC00A52030CAA83B6B91 ] C:\Windows\System32\WSHTCPIP.DLL
17:29:33.0874 2420 C:\Windows\System32\WSHTCPIP.DLL - ok
17:29:33.0890 2420 [ 9AD9E06F8656F296D91FAE8EE5B95A27 ] C:\Windows\System32\FirewallAPI.dll
17:29:33.0890 2420 C:\Windows\System32\FirewallAPI.dll - ok
17:29:33.0890 2420 [ 94E026870A55AAEAFF7853C1754091E9 ] C:\Windows\System32\version.dll
17:29:33.0890 2420 C:\Windows\System32\version.dll - ok
17:29:33.0890 2420 [ BD3674BE7FC9D8D3732C83E8499576ED ] C:\Windows\System32\wtsapi32.dll
17:29:33.0890 2420 C:\Windows\System32\wtsapi32.dll - ok
17:29:33.0890 2420 [ 0BEE002C68E28CE6DA161DCF1376D7D7 ] C:\Windows\System32\authui.dll
17:29:33.0890 2420 C:\Windows\System32\authui.dll - ok
17:29:33.0890 2420 [ 715F03B4C7223349768013EA95D9E5B7 ] C:\Windows\System32\LogonUI.exe
17:29:33.0890 2420 C:\Windows\System32\LogonUI.exe - ok
17:29:33.0905 2420 [ 6011714C8C5C55CBFFAD24D61E879FBD ] C:\Windows\System32\wevtsvc.dll
17:29:33.0905 2420 C:\Windows\System32\wevtsvc.dll - ok
17:29:33.0905 2420 [ B3BFBD758506ECB50C5804AAA76318F9 ] C:\Windows\System32\cryptui.dll
17:29:33.0905 2420 C:\Windows\System32\cryptui.dll - ok
17:29:33.0905 2420 [ F23FEF6D569FCE88671949894A8BECF1 ] C:\Windows\System32\audiosrv.dll
17:29:33.0905 2420 C:\Windows\System32\audiosrv.dll - ok
17:29:33.0905 2420 [ 588CD0C78A7FAAE4186B5EEA0AF3ED67 ] C:\Windows\System32\adtschema.dll
17:29:33.0905 2420 C:\Windows\System32\adtschema.dll - ok
17:29:33.0921 2420 [ 78A1E65207484B7F8D3217507745F47C ] C:\Windows\System32\avrt.dll
17:29:33.0921 2420 C:\Windows\System32\avrt.dll - ok
17:29:33.0921 2420 [ E40E80D0304A73E8D269F7141D77250B ] C:\Windows\System32\mmcss.dll
17:29:33.0921 2420 C:\Windows\System32\mmcss.dll - ok
17:29:33.0921 2420 [ 227E2C382A1E02F8D4965E664D3BBE43 ] C:\Windows\System32\MMDevAPI.dll
17:29:33.0921 2420 C:\Windows\System32\MMDevAPI.dll - ok
17:29:33.0921 2420 [ F06BB4E336EA57511FDBAFAFCC47DE62 ] C:\Windows\System32\propsys.dll
17:29:33.0921 2420 C:\Windows\System32\propsys.dll - ok
17:29:33.0921 2420 [ 50544D04AD845C43130B70212EC05CCD ] C:\Windows\System32\microsoft-windows-kernel-power-events.dll
17:29:33.0921 2420 C:\Windows\System32\microsoft-windows-kernel-power-events.dll - ok
17:29:33.0936 2420 [ 80E69670BDA10F32A941BA7358E33012 ] C:\Windows\System32\WUDFPlatform.dll
17:29:33.0936 2420 C:\Windows\System32\WUDFPlatform.dll - ok
17:29:33.0936 2420 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] C:\Windows\System32\netprofm.dll
17:29:33.0936 2420 C:\Windows\System32\netprofm.dll - ok
17:29:33.0936 2420 [ DA6B67270FD9DB3697B20FCE94950741 ] C:\Windows\System32\drivers\fltMgr.sys
17:29:33.0936 2420 C:\Windows\System32\drivers\fltMgr.sys - ok
17:29:33.0936 2420 [ 54FFC9C8898113ACE189D4AA7199D2C1 ] C:\Windows\System32\MPSSVC.dll
17:29:33.0936 2420 C:\Windows\System32\MPSSVC.dll - ok
17:29:33.0952 2420 [ A3DB3C17EE6CAE65D53602B4E80BCCBC ] C:\Windows\System32\PSHED.DLL
17:29:33.0952 2420 C:\Windows\System32\PSHED.DLL - ok
17:29:33.0952 2420 [ 7FA8FDC2C2A27817FD0F624E78D3B50C ] C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac\comctl32.dll
17:29:33.0952 2420 C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac\comctl32.dll - ok
17:29:33.0952 2420 [ B0945E538CF906BBDDC5A11C8EE868CC ] C:\Windows\System32\microsoft-windows-kernel-processor-power-events.dll
17:29:33.0952 2420 C:\Windows\System32\microsoft-windows-kernel-processor-power-events.dll - ok
17:29:33.0952 2420 [ D5CCA1453B98A5801E6D5FF0FF89DC6C ] C:\Windows\System32\audiodg.exe
17:29:33.0952 2420 C:\Windows\System32\audiodg.exe - ok
17:29:33.0952 2420 [ 5B3EBFC3DA142324B388DDCC4465E1FF ] C:\Windows\System32\samlib.dll
17:29:33.0952 2420 C:\Windows\System32\samlib.dll - ok
17:29:33.0968 2420 [ 4E9C2DB10F7E6AE91BF761139D4B745B ] C:\Windows\System32\shacct.dll
17:29:33.0968 2420 C:\Windows\System32\shacct.dll - ok
17:29:33.0968 2420 [ 1F4492FE41767CDB8B89D17655847CDD ] C:\Windows\System32\ntmarta.dll
17:29:33.0968 2420 C:\Windows\System32\ntmarta.dll - ok
17:29:33.0968 2420 [ D29E998E8277666982B4F0303BF4E7AF ] C:\Windows\System32\uxtheme.dll
17:29:33.0968 2420 C:\Windows\System32\uxtheme.dll - ok
17:29:33.0968 2420 [ 179E8401224D557ECFF3695F2016EA5B ] C:\Windows\winsxs\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.17825_none_2b253c8271ec7765\GdiPlus.dll
17:29:33.0968 2420 C:\Windows\winsxs\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.17825_none_2b253c8271ec7765\GdiPlus.dll - ok
17:29:33.0983 2420 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] C:\Windows\System32\gpsvc.dll
17:29:33.0983 2420 C:\Windows\System32\gpsvc.dll - ok
17:29:33.0983 2420 [ 2DF36F15B2BC1571A6A542A3C2107920 ] C:\Windows\System32\nlaapi.dll
17:29:33.0983 2420 C:\Windows\System32\nlaapi.dll - ok
17:29:33.0983 2420 [ 53E83F1F6CF9D62F32801CF66D8352A8 ] C:\Windows\System32\profsvc.dll
17:29:33.0983 2420 C:\Windows\System32\profsvc.dll - ok
17:29:33.0983 2420 [ F0344071948D1A1FA732231785A0664C ] C:\Windows\System32\themeservice.dll
17:29:33.0983 2420 C:\Windows\System32\themeservice.dll - ok
17:29:33.0983 2420 [ 58775492FFD419248B08325E583C527F ] C:\Windows\System32\atl.dll
17:29:33.0983 2420 C:\Windows\System32\atl.dll - ok
17:29:33.0999 2420 [ A77BE7CB3222B4FB0AC6C71D1C2698D4 ] C:\Windows\System32\dsrole.dll
17:29:33.0999 2420 C:\Windows\System32\dsrole.dll - ok
17:29:33.0999 2420 [ 3CB6A7286422C72C34DAB54A5DFF1A34 ] C:\Windows\System32\dui70.dll
17:29:33.0999 2420 C:\Windows\System32\dui70.dll - ok
17:29:33.0999 2420 [ 4166F82BE4D24938977DD1746BE9B8A0 ] C:\Windows\System32\es.dll
17:29:33.0999 2420 C:\Windows\System32\es.dll - ok
17:29:33.0999 2420 [ BE097F5BB10F9079FCEB2DC4E7E20F02 ] C:\Windows\System32\slc.dll
17:29:33.0999 2420 C:\Windows\System32\slc.dll - ok
17:29:33.0999 2420 [ 1A47D52E303B7543E4E6026595B95422 ] C:\Windows\System32\comres.dll
17:29:33.0999 2420 C:\Windows\System32\comres.dll - ok

#11 gamegeek1995

gamegeek1995
  • Topic Starter

  • Members
  • 8 posts
  • OFFLINE
  •  
  • Local time:07:10 AM

Posted 27 September 2012 - 05:57 PM

17:29:34.0014 2420 [ 8CCDE014A4CDF84564E03ACE064CA753 ] C:\Windows\System32\duser.dll
17:29:34.0014 2420 C:\Windows\System32\duser.dll - ok
17:29:34.0014 2420 [ C32AB8FA018EF34C0F113BD501436D21 ] C:\Windows\System32\Sens.dll
17:29:34.0014 2420 C:\Windows\System32\Sens.dll - ok
17:29:34.0014 2420 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] C:\Windows\System32\uxsms.dll
17:29:34.0014 2420 C:\Windows\System32\uxsms.dll - ok
17:29:34.0014 2420 [ 7A95C95B6C4CF292D689106BCAE49543 ] C:\Windows\System32\WUDFSvc.dll
17:29:34.0014 2420 C:\Windows\System32\WUDFSvc.dll - ok
17:29:34.0030 2420 [ 1538831CF8AD2979A04C423779465827 ] C:\Windows\System32\drivers\lltdio.sys
17:29:34.0030 2420 C:\Windows\System32\drivers\lltdio.sys - ok
17:29:34.0030 2420 [ DDC86E4F8E7456261E637E3552E804FF ] C:\Windows\System32\drivers\rspndr.sys
17:29:34.0030 2420 C:\Windows\System32\drivers\rspndr.sys - ok
17:29:34.0030 2420 [ D7F1EF374A90709B31591823B002F918 ] C:\Windows\System32\SndVolSSO.dll
17:29:34.0030 2420 C:\Windows\System32\SndVolSSO.dll - ok
17:29:34.0030 2420 [ 896F15A6434D93EDB42519D5E18E6B50 ] C:\Windows\System32\hid.dll
17:29:34.0030 2420 C:\Windows\System32\hid.dll - ok
17:29:34.0030 2420 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] C:\Windows\System32\dhcpcore.dll
17:29:34.0030 2420 C:\Windows\System32\dhcpcore.dll - ok
17:29:34.0046 2420 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] C:\Windows\System32\dnsrslvr.dll
17:29:34.0046 2420 C:\Windows\System32\dnsrslvr.dll - ok
17:29:34.0046 2420 [ 2B81776DA02017A37FE26C662827470E ] C:\Windows\System32\IPHLPAPI.DLL
17:29:34.0046 2420 C:\Windows\System32\IPHLPAPI.DLL - ok
17:29:34.0046 2420 [ F993A32249B66C9D622EA5592A8B76B8 ] C:\Windows\System32\lmhsvc.dll
17:29:34.0046 2420 C:\Windows\System32\lmhsvc.dll - ok
17:29:34.0046 2420 [ B73A6E4B319AFFE64582AC5C1801BB3F ] C:\Windows\System32\nrpsrv.dll
17:29:34.0046 2420 C:\Windows\System32\nrpsrv.dll - ok
17:29:34.0046 2420 [ D54BFDF3E0C953F823B3D0BFE4732528 ] C:\Windows\System32\nsisvc.dll
17:29:34.0046 2420 C:\Windows\System32\nsisvc.dll - ok
17:29:34.0061 2420 [ 4C9210E8F4E052F6A4EB87716DA0C24C ] C:\Windows\System32\winnsi.dll
17:29:34.0061 2420 C:\Windows\System32\winnsi.dll - ok
17:29:34.0061 2420 [ 71C7B65B6557B75B99907E76956AE4B8 ] C:\Windows\System32\dhcpcore6.dll
17:29:34.0061 2420 C:\Windows\System32\dhcpcore6.dll - ok
17:29:34.0061 2420 [ DA1B7075260F3872585BFCDD668C648B ] C:\Windows\System32\dwmapi.dll
17:29:34.0061 2420 C:\Windows\System32\dwmapi.dll - ok
17:29:34.0061 2420 [ 0040C486584A8E582C861CFB57AB5387 ] C:\Windows\System32\FWPUCLNT.DLL
17:29:34.0061 2420 C:\Windows\System32\FWPUCLNT.DLL - ok
17:29:34.0077 2420 [ 6F8B48F3D343E4B186AB6A9E302B7E16 ] C:\Windows\System32\xmllite.dll
17:29:34.0077 2420 C:\Windows\System32\xmllite.dll - ok
17:29:34.0077 2420 [ F568F7C08458D69E4FCD8675BBB107E4 ] C:\Windows\System32\dhcpcsvc.dll
17:29:34.0077 2420 C:\Windows\System32\dhcpcsvc.dll - ok
17:29:34.0077 2420 [ 4CBCC37856EA2039C27A2FB661DDA0E5 ] C:\Windows\System32\dhcpcsvc6.dll
17:29:34.0077 2420 C:\Windows\System32\dhcpcsvc6.dll - ok
17:29:34.0077 2420 [ 885D0942E0F28DB90919BE3129ECF279 ] C:\Windows\System32\dnsext.dll
17:29:34.0077 2420 C:\Windows\System32\dnsext.dll - ok
17:29:34.0077 2420 [ AAF932B4011D14052955D4B212A4DA8D ] C:\Windows\System32\shsvcs.dll
17:29:34.0077 2420 C:\Windows\System32\shsvcs.dll - ok
17:29:34.0092 2420 [ 26B73A85855681500BCC25C7CD9FF5B1 ] C:\Windows\System32\WindowsCodecs.dll
17:29:34.0092 2420 C:\Windows\System32\WindowsCodecs.dll - ok
17:29:34.0092 2420 [ 262F6592C3299C005FD6BEC90FC4463A ] C:\Windows\System32\schedsvc.dll
17:29:34.0092 2420 C:\Windows\System32\schedsvc.dll - ok
17:29:34.0092 2420 [ EEEA40F0EDB0A6E5359E539E15D0BC77 ] C:\Windows\System32\netapi32.dll
17:29:34.0092 2420 C:\Windows\System32\netapi32.dll - ok
17:29:34.0092 2420 [ BC414631876B2F28B8DAB08E849C12C5 ] C:\Windows\System32\ktmw32.dll
17:29:34.0092 2420 C:\Windows\System32\ktmw32.dll - ok
17:29:34.0108 2420 [ 6CECA4C6A489C9B2E6073AFDAAE3F607 ] C:\Windows\System32\netutils.dll
17:29:34.0108 2420 C:\Windows\System32\netutils.dll - ok
17:29:34.0108 2420 [ 3C91392D448F6E5D525A85B7550D8BA9 ] C:\Windows\System32\wkscli.dll
17:29:34.0108 2420 C:\Windows\System32\wkscli.dll - ok
17:29:34.0108 2420 [ C2762A57DF0EE85E63CE4893C5215313 ] C:\Windows\System32\VaultCredProvider.dll
17:29:34.0108 2420 C:\Windows\System32\VaultCredProvider.dll - ok
17:29:34.0108 2420 [ 9F2BACD5E1776A4BB7CC0EC3C3A4F96D ] C:\Windows\System32\winbrand.dll
17:29:34.0108 2420 C:\Windows\System32\winbrand.dll - ok
17:29:34.0108 2420 [ CA2985996BB49924B677113DF95CFEA7 ] C:\Windows\System32\SmartcardCredentialProvider.dll
17:29:34.0108 2420 C:\Windows\System32\SmartcardCredentialProvider.dll - ok
17:29:34.0124 2420 [ BF352E73615F5461AA6884472435A544 ] C:\Windows\System32\BioCredProv.dll
17:29:34.0124 2420 C:\Windows\System32\BioCredProv.dll - ok
17:29:34.0124 2420 [ CC0AB40F02D2C2A12209715A3C1B07B8 ] C:\Windows\System32\credui.dll
17:29:34.0124 2420 C:\Windows\System32\credui.dll - ok
17:29:34.0124 2420 [ 796B8123A7859AFD3A4AE10514DBAEB5 ] C:\Windows\System32\winbio.dll
17:29:34.0124 2420 C:\Windows\System32\winbio.dll - ok
17:29:34.0124 2420 [ 972C3301DB3DA91AE06A95F6B4160B1B ] C:\Windows\System32\certCredProvider.dll
17:29:34.0124 2420 C:\Windows\System32\certCredProvider.dll - ok
17:29:34.0139 2420 [ FC51229C7D4AFA0D6F186133728B95AB ] C:\Windows\System32\samcli.dll
17:29:34.0139 2420 C:\Windows\System32\samcli.dll - ok
17:29:34.0139 2420 [ 44B9C66177651F3F53C87B665D58D17A ] C:\Windows\System32\vaultcli.dll
17:29:34.0139 2420 C:\Windows\System32\vaultcli.dll - ok
17:29:34.0139 2420 [ 032229246107C5C7211E6D1498B52D3D ] C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDCREDPROV.DLL
17:29:34.0139 2420 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDCREDPROV.DLL - ok
17:29:34.0139 2420 [ 87FA0C48C3B2E9FEE518818FE26B15B5 ] C:\Windows\System32\rasplap.dll
17:29:34.0139 2420 C:\Windows\System32\rasplap.dll - ok
17:29:34.0139 2420 [ 019CD868461B646E09BDF04474C19341 ] C:\Windows\System32\rasapi32.dll
17:29:34.0139 2420 C:\Windows\System32\rasapi32.dll - ok
17:29:34.0155 2420 [ B28DEEC597C8DEB70C744C7CF9210E3E ] C:\Windows\System32\rasman.dll
17:29:34.0155 2420 C:\Windows\System32\rasman.dll - ok
17:29:34.0155 2420 [ B53C4B69B695EDA1B7E41D35CA4244E2 ] C:\Windows\System32\rtutils.dll
17:29:34.0155 2420 C:\Windows\System32\rtutils.dll - ok
17:29:34.0155 2420 [ 6DC4A7242F565C9E9C9CCC7BB0FA75C7 ] C:\Windows\System32\taskcomp.dll
17:29:34.0155 2420 C:\Windows\System32\taskcomp.dll - ok
17:29:34.0155 2420 [ 9BC8610C32C96A2983A65DC21CAFA921 ] C:\Windows\System32\UXInit.dll
17:29:34.0155 2420 C:\Windows\System32\UXInit.dll - ok
17:29:34.0155 2420 [ AFCE91E482B0FE0800C455871AA98F19 ] C:\Windows\System32\atiadlxx.dll
17:29:34.0155 2420 C:\Windows\System32\atiadlxx.dll - ok
17:29:34.0170 2420 [ 773AE353D587B7440F071ABBB9B71319 ] C:\Windows\System32\atieclxx.exe
17:29:34.0170 2420 C:\Windows\System32\atieclxx.exe - ok
17:29:34.0170 2420 [ 945E54F23C72D37B8CD1987AF0DB63BF ] C:\Windows\System32\fveapi.dll
17:29:34.0170 2420 C:\Windows\System32\fveapi.dll - ok
17:29:34.0170 2420 [ 891ECFD08E2C538B7948CBC45106D697 ] C:\Windows\System32\fvecerts.dll
17:29:34.0170 2420 C:\Windows\System32\fvecerts.dll - ok
17:29:34.0170 2420 [ 694865362F0965779F92BCFE97712323 ] C:\Windows\System32\tbs.dll
17:29:34.0170 2420 C:\Windows\System32\tbs.dll - ok
17:29:34.0186 2420 [ E36112A8A6C7F840169A7E92C12F4203 ] C:\Windows\System32\wsock32.dll
17:29:34.0186 2420 C:\Windows\System32\wsock32.dll - ok
17:29:34.0186 2420 [ 0ADC83218B66A6DB380C330836F3E36D ] C:\Windows\System32\drivers\fastfat.sys
17:29:34.0186 2420 C:\Windows\System32\drivers\fastfat.sys - ok
17:29:34.0186 2420 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] C:\Windows\System32\drivers\http.sys
17:29:34.0186 2420 C:\Windows\System32\drivers\http.sys - ok
17:29:34.0186 2420 [ 85DAA09A98C9286D4EA2BA8D0E644377 ] C:\Windows\System32\spoolsv.exe
17:29:34.0186 2420 C:\Windows\System32\spoolsv.exe - ok
17:29:34.0186 2420 [ 0A1CC583E8147004E4AD4625D7FBF88C ] C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
17:29:34.0186 2420 C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe - ok
17:29:34.0202 2420 [ 5AA945234E9D4CCE4F715276B9AA712C ] C:\Windows\System32\imageres.dll
17:29:34.0202 2420 C:\Windows\System32\imageres.dll - ok
17:29:34.0202 2420 [ E73B0F1819602CB6EF176FB78D76A47B ] C:\Windows\SysWOW64\ntdll.dll
17:29:34.0202 2420 C:\Windows\SysWOW64\ntdll.dll - ok
17:29:34.0202 2420 [ B1E3772FFA96AC5AEE89BF202AF8E348 ] C:\Windows\System32\wow64.dll
17:29:34.0202 2420 C:\Windows\System32\wow64.dll - ok
17:29:34.0202 2420 [ AA0D2571A4348838B8DD49FD0043826A ] C:\Windows\System32\wow64cpu.dll
17:29:34.0202 2420 C:\Windows\System32\wow64cpu.dll - ok
17:29:34.0217 2420 [ FC5A43FA257F546F8F2B96B5529857E1 ] C:\Windows\System32\wow64win.dll
17:29:34.0217 2420 C:\Windows\System32\wow64win.dll - ok
17:29:34.0217 2420 [ 99C3F8E9CC59D95666EB8D8A8B4C2BEB ] C:\Windows\SysWOW64\kernel32.dll
17:29:34.0217 2420 C:\Windows\SysWOW64\kernel32.dll - ok
17:29:34.0217 2420 [ 5C2D21C9B6B6175B89BC5D7E3CB979E1 ] C:\Windows\SysWOW64\KernelBase.dll
17:29:34.0217 2420 C:\Windows\SysWOW64\KernelBase.dll - ok
17:29:34.0217 2420 [ 5E0DB2D8B2750543CD2EBB9EA8E6CDD3 ] C:\Windows\SysWOW64\user32.dll
17:29:34.0217 2420 C:\Windows\SysWOW64\user32.dll - ok
17:29:34.0217 2420 [ D6D3AD7BF1D6F6CE9547613ED5E170A2 ] C:\Windows\SysWOW64\gdi32.dll
17:29:34.0217 2420 C:\Windows\SysWOW64\gdi32.dll - ok
17:29:34.0233 2420 [ 384721EF4024890092625E20CADFAF85 ] C:\Windows\SysWOW64\lpk.dll
17:29:34.0233 2420 C:\Windows\SysWOW64\lpk.dll - ok
17:29:34.0233 2420 [ 804AAAFEBB3AD5F49334DD906BCB1DE5 ] C:\Windows\SysWOW64\usp10.dll
17:29:34.0233 2420 C:\Windows\SysWOW64\usp10.dll - ok
17:29:34.0233 2420 [ 9DC80A8AAAAAC397BDAB3C67165A824E ] C:\Windows\SysWOW64\msvcrt.dll
17:29:34.0233 2420 C:\Windows\SysWOW64\msvcrt.dll - ok
17:29:34.0233 2420 [ 95E2376B3323F062EB562B8586D0F14A ] C:\Windows\SysWOW64\advapi32.dll
17:29:34.0233 2420 C:\Windows\SysWOW64\advapi32.dll - ok
17:29:34.0233 2420 [ C5AD8083CF94201F1F8084ECC696A8B7 ] C:\Windows\SysWOW64\rpcrt4.dll
17:29:34.0233 2420 C:\Windows\SysWOW64\rpcrt4.dll - ok
17:29:34.0248 2420 [ CFC97F07904067A1E5FAE195D534DA3A ] C:\Windows\SysWOW64\sechost.dll
17:29:34.0248 2420 C:\Windows\SysWOW64\sechost.dll - ok
17:29:34.0248 2420 [ F08F6FCD09F9BE94C37ACC1B344685FF ] C:\Windows\SysWOW64\cryptbase.dll
17:29:34.0248 2420 C:\Windows\SysWOW64\cryptbase.dll - ok
17:29:34.0248 2420 [ 32E390954B2C6B1583A969ED0E7C8A9D ] C:\Windows\SysWOW64\msvcp100.dll
17:29:34.0248 2420 C:\Windows\SysWOW64\msvcp100.dll - ok
17:29:34.0248 2420 [ EDA7AD21DF8945528F01F0A86D69E524 ] C:\Windows\SysWOW64\sspicli.dll
17:29:34.0248 2420 C:\Windows\SysWOW64\sspicli.dll - ok
17:29:34.0264 2420 [ 2B92A88E329F4845D31941967A3BAA90 ] C:\Windows\SysWOW64\msvcr100.dll
17:29:34.0264 2420 C:\Windows\SysWOW64\msvcr100.dll - ok
17:29:34.0264 2420 [ A6F09E5669D9A19035F6D942CAA15882 ] C:\Windows\SysWOW64\imm32.dll
17:29:34.0264 2420 C:\Windows\SysWOW64\imm32.dll - ok
17:29:34.0264 2420 [ C9618BC9B2B0FD7C1138D8774795A79B ] C:\Windows\SysWOW64\msctf.dll
17:29:34.0264 2420 C:\Windows\SysWOW64\msctf.dll - ok
17:29:34.0264 2420 [ 3EF34FFAB47A2ECF4CE395EDB6D15334 ] C:\Program Files (x86)\Avira\AntiVir Desktop\grdcore.dll
17:29:34.0264 2420 C:\Program Files (x86)\Avira\AntiVir Desktop\grdcore.dll - ok
17:29:34.0264 2420 [ 29E9794708DF51DB5DC89FB2E903A0F6 ] C:\Windows\SysWOW64\shell32.dll
17:29:34.0264 2420 C:\Windows\SysWOW64\shell32.dll - ok
17:29:34.0280 2420 [ 8CC3C111D653E96F3EA1590891491D71 ] C:\Windows\SysWOW64\shlwapi.dll
17:29:34.0280 2420 C:\Windows\SysWOW64\shlwapi.dll - ok
17:29:34.0280 2420 [ 13B7445DAAD8EA6774D65FD9DEF5D199 ] C:\Program Files (x86)\Avira\AntiVir Desktop\cfglib.dll
17:29:34.0280 2420 C:\Program Files (x86)\Avira\AntiVir Desktop\cfglib.dll - ok
17:29:34.0280 2420 [ F8FC3E3D7740B3566AAF1A86982FAAC4 ] C:\Program Files (x86)\Avira\AntiVir Desktop\scewxmlw.dll
17:29:34.0280 2420 C:\Program Files (x86)\Avira\AntiVir Desktop\scewxmlw.dll - ok
17:29:34.0280 2420 [ 8269210DAF3B12BC8300631B28A2A442 ] C:\Windows\System32\wiarpc.dll
17:29:34.0280 2420 C:\Windows\System32\wiarpc.dll - ok
17:29:34.0295 2420 [ 80126BC6148CAD0FDB4EFF948232DC34 ] C:\Program Files (x86)\Avira\AntiVir Desktop\gpipc.dll
17:29:34.0295 2420 C:\Program Files (x86)\Avira\AntiVir Desktop\gpipc.dll - ok
17:29:34.0295 2420 [ 82974D6A2FD19445CC5171FC378668A4 ] C:\Windows\System32\BFE.DLL
17:29:34.0295 2420 C:\Windows\System32\BFE.DLL - ok
17:29:34.0295 2420 [ B9A8CBCFCD3EC9D2EA4740AF347BF108 ] C:\Windows\SysWOW64\mpr.dll
17:29:34.0295 2420 C:\Windows\SysWOW64\mpr.dll - ok
17:29:34.0295 2420 [ 0D99E1210ECBC560E53FD759CFA4EAB5 ] C:\Program Files (x86)\Avira\AntiVir Desktop\gpgen.dll
17:29:34.0295 2420 C:\Program Files (x86)\Avira\AntiVir Desktop\gpgen.dll - ok
17:29:34.0295 2420 [ 6C02A83164F5CC0A262F4199F0871CF5 ] C:\Windows\System32\drivers\bowser.sys
17:29:34.0295 2420 C:\Windows\System32\drivers\bowser.sys - ok
17:29:34.0311 2420 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] C:\Windows\System32\drivers\mpsdrv.sys
17:29:34.0311 2420 C:\Windows\System32\drivers\mpsdrv.sys - ok
17:29:34.0311 2420 [ C48E0D43530060CAD4A0B231B10EB5BA ] C:\Program Files (x86)\Avira\AntiVir Desktop\gpschd.dll
17:29:34.0311 2420 C:\Program Files (x86)\Avira\AntiVir Desktop\gpschd.dll - ok
17:29:34.0311 2420 [ A5D9106A73DC88564C825D317CAC68AC ] C:\Windows\System32\drivers\mrxsmb.sys
17:29:34.0311 2420 C:\Windows\System32\drivers\mrxsmb.sys - ok
17:29:34.0311 2420 [ A90DC9ABD65DB1A8902F361103029952 ] C:\Windows\SysWOW64\IPHLPAPI.DLL
17:29:34.0311 2420 C:\Windows\SysWOW64\IPHLPAPI.DLL - ok
17:29:34.0311 2420 [ 6377051C63D5552A311935C67E9FDFDC ] C:\Windows\SysWOW64\nsi.dll
17:29:34.0311 2420 C:\Windows\SysWOW64\nsi.dll - ok
17:29:34.0326 2420 [ CFF35B879D1618D42C86644C717BA947 ] C:\Windows\SysWOW64\winnsi.dll
17:29:34.0326 2420 C:\Windows\SysWOW64\winnsi.dll - ok
17:29:34.0326 2420 [ 702254574E7E52052DE39408457B7149 ] C:\Windows\SysWOW64\version.dll
17:29:34.0326 2420 C:\Windows\SysWOW64\version.dll - ok
17:29:34.0326 2420 [ 6A6B2EE4565A178035BE2A4FF6F2C968 ] C:\Windows\SysWOW64\wtsapi32.dll
17:29:34.0326 2420 C:\Windows\SysWOW64\wtsapi32.dll - ok
17:29:34.0326 2420 [ 839F96DBAAFD3353E0B248A5E0BD2A51 ] C:\Windows\SysWOW64\rasapi32.dll
17:29:34.0326 2420 C:\Windows\SysWOW64\rasapi32.dll - ok
17:29:34.0342 2420 [ FFA7172354B9256DBB2CDD75F16F33FE ] C:\Windows\SysWOW64\rasman.dll
17:29:34.0342 2420 C:\Windows\SysWOW64\rasman.dll - ok
17:29:34.0342 2420 [ 7FF15A4F092CD4A96055BA69F903E3E9 ] C:\Windows\SysWOW64\ws2_32.dll
17:29:34.0342 2420 C:\Windows\SysWOW64\ws2_32.dll - ok
17:29:34.0342 2420 [ 434D3AFF60EE877A2D1CADE7016AF4C3 ] C:\Program Files (x86)\Avira\AntiVir Desktop\avevtlog.dll
17:29:34.0342 2420 C:\Program Files (x86)\Avira\AntiVir Desktop\avevtlog.dll - ok
17:29:34.0342 2420 [ 453A81F0537D7619BDC677E9A733C3FA ] C:\Program Files (x86)\Avira\AntiVir Desktop\schedr.dll
17:29:34.0342 2420 C:\Program Files (x86)\Avira\AntiVir Desktop\schedr.dll - ok
17:29:34.0342 2420 [ 503FE48BC3B68F40018520AEAE3BEAC1 ] C:\Program Files (x86)\Avira\AntiVir Desktop\sqlite3.dll
17:29:34.0342 2420 C:\Program Files (x86)\Avira\AntiVir Desktop\sqlite3.dll - ok
17:29:34.0358 2420 [ D711B3C1D5F42C0C2415687BE09FC163 ] C:\Windows\System32\drivers\mrxsmb10.sys
17:29:34.0358 2420 C:\Windows\System32\drivers\mrxsmb10.sys - ok
17:29:34.0358 2420 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] C:\Windows\System32\drivers\mrxsmb20.sys
17:29:34.0358 2420 C:\Windows\System32\drivers\mrxsmb20.sys - ok
17:29:34.0358 2420 [ 851A1382EED3E3A7476DB004F4EE3E1A ] C:\Windows\System32\wkssvc.dll
17:29:34.0358 2420 C:\Windows\System32\wkssvc.dll - ok
17:29:34.0358 2420 [ C67F8A962B2534224D5908D16D2AD3CE ] C:\Windows\System32\wfapigp.dll
17:29:34.0358 2420 C:\Windows\System32\wfapigp.dll - ok
17:29:34.0373 2420 [ F436E847FA799ECD75AD8C313673F450 ] C:\Windows\SysWOW64\cfgmgr32.dll
17:29:34.0373 2420 C:\Windows\SysWOW64\cfgmgr32.dll - ok
17:29:34.0373 2420 [ D19C4EE2AC7C47B8F5F84FFF1A789D8A ] C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
17:29:34.0373 2420 C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe - ok
17:29:34.0373 2420 [ 928CF7268086631F54C3D8E17238C6DD ] C:\Windows\SysWOW64\ole32.dll
17:29:34.0373 2420 C:\Windows\SysWOW64\ole32.dll - ok
17:29:34.0373 2420 [ 6C765E82B57F2E66CE9C54AC238471D9 ] C:\Windows\SysWOW64\oleaut32.dll
17:29:34.0373 2420 C:\Windows\SysWOW64\oleaut32.dll - ok
17:29:34.0373 2420 [ 1295338CFE6F249823EF9BC8D4368A84 ] C:\Windows\SysWOW64\crypt32.dll
17:29:34.0373 2420 C:\Windows\SysWOW64\crypt32.dll - ok
17:29:34.0389 2420 [ 938F39B50BAFE13D6F58C7790682C010 ] C:\Windows\SysWOW64\msasn1.dll
17:29:34.0389 2420 C:\Windows\SysWOW64\msasn1.dll - ok
17:29:34.0389 2420 [ A7D79E9F660340AB20CD73F12910985F ] C:\Windows\SysWOW64\wintrust.dll
17:29:34.0389 2420 C:\Windows\SysWOW64\wintrust.dll - ok
17:29:34.0389 2420 [ 1834B31C749B86DAC233BBBA1C03BC48 ] C:\Windows\System32\mscms.dll
17:29:34.0389 2420 C:\Windows\System32\mscms.dll - ok
17:29:34.0389 2420 [ 3AEAA8B561E63452C655DC0584922257 ] C:\Windows\System32\pcasvc.dll
17:29:34.0389 2420 C:\Windows\System32\pcasvc.dll - ok
17:29:34.0404 2420 [ 6313F223E817CC09AA41811DAA7F541D ] C:\Windows\System32\snmptrap.exe
17:29:34.0404 2420 C:\Windows\System32\snmptrap.exe - ok
17:29:34.0404 2420 [ 908ACB1F594274965A53926B10C81E89 ] C:\Windows\System32\provsvc.dll
17:29:34.0404 2420 C:\Windows\System32\provsvc.dll - ok
17:29:34.0404 2420 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] C:\Windows\System32\sstpsvc.dll
17:29:34.0404 2420 C:\Windows\System32\sstpsvc.dll - ok
17:29:34.0404 2420 [ A8EDB86FC2A4D6D1285E4C70384AC35A ] C:\Windows\System32\dllhost.exe
17:29:34.0404 2420 C:\Windows\System32\dllhost.exe - ok
17:29:34.0404 2420 [ 14DFDEAF4E589ED3F1FF187A86B9408C ] C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.17514_none_a4d6a923711520a9\comctl32.dll
17:29:34.0404 2420 C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.17514_none_a4d6a923711520a9\comctl32.dll - ok
17:29:34.0420 2420 [ A0A2C1D812C231C9BFE119FDC68E341B ] C:\Windows\System32\IDStore.dll
17:29:34.0420 2420 C:\Windows\System32\IDStore.dll - ok
17:29:34.0420 2420 [ 517110BD83835338C037269E603DB55D ] C:\Windows\System32\taskhost.exe
17:29:34.0420 2420 C:\Windows\System32\taskhost.exe - ok
17:29:34.0420 2420 [ AFB5B500AD69E24ED1BC15D1161641EF ] C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL
17:29:34.0420 2420 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL - ok
17:29:34.0420 2420 [ 6CEF7856A3EFAC59470F6208F0F585CE ] C:\Windows\System32\mpr.dll
17:29:34.0420 2420 C:\Windows\System32\mpr.dll - ok
17:29:34.0420 2420 [ 94EEAC26F57811BD1AEFC164412F7FCE ] C:\Windows\System32\PlaySndSrv.dll
17:29:34.0436 2420 C:\Windows\System32\PlaySndSrv.dll - ok
17:29:34.0436 2420 [ 88351B29B622B30962D2FEB6CA8D860B ] C:\Windows\System32\rasadhlp.dll
17:29:34.0436 2420 C:\Windows\System32\rasadhlp.dll - ok
17:29:34.0436 2420 [ 9FCA3A84338ADEF2AFF67CDA46EF8539 ] C:\Windows\System32\umb.dll
17:29:34.0436 2420 C:\Windows\System32\umb.dll - ok
17:29:34.0436 2420 [ BAFE84E637BF7388C96EF48D4D3FDD53 ] C:\Windows\System32\userinit.exe
17:29:34.0436 2420 C:\Windows\System32\userinit.exe - ok
17:29:34.0436 2420 [ 45CFBFA8EDC3DF4E2B7FB0D0260FE051 ] C:\Windows\System32\localspl.dll
17:29:34.0436 2420 C:\Windows\System32\localspl.dll - ok
17:29:34.0451 2420 [ 3285481F5C12305CA104A6C493CA5A0B ] C:\Windows\System32\spoolss.dll
17:29:34.0451 2420 C:\Windows\System32\spoolss.dll - ok
17:29:34.0451 2420 [ F162D5F5E845B9DC352DD1BAD8CEF1BC ] C:\Windows\System32\dwm.exe
17:29:34.0451 2420 C:\Windows\System32\dwm.exe - ok
17:29:34.0451 2420 [ FCFCD1101C5DA23B4B95F93D02B2C169 ] C:\Windows\System32\dwmredir.dll
17:29:34.0451 2420 C:\Windows\System32\dwmredir.dll - ok
17:29:34.0451 2420 [ 4BA77A5EF71C14C764B0ED4701683E3E ] C:\Windows\System32\dwmcore.dll
17:29:34.0451 2420 C:\Windows\System32\dwmcore.dll - ok
17:29:34.0451 2420 [ E1374D37477322D4956604711008C69D ] C:\Windows\System32\d3d10_1.dll
17:29:34.0451 2420 C:\Windows\System32\d3d10_1.dll - ok
17:29:34.0467 2420 [ 426BA4E737A7988FD1202AF2F2B2F4A6 ] C:\Windows\System32\d3d10_1core.dll
17:29:34.0467 2420 C:\Windows\System32\d3d10_1core.dll - ok
17:29:34.0467 2420 [ F404E59DB6A0F122AB26BF4F3E2FD0FA ] C:\Windows\System32\dxgi.dll
17:29:34.0467 2420 C:\Windows\System32\dxgi.dll - ok
17:29:34.0467 2420 [ EF2AE43BCD46ABB13FC3E5B2B1935C73 ] C:\Windows\System32\winmm.dll
17:29:34.0467 2420 C:\Windows\System32\winmm.dll - ok
17:29:34.0467 2420 [ 9BB99503D6A4DD62569EDE9E5E2672A5 ] C:\Windows\System32\HotStartUserAgent.dll
17:29:34.0467 2420 C:\Windows\System32\HotStartUserAgent.dll - ok
17:29:34.0482 2420 [ 1F1CA9E99DD5BF918BE0BF30B5A42FDA ] C:\Windows\System32\MsCtfMonitor.dll
17:29:34.0482 2420 C:\Windows\System32\MsCtfMonitor.dll - ok
17:29:34.0482 2420 [ F09A9A1AD21FE618C4C8B0A0D830C886 ] C:\Windows\System32\msutb.dll
17:29:34.0482 2420 C:\Windows\System32\msutb.dll - ok
17:29:34.0482 2420 [ 4F88DC5A733A8E541DAD45D26380F884 ] C:\Windows\System32\aticfx64.dll
17:29:34.0482 2420 C:\Windows\System32\aticfx64.dll - ok
17:29:34.0482 2420 [ 9DDFBB6786AECFA198856D0355ECC974 ] C:\Windows\System32\atiuxp64.dll
17:29:34.0482 2420 C:\Windows\System32\atiuxp64.dll - ok
17:29:34.0482 2420 [ 540F5216118AB5AA221DC37242A36CEF ] C:\Windows\System32\CNMLM86.DLL
17:29:34.0482 2420 C:\Windows\System32\CNMLM86.DLL - ok
17:29:34.0498 2420 [ C5AC93CF3BA30D367FB49148A2B673B9 ] C:\Windows\System32\PrintIsolationProxy.dll
17:29:34.0498 2420 C:\Windows\System32\PrintIsolationProxy.dll - ok
17:29:34.0498 2420 [ 0015ACFBBDD164A8A730009908868CA7 ] C:\Windows\System32\winspool.drv
17:29:34.0498 2420 C:\Windows\System32\winspool.drv - ok
17:29:34.0498 2420 [ 19E41CCCEE697CC9465396B370929792 ] C:\Windows\System32\FXSMON.dll
17:29:34.0498 2420 C:\Windows\System32\FXSMON.dll - ok
17:29:34.0498 2420 [ 32A3C8600AF124CBAAD845F13CFAE3CB ] C:\Windows\System32\tcpmon.dll
17:29:34.0498 2420 C:\Windows\System32\tcpmon.dll - ok
17:29:34.0498 2420 [ 93518C6EDE0B61BCBD02BDB02BD05FEE ] C:\Windows\System32\snmpapi.dll
17:29:34.0498 2420 C:\Windows\System32\snmpapi.dll - ok
17:29:34.0514 2420 [ FFF9D00CF16397C64317F213484F94BD ] C:\Windows\System32\wsnmp32.dll
17:29:34.0514 2420 C:\Windows\System32\wsnmp32.dll - ok
17:29:34.0514 2420 [ CDBE9690CF2B8409FACAD94FAC9479C9 ] C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcr90.dll
17:29:34.0514 2420 C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcr90.dll - ok
17:29:34.0514 2420 [ 4FFDE68C4B7C9993FA551E7E36DDB34D ] C:\Windows\System32\msxml6.dll
17:29:34.0514 2420 C:\Windows\System32\msxml6.dll - ok
17:29:34.0514 2420 [ DF72A9936D0C3F517083119648814B09 ] C:\Windows\System32\usbmon.dll
17:29:34.0514 2420 C:\Windows\System32\usbmon.dll - ok
17:29:34.0514 2420 [ A1D7E3ADCDB07DDB6F423862DCB1A52B ] C:\Windows\System32\WSDMon.dll
17:29:34.0514 2420 C:\Windows\System32\WSDMon.dll - ok
17:29:34.0529 2420 [ F1B205F932F62F94506A5F332C895DAF ] C:\Windows\System32\WSDApi.dll
17:29:34.0529 2420 C:\Windows\System32\WSDApi.dll - ok
17:29:34.0529 2420 [ 332FEAB1435662FC6C672E25BEB37BE3 ] C:\Windows\explorer.exe
17:29:34.0529 2420 C:\Windows\explorer.exe - ok
17:29:34.0529 2420 [ EED05D42D91835064703E2318552ED25 ] C:\Windows\System32\ExplorerFrame.dll
17:29:34.0529 2420 C:\Windows\System32\ExplorerFrame.dll - ok
17:29:34.0529 2420 [ 7AFB754022F62B7A0A8A3A9A4C275634 ] C:\Windows\System32\atidxx64.dll
17:29:34.0529 2420 C:\Windows\System32\atidxx64.dll - ok
17:29:34.0545 2420 [ 024352FEEC9042260BB4CFB4D79A206B ] C:\Windows\System32\EhStorShell.dll
17:29:34.0545 2420 C:\Windows\System32\EhStorShell.dll - ok
17:29:34.0545 2420 [ 65EA57712340C09B1B0C427B4848AE05 ] C:\Windows\System32\taskeng.exe
17:29:34.0545 2420 C:\Windows\System32\taskeng.exe - ok
17:29:34.0545 2420 [ 037A719DAD50603202C978CD802623E4 ] C:\Windows\System32\ntshrui.dll
17:29:34.0545 2420 C:\Windows\System32\ntshrui.dll - ok
17:29:34.0545 2420 [ 805A52C5AE26C28E88FDD9BCCFE6F312 ] C:\Windows\System32\TSChannel.dll
17:29:34.0545 2420 C:\Windows\System32\TSChannel.dll - ok
17:29:34.0545 2420 [ 9FACF68EE6BDED00108002C61517D08A ] C:\Program Files (x86)\IObit\Game Booster 3\AutoUpdate.exe
17:29:34.0545 2420 C:\Program Files (x86)\IObit\Game Booster 3\AutoUpdate.exe - ok
17:29:34.0560 2420 [ DD82EB68D97944B192C7803EB585B03C ] C:\Program Files (x86)\IObit\Game Booster 3\rtl120.bpl
17:29:34.0560 2420 C:\Program Files (x86)\IObit\Game Booster 3\rtl120.bpl - ok
17:29:34.0560 2420 [ B2DB6ABA2E292235749B80A9C3DFA867 ] C:\Windows\SysWOW64\imagehlp.dll
17:29:34.0560 2420 C:\Windows\SysWOW64\imagehlp.dll - ok
17:29:34.0560 2420 [ 8E01332CC4B68BC6B5B7EFFE374442AA ] C:\Windows\SysWOW64\oleacc.dll
17:29:34.0560 2420 C:\Windows\SysWOW64\oleacc.dll - ok
17:29:34.0560 2420 [ DF13A51A5C591887D2EC6AE64CEED0FA ] C:\Windows\SysWOW64\wsock32.dll
17:29:34.0560 2420 C:\Windows\SysWOW64\wsock32.dll - ok
17:29:34.0576 2420 [ 773EBD87010A6F644869A59D98792C9C ] C:\Program Files (x86)\IObit\Game Booster 3\vcl120.bpl
17:29:34.0576 2420 C:\Program Files (x86)\IObit\Game Booster 3\vcl120.bpl - ok
17:29:34.0576 2420 [ 18AB2E5A40064ED5F7791AC5946A90F3 ] C:\Windows\SysWOW64\msimg32.dll
17:29:34.0576 2420 C:\Windows\SysWOW64\msimg32.dll - ok
17:29:34.0576 2420 [ 352B3DC62A0D259A82A052238425C872 ] C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2\comctl32.dll
17:29:34.0576 2420 C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2\comctl32.dll - ok
17:29:34.0576 2420 [ D1DE1EAFDE97BE41CF6585027FF3E732 ] C:\Windows\SysWOW64\comdlg32.dll
17:29:34.0576 2420 C:\Windows\SysWOW64\comdlg32.dll - ok
17:29:34.0576 2420 [ 936F728E04ACCF3F38801CFFCF1E3F40 ] C:\Windows\SysWOW64\oledlg.dll
17:29:34.0576 2420 C:\Windows\SysWOW64\oledlg.dll - ok
17:29:34.0592 2420 [ D5AEFAD57C08349A4393D987DF7C715D ] C:\Windows\SysWOW64\winmm.dll
17:29:34.0592 2420 C:\Windows\SysWOW64\winmm.dll - ok
17:29:34.0592 2420 [ 9E4B0E7472B4CEBA9E17F440B8CB0AB8 ] C:\Windows\SysWOW64\winspool.drv
17:29:34.0592 2420 C:\Windows\SysWOW64\winspool.drv - ok
17:29:34.0592 2420 [ 43964FA89CCF97BA6BE34D69455AC65F ] C:\Windows\SysWOW64\uxtheme.dll
17:29:34.0592 2420 C:\Windows\SysWOW64\uxtheme.dll - ok
17:29:34.0592 2420 [ 39C5F32747B3414D1BB216FDB1DEFC58 ] C:\Windows\SysWOW64\dwmapi.dll
17:29:34.0592 2420 C:\Windows\SysWOW64\dwmapi.dll - ok
17:29:34.0592 2420 [ C733D233B623B7FFCE5031E4B756EE26 ] C:\Windows\SysWOW64\profapi.dll
17:29:34.0592 2420 C:\Windows\SysWOW64\profapi.dll - ok
17:29:34.0607 2420 [ 03A03A453F1AAAE0C73AAAF895321C7A ] C:\Windows\SysWOW64\FWPUCLNT.DLL
17:29:34.0607 2420 C:\Windows\SysWOW64\FWPUCLNT.DLL - ok
17:29:34.0607 2420 [ C55516D98DD5D8F0153C2A9B4227DA86 ] C:\Windows\System32\webservices.dll
17:29:34.0607 2420 C:\Windows\System32\webservices.dll - ok
17:29:34.0607 2420 [ 49E5753D923F1AC63B22D3DCB0B47E00 ] C:\Windows\System32\uDWM.dll
17:29:34.0607 2420 C:\Windows\System32\uDWM.dll - ok
17:29:34.0607 2420 [ 86B2787F580D7CFB232F5BA0935E5F11 ] C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
17:29:34.0607 2420 C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe - ok
17:29:34.0623 2420 [ 37D44BFEA9B50D75764660ADC35C83AC ] C:\Windows\System32\msvcp100.dll
17:29:34.0623 2420 C:\Windows\System32\msvcp100.dll - ok
17:29:34.0623 2420 [ B88DA7FD10BDBB3754D98AFD39677C29 ] C:\Windows\System32\msvcr100.dll
17:29:34.0623 2420 C:\Windows\System32\msvcr100.dll - ok
17:29:34.0623 2420 [ C9A36EF935ACED86AEDF93E97E606911 ] C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
17:29:34.0623 2420 C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe - ok
17:29:34.0623 2420 [ E2DEA77BAAAED15CA1CE0C8E017C7F2F ] C:\Program Files\ATI Technologies\ATI.ACE\Fuel\device.dll
17:29:34.0623 2420 C:\Program Files\ATI Technologies\ATI.ACE\Fuel\device.dll - ok
17:29:34.0623 2420 [ 46C9203F426F5EA8524794E591152283 ] C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Container.PerformanceTuning.dll
17:29:34.0623 2420 C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Container.PerformanceTuning.dll - ok
17:29:34.0638 2420 [ 5B25D1A753CC3A3EDB909BB759AC1098 ] C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\aoddriver2.sys
17:29:34.0638 2420 C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\aoddriver2.sys - ok
17:29:34.0638 2420 [ 991F2C676B636E475CB9C8C30ED8E570 ] C:\Program Files (x86)\Avira\AntiVir Desktop\gpgrd.dll
17:29:34.0638 2420 C:\Program Files (x86)\Avira\AntiVir Desktop\gpgrd.dll - ok
17:29:34.0638 2420 [ 670690FD78D7A14FF6B2579502C7FFFB ] C:\Program Files (x86)\Avira\AntiVir Desktop\gpavgio.dll
17:29:34.0638 2420 C:\Program Files (x86)\Avira\AntiVir Desktop\gpavgio.dll - ok
17:29:34.0638 2420 [ CB0248A426835FE0A77F1B468E1825E1 ] C:\Program Files (x86)\Avira\AntiVir Desktop\gpgavid.dll
17:29:34.0638 2420 C:\Program Files (x86)\Avira\AntiVir Desktop\gpgavid.dll - ok
17:29:34.0654 2420 [ C2C2335E62DA083E06BD99A70DFA8785 ] C:\Program Files (x86)\Avira\AntiVir Desktop\gpgui.dll
17:29:34.0654 2420 C:\Program Files (x86)\Avira\AntiVir Desktop\gpgui.dll - ok
17:29:34.0654 2420 [ 2EC0D1737C05ADB6156C65BD4A2613F6 ] C:\Program Files (x86)\Avira\AntiVir Desktop\gplegacy.dll
17:29:34.0654 2420 C:\Program Files (x86)\Avira\AntiVir Desktop\gplegacy.dll - ok
17:29:34.0654 2420 [ 8F9F50F3810672AC36503B72A0B1808A ] C:\Program Files (x86)\Avira\AntiVir Desktop\libdb44.dll
17:29:34.0654 2420 C:\Program Files (x86)\Avira\AntiVir Desktop\libdb44.dll - ok
17:29:34.0654 2420 [ 1D817D77C8EB600AB311AAC8E68B5A1A ] C:\Windows\System32\cryptnet.dll
17:29:34.0654 2420 C:\Windows\System32\cryptnet.dll - ok
17:29:34.0654 2420 [ 4F5414602E2544A4554D95517948B705 ] C:\Windows\System32\cryptsvc.dll
17:29:34.0654 2420 C:\Windows\System32\cryptsvc.dll - ok
17:29:34.0670 2420 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] C:\Windows\System32\dps.dll
17:29:34.0670 2420 C:\Windows\System32\dps.dll - ok
17:29:34.0670 2420 [ BAAFAF9CEAEC0B73C2A3550A01F6CECB ] C:\Windows\System32\taskschd.dll
17:29:34.0670 2420 C:\Windows\System32\taskschd.dll - ok
17:29:34.0670 2420 [ 0E2F58F6E698EDCB9E58FAD0CBCD0567 ] C:\Windows\System32\vssapi.dll
17:29:34.0670 2420 C:\Windows\System32\vssapi.dll - ok
17:29:34.0670 2420 [ 729F4D9EC5E17A5588DD187D0F5F2738 ] C:\Program Files (x86)\Avira\AntiVir Desktop\gpgenrep.dll
17:29:34.0670 2420 C:\Program Files (x86)\Avira\AntiVir Desktop\gpgenrep.dll - ok
17:29:34.0685 2420 [ 31222A7F19EF7013FD43E47168E4400A ] C:\Program Files (x86)\Avira\AntiVir Desktop\onlcfg.dll
17:29:34.0685 2420 C:\Program Files (x86)\Avira\AntiVir Desktop\onlcfg.dll - ok
17:29:34.0685 2420 [ EA196C9873949A3D2050C86B7AE95FDD ] C:\Program Files (x86)\Avira\AntiVir Desktop\guardmsg.dll
17:29:34.0685 2420 C:\Program Files (x86)\Avira\AntiVir Desktop\guardmsg.dll - ok
17:29:34.0685 2420 [ 4200272EE793C5E139365E0AFE9AAB5B ] C:\Program Files (x86)\Avira\AntiVir Desktop\avipc.dll
17:29:34.0685 2420 C:\Program Files (x86)\Avira\AntiVir Desktop\avipc.dll - ok
17:29:34.0685 2420 [ 1AE773142781013F32AE19D0404879FA ] C:\Program Files (x86)\Avira\AntiVir Desktop\avgio.dll
17:29:34.0685 2420 C:\Program Files (x86)\Avira\AntiVir Desktop\avgio.dll - ok
17:29:34.0685 2420 [ A04DD0E3C71FE7AC602B573B1B03758F ] C:\Program Files (x86)\Avira\AntiVir Desktop\avpref.dll
17:29:34.0685 2420 C:\Program Files (x86)\Avira\AntiVir Desktop\avpref.dll - ok
17:29:34.0701 2420 [ 287923557447D7E4BDD7E65B1F0F5428 ] C:\Windows\System32\vsstrace.dll
17:29:34.0701 2420 C:\Windows\System32\vsstrace.dll - ok
17:29:34.0701 2420 [ 1EBE9524683C7C4EED8B8BC93FB6FBCC ] C:\Windows\SysWOW64\fltLib.dll
17:29:34.0701 2420 C:\Windows\SysWOW64\fltLib.dll - ok
17:29:34.0701 2420 [ 786019C7CFEC0F16A0FB3C5367D7EA31 ] C:\Program Files (x86)\Avira\AntiVir Desktop\aecore.dll
17:29:34.0701 2420 C:\Program Files (x86)\Avira\AntiVir Desktop\aecore.dll - ok
17:29:34.0701 2420 [ E75A782A8C218D03A0AF54325132BC70 ] C:\Program Files (x86)\Avira\AntiVir Desktop\aevdf.dll
17:29:34.0701 2420 C:\Program Files (x86)\Avira\AntiVir Desktop\aevdf.dll - ok
17:29:34.0716 2420 [ 64EE0157EA4927C79005E316B0C7A0B7 ] C:\Program Files (x86)\Avira\AntiVir Desktop\aescript.dll
17:29:34.0716 2420 C:\Program Files (x86)\Avira\AntiVir Desktop\aescript.dll - ok
17:29:34.0716 2420 [ A68E6B53BBA0F546821E1586DD4F1CDF ] C:\Program Files (x86)\Hi-Rez Studios\HiPatchService.exe
17:29:34.0716 2420 C:\Program Files (x86)\Hi-Rez Studios\HiPatchService.exe - ok
17:29:34.0716 2420 [ C4A8EE0AE033F01515240B1F5476410A ] C:\Program Files (x86)\Avira\AntiVir Desktop\aescn.dll
17:29:34.0716 2420 C:\Program Files (x86)\Avira\AntiVir Desktop\aescn.dll - ok
17:29:34.0716 2420 [ A08C010D859F8EB42BDD7E1D55B8CA27 ] C:\Windows\System32\mscoree.dll
17:29:34.0716 2420 C:\Windows\System32\mscoree.dll - ok
17:29:34.0716 2420 [ 64605B72B605DEDE66D38E3D7094E73B ] C:\Program Files (x86)\Avira\AntiVir Desktop\aesbx.dll
17:29:34.0716 2420 C:\Program Files (x86)\Avira\AntiVir Desktop\aesbx.dll - ok
17:29:34.0732 2420 [ CF28139A8AECBF3BEC26CA1A16FD69CF ] C:\Program Files (x86)\Avira\AntiVir Desktop\aerdl.dll
17:29:34.0732 2420 C:\Program Files (x86)\Avira\AntiVir Desktop\aerdl.dll - ok
17:29:34.0732 2420 [ 4581716B4BF76ACFD8E167EB0B26D82A ] C:\Windows\System32\fdPnp.dll
17:29:34.0732 2420 C:\Windows\System32\fdPnp.dll - ok
17:29:34.0732 2420 [ B5055B51BAA0FD0A736A88653DA3C1C0 ] C:\Windows\System32\fundisc.dll
17:29:34.0732 2420 C:\Windows\System32\fundisc.dll - ok
17:29:34.0732 2420 [ C3072FA9FC6971759D504C26C29A1C4F ] C:\Windows\System32\spool\prtprocs\x64\CNMPD86.DLL
17:29:34.0732 2420 C:\Windows\System32\spool\prtprocs\x64\CNMPD86.DLL - ok
17:29:34.0748 2420 [ 1D626FE2E13C1CE49CA0136CFF214E93 ] C:\Windows\System32\spool\prtprocs\x64\winprint.dll
17:29:34.0748 2420 C:\Windows\System32\spool\prtprocs\x64\winprint.dll - ok
17:29:34.0748 2420 [ 548CB980D7876E207CC9F8B60C1587A3 ] C:\Windows\System32\win32spl.dll
17:29:34.0748 2420 C:\Windows\System32\win32spl.dll - ok
17:29:34.0748 2420 [ 507D5567A0A4EE86C4B0CE2CE1777025 ] C:\Windows\System32\inetpp.dll
17:29:34.0748 2420 C:\Windows\System32\inetpp.dll - ok
17:29:34.0748 2420 [ 56A0F81C7513B9CA4ED975E42F4EDB0D ] C:\Program Files (x86)\Avira\AntiVir Desktop\aeoffice.dll
17:29:34.0748 2420 C:\Program Files (x86)\Avira\AntiVir Desktop\aeoffice.dll - ok
17:29:34.0748 2420 [ B095D4F78A2FA9BD627855F368113E81 ] C:\Program Files (x86)\Avira\AntiVir Desktop\aepack.dll
17:29:34.0748 2420 C:\Program Files (x86)\Avira\AntiVir Desktop\aepack.dll - ok
17:29:34.0763 2420 [ 5C2E390FC6DB4D006E4CF761F1247BD3 ] C:\Program Files (x86)\Avira\AntiVir Desktop\aeheur.dll
17:29:34.0763 2420 C:\Program Files (x86)\Avira\AntiVir Desktop\aeheur.dll - ok
17:29:34.0763 2420 [ AAB531B06C36FB7C967246F3C9FCAE3D ] C:\Program Files (x86)\Avira\AntiVir Desktop\aehelp.dll
17:29:34.0763 2420 C:\Program Files (x86)\Avira\AntiVir Desktop\aehelp.dll - ok
17:29:34.0763 2420 [ C5B89E31D9DC26EFCA474AD7062AFC4F ] C:\Program Files (x86)\Avira\AntiVir Desktop\aegen.dll
17:29:34.0763 2420 C:\Program Files (x86)\Avira\AntiVir Desktop\aegen.dll - ok
17:29:34.0763 2420 [ CD7B65E600B8EBC91B292C1AC9EC1215 ] C:\Program Files (x86)\Avira\AntiVir Desktop\aeemu.dll
17:29:34.0763 2420 C:\Program Files (x86)\Avira\AntiVir Desktop\aeemu.dll - ok
17:29:34.0763 2420 [ CD4F317CD1853D5592593195CE39D9EE ] C:\Program Files (x86)\Avira\AntiVir Desktop\aeexp.dll
17:29:34.0763 2420 C:\Program Files (x86)\Avira\AntiVir Desktop\aeexp.dll - ok
17:29:34.0779 2420 [ 1BF0CB861A48FEB1638228760750F3CB ] C:\Windows\System32\cscapi.dll
17:29:34.0779 2420 C:\Windows\System32\cscapi.dll - ok
17:29:34.0779 2420 [ 1D63F4366288B8A7595397E27010FD44 ] C:\Windows\System32\IconCodecService.dll
17:29:34.0779 2420 C:\Windows\System32\IconCodecService.dll - ok
17:29:34.0779 2420 [ 1EE99A89CC788ADA662441D1E9830529 ] C:\Windows\System32\nlasvc.dll
17:29:34.0779 2420 C:\Windows\System32\nlasvc.dll - ok
17:29:34.0779 2420 [ AA794B099F776B37ACCDEAD00E0FBFC9 ] C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscoreei.dll
17:29:34.0779 2420 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscoreei.dll - ok
17:29:34.0779 2420 [ A05C0003E8D7CEA359A439690554F8BB ] C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorwks.dll
17:29:34.0779 2420 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorwks.dll - ok
17:29:34.0794 2420 [ 7E3D9E781E7D2E099BD424B188FBC9AA ] C:\Program Files (x86)\Avira\AntiVir Desktop\aebb.dll
17:29:34.0794 2420 C:\Program Files (x86)\Avira\AntiVir Desktop\aebb.dll - ok
17:29:34.0794 2420 [ 58A0CDABEA255616827B1C22C9994466 ] C:\Windows\System32\NapiNSP.dll
17:29:34.0794 2420 C:\Windows\System32\NapiNSP.dll - ok
17:29:34.0794 2420 [ 613C8CE10A5FDE582BA5FA64C4D56AAA ] C:\Windows\System32\pnrpnsp.dll
17:29:34.0794 2420 C:\Windows\System32\pnrpnsp.dll - ok
17:29:34.0794 2420 [ 2E2072EB48238FCA8FBB7A9F5FABAC45 ] C:\Windows\System32\winrnr.dll
17:29:34.0794 2420 C:\Windows\System32\winrnr.dll - ok
17:29:34.0810 2420 [ FCE23E27F62989AD0BB88E256E847A41 ] C:\Windows\System32\CertPolEng.dll
17:29:34.0810 2420 C:\Windows\System32\CertPolEng.dll - ok
17:29:34.0810 2420 [ F11A57E91FDAECFB41A5CB21EB1EBC8E ] C:\Windows\System32\dssenh.dll
17:29:34.0810 2420 C:\Windows\System32\dssenh.dll - ok
17:29:34.0810 2420 [ 06A754FE28A06F780A099703CFCAAA22 ] C:\Windows\winsxs\amd64_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.4940_none_88df89932faf0bf6\msvcr80.dll
17:29:34.0810 2420 C:\Windows\winsxs\amd64_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.4940_none_88df89932faf0bf6\msvcr80.dll - ok
17:29:34.0810 2420 [ 76CDA84DCB30EBDEF0D86051A72E0C0F ] C:\Windows\assembly\NativeImages_v2.0.50727_64\mscorlib\f73f0a9c9a83dcd3ff428be509a7992f\mscorlib.ni.dll
17:29:34.0810 2420 C:\Windows\assembly\NativeImages_v2.0.50727_64\mscorlib\f73f0a9c9a83dcd3ff428be509a7992f\mscorlib.ni.dll - ok
17:29:34.0810 2420 [ 3ABB7ADB9CCBCD24D6C55201A3842A94 ] C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorjit.dll
17:29:34.0810 2420 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorjit.dll - ok
17:29:34.0826 2420 [ BA48FCD5653B8A62F39AAF2663EC5D10 ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System\c40ec0f4cd203c880298f94c0427dd54\System.ni.dll
17:29:34.0826 2420 C:\Windows\assembly\NativeImages_v2.0.50727_64\System\c40ec0f4cd203c880298f94c0427dd54\System.ni.dll - ok
17:29:34.0826 2420 [ 87204B04A63E684D3FD02A7BC10741CD ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.ServiceProce#\f71d2f65d0f149c75ac7a569dbcc8500\System.ServiceProcess.ni.dll
17:29:34.0826 2420 C:\Windows\assembly\NativeImages_v2.0.50727_64\System.ServiceProce#\f71d2f65d0f149c75ac7a569dbcc8500\System.ServiceProcess.ni.dll - ok
17:29:34.0826 2420 [ 1727B2A2F379A32B864C096FA794AADC ] C:\Windows\System32\aepic.dll
17:29:34.0826 2420 C:\Windows\System32\aepic.dll - ok
17:29:34.0826 2420 [ 4A435F95B940E93A88FEC144BD409789 ] C:\Windows\System32\ncsi.dll
17:29:34.0826 2420 C:\Windows\System32\ncsi.dll - ok
17:29:34.0826 2420 [ C6DCD1D11ED6827F05C00773C3E7053C ] C:\Windows\System32\sfc.dll
17:29:34.0826 2420 C:\Windows\System32\sfc.dll - ok
17:29:34.0841 2420 [ 895C9AB0A855547445C4181195230757 ] C:\Windows\System32\sfc_os.dll
17:29:34.0841 2420 C:\Windows\System32\sfc_os.dll - ok
17:29:34.0841 2420 [ 58F4493BF748A3A89689997B7BD00E95 ] C:\Windows\System32\winhttp.dll
17:29:34.0841 2420 C:\Windows\System32\winhttp.dll - ok
17:29:34.0841 2420 [ 603EBD34E216C5654A2D774EAC98D278 ] C:\Windows\System32\webio.dll
17:29:34.0841 2420 C:\Windows\System32\webio.dll - ok
17:29:34.0841 2420 [ 210FCACAF902B2CD47CF9FD17D846146 ] C:\Windows\System32\aeevts.dll
17:29:34.0841 2420 C:\Windows\System32\aeevts.dll - ok
17:29:34.0857 2420 [ 2BBF3FDB70B8965DFA0258CBAB41ECCE ] C:\Windows\System32\ssdpapi.dll
17:29:34.0857 2420 C:\Windows\System32\ssdpapi.dll - ok
17:29:34.0857 2420 [ CDAD3376DFF3D9AC7FDCBE2B94B0D3C8 ] C:\Windows\System32\shfolder.dll
17:29:34.0857 2420 C:\Windows\System32\shfolder.dll - ok
17:29:34.0857 2420 [ 68769C3356B3BE5D1C732C97B9A80D6E ] C:\Windows\System32\drivers\PEAuth.sys
17:29:34.0857 2420 C:\Windows\System32\drivers\PEAuth.sys - ok
17:29:34.0857 2420 [ 3EA8A16169C26AFBEB544E0E48421186 ] C:\Windows\System32\drivers\secdrv.sys
17:29:34.0857 2420 C:\Windows\System32\drivers\secdrv.sys - ok
17:29:34.0857 2420 [ EA396139541706B4B433641D62EA53CE ] C:\Program Files (x86)\Skype\Updater\Updater.exe
17:29:34.0857 2420 C:\Program Files (x86)\Skype\Updater\Updater.exe - ok
17:29:34.0872 2420 [ A543AC1F7138376D778D630A35FCBC4C ] C:\Windows\SysWOW64\psapi.dll
17:29:34.0872 2420 C:\Windows\SysWOW64\psapi.dll - ok
17:29:34.0872 2420 [ D15618A0FF8DBC2C5BF3726BACC75A0B ] C:\Windows\SysWOW64\userenv.dll
17:29:34.0872 2420 C:\Windows\SysWOW64\userenv.dll - ok
17:29:34.0872 2420 [ FF5688D309347F2720911D8796912834 ] C:\Windows\SysWOW64\clbcatq.dll
17:29:34.0872 2420 C:\Windows\SysWOW64\clbcatq.dll - ok
17:29:34.0872 2420 [ 27E461F0BE5BFF5FC737328F749538C3 ] C:\Windows\System32\drivers\srvnet.sys
17:29:34.0872 2420 C:\Windows\System32\drivers\srvnet.sys - ok
17:29:34.0872 2420 [ 7321F18D1F820612ED0E9F2D4B578A7E ] C:\Windows\SysWOW64\cryptsp.dll
17:29:34.0872 2420 C:\Windows\SysWOW64\cryptsp.dll - ok
17:29:34.0888 2420 [ 5997D769CDB108390DCFAEBF442BF816 ] C:\Windows\SysWOW64\RpcRtRemote.dll
17:29:34.0888 2420 C:\Windows\SysWOW64\RpcRtRemote.dll - ok
17:29:34.0888 2420 [ ED8EC63F7522DF4852147C84EC62C36A ] C:\Windows\SysWOW64\rsaenh.dll
17:29:34.0888 2420 C:\Windows\SysWOW64\rsaenh.dll - ok
17:29:34.0888 2420 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] C:\Windows\System32\wiaservc.dll
17:29:34.0888 2420 C:\Windows\System32\wiaservc.dll - ok
17:29:34.0888 2420 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] C:\Windows\System32\sysmain.dll
17:29:34.0888 2420 C:\Windows\System32\sysmain.dll - ok
17:29:34.0888 2420 [ DF687E3D8836BFB04FCC0615BF15A519 ] C:\Windows\System32\drivers\tcpipreg.sys
17:29:34.0888 2420 C:\Windows\System32\drivers\tcpipreg.sys - ok
17:29:34.0904 2420 [ 0364256B4A2A93A8C8CDA6B3B5A0EFF5 ] C:\Windows\System32\wiatrace.dll
17:29:34.0904 2420 C:\Windows\System32\wiatrace.dll - ok
17:29:34.0904 2420 [ 19B07E7E8915D701225DA41CB3877306 ] C:\Windows\System32\wbem\WMIsvc.dll
17:29:34.0904 2420 C:\Windows\System32\wbem\WMIsvc.dll - ok
17:29:34.0904 2420 [ 2BACD71123F42CEA603F4E205E1AE337 ] C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
17:29:34.0904 2420 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE - ok
17:29:34.0904 2420 [ 7E7AFD841694F6AC397E99D75CEAD49D ] C:\Windows\System32\trkwks.dll
17:29:34.0904 2420 C:\Windows\System32\trkwks.dll - ok
17:29:34.0919 2420 [ 7DB5AA22A8A8E5C2D335F44853C1F6DE ] C:\Windows\System32\wbemcomn.dll
17:29:34.0919 2420 C:\Windows\System32\wbemcomn.dll - ok
17:29:34.0919 2420 [ 0255C22D99602534F15CBB8D9B6F152F ] C:\Windows\System32\wbem\WinMgmtR.dll
17:29:34.0919 2420 C:\Windows\System32\wbem\WinMgmtR.dll - ok
17:29:34.0919 2420 [ 0C52762C606BCF6A377D5E4688191A6B ] C:\Windows\System32\wbem\WmiDcPrv.dll
17:29:34.0919 2420 C:\Windows\System32\wbem\WmiDcPrv.dll - ok
17:29:34.0919 2420 [ A3F5E8EC1316C3E2562B82694A251C9E ] C:\Windows\System32\wbem\fastprox.dll
17:29:34.0919 2420 C:\Windows\System32\wbem\fastprox.dll - ok
17:29:34.0919 2420 [ B837D1528CE2E3CB79F09496BC08DDC6 ] C:\Windows\System32\SensApi.dll
17:29:34.0919 2420 C:\Windows\System32\SensApi.dll - ok
17:29:34.0935 2420 [ EE26D130808D16C0E417BBBED0451B34 ] C:\Windows\System32\ntdsapi.dll
17:29:34.0935 2420 C:\Windows\System32\ntdsapi.dll - ok
17:29:34.0935 2420 [ 93812FDC01AA864195816CD814445F95 ] C:\Program Files\Common Files\Microsoft Shared\Windows Live\SQMAPI.DLL
17:29:34.0935 2420 C:\Program Files\Common Files\Microsoft Shared\Windows Live\SQMAPI.DLL - ok
17:29:34.0935 2420 [ 666A60F6F5E719856FF6254E0966EFF7 ] C:\Windows\System32\wbem\wbemprox.dll
17:29:34.0935 2420 C:\Windows\System32\wbem\wbemprox.dll - ok
17:29:34.0935 2420 [ 5EB55F661DEBF156E126160BCD4D89F8 ] C:\Windows\System32\wbem\wbemcore.dll
17:29:34.0935 2420 C:\Windows\System32\wbem\wbemcore.dll - ok
17:29:34.0935 2420 [ 9689A9C7F7C2A1A423CDA2C3B43FFF65 ] C:\Windows\System32\wer.dll
17:29:34.0935 2420 C:\Windows\System32\wer.dll - ok
17:29:34.0950 2420 [ 7D5645EE0EA77D539828433D9B95F5EB ] C:\Windows\System32\WinSCard.dll
17:29:34.0950 2420 C:\Windows\System32\WinSCard.dll - ok
17:29:34.0950 2420 [ 087D8668C71634A3A3761135ABF16EEE ] C:\Windows\System32\wbem\esscli.dll
17:29:34.0950 2420 C:\Windows\System32\wbem\esscli.dll - ok
17:29:34.0950 2420 [ 079FD1D59EAD19270C979AF174D881A3 ] C:\ProgramData\Microsoft\IdentityCRL\production\ppcrlconfig600.dll
17:29:34.0950 2420 C:\ProgramData\Microsoft\IdentityCRL\production\ppcrlconfig600.dll - ok
17:29:34.0950 2420 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] C:\Windows\System32\drivers\srv2.sys
17:29:34.0950 2420 C:\Windows\System32\drivers\srv2.sys - ok
17:29:34.0950 2420 [ A34A587FFFD45FA649FBA6D03784D257 ] C:\Windows\System32\iphlpsvc.dll
17:29:34.0950 2420 C:\Windows\System32\iphlpsvc.dll - ok
17:29:34.0966 2420 [ 0B2D65FDDE31069299AA6330F359FF9C ] C:\Windows\System32\msxml3.dll
17:29:34.0966 2420 C:\Windows\System32\msxml3.dll - ok
17:29:34.0966 2420 [ 27B9E163740A226B65E4B9E186117911 ] C:\Windows\System32\sqmapi.dll
17:29:34.0966 2420 C:\Windows\System32\sqmapi.dll - ok
17:29:34.0966 2420 [ 7B38D7916A7CD058C16A0A6CA5077901 ] C:\Windows\System32\wdscore.dll
17:29:34.0966 2420 C:\Windows\System32\wdscore.dll - ok
17:29:34.0966 2420 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] C:\Windows\System32\drivers\srv.sys
17:29:34.0966 2420 C:\Windows\System32\drivers\srv.sys - ok
17:29:34.0982 2420 [ 718B6F51AB7F6FE2988A36868F9AD3AB ] C:\Windows\System32\wbem\wbemsvc.dll
17:29:34.0982 2420 C:\Windows\System32\wbem\wbemsvc.dll - ok
17:29:34.0982 2420 [ 03706015DB44368375AEBE6339490E66 ] C:\Windows\System32\netcfgx.dll
17:29:34.0982 2420 C:\Windows\System32\netcfgx.dll - ok
17:29:34.0982 2420 [ 3B367397320C26DBA890B260F80D1B1B ] C:\Windows\System32\hnetcfg.dll
17:29:34.0982 2420 C:\Windows\System32\hnetcfg.dll - ok
17:29:34.0982 2420 [ 2A46FFE841EC43001D5A293A54DB34DE ] C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
17:29:34.0982 2420 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE - ok
17:29:34.0982 2420 [ D9F42719019740BAA6D1C6D536CBDAA6 ] C:\Windows\System32\srvsvc.dll
17:29:34.0982 2420 C:\Windows\System32\srvsvc.dll - ok
17:29:34.0997 2420 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] C:\Windows\System32\browser.dll
17:29:34.0997 2420 C:\Windows\System32\browser.dll - ok
17:29:34.0997 2420 [ 0143DB80DACFB7C2B5B7009ED9063353 ] C:\Windows\System32\wbem\wmiutils.dll
17:29:34.0997 2420 C:\Windows\System32\wbem\wmiutils.dll - ok
17:29:34.0997 2420 [ CFEFA40DDE34659BE5211966EAD86437 ] C:\Windows\System32\netmsg.dll
17:29:34.0997 2420 C:\Windows\System32\netmsg.dll - ok
17:29:34.0997 2420 [ 0AB34456654C283DAA13B8D2BA21439B ] C:\Windows\System32\wbem\repdrvfs.dll
17:29:34.0997 2420 C:\Windows\System32\wbem\repdrvfs.dll - ok
17:29:34.0997 2420 [ FF80CAD87555E8E4D2CFD7B9058343F8 ] C:\Windows\System32\sscore.dll
17:29:34.0997 2420 C:\Windows\System32\sscore.dll - ok

17:29:35.0013 2420 [ FEB91B4DA0D540865260A33838654FA3 ] C:\Windows\System32\nci.dll
17:29:35.0013 2420 C:\Windows\System32\nci.dll - ok
17:29:35.0013 2420 [ 81749E073AC5857B044A686B406E5244 ] C:\Windows\System32\clusapi.dll
17:29:35.0013 2420 C:\Windows\System32\clusapi.dll - ok
17:29:35.0013 2420 [ 344FCC9850C3A8A3B4D3C65151AF8E4C ] C:\Windows\System32\resutils.dll
17:29:35.0013 2420 C:\Windows\System32\resutils.dll - ok
17:29:35.0013 2420 [ DDD0357A92FA843EFF8915ED17253D6C ] C:\Windows\System32\wbem\WmiPrvSD.dll
17:29:35.0013 2420 C:\Windows\System32\wbem\WmiPrvSD.dll - ok
17:29:35.0013 2420 [ D41FEBD098234F02485A4EA98D4730A4 ] C:\Windows\System32\ncobjapi.dll
17:29:35.0013 2420 C:\Windows\System32\ncobjapi.dll - ok
17:29:35.0028 2420 [ 6F40D6FB05E0C1E5402812B426971AF0 ] C:\Windows\System32\wbem\wbemess.dll
17:29:35.0028 2420 C:\Windows\System32\wbem\wbemess.dll - ok
17:29:35.0028 2420 [ 7AE92C896AF9ABFBDB18C1D055B6EBA7 ] C:\Windows\winsxs\amd64_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.4940_none_88df89932faf0bf6\msvcp80.dll
17:29:35.0028 2420 C:\Windows\winsxs\amd64_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.4940_none_88df89932faf0bf6\msvcp80.dll - ok
17:29:35.0028 2420 [ 9C963A14F955AF99F6DF0C1F5FC5AF9B ] C:\Program Files\ATI Technologies\ATI.ACE\Fuel\platform.dll
17:29:35.0028 2420 C:\Program Files\ATI Technologies\ATI.ACE\Fuel\platform.dll - ok
17:29:35.0028 2420 [ 518D71FB636A68AD95A53849EB3EE7DD ] C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Container.Wlan.dll
17:29:35.0028 2420 C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Container.Wlan.dll - ok
17:29:35.0028 2420 [ 357BE883C5236BFC7341CB9E82308908 ] C:\Windows\System32\wlanapi.dll
17:29:35.0028 2420 C:\Windows\System32\wlanapi.dll - ok
17:29:35.0044 2420 [ 7F1B4C6FF3B85F9ADF74055187B8A22C ] C:\Windows\System32\wlanutil.dll
17:29:35.0044 2420 C:\Windows\System32\wlanutil.dll - ok
17:29:35.0044 2420 [ 37C813CF6B4E892E2CDA6FEF3B871AFC ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Xml\24d1b7ccbedaa3602bae6a6acea9929e\System.Xml.ni.dll
17:29:35.0044 2420 C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Xml\24d1b7ccbedaa3602bae6a6acea9929e\System.Xml.ni.dll - ok
17:29:35.0044 2420 [ 4370B54FC11742DC5A88DC8602729459 ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Management\fd4a8227569e64d657b80483da8ffe78\System.Management.ni.dll
17:29:35.0044 2420 C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Management\fd4a8227569e64d657b80483da8ffe78\System.Management.ni.dll - ok
17:29:35.0044 2420 [ A9DA8CC5E02FF594E11A78D86D5B6A5B ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Runtime.Remo#\2a02b172fa4cf3d93ce7388b67b2a199\System.Runtime.Remoting.ni.dll
17:29:35.0044 2420 C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Runtime.Remo#\2a02b172fa4cf3d93ce7388b67b2a199\System.Runtime.Remoting.ni.dll - ok
17:29:35.0060 2420 [ 857F78A80A36BF9BE8B10D85E49CE2C4 ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Configuration\193d03ca60573c92f92d9b07fa5bc243\System.Configuration.ni.dll
17:29:35.0060 2420 C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Configuration\193d03ca60573c92f92d9b07fa5bc243\System.Configuration.ni.dll - ok
17:29:35.0060 2420 [ 022A2974F0F6EF0D9F8781E6C6EE2FB6 ] C:\Program Files (x86)\Avira\AntiVir Desktop\avwinll.dll
17:29:35.0060 2420 C:\Program Files (x86)\Avira\AntiVir Desktop\avwinll.dll - ok
17:29:35.0060 2420 [ 01BDDCB32F78945604B3A67FED497DB3 ] C:\Program Files (x86)\Avira\AntiVir Desktop\avesvc.dll
17:29:35.0060 2420 C:\Program Files (x86)\Avira\AntiVir Desktop\avesvc.dll - ok
17:29:35.0060 2420 [ C05E10AC65CE218EA116A9AF5B250E00 ] C:\Program Files (x86)\Avira\AntiVir Desktop\avesvcr.dll
17:29:35.0060 2420 C:\Program Files (x86)\Avira\AntiVir Desktop\avesvcr.dll - ok
17:29:35.0060 2420 [ BD4AB0FD9BD228FE0EC5EA83625D8FEC ] C:\Program Files (x86)\Avira\AntiVir Desktop\avshadow.exe
17:29:35.0060 2420 C:\Program Files (x86)\Avira\AntiVir Desktop\avshadow.exe - ok
17:29:35.0075 2420 [ 863F793D15B4026B1A5FDECA873D4D84 ] C:\Windows\SysWOW64\apphelp.dll
17:29:35.0075 2420 C:\Windows\SysWOW64\apphelp.dll - ok
17:29:35.0075 2420 [ 448BF22538F1DFCB3412AE2B1CF123A9 ] C:\Windows\System32\conhost.exe
17:29:35.0075 2420 C:\Windows\System32\conhost.exe - ok
17:29:35.0075 2420 [ D534EC47C6D7410495A51448C243E4C8 ] C:\Program Files (x86)\Avira\AntiVir Desktop\avipc64.dll
17:29:35.0075 2420 C:\Program Files (x86)\Avira\AntiVir Desktop\avipc64.dll - ok
17:29:35.0075 2420 [ 3754883925EA66A2ECF47747BA91B7F6 ] C:\Program Files (x86)\Avira\AntiVir Desktop\avreg.dll
17:29:35.0075 2420 C:\Program Files (x86)\Avira\AntiVir Desktop\avreg.dll - ok
17:29:35.0091 2420 [ BF1FC3F79B863C914687A737C2F3D681 ] C:\Windows\System32\wdi.dll
17:29:35.0091 2420 C:\Windows\System32\wdi.dll - ok
17:29:35.0091 2420 [ 3977D4A871CA0D4F2ED1E7DB46829731 ] C:\Windows\System32\appinfo.dll
17:29:35.0091 2420 C:\Windows\System32\appinfo.dll - ok
17:29:35.0091 2420 [ 847D3AE376C0817161A14A82C8922A9E ] C:\Windows\System32\netman.dll
17:29:35.0091 2420 C:\Windows\System32\netman.dll - ok
17:29:35.0091 2420 [ 93221146D4EBBF314C29B23CD6CC391D ] C:\Windows\System32\wpdbusenum.dll
17:29:35.0091 2420 C:\Windows\System32\wpdbusenum.dll - ok
17:29:35.0091 2420 [ E64D9EC8018C55873B40FDEE9DBEF5B3 ] C:\Windows\System32\PortableDeviceApi.dll
17:29:35.0091 2420 C:\Windows\System32\PortableDeviceApi.dll - ok
17:29:35.0106 2420 [ BF4AC709BE5BF64F331F5D67773A0C82 ] C:\Windows\System32\perftrack.dll
17:29:35.0106 2420 C:\Windows\System32\perftrack.dll - ok
17:29:35.0106 2420 [ 4449D23E8F197862F1B16F1E6C89C36C ] C:\Windows\System32\diagperf.dll
17:29:35.0106 2420 C:\Windows\System32\diagperf.dll - ok
17:29:35.0106 2420 [ 9719E3D834F5C8C43F56A93DFA497023 ] C:\Windows\System32\pnpts.dll
17:29:35.0106 2420 C:\Windows\System32\pnpts.dll - ok
17:29:35.0106 2420 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] C:\Windows\System32\IPSECSVC.DLL
17:29:35.0106 2420 C:\Windows\System32\IPSECSVC.DLL - ok
17:29:35.0106 2420 [ A42F2C1EB3B66C54FB3C7B79D30C1A6D ] C:\Windows\System32\netshell.dll
17:29:35.0106 2420 C:\Windows\System32\netshell.dll - ok
17:29:35.0122 2420 [ 46863C4CC5B68EB09EA2D5EEF0F1193A ] C:\Windows\System32\radardt.dll
17:29:35.0122 2420 C:\Windows\System32\radardt.dll - ok
17:29:35.0122 2420 [ E811F8510B133E70CF6E509FB809824F ] C:\Windows\System32\wdiasqmmodule.dll
17:29:35.0122 2420 C:\Windows\System32\wdiasqmmodule.dll - ok
17:29:35.0122 2420 [ 9BC93C9ACFA34DB5A41B89357B31E4ED ] C:\Windows\System32\FwRemoteSvr.dll
17:29:35.0122 2420 C:\Windows\System32\FwRemoteSvr.dll - ok
17:29:35.0122 2420 [ F7073C962C4FB7C415565DDE109DE49F ] C:\Windows\System32\npmproxy.dll
17:29:35.0122 2420 C:\Windows\System32\npmproxy.dll - ok
17:29:35.0122 2420 [ 025E7DBDB98866ED3CB2D4DDA70B364D ] C:\Windows\System32\runonce.exe
17:29:35.0122 2420 C:\Windows\System32\runonce.exe - ok
17:29:35.0138 2420 [ E1B22739C933BE33F53DB58C5393ADD3 ] C:\Windows\System32\Apphlpdm.dll
17:29:35.0138 2420 C:\Windows\System32\Apphlpdm.dll - ok
17:29:35.0138 2420 [ AFA79C343F9D1555F7E5D5FA70BB2A14 ] C:\Windows\System32\PortableDeviceConnectApi.dll
17:29:35.0138 2420 C:\Windows\System32\PortableDeviceConnectApi.dll - ok
17:29:35.0138 2420 [ D2155709E336C3BC15729EB87FEC6064 ] C:\Windows\System32\rasdlg.dll
17:29:35.0138 2420 C:\Windows\System32\rasdlg.dll - ok
17:29:35.0138 2420 [ 2DF29664ED261F0FC448E58F338F0671 ] C:\Windows\System32\mprapi.dll
17:29:35.0138 2420 C:\Windows\System32\mprapi.dll - ok
17:29:35.0153 2420 [ D44741F65A1D71F65814A12CF6E2400A ] C:\Windows\SysWOW64\runonce.exe
17:29:35.0153 2420 C:\Windows\SysWOW64\runonce.exe - ok
17:29:35.0153 2420 [ E629F1A051C82795DDFFD3E8D4855811 ] C:\Windows\System32\dimsjob.dll
17:29:35.0153 2420 C:\Windows\System32\dimsjob.dll - ok
17:29:35.0153 2420 [ CF8D590BE3373029D57AF80914190682 ] C:\Windows\System32\drivers\WUDFRd.sys
17:29:35.0153 2420 C:\Windows\System32\drivers\WUDFRd.sys - ok
17:29:35.0153 2420 [ 35CB97CBC3EDC463418ED4997AAB29B6 ] C:\Windows\System32\pautoenr.dll
17:29:35.0153 2420 C:\Windows\System32\pautoenr.dll - ok
17:29:35.0153 2420 [ D0FF1CA89D013B94768A289023958F6B ] C:\Windows\System32\WUDFHost.exe
17:29:35.0153 2420 C:\Windows\System32\WUDFHost.exe - ok
17:29:35.0169 2420 [ 94DFBB481BF51158B216E23C5C1C9D6E ] C:\Windows\System32\certcli.dll
17:29:35.0169 2420 C:\Windows\System32\certcli.dll - ok
17:29:35.0169 2420 [ 263B26106606A010CF877472B535E4BB ] C:\Windows\System32\CertEnroll.dll
17:29:35.0169 2420 C:\Windows\System32\CertEnroll.dll - ok
17:29:35.0169 2420 [ 1950B1C38AED4154BA79F77E36494D8A ] C:\Windows\System32\WUDFx.dll
17:29:35.0169 2420 C:\Windows\System32\WUDFx.dll - ok
17:29:35.0169 2420 [ 91D6F0AB79AA36FFB932157865206F35 ] C:\Windows\System32\drivers\UMDF\WpdFs.dll
17:29:35.0169 2420 C:\Windows\System32\drivers\UMDF\WpdFs.dll - ok
17:29:35.0169 2420 [ 10FB16B50AFFDA6D44588F3C445DC273 ] C:\Windows\SysWOW64\setupapi.dll
17:29:35.0169 2420 C:\Windows\SysWOW64\setupapi.dll - ok
17:29:35.0184 2420 [ 9864D52F15AD32094A636C6B5281D9E7 ] C:\Windows\System32\WMVCORE.DLL
17:29:35.0184 2420 C:\Windows\System32\WMVCORE.DLL - ok
17:29:35.0184 2420 [ 2EEFF4502F5E13B1BED4A04CCAD64C08 ] C:\Windows\SysWOW64\devobj.dll
17:29:35.0184 2420 C:\Windows\SysWOW64\devobj.dll - ok
17:29:35.0184 2420 [ 12C45E3CB6D65F73209549E2D02ECA7A ] C:\Windows\SysWOW64\propsys.dll
17:29:35.0184 2420 C:\Windows\SysWOW64\propsys.dll - ok
17:29:35.0184 2420 [ 3FD15B4611D9BDA3F8013548C0ECAECA ] C:\Windows\SysWOW64\ntmarta.dll
17:29:35.0184 2420 C:\Windows\SysWOW64\ntmarta.dll - ok
17:29:35.0184 2420 [ A8BB45F9ECAD993461E0FEF8E2A99152 ] C:\Windows\SysWOW64\Wldap32.dll
17:29:35.0184 2420 C:\Windows\SysWOW64\Wldap32.dll - ok
17:29:35.0200 2420 [ AACC48FE239F0DF126DA2F28930A5B83 ] C:\Windows\System32\WMASF.DLL
17:29:35.0200 2420 C:\Windows\System32\WMASF.DLL - ok
17:29:35.0200 2420 [ 9FAC0F6D5F3D922DB294E30CD3F62369 ] C:\Windows\SysWOW64\urlmon.dll
17:29:35.0200 2420 C:\Windows\SysWOW64\urlmon.dll - ok
17:29:35.0200 2420 [ 389CA818132C1D7DCF0C791E8D9035DE ] C:\Windows\System32\PortableDeviceClassExtension.dll
17:29:35.0200 2420 C:\Windows\System32\PortableDeviceClassExtension.dll - ok
17:29:35.0200 2420 [ EB8A00E8E9931A7EC04F920B09D880D8 ] C:\Windows\SysWOW64\iertutil.dll
17:29:35.0200 2420 C:\Windows\SysWOW64\iertutil.dll - ok
17:29:35.0216 2420 [ 4F3CD1C59EA71401E155C432BCECE180 ] C:\Windows\System32\PortableDeviceTypes.dll
17:29:35.0216 2420 C:\Windows\System32\PortableDeviceTypes.dll - ok
17:29:35.0216 2420 [ 5553611E2F9EA6F613079177F1233068 ] C:\Windows\SysWOW64\wininet.dll
17:29:35.0216 2420 C:\Windows\SysWOW64\wininet.dll - ok
17:29:35.0216 2420 [ F93674263F6B07C77956E966953242D9 ] C:\Windows\SysWOW64\secur32.dll
17:29:35.0216 2420 C:\Windows\SysWOW64\secur32.dll - ok
17:29:35.0216 2420 [ AD7B9C14083B52BC532FBA5948342B98 ] C:\Windows\SysWOW64\cmd.exe
17:29:35.0216 2420 C:\Windows\SysWOW64\cmd.exe - ok
17:29:35.0216 2420 [ 4B78B431F225FD8624C5655CB1DE7B61 ] C:\Windows\System32\aelupsvc.dll
17:29:35.0216 2420 C:\Windows\System32\aelupsvc.dll - ok
17:29:35.0231 2420 [ 326C7F76A29897A892AA7726E91C1C67 ] C:\Windows\SysWOW64\winbrand.dll
17:29:35.0231 2420 C:\Windows\SysWOW64\winbrand.dll - ok
17:29:35.0231 2420 [ 0BA3F31E2B4D8D99DF8DD19E81155374 ] C:\Windows\SysWOW64\ieframe.dll
17:29:35.0231 2420 C:\Windows\SysWOW64\ieframe.dll - ok
17:29:35.0231 2420 [ BE247AE996A9FDE007A27B51413A6C79 ] C:\Windows\SysWOW64\shdocvw.dll
17:29:35.0231 2420 C:\Windows\SysWOW64\shdocvw.dll - ok
17:29:35.0231 2420 [ 9ED9F21D73F9D71E30EAB71835E656EB ] C:\Users\Malachi\AppData\Local\Temp\4712788A-8C96-471D-A643-2DE2DC8DBEF2.exe
17:29:35.0231 2420 C:\Users\Malachi\AppData\Local\Temp\4712788A-8C96-471D-A643-2DE2DC8DBEF2.exe - ok
17:29:35.0231 2420 [ 591FE0A6CEB19BF886CEB1331F591940 ] C:\Windows\SysWOW64\ncrypt.dll
17:29:35.0231 2420 C:\Windows\SysWOW64\ncrypt.dll - ok
17:29:35.0247 2420 [ CE71B9119A258EDD0A05B37D7B0F92E3 ] C:\Windows\SysWOW64\bcrypt.dll
17:29:35.0247 2420 C:\Windows\SysWOW64\bcrypt.dll - ok
17:29:35.0247 2420 [ E8449FE262D7406BCB2AC2A45C53EC5F ] C:\Windows\SysWOW64\bcryptprimitives.dll
17:29:35.0247 2420 C:\Windows\SysWOW64\bcryptprimitives.dll - ok
17:29:35.0247 2420 [ 1097F3035BAF46CED8B332B3564C5108 ] C:\Windows\SysWOW64\gpapi.dll
17:29:35.0247 2420 C:\Windows\SysWOW64\gpapi.dll - ok
17:29:35.0247 2420 [ 6316957BB3431DFB06BFFA98C0F1926E ] C:\Windows\SysWOW64\cryptnet.dll
17:29:35.0247 2420 C:\Windows\SysWOW64\cryptnet.dll - ok
17:29:35.0247 2420 [ 6F8E3B7B70E1BBA871212940C1FBDF60 ] C:\Windows\SysWOW64\SensApi.dll
17:29:35.0247 2420 C:\Windows\SysWOW64\SensApi.dll - ok
17:29:35.0262 2420 [ CA9F7888B524D8100B977C81F44C3234 ] C:\Windows\SysWOW64\winhttp.dll
17:29:35.0262 2420 C:\Windows\SysWOW64\winhttp.dll - ok
17:29:35.0262 2420 [ FB19FC5951A88F3C523E35C2C98D23C0 ] C:\Windows\SysWOW64\webio.dll
17:29:35.0262 2420 C:\Windows\SysWOW64\webio.dll - ok
17:29:35.0262 2420 [ 4E5FE39C1076D115EC8BFCFE14D75B80 ] C:\Windows\SysWOW64\credssp.dll
17:29:35.0262 2420 C:\Windows\SysWOW64\credssp.dll - ok
17:29:35.0262 2420 [ 8999B8631C7FD9F7F9EC3CAFD953BA24 ] C:\Windows\SysWOW64\mswsock.dll
17:29:35.0262 2420 C:\Windows\SysWOW64\mswsock.dll - ok
17:29:35.0262 2420 [ EE5C8E27C37B79CB54A2FCEEED2DC262 ] C:\Windows\SysWOW64\WSHTCPIP.DLL
17:29:35.0262 2420 C:\Windows\SysWOW64\WSHTCPIP.DLL - ok
17:29:35.0278 2420 [ 73E8667A19FEEDD856DF2695E9E511D4 ] C:\Windows\SysWOW64\wship6.dll
17:29:35.0278 2420 C:\Windows\SysWOW64\wship6.dll - ok
17:29:35.0278 2420 [ 29CA5974FAB0E8AE4AA7814FE05CF832 ] C:\Windows\SysWOW64\dhcpcsvc6.dll
17:29:35.0278 2420 C:\Windows\SysWOW64\dhcpcsvc6.dll - ok
17:29:35.0278 2420 [ 9A85ABCE0FDD1AF8E79E731EB0B679F3 ] C:\Windows\SysWOW64\dhcpcsvc.dll
17:29:35.0278 2420 C:\Windows\SysWOW64\dhcpcsvc.dll - ok
17:29:35.0278 2420 [ B40420876B9288E0A1C8CCA8A84E5DC9 ] C:\Windows\SysWOW64\dnsapi.dll
17:29:35.0278 2420 C:\Windows\SysWOW64\dnsapi.dll - ok
17:29:35.0294 2420 [ 12B79422A23814429CDA9E734C58F78F ] C:\Program Files (x86)\Common Files\microsoft shared\Windows Live\WLIDNSP.DLL
17:29:35.0294 2420 C:\Program Files (x86)\Common Files\microsoft shared\Windows Live\WLIDNSP.DLL - ok
17:29:35.0294 2420 [ ED6EE83D61EBC683C2CD8E899EA6FEBE ] C:\Windows\SysWOW64\rasadhlp.dll
17:29:35.0294 2420 C:\Windows\SysWOW64\rasadhlp.dll - ok
17:29:35.0294 2420 [ 1DB71A41DAEE6B3F8CD0DDA8209FA2D5 ] C:\Windows\SysWOW64\WindowsCodecs.dll
17:29:35.0294 2420 C:\Windows\SysWOW64\WindowsCodecs.dll - ok
17:29:35.0294 2420 [ 846D0E4DB261CFAF363902E41498E961 ] C:\Windows\SysWOW64\EhStorShell.dll
17:29:35.0294 2420 C:\Windows\SysWOW64\EhStorShell.dll - ok
17:29:35.0294 2420 [ 03F3B770DFBED6131653CEDA8CA780F0 ] C:\Windows\SysWOW64\ntshrui.dll
17:29:35.0294 2420 C:\Windows\SysWOW64\ntshrui.dll - ok
17:29:35.0294 2420 [ 465BEA35F7ED4A4A57686DEA7EA10F47 ] C:\Windows\SysWOW64\cscapi.dll
17:29:35.0294 2420 C:\Windows\SysWOW64\cscapi.dll - ok
17:29:35.0309 2420 [ 5CCDCD40E732D54E0F7451AC66AC1C87 ] C:\Windows\SysWOW64\srvcli.dll
17:29:35.0309 2420 C:\Windows\SysWOW64\srvcli.dll - ok
17:29:35.0309 2420 [ 8B74CEC6980D4816B0037AE9A27E538F ] C:\Windows\SysWOW64\slc.dll
17:29:35.0309 2420 C:\Windows\SysWOW64\slc.dll - ok
17:29:35.0309 2420 [ 827CB0D6C3F8057EA037FF271F8E9795 ] C:\Windows\SysWOW64\imageres.dll
17:29:35.0309 2420 C:\Windows\SysWOW64\imageres.dll - ok
17:29:35.0309 2420 [ 522B0466ED967A0762E9AF5B37D8F40A ] C:\Windows\System32\esent.dll
17:29:35.0309 2420 C:\Windows\System32\esent.dll - ok
17:29:35.0325 2420 [ 220159496484D34009DE71CA1A68E0D4 ] C:\Windows\System32\wbem\NCProv.dll
17:29:35.0325 2420 C:\Windows\System32\wbem\NCProv.dll - ok
17:29:35.0325 2420 [ 1EA7969E3271CBC59E1730697DC74682 ] C:\Windows\System32\qmgr.dll
17:29:35.0325 2420 C:\Windows\System32\qmgr.dll - ok
17:29:35.0325 2420 [ 29409ED7400CA5BCCC30C0EE5147A60D ] C:\Windows\System32\bitsperf.dll
17:29:35.0325 2420 C:\Windows\System32\bitsperf.dll - ok
17:29:35.0325 2420 [ D9431DCF90B0253773F51FDEFE7FD42F ] C:\Windows\System32\bitsigd.dll
17:29:35.0325 2420 C:\Windows\System32\bitsigd.dll - ok
17:29:35.0325 2420 [ 96DB78C9C50CEED9DA5050EFFEE272A2 ] C:\Windows\System32\upnp.dll
17:29:35.0325 2420 C:\Windows\System32\upnp.dll - ok
17:29:35.0340 2420 [ C5A75EB48E2344ABDC162BDA79E16841 ] C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
17:29:35.0340 2420 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe - ok
17:29:35.0340 2420 [ E5F7C30EDF0892667933BE879F067D67 ] C:\Windows\SysWOW64\msvcr100_clr0400.dll
17:29:35.0340 2420 C:\Windows\SysWOW64\msvcr100_clr0400.dll - ok
17:29:35.0340 2420 [ D83947A58613E9091B4C9CC0F1546A8D ] C:\Windows\SysWOW64\mscoree.dll
17:29:35.0340 2420 C:\Windows\SysWOW64\mscoree.dll - ok
17:29:35.0340 2420 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] C:\Windows\System32\ssdpsrv.dll
17:29:35.0340 2420 C:\Windows\System32\ssdpsrv.dll - ok
17:29:35.0340 2420 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
17:29:35.0340 2420 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe - ok
17:29:35.0356 2420 [ CB21CD39637AC13F3455454B2F648257 ] C:\Windows\System32\msvcr100_clr0400.dll
17:29:35.0356 2420 C:\Windows\System32\msvcr100_clr0400.dll - ok
17:29:35.0356 2420 [ 5C4CB4086FB83115B153E47ADD961A0C ] C:\Windows\System32\FntCache.dll
17:29:35.0356 2420 C:\Windows\System32\FntCache.dll - ok
17:29:35.0356 2420 [ E17E0188BB90FAE42D83E98707EFA59C ] C:\Windows\System32\sppsvc.exe
17:29:35.0356 2420 C:\Windows\System32\sppsvc.exe - ok
17:29:35.0356 2420 [ FFF95479C7AB1550F0750A5D01744211 ] C:\Windows\System32\drivers\spsys.sys
17:29:35.0356 2420 C:\Windows\System32\drivers\spsys.sys - ok
17:29:35.0356 2420 [ F6F22291024906E43D135A4B1705FEAC ] C:\Windows\System32\sppwinob.dll
17:29:35.0356 2420 C:\Windows\System32\sppwinob.dll - ok
17:29:35.0372 2420 [ CF318F60A84F15AF352439465A8D05F4 ] C:\Program Files\Windows Defender\MpSvc.dll
17:29:35.0372 2420 C:\Program Files\Windows Defender\MpSvc.dll - ok
17:29:35.0372 2420 [ ADF3E771F429940E762AC097F5A54EAF ] C:\Program Files\Windows Defender\MpClient.dll
17:29:35.0372 2420 C:\Program Files\Windows Defender\MpClient.dll - ok
17:29:35.0372 2420 [ A7A8CA53D9C9FD90C07AB0EB38E5316B ] C:\Windows\System32\dbghelp.dll
17:29:35.0372 2420 C:\Windows\System32\dbghelp.dll - ok
17:29:35.0372 2420 [ E8B1FE6669397D1772D8196DF0E57A9E ] C:\Windows\System32\wscsvc.dll
17:29:35.0372 2420 C:\Windows\System32\wscsvc.dll - ok
17:29:35.0387 2420 [ E0B340996A41C9A75DFA3B99BBA9C500 ] C:\Windows\System32\SearchIndexer.exe
17:29:35.0387 2420 C:\Windows\System32\SearchIndexer.exe - ok
17:29:35.0387 2420 [ FE05D03B73000CFF476E1D29109F3A84 ] C:\Program Files\Windows Defender\MpEvMsg.dll
17:29:35.0387 2420 C:\Program Files\Windows Defender\MpEvMsg.dll - ok
17:29:35.0387 2420 [ 92E0508D924512F63FFEEFE498CBD11F ] C:\Windows\System32\p2pcollab.dll
17:29:35.0387 2420 C:\Windows\System32\p2pcollab.dll - ok
17:29:35.0387 2420 [ 589DF683A6C81424A6CECE52ABF98A50 ] C:\Windows\System32\tquery.dll
17:29:35.0387 2420 C:\Windows\System32\tquery.dll - ok
17:29:35.0387 2420 [ 582AC6D9873E31DFA28A4547270862DD ] C:\Windows\System32\QAGENTRT.DLL
17:29:35.0387 2420 C:\Windows\System32\QAGENTRT.DLL - ok
17:29:35.0403 2420 [ 506A83A3BEEE9FCA09F0170DE9FC7D1B ] C:\Windows\System32\fveui.dll
17:29:35.0403 2420 C:\Windows\System32\fveui.dll - ok
17:29:35.0403 2420 [ 7568CC720ACE4D03B84AF97817E745EF ] C:\Windows\System32\mssrch.dll
17:29:35.0403 2420 C:\Windows\System32\mssrch.dll - ok
17:29:35.0403 2420 [ C47F35CC6FA4F1BDBEF8F87AC1A46537 ] C:\Windows\System32\wuapi.dll
17:29:35.0403 2420 C:\Windows\System32\wuapi.dll - ok
17:29:35.0403 2420 [ FA43D418BC945D27D0625B697B8442B5 ] C:\Windows\System32\cabinet.dll
17:29:35.0403 2420 C:\Windows\System32\cabinet.dll - ok
17:29:35.0403 2420 [ 3121A79D13A61562BE9CC902CD46B542 ] C:\Windows\System32\msidle.dll
17:29:35.0403 2420 C:\Windows\System32\msidle.dll - ok
17:29:35.0418 2420 [ E746ED90132C6B6313CE9179F56BD31D ] C:\Windows\System32\wups.dll
17:29:35.0418 2420 C:\Windows\System32\wups.dll - ok
17:29:35.0418 2420 [ 2B373B5F7E36B5ED5DA176D4400EF091 ] C:\Windows\System32\sppobjs.dll
17:29:35.0418 2420 C:\Windows\System32\sppobjs.dll - ok
17:29:35.0418 2420 [ 4FDFA3F219692D17011BF1B428857C1E ] C:\Program Files\Windows Defender\MpRTP.dll
17:29:35.0418 2420 C:\Program Files\Windows Defender\MpRTP.dll - ok
17:29:35.0418 2420 [ FBD879D17B26D49DD7A48FF58062FAE6 ] C:\Windows\System32\tdh.dll
17:29:35.0418 2420 C:\Windows\System32\tdh.dll - ok
17:29:35.0418 2420 [ 78555E35CD15785B9EE62B8C8167A861 ] C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{D81278CC-DD79-4C2D-8AC7-EA917E42FBAD}\mpengine.dll
17:29:35.0418 2420 C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{D81278CC-DD79-4C2D-8AC7-EA917E42FBAD}\mpengine.dll - ok
17:29:35.0434 2420 [ 8BE5B9C034415C5E4232F109E514A49A ] C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{D81278CC-DD79-4C2D-8AC7-EA917E42FBAD}\mpasbase.vdm
17:29:35.0434 2420 C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{D81278CC-DD79-4C2D-8AC7-EA917E42FBAD}\mpasbase.vdm - ok
17:29:35.0434 2420 [ 4BA9CDF0463BEDFC8DE9EC5F605B5C7A ] C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{D81278CC-DD79-4C2D-8AC7-EA917E42FBAD}\mpasdlta.vdm
17:29:35.0434 2420 C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{D81278CC-DD79-4C2D-8AC7-EA917E42FBAD}\mpasdlta.vdm - ok
17:29:35.0434 2420 [ C9FB9038B15036CA28CF0B4BE2BED9BD ] C:\Windows\System32\en-US\tquery.dll.mui
17:29:35.0434 2420 C:\Windows\System32\en-US\tquery.dll.mui - ok
17:29:35.0434 2420 [ 769765CE2CC62867468CEA93969B2242 ] C:\Windows\System32\drivers\asyncmac.sys
17:29:35.0434 2420 C:\Windows\System32\drivers\asyncmac.sys - ok
17:29:35.0450 2420 [ 3E2F07867A8D51553DFF8CF008CD0C26 ] C:\Program Files (x86)\Avira\AntiVir Desktop\avwsc.exe
17:29:35.0450 2420 C:\Program Files (x86)\Avira\AntiVir Desktop\avwsc.exe - ok
17:29:35.0450 2420 [ F3DE10AABD5C7A1A186C9966F037D0C0 ] C:\Windows\SysWOW64\mfc100u.dll
17:29:35.0450 2420 C:\Windows\SysWOW64\mfc100u.dll - ok
17:29:35.0450 2420 [ BDAC1AA64495D0F7E1FF810EBBF1F018 ] C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.17514_none_ec83dffa859149af\comctl32.dll
17:29:35.0450 2420 C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.17514_none_ec83dffa859149af\comctl32.dll - ok
17:29:35.0450 2420 [ 2A2C442F00B45E01D4C882EEA69A01BC ] C:\Windows\SysWOW64\mfc100enu.dll
17:29:35.0450 2420 C:\Windows\SysWOW64\mfc100enu.dll - ok
17:29:35.0450 2420 [ DB7F445E3A62F96B8E5B4B61BCFFD22E ] C:\Program Files (x86)\Avira\AntiVir Desktop\ccguard.dll
17:29:35.0450 2420 C:\Program Files (x86)\Avira\AntiVir Desktop\ccguard.dll - ok
17:29:35.0465 2420 [ 7717F84F483002815490033BF069DABD ] C:\Windows\winsxs\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.17825_none_72d273598668a06b\GdiPlus.dll
17:29:35.0465 2420 C:\Windows\winsxs\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.17825_none_72d273598668a06b\GdiPlus.dll - ok
17:29:35.0465 2420 [ 0915EF55171347230E465C98FA44DDED ] C:\Program Files (x86)\Avira\AntiVir Desktop\ccwkrlib.dll
17:29:35.0465 2420 C:\Program Files (x86)\Avira\AntiVir Desktop\ccwkrlib.dll - ok
17:29:35.0465 2420 [ 2FCA0D2C59A855C54BAFA22AA329DF0F ] C:\Windows\SysWOW64\netapi32.dll
17:29:35.0465 2420 C:\Windows\SysWOW64\netapi32.dll - ok
17:29:35.0465 2420 [ 20B3934DB73EABA2B49B7177873CB81F ] C:\Windows\SysWOW64\netutils.dll
17:29:35.0465 2420 C:\Windows\SysWOW64\netutils.dll - ok
17:29:35.0465 2420 [ E5A4A1326A02F8E7B59E6C3270CE7202 ] C:\Windows\SysWOW64\wkscli.dll
17:29:35.0465 2420 C:\Windows\SysWOW64\wkscli.dll - ok
17:29:35.0481 2420 [ 521B748A7F9923302CA18B7E6AA2EEAE ] C:\Windows\SysWOW64\activeds.dll
17:29:35.0481 2420 C:\Windows\SysWOW64\activeds.dll - ok
17:29:35.0481 2420 [ 72910F1DEB838E6E08A9017BFB7D4F0B ] C:\Windows\SysWOW64\browcli.dll
17:29:35.0481 2420 C:\Windows\SysWOW64\browcli.dll - ok
17:29:35.0481 2420 [ 8EA53101FF2B15BDFF934B62A8FB326D ] C:\Windows\SysWOW64\logoncli.dll
17:29:35.0481 2420 C:\Windows\SysWOW64\logoncli.dll - ok
17:29:35.0481 2420 [ 51F5CC1E7DA3D9C664C2D0D61F315E06 ] C:\Windows\SysWOW64\adsldpc.dll
17:29:35.0481 2420 C:\Windows\SysWOW64\adsldpc.dll - ok
17:29:35.0496 2420 [ F10E5311E5093FA3C00FF88C54C32FCA ] C:\Windows\SysWOW64\atl.dll
17:29:35.0496 2420 C:\Windows\SysWOW64\atl.dll - ok
17:29:35.0496 2420 [ 126B2F509341C36D99BD15188592123A ] C:\Program Files (x86)\Avira\AntiVir Desktop\ccgrdrc.dll
17:29:35.0496 2420 C:\Program Files (x86)\Avira\AntiVir Desktop\ccgrdrc.dll - ok
17:29:35.0496 2420 [ 7E6BA46E48A45DBAD5AADE3510598BDD ] C:\Program Files (x86)\Avira\AntiVir Desktop\ccgrdw.dll
17:29:35.0496 2420 C:\Program Files (x86)\Avira\AntiVir Desktop\ccgrdw.dll - ok
17:29:35.0496 2420 [ A8CDF3768604FF95B54669E20053D569 ] C:\Windows\SysWOW64\wscapi.dll
17:29:35.0496 2420 C:\Windows\SysWOW64\wscapi.dll - ok
17:29:35.0496 2420 [ 8258362DDB18B644A82D8B5061AD9426 ] C:\Windows\SysWOW64\wscisvif.dll
17:29:35.0496 2420 C:\Windows\SysWOW64\wscisvif.dll - ok
17:29:35.0512 2420 [ 7DF186D86CF8C571A12AAB788C777F84 ] C:\Windows\SysWOW64\wscproxystub.dll
17:29:35.0512 2420 C:\Windows\SysWOW64\wscproxystub.dll - ok
17:29:35.0512 2420 [ D9E21CBF9E6A87847AFFD39EA3FA28EE ] C:\Windows\System32\SearchProtocolHost.exe
17:29:35.0512 2420 C:\Windows\System32\SearchProtocolHost.exe - ok
17:29:35.0512 2420 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] C:\Windows\System32\wuaueng.dll
17:29:35.0512 2420 C:\Windows\System32\wuaueng.dll - ok
17:29:35.0512 2420 [ D2A5B2B09F2AF5ED13BF494508B09788 ] C:\Windows\System32\msshooks.dll
17:29:35.0512 2420 C:\Windows\System32\msshooks.dll - ok
17:29:35.0512 2420 [ 49A3AD5CE578CD77F445F3D244AEAB2D ] C:\Windows\System32\SearchFilterHost.exe
17:29:35.0512 2420 C:\Windows\System32\SearchFilterHost.exe - ok
17:29:35.0528 2420 [ 617F6EC0AC677C685479C1D0D1E76C6F ] C:\Windows\System32\mspatcha.dll
17:29:35.0528 2420 C:\Windows\System32\mspatcha.dll - ok
17:29:35.0528 2420 [ ACE1BB07E0377E37A2C514CD2EC119B1 ] C:\Windows\System32\mssprxy.dll
17:29:35.0528 2420 C:\Windows\System32\mssprxy.dll - ok
17:29:35.0528 2420 [ 48041BAEB60CE5F34F13CC2A1361E49C ] C:\Windows\System32\mssph.dll
17:29:35.0528 2420 C:\Windows\System32\mssph.dll - ok
17:29:35.0528 2420 [ 8F4BB0CFECED925D440ABC2481278360 ] C:\Windows\System32\mapi32.dll
17:29:35.0528 2420 C:\Windows\System32\mapi32.dll - ok
17:29:35.0528 2420 [ 7FE0D0C8F53735EA17C9AE93EFE7AD5A ] C:\Windows\System32\wups2.dll
17:29:35.0528 2420 C:\Windows\System32\wups2.dll - ok
17:29:35.0543 2420 [ 93BB66044FA76734E882C6F3E8EE1900 ] C:\Program Files\Windows Defender\MsMpLics.dll
17:29:35.0543 2420 C:\Program Files\Windows Defender\MsMpLics.dll - ok
17:29:35.0543 2420 [ 218A400108F280428FA22282D3268BBC ] C:\Windows\System32\wscapi.dll
17:29:35.0543 2420 C:\Windows\System32\wscapi.dll - ok
17:29:35.0543 2420 [ B84E2D174DC84916A536572BB8F691A8 ] C:\Windows\System32\wscisvif.dll
17:29:35.0543 2420 C:\Windows\System32\wscisvif.dll - ok
17:29:35.0543 2420 [ 6C1E3C43B35268C17833244C8ED96430 ] C:\Windows\System32\wscproxystub.dll
17:29:35.0543 2420 C:\Windows\System32\wscproxystub.dll - ok
17:29:35.0559 2420 [ 619A67C9F617B7E69315BB28ECD5E1DF ] C:\Windows\System32\wbem\WmiPrvSE.exe
17:29:35.0559 2420 C:\Windows\System32\wbem\WmiPrvSE.exe - ok
17:29:35.0559 2420 [ 6607C2182C6A53ED983813AFE2F85768 ] C:\Windows\System32\wbem\cimwin32.dll
17:29:35.0559 2420 C:\Windows\System32\wbem\cimwin32.dll - ok
17:29:35.0559 2420 [ 1484B9EBF567346582DE571B0E164AE0 ] C:\Windows\System32\framedynos.dll
17:29:35.0559 2420 C:\Windows\System32\framedynos.dll - ok
17:29:35.0559 2420 [ 0D893F8D145D3B125B0226727C243A69 ] C:\Windows\System32\security.dll
17:29:35.0559 2420 C:\Windows\System32\security.dll - ok
17:29:35.0559 2420 [ 012787CEB35505EB78DF82E0A0072888 ] C:\Windows\System32\browcli.dll
17:29:35.0559 2420 C:\Windows\System32\browcli.dll - ok
17:29:35.0559 2420 [ C4BFE4B61086416B0529212F92BCE081 ] C:\Windows\System32\schedcli.dll
17:29:35.0559 2420 C:\Windows\System32\schedcli.dll - ok
17:29:35.0574 2420 [ 5EA9A0950F322BFA382AF277801C0307 ] C:\Windows\System32\wbem\wmipcima.dll
17:29:35.0574 2420 C:\Windows\System32\wbem\wmipcima.dll - ok
17:29:35.0574 2420 [ C00DB14550E4BD49737F311C644E45FF ] C:\Windows\System32\wmi.dll
17:29:35.0574 2420 C:\Windows\System32\wmi.dll - ok
17:29:35.0574 2420 [ B6D6886149573278CBA6ABD44C4317F5 ] C:\Windows\System32\slwga.dll
17:29:35.0574 2420 C:\Windows\System32\slwga.dll - ok
17:29:35.0574 2420 [ DB76DB15EFC6E4D1153A6C5BC895948D ] C:\Windows\System32\sppc.dll
17:29:35.0574 2420 C:\Windows\System32\sppc.dll - ok
17:29:35.0590 2420 [ 5EB6E9C8BE1ACC5830780E0F9A846255 ] C:\Windows\System32\msi.dll
17:29:35.0590 2420 C:\Windows\System32\msi.dll - ok
17:29:35.0590 2420 [ 773212B2AAA24C1E31F10246B15B276C ] C:\Windows\servicing\TrustedInstaller.exe
17:29:35.0590 2420 C:\Windows\servicing\TrustedInstaller.exe - ok
17:29:35.0590 2420 [ 288ADDED26C80FDC135CAB4340161686 ] C:\Windows\winsxs\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_6.1.7601.17592_none_672ce6c3de2cb17f\CbsCore.dll
17:29:35.0590 2420 C:\Windows\winsxs\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_6.1.7601.17592_none_672ce6c3de2cb17f\CbsCore.dll - ok
17:29:35.0590 2420 [ 6369F960C28A16F4502C480EEDE3652C ] C:\Windows\System32\dpx.dll
17:29:35.0590 2420 C:\Windows\System32\dpx.dll - ok
17:29:35.0590 2420 [ 7957A194B8421BC070FABBF1C55DB68B ] C:\Windows\winsxs\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_6.1.7601.17592_none_672ce6c3de2cb17f\wcp.dll
17:29:35.0590 2420 C:\Windows\winsxs\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_6.1.7601.17592_none_672ce6c3de2cb17f\wcp.dll - ok
17:29:35.0606 2420 [ 9297F004FCE79FB7B26DAC6968FB5FEB ] C:\Windows\winsxs\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_6.1.7601.17592_none_672ce6c3de2cb17f\DrUpdate.dll
17:29:35.0606 2420 C:\Windows\winsxs\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_6.1.7601.17592_none_672ce6c3de2cb17f\DrUpdate.dll - ok
17:29:35.0606 2420 [ B7AC66C1CCD87D7C49256B5451DED4FA ] C:\Windows\System32\spp.dll
17:29:35.0606 2420 C:\Windows\System32\spp.dll - ok
17:29:35.0606 2420 [ FC6C5D860CDB82411DA626821201BDF0 ] C:\Windows\System32\srclient.dll
17:29:35.0606 2420 C:\Windows\System32\srclient.dll - ok
17:29:35.0606 2420 [ 6685DD5CC357D45EEE30FD089E8A111A ] C:\Windows\System32\sxsstore.dll
17:29:35.0606 2420 C:\Windows\System32\sxsstore.dll - ok
17:29:35.0606 2420 [ 943F48CC3A59169E52A054946C2F59B8 ] C:\Windows\winsxs\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_6.1.7601.17592_none_672ce6c3de2cb17f\wrpint.dll
17:29:35.0606 2420 C:\Windows\winsxs\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_6.1.7601.17592_none_672ce6c3de2cb17f\wrpint.dll - ok
17:29:35.0621 2420 [ D485D1BE97777617B186FC8095F58421 ] C:\Windows\servicing\CbsApi.dll
17:29:35.0621 2420 C:\Windows\servicing\CbsApi.dll - ok
17:29:35.0621 2420 [ 5FBD7BEC6CD3DCAA6A87A7F70CE8AF44 ] C:\Windows\System32\advpack.dll
17:29:35.0621 2420 C:\Windows\System32\advpack.dll - ok
17:29:35.0621 2420 [ 005247E3057BC5D5C3F8C6F886FFC10C ] C:\Windows\System32\wbem\WMIADAP.exe
17:29:35.0621 2420 C:\Windows\System32\wbem\WMIADAP.exe - ok
17:29:35.0621 2420 [ 9FE3ED67345F0FF829A4A53B90E09672 ] C:\Windows\System32\loadperf.dll
17:29:35.0621 2420 C:\Windows\System32\loadperf.dll - ok
17:29:35.0621 2420 [ CDEBD55FFBDA3889AA2A8CE52B9DC097 ] C:\Windows\System32\sdclt.exe
17:29:35.0621 2420 C:\Windows\System32\sdclt.exe - ok
17:29:35.0637 2420 [ 8CE1C165396F2453012B3E23ADD9DF76 ] C:\Windows\System32\ReAgent.dll
17:29:35.0637 2420 C:\Windows\System32\ReAgent.dll - ok
17:29:35.0637 2420 [ 11C405A2DCF38E098316FD904A4FB662 ] C:\Windows\System32\sdengin2.dll
17:29:35.0637 2420 C:\Windows\System32\sdengin2.dll - ok
17:29:35.0637 2420 [ B24450E38722F69F338533A36ECFFC29 ] C:\Windows\System32\RacEngn.dll
17:29:35.0637 2420 C:\Windows\System32\RacEngn.dll - ok
17:29:35.0637 2420 [ AA61A7047E854A9E914FDD17C2F35675 ] C:\Windows\System32\sqlceoledb30.dll
17:29:35.0637 2420 C:\Windows\System32\sqlceoledb30.dll - ok
17:29:35.0652 2420 [ 9C75CB8B98610F0CD85D99BB5876308B ] C:\Windows\System32\sqlcese30.dll
17:29:35.0652 2420 C:\Windows\System32\sqlcese30.dll - ok
17:29:35.0652 2420 [ E5744D18C88737C6356D0A8D6D49D512 ] C:\Windows\System32\sqlceqp30.dll
17:29:35.0652 2420 C:\Windows\System32\sqlceqp30.dll - ok
17:29:35.0652 2420 [ 021287C2050FD5DB4A8B084E2C38139C ] C:\Windows\System32\WinSATAPI.dll
17:29:35.0652 2420 C:\Windows\System32\WinSATAPI.dll - ok
17:29:35.0652 2420 [ 41DF7355A5A907E2C1D7804EC028965D ] C:\Windows\System32\wermgr.exe
17:29:35.0652 2420 C:\Windows\System32\wermgr.exe - ok
17:29:35.0652 2420 [ DD81D91FF3B0763C392422865C9AC12E ] C:\Windows\System32\rundll32.exe
17:29:35.0652 2420 C:\Windows\System32\rundll32.exe - ok
17:29:35.0668 2420 [ F9959237F106F2B2609E61A290C0652E ] C:\Windows\System32\werconcpl.dll
17:29:35.0668 2420 C:\Windows\System32\werconcpl.dll - ok
17:29:35.0668 2420 [ 7E591867422DC788B9E5BD337A669A08 ] C:\Windows\System32\wercplsupport.dll
17:29:35.0668 2420 C:\Windows\System32\wercplsupport.dll - ok
17:29:35.0668 2420 [ AC61CBEF0376F080588968476D063D45 ] C:\Windows\winsxs\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_6.1.7601.17592_none_672ce6c3de2cb17f\smipi.dll
17:29:35.0668 2420 C:\Windows\winsxs\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_6.1.7601.17592_none_672ce6c3de2cb17f\smipi.dll - ok
17:29:35.0668 2420 [ C5D0AEC12FED8323E1AE2E40C129F2D6 ] C:\Windows\winsxs\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_6.1.7601.17592_none_672ce6c3de2cb17f\smiengine.dll
17:29:35.0668 2420 C:\Windows\winsxs\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_6.1.7601.17592_none_672ce6c3de2cb17f\smiengine.dll - ok
17:29:35.0668 2420 [ B519848DFA30AE2B306576B51321D102 ] C:\Windows\System32\ie4uinit.exe
17:29:35.0668 2420 C:\Windows\System32\ie4uinit.exe - ok
17:29:35.0684 2420 [ C3E98C42EDF7EF237A4BAB91FEAC7426 ] C:\Windows\System32\iedkcs32.dll
17:29:35.0684 2420 C:\Windows\System32\iedkcs32.dll - ok
17:29:35.0684 2420 [ FB10715E4099AF9FA389C71873245226 ] C:\Windows\System32\timedate.cpl
17:29:35.0684 2420 C:\Windows\System32\timedate.cpl - ok
17:29:35.0684 2420 [ E6F0F82788E8BD0F7A616350EFA0761C ] C:\Windows\System32\actxprxy.dll
17:29:35.0684 2420 C:\Windows\System32\actxprxy.dll - ok
17:29:35.0684 2420 [ C4F40F6CACD796A8E16671D0E9A2F319 ] C:\Windows\System32\shdocvw.dll
17:29:35.0684 2420 C:\Windows\System32\shdocvw.dll - ok
17:29:35.0699 2420 [ 69754747274B76E7FAF287239333D7E6 ] C:\Windows\System32\msiltcfg.dll
17:29:35.0699 2420 C:\Windows\System32\msiltcfg.dll - ok
17:29:35.0699 2420 [ A0A65D306A5490D2EB8E7DE66898ECFD ] C:\Windows\System32\linkinfo.dll
17:29:35.0699 2420 C:\Windows\System32\linkinfo.dll - ok
17:29:35.0699 2420 [ 1EAC1A8CA6874BF5B15E2EFB9A9A7B86 ] C:\Windows\System32\msftedit.dll
17:29:35.0699 2420 C:\Windows\System32\msftedit.dll - ok
17:29:35.0699 2420 [ 3504B34CD2DE00BA3CC1A195F1B739BD ] C:\Windows\System32\gameux.dll
17:29:35.0699 2420 C:\Windows\System32\gameux.dll - ok
17:29:35.0699 2420 [ 7DBA84667DC18877AEF693E3543DFAD7 ] C:\Program Files\Common Files\Microsoft Shared\ink\tiptsf.dll
17:29:35.0699 2420 C:\Program Files\Common Files\Microsoft Shared\ink\tiptsf.dll - ok
17:29:35.0715 2420 [ 7FCAB194F01E3403C300EB034E480B36 ] C:\Windows\System32\msls31.dll
17:29:35.0715 2420 C:\Windows\System32\msls31.dll - ok
17:29:35.0715 2420 [ ED43758BF94B8A5221D69F1B7F63F13D ] C:\Program Files\Microsoft Xbox 360 Accessories\XBoxStat.exe
17:29:35.0715 2420 C:\Program Files\Microsoft Xbox 360 Accessories\XBoxStat.exe - ok
17:29:35.0715 2420 [ 4C2C4640BF23AAFCF90519E0F34436CE ] C:\Windows\System32\DeviceCenter.dll
17:29:35.0715 2420 C:\Windows\System32\DeviceCenter.dll - ok
17:29:35.0715 2420 [ F02A533F517EB38333CB12A9E8963773 ] C:\Users\Malachi\AppData\Local\Google\Update\GoogleUpdate.exe
17:29:35.0715 2420 C:\Users\Malachi\AppData\Local\Google\Update\GoogleUpdate.exe - ok
17:29:35.0715 2420 [ E424B3EF666B184CEE0B6871AAA8C9F6 ] C:\Windows\System32\msimg32.dll
17:29:35.0715 2420 C:\Windows\System32\msimg32.dll - ok
17:29:35.0730 2420 [ BFB3091B167550EC6E6454813D3DB244 ] C:\Windows\System32\xinput1_3.dll
17:29:35.0730 2420 C:\Windows\System32\xinput1_3.dll - ok
17:29:35.0730 2420 [ 4ECE12D296ED94CA2C7DD6C383A5AB66 ] C:\Windows\System32\ieframe.dll
17:29:35.0730 2420 C:\Windows\System32\ieframe.dll - ok
17:29:35.0730 2420 [ 6E86E6BD2778A3D8428688C3D1BF053A ] C:\Program Files\Microsoft Xbox 360 Accessories\Xboxres.dll
17:29:35.0730 2420 C:\Program Files\Microsoft Xbox 360 Accessories\Xboxres.dll - ok
17:29:35.0730 2420 [ 9FF47CD8A3787C8FD3CDFE40441C722E ] C:\Users\Malachi\AppData\Local\Google\Update\1.3.21.123\goopdate.dll
17:29:35.0730 2420 C:\Users\Malachi\AppData\Local\Google\Update\1.3.21.123\goopdate.dll - ok
17:29:35.0730 2420 [ A6C29DB53ECA94FA8591C5388D604B82 ] C:\Windows\SysWOW64\msi.dll
17:29:35.0730 2420 C:\Windows\SysWOW64\msi.dll - ok
17:29:35.0746 2420 [ CF636C92B762B26F0B39B38E92380A09 ] C:\Windows\System32\oleacc.dll
17:29:35.0746 2420 C:\Windows\System32\oleacc.dll - ok
17:29:35.0746 2420 [ 53223B673A3FA2F9A4D1C31C8D3F6CD8 ] C:\Windows\SysWOW64\dbghelp.dll
17:29:35.0746 2420 C:\Windows\SysWOW64\dbghelp.dll - ok
17:29:35.0746 2420 [ 3819AD4329303EAC88480CA16A650735 ] C:\Windows\System32\UIAnimation.dll
17:29:35.0746 2420 C:\Windows\System32\UIAnimation.dll - ok
17:29:35.0746 2420 [ 9EB925EDC8CF1C3D06E50E9348B54A0A ] C:\Users\Malachi\AppData\Local\Facebook\Update\FacebookUpdate.exe
17:29:35.0746 2420 C:\Users\Malachi\AppData\Local\Facebook\Update\FacebookUpdate.exe - ok
17:29:35.0762 2420 [ F4202F68BB3B9A08822238D9017EC638 ] C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe
17:29:35.0762 2420 C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe - ok
17:29:35.0762 2420 [ 3B31850FFF112BE58294896EB9F684F1 ] C:\Program Files (x86)\Avira\AntiVir Desktop\rcimage.dll
17:29:35.0762 2420 C:\Program Files (x86)\Avira\AntiVir Desktop\rcimage.dll - ok
17:29:35.0762 2420 [ AE5A69F44C1F97EDC83237FC0B29B6FB ] C:\Users\Malachi\AppData\Local\Google\Update\1.3.21.123\GoogleCrashHandler.exe
17:29:35.0762 2420 C:\Users\Malachi\AppData\Local\Google\Update\1.3.21.123\GoogleCrashHandler.exe - ok
17:29:35.0762 2420 [ 8E95EEECC7EC8624A360D4EE73E8E140 ] C:\Program Files (x86)\Avira\AntiVir Desktop\ccwgrd.dll
17:29:35.0762 2420 C:\Program Files (x86)\Avira\AntiVir Desktop\ccwgrd.dll - ok
17:29:35.0762 2420 [ 68ECCA523ED760AAFC03C5D587569859 ] C:\Windows\SysWOW64\samcli.dll
17:29:35.0762 2420 C:\Windows\SysWOW64\samcli.dll - ok
17:29:35.0777 2420 [ C0537786F8D494A0686D64D8E278DC65 ] C:\Program Files (x86)\Avira\AntiVir Desktop\ccwgrdrc.dll
17:29:35.0777 2420 C:\Program Files (x86)\Avira\AntiVir Desktop\ccwgrdrc.dll - ok
17:29:35.0777 2420 [ 692DDF02F2C3F53AE670CFAF55D2DBB3 ] C:\Program Files (x86)\Avira\AntiVir Desktop\ccwgrdw.dll
17:29:35.0777 2420 C:\Program Files (x86)\Avira\AntiVir Desktop\ccwgrdw.dll - ok
17:29:35.0777 2420 [ 19439B245C71A5C0C62AF5671ED078E8 ] C:\Program Files (x86)\Avira\AntiVir Desktop\ccgen.dll
17:29:35.0777 2420 C:\Program Files (x86)\Avira\AntiVir Desktop\ccgen.dll - ok
17:29:35.0777 2420 [ 0A0F3612A73619A755C596A4441F25D9 ] C:\Program Files (x86)\Avira\AntiVir Desktop\ccgenrc.dll
17:29:35.0777 2420 C:\Program Files (x86)\Avira\AntiVir Desktop\ccgenrc.dll - ok
17:29:35.0793 2420 [ 41938F2C1642459CBBA691B5DBD6395A ] C:\Users\Malachi\AppData\Local\Google\Update\1.3.21.123\GoogleCrashHandler64.exe
17:29:35.0793 2420 C:\Users\Malachi\AppData\Local\Google\Update\1.3.21.123\GoogleCrashHandler64.exe - ok
17:29:35.0793 2420 [ 06F93DA727D348689707611448470C9E ] C:\Program Files (x86)\Avira\AntiVir Desktop\ccupdate.dll
17:29:35.0793 2420 C:\Program Files (x86)\Avira\AntiVir Desktop\ccupdate.dll - ok
17:29:35.0793 2420 [ 0800FF435A29DCD07D275798CFEB6EF2 ] C:\Program Files (x86)\Avira\AntiVir Desktop\ccupdrc.dll
17:29:35.0793 2420 C:\Program Files (x86)\Avira\AntiVir Desktop\ccupdrc.dll - ok
17:29:35.0793 2420 [ 795D4835CE714F4A0C601766134F344B ] C:\Program Files (x86)\Avira\AntiVir Desktop\cclic.dll
17:29:35.0793 2420 C:\Program Files (x86)\Avira\AntiVir Desktop\cclic.dll - ok
17:29:35.0793 2420 [ 5AC47E3AC56E5E8827C9C593CB86881E ] C:\Program Files (x86)\Avira\AntiVir Desktop\cclicrc.dll
17:29:35.0793 2420 C:\Program Files (x86)\Avira\AntiVir Desktop\cclicrc.dll - ok
17:29:35.0808 2420 [ 388129C269DB1DB1E36D89C8D27C330F ] C:\Program Files (x86)\Avira\AntiVir Desktop\ccmsg.dll
17:29:35.0808 2420 C:\Program Files (x86)\Avira\AntiVir Desktop\ccmsg.dll - ok
17:29:35.0808 2420 [ 9D1C5D971235A5E84B1C25E7CEFC52E4 ] C:\Program Files (x86)\Avira\AntiVir Desktop\ccmsgrc.dll
17:29:35.0808 2420 C:\Program Files (x86)\Avira\AntiVir Desktop\ccmsgrc.dll - ok
17:29:35.0808 2420 [ 82464461ACDFBA6B876BF9F74A66BCBB ] C:\Program Files (x86)\Avira\AntiVir Desktop\ccmainrc.dll
17:29:35.0808 2420 C:\Program Files (x86)\Avira\AntiVir Desktop\ccmainrc.dll - ok
17:29:35.0808 2420 [ C5A99A4C0DC9F0F5A95BA0C83D30A549 ] C:\Windows\SysWOW64\mstask.dll
17:29:35.0808 2420 C:\Windows\SysWOW64\mstask.dll - ok
17:29:35.0824 2420 [ 418E881201583A3039D81F43E39E6C78 ] C:\Windows\SysWOW64\winsta.dll
17:29:35.0824 2420 C:\Windows\SysWOW64\winsta.dll - ok
17:29:35.0824 2420 [ 24F4B480F335A6C724AF352253C5D98B ] C:\Windows\System32\thumbcache.dll
17:29:35.0824 2420 C:\Windows\System32\thumbcache.dll - ok
17:29:35.0824 2420 [ B63E5C7807334A3A8F731062F15462CC ] C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
17:29:35.0824 2420 C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe - ok
17:29:35.0824 2420 [ 405F4D32D2185F1F1BD753D8EEAFFB3A ] C:\Windows\System32\networkexplorer.dll
17:29:35.0824 2420 C:\Windows\System32\networkexplorer.dll - ok
17:29:35.0824 2420 [ 1473768973453DE50DC738C2955FC4DD ] C:\Windows\System32\wdmaud.drv
17:29:35.0824 2420 C:\Windows\System32\wdmaud.drv - ok
17:29:35.0840 2420 [ 49D3F53BEA86A4EFEFA53550E0DBFDB1 ] C:\Users\Malachi\AppData\Local\Facebook\Update\1.2.205.0\goopdate.dll
17:29:35.0840 2420 C:\Users\Malachi\AppData\Local\Facebook\Update\1.2.205.0\goopdate.dll - ok
17:29:35.0840 2420 [ DC220AE6F64819099F7EBD6F137E32E7 ] C:\Windows\System32\AudioSes.dll
17:29:35.0840 2420 C:\Windows\System32\AudioSes.dll - ok
17:29:35.0840 2420 [ 8560FFFC8EB3A806DCD4F82252CFC8C6 ] C:\Windows\System32\ksuser.dll
17:29:35.0840 2420 C:\Windows\System32\ksuser.dll - ok
17:29:35.0840 2420 [ 35AC4B63CBB9FB6B4472913E9948B517 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe
17:29:35.0840 2420 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe - ok
17:29:35.0840 2420 [ CA2A0750ED830678997695FF61B04C30 ] C:\Windows\System32\midimap.dll
17:29:35.0840 2420 C:\Windows\System32\midimap.dll - ok
17:29:35.0855 2420 [ 10AC5CE9F78DC281A1BBD9B8CC587B8A ] C:\Windows\System32\msacm32.dll
17:29:35.0855 2420 C:\Windows\System32\msacm32.dll - ok
17:29:35.0855 2420 [ 1B7C3A37362C7B2890168C5FC61C8D9B ] C:\Windows\System32\msacm32.drv
17:29:35.0855 2420 C:\Windows\System32\msacm32.drv - ok
17:29:35.0855 2420 [ 8494E126F0B10180F3293AF861CE1F7A ] C:\Windows\System32\mlang.dll
17:29:35.0855 2420 C:\Windows\System32\mlang.dll - ok
17:29:35.0855 2420 [ 6E43238CADA10ED92DCC50C67A9B742F ] C:\Program Files (x86)\AMD AVT\bin\kdbsync.exe
17:29:35.0855 2420 C:\Program Files (x86)\AMD AVT\bin\kdbsync.exe - ok
17:29:35.0871 2420 [ 0B3595A4FF0B36D68E5FC67FD7D70FDC ] C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcp80.dll
17:29:35.0871 2420 C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcp80.dll - ok
17:29:35.0871 2420 [ C9564CF4976E7E96B4052737AA2492B4 ] C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcr80.dll
17:29:35.0871 2420 C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcr80.dll - ok
17:29:35.0871 2420 [ 916A2C4EB028604783FD5EA169236C1D ] C:\Program Files (x86)\QuickTime\QTTask.exe
17:29:35.0871 2420 C:\Program Files (x86)\QuickTime\QTTask.exe - ok
17:29:35.0871 2420 [ 8C22C6088057A00EAE7D963600F26EEB ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\AppleVersions.dll
17:29:35.0871 2420 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\AppleVersions.dll - ok
17:29:35.0871 2420 [ D85590165543E27881941B6B1E505BE7 ] C:\Windows\SysWOW64\OpenCL.dll
17:29:35.0871 2420 C:\Windows\SysWOW64\OpenCL.dll - ok
17:29:35.0886 2420 [ 8476E1C89C9D9834102EF86B651C6F39 ] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe
17:29:35.0886 2420 C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe - ok
17:29:35.0886 2420 [ 5EDBB34736DD7AC1A73CF8792A835E10 ] C:\Windows\System32\AudioEng.dll
17:29:35.0886 2420 C:\Windows\System32\AudioEng.dll - ok
17:29:35.0886 2420 [ DE1BEA113645BC52B66953E0F75477AB ] C:\Windows\SysWOW64\kdbsdk32.dll
17:29:35.0886 2420 C:\Windows\SysWOW64\kdbsdk32.dll - ok
17:29:35.0886 2420 [ C1648084C395152FBFA1B333D92056BC ] C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AcroRd32.exe
17:29:35.0886 2420 C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AcroRd32.exe - ok
17:29:35.0902 2420 [ 91AD5E35E5F79548011CD5799464019B ] C:\Program Files (x86)\OpenOffice.org 3\Basis\program\shlxthdl\shlxthdl_x64.dll
17:29:35.0902 2420 C:\Program Files (x86)\OpenOffice.org 3\Basis\program\shlxthdl\shlxthdl_x64.dll - ok
17:29:35.0902 2420 [ C1395286B822E306B4FE1568A8A77813 ] C:\Windows\System32\AUDIOKSE.dll
17:29:35.0902 2420 C:\Windows\System32\AUDIOKSE.dll - ok
17:29:35.0902 2420 [ 6F3C559B82F2912354BE5B098744CC8C ] C:\Windows\System32\WMALFXGFXDSP.dll
17:29:35.0902 2420 C:\Windows\System32\WMALFXGFXDSP.dll - ok
17:29:35.0902 2420 [ 2DEDC3AFE3C49B5DAE717D0A9BEBF298 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\YSCrashDump.dll
17:29:35.0902 2420 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\YSCrashDump.dll - ok
17:29:35.0902 2420 [ D233C7FEAE3FAA25F93A9E6B46815ADC ] C:\Windows\winsxs\amd64_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_08e61857a83bc251\msvcr90.dll
17:29:35.0902 2420 C:\Windows\winsxs\amd64_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_08e61857a83bc251\msvcr90.dll - ok
17:29:35.0918 2420 [ A9A860F47D8E4417F82C5C211E7FF510 ] C:\Windows\SysWOW64\atiadlxy.dll
17:29:35.0918 2420 C:\Windows\SysWOW64\atiadlxy.dll - ok
17:29:35.0918 2420 [ 241AF87821FDA0F5792037B779F49BE0 ] C:\Windows\winsxs\amd64_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_08e61857a83bc251\msvcp90.dll
17:29:35.0918 2420 C:\Windows\winsxs\amd64_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_08e61857a83bc251\msvcp90.dll - ok
17:29:35.0918 2420 [ 3C6FA2F4D58611579B21798E0568F548 ] C:\Program Files (x86)\Adobe\Reader 10.0\Reader\reader_sl.exe
17:29:35.0918 2420 C:\Program Files (x86)\Adobe\Reader 10.0\Reader\reader_sl.exe - ok
17:29:35.0918 2420 [ 54B5DCD55B223BC5DF50B82E1E9E86B1 ] C:\Windows\System32\mfplat.dll
17:29:35.0918 2420 C:\Windows\System32\mfplat.dll - ok
17:29:35.0933 2420 [ 67B539D844F804EBAC7A1E3828FDE709 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\CoreFoundation.dll
17:29:35.0933 2420 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\CoreFoundation.dll - ok
17:29:35.0933 2420 [ 4C39358EBDD2FFCD9132A30E1EC31E16 ] C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcp90.dll
17:29:35.0933 2420 C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcp90.dll - ok
17:29:35.0933 2420 [ 4B9949208944C50B1A16FD1F05ED0A04 ] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
17:29:35.0933 2420 C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe - ok
17:29:35.0933 2420 [ EBC9F12561485A348A21FBE4BC5038C4 ] C:\Windows\SysWOW64\amdocl.dll
17:29:35.0933 2420 C:\Windows\SysWOW64\amdocl.dll - ok
17:29:35.0933 2420 [ 040CAD6E6600BCEF7A91AE9885C4158F ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Drawing\222eb8aa336953a6b0216db2b0c4770d\System.Drawing.ni.dll
17:29:35.0933 2420 C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Drawing\222eb8aa336953a6b0216db2b0c4770d\System.Drawing.ni.dll - ok
17:29:35.0949 2420 [ A190DA6546501CB4146BBCC0B6A3F48B ] C:\Windows\System32\msiexec.exe
17:29:35.0949 2420 C:\Windows\System32\msiexec.exe - ok
17:29:35.0949 2420 [ 1E8D1091011E1C51B44A94DE5EE89A6A ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Windows.Forms\dc5bb74eefdbf954cdfb70dd534d5564\System.Windows.Forms.ni.dll
17:29:35.0949 2420 C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Windows.Forms\dc5bb74eefdbf954cdfb70dd534d5564\System.Windows.Forms.ni.dll - ok
17:29:35.0949 2420 [ 62169BDD927A67C360A35F4526429B01 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\pthreadVC2.dll
17:29:35.0949 2420 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\pthreadVC2.dll - ok
17:29:35.0949 2420 [ 32D78DCABFB942275E01363D5232C77D ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\objc.dll
17:29:35.0949 2420 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\objc.dll - ok
17:29:35.0964 2420 [ 3BDE52411DF2FE4252C9289F51CB0F7E ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libdispatch.dll
17:29:35.0964 2420 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libdispatch.dll - ok
17:29:35.0964 2420 [ 9ABB7CDAC0914579C86990048771B1B4 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libicuin.dll
17:29:35.0964 2420 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libicuin.dll - ok
17:29:35.0964 2420 [ D47913F993A0E3A0C9F1E88FD02E98C6 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libicuuc.dll
17:29:35.0964 2420 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libicuuc.dll - ok
17:29:35.0964 2420 [ 43A0A24CD12B110DC93462D6B035C961 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\icudt46.dll
17:29:35.0964 2420 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\icudt46.dll - ok
17:29:35.0964 2420 [ 20ECAC7791DCBA69121631CB627E5A96 ] C:\Windows\System32\mf.dll
17:29:35.0964 2420 C:\Windows\System32\mf.dll - ok
17:29:35.0980 2420 [ E19AD0D49BFF5938B3E374873AC174DE ] C:\Windows\System32\wmploc.DLL
17:29:35.0980 2420 C:\Windows\System32\wmploc.DLL - ok
17:29:35.0980 2420 [ 7815A79D02B35EA18065CBC79E945248 ] C:\Windows\SysWOW64\aticaldd.dll
17:29:35.0980 2420 C:\Windows\SysWOW64\aticaldd.dll - ok
17:29:35.0980 2420 [ F832EEEA97CDDA1AF577E721F652A0D1 ] C:\Windows\System32\batmeter.dll
17:29:35.0980 2420 C:\Windows\System32\batmeter.dll - ok
17:29:35.0980 2420 [ C3761661C17C2248A9379A8FB89E3DE1 ] C:\Windows\System32\stobject.dll
17:29:35.0980 2420 C:\Windows\System32\stobject.dll - ok
17:29:35.0980 2420 [ 8E18C83C6CFE2F02F8885D3A9DB363D7 ] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
17:29:35.0980 2420 C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe - ok
17:29:35.0996 2420 [ 2D2A6EC8EAD30EC3ACE2FD6FB1B3E122 ] C:\Windows\System32\prnfldr.dll
17:29:35.0996 2420 C:\Windows\System32\prnfldr.dll - ok
17:29:35.0996 2420 [ 62427A3A76CDAAED50C699FA94BE3DCA ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Web\95f38e7485bbe2b73b6055c45196fedd\System.Web.ni.dll
17:29:35.0996 2420 C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Web\95f38e7485bbe2b73b6055c45196fedd\System.Web.ni.dll - ok
17:29:35.0996 2420 [ 42A9CB6906D9A8BEDC83B57163E62924 ] C:\Windows\System32\DXP.dll
17:29:35.0996 2420 C:\Windows\System32\DXP.dll - ok
17:29:35.0996 2420 [ 2BC7C9FD0A9F2C9AFC373F3AD1EE3891 ] C:\Windows\System32\Syncreg.dll
17:29:35.0996 2420 C:\Windows\System32\Syncreg.dll - ok
17:29:36.0011 2420 [ C836175870E00ACC546066632E15BD10 ] C:\Windows\ehome\ehSSO.dll
17:29:36.0011 2420 C:\Windows\ehome\ehSSO.dll - ok
17:29:36.0011 2420 [ 1CE66BBCDAC9333CA6CA5B6E158600C7 ] C:\Users\Malachi\Desktop\VSTi\vsthost.exe
17:29:36.0011 2420 C:\Users\Malachi\Desktop\VSTi\vsthost.exe - ok
17:29:36.0011 2420 [ BA02F01BE7ED88E8974C798ACB3075F5 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\ASL.dll
17:29:36.0011 2420 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\ASL.dll - ok
17:29:36.0011 2420 [ 8A6B867FC26B9850D446D2D86E5DB071 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon_main.dll
17:29:36.0011 2420 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon_main.dll - ok
17:29:36.0011 2420 [ E7368F0A8D19445EAF5C5D0DBB8B8DAB ] C:\Windows\System32\AltTab.dll
17:29:36.0011 2420 C:\Windows\System32\AltTab.dll - ok
17:29:36.0027 2420 [ C8FDF0FA9E97E2FAAF3F814716AAA881 ] C:\Windows\System32\WPDShServiceObj.dll
17:29:36.0027 2420 C:\Windows\System32\WPDShServiceObj.dll - ok
17:29:36.0027 2420 [ 10F815BE90A66AAFC6C713D1BD626064 ] C:\Windows\System32\pnidui.dll
17:29:36.0027 2420 C:\Windows\System32\pnidui.dll - ok
17:29:36.0027 2420 [ 57E8C7791AB2596AFB8EE1273C2DF1F8 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\CFNetwork.dll
17:29:36.0027 2420 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\CFNetwork.dll - ok
17:29:36.0027 2420 [ B9F0A4020AA98B7A20287BF7FE99A1FD ] C:\Windows\System32\QUTIL.DLL
17:29:36.0027 2420 C:\Windows\System32\QUTIL.DLL - ok
17:29:36.0027 2420 [ 8569E35D00F45972E506502EEE622BA4 ] C:\Windows\System32\srchadmin.dll
17:29:36.0027 2420 C:\Windows\System32\srchadmin.dll - ok
17:29:36.0042 2420 [ AEBBDE5F2A8B514C84D9D882EB9E9AA1 ] C:\Windows\SysWOW64\atigktxx.dll
17:29:36.0042 2420 C:\Windows\SysWOW64\atigktxx.dll - ok
17:29:36.0042 2420 [ D7CEAEDD5F75D2C8A2E80887D7C114CE ] C:\Windows\System32\webcheck.dll
17:29:36.0042 2420 C:\Windows\System32\webcheck.dll - ok
17:29:36.0042 2420 [ 88781403D232AF2BE781AC12856BC533 ] C:\Windows\System32\Wpc.dll
17:29:36.0042 2420 C:\Windows\System32\Wpc.dll - ok
17:29:36.0042 2420 [ F9AFD12BB4B1CFA5FCC0A5B37C604FD2 ] C:\Windows\System32\dot3api.dll
17:29:36.0042 2420 C:\Windows\System32\dot3api.dll - ok
17:29:36.0058 2420 [ 0D753307D274F3688BD21C377B616700 ] C:\Windows\System32\eappcfg.dll
17:29:36.0058 2420 C:\Windows\System32\eappcfg.dll - ok
17:29:36.0058 2420 [ 73FCB7919DEE80EE556F2E498594EBAE ] C:\Windows\System32\onex.dll
17:29:36.0058 2420 C:\Windows\System32\onex.dll - ok
17:29:36.0058 2420 [ E4FCA0F99A41E460C84016DEFD31E6EF ] C:\Windows\System32\wlanhlp.dll
17:29:36.0058 2420 C:\Windows\System32\wlanhlp.dll - ok
17:29:36.0058 2420 [ 65522E77A1360DBC8D199DA3BF5EFFE4 ] C:\Windows\System32\eappprxy.dll
17:29:36.0058 2420 C:\Windows\System32\eappprxy.dll - ok
17:29:36.0058 2420 [ 101797BA603D227946B4B5109867EB19 ] C:\Windows\System32\SyncCenter.dll
17:29:36.0058 2420 C:\Windows\System32\SyncCenter.dll - ok
17:29:36.0074 2420 [ 92DBF0A4C9239169010FC6E07859C82E ] C:\Windows\System32\ActionCenter.dll
17:29:36.0074 2420 C:\Windows\System32\ActionCenter.dll - ok
17:29:36.0074 2420 [ 6699A112A3BDC9B52338512894EBA9D6 ] C:\Program Files\Windows Media Player\wmpnscfg.exe
17:29:36.0074 2420 C:\Program Files\Windows Media Player\wmpnscfg.exe - ok
17:29:36.0074 2420 [ 5DA219F57A9076FB6FBD3C9C3713A672 ] C:\Windows\System32\WWanAPI.dll
17:29:36.0074 2420 C:\Windows\System32\WWanAPI.dll - ok
17:29:36.0074 2420 [ 5336C3171A5B80BB58220FE4ED795E47 ] C:\Program Files (x86)\Avira\AntiVir Desktop\ccupdw.dll
17:29:36.0074 2420 C:\Program Files (x86)\Avira\AntiVir Desktop\ccupdw.dll - ok
17:29:36.0074 2420 [ 62C7AACC746C9723468A8F2169ED3E85 ] C:\Windows\System32\wwapi.dll
17:29:36.0074 2420 C:\Windows\System32\wwapi.dll - ok
17:29:36.0089 2420 [ 8130391F82D52D36C0441F714136957F ] C:\Windows\System32\imapi2.dll
17:29:36.0089 2420 C:\Windows\System32\imapi2.dll - ok
17:29:36.0089 2420 [ 6B851E682A36453E1B1EE297FFB6E2AB ] C:\Windows\System32\QAGENT.DLL
17:29:36.0089 2420 C:\Windows\System32\QAGENT.DLL - ok
17:29:36.0089 2420 [ F7A256EC899C72B4ECDD2C02CB592EFD ] C:\Windows\System32\bthprops.cpl
17:29:36.0089 2420 C:\Windows\System32\bthprops.cpl - ok
17:29:36.0089 2420 [ C7494C67A6BF6FE914808E42F8265FEF ] C:\Program Files\Windows Media Player\wmpnssci.dll
17:29:36.0089 2420 C:\Program Files\Windows Media Player\wmpnssci.dll - ok
17:29:36.0089 2420 [ 8A1CBAE63FC06EDAEDCCE1B23E9C9267 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\SQLite3.dll
17:29:36.0089 2420 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\SQLite3.dll - ok
17:29:36.0105 2420 [ 6A5C1A8AC0B572679361026D0E900420 ] C:\Windows\System32\hgcpl.dll
17:29:36.0105 2420 C:\Windows\System32\hgcpl.dll - ok
17:29:36.0105 2420 [ A9F3BFC9345F49614D5859EC95B9E994 ] C:\Program Files\Windows Media Player\wmpnetwk.exe
17:29:36.0105 2420 C:\Program Files\Windows Media Player\wmpnetwk.exe - ok
17:29:36.0105 2420 [ 58B61578D5704E9FC8B8A9861A85069D ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll
17:29:36.0105 2420 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll - ok
17:29:36.0105 2420 [ 0438CAB2E03F4FB61455A7956026FE86 ] C:\Windows\System32\fdPHost.dll
17:29:36.0105 2420 C:\Windows\System32\fdPHost.dll - ok
17:29:36.0105 2420 [ 171D7DB433314A868507C4326E8209DC ] C:\Windows\System32\fdWSD.dll
17:29:36.0105 2420 C:\Windows\System32\fdWSD.dll - ok
17:29:36.0120 2420 [ A2E5B2D20954210DCE1A75A1FC8CC36D ] C:\Windows\System32\fdSSDP.dll
17:29:36.0120 2420 C:\Windows\System32\fdSSDP.dll - ok
17:29:36.0120 2420 [ C3C8D359D1FCB72941F75F8A302BFBDE ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll
17:29:36.0120 2420 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll - ok
17:29:36.0120 2420 [ 802496CB59A30349F9A6DD22D6947644 ] C:\Windows\System32\FDResPub.dll
17:29:36.0120 2420 C:\Windows\System32\FDResPub.dll - ok
17:29:36.0120 2420 [ 423982DD851406A52B6399DDB196C606 ] C:\Windows\System32\wmdrmdev.dll
17:29:36.0120 2420 C:\Windows\System32\wmdrmdev.dll - ok
17:29:36.0136 2420 [ 2C1055E2C6D42753241FB2A129136994 ] C:\Windows\System32\drmv2clt.dll
17:29:36.0136 2420 C:\Windows\System32\drmv2clt.dll - ok
17:29:36.0136 2420 [ BCEA9AB347E53BC03B2E36BE0B8BA0EF ] C:\Windows\System32\httpapi.dll
17:29:36.0136 2420 C:\Windows\System32\httpapi.dll - ok
17:29:36.0136 2420 [ 75B54BF71C3DCF373A4571910E4A90E3 ] C:\ProgramData\Microsoft\Windows\DRM\Cache\Indiv_SID_S-1-5-20\Indiv01_64.key
17:29:36.0136 2420 C:\ProgramData\Microsoft\Windows\DRM\Cache\Indiv_SID_S-1-5-20\Indiv01_64.key - ok
17:29:36.0136 2420 [ 2A436796758BF2555A26C770FE8A6FEE ] C:\Windows\System32\fdProxy.dll
17:29:36.0136 2420 C:\Windows\System32\fdProxy.dll - ok
17:29:36.0136 2420 [ 1EB82516F21F27EED1833B4F9FD9614E ] C:\Windows\System32\wmp.dll
17:29:36.0136 2420 C:\Windows\System32\wmp.dll - ok
17:29:36.0152 2420 [ 5F1F35F2F995FA8615438AB922B0BA7B ] C:\Program Files\Internet Explorer\ieproxy.dll
17:29:36.0152 2420 C:\Program Files\Internet Explorer\ieproxy.dll - ok
17:29:36.0152 2420 [ 355A138ABDFD43FBABCAE3A1B06AB93D ] C:\Windows\System32\wmpps.dll
17:29:36.0152 2420 C:\Windows\System32\wmpps.dll - ok
17:29:36.0152 2420 [ 0510403E7774E7C1FA4197E514120375 ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Core\766ce7ee1a2e4f2a85fd90e7572f5d53\System.Core.ni.dll
17:29:36.0152 2420 C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Core\766ce7ee1a2e4f2a85fd90e7572f5d53\System.Core.ni.dll - ok
17:29:36.0152 2420 [ D64D99EC088B54FFE8EE67A480386C20 ] C:\Windows\Microsoft.NET\Framework64\v2.0.50727\Culture.dll
17:29:36.0152 2420 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\Culture.dll - ok
17:29:36.0152 2420 [ A03B68BC65AEF8E058218CE6DA530477 ] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MMLoadDrv.exe
17:29:36.0152 2420 C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MMLoadDrv.exe - ok
17:29:36.0167 2420 [ 92CBA4EBF1EAC5329662A967C079F660 ] C:\Windows\assembly\NativeImages_v2.0.50727_64\WindowsBase\4bcc5a6e9e9d25e068fc304bd7eda6af\WindowsBase.ni.dll
17:29:36.0167 2420 C:\Windows\assembly\NativeImages_v2.0.50727_64\WindowsBase\4bcc5a6e9e9d25e068fc304bd7eda6af\WindowsBase.ni.dll - ok
17:29:36.0167 2420 [ C746F3BF98E92FB137B5BD2B8B5925BD ] C:\Windows\System32\FXSST.dll
17:29:36.0167 2420 C:\Windows\System32\FXSST.dll - ok
17:29:36.0167 2420 [ 650CAEA856943E29F25A25D31E004B18 ] C:\Windows\System32\FXSAPI.dll
17:29:36.0167 2420 C:\Windows\System32\FXSAPI.dll - ok
17:29:36.0167 2420 [ 67EC459E42D3081DD8FD34356F7CAFC1 ] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\msvcr100.dll
17:29:36.0167 2420 C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\msvcr100.dll - ok
17:29:36.0183 2420 [ C8E8B8239FCF17BEA10E751BE5854631 ] C:\Windows\System32\FXSRESM.dll
17:29:36.0183 2420 C:\Windows\System32\FXSRESM.dll - ok
17:29:36.0183 2420 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] C:\Windows\System32\FXSSVC.exe
17:29:36.0183 2420 C:\Windows\System32\FXSSVC.exe - ok
17:29:36.0183 2420 [ 0AE0C4955E1DE29CCDC9DA1B816FE5EE ] C:\Windows\SysWOW64\quartz.dll
17:29:36.0183 2420 C:\Windows\SysWOW64\quartz.dll - ok
17:29:36.0183 2420 [ 6EF5F3F18413C367195F06E503AB86A6 ] C:\Windows\SysWOW64\d3d9.dll
17:29:36.0183 2420 C:\Windows\SysWOW64\d3d9.dll - ok
17:29:36.0183 2420 [ D94E699220451BE0A3416943FD5A12BA ] C:\Windows\SysWOW64\aticfx32.dll
17:29:36.0183 2420 C:\Windows\SysWOW64\aticfx32.dll - ok
17:29:36.0198 2420 [ 77B1471A490B53B24EFE136F09F76550 ] C:\Windows\SysWOW64\d3d8thk.dll
17:29:36.0198 2420 C:\Windows\SysWOW64\d3d8thk.dll - ok
17:29:36.0198 2420 [ C9E87229D5E3B981E1B033C7D5CB3C17 ] C:\Windows\SysWOW64\atiu9pag.dll
17:29:36.0198 2420 C:\Windows\SysWOW64\atiu9pag.dll - ok
17:29:36.0198 2420 [ 5DB76D1C34F2106F5DE59A40230426CE ] C:\Windows\SysWOW64\atiumdag.dll
17:29:36.0198 2420 C:\Windows\SysWOW64\atiumdag.dll - ok
17:29:36.0198 2420 [ 2E3A950F94FEF865B7D86170FE0C4FDF ] C:\Windows\SysWOW64\atiumdva.dll
17:29:36.0198 2420 C:\Windows\SysWOW64\atiumdva.dll - ok
17:29:36.0198 2420 [ 1F27643C4C626457FCE8F047AE1CD7E1 ] C:\Windows\SysWOW64\dxva2.dll
17:29:36.0198 2420 C:\Windows\SysWOW64\dxva2.dll - ok
17:29:36.0214 2420 [ 383661D710295D2DA3FDFBA0C3ED4BCF ] C:\Windows\assembly\NativeImages_v2.0.50727_64\PresentationCore\3a9d13514a8c4c710fa5ce8e9b5393fe\PresentationCore.ni.dll
17:29:36.0214 2420 C:\Windows\assembly\NativeImages_v2.0.50727_64\PresentationCore\3a9d13514a8c4c710fa5ce8e9b5393fe\PresentationCore.ni.dll - ok
17:29:36.0214 2420 [ 77D23D333BF27515EA51A23E96A63D6C ] C:\Windows\assembly\NativeImages_v2.0.50727_64\PresentationFramewo#\47054c4d5b7e522c21a9d57797410302\PresentationFramework.ni.dll
17:29:36.0214 2420 C:\Windows\assembly\NativeImages_v2.0.50727_64\PresentationFramewo#\47054c4d5b7e522c21a9d57797410302\PresentationFramework.ni.dll - ok
17:29:36.0214 2420 [ C264145F107437CBD3B30303733AEE4F ] C:\Windows\assembly\GAC_64\PresentationCore\3.0.0.0__31bf3856ad364e35\PresentationCore.dll
17:29:36.0214 2420 C:\Windows\assembly\GAC_64\PresentationCore\3.0.0.0__31bf3856ad364e35\PresentationCore.dll - ok
17:29:36.0214 2420 [ C8541AECCCA9260DE93C85F214110FA8 ] C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\wpfgfx_v0300.dll
17:29:36.0214 2420 C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\wpfgfx_v0300.dll - ok
17:29:36.0230 2420 [ C33A62AF24FCEA04D634D170C3EAE5EF ] C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Proxy.Native.dll
17:29:36.0230 2420 C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Proxy.Native.dll - ok
17:29:36.0230 2420 [ 0BF4362E18DFC52382F418278DCC52C4 ] C:\Windows\System32\rdpdd.dll
17:29:36.0230 2420 C:\Windows\System32\rdpdd.dll - ok
17:29:36.0230 2420 [ FF6148B1C150DA05D35C68D143AD6DEA ] C:\Windows\System32\RDPENCDD.dll
17:29:36.0230 2420 C:\Windows\System32\RDPENCDD.dll - ok
17:29:36.0230 2420 [ A23A9301EE7152FB6776052E52BDE9D9 ] C:\Windows\System32\RDPREFDD.dll
17:29:36.0230 2420 C:\Windows\System32\RDPREFDD.dll - ok
17:29:36.0230 2420 [ A63DC5C2EA944E6657203E0C8EDEAF61 ] C:\Windows\SysWOW64\dllhost.exe
17:29:36.0230 2420 C:\Windows\SysWOW64\dllhost.exe - ok
17:29:36.0245 2420 [ E8D97C01224B5068232CCF769967D0A8 ] C:\Program Files (x86)\Windows Live\SOXE\wlsoxe.dll
17:29:36.0245 2420 C:\Program Files (x86)\Windows Live\SOXE\wlsoxe.dll - ok
17:29:36.0245 2420 [ C3D545F4646303A864C8DFA85B33F476 ] C:\Windows\System32\TaskSchdPS.dll
17:29:36.0245 2420 C:\Windows\System32\TaskSchdPS.dll - ok
17:29:36.0245 2420 [ E1EF320CBB1A6623DF040D5539DDA8F4 ] C:\Windows\SysWOW64\TaskSchdPS.dll
17:29:36.0245 2420 C:\Windows\SysWOW64\TaskSchdPS.dll - ok
17:29:36.0245 2420 [ 4C3DAEE652B005B483F16B8E9131C99D ] C:\Windows\System32\d3d9.dll
17:29:36.0245 2420 C:\Windows\System32\d3d9.dll - ok
17:29:36.0245 2420 [ 270543B5944CD3847ED66904DF2B1439 ] C:\Windows\System32\atiu9p64.dll
17:29:36.0245 2420 C:\Windows\System32\atiu9p64.dll - ok
17:29:36.0261 2420 [ 465702B9F78760D933B88C95C14E236E ] C:\Windows\System32\atiumd64.dll
17:29:36.0261 2420 C:\Windows\System32\atiumd64.dll - ok
17:29:36.0261 2420 [ 3044D07ABDF4BBEA27E2EE7B1E0C0C65 ] C:\Windows\System32\d3d8thk.dll
17:29:36.0261 2420 C:\Windows\System32\d3d8thk.dll - ok
17:29:36.0261 2420 [ F7702C67D4DEE8B3C073873E797E1586 ] C:\Windows\System32\atiumd6a.dll
17:29:36.0261 2420 C:\Windows\System32\atiumd6a.dll - ok
17:29:36.0261 2420 [ BE63879E3ED6893F84309DF1EBECF26D ] C:\Windows\assembly\NativeImages_v2.0.50727_64\PresentationFramewo#\4f3567165e2a444fc9a62980c4d0ea82\PresentationFramework.Aero.ni.dll
17:29:36.0261 2420 C:\Windows\assembly\NativeImages_v2.0.50727_64\PresentationFramewo#\4f3567165e2a444fc9a62980c4d0ea82\PresentationFramework.Aero.ni.dll - ok
17:29:36.0276 2420 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
17:29:36.0276 2420 C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe - ok
17:29:36.0276 2420 [ CCD0214A064CA26B6663E8AAA14EBF93 ] C:\Windows\System32\PresentationNative_v0300.dll
17:29:36.0276 2420 C:\Windows\System32\PresentationNative_v0300.dll - ok
17:29:36.0276 2420 [ E94404A007037C5899941F285CA5444D ] C:\Windows\assembly\NativeImages_v2.0.50727_64\WindowsFormsIntegra#\f4d304fcbfda323997083a1f88b83719\WindowsFormsIntegration.ni.dll
17:29:36.0276 2420 C:\Windows\assembly\NativeImages_v2.0.50727_64\WindowsFormsIntegra#\f4d304fcbfda323997083a1f88b83719\WindowsFormsIntegration.ni.dll - ok
17:29:36.0276 2420 [ F244DA6DD2C365ABAFD076222C22C2BE ] C:\Windows\System32\mshtml.dll
17:29:36.0276 2420 C:\Windows\System32\mshtml.dll - ok
17:29:36.0276 2420 [ 766599257D82D3987D7E759824196439 ] C:\Windows\assembly\NativeImages_v2.0.50727_64\UIAutomationProvider\1ff8fb81d6f045f1dc6f50be95444292\UIAutomationProvider.ni.dll
17:29:36.0276 2420 C:\Windows\assembly\NativeImages_v2.0.50727_64\UIAutomationProvider\1ff8fb81d6f045f1dc6f50be95444292\UIAutomationProvider.ni.dll - ok
17:29:36.0292 2420 [ 38781A594B5C035A861D1E47A2CC61A5 ] C:\Program Files (x86)\Avira\AntiVir Desktop\ipmgui.exe
17:29:36.0292 2420 C:\Program Files (x86)\Avira\AntiVir Desktop\ipmgui.exe - ok
17:29:36.0292 2420 [ 162D247E995EAEBF3EF4289069E1111C ] C:\Windows\SysWOW64\devrtl.dll
17:29:36.0292 2420 C:\Windows\SysWOW64\devrtl.dll - ok
17:29:36.0292 2420 [ 40CAEEE0EAF1B8569F7C8DF6420F2CB9 ] C:\Windows\SysWOW64\sfc.dll
17:29:36.0292 2420 C:\Windows\SysWOW64\sfc.dll - ok
17:29:36.0292 2420 [ 84799328D87B3091A3BDD251E1AD31F9 ] C:\Windows\SysWOW64\sfc_os.dll
17:29:36.0292 2420 C:\Windows\SysWOW64\sfc_os.dll - ok
17:29:36.0292 2420 [ BB197F54A8F69EEA8356B7F70E6D3A20 ] C:\Windows\SysWOW64\mshtml.dll
17:29:36.0292 2420 C:\Windows\SysWOW64\mshtml.dll - ok
17:29:36.0308 2420 [ E4024CCF225A936207294DE50925D4F6 ] C:\Users\Malachi\AppData\Local\Google\Update\1.3.21.123\goopdateres_en.dll
17:29:36.0308 2420 C:\Users\Malachi\AppData\Local\Google\Update\1.3.21.123\goopdateres_en.dll - ok
17:29:36.0308 2420 [ 111A198395B36E99497CCF492564D3A5 ] C:\Users\Malachi\AppData\Local\Google\Update\1.3.21.123\psuser.dll
17:29:36.0308 2420 C:\Users\Malachi\AppData\Local\Google\Update\1.3.21.123\psuser.dll - ok
17:29:36.0308 2420 [ 1CDEA9188899E76D4FFD54C9D512CCDB ] C:\Windows\SysWOW64\msxml3.dll
17:29:36.0308 2420 C:\Windows\SysWOW64\msxml3.dll - ok
17:29:36.0308 2420 [ AC5DF873913B00E554D8F553459BC431 ] C:\Windows\System32\qmgrprxy.dll
17:29:36.0308 2420 C:\Windows\System32\qmgrprxy.dll - ok
17:29:36.0323 2420 [ 85B45B4B285B159ACDB355FC8C1E8925 ] C:\Windows\SysWOW64\qmgrprxy.dll
17:29:36.0323 2420 C:\Windows\SysWOW64\qmgrprxy.dll - ok
17:29:36.0323 2420 [ E8A99821C0B3C6BD65BCD11FFB15AD8B ] C:\Windows\System32\bitsprx4.dll
17:29:36.0323 2420 C:\Windows\System32\bitsprx4.dll - ok
17:29:36.0323 2420 [ 027ABB12C83BC3239FC1ADE771282327 ] C:\Windows\SysWOW64\bitsprx4.dll
17:29:36.0323 2420 C:\Windows\SysWOW64\bitsprx4.dll - ok
17:29:36.0323 2420 [ 81252AA3B13743020BCF2089A5A0D911 ] C:\Windows\System32\wscinterop.dll
17:29:36.0323 2420 C:\Windows\System32\wscinterop.dll - ok
17:29:36.0323 2420 [ DF50DAE4C547285E4997A0C61063B632 ] C:\Windows\System32\wscui.cpl
17:29:36.0323 2420 C:\Windows\System32\wscui.cpl - ok
17:29:36.0339 2420 [ 809AE7D4ACE06BBCF621E5C504BF6FC8 ] C:\Windows\System32\hcproviders.dll
17:29:36.0339 2420 C:\Windows\System32\hcproviders.dll - ok
17:29:36.0339 2420 [ 6BCA9480B0B8E71F17C707D904F8F0D1 ] C:\Users\Malachi\AppData\Local\Google\Update\Install\{4B9B8CEF-66DF-4B32-82EB-FE84460401D1}\22.0.1229.79_21.0.1180.89_chrome_updater.exe
17:29:36.0339 2420 C:\Users\Malachi\AppData\Local\Google\Update\Install\{4B9B8CEF-66DF-4B32-82EB-FE84460401D1}\22.0.1229.79_21.0.1180.89_chrome_updater.exe - ok
17:29:36.0339 2420 [ AD718751D220D3A974B8777F9A905539 ] C:\Users\Malachi\AppData\Local\Google\Chrome\Application\21.0.1180.89\Installer\setup.exe
17:29:36.0339 2420 C:\Users\Malachi\AppData\Local\Google\Chrome\Application\21.0.1180.89\Installer\setup.exe - ok
17:29:36.0339 2420 [ 9C17DCD6DDFEB1A012544FAF4F2789F6 ] C:\Windows\AppPatch\AcGenral.dll
17:29:36.0339 2420 C:\Windows\AppPatch\AcGenral.dll - ok
17:29:36.0339 2420 [ 85683DF1F917E4D7F6BE1A04986BF1C8 ] C:\Windows\SysWOW64\msacm32.dll
17:29:36.0339 2420 C:\Windows\SysWOW64\msacm32.dll - ok
17:29:36.0354 2420 [ DCB49CE8E0250A3038A16BF7200B0CEA ] C:\Users\Malachi\AppData\Local\Temp\CR_995E1.tmp\setup.exe
17:29:36.0354 2420 C:\Users\Malachi\AppData\Local\Temp\CR_995E1.tmp\setup.exe - ok
17:29:36.0354 2420 [ 1CBF15FDB0310345A68972EB5C5B948F ] C:\Windows\SysWOW64\mssprxy.dll
17:29:36.0354 2420 C:\Windows\SysWOW64\mssprxy.dll - ok
17:29:36.0354 2420 [ 5987EA8A82C53359BCD2C29D6588583E ] C:\Windows\SysWOW64\linkinfo.dll
17:29:36.0354 2420 C:\Windows\SysWOW64\linkinfo.dll - ok
17:29:36.0354 2420 [ 6194CC4A71F51CF3E815252BB43AAC28 ] C:\Users\Malachi\AppData\Local\Google\Chrome\Application\chrome.exe
17:29:36.0354 2420 C:\Users\Malachi\AppData\Local\Google\Chrome\Application\chrome.exe - ok
17:29:36.0354 2420 [ DCB49CE8E0250A3038A16BF7200B0CEA ] C:\Users\Malachi\AppData\Local\Google\Chrome\Application\22.0.1229.79\Installer\setup.exe
17:29:36.0354 2420 C:\Users\Malachi\AppData\Local\Google\Chrome\Application\22.0.1229.79\Installer\setup.exe - ok
17:29:36.0370 2420 [ 2D53C5F71653EF94E7829846405D4ED2 ] C:\Program Files\Internet Explorer\iexplore.exe
17:29:36.0370 2420 C:\Program Files\Internet Explorer\iexplore.exe - ok
17:29:36.0370 2420 [ 6D622DF510C5A2C5FBDCC0FDAB71A916 ] C:\Program Files\NetBeans 7.2\bin\netbeans64.exe
17:29:36.0370 2420 C:\Program Files\NetBeans 7.2\bin\netbeans64.exe - ok
17:29:36.0370 2420 [ FA556E2A17CCC722C9E95B7616B88BB4 ] C:\Users\Malachi\AppData\Local\TeamSpeak 3 Client\ts3client_win64.exe
17:29:36.0370 2420 C:\Users\Malachi\AppData\Local\TeamSpeak 3 Client\ts3client_win64.exe - ok
17:29:36.0370 2420 [ F2C7BB8ACC97F92E987A2D4087D021B1 ] C:\Windows\System32\notepad.exe
17:29:36.0370 2420 C:\Windows\System32\notepad.exe - ok
17:29:36.0386 2420 [ 10E4A1D2132CCB5C6759F038CDB6F3C9 ] C:\Windows\System32\calc.exe
17:29:36.0386 2420 C:\Windows\System32\calc.exe - ok
17:29:36.0386 2420 [ B3A33600DCDFB84D7FBE09ADEB1C9B8A ] C:\Windows\System32\davclnt.dll
17:29:36.0386 2420 C:\Windows\System32\davclnt.dll - ok
17:29:36.0386 2420 [ 45B24A357C801CE62052FE0CDC8BD4D2 ] C:\Windows\System32\davhlpr.dll
17:29:36.0386 2420 C:\Windows\System32\davhlpr.dll - ok
17:29:36.0386 2420 [ 5F639198C4137075DA50E61C23963C11 ] C:\Windows\System32\drprov.dll
17:29:36.0386 2420 C:\Windows\System32\drprov.dll - ok
17:29:36.0386 2420 [ BC566D17914B07ABAAB3A5A385CC3300 ] C:\Windows\System32\ntlanman.dll
17:29:36.0386 2420 C:\Windows\System32\ntlanman.dll - ok
17:29:36.0401 2420 [ 8FD0EC6EB52F9EFE15B7A605C827932C ] C:\Windows\System32\Defrag.exe
17:29:36.0401 2420 C:\Windows\System32\Defrag.exe - ok
17:29:36.0401 2420 [ F3D202F53A222D5F6944D459B73CF967 ] C:\Windows\System32\fltLib.dll
17:29:36.0401 2420 C:\Windows\System32\fltLib.dll - ok
17:29:36.0401 2420 [ BBB44E9207E7F5A8D931AA6C74962C77 ] C:\Windows\System32\virtdisk.dll
17:29:36.0401 2420 C:\Windows\System32\virtdisk.dll - ok
17:29:36.0401 2420 [ E7FBBF3193E248EE05CBC9562810C44A ] C:\Windows\System32\sxshared.dll
17:29:36.0401 2420 C:\Windows\System32\sxshared.dll - ok
17:29:36.0401 2420 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] C:\Windows\System32\defragsvc.dll
17:29:36.0401 2420 C:\Windows\System32\defragsvc.dll - ok
17:29:36.0417 2420 [ 97B73CAED88D1D8021A8CA3F2605EF6A ] C:\Windows\System32\defragproxy.dll
17:29:36.0417 2420 C:\Windows\System32\defragproxy.dll - ok
17:29:36.0417 2420 [ E3F30C809B0E3C34588BD336D8090CD2 ] C:\Windows\System32\lpremove.exe
17:29:36.0417 2420 C:\Windows\System32\lpremove.exe - ok
17:29:36.0417 2420 [ AEAFE966FB0BEF2F9153B7076BC79127 ] C:\Windows\System32\acproxy.dll
17:29:36.0417 2420 C:\Windows\System32\acproxy.dll - ok
17:29:36.0417 2420 [ 27B9E163740A226B65E4B9E186117911 ] C:\Program Files\Windows Portable Devices\sqmapi.dll
17:29:36.0417 2420 C:\Program Files\Windows Portable Devices\sqmapi.dll - ok
17:29:36.0417 2420 [ EE11A3F03D8B801B721BC6D0089BDD9C ] C:\Windows\System32\ulib.dll
17:29:36.0417 2420 C:\Windows\System32\ulib.dll - ok
17:29:36.0432 2420 [ A3D4197E5DC267D488C467133E8407DF ] C:\Windows\System32\srrstr.dll
17:29:36.0432 2420 C:\Windows\System32\srrstr.dll - ok
17:29:36.0432 2420 [ 50D28F3F8B7C17056520C80A29EFE17C ] C:\Windows\System32\lpksetup.exe
17:29:36.0432 2420 C:\Windows\System32\lpksetup.exe - ok
17:29:36.0432 2420 [ B60BA0BC31B0CB414593E169F6F21CC2 ] C:\Windows\System32\VSSVC.exe
17:29:36.0432 2420 C:\Windows\System32\VSSVC.exe - ok
17:29:36.0432 2420 [ 14768274399730DC93EB2BA4E51C507D ] C:\Windows\System32\xolehlp.dll
17:29:36.0432 2420 C:\Windows\System32\xolehlp.dll - ok
17:29:36.0432 2420 [ 4D85B1B44DC19C0C46E6DDE35895FD0F ] C:\Windows\winsxs\amd64_microsoft-windows-vssproxystub_31bf3856ad364e35_6.1.7601.17514_none_8ee225c94090e933\vss_ps.dll
17:29:36.0432 2420 C:\Windows\winsxs\amd64_microsoft-windows-vssproxystub_31bf3856ad364e35_6.1.7601.17514_none_8ee225c94090e933\vss_ps.dll - ok
17:29:36.0448 2420 [ C2F327F7881DCD88F2EF926381B35E65 ] C:\Windows\System32\catsrvut.dll
17:29:36.0448 2420 C:\Windows\System32\catsrvut.dll - ok
17:29:36.0448 2420 [ AA066E1BE74A2C9DA50092E7245BC33C ] C:\Windows\System32\mfcsubs.dll
17:29:36.0448 2420 C:\Windows\System32\mfcsubs.dll - ok
17:29:36.0448 2420 [ E08E46FDD841B7184194011CA1955A0B ] C:\Windows\System32\swprv.dll
17:29:36.0448 2420 C:\Windows\System32\swprv.dll - ok
17:29:36.0448 2420 [ 356E96B2FE133373116D1AEBBCA896A3 ] C:\Windows\System32\drvstore.dll
17:29:36.0448 2420 C:\Windows\System32\drvstore.dll - ok
17:29:36.0464 2420 [ 814423DBEDE2CACB32C566C9A5C54A97 ] C:\Windows\System32\srhelper.dll
17:29:36.0464 2420 C:\Windows\System32\srhelper.dll - ok
17:29:36.0464 2420 [ E12CFCF1DDBFC50948A75E6E38793225 ] C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
17:29:36.0464 2420 C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe - ok
17:29:36.0464 2420 [ 28F23AF5D04C5B6E50C8951437ED851C ] C:\Program Files (x86)\IObit\Game Booster 3\GBV3ContextMenu.dll
17:29:36.0464 2420 C:\Program Files (x86)\IObit\Game Booster 3\GBV3ContextMenu.dll - ok
17:29:36.0464 2420 [ 919FED82D0A8B1AD2895C7428A1469F2 ] C:\Program Files (x86)\Avira\AntiVir Desktop\shlext64.dll
17:29:36.0464 2420 C:\Program Files (x86)\Avira\AntiVir Desktop\shlext64.dll - ok
17:29:36.0464 2420 [ 33947F1566C8EC685EB6057D882C99D2 ] C:\Windows\System32\synceng.dll
17:29:36.0464 2420 C:\Windows\System32\synceng.dll - ok
17:29:36.0479 2420 [ A10B048B681C38E26CA90CD1BC123604 ] C:\Windows\System32\syncui.dll
17:29:36.0479 2420 C:\Windows\System32\syncui.dll - ok
17:29:36.0479 2420 [ 534D84434D9DB1D1E1E865F64E52AA8E ] C:\Windows\System32\twext.dll
17:29:36.0479 2420 C:\Windows\System32\twext.dll - ok
17:29:36.0479 2420 [ A7118B9A5212C07CE13685603CEA1596 ] C:\Users\Malachi\Documents\WinRAR\RarExt.dll
17:29:36.0479 2420 C:\Users\Malachi\Documents\WinRAR\RarExt.dll - ok
17:29:36.0479 2420 [ 9ED9F21D73F9D71E30EAB71835E656EB ] C:\Users\Malachi\Desktop\tdsskiller.exe
17:29:36.0479 2420 C:\Users\Malachi\Desktop\tdsskiller.exe - ok
17:29:36.0479 2420 [ 0B5511674394666E9D221F8681B2C2E6 ] C:\Windows\System32\consent.exe
17:29:36.0479 2420 C:\Windows\System32\consent.exe - ok
17:29:36.0495 2420 [ F146E2BA475893DD77B2370DC1211FC6 ] C:\Windows\System32\drivers\38291789.sys
17:29:36.0495 2420 C:\Windows\System32\drivers\38291789.sys - ok
17:29:36.0495 2420 [ 102CF6879887BBE846A00C459E6D4ABC ] C:\Windows\SysWOW64\riched20.dll
17:29:36.0495 2420 C:\Windows\SysWOW64\riched20.dll - ok
17:29:36.0495 2420 [ E2A17BCC08D92F42E08AF6BA2F93ABA7 ] C:\Windows\SysWOW64\ExplorerFrame.dll
17:29:36.0495 2420 C:\Windows\SysWOW64\ExplorerFrame.dll - ok
17:29:36.0495 2420 [ EE06B85BC69F18826302348A2AD089E0 ] C:\Windows\SysWOW64\dui70.dll
17:29:36.0495 2420 C:\Windows\SysWOW64\dui70.dll - ok
17:29:36.0495 2420 [ 6E1F8165C365D35C8E3C045AF0CDD481 ] C:\Windows\SysWOW64\duser.dll
17:29:36.0495 2420 C:\Windows\SysWOW64\duser.dll - ok
17:29:36.0510 2420 ============================================================
17:29:36.0510 2420 Scan finished
17:29:36.0510 2420 ============================================================
17:29:36.0510 1388 Detected object count: 1
17:29:36.0510 1388 Actual detected object count: 1
18:03:06.0047 1388 C:\Program Files (x86)\Hi-Rez Studios\HiPatchService.exe - copied to quarantine
18:03:06.0047 1388 HiPatchService ( UnsignedFile.Multi.Generic ) - User select action: Quarantine

#12 fireman4it

fireman4it

    Bleepin' Fireman


  • Malware Response Team
  • 13,512 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Greenup, Ill USA
  • Local time:06:10 AM

Posted 27 September 2012 - 06:19 PM

Hello,

Lets run a couple of other scans for any leftovers.

1.
Please download Malwarebytes Anti-Malware and save it to your desktop.
  • Important!! When you save the mbam-setup file, rename it to something random (such as 123abc.exe) before beginning the download.
Malwarebytes may "make changes to your registry" as part of its disinfection routine. If using other security programs that detect registry changes (ie Spybot's Teatimer), they may interfere or alert you. Temporarily disable such programs or permit them to allow the changes.

  • Make sure you are connected to the Internet and double-click on the renamed file to install the application.
    For instructions with screenshots, please refer to this Guide.
  • When the installation begins, follow the prompts and do not make any changes to default settings.
  • Malwarebytes will automatically start and you will be asked to update the program before performing a scan.
  • If an update is found, the program will automatically update itself. Press the OK button and continue.
  • If you encounter any problems while downloading the definition updates, manually download them from here and just double-click on mbam-rules.exe to install.
  • Under the Scanner tab, make sure the "Perform Quick Scan" option is selected.
  • Click on the Scan button.
  • When finished, a message box will say "The scan completed successfully. Click 'Show Results' to display all objects found".
  • Click OK to close the message box, then click the Show Results button to see a list of any malware that was found.
  • Make sure that everything is checked and then click Remove Selected.
  • When removal is completed, a log report will open in Notepad.
  • The log is automatically saved and can be viewed by clicking the Logs tab.
  • Copy and paste the contents of that report in your next reply. Be sure to post the complete log to include the top portion which shows the database version and your operating system.
  • Exit Malwarebytes when done.
Note: If Malwarebytes encounters a file that is difficult to remove, you will be asked to reboot your computer so it can proceed with the disinfection process. If asked to restart the computer, please do so immediately. Failure to reboot normally will prevent Malwarebytes from removing all the malware.


2.
I'd like us to scan your machine with ESET OnlineScan
  • Hold down Control and click on this link to open ESET OnlineScan in a new window.
  • Click the Posted Image button.
  • For alternate browsers only: (Microsoft Internet Explorer users can skip these steps)
    • Click on esetsmartinstaller_enu.exe to download the ESET Smart Installer. Save it to your desktop.
    • Double click on the Posted Image
      icon on your desktop.
  • Check "YES, I accept the Terms of Use."
  • Click the Start button.
  • Accept any security warnings from your browser.
  • Under scan settings, check "Scan Archives" and "Remove found threats"
  • Click Advanced settings and select the following:
    • Scan potentially unwanted applications
    • Scan for potentially unsafe applications
    • Enable Anti-Stealth technology
  • ESET will then download updates for itself, install itself, and begin scanning your computer. Please be patient as this can take some time.
  • When the scan completes, click List Threats
  • Click Export, and save the file to your desktop using a unique name, such as ESETScan. Include the contents of this report in your next reply.
  • Click the Back button.
  • Click the Finish button.

Things to include in your next reply:;
MBAM log
Eset log
How is your machine running now?

" Extinguishing Malware from the world"

The Virus, Trojan, Spyware, and Malware Removal forum is very busy. If I'm helping you and I've not posted back within 24 hrs., send a PM with your topic link. Thank you.

ALL OTHER HELP REQUESTS VIA THE PM SYSTEM WILL BE IGNORED. The Forums are there for a reason!
Thanks-


  userbar_eis_500.gif

If I have helped you, consider making a donation to help me continue the fight against Malware! Just click btn_donate_LG.gif


#13 fireman4it

fireman4it

    Bleepin' Fireman


  • Malware Response Team
  • 13,512 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Greenup, Ill USA
  • Local time:06:10 AM

Posted 29 September 2012 - 08:43 PM

Hello.

Are you still there?

If you are please follow the instructions in my previous post.

If you still need help, follow the instructions I have given in my response. If you have since had your problem solved, we would appreciate you letting us know so we can close the topic.

Please reply back telling us so. If you don't reply within 3-5 days the topic will need to be closed.

Thanks for understanding :)

With Regards,
fireman4it

" Extinguishing Malware from the world"

The Virus, Trojan, Spyware, and Malware Removal forum is very busy. If I'm helping you and I've not posted back within 24 hrs., send a PM with your topic link. Thank you.

ALL OTHER HELP REQUESTS VIA THE PM SYSTEM WILL BE IGNORED. The Forums are there for a reason!
Thanks-


  userbar_eis_500.gif

If I have helped you, consider making a donation to help me continue the fight against Malware! Just click btn_donate_LG.gif


#14 fireman4it

fireman4it

    Bleepin' Fireman


  • Malware Response Team
  • 13,512 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Greenup, Ill USA
  • Local time:06:10 AM

Posted 02 October 2012 - 06:37 PM

Due to the lack of feedback, this topic is now closed.In the event you still have problems, please send me or any Moderator a Private Message and ask them to reopen this topic within the next 5 days. Please include a link to your topic in the Private Message. Thank you.

" Extinguishing Malware from the world"

The Virus, Trojan, Spyware, and Malware Removal forum is very busy. If I'm helping you and I've not posted back within 24 hrs., send a PM with your topic link. Thank you.

ALL OTHER HELP REQUESTS VIA THE PM SYSTEM WILL BE IGNORED. The Forums are there for a reason!
Thanks-


  userbar_eis_500.gif

If I have helped you, consider making a donation to help me continue the fight against Malware! Just click btn_donate_LG.gif





0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users