Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

BSOD But I Can access in Safe Mode


  • This topic is locked This topic is locked
60 replies to this topic

#1 cctexun

cctexun

  • Members
  • 116 posts
  • OFFLINE
  •  
  • Local time:02:09 PM

Posted 02 October 2012 - 07:07 PM

I have something going on. I can turn my computer on but after the desktop shows and I get ready to open Firefox the BSOD comes up and we go to black if I leave it alone it will restart over and over.

For the past two weeks I have intermittently not been able to connect to my network, even though I had excellent signal strength. For a moment it would connect then show as limited access and boot me off. reboot would gain access only to be booted off again. rebooting router would allow access for a while then off again. Last week I started having issues, slow startup, slow load, inability to access the network,

I have an E-machines EL1850-UR11P running windows 7 with service pack 1. Access the net on Firefox. with Symantec Client Security that I have run on startup. I have found that Live update has been failing to update and "LU1803 Failed to update" appears. It appears I have not updated since the middle of September but I am sure I have updated this past week but it does not show. About the same time I noticed that Symantec had a notice in the lower right hand corner it was not reporting in a form recognized by my system. Or something like that.I also have Malwarebytes Anti-Mal ware installed that I manually update periodically.

Then Malwarebytes reported it was no longer working that my trial edition had expired. I continued updating and running it or so I thought. Then thought I ought to UN-install and reinstall a new download of malwarebytes. Tried to update both but did not seem to do so. The scans I have been running have showed no threats. Confusing to this fella. So I just rebooted till it worked.

I have gone thru the preparation guide pinned by Grinler in 2005. Ran RKILL 2.4.3 reinstalled and ran MalwareBytes Anti malware and got no reports of problems. Downloaded DEFOGGER and disabled CD emulation. Downloaded DDS ran it and saved 2 files to attach when asked. Downloaded GMER but won't let me choose any options other than registry, files, the c drive, and services everything else is greyed out. Anyway I ran a scan and it shows no instances of changes.

So now I am wondering what is the next step in this process. I thank you for reading this post by an old guy that really does not understand the lingo nor why he is trying to repair this newfangled corntraption. But this is a challenge and I need one today. Be warned I am limited in my understanding of the vernacular used in computer communications so please be gentle.

I thank you for your time and am amazed at the extent you kind souls go to assist those of us who have let our guard down and allowed a problem to enter our amazing machines.

Attached Files


Edited by cctexun, 03 October 2012 - 06:43 PM.


BC AdBot (Login to Remove)

 


#2 cctexun

cctexun
  • Topic Starter

  • Members
  • 116 posts
  • OFFLINE
  •  
  • Local time:02:09 PM

Posted 03 October 2012 - 08:59 PM

Here is the log file from DDS from my post above.


DDS (Ver_2011-08-26.01) - NTFSAMD64 NETWORK
Internet Explorer: 9.0.8112.16421 BrowserJavaVersion: 10.7.2
Run by Dave Haddad at 16:16:30 on 2012-10-02
Microsoft Windows 7 Home Premium 6.1.7601.1.1252.1.1033.18.2013.1016 [GMT -5:00]
.
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
============== Running Processes ===============
.
C:\Windows\system32\wininit.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k NetworkService
C:\Program Files (x86)\Common Files\Symantec Shared\ccSvcHst.exe
C:\Windows\Explorer.EXE
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Windows\system32\ctfmon.exe
C:\Program Files (x86)\Symantec AntiVirus\Rtvscan.exe
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k secsvcs
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Windows\SysWOW64\cmd.exe
C:\Windows\system32\conhost.exe
C:\Windows\SysWOW64\cscript.exe
C:\Windows\system32\wbem\wmiprvse.exe
.
============== Pseudo HJT Report ===============
.
uStart Page = hxxp://emachines.msn.com
uDefault_Page_URL = hxxp://emachines.msn.com
mDefault_Page_URL = hxxp://emachines.msn.com
mStart Page = hxxp://emachines.msn.com
uInternet Settings,ProxyOverride = *.local
mWinlogon: Userinit=userinit.exe
BHO: Adobe PDF Link Helper: {18df081c-e8ad-4283-a596-fa578c2ebdc3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
BHO: RealPlayer Download and Record Plugin for Internet Explorer: {3049c3e9-b461-4bc5-8870-4c09146192ca} - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugin.dll
BHO: Java™ Plug-In SSV Helper: {761497bb-d6f0-462c-b6eb-d4daf1d92d43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
BHO: Windows Live ID Sign-in Helper: {9030d464-4c02-4abf-8ecc-5164760863c6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
BHO: Adobe PDF Conversion Toolbar Helper: {ae7cd045-e861-484f-8273-0445ee161910} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
BHO: Java™ Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
BHO: SmartSelect Class: {f4971ee7-daa0-4053-9964-665d8ee6a077} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
TB: Adobe PDF: {47833539-d0c5-4125-9fa8-0819e2eaac93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
mRun: [ccApp] "C:\Program Files (x86)\Common Files\Symantec Shared\ccApp.exe"
mRun: [vptray] C:\PROGRA~2\SYMANT~1\VPTray.exe
mRun: [<NO NAME>]
mRun: [Acrobat Assistant 8.0] "C:\Program Files (x86)\Adobe\Acrobat 9.0\Acrobat\Acrotray.exe"
mRun: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
mRun: [IJNetworkScanUtility] C:\Program Files (x86)\Canon\Canon IJ Network Scan Utility\CNMNSUT.EXE
mRun: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
mRun: [iTunesHelper] "C:\Program Files (x86)\iTunes\iTunesHelper.exe"
mRun: [TkBellExe] "C:\Program Files (x86)\Real\RealPlayer\update\realsched.exe" -osboot
mRun: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
mRunOnce: [Malwarebytes Anti-Malware] C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe /install /silent
mPolicies-explorer: NoActiveDesktop = 1 (0x1)
mPolicies-system: ConsentPromptBehaviorAdmin = 5 (0x5)
mPolicies-system: ConsentPromptBehaviorUser = 3 (0x3)
mPolicies-system: EnableUIADesktopToggle = 0 (0x0)
IE: Append Link Target to Existing PDF - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIEAppendSelLinks.html
IE: Append to Existing PDF - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIEAppend.html
IE: Convert Link Target to Adobe PDF - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIECaptureSelLinks.html
IE: Convert to Adobe PDF - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIECapture.html
IE: E&xport to Microsoft Excel - C:\PROGRA~2\MICROS~3\Office12\EXCEL.EXE/3000
IE: {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - {5F7B1267-94A9-47F5-98DB-E99415F33AEC} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503} - C:\PROGRA~2\MICROS~3\Office12\REFIEBAR.DLL
TCP: DhcpNameServer = 192.168.1.254
TCP: Interfaces\{ABCEC715-48A2-46DC-9DF5-6A7DBB132B2D} : DhcpNameServer = 192.168.1.254
TCP: Interfaces\{BCDA8412-3128-41BF-A242-FD5B7F32D39A} : DhcpNameServer = 192.168.1.254
TCP: Interfaces\{BCDA8412-3128-41BF-A242-FD5B7F32D39A}\2375942554032303 : DhcpNameServer = 192.168.1.254
TCP: Interfaces\{BCDA8412-3128-41BF-A242-FD5B7F32D39A}\2375942554830303 : DhcpNameServer = 192.168.1.254
TCP: Interfaces\{BF9F04BB-C5EB-494C-9375-71BC1DA463D8} : DhcpNameServer = 192.168.1.254
Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
BHO-X64: Adobe PDF Link Helper: {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
BHO-X64: AcroIEHelperStub - No File
BHO-X64: RealPlayer Download and Record Plugin for Internet Explorer: {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugin.dll
BHO-X64: Java™ Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
BHO-X64: Windows Live ID Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
BHO-X64: Adobe PDF Conversion Toolbar Helper: {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
BHO-X64: Java™ Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
BHO-X64: SmartSelect Class: {F4971EE7-DAA0-4053-9964-665D8EE6A077} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
BHO-X64: SmartSelect - No File
TB-X64: Adobe PDF: {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
mRun-x64: [ccApp] "C:\Program Files (x86)\Common Files\Symantec Shared\ccApp.exe"
mRun-x64: [vptray] C:\PROGRA~2\SYMANT~1\VPTray.exe
mRun-x64: [(Default)]
mRun-x64: [Acrobat Assistant 8.0] "C:\Program Files (x86)\Adobe\Acrobat 9.0\Acrobat\Acrotray.exe"
mRun-x64: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
mRun-x64: [IJNetworkScanUtility] C:\Program Files (x86)\Canon\Canon IJ Network Scan Utility\CNMNSUT.EXE
mRun-x64: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
mRun-x64: [iTunesHelper] "C:\Program Files (x86)\iTunes\iTunesHelper.exe"
mRun-x64: [TkBellExe] "C:\Program Files (x86)\Real\RealPlayer\update\realsched.exe" -osboot
mRun-x64: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
mRunOnce-x64: [Malwarebytes Anti-Malware] C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe /install /silent
.
================= FIREFOX ===================
.
FF - ProfilePath - C:\Users\Dave Haddad\AppData\Roaming\Mozilla\Firefox\Profiles\hlv0d6qt.default\
FF - prefs.js: browser.startup.homepage - hxxp://www.google.com/advanced_search
FF - plugin: C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll
FF - plugin: C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll
FF - plugin: C:\Program Files (x86)\Google\Update\1.3.21.123\npGoogleUpdate3.dll
FF - plugin: C:\Program Files (x86)\Java\jre6\bin\new_plugin\npdeployJava1.dll
FF - plugin: C:\Program Files (x86)\Java\jre6\bin\plugin2\npdeployJava1.dll
FF - plugin: C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll
FF - plugin: c:\Program Files (x86)\Microsoft Silverlight\5.1.10411.0\npctrlui.dll
FF - plugin: C:\Program Files (x86)\Mozilla Firefox\plugins\nprpplugin.dll
FF - plugin: c:\program files (x86)\real\realplayer\Netscape6\nprpplugin.dll
FF - plugin: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
FF - plugin: C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprpchromebrowserrecordext.dll
FF - plugin: C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprphtml5videoshim.dll
FF - plugin: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_4_402_265.dll
FF - plugin: C:\Windows\SysWOW64\npDeployJava1.dll
FF - plugin: C:\Windows\SysWOW64\npmproxy.dll
.
============= SERVICES / DRIVERS ===============
.
R1 vwififlt;Virtual WiFi Filter Driver;C:\Windows\system32\DRIVERS\vwififlt.sys --> C:\Windows\system32\DRIVERS\vwififlt.sys [?]
R2 Symantec AntiVirus;Symantec AntiVirus;C:\Program Files (x86)\Symantec AntiVirus\Rtvscan.exe [2008-10-23 1956752]
R3 netr28x;Ralink 802.11n Extensible Wireless Driver;C:\Windows\system32\DRIVERS\netr28x.sys --> C:\Windows\system32\DRIVERS\netr28x.sys [?]
R3 RTL8167;Realtek 8167 NT Driver;C:\Windows\system32\DRIVERS\Rt64win7.sys --> C:\Windows\system32\DRIVERS\Rt64win7.sys [?]
S2 AdobeARMservice;Adobe Acrobat Update Service;C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2012-7-27 63960]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-3-18 138576]
S2 GREGService;GREGService;C:\Program Files (x86)\eMachines\Registration\GREGsvc.exe [2010-1-8 23584]
S2 gupdate;Google Update Service (gupdate);C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2011-8-20 136176]
S2 MBAMScheduler;MBAMScheduler;C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [2012-9-11 399432]
S2 Updater Service;Updater Service;C:\Program Files\eMachines\eMachines Updater\UpdaterService.exe [2010-9-2 243232]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service;C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-7-24 250568]
S3 EraserUtilRebootDrv;EraserUtilRebootDrv;C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [2012-8-10 138912]
S3 FLEXnet Licensing Service 64;FLEXnet Licensing Service 64;C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe [2011-7-30 1038088]
S3 gupdatem;Google Update Service (gupdatem);C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2011-8-20 136176]
S3 MozillaMaintenance;Mozilla Maintenance Service;C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2012-5-3 114144]
S3 rt70x64;Linksys Home Wireless-G USB Adaptor Driver;C:\Windows\system32\DRIVERS\netr7064.sys --> C:\Windows\system32\DRIVERS\netr7064.sys [?]
S3 TsUsbFlt;TsUsbFlt;C:\Windows\system32\drivers\tsusbflt.sys --> C:\Windows\system32\drivers\tsusbflt.sys [?]
S3 WatAdminSvc;Windows Activation Technologies Service;C:\Windows\system32\Wat\WatAdminSvc.exe --> C:\Windows\system32\Wat\WatAdminSvc.exe [?]
S4 wlcrasvc;Windows Live Mesh remote connections service;C:\Program Files\Windows Live\Mesh\wlcrasvc.exe [2010-9-22 57184]
.
=============== Created Last 30 ================
.
2012-10-02 14:32:06 69000 ----a-w- C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{8FCB286E-923C-4E5F-ADC9-E539D02306A9}\offreg.dll
2012-10-02 00:52:01 9310152 ----a-w- C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{8FCB286E-923C-4E5F-ADC9-E539D02306A9}\mpengine.dll
2012-09-12 00:55:56 950128 ----a-w- C:\Windows\System32\drivers\ndis.sys
2012-09-12 00:55:56 41472 ----a-w- C:\Windows\System32\drivers\RNDISMP.sys
2012-09-12 00:55:49 574464 ----a-w- C:\Windows\System32\d3d10level9.dll
2012-09-12 00:55:49 490496 ----a-w- C:\Windows\SysWow64\d3d10level9.dll
2012-09-12 00:55:45 376688 ----a-w- C:\Windows\System32\drivers\netio.sys
2012-09-12 00:55:45 288624 ----a-w- C:\Windows\System32\drivers\FWPKCLNT.SYS
2012-09-12 00:55:45 1913200 ----a-w- C:\Windows\System32\drivers\tcpip.sys
2012-09-08 11:38:59 73696 ----a-w- C:\Program Files (x86)\Mozilla Firefox\breakpadinjector.dll
2012-09-08 11:38:59 266720 ----a-w- C:\Program Files (x86)\Mozilla Firefox\components\browsercomps.dll
2012-09-08 11:38:59 18912 ----a-w- C:\Program Files (x86)\Mozilla Firefox\AccessibleMarshal.dll
.
==================== Find3M ====================
.
2012-09-13 19:53:45 60304 ----a-w- C:\Users\Dave Haddad\g2mdlhlpx.exe
2012-09-07 22:04:46 25928 ----a-w- C:\Windows\System32\drivers\mbam.sys
2012-09-01 12:59:59 108008 ----a-w- C:\Windows\System32\WindowsAccessBridge-64.dll
2012-09-01 12:59:57 916456 ----a-w- C:\Windows\System32\deployJava1.dll
2012-09-01 12:59:57 1034216 ----a-w- C:\Windows\System32\npDeployJava1.dll
2012-09-01 12:58:09 95208 ----a-w- C:\Windows\SysWow64\WindowsAccessBridge-32.dll
2012-09-01 12:58:08 821736 ----a-w- C:\Windows\SysWow64\npDeployJava1.dll
2012-09-01 12:58:08 746984 ----a-w- C:\Windows\SysWow64\deployJava1.dll
2012-08-21 22:20:36 73416 ----a-w- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl
2012-08-21 22:20:36 696520 ----a-w- C:\Windows\SysWow64\FlashPlayerApp.exe
2012-07-18 18:15:06 3148800 ----a-w- C:\Windows\System32\win32k.sys
2012-07-04 22:13:27 59392 ----a-w- C:\Windows\System32\browcli.dll
2012-07-04 22:13:27 136704 ----a-w- C:\Windows\System32\browser.dll
.
============= FINISH: 16:17:05.98 ===============

#3 Oh My!

Oh My!

    Adware and Spyware and Malware.....


  • Malware Response Instructor
  • 37,022 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:California
  • Local time:11:09 AM

Posted 05 October 2012 - 08:34 AM

Greetings cctexun and :welcome: to BleepingComputer's Virus/Trojan/Spyware/Malware Removal forum.

My name is Oh My! and I am here to help you! Now that we are "friends" please call me Gary. If you would allow me to call you by your first name I would prefer to. :thumbup2:


===================================================


Ground Rules:

  • First, I would also like to inform you that most of us here at Bleeping Computer offer our expert assistance out of the goodness of our hearts. Please try to match our commitment to you with your patience toward us. If this was easy we would never have met. :)
  • Please do not run any tools or take any steps other than those I will provide for you while we work on your computer together. I need to be certain about the state of your computer in order to provide appropriate and effective steps for you to take. Most often "well intentioned" (and usually panic driven!) independent efforts can make things much worse for both of us. If at any point you would prefer to take your own steps please let me know, I will not be offended. I would be happy to focus on the many others who are waiting in line for assistance.
  • Please perform all steps in the order they are listed in each set of instructions. Some steps may be a bit complicated. If things are not clear, be sure to stop and let me know. We need to work on this together with confidence.
  • Please copy and paste all logs into your post unless directed otherwise. Please do not re-run any programs I suggest. If you encounter problems simply stop and tell me about it.
  • When you post your reply, do not use the Posted Image button but use the Posted Image button instead.
  • In the upper right hand corner of the topic you will see the Posted Image button. Click on this then choose Immediate E-Mail notification and then Proceed and you will be sent an email once I have posted a response.
  • If you do not reply to your topic after 5 days we assume it has been abandoned and I will close it.
  • When your computer is clean I will alert you of such. I will also provide for you detailed information about how you can combat future infections.
  • I would like to remind you to make no further changes to your computer unless I direct you to do so.
  • Now let's get started :thumbup2:

===================================================


Now that I am assisting you, you can expect that I will be very responsive to your situation. If you are able, I would request you check this thread at least once per day so that we can try to resolve your issues effectively and efficiently. If you are going to be delayed please be considerate and post that information so that I know you are still with me. Unfortunately, there are many people waiting to be assisted and not enough of us at BleepingComputer to go around. I appreciate your understanding and diligence.

Thank you for your patience thus far. Please allow me some time to review the information you have provided. I will post back as soon as possible.

And by the way, don't feel bad. I don't really know anything about computers either! (just kidding)
Gary
 
If I do not reply within 24 hours please send me a Personal Message.

"Lord, to whom would we go? You have the words that give eternal life. We believe, and we know you are the Holy One of God."

#4 Oh My!

Oh My!

    Adware and Spyware and Malware.....


  • Malware Response Instructor
  • 37,022 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:California
  • Local time:11:09 AM

Posted 05 October 2012 - 09:02 AM

Greetings cctexun,

This is not a race and there is no need for you to rush to take steps I have not fully explained in my instructions. If there is something you are unsure of please stop and ask for clarification. I will attempt to be very clear in my instructions but sometimes I fall short.

Before we start actually cleaning your computer I would like to gather some more detailed information. Please perform the below.


===================================================


Farbar's Recovery Scan Tool

--------------------

I would like you to run Farbar's Recovery Scan Tool. For this you will need a USB flash drive and start on a clean computer.

From a clean computer download Farbar Recovery Scan Tool x64 and save it to a flash drive.

Plug the flashdrive into the infected PC and we will enter the System Recovery Options one of the two following ways (try the first way first):

To enter System Recovery Options from the Advanced Boot Options:

  • Restart the computer.
  • As soon as the computer starts booting up begin tapping the F8 key until Advanced Boot Options appears.
  • Use the arrow keys to select the Repair your computer menu item.
  • Select English as the keyboard language settings, and then click Next.
  • Select the operating system you want to repair, and then click Next.
  • Select your user account an click Next.
To enter System Recovery Options by using Windows installation disc:

  • Insert the installation disc.
  • Restart your computer.
  • If prompted, press any key to start Windows from the installation disc. If your computer is not configured to start from a CD or DVD, check your BIOS settings.
  • Click Repair your computer.
  • Select English as the keyboard language settings, and then click Next.
  • Select the operating system you want to repair, and then click Next.
  • Select your user account and click Next.
Once you are in the System Recovery Options menu you will get the following options:

Startup Repair
System Restore
Windows Complete PC Restore
Windows Memory Diagnostic Tool
Command Prompt

  • Select Command Prompt
  • In the command window type in Notepad and press Enter.
  • The notepad opens. Under File menu select Open.
  • Select Computer and find your flash drive letter and close the notepad.
  • In the command window type e:\frst.exe (for x64 bit version type e:\frst64) and press Enter
    • Note: Replace letter e with the drive letter of your flash drive.
  • The tool will start to run.
  • When the tool opens click Yes to disclaimer.
  • Press Scan button.
  • It will make a log (FRST.txt) on the flash drive. Please copy and paste the contents of that document in your reply.

===================================================


Things I would like to see in your next reply. Please be sure to copy and paste the information rather than send an attachment. :thumbsup2:

  • FRST.txt

Gary
 
If I do not reply within 24 hours please send me a Personal Message.

"Lord, to whom would we go? You have the words that give eternal life. We believe, and we know you are the Holy One of God."

#5 cctexun

cctexun
  • Topic Starter

  • Members
  • 116 posts
  • OFFLINE
  •  
  • Local time:02:09 PM

Posted 05 October 2012 - 09:15 AM

Oh My main man Gary, I am Dave. Since I got impatient, confused, antsy, fidgety, last nite and early this morning I ran some stuff. This is what I have done, I think.
1.Event viewer from start menu.
2. opened Device manager and looked at drivers seems "Security Process Loader driver" is not present or not working properly. Status stopped. had a bright yellow "thingie" over the symbol to the left. (Technical terms of course)Pressed start but nothing happened I think I got a note that said would not work while in safe mode.
3. Found out my hard drive is Seagate ST3500418AS ATA
4. went to Sysnative site and posted. ran jcgriff2 BSOD file collection app.
5. while waiting ran Driver verifier, rebooted in safe mode, selected system restore. don't think I got any results that I could find from driver verifier. may need to attend to driver verifier status at this point got confused and not sure what I did to it. maybe nothing but may have left it in off or reset position.
6. Ran System recovery options. Startup repair run System restore and got error DX80070002
7. Looked for system information went to start menu in the box typed MSINFO32 saved the file

I can still open in safe mode and still get BSOD in normal startup. And windows update is not working nor Malwarebytes and can no longer find Symantec.



Okay that is all I have in my notes. So if you need me to get outta your hair since I may have messed it up beyond repair I certainly will understand. But if we can proceed forward I will cease my floundering around and dance with you only.

I await your learned direction. Just remember I am a novice and as Sargent Schultz says "I know nothing". Thanks for reading this ramble. I try to be succinct but usually fail.

Edited by cctexun, 05 October 2012 - 09:17 AM.


#6 Oh My!

Oh My!

    Adware and Spyware and Malware.....


  • Malware Response Instructor
  • 37,022 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:California
  • Local time:11:09 AM

Posted 05 October 2012 - 09:26 AM

Hi Dave,

No problem, I understand getting impatient. The only efficient way to address your issue is for one forum to work on it, rather than two. It is completely up to you about which forum you would like to stick with. If it is BleepingComputer, I would recommend you post at Sysnative and let them know you are being helped by another forum. If you prefer to work with them I won't be offended. Just let me know.

If you want to continue here I would still like you to run Farbar's Recovery Scan Tool. It is much better to target issues we have identified than to guess at it.

You choose which forum would make you happier and I am good with it.
Gary
 
If I do not reply within 24 hours please send me a Personal Message.

"Lord, to whom would we go? You have the words that give eternal life. We believe, and we know you are the Holy One of God."

#7 cctexun

cctexun
  • Topic Starter

  • Members
  • 116 posts
  • OFFLINE
  •  
  • Local time:02:09 PM

Posted 05 October 2012 - 09:29 AM

Bleeping computer is the place for me, no more shaking those other trees. sung to green acres theme.

#8 Oh My!

Oh My!

    Adware and Spyware and Malware.....


  • Malware Response Instructor
  • 37,022 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:California
  • Local time:11:09 AM

Posted 05 October 2012 - 09:32 AM

I'm glad to hear. I look forward to working with you. As soon as you post the results we will get right down to it.
Gary
 
If I do not reply within 24 hours please send me a Personal Message.

"Lord, to whom would we go? You have the words that give eternal life. We believe, and we know you are the Holy One of God."

#9 cctexun

cctexun
  • Topic Starter

  • Members
  • 116 posts
  • OFFLINE
  •  
  • Local time:02:09 PM

Posted 05 October 2012 - 10:15 AM

Gary i am getting "g:\frst.exe" is not recognized as an internal external command operable program or batch file.

Aha cuz its e not g. rats that didn't work neither.

should i delete the other files on my usb stick

Yeehaa g:\FRST64.exe is working

Gary just found out my symantec client security has an old endpoint driver from 2008 pre Win 7. Which program would you suggest for me to replace it with. I would like to tend to that matter when you think I should. Till then I await your instructions.

Edited by cctexun, 05 October 2012 - 12:23 PM.


#10 cctexun

cctexun
  • Topic Starter

  • Members
  • 116 posts
  • OFFLINE
  •  
  • Local time:02:09 PM

Posted 05 October 2012 - 11:57 AM

Presto All I hadda do was to pay attention to the actual name of the file and plug the capital letters and numbers and here ya go big fella. Shoot, watch out BSOD I am coming after you. Here is the Log from FRST64.exe Okie dokie big fella whats the next step. This one only took me 7-8 restarts to get it right, I ain't afeerd. Thanks Gary I appreciate your guidance.

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 02-10-2012 01
Ran by SYSTEM at 05-10-2012 11:37:57
Running from G:\
Windows 7 Home Premium (X64) OS Language: English(US)
The current controlset is ControlSet001

==================== Registry (Whitelisted) ===================

HKLM\...\Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe -s [8312352 2009-11-02] (Realtek Semiconductor)
HKLM-x32\...\Run: [ccApp] "C:\Program Files (x86)\Common Files\Symantec Shared\ccApp.exe" [115560 2008-01-31] (Symantec Corporation)
HKLM-x32\...\Run: [vptray] C:\PROGRA~2\SYMANT~1\VPTray.exe [136080 2008-10-23] (Symantec Corporation)
HKLM-x32\...\Run: [] [x]
HKLM-x32\...\Run: [Acrobat Assistant 8.0] "C:\Program Files (x86)\Adobe\Acrobat 9.0\Acrobat\Acrotray.exe" [640376 2008-06-11] (Adobe Systems Inc.)
HKLM-x32\...\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [919008 2012-07-27] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [IJNetworkScanUtility] C:\Program Files (x86)\Canon\Canon IJ Network Scan Utility\CNMNSUT.EXE [124512 2007-05-21] (CANON INC.)
HKLM-x32\...\Run: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe" [59240 2012-02-20] (Apple Inc.)
HKLM-x32\...\Run: [iTunesHelper] "C:\Program Files (x86)\iTunes\iTunesHelper.exe" [421736 2012-03-27] (Apple Inc.)
HKLM-x32\...\Run: [TkBellExe] "C:\Program Files (x86)\Real\RealPlayer\update\realsched.exe" -osboot [296056 2012-05-27] (RealNetworks, Inc.)
HKLM-x32\...\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe" [252848 2012-07-03] (Sun Microsystems, Inc.)
HKU\Default\...\RunOnce: [ScrSav] C:\Program Files (x86)\eMachines\Screensaver\run_eMachines.exe /default [x]
HKU\Default User\...\RunOnce: [ScrSav] C:\Program Files (x86)\eMachines\Screensaver\run_eMachines.exe /default [x]
Tcpip\Parameters: [DhcpNameServer] 192.168.1.254

==================== Services (Whitelisted) ===================

2 ccEvtMgr; "C:\Program Files (x86)\Common Files\Symantec Shared\ccSvcHst.exe" /h ccCommon [108392 2008-01-31] (Symantec Corporation)
2 ccSetMgr; "C:\Program Files (x86)\Common Files\Symantec Shared\ccSvcHst.exe" /h ccCommon [108392 2008-01-31] (Symantec Corporation)
2 DefWatch; "C:\Program Files (x86)\Symantec AntiVirus\DefWatch.exe" [31120 2008-10-23] (Symantec Corporation)
2 GREGService; C:\Program Files (x86)\eMachines\Registration\GREGsvc.exe [23584 2010-01-08] (Acer Incorporated)
3 LiveUpdate; "C:\PROGRA~2\Symantec\LIVEUP~1\LUCOMS~1.EXE" [3093872 2008-09-18] (Symantec Corporation)
2 MBAMScheduler; "C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe" [399432 2012-09-07] (Malwarebytes Corporation)
2 MBAMService; "C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe" [676936 2012-09-07] (Malwarebytes Corporation)
2 Symantec AntiVirus; "C:\Program Files (x86)\Symantec AntiVirus\Rtvscan.exe" [1956752 2008-10-23] (Symantec Corporation)
2 Updater Service; C:\Program Files\eMachines\eMachines Updater\UpdaterService.exe [243232 2010-01-28] (Acer Group)

==================== Drivers (Whitelisted) =====================

1 eeCtrl; \??\C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys [484512 2012-07-31] (Symantec Corporation)
3 EraserUtilRebootDrv; \??\C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [138912 2012-07-31] (Symantec Corporation)
3 MBAMProtector; \??\C:\Windows\system32\drivers\mbam.sys [25928 2012-09-07] (Malwarebytes Corporation)
3 NAVENG; \??\C:\PROGRA~3\Symantec\DEFINI~1\VIRUSD~1\20120914.002\ENG64.SYS [126112 2012-09-05] (Symantec Corporation)
3 NAVEX15; \??\C:\PROGRA~3\Symantec\DEFINI~1\VIRUSD~1\20120914.002\EX64.SYS [2084000 2012-09-05] (Symantec Corporation)
3 rt70x64; C:\Windows\System32\DRIVERS\netr7064.sys [388448 2010-04-27] (Ralink Technology Corp.)
1 SRTSP; C:\Windows\System32\Drivers\SRTSP64.SYS [441904 2008-10-13] (Symantec Corporation)
3 SRTSPL; C:\Windows\System32\Drivers\SRTSPL64.SYS [480816 2008-10-13] (Symantec Corporation)
1 SRTSPX; C:\Windows\System32\Drivers\SRTSPX64.SYS [32304 2008-10-13] (Symantec Corporation)
3 SymEvent; \??\C:\Windows\system32\Drivers\SYMEVENT64x86.SYS [172080 2011-07-30] (Symantec Corporation)

==================== NetSvcs (Whitelisted) ====================


==================== One Month Created Files and Folders ========

2012-10-05 11:36 - 2012-10-05 11:36 - 00000000 ____D C:\FRST
2012-10-05 07:22 - 2012-10-05 07:22 - 00276800 ____A C:\Windows\Minidump\100512-21309-01.dmp
2012-10-05 05:42 - 2012-10-05 05:42 - 00088912 ____A C:\Users\Dave Haddad\Desktop\MSINFO32.zip
2012-10-05 05:41 - 2012-10-05 05:41 - 01996402 ____A C:\Users\Dave Haddad\Desktop\MSINFO32.nfo
2012-10-05 04:40 - 2012-10-05 04:41 - 00276800 ____A C:\Windows\Minidump\100512-22916-01.dmp
2012-10-05 04:37 - 2012-10-05 07:22 - 284207360 ____A C:\Windows\MEMORY.DMP
2012-10-05 04:37 - 2012-10-05 04:37 - 00276800 ____A C:\Windows\Minidump\100512-23384-01.dmp
2012-10-05 03:35 - 2012-10-05 03:36 - 00001167 ____A C:\Users\Dave Haddad\Desktop\BSOD_Posting_Instructions.txt
2012-10-05 03:09 - 2012-10-05 03:09 - 03348263 ____A C:\Users\Dave Haddad\Documents\Windows7_Vista_jcgriff2.zip
2012-10-05 00:09 - 2012-10-05 07:32 - 00000000 ____D C:\Users\Dave Haddad\Documents\Windows7_Vista_jcgriff2
2012-10-05 00:02 - 2012-10-05 00:02 - 00055296 ____A C:\Users\Dave Haddad\Documents\BSOD_Windows7_Vista_v2.64_jcgriff2_.exe
2012-10-03 14:31 - 2012-10-03 14:31 - 00276800 ____A C:\Windows\Minidump\100312-24367-01.dmp
2012-10-03 14:19 - 2012-10-03 14:19 - 00276800 ____A C:\Windows\Minidump\100312-23805-05.dmp
2012-10-03 12:45 - 2012-10-03 12:45 - 00276800 ____A C:\Windows\Minidump\100312-24570-01.dmp
2012-10-03 11:42 - 2012-10-03 11:42 - 00908792 ____A (Symantec Corporation) C:\Users\Dave Haddad\Downloads\AutoDetectPkg.exe
2012-10-02 21:26 - 2012-10-03 13:51 - 00276800 ____A C:\Windows\Minidump\100312-23992-01.dmp
2012-10-02 13:20 - 2012-10-02 13:20 - 00035041 ____A C:\Users\Dave Haddad\Desktop\DDS attach file 10-2-12.txt
2012-10-02 12:45 - 2012-10-02 13:13 - 00000484 ____A C:\Users\Dave Haddad\Desktop\defogger_disable.log
2012-10-02 12:45 - 2012-10-02 12:45 - 00000000 ____A C:\Users\Dave Haddad\defogger_reenable
2012-10-02 08:17 - 2012-10-05 07:32 - 00000000 ____D C:\Users\Dave Haddad\Desktop\rkill
2012-10-02 08:16 - 2012-10-02 08:17 - 00003806 ____A C:\Users\Dave Haddad\Desktop\Rkill.txt
2012-10-01 11:26 - 2012-10-05 07:22 - 00000000 ____D C:\Windows\Minidump
2012-09-30 16:07 - 2012-09-30 16:07 - 04338832 ____A C:\Users\Dave Haddad\Desktop\Dr_PCE_N13_3210.zip
2012-09-29 06:58 - 2012-09-29 06:59 - 00016380 ____A C:\Users\Dave Haddad\Downloads\SEPT 24TH WK 18.xlsx
2012-09-28 19:37 - 2012-10-01 06:18 - 00000000 ____D C:\Users\Dave Haddad\Desktop\Nat Nast Shirt_files
2012-09-28 19:37 - 2012-09-28 19:37 - 00175343 ____A C:\Users\Dave Haddad\Desktop\Nat Nast Shirt.htm
2012-09-22 04:18 - 2012-08-24 03:15 - 17810944 ____A (Microsoft Corporation) C:\Windows\System32\mshtml.dll
2012-09-22 04:18 - 2012-08-24 02:39 - 10925568 ____A (Microsoft Corporation) C:\Windows\System32\ieframe.dll
2012-09-22 04:18 - 2012-08-24 02:31 - 02312704 ____A (Microsoft Corporation) C:\Windows\System32\jscript9.dll
2012-09-22 04:18 - 2012-08-24 02:22 - 01346048 ____A (Microsoft Corporation) C:\Windows\System32\urlmon.dll
2012-09-22 04:18 - 2012-08-24 02:21 - 01392128 ____A (Microsoft Corporation) C:\Windows\System32\wininet.dll
2012-09-22 04:18 - 2012-08-24 02:20 - 01494528 ____A (Microsoft Corporation) C:\Windows\System32\inetcpl.cpl
2012-09-22 04:18 - 2012-08-24 02:18 - 00237056 ____A (Microsoft Corporation) C:\Windows\System32\url.dll
2012-09-22 04:18 - 2012-08-24 02:17 - 00085504 ____A (Microsoft Corporation) C:\Windows\System32\jsproxy.dll
2012-09-22 04:18 - 2012-08-24 02:14 - 00816640 ____A (Microsoft Corporation) C:\Windows\System32\jscript.dll
2012-09-22 04:18 - 2012-08-24 02:14 - 00173056 ____A (Microsoft Corporation) C:\Windows\System32\ieUnatt.exe
2012-09-22 04:18 - 2012-08-24 02:13 - 00599040 ____A (Microsoft Corporation) C:\Windows\System32\vbscript.dll
2012-09-22 04:18 - 2012-08-24 02:12 - 02144768 ____A (Microsoft Corporation) C:\Windows\System32\iertutil.dll
2012-09-22 04:18 - 2012-08-24 02:11 - 00729088 ____A (Microsoft Corporation) C:\Windows\System32\msfeeds.dll
2012-09-22 04:18 - 2012-08-24 02:10 - 00096768 ____A (Microsoft Corporation) C:\Windows\System32\mshtmled.dll
2012-09-22 04:18 - 2012-08-24 02:09 - 02382848 ____A (Microsoft Corporation) C:\Windows\System32\mshtml.tlb
2012-09-22 04:18 - 2012-08-24 02:04 - 00248320 ____A (Microsoft Corporation) C:\Windows\System32\ieui.dll
2012-09-22 04:18 - 2012-08-23 23:27 - 12319744 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2012-09-22 04:18 - 2012-08-23 23:03 - 09738240 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2012-09-22 04:18 - 2012-08-23 22:59 - 01800704 ____A (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2012-09-22 04:18 - 2012-08-23 22:51 - 01427968 ____A (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2012-09-22 04:18 - 2012-08-23 22:51 - 01129472 ____A (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2012-09-22 04:18 - 2012-08-23 22:51 - 01103872 ____A (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2012-09-22 04:18 - 2012-08-23 22:49 - 00231936 ____A (Microsoft Corporation) C:\Windows\SysWOW64\url.dll
2012-09-22 04:18 - 2012-08-23 22:48 - 00065024 ____A (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2012-09-22 04:18 - 2012-08-23 22:47 - 00717824 ____A (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2012-09-22 04:18 - 2012-08-23 22:47 - 00420864 ____A (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2012-09-22 04:18 - 2012-08-23 22:47 - 00142848 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2012-09-22 04:18 - 2012-08-23 22:45 - 00607744 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2012-09-22 04:18 - 2012-08-23 22:44 - 01793024 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2012-09-22 04:18 - 2012-08-23 22:44 - 00073216 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2012-09-22 04:18 - 2012-08-23 22:43 - 02382848 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2012-09-22 04:18 - 2012-08-23 22:40 - 00176640 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2012-09-22 02:01 - 2012-09-22 02:01 - 10524080 ____A (Malwarebytes Corporation ) C:\Users\Dave Haddad\Downloads\mbam-setup-1.65.0.1400.exe
2012-09-11 16:55 - 2012-08-22 10:12 - 01913200 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\tcpip.sys
2012-09-11 16:55 - 2012-08-22 10:12 - 00950128 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\ndis.sys
2012-09-11 16:55 - 2012-08-22 10:12 - 00376688 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\netio.sys
2012-09-11 16:55 - 2012-08-22 10:12 - 00288624 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\FWPKCLNT.SYS
2012-09-11 16:55 - 2012-08-02 09:58 - 00574464 ____A (Microsoft Corporation) C:\Windows\System32\d3d10level9.dll
2012-09-11 16:55 - 2012-08-02 08:57 - 00490496 ____A (Microsoft Corporation) C:\Windows\SysWOW64\d3d10level9.dll
2012-09-11 16:55 - 2012-07-04 12:26 - 00041472 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\RNDISMP.sys
2012-09-08 03:38 - 2012-09-08 03:39 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox

==================== 3 Months Modified Files ==================

2012-10-05 07:36 - 2009-07-13 21:13 - 00726444 ____A C:\Windows\System32\PerfStringBackup.INI
2012-10-05 07:22 - 2012-10-05 07:22 - 00276800 ____A C:\Windows\Minidump\100512-21309-01.dmp
2012-10-05 07:22 - 2012-10-05 04:37 - 284207360 ____A C:\Windows\MEMORY.DMP
2012-10-05 06:49 - 2011-08-20 05:27 - 00000908 ____A C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2012-10-05 06:47 - 2011-08-20 05:27 - 00000904 ____A C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2012-10-05 06:47 - 2009-07-13 21:08 - 00000006 ___AH C:\Windows\Tasks\SA.DAT
2012-10-05 06:47 - 2009-07-13 20:51 - 00090358 ____A C:\Windows\setupact.log
2012-10-05 05:42 - 2012-10-05 05:42 - 00088912 ____A C:\Users\Dave Haddad\Desktop\MSINFO32.zip
2012-10-05 05:41 - 2012-10-05 05:41 - 01996402 ____A C:\Users\Dave Haddad\Desktop\MSINFO32.nfo
2012-10-05 04:41 - 2012-10-05 04:40 - 00276800 ____A C:\Windows\Minidump\100512-22916-01.dmp
2012-10-05 04:37 - 2012-10-05 04:37 - 00276800 ____A C:\Windows\Minidump\100512-23384-01.dmp
2012-10-05 04:34 - 2009-07-13 21:08 - 00032632 ____A C:\Windows\Tasks\SCHEDLGU.TXT
2012-10-05 03:36 - 2012-10-05 03:35 - 00001167 ____A C:\Users\Dave Haddad\Desktop\BSOD_Posting_Instructions.txt
2012-10-05 03:09 - 2012-10-05 03:09 - 03348263 ____A C:\Users\Dave Haddad\Documents\Windows7_Vista_jcgriff2.zip
2012-10-05 00:02 - 2012-10-05 00:02 - 00055296 ____A C:\Users\Dave Haddad\Documents\BSOD_Windows7_Vista_v2.64_jcgriff2_.exe
2012-10-03 14:31 - 2012-10-03 14:31 - 00276800 ____A C:\Windows\Minidump\100312-24367-01.dmp
2012-10-03 14:19 - 2012-10-03 14:19 - 00276800 ____A C:\Windows\Minidump\100312-23805-05.dmp
2012-10-03 13:51 - 2012-10-02 21:26 - 00276800 ____A C:\Windows\Minidump\100312-23992-01.dmp
2012-10-03 12:45 - 2012-10-03 12:45 - 00276800 ____A C:\Windows\Minidump\100312-24570-01.dmp
2012-10-03 11:42 - 2012-10-03 11:42 - 00908792 ____A (Symantec Corporation) C:\Users\Dave Haddad\Downloads\AutoDetectPkg.exe
2012-10-02 13:20 - 2012-10-02 13:20 - 00035041 ____A C:\Users\Dave Haddad\Desktop\DDS attach file 10-2-12.txt
2012-10-02 13:13 - 2012-10-02 12:45 - 00000484 ____A C:\Users\Dave Haddad\Desktop\defogger_disable.log
2012-10-02 12:45 - 2012-10-02 12:45 - 00000000 ____A C:\Users\Dave Haddad\defogger_reenable
2012-10-02 08:17 - 2012-10-02 08:16 - 00003806 ____A C:\Users\Dave Haddad\Desktop\Rkill.txt
2012-09-30 16:07 - 2012-09-30 16:07 - 04338832 ____A C:\Users\Dave Haddad\Desktop\Dr_PCE_N13_3210.zip
2012-09-29 06:59 - 2012-09-29 06:58 - 00016380 ____A C:\Users\Dave Haddad\Downloads\SEPT 24TH WK 18.xlsx
2012-09-28 19:37 - 2012-09-28 19:37 - 00175343 ____A C:\Users\Dave Haddad\Desktop\Nat Nast Shirt.htm
2012-09-26 14:55 - 2011-04-18 09:02 - 01610207 ____A C:\Windows\WindowsUpdate.log
2012-09-26 14:45 - 2012-07-24 05:02 - 00000830 ____A C:\Windows\Tasks\Adobe Flash Player Updater.job
2012-09-26 12:50 - 2009-07-13 20:45 - 00009920 ___AH C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2012-09-26 12:50 - 2009-07-13 20:45 - 00009920 ___AH C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2012-09-22 02:01 - 2012-09-22 02:01 - 10524080 ____A (Malwarebytes Corporation ) C:\Users\Dave Haddad\Downloads\mbam-setup-1.65.0.1400.exe
2012-09-13 11:53 - 2011-10-18 09:45 - 00060304 ____A C:\Users\Dave Haddad\g2mdlhlpx.exe
2012-09-11 18:00 - 2011-07-30 17:15 - 64462936 ____A (Microsoft Corporation) C:\Windows\System32\MRT.exe
2012-09-07 14:04 - 2011-07-30 06:10 - 00025928 ____A (Malwarebytes Corporation) C:\Windows\System32\Drivers\mbam.sys
2012-09-01 04:59 - 2012-09-01 05:00 - 01034216 ____A (Oracle Corporation) C:\Windows\System32\npDeployJava1.dll
2012-09-01 04:59 - 2012-09-01 05:00 - 00289768 ____A (Oracle Corporation) C:\Windows\System32\javaws.exe
2012-09-01 04:59 - 2012-09-01 05:00 - 00189416 ____A (Oracle Corporation) C:\Windows\System32\javaw.exe
2012-09-01 04:59 - 2012-09-01 05:00 - 00188904 ____A (Oracle Corporation) C:\Windows\System32\java.exe
2012-09-01 04:59 - 2012-09-01 05:00 - 00108008 ____A (Oracle Corporation) C:\Windows\System32\WindowsAccessBridge-64.dll
2012-09-01 04:59 - 2011-08-25 16:52 - 00916456 ____A (Oracle Corporation) C:\Windows\System32\deployJava1.dll
2012-09-01 04:58 - 2012-09-01 04:58 - 00246760 ____A (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe
2012-09-01 04:58 - 2012-09-01 04:58 - 00174056 ____A (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe
2012-09-01 04:58 - 2012-09-01 04:58 - 00174056 ____A (Oracle Corporation) C:\Windows\SysWOW64\java.exe
2012-09-01 04:58 - 2012-09-01 04:58 - 00095208 ____A (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2012-09-01 04:58 - 2012-08-08 23:14 - 00821736 ____A (Oracle Corporation) C:\Windows\SysWOW64\npDeployJava1.dll
2012-09-01 04:58 - 2011-08-25 16:24 - 00746984 ____A (Oracle Corporation) C:\Windows\SysWOW64\deployJava1.dll
2012-08-24 03:15 - 2012-09-22 04:18 - 17810944 ____A (Microsoft Corporation) C:\Windows\System32\mshtml.dll
2012-08-24 02:39 - 2012-09-22 04:18 - 10925568 ____A (Microsoft Corporation) C:\Windows\System32\ieframe.dll
2012-08-24 02:31 - 2012-09-22 04:18 - 02312704 ____A (Microsoft Corporation) C:\Windows\System32\jscript9.dll
2012-08-24 02:22 - 2012-09-22 04:18 - 01346048 ____A (Microsoft Corporation) C:\Windows\System32\urlmon.dll
2012-08-24 02:21 - 2012-09-22 04:18 - 01392128 ____A (Microsoft Corporation) C:\Windows\System32\wininet.dll
2012-08-24 02:20 - 2012-09-22 04:18 - 01494528 ____A (Microsoft Corporation) C:\Windows\System32\inetcpl.cpl
2012-08-24 02:18 - 2012-09-22 04:18 - 00237056 ____A (Microsoft Corporation) C:\Windows\System32\url.dll
2012-08-24 02:17 - 2012-09-22 04:18 - 00085504 ____A (Microsoft Corporation) C:\Windows\System32\jsproxy.dll
2012-08-24 02:14 - 2012-09-22 04:18 - 00816640 ____A (Microsoft Corporation) C:\Windows\System32\jscript.dll
2012-08-24 02:14 - 2012-09-22 04:18 - 00173056 ____A (Microsoft Corporation) C:\Windows\System32\ieUnatt.exe
2012-08-24 02:13 - 2012-09-22 04:18 - 00599040 ____A (Microsoft Corporation) C:\Windows\System32\vbscript.dll
2012-08-24 02:12 - 2012-09-22 04:18 - 02144768 ____A (Microsoft Corporation) C:\Windows\System32\iertutil.dll
2012-08-24 02:11 - 2012-09-22 04:18 - 00729088 ____A (Microsoft Corporation) C:\Windows\System32\msfeeds.dll
2012-08-24 02:10 - 2012-09-22 04:18 - 00096768 ____A (Microsoft Corporation) C:\Windows\System32\mshtmled.dll
2012-08-24 02:09 - 2012-09-22 04:18 - 02382848 ____A (Microsoft Corporation) C:\Windows\System32\mshtml.tlb
2012-08-24 02:04 - 2012-09-22 04:18 - 00248320 ____A (Microsoft Corporation) C:\Windows\System32\ieui.dll
2012-08-23 23:27 - 2012-09-22 04:18 - 12319744 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2012-08-23 23:03 - 2012-09-22 04:18 - 09738240 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2012-08-23 22:59 - 2012-09-22 04:18 - 01800704 ____A (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2012-08-23 22:51 - 2012-09-22 04:18 - 01427968 ____A (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2012-08-23 22:51 - 2012-09-22 04:18 - 01129472 ____A (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2012-08-23 22:51 - 2012-09-22 04:18 - 01103872 ____A (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2012-08-23 22:49 - 2012-09-22 04:18 - 00231936 ____A (Microsoft Corporation) C:\Windows\SysWOW64\url.dll
2012-08-23 22:48 - 2012-09-22 04:18 - 00065024 ____A (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2012-08-23 22:47 - 2012-09-22 04:18 - 00717824 ____A (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2012-08-23 22:47 - 2012-09-22 04:18 - 00420864 ____A (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2012-08-23 22:47 - 2012-09-22 04:18 - 00142848 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2012-08-23 22:45 - 2012-09-22 04:18 - 00607744 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2012-08-23 22:44 - 2012-09-22 04:18 - 01793024 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2012-08-23 22:44 - 2012-09-22 04:18 - 00073216 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2012-08-23 22:43 - 2012-09-22 04:18 - 02382848 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2012-08-23 22:40 - 2012-09-22 04:18 - 00176640 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2012-08-22 10:12 - 2012-09-11 16:55 - 01913200 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\tcpip.sys
2012-08-22 10:12 - 2012-09-11 16:55 - 00950128 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\ndis.sys
2012-08-22 10:12 - 2012-09-11 16:55 - 00376688 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\netio.sys
2012-08-22 10:12 - 2012-09-11 16:55 - 00288624 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\FWPKCLNT.SYS
2012-08-21 14:20 - 2012-07-24 05:02 - 00696520 ____A (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2012-08-21 14:20 - 2012-07-24 05:02 - 00073416 ____A (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2012-08-19 08:11 - 2012-08-19 08:11 - 00020282 ____A C:\Users\Dave Haddad\Desktop\State Comptroller tax form 8-19-12.htm
2012-08-15 14:28 - 2009-07-13 20:45 - 03020512 ____A C:\Windows\System32\FNTCACHE.DAT
2012-08-03 07:13 - 2012-08-03 07:13 - 00003160 ____A C:\Users\Dave Haddad\Downloads\DavidHaddad2514.txt
2012-08-02 09:58 - 2012-09-11 16:55 - 00574464 ____A (Microsoft Corporation) C:\Windows\System32\d3d10level9.dll
2012-08-02 08:57 - 2012-09-11 16:55 - 00490496 ____A (Microsoft Corporation) C:\Windows\SysWOW64\d3d10level9.dll
2012-07-18 10:15 - 2012-08-15 01:54 - 03148800 ____A (Microsoft Corporation) C:\Windows\System32\win32k.sys
2012-07-10 21:42 - 2009-07-13 18:34 - 00000478 ____A C:\Windows\win.ini


==================== Known DLLs (Whitelisted) =================


==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit

==================== EXE ASSOCIATION =====================

HKLM\...\.exe: exefile => OK
HKLM\...\exefile\DefaultIcon: %1 => OK
HKLM\...\exefile\open\command: "%1" %* => OK

==================== Restore Points =========================

Restore point made on: 2012-09-04 00:24:26
Restore point made on: 2012-09-11 16:56:18
Restore point made on: 2012-09-11 18:00:38
Restore point made on: 2012-09-18 22:10:53
Restore point made on: 2012-09-22 04:18:03
Restore point made on: 2012-09-25 05:16:49
Restore point made on: 2012-09-26 14:56:24

==================== Memory info ===========================

Percentage of memory in use: 30%
Total physical RAM: 2013.24 MB
Available physical RAM: 1407.39 MB
Total Pagefile: 2013.24 MB
Available Pagefile: 1406.21 MB
Total Virtual: 8192 MB
Available Virtual: 8191.9 MB

==================== Partitions =============================

1 Drive c: () (Fixed) (Total:451.16 GB) (Free:375.32 GB) NTFS
2 Drive e: (PQSERVICE) (Fixed) (Total:14.5 GB) (Free:1.6 GB) NTFS
4 Drive g: () (Removable) (Total:0.96 GB) (Free:0.96 GB) FAT32
7 Drive x: (Boot) (Fixed) (Total:0.03 GB) (Free:0.03 GB) NTFS
8 Drive y: (SYSTEM RESERVED) (Fixed) (Total:0.1 GB) (Free:0.07 GB) NTFS ==>[System with boot components (obtained from reading drive)]

Disk ### Status Size Free Dyn Gpt
-------- ------------- ------- ------- --- ---
Disk 0 Online 465 GB 0 B
Disk 1 Online 983 MB 0 B
Disk 2 No Media 0 B 0 B
Disk 3 No Media 0 B 0 B

Partitions of Disk 0:
===============

Partition ### Type Size Offset
------------- ---------------- ------- -------
Partition 1 Recovery 14 GB 1024 KB
Partition 2 Primary 100 MB 14 GB
Partition 3 Primary 451 GB 14 GB

==================================================================================

Disk: 0
Partition 1
Type : 27
Hidden: Yes
Active: No

Volume ### Ltr Label Fs Type Size Status Info
---------- --- ----------- ----- ---------- ------- --------- --------
* Volume 3 E PQSERVICE NTFS Partition 14 GB Healthy Hidden

=========================================================

Disk: 0
Partition 2
Type : 07
Hidden: No
Active: Yes

Volume ### Ltr Label Fs Type Size Status Info
---------- --- ----------- ----- ---------- ------- --------- --------
* Volume 1 Y SYSTEM RESE NTFS Partition 100 MB Healthy

=========================================================

Disk: 0
Partition 3
Type : 07
Hidden: No
Active: No

Volume ### Ltr Label Fs Type Size Status Info
---------- --- ----------- ----- ---------- ------- --------- --------
* Volume 2 C NTFS Partition 451 GB Healthy

=========================================================

Partitions of Disk 1:
===============

Partition ### Type Size Offset
------------- ---------------- ------- -------
* Partition 1 Primary 983 MB 0 B

==================================================================================

Disk: 1
There is no partition selected.

There is no partition selected.
Please select a partition and try again.

=========================================================

Last Boot: 2012-09-08 04:37

==================== End Of Log =============================

#11 Oh My!

Oh My!

    Adware and Spyware and Malware.....


  • Malware Response Instructor
  • 37,022 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:California
  • Local time:11:09 AM

Posted 05 October 2012 - 12:25 PM

Hi Dave,

Not much there but there is one questionable file I would like us to investigate further. I am going to have you take some other steps for me as well.

Don't know if you're scarin' the BSOD but you are making me nervous :)


===================================================


BlueScreenView

----------

  • Download BlueScreenView and save it to your desktop
  • Double click the BlueScreenView.exe file then click OK
  • Select Run, Next, then Next again
  • Click Install
  • When the scanning is complete, select Edit and Select All
  • Then click File and Save Selected Items
  • Save the report as BSOD.txt
  • Open BSOD.txt in Notepad, copy the entire content and paste it into your next reply
More information about the program can be found here


===================================================


Virustotal Online Virus Scanner

--------------------

  • Please go to Virustotal
  • Select Choose File
  • Navigate to the following file, double click on it so the file name is populated, then click Scan it!

    C:\Windows\win.ini
  • Once completed, highlight the information in the address bar and copy then paste the link in your reply


    Posted Image

===================================================


Running TDSSKiller with Changed Parameters

--------------------

  • Please download TDSSKiller from here and save it to your Desktop
  • Doubleclick on TDSSKiller.exe to run the application, then click on Change parameters


    Posted Image

  • Check Loaded Modules, Verify Driver Digital Signature, and Detect TDLFS file system
  • Click OK


    Posted Image

  • Click Start Scan and allow the scan process to run


    Posted Image

  • If threats are detected select Skip for all of them unless I instruct you otherwise
  • Click Continue


    Posted Image

  • Click Reboot computer
  • Please copy and paste the TDSSKiller.[Version]_[Date]_[Time]_log.txt found in your root directory (typically c:\)

===================================================


Things I would like to see in your next reply. Please be sure to copy and paste the information rather than send an attachment. :thumbsup2:

  • BSOD.txt
  • VirusTotal link
  • TDSSKiller log

Gary
 
If I do not reply within 24 hours please send me a Personal Message.

"Lord, to whom would we go? You have the words that give eternal life. We believe, and we know you are the Holy One of God."

#12 cctexun

cctexun
  • Topic Starter

  • Members
  • 116 posts
  • OFFLINE
  •  
  • Local time:02:09 PM

Posted 05 October 2012 - 12:42 PM

BSOD.txt follows

SRTSPL64.SYS SRTSPL64.SYS+536c0 fffff880`06431000 fffff880`064b3000 0x00082000 0x48ed2500 10/8/2008 4:24:16 PM AutoProtect Symantec AutoProtect 10.2.7.10 Symantec Corporation C:\Windows\system32\drivers\SRTSPL64.SYS
ntoskrnl.exe fffff800`02c54000 fffff800`0323c000 0x005e8000 0x4fa390f3 5/4/2012 3:18:59 AM Microsoft® Windows® Operating System NT Kernel & System 6.1.7601.17835 (win7sp1_gdr.120503-2030) Microsoft Corporation C:\Windows\system32\ntoskrnl.exe
hal.dll fffff800`02c0b000 fffff800`02c54000 0x00049000 0x4ce7c669 11/20/2010 8:00:25 AM
kdcom.dll fffff800`00baf000 fffff800`00bb9000 0x0000a000 0x4d4d8061 2/5/2011 11:52:49 AM
mcupdate_GenuineIntel.dll fffff880`00c2f000 fffff880`00c7e000 0x0004f000 0x4ce7c737 11/20/2010 8:03:51 AM
PSHED.dll fffff880`00c7e000 fffff880`00c92000 0x00014000 0x4a5be027 7/13/2009 8:32:23 PM Microsoft® Windows® Operating System Platform Specific Hardware Error Driver 6.1.7600.16385 (win7_rtm.090713-1255) Microsoft Corporation C:\Windows\system32\PSHED.dll
CLFS.SYS fffff880`00c92000 fffff880`00cf0000 0x0005e000 0x4a5bc11d 7/13/2009 6:19:57 PM
CI.dll fffff880`00cf0000 fffff880`00db0000 0x000c0000 0x4ce7c944 11/20/2010 8:12:36 AM
Wdf01000.sys fffff880`00e6b000 fffff880`00f0f000 0x000a4000 0x4a5bc19f 7/13/2009 6:22:07 PM
WDFLDR.SYS fffff880`00f0f000 fffff880`00f1e000 0x0000f000 0x4a5bc11a 7/13/2009 6:19:54 PM
ACPI.sys fffff880`00f1e000 fffff880`00f75000 0x00057000 0x4ce79294 11/20/2010 4:19:16 AM
WMILIB.SYS fffff880`00f75000 fffff880`00f7e000 0x00009000 0x4a5bc117 7/13/2009 6:19:51 PM
msisadrv.sys fffff880`00f7e000 fffff880`00f88000 0x0000a000 0x4a5bc0fe 7/13/2009 6:19:26 PM
pci.sys fffff880`00f88000 fffff880`00fbb000 0x00033000 0x4ce7928f 11/20/2010 4:19:11 AM
vdrvroot.sys fffff880`00fbb000 fffff880`00fc8000 0x0000d000 0x4a5bcadb 7/13/2009 7:01:31 PM
partmgr.sys fffff880`00fc8000 fffff880`00fdd000 0x00015000 0x4f641bc1 3/17/2012 12:06:09 AM
volmgr.sys fffff880`00fdd000 fffff880`00ff2000 0x00015000 0x4ce792a0 11/20/2010 4:19:28 AM
volmgrx.sys fffff880`00e00000 fffff880`00e5c000 0x0005c000 0x4ce792eb 11/20/2010 4:20:43 AM
intelide.sys fffff880`00e5c000 fffff880`00e64000 0x00008000 0x4a5bc114 7/13/2009 6:19:48 PM
PCIIDEX.SYS fffff880`00db0000 fffff880`00dc0000 0x00010000 0x4a5bc114 7/13/2009 6:19:48 PM
mountmgr.sys fffff880`00dc0000 fffff880`00dda000 0x0001a000 0x4ce79299 11/20/2010 4:19:21 AM
atapi.sys fffff880`00ff2000 fffff880`00ffb000 0x00009000 0x4a5bc113 7/13/2009 6:19:47 PM
ataport.SYS fffff880`00c00000 fffff880`00c2a000 0x0002a000 0x4ce79293 11/20/2010 4:19:15 AM
amdxata.sys fffff880`00dda000 fffff880`00de5000 0x0000b000 0x4ba3a3ca 3/19/2010 11:18:18 AM
fltmgr.sys fffff880`010a9000 fffff880`010f5000 0x0004c000 0x4ce7929c 11/20/2010 4:19:24 AM
fileinfo.sys fffff880`010f5000 fffff880`01109000 0x00014000 0x4a5bc481 7/13/2009 6:34:25 PM
Ntfs.sys fffff880`0124c000 fffff880`013ef000 0x001a3000 0x4d79997b 3/10/2011 10:39:39 PM
msrpc.sys fffff880`01109000 fffff880`01167000 0x0005e000 0x4ce79334 11/20/2010 4:21:56 AM
ksecdd.sys fffff880`01200000 fffff880`0121b000 0x0001b000 0x4fc97f6f 6/1/2012 9:50:23 PM
cng.sys fffff880`01167000 fffff880`011d9000 0x00072000 0x4fc987bf 6/1/2012 10:25:51 PM
pcw.sys fffff880`0121b000 fffff880`0122c000 0x00011000 0x4a5bc0ff 7/13/2009 6:19:27 PM
Fs_Rec.sys fffff880`0122c000 fffff880`01236000 0x0000a000 0x4f4eefd2 2/29/2012 10:41:06 PM
ndis.sys fffff880`01417000 fffff880`01509000 0x000f2000 0x5034f6b2 8/22/2012 10:11:46 AM
NETIO.SYS fffff880`01509000 fffff880`01569000 0x00060000 0x5034f6a0 8/22/2012 10:11:28 AM
ksecpkg.sys fffff880`01569000 fffff880`01593000 0x0002a000 0x4fc9880f 6/1/2012 10:27:11 PM
tcpip.sys fffff880`01600000 fffff880`01800000 0x00200000 0x5034f727 8/22/2012 10:13:43 AM
fwpkclnt.sys fffff880`01593000 fffff880`015dd000 0x0004a000 0x5034f679 8/22/2012 10:10:49 AM
volsnap.sys fffff880`01000000 000bbdaa`0104c000 0x000bc52a0004c000 0x4ce792c8 11/20/2010 4:20:08 AM
spldr.sys fffff880`015dd000 fffff880`015e5000 0x00008000 0x4a0858bb 5/11/2009 11:56:27 AM
rdyboost.sys fffff880`0104c000 fffff880`01086000 0x0003a000 0x4ce7982e 11/20/2010 4:43:10 AM
mup.sys fffff880`015e5000 fffff880`015f7000 0x00012000 0x4a5bc201 7/13/2009 6:23:45 PM
hwpolicy.sys fffff880`015f7000 fffff880`01600000 0x00009000 0x4ce7927e 11/20/2010 4:18:54 AM
fvevol.sys fffff880`01896000 fffff880`018d0000 0x0003a000 0x4ce793b6 11/20/2010 4:24:06 AM
disk.sys fffff880`018d0000 fffff880`018e6000 0x00016000 0x4a5bc11d 7/13/2009 6:19:57 PM
CLASSPNP.SYS fffff880`018e6000 fffff880`01916000 0x00030000 0x4ce7929b 11/20/2010 4:19:23 AM
cdrom.sys fffff880`0194c000 fffff880`01976000 0x0002a000 0x4ce79298 11/20/2010 4:19:20 AM
Null.SYS fffff880`019e9000 fffff880`019f2000 0x00009000 0x4a5bc109 7/13/2009 6:19:37 PM
Beep.SYS fffff880`019f2000 fffff880`019f9000 0x00007000 0x4a5bca8d 7/13/2009 7:00:13 PM
vga.sys fffff880`01800000 fffff880`0180e000 0x0000e000 0x4a5bc587 7/13/2009 6:38:47 PM
VIDEOPRT.SYS fffff880`0180e000 fffff880`01833000 0x00025000 0x4a5bc58b 7/13/2009 6:38:51 PM
watchdog.sys fffff880`01833000 fffff880`01843000 0x00010000 0x4a5bc53f 7/13/2009 6:37:35 PM
RDPCDD.sys fffff880`01843000 fffff880`0184c000 0x00009000 0x4a5bce62 7/13/2009 7:16:34 PM
rdpencdd.sys fffff880`0184c000 fffff880`01855000 0x00009000 0x4a5bce62 7/13/2009 7:16:34 PM
rdprefmp.sys fffff880`01855000 fffff880`0185e000 0x00009000 0x4a5bce63 7/13/2009 7:16:35 PM
Msfs.SYS fffff880`0185e000 fffff880`01869000 0x0000b000 0x4a5bc113 7/13/2009 6:19:47 PM
Npfs.SYS fffff880`01869000 fffff880`0187a000 0x00011000 0x4a5bc114 7/13/2009 6:19:48 PM
tdx.sys fffff880`01976000 fffff880`01998000 0x00022000 0x4ce79332 11/20/2010 4:21:54 AM
TDI.SYS fffff880`01998000 fffff880`019a5000 0x0000d000 0x4ce7933e 11/20/2010 4:22:06 AM
afd.sys fffff880`02cc8000 fffff880`02d51000 0x00089000 0x4efa9418 12/27/2011 10:59:20 PM
netbt.sys fffff880`02d51000 fffff880`02d96000 0x00045000 0x4ce79386 11/20/2010 4:23:18 AM
wfplwf.sys fffff880`02d96000 fffff880`02d9f000 0x00009000 0x4a5bccb6 7/13/2009 7:09:26 PM
pacer.sys fffff880`02d9f000 fffff880`02dc5000 0x00026000 0x4ce7a862 11/20/2010 5:52:18 AM
vwififlt.sys fffff880`02dc5000 fffff880`02ddb000 0x00016000 0x4a5bcc3a 7/13/2009 7:07:22 PM
netbios.sys fffff880`02ddb000 fffff880`02dea000 0x0000f000 0x4a5bccb6 7/13/2009 7:09:26 PM
wanarp.sys fffff880`02c00000 fffff880`02c1b000 0x0001b000 0x4ce7a874 11/20/2010 5:52:36 AM
termdd.sys fffff880`02c1b000 fffff880`02c2f000 0x00014000 0x4ce7ab0c 11/20/2010 6:03:40 AM
SRTSPX64.SYS fffff880`02c2f000 fffff880`02c43000 0x00014000 0x48ed26f4 10/8/2008 4:32:36 PM AutoProtect Symantec AutoProtect 10.2.7.10 Symantec Corporation C:\Windows\system32\drivers\SRTSPX64.SYS
rdbss.sys fffff880`02c43000 fffff880`02c94000 0x00051000 0x4ce79497 11/20/2010 4:27:51 AM
nsiproxy.sys fffff880`02c94000 fffff880`02ca0000 0x0000c000 0x4a5bc15e 7/13/2009 6:21:02 PM
mssmbios.sys fffff880`02ca0000 fffff880`02cab000 0x0000b000 0x4a5bc3be 7/13/2009 6:31:10 PM
eeCtrl64.sys fffff880`0369f000 fffff880`03719000 0x0007a000 0x50186c13 7/31/2012 6:36:51 PM
discache.sys fffff880`03719000 fffff880`03728000 0x0000f000 0x4a5bc52e 7/13/2009 6:37:18 PM
dfsc.sys fffff880`03728000 fffff880`03746000 0x0001e000 0x4ce79447 11/20/2010 4:26:31 AM
blbdrive.sys fffff880`03746000 fffff880`03757000 0x00011000 0x4a5bc4df 7/13/2009 6:35:59 PM
tunnel.sys fffff880`03757000 fffff880`0377d000 0x00026000 0x4ce7a846 11/20/2010 5:51:50 AM
intelppm.sys fffff880`0377d000 fffff880`03793000 0x00016000 0x4a5bc0fd 7/13/2009 6:19:25 PM
igdkmd64.sys fffff880`03aa6000 fffff880`044c8e20 0x00a22e20 0x4d558b10 2/11/2011 2:16:32 PM
dxgkrnl.sys fffff880`044c9000 fffff880`045bd000 0x000f4000 0x4ce799fa 11/20/2010 4:50:50 AM
dxgmms1.sys fffff880`03a00000 fffff880`03a46000 0x00046000 0x4ce799c1 11/20/2010 4:49:53 AM
HDAudBus.sys fffff880`03a46000 fffff880`03a6a000 0x00024000 0x4ce7a65e 11/20/2010 5:43:42 AM
netr28x.sys fffff880`0488c000 fffff880`0498a000 0x000fe000 0x4c621b6b 8/10/2010 10:39:23 PM
vwifibus.sys fffff880`0498a000 fffff880`04997000 0x0000d000 0x4a5bcc39 7/13/2009 7:07:21 PM
Rt64win7.sys fffff880`04997000 fffff880`049e2000 0x0004b000 0x4af2de0d 11/5/2009 9:15:41 AM
usbuhci.sys fffff880`049e2000 fffff880`049ef000 0x0000d000 0x4d8c0bff 3/24/2011 10:29:03 PM
USBPORT.SYS fffff880`04800000 fffff880`04856000 0x00056000 0x4d8c0c08 3/24/2011 10:29:12 PM
usbehci.sys fffff880`04856000 fffff880`04867000 0x00011000 0x4d8c0c00 3/24/2011 10:29:04 PM
i8042prt.sys fffff880`04867000 fffff880`04885000 0x0001e000 0x4a5bc11d 7/13/2009 6:19:57 PM
kbdclass.sys fffff880`049ef000 fffff880`049fe000 0x0000f000 0x4a5bc116 7/13/2009 6:19:50 PM
mouclass.sys fffff880`03a6a000 fffff880`03a79000 0x0000f000 0x4a5bc116 7/13/2009 6:19:50 PM
GEARAspiWDM.sys fffff880`03a79000 fffff880`03a86000 0x0000d000 0x4a1151c0 5/18/2009 7:17:04 AM
wmiacpi.sys fffff880`03a86000 fffff880`03a8f000 0x00009000 0x4a5bc3b6 7/13/2009 6:31:02 PM
CompositeBus.sys fffff880`03a8f000 fffff880`03a9f000 0x00010000 0x4ce7a3ed 11/20/2010 5:33:17 AM
AgileVpn.sys fffff880`045bd000 fffff880`045d3000 0x00016000 0x4a5bccf0 7/13/2009 7:10:24 PM
rasl2tp.sys fffff880`045d3000 fffff880`045f7000 0x00024000 0x4ce7a872 11/20/2010 5:52:34 AM
ndistapi.sys fffff880`03793000 fffff880`0379f000 0x0000c000 0x4a5bccd8 7/13/2009 7:10:00 PM
ndiswan.sys fffff880`0379f000 fffff880`037ce000 0x0002f000 0x4ce7a870 11/20/2010 5:52:32 AM
raspppoe.sys fffff880`037ce000 fffff880`037e9000 0x0001b000 0x4a5bcce9 7/13/2009 7:10:17 PM
raspptp.sys fffff880`03600000 fffff880`03621000 0x00021000 0x4ce7a86f 11/20/2010 5:52:31 AM
rassstp.sys fffff880`03621000 fffff880`0363b000 0x0001a000 0x4a5bccf1 7/13/2009 7:10:25 PM
swenum.sys fffff880`049fe000 fffff880`049ff480 0x00001480 0x4a5bca92 7/13/2009 7:00:18 PM
ks.sys fffff880`0363b000 fffff880`0367e000 0x00043000 0x4ce7a3f3 11/20/2010 5:33:23 AM
umbus.sys fffff880`0367e000 fffff880`03690000 0x00012000 0x4ce7a695 11/20/2010 5:44:37 AM
usbhub.sys fffff880`04e3b000 fffff880`04e95000 0x0005a000 0x4d8c0c15 3/24/2011 10:29:25 PM
NDProxy.SYS fffff880`04e95000 fffff880`04eaa000 0x00015000 0x4ce7a864 11/20/2010 5:52:20 AM
RTKVHD64.sys fffff880`05007000 fffff880`051f3180 0x001ec180 0x4aeeb81d 11/2/2009 5:44:45 AM
portcls.sys fffff880`04eaa000 fffff880`04ee7000 0x0003d000 0x4a5bcc03 7/13/2009 7:06:27 PM
drmk.sys fffff880`04ee7000 fffff880`04f09000 0x00022000 0x4a5bd8e5 7/13/2009 8:01:25 PM
ksthunk.sys fffff880`051f4000 fffff880`051f9200 0x00005200 0x4a5bca93 7/13/2009 7:00:19 PM
win32k.sys fffff960`000b0000 fffff960`003c5000 0x00315000 0x00000000
Dxapi.sys fffff880`04f09000 fffff880`04f15000 0x0000c000 0x4a5bc574 7/13/2009 6:38:28 PM
crashdmp.sys fffff880`04f15000 fffff880`04f23000 0x0000e000 0x4a5bcabd 7/13/2009 7:01:01 PM
dump_dumpata.sys fffff880`04f23000 fffff880`04f2f000 0x0000c000 0x4a5bc113 7/13/2009 6:19:47 PM
dump_atapi.sys fffff880`04f2f000 fffff880`04f38000 0x00009000 0x4a5bc113 7/13/2009 6:19:47 PM
dump_dumpfve.sys fffff880`04f38000 fffff880`04f4b000 0x00013000 0x4a5bc18f 7/13/2009 6:21:51 PM
USBSTOR.SYS fffff880`04f4b000 fffff880`04f66000 0x0001b000 0x4d79a6fc 3/10/2011 11:37:16 PM
USBD.SYS fffff880`051fa000 fffff880`051fbf00 0x00001f00 0x4d8c0bfb 3/24/2011 10:28:59 PM
monitor.sys fffff880`04f66000 fffff880`04f74000 0x0000e000 0x4a5bc58c 7/13/2009 6:38:52 PM
TSDDD.dll fffff960`00500000 fffff960`0050a000 0x0000a000 0x00000000
cdd.dll fffff960`006b0000 fffff960`006d7000 0x00027000 0x00000000
ATMFD.DLL fffff960`008e0000 fffff960`00941000 0x00061000 0x00000000 Adobe Type Manager Windows NT OpenType/Type 1 Font Driver 5.1 Build 234 Adobe Systems Incorporated C:\Windows\system32\ATMFD.DLL
luafv.sys fffff880`04f74000 fffff880`04f97000 0x00023000 0x4a5bc295 7/13/2009 6:26:13 PM
WudfPf.sys fffff880`04f97000 fffff880`04fb8000 0x00021000 0x4ce7a624 11/20/2010 5:42:44 AM
lltdio.sys fffff880`04fb8000 fffff880`04fcd000 0x00015000 0x4a5bcc92 7/13/2009 7:08:50 PM
nwifi.sys fffff880`0280e000 fffff880`02861000 0x00053000 0x4a5bcc3b 7/13/2009 7:07:23 PM
ndisuio.sys fffff880`02861000 fffff880`02874000 0x00013000 0x4ce7a7e0 11/20/2010 5:50:08 AM
rspndr.sys fffff880`02874000 fffff880`0288c000 0x00018000 0x4a5bcc92 7/13/2009 7:08:50 PM
fastfat.SYS fffff880`0288c000 fffff880`028c2000 0x00036000 0x4a5bc1f0 7/13/2009 6:23:28 PM
HTTP.sys fffff880`028c2000 fffff880`0298b000 0x000c9000 0x4ce793ce 11/20/2010 4:24:30 AM
bowser.sys fffff880`0298b000 fffff880`029a9000 0x0001e000 0x4d649328 2/22/2011 11:55:04 PM
mpsdrv.sys fffff880`029a9000 fffff880`029c1000 0x00018000 0x4a5bcc79 7/13/2009 7:08:25 PM
mrxsmb.sys fffff880`029c1000 fffff880`029ee000 0x0002d000 0x4db78226 4/26/2011 9:40:38 PM
mrxsmb10.sys fffff880`04698000 fffff880`046e6000 0x0004e000 0x4e17c104 7/8/2011 9:46:28 PM
mrxsmb20.sys fffff880`046e6000 fffff880`0470a000 0x00024000 0x4db781e9 4/26/2011 9:39:37 PM
adfs.SYS fffff880`0470a000 fffff880`04722000 0x00018000 0x48640195 6/26/2008 3:52:37 PM
peauth.sys fffff880`04722000 fffff880`047c8000 0x000a6000 0x4a5bd8df 7/13/2009 8:01:19 PM
secdrv.SYS fffff880`047c8000 fffff880`047d3000 0x0000b000 0x4508052e 9/13/2006 8:18:38 AM
srvnet.sys fffff880`04600000 fffff880`04631000 0x00031000 0x4dba2aff 4/28/2011 10:05:35 PM
tcpipreg.sys fffff880`04631000 fffff880`04643000 0x00012000 0x4ce7a844 11/20/2010 5:51:48 AM
srv2.sys fffff880`064f1000 fffff880`0655a000 0x00069000 0x4dba2b0a 4/28/2011 10:05:46 PM
srv.sys fffff880`0655a000 fffff880`065f2000 0x00098000 0x4dba2b1e 4/28/2011 10:06:06 PM
WUDFRd.sys fffff880`06400000 fffff880`06431000 0x00031000 0x4ce7a654 11/20/2010 5:43:32 AM
SYMEVENT64x86.SYS fffff880`064b3000 fffff880`064e9000 0x00036000 0x478bf103 1/14/2008 6:32:19 PM

#13 cctexun

cctexun
  • Topic Starter

  • Members
  • 116 posts
  • OFFLINE
  •  
  • Local time:02:09 PM

Posted 05 October 2012 - 12:50 PM

Gary I copied the file name and put it in the search box on virus total here is the address box thingie

https://www.virustotal.com/file/6d29b301024777e51366a000e05c6b3d40325c9d355a01e8383f59de511b7002/analysis/1349459222/

#14 cctexun

cctexun
  • Topic Starter

  • Members
  • 116 posts
  • OFFLINE
  •  
  • Local time:02:09 PM

Posted 05 October 2012 - 01:23 PM

12:59:14.0121 1756 TDSS rootkit removing tool 2.8.10.0 Sep 17 2012 19:23:24
12:59:14.0574 1756 ============================================================
12:59:14.0574 1756 Current date / time: 2012/10/05 12:59:14.0574
12:59:14.0574 1756 SystemInfo:
12:59:14.0574 1756
12:59:14.0574 1756 OS Version: 6.1.7601 ServicePack: 1.0
12:59:14.0574 1756 Product type: Workstation
12:59:14.0574 1756 ComputerName: DAVEHADDAD-PC
12:59:14.0574 1756 UserName: Dave Haddad
12:59:14.0574 1756 Windows directory: C:\Windows
12:59:14.0574 1756 System windows directory: C:\Windows
12:59:14.0574 1756 Running under WOW64
12:59:14.0574 1756 Processor architecture: Intel x64
12:59:14.0574 1756 Number of processors: 1
12:59:14.0574 1756 Page size: 0x1000
12:59:14.0574 1756 Boot type: Safe boot with network
12:59:14.0574 1756 ============================================================
12:59:15.0135 1756 BG loaded
12:59:15.0525 1756 Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
12:59:15.0525 1756 Drive \Device\Harddisk1\DR1 - Size: 0x3D780000 (0.96 Gb), SectorSize: 0x200, Cylinders: 0x7D, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
12:59:15.0541 1756 ============================================================
12:59:15.0541 1756 \Device\Harddisk0\DR0:
12:59:15.0541 1756 MBR partitions:
12:59:15.0541 1756 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x1D00800, BlocksNum 0x32000
12:59:15.0541 1756 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x1D32800, BlocksNum 0x38653030
12:59:15.0541 1756 \Device\Harddisk1\DR1:
12:59:15.0541 1756 MBR partitions:
12:59:15.0541 1756 ============================================================
12:59:15.0556 1756 C: <-> \Device\Harddisk0\DR0\Partition2
12:59:15.0556 1756 ============================================================
12:59:15.0556 1756 Initialize success
12:59:15.0556 1756 ============================================================
12:59:41.0842 1904 ============================================================
12:59:41.0842 1904 Scan started
12:59:41.0842 1904 Mode: Manual; SigCheck; TDLFS;
12:59:41.0842 1904 ============================================================
12:59:43.0293 1904 ================ Scan system memory ========================
12:59:43.0293 1904 System memory - ok
12:59:43.0293 1904 ================ Scan services =============================
12:59:43.0418 1904 [ A87D604AEA360176311474C87A63BB88 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
12:59:43.0543 1904 1394ohci - ok
12:59:43.0590 1904 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI C:\Windows\system32\drivers\ACPI.sys
12:59:43.0605 1904 ACPI - ok
12:59:43.0636 1904 [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
12:59:43.0714 1904 AcpiPmi - ok
12:59:43.0777 1904 [ 2F0683FD2DF1D92E891CACA14B45A8C1 ] adfs C:\Windows\system32\drivers\adfs.sys
12:59:43.0839 1904 adfs - ok
12:59:43.0933 1904 [ D19C4EE2AC7C47B8F5F84FFF1A789D8A ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
12:59:43.0948 1904 AdobeARMservice - ok
12:59:44.0073 1904 [ B2B64AF436FACCFA854DD397027C5360 ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
12:59:44.0089 1904 AdobeFlashPlayerUpdateSvc - ok
12:59:44.0151 1904 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
12:59:44.0182 1904 adp94xx - ok
12:59:44.0198 1904 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
12:59:44.0229 1904 adpahci - ok
12:59:44.0260 1904 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
12:59:44.0276 1904 adpu320 - ok
12:59:44.0307 1904 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
12:59:44.0432 1904 AeLookupSvc - ok
12:59:44.0479 1904 [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD C:\Windows\system32\drivers\afd.sys
12:59:44.0541 1904 AFD - ok
12:59:44.0588 1904 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\Windows\system32\drivers\agp440.sys
12:59:44.0604 1904 agp440 - ok
12:59:44.0635 1904 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\Windows\System32\alg.exe
12:59:44.0697 1904 ALG - ok
12:59:44.0760 1904 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\Windows\system32\drivers\aliide.sys
12:59:44.0775 1904 aliide - ok
12:59:44.0791 1904 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\Windows\system32\drivers\amdide.sys
12:59:44.0806 1904 amdide - ok
12:59:44.0884 1904 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
12:59:44.0931 1904 AmdK8 - ok
12:59:44.0947 1904 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
12:59:44.0994 1904 AmdPPM - ok
12:59:45.0025 1904 [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata C:\Windows\system32\drivers\amdsata.sys
12:59:45.0040 1904 amdsata - ok
12:59:45.0056 1904 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
12:59:45.0072 1904 amdsbs - ok
12:59:45.0103 1904 [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata C:\Windows\system32\drivers\amdxata.sys
12:59:45.0118 1904 amdxata - ok
12:59:45.0165 1904 [ 89A69C3F2F319B43379399547526D952 ] AppID C:\Windows\system32\drivers\appid.sys
12:59:45.0306 1904 AppID - ok
12:59:45.0321 1904 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\Windows\System32\appidsvc.dll
12:59:45.0399 1904 AppIDSvc - ok
12:59:45.0446 1904 [ 3977D4A871CA0D4F2ED1E7DB46829731 ] Appinfo C:\Windows\System32\appinfo.dll
12:59:45.0508 1904 Appinfo - ok
12:59:45.0586 1904 [ 7EF47644B74EBE721CC32211D3C35E76 ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
12:59:45.0602 1904 Apple Mobile Device - ok
12:59:45.0649 1904 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\Windows\system32\DRIVERS\arc.sys
12:59:45.0664 1904 arc - ok
12:59:45.0696 1904 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
12:59:45.0711 1904 arcsas - ok
12:59:45.0758 1904 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
12:59:45.0820 1904 AsyncMac - ok
12:59:45.0867 1904 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\Windows\system32\drivers\atapi.sys
12:59:45.0883 1904 atapi - ok
12:59:45.0961 1904 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
12:59:46.0039 1904 AudioEndpointBuilder - ok
12:59:46.0054 1904 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv C:\Windows\System32\Audiosrv.dll
12:59:46.0101 1904 AudioSrv - ok
12:59:46.0164 1904 [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV C:\Windows\System32\AxInstSV.dll
12:59:46.0242 1904 AxInstSV - ok
12:59:46.0288 1904 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\Windows\system32\DRIVERS\bxvbda.sys
12:59:46.0335 1904 b06bdrv - ok
12:59:46.0366 1904 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
12:59:46.0413 1904 b57nd60a - ok
12:59:46.0476 1904 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\Windows\System32\bdesvc.dll
12:59:46.0491 1904 BDESVC - ok
12:59:46.0522 1904 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\Windows\system32\drivers\Beep.sys
12:59:46.0585 1904 Beep - ok
12:59:46.0663 1904 [ 82974D6A2FD19445CC5171FC378668A4 ] BFE C:\Windows\System32\bfe.dll
12:59:46.0725 1904 BFE - ok
12:59:46.0788 1904 [ 1EA7969E3271CBC59E1730697DC74682 ] BITS C:\Windows\System32\qmgr.dll
12:59:46.0897 1904 BITS - ok
12:59:46.0959 1904 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
12:59:47.0006 1904 blbdrive - ok
12:59:47.0100 1904 [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
12:59:47.0131 1904 Bonjour Service - ok
12:59:47.0162 1904 [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
12:59:47.0193 1904 bowser - ok
12:59:47.0224 1904 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
12:59:47.0287 1904 BrFiltLo - ok
12:59:47.0318 1904 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
12:59:47.0334 1904 BrFiltUp - ok
12:59:47.0365 1904 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser C:\Windows\System32\browser.dll
12:59:47.0412 1904 Browser - ok
12:59:47.0443 1904 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\Windows\System32\Drivers\Brserid.sys
12:59:47.0505 1904 Brserid - ok
12:59:47.0536 1904 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
12:59:47.0568 1904 BrSerWdm - ok
12:59:47.0599 1904 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
12:59:47.0630 1904 BrUsbMdm - ok
12:59:47.0661 1904 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
12:59:47.0677 1904 BrUsbSer - ok
12:59:47.0739 1904 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
12:59:47.0786 1904 BTHMODEM - ok
12:59:47.0848 1904 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\Windows\system32\bthserv.dll
12:59:47.0911 1904 bthserv - ok
12:59:47.0958 1904 [ 673D6DE6D6E9D50CD5E9C78F0C916CB8 ] ccEvtMgr C:\Program Files (x86)\Common Files\Symantec Shared\ccSvcHst.exe
12:59:47.0989 1904 ccEvtMgr - ok
12:59:48.0004 1904 [ 673D6DE6D6E9D50CD5E9C78F0C916CB8 ] ccSetMgr C:\Program Files (x86)\Common Files\Symantec Shared\ccSvcHst.exe
12:59:48.0020 1904 ccSetMgr - ok
12:59:48.0051 1904 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
12:59:48.0098 1904 cdfs - ok
12:59:48.0145 1904 [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom C:\Windows\system32\drivers\cdrom.sys
12:59:48.0176 1904 cdrom - ok
12:59:48.0238 1904 [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc C:\Windows\System32\certprop.dll
12:59:48.0301 1904 CertPropSvc - ok
12:59:48.0363 1904 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\Windows\system32\DRIVERS\circlass.sys
12:59:48.0394 1904 circlass - ok
12:59:48.0441 1904 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\Windows\system32\CLFS.sys
12:59:48.0457 1904 CLFS - ok
12:59:48.0519 1904 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
12:59:48.0535 1904 clr_optimization_v2.0.50727_32 - ok
12:59:48.0582 1904 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
12:59:48.0582 1904 clr_optimization_v2.0.50727_64 - ok
12:59:48.0660 1904 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
12:59:48.0706 1904 clr_optimization_v4.0.30319_32 - ok
12:59:48.0738 1904 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
12:59:48.0753 1904 clr_optimization_v4.0.30319_64 - ok
12:59:48.0784 1904 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
12:59:48.0831 1904 CmBatt - ok
12:59:48.0862 1904 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\Windows\system32\drivers\cmdide.sys
12:59:48.0878 1904 cmdide - ok
12:59:48.0925 1904 [ 9AC4F97C2D3E93367E2148EA940CD2CD ] CNG C:\Windows\system32\Drivers\cng.sys
12:59:48.0956 1904 CNG - ok
12:59:48.0972 1904 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
12:59:48.0987 1904 Compbatt - ok
12:59:49.0050 1904 [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus C:\Windows\system32\drivers\CompositeBus.sys
12:59:49.0065 1904 CompositeBus - ok
12:59:49.0096 1904 COMSysApp - ok
12:59:49.0143 1904 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
12:59:49.0159 1904 crcdisk - ok
12:59:49.0206 1904 [ 4F5414602E2544A4554D95517948B705 ] CryptSvc C:\Windows\system32\cryptsvc.dll
12:59:49.0268 1904 CryptSvc - ok
12:59:49.0330 1904 [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch C:\Windows\system32\rpcss.dll
12:59:49.0408 1904 DcomLaunch - ok
12:59:49.0455 1904 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\Windows\System32\defragsvc.dll
12:59:49.0502 1904 defragsvc - ok
12:59:49.0564 1904 [ B14973B68E59C5730B86996C0A69818A ] DefWatch C:\Program Files (x86)\Symantec AntiVirus\DefWatch.exe
12:59:49.0580 1904 DefWatch - ok
12:59:49.0627 1904 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
12:59:49.0674 1904 DfsC - ok
12:59:49.0752 1904 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp C:\Windows\system32\dhcpcore.dll
12:59:49.0814 1904 Dhcp - ok
12:59:49.0861 1904 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\Windows\system32\drivers\discache.sys
12:59:49.0954 1904 discache - ok
12:59:50.0032 1904 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\Windows\system32\DRIVERS\disk.sys
12:59:50.0064 1904 Disk - ok
12:59:50.0157 1904 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache C:\Windows\System32\dnsrslvr.dll
12:59:50.0251 1904 Dnscache - ok
12:59:50.0298 1904 [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc C:\Windows\System32\dot3svc.dll
12:59:50.0438 1904 dot3svc - ok
12:59:50.0500 1904 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS C:\Windows\system32\dps.dll
12:59:50.0578 1904 DPS - ok
12:59:50.0641 1904 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
12:59:50.0672 1904 drmkaud - ok
12:59:50.0812 1904 [ F5BEE30450E18E6B83A5012C100616FD ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
12:59:50.0875 1904 DXGKrnl - ok
12:59:50.0922 1904 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\Windows\System32\eapsvc.dll
12:59:51.0000 1904 EapHost - ok
12:59:51.0187 1904 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\Windows\system32\DRIVERS\evbda.sys
12:59:51.0296 1904 ebdrv - ok
12:59:51.0343 1904 [ 4353FF94D47A0A9D52B89ECCF0CDB013 ] eeCtrl C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys
12:59:51.0358 1904 eeCtrl - ok
12:59:51.0390 1904 [ C118A82CD78818C29AB228366EBF81C3 ] EFS C:\Windows\System32\lsass.exe
12:59:51.0436 1904 EFS - ok
12:59:51.0546 1904 [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
12:59:51.0639 1904 ehRecvr - ok
12:59:51.0655 1904 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\Windows\ehome\ehsched.exe
12:59:51.0733 1904 ehSched - ok
12:59:51.0764 1904 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys
12:59:51.0780 1904 elxstor - ok
12:59:51.0842 1904 [ C5BCCB378D0A896304A3E71BE7215983 ] EraserUtilRebootDrv C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys
12:59:51.0842 1904 EraserUtilRebootDrv - ok
12:59:51.0904 1904 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\Windows\system32\drivers\errdev.sys
12:59:51.0920 1904 ErrDev - ok
12:59:51.0998 1904 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\Windows\system32\es.dll
12:59:52.0060 1904 EventSystem - ok
12:59:52.0092 1904 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\Windows\system32\drivers\exfat.sys
12:59:52.0138 1904 exfat - ok
12:59:52.0170 1904 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\Windows\system32\drivers\fastfat.sys
12:59:52.0232 1904 fastfat - ok
12:59:52.0294 1904 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax C:\Windows\system32\fxssvc.exe
12:59:52.0341 1904 Fax - ok
12:59:52.0372 1904 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\Windows\system32\DRIVERS\fdc.sys
12:59:52.0404 1904 fdc - ok
12:59:52.0450 1904 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\Windows\system32\fdPHost.dll
12:59:52.0513 1904 fdPHost - ok
12:59:52.0544 1904 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\Windows\system32\fdrespub.dll
12:59:52.0591 1904 FDResPub - ok
12:59:52.0638 1904 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
12:59:52.0653 1904 FileInfo - ok
12:59:52.0669 1904 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
12:59:52.0731 1904 Filetrace - ok
12:59:52.0794 1904 [ 1F63900E2EB00101B9ACA2B7A870704E ] FLEXnet Licensing Service C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
12:59:52.0825 1904 FLEXnet Licensing Service - ok
12:59:52.0887 1904 [ 1C3FB052A0BB72EDAED90785C34D6EED ] FLEXnet Licensing Service 64 C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe
12:59:52.0903 1904 FLEXnet Licensing Service 64 - ok
12:59:52.0934 1904 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
12:59:52.0950 1904 flpydisk - ok
12:59:52.0996 1904 [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
12:59:53.0012 1904 FltMgr - ok
12:59:53.0074 1904 [ 5C4CB4086FB83115B153E47ADD961A0C ] FontCache C:\Windows\system32\FntCache.dll
12:59:53.0152 1904 FontCache - ok
12:59:53.0215 1904 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
12:59:53.0215 1904 FontCache3.0.0.0 - ok
12:59:53.0246 1904 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
12:59:53.0262 1904 FsDepends - ok
12:59:53.0293 1904 [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
12:59:53.0308 1904 Fs_Rec - ok
12:59:53.0371 1904 [ 1F7B25B858FA27015169FE95E54108ED ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
12:59:53.0386 1904 fvevol - ok
12:59:53.0418 1904 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys
12:59:53.0433 1904 gagp30kx - ok
12:59:53.0464 1904 [ E403AACF8C7BB11375122D2464560311 ] GEARAspiWDM C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
12:59:53.0464 1904 GEARAspiWDM - ok
12:59:53.0511 1904 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc C:\Windows\System32\gpsvc.dll
12:59:53.0589 1904 gpsvc - ok
12:59:53.0652 1904 [ 0191DEE9B9EB7902AF2CF4F67301095D ] GREGService C:\Program Files (x86)\eMachines\Registration\GREGsvc.exe
12:59:53.0667 1904 GREGService - ok
12:59:53.0730 1904 [ F02A533F517EB38333CB12A9E8963773 ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
12:59:53.0745 1904 gupdate - ok
12:59:53.0761 1904 [ F02A533F517EB38333CB12A9E8963773 ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
12:59:53.0776 1904 gupdatem - ok
12:59:53.0808 1904 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
12:59:53.0870 1904 hcw85cir - ok
12:59:53.0917 1904 [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
12:59:53.0964 1904 HdAudAddService - ok
12:59:54.0010 1904 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus C:\Windows\system32\drivers\HDAudBus.sys
12:59:54.0042 1904 HDAudBus - ok
12:59:54.0073 1904 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys
12:59:54.0120 1904 HidBatt - ok
12:59:54.0151 1904 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
12:59:54.0182 1904 HidBth - ok
12:59:54.0213 1904 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
12:59:54.0260 1904 HidIr - ok
12:59:54.0307 1904 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\Windows\system32\hidserv.dll
12:59:54.0369 1904 hidserv - ok
12:59:54.0432 1904 [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb C:\Windows\system32\drivers\hidusb.sys
12:59:54.0447 1904 HidUsb - ok
12:59:54.0478 1904 [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc C:\Windows\system32\kmsvc.dll
12:59:54.0541 1904 hkmsvc - ok
12:59:54.0572 1904 [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll
12:59:54.0634 1904 HomeGroupListener - ok
12:59:54.0666 1904 [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
12:59:54.0697 1904 HomeGroupProvider - ok
12:59:54.0744 1904 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
12:59:54.0759 1904 HpSAMD - ok
12:59:54.0790 1904 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP C:\Windows\system32\drivers\HTTP.sys
12:59:54.0868 1904 HTTP - ok
12:59:54.0900 1904 [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
12:59:54.0915 1904 hwpolicy - ok
12:59:54.0962 1904 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\Windows\system32\drivers\i8042prt.sys
12:59:54.0978 1904 i8042prt - ok
12:59:55.0024 1904 [ BF5442DC14608D18949DC83DE37E667A ] iaStor C:\Windows\system32\DRIVERS\iaStor.sys
12:59:55.0056 1904 iaStor - ok
12:59:55.0087 1904 [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
12:59:55.0118 1904 iaStorV - ok
12:59:55.0165 1904 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
12:59:55.0196 1904 idsvc - ok
12:59:55.0399 1904 [ C6238C6ABD6AC99F5D152DA4E9439A3D ] igfx C:\Windows\system32\DRIVERS\igdkmd64.sys
12:59:55.0758 1904 igfx - ok
12:59:55.0820 1904 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys
12:59:55.0836 1904 iirsp - ok
12:59:55.0898 1904 [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT C:\Windows\System32\ikeext.dll
12:59:55.0960 1904 IKEEXT - ok
12:59:56.0038 1904 [ 450BEC18B45BCCFDC923E11F856DBDA7 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
12:59:56.0101 1904 IntcAzAudAddService - ok
12:59:56.0148 1904 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\Windows\system32\drivers\intelide.sys
12:59:56.0163 1904 intelide - ok
12:59:56.0210 1904 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
12:59:56.0241 1904 intelppm - ok
12:59:56.0272 1904 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\Windows\system32\ipbusenum.dll
12:59:56.0335 1904 IPBusEnum - ok
12:59:56.0366 1904 [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
12:59:56.0428 1904 IpFilterDriver - ok
12:59:56.0460 1904 [ A34A587FFFD45FA649FBA6D03784D257 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
12:59:56.0538 1904 iphlpsvc - ok
12:59:56.0584 1904 [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
12:59:56.0616 1904 IPMIDRV - ok
12:59:56.0647 1904 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
12:59:56.0725 1904 IPNAT - ok
12:59:56.0756 1904 [ 50D6CCC6FF5561F9F56946B3E6164FB8 ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
12:59:56.0803 1904 iPod Service - ok
12:59:56.0834 1904 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
12:59:56.0865 1904 IRENUM - ok
12:59:56.0912 1904 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\Windows\system32\drivers\isapnp.sys
12:59:56.0928 1904 isapnp - ok
12:59:56.0943 1904 [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
12:59:56.0959 1904 iScsiPrt - ok
12:59:57.0021 1904 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\Windows\system32\drivers\kbdclass.sys
12:59:57.0037 1904 kbdclass - ok
12:59:57.0068 1904 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid C:\Windows\system32\drivers\kbdhid.sys
12:59:57.0084 1904 kbdhid - ok
12:59:57.0146 1904 [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso C:\Windows\system32\lsass.exe
12:59:57.0162 1904 KeyIso - ok
12:59:57.0208 1904 [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
12:59:57.0240 1904 KSecDD - ok
12:59:57.0255 1904 [ 26C43A7C2862447EC59DEDA188D1DA07 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
12:59:57.0302 1904 KSecPkg - ok
12:59:57.0333 1904 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
12:59:57.0411 1904 ksthunk - ok
12:59:57.0442 1904 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\Windows\system32\msdtckrm.dll
12:59:57.0520 1904 KtmRm - ok
12:59:57.0583 1904 [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer C:\Windows\system32\srvsvc.dll
12:59:57.0645 1904 LanmanServer - ok
12:59:57.0676 1904 [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
12:59:57.0739 1904 LanmanWorkstation - ok
12:59:57.0879 1904 [ E8A9AC5F30833CD62E3530E2FDBF81DF ] LiveUpdate C:\PROGRA~2\Symantec\LIVEUP~1\LUCOMS~1.EXE
12:59:57.0926 1904 LiveUpdate - ok
12:59:57.0957 1904 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
12:59:58.0020 1904 lltdio - ok
12:59:58.0066 1904 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\Windows\System32\lltdsvc.dll
12:59:58.0129 1904 lltdsvc - ok
12:59:58.0160 1904 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\Windows\System32\lmhsvc.dll
12:59:58.0191 1904 lmhosts - ok
12:59:58.0238 1904 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys
12:59:58.0254 1904 LSI_FC - ok
12:59:58.0269 1904 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys
12:59:58.0300 1904 LSI_SAS - ok
12:59:58.0316 1904 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys
12:59:58.0316 1904 LSI_SAS2 - ok
12:59:58.0347 1904 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys
12:59:58.0363 1904 LSI_SCSI - ok
12:59:58.0394 1904 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\Windows\system32\drivers\luafv.sys
12:59:58.0456 1904 luafv - ok
12:59:58.0519 1904 [ B9FC4CCE5758B816F27DD4D1EED11841 ] MBAMProtector C:\Windows\system32\drivers\mbam.sys
12:59:58.0534 1904 MBAMProtector - ok
12:59:58.0597 1904 [ 0DCF16B1449811EFA47AB52CAC84093C ] MBAMScheduler C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
12:59:58.0628 1904 MBAMScheduler - ok
12:59:58.0659 1904 [ 9EAABA4D601004BEA4DAA6E146E19A96 ] MBAMService C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
12:59:58.0690 1904 MBAMService - ok
12:59:58.0737 1904 [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
12:59:58.0768 1904 Mcx2Svc - ok
12:59:58.0815 1904 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\Windows\system32\DRIVERS\megasas.sys
12:59:58.0831 1904 megasas - ok
12:59:58.0862 1904 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys
12:59:58.0893 1904 MegaSR - ok
12:59:58.0940 1904 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\Windows\system32\mmcss.dll
12:59:58.0987 1904 MMCSS - ok
12:59:59.0034 1904 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\Windows\system32\drivers\modem.sys
12:59:59.0080 1904 Modem - ok
12:59:59.0143 1904 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\Windows\system32\DRIVERS\monitor.sys
12:59:59.0174 1904 monitor - ok
12:59:59.0252 1904 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\Windows\system32\drivers\mouclass.sys
12:59:59.0268 1904 mouclass - ok
12:59:59.0299 1904 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
12:59:59.0330 1904 mouhid - ok
12:59:59.0377 1904 [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
12:59:59.0392 1904 mountmgr - ok
12:59:59.0455 1904 [ CB8AF049AC9BE419A77ADAE288673359 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
12:59:59.0470 1904 MozillaMaintenance - ok
12:59:59.0486 1904 [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio C:\Windows\system32\drivers\mpio.sys
12:59:59.0502 1904 mpio - ok
12:59:59.0533 1904 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
12:59:59.0564 1904 mpsdrv - ok
12:59:59.0611 1904 [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc C:\Windows\system32\mpssvc.dll
12:59:59.0689 1904 MpsSvc - ok
12:59:59.0720 1904 [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
12:59:59.0767 1904 MRxDAV - ok
12:59:59.0798 1904 [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
12:59:59.0860 1904 mrxsmb - ok
12:59:59.0892 1904 [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
12:59:59.0938 1904 mrxsmb10 - ok
13:00:00.0001 1904 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
13:00:00.0048 1904 mrxsmb20 - ok
13:00:00.0110 1904 [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci C:\Windows\system32\drivers\msahci.sys
13:00:00.0141 1904 msahci - ok
13:00:00.0204 1904 [ DB801A638D011B9633829EB6F663C900 ] msdsm C:\Windows\system32\drivers\msdsm.sys
13:00:00.0219 1904 msdsm - ok
13:00:00.0250 1904 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\Windows\System32\msdtc.exe
13:00:00.0282 1904 MSDTC - ok
13:00:00.0344 1904 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\Windows\system32\drivers\Msfs.sys
13:00:00.0391 1904 Msfs - ok
13:00:00.0406 1904 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
13:00:00.0469 1904 mshidkmdf - ok
13:00:00.0500 1904 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
13:00:00.0516 1904 msisadrv - ok
13:00:00.0547 1904 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
13:00:00.0609 1904 MSiSCSI - ok
13:00:00.0625 1904 msiserver - ok
13:00:00.0672 1904 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
13:00:00.0734 1904 MSKSSRV - ok
13:00:00.0750 1904 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
13:00:00.0796 1904 MSPCLOCK - ok
13:00:00.0812 1904 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
13:00:00.0874 1904 MSPQM - ok
13:00:00.0906 1904 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
13:00:00.0937 1904 MsRPC - ok
13:00:00.0999 1904 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\Windows\system32\drivers\mssmbios.sys
13:00:01.0015 1904 mssmbios - ok
13:00:01.0093 1904 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
13:00:01.0140 1904 MSTEE - ok
13:00:01.0171 1904 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys
13:00:01.0202 1904 MTConfig - ok
13:00:01.0264 1904 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\Windows\system32\Drivers\mup.sys
13:00:01.0280 1904 Mup - ok
13:00:01.0358 1904 [ 582AC6D9873E31DFA28A4547270862DD ] napagent C:\Windows\system32\qagentRT.dll
13:00:01.0420 1904 napagent - ok
13:00:01.0467 1904 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
13:00:01.0514 1904 NativeWifiP - ok
13:00:01.0639 1904 [ C58D8A669D6551F616D90244BD2C2D4F ] NAVENG C:\PROGRA~3\Symantec\DEFINI~1\VIRUSD~1\20120914.002\ENG64.SYS
13:00:01.0639 1904 NAVENG - ok
13:00:01.0686 1904 [ A3DBDB412ADFA5882DD6843B11FE0828 ] NAVEX15 C:\PROGRA~3\Symantec\DEFINI~1\VIRUSD~1\20120914.002\EX64.SYS
13:00:01.0764 1904 NAVEX15 - ok
13:00:01.0810 1904 [ 760E38053BF56E501D562B70AD796B88 ] NDIS C:\Windows\system32\drivers\ndis.sys
13:00:01.0857 1904 NDIS - ok
13:00:01.0904 1904 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
13:00:01.0966 1904 NdisCap - ok
13:00:01.0998 1904 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
13:00:02.0044 1904 NdisTapi - ok
13:00:02.0076 1904 [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
13:00:02.0107 1904 Ndisuio - ok
13:00:02.0138 1904 [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
13:00:02.0200 1904 NdisWan - ok
13:00:02.0247 1904 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
13:00:02.0278 1904 NDProxy - ok
13:00:02.0341 1904 [ 7D2633295EB6FF2B938185874884059D ] Nero BackItUp Scheduler 4.0 C:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\NBService.exe
13:00:02.0372 1904 Nero BackItUp Scheduler 4.0 - ok
13:00:02.0403 1904 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
13:00:02.0466 1904 NetBIOS - ok
13:00:02.0528 1904 [ 09594D1089C523423B32A4229263F068 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
13:00:02.0559 1904 NetBT - ok
13:00:02.0590 1904 [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon C:\Windows\system32\lsass.exe
13:00:02.0606 1904 Netlogon - ok
13:00:02.0653 1904 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\Windows\System32\netman.dll
13:00:02.0715 1904 Netman - ok
13:00:02.0762 1904 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\Windows\System32\netprofm.dll
13:00:02.0824 1904 netprofm - ok
13:00:02.0887 1904 [ AF5F224A600F50B7D2B77F4AE59C1ABE ] netr28x C:\Windows\system32\DRIVERS\netr28x.sys
13:00:02.0918 1904 netr28x - ok
13:00:02.0934 1904 [ 3E5A36127E201DDF663176B66828FAFE ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
13:00:02.0949 1904 NetTcpPortSharing - ok
13:00:02.0996 1904 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys
13:00:02.0996 1904 nfrd960 - ok
13:00:03.0058 1904 [ 1EE99A89CC788ADA662441D1E9830529 ] NlaSvc C:\Windows\System32\nlasvc.dll
13:00:03.0121 1904 NlaSvc - ok
13:00:03.0152 1904 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\Windows\system32\drivers\Npfs.sys
13:00:03.0183 1904 Npfs - ok
13:00:03.0214 1904 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\Windows\system32\nsisvc.dll
13:00:03.0277 1904 nsi - ok
13:00:03.0277 1904 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
13:00:03.0324 1904 nsiproxy - ok
13:00:03.0402 1904 [ A2F74975097F52A00745F9637451FDD8 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
13:00:03.0464 1904 Ntfs - ok
13:00:03.0480 1904 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\Windows\system32\drivers\Null.sys
13:00:03.0542 1904 Null - ok
13:00:03.0573 1904 [ 0A92CB65770442ED0DC44834632F66AD ] nvraid C:\Windows\system32\drivers\nvraid.sys
13:00:03.0589 1904 nvraid - ok
13:00:03.0620 1904 [ DAB0E87525C10052BF65F06152F37E4A ] nvstor C:\Windows\system32\drivers\nvstor.sys
13:00:03.0636 1904 nvstor - ok
13:00:03.0698 1904 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
13:00:03.0714 1904 nv_agp - ok
13:00:03.0776 1904 [ 785F487A64950F3CB8E9F16253BA3B7B ] odserv C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
13:00:03.0792 1904 odserv - ok
13:00:03.0807 1904 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
13:00:03.0823 1904 ohci1394 - ok
13:00:03.0854 1904 [ 5A432A042DAE460ABE7199B758E8606C ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
13:00:03.0870 1904 ose - ok
13:00:03.0916 1904 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
13:00:03.0979 1904 p2pimsvc - ok
13:00:04.0010 1904 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\Windows\system32\p2psvc.dll
13:00:04.0026 1904 p2psvc - ok
13:00:04.0057 1904 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\Windows\system32\DRIVERS\parport.sys
13:00:04.0072 1904 Parport - ok
13:00:04.0119 1904 [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr C:\Windows\system32\drivers\partmgr.sys
13:00:04.0135 1904 partmgr - ok
13:00:04.0135 1904 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll
13:00:04.0197 1904 PcaSvc - ok
13:00:04.0260 1904 [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci C:\Windows\system32\drivers\pci.sys
13:00:04.0291 1904 pci - ok
13:00:04.0322 1904 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\Windows\system32\drivers\pciide.sys
13:00:04.0353 1904 pciide - ok
13:00:04.0400 1904 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
13:00:04.0416 1904 pcmcia - ok
13:00:04.0447 1904 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\Windows\system32\drivers\pcw.sys
13:00:04.0478 1904 pcw - ok
13:00:04.0540 1904 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\Windows\system32\drivers\peauth.sys
13:00:04.0634 1904 PEAUTH - ok
13:00:04.0743 1904 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\Windows\SysWow64\perfhost.exe
13:00:04.0790 1904 PerfHost - ok
13:00:04.0899 1904 [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla C:\Windows\system32\pla.dll
13:00:04.0977 1904 pla - ok
13:00:05.0024 1904 [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
13:00:05.0086 1904 PlugPlay - ok
13:00:05.0102 1904 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
13:00:05.0133 1904 PNRPAutoReg - ok
13:00:05.0180 1904 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
13:00:05.0196 1904 PNRPsvc - ok
13:00:05.0227 1904 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
13:00:05.0289 1904 PolicyAgent - ok
13:00:05.0336 1904 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\Windows\system32\umpo.dll
13:00:05.0398 1904 Power - ok
13:00:05.0445 1904 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
13:00:05.0492 1904 PptpMiniport - ok
13:00:05.0539 1904 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\Windows\system32\DRIVERS\processr.sys
13:00:05.0554 1904 Processor - ok
13:00:05.0601 1904 [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc C:\Windows\system32\profsvc.dll
13:00:05.0664 1904 ProfSvc - ok
13:00:05.0664 1904 [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe
13:00:05.0695 1904 ProtectedStorage - ok
13:00:05.0742 1904 [ 0557CF5A2556BD58E26384169D72438D ] Psched C:\Windows\system32\DRIVERS\pacer.sys
13:00:05.0804 1904 Psched - ok
13:00:05.0851 1904 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys
13:00:05.0913 1904 ql2300 - ok
13:00:05.0944 1904 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys
13:00:05.0960 1904 ql40xx - ok
13:00:05.0991 1904 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\Windows\system32\qwave.dll
13:00:06.0022 1904 QWAVE - ok
13:00:06.0054 1904 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
13:00:06.0100 1904 QWAVEdrv - ok
13:00:06.0116 1904 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
13:00:06.0163 1904 RasAcd - ok
13:00:06.0225 1904 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
13:00:06.0256 1904 RasAgileVpn - ok
13:00:06.0288 1904 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\Windows\System32\rasauto.dll
13:00:06.0350 1904 RasAuto - ok
13:00:06.0397 1904 [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
13:00:06.0459 1904 Rasl2tp - ok
13:00:06.0490 1904 [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan C:\Windows\System32\rasmans.dll
13:00:06.0553 1904 RasMan - ok
13:00:06.0584 1904 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
13:00:06.0646 1904 RasPppoe - ok
13:00:06.0662 1904 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
13:00:06.0709 1904 RasSstp - ok
13:00:06.0740 1904 [ 77F665941019A1594D887A74F301FA2F ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
13:00:06.0787 1904 rdbss - ok
13:00:06.0802 1904 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
13:00:06.0818 1904 rdpbus - ok
13:00:06.0849 1904 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
13:00:06.0880 1904 RDPCDD - ok
13:00:06.0896 1904 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
13:00:06.0943 1904 RDPENCDD - ok
13:00:06.0958 1904 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
13:00:07.0005 1904 RDPREFMP - ok
13:00:07.0036 1904 [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
13:00:07.0083 1904 RDPWD - ok
13:00:07.0130 1904 [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
13:00:07.0161 1904 rdyboost - ok
13:00:07.0177 1904 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\Windows\System32\mprdim.dll
13:00:07.0239 1904 RemoteAccess - ok
13:00:07.0286 1904 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll
13:00:07.0317 1904 RemoteRegistry - ok
13:00:07.0364 1904 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
13:00:07.0411 1904 RpcEptMapper - ok
13:00:07.0442 1904 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\Windows\system32\locator.exe
13:00:07.0473 1904 RpcLocator - ok
13:00:07.0520 1904 [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs C:\Windows\system32\rpcss.dll
13:00:07.0567 1904 RpcSs - ok
13:00:07.0614 1904 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
13:00:07.0660 1904 rspndr - ok
13:00:07.0692 1904 [ 3641E624C8C5D5EA089AE9B5340B5B79 ] rt70x64 C:\Windows\system32\DRIVERS\netr7064.sys
13:00:07.0707 1904 rt70x64 - ok
13:00:07.0738 1904 [ 365ED58B47B46DE8B1C5FA759B6FCD6E ] RTL8167 C:\Windows\system32\DRIVERS\Rt64win7.sys
13:00:07.0816 1904 RTL8167 - ok
13:00:07.0832 1904 [ C118A82CD78818C29AB228366EBF81C3 ] SamSs C:\Windows\system32\lsass.exe
13:00:07.0848 1904 SamSs - ok
13:00:07.0879 1904 [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
13:00:07.0894 1904 sbp2port - ok
13:00:07.0941 1904 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\Windows\System32\SCardSvr.dll
13:00:08.0004 1904 SCardSvr - ok
13:00:08.0050 1904 [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
13:00:08.0097 1904 scfilter - ok
13:00:08.0160 1904 [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule C:\Windows\system32\schedsvc.dll
13:00:08.0238 1904 Schedule - ok
13:00:08.0269 1904 [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc C:\Windows\System32\certprop.dll
13:00:08.0316 1904 SCPolicySvc - ok
13:00:08.0347 1904 [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC C:\Windows\System32\SDRSVC.dll
13:00:08.0394 1904 SDRSVC - ok
13:00:08.0425 1904 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys
13:00:08.0472 1904 secdrv - ok
13:00:08.0503 1904 [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon C:\Windows\system32\seclogon.dll
13:00:08.0550 1904 seclogon - ok
13:00:08.0565 1904 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\Windows\System32\sens.dll
13:00:08.0612 1904 SENS - ok
13:00:08.0643 1904 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\Windows\system32\sensrsvc.dll
13:00:08.0674 1904 SensrSvc - ok
13:00:08.0690 1904 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
13:00:08.0721 1904 Serenum - ok
13:00:08.0752 1904 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\Windows\system32\DRIVERS\serial.sys
13:00:08.0768 1904 Serial - ok
13:00:08.0815 1904 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys
13:00:08.0846 1904 sermouse - ok
13:00:08.0893 1904 [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv C:\Windows\system32\sessenv.dll
13:00:08.0955 1904 SessionEnv - ok
13:00:08.0986 1904 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
13:00:09.0049 1904 sffdisk - ok
13:00:09.0064 1904 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
13:00:09.0096 1904 sffp_mmc - ok
13:00:09.0127 1904 [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
13:00:09.0158 1904 sffp_sd - ok
13:00:09.0189 1904 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
13:00:09.0220 1904 sfloppy - ok
13:00:09.0252 1904 [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess C:\Windows\System32\ipnathlp.dll
13:00:09.0314 1904 SharedAccess - ok
13:00:09.0361 1904 [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
13:00:09.0423 1904 ShellHWDetection - ok
13:00:09.0454 1904 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys
13:00:09.0470 1904 SiSRaid2 - ok
13:00:09.0486 1904 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys
13:00:09.0501 1904 SiSRaid4 - ok
13:00:09.0564 1904 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\Windows\system32\DRIVERS\smb.sys
13:00:09.0657 1904 Smb - ok
13:00:09.0735 1904 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\Windows\System32\snmptrap.exe
13:00:09.0782 1904 SNMPTRAP - ok
13:00:09.0813 1904 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\Windows\system32\drivers\spldr.sys
13:00:09.0829 1904 spldr - ok
13:00:09.0876 1904 [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler C:\Windows\System32\spoolsv.exe
13:00:09.0907 1904 Spooler - ok
13:00:10.0000 1904 [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc C:\Windows\system32\sppsvc.exe
13:00:10.0125 1904 sppsvc - ok
13:00:10.0156 1904 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\Windows\system32\sppuinotify.dll
13:00:10.0219 1904 sppuinotify - ok
13:00:10.0266 1904 [ 569F8D9768A00AB9A5166997C88EFE42 ] SRTSP C:\Windows\system32\Drivers\SRTSP64.SYS
13:00:10.0281 1904 SRTSP - ok
13:00:10.0312 1904 [ FB283AE148CC4C5A4954DAEFBB9DFFF0 ] SRTSPL C:\Windows\system32\Drivers\SRTSPL64.SYS
13:00:10.0344 1904 SRTSPL - ok
13:00:10.0359 1904 [ C9ECA0A26CEBADE5134BA01FD8EF86A6 ] SRTSPX C:\Windows\system32\Drivers\SRTSPX64.SYS
13:00:10.0359 1904 SRTSPX - ok
13:00:10.0390 1904 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv C:\Windows\system32\DRIVERS\srv.sys
13:00:10.0453 1904 srv - ok
13:00:10.0484 1904 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
13:00:10.0515 1904 srv2 - ok
13:00:10.0546 1904 [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
13:00:10.0578 1904 srvnet - ok
13:00:10.0640 1904 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
13:00:10.0702 1904 SSDPSRV - ok
13:00:10.0718 1904 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\Windows\system32\sstpsvc.dll
13:00:10.0796 1904 SstpSvc - ok
13:00:10.0843 1904 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys
13:00:10.0843 1904 stexstor - ok
13:00:10.0905 1904 [ DECACB6921DED1A38642642685D77DAC ] StillCam C:\Windows\system32\DRIVERS\serscan.sys
13:00:10.0968 1904 StillCam - ok
13:00:11.0046 1904 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc C:\Windows\System32\wiaservc.dll
13:00:11.0092 1904 stisvc - ok
13:00:11.0155 1904 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\Windows\system32\drivers\swenum.sys
13:00:11.0170 1904 swenum - ok
13:00:11.0233 1904 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\Windows\System32\swprv.dll
13:00:11.0342 1904 swprv - ok
13:00:11.0420 1904 [ 5CB8F41094F54FCE1DF77C47CB5781D7 ] Symantec AntiVirus C:\Program Files (x86)\Symantec AntiVirus\Rtvscan.exe
13:00:11.0451 1904 Symantec AntiVirus - ok
13:00:11.0482 1904 [ 70C8D165063EB76F1A373B74456D2AAB ] SymEvent C:\Windows\system32\Drivers\SYMEVENT64x86.SYS
13:00:11.0498 1904 SymEvent - ok
13:00:11.0560 1904 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain C:\Windows\system32\sysmain.dll
13:00:11.0638 1904 SysMain - ok
13:00:11.0685 1904 [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
13:00:11.0701 1904 TabletInputService - ok
13:00:11.0732 1904 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv C:\Windows\System32\tapisrv.dll
13:00:11.0779 1904 TapiSrv - ok
13:00:11.0826 1904 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\Windows\System32\tbssvc.dll
13:00:11.0872 1904 TBS - ok
13:00:11.0919 1904 [ F782CAD3CEDBB3F9FFE3BF2775D92DDC ] Tcpip C:\Windows\system32\drivers\tcpip.sys
13:00:12.0028 1904 Tcpip - ok
13:00:12.0106 1904 [ F782CAD3CEDBB3F9FFE3BF2775D92DDC ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
13:00:12.0184 1904 TCPIP6 - ok
13:00:12.0247 1904 [ DF687E3D8836BFB04FCC0615BF15A519 ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
13:00:12.0309 1904 tcpipreg - ok
13:00:12.0356 1904 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
13:00:12.0418 1904 TDPIPE - ok
13:00:12.0450 1904 [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
13:00:12.0465 1904 TDTCP - ok
13:00:12.0528 1904 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
13:00:12.0559 1904 tdx - ok
13:00:12.0606 1904 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD C:\Windows\system32\drivers\termdd.sys
13:00:12.0621 1904 TermDD - ok
13:00:12.0652 1904 [ 2E648163254233755035B46DD7B89123 ] TermService C:\Windows\System32\termsrv.dll
13:00:12.0699 1904 TermService - ok
13:00:12.0730 1904 [ F0344071948D1A1FA732231785A0664C ] Themes C:\Windows\system32\themeservice.dll
13:00:12.0777 1904 Themes - ok
13:00:12.0808 1904 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\Windows\system32\mmcss.dll
13:00:12.0855 1904 THREADORDER - ok
13:00:12.0886 1904 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\Windows\System32\trkwks.dll
13:00:12.0949 1904 TrkWks - ok
13:00:13.0027 1904 [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
13:00:13.0089 1904 TrustedInstaller - ok
13:00:13.0136 1904 [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
13:00:13.0198 1904 tssecsrv - ok
13:00:13.0245 1904 [ D11C783E3EF9A3C52C0EBE83CC5000E9 ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
13:00:13.0308 1904 TsUsbFlt - ok
13:00:13.0339 1904 [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
13:00:13.0401 1904 tunnel - ok
13:00:13.0432 1904 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys
13:00:13.0448 1904 uagp35 - ok
13:00:13.0495 1904 [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
13:00:13.0557 1904 udfs - ok
13:00:13.0588 1904 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\Windows\system32\UI0Detect.exe
13:00:13.0604 1904 UI0Detect - ok
13:00:13.0651 1904 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
13:00:13.0666 1904 uliagpkx - ok
13:00:13.0713 1904 [ DC54A574663A895C8763AF0FA1FF7561 ] umbus C:\Windows\system32\drivers\umbus.sys
13:00:13.0760 1904 umbus - ok
13:00:13.0791 1904 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\Windows\system32\DRIVERS\umpass.sys
13:00:13.0822 1904 UmPass - ok
13:00:13.0900 1904 [ F9EC9ACD504D823D9B9CA98A4F8D3CA2 ] Updater Service C:\Program Files\eMachines\eMachines Updater\UpdaterService.exe
13:00:13.0963 1904 Updater Service - ok
13:00:13.0994 1904 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\Windows\System32\upnphost.dll
13:00:14.0041 1904 upnphost - ok
13:00:14.0072 1904 [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
13:00:14.0119 1904 usbccgp - ok
13:00:14.0150 1904 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\Windows\system32\drivers\usbcir.sys
13:00:14.0181 1904 usbcir - ok
13:00:14.0212 1904 [ C025055FE7B87701EB042095DF1A2D7B ] usbehci C:\Windows\system32\drivers\usbehci.sys
13:00:14.0244 1904 usbehci - ok
13:00:14.0306 1904 [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
13:00:14.0337 1904 usbhub - ok
13:00:14.0368 1904 [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci C:\Windows\system32\drivers\usbohci.sys
13:00:14.0400 1904 usbohci - ok
13:00:14.0446 1904 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
13:00:14.0478 1904 usbprint - ok
13:00:14.0524 1904 [ AAA2513C8AED8B54B189FD0C6B1634C0 ] usbscan C:\Windows\system32\DRIVERS\usbscan.sys
13:00:14.0556 1904 usbscan - ok
13:00:14.0587 1904 [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
13:00:14.0634 1904 USBSTOR - ok
13:00:14.0665 1904 [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci C:\Windows\system32\drivers\usbuhci.sys
13:00:14.0696 1904 usbuhci - ok
13:00:14.0743 1904 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\Windows\System32\uxsms.dll
13:00:14.0805 1904 UxSms - ok
13:00:14.0821 1904 [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc C:\Windows\system32\lsass.exe
13:00:14.0836 1904 VaultSvc - ok
13:00:14.0852 1904 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
13:00:14.0868 1904 vdrvroot - ok
13:00:14.0914 1904 [ 8D6B481601D01A456E75C3210F1830BE ] vds C:\Windows\System32\vds.exe
13:00:14.0961 1904 vds - ok
13:00:15.0008 1904 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
13:00:15.0024 1904 vga - ok
13:00:15.0055 1904 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\Windows\System32\drivers\vga.sys
13:00:15.0102 1904 VgaSave - ok
13:00:15.0148 1904 [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
13:00:15.0164 1904 vhdmp - ok
13:00:15.0211 1904 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\Windows\system32\drivers\viaide.sys
13:00:15.0226 1904 viaide - ok
13:00:15.0242 1904 [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr C:\Windows\system32\drivers\volmgr.sys
13:00:15.0258 1904 volmgr - ok
13:00:15.0289 1904 [ A255814907C89BE58B79EF2F189B843B ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
13:00:15.0320 1904 volmgrx - ok
13:00:15.0351 1904 [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap C:\Windows\system32\drivers\volsnap.sys
13:00:15.0367 1904 volsnap - ok
13:00:15.0398 1904 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys
13:00:15.0414 1904 vsmraid - ok
13:00:15.0476 1904 [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS C:\Windows\system32\vssvc.exe
13:00:15.0570 1904 VSS - ok
13:00:15.0601 1904 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\Windows\system32\DRIVERS\vwifibus.sys
13:00:15.0632 1904 vwifibus - ok
13:00:15.0679 1904 [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys
13:00:15.0710 1904 vwififlt - ok
13:00:15.0757 1904 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\Windows\system32\w32time.dll
13:00:15.0804 1904 W32Time - ok
13:00:15.0835 1904 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys
13:00:15.0866 1904 WacomPen - ok
13:00:15.0913 1904 [ 356AFD78A6ED4457169241AC3965230C ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
13:00:15.0975 1904 WANARP - ok
13:00:15.0975 1904 [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
13:00:16.0022 1904 Wanarpv6 - ok
13:00:16.0084 1904 [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe
13:00:16.0131 1904 WatAdminSvc - ok
13:00:16.0194 1904 [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine C:\Windows\system32\wbengine.exe
13:00:16.0287 1904 wbengine - ok
13:00:16.0318 1904 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
13:00:16.0350 1904 WbioSrvc - ok
13:00:16.0396 1904 [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc C:\Windows\System32\wcncsvc.dll
13:00:16.0443 1904 wcncsvc - ok
13:00:16.0490 1904 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
13:00:16.0552 1904 WcsPlugInService - ok
13:00:16.0584 1904 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\Windows\system32\DRIVERS\wd.sys
13:00:16.0599 1904 Wd - ok
13:00:16.0630 1904 [ 441BD2D7B4F98134C3A4F9FA570FD250 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
13:00:16.0662 1904 Wdf01000 - ok
13:00:16.0677 1904 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\Windows\system32\wdi.dll
13:00:16.0786 1904 WdiServiceHost - ok
13:00:16.0802 1904 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\Windows\system32\wdi.dll
13:00:16.0818 1904 WdiSystemHost - ok
13:00:16.0864 1904 [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient C:\Windows\System32\webclnt.dll
13:00:16.0911 1904 WebClient - ok
13:00:16.0942 1904 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\Windows\system32\wecsvc.dll
13:00:17.0005 1904 Wecsvc - ok
13:00:17.0036 1904 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\Windows\System32\wercplsupport.dll
13:00:17.0083 1904 wercplsupport - ok
13:00:17.0098 1904 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\Windows\System32\WerSvc.dll
13:00:17.0161 1904 WerSvc - ok
13:00:17.0208 1904 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
13:00:17.0239 1904 WfpLwf - ok
13:00:17.0270 1904 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\Windows\system32\drivers\wimmount.sys
13:00:17.0286 1904 WIMMount - ok
13:00:17.0317 1904 WinDefend - ok
13:00:17.0332 1904 WinHttpAutoProxySvc - ok
13:00:17.0364 1904 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
13:00:17.0426 1904 Winmgmt - ok
13:00:17.0504 1904 [ BCB1310604AA415C4508708975B3931E ] WinRM C:\Windows\system32\WsmSvc.dll
13:00:17.0598 1904 WinRM - ok
13:00:17.0676 1904 [ FE88B288356E7B47B74B13372ADD906D ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys
13:00:17.0707 1904 WinUsb - ok
13:00:17.0754 1904 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\Windows\System32\wlansvc.dll
13:00:17.0832 1904 Wlansvc - ok
13:00:17.0894 1904 [ 06C8FA1CF39DE6A735B54D906BA791C6 ] wlcrasvc C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
13:00:17.0910 1904 wlcrasvc - ok
13:00:17.0988 1904 [ 7E47C328FC4768CB8BEAFBCFAFA70362 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
13:00:18.0066 1904 wlidsvc - ok
13:00:18.0112 1904 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
13:00:18.0144 1904 WmiAcpi - ok
13:00:18.0190 1904 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
13:00:18.0222 1904 wmiApSrv - ok
13:00:18.0268 1904 WMPNetworkSvc - ok
13:00:18.0300 1904 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\Windows\System32\wpcsvc.dll
13:00:18.0315 1904 WPCSvc - ok
13:00:18.0362 1904 [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
13:00:18.0424 1904 WPDBusEnum - ok
13:00:18.0471 1904 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
13:00:18.0534 1904 ws2ifsl - ok
13:00:18.0596 1904 [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc C:\Windows\System32\wscsvc.dll
13:00:18.0627 1904 wscsvc - ok
13:00:18.0643 1904 WSearch - ok
13:00:18.0736 1904 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv C:\Windows\system32\wuaueng.dll
13:00:18.0814 1904 wuauserv - ok
13:00:18.0846 1904 [ D3381DC54C34D79B22CEE0D65BA91B7C ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
13:00:18.0908 1904 WudfPf - ok
13:00:18.0955 1904 [ CF8D590BE3373029D57AF80914190682 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
13:00:19.0017 1904 WUDFRd - ok
13:00:19.0048 1904 [ 7A95C95B6C4CF292D689106BCAE49543 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
13:00:19.0095 1904 wudfsvc - ok
13:00:19.0126 1904 [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc C:\Windows\System32\wwansvc.dll
13:00:19.0173 1904 WwanSvc - ok
13:00:19.0236 1904 ================ Scan global ===============================
13:00:19.0267 1904 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
13:00:19.0298 1904 [ EB6A48CC998E1090E44E8E7F1009A640 ] C:\Windows\system32\winsrv.dll
13:00:19.0314 1904 [ EB6A48CC998E1090E44E8E7F1009A640 ] C:\Windows\system32\winsrv.dll
13:00:19.0345 1904 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
13:00:19.0360 1904 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
13:00:19.0376 1904 [Global] - ok
13:00:19.0376 1904 ================ Scan MBR ==================================
13:00:19.0392 1904 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
13:00:19.0657 1904 \Device\Harddisk0\DR0 - ok
13:00:19.0672 1904 [ 2B043EFA84E6E06C9DA9231305CA4EBF ] \Device\Harddisk1\DR1
13:00:23.0853 1904 \Device\Harddisk1\DR1 - ok
13:00:23.0853 1904 ================ Scan VBR ==================================
13:00:23.0884 1904 [ 13EA6FB28A9134154996E4EFE0419AA5 ] \Device\Harddisk0\DR0\Partition1
13:00:23.0900 1904 \Device\Harddisk0\DR0\Partition1 - ok
13:00:23.0900 1904 [ AE6C0B208DD08F4EB39A3EAF2923AC8D ] \Device\Harddisk0\DR0\Partition2
13:00:23.0916 1904 \Device\Harddisk0\DR0\Partition2 - ok
13:00:23.0916 1904 ================ Scan active images ========================
13:00:23.0916 1904 [ 3E588B60EC061686BA05D33574A344C6 ] C:\Windows\System32\drivers\crashdmp.sys
13:00:23.0916 1904 C:\Windows\System32\drivers\crashdmp.sys - ok
13:00:23.0916 1904 [ 839B5FE3D48E9F35B22C21A3D5103F6C ] C:\Windows\System32\drivers\Dumpata.sys
13:00:23.0931 1904 C:\Windows\System32\drivers\Dumpata.sys - ok
13:00:23.0931 1904 [ 02062C0B390B7729EDC9E69C680A6F3C ] C:\Windows\System32\drivers\atapi.sys
13:00:23.0931 1904 C:\Windows\System32\drivers\atapi.sys - ok
13:00:23.0947 1904 [ 814DB88F2641691575A455CF25354098 ] C:\Windows\System32\drivers\dumpfve.sys
13:00:23.0947 1904 C:\Windows\System32\drivers\dumpfve.sys - ok
13:00:23.0947 1904 [ 9899284589F75FA8724FF3D16AED75C1 ] C:\Windows\System32\drivers\null.sys
13:00:23.0947 1904 C:\Windows\System32\drivers\null.sys - ok
13:00:23.0962 1904 [ 16A47CE2DECC9B099349A5F840654746 ] C:\Windows\System32\drivers\beep.sys
13:00:23.0962 1904 C:\Windows\System32\drivers\beep.sys - ok
13:00:23.0962 1904 [ E7353D59C9842BC7299FAEB7E7E09340 ] C:\Windows\System32\drivers\videoprt.sys
13:00:23.0962 1904 C:\Windows\System32\drivers\videoprt.sys - ok
13:00:23.0978 1904 [ FC438D1430B28618E2D0C7C332A710AD ] C:\Windows\System32\drivers\watchdog.sys
13:00:23.0978 1904 C:\Windows\System32\drivers\watchdog.sys - ok
13:00:23.0978 1904 [ 53E92A310193CB3C03BEA963DE7D9CFC ] C:\Windows\System32\drivers\vga.sys
13:00:23.0978 1904 C:\Windows\System32\drivers\vga.sys - ok
13:00:23.0994 1904 [ BB5971A4F00659529A5C44831AF22365 ] C:\Windows\System32\drivers\RDPENCDD.sys
13:00:23.0994 1904 C:\Windows\System32\drivers\RDPENCDD.sys - ok
13:00:24.0009 1904 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] C:\Windows\System32\drivers\msfs.sys
13:00:24.0009 1904 C:\Windows\System32\drivers\msfs.sys - ok
13:00:24.0009 1904 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] C:\Windows\System32\drivers\npfs.sys
13:00:24.0009 1904 C:\Windows\System32\drivers\npfs.sys - ok
13:00:24.0009 1904 [ 6F020A220388ECA0AB6062DC27BD16B6 ] C:\Windows\System32\drivers\tdi.sys
13:00:24.0009 1904 C:\Windows\System32\drivers\tdi.sys - ok
13:00:24.0025 1904 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] C:\Windows\System32\drivers\tdx.sys
13:00:24.0025 1904 C:\Windows\System32\drivers\tdx.sys - ok
13:00:24.0025 1904 [ 1C7857B62DE5994A75B054A9FD4C3825 ] C:\Windows\System32\drivers\afd.sys
13:00:24.0025 1904 C:\Windows\System32\drivers\afd.sys - ok
13:00:24.0040 1904 [ 09594D1089C523423B32A4229263F068 ] C:\Windows\System32\drivers\netbt.sys
13:00:24.0040 1904 C:\Windows\System32\drivers\netbt.sys - ok
13:00:24.0056 1904 [ 611B23304BF067451A9FDEE01FBDD725 ] C:\Windows\System32\drivers\wfplwf.sys
13:00:24.0056 1904 C:\Windows\System32\drivers\wfplwf.sys - ok
13:00:24.0056 1904 [ 0557CF5A2556BD58E26384169D72438D ] C:\Windows\System32\drivers\pacer.sys
13:00:24.0056 1904 C:\Windows\System32\drivers\pacer.sys - ok
13:00:24.0072 1904 [ 6A3D66263414FF0D6FA754C646612F3F ] C:\Windows\System32\drivers\vwififlt.sys
13:00:24.0072 1904 C:\Windows\System32\drivers\vwififlt.sys - ok
13:00:24.0072 1904 [ 86743D9F5D2B1048062B14B1D84501C4 ] C:\Windows\System32\drivers\netbios.sys
13:00:24.0072 1904 C:\Windows\System32\drivers\netbios.sys - ok
13:00:24.0087 1904 [ 77F665941019A1594D887A74F301FA2F ] C:\Windows\System32\drivers\rdbss.sys
13:00:24.0087 1904 C:\Windows\System32\drivers\rdbss.sys - ok
13:00:24.0087 1904 [ E7F5AE18AF4168178A642A9247C63001 ] C:\Windows\System32\drivers\nsiproxy.sys
13:00:24.0087 1904 C:\Windows\System32\drivers\nsiproxy.sys - ok
13:00:24.0103 1904 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] C:\Windows\System32\drivers\dfsc.sys
13:00:24.0103 1904 C:\Windows\System32\drivers\dfsc.sys - ok
13:00:24.0103 1904 [ 3566A8DAAFA27AF944F5D705EAA64894 ] C:\Windows\System32\drivers\tunnel.sys
13:00:24.0103 1904 C:\Windows\System32\drivers\tunnel.sys - ok
13:00:24.0118 1904 [ 1911A3356FA3F77CCC825CCBAC038C2A ] C:\Windows\System32\smss.exe
13:00:24.0118 1904 C:\Windows\System32\smss.exe - ok
13:00:24.0118 1904 [ CF95B85FF8D128385ABD411C8CA74DED ] C:\Windows\System32\ntdll.dll
13:00:24.0118 1904 C:\Windows\System32\ntdll.dll - ok
13:00:24.0134 1904 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] C:\Windows\System32\drivers\hdaudbus.sys
13:00:24.0134 1904 C:\Windows\System32\drivers\hdaudbus.sys - ok
13:00:24.0134 1904 [ 3B536A8BEC3B4F23FFDFD78B11A2AB93 ] C:\Windows\System32\autochk.exe
13:00:24.0134 1904 C:\Windows\System32\autochk.exe - ok
13:00:24.0150 1904 [ AF5F224A600F50B7D2B77F4AE59C1ABE ] C:\Windows\System32\drivers\netr28x.sys
13:00:24.0150 1904 C:\Windows\System32\drivers\netr28x.sys - ok
13:00:24.0150 1904 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] C:\Windows\System32\drivers\vwifibus.sys
13:00:24.0150 1904 C:\Windows\System32\drivers\vwifibus.sys - ok
13:00:24.0165 1904 [ 365ED58B47B46DE8B1C5FA759B6FCD6E ] C:\Windows\System32\drivers\Rt64win7.sys
13:00:24.0165 1904 C:\Windows\System32\drivers\Rt64win7.sys - ok
13:00:24.0165 1904 [ AE259C75F9A0B057B6BF9E9695632B09 ] C:\Windows\System32\drivers\usbport.sys
13:00:24.0165 1904 C:\Windows\System32\drivers\usbport.sys - ok
13:00:24.0181 1904 [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] C:\Windows\System32\drivers\usbuhci.sys
13:00:24.0181 1904 C:\Windows\System32\drivers\usbuhci.sys - ok
13:00:24.0181 1904 [ C025055FE7B87701EB042095DF1A2D7B ] C:\Windows\System32\drivers\usbehci.sys
13:00:24.0181 1904 C:\Windows\System32\drivers\usbehci.sys - ok
13:00:24.0196 1904 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] C:\Windows\System32\drivers\i8042prt.sys
13:00:24.0196 1904 C:\Windows\System32\drivers\i8042prt.sys - ok
13:00:24.0196 1904 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] C:\Windows\System32\drivers\kbdclass.sys
13:00:24.0196 1904 C:\Windows\System32\drivers\kbdclass.sys - ok
13:00:24.0212 1904 [ 7D27EA49F3C1F687D357E77A470AEA99 ] C:\Windows\System32\drivers\mouclass.sys
13:00:24.0212 1904 C:\Windows\System32\drivers\mouclass.sys - ok
13:00:24.0212 1904 [ F036CE71586E93D94DAB220D7BDF4416 ] C:\Windows\System32\drivers\cdrom.sys
13:00:24.0212 1904 C:\Windows\System32\drivers\cdrom.sys - ok
13:00:24.0228 1904 [ 2F8B1E3EE3545D3B5A8D56FA1AE07B65 ] C:\Windows\System32\usp10.dll
13:00:24.0228 1904 C:\Windows\System32\usp10.dll - ok
13:00:24.0243 1904 [ E403AACF8C7BB11375122D2464560311 ] C:\Windows\System32\drivers\GEARAspiWDM.sys
13:00:24.0243 1904 C:\Windows\System32\drivers\GEARAspiWDM.sys - ok
13:00:24.0259 1904 [ F6FF8944478594D0E414D3F048F0D778 ] C:\Windows\System32\drivers\wmiacpi.sys
13:00:24.0259 1904 C:\Windows\System32\drivers\wmiacpi.sys - ok
13:00:24.0259 1904 [ 044FE45FFD6AD40E3BBBE60B7F41BABE ] C:\Windows\System32\nsi.dll
13:00:24.0259 1904 C:\Windows\System32\nsi.dll - ok
13:00:24.0259 1904 [ 61583EE3C3A17003C4ACD0475646B4D3 ] C:\Windows\System32\drivers\blbdrive.sys
13:00:24.0259 1904 C:\Windows\System32\drivers\blbdrive.sys - ok
13:00:24.0274 1904 [ C391FC68282A000CDF953F8B6B55D2EF ] C:\Windows\System32\msvcrt.dll
13:00:24.0274 1904 C:\Windows\System32\msvcrt.dll - ok
13:00:24.0274 1904 [ 03EDB043586CCEBA243D689BDDA370A8 ] C:\Windows\System32\drivers\CompositeBus.sys
13:00:24.0274 1904 C:\Windows\System32\drivers\CompositeBus.sys - ok
13:00:24.0290 1904 [ A1BE6A720D02E37F72E9CD89AE9CB3CF ] C:\Windows\System32\imagehlp.dll
13:00:24.0290 1904 C:\Windows\System32\imagehlp.dll - ok
13:00:24.0290 1904 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] C:\Windows\System32\drivers\mssmbios.sys
13:00:24.0290 1904 C:\Windows\System32\drivers\mssmbios.sys - ok
13:00:24.0306 1904 [ D202223587518B13D72D68937B7E3F70 ] C:\Windows\System32\lpk.dll
13:00:24.0306 1904 C:\Windows\System32\lpk.dll - ok
13:00:24.0306 1904 [ 7ECFF9B22276B73F43A99A15A6094E90 ] C:\Windows\System32\drivers\agilevpn.sys
13:00:24.0306 1904 C:\Windows\System32\drivers\agilevpn.sys - ok
13:00:24.0321 1904 [ 5D8E6C95156ED1F79A63D1EADE6F9ED5 ] C:\Windows\System32\setupapi.dll
13:00:24.0321 1904 C:\Windows\System32\setupapi.dll - ok
13:00:24.0321 1904 [ 471815800AE33E6F1C32FB1B97C490CA ] C:\Windows\System32\drivers\rasl2tp.sys
13:00:24.0321 1904 C:\Windows\System32\drivers\rasl2tp.sys - ok
13:00:24.0337 1904 [ 30639C932D9FEF22B31268FE25A1B6E5 ] C:\Windows\System32\drivers\ndistapi.sys
13:00:24.0337 1904 C:\Windows\System32\drivers\ndistapi.sys - ok
13:00:24.0337 1904 [ 53F7305169863F0A2BDDC49E116C2E11 ] C:\Windows\System32\drivers\ndiswan.sys
13:00:24.0337 1904 C:\Windows\System32\drivers\ndiswan.sys - ok
13:00:24.0352 1904 [ FE70103391A64039A921DBFFF9C7AB1B ] C:\Windows\System32\user32.dll
13:00:24.0352 1904 C:\Windows\System32\user32.dll - ok
13:00:24.0352 1904 [ 9835E63E09F824D22B689D2BB789BAB9 ] C:\Windows\System32\comdlg32.dll
13:00:24.0352 1904 C:\Windows\System32\comdlg32.dll - ok
13:00:24.0368 1904 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] C:\Windows\System32\drivers\raspppoe.sys
13:00:24.0368 1904 C:\Windows\System32\drivers\raspppoe.sys - ok
13:00:24.0368 1904 [ 25983DE69B57142039AC8D95E71CD9C9 ] C:\Windows\System32\clbcatq.dll
13:00:24.0368 1904 C:\Windows\System32\clbcatq.dll - ok
13:00:24.0384 1904 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] C:\Windows\System32\drivers\raspptp.sys
13:00:24.0384 1904 C:\Windows\System32\drivers\raspptp.sys - ok
13:00:24.0384 1904 [ D841F7629505EE542E26E5F0A4D20101 ] C:\Windows\System32\iertutil.dll
13:00:24.0384 1904 C:\Windows\System32\iertutil.dll - ok
13:00:24.0399 1904 [ E8B1E447B008D07FF47D016C2B0EEECB ] C:\Windows\System32\drivers\rassstp.sys
13:00:24.0399 1904 C:\Windows\System32\drivers\rassstp.sys - ok
13:00:24.0415 1904 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] C:\Windows\System32\drivers\termdd.sys
13:00:24.0415 1904 C:\Windows\System32\drivers\termdd.sys - ok
13:00:24.0415 1904 [ 24FBF5CC5C04150073C315A7C83521EE ] C:\Windows\System32\drivers\ks.sys
13:00:24.0415 1904 C:\Windows\System32\drivers\ks.sys - ok
13:00:24.0430 1904 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] C:\Windows\System32\drivers\swenum.sys
13:00:24.0430 1904 C:\Windows\System32\drivers\swenum.sys - ok
13:00:24.0430 1904 [ F7CE0C81C545364020ED8203CF0A633E ] C:\Windows\System32\difxapi.dll
13:00:24.0430 1904 C:\Windows\System32\difxapi.dll - ok
13:00:24.0446 1904 [ DC54A574663A895C8763AF0FA1FF7561 ] C:\Windows\System32\drivers\umbus.sys
13:00:24.0446 1904 C:\Windows\System32\drivers\umbus.sys - ok
13:00:24.0446 1904 [ 6C60B5ACA7442EFB794082CDACFC001C ] C:\Windows\System32\ole32.dll
13:00:24.0446 1904 C:\Windows\System32\ole32.dll - ok
13:00:24.0462 1904 [ C06B32165E23A72A898B7A89679AD754 ] C:\Windows\System32\oleaut32.dll
13:00:24.0462 1904 C:\Windows\System32\oleaut32.dll - ok
13:00:24.0462 1904 [ C431EAF5CAA1C82CAC2534A2EAB348A3 ] C:\Windows\System32\msctf.dll
13:00:24.0462 1904 C:\Windows\System32\msctf.dll - ok
13:00:24.0477 1904 [ 0611473C1AD9E2D991CD9482068417F7 ] C:\Windows\System32\rpcrt4.dll
13:00:24.0477 1904 C:\Windows\System32\rpcrt4.dll - ok
13:00:24.0477 1904 [ 6DF46D2BD74E3DA1B45F08F10D172732 ] C:\Windows\System32\advapi32.dll
13:00:24.0477 1904 C:\Windows\System32\advapi32.dll - ok
13:00:24.0493 1904 [ 83404DCBCE4925B6A5A77C5170F46D86 ] C:\Windows\System32\sechost.dll
13:00:24.0493 1904 C:\Windows\System32\sechost.dll - ok
13:00:24.0508 1904 [ 28C0B5024F5C5A438E78B188CFC81B7F ] C:\Windows\System32\normaliz.dll
13:00:24.0508 1904 C:\Windows\System32\normaliz.dll - ok
13:00:24.0508 1904 [ 3D165C53E40236A68B7102D1A622D4E0 ] C:\Windows\System32\wininet.dll
13:00:24.0508 1904 C:\Windows\System32\wininet.dll - ok
13:00:24.0524 1904 [ AA2C08CE85653B1A0D2E4AB407FA176C ] C:\Windows\System32\imm32.dll
13:00:24.0524 1904 C:\Windows\System32\imm32.dll - ok
13:00:24.0524 1904 [ EAF32CB8C1F810E4715B4DFBE785C7FF ] C:\Windows\System32\shlwapi.dll
13:00:24.0524 1904 C:\Windows\System32\shlwapi.dll - ok
13:00:24.0540 1904 [ B9B42A302325537D7B9DC52D47F33A73 ] C:\Windows\System32\kernel32.dll
13:00:24.0540 1904 C:\Windows\System32\kernel32.dll - ok
13:00:24.0540 1904 [ 2885A3C3148F725CDA0B4C593BA8F7CE ] C:\Windows\System32\urlmon.dll
13:00:24.0540 1904 C:\Windows\System32\urlmon.dll - ok
13:00:24.0555 1904 [ D87E1E59C73C1F98D5DED5B3850C40F5 ] C:\Windows\System32\psapi.dll
13:00:24.0555 1904 C:\Windows\System32\psapi.dll - ok
13:00:24.0555 1904 [ 1084AA52CCC324EA54C7121FA24C2221 ] C:\Windows\System32\gdi32.dll
13:00:24.0555 1904 C:\Windows\System32\gdi32.dll - ok
13:00:24.0571 1904 [ C6689007B3A749C49A5438DCF36E0CE4 ] C:\Windows\System32\shell32.dll
13:00:24.0571 1904 C:\Windows\System32\shell32.dll - ok
13:00:24.0571 1904 [ 4BBFA57F594F7E8A8EDC8F377184C3F0 ] C:\Windows\System32\ws2_32.dll
13:00:24.0571 1904 C:\Windows\System32\ws2_32.dll - ok
13:00:24.0586 1904 [ 4E4FFB09D895AA000DD56D1404F69A7E ] C:\Windows\System32\Wldap32.dll
13:00:24.0586 1904 C:\Windows\System32\Wldap32.dll - ok
13:00:24.0602 1904 [ 2477A28081BDAEE622CF045ACF8EE124 ] C:\Windows\System32\cfgmgr32.dll
13:00:24.0602 1904 C:\Windows\System32\cfgmgr32.dll - ok
13:00:24.0602 1904 [ FAF1BA660F84789CCCE747CE6F9D055A ] C:\Windows\System32\crypt32.dll
13:00:24.0602 1904 C:\Windows\System32\crypt32.dll - ok
13:00:24.0618 1904 [ 53238D99636BBA85F491C3E8FD22AB00 ] C:\Windows\System32\wintrust.dll
13:00:24.0618 1904 C:\Windows\System32\wintrust.dll - ok
13:00:24.0618 1904 [ 287C6C9410B111B68B52CA298F7B8C24 ] C:\Windows\System32\drivers\usbhub.sys
13:00:24.0618 1904 C:\Windows\System32\drivers\usbhub.sys - ok
13:00:24.0633 1904 [ 6B5174702343BD955E174FDFEFA2A1A3 ] C:\Windows\System32\KernelBase.dll
13:00:24.0633 1904 C:\Windows\System32\KernelBase.dll - ok
13:00:24.0633 1904 [ 14DFDEAF4E589ED3F1FF187A86B9408C ] C:\Windows\System32\comctl32.dll
13:00:24.0633 1904 C:\Windows\System32\comctl32.dll - ok
13:00:24.0649 1904 [ 06FEC9E8117103BB1141A560E98077DA ] C:\Windows\System32\devobj.dll
13:00:24.0649 1904 C:\Windows\System32\devobj.dll - ok
13:00:24.0649 1904 [ 884415BD4269C02EAF8E2613BF85500D ] C:\Windows\System32\msasn1.dll
13:00:24.0649 1904 C:\Windows\System32\msasn1.dll - ok
13:00:24.0664 1904 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] C:\Windows\System32\drivers\ndproxy.sys
13:00:24.0664 1904 C:\Windows\System32\drivers\ndproxy.sys - ok
13:00:24.0664 1904 [ 9C278785347BCC991F8EA2999D90F58D ] C:\Windows\SysWOW64\normaliz.dll
13:00:24.0664 1904 C:\Windows\SysWOW64\normaliz.dll - ok
13:00:24.0664 1904 [ BF24D6F2ED97FE830BFD52B246F98E67 ] C:\Windows\System32\drivers\dxapi.sys
13:00:24.0664 1904 C:\Windows\System32\drivers\dxapi.sys - ok
13:00:24.0680 1904 [ F0D6864A7D52CE137E0A9D24795C3F0E ] C:\Windows\System32\win32k.sys
13:00:24.0680 1904 C:\Windows\System32\win32k.sys - ok
13:00:24.0696 1904 [ 60C2862B4BF0FD9F582EF344C2B1EC72 ] C:\Windows\System32\csrss.exe
13:00:24.0696 1904 C:\Windows\System32\csrss.exe - ok
13:00:24.0696 1904 [ 96F587CA26A6AA894BD8CACE4540CFFC ] C:\Windows\System32\csrsrv.dll
13:00:24.0696 1904 C:\Windows\System32\csrsrv.dll - ok
13:00:24.0711 1904 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\System32\basesrv.dll
13:00:24.0711 1904 C:\Windows\System32\basesrv.dll - ok
13:00:24.0711 1904 [ EB6A48CC998E1090E44E8E7F1009A640 ] C:\Windows\System32\winsrv.dll
13:00:24.0711 1904 C:\Windows\System32\winsrv.dll - ok
13:00:24.0711 1904 [ FEDE0629ECB23650D48989517D4914DA ] C:\Windows\System32\drivers\dxg.sys
13:00:24.0711 1904 C:\Windows\System32\drivers\dxg.sys - ok
13:00:24.0727 1904 [ CCA2AB1752A61F29C3C941CD79D78CEA ] C:\Windows\System32\drivers\usbd.sys
13:00:24.0727 1904 C:\Windows\System32\drivers\usbd.sys - ok
13:00:24.0727 1904 [ FED648B01349A3C8395A5169DB5FB7D6 ] C:\Windows\System32\drivers\USBSTOR.SYS
13:00:24.0727 1904 C:\Windows\System32\drivers\USBSTOR.SYS - ok
13:00:24.0742 1904 [ F29FE765E1448EF371CFE05BFAC74ADB ] C:\Windows\System32\tsddd.dll
13:00:24.0742 1904 C:\Windows\System32\tsddd.dll - ok
13:00:24.0758 1904 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\System32\sxssrv.dll
13:00:24.0758 1904 C:\Windows\System32\sxssrv.dll - ok
13:00:24.0758 1904 [ 94355C28C1970635A31B3FE52EB7CEBA ] C:\Windows\System32\wininit.exe
13:00:24.0758 1904 C:\Windows\System32\wininit.exe - ok
13:00:24.0774 1904 [ 2C942733A5983DD4502219FF37C7EBC7 ] C:\Windows\System32\profapi.dll
13:00:24.0774 1904 C:\Windows\System32\profapi.dll - ok
13:00:24.0774 1904 [ 8BEC4D6AD2864EDF68D9AD0C6AA6C6D1 ] C:\Windows\System32\vga.dll
13:00:24.0774 1904 C:\Windows\System32\vga.dll - ok
13:00:24.0789 1904 [ E30B04A8FE665C52162D70233ABEA9A3 ] C:\Windows\System32\framebuf.dll
13:00:24.0789 1904 C:\Windows\System32\framebuf.dll - ok
13:00:24.0789 1904 [ C2A8CB1275ECB85D246A9ECC02A728E3 ] C:\Windows\System32\RpcRtRemote.dll
13:00:24.0789 1904 C:\Windows\System32\RpcRtRemote.dll - ok
13:00:24.0805 1904 [ 1151B1BAA6F350B1DB6598E0FEA7C457 ] C:\Windows\System32\winlogon.exe
13:00:24.0805 1904 C:\Windows\System32\winlogon.exe - ok
13:00:24.0820 1904 [ 78523A26F5604C0568FE9D1CE86E36F4 ] C:\Windows\System32\KBDUS.DLL
13:00:24.0820 1904 C:\Windows\System32\KBDUS.DLL - ok
13:00:24.0820 1904 [ 0D9764D58C5EFD672B7184854B152E5E ] C:\Windows\System32\winsta.dll
13:00:24.0820 1904 C:\Windows\System32\winsta.dll - ok
13:00:24.0820 1904 [ B26B1801356760841C3BC69F9F91537F ] C:\Windows\System32\WlS0WndH.dll
13:00:24.0820 1904 C:\Windows\System32\WlS0WndH.dll - ok
13:00:24.0836 1904 [ 9CEAD32E79A62150FE9F8557E58E008B ] C:\Windows\System32\sxs.dll
13:00:24.0836 1904 C:\Windows\System32\sxs.dll - ok
13:00:24.0836 1904 [ 784FA3DF338E2E8F5F0389D6FAC428AF ] C:\Windows\System32\cryptbase.dll
13:00:24.0836 1904 C:\Windows\System32\cryptbase.dll - ok
13:00:24.0852 1904 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\System32\services.exe
13:00:24.0852 1904 C:\Windows\System32\services.exe - ok
13:00:24.0852 1904 [ C118A82CD78818C29AB228366EBF81C3 ] C:\Windows\System32\lsass.exe
13:00:24.0852 1904 C:\Windows\System32\lsass.exe - ok
13:00:24.0867 1904 [ 9662EE182644511439F1C53745DC1C88 ] C:\Windows\System32\lsm.exe
13:00:24.0867 1904 C:\Windows\System32\lsm.exe - ok
13:00:24.0867 1904 [ 3A0CE5FE781708CD6ABD55313607EC8B ] C:\Windows\System32\sspisrv.dll
13:00:24.0867 1904 C:\Windows\System32\sspisrv.dll - ok
13:00:24.0883 1904 [ B66BC8B20B7F33975865B1DF99783FD8 ] C:\Windows\System32\sspicli.dll
13:00:24.0883 1904 C:\Windows\System32\sspicli.dll - ok
13:00:24.0883 1904 [ 66A6063D0BAAD3F7B2B9868859E0743B ] C:\Windows\System32\lsasrv.dll
13:00:24.0883 1904 C:\Windows\System32\lsasrv.dll - ok
13:00:24.0898 1904 [ 68083118797CAF30FB2EA3E71494D67E ] C:\Windows\System32\sysntfy.dll
13:00:24.0898 1904 C:\Windows\System32\sysntfy.dll - ok
13:00:24.0898 1904 [ E914A50A151DFFE63D3935226DB5E2C1 ] C:\Windows\System32\scext.dll
13:00:24.0898 1904 C:\Windows\System32\scext.dll - ok
13:00:24.0914 1904 [ 0144D8D75A0B12938AEEE859E3310A46 ] C:\Windows\System32\secur32.dll
13:00:24.0914 1904 C:\Windows\System32\secur32.dll - ok
13:00:24.0914 1904 [ DEE7267C5D232A3B816866872CE199E6 ] C:\Windows\System32\wmsgapi.dll
13:00:24.0914 1904 C:\Windows\System32\wmsgapi.dll - ok
13:00:24.0930 1904 [ BBCDF350817BA86416C0F06B6981BE8D ] C:\Windows\System32\scesrv.dll
13:00:24.0930 1904 C:\Windows\System32\scesrv.dll - ok
13:00:24.0930 1904 [ A744BA6E04C8AA4592818178DBF89521 ] C:\Windows\System32\samsrv.dll
13:00:24.0930 1904 C:\Windows\System32\samsrv.dll - ok
13:00:24.0945 1904 [ 3A9C9BAF610B0DD4967086040B3B62A9 ] C:\Windows\System32\srvcli.dll
13:00:24.0945 1904 C:\Windows\System32\srvcli.dll - ok
13:00:24.0945 1904 [ 3A061472B38233BAFF9CFEFF2E49C46B ] C:\Windows\System32\cryptdll.dll
13:00:24.0945 1904 C:\Windows\System32\cryptdll.dll - ok
13:00:24.0961 1904 [ 3C073B0C596A0AF84933E7406766B040 ] C:\Windows\System32\wevtapi.dll
13:00:24.0961 1904 C:\Windows\System32\wevtapi.dll - ok
13:00:24.0961 1904 [ 86FE1B1F8FD42CD0DB641AB1CDB13093 ] C:\Windows\System32\cngaudit.dll
13:00:24.0961 1904 C:\Windows\System32\cngaudit.dll - ok
13:00:24.0976 1904 [ 7FBEBD2229EA5FD48D41B199EC2D541C ] C:\Windows\System32\authz.dll
13:00:24.0976 1904 C:\Windows\System32\authz.dll - ok
13:00:24.0976 1904 [ 400645085A91BF3EB0271329B95AE0BE ] C:\Windows\System32\ncrypt.dll
13:00:24.0976 1904 C:\Windows\System32\ncrypt.dll - ok
13:00:24.0976 1904 [ B9A95365E52F421A20E1501935FADDA5 ] C:\Windows\System32\bcrypt.dll
13:00:24.0976 1904 C:\Windows\System32\bcrypt.dll - ok
13:00:24.0992 1904 [ 02B64609F865A39365FF88580DF11738 ] C:\Windows\System32\msprivs.dll
13:00:24.0992 1904 C:\Windows\System32\msprivs.dll - ok
13:00:25.0008 1904 [ C6505DE3561537BA1004D638C2F93F2F ] C:\Windows\System32\netjoin.dll
13:00:25.0008 1904 C:\Windows\System32\netjoin.dll - ok
13:00:25.0008 1904 [ 50532FCD7ECF02DD169CE5C485F02534 ] C:\Windows\System32\negoexts.dll
13:00:25.0008 1904 C:\Windows\System32\negoexts.dll - ok
13:00:25.0023 1904 [ 16ECE8BD6734CC170B9AE74176E89A9B ] C:\Windows\System32\kerberos.dll
13:00:25.0023 1904 C:\Windows\System32\kerberos.dll - ok
13:00:25.0023 1904 [ D0C2FBB6D97416B0166478FC7AE2B212 ] C:\Windows\System32\cryptsp.dll
13:00:25.0023 1904 C:\Windows\System32\cryptsp.dll - ok
13:00:25.0023 1904 [ 1D5185A4C7E6695431AE4B55C3D7D333 ] C:\Windows\System32\mswsock.dll
13:00:25.0023 1904 C:\Windows\System32\mswsock.dll - ok
13:00:25.0039 1904 [ EC7CBFF96B05ECF3D366355B3C64ADCF ] C:\Windows\System32\wship6.dll
13:00:25.0039 1904 C:\Windows\System32\wship6.dll - ok
13:00:25.0054 1904 [ EF12B8385AA2849999008A977918F96B ] C:\Windows\System32\msv1_0.dll
13:00:25.0054 1904 C:\Windows\System32\msv1_0.dll - ok
13:00:25.0054 1904 [ 4AC74A462F3A0506B929F599B5E1B1FB ] C:\Windows\System32\atmfd.dll
13:00:25.0054 1904 C:\Windows\System32\atmfd.dll - ok
13:00:25.0070 1904 [ AA339DD8BB128EF66660DFBBB59043D3 ] C:\Windows\System32\netlogon.dll
13:00:25.0070 1904 C:\Windows\System32\netlogon.dll - ok
13:00:25.0070 1904 [ 492D07D79E7024CA310867B526D9636D ] C:\Windows\System32\dnsapi.dll
13:00:25.0070 1904 C:\Windows\System32\dnsapi.dll - ok
13:00:25.0086 1904 [ 8FFE297B8449386E7B6851458B6E474E ] C:\Windows\System32\logoncli.dll
13:00:25.0086 1904 C:\Windows\System32\logoncli.dll - ok
13:00:25.0086 1904 [ 1573C45E65DE32B1BC3572634F8F1E8E ] C:\Windows\System32\schannel.dll
13:00:25.0086 1904 C:\Windows\System32\schannel.dll - ok
13:00:25.0101 1904 [ 95FB6CA4374E343DDD653FCC43F9D26B ] C:\Windows\System32\wdigest.dll
13:00:25.0101 1904 C:\Windows\System32\wdigest.dll - ok
13:00:25.0101 1904 [ 5D8874A8C11DDDDE29E12DE0E2013493 ] C:\Windows\System32\rsaenh.dll
13:00:25.0101 1904 C:\Windows\System32\rsaenh.dll - ok
13:00:25.0117 1904 [ 8A25506B6948EFBD5A7F37E53CCD36D9 ] C:\Windows\System32\TSpkg.dll
13:00:25.0117 1904 C:\Windows\System32\TSpkg.dll - ok
13:00:25.0132 1904 [ E08088A97F95345E181C3DFCE2C615EF ] C:\Windows\System32\pku2u.dll
13:00:25.0132 1904 C:\Windows\System32\pku2u.dll - ok
13:00:25.0132 1904 [ 55C892560C1B42BC57FB61AEFCED2F22 ] C:\Windows\System32\LIVESSP.DLL
13:00:25.0132 1904 C:\Windows\System32\LIVESSP.DLL - ok
13:00:25.0132 1904 [ D6C7780A364C6BBACFA796BAB9F1B374 ] C:\Windows\System32\bcryptprimitives.dll
13:00:25.0132 1904 C:\Windows\System32\bcryptprimitives.dll - ok
13:00:25.0148 1904 [ 90BDEFC5DF334E5100EAA781D798DE1A ] C:\Windows\System32\efslsaext.dll
13:00:25.0148 1904 C:\Windows\System32\efslsaext.dll - ok
13:00:25.0148 1904 [ 52D3D5E3586988D4D9E34ACAAC33105C ] C:\Windows\System32\credssp.dll
13:00:25.0148 1904 C:\Windows\System32\credssp.dll - ok
13:00:25.0164 1904 [ ED78427259134C63ED69804D2132B86C ] C:\Windows\System32\scecli.dll
13:00:25.0164 1904 C:\Windows\System32\scecli.dll - ok
13:00:25.0164 1904 [ 7CC7DF5B654DA579613F811D8C637E29 ] C:\Windows\System32\ubpm.dll
13:00:25.0164 1904 C:\Windows\System32\ubpm.dll - ok
13:00:25.0179 1904 [ C78655BC80301D76ED4FEF1C1EA40A7D ] C:\Windows\System32\svchost.exe
13:00:25.0179 1904 C:\Windows\System32\svchost.exe - ok
13:00:25.0179 1904 [ 25FBDEF06C4D92815B353F6E792C8129 ] C:\Windows\System32\umpnpmgr.dll
13:00:25.0179 1904 C:\Windows\System32\umpnpmgr.dll - ok
13:00:25.0195 1904 [ E6EB44ABAAF1F330119F854856C53EBE ] C:\Windows\System32\SPInf.dll
13:00:25.0195 1904 C:\Windows\System32\SPInf.dll - ok
13:00:25.0195 1904 [ CD1B5AD07E5F7FEF30E055DCC9E96180 ] C:\Windows\System32\devrtl.dll
13:00:25.0195 1904 C:\Windows\System32\devrtl.dll - ok
13:00:25.0210 1904 [ 7A17485DC7D8A7AC81321A42CD034519 ] C:\Windows\System32\userenv.dll
13:00:25.0210 1904 C:\Windows\System32\userenv.dll - ok
13:00:25.0210 1904 [ 9C9307C95671AC962F3D6EB3A4A89BAE ] C:\Windows\System32\gpapi.dll
13:00:25.0210 1904 C:\Windows\System32\gpapi.dll - ok
13:00:25.0226 1904 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] C:\Windows\System32\umpo.dll
13:00:25.0226 1904 C:\Windows\System32\umpo.dll - ok
13:00:25.0226 1904 [ F6C011B46FAEEF33536B2E80F48B5CBE ] C:\Windows\System32\pcwum.dll
13:00:25.0226 1904 C:\Windows\System32\pcwum.dll - ok
13:00:25.0242 1904 [ 716175021BDA290504CE434273F666BC ] C:\Windows\System32\powrprof.dll
13:00:25.0242 1904 C:\Windows\System32\powrprof.dll - ok
13:00:25.0242 1904 [ D3381DC54C34D79B22CEE0D65BA91B7C ] C:\Windows\System32\drivers\WUDFPf.sys
13:00:25.0242 1904 C:\Windows\System32\drivers\WUDFPf.sys - ok
13:00:25.0257 1904 [ 5C627D1B1138676C0A7AB2C2C190D123 ] C:\Windows\System32\rpcss.dll
13:00:25.0257 1904 C:\Windows\System32\rpcss.dll - ok
13:00:25.0257 1904 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] C:\Windows\System32\RpcEpMap.dll
13:00:25.0257 1904 C:\Windows\System32\RpcEpMap.dll - ok
13:00:25.0273 1904 [ 31559F3244C6BC00A52030CAA83B6B91 ] C:\Windows\System32\WSHTCPIP.DLL
13:00:25.0273 1904 C:\Windows\System32\WSHTCPIP.DLL - ok
13:00:25.0288 1904 [ 16E964ABF6D1E0F0CC7822FCA9BA754D ] C:\Windows\System32\wshqos.dll
13:00:25.0288 1904 C:\Windows\System32\wshqos.dll - ok
13:00:25.0288 1904 [ 9AD9E06F8656F296D91FAE8EE5B95A27 ] C:\Windows\System32\FirewallAPI.dll
13:00:25.0288 1904 C:\Windows\System32\FirewallAPI.dll - ok
13:00:25.0288 1904 [ 715F03B4C7223349768013EA95D9E5B7 ] C:\Windows\System32\LogonUI.exe
13:00:25.0288 1904 C:\Windows\System32\LogonUI.exe - ok
13:00:25.0304 1904 [ 0BEE002C68E28CE6DA161DCF1376D7D7 ] C:\Windows\System32\authui.dll
13:00:25.0304 1904 C:\Windows\System32\authui.dll - ok
13:00:25.0320 1904 [ 94E026870A55AAEAFF7853C1754091E9 ] C:\Windows\System32\version.dll
13:00:25.0320 1904 C:\Windows\System32\version.dll - ok
13:00:25.0320 1904 [ B3BFBD758506ECB50C5804AAA76318F9 ] C:\Windows\System32\cryptui.dll
13:00:25.0320 1904 C:\Windows\System32\cryptui.dll - ok
13:00:25.0335 1904 [ 6011714C8C5C55CBFFAD24D61E879FBD ] C:\Windows\System32\wevtsvc.dll
13:00:25.0335 1904 C:\Windows\System32\wevtsvc.dll - ok
13:00:25.0335 1904 [ 7FA8FDC2C2A27817FD0F624E78D3B50C ] C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac\comctl32.dll
13:00:25.0335 1904 C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac\comctl32.dll - ok
13:00:25.0351 1904 [ 4E9C2DB10F7E6AE91BF761139D4B745B ] C:\Windows\System32\shacct.dll
13:00:25.0351 1904 C:\Windows\System32\shacct.dll - ok
13:00:25.0351 1904 [ 5B3EBFC3DA142324B388DDCC4465E1FF ] C:\Windows\System32\samlib.dll
13:00:25.0351 1904 C:\Windows\System32\samlib.dll - ok
13:00:25.0366 1904 [ 53E83F1F6CF9D62F32801CF66D8352A8 ] C:\Windows\System32\profsvc.dll
13:00:25.0366 1904 C:\Windows\System32\profsvc.dll - ok
13:00:25.0366 1904 [ F06BB4E336EA57511FDBAFAFCC47DE62 ] C:\Windows\System32\propsys.dll
13:00:25.0366 1904 C:\Windows\System32\propsys.dll - ok
13:00:25.0382 1904 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] C:\Windows\System32\wlansvc.dll
13:00:25.0382 1904 C:\Windows\System32\wlansvc.dll - ok
13:00:25.0382 1904 [ 58775492FFD419248B08325E583C527F ] C:\Windows\System32\atl.dll
13:00:25.0382 1904 C:\Windows\System32\atl.dll - ok
13:00:25.0398 1904 [ D29E998E8277666982B4F0303BF4E7AF ] C:\Windows\System32\uxtheme.dll
13:00:25.0398 1904 C:\Windows\System32\uxtheme.dll - ok
13:00:25.0398 1904 [ 7A95C95B6C4CF292D689106BCAE49543 ] C:\Windows\System32\WUDFSvc.dll
13:00:25.0398 1904 C:\Windows\System32\WUDFSvc.dll - ok
13:00:25.0413 1904 [ 80E69670BDA10F32A941BA7358E33012 ] C:\Windows\System32\WUDFPlatform.dll
13:00:25.0413 1904 C:\Windows\System32\WUDFPlatform.dll - ok
13:00:25.0413 1904 [ 588CD0C78A7FAAE4186B5EEA0AF3ED67 ] C:\Windows\System32\adtschema.dll
13:00:25.0413 1904 C:\Windows\System32\adtschema.dll - ok
13:00:25.0413 1904 [ 179E8401224D557ECFF3695F2016EA5B ] C:\Windows\winsxs\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.17825_none_2b253c8271ec7765\GdiPlus.dll
13:00:25.0413 1904 C:\Windows\winsxs\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.17825_none_2b253c8271ec7765\GdiPlus.dll - ok
13:00:25.0429 1904 [ FE05D03B73000CFF476E1D29109F3A84 ] C:\Program Files\Windows Defender\MpEvMsg.dll
13:00:25.0429 1904 C:\Program Files\Windows Defender\MpEvMsg.dll - ok
13:00:25.0444 1904 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] C:\Windows\System32\drivers\nwifi.sys
13:00:25.0444 1904 C:\Windows\System32\drivers\nwifi.sys - ok
13:00:25.0444 1904 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] C:\Windows\System32\netprofm.dll
13:00:25.0444 1904 C:\Windows\System32\netprofm.dll - ok
13:00:25.0460 1904 [ 136185F9FB2CC61E573E676AA5402356 ] C:\Windows\System32\drivers\ndisuio.sys
13:00:25.0460 1904 C:\Windows\System32\drivers\ndisuio.sys - ok
13:00:25.0460 1904 [ 50544D04AD845C43130B70212EC05CCD ] C:\Windows\System32\microsoft-windows-kernel-power-events.dll
13:00:25.0460 1904 C:\Windows\System32\microsoft-windows-kernel-power-events.dll - ok
13:00:25.0476 1904 [ F993A32249B66C9D622EA5592A8B76B8 ] C:\Windows\System32\lmhsvc.dll
13:00:25.0476 1904 C:\Windows\System32\lmhsvc.dll - ok
13:00:25.0476 1904 [ D54BFDF3E0C953F823B3D0BFE4732528 ] C:\Windows\System32\nsisvc.dll
13:00:25.0476 1904 C:\Windows\System32\nsisvc.dll - ok
13:00:25.0491 1904 [ 2B81776DA02017A37FE26C662827470E ] C:\Windows\System32\IPHLPAPI.DLL
13:00:25.0491 1904 C:\Windows\System32\IPHLPAPI.DLL - ok
13:00:25.0507 1904 [ F9EC845C5EECF20E9A67F9F805F2EF1F ] C:\Windows\System32\keyiso.dll
13:00:25.0507 1904 C:\Windows\System32\keyiso.dll - ok
13:00:25.0507 1904 [ 3CB6A7286422C72C34DAB54A5DFF1A34 ] C:\Windows\System32\dui70.dll
13:00:25.0507 1904 C:\Windows\System32\dui70.dll - ok
13:00:25.0522 1904 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] C:\Windows\System32\dnsrslvr.dll
13:00:25.0522 1904 C:\Windows\System32\dnsrslvr.dll - ok
13:00:25.0522 1904 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] C:\Windows\System32\eapsvc.dll
13:00:25.0522 1904 C:\Windows\System32\eapsvc.dll - ok
13:00:25.0522 1904 [ 87356377F31DA5F20A833811CD59499C ] C:\Windows\System32\eapphost.dll
13:00:25.0522 1904 C:\Windows\System32\eapphost.dll - ok
13:00:25.0538 1904 [ 4C9210E8F4E052F6A4EB87716DA0C24C ] C:\Windows\System32\winnsi.dll
13:00:25.0538 1904 C:\Windows\System32\winnsi.dll - ok
13:00:25.0538 1904 [ B73A6E4B319AFFE64582AC5C1801BB3F ] C:\Windows\System32\nrpsrv.dll
13:00:25.0538 1904 C:\Windows\System32\nrpsrv.dll - ok
13:00:25.0554 1904 [ 0040C486584A8E582C861CFB57AB5387 ] C:\Windows\System32\FWPUCLNT.DLL
13:00:25.0554 1904 C:\Windows\System32\FWPUCLNT.DLL - ok
13:00:25.0569 1904 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] C:\Windows\System32\dhcpcore.dll
13:00:25.0569 1904 C:\Windows\System32\dhcpcore.dll - ok
13:00:25.0569 1904 [ 8CCDE014A4CDF84564E03ACE064CA753 ] C:\Windows\System32\duser.dll
13:00:25.0569 1904 C:\Windows\System32\duser.dll - ok
13:00:25.0585 1904 [ 54FFC9C8898113ACE189D4AA7199D2C1 ] C:\Windows\System32\MPSSVC.dll
13:00:25.0585 1904 C:\Windows\System32\MPSSVC.dll - ok
13:00:25.0585 1904 [ 885D0942E0F28DB90919BE3129ECF279 ] C:\Windows\System32\dnsext.dll
13:00:25.0585 1904 C:\Windows\System32\dnsext.dll - ok
13:00:25.0600 1904 [ 9FCA3A84338ADEF2AFF67CDA46EF8539 ] C:\Windows\System32\umb.dll
13:00:25.0600 1904 C:\Windows\System32\umb.dll - ok
13:00:25.0600 1904 [ BD3674BE7FC9D8D3732C83E8499576ED ] C:\Windows\System32\wtsapi32.dll
13:00:25.0600 1904 C:\Windows\System32\wtsapi32.dll - ok
13:00:25.0600 1904 [ F568F7C08458D69E4FCD8675BBB107E4 ] C:\Windows\System32\dhcpcsvc.dll
13:00:25.0600 1904 C:\Windows\System32\dhcpcsvc.dll - ok
13:00:25.0632 1904 [ A77BE7CB3222B4FB0AC6C71D1C2698D4 ] C:\Windows\System32\dsrole.dll
13:00:25.0632 1904 C:\Windows\System32\dsrole.dll - ok
13:00:25.0632 1904 [ D7F1EF374A90709B31591823B002F918 ] C:\Windows\System32\SndVolSSO.dll
13:00:25.0632 1904 C:\Windows\System32\SndVolSSO.dll - ok
13:00:25.0632 1904 [ A648C4A06DE367065B24056D067B4460 ] C:\Windows\System32\wlanmsm.dll
13:00:25.0632 1904 C:\Windows\System32\wlanmsm.dll - ok
13:00:25.0647 1904 [ 4CBCC37856EA2039C27A2FB661DDA0E5 ] C:\Windows\System32\dhcpcsvc6.dll
13:00:25.0647 1904 C:\Windows\System32\dhcpcsvc6.dll - ok
13:00:25.0647 1904 [ 896F15A6434D93EDB42519D5E18E6B50 ] C:\Windows\System32\hid.dll
13:00:25.0647 1904 C:\Windows\System32\hid.dll - ok
13:00:25.0663 1904 [ 227E2C382A1E02F8D4965E664D3BBE43 ] C:\Windows\System32\MMDevAPI.dll
13:00:25.0663 1904 C:\Windows\System32\MMDevAPI.dll - ok
13:00:25.0663 1904 [ DA1B7075260F3872585BFCDD668C648B ] C:\Windows\System32\dwmapi.dll
13:00:25.0663 1904 C:\Windows\System32\dwmapi.dll - ok
13:00:25.0678 1904 [ 06A1386B6E3A0CBC368665C1840906F4 ] C:\Windows\System32\wlansec.dll
13:00:25.0678 1904 C:\Windows\System32\wlansec.dll - ok
13:00:25.0678 1904 [ 71C7B65B6557B75B99907E76956AE4B8 ] C:\Windows\System32\dhcpcore6.dll
13:00:25.0678 1904 C:\Windows\System32\dhcpcore6.dll - ok
13:00:25.0694 1904 [ 6F8B48F3D343E4B186AB6A9E302B7E16 ] C:\Windows\System32\xmllite.dll
13:00:25.0694 1904 C:\Windows\System32\xmllite.dll - ok
13:00:25.0694 1904 [ DA6B67270FD9DB3697B20FCE94950741 ] C:\Windows\System32\drivers\fltMgr.sys
13:00:25.0694 1904 C:\Windows\System32\drivers\fltMgr.sys - ok
13:00:25.0710 1904 [ 73FCB7919DEE80EE556F2E498594EBAE ] C:\Windows\System32\onex.dll
13:00:25.0710 1904 C:\Windows\System32\onex.dll - ok
13:00:25.0710 1904 [ A3DB3C17EE6CAE65D53602B4E80BCCBC ] C:\Windows\System32\PSHED.DLL
13:00:25.0710 1904 C:\Windows\System32\PSHED.DLL - ok
13:00:25.0725 1904 [ 26B73A85855681500BCC25C7CD9FF5B1 ] C:\Windows\System32\WindowsCodecs.dll
13:00:25.0725 1904 C:\Windows\System32\WindowsCodecs.dll - ok
13:00:25.0725 1904 [ 65522E77A1360DBC8D199DA3BF5EFFE4 ] C:\Windows\System32\eappprxy.dll
13:00:25.0725 1904 C:\Windows\System32\eappprxy.dll - ok
13:00:25.0741 1904 [ 0D753307D274F3688BD21C377B616700 ] C:\Windows\System32\eappcfg.dll
13:00:25.0741 1904 C:\Windows\System32\eappcfg.dll - ok
13:00:25.0741 1904 [ 730BF204A595D5B6D7DC57A247CC741C ] C:\Windows\System32\wlgpclnt.dll
13:00:25.0741 1904 C:\Windows\System32\wlgpclnt.dll - ok
13:00:25.0756 1904 [ 97E43F324BE1503CB2FFB058534688DA ] C:\Windows\System32\l2gpstore.dll
13:00:25.0756 1904 C:\Windows\System32\l2gpstore.dll - ok
13:00:25.0756 1904 [ 7F1B4C6FF3B85F9ADF74055187B8A22C ] C:\Windows\System32\wlanutil.dll
13:00:25.0756 1904 C:\Windows\System32\wlanutil.dll - ok
13:00:25.0772 1904 [ 9F2BACD5E1776A4BB7CC0EC3C3A4F96D ] C:\Windows\System32\winbrand.dll
13:00:25.0772 1904 C:\Windows\System32\winbrand.dll - ok
13:00:25.0772 1904 [ 7D5645EE0EA77D539828433D9B95F5EB ] C:\Windows\System32\WinSCard.dll
13:00:25.0772 1904 C:\Windows\System32\WinSCard.dll - ok
13:00:25.0788 1904 [ CA2985996BB49924B677113DF95CFEA7 ] C:\Windows\System32\SmartcardCredentialProvider.dll
13:00:25.0788 1904 C:\Windows\System32\SmartcardCredentialProvider.dll - ok
13:00:25.0788 1904 [ 4FFDE68C4B7C9993FA551E7E36DDB34D ] C:\Windows\System32\msxml6.dll
13:00:25.0788 1904 C:\Windows\System32\msxml6.dll - ok
13:00:25.0803 1904 [ C2762A57DF0EE85E63CE4893C5215313 ] C:\Windows\System32\VaultCredProvider.dll
13:00:25.0803 1904 C:\Windows\System32\VaultCredProvider.dll - ok
13:00:25.0803 1904 [ 9BC8610C32C96A2983A65DC21CAFA921 ] C:\Windows\System32\UXInit.dll
13:00:25.0803 1904 C:\Windows\System32\UXInit.dll - ok
13:00:25.0819 1904 [ 673D6DE6D6E9D50CD5E9C78F0C916CB8 ] C:\Program Files (x86)\Common Files\Symantec Shared\ccSvcHst.exe
13:00:25.0819 1904 C:\Program Files (x86)\Common Files\Symantec Shared\ccSvcHst.exe - ok
13:00:25.0819 1904 [ E73B0F1819602CB6EF176FB78D76A47B ] C:\Windows\SysWOW64\ntdll.dll
13:00:25.0819 1904 C:\Windows\SysWOW64\ntdll.dll - ok
13:00:25.0834 1904 [ 03706015DB44368375AEBE6339490E66 ] C:\Windows\System32\netcfgx.dll
13:00:25.0834 1904 C:\Windows\System32\netcfgx.dll - ok
13:00:25.0834 1904 [ B1E3772FFA96AC5AEE89BF202AF8E348 ] C:\Windows\System32\wow64.dll
13:00:25.0834 1904 C:\Windows\System32\wow64.dll - ok
13:00:25.0850 1904 [ FC5A43FA257F546F8F2B96B5529857E1 ] C:\Windows\System32\wow64win.dll
13:00:25.0850 1904 C:\Windows\System32\wow64win.dll - ok
13:00:25.0850 1904 [ AA0D2571A4348838B8DD49FD0043826A ] C:\Windows\System32\wow64cpu.dll
13:00:25.0850 1904 C:\Windows\System32\wow64cpu.dll - ok
13:00:25.0866 1904 [ 99C3F8E9CC59D95666EB8D8A8B4C2BEB ] C:\Windows\SysWOW64\kernel32.dll
13:00:25.0866 1904 C:\Windows\SysWOW64\kernel32.dll - ok
13:00:25.0866 1904 [ 5C2D21C9B6B6175B89BC5D7E3CB979E1 ] C:\Windows\SysWOW64\KernelBase.dll
13:00:25.0866 1904 C:\Windows\SysWOW64\KernelBase.dll - ok
13:00:25.0881 1904 [ 928CF7268086631F54C3D8E17238C6DD ] C:\Windows\SysWOW64\ole32.dll
13:00:25.0881 1904 C:\Windows\SysWOW64\ole32.dll - ok
13:00:25.0881 1904 [ 9DC80A8AAAAAC397BDAB3C67165A824E ] C:\Windows\SysWOW64\msvcrt.dll
13:00:25.0881 1904 C:\Windows\SysWOW64\msvcrt.dll - ok
13:00:25.0897 1904 [ D6D3AD7BF1D6F6CE9547613ED5E170A2 ] C:\Windows\SysWOW64\gdi32.dll
13:00:25.0897 1904 C:\Windows\SysWOW64\gdi32.dll - ok
13:00:25.0897 1904 [ 5E0DB2D8B2750543CD2EBB9EA8E6CDD3 ] C:\Windows\SysWOW64\user32.dll
13:00:25.0897 1904 C:\Windows\SysWOW64\user32.dll - ok
13:00:25.0912 1904 [ 95E2376B3323F062EB562B8586D0F14A ] C:\Windows\SysWOW64\advapi32.dll
13:00:25.0912 1904 C:\Windows\SysWOW64\advapi32.dll - ok
13:00:25.0912 1904 [ 3C91392D448F6E5D525A85B7550D8BA9 ] C:\Windows\System32\wkscli.dll
13:00:25.0912 1904 C:\Windows\System32\wkscli.dll - ok
13:00:25.0928 1904 [ 6CECA4C6A489C9B2E6073AFDAAE3F607 ] C:\Windows\System32\netutils.dll
13:00:25.0928 1904 C:\Windows\System32\netutils.dll - ok
13:00:25.0928 1904 [ CFC97F07904067A1E5FAE195D534DA3A ] C:\Windows\SysWOW64\sechost.dll
13:00:25.0928 1904 C:\Windows\SysWOW64\sechost.dll - ok
13:00:25.0944 1904 [ FC51229C7D4AFA0D6F186133728B95AB ] C:\Windows\System32\samcli.dll
13:00:25.0944 1904 C:\Windows\System32\samcli.dll - ok
13:00:25.0944 1904 [ C5AD8083CF94201F1F8084ECC696A8B7 ] C:\Windows\SysWOW64\rpcrt4.dll
13:00:25.0944 1904 C:\Windows\SysWOW64\rpcrt4.dll - ok
13:00:25.0959 1904 [ EDA7AD21DF8945528F01F0A86D69E524 ] C:\Windows\SysWOW64\sspicli.dll
13:00:25.0959 1904 C:\Windows\SysWOW64\sspicli.dll - ok
13:00:25.0959 1904 [ F08F6FCD09F9BE94C37ACC1B344685FF ] C:\Windows\SysWOW64\cryptbase.dll
13:00:25.0959 1904 C:\Windows\SysWOW64\cryptbase.dll - ok
13:00:25.0975 1904 [ 5AA945234E9D4CCE4F715276B9AA712C ] C:\Windows\System32\imageres.dll
13:00:25.0975 1904 C:\Windows\System32\imageres.dll - ok
13:00:25.0975 1904 [ 384721EF4024890092625E20CADFAF85 ] C:\Windows\SysWOW64\lpk.dll
13:00:25.0975 1904 C:\Windows\SysWOW64\lpk.dll - ok
13:00:25.0990 1904 [ 804AAAFEBB3AD5F49334DD906BCB1DE5 ] C:\Windows\SysWOW64\usp10.dll
13:00:25.0990 1904 C:\Windows\SysWOW64\usp10.dll - ok
13:00:26.0006 1904 [ A94DC60A90EFD7A35C36D971E3EE7470 ] C:\Windows\SysWOW64\msvcp71.dll
13:00:26.0006 1904 C:\Windows\SysWOW64\msvcp71.dll - ok
13:00:26.0006 1904 [ 86F1895AE8C5E8B17D99ECE768A70732 ] C:\Windows\SysWOW64\msvcr71.dll
13:00:26.0006 1904 C:\Windows\SysWOW64\msvcr71.dll - ok
13:00:26.0006 1904 [ 63F4BF3579C953AFB10CE922584F4749 ] C:\Program Files (x86)\Common Files\Symantec Shared\ccL60U.dll
13:00:26.0006 1904 C:\Program Files (x86)\Common Files\Symantec Shared\ccL60U.dll - ok
13:00:26.0022 1904 [ 6C765E82B57F2E66CE9C54AC238471D9 ] C:\Windows\SysWOW64\oleaut32.dll
13:00:26.0022 1904 C:\Windows\SysWOW64\oleaut32.dll - ok
13:00:26.0022 1904 [ A6F09E5669D9A19035F6D942CAA15882 ] C:\Windows\SysWOW64\imm32.dll
13:00:26.0022 1904 C:\Windows\SysWOW64\imm32.dll - ok
13:00:26.0037 1904 [ C9618BC9B2B0FD7C1138D8774795A79B ] C:\Windows\SysWOW64\msctf.dll
13:00:26.0037 1904 C:\Windows\SysWOW64\msctf.dll - ok
13:00:26.0037 1904 [ 7FF15A4F092CD4A96055BA69F903E3E9 ] C:\Windows\SysWOW64\ws2_32.dll
13:00:26.0037 1904 C:\Windows\SysWOW64\ws2_32.dll - ok
13:00:26.0053 1904 [ 6377051C63D5552A311935C67E9FDFDC ] C:\Windows\SysWOW64\nsi.dll
13:00:26.0053 1904 C:\Windows\SysWOW64\nsi.dll - ok
13:00:26.0053 1904 [ 53223B673A3FA2F9A4D1C31C8D3F6CD8 ] C:\Windows\SysWOW64\dbghelp.dll
13:00:26.0053 1904 C:\Windows\SysWOW64\dbghelp.dll - ok
13:00:26.0068 1904 [ 702254574E7E52052DE39408457B7149 ] C:\Windows\SysWOW64\version.dll
13:00:26.0068 1904 C:\Windows\SysWOW64\version.dll - ok
13:00:26.0068 1904 [ 8CC3C111D653E96F3EA1590891491D71 ] C:\Windows\SysWOW64\shlwapi.dll
13:00:26.0068 1904 C:\Windows\SysWOW64\shlwapi.dll - ok
13:00:26.0084 1904 [ F13DFCA66A3230DCBF0DE2B8FA0C99AE ] C:\Program Files (x86)\Common Files\Symantec Shared\ccVrTrst.dll
13:00:26.0084 1904 C:\Program Files (x86)\Common Files\Symantec Shared\ccVrTrst.dll - ok
13:00:26.0084 1904 [ 10FB16B50AFFDA6D44588F3C445DC273 ] C:\Windows\SysWOW64\setupapi.dll
13:00:26.0084 1904 C:\Windows\SysWOW64\setupapi.dll - ok
13:00:26.0100 1904 [ F436E847FA799ECD75AD8C313673F450 ] C:\Windows\SysWOW64\cfgmgr32.dll
13:00:26.0100 1904 C:\Windows\SysWOW64\cfgmgr32.dll - ok
13:00:26.0100 1904 [ 2EEFF4502F5E13B1BED4A04CCAD64C08 ] C:\Windows\SysWOW64\devobj.dll
13:00:26.0100 1904 C:\Windows\SysWOW64\devobj.dll - ok
13:00:26.0115 1904 [ DF13A51A5C591887D2EC6AE64CEED0FA ] C:\Windows\SysWOW64\wsock32.dll
13:00:26.0115 1904 C:\Windows\SysWOW64\wsock32.dll - ok
13:00:26.0131 1904 [ 1295338CFE6F249823EF9BC8D4368A84 ] C:\Windows\SysWOW64\crypt32.dll
13:00:26.0131 1904 C:\Windows\SysWOW64\crypt32.dll - ok
13:00:26.0131 1904 [ 938F39B50BAFE13D6F58C7790682C010 ] C:\Windows\SysWOW64\msasn1.dll
13:00:26.0131 1904 C:\Windows\SysWOW64\msasn1.dll - ok
13:00:26.0146 1904 [ A7D79E9F660340AB20CD73F12910985F ] C:\Windows\SysWOW64\wintrust.dll
13:00:26.0146 1904 C:\Windows\SysWOW64\wintrust.dll - ok
13:00:26.0146 1904 [ 7321F18D1F820612ED0E9F2D4B578A7E ] C:\Windows\SysWOW64\cryptsp.dll
13:00:26.0146 1904 C:\Windows\SysWOW64\cryptsp.dll - ok
13:00:26.0162 1904 [ ED8EC63F7522DF4852147C84EC62C36A ] C:\Windows\SysWOW64\rsaenh.dll
13:00:26.0162 1904 C:\Windows\SysWOW64\rsaenh.dll - ok
13:00:26.0162 1904 [ B2DB6ABA2E292235749B80A9C3DFA867 ] C:\Windows\SysWOW64\imagehlp.dll
13:00:26.0162 1904 C:\Windows\SysWOW64\imagehlp.dll - ok
13:00:26.0178 1904 [ 591FE0A6CEB19BF886CEB1331F591940 ] C:\Windows\SysWOW64\ncrypt.dll
13:00:26.0178 1904 C:\Windows\SysWOW64\ncrypt.dll - ok
13:00:26.0178 1904 [ CE71B9119A258EDD0A05B37D7B0F92E3 ] C:\Windows\SysWOW64\bcrypt.dll
13:00:26.0178 1904 C:\Windows\SysWOW64\bcrypt.dll - ok
13:00:26.0193 1904 [ E8449FE262D7406BCB2AC2A45C53EC5F ] C:\Windows\SysWOW64\bcryptprimitives.dll
13:00:26.0193 1904 C:\Windows\SysWOW64\bcryptprimitives.dll - ok
13:00:26.0193 1904 [ 893C44082C97F7AED3E7C180FA1F93D8 ] C:\Windows\System32\mpnotify.exe
13:00:26.0193 1904 C:\Windows\System32\mpnotify.exe - ok
13:00:26.0209 1904 [ D15618A0FF8DBC2C5BF3726BACC75A0B ] C:\Windows\SysWOW64\userenv.dll
13:00:26.0209 1904 C:\Windows\SysWOW64\userenv.dll - ok
13:00:26.0209 1904 [ C733D233B623B7FFCE5031E4B756EE26 ] C:\Windows\SysWOW64\profapi.dll
13:00:26.0209 1904 C:\Windows\SysWOW64\profapi.dll - ok
13:00:26.0224 1904 [ 1097F3035BAF46CED8B332B3564C5108 ] C:\Windows\SysWOW64\gpapi.dll
13:00:26.0224 1904 C:\Windows\SysWOW64\gpapi.dll - ok
13:00:26.0224 1904 [ CC0B6CC8367063EC10ADB33C94ED5762 ] C:\Program Files (x86)\Common Files\Symantec Shared\ccSvc.dll
13:00:26.0224 1904 C:\Program Files (x86)\Common Files\Symantec Shared\ccSvc.dll - ok
13:00:26.0240 1904 [ 5997D769CDB108390DCFAEBF442BF816 ] C:\Windows\SysWOW64\RpcRtRemote.dll
13:00:26.0240 1904 C:\Windows\SysWOW64\RpcRtRemote.dll - ok
13:00:26.0240 1904 [ B8164A4AE966262AAFB8239038AB7D51 ] C:\Program Files (x86)\Common Files\Symantec Shared\ccSet.dll
13:00:26.0240 1904 C:\Program Files (x86)\Common Files\Symantec Shared\ccSet.dll - ok
13:00:26.0256 1904 [ 8FA28F0D60BDE4804AEAF61963D38D5D ] C:\PROGRA~2\COMMON~1\SYMANT~1\ccSetPlg.dll
13:00:26.0256 1904 C:\PROGRA~2\COMMON~1\SYMANT~1\ccSetPlg.dll - ok
13:00:26.0256 1904 [ 00C5AEFA7CF1914D49F6E94544A75E21 ] C:\PROGRA~2\COMMON~1\SYMANT~1\ccEvtPlg.dll
13:00:26.0256 1904 C:\PROGRA~2\COMMON~1\SYMANT~1\ccEvtPlg.dll - ok
13:00:26.0271 1904 [ 82974D6A2FD19445CC5171FC378668A4 ] C:\Windows\System32\BFE.DLL
13:00:26.0271 1904 C:\Windows\System32\BFE.DLL - ok
13:00:26.0271 1904 [ BE097F5BB10F9079FCEB2DC4E7E20F02 ] C:\Windows\System32\slc.dll
13:00:26.0271 1904 C:\Windows\System32\slc.dll - ok
13:00:26.0287 1904 [ 6C02A83164F5CC0A262F4199F0871CF5 ] C:\Windows\System32\drivers\bowser.sys
13:00:26.0287 1904 C:\Windows\System32\drivers\bowser.sys - ok
13:00:26.0287 1904 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] C:\Windows\System32\drivers\mpsdrv.sys
13:00:26.0287 1904 C:\Windows\System32\drivers\mpsdrv.sys - ok
13:00:26.0302 1904 [ 976DEE0E1C948BBFE9F30044FA68A273 ] C:\Program Files (x86)\Common Files\Symantec Shared\ccEvtCli.dll
13:00:26.0302 1904 C:\Program Files (x86)\Common Files\Symantec Shared\ccEvtCli.dll - ok
13:00:26.0302 1904 [ A5D9106A73DC88564C825D317CAC68AC ] C:\Windows\System32\drivers\mrxsmb.sys
13:00:26.0302 1904 C:\Windows\System32\drivers\mrxsmb.sys - ok
13:00:26.0318 1904 [ D711B3C1D5F42C0C2415687BE09FC163 ] C:\Windows\System32\drivers\mrxsmb10.sys
13:00:26.0318 1904 C:\Windows\System32\drivers\mrxsmb10.sys - ok
13:00:26.0334 1904 [ C67F8A962B2534224D5908D16D2AD3CE ] C:\Windows\System32\wfapigp.dll
13:00:26.0334 1904 C:\Windows\System32\wfapigp.dll - ok
13:00:26.0334 1904 [ F30B3183A89BBD26CF1473C2E492CCB4 ] C:\PROGRA~2\COMMON~1\SYMANT~1\SRTSP\Srtsp32.dll
13:00:26.0334 1904 C:\PROGRA~2\COMMON~1\SYMANT~1\SRTSP\Srtsp32.dll - ok
13:00:26.0334 1904 [ 29E9794708DF51DB5DC89FB2E903A0F6 ] C:\Windows\SysWOW64\shell32.dll
13:00:26.0349 1904 C:\Windows\SysWOW64\shell32.dll - ok
13:00:26.0349 1904 [ 1834B31C749B86DAC233BBBA1C03BC48 ] C:\Windows\System32\mscms.dll
13:00:26.0349 1904 C:\Windows\System32\mscms.dll - ok
13:00:26.0349 1904 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] C:\Windows\System32\drivers\mrxsmb20.sys
13:00:26.0349 1904 C:\Windows\System32\drivers\mrxsmb20.sys - ok
13:00:26.0365 1904 [ 851A1382EED3E3A7476DB004F4EE3E1A ] C:\Windows\System32\wkssvc.dll
13:00:26.0365 1904 C:\Windows\System32\wkssvc.dll - ok
13:00:26.0380 1904 [ 3AEAA8B561E63452C655DC0584922257 ] C:\Windows\System32\pcasvc.dll
13:00:26.0380 1904 C:\Windows\System32\pcasvc.dll - ok
13:00:26.0380 1904 [ 4F5414602E2544A4554D95517948B705 ] C:\Windows\System32\cryptsvc.dll
13:00:26.0380 1904 C:\Windows\System32\cryptsvc.dll - ok
13:00:26.0396 1904 [ 6CEF7856A3EFAC59470F6208F0F585CE ] C:\Windows\System32\mpr.dll
13:00:26.0396 1904 C:\Windows\System32\mpr.dll - ok
13:00:26.0396 1904 [ 6313F223E817CC09AA41811DAA7F541D ] C:\Windows\System32\snmptrap.exe
13:00:26.0396 1904 C:\Windows\System32\snmptrap.exe - ok
13:00:26.0412 1904 [ 5CB8F41094F54FCE1DF77C47CB5781D7 ] C:\Program Files (x86)\Symantec AntiVirus\Rtvscan.exe
13:00:26.0412 1904 C:\Program Files (x86)\Symantec AntiVirus\Rtvscan.exe - ok
13:00:26.0412 1904 [ 1D817D77C8EB600AB311AAC8E68B5A1A ] C:\Windows\System32\cryptnet.dll
13:00:26.0412 1904 C:\Windows\System32\cryptnet.dll - ok
13:00:26.0427 1904 [ A1EA60284DF7693B627927D75700B96C ] C:\Program Files\Common Files\Adobe\Adobe Drive CS4\AdobeDriveCS4_NP.dll
13:00:26.0427 1904 C:\Program Files\Common Files\Adobe\Adobe Drive CS4\AdobeDriveCS4_NP.dll - ok
13:00:26.0427 1904 [ 10EAB90C1AE8271B5FE5A8930987EE5C ] C:\Program Files\Windows Live\Mesh\WLRemoteServiceResource.dll
13:00:26.0427 1904 C:\Program Files\Windows Live\Mesh\WLRemoteServiceResource.dll - ok
13:00:26.0443 1904 [ 1EE99A89CC788ADA662441D1E9830529 ] C:\Windows\System32\nlasvc.dll
13:00:26.0443 1904 C:\Windows\System32\nlasvc.dll - ok
13:00:26.0443 1904 [ 1F4492FE41767CDB8B89D17655847CDD ] C:\Windows\System32\ntmarta.dll
13:00:26.0443 1904 C:\Windows\System32\ntmarta.dll - ok
13:00:26.0458 1904 [ 4A435F95B940E93A88FEC144BD409789 ] C:\Windows\System32\ncsi.dll
13:00:26.0458 1904 C:\Windows\System32\ncsi.dll - ok
13:00:26.0458 1904 [ 58F4493BF748A3A89689997B7BD00E95 ] C:\Windows\System32\winhttp.dll
13:00:26.0458 1904 C:\Windows\System32\winhttp.dll - ok
13:00:26.0474 1904 [ 908ACB1F594274965A53926B10C81E89 ] C:\Windows\System32\provsvc.dll
13:00:26.0474 1904 C:\Windows\System32\provsvc.dll - ok
13:00:26.0474 1904 [ 9FAC0F6D5F3D922DB294E30CD3F62369 ] C:\Windows\SysWOW64\urlmon.dll
13:00:26.0474 1904 C:\Windows\SysWOW64\urlmon.dll - ok
13:00:26.0474 1904 [ 603EBD34E216C5654A2D774EAC98D278 ] C:\Windows\System32\webio.dll
13:00:26.0474 1904 C:\Windows\System32\webio.dll - ok
13:00:26.0505 1904 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] C:\Windows\System32\sstpsvc.dll
13:00:26.0505 1904 C:\Windows\System32\sstpsvc.dll - ok
13:00:26.0505 1904 [ EB8A00E8E9931A7EC04F920B09D880D8 ] C:\Windows\SysWOW64\iertutil.dll
13:00:26.0505 1904 C:\Windows\SysWOW64\iertutil.dll - ok
13:00:26.0521 1904 [ 2BBF3FDB70B8965DFA0258CBAB41ECCE ] C:\Windows\System32\ssdpapi.dll
13:00:26.0521 1904 C:\Windows\System32\ssdpapi.dll - ok
13:00:26.0521 1904 [ 5553611E2F9EA6F613079177F1233068 ] C:\Windows\SysWOW64\wininet.dll
13:00:26.0521 1904 C:\Windows\SysWOW64\wininet.dll - ok
13:00:26.0521 1904 [ 52CE18E684CE9160D661BA39412C1FF1 ] C:\Windows\SysWOW64\cba.dll
13:00:26.0521 1904 C:\Windows\SysWOW64\cba.dll - ok
13:00:26.0536 1904 [ A8EDB86FC2A4D6D1285E4C70384AC35A ] C:\Windows\System32\dllhost.exe
13:00:26.0536 1904 C:\Windows\System32\dllhost.exe - ok
13:00:26.0536 1904 [ D7AC540307D60A767A1A64428663783C ] C:\Windows\SysWOW64\msgsys.dll
13:00:26.0536 1904 C:\Windows\SysWOW64\msgsys.dll - ok
13:00:26.0552 1904 [ 405FD66EF80221A65F35AC269B752235 ] C:\Windows\SysWOW64\nts.dll
13:00:26.0552 1904 C:\Windows\SysWOW64\nts.dll - ok
13:00:26.0568 1904 [ 14DFDEAF4E589ED3F1FF187A86B9408C ] C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.17514_none_a4d6a923711520a9\comctl32.dll
13:00:26.0568 1904 C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.17514_none_a4d6a923711520a9\comctl32.dll - ok
13:00:26.0568 1904 [ 813D861636F4A2BABAB8389D9E8ED7C8 ] C:\Program Files (x86)\Common Files\Symantec Shared\ccProSub.dll
13:00:26.0568 1904 C:\Program Files (x86)\Common Files\Symantec Shared\ccProSub.dll - ok
13:00:26.0583 1904 [ 8F734577D9321080566B218663E52560 ] C:\PROGRA~2\COMMON~1\SYMANT~1\ccSetEvt.dll
13:00:26.0583 1904 C:\PROGRA~2\COMMON~1\SYMANT~1\ccSetEvt.dll - ok
13:00:26.0583 1904 [ 8999B8631C7FD9F7F9EC3CAFD953BA24 ] C:\Windows\SysWOW64\mswsock.dll
13:00:26.0583 1904 C:\Windows\SysWOW64\mswsock.dll - ok
13:00:26.0583 1904 [ 1F1D608ABCC34CA2A5369C95B47605F0 ] C:\Windows\SysWOW64\atl71.dll
13:00:26.0583 1904 C:\Windows\SysWOW64\atl71.dll - ok
13:00:26.0599 1904 [ A0A2C1D812C231C9BFE119FDC68E341B ] C:\Windows\System32\IDStore.dll
13:00:26.0599 1904 C:\Windows\System32\IDStore.dll - ok
13:00:26.0599 1904 [ 2FCA0D2C59A855C54BAFA22AA329DF0F ] C:\Windows\SysWOW64\netapi32.dll
13:00:26.0599 1904 C:\Windows\SysWOW64\netapi32.dll - ok
13:00:26.0614 1904 [ 23566F9723771108D2E6CD768AC27407 ] C:\Windows\System32\AtBroker.exe
13:00:26.0614 1904 C:\Windows\System32\AtBroker.exe - ok
13:00:26.0630 1904 [ 20B3934DB73EABA2B49B7177873CB81F ] C:\Windows\SysWOW64\netutils.dll
13:00:26.0630 1904 C:\Windows\SysWOW64\netutils.dll - ok
13:00:26.0630 1904 [ BAFE84E637BF7388C96EF48D4D3FDD53 ] C:\Windows\System32\userinit.exe
13:00:26.0630 1904 C:\Windows\System32\userinit.exe - ok
13:00:26.0646 1904 [ 5CCDCD40E732D54E0F7451AC66AC1C87 ] C:\Windows\SysWOW64\srvcli.dll
13:00:26.0646 1904 C:\Windows\SysWOW64\srvcli.dll - ok
13:00:26.0646 1904 [ E5A4A1326A02F8E7B59E6C3270CE7202 ] C:\Windows\SysWOW64\wkscli.dll
13:00:26.0646 1904 C:\Windows\SysWOW64\wkscli.dll - ok
13:00:26.0661 1904 [ 332FEAB1435662FC6C672E25BEB37BE3 ] C:\Windows\explorer.exe
13:00:26.0661 1904 C:\Windows\explorer.exe - ok
13:00:26.0661 1904 [ CA8FB3101772060507416BC23EEBF13B ] C:\Windows\SysWOW64\pds.dll
13:00:26.0661 1904 C:\Windows\SysWOW64\pds.dll - ok
13:00:26.0677 1904 [ B9A8CBCFCD3EC9D2EA4740AF347BF108 ] C:\Windows\SysWOW64\mpr.dll
13:00:26.0677 1904 C:\Windows\SysWOW64\mpr.dll - ok
13:00:26.0692 1904 [ 70D9DFA9DB8ECDD997B9BACC184B46FB ] C:\Program Files (x86)\Symantec AntiVirus\NAVLU.dll
13:00:26.0692 1904 C:\Program Files (x86)\Symantec AntiVirus\NAVLU.dll - ok
13:00:26.0692 1904 [ 4B1BC262B76232056F3B247C37F26940 ] C:\Windows\SysWOW64\mfc71.dll
13:00:26.0692 1904 C:\Windows\SysWOW64\mfc71.dll - ok
13:00:26.0692 1904 [ A543AC1F7138376D778D630A35FCBC4C ] C:\Windows\SysWOW64\psapi.dll
13:00:26.0692 1904 C:\Windows\SysWOW64\psapi.dll - ok
13:00:26.0708 1904 [ A90DC9ABD65DB1A8902F361103029952 ] C:\Windows\SysWOW64\IPHLPAPI.DLL
13:00:26.0708 1904 C:\Windows\SysWOW64\IPHLPAPI.DLL - ok
13:00:26.0708 1904 [ CFF35B879D1618D42C86644C717BA947 ] C:\Windows\SysWOW64\winnsi.dll
13:00:26.0708 1904 C:\Windows\SysWOW64\winnsi.dll - ok
13:00:26.0724 1904 [ 521B748A7F9923302CA18B7E6AA2EEAE ] C:\Windows\SysWOW64\activeds.dll
13:00:26.0724 1904 C:\Windows\SysWOW64\activeds.dll - ok
13:00:26.0724 1904 [ EED05D42D91835064703E2318552ED25 ] C:\Windows\System32\ExplorerFrame.dll
13:00:26.0724 1904 C:\Windows\System32\ExplorerFrame.dll - ok
13:00:26.0739 1904 [ 51F5CC1E7DA3D9C664C2D0D61F315E06 ] C:\Windows\SysWOW64\adsldpc.dll
13:00:26.0739 1904 C:\Windows\SysWOW64\adsldpc.dll - ok
13:00:26.0739 1904 [ A8BB45F9ECAD993461E0FEF8E2A99152 ] C:\Windows\SysWOW64\Wldap32.dll
13:00:26.0739 1904 C:\Windows\SysWOW64\Wldap32.dll - ok
13:00:26.0755 1904 [ F10E5311E5093FA3C00FF88C54C32FCA ] C:\Windows\SysWOW64\atl.dll
13:00:26.0755 1904 C:\Windows\SysWOW64\atl.dll - ok
13:00:26.0755 1904 [ F93674263F6B07C77956E966953242D9 ] C:\Windows\SysWOW64\secur32.dll
13:00:26.0755 1904 C:\Windows\SysWOW64\secur32.dll - ok
13:00:26.0770 1904 [ 6A6B2EE4565A178035BE2A4FF6F2C968 ] C:\Windows\SysWOW64\wtsapi32.dll
13:00:26.0770 1904 C:\Windows\SysWOW64\wtsapi32.dll - ok
13:00:26.0770 1904 [ 90499F3163A9F815CF196A205EA3CD5D ] C:\Windows\System32\apphelp.dll
13:00:26.0770 1904 C:\Windows\System32\apphelp.dll - ok
13:00:26.0786 1904 [ BAF751E7061FF626AA60F56D1D5D1FDC ] C:\Windows\SysWOW64\MFC71ENU.DLL
13:00:26.0786 1904 C:\Windows\SysWOW64\MFC71ENU.DLL - ok
13:00:26.0786 1904 [ 06FF4ED7B145CB7BC351FD77FD8253A7 ] C:\Program Files (x86)\Common Files\Symantec Shared\ccL60.dll
13:00:26.0786 1904 C:\Program Files (x86)\Common Files\Symantec Shared\ccL60.dll - ok
13:00:26.0802 1904 [ 024352FEEC9042260BB4CFB4D79A206B ] C:\Windows\System32\EhStorShell.dll
13:00:26.0802 1904 C:\Windows\System32\EhStorShell.dll - ok
13:00:26.0802 1904 [ 037A719DAD50603202C978CD802623E4 ] C:\Windows\System32\ntshrui.dll
13:00:26.0802 1904 C:\Windows\System32\ntshrui.dll - ok
13:00:26.0817 1904 [ FF5688D309347F2720911D8796912834 ] C:\Windows\SysWOW64\clbcatq.dll
13:00:26.0817 1904 C:\Windows\SysWOW64\clbcatq.dll - ok
13:00:26.0817 1904 [ 19B07E7E8915D701225DA41CB3877306 ] C:\Windows\System32\wbem\WMIsvc.dll
13:00:26.0817 1904 C:\Windows\System32\wbem\WMIsvc.dll - ok
13:00:26.0833 1904 [ 1BF0CB861A48FEB1638228760750F3CB ] C:\Windows\System32\cscapi.dll
13:00:26.0833 1904 C:\Windows\System32\cscapi.dll - ok
13:00:26.0833 1904 [ 1D63F4366288B8A7595397E27010FD44 ] C:\Windows\System32\IconCodecService.dll
13:00:26.0833 1904 C:\Windows\System32\IconCodecService.dll - ok
13:00:26.0848 1904 [ 5EB6E9C8BE1ACC5830780E0F9A846255 ] C:\Windows\System32\msi.dll
13:00:26.0848 1904 C:\Windows\System32\msi.dll - ok
13:00:26.0848 1904 [ 025E7DBDB98866ED3CB2D4DDA70B364D ] C:\Windows\System32\runonce.exe
13:00:26.0848 1904 C:\Windows\System32\runonce.exe - ok
13:00:26.0864 1904 [ 7DB5AA22A8A8E5C2D335F44853C1F6DE ] C:\Windows\System32\wbemcomn.dll
13:00:26.0864 1904 C:\Windows\System32\wbemcomn.dll - ok
13:00:26.0880 1904 [ D44741F65A1D71F65814A12CF6E2400A ] C:\Windows\SysWOW64\runonce.exe
13:00:26.0880 1904 C:\Windows\SysWOW64\runonce.exe - ok
13:00:26.0880 1904 [ 352B3DC62A0D259A82A052238425C872 ] C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2\comctl32.dll
13:00:26.0880 1904 C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2\comctl32.dll - ok
13:00:26.0895 1904 [ 69754747274B76E7FAF287239333D7E6 ] C:\Windows\System32\msiltcfg.dll
13:00:26.0895 1904 C:\Windows\System32\msiltcfg.dll - ok
13:00:26.0895 1904 [ 0255C22D99602534F15CBB8D9B6F152F ] C:\Windows\System32\wbem\WinMgmtR.dll
13:00:26.0895 1904 C:\Windows\System32\wbem\WinMgmtR.dll - ok
13:00:26.0911 1904 [ 0C52762C606BCF6A377D5E4688191A6B ] C:\Windows\System32\wbem\WmiDcPrv.dll
13:00:26.0911 1904 C:\Windows\System32\wbem\WmiDcPrv.dll - ok
13:00:26.0911 1904 [ A3F5E8EC1316C3E2562B82694A251C9E ] C:\Windows\System32\wbem\fastprox.dll
13:00:26.0911 1904 C:\Windows\System32\wbem\fastprox.dll - ok
13:00:26.0926 1904 [ EE26D130808D16C0E417BBBED0451B34 ] C:\Windows\System32\ntdsapi.dll
13:00:26.0926 1904 C:\Windows\System32\ntdsapi.dll - ok
13:00:26.0926 1904 [ C6DCD1D11ED6827F05C00773C3E7053C ] C:\Windows\System32\sfc.dll
13:00:26.0926 1904 C:\Windows\System32\sfc.dll - ok
13:00:26.0942 1904 [ 895C9AB0A855547445C4181195230757 ] C:\Windows\System32\sfc_os.dll
13:00:26.0942 1904 C:\Windows\System32\sfc_os.dll - ok
13:00:26.0942 1904 [ 666A60F6F5E719856FF6254E0966EFF7 ] C:\Windows\System32\wbem\wbemprox.dll
13:00:26.0942 1904 C:\Windows\System32\wbem\wbemprox.dll - ok
13:00:26.0958 1904 [ 0E2F58F6E698EDCB9E58FAD0CBCD0567 ] C:\Windows\System32\vssapi.dll
13:00:26.0958 1904 C:\Windows\System32\vssapi.dll - ok
13:00:26.0958 1904 [ 42B6A94DD747DF2B5F628A2752E62A98 ] C:\Windows\System32\ctfmon.exe
13:00:26.0958 1904 C:\Windows\System32\ctfmon.exe - ok
13:00:26.0973 1904 [ FB10715E4099AF9FA389C71873245226 ] C:\Windows\System32\timedate.cpl
13:00:26.0973 1904 C:\Windows\System32\timedate.cpl - ok
13:00:26.0973 1904 [ 1F1CA9E99DD5BF918BE0BF30B5A42FDA ] C:\Windows\System32\MsCtfMonitor.dll
13:00:26.0973 1904 C:\Windows\System32\MsCtfMonitor.dll - ok
13:00:26.0973 1904 [ F09A9A1AD21FE618C4C8B0A0D830C886 ] C:\Windows\System32\msutb.dll
13:00:26.0973 1904 C:\Windows\System32\msutb.dll - ok
13:00:26.0989 1904 [ 287923557447D7E4BDD7E65B1F0F5428 ] C:\Windows\System32\vsstrace.dll
13:00:26.0989 1904 C:\Windows\System32\vsstrace.dll - ok
13:00:27.0004 1904 [ 5EB55F661DEBF156E126160BCD4D89F8 ] C:\Windows\System32\wbem\wbemcore.dll
13:00:27.0004 1904 C:\Windows\System32\wbem\wbemcore.dll - ok
13:00:27.0004 1904 [ 109B0C394D816874707E22D9C444EA13 ] C:\Program Files (x86)\Symantec AntiVirus\NAVNTUTL.DLL
13:00:27.0004 1904 C:\Program Files (x86)\Symantec AntiVirus\NAVNTUTL.DLL - ok
13:00:27.0020 1904 [ 732E668096B1A37B7BFD4B9021E69A8E ] C:\Windows\System32\oleres.dll
13:00:27.0020 1904 C:\Windows\System32\oleres.dll - ok
13:00:27.0020 1904 [ 087D8668C71634A3A3761135ABF16EEE ] C:\Windows\System32\wbem\esscli.dll
13:00:27.0020 1904 C:\Windows\System32\wbem\esscli.dll - ok
13:00:27.0036 1904 [ 40CAEEE0EAF1B8569F7C8DF6420F2CB9 ] C:\Windows\SysWOW64\sfc.dll
13:00:27.0036 1904 C:\Windows\SysWOW64\sfc.dll - ok
13:00:27.0036 1904 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] C:\Windows\System32\IPSECSVC.DLL
13:00:27.0036 1904 C:\Windows\System32\IPSECSVC.DLL - ok
13:00:27.0051 1904 [ 84799328D87B3091A3BDD251E1AD31F9 ] C:\Windows\SysWOW64\sfc_os.dll
13:00:27.0051 1904 C:\Windows\SysWOW64\sfc_os.dll - ok
13:00:27.0051 1904 [ C4F40F6CACD796A8E16671D0E9A2F319 ] C:\Windows\System32\shdocvw.dll
13:00:27.0051 1904 C:\Windows\System32\shdocvw.dll - ok
13:00:27.0067 1904 [ 718B6F51AB7F6FE2988A36868F9AD3AB ] C:\Windows\System32\wbem\wbemsvc.dll
13:00:27.0067 1904 C:\Windows\System32\wbem\wbemsvc.dll - ok
13:00:27.0067 1904 [ C5B0324DB461559ADD070E632A6919FA ] C:\Windows\SysWOW64\wbem\wbemprox.dll
13:00:27.0067 1904 C:\Windows\SysWOW64\wbem\wbemprox.dll - ok
13:00:27.0082 1904 [ 9BC93C9ACFA34DB5A41B89357B31E4ED ] C:\Windows\System32\FwRemoteSvr.dll
13:00:27.0082 1904 C:\Windows\System32\FwRemoteSvr.dll - ok
13:00:27.0082 1904 [ 0143DB80DACFB7C2B5B7009ED9063353 ] C:\Windows\System32\wbem\wmiutils.dll
13:00:27.0082 1904 C:\Windows\System32\wbem\wmiutils.dll - ok
13:00:27.0098 1904 [ 704314FD398C81D5F342CAA5DF7B7F21 ] C:\Windows\SysWOW64\wbemcomn.dll
13:00:27.0098 1904 C:\Windows\SysWOW64\wbemcomn.dll - ok
13:00:27.0098 1904 [ 0AB34456654C283DAA13B8D2BA21439B ] C:\Windows\System32\wbem\repdrvfs.dll
13:00:27.0098 1904 C:\Windows\System32\wbem\repdrvfs.dll - ok
13:00:27.0114 1904 [ 776AE0564F8B1C282E331FD95A1BDC5F ] C:\Windows\SysWOW64\wbem\wbemsvc.dll
13:00:27.0114 1904 C:\Windows\SysWOW64\wbem\wbemsvc.dll - ok
13:00:27.0114 1904 [ A0A65D306A5490D2EB8E7DE66898ECFD ] C:\Windows\System32\linkinfo.dll
13:00:27.0114 1904 C:\Windows\System32\linkinfo.dll - ok
13:00:27.0129 1904 [ CFC7D8289D2B5F3CF8D16E2DB7F93D4A ] C:\Windows\SysWOW64\wbem\fastprox.dll
13:00:27.0129 1904 C:\Windows\SysWOW64\wbem\fastprox.dll - ok
13:00:27.0129 1904 [ 98B6F9204610EC0B7D2ADFF3E6F058A8 ] C:\PROGRA~2\WIC4A1~1\MESSEN~1\msgslang.dll
13:00:27.0129 1904 C:\PROGRA~2\WIC4A1~1\MESSEN~1\msgslang.dll - ok
13:00:27.0145 1904 [ 1EAC1A8CA6874BF5B15E2EFB9A9A7B86 ] C:\Windows\System32\msftedit.dll
13:00:27.0145 1904 C:\Windows\System32\msftedit.dll - ok
13:00:27.0145 1904 [ E3E811471DE781900FF21C1FD84E941E ] C:\Windows\SysWOW64\ntdsapi.dll
13:00:27.0145 1904 C:\Windows\SysWOW64\ntdsapi.dll - ok
13:00:27.0160 1904 [ 7FCAB194F01E3403C300EB034E480B36 ] C:\Windows\System32\msls31.dll
13:00:27.0160 1904 C:\Windows\System32\msls31.dll - ok
13:00:27.0160 1904 [ 7DBA84667DC18877AEF693E3543DFAD7 ] C:\Program Files\Common Files\Microsoft Shared\ink\tiptsf.dll
13:00:27.0160 1904 C:\Program Files\Common Files\Microsoft Shared\ink\tiptsf.dll - ok
13:00:27.0176 1904 [ 3504B34CD2DE00BA3CC1A195F1B739BD ] C:\Windows\System32\gameux.dll
13:00:27.0176 1904 C:\Windows\System32\gameux.dll - ok
13:00:27.0192 1904 [ DDD0357A92FA843EFF8915ED17253D6C ] C:\Windows\System32\wbem\WmiPrvSD.dll
13:00:27.0192 1904 C:\Windows\System32\wbem\WmiPrvSD.dll - ok
13:00:27.0192 1904 [ 9689A9C7F7C2A1A423CDA2C3B43FFF65 ] C:\Windows\System32\wer.dll
13:00:27.0192 1904 C:\Windows\System32\wer.dll - ok
13:00:27.0207 1904 [ D41FEBD098234F02485A4EA98D4730A4 ] C:\Windows\System32\ncobjapi.dll
13:00:27.0207 1904 C:\Windows\System32\ncobjapi.dll - ok
13:00:27.0207 1904 [ 4C2C4640BF23AAFCF90519E0F34436CE ] C:\Windows\System32\DeviceCenter.dll
13:00:27.0207 1904 C:\Windows\System32\DeviceCenter.dll - ok
13:00:27.0223 1904 [ 6F40D6FB05E0C1E5402812B426971AF0 ] C:\Windows\System32\wbem\wbemess.dll
13:00:27.0223 1904 C:\Windows\System32\wbem\wbemess.dll - ok
13:00:27.0223 1904 [ 24F4B480F335A6C724AF352253C5D98B ] C:\Windows\System32\thumbcache.dll
13:00:27.0223 1904 C:\Windows\System32\thumbcache.dll - ok
13:00:27.0238 1904 [ 405F4D32D2185F1F1BD753D8EEAFFB3A ] C:\Windows\System32\networkexplorer.dll
13:00:27.0238 1904 C:\Windows\System32\networkexplorer.dll - ok
13:00:27.0238 1904 [ 539C49CEBB3C50957AC8A09D95ECD880 ] C:\Windows\SysWOW64\shfolder.dll
13:00:27.0238 1904 C:\Windows\SysWOW64\shfolder.dll - ok
13:00:27.0254 1904 [ EF2AE43BCD46ABB13FC3E5B2B1935C73 ] C:\Windows\System32\winmm.dll
13:00:27.0254 1904 C:\Windows\System32\winmm.dll - ok
13:00:27.0254 1904 [ 1D59081F7C6ADD93A556A30373BF40F7 ] C:\Program Files (x86)\Common Files\Symantec Shared\DefUtDCD.dll
13:00:27.0254 1904 C:\Program Files (x86)\Common Files\Symantec Shared\DefUtDCD.dll - ok
13:00:27.0270 1904 [ 1473768973453DE50DC738C2955FC4DD ] C:\Windows\System32\wdmaud.drv
13:00:27.0270 1904 C:\Windows\System32\wdmaud.drv - ok
13:00:27.0270 1904 [ 8560FFFC8EB3A806DCD4F82252CFC8C6 ] C:\Windows\System32\ksuser.dll
13:00:27.0270 1904 C:\Windows\System32\ksuser.dll - ok
13:00:27.0285 1904 [ 78A1E65207484B7F8D3217507745F47C ] C:\Windows\System32\avrt.dll
13:00:27.0285 1904 C:\Windows\System32\avrt.dll - ok
13:00:27.0285 1904 [ 484ACF6AF85A29AC52F3CF054DFDE9D3 ] C:\Windows\Installer\{90120000-0030-0000-0000-0000000FF1CE}\wordicon.exe
13:00:27.0285 1904 C:\Windows\Installer\{90120000-0030-0000-0000-0000000FF1CE}\wordicon.exe - ok
13:00:27.0301 1904 [ 9A85ABCE0FDD1AF8E79E731EB0B679F3 ] C:\Windows\SysWOW64\dhcpcsvc.dll
13:00:27.0301 1904 C:\Windows\SysWOW64\dhcpcsvc.dll - ok
13:00:27.0301 1904 [ 465BEA35F7ED4A4A57686DEA7EA10F47 ] C:\Windows\SysWOW64\cscapi.dll
13:00:27.0301 1904 C:\Windows\SysWOW64\cscapi.dll - ok
13:00:27.0316 1904 [ 15FA7A63659E7DFAEE4DA93290C2CBC7 ] C:\Program Files (x86)\Common Files\Symantec Shared\SSC\ScsComms.dll
13:00:27.0316 1904 C:\Program Files (x86)\Common Files\Symantec Shared\SSC\ScsComms.dll - ok
13:00:27.0316 1904 [ F2C7BB8ACC97F92E987A2D4087D021B1 ] C:\Windows\System32\notepad.exe
13:00:27.0316 1904 C:\Windows\System32\notepad.exe - ok
13:00:27.0332 1904 [ FE46A75556E66B8CC472FA75EFF0C347 ] C:\PROGRA~1\MICROS~2\Office12\MSOHEVI.DLL
13:00:27.0332 1904 C:\PROGRA~1\MICROS~2\Office12\MSOHEVI.DLL - ok
13:00:27.0332 1904 [ 06A754FE28A06F780A099703CFCAAA22 ] C:\Windows\winsxs\amd64_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.4940_none_88df89932faf0bf6\msvcr80.dll
13:00:27.0332 1904 C:\Windows\winsxs\amd64_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.4940_none_88df89932faf0bf6\msvcr80.dll - ok
13:00:27.0348 1904 [ BBAAE027C176402E221CADBFCAEB5407 ] C:\Windows\System32\zipfldr.dll
13:00:27.0348 1904 C:\Windows\System32\zipfldr.dll - ok
13:00:27.0348 1904 [ 21EF4BB2A6FF4116FD83FAEE52D4A416 ] C:\Windows\Installer\{90120000-0030-0000-0000-0000000FF1CE}\xlicons.exe
13:00:27.0348 1904 C:\Windows\Installer\{90120000-0030-0000-0000-0000000FF1CE}\xlicons.exe - ok
13:00:27.0363 1904 [ D291620D4C51C5F5FFA62CCDC52C5C13 ] C:\Windows\System32\msinfo32.exe
13:00:27.0363 1904 C:\Windows\System32\msinfo32.exe - ok
13:00:27.0363 1904 [ 75EB974222F293159427F9A77A5F3C6A ] C:\PROGRA~1\COMMON~1\MICROS~1\OFFICE12\msoshext.dll
13:00:27.0363 1904 C:\PROGRA~1\COMMON~1\MICROS~1\OFFICE12\msoshext.dll - ok
13:00:27.0379 1904 [ 3DB5A1EACE7F3049ECC49FA64461E254 ] C:\Windows\System32\rstrui.exe
13:00:27.0379 1904 C:\Windows\System32\rstrui.exe - ok
13:00:27.0379 1904 [ 418E881201583A3039D81F43E39E6C78 ] C:\Windows\SysWOW64\winsta.dll
13:00:27.0379 1904 C:\Windows\SysWOW64\winsta.dll - ok
13:00:27.0394 1904 [ 93041736961E33317C5005684D9F2105 ] C:\Program Files\Common Files\Microsoft Shared\OFFICE11\msxml5.dll
13:00:27.0394 1904 C:\Program Files\Common Files\Microsoft Shared\OFFICE11\msxml5.dll - ok
13:00:27.0394 1904 [ F92F18B146337E8B8A4A5D3851EDAF34 ] C:\Program Files (x86)\Symantec AntiVirus\I2ldvp3.dll
13:00:27.0394 1904 C:\Program Files (x86)\Symantec AntiVirus\I2ldvp3.dll - ok
13:00:27.0410 1904 [ 487DDAF10BF22945492C5C4A7F4AD6BF ] C:\Program Files (x86)\Common Files\Symantec Shared\ccDec.dll
13:00:27.0410 1904 C:\Program Files (x86)\Common Files\Symantec Shared\ccDec.dll - ok
13:00:27.0410 1904 [ 4B7A7667B4E71D82F0CAC702CCEFDA63 ] C:\Windows\Installer\{CF8FFD12-602B-422D-AF1D-511B411E7632}\iTunesIco.exe
13:00:27.0410 1904 C:\Windows\Installer\{CF8FFD12-602B-422D-AF1D-511B411E7632}\iTunesIco.exe - ok
13:00:27.0426 1904 [ 51D186B582C905E49D84B70322F70B21 ] C:\Windows\System32\miguiresource.dll
13:00:27.0426 1904 C:\Windows\System32\miguiresource.dll - ok
13:00:27.0441 1904 [ 700D2D7A780364F9EA961E1C7E2EB72E ] C:\Program Files (x86)\Common Files\Symantec Shared\Decomposers\Dec2.dll
13:00:27.0441 1904 C:\Program Files (x86)\Common Files\Symantec Shared\Decomposers\Dec2.dll - ok
13:00:27.0441 1904 [ 73D1D93BB813839C3535483EF50DBECA ] C:\Program Files (x86)\Common Files\Symantec Shared\Decomposers\DecSDK.dll
13:00:27.0441 1904 C:\Program Files (x86)\Common Files\Symantec Shared\Decomposers\DecSDK.dll - ok
13:00:27.0457 1904 [ 6805108E44B0F2F1A03053BD54D6C7F5 ] C:\Program Files (x86)\Common Files\Symantec Shared\Decomposers\Dec2AMG.dll
13:00:27.0457 1904 C:\Program Files (x86)\Common Files\Symantec Shared\Decomposers\Dec2AMG.dll - ok
13:00:27.0457 1904 [ EE7476A2BB96F533A51E39B12703C1F0 ] C:\Program Files (x86)\Common Files\Symantec Shared\Decomposers\Dec2ARJ.dll
13:00:27.0457 1904 C:\Program Files (x86)\Common Files\Symantec Shared\Decomposers\Dec2ARJ.dll - ok
13:00:27.0472 1904 [ 6DAF1E7A742ACE53A5D692D161779BDA ] C:\Program Files (x86)\Common Files\Symantec Shared\Decomposers\Dec2CAB.dll
13:00:27.0472 1904 C:\Program Files (x86)\Common Files\Symantec Shared\Decomposers\Dec2CAB.dll - ok
13:00:27.0472 1904 [ 00335ABCAEAC9555719EFDF0CBB89AB5 ] C:\Program Files (x86)\Common Files\Symantec Shared\Decomposers\Dec2GZIP.dll
13:00:27.0472 1904 C:\Program Files (x86)\Common Files\Symantec Shared\Decomposers\Dec2GZIP.dll - ok
13:00:27.0472 1904 [ CED7DC454023A2A7B245498FAEACAE58 ] C:\Program Files (x86)\Common Files\Symantec Shared\Decomposers\Dec2ID.dll
13:00:27.0488 1904 C:\Program Files (x86)\Common Files\Symantec Shared\Decomposers\Dec2ID.dll - ok
13:00:27.0488 1904 [ DE4C4FE9F14BAF60CA2469C69C08D87A ] C:\Program Files (x86)\Common Files\Symantec Shared\Decomposers\Dec2LHA.dll
13:00:27.0488 1904 C:\Program Files (x86)\Common Files\Symantec Shared\Decomposers\Dec2LHA.dll - ok
13:00:27.0504 1904 [ A2CE40FE5FD18935734B20DD494861A1 ] C:\Program Files (x86)\Common Files\Symantec Shared\Decomposers\Dec2LZ.dll
13:00:27.0504 1904 C:\Program Files (x86)\Common Files\Symantec Shared\Decomposers\Dec2LZ.dll - ok
13:00:27.0504 1904 [ A518E1B01FB8A9F80816002B62A3AF6E ] C:\Program Files (x86)\Common Files\Symantec Shared\Decomposers\Dec2RAR.dll
13:00:27.0504 1904 C:\Program Files (x86)\Common Files\Symantec Shared\Decomposers\Dec2RAR.dll - ok
13:00:27.0519 1904 [ E83EC8711BCFB0E398A1B2834BACD646 ] C:\Program Files (x86)\Common Files\Symantec Shared\Decomposers\Dec2RTF.dll
13:00:27.0519 1904 C:\Program Files (x86)\Common Files\Symantec Shared\Decomposers\Dec2RTF.dll - ok
13:00:27.0535 1904 [ B5DABA1662F04241D046868F9BD819B2 ] C:\Program Files (x86)\Common Files\Symantec Shared\Decomposers\Dec2SS.dll
13:00:27.0535 1904 C:\Program Files (x86)\Common Files\Symantec Shared\Decomposers\Dec2SS.dll - ok
13:00:27.0535 1904 [ 95B9110DD628B24FE57B84F1FC4CE2C6 ] C:\Program Files (x86)\Common Files\Symantec Shared\Decomposers\Dec2TAR.dll
13:00:27.0535 1904 C:\Program Files (x86)\Common Files\Symantec Shared\Decomposers\Dec2TAR.dll - ok
13:00:27.0550 1904 [ B7202442245F48BC07920F52028AC85D ] C:\Program Files (x86)\Common Files\Symantec Shared\Decomposers\Dec2TNEF.dll
13:00:27.0550 1904 C:\Program Files (x86)\Common Files\Symantec Shared\Decomposers\Dec2TNEF.dll - ok
13:00:27.0550 1904 [ 9FF912DB49BA2059B08799AAD0846F6E ] C:\Program Files (x86)\Common Files\Symantec Shared\Decomposers\Dec2Zip.dll
13:00:27.0550 1904 C:\Program Files (x86)\Common Files\Symantec Shared\Decomposers\Dec2Zip.dll - ok
13:00:27.0566 1904 [ CCB743EB8CFB306B155861DD54E55DB5 ] C:\Program Files (x86)\Common Files\Symantec Shared\Decomposers\Dec2Text.dll
13:00:27.0566 1904 C:\Program Files (x86)\Common Files\Symantec Shared\Decomposers\Dec2Text.dll - ok
13:00:27.0566 1904 [ E847917D374863A6F7934CC1AB9591C6 ] C:\Program Files (x86)\Common Files\Symantec Shared\ccScan.dll
13:00:27.0566 1904 C:\Program Files (x86)\Common Files\Symantec Shared\ccScan.dll - ok
13:00:27.0582 1904 [ 25D7A040A493AB91052F9170D4DB80D4 ] C:\Program Files (x86)\Common Files\Symantec Shared\ecmldr32.DLL
13:00:27.0582 1904 C:\Program Files (x86)\Common Files\Symantec Shared\ecmldr32.DLL - ok
13:00:27.0582 1904 [ C3761661C17C2248A9379A8FB89E3DE1 ] C:\Windows\System32\stobject.dll
13:00:27.0582 1904 C:\Windows\System32\stobject.dll - ok
13:00:27.0597 1904 [ F832EEEA97CDDA1AF577E721F652A0D1 ] C:\Windows\System32\batmeter.dll
13:00:27.0597 1904 C:\Windows\System32\batmeter.dll - ok
13:00:27.0597 1904 [ 2D2A6EC8EAD30EC3ACE2FD6FB1B3E122 ] C:\Windows\System32\prnfldr.dll
13:00:27.0597 1904 C:\Windows\System32\prnfldr.dll - ok
13:00:27.0613 1904 [ 0015ACFBBDD164A8A730009908868CA7 ] C:\Windows\System32\winspool.drv
13:00:27.0613 1904 C:\Windows\System32\winspool.drv - ok
13:00:27.0613 1904 [ 4166F82BE4D24938977DD1746BE9B8A0 ] C:\Windows\System32\es.dll
13:00:27.0613 1904 C:\Windows\System32\es.dll - ok
13:00:27.0628 1904 [ 42A9CB6906D9A8BEDC83B57163E62924 ] C:\Windows\System32\DXP.dll
13:00:27.0628 1904 C:\Windows\System32\DXP.dll - ok
13:00:27.0628 1904 [ 2BC7C9FD0A9F2C9AFC373F3AD1EE3891 ] C:\Windows\System32\Syncreg.dll
13:00:27.0628 1904 C:\Windows\System32\Syncreg.dll - ok
13:00:27.0644 1904 [ DB70FE36AC8F594E9E69479C076BADB8 ] C:\Windows\System32\HelpPaneProxy.dll
13:00:27.0644 1904 C:\Windows\System32\HelpPaneProxy.dll - ok
13:00:27.0644 1904 [ CD47548A52B02D254BF6D7F7A5F2BFD3 ] C:\Windows\HelpPane.exe
13:00:27.0644 1904 C:\Windows\HelpPane.exe - ok
13:00:27.0660 1904 [ 86F1F949DD51FB5A044F1BD34CBE4AA8 ] C:\Windows\System32\apds.dll
13:00:27.0660 1904 C:\Windows\System32\apds.dll - ok
13:00:27.0660 1904 [ E7368F0A8D19445EAF5C5D0DBB8B8DAB ] C:\Windows\System32\AltTab.dll
13:00:27.0660 1904 C:\Windows\System32\AltTab.dll - ok
13:00:27.0675 1904 [ 4ECE12D296ED94CA2C7DD6C383A5AB66 ] C:\Windows\System32\ieframe.dll
13:00:27.0675 1904 C:\Windows\System32\ieframe.dll - ok
13:00:27.0675 1904 [ 10F815BE90A66AAFC6C713D1BD626064 ] C:\Windows\System32\pnidui.dll
13:00:27.0675 1904 C:\Windows\System32\pnidui.dll - ok
13:00:27.0691 1904 [ B9F0A4020AA98B7A20287BF7FE99A1FD ] C:\Windows\System32\QUTIL.DLL
13:00:27.0691 1904 C:\Windows\System32\QUTIL.DLL - ok
13:00:27.0691 1904 [ F7A256EC899C72B4ECDD2C02CB592EFD ] C:\Windows\System32\bthprops.cpl
13:00:27.0691 1904 C:\Windows\System32\bthprops.cpl - ok
13:00:27.0706 1904 [ CF636C92B762B26F0B39B38E92380A09 ] C:\Windows\System32\oleacc.dll
13:00:27.0706 1904 C:\Windows\System32\oleacc.dll - ok
13:00:27.0722 1904 [ 92DBF0A4C9239169010FC6E07859C82E ] C:\Windows\System32\ActionCenter.dll
13:00:27.0722 1904 C:\Windows\System32\ActionCenter.dll - ok
13:00:27.0722 1904 [ 847D3AE376C0817161A14A82C8922A9E ] C:\Windows\System32\netman.dll
13:00:27.0722 1904 C:\Windows\System32\netman.dll - ok
13:00:27.0738 1904 [ 0B2D65FDDE31069299AA6330F359FF9C ] C:\Windows\System32\msxml3.dll
13:00:27.0738 1904 C:\Windows\System32\msxml3.dll - ok
13:00:27.0738 1904 [ A42F2C1EB3B66C54FB3C7B79D30C1A6D ] C:\Windows\System32\netshell.dll
13:00:27.0738 1904 C:\Windows\System32\netshell.dll - ok
13:00:27.0753 1904 [ 2DF36F15B2BC1571A6A542A3C2107920 ] C:\Windows\System32\nlaapi.dll
13:00:27.0753 1904 C:\Windows\System32\nlaapi.dll - ok
13:00:27.0769 1904 [ 3819AD4329303EAC88480CA16A650735 ] C:\Windows\System32\UIAnimation.dll
13:00:27.0769 1904 C:\Windows\System32\UIAnimation.dll - ok
13:00:27.0784 1904 [ F7073C962C4FB7C415565DDE109DE49F ] C:\Windows\System32\npmproxy.dll
13:00:27.0784 1904 C:\Windows\System32\npmproxy.dll - ok
13:00:27.0784 1904 [ D2155709E336C3BC15729EB87FEC6064 ] C:\Windows\System32\rasdlg.dll
13:00:27.0784 1904 C:\Windows\System32\rasdlg.dll - ok
13:00:27.0800 1904 [ F244DA6DD2C365ABAFD076222C22C2BE ] C:\Windows\System32\mshtml.dll
13:00:27.0800 1904 C:\Windows\System32\mshtml.dll - ok
13:00:27.0816 1904 [ 2DF29664ED261F0FC448E58F338F0671 ] C:\Windows\System32\mprapi.dll
13:00:27.0816 1904 C:\Windows\System32\mprapi.dll - ok
13:00:27.0831 1904 [ 019CD868461B646E09BDF04474C19341 ] C:\Windows\System32\rasapi32.dll
13:00:27.0831 1904 C:\Windows\System32\rasapi32.dll - ok
13:00:27.0847 1904 [ B28DEEC597C8DEB70C744C7CF9210E3E ] C:\Windows\System32\rasman.dll
13:00:27.0847 1904 C:\Windows\System32\rasman.dll - ok
13:00:27.0862 1904 [ B53C4B69B695EDA1B7E41D35CA4244E2 ] C:\Windows\System32\rtutils.dll
13:00:27.0862 1904 C:\Windows\System32\rtutils.dll - ok
13:00:27.0862 1904 [ F9AFD12BB4B1CFA5FCC0A5B37C604FD2 ] C:\Windows\System32\dot3api.dll
13:00:27.0862 1904 C:\Windows\System32\dot3api.dll - ok
13:00:27.0878 1904 [ E4FCA0F99A41E460C84016DEFD31E6EF ] C:\Windows\System32\wlanhlp.dll
13:00:27.0878 1904 C:\Windows\System32\wlanhlp.dll - ok
13:00:27.0894 1904 [ 357BE883C5236BFC7341CB9E82308908 ] C:\Windows\System32\wlanapi.dll
13:00:27.0894 1904 C:\Windows\System32\wlanapi.dll - ok
13:00:27.0909 1904 [ 3B367397320C26DBA890B260F80D1B1B ] C:\Windows\System32\hnetcfg.dll
13:00:27.0909 1904 C:\Windows\System32\hnetcfg.dll - ok
13:00:27.0925 1904 [ 5DA219F57A9076FB6FBD3C9C3713A672 ] C:\Windows\System32\WWanAPI.dll
13:00:27.0925 1904 C:\Windows\System32\WWanAPI.dll - ok
13:00:27.0940 1904 [ 58A0CDABEA255616827B1C22C9994466 ] C:\Windows\System32\NapiNSP.dll
13:00:27.0940 1904 C:\Windows\System32\NapiNSP.dll - ok
13:00:27.0956 1904 [ 62C7AACC746C9723468A8F2169ED3E85 ] C:\Windows\System32\wwapi.dll
13:00:27.0956 1904 C:\Windows\System32\wwapi.dll - ok
13:00:27.0972 1904 [ 613C8CE10A5FDE582BA5FA64C4D56AAA ] C:\Windows\System32\pnrpnsp.dll
13:00:27.0972 1904 C:\Windows\System32\pnrpnsp.dll - ok
13:00:27.0987 1904 [ 28AD5E311996A34025CFB07E131058DD ] C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL
13:00:27.0987 1904 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL - ok
13:00:27.0987 1904 [ C746F3BF98E92FB137B5BD2B8B5925BD ] C:\Windows\System32\FXSST.dll
13:00:27.0987 1904 C:\Windows\System32\FXSST.dll - ok
13:00:28.0018 1904 [ 2E2072EB48238FCA8FBB7A9F5FABAC45 ] C:\Windows\System32\winrnr.dll
13:00:28.0018 1904 C:\Windows\System32\winrnr.dll - ok
13:00:28.0018 1904 [ F9D908DE6B166DAC9B89BF62FA291CE8 ] C:\Program Files\Bonjour\mdnsNSP.dll
13:00:28.0018 1904 C:\Program Files\Bonjour\mdnsNSP.dll - ok
13:00:28.0034 1904 [ 650CAEA856943E29F25A25D31E004B18 ] C:\Windows\System32\FXSAPI.dll
13:00:28.0034 1904 C:\Windows\System32\FXSAPI.dll - ok
13:00:28.0050 1904 [ 88351B29B622B30962D2FEB6CA8D860B ] C:\Windows\System32\rasadhlp.dll
13:00:28.0050 1904 C:\Windows\System32\rasadhlp.dll - ok
13:00:28.0050 1904 [ C8E8B8239FCF17BEA10E751BE5854631 ] C:\Windows\System32\FXSRESM.dll
13:00:28.0050 1904 C:\Windows\System32\FXSRESM.dll - ok
13:00:28.0065 1904 [ 6B851E682A36453E1B1EE297FFB6E2AB ] C:\Windows\System32\QAGENT.DLL
13:00:28.0065 1904 C:\Windows\System32\QAGENT.DLL - ok
13:00:28.0081 1904 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] C:\Windows\System32\FXSSVC.exe
13:00:28.0081 1904 C:\Windows\System32\FXSSVC.exe - ok
13:00:28.0096 1904 [ 6699A112A3BDC9B52338512894EBA9D6 ] C:\Program Files\Windows Media Player\wmpnscfg.exe
13:00:28.0096 1904 C:\Program Files\Windows Media Player\wmpnscfg.exe - ok
13:00:28.0112 1904 [ C836175870E00ACC546066632E15BD10 ] C:\Windows\ehome\ehSSO.dll
13:00:28.0112 1904 C:\Windows\ehome\ehSSO.dll - ok
13:00:28.0112 1904 [ C7494C67A6BF6FE914808E42F8265FEF ] C:\Program Files\Windows Media Player\wmpnssci.dll
13:00:28.0112 1904 C:\Program Files\Windows Media Player\wmpnssci.dll - ok
13:00:28.0128 1904 [ C8FDF0FA9E97E2FAAF3F814716AAA881 ] C:\Windows\System32\WPDShServiceObj.dll
13:00:28.0128 1904 C:\Windows\System32\WPDShServiceObj.dll - ok
13:00:28.0143 1904 [ 4F3CD1C59EA71401E155C432BCECE180 ] C:\Windows\System32\PortableDeviceTypes.dll
13:00:28.0143 1904 C:\Windows\System32\PortableDeviceTypes.dll - ok
13:00:28.0143 1904 [ E64D9EC8018C55873B40FDEE9DBEF5B3 ] C:\Windows\System32\PortableDeviceApi.dll
13:00:28.0143 1904 C:\Windows\System32\PortableDeviceApi.dll - ok
13:00:28.0159 1904 [ 8569E35D00F45972E506502EEE622BA4 ] C:\Windows\System32\srchadmin.dll
13:00:28.0159 1904 C:\Windows\System32\srchadmin.dll - ok
13:00:28.0174 1904 [ D7CEAEDD5F75D2C8A2E80887D7C114CE ] C:\Windows\System32\webcheck.dll
13:00:28.0174 1904 C:\Windows\System32\webcheck.dll - ok
13:00:28.0190 1904 [ 8494E126F0B10180F3293AF861CE1F7A ] C:\Windows\System32\mlang.dll
13:00:28.0190 1904 C:\Windows\System32\mlang.dll - ok
13:00:28.0190 1904 [ 101797BA603D227946B4B5109867EB19 ] C:\Windows\System32\SyncCenter.dll
13:00:28.0190 1904 C:\Windows\System32\SyncCenter.dll - ok
13:00:28.0206 1904 [ 8130391F82D52D36C0441F714136957F ] C:\Windows\System32\imapi2.dll
13:00:28.0206 1904 C:\Windows\System32\imapi2.dll - ok
13:00:28.0221 1904 [ BAAFAF9CEAEC0B73C2A3550A01F6CECB ] C:\Windows\System32\taskschd.dll
13:00:28.0221 1904 C:\Windows\System32\taskschd.dll - ok
13:00:28.0237 1904 [ 1F04E809409A9B5FFD510B5FD89A1155 ] C:\Windows\System32\d2d1.dll
13:00:28.0237 1904 C:\Windows\System32\d2d1.dll - ok
13:00:28.0237 1904 [ 7426279D625196393EABBEFE1C60A0C2 ] C:\Windows\System32\DWrite.dll
13:00:28.0237 1904 C:\Windows\System32\DWrite.dll - ok
13:00:28.0252 1904 [ 862596399AAFD2A21DB2AF9270CD4F70 ] C:\Windows\System32\mstask.dll
13:00:28.0252 1904 C:\Windows\System32\mstask.dll - ok
13:00:28.0252 1904 [ 6A5C1A8AC0B572679361026D0E900420 ] C:\Windows\System32\hgcpl.dll
13:00:28.0252 1904 C:\Windows\System32\hgcpl.dll - ok
13:00:28.0268 1904 [ F404E59DB6A0F122AB26BF4F3E2FD0FA ] C:\Windows\System32\dxgi.dll
13:00:28.0268 1904 C:\Windows\System32\dxgi.dll - ok
13:00:28.0268 1904 [ E6F0F82788E8BD0F7A616350EFA0761C ] C:\Windows\System32\actxprxy.dll
13:00:28.0268 1904 C:\Windows\System32\actxprxy.dll - ok
13:00:28.0284 1904 [ E1374D37477322D4956604711008C69D ] C:\Windows\System32\d3d10_1.dll
13:00:28.0284 1904 C:\Windows\System32\d3d10_1.dll - ok
13:00:28.0299 1904 [ 426BA4E737A7988FD1202AF2F2B2F4A6 ] C:\Windows\System32\d3d10_1core.dll
13:00:28.0299 1904 C:\Windows\System32\d3d10_1core.dll - ok
13:00:28.0315 1904 [ 64ABE1250EC1A1CFD1442E7C8800216E ] C:\Windows\System32\d3d10warp.dll
13:00:28.0315 1904 C:\Windows\System32\d3d10warp.dll - ok
13:00:28.0315 1904 [ B3CE0951E3C1EA3C733573C472EE85F9 ] C:\Windows\System32\msimtf.dll
13:00:28.0315 1904 C:\Windows\System32\msimtf.dll - ok
13:00:28.0330 1904 [ BD66ECA9479C688412DDDA9F2CCD2C69 ] C:\Windows\System32\d3d10.dll
13:00:28.0330 1904 C:\Windows\System32\d3d10.dll - ok
13:00:28.0346 1904 [ B628DA8B548E6D11A35B86799714CB22 ] C:\Windows\System32\d3d10core.dll
13:00:28.0346 1904 C:\Windows\System32\d3d10core.dll - ok
13:00:28.0362 1904 [ A8E3F32EA15DA60E62B892DFE9DEAF8C ] C:\Program Files (x86)\Symantec AntiVirus\notesext.dll
13:00:28.0362 1904 C:\Program Files (x86)\Symantec AntiVirus\notesext.dll - ok
13:00:28.0377 1904 [ 8084D9CAF2D255D6454DFE5757BAE157 ] C:\Program Files (x86)\Symantec AntiVirus\vpmsece4.dll
13:00:28.0377 1904 C:\Program Files (x86)\Symantec AntiVirus\vpmsece4.dll - ok
13:00:28.0393 1904 [ 9C376F42BDE37F18D0A39AF7415D9BE6 ] C:\Program Files (x86)\Mozilla Firefox\firefox.exe
13:00:28.0393 1904 C:\Program Files (x86)\Mozilla Firefox\firefox.exe - ok
13:00:28.0393 1904 [ 67EC459E42D3081DD8FD34356F7CAFC1 ] C:\Program Files (x86)\Mozilla Firefox\msvcr100.dll
13:00:28.0393 1904 C:\Program Files (x86)\Mozilla Firefox\msvcr100.dll - ok
13:00:28.0408 1904 [ 730D87DF83F82967DA6EA893263E0D16 ] C:\Program Files (x86)\Mozilla Firefox\mozglue.dll
13:00:28.0408 1904 C:\Program Files (x86)\Mozilla Firefox\mozglue.dll - ok
13:00:28.0424 1904 [ 5C94FF7FABE1A23C9EF651D89C1FBDED ] C:\Program Files (x86)\Mozilla Firefox\nspr4.dll
13:00:28.0424 1904 C:\Program Files (x86)\Mozilla Firefox\nspr4.dll - ok
13:00:28.0440 1904 [ 21FA8728B0E6D2D00063987BBC7C33E9 ] C:\Program Files (x86)\Mozilla Firefox\plc4.dll
13:00:28.0440 1904 C:\Program Files (x86)\Mozilla Firefox\plc4.dll - ok
13:00:28.0455 1904 [ D5AEFAD57C08349A4393D987DF7C715D ] C:\Windows\SysWOW64\winmm.dll
13:00:28.0455 1904 C:\Windows\SysWOW64\winmm.dll - ok
13:00:28.0471 1904 [ 32510F1FA8D3327BE3B29DBC4B01B3CB ] C:\Program Files (x86)\Mozilla Firefox\mozalloc.dll
13:00:28.0471 1904 C:\Program Files (x86)\Mozilla Firefox\mozalloc.dll - ok
13:00:28.0486 1904 [ 4EE96E9788C2C74353315DB612253D03 ] C:\Program Files (x86)\Mozilla Firefox\plds4.dll
13:00:28.0486 1904 C:\Program Files (x86)\Mozilla Firefox\plds4.dll - ok
13:00:28.0502 1904 [ E013596DCCEC82B05B166523B91265AD ] C:\Program Files (x86)\Mozilla Firefox\mozsqlite3.dll
13:00:28.0502 1904 C:\Program Files (x86)\Mozilla Firefox\mozsqlite3.dll - ok
13:00:28.0518 1904 [ 8B0FAFC68CB2674CFAF7B9E70464FDBB ] C:\Program Files (x86)\Mozilla Firefox\nssutil3.dll
13:00:28.0518 1904 C:\Program Files (x86)\Mozilla Firefox\nssutil3.dll - ok
13:00:28.0533 1904 [ 84EAABD444291C9E6A845AF2A1CE1523 ] C:\Program Files (x86)\Mozilla Firefox\softokn3.dll
13:00:28.0533 1904 C:\Program Files (x86)\Mozilla Firefox\softokn3.dll - ok
13:00:28.0533 1904 [ 49AD92A2247654C4A2A95081ACE07B93 ] C:\Program Files (x86)\Mozilla Firefox\nss3.dll
13:00:28.0533 1904 C:\Program Files (x86)\Mozilla Firefox\nss3.dll - ok
13:00:28.0533 1904 [ A586CAB4FB1DE3872C2D6E153E961D3B ] C:\Program Files (x86)\Mozilla Firefox\ssl3.dll
13:00:28.0533 1904 C:\Program Files (x86)\Mozilla Firefox\ssl3.dll - ok
13:00:28.0549 1904 [ D5E323543C0A1A9FEBC324519EFE2EC8 ] C:\Program Files (x86)\Mozilla Firefox\smime3.dll
13:00:28.0549 1904 C:\Program Files (x86)\Mozilla Firefox\smime3.dll - ok
13:00:28.0564 1904 [ 4B70B15F477972E0189BE25F4573DB80 ] C:\Program Files (x86)\Mozilla Firefox\mozjs.dll
13:00:28.0564 1904 C:\Program Files (x86)\Mozilla Firefox\mozjs.dll - ok
13:00:28.0564 1904 [ 03E9314004F504A14A61C3D364B62F66 ] C:\Program Files (x86)\Mozilla Firefox\msvcp100.dll
13:00:28.0564 1904 C:\Program Files (x86)\Mozilla Firefox\msvcp100.dll - ok
13:00:28.0580 1904 [ F18042C3223D6AAAF30346506463516E ] C:\Program Files (x86)\Mozilla Firefox\xul.dll
13:00:28.0580 1904 C:\Program Files (x86)\Mozilla Firefox\xul.dll - ok
13:00:28.0580 1904 [ 4AB72BB5D7FE5163D3AF85050351EDCB ] C:\Program Files (x86)\Mozilla Firefox\gkmedias.dll
13:00:28.0580 1904 C:\Program Files (x86)\Mozilla Firefox\gkmedias.dll - ok
13:00:28.0596 1904 [ 18AB2E5A40064ED5F7791AC5946A90F3 ] C:\Windows\SysWOW64\msimg32.dll
13:00:28.0596 1904 C:\Windows\SysWOW64\msimg32.dll - ok
13:00:28.0596 1904 [ 43964FA89CCF97BA6BE34D69455AC65F ] C:\Windows\SysWOW64\uxtheme.dll
13:00:28.0596 1904 C:\Windows\SysWOW64\uxtheme.dll - ok
13:00:28.0611 1904 [ CD4B4E5652377E441688377D300E62A8 ] C:\Program Files (x86)\Mozilla Firefox\xpcom.dll
13:00:28.0611 1904 C:\Program Files (x86)\Mozilla Firefox\xpcom.dll - ok
13:00:28.0627 1904 [ 39C5F32747B3414D1BB216FDB1DEFC58 ] C:\Windows\SysWOW64\dwmapi.dll
13:00:28.0627 1904 C:\Windows\SysWOW64\dwmapi.dll - ok
13:00:28.0642 1904 [ 12C45E3CB6D65F73209549E2D02ECA7A ] C:\Windows\SysWOW64\propsys.dll
13:00:28.0642 1904 C:\Windows\SysWOW64\propsys.dll - ok
13:00:28.0658 1904 [ 3FD15B4611D9BDA3F8013548C0ECAECA ] C:\Windows\SysWOW64\ntmarta.dll
13:00:28.0658 1904 C:\Windows\SysWOW64\ntmarta.dll - ok
13:00:28.0674 1904 [ A29D734F650F958424743BE3BAA052C8 ] C:\Windows\SysWOW64\DWrite.dll
13:00:28.0674 1904 C:\Windows\SysWOW64\DWrite.dll - ok
13:00:28.0674 1904 [ EE5C8E27C37B79CB54A2FCEEED2DC262 ] C:\Windows\SysWOW64\WSHTCPIP.DLL
13:00:28.0674 1904 C:\Windows\SysWOW64\WSHTCPIP.DLL - ok
13:00:28.0689 1904 [ FCFCADA2B35D0599DC485F06DED21788 ] C:\Program Files (x86)\Mozilla Firefox\components\browsercomps.dll
13:00:28.0689 1904 C:\Program Files (x86)\Mozilla Firefox\components\browsercomps.dll - ok
13:00:28.0705 1904 [ 73E8667A19FEEDD856DF2695E9E511D4 ] C:\Windows\SysWOW64\wship6.dll
13:00:28.0705 1904 C:\Windows\SysWOW64\wship6.dll - ok
13:00:28.0720 1904 [ 81F08948A0F1475894C99D4D19A158A8 ] C:\Windows\SysWOW64\wshqos.dll
13:00:28.0720 1904 C:\Windows\SysWOW64\wshqos.dll - ok
13:00:28.0736 1904 [ 243974EC02F7AE49E4179C54624143AB ] C:\Windows\SysWOW64\MMDevAPI.dll
13:00:28.0736 1904 C:\Windows\SysWOW64\MMDevAPI.dll - ok
13:00:28.0752 1904 [ 6B140B1382F1FE04BA57B196AEB19725 ] C:\Windows\SysWOW64\t2embed.dll
13:00:28.0752 1904 C:\Windows\SysWOW64\t2embed.dll - ok
13:00:28.0767 1904 [ 104A1070E90F1C530328E69B49718841 ] C:\Windows\SysWOW64\nlaapi.dll
13:00:28.0767 1904 C:\Windows\SysWOW64\nlaapi.dll - ok
13:00:28.0783 1904 [ 0B7E85364CB878E2AD531DB7B601A9E5 ] C:\Windows\SysWOW64\NapiNSP.dll
13:00:28.0783 1904 C:\Windows\SysWOW64\NapiNSP.dll - ok
13:00:28.0798 1904 [ 5CF640EDDB1E40A5AB1BB743BCDEC610 ] C:\Windows\SysWOW64\pnrpnsp.dll
13:00:28.0798 1904 C:\Windows\SysWOW64\pnrpnsp.dll - ok

#15 cctexun

cctexun
  • Topic Starter

  • Members
  • 116 posts
  • OFFLINE
  •  
  • Local time:02:09 PM

Posted 05 October 2012 - 01:27 PM

Most of rest of TDSS Log



13:00:28.0798 1904 [ 9D4A1690AF93F233E15380398BEC7431 ] C:\Program Files (x86)\Common Files\microsoft shared\Windows Live\WLIDNSP.DLL
13:00:28.0798 1904 C:\Program Files (x86)\Common Files\microsoft shared\Windows Live\WLIDNSP.DLL - ok
13:00:28.0814 1904 [ B40420876B9288E0A1C8CCA8A84E5DC9 ] C:\Windows\SysWOW64\dnsapi.dll
13:00:28.0814 1904 C:\Windows\SysWOW64\dnsapi.dll - ok
13:00:28.0830 1904 [ 5DF5D8CFD9B9573FA3B2C89D9061A240 ] C:\Windows\SysWOW64\winrnr.dll
13:00:28.0830 1904 C:\Windows\SysWOW64\winrnr.dll - ok
13:00:28.0830 1904 [ 40947436A70E0034E41123DF5A0A7702 ] C:\Program Files (x86)\Bonjour\mdnsNSP.dll
13:00:28.0830 1904 C:\Program Files (x86)\Bonjour\mdnsNSP.dll - ok
13:00:28.0845 1904 [ 7F8678C59F188528D60104E697C2361E ] C:\Windows\SysWOW64\mscms.dll
13:00:28.0845 1904 C:\Windows\SysWOW64\mscms.dll - ok
13:00:28.0845 1904 [ ED6EE83D61EBC683C2CD8E899EA6FEBE ] C:\Windows\SysWOW64\rasadhlp.dll
13:00:28.0845 1904 C:\Windows\SysWOW64\rasadhlp.dll - ok
13:00:28.0861 1904 [ 03A03A453F1AAAE0C73AAAF895321C7A ] C:\Windows\SysWOW64\FWPUCLNT.DLL
13:00:28.0861 1904 C:\Windows\SysWOW64\FWPUCLNT.DLL - ok
13:00:28.0876 1904 [ DD31BE71EBBF9BB9342AA8811956C2F0 ] C:\Program Files (x86)\Mozilla Firefox\nssdbm3.dll
13:00:28.0876 1904 C:\Program Files (x86)\Mozilla Firefox\nssdbm3.dll - ok
13:00:28.0892 1904 [ AF68099C841EE4BE1C19458D41664A77 ] C:\Program Files (x86)\Mozilla Firefox\freebl3.dll
13:00:28.0892 1904 C:\Program Files (x86)\Mozilla Firefox\freebl3.dll - ok
13:00:28.0908 1904 [ 6B77AC593EEFE2D7E855CA691F4A5C84 ] C:\Program Files (x86)\Mozilla Firefox\nssckbi.dll
13:00:28.0908 1904 C:\Program Files (x86)\Mozilla Firefox\nssckbi.dll - ok
13:00:28.0923 1904 [ E2A17BCC08D92F42E08AF6BA2F93ABA7 ] C:\Windows\SysWOW64\ExplorerFrame.dll
13:00:28.0923 1904 C:\Windows\SysWOW64\ExplorerFrame.dll - ok
13:00:28.0939 1904 [ 6E1F8165C365D35C8E3C045AF0CDD481 ] C:\Windows\SysWOW64\duser.dll
13:00:28.0939 1904 C:\Windows\SysWOW64\duser.dll - ok
13:00:28.0954 1904 [ EE06B85BC69F18826302348A2AD089E0 ] C:\Windows\SysWOW64\dui70.dll
13:00:28.0954 1904 C:\Windows\SysWOW64\dui70.dll - ok
13:00:28.0954 1904 [ AF0238442F4CFFFE26CA15556E805F8B ] C:\Program Files (x86)\Symantec\LiveUpdate\S32LIVE1.DLL
13:00:28.0954 1904 C:\Program Files (x86)\Symantec\LiveUpdate\S32LIVE1.DLL - ok
13:00:28.0970 1904 [ 1EB82516F21F27EED1833B4F9FD9614E ] C:\Windows\System32\wmp.dll
13:00:28.0970 1904 C:\Windows\System32\wmp.dll - ok
13:00:28.0986 1904 [ E19AD0D49BFF5938B3E374873AC174DE ] C:\Windows\System32\wmploc.DLL
13:00:28.0986 1904 C:\Windows\System32\wmploc.DLL - ok
13:00:28.0986 1904 [ A2631C4465BBCE72B7E371DFB924A9D3 ] C:\Windows\SysWOW64\feclient.dll
13:00:28.0986 1904 C:\Windows\SysWOW64\feclient.dll - ok
13:00:29.0001 1904 [ BE247AE996A9FDE007A27B51413A6C79 ] C:\Windows\SysWOW64\shdocvw.dll
13:00:29.0001 1904 C:\Windows\SysWOW64\shdocvw.dll - ok
13:00:29.0001 1904 [ A80C173AC5C75706BB74AE4D78F2A53D ] C:\Program Files (x86)\Windows Media Player\wmplayer.exe
13:00:29.0001 1904 C:\Program Files (x86)\Windows Media Player\wmplayer.exe - ok
13:00:29.0017 1904 [ 46F4C5E1FD1AE2461E52838EB5118ECC ] C:\PROGRA~2\Symantec\LIVEUP~1\LUALL.EXE
13:00:29.0017 1904 C:\PROGRA~2\Symantec\LIVEUP~1\LUALL.EXE - ok
13:00:29.0032 1904 [ 4B1BC262B76232056F3B247C37F26940 ] C:\PROGRA~2\Symantec\LIVEUP~1\MFC71.DLL
13:00:29.0032 1904 C:\PROGRA~2\Symantec\LIVEUP~1\MFC71.DLL - ok
13:00:29.0032 1904 [ CA2F560921B7B8BE1CF555A5A18D54C3 ] C:\PROGRA~2\Symantec\LIVEUP~1\MSVCR71.DLL
13:00:29.0032 1904 C:\PROGRA~2\Symantec\LIVEUP~1\MSVCR71.DLL - ok
13:00:29.0048 1904 [ A94DC60A90EFD7A35C36D971E3EE7470 ] C:\PROGRA~2\Symantec\LIVEUP~1\MSVCP71.DLL
13:00:29.0048 1904 C:\PROGRA~2\Symantec\LIVEUP~1\MSVCP71.DLL - ok
13:00:29.0064 1904 [ 82B18F1EB267D60852D5093A5302BD49 ] C:\PROGRA~2\Symantec\LIVEUP~1\LUALLRES.DLL
13:00:29.0064 1904 C:\PROGRA~2\Symantec\LIVEUP~1\LUALLRES.DLL - ok
13:00:29.0064 1904 [ 47D954B2188DA17598CA5EBEBE199DA0 ] C:\Program Files (x86)\Symantec\LiveUpdate\NetDetectController_3_3.DLL
13:00:29.0064 1904 C:\Program Files (x86)\Symantec\LiveUpdate\NetDetectController_3_3.DLL - ok
13:00:29.0079 1904 [ 522B0466ED967A0762E9AF5B37D8F40A ] C:\Windows\System32\esent.dll
13:00:29.0079 1904 C:\Windows\System32\esent.dll - ok
13:00:29.0095 1904 [ 220159496484D34009DE71CA1A68E0D4 ] C:\Windows\System32\wbem\NCProv.dll
13:00:29.0095 1904 C:\Windows\System32\wbem\NCProv.dll - ok
13:00:29.0095 1904 [ 5F1F35F2F995FA8615438AB922B0BA7B ] C:\Program Files\Internet Explorer\ieproxy.dll
13:00:29.0095 1904 C:\Program Files\Internet Explorer\ieproxy.dll - ok
13:00:29.0110 1904 [ B837D1528CE2E3CB79F09496BC08DDC6 ] C:\Windows\System32\SensApi.dll
13:00:29.0110 1904 C:\Windows\System32\SensApi.dll - ok
13:00:29.0126 1904 [ 9ED9F21D73F9D71E30EAB71835E656EB ] C:\Users\Dave Haddad\Desktop\tdsskiller.exe
13:00:29.0126 1904 C:\Users\Dave Haddad\Desktop\tdsskiller.exe - ok
13:00:29.0126 1904 [ CA9F7888B524D8100B977C81F44C3234 ] C:\Windows\SysWOW64\winhttp.dll
13:00:29.0126 1904 C:\Windows\SysWOW64\winhttp.dll - ok
13:00:29.0142 1904 [ FB19FC5951A88F3C523E35C2C98D23C0 ] C:\Windows\SysWOW64\webio.dll
13:00:29.0142 1904 C:\Windows\SysWOW64\webio.dll - ok
13:00:29.0142 1904 [ 4E5FE39C1076D115EC8BFCFE14D75B80 ] C:\Windows\SysWOW64\credssp.dll
13:00:29.0142 1904 C:\Windows\SysWOW64\credssp.dll - ok
13:00:29.0142 1904 [ F146E2BA475893DD77B2370DC1211FC6 ] C:\Windows\System32\drivers\65721651.sys
13:00:29.0142 1904 C:\Windows\System32\drivers\65721651.sys - ok
13:00:29.0157 1904 [ A6C29DB53ECA94FA8591C5388D604B82 ] C:\Windows\SysWOW64\msi.dll
13:00:29.0157 1904 C:\Windows\SysWOW64\msi.dll - ok
13:00:29.0157 1904 [ 102CF6879887BBE846A00C459E6D4ABC ] C:\Windows\SysWOW64\riched20.dll
13:00:29.0157 1904 C:\Windows\SysWOW64\riched20.dll - ok
13:00:29.0173 1904 [ CF318F60A84F15AF352439465A8D05F4 ] C:\Program Files\Windows Defender\MpSvc.dll
13:00:29.0173 1904 C:\Program Files\Windows Defender\MpSvc.dll - ok
13:00:29.0188 1904 [ ADF3E771F429940E762AC097F5A54EAF ] C:\Program Files\Windows Defender\MpClient.dll
13:00:29.0188 1904 C:\Program Files\Windows Defender\MpClient.dll - ok
13:00:29.0188 1904 [ 4FDFA3F219692D17011BF1B428857C1E ] C:\Program Files\Windows Defender\MpRTP.dll
13:00:29.0188 1904 C:\Program Files\Windows Defender\MpRTP.dll - ok
13:00:29.0188 1904 [ FBD879D17B26D49DD7A48FF58062FAE6 ] C:\Windows\System32\tdh.dll
13:00:29.0188 1904 C:\Windows\System32\tdh.dll - ok
13:00:29.0204 1904 [ 78555E35CD15785B9EE62B8C8167A861 ] C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{4FD771AF-2E18-4F5C-8EF4-FF19B63C3B5B}\mpengine.dll
13:00:29.0204 1904 C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{4FD771AF-2E18-4F5C-8EF4-FF19B63C3B5B}\mpengine.dll - ok
13:00:29.0204 1904 [ 8BE5B9C034415C5E4232F109E514A49A ] C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{4FD771AF-2E18-4F5C-8EF4-FF19B63C3B5B}\mpasbase.vdm
13:00:29.0204 1904 C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{4FD771AF-2E18-4F5C-8EF4-FF19B63C3B5B}\mpasbase.vdm - ok
13:00:29.0220 1904 [ 4BA9CDF0463BEDFC8DE9EC5F605B5C7A ] C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{4FD771AF-2E18-4F5C-8EF4-FF19B63C3B5B}\mpasdlta.vdm
13:00:29.0220 1904 C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{4FD771AF-2E18-4F5C-8EF4-FF19B63C3B5B}\mpasdlta.vdm - ok
13:00:29.0220 1904 [ 93BB66044FA76734E882C6F3E8EE1900 ] C:\Program Files\Windows Defender\MsMpLics.dll
13:00:29.0220 1904 C:\Program Files\Windows Defender\MsMpLics.dll - ok
13:00:29.0235 1904 [ 218A400108F280428FA22282D3268BBC ] C:\Windows\System32\wscapi.dll
13:00:29.0235 1904 C:\Windows\System32\wscapi.dll - ok
13:00:29.0235 1904 [ B84E2D174DC84916A536572BB8F691A8 ] C:\Windows\System32\wscisvif.dll
13:00:29.0235 1904 C:\Windows\System32\wscisvif.dll - ok
13:00:29.0251 1904 [ 6C1E3C43B35268C17833244C8ED96430 ] C:\Windows\System32\wscproxystub.dll
13:00:29.0251 1904 C:\Windows\System32\wscproxystub.dll - ok
13:00:29.0251 1904 ============================================================
13:00:29.0251 1904 Scan finished
13:00:29.0251 1904 ============================================================
13:00:29.0266 1924 Detected object count: 0
13:00:29.0266 1924 Actual detected object count: 0
13:01:59.0497 0968 ============================================================
13:01:59.0497 0968 Scan started
13:01:59.0497 0968 Mode: Manual; SigCheck; TDLFS;
13:01:59.0497 0968 ============================================================
13:01:59.0949 0968 ================ Scan system memory ========================
13:01:59.0949 0968 System memory - ok
13:01:59.0949 0968 ================ Scan services =============================
13:02:00.0074 0968 [ A87D604AEA360176311474C87A63BB88 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
13:02:00.0105 0968 1394ohci - ok
13:02:00.0137 0968 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI C:\Windows\system32\drivers\ACPI.sys
13:02:00.0152 0968 ACPI - ok
13:02:00.0183 0968 [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
13:02:00.0199 0968 AcpiPmi - ok
13:02:00.0230 0968 [ 2F0683FD2DF1D92E891CACA14B45A8C1 ] adfs C:\Windows\system32\drivers\adfs.sys
13:02:00.0246 0968 adfs - ok
13:02:00.0308 0968 [ D19C4EE2AC7C47B8F5F84FFF1A789D8A ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
13:02:00.0324 0968 AdobeARMservice - ok
13:02:00.0402 0968 [ B2B64AF436FACCFA854DD397027C5360 ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
13:02:00.0417 0968 AdobeFlashPlayerUpdateSvc - ok
13:02:00.0449 0968 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
13:02:00.0464 0968 adp94xx - ok
13:02:00.0511 0968 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
13:02:00.0527 0968 adpahci - ok
13:02:00.0558 0968 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
13:02:00.0573 0968 adpu320 - ok
13:02:00.0620 0968 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
13:02:00.0651 0968 AeLookupSvc - ok
13:02:00.0683 0968 [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD C:\Windows\system32\drivers\afd.sys
13:02:00.0714 0968 AFD - ok
13:02:00.0745 0968 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\Windows\system32\drivers\agp440.sys
13:02:00.0761 0968 agp440 - ok
13:02:00.0776 0968 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\Windows\System32\alg.exe
13:02:00.0807 0968 ALG - ok
13:02:00.0823 0968 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\Windows\system32\drivers\aliide.sys
13:02:00.0839 0968 aliide - ok
13:02:00.0854 0968 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\Windows\system32\drivers\amdide.sys
13:02:00.0870 0968 amdide - ok
13:02:00.0901 0968 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
13:02:00.0917 0968 AmdK8 - ok
13:02:00.0948 0968 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
13:02:00.0963 0968 AmdPPM - ok
13:02:00.0979 0968 [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata C:\Windows\system32\drivers\amdsata.sys
13:02:00.0995 0968 amdsata - ok
13:02:01.0010 0968 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
13:02:01.0026 0968 amdsbs - ok
13:02:01.0057 0968 [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata C:\Windows\system32\drivers\amdxata.sys
13:02:01.0073 0968 amdxata - ok
13:02:01.0104 0968 [ 89A69C3F2F319B43379399547526D952 ] AppID C:\Windows\system32\drivers\appid.sys
13:02:01.0135 0968 AppID - ok
13:02:01.0166 0968 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\Windows\System32\appidsvc.dll
13:02:01.0197 0968 AppIDSvc - ok
13:02:01.0244 0968 [ 3977D4A871CA0D4F2ED1E7DB46829731 ] Appinfo C:\Windows\System32\appinfo.dll
13:02:01.0275 0968 Appinfo - ok
13:02:01.0322 0968 [ 7EF47644B74EBE721CC32211D3C35E76 ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
13:02:01.0338 0968 Apple Mobile Device - ok
13:02:01.0353 0968 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\Windows\system32\DRIVERS\arc.sys
13:02:01.0369 0968 arc - ok
13:02:01.0400 0968 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
13:02:01.0400 0968 arcsas - ok
13:02:01.0431 0968 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
13:02:01.0463 0968 AsyncMac - ok
13:02:01.0509 0968 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\Windows\system32\drivers\atapi.sys
13:02:01.0509 0968 atapi - ok
13:02:01.0572 0968 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
13:02:01.0603 0968 AudioEndpointBuilder - ok
13:02:01.0634 0968 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv C:\Windows\System32\Audiosrv.dll
13:02:01.0681 0968 AudioSrv - ok
13:02:01.0697 0968 [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV C:\Windows\System32\AxInstSV.dll
13:02:01.0728 0968 AxInstSV - ok
13:02:01.0759 0968 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\Windows\system32\DRIVERS\bxvbda.sys
13:02:01.0775 0968 b06bdrv - ok
13:02:01.0790 0968 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
13:02:01.0806 0968 b57nd60a - ok
13:02:01.0837 0968 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\Windows\System32\bdesvc.dll
13:02:01.0853 0968 BDESVC - ok
13:02:01.0868 0968 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\Windows\system32\drivers\Beep.sys
13:02:01.0915 0968 Beep - ok
13:02:01.0946 0968 [ 82974D6A2FD19445CC5171FC378668A4 ] BFE C:\Windows\System32\bfe.dll
13:02:01.0993 0968 BFE - ok
13:02:02.0024 0968 [ 1EA7969E3271CBC59E1730697DC74682 ] BITS C:\Windows\System32\qmgr.dll
13:02:02.0071 0968 BITS - ok
13:02:02.0102 0968 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
13:02:02.0118 0968 blbdrive - ok
13:02:02.0165 0968 [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
13:02:02.0180 0968 Bonjour Service - ok
13:02:02.0211 0968 [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
13:02:02.0227 0968 bowser - ok
13:02:02.0258 0968 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
13:02:02.0274 0968 BrFiltLo - ok
13:02:02.0289 0968 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
13:02:02.0305 0968 BrFiltUp - ok
13:02:02.0352 0968 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser C:\Windows\System32\browser.dll
13:02:02.0367 0968 Browser - ok
13:02:02.0383 0968 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\Windows\System32\Drivers\Brserid.sys
13:02:02.0399 0968 Brserid - ok
13:02:02.0430 0968 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
13:02:02.0445 0968 BrSerWdm - ok
13:02:02.0461 0968 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
13:02:02.0477 0968 BrUsbMdm - ok
13:02:02.0508 0968 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
13:02:02.0523 0968 BrUsbSer - ok
13:02:02.0539 0968 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
13:02:02.0555 0968 BTHMODEM - ok
13:02:02.0586 0968 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\Windows\system32\bthserv.dll
13:02:02.0633 0968 bthserv - ok
13:02:02.0664 0968 [ 673D6DE6D6E9D50CD5E9C78F0C916CB8 ] ccEvtMgr C:\Program Files (x86)\Common Files\Symantec Shared\ccSvcHst.exe
13:02:02.0679 0968 ccEvtMgr - ok
13:02:02.0679 0968 [ 673D6DE6D6E9D50CD5E9C78F0C916CB8 ] ccSetMgr C:\Program Files (x86)\Common Files\Symantec Shared\ccSvcHst.exe
13:02:02.0695 0968 ccSetMgr - ok
13:02:02.0726 0968 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
13:02:02.0757 0968 cdfs - ok
13:02:02.0789 0968 [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom C:\Windows\system32\drivers\cdrom.sys
13:02:02.0804 0968 cdrom - ok
13:02:02.0851 0968 [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc C:\Windows\System32\certprop.dll
13:02:02.0882 0968 CertPropSvc - ok
13:02:02.0913 0968 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\Windows\system32\DRIVERS\circlass.sys
13:02:02.0929 0968 circlass - ok
13:02:02.0945 0968 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\Windows\system32\CLFS.sys
13:02:02.0960 0968 CLFS - ok
13:02:03.0038 0968 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
13:02:03.0054 0968 clr_optimization_v2.0.50727_32 - ok
13:02:03.0085 0968 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
13:02:03.0085 0968 clr_optimization_v2.0.50727_64 - ok
13:02:03.0163 0968 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
13:02:03.0179 0968 clr_optimization_v4.0.30319_32 - ok
13:02:03.0210 0968 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
13:02:03.0210 0968 clr_optimization_v4.0.30319_64 - ok
13:02:03.0241 0968 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
13:02:03.0257 0968 CmBatt - ok
13:02:03.0272 0968 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\Windows\system32\drivers\cmdide.sys
13:02:03.0288 0968 cmdide - ok
13:02:03.0335 0968 [ 9AC4F97C2D3E93367E2148EA940CD2CD ] CNG C:\Windows\system32\Drivers\cng.sys
13:02:03.0366 0968 CNG - ok
13:02:03.0381 0968 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
13:02:03.0397 0968 Compbatt - ok
13:02:03.0444 0968 [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus C:\Windows\system32\drivers\CompositeBus.sys
13:02:03.0459 0968 CompositeBus - ok
13:02:03.0475 0968 COMSysApp - ok
13:02:03.0491 0968 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
13:02:03.0506 0968 crcdisk - ok
13:02:03.0537 0968 [ 4F5414602E2544A4554D95517948B705 ] CryptSvc C:\Windows\system32\cryptsvc.dll
13:02:03.0569 0968 CryptSvc - ok
13:02:03.0600 0968 [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch C:\Windows\system32\rpcss.dll
13:02:03.0647 0968 DcomLaunch - ok
13:02:03.0678 0968 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\Windows\System32\defragsvc.dll
13:02:03.0725 0968 defragsvc - ok
13:02:03.0756 0968 [ B14973B68E59C5730B86996C0A69818A ] DefWatch C:\Program Files (x86)\Symantec AntiVirus\DefWatch.exe
13:02:03.0771 0968 DefWatch - ok
13:02:03.0803 0968 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
13:02:03.0834 0968 DfsC - ok
13:02:03.0865 0968 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp C:\Windows\system32\dhcpcore.dll
13:02:03.0912 0968 Dhcp - ok
13:02:03.0943 0968 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\Windows\system32\drivers\discache.sys
13:02:03.0974 0968 discache - ok
13:02:04.0005 0968 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\Windows\system32\DRIVERS\disk.sys
13:02:04.0021 0968 Disk - ok
13:02:04.0037 0968 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache C:\Windows\System32\dnsrslvr.dll
13:02:04.0068 0968 Dnscache - ok
13:02:04.0099 0968 [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc C:\Windows\System32\dot3svc.dll
13:02:04.0146 0968 dot3svc - ok
13:02:04.0193 0968 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS C:\Windows\system32\dps.dll
13:02:04.0224 0968 DPS - ok
13:02:04.0255 0968 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
13:02:04.0271 0968 drmkaud - ok
13:02:04.0333 0968 [ F5BEE30450E18E6B83A5012C100616FD ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
13:02:04.0364 0968 DXGKrnl - ok
13:02:04.0380 0968 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\Windows\System32\eapsvc.dll
13:02:04.0427 0968 EapHost - ok
13:02:04.0505 0968 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\Windows\system32\DRIVERS\evbda.sys
13:02:04.0551 0968 ebdrv - ok
13:02:04.0583 0968 [ 4353FF94D47A0A9D52B89ECCF0CDB013 ] eeCtrl C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys
13:02:04.0614 0968 eeCtrl - ok
13:02:04.0629 0968 [ C118A82CD78818C29AB228366EBF81C3 ] EFS C:\Windows\System32\lsass.exe
13:02:04.0645 0968 EFS - ok
13:02:04.0723 0968 [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
13:02:04.0739 0968 ehRecvr - ok
13:02:04.0770 0968 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\Windows\ehome\ehsched.exe
13:02:04.0785 0968 ehSched - ok
13:02:04.0817 0968 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys
13:02:04.0832 0968 elxstor - ok
13:02:04.0879 0968 [ C5BCCB378D0A896304A3E71BE7215983 ] EraserUtilRebootDrv C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys
13:02:04.0895 0968 EraserUtilRebootDrv - ok
13:02:04.0926 0968 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\Windows\system32\drivers\errdev.sys
13:02:04.0941 0968 ErrDev - ok
13:02:05.0004 0968 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\Windows\system32\es.dll
13:02:05.0035 0968 EventSystem - ok
13:02:05.0066 0968 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\Windows\system32\drivers\exfat.sys
13:02:05.0097 0968 exfat - ok
13:02:05.0113 0968 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\Windows\system32\drivers\fastfat.sys
13:02:05.0175 0968 fastfat - ok
13:02:05.0222 0968 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax C:\Windows\system32\fxssvc.exe
13:02:05.0253 0968 Fax - ok
13:02:05.0269 0968 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\Windows\system32\DRIVERS\fdc.sys
13:02:05.0285 0968 fdc - ok
13:02:05.0300 0968 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\Windows\system32\fdPHost.dll
13:02:05.0331 0968 fdPHost - ok
13:02:05.0363 0968 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\Windows\system32\fdrespub.dll
13:02:05.0409 0968 FDResPub - ok
13:02:05.0425 0968 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
13:02:05.0441 0968 FileInfo - ok
13:02:05.0456 0968 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
13:02:05.0503 0968 Filetrace - ok
13:02:05.0550 0968 [ 1F63900E2EB00101B9ACA2B7A870704E ] FLEXnet Licensing Service C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
13:02:05.0565 0968 FLEXnet Licensing Service - ok
13:02:05.0628 0968 [ 1C3FB052A0BB72EDAED90785C34D6EED ] FLEXnet Licensing Service 64 C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe
13:02:05.0659 0968 FLEXnet Licensing Service 64 - ok
13:02:05.0675 0968 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
13:02:05.0690 0968 flpydisk - ok
13:02:05.0737 0968 [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
13:02:05.0753 0968 FltMgr - ok
13:02:05.0799 0968 [ 5C4CB4086FB83115B153E47ADD961A0C ] FontCache C:\Windows\system32\FntCache.dll
13:02:05.0831 0968 FontCache - ok
13:02:05.0877 0968 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
13:02:05.0893 0968 FontCache3.0.0.0 - ok
13:02:05.0924 0968 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
13:02:05.0924 0968 FsDepends - ok
13:02:05.0955 0968 [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
13:02:05.0971 0968 Fs_Rec - ok
13:02:06.0018 0968 [ 1F7B25B858FA27015169FE95E54108ED ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
13:02:06.0033 0968 fvevol - ok
13:02:06.0049 0968 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys
13:02:06.0065 0968 gagp30kx - ok
13:02:06.0080 0968 [ E403AACF8C7BB11375122D2464560311 ] GEARAspiWDM C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
13:02:06.0096 0968 GEARAspiWDM - ok
13:02:06.0158 0968 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc C:\Windows\System32\gpsvc.dll
13:02:06.0267 0968 gpsvc - ok
13:02:06.0392 0968 [ 0191DEE9B9EB7902AF2CF4F67301095D ] GREGService C:\Program Files (x86)\eMachines\Registration\GREGsvc.exe
13:02:06.0408 0968 GREGService - ok
13:02:06.0455 0968 [ F02A533F517EB38333CB12A9E8963773 ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
13:02:06.0470 0968 gupdate - ok
13:02:06.0501 0968 [ F02A533F517EB38333CB12A9E8963773 ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
13:02:06.0533 0968 gupdatem - ok
13:02:06.0564 0968 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
13:02:06.0579 0968 hcw85cir - ok
13:02:06.0626 0968 [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
13:02:06.0657 0968 HdAudAddService - ok
13:02:06.0673 0968 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus C:\Windows\system32\drivers\HDAudBus.sys
13:02:06.0720 0968 HDAudBus - ok
13:02:06.0767 0968 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys
13:02:07.0001 0968 HidBatt - ok
13:02:07.0079 0968 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
13:02:07.0125 0968 HidBth - ok
13:02:07.0157 0968 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
13:02:07.0203 0968 HidIr - ok
13:02:07.0250 0968 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\Windows\system32\hidserv.dll
13:02:07.0328 0968 hidserv - ok
13:02:07.0375 0968 [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb C:\Windows\system32\drivers\hidusb.sys
13:02:07.0391 0968 HidUsb - ok
13:02:07.0437 0968 [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc C:\Windows\system32\kmsvc.dll
13:02:07.0469 0968 hkmsvc - ok
13:02:07.0515 0968 [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll
13:02:07.0531 0968 HomeGroupListener - ok
13:02:07.0547 0968 [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
13:02:07.0562 0968 HomeGroupProvider - ok
13:02:07.0593 0968 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
13:02:07.0609 0968 HpSAMD - ok
13:02:07.0656 0968 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP C:\Windows\system32\drivers\HTTP.sys
13:02:07.0718 0968 HTTP - ok
13:02:07.0749 0968 [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
13:02:07.0765 0968 hwpolicy - ok
13:02:07.0812 0968 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\Windows\system32\drivers\i8042prt.sys
13:02:07.0827 0968 i8042prt - ok
13:02:07.0859 0968 [ BF5442DC14608D18949DC83DE37E667A ] iaStor C:\Windows\system32\DRIVERS\iaStor.sys
13:02:07.0874 0968 iaStor - ok
13:02:07.0921 0968 [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
13:02:07.0937 0968 iaStorV - ok
13:02:07.0983 0968 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
13:02:08.0030 0968 idsvc - ok
13:02:08.0342 0968 [ C6238C6ABD6AC99F5D152DA4E9439A3D ] igfx C:\Windows\system32\DRIVERS\igdkmd64.sys
13:02:08.0639 0968 igfx - ok
13:02:08.0685 0968 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys
13:02:08.0717 0968 iirsp - ok
13:02:08.0763 0968 [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT C:\Windows\System32\ikeext.dll
13:02:08.0826 0968 IKEEXT - ok
13:02:08.0888 0968 [ 450BEC18B45BCCFDC923E11F856DBDA7 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
13:02:08.0935 0968 IntcAzAudAddService - ok
13:02:08.0982 0968 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\Windows\system32\drivers\intelide.sys
13:02:08.0982 0968 intelide - ok
13:02:08.0997 0968 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
13:02:09.0013 0968 intelppm - ok
13:02:09.0044 0968 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\Windows\system32\ipbusenum.dll
13:02:09.0091 0968 IPBusEnum - ok
13:02:09.0122 0968 [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
13:02:09.0216 0968 IpFilterDriver - ok
13:02:09.0278 0968 [ A34A587FFFD45FA649FBA6D03784D257 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
13:02:09.0590 0968 iphlpsvc - ok
13:02:09.0637 0968 [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
13:02:09.0653 0968 IPMIDRV - ok
13:02:09.0684 0968 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
13:02:09.0715 0968 IPNAT - ok
13:02:09.0824 0968 [ 50D6CCC6FF5561F9F56946B3E6164FB8 ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
13:02:09.0855 0968 iPod Service - ok
13:02:09.0871 0968 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
13:02:09.0887 0968 IRENUM - ok
13:02:09.0902 0968 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\Windows\system32\drivers\isapnp.sys
13:02:09.0918 0968 isapnp - ok
13:02:09.0965 0968 [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
13:02:09.0980 0968 iScsiPrt - ok
13:02:10.0011 0968 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\Windows\system32\drivers\kbdclass.sys
13:02:10.0027 0968 kbdclass - ok
13:02:10.0058 0968 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid C:\Windows\system32\drivers\kbdhid.sys
13:02:10.0074 0968 kbdhid - ok
13:02:10.0089 0968 [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso C:\Windows\system32\lsass.exe
13:02:10.0105 0968 KeyIso - ok
13:02:10.0136 0968 [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
13:02:10.0167 0968 KSecDD - ok
13:02:10.0183 0968 [ 26C43A7C2862447EC59DEDA188D1DA07 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
13:02:10.0199 0968 KSecPkg - ok
13:02:10.0230 0968 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
13:02:10.0261 0968 ksthunk - ok
13:02:10.0292 0968 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\Windows\system32\msdtckrm.dll
13:02:10.0339 0968 KtmRm - ok
13:02:10.0386 0968 [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer C:\Windows\system32\srvsvc.dll
13:02:10.0433 0968 LanmanServer - ok
13:02:10.0464 0968 [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
13:02:10.0511 0968 LanmanWorkstation - ok
13:02:10.0604 0968 [ E8A9AC5F30833CD62E3530E2FDBF81DF ] LiveUpdate C:\PROGRA~2\Symantec\LIVEUP~1\LUCOMS~1.EXE
13:02:10.0651 0968 LiveUpdate - ok
13:02:10.0667 0968 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
13:02:10.0713 0968 lltdio - ok
13:02:10.0745 0968 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\Windows\System32\lltdsvc.dll
13:02:10.0791 0968 lltdsvc - ok
13:02:10.0807 0968 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\Windows\System32\lmhsvc.dll
13:02:10.0838 0968 lmhosts - ok
13:02:10.0869 0968 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys
13:02:10.0885 0968 LSI_FC - ok
13:02:10.0916 0968 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys
13:02:10.0916 0968 LSI_SAS - ok
13:02:10.0947 0968 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys
13:02:10.0963 0968 LSI_SAS2 - ok
13:02:10.0979 0968 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys
13:02:10.0994 0968 LSI_SCSI - ok
13:02:11.0010 0968 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\Windows\system32\drivers\luafv.sys
13:02:11.0057 0968 luafv - ok
13:02:11.0072 0968 [ B9FC4CCE5758B816F27DD4D1EED11841 ] MBAMProtector C:\Windows\system32\drivers\mbam.sys
13:02:11.0088 0968 MBAMProtector - ok
13:02:11.0150 0968 [ 0DCF16B1449811EFA47AB52CAC84093C ] MBAMScheduler C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
13:02:11.0166 0968 MBAMScheduler - ok
13:02:11.0197 0968 [ 9EAABA4D601004BEA4DAA6E146E19A96 ] MBAMService C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
13:02:11.0228 0968 MBAMService - ok
13:02:11.0259 0968 [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
13:02:11.0291 0968 Mcx2Svc - ok
13:02:11.0322 0968 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\Windows\system32\DRIVERS\megasas.sys
13:02:11.0337 0968 megasas - ok
13:02:11.0353 0968 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys
13:02:11.0369 0968 MegaSR - ok
13:02:11.0400 0968 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\Windows\system32\mmcss.dll
13:02:11.0431 0968 MMCSS - ok
13:02:11.0447 0968 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\Windows\system32\drivers\modem.sys
13:02:11.0493 0968 Modem - ok
13:02:11.0540 0968 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\Windows\system32\DRIVERS\monitor.sys
13:02:11.0556 0968 monitor - ok
13:02:11.0603 0968 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\Windows\system32\drivers\mouclass.sys
13:02:11.0603 0968 mouclass - ok
13:02:11.0634 0968 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
13:02:11.0649 0968 mouhid - ok
13:02:11.0681 0968 [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
13:02:11.0696 0968 mountmgr - ok
13:02:11.0743 0968 [ CB8AF049AC9BE419A77ADAE288673359 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
13:02:11.0759 0968 MozillaMaintenance - ok
13:02:11.0790 0968 [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio C:\Windows\system32\drivers\mpio.sys
13:02:11.0805 0968 mpio - ok
13:02:11.0837 0968 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
13:02:11.0868 0968 mpsdrv - ok
13:02:11.0915 0968 [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc C:\Windows\system32\mpssvc.dll
13:02:11.0961 0968 MpsSvc - ok
13:02:11.0993 0968 [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
13:02:12.0024 0968 MRxDAV - ok
13:02:12.0055 0968 [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
13:02:12.0071 0968 mrxsmb - ok
13:02:12.0086 0968 [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
13:02:12.0102 0968 mrxsmb10 - ok
13:02:12.0133 0968 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
13:02:12.0149 0968 mrxsmb20 - ok
13:02:12.0164 0968 [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci C:\Windows\system32\drivers\msahci.sys
13:02:12.0180 0968 msahci - ok
13:02:12.0211 0968 [ DB801A638D011B9633829EB6F663C900 ] msdsm C:\Windows\system32\drivers\msdsm.sys
13:02:12.0227 0968 msdsm - ok
13:02:12.0258 0968 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\Windows\System32\msdtc.exe
13:02:12.0273 0968 MSDTC - ok
13:02:12.0320 0968 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\Windows\system32\drivers\Msfs.sys
13:02:12.0351 0968 Msfs - ok
13:02:12.0367 0968 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
13:02:12.0414 0968 mshidkmdf - ok
13:02:12.0445 0968 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
13:02:12.0461 0968 msisadrv - ok
13:02:12.0492 0968 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
13:02:12.0539 0968 MSiSCSI - ok
13:02:12.0554 0968 msiserver - ok
13:02:12.0585 0968 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
13:02:12.0617 0968 MSKSSRV - ok
13:02:12.0632 0968 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
13:02:12.0679 0968 MSPCLOCK - ok
13:02:12.0695 0968 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
13:02:12.0726 0968 MSPQM - ok
13:02:12.0773 0968 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
13:02:12.0788 0968 MsRPC - ok
13:02:12.0804 0968 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\Windows\system32\drivers\mssmbios.sys
13:02:12.0819 0968 mssmbios - ok
13:02:12.0835 0968 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
13:02:12.0882 0968 MSTEE - ok
13:02:12.0897 0968 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys
13:02:12.0913 0968 MTConfig - ok
13:02:12.0929 0968 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\Windows\system32\Drivers\mup.sys
13:02:12.0929 0968 Mup - ok
13:02:12.0960 0968 [ 582AC6D9873E31DFA28A4547270862DD ] napagent C:\Windows\system32\qagentRT.dll
13:02:13.0007 0968 napagent - ok
13:02:13.0038 0968 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
13:02:13.0053 0968 NativeWifiP - ok
13:02:13.0163 0968 [ C58D8A669D6551F616D90244BD2C2D4F ] NAVENG C:\PROGRA~3\Symantec\DEFINI~1\VIRUSD~1\20120914.002\ENG64.SYS
13:02:13.0163 0968 NAVENG - ok
13:02:13.0225 0968 [ A3DBDB412ADFA5882DD6843B11FE0828 ] NAVEX15 C:\PROGRA~3\Symantec\DEFINI~1\VIRUSD~1\20120914.002\EX64.SYS
13:02:13.0256 0968 NAVEX15 - ok
13:02:13.0303 0968 [ 760E38053BF56E501D562B70AD796B88 ] NDIS C:\Windows\system32\drivers\ndis.sys
13:02:13.0334 0968 NDIS - ok
13:02:13.0365 0968 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
13:02:13.0397 0968 NdisCap - ok
13:02:13.0428 0968 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
13:02:13.0459 0968 NdisTapi - ok
13:02:13.0490 0968 [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
13:02:13.0537 0968 Ndisuio - ok
13:02:13.0568 0968 [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
13:02:13.0615 0968 NdisWan - ok
13:02:13.0646 0968 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
13:02:13.0693 0968 NDProxy - ok
13:02:13.0740 0968 [ 7D2633295EB6FF2B938185874884059D ] Nero BackItUp Scheduler 4.0 C:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\NBService.exe
13:02:13.0755 0968 Nero BackItUp Scheduler 4.0 - ok
13:02:13.0771 0968 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
13:02:13.0818 0968 NetBIOS - ok
13:02:13.0849 0968 [ 09594D1089C523423B32A4229263F068 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
13:02:13.0896 0968 NetBT - ok
13:02:13.0911 0968 [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon C:\Windows\system32\lsass.exe
13:02:13.0927 0968 Netlogon - ok
13:02:13.0958 0968 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\Windows\System32\netman.dll
13:02:14.0005 0968 Netman - ok
13:02:14.0021 0968 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\Windows\System32\netprofm.dll
13:02:14.0067 0968 netprofm - ok
13:02:14.0130 0968 [ AF5F224A600F50B7D2B77F4AE59C1ABE ] netr28x C:\Windows\system32\DRIVERS\netr28x.sys
13:02:14.0145 0968 netr28x - ok
13:02:14.0177 0968 [ 3E5A36127E201DDF663176B66828FAFE ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
13:02:14.0192 0968 NetTcpPortSharing - ok
13:02:14.0223 0968 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys
13:02:14.0223 0968 nfrd960 - ok
13:02:14.0270 0968 [ 1EE99A89CC788ADA662441D1E9830529 ] NlaSvc C:\Windows\System32\nlasvc.dll
13:02:14.0301 0968 NlaSvc - ok
13:02:14.0333 0968 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\Windows\system32\drivers\Npfs.sys
13:02:14.0364 0968 Npfs - ok
13:02:14.0395 0968 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\Windows\system32\nsisvc.dll
13:02:14.0426 0968 nsi - ok
13:02:14.0442 0968 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
13:02:14.0489 0968 nsiproxy - ok
13:02:14.0551 0968 [ A2F74975097F52A00745F9637451FDD8 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
13:02:14.0598 0968 Ntfs - ok
13:02:14.0598 0968 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\Windows\system32\drivers\Null.sys
13:02:14.0645 0968 Null - ok
13:02:14.0660 0968 [ 0A92CB65770442ED0DC44834632F66AD ] nvraid C:\Windows\system32\drivers\nvraid.sys
13:02:14.0676 0968 nvraid - ok
13:02:14.0707 0968 [ DAB0E87525C10052BF65F06152F37E4A ] nvstor C:\Windows\system32\drivers\nvstor.sys
13:02:14.0723 0968 nvstor - ok
13:02:14.0738 0968 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
13:02:14.0754 0968 nv_agp - ok
13:02:14.0816 0968 [ 785F487A64950F3CB8E9F16253BA3B7B ] odserv C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
13:02:14.0847 0968 odserv - ok
13:02:14.0879 0968 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
13:02:14.0894 0968 ohci1394 - ok
13:02:14.0925 0968 [ 5A432A042DAE460ABE7199B758E8606C ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
13:02:14.0941 0968 ose - ok
13:02:14.0988 0968 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
13:02:15.0003 0968 p2pimsvc - ok
13:02:15.0019 0968 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\Windows\system32\p2psvc.dll
13:02:15.0035 0968 p2psvc - ok
13:02:15.0066 0968 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\Windows\system32\DRIVERS\parport.sys
13:02:15.0097 0968 Parport - ok
13:02:15.0128 0968 [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr C:\Windows\system32\drivers\partmgr.sys
13:02:15.0144 0968 partmgr - ok
13:02:15.0159 0968 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll
13:02:15.0175 0968 PcaSvc - ok
13:02:15.0222 0968 [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci C:\Windows\system32\drivers\pci.sys
13:02:15.0237 0968 pci - ok
13:02:15.0253 0968 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\Windows\system32\drivers\pciide.sys
13:02:15.0269 0968 pciide - ok
13:02:15.0300 0968 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
13:02:15.0315 0968 pcmcia - ok
13:02:15.0331 0968 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\Windows\system32\drivers\pcw.sys
13:02:15.0347 0968 pcw - ok
13:02:15.0378 0968 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\Windows\system32\drivers\peauth.sys
13:02:15.0425 0968 PEAUTH - ok
13:02:15.0487 0968 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\Windows\SysWow64\perfhost.exe
13:02:15.0518 0968 PerfHost - ok
13:02:15.0581 0968 [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla C:\Windows\system32\pla.dll
13:02:15.0643 0968 pla - ok
13:02:15.0690 0968 [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
13:02:15.0737 0968 PlugPlay - ok
13:02:15.0768 0968 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
13:02:15.0783 0968 PNRPAutoReg - ok
13:02:15.0799 0968 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
13:02:15.0815 0968 PNRPsvc - ok
13:02:15.0846 0968 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
13:02:15.0893 0968 PolicyAgent - ok
13:02:15.0939 0968 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\Windows\system32\umpo.dll
13:02:15.0971 0968 Power - ok
13:02:16.0017 0968 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
13:02:16.0049 0968 PptpMiniport - ok
13:02:16.0080 0968 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\Windows\system32\DRIVERS\processr.sys
13:02:16.0095 0968 Processor - ok
13:02:16.0142 0968 [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc C:\Windows\system32\profsvc.dll
13:02:16.0158 0968 ProfSvc - ok
13:02:16.0173 0968 [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe
13:02:16.0189 0968 ProtectedStorage - ok
13:02:16.0236 0968 [ 0557CF5A2556BD58E26384169D72438D ] Psched C:\Windows\system32\DRIVERS\pacer.sys
13:02:16.0267 0968 Psched - ok
13:02:16.0298 0968 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys
13:02:16.0345 0968 ql2300 - ok
13:02:16.0376 0968 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys
13:02:16.0392 0968 ql40xx - ok
13:02:16.0423 0968 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\Windows\system32\qwave.dll
13:02:16.0439 0968 QWAVE - ok
13:02:16.0470 0968 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
13:02:16.0485 0968 QWAVEdrv - ok
13:02:16.0501 0968 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
13:02:16.0548 0968 RasAcd - ok
13:02:16.0563 0968 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
13:02:16.0610 0968 RasAgileVpn - ok
13:02:16.0626 0968 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\Windows\System32\rasauto.dll
13:02:16.0673 0968 RasAuto - ok
13:02:16.0704 0968 [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
13:02:16.0751 0968 Rasl2tp - ok
13:02:16.0782 0968 [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan C:\Windows\System32\rasmans.dll
13:02:16.0829 0968 RasMan - ok
13:02:16.0844 0968 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
13:02:16.0891 0968 RasPppoe - ok
13:02:16.0907 0968 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
13:02:16.0938 0968 RasSstp - ok
13:02:16.0985 0968 [ 77F665941019A1594D887A74F301FA2F ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
13:02:17.0031 0968 rdbss - ok
13:02:17.0047 0968 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
13:02:17.0063 0968 rdpbus - ok
13:02:17.0078 0968 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
13:02:17.0109 0968 RDPCDD - ok
13:02:17.0125 0968 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
13:02:17.0172 0968 RDPENCDD - ok
13:02:17.0187 0968 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
13:02:17.0234 0968 RDPREFMP - ok
13:02:17.0265 0968 [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
13:02:17.0281 0968 RDPWD - ok
13:02:17.0328 0968 [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
13:02:17.0343 0968 rdyboost - ok
13:02:17.0375 0968 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\Windows\System32\mprdim.dll
13:02:17.0406 0968 RemoteAccess - ok
13:02:17.0437 0968 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll
13:02:17.0484 0968 RemoteRegistry - ok
13:02:17.0499 0968 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
13:02:17.0546 0968 RpcEptMapper - ok
13:02:17.0562 0968 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\Windows\system32\locator.exe
13:02:17.0577 0968 RpcLocator - ok
13:02:17.0624 0968 [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs C:\Windows\system32\rpcss.dll
13:02:17.0671 0968 RpcSs - ok
13:02:17.0687 0968 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
13:02:17.0733 0968 rspndr - ok
13:02:17.0765 0968 [ 3641E624C8C5D5EA089AE9B5340B5B79 ] rt70x64 C:\Windows\system32\DRIVERS\netr7064.sys
13:02:17.0780 0968 rt70x64 - ok
13:02:17.0811 0968 [ 365ED58B47B46DE8B1C5FA759B6FCD6E ] RTL8167 C:\Windows\system32\DRIVERS\Rt64win7.sys
13:02:17.0843 0968 RTL8167 - ok
13:02:17.0858 0968 [ C118A82CD78818C29AB228366EBF81C3 ] SamSs C:\Windows\system32\lsass.exe
13:02:17.0874 0968 SamSs - ok
13:02:17.0921 0968 [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
13:02:17.0936 0968 sbp2port - ok
13:02:17.0952 0968 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\Windows\System32\SCardSvr.dll
13:02:17.0999 0968 SCardSvr - ok
13:02:18.0045 0968 [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
13:02:18.0092 0968 scfilter - ok
13:02:18.0139 0968 [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule C:\Windows\system32\schedsvc.dll
13:02:18.0186 0968 Schedule - ok
13:02:18.0233 0968 [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc C:\Windows\System32\certprop.dll
13:02:18.0264 0968 SCPolicySvc - ok
13:02:18.0295 0968 [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC C:\Windows\System32\SDRSVC.dll
13:02:18.0311 0968 SDRSVC - ok
13:02:18.0357 0968 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys
13:02:18.0389 0968 secdrv - ok
13:02:18.0404 0968 [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon C:\Windows\system32\seclogon.dll
13:02:18.0435 0968 seclogon - ok
13:02:18.0467 0968 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\Windows\System32\sens.dll
13:02:18.0513 0968 SENS - ok
13:02:18.0529 0968 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\Windows\system32\sensrsvc.dll
13:02:18.0545 0968 SensrSvc - ok
13:02:18.0560 0968 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
13:02:18.0576 0968 Serenum - ok
13:02:18.0591 0968 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\Windows\system32\DRIVERS\serial.sys
13:02:18.0607 0968 Serial - ok
13:02:18.0654 0968 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys
13:02:18.0669 0968 sermouse - ok
13:02:18.0716 0968 [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv C:\Windows\system32\sessenv.dll
13:02:18.0747 0968 SessionEnv - ok
13:02:18.0794 0968 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
13:02:18.0810 0968 sffdisk - ok
13:02:18.0825 0968 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
13:02:18.0841 0968 sffp_mmc - ok
13:02:18.0857 0968 [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
13:02:18.0872 0968 sffp_sd - ok
13:02:18.0903 0968 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
13:02:18.0919 0968 sfloppy - ok
13:02:18.0950 0968 [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess C:\Windows\System32\ipnathlp.dll
13:02:18.0997 0968 SharedAccess - ok
13:02:19.0028 0968 [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
13:02:19.0059 0968 ShellHWDetection - ok
13:02:19.0091 0968 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys
13:02:19.0091 0968 SiSRaid2 - ok
13:02:19.0122 0968 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys
13:02:19.0137 0968 SiSRaid4 - ok
13:02:19.0153 0968 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\Windows\system32\DRIVERS\smb.sys
13:02:19.0200 0968 Smb - ok
13:02:19.0231 0968 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\Windows\System32\snmptrap.exe
13:02:19.0247 0968 SNMPTRAP - ok
13:02:19.0262 0968 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\Windows\system32\drivers\spldr.sys
13:02:19.0278 0968 spldr - ok
13:02:19.0325 0968 [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler C:\Windows\System32\spoolsv.exe
13:02:19.0356 0968 Spooler - ok
13:02:19.0434 0968 [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc C:\Windows\system32\sppsvc.exe
13:02:19.0512 0968 sppsvc - ok
13:02:19.0543 0968 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\Windows\system32\sppuinotify.dll
13:02:19.0574 0968 sppuinotify - ok
13:02:19.0605 0968 [ 569F8D9768A00AB9A5166997C88EFE42 ] SRTSP C:\Windows\system32\Drivers\SRTSP64.SYS
13:02:19.0621 0968 SRTSP - ok
13:02:19.0652 0968 [ FB283AE148CC4C5A4954DAEFBB9DFFF0 ] SRTSPL C:\Windows\system32\Drivers\SRTSPL64.SYS
13:02:19.0668 0968 SRTSPL - ok
13:02:19.0699 0968 [ C9ECA0A26CEBADE5134BA01FD8EF86A6 ] SRTSPX C:\Windows\system32\Drivers\SRTSPX64.SYS
13:02:19.0715 0968 SRTSPX - ok
13:02:19.0746 0968 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv C:\Windows\system32\DRIVERS\srv.sys
13:02:19.0761 0968 srv - ok
13:02:19.0793 0968 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
13:02:19.0808 0968 srv2 - ok
13:02:19.0824 0968 [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
13:02:19.0839 0968 srvnet - ok
13:02:19.0871 0968 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
13:02:19.0917 0968 SSDPSRV - ok
13:02:19.0933 0968 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\Windows\system32\sstpsvc.dll
13:02:19.0980 0968 SstpSvc - ok
13:02:20.0011 0968 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys
13:02:20.0027 0968 stexstor - ok
13:02:20.0058 0968 [ DECACB6921DED1A38642642685D77DAC ] StillCam C:\Windows\system32\DRIVERS\serscan.sys
13:02:20.0073 0968 StillCam - ok
13:02:20.0120 0968 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc C:\Windows\System32\wiaservc.dll
13:02:20.0151 0968 stisvc - ok
13:02:20.0198 0968 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\Windows\system32\drivers\swenum.sys
13:02:20.0198 0968 swenum - ok
13:02:20.0229 0968 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\Windows\System32\swprv.dll
13:02:20.0276 0968 swprv - ok
13:02:20.0339 0968 [ 5CB8F41094F54FCE1DF77C47CB5781D7 ] Symantec AntiVirus C:\Program Files (x86)\Symantec AntiVirus\Rtvscan.exe
13:02:20.0370 0968 Symantec AntiVirus - ok
13:02:20.0417 0968 [ 70C8D165063EB76F1A373B74456D2AAB ] SymEvent C:\Windows\system32\Drivers\SYMEVENT64x86.SYS
13:02:20.0432 0968 SymEvent - ok
13:02:20.0495 0968 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain C:\Windows\system32\sysmain.dll
13:02:20.0541 0968 SysMain - ok
13:02:20.0573 0968 [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
13:02:20.0588 0968 TabletInputService - ok
13:02:20.0619 0968 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv C:\Windows\System32\tapisrv.dll
13:02:20.0666 0968 TapiSrv - ok
13:02:20.0697 0968 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\Windows\System32\tbssvc.dll
13:02:20.0744 0968 TBS - ok
13:02:20.0791 0968 [ F782CAD3CEDBB3F9FFE3BF2775D92DDC ] Tcpip C:\Windows\system32\drivers\tcpip.sys
13:02:20.0838 0968 Tcpip - ok
13:02:20.0885 0968 [ F782CAD3CEDBB3F9FFE3BF2775D92DDC ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
13:02:20.0916 0968 TCPIP6 - ok
13:02:20.0963 0968 [ DF687E3D8836BFB04FCC0615BF15A519 ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
13:02:20.0994 0968 tcpipreg - ok
13:02:21.0041 0968 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
13:02:21.0056 0968 TDPIPE - ok
13:02:21.0087 0968 [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
13:02:21.0103 0968 TDTCP - ok
13:02:21.0134 0968 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
13:02:21.0165 0968 tdx - ok
13:02:21.0212 0968 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD C:\Windows\system32\drivers\termdd.sys
13:02:21.0228 0968 TermDD - ok
13:02:21.0243 0968 [ 2E648163254233755035B46DD7B89123 ] TermService C:\Windows\System32\termsrv.dll
13:02:21.0306 0968 TermService - ok
13:02:21.0337 0968 [ F0344071948D1A1FA732231785A0664C ] Themes C:\Windows\system32\themeservice.dll
13:02:21.0353 0968 Themes - ok
13:02:21.0368 0968 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\Windows\system32\mmcss.dll
13:02:21.0415 0968 THREADORDER - ok
13:02:21.0431 0968 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\Windows\System32\trkwks.dll
13:02:21.0477 0968 TrkWks - ok
13:02:21.0524 0968 [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
13:02:21.0571 0968 TrustedInstaller - ok
13:02:21.0602 0968 [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
13:02:21.0649 0968 tssecsrv - ok
13:02:21.0680 0968 [ D11C783E3EF9A3C52C0EBE83CC5000E9 ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
13:02:21.0696 0968 TsUsbFlt - ok
13:02:21.0727 0968 [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
13:02:21.0774 0968 tunnel - ok
13:02:21.0805 0968 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys
13:02:21.0821 0968 uagp35 - ok
13:02:21.0836 0968 [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
13:02:21.0883 0968 udfs - ok
13:02:21.0914 0968 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\Windows\system32\UI0Detect.exe
13:02:21.0945 0968 UI0Detect - ok
13:02:21.0961 0968 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
13:02:21.0977 0968 uliagpkx - ok
13:02:22.0008 0968 [ DC54A574663A895C8763AF0FA1FF7561 ] umbus C:\Windows\system32\drivers\umbus.sys
13:02:22.0023 0968 umbus - ok
13:02:22.0039 0968 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\Windows\system32\DRIVERS\umpass.sys
13:02:22.0055 0968 UmPass - ok
13:02:22.0133 0968 [ F9EC9ACD504D823D9B9CA98A4F8D3CA2 ] Updater Service C:\Program Files\eMachines\eMachines Updater\UpdaterService.exe
13:02:22.0148 0968 Updater Service - ok
13:02:22.0164 0968 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\Windows\System32\upnphost.dll
13:02:22.0211 0968 upnphost - ok
13:02:22.0242 0968 [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
13:02:22.0273 0968 usbccgp - ok
13:02:22.0304 0968 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\Windows\system32\drivers\usbcir.sys
13:02:22.0320 0968 usbcir - ok
13:02:22.0351 0968 [ C025055FE7B87701EB042095DF1A2D7B ] usbehci C:\Windows\system32\drivers\usbehci.sys
13:02:22.0367 0968 usbehci - ok
13:02:22.0398 0968 [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
13:02:22.0413 0968 usbhub - ok
13:02:22.0445 0968 [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci C:\Windows\system32\drivers\usbohci.sys
13:02:22.0460 0968 usbohci - ok
13:02:22.0491 0968 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
13:02:22.0507 0968 usbprint - ok
13:02:22.0538 0968 [ AAA2513C8AED8B54B189FD0C6B1634C0 ] usbscan C:\Windows\system32\DRIVERS\usbscan.sys
13:02:22.0554 0968 usbscan - ok
13:02:22.0585 0968 [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
13:02:22.0601 0968 USBSTOR - ok
13:02:22.0616 0968 [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci C:\Windows\system32\drivers\usbuhci.sys
13:02:22.0632 0968 usbuhci - ok
13:02:22.0663 0968 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\Windows\System32\uxsms.dll
13:02:22.0710 0968 UxSms - ok
13:02:22.0710 0968 [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc C:\Windows\system32\lsass.exe
13:02:22.0725 0968 VaultSvc - ok
13:02:22.0741 0968 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
13:02:22.0757 0968 vdrvroot - ok
13:02:22.0803 0968 [ 8D6B481601D01A456E75C3210F1830BE ] vds C:\Windows\System32\vds.exe
13:02:22.0850 0968 vds - ok
13:02:22.0866 0968 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
13:02:22.0881 0968 vga - ok
13:02:22.0897 0968 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\Windows\System32\drivers\vga.sys
13:02:22.0944 0968 VgaSave - ok
13:02:22.0959 0968 [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
13:02:22.0975 0968 vhdmp - ok
13:02:23.0006 0968 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\Windows\system32\drivers\viaide.sys
13:02:23.0022 0968 viaide - ok
13:02:23.0037 0968 [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr C:\Windows\system32\drivers\volmgr.sys
13:02:23.0053 0968 volmgr - ok
13:02:23.0084 0968 [ A255814907C89BE58B79EF2F189B843B ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
13:02:23.0100 0968 volmgrx - ok
13:02:23.0115 0968 [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap C:\Windows\system32\drivers\volsnap.sys
13:02:23.0147 0968 volsnap - ok
13:02:23.0162 0968 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys
13:02:23.0178 0968 vsmraid - ok
13:02:23.0256 0968 [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS C:\Windows\system32\vssvc.exe
13:02:23.0318 0968 VSS - ok
13:02:23.0334 0968 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\Windows\system32\DRIVERS\vwifibus.sys
13:02:23.0349 0968 vwifibus - ok
13:02:23.0365 0968 [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys
13:02:23.0381 0968 vwififlt - ok
13:02:23.0412 0968 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\Windows\system32\w32time.dll
13:02:23.0459 0968 W32Time - ok
13:02:23.0490 0968 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys
13:02:23.0505 0968 WacomPen - ok
13:02:23.0552 0968 [ 356AFD78A6ED4457169241AC3965230C ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
13:02:23.0583 0968 WANARP - ok
13:02:23.0599 0968 [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
13:02:23.0646 0968 Wanarpv6 - ok
13:02:23.0708 0968 [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe
13:02:23.0739 0968 WatAdminSvc - ok
13:02:23.0786 0968 [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine C:\Windows\system32\wbengine.exe
13:02:23.0817 0968 wbengine - ok
13:02:23.0849 0968 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
13:02:23.0880 0968 WbioSrvc - ok
13:02:23.0927 0968 [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc C:\Windows\System32\wcncsvc.dll
13:02:23.0958 0968 wcncsvc - ok
13:02:23.0973 0968 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
13:02:23.0989 0968 WcsPlugInService - ok
13:02:24.0005 0968 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\Windows\system32\DRIVERS\wd.sys
13:02:24.0020 0968 Wd - ok
13:02:24.0051 0968 [ 441BD2D7B4F98134C3A4F9FA570FD250 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
13:02:24.0083 0968 Wdf01000 - ok
13:02:24.0098 0968 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\Windows\system32\wdi.dll
13:02:24.0114 0968 WdiServiceHost - ok
13:02:24.0129 0968 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\Windows\system32\wdi.dll
13:02:24.0145 0968 WdiSystemHost - ok
13:02:24.0176 0968 [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient C:\Windows\System32\webclnt.dll
13:02:24.0207 0968 WebClient - ok
13:02:24.0223 0968 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\Windows\system32\wecsvc.dll
13:02:24.0270 0968 Wecsvc - ok
13:02:24.0285 0968 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\Windows\System32\wercplsupport.dll
13:02:24.0332 0968 wercplsupport - ok
13:02:24.0348 0968 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\Windows\System32\WerSvc.dll
13:02:24.0395 0968 WerSvc - ok
13:02:24.0410 0968 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
13:02:24.0457 0968 WfpLwf - ok
13:02:24.0473 0968 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\Windows\system32\drivers\wimmount.sys
13:02:24.0488 0968 WIMMount - ok
13:02:24.0519 0968 WinDefend - ok
13:02:24.0535 0968 WinHttpAutoProxySvc - ok
13:02:24.0582 0968 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
13:02:24.0613 0968 Winmgmt - ok
13:02:24.0691 0968 [ BCB1310604AA415C4508708975B3931E ] WinRM C:\Windows\system32\WsmSvc.dll
13:02:24.0753 0968 WinRM - ok
13:02:24.0800 0968 [ FE88B288356E7B47B74B13372ADD906D ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys
13:02:24.0831 0968 WinUsb - ok
13:02:24.0863 0968 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\Windows\System32\wlansvc.dll
13:02:24.0894 0968 Wlansvc - ok
13:02:24.0925 0968 [ 06C8FA1CF39DE6A735B54D906BA791C6 ] wlcrasvc C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
13:02:24.0941 0968 wlcrasvc - ok
13:02:25.0019 0968 [ 7E47C328FC4768CB8BEAFBCFAFA70362 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
13:02:25.0065 0968 wlidsvc - ok
13:02:25.0097 0968 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
13:02:25.0112 0968 WmiAcpi - ok
13:02:25.0159 0968 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
13:02:25.0175 0968 wmiApSrv - ok
13:02:25.0206 0968 WMPNetworkSvc - ok
13:02:25.0221 0968 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\Windows\System32\wpcsvc.dll
13:02:25.0237 0968 WPCSvc - ok
13:02:25.0284 0968 [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
13:02:25.0299 0968 WPDBusEnum - ok
13:02:25.0331 0968 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
13:02:25.0362 0968 ws2ifsl - ok
13:02:25.0393 0968 [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc C:\Windows\System32\wscsvc.dll
13:02:25.0409 0968 wscsvc - ok
13:02:25.0424 0968 WSearch - ok
13:02:25.0502 0968 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv C:\Windows\system32\wuaueng.dll
13:02:25.0549 0968 wuauserv - ok
13:02:25.0580 0968 [ D3381DC54C34D79B22CEE0D65BA91B7C ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
13:02:25.0611 0968 WudfPf - ok
13:02:25.0643 0968 [ CF8D590BE3373029D57AF80914190682 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
13:02:25.0689 0968 WUDFRd - ok
13:02:25.0736 0968 [ 7A95C95B6C4CF292D689106BCAE49543 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
13:02:25.0767 0968 wudfsvc - ok
13:02:25.0783 0968 [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc C:\Windows\System32\wwansvc.dll
13:02:25.0799 0968 WwanSvc - ok
13:02:25.0830 0968 ================ Scan global ===============================
13:02:25.0861 0968 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
13:02:25.0892 0968 [ EB6A48CC998E1090E44E8E7F1009A640 ] C:\Windows\system32\winsrv.dll
13:02:25.0908 0968 [ EB6A48CC998E1090E44E8E7F1009A640 ] C:\Windows\system32\winsrv.dll
13:02:25.0923 0968 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
13:02:25.0939 0968 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
13:02:25.0939 0968 [Global] - ok
13:02:25.0955 0968 ================ Scan MBR ==================================
13:02:25.0955 0968 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
13:02:26.0189 0968 \Device\Harddisk0\DR0 - ok
13:02:26.0204 0968 [ 2B043EFA84E6E06C9DA9231305CA4EBF ] \Device\Harddisk1\DR1
13:02:29.0777 0968 \Device\Harddisk1\DR1 - ok
13:02:29.0792 0968 ================ Scan VBR ==================================
13:02:29.0792 0968 [ 13EA6FB28A9134154996E4EFE0419AA5 ] \Device\Harddisk0\DR0\Partition1
13:02:29.0808 0968 \Device\Harddisk0\DR0\Partition1 - ok
13:02:29.0823 0968 [ AE6C0B208DD08F4EB39A3EAF2923AC8D ] \Device\Harddisk0\DR0\Partition2
13:02:29.0823 0968 \Device\Harddisk0\DR0\Partition2 - ok
13:02:29.0823 0968 ================ Scan active images ========================
13:02:29.0839 0968 [ 3E588B60EC061686BA05D33574A344C6 ] C:\Windows\System32\drivers\crashdmp.sys
13:02:29.0839 0968 C:\Windows\System32\drivers\crashdmp.sys - ok
13:02:29.0839 0968 [ 839B5FE3D48E9F35B22C21A3D5103F6C ] C:\Windows\System32\drivers\Dumpata.sys
13:02:29.0839 0968 C:\Windows\System32\drivers\Dumpata.sys - ok
13:02:29.0855 0968 [ 02062C0B390B7729EDC9E69C680A6F3C ] C:\Windows\System32\drivers\atapi.sys
13:02:29.0855 0968 C:\Windows\System32\drivers\atapi.sys - ok
13:02:29.0855 0968 [ 814DB88F2641691575A455CF25354098 ] C:\Windows\System32\drivers\dumpfve.sys
13:02:29.0855 0968 C:\Windows\System32\drivers\dumpfve.sys - ok
13:02:29.0870 0968 [ 9899284589F75FA8724FF3D16AED75C1 ] C:\Windows\System32\drivers\null.sys
13:02:29.0870 0968 C:\Windows\System32\drivers\null.sys - ok
13:02:29.0870 0968 [ 16A47CE2DECC9B099349A5F840654746 ] C:\Windows\System32\drivers\beep.sys
13:02:29.0870 0968 C:\Windows\System32\drivers\beep.sys - ok
13:02:29.0886 0968 [ E7353D59C9842BC7299FAEB7E7E09340 ] C:\Windows\System32\drivers\videoprt.sys
13:02:29.0886 0968 C:\Windows\System32\drivers\videoprt.sys - ok
13:02:29.0886 0968 [ FC438D1430B28618E2D0C7C332A710AD ] C:\Windows\System32\drivers\watchdog.sys
13:02:29.0886 0968 C:\Windows\System32\drivers\watchdog.sys - ok
13:02:29.0901 0968 [ 53E92A310193CB3C03BEA963DE7D9CFC ] C:\Windows\System32\drivers\vga.sys
13:02:29.0901 0968 C:\Windows\System32\drivers\vga.sys - ok
13:02:29.0901 0968 [ BB5971A4F00659529A5C44831AF22365 ] C:\Windows\System32\drivers\RDPENCDD.sys
13:02:29.0901 0968 C:\Windows\System32\drivers\RDPENCDD.sys - ok
13:02:29.0917 0968 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] C:\Windows\System32\drivers\msfs.sys
13:02:29.0917 0968 C:\Windows\System32\drivers\msfs.sys - ok
13:02:29.0917 0968 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] C:\Windows\System32\drivers\npfs.sys
13:02:29.0917 0968 C:\Windows\System32\drivers\npfs.sys - ok
13:02:29.0933 0968 [ 6F020A220388ECA0AB6062DC27BD16B6 ] C:\Windows\System32\drivers\tdi.sys
13:02:29.0933 0968 C:\Windows\System32\drivers\tdi.sys - ok
13:02:29.0948 0968 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] C:\Windows\System32\drivers\tdx.sys
13:02:29.0948 0968 C:\Windows\System32\drivers\tdx.sys - ok
13:02:29.0948 0968 [ 1C7857B62DE5994A75B054A9FD4C3825 ] C:\Windows\System32\drivers\afd.sys
13:02:29.0948 0968 C:\Windows\System32\drivers\afd.sys - ok
13:02:29.0964 0968 [ 09594D1089C523423B32A4229263F068 ] C:\Windows\System32\drivers\netbt.sys
13:02:29.0964 0968 C:\Windows\System32\drivers\netbt.sys - ok
13:02:29.0964 0968 [ 611B23304BF067451A9FDEE01FBDD725 ] C:\Windows\System32\drivers\wfplwf.sys
13:02:29.0964 0968 C:\Windows\System32\drivers\wfplwf.sys - ok
13:02:29.0979 0968 [ 0557CF5A2556BD58E26384169D72438D ] C:\Windows\System32\drivers\pacer.sys
13:02:29.0979 0968 C:\Windows\System32\drivers\pacer.sys - ok
13:02:29.0979 0968 [ 6A3D66263414FF0D6FA754C646612F3F ] C:\Windows\System32\drivers\vwififlt.sys
13:02:29.0979 0968 C:\Windows\System32\drivers\vwififlt.sys - ok
13:02:29.0995 0968 [ 86743D9F5D2B1048062B14B1D84501C4 ] C:\Windows\System32\drivers\netbios.sys
13:02:29.0995 0968 C:\Windows\System32\drivers\netbios.sys - ok
13:02:30.0011 0968 [ 77F665941019A1594D887A74F301FA2F ] C:\Windows\System32\drivers\rdbss.sys
13:02:30.0011 0968 C:\Windows\System32\drivers\rdbss.sys - ok
13:02:30.0011 0968 [ E7F5AE18AF4168178A642A9247C63001 ] C:\Windows\System32\drivers\nsiproxy.sys
13:02:30.0011 0968 C:\Windows\System32\drivers\nsiproxy.sys - ok
13:02:30.0026 0968 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] C:\Windows\System32\drivers\dfsc.sys
13:02:30.0026 0968 C:\Windows\System32\drivers\dfsc.sys - ok
13:02:30.0026 0968 [ 3566A8DAAFA27AF944F5D705EAA64894 ] C:\Windows\System32\drivers\tunnel.sys
13:02:30.0026 0968 C:\Windows\System32\drivers\tunnel.sys - ok
13:02:30.0042 0968 [ 1911A3356FA3F77CCC825CCBAC038C2A ] C:\Windows\System32\smss.exe
13:02:30.0042 0968 C:\Windows\System32\smss.exe - ok
13:02:30.0042 0968 [ CF95B85FF8D128385ABD411C8CA74DED ] C:\Windows\System32\ntdll.dll
13:02:30.0042 0968 C:\Windows\System32\ntdll.dll - ok
13:02:30.0057 0968 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] C:\Windows\System32\drivers\hdaudbus.sys
13:02:30.0057 0968 C:\Windows\System32\drivers\hdaudbus.sys - ok
13:02:30.0057 0968 [ 3B536A8BEC3B4F23FFDFD78B11A2AB93 ] C:\Windows\System32\autochk.exe
13:02:30.0057 0968 C:\Windows\System32\autochk.exe - ok
13:02:30.0073 0968 [ AF5F224A600F50B7D2B77F4AE59C1ABE ] C:\Windows\System32\drivers\netr28x.sys
13:02:30.0073 0968 C:\Windows\System32\drivers\netr28x.sys - ok
13:02:30.0073 0968 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] C:\Windows\System32\drivers\vwifibus.sys
13:02:30.0073 0968 C:\Windows\System32\drivers\vwifibus.sys - ok
13:02:30.0089 0968 [ 365ED58B47B46DE8B1C5FA759B6FCD6E ] C:\Windows\System32\drivers\Rt64win7.sys
13:02:30.0089 0968 C:\Windows\System32\drivers\Rt64win7.sys - ok
13:02:30.0089 0968 [ AE259C75F9A0B057B6BF9E9695632B09 ] C:\Windows\System32\drivers\usbport.sys
13:02:30.0089 0968 C:\Windows\System32\drivers\usbport.sys - ok
13:02:30.0104 0968 [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] C:\Windows\System32\drivers\usbuhci.sys
13:02:30.0104 0968 C:\Windows\System32\drivers\usbuhci.sys - ok
13:02:30.0104 0968 [ C025055FE7B87701EB042095DF1A2D7B ] C:\Windows\System32\drivers\usbehci.sys
13:02:30.0104 0968 C:\Windows\System32\drivers\usbehci.sys - ok
13:02:30.0120 0968 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] C:\Windows\System32\drivers\i8042prt.sys
13:02:30.0120 0968 C:\Windows\System32\drivers\i8042prt.sys - ok
13:02:30.0135 0968 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] C:\Windows\System32\drivers\kbdclass.sys
13:02:30.0135 0968 C:\Windows\System32\drivers\kbdclass.sys - ok
13:02:30.0135 0968 [ 7D27EA49F3C1F687D357E77A470AEA99 ] C:\Windows\System32\drivers\mouclass.sys
13:02:30.0135 0968 C:\Windows\System32\drivers\mouclass.sys - ok
13:02:30.0151 0968 [ F036CE71586E93D94DAB220D7BDF4416 ] C:\Windows\System32\drivers\cdrom.sys
13:02:30.0151 0968 C:\Windows\System32\drivers\cdrom.sys - ok
13:02:30.0151 0968 [ 2F8B1E3EE3545D3B5A8D56FA1AE07B65 ] C:\Windows\System32\usp10.dll
13:02:30.0151 0968 C:\Windows\System32\usp10.dll - ok
13:02:30.0167 0968 [ E403AACF8C7BB11375122D2464560311 ] C:\Windows\System32\drivers\GEARAspiWDM.sys
13:02:30.0167 0968 C:\Windows\System32\drivers\GEARAspiWDM.sys - ok
13:02:30.0182 0968 [ F6FF8944478594D0E414D3F048F0D778 ] C:\Windows\System32\drivers\wmiacpi.sys
13:02:30.0182 0968 C:\Windows\System32\drivers\wmiacpi.sys - ok
13:02:30.0182 0968 [ 044FE45FFD6AD40E3BBBE60B7F41BABE ] C:\Windows\System32\nsi.dll
13:02:30.0182 0968 C:\Windows\System32\nsi.dll - ok
13:02:30.0198 0968 [ 61583EE3C3A17003C4ACD0475646B4D3 ] C:\Windows\System32\drivers\blbdrive.sys
13:02:30.0198 0968 C:\Windows\System32\drivers\blbdrive.sys - ok
13:02:30.0198 0968 [ C391FC68282A000CDF953F8B6B55D2EF ] C:\Windows\System32\msvcrt.dll
13:02:30.0198 0968 C:\Windows\System32\msvcrt.dll - ok
13:02:30.0213 0968 [ 03EDB043586CCEBA243D689BDDA370A8 ] C:\Windows\System32\drivers\CompositeBus.sys
13:02:30.0213 0968 C:\Windows\System32\drivers\CompositeBus.sys - ok
13:02:30.0213 0968 [ A1BE6A720D02E37F72E9CD89AE9CB3CF ] C:\Windows\System32\imagehlp.dll
13:02:30.0213 0968 C:\Windows\System32\imagehlp.dll - ok
13:02:30.0229 0968 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] C:\Windows\System32\drivers\mssmbios.sys
13:02:30.0229 0968 C:\Windows\System32\drivers\mssmbios.sys - ok
13:02:30.0229 0968 [ D202223587518B13D72D68937B7E3F70 ] C:\Windows\System32\lpk.dll
13:02:30.0229 0968 C:\Windows\System32\lpk.dll - ok
13:02:30.0245 0968 [ 7ECFF9B22276B73F43A99A15A6094E90 ] C:\Windows\System32\drivers\agilevpn.sys
13:02:30.0245 0968 C:\Windows\System32\drivers\agilevpn.sys - ok
13:02:30.0245 0968 [ 5D8E6C95156ED1F79A63D1EADE6F9ED5 ] C:\Windows\System32\setupapi.dll
13:02:30.0245 0968 C:\Windows\System32\setupapi.dll - ok
13:02:30.0260 0968 [ 471815800AE33E6F1C32FB1B97C490CA ] C:\Windows\System32\drivers\rasl2tp.sys
13:02:30.0260 0968 C:\Windows\System32\drivers\rasl2tp.sys - ok
13:02:30.0260 0968 [ 30639C932D9FEF22B31268FE25A1B6E5 ] C:\Windows\System32\drivers\ndistapi.sys
13:02:30.0260 0968 C:\Windows\System32\drivers\ndistapi.sys - ok
13:02:30.0276 0968 [ 53F7305169863F0A2BDDC49E116C2E11 ] C:\Windows\System32\drivers\ndiswan.sys
13:02:30.0276 0968 C:\Windows\System32\drivers\ndiswan.sys - ok
13:02:30.0276 0968 [ FE70103391A64039A921DBFFF9C7AB1B ] C:\Windows\System32\user32.dll
13:02:30.0276 0968 C:\Windows\System32\user32.dll - ok
13:02:30.0291 0968 [ 9835E63E09F824D22B689D2BB789BAB9 ] C:\Windows\System32\comdlg32.dll
13:02:30.0291 0968 C:\Windows\System32\comdlg32.dll - ok
13:02:30.0291 0968 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] C:\Windows\System32\drivers\raspppoe.sys
13:02:30.0291 0968 C:\Windows\System32\drivers\raspppoe.sys - ok
13:02:30.0307 0968 [ 25983DE69B57142039AC8D95E71CD9C9 ] C:\Windows\System32\clbcatq.dll
13:02:30.0307 0968 C:\Windows\System32\clbcatq.dll - ok
13:02:30.0323 0968 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] C:\Windows\System32\drivers\raspptp.sys
13:02:30.0323 0968 C:\Windows\System32\drivers\raspptp.sys - ok
13:02:30.0323 0968 [ D841F7629505EE542E26E5F0A4D20101 ] C:\Windows\System32\iertutil.dll
13:02:30.0323 0968 C:\Windows\System32\iertutil.dll - ok
13:02:30.0338 0968 [ E8B1E447B008D07FF47D016C2B0EEECB ] C:\Windows\System32\drivers\rassstp.sys
13:02:30.0338 0968 C:\Windows\System32\drivers\rassstp.sys - ok
13:02:30.0338 0968 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] C:\Windows\System32\drivers\termdd.sys
13:02:30.0338 0968 C:\Windows\System32\drivers\termdd.sys - ok
13:02:30.0354 0968 [ 24FBF5CC5C04150073C315A7C83521EE ] C:\Windows\System32\drivers\ks.sys
13:02:30.0354 0968 C:\Windows\System32\drivers\ks.sys - ok
13:02:30.0354 0968 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] C:\Windows\System32\drivers\swenum.sys
13:02:30.0354 0968 C:\Windows\System32\drivers\swenum.sys - ok
13:02:30.0369 0968 [ F7CE0C81C545364020ED8203CF0A633E ] C:\Windows\System32\difxapi.dll
13:02:30.0369 0968 C:\Windows\System32\difxapi.dll - ok
13:02:30.0385 0968 [ DC54A574663A895C8763AF0FA1FF7561 ] C:\Windows\System32\drivers\umbus.sys
13:02:30.0385 0968 C:\Windows\System32\drivers\umbus.sys - ok
13:02:30.0385 0968 [ 6C60B5ACA7442EFB794082CDACFC001C ] C:\Windows\System32\ole32.dll
13:02:30.0385 0968 C:\Windows\System32\ole32.dll - ok
13:02:30.0401 0968 [ C06B32165E23A72A898B7A89679AD754 ] C:\Windows\System32\oleaut32.dll
13:02:30.0401 0968 C:\Windows\System32\oleaut32.dll - ok
13:02:30.0401 0968 [ C431EAF5CAA1C82CAC2534A2EAB348A3 ] C:\Windows\System32\msctf.dll
13:02:30.0401 0968 C:\Windows\System32\msctf.dll - ok
13:02:30.0416 0968 [ 0611473C1AD9E2D991CD9482068417F7 ] C:\Windows\System32\rpcrt4.dll
13:02:30.0416 0968 C:\Windows\System32\rpcrt4.dll - ok
13:02:30.0416 0968 [ 6DF46D2BD74E3DA1B45F08F10D172732 ] C:\Windows\System32\advapi32.dll
13:02:30.0416 0968 C:\Windows\System32\advapi32.dll - ok
13:02:30.0432 0968 [ 83404DCBCE4925B6A5A77C5170F46D86 ] C:\Windows\System32\sechost.dll
13:02:30.0432 0968 C:\Windows\System32\sechost.dll - ok
13:02:30.0432 0968 [ 28C0B5024F5C5A438E78B188CFC81B7F ] C:\Windows\System32\normaliz.dll
13:02:30.0432 0968 C:\Windows\System32\normaliz.dll - ok
13:02:30.0447 0968 [ 3D165C53E40236A68B7102D1A622D4E0 ] C:\Windows\System32\wininet.dll
13:02:30.0447 0968 C:\Windows\System32\wininet.dll - ok
13:02:30.0447 0968 [ AA2C08CE85653B1A0D2E4AB407FA176C ] C:\Windows\System32\imm32.dll
13:02:30.0447 0968 C:\Windows\System32\imm32.dll - ok
13:02:30.0463 0968 [ EAF32CB8C1F810E4715B4DFBE785C7FF ] C:\Windows\System32\shlwapi.dll
13:02:30.0463 0968 C:\Windows\System32\shlwapi.dll - ok
13:02:30.0463 0968 [ B9B42A302325537D7B9DC52D47F33A73 ] C:\Windows\System32\kernel32.dll
13:02:30.0463 0968 C:\Windows\System32\kernel32.dll - ok
13:02:30.0479 0968 [ 2885A3C3148F725CDA0B4C593BA8F7CE ] C:\Windows\System32\urlmon.dll
13:02:30.0479 0968 C:\Windows\System32\urlmon.dll - ok
13:02:30.0479 0968 [ D87E1E59C73C1F98D5DED5B3850C40F5 ] C:\Windows\System32\psapi.dll
13:02:30.0479 0968 C:\Windows\System32\psapi.dll - ok
13:02:30.0494 0968 [ 1084AA52CCC324EA54C7121FA24C2221 ] C:\Windows\System32\gdi32.dll
13:02:30.0494 0968 C:\Windows\System32\gdi32.dll - ok
13:02:30.0510 0968 [ C6689007B3A749C49A5438DCF36E0CE4 ] C:\Windows\System32\shell32.dll
13:02:30.0510 0968 C:\Windows\System32\shell32.dll - ok
13:02:30.0510 0968 [ 4BBFA57F594F7E8A8EDC8F377184C3F0 ] C:\Windows\System32\ws2_32.dll
13:02:30.0510 0968 C:\Windows\System32\ws2_32.dll - ok
13:02:30.0525 0968 [ 4E4FFB09D895AA000DD56D1404F69A7E ] C:\Windows\System32\Wldap32.dll
13:02:30.0525 0968 C:\Windows\System32\Wldap32.dll - ok
13:02:30.0525 0968 [ 2477A28081BDAEE622CF045ACF8EE124 ] C:\Windows\System32\cfgmgr32.dll
13:02:30.0525 0968 C:\Windows\System32\cfgmgr32.dll - ok
13:02:30.0541 0968 [ FAF1BA660F84789CCCE747CE6F9D055A ] C:\Windows\System32\crypt32.dll
13:02:30.0541 0968 C:\Windows\System32\crypt32.dll - ok
13:02:30.0541 0968 [ 53238D99636BBA85F491C3E8FD22AB00 ] C:\Windows\System32\wintrust.dll
13:02:30.0541 0968 C:\Windows\System32\wintrust.dll - ok
13:02:30.0557 0968 [ 287C6C9410B111B68B52CA298F7B8C24 ] C:\Windows\System32\drivers\usbhub.sys
13:02:30.0557 0968 C:\Windows\System32\drivers\usbhub.sys - ok
13:02:30.0572 0968 [ 6B5174702343BD955E174FDFEFA2A1A3 ] C:\Windows\System32\KernelBase.dll
13:02:30.0572 0968 C:\Windows\System32\KernelBase.dll - ok
13:02:30.0572 0968 [ 14DFDEAF4E589ED3F1FF187A86B9408C ] C:\Windows\System32\comctl32.dll
13:02:30.0572 0968 C:\Windows\System32\comctl32.dll - ok
13:02:30.0588 0968 [ 06FEC9E8117103BB1141A560E98077DA ] C:\Windows\System32\devobj.dll
13:02:30.0588 0968 C:\Windows\System32\devobj.dll - ok
13:02:30.0588 0968 [ 884415BD4269C02EAF8E2613BF85500D ] C:\Windows\System32\msasn1.dll
13:02:30.0588 0968 C:\Windows\System32\msasn1.dll - ok
13:02:30.0603 0968 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] C:\Windows\System32\drivers\ndproxy.sys
13:02:30.0603 0968 C:\Windows\System32\drivers\ndproxy.sys - ok
13:02:30.0603 0968 [ 9C278785347BCC991F8EA2999D90F58D ] C:\Windows\SysWOW64\normaliz.dll
13:02:30.0603 0968 C:\Windows\SysWOW64\normaliz.dll - ok
13:02:30.0619 0968 [ BF24D6F2ED97FE830BFD52B246F98E67 ] C:\Windows\System32\drivers\dxapi.sys
13:02:30.0619 0968 C:\Windows\System32\drivers\dxapi.sys - ok
13:02:30.0619 0968 [ F0D6864A7D52CE137E0A9D24795C3F0E ] C:\Windows\System32\win32k.sys
13:02:30.0619 0968 C:\Windows\System32\win32k.sys - ok
13:02:30.0635 0968 [ 60C2862B4BF0FD9F582EF344C2B1EC72 ] C:\Windows\System32\csrss.exe
13:02:30.0635 0968 C:\Windows\System32\csrss.exe - ok
13:02:30.0635 0968 [ 96F587CA26A6AA894BD8CACE4540CFFC ] C:\Windows\System32\csrsrv.dll
13:02:30.0635 0968 C:\Windows\System32\csrsrv.dll - ok
13:02:30.0650 0968 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\System32\basesrv.dll
13:02:30.0650 0968 C:\Windows\System32\basesrv.dll - ok
13:02:30.0650 0968 [ EB6A48CC998E1090E44E8E7F1009A640 ] C:\Windows\System32\winsrv.dll
13:02:30.0650 0968 C:\Windows\System32\winsrv.dll - ok
13:02:30.0666 0968 [ FEDE0629ECB23650D48989517D4914DA ] C:\Windows\System32\drivers\dxg.sys
13:02:30.0666 0968 C:\Windows\System32\drivers\dxg.sys - ok
13:02:30.0666 0968 [ CCA2AB1752A61F29C3C941CD79D78CEA ] C:\Windows\System32\drivers\usbd.sys
13:02:30.0666 0968 C:\Windows\System32\drivers\usbd.sys - ok
13:02:30.0681 0968 [ FED648B01349A3C8395A5169DB5FB7D6 ] C:\Windows\System32\drivers\USBSTOR.SYS
13:02:30.0681 0968 C:\Windows\System32\drivers\USBSTOR.SYS - ok
13:02:30.0697 0968 [ F29FE765E1448EF371CFE05BFAC74ADB ] C:\Windows\System32\tsddd.dll
13:02:30.0697 0968 C:\Windows\System32\tsddd.dll - ok
13:02:30.0697 0968 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\System32\sxssrv.dll
13:02:30.0697 0968 C:\Windows\System32\sxssrv.dll - ok
13:02:30.0713 0968 [ 94355C28C1970635A31B3FE52EB7CEBA ] C:\Windows\System32\wininit.exe
13:02:30.0713 0968 C:\Windows\System32\wininit.exe - ok
13:02:30.0713 0968 [ 2C942733A5983DD4502219FF37C7EBC7 ] C:\Windows\System32\profapi.dll
13:02:30.0713 0968 C:\Windows\System32\profapi.dll - ok
13:02:30.0728 0968 [ 8BEC4D6AD2864EDF68D9AD0C6AA6C6D1 ] C:\Windows\System32\vga.dll
13:02:30.0728 0968 C:\Windows\System32\vga.dll - ok
13:02:30.0728 0968 [ E30B04A8FE665C52162D70233ABEA9A3 ] C:\Windows\System32\framebuf.dll
13:02:30.0728 0968 C:\Windows\System32\framebuf.dll - ok
13:02:30.0744 0968 [ C2A8CB1275ECB85D246A9ECC02A728E3 ] C:\Windows\System32\RpcRtRemote.dll
13:02:30.0744 0968 C:\Windows\System32\RpcRtRemote.dll - ok
13:02:30.0744 0968 [ 1151B1BAA6F350B1DB6598E0FEA7C457 ] C:\Windows\System32\winlogon.exe
13:02:30.0744 0968 C:\Windows\System32\winlogon.exe - ok
13:02:30.0759 0968 [ 78523A26F5604C0568FE9D1CE86E36F4 ] C:\Windows\System32\KBDUS.DLL
13:02:30.0759 0968 C:\Windows\System32\KBDUS.DLL - ok
13:02:30.0759 0968 [ 0D9764D58C5EFD672B7184854B152E5E ] C:\Windows\System32\winsta.dll
13:02:30.0759 0968 C:\Windows\System32\winsta.dll - ok
13:02:30.0775 0968 [ B26B1801356760841C3BC69F9F91537F ] C:\Windows\System32\WlS0WndH.dll
13:02:30.0775 0968 C:\Windows\System32\WlS0WndH.dll - ok
13:02:30.0775 0968 [ 9CEAD32E79A62150FE9F8557E58E008B ] C:\Windows\System32\sxs.dll
13:02:30.0775 0968 C:\Windows\System32\sxs.dll - ok
13:02:30.0791 0968 [ 784FA3DF338E2E8F5F0389D6FAC428AF ] C:\Windows\System32\cryptbase.dll
13:02:30.0791 0968 C:\Windows\System32\cryptbase.dll - ok
13:02:30.0791 0968 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\System32\services.exe
13:02:30.0791 0968 C:\Windows\System32\services.exe - ok
13:02:30.0806 0968 [ C118A82CD78818C29AB228366EBF81C3 ] C:\Windows\System32\lsass.exe
13:02:30.0806 0968 C:\Windows\System32\lsass.exe - ok
13:02:30.0822 0968 [ 9662EE182644511439F1C53745DC1C88 ] C:\Windows\System32\lsm.exe
13:02:30.0822 0968 C:\Windows\System32\lsm.exe - ok
13:02:30.0822 0968 [ 3A0CE5FE781708CD6ABD55313607EC8B ] C:\Windows\System32\sspisrv.dll
13:02:30.0822 0968 C:\Windows\System32\sspisrv.dll - ok
13:02:30.0837 0968 [ B66BC8B20B7F33975865B1DF99783FD8 ] C:\Windows\System32\sspicli.dll
13:02:30.0837 0968 C:\Windows\System32\sspicli.dll - ok
13:02:30.0837 0968 [ 66A6063D0BAAD3F7B2B9868859E0743B ] C:\Windows\System32\lsasrv.dll
13:02:30.0837 0968 C:\Windows\System32\lsasrv.dll - ok
13:02:30.0853 0968 [ 68083118797CAF30FB2EA3E71494D67E ] C:\Windows\System32\sysntfy.dll
13:02:30.0853 0968 C:\Windows\System32\sysntfy.dll - ok
13:02:30.0853 0968 [ E914A50A151DFFE63D3935226DB5E2C1 ] C:\Windows\System32\scext.dll
13:02:30.0853 0968 C:\Windows\System32\scext.dll - ok
13:02:30.0869 0968 [ 0144D8D75A0B12938AEEE859E3310A46 ] C:\Windows\System32\secur32.dll
13:02:30.0869 0968 C:\Windows\System32\secur32.dll - ok
13:02:30.0869 0968 [ DEE7267C5D232A3B816866872CE199E6 ] C:\Windows\System32\wmsgapi.dll
13:02:30.0869 0968 C:\Windows\System32\wmsgapi.dll - ok
13:02:30.0884 0968 [ BBCDF350817BA86416C0F06B6981BE8D ] C:\Windows\System32\scesrv.dll
13:02:30.0884 0968 C:\Windows\System32\scesrv.dll - ok
13:02:30.0884 0968 [ A744BA6E04C8AA4592818178DBF89521 ] C:\Windows\System32\samsrv.dll
13:02:30.0884 0968 C:\Windows\System32\samsrv.dll - ok
13:02:30.0900 0968 [ 3A9C9BAF610B0DD4967086040B3B62A9 ] C:\Windows\System32\srvcli.dll
13:02:30.0900 0968 C:\Windows\System32\srvcli.dll - ok
13:02:30.0900 0968 [ 3A061472B38233BAFF9CFEFF2E49C46B ] C:\Windows\System32\cryptdll.dll
13:02:30.0900 0968 C:\Windows\System32\cryptdll.dll - ok
13:02:30.0915 0968 [ 3C073B0C596A0AF84933E7406766B040 ] C:\Windows\System32\wevtapi.dll
13:02:30.0915 0968 C:\Windows\System32\wevtapi.dll - ok
13:02:30.0915 0968 [ 86FE1B1F8FD42CD0DB641AB1CDB13093 ] C:\Windows\System32\cngaudit.dll
13:02:30.0915 0968 C:\Windows\System32\cngaudit.dll - ok
13:02:30.0931 0968 [ 7FBEBD2229EA5FD48D41B199EC2D541C ] C:\Windows\System32\authz.dll
13:02:30.0931 0968 C:\Windows\System32\authz.dll - ok
13:02:30.0947 0968 [ 400645085A91BF3EB0271329B95AE0BE ] C:\Windows\System32\ncrypt.dll
13:02:30.0947 0968 C:\Windows\System32\ncrypt.dll - ok
13:02:30.0947 0968 [ B9A95365E52F421A20E1501935FADDA5 ] C:\Windows\System32\bcrypt.dll
13:02:30.0947 0968 C:\Windows\System32\bcrypt.dll - ok
13:02:30.0962 0968 [ 02B64609F865A39365FF88580DF11738 ] C:\Windows\System32\msprivs.dll
13:02:30.0962 0968 C:\Windows\System32\msprivs.dll - ok
13:02:30.0962 0968 [ C6505DE3561537BA1004D638C2F93F2F ] C:\Windows\System32\netjoin.dll
13:02:30.0962 0968 C:\Windows\System32\netjoin.dll - ok
13:02:30.0978 0968 [ 50532FCD7ECF02DD169CE5C485F02534 ] C:\Windows\System32\negoexts.dll
13:02:30.0978 0968 C:\Windows\System32\negoexts.dll - ok
13:02:30.0978 0968 [ 16ECE8BD6734CC170B9AE74176E89A9B ] C:\Windows\System32\kerberos.dll
13:02:30.0978 0968 C:\Windows\System32\kerberos.dll - ok
13:02:30.0993 0968 [ D0C2FBB6D97416B0166478FC7AE2B212 ] C:\Windows\System32\cryptsp.dll
13:02:30.0993 0968 C:\Windows\System32\cryptsp.dll - ok
13:02:31.0009 0968 [ 1D5185A4C7E6695431AE4B55C3D7D333 ] C:\Windows\System32\mswsock.dll
13:02:31.0009 0968 C:\Windows\System32\mswsock.dll - ok
13:02:31.0009 0968 [ EC7CBFF96B05ECF3D366355B3C64ADCF ] C:\Windows\System32\wship6.dll
13:02:31.0009 0968 C:\Windows\System32\wship6.dll - ok
13:02:31.0025 0968 [ EF12B8385AA2849999008A977918F96B ] C:\Windows\System32\msv1_0.dll
13:02:31.0025 0968 C:\Windows\System32\msv1_0.dll - ok
13:02:31.0025 0968 [ 4AC74A462F3A0506B929F599B5E1B1FB ] C:\Windows\System32\atmfd.dll
13:02:31.0025 0968 C:\Windows\System32\atmfd.dll - ok
13:02:31.0040 0968 [ AA339DD8BB128EF66660DFBBB59043D3 ] C:\Windows\System32\netlogon.dll
13:02:31.0040 0968 C:\Windows\System32\netlogon.dll - ok
13:02:31.0040 0968 [ 492D07D79E7024CA310867B526D9636D ] C:\Windows\System32\dnsapi.dll
13:02:31.0040 0968 C:\Windows\System32\dnsapi.dll - ok
13:02:31.0056 0968 [ 8FFE297B8449386E7B6851458B6E474E ] C:\Windows\System32\logoncli.dll
13:02:31.0056 0968 C:\Windows\System32\logoncli.dll - ok
13:02:31.0056 0968 [ 1573C45E65DE32B1BC3572634F8F1E8E ] C:\Windows\System32\schannel.dll
13:02:31.0056 0968 C:\Windows\System32\schannel.dll - ok
13:02:31.0071 0968 [ 95FB6CA4374E343DDD653FCC43F9D26B ] C:\Windows\System32\wdigest.dll
13:02:31.0071 0968 C:\Windows\System32\wdigest.dll - ok
13:02:31.0071 0968 [ 5D8874A8C11DDDDE29E12DE0E2013493 ] C:\Windows\System32\rsaenh.dll
13:02:31.0071 0968 C:\Windows\System32\rsaenh.dll - ok
13:02:31.0087 0968 [ 8A25506B6948EFBD5A7F37E53CCD36D9 ] C:\Windows\System32\TSpkg.dll
13:02:31.0087 0968 C:\Windows\System32\TSpkg.dll - ok
13:02:31.0087 0968 [ E08088A97F95345E181C3DFCE2C615EF ] C:\Windows\System32\pku2u.dll
13:02:31.0087 0968 C:\Windows\System32\pku2u.dll - ok
13:02:31.0103 0968 [ 55C892560C1B42BC57FB61AEFCED2F22 ] C:\Windows\System32\LIVESSP.DLL
13:02:31.0103 0968 C:\Windows\System32\LIVESSP.DLL - ok
13:02:31.0103 0968 [ D6C7780A364C6BBACFA796BAB9F1B374 ] C:\Windows\System32\bcryptprimitives.dll
13:02:31.0103 0968 C:\Windows\System32\bcryptprimitives.dll - ok
13:02:31.0118 0968 [ 90BDEFC5DF334E5100EAA781D798DE1A ] C:\Windows\System32\efslsaext.dll
13:02:31.0118 0968 C:\Windows\System32\efslsaext.dll - ok
13:02:31.0134 0968 [ 52D3D5E3586988D4D9E34ACAAC33105C ] C:\Windows\System32\credssp.dll
13:02:31.0134 0968 C:\Windows\System32\credssp.dll - ok
13:02:31.0134 0968 [ ED78427259134C63ED69804D2132B86C ] C:\Windows\System32\scecli.dll
13:02:31.0134 0968 C:\Windows\System32\scecli.dll - ok
13:02:31.0149 0968 [ 7CC7DF5B654DA579613F811D8C637E29 ] C:\Windows\System32\ubpm.dll
13:02:31.0149 0968 C:\Windows\System32\ubpm.dll - ok
13:02:31.0149 0968 [ C78655BC80301D76ED4FEF1C1EA40A7D ] C:\Windows\System32\svchost.exe
13:02:31.0149 0968 C:\Windows\System32\svchost.exe - ok
13:02:31.0165 0968 [ 25FBDEF06C4D92815B353F6E792C8129 ] C:\Windows\System32\umpnpmgr.dll
13:02:31.0165 0968 C:\Windows\System32\umpnpmgr.dll - ok
13:02:31.0165 0968 [ E6EB44ABAAF1F330119F854856C53EBE ] C:\Windows\System32\SPInf.dll
13:02:31.0165 0968 C:\Windows\System32\SPInf.dll - ok
13:02:31.0181 0968 [ CD1B5AD07E5F7FEF30E055DCC9E96180 ] C:\Windows\System32\devrtl.dll
13:02:31.0181 0968 C:\Windows\System32\devrtl.dll - ok
13:02:31.0181 0968 [ 7A17485DC7D8A7AC81321A42CD034519 ] C:\Windows\System32\userenv.dll
13:02:31.0181 0968 C:\Windows\System32\userenv.dll - ok
13:02:31.0196 0968 [ 9C9307C95671AC962F3D6EB3A4A89BAE ] C:\Windows\System32\gpapi.dll
13:02:31.0196 0968 C:\Windows\System32\gpapi.dll - ok
13:02:31.0196 0968 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] C:\Windows\System32\umpo.dll
13:02:31.0196 0968 C:\Windows\System32\umpo.dll - ok
13:02:31.0212 0968 [ F6C011B46FAEEF33536B2E80F48B5CBE ] C:\Windows\System32\pcwum.dll
13:02:31.0212 0968 C:\Windows\System32\pcwum.dll - ok
13:02:31.0212 0968 [ 716175021BDA290504CE434273F666BC ] C:\Windows\System32\powrprof.dll
13:02:31.0212 0968 C:\Windows\System32\powrprof.dll - ok
13:02:31.0227 0968 [ D3381DC54C34D79B22CEE0D65BA91B7C ] C:\Windows\System32\drivers\WUDFPf.sys
13:02:31.0227 0968 C:\Windows\System32\drivers\WUDFPf.sys - ok
13:02:31.0227 0968 [ 5C627D1B1138676C0A7AB2C2C190D123 ] C:\Windows\System32\rpcss.dll
13:02:31.0227 0968 C:\Windows\System32\rpcss.dll - ok
13:02:31.0243 0968 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] C:\Windows\System32\RpcEpMap.dll
13:02:31.0243 0968 C:\Windows\System32\RpcEpMap.dll - ok
13:02:31.0259 0968 [ 31559F3244C6BC00A52030CAA83B6B91 ] C:\Windows\System32\WSHTCPIP.DLL
13:02:31.0259 0968 C:\Windows\System32\WSHTCPIP.DLL - ok
13:02:31.0259 0968 [ 16E964ABF6D1E0F0CC7822FCA9BA754D ] C:\Windows\System32\wshqos.dll
13:02:31.0259 0968 C:\Windows\System32\wshqos.dll - ok
13:02:31.0274 0968 [ 9AD9E06F8656F296D91FAE8EE5B95A27 ] C:\Windows\System32\FirewallAPI.dll
13:02:31.0274 0968 C:\Windows\System32\FirewallAPI.dll - ok
13:02:31.0274 0968 [ 715F03B4C7223349768013EA95D9E5B7 ] C:\Windows\System32\LogonUI.exe
13:02:31.0274 0968 C:\Windows\System32\LogonUI.exe - ok
13:02:31.0290 0968 [ 0BEE002C68E28CE6DA161DCF1376D7D7 ] C:\Windows\System32\authui.dll
13:02:31.0290 0968 C:\Windows\System32\authui.dll - ok
13:02:31.0290 0968 [ 94E026870A55AAEAFF7853C1754091E9 ] C:\Windows\System32\version.dll
13:02:31.0290 0968 C:\Windows\System32\version.dll - ok
13:02:31.0305 0968 [ B3BFBD758506ECB50C5804AAA76318F9 ] C:\Windows\System32\cryptui.dll
13:02:31.0305 0968 C:\Windows\System32\cryptui.dll - ok
13:02:31.0321 0968 [ 6011714C8C5C55CBFFAD24D61E879FBD ] C:\Windows\System32\wevtsvc.dll
13:02:31.0321 0968 C:\Windows\System32\wevtsvc.dll - ok
13:02:31.0321 0968 [ 7FA8FDC2C2A27817FD0F624E78D3B50C ] C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac\comctl32.dll
13:02:31.0321 0968 C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac\comctl32.dll - ok
13:02:31.0337 0968 [ 4E9C2DB10F7E6AE91BF761139D4B745B ] C:\Windows\System32\shacct.dll
13:02:31.0337 0968 C:\Windows\System32\shacct.dll - ok
13:02:31.0337 0968 [ 5B3EBFC3DA142324B388DDCC4465E1FF ] C:\Windows\System32\samlib.dll
13:02:31.0337 0968 C:\Windows\System32\samlib.dll - ok
13:02:31.0352 0968 [ 53E83F1F6CF9D62F32801CF66D8352A8 ] C:\Windows\System32\profsvc.dll
13:02:31.0352 0968 C:\Windows\System32\profsvc.dll - ok
13:02:31.0352 0968 [ F06BB4E336EA57511FDBAFAFCC47DE62 ] C:\Windows\System32\propsys.dll
13:02:31.0352 0968 C:\Windows\System32\propsys.dll - ok
13:02:31.0368 0968 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] C:\Windows\System32\wlansvc.dll
13:02:31.0368 0968 C:\Windows\System32\wlansvc.dll - ok
13:02:31.0368 0968 [ 58775492FFD419248B08325E583C527F ] C:\Windows\System32\atl.dll
13:02:31.0368 0968 C:\Windows\System32\atl.dll - ok
13:02:31.0383 0968 [ D29E998E8277666982B4F0303BF4E7AF ] C:\Windows\System32\uxtheme.dll
13:02:31.0383 0968 C:\Windows\System32\uxtheme.dll - ok
13:02:31.0383 0968 [ 7A95C95B6C4CF292D689106BCAE49543 ] C:\Windows\System32\WUDFSvc.dll
13:02:31.0383 0968 C:\Windows\System32\WUDFSvc.dll - ok
13:02:31.0399 0968 [ 80E69670BDA10F32A941BA7358E33012 ] C:\Windows\System32\WUDFPlatform.dll
13:02:31.0399 0968 C:\Windows\System32\WUDFPlatform.dll - ok
13:02:31.0399 0968 [ 588CD0C78A7FAAE4186B5EEA0AF3ED67 ] C:\Windows\System32\adtschema.dll
13:02:31.0399 0968 C:\Windows\System32\adtschema.dll - ok
13:02:31.0415 0968 [ 179E8401224D557ECFF3695F2016EA5B ] C:\Windows\winsxs\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.17825_none_2b253c8271ec7765\GdiPlus.dll
13:02:31.0415 0968 C:\Windows\winsxs\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.17825_none_2b253c8271ec7765\GdiPlus.dll - ok
13:02:31.0415 0968 [ FE05D03B73000CFF476E1D29109F3A84 ] C:\Program Files\Windows Defender\MpEvMsg.dll
13:02:31.0415 0968 C:\Program Files\Windows Defender\MpEvMsg.dll - ok
13:02:31.0430 0968 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] C:\Windows\System32\drivers\nwifi.sys
13:02:31.0430 0968 C:\Windows\System32\drivers\nwifi.sys - ok
13:02:31.0446 0968 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] C:\Windows\System32\netprofm.dll
13:02:31.0446 0968 C:\Windows\System32\netprofm.dll - ok
13:02:31.0446 0968 [ 136185F9FB2CC61E573E676AA5402356 ] C:\Windows\System32\drivers\ndisuio.sys
13:02:31.0446 0968 C:\Windows\System32\drivers\ndisuio.sys - ok
13:02:31.0461 0968 [ 50544D04AD845C43130B70212EC05CCD ] C:\Windows\System32\microsoft-windows-kernel-power-events.dll
13:02:31.0461 0968 C:\Windows\System32\microsoft-windows-kernel-power-events.dll - ok
13:02:31.0461 0968 [ F993A32249B66C9D622EA5592A8B76B8 ] C:\Windows\System32\lmhsvc.dll
13:02:31.0461 0968 C:\Windows\System32\lmhsvc.dll - ok
13:02:31.0477 0968 [ D54BFDF3E0C953F823B3D0BFE4732528 ] C:\Windows\System32\nsisvc.dll
13:02:31.0477 0968 C:\Windows\System32\nsisvc.dll - ok
13:02:31.0477 0968 [ 2B81776DA02017A37FE26C662827470E ] C:\Windows\System32\IPHLPAPI.DLL
13:02:31.0477 0968 C:\Windows\System32\IPHLPAPI.DLL - ok
13:02:31.0493 0968 [ F9EC845C5EECF20E9A67F9F805F2EF1F ] C:\Windows\System32\keyiso.dll
13:02:31.0493 0968 C:\Windows\System32\keyiso.dll - ok
13:02:31.0508 0968 [ 3CB6A7286422C72C34DAB54A5DFF1A34 ] C:\Windows\System32\dui70.dll
13:02:31.0508 0968 C:\Windows\System32\dui70.dll - ok
13:02:31.0508 0968 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] C:\Windows\System32\dnsrslvr.dll
13:02:31.0508 0968 C:\Windows\System32\dnsrslvr.dll - ok
13:02:31.0524 0968 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] C:\Windows\System32\eapsvc.dll
13:02:31.0524 0968 C:\Windows\System32\eapsvc.dll - ok
13:02:31.0524 0968 [ 87356377F31DA5F20A833811CD59499C ] C:\Windows\System32\eapphost.dll
13:02:31.0524 0968 C:\Windows\System32\eapphost.dll - ok
13:02:31.0539 0968 [ 4C9210E8F4E052F6A4EB87716DA0C24C ] C:\Windows\System32\winnsi.dll
13:02:31.0539 0968 C:\Windows\System32\winnsi.dll - ok
13:02:31.0539 0968 [ B73A6E4B319AFFE64582AC5C1801BB3F ] C:\Windows\System32\nrpsrv.dll
13:02:31.0539 0968 C:\Windows\System32\nrpsrv.dll - ok
13:02:31.0555 0968 [ 0040C486584A8E582C861CFB57AB5387 ] C:\Windows\System32\FWPUCLNT.DLL
13:02:31.0555 0968 C:\Windows\System32\FWPUCLNT.DLL - ok
13:02:31.0555 0968 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] C:\Windows\System32\dhcpcore.dll
13:02:31.0555 0968 C:\Windows\System32\dhcpcore.dll - ok
13:02:31.0571 0968 [ 8CCDE014A4CDF84564E03ACE064CA753 ] C:\Windows\System32\duser.dll
13:02:31.0571 0968 C:\Windows\System32\duser.dll - ok
13:02:31.0571 0968 [ 54FFC9C8898113ACE189D4AA7199D2C1 ] C:\Windows\System32\MPSSVC.dll
13:02:31.0571 0968 C:\Windows\System32\MPSSVC.dll - ok
13:02:31.0586 0968 [ 885D0942E0F28DB90919BE3129ECF279 ] C:\Windows\System32\dnsext.dll
13:02:31.0586 0968 C:\Windows\System32\dnsext.dll - ok
13:02:31.0586 0968 [ 9FCA3A84338ADEF2AFF67CDA46EF8539 ] C:\Windows\System32\umb.dll
13:02:31.0586 0968 C:\Windows\System32\umb.dll - ok
13:02:31.0602 0968 [ BD3674BE7FC9D8D3732C83E8499576ED ] C:\Windows\System32\wtsapi32.dll
13:02:31.0602 0968 C:\Windows\System32\wtsapi32.dll - ok
13:02:31.0602 0968 [ F568F7C08458D69E4FCD8675BBB107E4 ] C:\Windows\System32\dhcpcsvc.dll
13:02:31.0602 0968 C:\Windows\System32\dhcpcsvc.dll - ok
13:02:31.0617 0968 [ A77BE7CB3222B4FB0AC6C71D1C2698D4 ] C:\Windows\System32\dsrole.dll
13:02:31.0617 0968 C:\Windows\System32\dsrole.dll - ok
13:02:31.0633 0968 [ D7F1EF374A90709B31591823B002F918 ] C:\Windows\System32\SndVolSSO.dll
13:02:31.0633 0968 C:\Windows\System32\SndVolSSO.dll - ok
13:02:31.0633 0968 [ A648C4A06DE367065B24056D067B4460 ] C:\Windows\System32\wlanmsm.dll
13:02:31.0633 0968 C:\Windows\System32\wlanmsm.dll - ok
13:02:31.0649 0968 [ 4CBCC37856EA2039C27A2FB661DDA0E5 ] C:\Windows\System32\dhcpcsvc6.dll
13:02:31.0649 0968 C:\Windows\System32\dhcpcsvc6.dll - ok
13:02:31.0649 0968 [ 896F15A6434D93EDB42519D5E18E6B50 ] C:\Windows\System32\hid.dll
13:02:31.0649 0968 C:\Windows\System32\hid.dll - ok
13:02:31.0664 0968 [ 227E2C382A1E02F8D4965E664D3BBE43 ] C:\Windows\System32\MMDevAPI.dll
13:02:31.0664 0968 C:\Windows\System32\MMDevAPI.dll - ok
13:02:31.0664 0968 [ DA1B7075260F3872585BFCDD668C648B ] C:\Windows\System32\dwmapi.dll
13:02:31.0664 0968 C:\Windows\System32\dwmapi.dll - ok
13:02:31.0680 0968 [ 06A1386B6E3A0CBC368665C1840906F4 ] C:\Windows\System32\wlansec.dll
13:02:31.0680 0968 C:\Windows\System32\wlansec.dll - ok
13:02:31.0680 0968 [ 71C7B65B6557B75B99907E76956AE4B8 ] C:\Windows\System32\dhcpcore6.dll
13:02:31.0680 0968 C:\Windows\System32\dhcpcore6.dll - ok
13:02:31.0695 0968 [ 6F8B48F3D343E4B186AB6A9E302B7E16 ] C:\Windows\System32\xmllite.dll
13:02:31.0695 0968 C:\Windows\System32\xmllite.dll - ok
13:02:31.0695 0968 [ DA6B67270FD9DB3697B20FCE94950741 ] C:\Windows\System32\drivers\fltMgr.sys
13:02:31.0695 0968 C:\Windows\System32\drivers\fltMgr.sys - ok
13:02:31.0711 0968 [ 73FCB7919DEE80EE556F2E498594EBAE ] C:\Windows\System32\onex.dll
13:02:31.0711 0968 C:\Windows\System32\onex.dll - ok
13:02:31.0711 0968 [ A3DB3C17EE6CAE65D53602B4E80BCCBC ] C:\Windows\System32\PSHED.DLL
13:02:31.0711 0968 C:\Windows\System32\PSHED.DLL - ok
13:02:31.0727 0968 [ 26B73A85855681500BCC25C7CD9FF5B1 ] C:\Windows\System32\WindowsCodecs.dll
13:02:31.0727 0968 C:\Windows\System32\WindowsCodecs.dll - ok
13:02:31.0727 0968 [ 65522E77A1360DBC8D199DA3BF5EFFE4 ] C:\Windows\System32\eappprxy.dll
13:02:31.0727 0968 C:\Windows\System32\eappprxy.dll - ok
13:02:31.0742 0968 [ 0D753307D274F3688BD21C377B616700 ] C:\Windows\System32\eappcfg.dll
13:02:31.0742 0968 C:\Windows\System32\eappcfg.dll - ok
13:02:31.0758 0968 [ 730BF204A595D5B6D7DC57A247CC741C ] C:\Windows\System32\wlgpclnt.dll
13:02:31.0758 0968 C:\Windows\System32\wlgpclnt.dll - ok
13:02:31.0758 0968 [ 97E43F324BE1503CB2FFB058534688DA ] C:\Windows\System32\l2gpstore.dll
13:02:31.0758 0968 C:\Windows\System32\l2gpstore.dll - ok
13:02:31.0773 0968 [ 7F1B4C6FF3B85F9ADF74055187B8A22C ] C:\Windows\System32\wlanutil.dll
13:02:31.0773 0968 C:\Windows\System32\wlanutil.dll - ok
13:02:31.0773 0968 [ 9F2BACD5E1776A4BB7CC0EC3C3A4F96D ] C:\Windows\System32\winbrand.dll
13:02:31.0773 0968 C:\Windows\System32\winbrand.dll - ok
13:02:31.0789 0968 [ 7D5645EE0EA77D539828433D9B95F5EB ] C:\Windows\System32\WinSCard.dll
13:02:31.0789 0968 C:\Windows\System32\WinSCard.dll - ok
13:02:31.0789 0968 [ CA2985996BB49924B677113DF95CFEA7 ] C:\Windows\System32\SmartcardCredentialProvider.dll
13:02:31.0789 0968 C:\Windows\System32\SmartcardCredentialProvider.dll - ok
13:02:31.0805 0968 [ 4FFDE68C4B7C9993FA551E7E36DDB34D ] C:\Windows\System32\msxml6.dll
13:02:31.0805 0968 C:\Windows\System32\msxml6.dll - ok
13:02:31.0820 0968 [ C2762A57DF0EE85E63CE4893C5215313 ] C:\Windows\System32\VaultCredProvider.dll
13:02:31.0820 0968 C:\Windows\System32\VaultCredProvider.dll - ok
13:02:31.0820 0968 [ 9BC8610C32C96A2983A65DC21CAFA921 ] C:\Windows\System32\UXInit.dll
13:02:31.0820 0968 C:\Windows\System32\UXInit.dll - ok
13:02:31.0836 0968 [ 673D6DE6D6E9D50CD5E9C78F0C916CB8 ] C:\Program Files (x86)\Common Files\Symantec Shared\ccSvcHst.exe
13:02:31.0836 0968 C:\Program Files (x86)\Common Files\Symantec Shared\ccSvcHst.exe - ok
13:02:31.0836 0968 [ E73B0F1819602CB6EF176FB78D76A47B ] C:\Windows\SysWOW64\ntdll.dll
13:02:31.0836 0968 C:\Windows\SysWOW64\ntdll.dll - ok
13:02:31.0851 0968 [ 03706015DB44368375AEBE6339490E66 ] C:\Windows\System32\netcfgx.dll
13:02:31.0851 0968 C:\Windows\System32\netcfgx.dll - ok
13:02:31.0851 0968 [ B1E3772FFA96AC5AEE89BF202AF8E348 ] C:\Windows\System32\wow64.dll
13:02:31.0851 0968 C:\Windows\System32\wow64.dll - ok
13:02:31.0867 0968 [ FC5A43FA257F546F8F2B96B5529857E1 ] C:\Windows\System32\wow64win.dll
13:02:31.0867 0968 C:\Windows\System32\wow64win.dll - ok
13:02:31.0867 0968 [ AA0D2571A4348838B8DD49FD0043826A ] C:\Windows\System32\wow64cpu.dll
13:02:31.0867 0968 C:\Windows\System32\wow64cpu.dll - ok
13:02:31.0883 0968 [ 99C3F8E9CC59D95666EB8D8A8B4C2BEB ] C:\Windows\SysWOW64\kernel32.dll
13:02:31.0883 0968 C:\Windows\SysWOW64\kernel32.dll - ok
13:02:31.0883 0968 [ 5C2D21C9B6B6175B89BC5D7E3CB979E1 ] C:\Windows\SysWOW64\KernelBase.dll
13:02:31.0883 0968 C:\Windows\SysWOW64\KernelBase.dll - ok
13:02:31.0898 0968 [ 928CF7268086631F54C3D8E17238C6DD ] C:\Windows\SysWOW64\ole32.dll
13:02:31.0898 0968 C:\Windows\SysWOW64\ole32.dll - ok
13:02:31.0898 0968 [ 9DC80A8AAAAAC397BDAB3C67165A824E ] C:\Windows\SysWOW64\msvcrt.dll
13:02:31.0898 0968 C:\Windows\SysWOW64\msvcrt.dll - ok
13:02:31.0914 0968 [ D6D3AD7BF1D6F6CE9547613ED5E170A2 ] C:\Windows\SysWOW64\gdi32.dll
13:02:31.0914 0968 C:\Windows\SysWOW64\gdi32.dll - ok
13:02:31.0914 0968 [ 5E0DB2D8B2750543CD2EBB9EA8E6CDD3 ] C:\Windows\SysWOW64\user32.dll
13:02:31.0914 0968 C:\Windows\SysWOW64\user32.dll - ok
13:02:31.0929 0968 [ 95E2376B3323F062EB562B8586D0F14A ] C:\Windows\SysWOW64\advapi32.dll
13:02:31.0929 0968 C:\Windows\SysWOW64\advapi32.dll - ok
13:02:31.0945 0968 [ 3C91392D448F6E5D525A85B7550D8BA9 ] C:\Windows\System32\wkscli.dll
13:02:31.0945 0968 C:\Windows\System32\wkscli.dll - ok
13:02:31.0945 0968 [ 6CECA4C6A489C9B2E6073AFDAAE3F607 ] C:\Windows\System32\netutils.dll
13:02:31.0945 0968 C:\Windows\System32\netutils.dll - ok
13:02:31.0961 0968 [ CFC97F07904067A1E5FAE195D534DA3A ] C:\Windows\SysWOW64\sechost.dll
13:02:31.0961 0968 C:\Windows\SysWOW64\sechost.dll - ok
13:02:31.0961 0968 [ FC51229C7D4AFA0D6F186133728B95AB ] C:\Windows\System32\samcli.dll
13:02:31.0961 0968 C:\Windows\System32\samcli.dll - ok
13:02:31.0976 0968 [ C5AD8083CF94201F1F8084ECC696A8B7 ] C:\Windows\SysWOW64\rpcrt4.dll
13:02:31.0976 0968 C:\Windows\SysWOW64\rpcrt4.dll - ok
13:02:31.0976 0968 [ EDA7AD21DF8945528F01F0A86D69E524 ] C:\Windows\SysWOW64\sspicli.dll
13:02:31.0976 0968 C:\Windows\SysWOW64\sspicli.dll - ok
13:02:31.0992 0968 [ F08F6FCD09F9BE94C37ACC1B344685FF ] C:\Windows\SysWOW64\cryptbase.dll
13:02:31.0992 0968 C:\Windows\SysWOW64\cryptbase.dll - ok
13:02:32.0007 0968 [ 5AA945234E9D4CCE4F715276B9AA712C ] C:\Windows\System32\imageres.dll
13:02:32.0007 0968 C:\Windows\System32\imageres.dll - ok
13:02:32.0007 0968 [ 384721EF4024890092625E20CADFAF85 ] C:\Windows\SysWOW64\lpk.dll
13:02:32.0007 0968 C:\Windows\SysWOW64\lpk.dll - ok
13:02:32.0007 0968 [ 804AAAFEBB3AD5F49334DD906BCB1DE5 ] C:\Windows\SysWOW64\usp10.dll
13:02:32.0007 0968 C:\Windows\SysWOW64\usp10.dll - ok
13:02:32.0023 0968 [ A94DC60A90EFD7A35C36D971E3EE7470 ] C:\Windows\SysWOW64\msvcp71.dll
13:02:32.0023 0968 C:\Windows\SysWOW64\msvcp71.dll - ok
13:02:32.0023 0968 [ 86F1895AE8C5E8B17D99ECE768A70732 ] C:\Windows\SysWOW64\msvcr71.dll
13:02:32.0023 0968 C:\Windows\SysWOW64\msvcr71.dll - ok
13:02:32.0039 0968 [ 63F4BF3579C953AFB10CE922584F4749 ] C:\Program Files (x86)\Common Files\Symantec Shared\ccL60U.dll
13:02:32.0039 0968 C:\Program Files (x86)\Common Files\Symantec Shared\ccL60U.dll - ok
13:02:32.0054 0968 [ 6C765E82B57F2E66CE9C54AC238471D9 ] C:\Windows\SysWOW64\oleaut32.dll
13:02:32.0054 0968 C:\Windows\SysWOW64\oleaut32.dll - ok
13:02:32.0054 0968 [ A6F09E5669D9A19035F6D942CAA15882 ] C:\Windows\SysWOW64\imm32.dll
13:02:32.0054 0968 C:\Windows\SysWOW64\imm32.dll - ok
13:02:32.0070 0968 [ C9618BC9B2B0FD7C1138D8774795A79B ] C:\Windows\SysWOW64\msctf.dll
13:02:32.0070 0968 C:\Windows\SysWOW64\msctf.dll - ok
13:02:32.0070 0968 [ 7FF15A4F092CD4A96055BA69F903E3E9 ] C:\Windows\SysWOW64\ws2_32.dll
13:02:32.0070 0968 C:\Windows\SysWOW64\ws2_32.dll - ok
13:02:32.0085 0968 [ 6377051C63D5552A311935C67E9FDFDC ] C:\Windows\SysWOW64\nsi.dll
13:02:32.0085 0968 C:\Windows\SysWOW64\nsi.dll - ok
13:02:32.0085 0968 [ 53223B673A3FA2F9A4D1C31C8D3F6CD8 ] C:\Windows\SysWOW64\dbghelp.dll
13:02:32.0085 0968 C:\Windows\SysWOW64\dbghelp.dll - ok
13:02:32.0101 0968 [ 702254574E7E52052DE39408457B7149 ] C:\Windows\SysWOW64\version.dll
13:02:32.0101 0968 C:\Windows\SysWOW64\version.dll - ok
13:02:32.0101 0968 [ 8CC3C111D653E96F3EA1590891491D71 ] C:\Windows\SysWOW64\shlwapi.dll
13:02:32.0101 0968 C:\Windows\SysWOW64\shlwapi.dll - ok
13:02:32.0117 0968 [ F13DFCA66A3230DCBF0DE2B8FA0C99AE ] C:\Program Files (x86)\Common Files\Symantec Shared\ccVrTrst.dll
13:02:32.0117 0968 C:\Program Files (x86)\Common Files\Symantec Shared\ccVrTrst.dll - ok
13:02:32.0132 0968 [ 10FB16B50AFFDA6D44588F3C445DC273 ] C:\Windows\SysWOW64\setupapi.dll
13:02:32.0132 0968 C:\Windows\SysWOW64\setupapi.dll - ok
13:02:32.0132 0968 [ F436E847FA799ECD75AD8C313673F450 ] C:\Windows\SysWOW64\cfgmgr32.dll
13:02:32.0132 0968 C:\Windows\SysWOW64\cfgmgr32.dll - ok
13:02:32.0148 0968 [ 2EEFF4502F5E13B1BED4A04CCAD64C08 ] C:\Windows\SysWOW64\devobj.dll
13:02:32.0148 0968 C:\Windows\SysWOW64\devobj.dll - ok
13:02:32.0148 0968 [ DF13A51A5C591887D2EC6AE64CEED0FA ] C:\Windows\SysWOW64\wsock32.dll
13:02:32.0148 0968 C:\Windows\SysWOW64\wsock32.dll - ok
13:02:32.0163 0968 [ 1295338CFE6F249823EF9BC8D4368A84 ] C:\Windows\SysWOW64\crypt32.dll
13:02:32.0163 0968 C:\Windows\SysWOW64\crypt32.dll - ok
13:02:32.0163 0968 [ 938F39B50BAFE13D6F58C7790682C010 ] C:\Windows\SysWOW64\msasn1.dll
13:02:32.0163 0968 C:\Windows\SysWOW64\msasn1.dll - ok
13:02:32.0179 0968 [ A7D79E9F660340AB20CD73F12910985F ] C:\Windows\SysWOW64\wintrust.dll
13:02:32.0179 0968 C:\Windows\SysWOW64\wintrust.dll - ok
13:02:32.0179 0968 [ 7321F18D1F820612ED0E9F2D4B578A7E ] C:\Windows\SysWOW64\cryptsp.dll
13:02:32.0179 0968 C:\Windows\SysWOW64\cryptsp.dll - ok
13:02:32.0195 0968 [ ED8EC63F7522DF4852147C84EC62C36A ] C:\Windows\SysWOW64\rsaenh.dll
13:02:32.0195 0968 C:\Windows\SysWOW64\rsaenh.dll - ok
13:02:32.0195 0968 [ B2DB6ABA2E292235749B80A9C3DFA867 ] C:\Windows\SysWOW64\imagehlp.dll
13:02:32.0195 0968 C:\Windows\SysWOW64\imagehlp.dll - ok
13:02:32.0210 0968 [ 591FE0A6CEB19BF886CEB1331F591940 ] C:\Windows\SysWOW64\ncrypt.dll
13:02:32.0210 0968 C:\Windows\SysWOW64\ncrypt.dll - ok
13:02:32.0210 0968 [ CE71B9119A258EDD0A05B37D7B0F92E3 ] C:\Windows\SysWOW64\bcrypt.dll
13:02:32.0210 0968 C:\Windows\SysWOW64\bcrypt.dll - ok
13:02:32.0226 0968 [ E8449FE262D7406BCB2AC2A45C53EC5F ] C:\Windows\SysWOW64\bcryptprimitives.dll
13:02:32.0226 0968 C:\Windows\SysWOW64\bcryptprimitives.dll - ok
13:02:32.0226 0968 [ 893C44082C97F7AED3E7C180FA1F93D8 ] C:\Windows\System32\mpnotify.exe
13:02:32.0226 0968 C:\Windows\System32\mpnotify.exe - ok
13:02:32.0241 0968 [ D15618A0FF8DBC2C5BF3726BACC75A0B ] C:\Windows\SysWOW64\userenv.dll
13:02:32.0241 0968 C:\Windows\SysWOW64\userenv.dll - ok
13:02:32.0257 0968 [ C733D233B623B7FFCE5031E4B756EE26 ] C:\Windows\SysWOW64\profapi.dll
13:02:32.0257 0968 C:\Windows\SysWOW64\profapi.dll - ok
13:02:32.0257 0968 [ 1097F3035BAF46CED8B332B3564C5108 ] C:\Windows\SysWOW64\gpapi.dll
13:02:32.0257 0968 C:\Windows\SysWOW64\gpapi.dll - ok
13:02:32.0273 0968 [ CC0B6CC8367063EC10ADB33C94ED5762 ] C:\Program Files (x86)\Common Files\Symantec Shared\ccSvc.dll
13:02:32.0273 0968 C:\Program Files (x86)\Common Files\Symantec Shared\ccSvc.dll - ok
13:02:32.0273 0968 [ 5997D769CDB108390DCFAEBF442BF816 ] C:\Windows\SysWOW64\RpcRtRemote.dll
13:02:32.0273 0968 C:\Windows\SysWOW64\RpcRtRemote.dll - ok
13:02:32.0288 0968 [ B8164A4AE966262AAFB8239038AB7D51 ] C:\Program Files (x86)\Common Files\Symantec Shared\ccSet.dll
13:02:32.0288 0968 C:\Program Files (x86)\Common Files\Symantec Shared\ccSet.dll - ok
13:02:32.0288 0968 [ 8FA28F0D60BDE4804AEAF61963D38D5D ] C:\PROGRA~2\COMMON~1\SYMANT~1\ccSetPlg.dll
13:02:32.0288 0968 C:\PROGRA~2\COMMON~1\SYMANT~1\ccSetPlg.dll - ok
13:02:32.0304 0968 [ 00C5AEFA7CF1914D49F6E94544A75E21 ] C:\PROGRA~2\COMMON~1\SYMANT~1\ccEvtPlg.dll
13:02:32.0304 0968 C:\PROGRA~2\COMMON~1\SYMANT~1\ccEvtPlg.dll - ok
13:02:32.0319 0968 [ 82974D6A2FD19445CC5171FC378668A4 ] C:\Windows\System32\BFE.DLL
13:02:32.0319 0968 C:\Windows\System32\BFE.DLL - ok
13:02:32.0319 0968 [ BE097F5BB10F9079FCEB2DC4E7E20F02 ] C:\Windows\System32\slc.dll
13:02:32.0319 0968 C:\Windows\System32\slc.dll - ok
13:02:32.0335 0968 [ 6C02A83164F5CC0A262F4199F0871CF5 ] C:\Windows\System32\drivers\bowser.sys
13:02:32.0335 0968 C:\Windows\System32\drivers\bowser.sys - ok
13:02:32.0335 0968 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] C:\Windows\System32\drivers\mpsdrv.sys
13:02:32.0335 0968 C:\Windows\System32\drivers\mpsdrv.sys - ok
13:02:32.0351 0968 [ 976DEE0E1C948BBFE9F30044FA68A273 ] C:\Program Files (x86)\Common Files\Symantec Shared\ccEvtCli.dll
13:02:32.0351 0968 C:\Program Files (x86)\Common Files\Symantec Shared\ccEvtCli.dll - ok
13:02:32.0351 0968 [ A5D9106A73DC88564C825D317CAC68AC ] C:\Windows\System32\drivers\mrxsmb.sys
13:02:32.0351 0968 C:\Windows\System32\drivers\mrxsmb.sys - ok
13:02:32.0366 0968 [ D711B3C1D5F42C0C2415687BE09FC163 ] C:\Windows\System32\drivers\mrxsmb10.sys
13:02:32.0366 0968 C:\Windows\System32\drivers\mrxsmb10.sys - ok
13:02:32.0366 0968 [ C67F8A962B2534224D5908D16D2AD3CE ] C:\Windows\System32\wfapigp.dll
13:02:32.0366 0968 C:\Windows\System32\wfapigp.dll - ok
13:02:32.0382 0968 [ F30B3183A89BBD26CF1473C2E492CCB4 ] C:\PROGRA~2\COMMON~1\SYMANT~1\SRTSP\Srtsp32.dll
13:02:32.0382 0968 C:\PROGRA~2\COMMON~1\SYMANT~1\SRTSP\Srtsp32.dll - ok
13:02:32.0382 0968 [ 29E9794708DF51DB5DC89FB2E903A0F6 ] C:\Windows\SysWOW64\shell32.dll
13:02:32.0382 0968 C:\Windows\SysWOW64\shell32.dll - ok
13:02:32.0397 0968 [ 1834B31C749B86DAC233BBBA1C03BC48 ] C:\Windows\System32\mscms.dll
13:02:32.0397 0968 C:\Windows\System32\mscms.dll - ok
13:02:32.0397 0968 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] C:\Windows\System32\drivers\mrxsmb20.sys
13:02:32.0397 0968 C:\Windows\System32\drivers\mrxsmb20.sys - ok
13:02:32.0413 0968 [ 851A1382EED3E3A7476DB004F4EE3E1A ] C:\Windows\System32\wkssvc.dll
13:02:32.0413 0968 C:\Windows\System32\wkssvc.dll - ok
13:02:32.0413 0968 [ 3AEAA8B561E63452C655DC0584922257 ] C:\Windows\System32\pcasvc.dll
13:02:32.0413 0968 C:\Windows\System32\pcasvc.dll - ok
13:02:32.0429 0968 [ 4F5414602E2544A4554D95517948B705 ] C:\Windows\System32\cryptsvc.dll
13:02:32.0429 0968 C:\Windows\System32\cryptsvc.dll - ok
13:02:32.0444 0968 [ 6CEF7856A3EFAC59470F6208F0F585CE ] C:\Windows\System32\mpr.dll
13:02:32.0444 0968 C:\Windows\System32\mpr.dll - ok
13:02:32.0444 0968 [ 6313F223E817CC09AA41811DAA7F541D ] C:\Windows\System32\snmptrap.exe
13:02:32.0444 0968 C:\Windows\System32\snmptrap.exe - ok
13:02:32.0460 0968 [ 5CB8F41094F54FCE1DF77C47CB5781D7 ] C:\Program Files (x86)\Symantec AntiVirus\Rtvscan.exe
13:02:32.0460 0968 C:\Program Files (x86)\Symantec AntiVirus\Rtvscan.exe - ok
13:02:32.0460 0968 [ 1D817D77C8EB600AB311AAC8E68B5A1A ] C:\Windows\System32\cryptnet.dll
13:02:32.0460 0968 C:\Windows\System32\cryptnet.dll - ok
13:02:32.0475 0968 [ A1EA60284DF7693B627927D75700B96C ] C:\Program Files\Common Files\Adobe\Adobe Drive CS4\AdobeDriveCS4_NP.dll
13:02:32.0475 0968 C:\Program Files\Common Files\Adobe\Adobe Drive CS4\AdobeDriveCS4_NP.dll - ok
13:02:32.0475 0968 [ 10EAB90C1AE8271B5FE5A8930987EE5C ] C:\Program Files\Windows Live\Mesh\WLRemoteServiceResource.dll
13:02:32.0475 0968 C:\Program Files\Windows Live\Mesh\WLRemoteServiceResource.dll - ok
13:02:32.0491 0968 [ 1EE99A89CC788ADA662441D1E9830529 ] C:\Windows\System32\nlasvc.dll
13:02:32.0491 0968 C:\Windows\System32\nlasvc.dll - ok
13:02:32.0507 0968 [ 1F4492FE41767CDB8B89D17655847CDD ] C:\Windows\System32\ntmarta.dll
13:02:32.0507 0968 C:\Windows\System32\ntmarta.dll - ok
13:02:32.0507 0968 [ 4A435F95B940E93A88FEC144BD409789 ] C:\Windows\System32\ncsi.dll
13:02:32.0507 0968 C:\Windows\System32\ncsi.dll - ok
13:02:32.0522 0968 [ 58F4493BF748A3A89689997B7BD00E95 ] C:\Windows\System32\winhttp.dll
13:02:32.0522 0968 C:\Windows\System32\winhttp.dll - ok
13:02:32.0522 0968 [ 908ACB1F594274965A53926B10C81E89 ] C:\Windows\System32\provsvc.dll
13:02:32.0522 0968 C:\Windows\System32\provsvc.dll - ok
13:02:32.0538 0968 [ 9FAC0F6D5F3D922DB294E30CD3F62369 ] C:\Windows\SysWOW64\urlmon.dll
13:02:32.0538 0968 C:\Windows\SysWOW64\urlmon.dll - ok
13:02:32.0538 0968 [ 603EBD34E216C5654A2D774EAC98D278 ] C:\Windows\System32\webio.dll
13:02:32.0538 0968 C:\Windows\System32\webio.dll - ok
13:02:32.0553 0968 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] C:\Windows\System32\sstpsvc.dll
13:02:32.0553 0968 C:\Windows\System32\sstpsvc.dll - ok
13:02:32.0553 0968 [ EB8A00E8E9931A7EC04F920B09D880D8 ] C:\Windows\SysWOW64\iertutil.dll
13:02:32.0553 0968 C:\Windows\SysWOW64\iertutil.dll - ok
13:02:32.0569 0968 [ 2BBF3FDB70B8965DFA0258CBAB41ECCE ] C:\Windows\System32\ssdpapi.dll
13:02:32.0569 0968 C:\Windows\System32\ssdpapi.dll - ok
13:02:32.0569 0968 [ 5553611E2F9EA6F613079177F1233068 ] C:\Windows\SysWOW64\wininet.dll
13:02:32.0569 0968 C:\Windows\SysWOW64\wininet.dll - ok
13:02:32.0585 0968 [ 52CE18E684CE9160D661BA39412C1FF1 ] C:\Windows\SysWOW64\cba.dll
13:02:32.0585 0968 C:\Windows\SysWOW64\cba.dll - ok
13:02:32.0585 0968 [ A8EDB86FC2A4D6D1285E4C70384AC35A ] C:\Windows\System32\dllhost.exe
13:02:32.0585 0968 C:\Windows\System32\dllhost.exe - ok
13:02:32.0600 0968 [ D7AC540307D60A767A1A64428663783C ] C:\Windows\SysWOW64\msgsys.dll
13:02:32.0600 0968 C:\Windows\SysWOW64\msgsys.dll - ok
13:02:32.0600 0968 [ 405FD66EF80221A65F35AC269B752235 ] C:\Windows\SysWOW64\nts.dll
13:02:32.0600 0968 C:\Windows\SysWOW64\nts.dll - ok
13:02:32.0616 0968 [ 14DFDEAF4E589ED3F1FF187A86B9408C ] C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.17514_none_a4d6a923711520a9\comctl32.dll
13:02:32.0616 0968 C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.17514_none_a4d6a923711520a9\comctl32.dll - ok
13:02:32.0631 0968 [ 813D861636F4A2BABAB8389D9E8ED7C8 ] C:\Program Files (x86)\Common Files\Symantec Shared\ccProSub.dll
13:02:32.0631 0968 C:\Program Files (x86)\Common Files\Symantec Shared\ccProSub.dll - ok
13:02:32.0631 0968 [ 8F734577D9321080566B218663E52560 ] C:\PROGRA~2\COMMON~1\SYMANT~1\ccSetEvt.dll
13:02:32.0631 0968 C:\PROGRA~2\COMMON~1\SYMANT~1\ccSetEvt.dll - ok
13:02:32.0647 0968 [ 8999B8631C7FD9F7F9EC3CAFD953BA24 ] C:\Windows\SysWOW64\mswsock.dll
13:02:32.0647 0968 C:\Windows\SysWOW64\mswsock.dll - ok
13:02:32.0647 0968 [ 1F1D608ABCC34CA2A5369C95B47605F0 ] C:\Windows\SysWOW64\atl71.dll
13:02:32.0647 0968 C:\Windows\SysWOW64\atl71.dll - ok
13:02:32.0663 0968 [ A0A2C1D812C231C9BFE119FDC68E341B ] C:\Windows\System32\IDStore.dll
13:02:32.0663 0968 C:\Windows\System32\IDStore.dll - ok
13:02:32.0663 0968 [ 2FCA0D2C59A855C54BAFA22AA329DF0F ] C:\Windows\SysWOW64\netapi32.dll
13:02:32.0663 0968 C:\Windows\SysWOW64\netapi32.dll - ok
13:02:32.0678 0968 [ 23566F9723771108D2E6CD768AC27407 ] C:\Windows\System32\AtBroker.exe
13:02:32.0678 0968 C:\Windows\System32\AtBroker.exe - ok
13:02:32.0694 0968 [ 20B3934DB73EABA2B49B7177873CB81F ] C:\Windows\SysWOW64\netutils.dll
13:02:32.0694 0968 C:\Windows\SysWOW64\netutils.dll - ok
13:02:32.0694 0968 [ BAFE84E637BF7388C96EF48D4D3FDD53 ] C:\Windows\System32\userinit.exe
13:02:32.0694 0968 C:\Windows\System32\userinit.exe - ok
13:02:32.0709 0968 [ 5CCDCD40E732D54E0F7451AC66AC1C87 ] C:\Windows\SysWOW64\srvcli.dll
13:02:32.0709 0968 C:\Windows\SysWOW64\srvcli.dll - ok
13:02:32.0709 0968 [ E5A4A1326A02F8E7B59E6C3270CE7202 ] C:\Windows\SysWOW64\wkscli.dll
13:02:32.0709 0968 C:\Windows\SysWOW64\wkscli.dll - ok
13:02:32.0725 0968 [ 332FEAB1435662FC6C672E25BEB37BE3 ] C:\Windows\explorer.exe
13:02:32.0725 0968 C:\Windows\explorer.exe - ok
13:02:32.0725 0968 [ CA8FB3101772060507416BC23EEBF13B ] C:\Windows\SysWOW64\pds.dll
13:02:32.0725 0968 C:\Windows\SysWOW64\pds.dll - ok
13:02:32.0741 0968 [ B9A8CBCFCD3EC9D2EA4740AF347BF108 ] C:\Windows\SysWOW64\mpr.dll
13:02:32.0741 0968 C:\Windows\SysWOW64\mpr.dll - ok
13:02:32.0741 0968 [ 70D9DFA9DB8ECDD997B9BACC184B46FB ] C:\Program Files (x86)\Symantec AntiVirus\NAVLU.dll
13:02:32.0741 0968 C:\Program Files (x86)\Symantec AntiVirus\NAVLU.dll - ok
13:02:32.0756 0968 [ 4B1BC262B76232056F3B247C37F26940 ] C:\Windows\SysWOW64\mfc71.dll
13:02:32.0756 0968 C:\Windows\SysWOW64\mfc71.dll - ok
13:02:32.0756 0968 [ A543AC1F7138376D778D630A35FCBC4C ] C:\Windows\SysWOW64\psapi.dll
13:02:32.0756 0968 C:\Windows\SysWOW64\psapi.dll - ok
13:02:32.0772 0968 [ A90DC9ABD65DB1A8902F361103029952 ] C:\Windows\SysWOW64\IPHLPAPI.DLL
13:02:32.0772 0968 C:\Windows\SysWOW64\IPHLPAPI.DLL - ok
13:02:32.0772 0968 [ CFF35B879D1618D42C86644C717BA947 ] C:\Windows\SysWOW64\winnsi.dll
13:02:32.0772 0968 C:\Windows\SysWOW64\winnsi.dll - ok
13:02:32.0787 0968 [ 521B748A7F9923302CA18B7E6AA2EEAE ] C:\Windows\SysWOW64\activeds.dll
13:02:32.0787 0968 C:\Windows\SysWOW64\activeds.dll - ok
13:02:32.0787 0968 [ EED05D42D91835064703E2318552ED25 ] C:\Windows\System32\ExplorerFrame.dll
13:02:32.0787 0968 C:\Windows\System32\ExplorerFrame.dll - ok
13:02:32.0803 0968 [ 51F5CC1E7DA3D9C664C2D0D61F315E06 ] C:\Windows\SysWOW64\adsldpc.dll
13:02:32.0803 0968 C:\Windows\SysWOW64\adsldpc.dll - ok
13:02:32.0819 0968 [ A8BB45F9ECAD993461E0FEF8E2A99152 ] C:\Windows\SysWOW64\Wldap32.dll
13:02:32.0819 0968 C:\Windows\SysWOW64\Wldap32.dll - ok
13:02:32.0819 0968 [ F10E5311E5093FA3C00FF88C54C32FCA ] C:\Windows\SysWOW64\atl.dll
13:02:32.0819 0968 C:\Windows\SysWOW64\atl.dll - ok
13:02:32.0834 0968 [ F93674263F6B07C77956E966953242D9 ] C:\Windows\SysWOW64\secur32.dll
13:02:32.0834 0968 C:\Windows\SysWOW64\secur32.dll - ok
13:02:32.0834 0968 [ 6A6B2EE4565A178035BE2A4FF6F2C968 ] C:\Windows\SysWOW64\wtsapi32.dll
13:02:32.0834 0968 C:\Windows\SysWOW64\wtsapi32.dll - ok
13:02:32.0850 0968 [ 90499F3163A9F815CF196A205EA3CD5D ] C:\Windows\System32\apphelp.dll
13:02:32.0850 0968 C:\Windows\System32\apphelp.dll - ok
13:02:32.0850 0968 [ BAF751E7061FF626AA60F56D1D5D1FDC ] C:\Windows\SysWOW64\MFC71ENU.DLL
13:02:32.0850 0968 C:\Windows\SysWOW64\MFC71ENU.DLL - ok
13:02:32.0865 0968 [ 06FF4ED7B145CB7BC351FD77FD8253A7 ] C:\Program Files (x86)\Common Files\Symantec Shared\ccL60.dll
13:02:32.0865 0968 C:\Program Files (x86)\Common Files\Symantec Shared\ccL60.dll - ok
13:02:32.0865 0968 [ 024352FEEC9042260BB4CFB4D79A206B ] C:\Windows\System32\EhStorShell.dll
13:02:32.0865 0968 C:\Windows\System32\EhStorShell.dll - ok
13:02:32.0881 0968 [ 037A719DAD50603202C978CD802623E4 ] C:\Windows\System32\ntshrui.dll
13:02:32.0881 0968 C:\Windows\System32\ntshrui.dll - ok
13:02:32.0881 0968 [ FF5688D309347F2720911D8796912834 ] C:\Windows\SysWOW64\clbcatq.dll
13:02:32.0881 0968 C:\Windows\SysWOW64\clbcatq.dll - ok
13:02:32.0897 0968 [ 19B07E7E8915D701225DA41CB3877306 ] C:\Windows\System32\wbem\WMIsvc.dll
13:02:32.0897 0968 C:\Windows\System32\wbem\WMIsvc.dll - ok
13:02:32.0897 0968 [ 1BF0CB861A48FEB1638228760750F3CB ] C:\Windows\System32\cscapi.dll
13:02:32.0897 0968 C:\Windows\System32\cscapi.dll - ok
13:02:32.0912 0968 [ 1D63F4366288B8A7595397E27010FD44 ] C:\Windows\System32\IconCodecService.dll
13:02:32.0912 0968 C:\Windows\System32\IconCodecService.dll - ok
13:02:32.0912 0968 [ 5EB6E9C8BE1ACC5830780E0F9A846255 ] C:\Windows\System32\msi.dll
13:02:32.0912 0968 C:\Windows\System32\msi.dll - ok
13:02:32.0928 0968 [ 025E7DBDB98866ED3CB2D4DDA70B364D ] C:\Windows\System32\runonce.exe
13:02:32.0928 0968 C:\Windows\System32\runonce.exe - ok
13:02:32.0943 0968 [ 7DB5AA22A8A8E5C2D335F44853C1F6DE ] C:\Windows\System32\wbemcomn.dll
13:02:32.0943 0968 C:\Windows\System32\wbemcomn.dll - ok
13:02:32.0943 0968 [ D44741F65A1D71F65814A12CF6E2400A ] C:\Windows\SysWOW64\runonce.exe
13:02:32.0943 0968 C:\Windows\SysWOW64\runonce.exe - ok
13:02:32.0959 0968 [ 352B3DC62A0D259A82A052238425C872 ] C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2\comctl32.dll
13:02:32.0959 0968 C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2\comctl32.dll - ok
13:02:32.0959 0968 [ 69754747274B76E7FAF287239333D7E6 ] C:\Windows\System32\msiltcfg.dll
13:02:32.0959 0968 C:\Windows\System32\msiltcfg.dll - ok
13:02:32.0975 0968 [ 0255C22D99602534F15CBB8D9B6F152F ] C:\Windows\System32\wbem\WinMgmtR.dll
13:02:32.0975 0968 C:\Windows\System32\wbem\WinMgmtR.dll - ok
13:02:32.0975 0968 [ 0C52762C606BCF6A377D5E4688191A6B ] C:\Windows\System32\wbem\WmiDcPrv.dll
13:02:32.0975 0968 C:\Windows\System32\wbem\WmiDcPrv.dll - ok
13:02:32.0990 0968 [ A3F5E8EC1316C3E2562B82694A251C9E ] C:\Windows\System32\wbem\fastprox.dll
13:02:32.0990 0968 C:\Windows\System32\wbem\fastprox.dll - ok
13:02:33.0006 0968 [ EE26D130808D16C0E417BBBED0451B34 ] C:\Windows\System32\ntdsapi.dll
13:02:33.0006 0968 C:\Windows\System32\ntdsapi.dll - ok
13:02:33.0006 0968 [ C6DCD1D11ED6827F05C00773C3E7053C ] C:\Windows\System32\sfc.dll
13:02:33.0006 0968 C:\Windows\System32\sfc.dll - ok
13:02:33.0021 0968 [ 895C9AB0A855547445C4181195230757 ] C:\Windows\System32\sfc_os.dll
13:02:33.0021 0968 C:\Windows\System32\sfc_os.dll - ok
13:02:33.0021 0968 [ 666A60F6F5E719856FF6254E0966EFF7 ] C:\Windows\System32\wbem\wbemprox.dll
13:02:33.0021 0968 C:\Windows\System32\wbem\wbemprox.dll - ok
13:02:33.0037 0968 [ 0E2F58F6E698EDCB9E58FAD0CBCD0567 ] C:\Windows\System32\vssapi.dll
13:02:33.0037 0968 C:\Windows\System32\vssapi.dll - ok
13:02:33.0037 0968 [ 42B6A94DD747DF2B5F628A2752E62A98 ] C:\Windows\System32\ctfmon.exe
13:02:33.0037 0968 C:\Windows\System32\ctfmon.exe - ok
13:02:33.0053 0968 [ FB10715E4099AF9FA389C71873245226 ] C:\Windows\System32\timedate.cpl
13:02:33.0053 0968 C:\Windows\System32\timedate.cpl - ok
13:02:33.0053 0968 [ 1F1CA9E99DD5BF918BE0BF30B5A42FDA ] C:\Windows\System32\MsCtfMonitor.dll
13:02:33.0053 0968 C:\Windows\System32\MsCtfMonitor.dll - ok
13:02:33.0068 0968 [ F09A9A1AD21FE618C4C8B0A0D830C886 ] C:\Windows\System32\msutb.dll
13:02:33.0068 0968 C:\Windows\System32\msutb.dll - ok
13:02:33.0068 0968 [ 287923557447D7E4BDD7E65B1F0F5428 ] C:\Windows\System32\vsstrace.dll
13:02:33.0068 0968 C:\Windows\System32\vsstrace.dll - ok
13:02:33.0084 0968 [ 5EB55F661DEBF156E126160BCD4D89F8 ] C:\Windows\System32\wbem\wbemcore.dll
13:02:33.0084 0968 C:\Windows\System32\wbem\wbemcore.dll - ok
13:02:33.0084 0968 [ 109B0C394D816874707E22D9C444EA13 ] C:\Program Files (x86)\Symantec AntiVirus\NAVNTUTL.DLL
13:02:33.0084 0968 C:\Program Files (x86)\Symantec AntiVirus\NAVNTUTL.DLL - ok
13:02:33.0099 0968 [ 732E668096B1A37B7BFD4B9021E69A8E ] C:\Windows\System32\oleres.dll
13:02:33.0099 0968 C:\Windows\System32\oleres.dll - ok
13:02:33.0099 0968 [ 087D8668C71634A3A3761135ABF16EEE ] C:\Windows\System32\wbem\esscli.dll
13:02:33.0099 0968 C:\Windows\System32\wbem\esscli.dll - ok
13:02:33.0115 0968 [ 40CAEEE0EAF1B8569F7C8DF6420F2CB9 ] C:\Windows\SysWOW64\sfc.dll
13:02:33.0115 0968 C:\Windows\SysWOW64\sfc.dll - ok
13:02:33.0131 0968 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] C:\Windows\System32\IPSECSVC.DLL
13:02:33.0131 0968 C:\Windows\System32\IPSECSVC.DLL - ok
13:02:33.0131 0968 [ 84799328D87B3091A3BDD251E1AD31F9 ] C:\Windows\SysWOW64\sfc_os.dll
13:02:33.0131 0968 C:\Windows\SysWOW64\sfc_os.dll - ok
13:02:33.0146 0968 [ C4F40F6CACD796A8E16671D0E9A2F319 ] C:\Windows\System32\shdocvw.dll
13:02:33.0146 0968 C:\Windows\System32\shdocvw.dll - ok
13:02:33.0146 0968 [ 718B6F51AB7F6FE2988A36868F9AD3AB ] C:\Windows\System32\wbem\wbemsvc.dll
13:02:33.0146 0968 C:\Windows\System32\wbem\wbemsvc.dll - ok
13:02:33.0162 0968 [ C5B0324DB461559ADD070E632A6919FA ] C:\Windows\SysWOW64\wbem\wbemprox.dll
13:02:33.0162 0968 C:\Windows\SysWOW64\wbem\wbemprox.dll - ok
13:02:33.0162 0968 [ 9BC93C9ACFA34DB5A41B89357B31E4ED ] C:\Windows\System32\FwRemoteSvr.dll
13:02:33.0162 0968 C:\Windows\System32\FwRemoteSvr.dll - ok
13:02:33.0177 0968 [ 0143DB80DACFB7C2B5B7009ED9063353 ] C:\Windows\System32\wbem\wmiutils.dll
13:02:33.0177 0968 C:\Windows\System32\wbem\wmiutils.dll - ok
13:02:33.0193 0968 [ 704314FD398C81D5F342CAA5DF7B7F21 ] C:\Windows\SysWOW64\wbemcomn.dll
13:02:33.0193 0968 C:\Windows\SysWOW64\wbemcomn.dll - ok
13:02:33.0193 0968 [ 0AB34456654C283DAA13B8D2BA21439B ] C:\Windows\System32\wbem\repdrvfs.dll
13:02:33.0193 0968 C:\Windows\System32\wbem\repdrvfs.dll - ok
13:02:33.0209 0968 [ 776AE0564F8B1C282E331FD95A1BDC5F ] C:\Windows\SysWOW64\wbem\wbemsvc.dll
13:02:33.0209 0968 C:\Windows\SysWOW64\wbem\wbemsvc.dll - ok
13:02:33.0209 0968 [ A0A65D306A5490D2EB8E7DE66898ECFD ] C:\Windows\System32\linkinfo.dll
13:02:33.0209 0968 C:\Windows\System32\linkinfo.dll - ok
13:02:33.0224 0968 [ CFC7D8289D2B5F3CF8D16E2DB7F93D4A ] C:\Windows\SysWOW64\wbem\fastprox.dll
13:02:33.0224 0968 C:\Windows\SysWOW64\wbem\fastprox.dll - ok
13:02:33.0224 0968 [ 98B6F9204610EC0B7D2ADFF3E6F058A8 ] C:\PROGRA~2\WIC4A1~1\MESSEN~1\msgslang.dll
13:02:33.0224 0968 C:\PROGRA~2\WIC4A1~1\MESSEN~1\msgslang.dll - ok
13:02:33.0240 0968 [ 1EAC1A8CA6874BF5B15E2EFB9A9A7B86 ] C:\Windows\System32\msftedit.dll
13:02:33.0240 0968 C:\Windows\System32\msftedit.dll - ok
13:02:33.0240 0968 [ E3E811471DE781900FF21C1FD84E941E ] C:\Windows\SysWOW64\ntdsapi.dll
13:02:33.0240 0968 C:\Windows\SysWOW64\ntdsapi.dll - ok
13:02:33.0255 0968 [ 7FCAB194F01E3403C300EB034E480B36 ] C:\Windows\System32\msls31.dll
13:02:33.0255 0968 C:\Windows\System32\msls31.dll - ok
13:02:33.0255 0968 [ 7DBA84667DC18877AEF693E3543DFAD7 ] C:\Program Files\Common Files\Microsoft Shared\ink\tiptsf.dll
13:02:33.0255 0968 C:\Program Files\Common Files\Microsoft Shared\ink\tiptsf.dll - ok
13:02:33.0271 0968 [ 3504B34CD2DE00BA3CC1A195F1B739BD ] C:\Windows\System32\gameux.dll
13:02:33.0271 0968 C:\Windows\System32\gameux.dll - ok
13:02:33.0271 0968 [ DDD0357A92FA843EFF8915ED17253D6C ] C:\Windows\System32\wbem\WmiPrvSD.dll
13:02:33.0271 0968 C:\Windows\System32\wbem\WmiPrvSD.dll - ok
13:02:33.0287 0968 [ 9689A9C7F7C2A1A423CDA2C3B43FFF65 ] C:\Windows\System32\wer.dll
13:02:33.0287 0968 C:\Windows\System32\wer.dll - ok
13:02:33.0287 0968 [ D41FEBD098234F02485A4EA98D4730A4 ] C:\Windows\System32\ncobjapi.dll
13:02:33.0287 0968 C:\Windows\System32\ncobjapi.dll - ok
13:02:33.0302 0968 [ 4C2C4640BF23AAFCF90519E0F34436CE ] C:\Windows\System32\DeviceCenter.dll
13:02:33.0302 0968 C:\Windows\System32\DeviceCenter.dll - ok
13:02:33.0318 0968 [ 6F40D6FB05E0C1E5402812B426971AF0 ] C:\Windows\System32\wbem\wbemess.dll
13:02:33.0318 0968 C:\Windows\System32\wbem\wbemess.dll - ok
13:02:33.0318 0968 [ 24F4B480F335A6C724AF352253C5D98B ] C:\Windows\System32\thumbcache.dll
13:02:33.0318 0968 C:\Windows\System32\thumbcache.dll - ok
13:02:33.0333 0968 [ 405F4D32D2185F1F1BD753D8EEAFFB3A ] C:\Windows\System32\networkexplorer.dll
13:02:33.0333 0968 C:\Windows\System32\networkexplorer.dll - ok
13:02:33.0333 0968 [ 539C49CEBB3C50957AC8A09D95ECD880 ] C:\Windows\SysWOW64\shfolder.dll
13:02:33.0333 0968 C:\Windows\SysWOW64\shfolder.dll - ok
13:02:33.0349 0968 [ EF2AE43BCD46ABB13FC3E5B2B1935C73 ] C:\Windows\System32\winmm.dll
13:02:33.0349 0968 C:\Windows\System32\winmm.dll - ok
13:02:33.0349 0968 [ 1D59081F7C6ADD93A556A30373BF40F7 ] C:\Program Files (x86)\Common Files\Symantec Shared\DefUtDCD.dll
13:02:33.0349 0968 C:\Program Files (x86)\Common Files\Symantec Shared\DefUtDCD.dll - ok
13:02:33.0365 0968 [ 1473768973453DE50DC738C2955FC4DD ] C:\Windows\System32\wdmaud.drv
13:02:33.0365 0968 C:\Windows\System32\wdmaud.drv - ok
13:02:33.0365 0968 [ 8560FFFC8EB3A806DCD4F82252CFC8C6 ] C:\Windows\System32\ksuser.dll
13:02:33.0365 0968 C:\Windows\System32\ksuser.dll - ok
13:02:33.0380 0968 [ 78A1E65207484B7F8D3217507745F47C ] C:\Windows\System32\avrt.dll
13:02:33.0380 0968 C:\Windows\System32\avrt.dll - ok
13:02:33.0380 0968 [ 484ACF6AF85A29AC52F3CF054DFDE9D3 ] C:\Windows\Installer\{90120000-0030-0000-0000-0000000FF1CE}\wordicon.exe
13:02:33.0380 0968 C:\Windows\Installer\{90120000-0030-0000-0000-0000000FF1CE}\wordicon.exe - ok
13:02:33.0396 0968 [ 9A85ABCE0FDD1AF8E79E731EB0B679F3 ] C:\Windows\SysWOW64\dhcpcsvc.dll
13:02:33.0396 0968 C:\Windows\SysWOW64\dhcpcsvc.dll - ok
13:02:33.0396 0968 [ 465BEA35F7ED4A4A57686DEA7EA10F47 ] C:\Windows\SysWOW64\cscapi.dll
13:02:33.0411 0968 C:\Windows\SysWOW64\cscapi.dll - ok
13:02:33.0411 0968 [ 15FA7A63659E7DFAEE4DA93290C2CBC7 ] C:\Program Files (x86)\Common Files\Symantec Shared\SSC\ScsComms.dll
13:02:33.0411 0968 C:\Program Files (x86)\Common Files\Symantec Shared\SSC\ScsComms.dll - ok
13:02:33.0427 0968 [ F2C7BB8ACC97F92E987A2D4087D021B1 ] C:\Windows\System32\notepad.exe
13:02:33.0427 0968 C:\Windows\System32\notepad.exe - ok
13:02:33.0427 0968 [ FE46A75556E66B8CC472FA75EFF0C347 ] C:\PROGRA~1\MICROS~2\Office12\MSOHEVI.DLL
13:02:33.0427 0968 C:\PROGRA~1\MICROS~2\Office12\MSOHEVI.DLL - ok
13:02:33.0443 0968 [ 06A754FE28A06F780A099703CFCAAA22 ] C:\Windows\winsxs\amd64_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.4940_none_88df89932faf0bf6\msvcr80.dll
13:02:33.0443 0968 C:\Windows\winsxs\amd64_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.4940_none_88df89932faf0bf6\msvcr80.dll - ok
13:02:33.0443 0968 [ BBAAE027C176402E221CADBFCAEB5407 ] C:\Windows\System32\zipfldr.dll
13:02:33.0443 0968 C:\Windows\System32\zipfldr.dll - ok
13:02:33.0458 0968 [ 21EF4BB2A6FF4116FD83FAEE52D4A416 ] C:\Windows\Installer\{90120000-0030-0000-0000-0000000FF1CE}\xlicons.exe
13:02:33.0458 0968 C:\Windows\Installer\{90120000-0030-0000-0000-0000000FF1CE}\xlicons.exe - ok
13:02:33.0458 0968 [ D291620D4C51C5F5FFA62CCDC52C5C13 ] C:\Windows\System32\msinfo32.exe
13:02:33.0458 0968 C:\Windows\System32\msinfo32.exe - ok
13:02:33.0474 0968 [ 75EB974222F293159427F9A77A5F3C6A ] C:\PROGRA~1\COMMON~1\MICROS~1\OFFICE12\msoshext.dll
13:02:33.0474 0968 C:\PROGRA~1\COMMON~1\MICROS~1\OFFICE12\msoshext.dll - ok
13:02:33.0474 0968 [ 3DB5A1EACE7F3049ECC49FA64461E254 ] C:\Windows\System32\rstrui.exe
13:02:33.0474 0968 C:\Windows\System32\rstrui.exe - ok
13:02:33.0489 0968 [ 418E881201583A3039D81F43E39E6C78 ] C:\Windows\SysWOW64\winsta.dll
13:02:33.0489 0968 C:\Windows\SysWOW64\winsta.dll - ok
13:02:33.0505 0968 [ 93041736961E33317C5005684D9F2105 ] C:\Program Files\Common Files\Microsoft Shared\OFFICE11\msxml5.dll
13:02:33.0505 0968 C:\Program Files\Common Files\Microsoft Shared\OFFICE11\msxml5.dll - ok
13:02:33.0505 0968 [ F92F18B146337E8B8A4A5D3851EDAF34 ] C:\Program Files (x86)\Symantec AntiVirus\I2ldvp3.dll
13:02:33.0505 0968 C:\Program Files (x86)\Symantec AntiVirus\I2ldvp3.dll - ok
13:02:33.0521 0968 [ 487DDAF10BF22945492C5C4A7F4AD6BF ] C:\Program Files (x86)\Common Files\Symantec Shared\ccDec.dll
13:02:33.0521 0968 C:\Program Files (x86)\Common Files\Symantec Shared\ccDec.dll - ok
13:02:33.0521 0968 [ 4B7A7667B4E71D82F0CAC702CCEFDA63 ] C:\Windows\Installer\{CF8FFD12-602B-422D-AF1D-511B411E7632}\iTunesIco.exe
13:02:33.0521 0968 C:\Windows\Installer\{CF8FFD12-602B-422D-AF1D-511B411E7632}\iTunesIco.exe - ok
13:02:33.0536 0968 [ 51D186B582C905E49D84B70322F70B21 ] C:\Windows\System32\miguiresource.dll
13:02:33.0536 0968 C:\Windows\System32\miguiresource.dll - ok
13:02:33.0536 0968 [ 700D2D7A780364F9EA961E1C7E2EB72E ] C:\Program Files (x86)\Common Files\Symantec Shared\Decomposers\Dec2.dll
13:02:33.0536 0968 C:\Program Files (x86)\Common Files\Symantec Shared\Decomposers\Dec2.dll - ok
13:02:33.0552 0968 [ 73D1D93BB813839C3535483EF50DBECA ] C:\Program Files (x86)\Common Files\Symantec Shared\Decomposers\DecSDK.dll
13:02:33.0552 0968 C:\Program Files (x86)\Common Files\Symantec Shared\Decomposers\DecSDK.dll - ok
13:02:33.0567 0968 [ 6805108E44B0F2F1A03053BD54D6C7F5 ] C:\Program Files (x86)\Common Files\Symantec Shared\Decomposers\Dec2AMG.dll
13:02:33.0567 0968 C:\Program Files (x86)\Common Files\Symantec Shared\Decomposers\Dec2AMG.dll - ok
13:02:33.0567 0968 [ EE7476A2BB96F533A51E39B12703C1F0 ] C:\Program Files (x86)\Common Files\Symantec Shared\Decomposers\Dec2ARJ.dll
13:02:33.0567 0968 C:\Program Files (x86)\Common Files\Symantec Shared\Decomposers\Dec2ARJ.dll - ok
13:02:33.0583 0968 [ 6DAF1E7A742ACE53A5D692D161779BDA ] C:\Program Files (x86)\Common Files\Symantec Shared\Decomposers\Dec2CAB.dll
13:02:33.0583 0968 C:\Program Files (x86)\Common Files\Symantec Shared\Decomposers\Dec2CAB.dll - ok
13:02:33.0583 0968 [ 00335ABCAEAC9555719EFDF0CBB89AB5 ] C:\Program Files (x86)\Common Files\Symantec Shared\Decomposers\Dec2GZIP.dll
13:02:33.0583 0968 C:\Program Files (x86)\Common Files\Symantec Shared\Decomposers\Dec2GZIP.dll - ok
13:02:33.0599 0968 [ CED7DC454023A2A7B245498FAEACAE58 ] C:\Program Files (x86)\Common Files\Symantec Shared\Decomposers\Dec2ID.dll
13:02:33.0599 0968 C:\Program Files (x86)\Common Files\Symantec Shared\Decomposers\Dec2ID.dll - ok
13:02:33.0599 0968 [ DE4C4FE9F14BAF60CA2469C69C08D87A ] C:\Program Files (x86)\Common Files\Symantec Shared\Decomposers\Dec2LHA.dll
13:02:33.0599 0968 C:\Program Files (x86)\Common Files\Symantec Shared\Decomposers\Dec2LHA.dll - ok
13:02:33.0614 0968 [ A2CE40FE5FD18935734B20DD494861A1 ] C:\Program Files (x86)\Common Files\Symantec Shared\Decomposers\Dec2LZ.dll
13:02:33.0614 0968 C:\Program Files (x86)\Common Files\Symantec Shared\Decomposers\Dec2LZ.dll - ok
13:02:33.0630 0968 [ A518E1B01FB8A9F80816002B62A3AF6E ] C:\Program Files (x86)\Common Files\Symantec Shared\Decomposers\Dec2RAR.dll
13:02:33.0630 0968 C:\Program Files (x86)\Common Files\Symantec Shared\Decomposers\Dec2RAR.dll - ok
13:02:33.0630 0968 [ E83EC8711BCFB0E398A1B2834BACD646 ] C:\Program Files (x86)\Common Files\Symantec Shared\Decomposers\Dec2RTF.dll
13:02:33.0630 0968 C:\Program Files (x86)\Common Files\Symantec Shared\Decomposers\Dec2RTF.dll - ok
13:02:33.0645 0968 [ B5DABA1662F04241D046868F9BD819B2 ] C:\Program Files (x86)\Common Files\Symantec Shared\Decomposers\Dec2SS.dll
13:02:33.0645 0968 C:\Program Files (x86)\Common Files\Symantec Shared\Decomposers\Dec2SS.dll - ok
13:02:33.0645 0968 [ 95B9110DD628B24FE57B84F1FC4CE2C6 ] C:\Program Files (x86)\Common Files\Symantec Shared\Decomposers\Dec2TAR.dll
13:02:33.0645 0968 C:\Program Files (x86)\Common Files\Symantec Shared\Decomposers\Dec2TAR.dll - ok
13:02:33.0661 0968 [ B7202442245F48BC07920F52028AC85D ] C:\Program Files (x86)\Common Files\Symantec Shared\Decomposers\Dec2TNEF.dll
13:02:33.0661 0968 C:\Program Files (x86)\Common Files\Symantec Shared\Decomposers\Dec2TNEF.dll - ok
13:02:33.0677 0968 [ 9FF912DB49BA2059B08799AAD0846F6E ] C:\Program Files (x86)\Common Files\Symantec Shared\Decomposers\Dec2Zip.dll
13:02:33.0677 0968 C:\Program Files (x86)\Common Files\Symantec Shared\Decomposers\Dec2Zip.dll - ok
13:02:33.0677 0968 [ CCB743EB8CFB306B155861DD54E55DB5 ] C:\Program Files (x86)\Common Files\Symantec Shared\Decomposers\Dec2Text.dll
13:02:33.0677 0968 C:\Program Files (x86)\Common Files\Symantec Shared\Decomposers\Dec2Text.dll - ok
13:02:33.0692 0968 [ E847917D374863A6F7934CC1AB9591C6 ] C:\Program Files (x86)\Common Files\Symantec Shared\ccScan.dll
13:02:33.0692 0968 C:\Program Files (x86)\Common Files\Symantec Shared\ccScan.dll - ok
13:02:33.0692 0968 [ 25D7A040A493AB91052F9170D4DB80D4 ] C:\Program Files (x86)\Common Files\Symantec Shared\ecmldr32.DLL
13:02:33.0692 0968 C:\Program Files (x86)\Common Files\Symantec Shared\ecmldr32.DLL - ok
13:02:33.0708 0968 [ C3761661C17C2248A9379A8FB89E3DE1 ] C:\Windows\System32\stobject.dll
13:02:33.0708 0968 C:\Windows\System32\stobject.dll - ok
13:02:33.0708 0968 [ F832EEEA97CDDA1AF577E721F652A0D1 ] C:\Windows\System32\batmeter.dll
13:02:33.0708 0968 C:\Windows\System32\batmeter.dll - ok
13:02:33.0723 0968 [ 2D2A6EC8EAD30EC3ACE2FD6FB1B3E122 ] C:\Windows\System32\prnfldr.dll
13:02:33.0723 0968 C:\Windows\System32\prnfldr.dll - ok
13:02:33.0723 0968 [ 0015ACFBBDD164A8A730009908868CA7 ] C:\Windows\System32\winspool.drv
13:02:33.0723 0968 C:\Windows\System32\winspool.drv - ok
13:02:33.0739 0968 [ 4166F82BE4D24938977DD1746BE9B8A0 ] C:\Windows\System32\es.dll
13:02:33.0739 0968 C:\Windows\System32\es.dll - ok
13:02:33.0755 0968 [ 42A9CB6906D9A8BEDC83B57163E62924 ] C:\Windows\System32\DXP.dll
13:02:33.0755 0968 C:\Windows\System32\DXP.dll - ok
13:02:33.0755 0968 [ 2BC7C9FD0A9F2C9AFC373F3AD1EE3891 ] C:\Windows\System32\Syncreg.dll
13:02:33.0755 0968 C:\Windows\System32\Syncreg.dll - ok
13:02:33.0770 0968 [ DB70FE36AC8F594E9E69479C076BADB8 ] C:\Windows\System32\HelpPaneProxy.dll
13:02:33.0770 0968 C:\Windows\System32\HelpPaneProxy.dll - ok
13:02:33.0770 0968 [ CD47548A52B02D254BF6D7F7A5F2BFD3 ] C:\Windows\HelpPane.exe
13:02:33.0770 0968 C:\Windows\HelpPane.exe - ok
13:02:33.0786 0968 [ 86F1F949DD51FB5A044F1BD34CBE4AA8 ] C:\Windows\System32\apds.dll
13:02:33.0786 0968 C:\Windows\System32\apds.dll - ok
13:02:33.0786 0968 [ E7368F0A8D19445EAF5C5D0DBB8B8DAB ] C:\Windows\System32\AltTab.dll
13:02:33.0786 0968 C:\Windows\System32\AltTab.dll - ok
13:02:33.0801 0968 [ 4ECE12D296ED94CA2C7DD6C383A5AB66 ] C:\Windows\System32\ieframe.dll
13:02:33.0801 0968 C:\Windows\System32\ieframe.dll - ok
13:02:33.0801 0968 [ 10F815BE90A66AAFC6C713D1BD626064 ] C:\Windows\System32\pnidui.dll
13:02:33.0801 0968 C:\Windows\System32\pnidui.dll - ok
13:02:33.0817 0968 [ B9F0A4020AA98B7A20287BF7FE99A1FD ] C:\Windows\System32\QUTIL.DLL
13:02:33.0817 0968 C:\Windows\System32\QUTIL.DLL - ok
13:02:33.0817 0968 [ F7A256EC899C72B4ECDD2C02CB592EFD ] C:\Windows\System32\bthprops.cpl
13:02:33.0817 0968 C:\Windows\System32\bthprops.cpl - ok
13:02:33.0833 0968 [ CF636C92B762B26F0B39B38E92380A09 ] C:\Windows\System32\oleacc.dll
13:02:33.0833 0968 C:\Windows\System32\oleacc.dll - ok
13:02:33.0833 0968 [ 92DBF0A4C9239169010FC6E07859C82E ] C:\Windows\System32\ActionCenter.dll
13:02:33.0833 0968 C:\Windows\System32\ActionCenter.dll - ok
13:02:33.0848 0968 [ 847D3AE376C0817161A14A82C8922A9E ] C:\Windows\System32\netman.dll
13:02:33.0848 0968 C:\Windows\System32\netman.dll - ok
13:02:33.0848 0968 [ 0B2D65FDDE31069299AA6330F359FF9C ] C:\Windows\System32\msxml3.dll
13:02:33.0848 0968 C:\Windows\System32\msxml3.dll - ok
13:02:33.0864 0968 [ A42F2C1EB3B66C54FB3C7B79D30C1A6D ] C:\Windows\System32\netshell.dll
13:02:33.0864 0968 C:\Windows\System32\netshell.dll - ok
13:02:33.0879 0968 [ 2DF36F15B2BC1571A6A542A3C2107920 ] C:\Windows\System32\nlaapi.dll
13:02:33.0879 0968 C:\Windows\System32\nlaapi.dll - ok
13:02:33.0879 0968 [ 3819AD4329303EAC88480CA16A650735 ] C:\Windows\System32\UIAnimation.dll
13:02:33.0879 0968 C:\Windows\System32\UIAnimation.dll - ok
13:02:33.0895 0968 [ F7073C962C4FB7C415565DDE109DE49F ] C:\Windows\System32\npmproxy.dll
13:02:33.0895 0968 C:\Windows\System32\npmproxy.dll - ok
13:02:33.0895 0968 [ D2155709E336C3BC15729EB87FEC6064 ] C:\Windows\System32\rasdlg.dll
13:02:33.0895 0968 C:\Windows\System32\rasdlg.dll - ok
13:02:33.0911 0968 [ F244DA6DD2C365ABAFD076222C22C2BE ] C:\Windows\System32\mshtml.dll
13:02:33.0911 0968 C:\Windows\System32\mshtml.dll - ok
13:02:33.0911 0968 [ 2DF29664ED261F0FC448E58F338F0671 ] C:\Windows\System32\mprapi.dll
13:02:33.0911 0968 C:\Windows\System32\mprapi.dll - ok
13:02:33.0926 0968 [ 019CD868461B646E09BDF04474C19341 ] C:\Windows\System32\rasapi32.dll
13:02:33.0926 0968 C:\Windows\System32\rasapi32.dll - ok
13:02:33.0942 0968 [ B28DEEC597C8DEB70C744C7CF9210E3E ] C:\Windows\System32\rasman.dll
13:02:33.0942 0968 C:\Windows\System32\rasman.dll - ok
13:02:33.0942 0968 [ B53C4B69B695EDA1B7E41D35CA4244E2 ] C:\Windows\System32\rtutils.dll
13:02:33.0942 0968 C:\Windows\System32\rtutils.dll - ok
13:02:33.0957 0968 [ F9AFD12BB4B1CFA5FCC0A5B37C604FD2 ] C:\Windows\System32\dot3api.dll
13:02:33.0957 0968 C:\Windows\System32\dot3api.dll - ok
13:02:33.0957 0968 [ E4FCA0F99A41E460C84016DEFD31E6EF ] C:\Windows\System32\wlanhlp.dll
13:02:33.0957 0968 C:\Windows\System32\wlanhlp.dll - ok
13:02:33.0973 0968 [ 357BE883C5236BFC7341CB9E82308908 ] C:\Windows\System32\wlanapi.dll
13:02:33.0973 0968 C:\Windows\System32\wlanapi.dll - ok
13:02:33.0973 0968 [ 3B367397320C26DBA890B260F80D1B1B ] C:\Windows\System32\hnetcfg.dll
13:02:33.0973 0968 C:\Windows\System32\hnetcfg.dll - ok
13:02:33.0989 0968 [ 5DA219F57A9076FB6FBD3C9C3713A672 ] C:\Windows\System32\WWanAPI.dll
13:02:33.0989 0968 C:\Windows\System32\WWanAPI.dll - ok
13:02:33.0989 0968 [ 58A0CDABEA255616827B1C22C9994466 ] C:\Windows\System32\NapiNSP.dll
13:02:33.0989 0968 C:\Windows\System32\NapiNSP.dll - ok
13:02:34.0004 0968 [ 62C7AACC746C9723468A8F2169ED3E85 ] C:\Windows\System32\wwapi.dll
13:02:34.0004 0968 C:\Windows\System32\wwapi.dll - ok
13:02:34.0004 0968 [ 613C8CE10A5FDE582BA5FA64C4D56AAA ] C:\Windows\System32\pnrpnsp.dll
13:02:34.0004 0968 C:\Windows\System32\pnrpnsp.dll - ok
13:02:34.0020 0968 [ 28AD5E311996A34025CFB07E131058DD ] C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL
13:02:34.0020 0968 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL - ok
13:02:34.0020 0968 [ C746F3BF98E92FB137B5BD2B8B5925BD ] C:\Windows\System32\FXSST.dll
13:02:34.0020 0968 C:\Windows\System32\FXSST.dll - ok
13:02:34.0035 0968 [ 2E2072EB48238FCA8FBB7A9F5FABAC45 ] C:\Windows\System32\winrnr.dll
13:02:34.0035 0968 C:\Windows\System32\winrnr.dll - ok
13:02:34.0035 0968 [ F9D908DE6B166DAC9B89BF62FA291CE8 ] C:\Program Files\Bonjour\mdnsNSP.dll
13:02:34.0035 0968 C:\Program Files\Bonjour\mdnsNSP.dll - ok
13:02:34.0051 0968 [ 650CAEA856943E29F25A25D31E004B18 ] C:\Windows\System32\FXSAPI.dll
13:02:34.0051 0968 C:\Windows\System32\FXSAPI.dll - ok
13:02:34.0067 0968 [ 88351B29B622B30962D2FEB6CA8D860B ] C:\Windows\System32\rasadhlp.dll
13:02:34.0067 0968 C:\Windows\System32\rasadhlp.dll - ok
13:02:34.0067 0968 [ C8E8B8239FCF17BEA10E751BE5854631 ] C:\Windows\System32\FXSRESM.dll
13:02:34.0067 0968 C:\Windows\System32\FXSRESM.dll - ok
13:02:34.0082 0968 [ 6B851E682A36453E1B1EE297FFB6E2AB ] C:\Windows\System32\QAGENT.DLL
13:02:34.0082 0968 C:\Windows\System32\QAGENT.DLL - ok
13:02:34.0082 0968 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] C:\Windows\System32\FXSSVC.exe

Okay I think this is all of it.


13:02:34.0082 0968 C:\Windows\System32\FXSSVC.exe - ok
13:02:34.0098 0968 [ 6699A112A3BDC9B52338512894EBA9D6 ] C:\Program Files\Windows Media Player\wmpnscfg.exe
13:02:34.0098 0968 C:\Program Files\Windows Media Player\wmpnscfg.exe - ok
13:02:34.0098 0968 [ C836175870E00ACC546066632E15BD10 ] C:\Windows\ehome\ehSSO.dll
13:02:34.0098 0968 C:\Windows\ehome\ehSSO.dll - ok
13:02:34.0113 0968 [ C7494C67A6BF6FE914808E42F8265FEF ] C:\Program Files\Windows Media Player\wmpnssci.dll
13:02:34.0113 0968 C:\Program Files\Windows Media Player\wmpnssci.dll - ok
13:02:34.0113 0968 [ C8FDF0FA9E97E2FAAF3F814716AAA881 ] C:\Windows\System32\WPDShServiceObj.dll
13:02:34.0113 0968 C:\Windows\System32\WPDShServiceObj.dll - ok
13:02:34.0129 0968 [ 4F3CD1C59EA71401E155C432BCECE180 ] C:\Windows\System32\PortableDeviceTypes.dll
13:02:34.0129 0968 C:\Windows\System32\PortableDeviceTypes.dll - ok
13:02:34.0129 0968 [ E64D9EC8018C55873B40FDEE9DBEF5B3 ] C:\Windows\System32\PortableDeviceApi.dll
13:02:34.0129 0968 C:\Windows\System32\PortableDeviceApi.dll - ok
13:02:34.0145 0968 [ 8569E35D00F45972E506502EEE622BA4 ] C:\Windows\System32\srchadmin.dll
13:02:34.0145 0968 C:\Windows\System32\srchadmin.dll - ok
13:02:34.0145 0968 [ D7CEAEDD5F75D2C8A2E80887D7C114CE ] C:\Windows\System32\webcheck.dll
13:02:34.0145 0968 C:\Windows\System32\webcheck.dll - ok
13:02:34.0160 0968 [ 8494E126F0B10180F3293AF861CE1F7A ] C:\Windows\System32\mlang.dll
13:02:34.0160 0968 C:\Windows\System32\mlang.dll - ok
13:02:34.0160 0968 [ 101797BA603D227946B4B5109867EB19 ] C:\Windows\System32\SyncCenter.dll
13:02:34.0160 0968 C:\Windows\System32\SyncCenter.dll - ok
13:02:34.0176 0968 [ 8130391F82D52D36C0441F714136957F ] C:\Windows\System32\imapi2.dll
13:02:34.0176 0968 C:\Windows\System32\imapi2.dll - ok
13:02:34.0191 0968 [ BAAFAF9CEAEC0B73C2A3550A01F6CECB ] C:\Windows\System32\taskschd.dll
13:02:34.0191 0968 C:\Windows\System32\taskschd.dll - ok
13:02:34.0191 0968 [ 1F04E809409A9B5FFD510B5FD89A1155 ] C:\Windows\System32\d2d1.dll
13:02:34.0191 0968 C:\Windows\System32\d2d1.dll - ok
13:02:34.0207 0968 [ 7426279D625196393EABBEFE1C60A0C2 ] C:\Windows\System32\DWrite.dll
13:02:34.0207 0968 C:\Windows\System32\DWrite.dll - ok
13:02:34.0207 0968 [ 862596399AAFD2A21DB2AF9270CD4F70 ] C:\Windows\System32\mstask.dll
13:02:34.0207 0968 C:\Windows\System32\mstask.dll - ok
13:02:34.0223 0968 [ 6A5C1A8AC0B572679361026D0E900420 ] C:\Windows\System32\hgcpl.dll
13:02:34.0223 0968 C:\Windows\System32\hgcpl.dll - ok
13:02:34.0223 0968 [ F404E59DB6A0F122AB26BF4F3E2FD0FA ] C:\Windows\System32\dxgi.dll
13:02:34.0223 0968 C:\Windows\System32\dxgi.dll - ok
13:02:34.0238 0968 [ E6F0F82788E8BD0F7A616350EFA0761C ] C:\Windows\System32\actxprxy.dll
13:02:34.0238 0968 C:\Windows\System32\actxprxy.dll - ok
13:02:34.0254 0968 [ E1374D37477322D4956604711008C69D ] C:\Windows\System32\d3d10_1.dll
13:02:34.0254 0968 C:\Windows\System32\d3d10_1.dll - ok
13:02:34.0254 0968 [ 426BA4E737A7988FD1202AF2F2B2F4A6 ] C:\Windows\System32\d3d10_1core.dll
13:02:34.0254 0968 C:\Windows\System32\d3d10_1core.dll - ok
13:02:34.0269 0968 [ 64ABE1250EC1A1CFD1442E7C8800216E ] C:\Windows\System32\d3d10warp.dll
13:02:34.0269 0968 C:\Windows\System32\d3d10warp.dll - ok
13:02:34.0269 0968 [ B3CE0951E3C1EA3C733573C472EE85F9 ] C:\Windows\System32\msimtf.dll
13:02:34.0269 0968 C:\Windows\System32\msimtf.dll - ok
13:02:34.0285 0968 [ BD66ECA9479C688412DDDA9F2CCD2C69 ] C:\Windows\System32\d3d10.dll
13:02:34.0285 0968 C:\Windows\System32\d3d10.dll - ok
13:02:34.0285 0968 [ B628DA8B548E6D11A35B86799714CB22 ] C:\Windows\System32\d3d10core.dll
13:02:34.0285 0968 C:\Windows\System32\d3d10core.dll - ok
13:02:34.0301 0968 [ A8E3F32EA15DA60E62B892DFE9DEAF8C ] C:\Program Files (x86)\Symantec AntiVirus\notesext.dll
13:02:34.0301 0968 C:\Program Files (x86)\Symantec AntiVirus\notesext.dll - ok
13:02:34.0301 0968 [ 8084D9CAF2D255D6454DFE5757BAE157 ] C:\Program Files (x86)\Symantec AntiVirus\vpmsece4.dll
13:02:34.0301 0968 C:\Program Files (x86)\Symantec AntiVirus\vpmsece4.dll - ok
13:02:34.0316 0968 [ 9C376F42BDE37F18D0A39AF7415D9BE6 ] C:\Program Files (x86)\Mozilla Firefox\firefox.exe
13:02:34.0316 0968 C:\Program Files (x86)\Mozilla Firefox\firefox.exe - ok
13:02:34.0316 0968 [ 67EC459E42D3081DD8FD34356F7CAFC1 ] C:\Program Files (x86)\Mozilla Firefox\msvcr100.dll
13:02:34.0316 0968 C:\Program Files (x86)\Mozilla Firefox\msvcr100.dll - ok
13:02:34.0332 0968 [ 730D87DF83F82967DA6EA893263E0D16 ] C:\Program Files (x86)\Mozilla Firefox\mozglue.dll
13:02:34.0332 0968 C:\Program Files (x86)\Mozilla Firefox\mozglue.dll - ok
13:02:34.0332 0968 [ 5C94FF7FABE1A23C9EF651D89C1FBDED ] C:\Program Files (x86)\Mozilla Firefox\nspr4.dll
13:02:34.0332 0968 C:\Program Files (x86)\Mozilla Firefox\nspr4.dll - ok
13:02:34.0347 0968 [ 21FA8728B0E6D2D00063987BBC7C33E9 ] C:\Program Files (x86)\Mozilla Firefox\plc4.dll
13:02:34.0347 0968 C:\Program Files (x86)\Mozilla Firefox\plc4.dll - ok
13:02:34.0347 0968 [ D5AEFAD57C08349A4393D987DF7C715D ] C:\Windows\SysWOW64\winmm.dll
13:02:34.0347 0968 C:\Windows\SysWOW64\winmm.dll - ok
13:02:34.0363 0968 [ 32510F1FA8D3327BE3B29DBC4B01B3CB ] C:\Program Files (x86)\Mozilla Firefox\mozalloc.dll
13:02:34.0363 0968 C:\Program Files (x86)\Mozilla Firefox\mozalloc.dll - ok
13:02:34.0379 0968 [ 4EE96E9788C2C74353315DB612253D03 ] C:\Program Files (x86)\Mozilla Firefox\plds4.dll
13:02:34.0379 0968 C:\Program Files (x86)\Mozilla Firefox\plds4.dll - ok
13:02:34.0379 0968 [ E013596DCCEC82B05B166523B91265AD ] C:\Program Files (x86)\Mozilla Firefox\mozsqlite3.dll
13:02:34.0379 0968 C:\Program Files (x86)\Mozilla Firefox\mozsqlite3.dll - ok
13:02:34.0394 0968 [ 8B0FAFC68CB2674CFAF7B9E70464FDBB ] C:\Program Files (x86)\Mozilla Firefox\nssutil3.dll
13:02:34.0394 0968 C:\Program Files (x86)\Mozilla Firefox\nssutil3.dll - ok
13:02:34.0394 0968 [ 84EAABD444291C9E6A845AF2A1CE1523 ] C:\Program Files (x86)\Mozilla Firefox\softokn3.dll
13:02:34.0394 0968 C:\Program Files (x86)\Mozilla Firefox\softokn3.dll - ok
13:02:34.0410 0968 [ 49AD92A2247654C4A2A95081ACE07B93 ] C:\Program Files (x86)\Mozilla Firefox\nss3.dll
13:02:34.0410 0968 C:\Program Files (x86)\Mozilla Firefox\nss3.dll - ok
13:02:34.0410 0968 [ A586CAB4FB1DE3872C2D6E153E961D3B ] C:\Program Files (x86)\Mozilla Firefox\ssl3.dll
13:02:34.0410 0968 C:\Program Files (x86)\Mozilla Firefox\ssl3.dll - ok
13:02:34.0425 0968 [ D5E323543C0A1A9FEBC324519EFE2EC8 ] C:\Program Files (x86)\Mozilla Firefox\smime3.dll
13:02:34.0425 0968 C:\Program Files (x86)\Mozilla Firefox\smime3.dll - ok
13:02:34.0441 0968 [ 4B70B15F477972E0189BE25F4573DB80 ] C:\Program Files (x86)\Mozilla Firefox\mozjs.dll
13:02:34.0441 0968 C:\Program Files (x86)\Mozilla Firefox\mozjs.dll - ok
13:02:34.0441 0968 [ 03E9314004F504A14A61C3D364B62F66 ] C:\Program Files (x86)\Mozilla Firefox\msvcp100.dll
13:02:34.0441 0968 C:\Program Files (x86)\Mozilla Firefox\msvcp100.dll - ok
13:02:34.0457 0968 [ F18042C3223D6AAAF30346506463516E ] C:\Program Files (x86)\Mozilla Firefox\xul.dll
13:02:34.0457 0968 C:\Program Files (x86)\Mozilla Firefox\xul.dll - ok
13:02:34.0457 0968 [ 4AB72BB5D7FE5163D3AF85050351EDCB ] C:\Program Files (x86)\Mozilla Firefox\gkmedias.dll
13:02:34.0457 0968 C:\Program Files (x86)\Mozilla Firefox\gkmedias.dll - ok
13:02:34.0472 0968 [ 18AB2E5A40064ED5F7791AC5946A90F3 ] C:\Windows\SysWOW64\msimg32.dll
13:02:34.0472 0968 C:\Windows\SysWOW64\msimg32.dll - ok
13:02:34.0472 0968 [ 43964FA89CCF97BA6BE34D69455AC65F ] C:\Windows\SysWOW64\uxtheme.dll
13:02:34.0472 0968 C:\Windows\SysWOW64\uxtheme.dll - ok
13:02:34.0488 0968 [ CD4B4E5652377E441688377D300E62A8 ] C:\Program Files (x86)\Mozilla Firefox\xpcom.dll
13:02:34.0488 0968 C:\Program Files (x86)\Mozilla Firefox\xpcom.dll - ok
13:02:34.0488 0968 [ 39C5F32747B3414D1BB216FDB1DEFC58 ] C:\Windows\SysWOW64\dwmapi.dll
13:02:34.0488 0968 C:\Windows\SysWOW64\dwmapi.dll - ok
13:02:34.0503 0968 [ 12C45E3CB6D65F73209549E2D02ECA7A ] C:\Windows\SysWOW64\propsys.dll
13:02:34.0503 0968 C:\Windows\SysWOW64\propsys.dll - ok
13:02:34.0519 0968 [ 3FD15B4611D9BDA3F8013548C0ECAECA ] C:\Windows\SysWOW64\ntmarta.dll
13:02:34.0519 0968 C:\Windows\SysWOW64\ntmarta.dll - ok
13:02:34.0519 0968 [ A29D734F650F958424743BE3BAA052C8 ] C:\Windows\SysWOW64\DWrite.dll
13:02:34.0519 0968 C:\Windows\SysWOW64\DWrite.dll - ok
13:02:34.0535 0968 [ EE5C8E27C37B79CB54A2FCEEED2DC262 ] C:\Windows\SysWOW64\WSHTCPIP.DLL
13:02:34.0535 0968 C:\Windows\SysWOW64\WSHTCPIP.DLL - ok
13:02:34.0535 0968 [ FCFCADA2B35D0599DC485F06DED21788 ] C:\Program Files (x86)\Mozilla Firefox\components\browsercomps.dll
13:02:34.0535 0968 C:\Program Files (x86)\Mozilla Firefox\components\browsercomps.dll - ok
13:02:34.0550 0968 [ 73E8667A19FEEDD856DF2695E9E511D4 ] C:\Windows\SysWOW64\wship6.dll
13:02:34.0550 0968 C:\Windows\SysWOW64\wship6.dll - ok
13:02:34.0550 0968 [ 81F08948A0F1475894C99D4D19A158A8 ] C:\Windows\SysWOW64\wshqos.dll
13:02:34.0550 0968 C:\Windows\SysWOW64\wshqos.dll - ok
13:02:34.0566 0968 [ 243974EC02F7AE49E4179C54624143AB ] C:\Windows\SysWOW64\MMDevAPI.dll
13:02:34.0566 0968 C:\Windows\SysWOW64\MMDevAPI.dll - ok
13:02:34.0566 0968 [ 6B140B1382F1FE04BA57B196AEB19725 ] C:\Windows\SysWOW64\t2embed.dll
13:02:34.0566 0968 C:\Windows\SysWOW64\t2embed.dll - ok
13:02:34.0581 0968 [ 104A1070E90F1C530328E69B49718841 ] C:\Windows\SysWOW64\nlaapi.dll
13:02:34.0581 0968 C:\Windows\SysWOW64\nlaapi.dll - ok
13:02:34.0581 0968 [ 0B7E85364CB878E2AD531DB7B601A9E5 ] C:\Windows\SysWOW64\NapiNSP.dll
13:02:34.0581 0968 C:\Windows\SysWOW64\NapiNSP.dll - ok
13:02:34.0597 0968 [ 5CF640EDDB1E40A5AB1BB743BCDEC610 ] C:\Windows\SysWOW64\pnrpnsp.dll
13:02:34.0597 0968 C:\Windows\SysWOW64\pnrpnsp.dll - ok
13:02:34.0613 0968 [ 9D4A1690AF93F233E15380398BEC7431 ] C:\Program Files (x86)\Common Files\microsoft shared\Windows Live\WLIDNSP.DLL
13:02:34.0613 0968 C:\Program Files (x86)\Common Files\microsoft shared\Windows Live\WLIDNSP.DLL - ok
13:02:34.0613 0968 [ B40420876B9288E0A1C8CCA8A84E5DC9 ] C:\Windows\SysWOW64\dnsapi.dll
13:02:34.0613 0968 C:\Windows\SysWOW64\dnsapi.dll - ok
13:02:34.0628 0968 [ 5DF5D8CFD9B9573FA3B2C89D9061A240 ] C:\Windows\SysWOW64\winrnr.dll
13:02:34.0628 0968 C:\Windows\SysWOW64\winrnr.dll - ok
13:02:34.0628 0968 [ 40947436A70E0034E41123DF5A0A7702 ] C:\Program Files (x86)\Bonjour\mdnsNSP.dll
13:02:34.0628 0968 C:\Program Files (x86)\Bonjour\mdnsNSP.dll - ok
13:02:34.0644 0968 [ 7F8678C59F188528D60104E697C2361E ] C:\Windows\SysWOW64\mscms.dll
13:02:34.0644 0968 C:\Windows\SysWOW64\mscms.dll - ok
13:02:34.0644 0968 [ ED6EE83D61EBC683C2CD8E899EA6FEBE ] C:\Windows\SysWOW64\rasadhlp.dll
13:02:34.0644 0968 C:\Windows\SysWOW64\rasadhlp.dll - ok
13:02:34.0659 0968 [ 03A03A453F1AAAE0C73AAAF895321C7A ] C:\Windows\SysWOW64\FWPUCLNT.DLL
13:02:34.0659 0968 C:\Windows\SysWOW64\FWPUCLNT.DLL - ok
13:02:34.0659 0968 [ DD31BE71EBBF9BB9342AA8811956C2F0 ] C:\Program Files (x86)\Mozilla Firefox\nssdbm3.dll
13:02:34.0659 0968 C:\Program Files (x86)\Mozilla Firefox\nssdbm3.dll - ok
13:02:34.0675 0968 [ AF68099C841EE4BE1C19458D41664A77 ] C:\Program Files (x86)\Mozilla Firefox\freebl3.dll
13:02:34.0675 0968 C:\Program Files (x86)\Mozilla Firefox\freebl3.dll - ok
13:02:34.0691 0968 [ 6B77AC593EEFE2D7E855CA691F4A5C84 ] C:\Program Files (x86)\Mozilla Firefox\nssckbi.dll
13:02:34.0691 0968 C:\Program Files (x86)\Mozilla Firefox\nssckbi.dll - ok
13:02:34.0691 0968 [ E2A17BCC08D92F42E08AF6BA2F93ABA7 ] C:\Windows\SysWOW64\ExplorerFrame.dll
13:02:34.0691 0968 C:\Windows\SysWOW64\ExplorerFrame.dll - ok
13:02:34.0706 0968 [ 6E1F8165C365D35C8E3C045AF0CDD481 ] C:\Windows\SysWOW64\duser.dll
13:02:34.0706 0968 C:\Windows\SysWOW64\duser.dll - ok
13:02:34.0706 0968 [ EE06B85BC69F18826302348A2AD089E0 ] C:\Windows\SysWOW64\dui70.dll
13:02:34.0706 0968 C:\Windows\SysWOW64\dui70.dll - ok
13:02:34.0722 0968 [ AF0238442F4CFFFE26CA15556E805F8B ] C:\Program Files (x86)\Symantec\LiveUpdate\S32LIVE1.DLL
13:02:34.0722 0968 C:\Program Files (x86)\Symantec\LiveUpdate\S32LIVE1.DLL - ok
13:02:34.0722 0968 [ 1EB82516F21F27EED1833B4F9FD9614E ] C:\Windows\System32\wmp.dll
13:02:34.0722 0968 C:\Windows\System32\wmp.dll - ok
13:02:34.0737 0968 [ E19AD0D49BFF5938B3E374873AC174DE ] C:\Windows\System32\wmploc.DLL
13:02:34.0737 0968 C:\Windows\System32\wmploc.DLL - ok
13:02:34.0753 0968 [ A2631C4465BBCE72B7E371DFB924A9D3 ] C:\Windows\SysWOW64\feclient.dll
13:02:34.0753 0968 C:\Windows\SysWOW64\feclient.dll - ok
13:02:34.0753 0968 [ BE247AE996A9FDE007A27B51413A6C79 ] C:\Windows\SysWOW64\shdocvw.dll
13:02:34.0753 0968 C:\Windows\SysWOW64\shdocvw.dll - ok
13:02:34.0769 0968 [ A80C173AC5C75706BB74AE4D78F2A53D ] C:\Program Files (x86)\Windows Media Player\wmplayer.exe
13:02:34.0769 0968 C:\Program Files (x86)\Windows Media Player\wmplayer.exe - ok
13:02:34.0769 0968 [ 46F4C5E1FD1AE2461E52838EB5118ECC ] C:\PROGRA~2\Symantec\LIVEUP~1\LUALL.EXE
13:02:34.0769 0968 C:\PROGRA~2\Symantec\LIVEUP~1\LUALL.EXE - ok
13:02:34.0784 0968 [ 4B1BC262B76232056F3B247C37F26940 ] C:\PROGRA~2\Symantec\LIVEUP~1\MFC71.DLL
13:02:34.0784 0968 C:\PROGRA~2\Symantec\LIVEUP~1\MFC71.DLL - ok
13:02:34.0784 0968 [ CA2F560921B7B8BE1CF555A5A18D54C3 ] C:\PROGRA~2\Symantec\LIVEUP~1\MSVCR71.DLL
13:02:34.0784 0968 C:\PROGRA~2\Symantec\LIVEUP~1\MSVCR71.DLL - ok
13:02:34.0800 0968 [ A94DC60A90EFD7A35C36D971E3EE7470 ] C:\PROGRA~2\Symantec\LIVEUP~1\MSVCP71.DLL
13:02:34.0800 0968 C:\PROGRA~2\Symantec\LIVEUP~1\MSVCP71.DLL - ok
13:02:34.0815 0968 [ 82B18F1EB267D60852D5093A5302BD49 ] C:\PROGRA~2\Symantec\LIVEUP~1\LUALLRES.DLL
13:02:34.0815 0968 C:\PROGRA~2\Symantec\LIVEUP~1\LUALLRES.DLL - ok
13:02:34.0815 0968 [ 47D954B2188DA17598CA5EBEBE199DA0 ] C:\Program Files (x86)\Symantec\LiveUpdate\NetDetectController_3_3.DLL
13:02:34.0815 0968 C:\Program Files (x86)\Symantec\LiveUpdate\NetDetectController_3_3.DLL - ok
13:02:34.0831 0968 [ 522B0466ED967A0762E9AF5B37D8F40A ] C:\Windows\System32\esent.dll
13:02:34.0831 0968 C:\Windows\System32\esent.dll - ok
13:02:34.0831 0968 [ 220159496484D34009DE71CA1A68E0D4 ] C:\Windows\System32\wbem\NCProv.dll
13:02:34.0831 0968 C:\Windows\System32\wbem\NCProv.dll - ok
13:02:34.0847 0968 [ 5F1F35F2F995FA8615438AB922B0BA7B ] C:\Program Files\Internet Explorer\ieproxy.dll
13:02:34.0847 0968 C:\Program Files\Internet Explorer\ieproxy.dll - ok
13:02:34.0847 0968 [ B837D1528CE2E3CB79F09496BC08DDC6 ] C:\Windows\System32\SensApi.dll
13:02:34.0847 0968 C:\Windows\System32\SensApi.dll - ok
13:02:34.0862 0968 [ 9ED9F21D73F9D71E30EAB71835E656EB ] C:\Users\Dave Haddad\Desktop\tdsskiller.exe
13:02:34.0862 0968 C:\Users\Dave Haddad\Desktop\tdsskiller.exe - ok
13:02:34.0862 0968 [ CA9F7888B524D8100B977C81F44C3234 ] C:\Windows\SysWOW64\winhttp.dll
13:02:34.0862 0968 C:\Windows\SysWOW64\winhttp.dll - ok
13:02:34.0878 0968 [ FB19FC5951A88F3C523E35C2C98D23C0 ] C:\Windows\SysWOW64\webio.dll
13:02:34.0878 0968 C:\Windows\SysWOW64\webio.dll - ok
13:02:34.0878 0968 [ 4E5FE39C1076D115EC8BFCFE14D75B80 ] C:\Windows\SysWOW64\credssp.dll
13:02:34.0878 0968 C:\Windows\SysWOW64\credssp.dll - ok
13:02:34.0893 0968 [ F146E2BA475893DD77B2370DC1211FC6 ] C:\Windows\System32\drivers\65721651.sys
13:02:34.0893 0968 C:\Windows\System32\drivers\65721651.sys - ok
13:02:34.0893 0968 [ A6C29DB53ECA94FA8591C5388D604B82 ] C:\Windows\SysWOW64\msi.dll
13:02:34.0893 0968 C:\Windows\SysWOW64\msi.dll - ok
13:02:34.0909 0968 [ 102CF6879887BBE846A00C459E6D4ABC ] C:\Windows\SysWOW64\riched20.dll
13:02:34.0909 0968 C:\Windows\SysWOW64\riched20.dll - ok
13:02:34.0909 0968 [ CF318F60A84F15AF352439465A8D05F4 ] C:\Program Files\Windows Defender\MpSvc.dll
13:02:34.0909 0968 C:\Program Files\Windows Defender\MpSvc.dll - ok
13:02:34.0925 0968 [ ADF3E771F429940E762AC097F5A54EAF ] C:\Program Files\Windows Defender\MpClient.dll
13:02:34.0925 0968 C:\Program Files\Windows Defender\MpClient.dll - ok
13:02:34.0940 0968 [ 4FDFA3F219692D17011BF1B428857C1E ] C:\Program Files\Windows Defender\MpRTP.dll
13:02:34.0940 0968 C:\Program Files\Windows Defender\MpRTP.dll - ok
13:02:34.0940 0968 [ FBD879D17B26D49DD7A48FF58062FAE6 ] C:\Windows\System32\tdh.dll
13:02:34.0940 0968 C:\Windows\System32\tdh.dll - ok
13:02:34.0956 0968 [ 78555E35CD15785B9EE62B8C8167A861 ] C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{4FD771AF-2E18-4F5C-8EF4-FF19B63C3B5B}\mpengine.dll
13:02:34.0956 0968 C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{4FD771AF-2E18-4F5C-8EF4-FF19B63C3B5B}\mpengine.dll - ok
13:02:34.0956 0968 [ 8BE5B9C034415C5E4232F109E514A49A ] C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{4FD771AF-2E18-4F5C-8EF4-FF19B63C3B5B}\mpasbase.vdm
13:02:34.0956 0968 C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{4FD771AF-2E18-4F5C-8EF4-FF19B63C3B5B}\mpasbase.vdm - ok
13:02:34.0971 0968 [ 4BA9CDF0463BEDFC8DE9EC5F605B5C7A ] C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{4FD771AF-2E18-4F5C-8EF4-FF19B63C3B5B}\mpasdlta.vdm
13:02:34.0971 0968 C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{4FD771AF-2E18-4F5C-8EF4-FF19B63C3B5B}\mpasdlta.vdm - ok
13:02:34.0971 0968 [ 93BB66044FA76734E882C6F3E8EE1900 ] C:\Program Files\Windows Defender\MsMpLics.dll
13:02:34.0971 0968 C:\Program Files\Windows Defender\MsMpLics.dll - ok
13:02:34.0987 0968 [ 218A400108F280428FA22282D3268BBC ] C:\Windows\System32\wscapi.dll
13:02:34.0987 0968 C:\Windows\System32\wscapi.dll - ok
13:02:35.0003 0968 [ B84E2D174DC84916A536572BB8F691A8 ] C:\Windows\System32\wscisvif.dll
13:02:35.0003 0968 C:\Windows\System32\wscisvif.dll - ok
13:02:35.0003 0968 [ 6C1E3C43B35268C17833244C8ED96430 ] C:\Windows\System32\wscproxystub.dll
13:02:35.0003 0968 C:\Windows\System32\wscproxystub.dll - ok
13:02:35.0018 0968 [ 6316957BB3431DFB06BFFA98C0F1926E ] C:\Windows\SysWOW64\cryptnet.dll
13:02:35.0018 0968 C:\Windows\SysWOW64\cryptnet.dll - ok
13:02:35.0018 0968 [ 6F8E3B7B70E1BBA871212940C1FBDF60 ] C:\Windows\SysWOW64\SensApi.dll
13:02:35.0018 0968 C:\Windows\SysWOW64\SensApi.dll - ok
13:02:35.0034 0968 [ 81252AA3B13743020BCF2089A5A0D911 ] C:\Windows\System32\wscinterop.dll
13:02:35.0034 0968 C:\Windows\System32\wscinterop.dll - ok
13:02:35.0034 0968 [ DF50DAE4C547285E4997A0C61063B632 ] C:\Windows\System32\wscui.cpl
13:02:35.0034 0968 C:\Windows\System32\wscui.cpl - ok
13:02:35.0049 0968 [ F9959237F106F2B2609E61A290C0652E ] C:\Windows\System32\werconcpl.dll
13:02:35.0049 0968 C:\Windows\System32\werconcpl.dll - ok
13:02:35.0065 0968 [ 1484B9EBF567346582DE571B0E164AE0 ] C:\Windows\System32\framedynos.dll
13:02:35.0065 0968 C:\Windows\System32\framedynos.dll - ok
13:02:35.0065 0968 [ 7E591867422DC788B9E5BD337A669A08 ] C:\Windows\System32\wercplsupport.dll
13:02:35.0065 0968 C:\Windows\System32\wercplsupport.dll - ok
13:02:35.0081 0968 [ B79515AFF098E5A56DFBD316152534DE ] C:\PROGRA~1\COMMON~1\MICROS~1\OFFICE12\MSOXMLMF.DLL
13:02:35.0081 0968 C:\PROGRA~1\COMMON~1\MICROS~1\OFFICE12\MSOXMLMF.DLL - ok
13:02:35.0081 0968 [ 809AE7D4ACE06BBCF621E5C504BF6FC8 ] C:\Windows\System32\hcproviders.dll
13:02:35.0081 0968 C:\Windows\System32\hcproviders.dll - ok
13:02:35.0096 0968 [ 5987EA8A82C53359BCD2C29D6588583E ] C:\Windows\SysWOW64\linkinfo.dll
13:02:35.0096 0968 C:\Windows\SysWOW64\linkinfo.dll - ok
13:02:35.0096 0968 [ 03F3B770DFBED6131653CEDA8CA780F0 ] C:\Windows\SysWOW64\ntshrui.dll
13:02:35.0096 0968 C:\Windows\SysWOW64\ntshrui.dll - ok
13:02:35.0112 0968 [ 8B74CEC6980D4816B0037AE9A27E538F ] C:\Windows\SysWOW64\slc.dll
13:02:35.0112 0968 C:\Windows\SysWOW64\slc.dll - ok
13:02:35.0112 0968 [ 005247E3057BC5D5C3F8C6F886FFC10C ] C:\Windows\System32\wbem\WMIADAP.exe
13:02:35.0112 0968 C:\Windows\System32\wbem\WMIADAP.exe - ok
13:02:35.0127 0968 [ 9FE3ED67345F0FF829A4A53B90E09672 ] C:\Windows\System32\loadperf.dll
13:02:35.0127 0968 C:\Windows\System32\loadperf.dll - ok
13:02:35.0127 0968 ============================================================
13:02:35.0127 0968 Scan finished
13:02:35.0127 0968 ============================================================
13:02:35.0143 1076 Detected object count: 0
13:02:35.0143 1076 Actual detected object count: 0
13:02:44.0191 1772 Deinitialize success




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users